This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 62%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
Hello,
I am trying to create a micro frontend architecture where there can be frontend apps that would connect to its own micro service backend. So, to try out the architecture, I created a React app (running on http://localhost:3000) and a ASP.NET MVC app (running on https://localhost:44312). The React app is acting as a container and calling the MVC app when the user clicks a button.
For authentication I am using Azure AD B2C which is working as a IdP and maintaining the user credentials and user flows. The primary authentication is happening on the React app (as it is acting as the container). Now, when I am calling the MVC app, its not automatically logging in. Here is the JS code that is loading the MVC app from the React app:
async loginToApp(app) {
var config = {
clientId: appConfig.auth.clientId,
authority: `https://${appConfig.auth.instance}/${appConfig.auth.domain}/${appConfig.auth.signUpSignInPolicyId}/`,
knownAuthorities: [appConfig.auth.instance],
redirectUri: app.appUri
}
const accounts = this.pca.getAllAccounts();
var account = null
if (accounts && accounts.length > 0) {
account = accounts[0];
}
if (account) {
config['loginHint'] = account.username;
config['nonce'] = account.idTokenClaims.nonce;
}
await this.pca.acquireTokenPopup(config);
}
To maintain the flow through the apps, I created a local app registration in B2C with redirect URIs as following:
When I load the apps individually it is logging in properly and maintaining their own session. However, as explained in the scenario above, when I login to the React app and call the MVC app from within it, its asking me to login again, and post login its redirecting to the error page of the MVC app.
I read the article https://learn.microsoft.com/en-us/azure/active-directory-b2c/session-behavior?pivots=b2c-user-flow which says that B2C supports authentication in multiple apps but unfortunately I am not able to achieve it.
I have had some awesome guidance from the time I started working with Azure in this forum, please let me know if you have implemented a similar scenario and how I can overcome this hurdle.
Thank you in advance,
Sairath
Tagging you @AmanpreetSingh-MSFT for guidance and help
Hello, can you elaborate more on how the React application act as a container to the MVC and/or how is the MVC application invoked from the React one?
HI anonymous user-msft , the react app after successful login goes to a component called Dashboard. In there, all the apps that the user are eligible to access are available as clickable cards. On clicking on one of those cards, the LoadApp component is invoked and that calls the service function loginToApp() mentioned above.
As you can see in the function, it calls Azure B2C to perform the SSO authentication and redirect to the app URL. Since I used the acquireTokenPopup() function it currently opens the MVC app (the child app) in the popup window. This is not the best setup, I want to load the app as a widget in the future, but currently I am trying to do the SSO which is not working.
Any pointers and help will be greatly appreciated.
Thanks,
Sairath
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 8%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMI%3C/text%3E%3C/svg%3E)
I am facing the same issue did you find a solution for it ?
Hello. Please ensure the cacheLocation setting is set to localStorage. The default is sessionStorage. EG:
// authProvider.js
import { MsalAuthProvider, LoginType } from 'react-aad-msal';
// Msal Configurations
const config = {
auth: {
authority: 'https://login.microsoftonline.com/common',
clientId: '<YOUR APPLICATION ID>',
redirectUri: '<OPTIONAL REDIRECT URI>'
},
cache: {
cacheLocation: "localStorage",
storeAuthStateInCookie: true
}
};
Please let me know if you need more help. If the answer was helpful to you, please accept it and, optionally, provide feedback so that other members in the community can benefit from it.
Thanks for the feedback @Alfredo Revilla - Upwork Top Talent | IAM SWE SWA
I updated the config like you mentioned but still when its going to the child app and landing in the /signin-oidc page, its ending up in the error as in the screenshot below. Is there a way I can configure it to not throw the error. One thing I have noticed is after it comes back to the child app and throws the error, if I click on the sign in button it doesn't ask me to login but redirects with my ID token. Could you please guide me as to how I can eliminate the error step? Do I need to write a custom /signin-oidc page and put the redirection to that? If so, could you please guide me on that?
I really appreciate you giving this time to help me out in this.
Hello, please enable implicit flow in the app registration.