B2C - Custom Policies - Multiple Different JwtIssuer technical profiles

Stephen Aitchison 0 Reputation points
2024-03-27T21:00:07.56+00:00

Hi team,

I have a custom policy that determines if the incoming client id is a mobile app based on a whitelist - to which I want to use a different JwtIssuer Technical profile with different refresh token lifetimes defined. So define the refresh token life based on the client app registration.

I have the logic working, and I can see its using the one specific for mobile, but because I have multiple SendClaims in my UserJourney, validation says I have to set a DefaultCpimIssuerTechnicalProfileReferenceId.

I've found in my testing, although AppInsights says its using the mobile one, its actually using the 'Default' one set at the top of the User Journey.

Is there any way around this wierd and unexpected behaviour?

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,884 questions
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.