Add support to Azure AD B2C for the on-behalf-of flow.
In order for a web API to call another downstream web API as the user, Azure AD B2C needs to support the OAuth on-behalf-of flow.
According to the following reference, this isn't supported in B2C: https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-apps#web-api-chains-on-behalf-of-flow
I also cannot find this feature on the Azure Roadmap.
This is indeed one of the basic requirements of customer centric apps. Please consider prioritizing it.
we have to hack it now with iframes and whatnot. please please fix it
Leo Davidson commented
Any news on this? It is one factor in our decision to use B2C or some other Idp.
This feature is instrumental to customer centric use cases. Please support this asap.
We would find this support exceedingly useful. Our solution architects are increasingly designing systems with web API chains. On behalf of flow would help keep B2C a user/customer centric access control model.
Pahne, Andy (external) commented
I was kind of surprised to not find this in our POC project.