Merge pull request #102539 from MicrosoftDocs/master

1/28 AM Publish

Author: huypub

.openpublishing.redirection.json

@@ -4,18 +4,18 @@
   items:
   - name: About Azure AD B2C
     expanded: true
-    href: active-directory-b2c-overview.md
+    href: overview.md
   - name: Technical and feature overview
     href: technical-overview.md
 - name: Quickstarts
   expanded: true
   items:
   - name: Set up sign-in - ASP.NET
-    href: active-directory-b2c-quickstarts-web-app.md
+    href: quickstart-web-app-dotnet.md
   - name: Set up sign-in - Desktop
-    href: active-directory-b2c-quickstarts-desktop-app.md
+    href: quickstart-native-app-desktop.md
   - name: Set up sign-in - Single page
-    href: active-directory-b2c-quickstarts-spa.md
+    href: quickstart-single-page-app.md
 - name: Tutorials
   items:
   - name: 1 - Create B2C tenant
@@ -31,45 +31,45 @@
   - name: Authenticate users
     items:
     - name: ASP.NET
-      href: active-directory-b2c-tutorials-web-app.md
+      href: tutorial-web-app-dotnet.md
     - name: Desktop
-      href: active-directory-b2c-tutorials-desktop-app.md
+      href: tutorial-desktop-app.md
     - name: Single page
-      href: active-directory-b2c-tutorials-spa.md
+      href: tutorial-single-page-app.md
   - name: Grant API access
     items:
     - name: ASP.NET
-      href: active-directory-b2c-tutorials-web-api.md
+      href: tutorial-web-api-dotnet.md
     - name: Desktop
-      href: active-directory-b2c-tutorials-desktop-app-webapi.md
+      href: tutorial-desktop-app-webapi.md
     - name: Single page
-      href: active-directory-b2c-tutorials-spa-webapi.md
+      href: tutorial-single-page-app-webapi.md
 - name: Samples
   href: code-samples.md
 - name: Concepts
   items:
   - name: Application types
-    href: active-directory-b2c-apps.md
+    href: application-types.md
   - name: Authentication protocols
     items:
       - name: OAuth2 protocol
-        href: active-directory-b2c-reference-protocols.md
+        href: protocols-overview.md
       - name: OpenID Connect protocol
-        href: active-directory-b2c-reference-oidc.md
+        href: openid-connect.md
       - name: Authorization Code grant flow
-        href: active-directory-b2c-reference-oauth-code.md
+        href: authorization-code-flow.md
       - name: Implicit flow
-        href: active-directory-b2c-reference-spa.md
+        href: implicit-flow-single-page-application.md
       - name: Tokens
-        href: active-directory-b2c-reference-tokens.md
+        href: tokens-overview.md
       - name: Request access token
-        href: active-directory-b2c-access-tokens.md
+        href: access-tokens.md
   - name: User flow and policy
     items:
     - name: User flows
-      href: active-directory-b2c-reference-policies.md
+      href: user-flow-overview.md
     - name: Custom policies
-      href: active-directory-b2c-overview-custom.md
+      href: custom-policy-overview.md
   - name: User accounts
     href: user-overview.md
 - name: How-to guides
@@ -86,9 +86,9 @@
     - name: Add a native client application
       href: add-native-application.md
     - name: iOS ObjC using App Auth
-      href: active-directory-b2c-devquickstarts-ios.md
+      href: signin-appauth-ios.md
     - name: Android using App Auth
-      href: active-directory-b2c-devquickstarts-android.md
+      href: signin-appauth-android.md
   - name: User flow
     items:
     - name: Create a flow
@@ -98,47 +98,48 @@
       - name: Resource owner password credentials
         href: configure-ropc.md
       - name: Set up self-serve password reset
-        href: active-directory-b2c-reference-sspr.md
+        href: user-flow-self-service-password-reset.md
     - name: UX customization
       items:
       - name: User interface customization
         href: customize-ui-overview.md
       - name: JavaScript and page layouts
         href: user-flow-javascript-overview.md
       - name: Customize language
-        href: active-directory-b2c-reference-language-customization.md
+        href: user-flow-language-customization.md
       - name: Password complexity
-        href: active-directory-b2c-reference-password-complexity.md
+        href: user-flow-password-complexity.md
       - name: Disable email verification
-        href: active-directory-b2c-reference-disable-ev.md
+        href: user-flow-disable-email-verification.md
       - name: Enable MFA
-        href: active-directory-b2c-reference-mfa.md
+        href: custom-policy-multi-factor-authentication.md
+        displayName: multi-factor auth
     - name: External identity providers
       items:
       - name: Amazon
-        href: active-directory-b2c-setup-amzn-app.md
+        href: identity-provider-amazon.md
       - name: Azure AD (Single-tenant)
-        href: active-directory-b2c-setup-oidc-azure-active-directory.md
+        href: identity-provider-azure-ad-single-tenant.md
       - name: Microsoft Account
-        href: active-directory-b2c-setup-msa-app.md
+        href: identity-provider-microsoft-account.md
       - name: Facebook
-        href: active-directory-b2c-setup-fb-app.md
+        href: identity-provider-facebook.md
       - name: GitHub
-        href: active-directory-b2c-setup-github-app.md
+        href: identity-provider-github.md
       - name: Google
-        href: active-directory-b2c-setup-goog-app.md
+        href: identity-provider-google.md
       - name: LinkedIn
-        href: active-directory-b2c-setup-li-app.md
+        href: identity-provider-linkedin.md
       - name: QQ
-        href: active-directory-b2c-setup-qq-app.md
+        href: identity-provider-qq.md
       - name: Twitter
-        href: active-directory-b2c-setup-twitter-app.md
+        href: identity-provider-twitter.md
       - name: WeChat
-        href: active-directory-b2c-setup-wechat-app.md
+        href: identity-provider-wechat.md
       - name: Weibo
-        href: active-directory-b2c-setup-weibo-app.md
+        href: identity-provider-weibo.md
       - name: Generic identity provider
-        href: active-directory-b2c-setup-oidc-idp.md
+        href: identity-provider-generic-openid-connect.md
     - name: Tokens and session management
       items:
       - name: Configure tokens
@@ -148,32 +149,36 @@
     - name: Configure age gating
       href: basic-age-gating.md
     - name: Define custom attributes
-      href: active-directory-b2c-reference-custom-attr.md
+      href: user-flow-custom-attributes.md
     - name: Pass through external IdP token
       href: idp-pass-through-user-flow.md
   - name: Custom policy
     items:
     - name: Create a policy
       items:
       - name: Get started with custom policies
-        href: active-directory-b2c-get-started-custom.md
+        href: custom-policy-get-started.md
       - name: Resource owner password credentials
         href: ropc-custom.md
+        displayName: ropc
       - name: Enable keep me signed in
-        href: active-directory-b2c-reference-kmsi-custom.md
+        href: custom-policy-keep-me-signed-in.md
+        displayName: kmsi
       - name: Password change
-        href: active-directory-b2c-reference-password-change-custom.md
+        href: custom-policy-password-change.md
       - name: Phone sign-up & sign-in
         href: phone-authentication.md
         displayName: otp, passwordless, phone number
     - name: UX customization
       items:
       - name: Configure user input
-        href: active-directory-b2c-configure-signup-self-asserted-custom.md
+        href: custom-policy-configure-user-input.md
+        displayName: ui, ux
       - name: Customize the UI
-        href: active-directory-b2c-ui-customization-custom.md
+        href: custom-policy-ui-customization.md
+        displayName: ux, input, cors, html, css
       - name: Customize the UI dynamically
-        href: active-directory-b2c-ui-customization-custom-dynamic.md
+        href: custom-policy-ui-customization-dynamic.md
       - name: Custom email
         href: custom-email.md
         displayName: verification
@@ -182,37 +187,37 @@
       - name: Enable JavaScript
         href: javascript-samples.md
       - name: Password complexity
-        href: active-directory-b2c-reference-password-complexity-custom.md
+        href: custom-policy-password-complexity.md
     - name: External identity providers
       items:
       - name: OIDC/OAuth providers
         items:
         - name: Amazon
-          href: setup-amazon-custom.md
+          href: identity-provider-amazon-custom.md
         - name: Azure AD (Single-tenant)
-          href: active-directory-b2c-setup-aad-custom.md
+          href: identity-provider-azure-ad-single-tenant-custom.md
         - name: Azure AD (Multi-tenant)
-          href: active-directory-b2c-setup-commonaad-custom.md
+          href: identity-provider-azure-ad-multi-tenant-custom.md
         - name: Google
-          href: active-directory-b2c-custom-setup-goog-idp.md
+          href: identity-provider-google-custom.md
         - name: LinkedIn
-          href: active-directory-b2c-custom-setup-li-idp.md
+          href: identity-provider-linkedin-custom.md
         - name: Microsoft Account
-          href: active-directory-b2c-custom-setup-msa-idp.md
+          href: identity-provider-microsoft-account-custom.md
         - name: Twitter
-          href: active-directory-b2c-custom-setup-twitter-idp.md
+          href: identity-provider-twitter-custom.md
       - name: SAML providers
         items:
         - name: ADFS
-          href: active-directory-b2c-custom-setup-adfs2016-idp.md
+          href: identity-provider-adfs2016-custom.md
           displayName: SAML
         - name: Salesforce
-          href: active-directory-b2c-setup-sf-app-custom.md
+          href: identity-provider-salesforce-custom.md
           displayName: SAML
     - name: Tokens and session management
       items:
       - name: Customize tokens
-        href: active-directory-b2c-reference-manage-sso-and-token-configuration.md
+        href: custom-policy-manage-sso-and-token-config.md
     - name: Pass through external IdP token
       href: idp-pass-through-custom.md
     - name: Adaptive experience
@@ -222,29 +227,33 @@
     - name: Add your own business logic
       items:
       - name: Validate user input
-        href: active-directory-b2c-rest-api-validation-custom.md
+        href: custom-policy-rest-api-claims-validation.md
+        displayName: rest claims validation, validate
       - name: Obtain additional claims
-        href: active-directory-b2c-rest-api-step-custom.md
+        href: custom-policy-rest-api-claims-exchange.md
+        displayName: rest claims exchange
       - name: Add your own RESTful API
-        href: active-directory-b2c-custom-rest-api-netfw.md
+        href: rest-api-claims-exchange-dotnet.md
       - name: Secure RESTful APIs with basic auth
-        href: active-directory-b2c-custom-rest-api-netfw-secure-basic.md
+        href: secure-rest-api-dotnet-basic-auth.md
       - name: Secure RESTful APIs with certificate auth
-        href: active-directory-b2c-custom-rest-api-netfw-secure-cert.md
+        href: secure-rest-api-dotnet-certificate-auth.md
     - name: Define custom attributes
-      href: active-directory-b2c-create-custom-attributes-profile-edit-custom.md
+      href: custom-policy-custom-attributes.md
     - name: Troubleshooting
       items:
       - name: Collect logs using Application Insights
-        href: active-directory-b2c-troubleshoot-custom.md
+        href: troubleshoot-with-application-insights.md
+        displayName: troubleshooting
       - name: Policy validation
-        href: active-directory-b2c-guide-troubleshooting-custom.md
+        href: troubleshoot-custom-policies.md
+        displayName: troubleshooting
     - name: Usage analytics
-      href: active-directory-b2c-custom-guide-eventlogger-appins.md
+      href: analytics-with-application-insights.md
     - name: Reference
       items:
       - name: Trust Framework definition
-        href: active-directory-b2c-reference-trustframeworks-defined-ief-custom.md
+        href: custom-policy-trust-frameworks.md
       - name: TrustFrameworkPolicy
         href: trustframeworkpolicy.md
       - name: BuildingBlocks
@@ -322,7 +331,8 @@
           - name: Self-asserted
             href: self-asserted-technical-profile.md
           - name: SSO session
-            href: active-directory-b2c-reference-sso-custom.md
+            href: custom-policy-reference-sso.md
+            displayName: single sign-on
           - name: Validation
             href: validation-technical-profile.md
       - name: UserJourneys
@@ -339,11 +349,11 @@
   - name: Automation
     items:
     - name: Export usage report
-      href: active-directory-b2c-reference-usage-reporting-api.md
+      href: view-usage-reports.md
     - name: Account management
-      href: active-directory-b2c-devquickstarts-graph-dotnet.md
+      href: manage-user-accounts-graph-api.md
   - name: Audit logs
-    href: active-directory-b2c-reference-audit-logs.md
+    href: view-audit-logs.md
   - name: Manage users - Azure portal
     href: manage-users-portal.md
     displayName: create users, add users, delete users
@@ -361,35 +371,36 @@
   - name: Migration
     items:
     - name: Migrate users
-      href: active-directory-b2c-user-migration.md
+      href: user-migration.md
     - name: Migrate users with external identities
-      href: active-directory-b2c-social-migration.md
+      href: migrate-social-identities.md
 - name: Reference
   items:
   - name: Identity Experience Framework release notes
-    href: active-directory-b2c-developer-notes-custom.md
+    href: custom-policy-developer-notes.md
   - name: Code samples
     href: https://azure.microsoft.com/resources/samples/?service=active-directory-b2c
   - name: Cookie definitions
     href: cookie-definitions.md
   - name: Error codes
     href: error-codes.md
   - name: Region availability & data residency
-    href: active-directory-b2c-reference-tenant-type.md
+    href: data-residency.md
   - name: Enable billing
-    href: active-directory-b2c-how-to-enable-billing.md
+    href: billing.md
   - name: Threat management
-    href: active-directory-b2c-reference-threat-management.md
+    href: threat-management.md
+    displayName: security
   - name: Extensions app
-    href: active-directory-b2c-reference-extensions-app.md
+    href: extensions-app.md
   - name: User flow versions
     href: user-flow-versions.md
 - name: Resources
   items:
   - name: Azure Roadmap
     href: https://azure.microsoft.com/roadmap/?category=security-identity
   - name: Frequently asked questions
-    href: active-directory-b2c-faqs.md
+    href: faq.md
   - name: Getting help
     href: /azure/active-directory/develop/developer-support-help-options
   - name: Pricing
@@ -403,6 +414,7 @@
   - name: Stack Overflow
     href: https://stackoverflow.com/questions/tagged/azure-ad-b2c+identity-experience-framework
   - name: Support
-    href: active-directory-b2c-support.md
+    href: support-options.md
+    displayName: technical
   - name: Videos
-    href: https://azure.microsoft.com/documentation/videos/index/?services=active-directory-b2c
+    href: https://azure.microsoft.com/documentation/videos/index/?services=active-directory-b2c

articles/active-directory-b2c/TOC.yml

@@ -17,7 +17,7 @@ ms.subservice: B2C
 
 An *access token* contains claims that you can use in Azure Active Directory B2C (Azure AD B2C) to identify the granted permissions to your APIs. When calling a resource server, an access token must be present in the HTTP request. An access token is denoted as **access_token** in the responses from Azure AD B2C.
 
-This article shows you how to request an access token for a web application and web API. For more information about tokens in Azure AD B2C, see the [overview of tokens in Azure Active Directory B2C](active-directory-b2c-reference-tokens.md).
+This article shows you how to request an access token for a web application and web API. For more information about tokens in Azure AD B2C, see the [overview of tokens in Azure Active Directory B2C](tokens-overview.md).
 
 > [!NOTE]
 > **Web API chains (On-Behalf-Of) is not supported by Azure AD B2C.** - Many architectures include a web API that needs to call another downstream web API, both secured by Azure AD B2C. This scenario is common in clients that have a web API back end, which in turn calls a another service. This chained web API scenario can be supported by using the OAuth 2.0 JWT Bearer Credential grant, otherwise known as the On-Behalf-Of flow. However, the On-Behalf-Of flow is not currently implemented in Azure AD B2C.
@@ -48,7 +48,7 @@ scope=https%3A%2F%2Fcontoso.onmicrosoft.com%2Fapi%2Fread%20openid%20offline_acce
 If you request more scopes than what is granted for your client application, the call succeeds if at least one permission is granted. The **scp** claim in the resulting access token is populated with only the permissions that were successfully granted. The OpenID Connect standard specifies several special scope values. The following scopes represent the permission to access the user’s profile:
 
 - **openid** - Requests an ID token.
-- **offline_access** - Requests a refresh token using [Auth Code flows](active-directory-b2c-reference-oauth-code.md).
+- **offline_access** - Requests a refresh token using [Auth Code flows](authorization-code-flow.md).
 
 If the **response_type** parameter in an `/authorize` request includes `token`, the **scope** parameter must include at least one resource scope other than `openid` and `offline_access` that will be granted. Otherwise, the `/authorize` request fails.