Azure Functions
An Azure service that provides an event-driven serverless compute platform.
4,264 questions
How to configure my Azure Function API with OAuth2 to work with B2C SignIn
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 66%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
kdeman
11
Reputation points
I have followed instructions on how to secure my API to be called from B2C Signup using OAuth2 bearer authentication. However, these instructions only outline the configuration in the custom b2c policy, but not how to configure my API itself to accept calls from B2C.
If I don't enable authentication on my API, the calls happen fine and the SignIn works perfectly. However when I enable Authentication, I get an error whilst executing the SignIn.
The error is AADB2C90027: Basic credentials specified for 'REST-GetProfile' are invalid. Check that the. Credentials are correct and that access has been granted by the resource'
Are there instructions to configure the API Authentication for this scenario?
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 44%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Samara Soucy - MSFT 5,051 Reputation points2021-11-02T01:44:34.617+00:00 Hi @kdeman Could you share the guide you are following so I can understand how your B2C configuration is setup? Also, for the function app, are you setting the authentication up on the App Service Account/in the portal, or are you trying to authenticate users within the function code?
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 50%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKD%3C/text%3E%3C/svg%3E)
karel deman 1 Reputation point2021-11-02T10:27:12.997+00:00 I am following this documentation secure-rest-api. I would like to setup Authentication up on the App Service/Account in the portal, not in function code. So basically I want to understand how to configure the actual API (function app in my case) when following the documentation.
Note I also have another (same) question I asked on stackoverflow here how-to-get-custom-b2c-policy-to-send-a-oauth2-bearer-token-to-my-custom-signup - as I still can't get the documentation steps to work.
Many thanks in advance!
Sign in to comment