RBAC in web app registered under Azure B2C Tenant

Question

RBAC in web app registered under Azure B2C Tenant

Anonymous

I have a web app and web api (both in .net core) registered under Azure B2C Tenant. I have configured user flow for authenticating the users of web app using gmail as the identity provider. I have created app roles in the manifest of web app and assigned to users of this app. How can I get these app roles assigned to users once they log into the web app so that I can include it in the access token for further authorization?

Anonymous

2022-05-04T19:06:54.807+00:00

Hi @Anonymous , thanks for the question. To understand correctly, right now if a new user signs up they don't have a role? And you want to automatically assign a role to users on sign up? Have you reviewed this document? Please let me know what questions or clarifications you have and I can help you further.

Best,
James
Anonymous

2022-05-05T08:05:25.443+00:00

Thanks @James Hamil , for your quick response.

Once a user signs up, I assign him role manually. But the issue is once the same user logs in to the web application which is registered under Azure AD B2C tenant, how do I retrieve the role assigned to him for including in the JWT token to be used for further authorization? The token generated by Azure AD B2C after successful log in doesn't include the role assigned to him. How do I retrieve this role for including in the JWT token?
I just went through youtube video showing how to add role to tokens in Azure AD B2C. Please see the below link

https://www.youtube.com/watch?v=C9qN6QqnxQ8&ab_channel=SSWTV%7CVideosfordevelopers%2Cbydevelopers

Is it the only and recommended way of doing this? Please advise.
Anonymous

2022-05-09T23:35:06.79+00:00

Hi @Anonymous , sorry for the delay in response. have you looked into configuring tokens? You can edit what is returned with custom policies.

Your answer

Anonymous

2022-05-04T19:06:54.807+00:00

Hi @Anonymous , thanks for the question. To understand correctly, right now if a new user signs up they don't have a role? And you want to automatically assign a role to users on sign up? Have you reviewed this document? Please let me know what questions or clarifications you have and I can help you further.

Best,
James
Anonymous

2022-05-05T08:05:25.443+00:00

Thanks @James Hamil , for your quick response.

Once a user signs up, I assign him role manually. But the issue is once the same user logs in to the web application which is registered under Azure AD B2C tenant, how do I retrieve the role assigned to him for including in the JWT token to be used for further authorization? The token generated by Azure AD B2C after successful log in doesn't include the role assigned to him. How do I retrieve this role for including in the JWT token?
I just went through youtube video showing how to add role to tokens in Azure AD B2C. Please see the below link

https://www.youtube.com/watch?v=C9qN6QqnxQ8&ab_channel=SSWTV%7CVideosfordevelopers%2Cbydevelopers

Is it the only and recommended way of doing this? Please advise.
Anonymous

2022-05-09T23:35:06.79+00:00

Hi @Anonymous , sorry for the delay in response. have you looked into configuring tokens? You can edit what is returned with custom policies.

Share via

RBAC in web app registered under Azure B2C Tenant

Your answer