Академический Документы
Профессиональный Документы
Культура Документы
Pros / Policies
cons
Fit? OAuth
User Graph
types Explorer
• External users
• Self-registration
• SSPR
• Scales out-of-the-box
• MFA
• SSO
• Cost
• Lot of resources to spend that are not working on the core function of your app
• Scalability
• High Availability
• Security
• If you have a list of names and passwords in your app, you’re a target
• Many people use the same username and password with multiple apps
• Officially called “B2C Basic”
• Sign-in
• Sign-up or sign-in
• Profile editing
• Password reset
• Applications
• Identity Providers
• User Attributes
• Local accounts – typically JoeB@gmail.com not
JoeB@b2c.onmicrosoft.com
• Amazon
• MSA
Sign–up /
in: Local &
Facebook
Edit
attributes
B&C
Sign–up /
in: Local &
Google
Edit
attributes
Y&Z
GET https://login.microsoftonline.com/x.onmicrosoft.com/oauth2/v2.0/authorize
?p=b2c_1_sign-in-email
&client_id=6b6…d1e6f9f2
&redirect_uri=https://localhost:123456
&response_mode=form_post
&response_type=id_token
&scope=openid
&…
Extending B2C
External user
IdentityServer
OIDC (Extended)
Authentications/month Price
MFA Price
For the first 100,000 users, this is NZ$82 / month plus NZ$209 / month = NZ$291 / month.
For subsequent slots of 100,000 users, this is NZ$164 / month plus NZ$418 / month = NZ$582 / month.
No WS-Fed / SAML 2.0 support
BUT
The best way to think about B2C is that only those users that signed up using B2C in
the first place are the ones that can sign in to an application using it.
450
million
-