Build with an Azure free account. Get USD200 credit for 30 days and 12 months of free services.

Start free today

Azure Active Directory B2C Authentication For Mobile with Matthew Soucoup

Sign in to queue

The Discussion

  • User profile image
    MMcCarty

    Great video guys.  Question: What if I want to have my own custom Xamarin.Forms XAML page for Login, SignUp, etc. (rather than a custom HTML page).  Can I still use any of this?

     

    Thanks,

    Mike =:)

  • User profile image
    MattSoucoup

    @MMcCarty: Thanks Mike! You cannot do that today with the MSAL library. It's in the OAuth spec that the sign-in/up should be done through system web views. This way your app doesn't ever get a hold of the user's credentials... keeps the user's secrets safe & your app doesn't take on that responsibility either, let the OS handle it.

  • User profile image
    rubengrcgrc
    Video with excellent information, I take note for future conversations
     
  • User profile image
    Arot

    I've created "Sign-up or Sign-in" policy. Od the sign-in (login) form I have a "Forgot your password". after clicking on this I have redirection to my xamarin.forms app with msal access denied exception instead of change password page? Why? should I create additional change password policy?

  • User profile image
    himadriNath

    where is the code file for this project.............?

  • User profile image
    fraxedas

    A good into to Azure AD B2C for Xamarin.

    Do we still have to add a redirect link to the native projects?

    When will the MSAL library be out of preview?

  • User profile image
    Keith Bogus

    I have found this video to be completely worthless regarding how to correctly setup EVERYTHING (web api, tenant, android etc) to get MSAL working properly for a Xamarin PCL project. Absolutely worthless! I have tried the github project, it fails spectacularly. With errors such as "The name "AuthenticationContinuationHelper' does not exist in the current context".

    And the comments made on the video such as 'It works magically' are an insult.

  • User profile image
    MattSoucoup

    @Arot:Yeah - you're going to have to create a reset password policy. On the sign in, if the user hits "forgot password", there will be an MSALServiceException that gets thrown. the constant you'll have to check for in the ErrorCode property is "access_denied".

    If you see that - then you know to invoke the change password policy immediately.

    It's a manual process for the time being.

  • User profile image
    MattSoucoup
  • User profile image
    MattSoucoup

    @fraxedas:For the time being the MSAL library will need to redirect out to the system webviews to perform the sign in.  And it is going to be going out of preview soon - I don't have an exact date, but they are getting close.

  • User profile image
    MattSoucoup

    @Keith Bogus: Hey Keith - sorry you're having issues with the project. Let's see if we can work through this & get you running. First off, which GitHub repo are you using that's causing you issues?

  • User profile image
    Bob van Schie

    Hi Matt, James, in my Azure I created an b2c directory, it is reported as Azure AD for Office 365.  I do not see the Identity Providers; what do I do wrong?

  • User profile image
    kevdevone

    Love this video.  wondering if you could offer some guidance on helping me choose which way to go....the route outlined in this video or doing sing in/sign up forms in my xamarin app using azure ad?    pros/cons?  need to pick a direction and don't want to find the "cons" later down the road.   Why would I not use this scenario in the video?   My app will be a b2c subscription with multi-levels of paid subscription (including a free one).  Woudl like to allow for local use of my app (i.e. if connection doesn't exist) to save stuff then auth and synch when connected.   Also considering a B2b play. Will this allow for a company to do sso with their domain?   Any pros/cons to this versus the "traditional" method, woudl be appreciated.   Finally, would love to see a session on linking authentication with a paid subscription and how best to implement/design/

Add Your 2 Cents