MicrosoftDocs
diff --git a/‎articles/active-directory-b2c/TOC.yml
Lines changed: 1 addition & 0 deletions b/‎articles/active-directory-b2c/TOC.yml
Lines changed: 1 addition & 0 deletions
diff --git a/‎articles/active-directory-b2c/date-transformations.md
Lines changed: 89 additions & 67 deletions b/‎articles/active-directory-b2c/date-transformations.md
Lines changed: 89 additions & 67 deletions
diff --git a/‎articles/active-directory-b2c/general-transformations.md
Lines changed: 13 additions & 9 deletions b/‎articles/active-directory-b2c/general-transformations.md
Lines changed: 13 additions & 9 deletions
@@ -76,6 +76,7 @@
         href: openid-connect.md
       - name: Authorization Code grant flow
         href: authorization-code-flow.md
+        displayName: pkce, Proof Key for Code Exchange
       - name: Implicit flow
         href: implicit-flow-single-page-application.md
       - name: Tokens
 
@@ -8,34 +8,34 @@ manager: CelesteDG
 ms.service: active-directory
 ms.workload: identity
 ms.topic: reference
-ms.date: 02/16/2020
+ms.date: 1/14/2022
 ms.author: kengaderdus
 ms.subservice: B2C
 ms.custom: "b2c-support"
 ---
 
 # Date claims transformations
 
-[!INCLUDE [active-directory-b2c-advanced-audience-warning](../../includes/active-directory-b2c-advanced-audience-warning.md)]
-
 This article provides examples for using the date claims transformations of the Identity Experience Framework  schema in Azure Active Directory B2C (Azure AD B2C). For more information, see [ClaimsTransformations](claimstransformations.md).
 
 ## AssertDateTimeIsGreaterThan
 
-Checks that one date and time claim (string data type) is later than a second date and time claim (string data type), and throws an exception.
+Asserts that one date is later than a second date. Determines whether the `rightOperand` is greater than the `leftOperand`. If yes, throws an exception.
 
 | Item | TransformationClaimType | Data Type | Notes |
 | ---- | ----------------------- | --------- | ----- |
 | InputClaim | leftOperand | string | First claim's type, which should be later than the second claim. |
 | InputClaim | rightOperand | string | Second claim's type, which should be earlier than the first claim. |
-| InputParameter | AssertIfEqualTo | boolean | Specifies whether this assertion should throw an error if the left operand is equal to the right operand. An error will be thrown if the left operand is equal to the right operand and the value is set to `true`. Possible values: `true` (default), or `false`. |
+| InputParameter | AssertIfEqualTo | boolean | Specifies whether this assertion should throw an error if the left operand is equal to the right operand. Possible values: `true` (default), or `false`. |
 | InputParameter | AssertIfRightOperandIsNotPresent | boolean | Specifies whether this assertion should pass if the right operand is missing. |
 | InputParameter | TreatAsEqualIfWithinMillseconds | int | Specifies the number of milliseconds to allow between the two date times to consider the times equal (for example, to account for clock skew). |
 
 The **AssertDateTimeIsGreaterThan** claims transformation is always executed from a [validation technical profile](validation-technical-profile.md) that is called by a [self-asserted technical profile](self-asserted-technical-profile.md). The **DateTimeGreaterThan** self-asserted technical profile metadata controls the error message that the technical profile presents to the user. The error messages can be [localized](localization-string-ids.md#claims-transformations-error-messages).
 
 ![AssertStringClaimsAreEqual execution](./media/date-transformations/assert-execution.png)
 
+### AssertDateTimeIsGreaterThan example
+
 The following example compares the `currentDateTime` claim with the `approvedDateTime` claim. An error is thrown if `currentDateTime` is later than `approvedDateTime`. The transformation treats values as equal if they are within 5 minutes (30000 milliseconds) difference. It won't throw an error if the values are equal because `AssertIfEqualTo` is set to `false`.
 
 ```xml
@@ -56,44 +56,60 @@ The following example compares the `currentDateTime` claim with the `approvedDat
 > In the example above, if you remove the `AssertIfEqualTo` input parameter, and the `currentDateTime` is equal to`approvedDateTime`, an error will be thrown. The `AssertIfEqualTo` default value is `true`.
 >
 
-The `login-NonInteractive` validation technical profile calls the `AssertApprovedDateTimeLaterThanCurrentDateTime` claims transformation.
+- Input claims:
+    - **leftOperand**: 2022-01-01T15:00:00
+    - **rightOperand**: 2022-01-22T15:00:00
+- Input parameters:
+    - **AssertIfEqualTo**: false
+    - **AssertIfRightOperandIsNotPresent**: true
+    - **TreatAsEqualIfWithinMillseconds**: 300000 (30 seconds)
+- Result: Error thrown
+
+### Call the claims transformation
+
+The following `Example-AssertDates` validation technical profile calls the `AssertApprovedDateTimeLaterThanCurrentDateTime` claims transformation.
+
 ```xml
-<TechnicalProfile Id="login-NonInteractive">
-  ...
+<TechnicalProfile Id="Example-AssertDates">
+  <DisplayName>Unit test</DisplayName>
+  <Protocol Name="Proprietary" Handler="Web.TPEngine.Providers.ClaimsTransformationProtocolProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null" />
+  <OutputClaims>
+    <OutputClaim ClaimTypeReferenceId="ComparisonResult" DefaultValue="false" />
+  </OutputClaims>
   <OutputClaimsTransformations>
-    <OutputClaimsTransformation ReferenceId="AssertApprovedDateTimeLaterThanCurrentDateTime" />
+    <OutputClaimsTransformation ReferenceId="AssertDates" />
   </OutputClaimsTransformations>
+  <UseTechnicalProfileForSessionManagement ReferenceId="SM-Noop" />
 </TechnicalProfile>
 ```
 
-The self-asserted technical profile calls the validation **login-NonInteractive** technical profile.
+The self-asserted technical profile calls the validation `Example-AssertDates` technical profile.
 
 ```xml
-<TechnicalProfile Id="SelfAsserted-LocalAccountSignin-Email">
+<TechnicalProfile Id="SelfAsserted-AssertDateTimeIsGreaterThan">
+  <DisplayName>User ID signup</DisplayName>
+  <Protocol Name="Proprietary" Handler="Web.TPEngine.Providers.SelfAssertedAttributeProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null" />
   <Metadata>
-    <Item Key="DateTimeGreaterThan">Custom error message if the provided left operand is greater than the right operand.</Item>
+    <Item Key="ContentDefinitionReferenceId">api.selfasserted</Item>
+    <Item Key="DateTimeGreaterThan">Custom error message if the provided right operand is greater than the right operand.</Item>
   </Metadata>
+  ...
   <ValidationTechnicalProfiles>
-    <ValidationTechnicalProfile ReferenceId="login-NonInteractive" />
+    <ValidationTechnicalProfile ReferenceId="ClaimsTransformation-AssertDateTimeIsGreaterThan" />
   </ValidationTechnicalProfiles>
 </TechnicalProfile>
 ```
 
-### Example
-
-- Input claims:
-    - **leftOperand**: 2020-03-01T15:00:00.0000000Z
-    - **rightOperand**: 2020-03-01T14:00:00.0000000Z
-- Result: Error thrown
-
 ## ConvertDateToDateTimeClaim
 
-Converts a **Date** ClaimType to a **DateTime** ClaimType. The claims transformation converts the time format and adds 12:00:00 AM to the date.
+Converts a `Date` claim type to a `DateTime` claim type. The claims transformation converts the time format and adds 12:00:00 AM to the date.
 
 | Item | TransformationClaimType | Data Type | Notes |
 | ---- | ----------------------- | --------- | ----- |
-| InputClaim | inputClaim | date | The ClaimType to be converted. |
-| OutputClaim | outputClaim | dateTime | The ClaimType that is produced after this ClaimsTransformation has been invoked. |
+| InputClaim | inputClaim | date | The claim type to be converted. |
+| OutputClaim | outputClaim | dateTime | The claim type that is produced after this claims transformation has been invoked. |
+
+### ConvertDateToDateTimeClaim example
 
 The following example demonstrates the conversion of the claim `dateOfBirth` (date data type) to another claim `dateOfBirthWithTime` (dateTime data type).
 
@@ -108,21 +124,21 @@ The following example demonstrates the conversion of the claim `dateOfBirth` (da
   </ClaimsTransformation>
 ```
 
-### Example
-
 - Input claims:
-    - **inputClaim**: 2020-15-03
+    - **inputClaim**: 2022-01-03
 - Output claims:
-    - **outputClaim**: 2020-15-03T00:00:00.0000000Z
+    - **outputClaim**: 2022-01-03T00:00:00.0000000Z
 
 ## ConvertDateTimeToDateClaim
 
-Converts a **DateTime** ClaimType to a **Date** ClaimType. The claims transformation removes the time format from the date.
+Converts a `DateTime` claim type to a `Date` claim type. The claims transformation removes the time format from the date.
 
 | Item | TransformationClaimType | Data Type | Notes |
 | ---- | ----------------------- | --------- | ----- |
-| InputClaim | inputClaim | dateTime | The ClaimType to be converted. |
-| OutputClaim | outputClaim | date | The ClaimType that is produced after this ClaimsTransformation has been invoked. |
+| InputClaim | inputClaim | dateTime | The claim type to be converted. |
+| OutputClaim | outputClaim | date | The claim type that is produced after this claims transformation has been invoked. |
+
+### ConvertDateTimeToDateClaim example
 
 The following example demonstrates the conversion of the claim `systemDateTime` (dateTime data type) to another claim `systemDate` (date data type).
 
@@ -137,54 +153,35 @@ The following example demonstrates the conversion of the claim `systemDateTime`
 </ClaimsTransformation>
 ```
 
-### Example
-
 - Input claims:
-  - **inputClaim**: 2020-15-03T11:34:22.0000000Z
+  - **inputClaim**: 2022-01-03T11:34:22.0000000Z
 - Output claims:
-  - **outputClaim**: 2020-15-03
-
-## GetCurrentDateTime
-
-Get the current UTC date and time and add the value to a ClaimType.
-
-| Item | TransformationClaimType | Data Type | Notes |
-| ---- | ----------------------- | --------- | ----- |
-| OutputClaim | currentDateTime | dateTime | The ClaimType that is produced after this ClaimsTransformation has been invoked. |
-
-```xml
-<ClaimsTransformation Id="GetSystemDateTime" TransformationMethod="GetCurrentDateTime">
-  <OutputClaims>
-    <OutputClaim ClaimTypeReferenceId="systemDateTime" TransformationClaimType="currentDateTime" />
-  </OutputClaims>
-</ClaimsTransformation>
-```
-
-### Example
-
-* Output claims:
-    * **currentDateTime**: 2020-15-03T11:40:35.0000000Z
+  - **outputClaim**: 2022-01-03
 
 ## DateTimeComparison
 
-Determine whether one dateTime is later, earlier, or equal to another. The result is a new boolean ClaimType boolean with a value of `true` or `false`.
+Compares two dates and determines whether the first date is later, earlier, or equal to another. The result is a new Boolean claim with a value of `true` or `false`.
 
 | Item | TransformationClaimType | Data Type | Notes |
 | ---- | ----------------------- | --------- | ----- |
-| InputClaim | firstDateTime | dateTime | The first dateTime to compare whether it is earlier or later than the second dateTime. Null value throws an exception. |
-| InputClaim | secondDateTime | dateTime | The second dateTime to compare whether it is earlier or later than the first dateTime. Null value is treated as the current datetTime. |
+| InputClaim | firstDateTime | dateTime | The first date to compare whether it's later, earlier, or equal to the second date. Null value throws an exception. |
+| InputClaim | secondDateTime | dateTime | The second date to compare. Null value is treated as the current datetTime. |
+| InputParameter | timeSpanInSeconds | int | Timespan to add to the first date. Possible values: range from negative -2,147,483,648 through positive 2,147,483,647.  |
 | InputParameter | operator | string | One of following values: same, later than, or earlier than. |
-| InputParameter | timeSpanInSeconds | int | Add the timespan to the first datetime. |
-| OutputClaim | result | boolean | The ClaimType that is produced after this ClaimsTransformation has been invoked. |
+| OutputClaim | result | boolean | The claim that is produced after this claims transformation has been invoked. |
+
+Use this claims transformation to determine if first date plus the timespan parameter is later, earlier, or equal to another. For example, you may store the last time a user accepted your terms of services (TOS). After three months, you can ask the user to access the TOS again.
+To run the claim transformation, you first need to get the current date and also the last time user accepts the TOS.
+
+### DateTimeComparison example
 
-Use this claims transformation to determine if two ClaimTypes are  equal, later, or earlier than each other. For example, you may store the last time a user accepted your terms of services (TOS). After 3 months, you can ask the user to access the TOS again.
-To run the claim transformation, you first need to get the current dateTime and also the last time user accepts the TOS.
+The following example shows that the first date (2022-01-01T00:00:00) plus 90 days is later than the second date (2022-03-16T00:00:00).
 
 ```xml
 <ClaimsTransformation Id="CompareLastTOSAcceptedWithCurrentDateTime" TransformationMethod="DateTimeComparison">
   <InputClaims>
-    <InputClaim ClaimTypeReferenceId="currentDateTime" TransformationClaimType="firstDateTime" />
     <InputClaim ClaimTypeReferenceId="extension_LastTOSAccepted" TransformationClaimType="secondDateTime" />
+    <InputClaim ClaimTypeReferenceId="currentDateTime" TransformationClaimType="firstDateTime" />
   </InputClaims>
   <InputParameters>
     <InputParameter Id="operator" DataType="string" Value="later than" />
@@ -196,13 +193,38 @@ To run the claim transformation, you first need to get the current dateTime and
 </ClaimsTransformation>
 ```
 
-### Example
-
 - Input claims:
-    - **firstDateTime**: 2020-01-01T00:00:00.100000Z
-    - **secondDateTime**: 2020-04-01T00:00:00.100000Z
+    - **firstDateTime**: 2022-01-01T00:00:00.100000Z
+    - **secondDateTime**: 2022-03-16T00:00:00.100000Z
 - Input parameters:
     - **operator**: later than
     - **timeSpanInSeconds**: 7776000 (90 days)
 - Output claims:
     - **result**: true
+  
+## GetCurrentDateTime
+
+Get the current UTC date and time and add the value to a claim type.
+
+| Item | TransformationClaimType | Data Type | Notes |
+| ---- | ----------------------- | --------- | ----- |
+| OutputClaim | currentDateTime | dateTime | The claim type that is produced after this claims transformation has been invoked. |
+
+### GetCurrentDateTime example
+
+The following example shows how to get the current data and time:
+
+```xml
+<ClaimsTransformation Id="GetSystemDateTime" TransformationMethod="GetCurrentDateTime">
+  <OutputClaims>
+    <OutputClaim ClaimTypeReferenceId="systemDateTime" TransformationClaimType="currentDateTime" />
+  </OutputClaims>
+</ClaimsTransformation>
+```
+
+* Output claims:
+    * **currentDateTime**: 2022-01-14T11:40:35.0000000Z
+
+## Next steps
+
+- Find more [claims transformation samples](https://github.com/azure-ad-b2c/unit-tests/tree/main/claims-transformation) on the Azure AD B2C community GitHub repo
@@ -9,7 +9,7 @@ manager: CelesteDG
 ms.service: active-directory
 ms.workload: identity
 ms.topic: reference
-ms.date: 02/03/2020
+ms.date: 01/14/2022
 ms.author: kengaderdus
 ms.subservice: B2C
 ---
@@ -18,16 +18,16 @@ ms.subservice: B2C
 
 [!INCLUDE [active-directory-b2c-advanced-audience-warning](../../includes/active-directory-b2c-advanced-audience-warning.md)]
 
-This article provides examples for using general claims transformations of the Identity Experience Framework schema in Azure Active Directory B2C (Azure AD B2C). For more information, see [ClaimsTransformations](claimstransformations.md).
+This article provides examples for using general claims transformations of the Identity Experience Framework schema in Azure Active Directory B2C (Azure AD B2C). For more information, see [claims transformations](claimstransformations.md).
 
 ## CopyClaim
 
 Copy value of a claim to another. Both claims must be from the same type.
 
 | Item | TransformationClaimType | Data Type | Notes |
 | ---- | ----------------------- | --------- | ----- |
-| InputClaim | inputClaim | string, int | The claim type which is to be copied. |
-| OutputClaim | outputClaim | string, int | The ClaimType that is produced after this ClaimsTransformation has been invoked. |
+| InputClaim | inputClaim | string, int | The claim type, which is to be copied. |
+| OutputClaim | outputClaim | string, int | The claim that is produced after this claims transformation has been invoked. |
 
 Use this claims transformation to copy a value from a string or numeric claim, to another claim. The following example copies the externalEmail claim value to email claim.
 
@@ -42,7 +42,7 @@ Use this claims transformation to copy a value from a string or numeric claim, t
 </ClaimsTransformation>
 ```
 
-### Example
+### CopyClaim example
 
 - Input claims:
     - **inputClaim**: [email protected]
@@ -56,7 +56,7 @@ Checks if the **inputClaim** exists or not and sets **outputClaim** to true or f
 | Item | TransformationClaimType | Data Type | Notes |
 | ---- | ----------------------- | --------- | ----- |
 | InputClaim | inputClaim |Any | The input claim whose existence needs to be verified. |
-| OutputClaim | outputClaim | boolean | The ClaimType that is produced after this ClaimsTransformation has been invoked. |
+| OutputClaim | outputClaim | boolean | The claim that is produced after this claims transformation has been invoked. |
 
 Use this claims transformation to check if a claim exists or contains any value. The return value is a boolean that indicates whether the claim exists. Following example checks if the email address exists.
 
@@ -71,7 +71,7 @@ Use this claims transformation to check if a claim exists or contains any value.
 </ClaimsTransformation>
 ```
 
-### Example
+### DoesClaimExist example
 
 - Input claims:
   - **inputClaim**: [email protected]
@@ -87,7 +87,7 @@ Hash the provided plain text using the salt and a secret. The hashing algorithm
 | InputClaim | plaintext | string | The input claim to be encrypted |
 | InputClaim | salt | string | The salt parameter. You can create a random value, using `CreateRandomString` claims transformation. |
 | InputParameter | randomizerSecret | string | Points to an existing Azure AD B2C **policy key**. To create a new policy key: In your Azure AD B2C tenant, under **Manage**, select **Identity Experience Framework**. Select **Policy keys** to view the keys that are available in your tenant. Select **Add**. For **Options**, select **Manual**. Provide a name (the prefix *B2C_1A_* might be added automatically.). In the **Secret** text box, enter any secret you want to use, such as 1234567890. For **Key usage**, select **Signature**. Select **Create**. |
-| OutputClaim | hash | string | The ClaimType that is produced after this claims transformation has been invoked. The claim configured in the `plaintext` inputClaim. |
+| OutputClaim | hash | string | The claim that is produced after this claims transformation has been invoked. The claim configured in the `plaintext` inputClaim. |
 
 ```xml
 <ClaimsTransformation Id="HashPasswordWithEmail" TransformationMethod="Hash">
@@ -104,11 +104,15 @@ Hash the provided plain text using the salt and a secret. The hashing algorithm
 </ClaimsTransformation>
 ```
 
-### Example
+### Hash example
 
 - Input claims:
   - **plaintext**: MyPass@word1
   - **salt**: 487624568
   - **randomizerSecret**: B2C_1A_AccountTransformSecret
 - Output claims:
   - **outputClaim**: CdMNb/KTEfsWzh9MR1kQGRZCKjuxGMWhA5YQNihzV6U=
+
+## Next steps
+
+- Find more [claims transformation samples](https://github.com/azure-ad-b2c/unit-tests/tree/main/claims-transformation) on the Azure AD B2C community GitHub repo