resolve b2c issue

Author: derisen

1-Authentication/1-sign-in/App/app.js

@@ -23,7 +23,7 @@ app.use(bodyParser.urlencoded({extended: false}));
 
 app.use(express.static(path.join(__dirname, './public')));
 
-app.use(session({secret: 'vancouver', resave: false, saveUninitialized: false}));
+app.use(session({secret: 'your-secret', resave: false, saveUninitialized: false}));
 
 app.use(router);
 

1-Authentication/1-sign-in/AppCreationScripts/sample.json

@@ -2,14 +2,14 @@
     "Sample": {
         "Title": "A Node.js & Express Web App authenticating users against Azure AD with MSAL Node",
         "Level": 100,
-        "Client": "Node.js Express Web App",
+        "Client": "Node.js & Express Web App",
         "RepositoryUrl": "ms-identity-javascript-nodejs-tutorial",
         "Endpoint": "AAD v2.0"
     },
     "AADApps": [
       {
         "Id": "webApp",
-        "Name": "ExpressWebApp-1",
+        "Name": "ExpressWebApp-c1s1",
         "Kind": "WebApp",
         "Audience": "AzureADMyOrg",
         "HomePage": "http://localhost:4000",

1-Authentication/1-sign-in/README.md

@@ -28,7 +28,7 @@ description: "This sample demonstrates a Node.js & Express Web App authenticatin
 
 ## Overview
 
-This sample demonstrates a Node.js & Express web application that authenticates users against Azure AD, with the help of [Microsoft Authentication Library for Node.js](https://aka.ms/msalnode) (MSAL Node). In doing so, it also illustrates various authentication concepts, such as [OpenID scopes](https://docs.microsoft.com/azure/active-directory/develop/v2-permissions-and-consent#openid-connect-scopes), [ID Tokens](https://docs.microsoft.com/azure/active-directory/develop/id-tokens), [ID Token validation]() and more.
+This sample demonstrates a Node.js & Express web application that authenticates users against Azure AD, with the help of [Microsoft Authentication Library for Node.js](https://aka.ms/msalnode) (MSAL Node). In doing so, it also illustrates various authentication concepts, such as [OpenID scopes](https://docs.microsoft.com/azure/active-directory/develop/v2-permissions-and-consent#openid-connect-scopes), [ID Tokens](https://docs.microsoft.com/azure/active-directory/develop/id-tokens), [ID Token validation](https://docs.microsoft.com/azure/active-directory/develop/id-tokens#validating-an-id_token) and more.
 
 ## Scenario
 
@@ -51,7 +51,6 @@ This sample demonstrates a Node.js & Express web application that authenticates
 - [Node.js](https://nodejs.org/en/download/) must be installed to run this sample.
 - A modern web browser. This sample uses **ES6** conventions and will not run on **Internet Explorer**.
 - [Visual Studio Code](https://code.visualstudio.com/download) is recommended for running and editing this sample.
-- [VS Code Azure Tools](https://marketplace.visualstudio.com/items?itemName=ms-vscode.vscode-node-azure-pack) extension is recommended for interacting with Azure through VS Code Interface.
 - An **Azure AD** tenant. For more information, see: [How to get an Azure AD tenant](https://docs.microsoft.com/azure/active-directory/develop/quickstart-create-new-tenant)
 - A user account in your **Azure AD** tenant. This sample will not work with a **personal Microsoft account**. Therefore, if you signed in to the [Azure portal](https://portal.azure.com) with a personal account and have never created a user account in your directory before, you need to do that now.
 
@@ -175,6 +174,8 @@ Were we successful in addressing your learning objective? Consider taking a mome
 
 ## About the code
 
+## Configuration
+
 ### Sign-in
 
 ### ID Token validation

1-Authentication/1-sign-in/cache.json

@@ -0,0 +1 @@
+{"Account":{"a283a601-6ad4-4528-975d-6abbefa5edd7.cbaf2168-de14-4c72-9d88-f5f05366dbef-login.windows.net-cbaf2168-de14-4c72-9d88-f5f05366dbef":{"home_account_id":"a283a601-6ad4-4528-975d-6abbefa5edd7.cbaf2168-de14-4c72-9d88-f5f05366dbef","environment":"login.windows.net","realm":"cbaf2168-de14-4c72-9d88-f5f05366dbef","local_account_id":"a283a601-6ad4-4528-975d-6abbefa5edd7","username":"admin@msaltestingjs.onmicrosoft.com","authority_type":"MSSTS","name":"Dogan Erisen","client_info":"eyJ1aWQiOiJhMjgzYTYwMS02YWQ0LTQ1MjgtOTc1ZC02YWJiZWZhNWVkZDciLCJ1dGlkIjoiY2JhZjIxNjgtZGUxNC00YzcyLTlkODgtZjVmMDUzNjZkYmVmIn0"}},"IdToken":{"a283a601-6ad4-4528-975d-6abbefa5edd7.cbaf2168-de14-4c72-9d88-f5f05366dbef-login.windows.net-idtoken-9c8521c1-bab5-4725-a87b-574f83c462c6-cbaf2168-de14-4c72-9d88-f5f05366dbef-":{"home_account_id":"a283a601-6ad4-4528-975d-6abbefa5edd7.cbaf2168-de14-4c72-9d88-f5f05366dbef","environment":"login.windows.net","credential_type":"IdToken","client_id":"9c8521c1-bab5-4725-a87b-574f83c462c6","secret":"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImtnMkxZczJUMENUaklmajRydDZKSXluZW4zOCJ9.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.oCfv-zsKIu80y0Z7h7gbzDXxoYhCTX3pWWUYiA7eq_uXbpiu0Kfx52h26ewne2VBykzizMNT9wbhces4yy0eFOgF_y3wapP59C4hhJ-9sJlvSIdVds4M06zSEgZMpbJDUxIZNXj0Wp8RAGEpLNq6Bzq_-IQsCb8EU-ZbEmbPuNnuT55rkc6gGBLcng2C1bRII8WY-sdZM8ucHoFjCY2R8tov4R5YBXkCCWoQraCpMgBGSRPbmelTxoX0gah9IFZuekIS68BgcEmaGKt5vZ1B7g30mv9Olj-5fTMjLMxeFxB-eNYqdIuAnj24pI9fnpTgp5Gm46gIXp4pdW83oqtc1A","realm":"cbaf2168-de14-4c72-9d88-f5f05366dbef"}},"AccessToken":{"a283a601-6ad4-4528-975d-6abbefa5edd7.cbaf2168-de14-4c72-9d88-f5f05366dbef-login.windows.net-accesstoken-9c8521c1-bab5-4725-a87b-574f83c462c6-cbaf2168-de14-4c72-9d88-f5f05366dbef-openid profile email user.read":{"home_account_id":"a283a601-6ad4-4528-975d-6abbefa5edd7.cbaf2168-de14-4c72-9d88-f5f05366dbef","environment":"login.windows.net","credential_type":"AccessToken","client_id":"9c8521c1-bab5-4725-a87b-574f83c462c6","secret":"eyJ0eXAiOiJKV1QiLCJub25jZSI6InRzbWpyaHFfU1lmU1Y0enNfeE4xUll2LUJ4c1pVWGwyNkphWVJDeUxhbUkiLCJhbGciOiJSUzI1NiIsIng1dCI6ImtnMkxZczJUMENUaklmajRydDZKSXluZW4zOCIsImtpZCI6ImtnMkxZczJUMENUaklmajRydDZKSXluZW4zOCJ9.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.NpBIIHcC5QNbkiCIIriRDTtOi1dvRh49DMsgCg0OyfzJT7e6hbQWpx7HQ-nT_iwDwh_t8kYC-jJEEkuHvccve0RBvM7Xn86MVZnWDqX5vjhhR9OSA5GNNc25bHLOFcYdgdJCt2HPariEyH4EBlieeAvaMNgUtkmdnaS9s0WRBrjIK7qjUNU97GJvJeC4MPOTU8DAXgS7Vvk_qtGT-scZ2AtK56TdLKH-oyO_GuocGPssEdvsuoYnWHohtIaRgoi3M06tdx0QXXXJAMH4Id78B3-728VxWXYLo4FRVUGZFaPSaIpRblr9ueDAEkKyuoIbsux-sV_x8AjbyctF1Y_aBw","realm":"cbaf2168-de14-4c72-9d88-f5f05366dbef","target":"openid profile email User.Read","cached_at":"1605668241","expires_on":"1605671840","extended_expires_on":"1605675439","token_type":"Bearer"}},"RefreshToken":{"a283a601-6ad4-4528-975d-6abbefa5edd7.cbaf2168-de14-4c72-9d88-f5f05366dbef-login.windows.net-refreshtoken-9c8521c1-bab5-4725-a87b-574f83c462c6--":{"home_account_id":"a283a601-6ad4-4528-975d-6abbefa5edd7.cbaf2168-de14-4c72-9d88-f5f05366dbef","environment":"login.windows.net","credential_type":"RefreshToken","client_id":"9c8521c1-bab5-4725-a87b-574f83c462c6","secret":"0.AAAAaCGvyxTeckydiPXwU2bb78EhhZy1uiVHqHtXT4PEYsZFADg.AgABAAAAAAB2UyzwtQEKR7-rWbgdcBZIAQDs_wIA9P9xJnk7F0ATAJYDzP4xRwBKrRddoqulZj366lseTnqWzQzU6PRjct8FHm7wLjgMS528F8VVgo5sP1TwM2fOcXBymbnox6CN9o5MmsGyM1UA2SSxiLuKzaRVvm3prwzLgqPAwJAAxTvfBa3xGDLiXnLKRflvd4iBk_hIvg-g45jCqjpqPua01SMkwfmnLqLDk3wKA_JpsINiYIax5k--HMFwQ-do6L5hDtHez0I9B607k0C0W1aWqsEbdka1gnMyWQKoxxOXq56XXJUO1EMwfg0wMZrmAzDtyd_N4ynPWsAiuvxV3ELAkq4ST1EevXU0XcGq9lYkTm3H9ehC0x5hIyxVoPn3SEIm-xpwFGxvPfSE1YwyzOZ1_QaURX-POZ3zaOZzp0g4_QSXpQAtaN17sUDjhoZzynWWfkcN8JPBE9rUyTyQblcSXZ3KhlW7dB_aKeBTuKDwiiIehUzRhvCtD9C9_K287Ub5hICYB-fiEVYw6sm2utl-35g3zBIwOuvaNlbxKIzwRot1UR9h63T3O1nPq2DpN0xVA6IarzBIX5O7_-m1jPa-yyY4XajirtVliazOhgZaSKgfIU5QMslG_JJC41rEYBfCDVVlHN6OzIewyYHOm_VOa34PW6t4uBgDR18aeaunez0ovSZbizuBc3yW8kG7ahrEDpzNWOrsnL0uaCugdTWc6rPsPIMqxNoW5dw5x07Eq2cNm-cpyGyyzwxdlxR9gerX39LOc4yKThg4Ww2-NLDPOjwGhCmYfFG0oPbJ47jYvlKHZ73-9XxyiWvz3myeJ9EcWxGzfaK4qEWMH6C_GwG-T1uR1u78DFhiTsa0V6X3hkSoephj6jIHVjBgYB5W0knWK_RfK_ykoGRH3GRRmcrf63hlHNEl2v2vlzrjOd0"}},"AppMetadata":{}}

1-Authentication/2-sign-in-b2c/App/app.js

@@ -23,7 +23,7 @@ app.use(bodyParser.urlencoded({extended: false}));
 
 app.use(express.static(path.join(__dirname, './public')));
 
-app.use(session({secret: 'vancouver', resave: false, saveUninitialized: false}));
+app.use(session({secret: 'your-secret', resave: false, saveUninitialized: false}));
 
 app.use(router);
 

1-Authentication/2-sign-in-b2c/README.md

@@ -27,7 +27,7 @@ description: "This sample demonstrates a Node.js Express Web App application tha
 
 ## Overview
 
-This sample demonstrates a Node.js & Express web application that authenticates users against Azure AD, with the help of [Microsoft Authentication Library for Node.js]() (MSAL Node). In doing so, it also illustrates various authentication concepts, such as [OIDC scopes](), [ID Tokens](), [ID Token validation](), [user-flows](), [custom policies]() and more.
+This sample demonstrates a Node.js & Express web application that authenticates users against Azure AD, with the help of [Microsoft Authentication Library for Node.js](https://aka.ms/msalnode) (MSAL Node). In doing so, it also illustrates various authentication concepts, such as [OpenID scopes](https://docs.microsoft.com/azure/active-directory/develop/v2-permissions-and-consent#openid-connect-scopes), [ID Tokens](https://docs.microsoft.com/azure/active-directory/develop/id-tokens), [ID Token validation](https://docs.microsoft.com/azure/active-directory/develop/id-tokens#validating-an-id_token), [user-flows](https://docs.microsoft.com/azure/active-directory-b2c/user-flow-overview) and more.
 
 ## Scenario
 
@@ -50,7 +50,6 @@ This sample demonstrates a Node.js & Express web application that authenticates
 - [Node.js](https://nodejs.org/en/download/) must be installed to run this sample.
 - A modern web browser. This sample uses **ES6** conventions and will not run on **Internet Explorer**.
 - [Visual Studio Code](https://code.visualstudio.com/download) is recommended for running and editing this sample.
-- [VS Code Azure Tools](https://marketplace.visualstudio.com/items?itemName=ms-vscode.vscode-node-azure-pack) extension is recommended for interacting with Azure through VS Code Interface.
 - An **Azure AD B2C** tenant. For more information see: [How to get an Azure AD B2C tenant](https://docs.microsoft.com/azure/active-directory-b2c/tutorial-create-tenant)
 - A user account in your **Azure AD B2C** tenant.
 
@@ -120,9 +119,9 @@ Open the project in your IDE (like Visual Studio or Visual Studio Code) to confi
 > In the steps below, "ClientID" is the same as "Application ID" or "AppId".
 
 1. Open the `auth.json` file.
-1. Find the key `ClientId` and replace the existing value with the application ID (clientId) of the application copied from the **Azure Portal**.
-1. Find the key `TenantId` and replace the existing value with your Azure AD tenant ID copied from the **Azure Portal**.
-1. Find the key `ClientSecret` and replace the existing value with the key you saved during the creation of the application, on the **Azure Portal**.
+1. Find the key `ClientId` and replace the existing value with the application ID (clientId) of the application copied from **Azure Portal**.
+1. Find the key `TenantId` and replace the existing value with your Azure AD tenant ID (or tenant name) copied from **Azure Portal**.
+1. Find the key `ClientSecret` and replace the existing value with the key you saved during the creation of the application, on **Azure Portal**.
 1. Find the key `homePageRoute` and replace the existing value with the home page route of your application, e.g. `/home`.
 1. Find the key `redirectUri` and replace the existing value with the redirect URI that you have registered on **Azure Portal**, e.g. `http://localhost:4000/redirect`.
 1. Find the key `postLogoutRedirectUri` and replace the existing value with the URI of the page that you wish to be redirected after signing-out, e.g `http://localhost:4000/`.

1-Authentication/2-sign-in-b2c/auth.json

@@ -10,17 +10,16 @@
         "postLogoutRedirectUri": "http://localhost:4000/"
     },
     "resources": {},
+    "protected": {},
     "policies": {
-        "authorities": {
-            "signUpSignIn": {
-                "authority": "https://fabrikamb2c.b2clogin.com/fabrikamb2c.onmicrosoft.com/B2C_1_susi"
-            },
-            "resetPassword": {
-                "authority": "https://fabrikamb2c.b2clogin.com/fabrikamb2c.onmicrosoft.com/B2C_1_reset"
-            },
-            "editProfile": {
-                "authority": "https://fabrikamb2c.b2clogin.com/fabrikamb2c.onmicrosoft.com/B2C_1_edit_profile"
-            }
+        "signUpSignIn": {
+            "authority": "https://fabrikamb2c.b2clogin.com/fabrikamb2c.onmicrosoft.com/B2C_1_susi"
+        },
+        "resetPassword": {
+            "authority": "https://fabrikamb2c.b2clogin.com/fabrikamb2c.onmicrosoft.com/B2C_1_reset"
+        },
+        "editProfile": {
+            "authority": "https://fabrikamb2c.b2clogin.com/fabrikamb2c.onmicrosoft.com/B2C_1_edit_profile"
         },
         "authorityDomain": "fabrikamb2c.b2clogin.com"  
     }