Is it possible to make a call to an azure app service inside a vnet from azure ad b2c ?

Rishi Verma 126 Reputation points
2022-01-20T22:03:38.617+00:00

We have our Azure AD B2C custom policy that uses a utilities hosted as a Web App locked inside a VNET. We are not yet there in a position to validate, but curious to know whether it would work beforehand? Is it supported that Azure AD B2C custom policy when refers or make a call to an App service inside a VNET, would really work? If not, or yes, in either cases, what must be taken into consideration?

Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,559 questions
Azure Private Link
Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
526 questions
Azure Load Balancer
Azure Load Balancer
An Azure service that delivers high availability and network performance to applications.
461 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,057 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,956 questions
0 comments No comments
{count} votes

Accepted answer
  1. AmanpreetSingh-MSFT 56,701 Reputation points
    2022-01-27T09:38:12.013+00:00

    @Rishi Verma • Thank you for reaching out.

    Unfortunately, if the Web App can only be accessed via routing the request through VNet, you will not be able to call that web app/API via B2C. I assume that the B2C custom policy will make a REST call to the Web App via RESTful technical profile, in case of which the request is directly made via the internet and the API must be publicly accessible. You will have to secure the API by implementing authentication for API. You can then acquire the token via RESTful TP as mentioned in this XML snippet and pass that token in the authorization header to call the API.

    -----------------------------------------------------------------------------------------------------------

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.