Context:
We have an existing Angular app that is authenticating with Azure AD B2C tenant users using MSAL 2.0 and PKCE flow. Configuration was done using B2C Custom Policies. We have a requirement to support "SP Initiated SAML SSO" with third-party external vendor.
Implementation:
1#
Enhanced Custom Policies by creating SAML Technical profile section in TrustFrameworkExtensions, by following documentation links like below https://learn.microsoft.com/en-us/azure/active-directory-b2c/identity-provider-generic-saml?tabs=windows&pivots=b2c-custom-policy
https://learn.microsoft.com/en-us/azure/active-directory-b2c/identity-provider-adfs-saml?tabs=windows&pivots=b2c-custom-policy
2#
Also, followed links like below to configure linking of local user with federated user
https://learn.microsoft.com/en-us/azure/active-directory-b2c/user-profile-attributes?WT.mc_id=AZ-MVP-5003445#identities-attribute
By running the policy, SAML AuthN request was sent to external SAML provider & successfully received SAML Response. By redirecting to https://jwt.ms, equivalent JWT tokens are received in the id_token parameter & access_token parameter
Eg:- (Policy triggered with below link)
https://
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 1%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBR%3C/text%3E%3C/svg%3E)
