This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 74%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
I am making a TODO app, and I have a list of Tasks, and a list of Users.
I add user_id to the Task, and when the User logs in, I only want them to see the Tasks assigned to them.
How do I do this with Azure AD B2C? This is not about authorities.
Do I need to keep two lists of users, one internal and one on Azure, and then make a mapping between them?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Hi @Al Mus ,
The 'oid' (object id) is the only claim that should be used to uniquely identify a user in an Azure AD tenant, as it cannot get reassigned.
There is a B2C sample here that shows how to assign tasks to B2C users by object ID and create a "to-do" list that only allows users to see their own tasks.
You would identify the task owner by the user's object ID and ensure that the object ID is added as an application claim in all of your policies.
// Controllers\TasksController.cs
public IEnumerable<Models.Task> Get()
{
string owner = ClaimsPrincipal.Current.FindFirst("http://schemas.microsoft.com/identity/claims/objectidentifier").Value;
IEnumerable<Models.Task> userTasks = db.Tasks.Where(t => t.owner == owner);
return userTasks;
}
There is another sample here that you can use for reference: https://github.com/Azure-Samples/active-directory-aspnetcore-webapp-openidconnect-v2/blob/master/4-WebApp-your-API/4-2-B2C/TodoListService/Controllers/TodoListController.cs
See also:
Mapping oid
External users, user_id, and object ID
Let me know if this is what you are looking for.
-
If the information helped you, please Accept the answer. This will help us and other community members as well.
@Marilee Turscak-MSFT , thanks for the answer.
In my user table, I'm also keeping additional information, such as availability, skills and similar.
I assume I cannot keep that information in Azure B2C.
Do I have to keep two lists of users with some kind of a mapping between a User and oid?
@Marilee Turscak-MSFT , when I create a user in Azure B2C, can I also give a custom property?
I want to assign one field that will be matched to my database