Add an extra policy - edit profile

Author: bgavrilMS

1-WebApp-OIDC/1-5-B2C/README.md

@@ -111,8 +111,10 @@ If your web site needs to be accessed from users using iOS 12, you probably want
 #### Where is MSAL?
 This sample does NOT use MSAL - it uses the built-in ASP.NET Core middlerware. MSAL is used for fetching access  for accessing protected APIs (not shown here), as well as ID tokens. For logging-in purposes, it is sufficient to obtain an ID Token, and the middlerware is capable of doing this on its own.
 
+#### Where is the Account controller?
 The `AccountController.cs` used in this sample is part of the built-in .NET Core authentication controllers found in the NuGet package `Microsoft.AspNetCore.Authentication.AzureADB2C.UI`, and you can find its implementation [here](https://github.com/aspnet/AspNetCore/blob/master/src/Azure/AzureAD/Authentication.AzureADB2C.UI/src/Areas/AzureADB2C/Controllers/AccountController.cs). If you want to customize the **Sign-in**, **Sign-up** or **Sign-out** actions, you are encouraged to create your own controller.
 
+#### B2C middlerware
 This sample shows how to use the OpenID Connect ASP.NET Core middleware to sign in users from a single Azure AD B2C tenant. The middleware is initialized in the `Startup.cs` file by passing the default authentication scheme and `AzureADB2COptions.cs` options. The options are read from the `appsettings.json` file. The middleware takes care of:
 
 - Requesting OpenID Connect sign-in using the policy from the `appsettings.json` file.
@@ -146,6 +148,10 @@ To understand more about Azure AD B2C see:
 - [Azure AD B2C documentation](https://docs.microsoft.com/en-us/azure/active-directory-b2c/)
 - [Azure AD B2C sign-in/sign-up user flow](https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-reference-policies)
 
+To understand more about ASP.NET Core and Azure identity integration
+
+- [ASP.NET Core Azure AD samples](https://github.com/aspnet/AspNetCore/tree/master/src/Azure/AzureAD/samples)
+
 To understand more about token validation, see:
 
 - [Validating tokens](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/wiki/ValidatingTokens)

1-WebApp-OIDC/1-5-B2C/Views/Shared/_LoginPartial.cshtml

@@ -1,14 +1,21 @@
 @using System.Security.Principal
 @if (User.Identity.IsAuthenticated)
 {
-	<ul class="nav navbar-nav navbar-right">
-		<li class="navbar-text">Hello @User.Identity.Name</li>
-		<li class="navbar-btn">
-			<form method="get" asp-area="AzureADB2C" asp-controller="Account" asp-action="SignOut">
-				<button type="submit" class="btn btn-primary">Sign Out</button>
-			</form>
-		</li>
-	</ul>
+    <ul class="nav navbar-nav navbar-right">
+        <li class="navbar-text">Hello @User.Identity.Name</li>
+        <!-- The Account controller is not defined in this project. Instead, it is part of Authentication.AzureADB2C.UI nuget pagacke and 
+            it defines some well known actions such as SignIn, SignOut and EditProfile-->
+        <li class="navbar-btn">
+            <form method="get" asp-area="AzureADB2C" asp-controller="Account" asp-action="EditProfile">
+                <button type="submit" class="btn btn-primary" style="margin-right:5px">Edit Profile</button>
+            </form>
+        </li>
+        <li class="navbar-btn">
+            <form method="get" asp-area="AzureADB2C" asp-controller="Account" asp-action="SignOut">
+                <button type="submit" class="btn btn-primary">Sign Out</button>
+            </form>
+        </li>
+    </ul>
 }
 else
 {

1-WebApp-OIDC/1-5-B2C/appsettings.json

@@ -4,9 +4,9 @@
     "ClientId": "90c0fe63-bcf2-44d5-8fb7-b8bbc0b29dc6",
     "Domain": "fabrikamb2c.onmicrosoft.com",
     "SignedOutCallbackPath": "/signout/B2C_1_susi",
-    "SignUpSignInPolicyId": "B2C_1_susi",
+    "SignUpSignInPolicyId": "b2c_1_susi",
+    "EditProfilePolicyId": "b2c_1_edit_profile" // Optional profile editing policy
     //"CallbackPath": "/signin/B2C_1_sign_up_in"  // defaults to /signin-oidc
-
   },
   "Logging": {
     "LogLevel": {