![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 63%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJZ%3C/text%3E%3C/svg%3E)
Community Center | Not monitored
Tag not monitored by Microsoft.
Hello @József Mikus and thanks for reaching out. Azure AD B2C user flows are mainly interactive, however you can create a REST API to support the following operations:
- Registration: You can create a user with social and local account identities. Local account is straights forward, but social accounts will require claims, or better yet a full JWT token issued by the social IdP to validate and use for outputting claims to be persisted. For an example take a look to the Facebook ClaimsProvider.
- Login: Limited support (local accounts only) trough the ROPC flow. Social accounts must go trough a User Flow.
- MFA token validation: create a custom claim type that stores MFA result and validate it in your API.
- Authorize Token: trough claims validations.
- Refresh Token: Request an access token using the
offline_accessscope - Logout: You can create an endpoint (E.g. /logout) that sends a sign-out request.
- Forget Password: Limited support (local accounts only) trough user: changePassword and Update the passwordProfile of a user to reset their password.
Let us know if you need additional assistance. If the answer was helpful, please accept it and complete the quality survey so that others can find a solution.