azure-ad-b2c / samples

Azure AD B2C custom policy solutions and samples.
839 stars 596 forks source link

SignatureDescription could not be created for the signature algorithm supplied when using ECDSA algorithm #643

Open pauloortins opened 5 days ago

pauloortins commented 5 days ago

I'm integrating SecureAuth as an IDP using SAML to my Azure B2C and SecureAuth by default uses ECDSA as the encryption algorithm.

<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>

When I integrate it the Azure B2C throws the following error:

"SignatureDescription could not be created for the signature algorithm supplied."

The only ways I'm able to make it work is:

  1. Force SecureAuth to use RSA instead.

  2. Disable the encryption by doing:

    false false

Is there an 3rd way when the Azure B2C can support the ECDSA algorithm?

JasSuri commented 4 days ago

AAD B2C doesn’t support ECDSA.

pauloortins commented 4 days ago

Thank you for your answer!

Is there any place where Microsoft added it to their docs?