Closed nawoods closed 1 year ago
@nawoods Thanks for your feedback! We will investigate and update as appropriate.
Hi @nawoods, apologies for the long delay getting back to you. The endpoint: Token is used for the Refresh Token Journey.
You can take a look at the below link for an example: https://github.com/azure-ad-b2c/samples/tree/master/policies/refresh-token-journey
We are planning to incorporate this information into the Learn docs as well.
Does this answer your question?
Hey @nawoods , I'm going to close this issue for now, if there are any further concerns please feel free to raise a new one. Thanks
It seems like that info didn't get incorporated into the MS Learn docs.
Linked sample is fine, however it lacks description:
UserInfo
and Token
Token
endpoint journey is used only for refreshing token or other token requests (according to @garrodonnell it is used only for the refresh token, however it would be nice to have that documented somewhere in the official pages)Endpoint Id="Token"
under RelyingParty
vs setting RefreshTokenUserJourneyId
metadata under JwtIssuer
technical profile used in journey issuing initial token? Which one takes precedence when both of them are set? Which one is recommended? What are the limitations of both approaches?
The information regarding the tag in the Relying Party docs page only talks about referencing a User Journey for the UserInfo endpoint, though (at least looking at the starter pack) there are other endpoints that can have User Journeys, like Token. Is there a help page for a Token flow? Is there anything special about the Token flow that a custom policy dev needs to consider (e.g. what does do)? Is the referenced custom policy only called for obtaining refresh tokens, or are other calls to the /token endpoint (e.g. exchanging the auth code for the id_token)?
Document Details
⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.