Azure-docs: What is the updated timeline on Microsoft Graph for B2C?

Created on 14 Mar 2018  Â·  15Comments  Â·  Source: MicrosoftDocs/azure-docs

What is the updated timeline for Microsoft Graph support with B2C? I see by this post that it is coming soon (https://blogs.msdn.microsoft.com/aadgraphteam/2016/07/08/microsoft-graph-or-azure-ad-graph/) but that was back in 2016. Any updates? Thanks.

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

Pri1 active-directory-b2svc cxp product-question triaged
Source
picture S1r-Lanzelot
👍3

Most helpful comment

Almost the end of 2019 and I still don't have a clear answer.

picture flyboarder on 14 Sep 2019
👍5

All 15 comments

Hi @S1r-Lanzelot - You can find our upcoming release updates here: https://azure.microsoft.com/en-us/roadmap/

mike-urnun-msft picture mike-urnun-msft on 15 Mar 2018

How can I see the roadmap for B2C? The roadmap site is a bit confusing. https://azure.microsoft.com/en-us/roadmap/?tag=azure-active-directory-b2c ... this link only shows 1 item. Where is the roadmap?

KumoJosh picture KumoJosh on 24 Mar 2018

For B2C, I would currently recommend visiting https://aka.ms/aadb2cfeedback. We make updates there for each feature that you might be interested in.

For our release notes, see: https://docs.microsoft.com/en-us/azure/active-directory/whats-new
You can search on B2C

parakhj picture parakhj on 27 Mar 2018

I agree with @S1r-Lanzelot, can we please get an update?

According to aadgraphteam/2016/07/08/microsoft-graph-or-azure-ad-graph/

Manage users in a B2C tenant (set local accounts, sign in names)
Coming soon (preview)

That was almost 2 years ago 😜!

spottedmahn picture spottedmahn on 4 Apr 2018

Agreed :)
On the https://aka.ms/aadb2cfeedback site, I couldn't find any update related to this issue. We are developing functionality as we speak to programmatically integrate with Azure B2C so it would be great to get some guidance on when this would be available so we can plan appropriately.

KumoJosh picture KumoJosh on 4 Apr 2018
👍1

Hi @KumoJosh - see this item: Programmatically register B2C applications. Or this item: Programmatically manage B2C policies.

Neither one of those is generic though to using the Microsoft Graph instead of the Azure AD Graph.

spottedmahn picture spottedmahn on 4 Apr 2018
👍1

Which programmatic API's are you looking for specifically? Being able to CRUD users through Microsoft Graph API (instead of Azure AD Graph API) is at least six months out. Work should hopefully begin post summer.

parakhj picture parakhj on 4 Apr 2018
👍3

Specifically those ones are what we are looking for. We want to create users in the Azure B2C directory from another app that gives users access to a separate portal where B2C is the authentication layer for that portal. That guidance is helpful. Thanks, we need to do it now so we will write against the Azure AD Graph API for now.

KumoJosh picture KumoJosh on 4 Apr 2018

So...
Any updates when move to mi to sift graph?

Still confuse about look for in the roadmap links

jlsfernandez picture jlsfernandez on 21 Apr 2018

Almost the end of 2019 and I still don't have a clear answer.

flyboarder picture flyboarder on 14 Sep 2019
👍5

Microsoft GraphAPI now supports creating and reading B2C users in the "Beta" endpoint.
As documented here:
https://docs.microsoft.com/en-us/graph/api/user-post-users?view=graph-rest-beta&tabs=http

The call would look like:

POST https://graph.microsoft.com/beta/users
Content-type: application/json

{
  "displayName": "John Smith",
  "identities": [
    {
      "signInType": "userName",
      "issuer": "contoso.onmicrosoft.com",
      "issuerAssignedId": "johnsmith"
    },
    {
      "signInType": "emailAddress",
      "issuer": "contoso.onmicrosoft.com",
      "issuerAssignedId": "[email protected]"
    },
    {
      "signInType": "federated",
      "issuer": "facebook.com",
      "issuerAssignedId": "5eecb0cd"
    }
  ],
  "passwordProfile" : {
    "forceChangePasswordNextSignIn": true,
    "password": "password-value"
  }
}
ghost picture ghost on 23 Oct 2019
🎉4

When will Azure AD B2C access token be usable on the Microsoft Graph API?

flyboarder picture flyboarder on 23 Oct 2019

Most likely never. B2C access token context is "consumer" identity. And consumer has no business accessing MS Graph. B2C access token is only relevant to access and API which itself is federated with B2C. This is the most common misconception about Azure AD B2C. It should really be looked at as a separate product, unrelated to Azure AD. Which of course is hard, considering its built on one.

ghost picture ghost on 24 Oct 2019

@artomh Thanks for the clarification, could you explain how we are able to acquire user profile details via any MS API once a B2C user has been authenticated?

Or are we required to use yet another AzureAD Application (non-B2C) that has been assigned MS Graph API access?

flyboarder picture flyboarder on 26 Oct 2019

I'm in the current situation of using msal.js with aad b2c - this isn't returning info like email addresses and all the docs seem to point at needing to query graph to get it. I definitely don't want to have to have a separate credential and solution for retrieving the info. Being able to use at least the /me endpoint is something I'd expect and indeed, other Microsoft folks say that's how to do it: https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/13402104-aadb2c-include-username-in-jwt-claims

stephlocke picture stephlocke on 3 Dec 2019
Was this page helpful?
0 / 5 - 0 ratings

Related issues

varma31 picture varma31  Â·  3Comments
monteledwards picture monteledwards  Â·  3Comments
Agazoth picture Agazoth  Â·  3Comments
bityob picture bityob  Â·  3Comments
jamesgallagher-ie picture jamesgallagher-ie  Â·  3Comments