Authorization Code grant flow with custom policy : seeding persisted / previously issued claims in Refresh Token user journey

mistry mehul 1 Reputation point
2021-10-22T20:46:46.08+00:00

We have defined Azure AD B2C custom policy for authentication using OIDC Authorization Code grant flow and have several custom claims that are persisted to user session.

We also defined custom Refresh Token User Journey and are attempting to seed the User Journey with previous claims.

We added orchestration step to invoke DefaultSSOSessionProvider technical profile.
This orchestration step fails with runtime error as following:
"Message": "Unable to cast object of type 'Web.TPEngine.SSO.DefaultSSOSessionProvider' to type 'Web.TPEngine.Providers.IProtocolProvider'."

Also adding element PreserveOriginalAssertion with value true to the refresh token user journey seems to have no effect - i.e. claims from previously issued id token are not added to claims bag.
We are referring to ROPC flow refresh token custom policy documentation.

Please suggest possible approaches or workarounds that we may adopt to implement this requirement.

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,610 questions
0 comments No comments
{count} votes