hbermani

Hi bobo, I have the same issue here. I have been trying to apply CORS policy including to the oidc configuration controller but having no luck with it at all....

hi bobo, I ended up implementing Azure AD B2C with this library https://github.com/syncweek-react-aad/react-aad#readme, and leverage JWT to authorise with the backend.

That's the thing, you don't trust the MSAL token, your backend will need to verify the token against Azure AD B2C.

Here is the detailed docs for verifying the token https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-reference-tokens#validation

Hi bobo, so as I understand it, you authenticate / verify identity with id token and look what permissions have been granted with access token (which I am assuming you...

Not ideal, but if you face this issue, copy content of stream to byte array and create a new memory stream from it.

In a similar place here with a SPA application and it looks very chatty on the server end checking finbuckle tenancy unnecessarily. Will try and implement a custom strategy but...

> Thanks for the input! > > It's funny because in ASP.NET Core 2.1 you actually can set a different route for the strategy but then in ASP.NET Core 2.2...

Hi @AndrewTriesToCode , Thank you for your input, honestly no need to apologise, it must be challenging keeping this ticking. So here is my current thinking. **The simplified version:** -...

Hi Andrew, Unfortunately, I haven't, the project priorities changed and I haven't had a chance to progress this yet.