You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory-b2c/TOC.yml
+6-3Lines changed: 6 additions & 3 deletions
Original file line number
Diff line number
Diff line change
@@ -7,6 +7,7 @@
7
7
href: overview.md
8
8
- name: Technical and feature overview
9
9
href: technical-overview.md
10
+
displayName: Azure AD B2C architecture, SLA, Azure AD B2C high availability, Azure AD B2C SLA, HA
10
11
- name: Supported Azure AD features
11
12
href: supported-azure-ad-features.md
12
13
- name: What's new in docs?
@@ -81,7 +82,7 @@
81
82
href: custom-policy-overview.md
82
83
- name: API Connectors
83
84
href: api-connectors-overview.md
84
-
displayName: REST API, web API, API connectors
85
+
displayName: REST API, web API, API connectors, Dynamic data retrieval, external data sources, external identity data source, outbound webhooks, third-party integration
displayName: rest claims exchange, API connectors, Dynamic data retrieval, external data sources, external identity data source, outbound webhooks, third-party integration
403
404
- name: Secure an API connector
404
405
href: secure-rest-api.md
406
+
displayName: API connectors, Dynamic data retrieval, external data sources, external identity data source, outbound webhooks, third-party integration
405
407
- name: Troubleshooting
406
408
items:
407
409
- name: Collect logs using Application Insights
@@ -607,6 +609,7 @@
607
609
displayName: Page version
608
610
- name: Region availability & data residency
609
611
href: data-residency.md
612
+
displayName: SLA, Azure AD B2C high availability, Azure AD B2C SLA, high availability, HA
Azure Active Directory B2C (Azure AD B2C) enables identity developers to integrate an interaction with a RESTful API into their user flow using [API connectors](api-connectors-overview.md). At the end of this walkthrough, you'll be able to create an Azure AD B2C user flow that interacts with APIs to enrich tokens with information from external sources.
21
+
Azure Active Directory B2C (Azure AD B2C) enables identity developers to integrate an interaction with a RESTful API into their user flow using [API connectors](api-connectors-overview.md). It enables developers to dynamically retrieve data from external identity sources. At the end of this walkthrough, you'll be able to create an Azure AD B2C user flow that interacts with APIs to enrich tokens with information from external sources.
Copy file name to clipboardExpand all lines: articles/active-directory-b2c/api-connectors-overview.md
+7-7Lines changed: 7 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,11 +1,11 @@
1
1
---
2
2
title: About API connectors in Azure AD B2C
3
-
description: Use Azure Active Directory (Azure AD) API connectors to customize and extend your user flows by using REST APIs.
3
+
description: Use Azure Active Directory (Azure AD) API connectors to customize and extend your user flows by using REST APIs or outbound webhooks to external identity data sources.
4
4
services: active-directory-b2c
5
5
ms.service: active-directory
6
6
ms.subservice: B2C
7
7
ms.topic: how-to
8
-
ms.date: 07/05/2021
8
+
ms.date: 11/02/2021
9
9
10
10
ms.author: kengaderdus
11
11
author: kengaderdus
@@ -14,7 +14,7 @@ ms.custom: "it-pro"
14
14
zone_pivot_groups: b2c-policy-type
15
15
---
16
16
17
-
# Use API connectors to customize and extend sign-up user flows
17
+
# Use API connectors to customize and extend sign-up user flows with external identity data sources
As a developer or IT administrator, you can use API connectors to integrate your sign-up user flows with REST APIs to customize the sign-up experience and integrate with external systems. For example, with API connectors, you can:
26
26
27
27
-**Validate user input data**. Validate against malformed or invalid user data. For example, you can validate user-provided data against existing data in an external data store or list of permitted values. If invalid, you can ask a user to provide valid data or block the user from continuing the sign-up flow.
28
-
-**Verify user identity**. Use an identity verification service to add an extra level of security to account creation decisions.
28
+
-**Verify user identity**. Use an identity verification service or external identity data sources to add an extra level of security to account creation decisions.
29
29
-**Integrate with a custom approval workflow**. Connect to a custom approval system for managing and limiting account creation.
30
30
-**Augment tokens with attributes from external sources**. Enrich tokens with attributes about the user from sources external to Azure AD B2C such as cloud systems, custom user stores, custom permission systems, legacy identity services, and more.
31
31
-**Overwrite user attributes**. Reformat or assign a value to an attribute collected from the user. For example, if a user enters the first name in all lowercase or all uppercase letters, you can format the name with only the first letter capitalized.
@@ -74,9 +74,9 @@ The Identity Experience Framework, which underlies Azure Active Directory B2C (A
74
74
75
75
Using Azure AD B2C, you can add your own business logic to a user journey by calling your own RESTful service. The Identity Experience Framework can send and receive data from your RESTful service to exchange claims. For example, you can:
76
76
77
-
-**Validate user input data**. For example, you can verify that the email address provided by the user exists in your customer's database, and if not, present an error.
78
-
-**Process claims**. If a user enters their first name in all lowercase or all uppercase letters, your REST API can format the name with only the first letter capitalized and return it to Azure AD B2C.
79
-
-**Enrich user data by further integrating with corporate line-of-business applications**. Your RESTful service can receive the user's email address, query the customer's database, and return the user's loyalty number to Azure AD B2C. Then return claims can be stored in the user's Azure AD account, evaluated in the next orchestration steps, or included in the access token.
77
+
-**Use external identity data source to validate user input data**. For example, you can verify that the email address provided by the user exists in your customer's database, and if not, present an error. You can as well think of API connectors as a way of supporting outbound webhooks because the call is made when an event occurs e.g. a sign up.
78
+
-**Process claims**. If a user enters their first name in all lowercase or all uppercase letters, your REST API can format the name with only the first letter capitalized and return it to Azure AD B2C. However, when using a custom policy, [ClaimsTransformations](claimstransformations.md) is preferred over calling a RESTful API.
79
+
-**Dynamically enrich user data by further integrating with corporate line-of-business applications**. Your RESTful service can receive the user's email address, query the customer's database, and return the user's loyalty number to Azure AD B2C. Then return claims can be stored in the user's Azure AD account, evaluated in the next orchestration steps, or included in the access token.
80
80
-**Run custom business logic**. You can send push notifications, update corporate databases, run a user migration process, manage permissions, audit databases, and perform any other workflows.
81
81
82
82
Copy file name to clipboardExpand all lines: articles/active-directory-b2c/data-residency.md
+2-3Lines changed: 2 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,7 +1,7 @@
1
1
---
2
2
title: Region availability and data residency
3
3
titleSuffix: Azure AD B2C
4
-
description: Region availability, data residency, and information about Azure Active Directory B2C preview tenants.
4
+
description: Region availability, data residency, high availability, SLA, and information about Azure Active Directory B2C preview tenants.
5
5
services: active-directory-b2c
6
6
author: kengaderdus
7
7
manager: CelesteDG
@@ -29,8 +29,7 @@ Azure AD B2C is **generally available worldwide** with the option for **data res
29
29
30
30
## Region availability
31
31
32
-
Azure AD B2C is available worldwide via the Azure public cloud. You can see examples of this feature in both Azure's [Products Available By Region](https://azure.microsoft.com/regions/services/) page and the [Active Directory B2C pricing calculator](https://azure.microsoft.com/pricing/details/active-directory-b2c/).
33
-
32
+
Azure AD B2C is available worldwide via the Azure public cloud. You can see availability of this service in both Azure's [Products Available By Region](https://azure.microsoft.com/regions/services/) page and the [Active Directory B2C pricing calculator](https://azure.microsoft.com/pricing/details/active-directory-b2c/). Also, Azure AD B2C service is highly available. Learn more about [Service Level Agreement (SLA) for Azure Active Directory B2C](https://azure.microsoft.com/support/legal/sla/active-directory-b2c/v1_1).
34
33
## Data residency
35
34
36
35
Azure AD B2C stores user data in the United States, Europe, the Asia Pacific region, or Australia.
Copy file name to clipboardExpand all lines: articles/active-directory-b2c/extensions-app.md
+4-4Lines changed: 4 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -8,17 +8,17 @@ manager: CelesteDG
8
8
ms.service: active-directory
9
9
ms.workload: identity
10
10
ms.topic: reference
11
-
ms.date: 09/06/2017
11
+
ms.date: 11/02/2021
12
12
ms.author: kengaderdus
13
13
ms.subservice: B2C
14
14
---
15
15
16
-
# Azure AD B2C: Extensions app
16
+
# Azure AD B2C: Extensions app
17
17
18
-
When an Azure AD B2C directory is created, an app called `b2c-extensions-app. Do not modify. Used by AADB2C for storing user data.`is automatically created inside the new directory. This app, referred to as the **b2c-extensions-app**, is visible in *App registrations*. It is used by the Azure AD B2C service to store information about users and custom attributes. If the app is deleted, Azure AD B2C will not function correctly and your production environment will be affected.
18
+
When an Azure AD B2C directory is created, an app called **b2c-extensions-app**is automatically created inside the new directory. This app is visible in *App registrations*. It is used by the Azure AD B2C service to store information about users and custom attributes. If the app is deleted, Azure AD B2C will not function correctly and your production environment will be affected.
19
19
20
20
> [!IMPORTANT]
21
-
> Do not delete the b2c-extensions-app unless you are planning to immediately delete your tenant. If the app remains deleted for more than 30 days, user information will be permanently lost.
21
+
> Do not delete the **b2c-extensions-app** unless you are planning to immediately delete your tenant. If the app remains deleted for more than 30 days, user information will be permanently lost.
Copy file name to clipboardExpand all lines: articles/active-directory-b2c/technical-overview.md
+5-5Lines changed: 5 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,6 +1,6 @@
1
1
---
2
2
title: Technical and feature overview - Azure Active Directory B2C
3
-
description: An in-depth introduction to the features and technologies in Azure Active Directory B2C.
3
+
description: An in-depth introduction to the features and technologies in Azure Active Directory B2C. Azure Active Directory B2C has high availability globally.
4
4
services: active-directory-b2c
5
5
author: kengaderdus
6
6
manager: CelesteDG
@@ -157,9 +157,9 @@ You can customize the email to users that sign up to use your applications. By u
157
157
*[Custom email verification with Mailjet](custom-email-mailjet.md)
158
158
*[Custom email verification with SendGrid](custom-email-sendgrid.md)
159
159
160
-
## Add your own business logic
160
+
## Add your own business logic and call RESTful API
161
161
162
-
If you choose to use custom policies, you can integrate with a RESTful API in a user journey to add your own business logic to the journey. For example, Azure AD B2C can exchange data with a RESTful service to:
162
+
You can integrate with a RESTful API in both user flows and custom policies. The difference is, in user flows, you make calls at specified places, whereas in custom policies, you add your own business logic to the journey. This feature allows you to retrieve and use data from external identity sources. Azure AD B2C can exchange data with a RESTful service to:
163
163
164
164
* Display custom user-friendly error messages.
165
165
* Validate user input to prevent malformed data from persisting in your user directory. For example, you can modify the data entered by the user, such as capitalizing their first name if they entered it in all lowercase.
@@ -297,9 +297,9 @@ By integrating Azure Application Insights into Azure AD B2C custom policies, you
297
297
For more information, see [Track user behavior in Azure Active Directory B2C using Application Insights](analytics-with-application-insights.md).
298
298
299
299
## Region availability and data residency
300
-
Azure AD B2C service is generally available worldwide, for availability, with the option for data residency in regions as specified in [Products available by region](https://azure.microsoft.com/regions/services/). Data residency is determined by the country/region you select when you [create your tenant](tutorial-create-tenant.md).
300
+
Azure AD B2C service is generally available worldwide with the option for data residency in regions as specified in [Products available by region](https://azure.microsoft.com/regions/services/). Data residency is determined by the country/region you select when you [create your tenant](tutorial-create-tenant.md).
301
301
302
-
Learn more about [Azure Active Directory B2C service Region availability & data residency](data-residency.md).
302
+
Learn more about [Azure Active Directory B2C service Region availability & data residency](data-residency.md) and [Service Level Agreement (SLA) for Azure Active Directory B2C](https://azure.microsoft.com/support/legal/sla/active-directory-b2c/v1_1).
0 commit comments