Adding roles to Angular SPA and MSAL when using using Azure AD B2C

1
votes

Using Angular 7 with MSAL.js and Azure AD B2C.

Implementing a role-based authentication is not directly supported by Azure AD B2C and requires the use of Azure Ad Graph API.

https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/10123836-get-user-membership-groups-in-the-claims-with-ad-b

Authorize By Group in Azure Active Directory B2C

Is there a way to use MSAL with Azure AD Graph API to support roles (through claims or Azure AD B2C security groups)?

1
angularopenid-connectazure-ad-b2cazure-ad-graph-apimsal.js
Whoever voted this to close as "Too Broad" and gave a down vote: Asking for "a way" out of nothing on the Internet for this is not too broad. I would appreciate if you comment why you think it is too broad after viewing and reading the supplied links.Adam
Hi Adam, did you ever manage to find something out about this?Andrew
@Andrew No, couldn't find anyAdam

1 Answers

0
votes

You can add roles in the manifest of an application registration, that way you will get a roles claim with those roles defined.

Here is an article on how to create roles: How to add app roles in AAD.

If you are using groups instead you can associate a role to each group.