Azure AD B2C Custom Policy Verify Code & Continue in same Action

Question

Azure AD B2C Custom Policy Verify Code & Continue in same Action

abhay.pai 26

I have a existing user flow which is working as expected with verify code and continue button action. Currently the issue is user has to click so many action buttons to login if MFA is enabled. So the expected user flow should skip or bypass the step of continue where verify action button will handle both validation of otp as well as continue user flow in single click. I am trying to combine step to verify code and continue button in one action. Any kind of help is appreciated and thanks in advance. Attaching image for better understanding too. Below is my code

<DisplayControls>
      <DisplayControl Id="emailVerificationControl" UserInterfaceControlType="VerificationControl">
        <DisplayClaims>
          <DisplayClaim ClaimTypeReferenceId="email" Required="true" />
          <DisplayClaim ClaimTypeReferenceId="verificationCode" ControlClaimType="VerificationCode" Required="true" />
        </DisplayClaims>
        <OutputClaims>
          <OutputClaim ClaimTypeReferenceId="email" />
        </OutputClaims>
        <Actions>
          <Action Id="SendCode">
            <ValidationClaimsExchange>
              <ValidationClaimsExchangeTechnicalProfile TechnicalProfileReferenceId="SelfAsserted-GenerateOtp" />
              <ValidationClaimsExchangeTechnicalProfile TechnicalProfileReferenceId="SendGridSendOtp" />
            </ValidationClaimsExchange>
          </Action>
          <Action Id="VerifyCode">
            <ValidationClaimsExchange>
              <ValidationClaimsExchangeTechnicalProfile TechnicalProfileReferenceId="SelfAsserted-VerifyOtp" />
            </ValidationClaimsExchange>
          </Action>
        </Actions>
      </DisplayControl>

<ClaimsProvider>
      <DisplayName>SelfAsserted-VerifyOtp</DisplayName>
      <TechnicalProfiles>
        <TechnicalProfile Id="SelfAsserted-VerifyOtp">
          <DisplayName>Verify one time password</DisplayName>
          <Protocol
            Name="Proprietary"
            Handler="Web.TPEngine.Providers.OneTimePasswordProtocolProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null"
          />
          <Metadata>
            <Item Key="Operation">VerifyCode</Item>
          </Metadata>
          <InputClaims>
            <InputClaim ClaimTypeReferenceId="email" PartnerClaimType="identifier" />
            <InputClaim ClaimTypeReferenceId="verificationCode" PartnerClaimType="otpToVerify" />
          </InputClaims>
        </TechnicalProfile>
      </TechnicalProfiles>
    </ClaimsProvider>

    <ClaimsProvider>
      <DisplayName>SelfAsserted-GenerateOtp</DisplayName>
      <TechnicalProfiles>
        <TechnicalProfile Id="SelfAsserted-GenerateOtp">
          <DisplayName>Generate one time password</DisplayName>
          <Protocol
            Name="Proprietary"
            Handler="Web.TPEngine.Providers.OneTimePasswordProtocolProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null"
          />
          <Metadata>
            <Item Key="Operation">GenerateCode</Item>
            <Item Key="CodeExpirationInSeconds">1200</Item>
            <Item Key="CodeLength">6</Item>
            <Item Key="CharacterSet">0-9</Item>
            <Item Key="ReuseSameCode">true</Item>
            <Item Key="NumRetryAttempts">5</Item>
          </Metadata>
          <InputClaims>
            <InputClaim ClaimTypeReferenceId="email" PartnerClaimType="identifier" />
          </InputClaims>
          <OutputClaims>
            <OutputClaim ClaimTypeReferenceId="otp" PartnerClaimType="otpGenerated" />
          </OutputClaims>
        </TechnicalProfile>
      </TechnicalProfiles>
    </ClaimsProvider>

Answer accepted by question author

1 additional answer

Your answer

Answer 1

AmanpreetSingh-MSFT 56,951 Moderator

Hi @abhay.pai • Thank you for reaching out.

Unfortunately, you cannot merge the Verify code and Continue buttons in one button using Custom Policy. You need to work with a front-end developer to use a custom HTML page for your signup/sign-in with JavaScript/CSS for this purpose.

You may consider using JavaScript MutationObserver to detect that the Continue button has been enabled, then automate the clicks with javascript

-----------------------------------------------------------------------------------------------------------

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Anonymous

2022-02-22T15:53:26.567+00:00

Hello @AmanpreetSingh-MSFT .

It happens that this is exactly what I was working on these days, and I could do this with JQuery (pretty much as you described it), and also using standard User flows (not custom policy). And it works.

But I have another question, that relates to this approach; Can I rely on the fact that the IDs of the injected elements will not change in time? I posted a dedicated question for this:
https://learn.microsoft.com/en-us/answers/questions/746105/azure-ad-b2c-custom-template-rely-on-injected-elem.html

Thanks,
Vasile
AmanpreetSingh-MSFT 56,951 Reputation points Moderator

2022-02-22T16:25:14.033+00:00

@Anonymous • Thank you for the confirmation. This is the only approach as this cannot be done by using the built-in user flows or custom policy. I will post an answer to the other question shortly.
@abhay.pai
abhay.pai 26 Reputation points

2022-02-23T00:25:51.963+00:00
Hello @AmanpreetSingh-MSFT & @Anonymous
Thanks for your valuable inputs here, much appreciated.

My question arises now,

is it really recommended approach, since i cannot find this anywhere in the samples or any kind of documentation.

Where can i find some sample code for the approach using JavaScript MutationObserver or via Jquery, this will really help me getting things started and reach my goal ?

Also, is there any way to auto detect or ajaxify the "verification code" in custom policy, similar to what we have Apple ID creation ?
AmanpreetSingh-MSFT 56,951 Reputation points Moderator

2022-02-23T04:51:47.117+00:00

@abhay.pai JavaScript is officially supported with B2C. So anything you cannot do directly via user flow or custom policy, you can use JavaScript for that purpose. There is no exact samples code available for this specific scenario but you can find other JavaScript samples here: https://learn.microsoft.com/en-us/azure/active-directory-b2c/javascript-and-page-layout?pivots=b2c-user-flow#javascript-samples . AFAIK, there is no way to auto-detect or Ajaxify the "verification code" in custom policy.

Answer 2

Dipen Yadav (GI-DE) 10

I have a different scenario . I need to enable Continue button only if email verfication is complete. Otherwise it should stay disabled . I have implemented custom policy.Pls help me with sample code

Share via

Azure AD B2C Custom Policy Verify Code & Continue in same Action

1 additional answer

Your answer