Error "Invalid username or password."

[Andriy-Liulka]

I uploaded all required files to Identity Experience Framework and after attempt to runing B2C_1A_DEMO_PASSWORDRESET_NOTLASTPASSWORD file it opens properly. But after entering email address and verification it,I tried to fill oldPassword, newPassword and reenterPassword with completely the same values and have got next error:

After entering other password in second and third field I still got same error: Could you please provide me some information why it could happened.

[huqianghui]

maybe you can refer the issue: https://github.com/azure-ad-b2c/samples/issues/407 and the issue: https://github.com/azure-ad-b2c/samples/issues/411.

1. use microsoft edge to inspect the web console of network tab to check if there are some script error.( not chrome, use edge.)
2. add application insight to get more log information
3. check the configuration about endpoint and application Id and so on.

[Andriy-Liulka]

Thanks,I checked console issue and it is the same as in ticket #407 : [Report Only] Refused to run the JavaScript URL because it violates the following Content Security Policy directive: "script-src 'strict-dynamic' 'self' 'nonce-9is4PtajhyitYm6uYX0Tkw==' 'report-sample'". Either the 'unsafe-inline' keyword, a hash ('sha256-...'), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.

[huqianghui]

then add the below configuration can resovle the issue.

<RelyingParty>
    <DefaultUserJourney ReferenceId="SignUpOrSignInMFAOption" />
    <UserJourneyBehaviors>
      <ScriptExecution>Allow</ScriptExecution>
    </UserJourneyBehaviors>
<RelyingParty>

You can refer the document: https://docs.microsoft.com/en-us/azure/active-directory-b2c/javascript-and-page-layout?pivots=b2c-custom-policy

[Andriy-Liulka]

Thanks,error with JavaScript was fixed,but error with User validation still the same (

[huqianghui]

please follow the up step 2 and 3.

2. add application insight to get more log information
3. check the configuration about endpoint and application Id and so on.

[Andriy-Liulka]

@huqianghui Thanks for help, I will try to research this problem with application insight.

[geekdiv]

@Andriy-Liulka are you able to fix the issue ? I am facing same issue in custom change password police.

[jpalo]

If you have this error in user sign-in logs: The request body must contain the following parameter: 'client_assertion' or 'client_secret'.

Double check you have the IDs set right, I had them vice versa (client_id must be the ProxyIdentityExperienceFramework):

[SilviuMihai]

@Andriy-Liulka / Besides the answer of @jpalo, please check all the steps top to bottom again, or re do it, probably you are missing a step or changed something. In my case I created the app registrations for Proxy/IdentityExperienceFramework with "Accounts in any identity provider or organizational directory (for authenticating users with user flows)". So check again to see what you missed. Good luck.

[rdhaundiyalf5]

@Andriy-Liulka are you able to fix the issue ? I am facing same issue in custom change password police.

hi were you able to resolve this issue

[IvanGrekov]

Hi, @rdhaundiyalf5 , @Andriy-Liulka, were you able to fix this issue? Already fixed audience issue, accodingly to @SilviuMihai comment, but still get "Invalid username or password.", even though Sign In has success status in Sign In Logs