search

azure-ad-b2c / partner-integrations

This repo contains samples which provide end to end integration between Azure AD and partner solutions.
14 stars 20 forks source link

Unable to reach Dynamic Fraud Protection API endpoints in DFP Sandbox through Azure AD B2C Custom Policy #18

Closed anaugust113 closed 1 year ago

anaugust113 commented 1 year ago

Issue regarding Sample: Dynamics-Fraud-Protection (https://github.com/azure-ad-b2c/partner-integrations/tree/master/samples/Dynamics-Fraud-Protection)

We are getting "Bad Request" error upon trying to reach AccountLogin (Technical Profile in B2C Custom Policy: RestApi-DFP-LoginAccount) and AccountCreation API Endpoints using Sanbox Dynamic Fraud Protection Instance through Azure AD B2C Custom Policy. We do not see this error using the same B2C Custom policy in our Production DFP Instance .

We figured out that the issue is occurring because for DFP Sandbox instance, the API call fails when we do not pass the "x-ms-dfpenvid” in the header, where as for Production instance, the API call works without "x-ms-dfpenvid” in the header.

Azure AD B2C has a limitation where by we are unable to pass more than one header for authentication (currently we are only able to pass the access token in header) (Ref: https://learn.microsoft.com/en-us/azure/active-directory-b2c/restful-technical-profile).

Looking for a fix for this issue.

anaugust113 commented 1 year ago

This issue is closed after connecting with product team.