AADB2C: Send email invitation for new user to sign up
I would like the ability to trigger an email invitation be sent to new users for our web application that I want to authenticate with AADB2C. In our multi-tenant design, each tenant will be responsible for adding their own users to their tenant. I would like the admin of the tenant to be able to send an email invitation to the new user and then that user can complete the sign-up process.
We have a sample for this use case here: https://github.com/azure-ad-b2c/samples/tree/master/policies/invite
Let us know what you think and if this fits your use case.
This is a key feature of our application. To switch to B2C we would need this ability.
Wow, I cannot believe that this real world scenario is not built into B2C given that every piece of the puzzle exists and woks in B2C right now. My Need: I want to send an invitation to Sign Up. It would be like a Sign-Up-By-Policy-ID function. The critical non obvious detail is this... When we create an invitation to a Guest right now we get back the user guid ID – we then use this user id to set their permissions and app access so that they are fully provisioned when we send the invitation. I need the same feature for Sign-Up users. When I send the Sign-Up invitation I want the userID so I can finish the provision. If they never sign up and do not complete the account validation I am fine with that. The point is I can use the invitation to create a guid user id reservation to complete the onboarding in the AD B2C repo.
Mike DePouw commented
Hello B2C Team - it has been a year since your last comment, any updates?
Jay Van der Zant commented
Webhook would be better. This request is an application concern, not a B2C concern. The application should listen for new-user events and act accordingly, i.e. send out welcome emails.
Lars Kemmann commented
Can't you just port the AAD B2B invite & redemption logic over? That solves the multitenancy problem so elegantly!
Any chance of this happening? We would like to have our client services team register users rather than leaving it all up to the user.
Any updates on this? We're developing a SaaS application with exactly the same user setup: several tenants managing their own users. We want to use AADB2C, but lack of this feature is a serious flaw from our pov.
A webhook would be perfect.
This could be implemented with webhooks and a set of default hooks like email, but I would also like to be able to do other stuff..
If there was at least a way to skip making users enter+verify their email addresses during sign up we could probably build the rest of it ourselves. Though obviously it would be way better if the whole flow was just built into the platform.
Exactly. However, somewhere along the line individual permissions will have to be added to the id_token. Basically, you have a tenant within a tenant condition and all the stuff that comes with it. Perhaps the graph API could handle it without creating your own db and doing claims transformation.