How to fix the failing /.auth/login/aadb2c static web app endpoint?

Question

How to fix the failing /.auth/login/aadb2c static web app endpoint?

Steffen Dyhr-Nielsen 1

I have followed the Configure authentication in an Azure Static Web App by using Azure AD B2C documentation

Following step 4 I get the following error across browsers:

Refused to execute script from 'https://<domain>.azurestaticapps.net/.auth/login/aadb2c' because its MIME type ('text/html') is not executable, and strict MIME type checking is enabled.

I have tried to add the "Content-Type": "application/javascript" header via staticwebapp.config.json with no luck.

Here is my staticwebapp.config.json (after the headers modification):

{  
  "routes": [  
    {  
      "route": "/.auth/login/aadb2c",  
      "allowedRoles": [  
        "authenticated",  
        "anonymous"  
      ],  
      "headers": {  
        "Content-Type": "application/javascript"  
      }  
    },  
    {  
      "route": "/*",  
      "allowedRoles": [  
        "authenticated"  
      ]  
    }  
  ],  
  "globalHeaders": {  
    "Content-Type": "application/javascript"  
  },  
  "responseOverrides": {  
    "401": {  
      "statusCode": 302,  
      "redirect": "/.auth/login/aadb2c"  
    }  
  },  
  "navigationFallback": {  
    "rewrite": "index.html",  
    "exclude": [  
      "/content/*.{png,jpg,gif}"  
    ]  
  },  
  "auth": {  
    "identityProviders": {  
      "customOpenIdConnectProviders": {  
        "aadb2c": {  
          "registration": {  
            "clientIdSettingName": "AADB2C_PROVIDER_CLIENT_ID",  
            "clientCredential": {  
              "clientSecretSettingName": "AADB2C_PROVIDER_CLIENT_SECRET"  
            },  
            "openIdConnectConfiguration": {  
              "wellKnownOpenIdConfiguration": "https://<domain>.onmicrosoft.com.b2clogin.com/<domain>.onmicrosoft.com.onmicrosoft.com/B2C_1_SignIn/v2.0/.well-known/openid-configuration"  
            }  
          },  
          "login": {  
            "nameClaimType": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name",  
            "scopes": [],  
            "loginParameterNames": []  
          }  
        }  
      }  
    }  
  }  
}

I tried to remove the header stuff and the navigationFallback but then I simply get a 404 "not found".

So how do I log in to my static web app using B2C?

Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2022-12-14T10:44:20.22+00:00

Hi @Steffen Dyhr-Nielsen ,

Thanks for reaching out and apologies for delay in response.
I am looking into this. Will revert you on this.

Thanks,
Shweta
Steffen Dyhr-Nielsen 1 Reputation point

2022-12-19T19:01:29.863+00:00

Hi @Shweta Mathur Any progress on this one?
Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2022-12-21T08:49:40.757+00:00
Hi @Steffen Dyhr-Nielsen ,

I configured the same and facing the same error as yours. I am still working on it .

However from google Idp I am able to login after adding below route.

{ "route": "/.auth/login/google", "allowedRoles": ["anonyous", "authenticated"], "statusCode": 404 },

I am also checking this internally in the team and will get back to you.
Steffen Dyhr-Nielsen 1 Reputation point

2022-12-30T12:53:31.24+00:00

My wellKnownOpenIdConfiguration was misconfigured:
"https://<domain>.onmicrosoft.com.b2clogin.com/<domain>.onmicrosoft.com.onmicrosoft.com/<policy>/v2.0/.well-known/openid-configuration"

It should be:
"https://<domain>.b2clogin.com/<domain>.onmicrosoft.com/<policy>/v2.0/.well-known/openid-configuration"

This was spotted here
Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2022-12-31T08:22:45.397+00:00

Hi @Steffen Dyhr-Nielsen ,

Glad you are able to resolve the issue and share the solution with us. It totally got ignored by me as well.

Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others", I'll repost your solution in case you'd like to "Accept" the answer which will help others in the community looking for similar solution.

Thanks,
Shweta

Your answer

Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2022-12-14T10:44:20.22+00:00

Hi @Steffen Dyhr-Nielsen ,

Thanks for reaching out and apologies for delay in response.
I am looking into this. Will revert you on this.

Thanks,
Shweta
Steffen Dyhr-Nielsen 1 Reputation point

2022-12-19T19:01:29.863+00:00

Hi @Shweta Mathur Any progress on this one?
Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2022-12-21T08:49:40.757+00:00

Hi @Steffen Dyhr-Nielsen ,

I configured the same and facing the same error as yours. I am still working on it .

However from google Idp I am able to login after adding below route.

{ "route": "/.auth/login/google", "allowedRoles": ["anonyous", "authenticated"], "statusCode": 404 },

I am also checking this internally in the team and will get back to you.
Steffen Dyhr-Nielsen 1 Reputation point

2022-12-30T12:53:31.24+00:00

My wellKnownOpenIdConfiguration was misconfigured:
"https://<domain>.onmicrosoft.com.b2clogin.com/<domain>.onmicrosoft.com.onmicrosoft.com/<policy>/v2.0/.well-known/openid-configuration"

It should be:
"https://<domain>.b2clogin.com/<domain>.onmicrosoft.com/<policy>/v2.0/.well-known/openid-configuration"

This was spotted here
Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2022-12-31T08:22:45.397+00:00

Hi @Steffen Dyhr-Nielsen ,

Glad you are able to resolve the issue and share the solution with us. It totally got ignored by me as well.

Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others", I'll repost your solution in case you'd like to "Accept" the answer which will help others in the community looking for similar solution.

Thanks,
Shweta

Share via

How to fix the failing /.auth/login/aadb2c static web app endpoint?

Your answer