Michael Collins mfcollins3
mfcollins3
/ aad-userwriteusinglogonemail.xml
Last active
January 16, 2022 04:48
AAD-UserWriteUsingLogonEmail
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <TechnicalProfile Id="AAD-Common"> | |
| <DisplayName>Azure Active Directory</DisplayName> | |
| <Protocol Name="Proprietary" Handler="Web.TPEngine.Providers.AzureActiveDirectoryProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null" /> | |
| <CryptographicKeys> | |
| <Key Id="issuer_secret" StorageReferenceId="B2C_1A_TokenSigningKeyContainer" /> | |
| </CryptographicKeys> | |
| <!-- We need this here to suppress the SelfAsserted provider from invoking SSO on validation profiles. --> | |
| <IncludeInSso>false</IncludeInSso> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <ContentDefinition Id="api.localaccountsignup"> | |
| <LoadUri>~/tenant/templates/AzureBlue/selfAsserted.cshtml</LoadUri> | |
| <RecoveryUri>~/common/default_page_error.html</RecoveryUri> | |
| <DataUri>urn:com:microsoft:aad:b2c:elements:contract:selfasserted:2.1.7</DataUri> | |
| <Metadata> | |
| <Item Key="DisplayName">Local account sign up page</Item> | |
| </Metadata> | |
| </ContentDefinition> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <TechnicalProfile Id="LocalAccountSignUpWithLogonEmail"> | |
| <DisplayName>Email signup</DisplayName> | |
| <Protocol Name="Proprietary" Handler="Web.TPEngine.Providers.SelfAssertedAttributeProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null" /> | |
| <Metadata> | |
| <Item Key="IpAddressClaimReferenceId">IpAddress</Item> | |
| <Item Key="ContentDefinitionReferenceId">api.localaccountsignup</Item> | |
| </Metadata> | |
| <CryptographicKeys> | |
| <Key Id="issuer_secret" StorageReferenceId="B2C_1A_TokenSigningKeyContainer" /> | |
| </CryptographicKeys> |
mfcollins3
/ localauth-outputclaims.xml
Created
January 16, 2022 04:02
Output claims for performing a local login in Azure AD B2C
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <ClaimType Id="tenantId"> | |
| <DisplayName>User's Object's Tenant ID</DisplayName> | |
| <DataType>string</DataType> | |
| <DefaultPartnerClaimTypes> | |
| <Protocol Name="OAuth2" PartnerClaimType="tid" /> | |
| <Protocol Name="OpenIdConnect" PartnerClaimType="tid" /> | |
| <Protocol Name="SAML2" PartnerClaimType="http://schemas.microsoft.com/identity/claims/tenantid" /> | |
| </DefaultPartnerClaimTypes> | |
| <UserHelpText>Tenant identifier (ID) of the user object in Azure AD.</UserHelpText> | |
| </ClaimType> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <ClaimType Id="nca"> | |
| <DisplayName>nca</DisplayName> | |
| <DataType>string</DataType> | |
| <UserHelpText>Special parameter passed for local account authentication to login.microsoftonline.com.</UserHelpText> | |
| </ClaimType> |
mfcollins3
/ loginnoninteractive.xml
Created
January 16, 2022 03:35
login-NonInteractive technical profile
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <TechnicalProfile Id="login-NonInteractive"> | |
| <DisplayName>Local Account SignIn</DisplayName> | |
| <Protocol Name="OpenIdConnect" /> | |
| <Metadata> | |
| <Item Key="ProviderName">https://sts.windows.net/</Item> | |
| <Item Key="METADATA">https://login.microsoftonline.com/{tenant}/.well-known/openid-configuration</Item> | |
| <Item Key="authorization_endpoint">https://login.microsoftonline.com/{tenant}/oauth2/token</Item> | |
| <Item Key="response_types">id_token</Item> | |
| <Item Key="response_mode">query</Item> | |
| <Item Key="scope">email openid</Item> |
mfcollins3
/ localaccountsignin.xml
Created
January 16, 2022 02:01
api.localaccountsignin Content Definition
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <ContentDefinition Id="api.localaccountsignin"> | |
| <LoadUri>~/tenant/templates/AzureBlue/selfAsserted.cshtml</LoadUri> | |
| <RecoveryUri>~/common/default_page_error.html</RecoveryUri> | |
| <DataUri>urn:com:microsoft:aad:b2c:elements:contract:selfasserted:2.1.7</DataUri> | |
| <Metadata> | |
| <Item Key="DisplayName">Collect information from user page</Item> | |
| </Metadata> | |
| </ContentDefinition> |
mfcollins3
/ claim-schema.xml
Created
January 16, 2022 00:31
Claim schema definitions for SM-AAD technical profile
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <ClaimType Id="objectId"> | |
| <DisplayName>User's Object ID</DisplayName> | |
| <DataType>string</DataType> | |
| <DefaultPartnerClaimTypes> | |
| <Protocol Name="OAuth2" PartnerClaimType="oid" /> | |
| <Protocol Name="OpenIdConnect" PartnerClaimType="oid" /> | |
| <Protocol Name="SAML2" PartnerClaimType="http://schemas.microsoft.com/identity/claims/objectidentifier" /> | |
| </DefaultPartnerClaimTypes> | |
| <UserHelpText>Object identifier (ID) of the user object in Azure AD.</UserHelpText> | |
| </ClaimType> |
mfcollins3
/ smaad.xml
Created
January 16, 2022 00:14
SM-AAD Session Management Technical Profile for Azure AD B2C
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <TechnicalProfile Id="SM-AAD"> | |
| <DisplayName>Session Mananagement Provider</DisplayName> | |
| <Protocol Name="Proprietary" Handler="Web.TPEngine.SSO.DefaultSSOSessionProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null" /> | |
| <PersistedClaims> | |
| <PersistedClaim ClaimTypeReferenceId="objectId" /> | |
| <PersistedClaim ClaimTypeReferenceId="signInName" /> | |
| <PersistedClaim ClaimTypeReferenceId="authenticationSource" /> | |
| <PersistedClaim ClaimTypeReferenceId="identityProvider" /> | |
| <PersistedClaim ClaimTypeReferenceId="newUser" /> | |
| <PersistedClaim ClaimTypeReferenceId="executed-SelfAsserted-Input" /> |
mfcollins3
/ localaccountsignin.xml
Created
January 15, 2022 23:45
SelfAsserted-LocalAccountSignin-Email Technical Profile
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <TechnicalProfile Id="SelfAsserted-LocalAccountSignin-Email"> | |
| <DisplayName>Local Account Signin</DisplayName> | |
| <Protocol Name="Proprietary" Handler="Web.TPEngine.Providers.SelfAssertedAttributeProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null" /> | |
| <Metadata> | |
| <Item Key="SignUpTarget">SignUpWithLogonEmailExchange</Item> | |
| <Item Key="setting.operatingMode">Email</Item> | |
| <Item Key="ContentDefinitionReferenceId">api.localaccountsignin</Item> | |
| </Metadata> | |
| <IncludeInSso>false</IncludeInSso> | |
| <InputClaims> |