【Azure 环境】中国区Azure B2C 是否支持手机验证码登录呢?
问题描述
中国区Azure B2C 是否支持手机验证码登录呢?
问题回答
在没有原生 Phone sign-up and sign-in for user flows (中国区不支持,Global Azure支持) 的情况下,可以使用B2C自定义策略实现 Phone sign-up and sign-in,测试步骤如下:
步骤一:在AAD B2C tenant中, 首先需要创建两个应用程序和Policy Keys。参考教程: 创建用户流和自定义策略 - Azure Active Directory B2C(https://docs.azure.cn/zh-cn/active-directory-b2c/tutorial-create-user-flows?pivots=b2c-custom-policy)
步骤二:下载 Phone_Email_Base.xml(Link:https://github.com/Azure-Samples/active-directory-b2c-custom-policy-starterpack/blob/main/scenarios/phone-number-passwordless/Phone_Email_Base.xml),修改其中的 disclaimer_link_1_url, disclaimer_link_1_url, disclaimer_link_2_url
PS: 参照文档说明(Instructions)更改相应参数,修改完成后使用 Upload custom policy 进行上传
步骤三:下载 SignUpOrSignInWithPhone.xml(Link:https://github.com/Azure-Samples/active-directory-b2c-custom-policy-starterpack/blob/main/scenarios/phone-number-passwordless/SignUpOrSignInWithPhone.xml),修改其中的 Tenant id,修改完成后使用Upload custom policy进行上传
如无法打开Github,可以从文末附录中下载。
最后:点击Run now进行测试
手机访问页面效果为:
附录一:Phone_Email_Base.xml
<TrustFrameworkPolicy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns="http://schemas.microsoft.com/online/cpim/schemas/2013/06" PolicySchemaVersion="0.3.0.0" TenantId="yourtenant.onmicrosoft.com" PolicyId="B2C_1A_Phone_Email_Base" PublicPolicyUri="http://yourtenant.onmicrosoft.com/B2C_1A_Phone_Email_Base" > <BuildingBlocks> <ClaimsSchema> <ClaimType Id="tenantId"> <DisplayName>User's Object's Tenant IDDisplayName> <DataType>stringDataType> <DefaultPartnerClaimTypes> <Protocol Name="OAuth2" PartnerClaimType="tid" /> <Protocol Name="OpenIdConnect" PartnerClaimType="tid" /> <Protocol Name="SAML2" PartnerClaimType="http://schemas.microsoft.com/identity/claims/tenantid" /> DefaultPartnerClaimTypes> <UserHelpText>Tenant identifier (ID) of the user object in Azure AD.UserHelpText> ClaimType> <ClaimType Id="objectId"> <DisplayName>User's Object IDDisplayName> <DataType>stringDataType> <DefaultPartnerClaimTypes> <Protocol Name="OAuth2" PartnerClaimType="oid" /> <Protocol Name="OpenIdConnect" PartnerClaimType="oid" /> <Protocol Name="SAML2" PartnerClaimType="http://schemas.microsoft.com/identity/claims/objectidentifier" /> DefaultPartnerClaimTypes> <UserHelpText>Object identifier (ID) of the user object in Azure AD.UserHelpText> ClaimType> <ClaimType Id="signInNames.phoneNumber"> <DataType>phoneNumberDataType> ClaimType> <ClaimType Id="strongAuthenticationEmailAddress"> <DisplayName>Email AddressDisplayName> <DataType>stringDataType> <DefaultPartnerClaimTypes> <Protocol Name="OpenIdConnect" PartnerClaimType="email" /> DefaultPartnerClaimTypes> <AdminHelpText>Email address of the userAdminHelpText> <UserHelpText>Email address that can be used to contact you.UserHelpText> <UserInputType>ReadonlyUserInputType> <PredicateValidationReference Id="email" /> ClaimType> <ClaimType Id="signInNames.emailAddress"> <DataType>stringDataType> ClaimType> <ClaimType Id="phoneNumber"> <DisplayName>Phone NumberDisplayName> <DataType>stringDataType> <UserHelpText>Enter Phone NumberUserHelpText> <UserInputType>TextBoxUserInputType> <PredicateValidationReference Id="internationalOrNationalPhoneNumber" /> ClaimType> <ClaimType Id="nationalNumber"> <DisplayName>Phone NumberDisplayName> <DataType>stringDataType> <UserHelpText>Enter National Phone NumberUserHelpText> <UserInputType>TextBoxUserInputType> <PredicateValidationReference Id="nationalNumber" /> ClaimType> <ClaimType Id="signInName"> <DisplayName>Phone Number or Email AddressDisplayName> <DataType>stringDataType> <UserHelpText>Please enter a valid phone number or email address.UserHelpText> <UserInputType>TextBoxUserInputType> <PredicateValidationReference Id="phoneOrEmailSignInName" /> ClaimType> <ClaimType Id="email"> <DisplayName>Email AddressDisplayName> <DataType>stringDataType> <DefaultPartnerClaimTypes> <Protocol Name="OpenIdConnect" PartnerClaimType="email" /> DefaultPartnerClaimTypes> <AdminHelpText>Email address of the userAdminHelpText> <UserHelpText>Email address that can be used to contact you.UserHelpText> <UserInputType>EmailBoxUserInputType> <PredicateValidationReference Id="email" /> ClaimType> <ClaimType Id="isLocalAccountSignIn"> <DataType>booleanDataType> ClaimType> <ClaimType Id="isEmailSignUp"> <DataType>booleanDataType> ClaimType> <ClaimType Id="isChangePhoneNumber"> <DataType>booleanDataType> ClaimType> <ClaimType Id="changePhoneSuccessMessage"> <DataType>stringDataType> <UserInputType>ParagraphUserInputType> ClaimType> <ClaimType Id="countryCode"> <DisplayName>CountryDisplayName> <DataType>stringDataType> <UserHelpText>Enter CountryUserHelpText> <UserInputType>DropdownSingleSelectUserInputType> <Restriction> <Enumeration Text="Albania(+355)" Value="AL" /> <Enumeration Text="Algeria(+213)" Value="DZ" /> <Enumeration Text="American Samoa(+1684)" Value="AS" /> <Enumeration Text="Andorra(+376)" Value="AD" /> <Enumeration Text="Angola(+244)" Value="AO" /> <Enumeration Text="Anguilla(+1264)" Value="AI" /> <Enumeration Text="Antarctica(+672)" Value="AQ" /> <Enumeration Text="Antigua and Barbuda(+1268)" Value="AG" /> <Enumeration Text="Argentina(+54)" Value="AR" /> <Enumeration Text="Armenia(+374)" Value="AM" /> <Enumeration Text="Aruba(+297)" Value="AW" /> <Enumeration Text="Australia(+61)" Value="AU" /> <Enumeration Text="Austria(+43)" Value="AT" /> <Enumeration Text="Azerbaijan(+994)" Value="AZ" /> <Enumeration Text="Bahamas(+1242)" Value="BS" /> <Enumeration Text="Bahrain(+973)" Value="BH" /> <Enumeration Text="Bangladesh(+880)" Value="BD" /> <Enumeration Text="Barbados(+1246)" Value="BB" /> <Enumeration Text="Belarus(+375)" Value="BY" /> <Enumeration Text="Belgium(+32)" Value="BE" /> <Enumeration Text="Belize(+501)" Value="BZ" /> <Enumeration Text="Benin(+229)" Value="BJ" /> <Enumeration Text="Bermuda(+1441)" Value="BM" /> <Enumeration Text="Bhutan(+975)" Value="BT" /> <Enumeration Text="Bolivia(+591)" Value="BO" /> <Enumeration Text="Bonaire, Sint Eustatius and Saba(+599)" Value="BQ" /> <Enumeration Text="Bosnia and Herzegovina(+387)" Value="BA" /> <Enumeration Text="Botswana(+267)" Value="BW" /> <Enumeration Text="Brazil(+55)" Value="BR" /> <Enumeration Text="British Virgin Islands (+1284)" Value="VG" /> <Enumeration Text="Brunei Darussalam(+673)" Value="BN" /> <Enumeration Text="Bulgaria(+359)" Value="BG" /> <Enumeration Text="Burkina Faso(+226)" Value="BF" /> <Enumeration Text="Burundi(+257)" Value="BI" /> <Enumeration Text="Cambodia(+855)" Value="KH" /> <Enumeration Text="Cameroon(+237)" Value="CM" /> <Enumeration Text="Canada(+1)" Value="CA" /> <Enumeration Text="Cape Verde(+238)" Value="CV" /> <Enumeration Text="Cayman Islands(+1345)" Value="KY" /> <Enumeration Text="Central African Republic(+236)" Value="CF" /> <Enumeration Text="Chad(+235)" Value="TD" /> <Enumeration Text="Chile(+56)" Value="CL" /> <Enumeration Text="China(+86)" Value="CN" /> <Enumeration Text="Colombia(+57)" Value="CO" /> <Enumeration Text="Comoros(+269)" Value="KM" /> <Enumeration Text="Congo(+242)" Value="CG" /> <Enumeration Text="Cook Islands(+682)" Value="CK" /> <Enumeration Text="Costa Rica(+506)" Value="CR" /> <Enumeration Text="C?te d'Ivoire(+225)" Value="CI" /> <Enumeration Text="Croatia(+385)" Value="HR" /> <Enumeration Text="Cuba(+53)" Value="CU" /> <Enumeration Text="Cura?ao(+599)" Value="CZ" /> <Enumeration Text="Cyprus(+357)" Value="CW" /> <Enumeration Text="Czech Republic(+420)" Value="CZ" /> <Enumeration Text="Congo (+243)" Value="CD" /> <Enumeration Text="Denmark(+45)" Value="DK" /> <Enumeration Text="Djibouti(+253)" Value="DJ" /> <Enumeration Text="Dominica(+1767)" Value="DM" /> <Enumeration Text="Dominican Republic(+1)" Value="DO" /> <Enumeration Text="Timor-Leste(+670)" Value="TL" /> <Enumeration Text="Ecuador(+593)" Value="EC" /> <Enumeration Text="Egypt(+20)" Value="EG" /> <Enumeration Text="El Salvador(+503)" Value="SV" /> <Enumeration Text="Equatorial Guinea(+240)" Value="GQ" /> <Enumeration Text="Eritrea(+291)" Value="ER" /> <Enumeration Text="Estonia(+372)" Value="EE" /> <Enumeration Text="Ethiopia(+251)" Value="ET" /> <Enumeration Text="Falkland Islands (Malvinas)(+500)" Value="FK" /> <Enumeration Text="Faroe Islands(+298)" Value="FO" /> <Enumeration Text="Fiji(+679)" Value="FJ" /> <Enumeration Text="Finland(+358)" Value="FI" /> <Enumeration Text="France(+33)" Value="FR" /> <Enumeration Text="French Guiana(+594)" Value="GF" /> <Enumeration Text="French Polynesia(+689)" Value="PF" /> <Enumeration Text="Gabon(+241)" Value="GA" /> <Enumeration Text="Gambia(+220)" Value="GM" /> <Enumeration Text="Georgia(+995)" Value="GE" /> <Enumeration Text="Germany(+49)" Value="DE" /> <Enumeration Text="Ghana(+233)" Value="GH" /> <Enumeration Text="Gibraltar(+350)" Value="GI" /> <Enumeration Text="Greece(+30)" Value="GR" /> <Enumeration Text="Greenland(+299)" Value="GL" /> <Enumeration Text="Grenada(+1473)" Value="GD" /> <Enumeration Text="Guadeloupe(+590)" Value="GP" /> <Enumeration Text="Guam(+1671)" Value="GU" /> <Enumeration Text="Guatemala(+502)" Value="GT" /> <Enumeration Text="Guinea(+224)" Value="GN" /> <Enumeration Text="Guinea-Bissau(+245)" Value="GW" /> <Enumeration Text="Guyana(+592)" Value="GY" /> <Enumeration Text="Haiti(+509)" Value="HT" /> <Enumeration Text="Honduras(+504)" Value="HN" /> <Enumeration Text="Hong Kong(+852)" Value="HK" /> <Enumeration Text="Hungary(+36)" Value="HU" /> <Enumeration Text="Iceland(+354)" Value="IS" /> <Enumeration Text="India(+91)" Value="IN" /> <Enumeration Text="Indonesia(+62)" Value="ID" /> <Enumeration Text="Iran(+98)" Value="IR" /> <Enumeration Text="Iraq(+964)" Value="IQ" /> <Enumeration Text="Ireland(+353)" Value="IE" /> <Enumeration Text="Israel(+972)" Value="IL" /> <Enumeration Text="Italy(+39)" Value="IT" /> <Enumeration Text="Jamaica(+1)" Value="JM" /> <Enumeration Text="Japan(+81)" Value="JP" /> <Enumeration Text="Jordan(+962)" Value="JO" /> <Enumeration Text="Kazakhstan(+7)" Value="KZ" /> <Enumeration Text="Kenya(+254)" Value="KE" /> <Enumeration Text="Kiribati(+686)" Value="KI" /> <Enumeration Text="Kuwait(+965)" Value="KW" /> <Enumeration Text="Kyrgyzstan(+996)" Value="KG" /> <Enumeration Text="Lao People's Democratic Republic(+856)" Value="LA" /> <Enumeration Text="Latvia(+371)" Value="LV" /> <Enumeration Text="Lebanon(+961)" Value="LB" /> <Enumeration Text="Lesotho(+266)" Value="LS" /> <Enumeration Text="Liberia(+231)" Value="LR" /> <Enumeration Text="Libya(+218)" Value="LY" /> <Enumeration Text="Liechtenstein(+423)" Value="LI" /> <Enumeration Text="Lithuania(+370)" Value="LT" /> <Enumeration Text="Luxembourg(+352)" Value="LU" /> <Enumeration Text="Macao(+853)" Value="MO" /> <Enumeration Text="North Macedonia, Republic of (+389)" Value="MK" /> <Enumeration Text="Madagascar(+261)" Value="MG" /> <Enumeration Text="Malawi(+265)" Value="MW" /> <Enumeration Text="Malaysia(+60)" Value="MY" /> <Enumeration Text="Maldives(+960)" Value="MV" /> <Enumeration Text="Mali(+223)" Value="ML" /> <Enumeration Text="Malta(+356)" Value="MT" /> <Enumeration Text="Marshall Islands(+692)" Value="MH" /> <Enumeration Text="Martinique(+596)" Value="MQ" /> <Enumeration Text="Mauritania(+222)" Value="MR" /> <Enumeration Text="Mauritius(+230)" Value="MU" /> <Enumeration Text="Mexico(+52)" Value="MX" /> <Enumeration Text="Micronesia(+691)" Value="FM" /> <Enumeration Text="Moldova, Republic of(+373)" Value="MD" /> <Enumeration Text="Monaco(+377)" Value="MC" /> <Enumeration Text="Mongolia(+976)" Value="MN" /> <Enumeration Text="Montenegro(+382)" Value="ME" /> <Enumeration Text="Montserrat(+1664)" Value="MS" /> <Enumeration Text="Morocco(+212)" Value="MA" /> <Enumeration Text="Mozambique(+258)" Value="MZ" /> <Enumeration Text="Myanmar(+95)" Value="MM" /> <Enumeration Text="Namibia(+264)" Value="NA" /> <Enumeration Text="Nauru(+674)" Value="NR" /> <Enumeration Text="Nepal(+977)" Value="NP" /> <Enumeration Text="Netherlands(+31)" Value="NL" /> <Enumeration Text="New Caledonia(+687)" Value="NC" /> <Enumeration Text="New Zealand(+64)" Value="NZ" /> <Enumeration Text="Nicaragua(+505)" Value="NI" /> <Enumeration Text="Niger(+227)" Value="NE" /> <Enumeration Text="Nigeria(+234)" Value="NG" /> <Enumeration Text="Niue(+683)" Value="NU" /> <Enumeration Text="Korea, Democratic People's Republic of (North Korea)(+850)" Value="KP" /> <Enumeration Text="Norway(+47)" Value="NO" /> <Enumeration Text="Oman(+968)" Value="OM" /> <Enumeration Text="Pakistan(+92)" Value="PK" /> <Enumeration Text="Palau(+680)" Value="PW" /> <Enumeration Text="Palestine, State of(+970)" Value="PS" /> <Enumeration Text="Panama(+507)" Value="PA" /> <Enumeration Text="Papua New Guinea(+675)" Value="PG" /> <Enumeration Text="Paraguay(+595)" Value="PY" /> <Enumeration Text="Peru(+51)" Value="PE" /> <Enumeration Text="Philippines(+63)" Value="PH" /> <Enumeration Text="Poland(+48)" Value="PL" /> <Enumeration Text="Portugal(+351)" Value="PT" /> <Enumeration Text="Puerto Rico(+1)" Value="PR" /> <Enumeration Text="Qatar(+974)" Value="QA" /> <Enumeration Text="Réunion(+262)" Value="RE" /> <Enumeration Text="Romania(+40)" Value="RO" /> <Enumeration Text="Russian Federation(+7)" Value="RU" /> <Enumeration Text="Rwanda(+250)" Value="RW" /> <Enumeration Text="Saint Helena, Ascension and Tristan da Cunha(+290)" Value="SH" /> <Enumeration Text="Saint Kitts and Nevis(+1869)" Value="KN" /> <Enumeration Text="Saint Lucia(+1758)" Value="LC" /> <Enumeration Text="Saint Pierre and Miquelon(+508)" Value="PM" /> <Enumeration Text="Saint Vincent and the Grenadines(+1784)" Value="VC" /> <Enumeration Text="Northern Mariana Islands(CNMI)(+1670)" Value="MP" /> <Enumeration Text="Samoa(+685)" Value="WS" /> <Enumeration Text="San Marino(+378)" Value="SM" /> <Enumeration Text="Sao Tome and Principe(+239)" Value="ST" /> <Enumeration Text="Saudi Arabia(+966)" Value="SA" /> <Enumeration Text="Senegal(+221)" Value="SN" /> <Enumeration Text="Serbia(+381)" Value="RS" /> <Enumeration Text="Seychelles(+248)" Value="SC" /> <Enumeration Text="Sierra Leone(+232)" Value="SL" /> <Enumeration Text="Singapore(+65)" Value="SG" /> <Enumeration Text="Slovakia(+421)" Value="SK" /> <Enumeration Text="Slovenia(+386)" Value="SI" /> <Enumeration Text="Solomon Islands(+677)" Value="SB" /> <Enumeration Text="Somalia(+252)" Value="SO" /> <Enumeration Text="South Africa(+27)" Value="ZA" /> <Enumeration Text="Korea, Republic of(+82)" Value="KR" /> <Enumeration Text="South Sudan(+211)" Value="SS" /> <Enumeration Text="Spain(+34)" Value="ES" /> <Enumeration Text="Sri Lanka(+94)" Value="LK" /> <Enumeration Text="Sudan(+249)" Value="SD" /> <Enumeration Text="Suriname(+597)" Value="SR" /> <Enumeration Text="Swaziland(+268)" Value="SZ" /> <Enumeration Text="Sweden(+46)" Value="SE" /> <Enumeration Text="Switzerland(+41)" Value="CH" /> <Enumeration Text="Syrian Arab Republic(+963)" Value="SY" /> <Enumeration Text="Taiwan, Province of China(+886)" Value="TW" /> <Enumeration Text="Tajikistan(+992)" Value="TJ" /> <Enumeration Text="Tanzania, United Republic of(+255)" Value="TZ" /> <Enumeration Text="Thailand(+66)" Value="TH" /> <Enumeration Text="Togo(+228)" Value="TG" /> <Enumeration Text="Tokelau(+690)" Value="TK" /> <Enumeration Text="Tonga(+676)" Value="TO" /> <Enumeration Text="Trinidad and Tobago(+1868)" Value="TT" /> <Enumeration Text="Tunisia(+216)" Value="TN" /> <Enumeration Text="Turkey(+90)" Value="TR" /> <Enumeration Text="Turkmenistan(+993)" Value="TM" /> <Enumeration Text="Turks and Caicos Islands(+1649)" Value="TC" /> <Enumeration Text="Tuvalu(+688)" Value="TV" /> <Enumeration Text="Uganda(+256)" Value="UG" /> <Enumeration Text="Ukraine(+380)" Value="UA" /> <Enumeration Text="United Arab Emirates(+971)" Value="UA" /> <Enumeration Text="United Kingdom(+44)" Value="GB" /> <Enumeration Text="United States(+1)" Value="US" /> <Enumeration Text="Virgin Islands, U.S.(+1340)" Value="VI" /> <Enumeration Text="Uruguay(+598)" Value="UY" /> <Enumeration Text="Uzbekistan(+998)" Value="UZ" /> <Enumeration Text="Vanuatu(+678)" Value="VU" /> <Enumeration Text="Holy See (Vatican City State)(+379)" Value="VA" /> <Enumeration Text="Venezuela, Bolivarian Republic of(+58)" Value="VE" /> <Enumeration Text="Viet Nam(+84)" Value="VN" /> <Enumeration Text="Wallis and Futuna(+681)" Value="WF" /> <Enumeration Text="Yemen(+967)" Value="YE" /> <Enumeration Text="Zambia(+260)" Value="ZM" /> <Enumeration Text="Zimbabwe(+263)" Value="ZW" /> Restriction> ClaimType> <ClaimType Id="verificationCode"> <DisplayName>Verification CodeDisplayName> <DataType>stringDataType> <UserHelpText>Enter your verification codeUserHelpText> <UserInputType>TextBoxUserInputType> ClaimType> <ClaimType Id="password"> <DisplayName>PasswordDisplayName> <DataType>stringDataType> <UserHelpText>Enter passwordUserHelpText> <UserInputType>PasswordUserInputType> ClaimType> <ClaimType Id="newPassword"> <DisplayName>New PasswordDisplayName> <DataType>stringDataType> <UserHelpText>Enter new passwordUserHelpText> <UserInputType>PasswordUserInputType> <Restriction> <Pattern RegularExpression="^((?=.*[a-z])(?=.*[A-Z])(?=.*\d)|(?=.*[a-z])(?=.*[A-Z])(?=.*[^A-Za-z0-9])|(?=.*[a-z])(?=.*\d)(?=.*[^A-Za-z0-9])|(?=.*[A-Z])(?=.*\d)(?=.*[^A-Za-z0-9]))([A-Za-z\d@#$%^&*\-_+=[\]{}|\\:',?/`~"();!]|\.(?!@)){8,16}$" HelpText="8-16 characters, containing 3 out of 4 of the following: Lowercase characters, uppercase characters, digits (0-9), and one or more of the following symbols: @ # $ % ^ & * - _ + = [ ] { } | \ : ' , ? / ` ~ " ( ) ; ." /> Restriction> ClaimType> <ClaimType Id="reenterPassword"> <DisplayName>Confirm New PasswordDisplayName> <DataType>stringDataType> <UserHelpText>Confirm new passwordUserHelpText> <UserInputType>PasswordUserInputType> <Restriction> <Pattern RegularExpression="^((?=.*[a-z])(?=.*[A-Z])(?=.*\d)|(?=.*[a-z])(?=.*[A-Z])(?=.*[^A-Za-z0-9])|(?=.*[a-z])(?=.*\d)(?=.*[^A-Za-z0-9])|(?=.*[A-Z])(?=.*\d)(?=.*[^A-Za-z0-9]))([A-Za-z\d@#$%^&*\-_+=[\]{}|\\:',?/`~"();!]|\.(?!@)){8,16}$" HelpText=" " /> Restriction> ClaimType> <ClaimType Id="passwordPolicies"> <DisplayName>Password PoliciesDisplayName> <DataType>stringDataType> <UserHelpText>Password policies used by Azure AD to determine password strength, expiry etc.UserHelpText> ClaimType> <ClaimType Id="client_id"> <DisplayName>client_idDisplayName> <DataType>stringDataType> <AdminHelpText>Special parameter passed to EvoSTS.AdminHelpText> <UserHelpText>Special parameter passed to EvoSTS.UserHelpText> ClaimType> <ClaimType Id="resource_id"> <DisplayName>resource_idDisplayName> <DataType>stringDataType> <AdminHelpText>Special parameter passed to EvoSTS.AdminHelpText> <UserHelpText>Special parameter passed to EvoSTS.UserHelpText> ClaimType> <ClaimType Id="sub"> <DisplayName>SubjectDisplayName> <DataType>stringDataType> <DefaultPartnerClaimTypes> <Protocol Name="OpenIdConnect" PartnerClaimType="sub" /> DefaultPartnerClaimTypes> <UserHelpText /> ClaimType> <ClaimType Id="displayName"> <DisplayName>Display NameDisplayName> <DataType>stringDataType> <DefaultPartnerClaimTypes> <Protocol Name="OAuth2" PartnerClaimType="unique_name" /> <Protocol Name="OpenIdConnect" PartnerClaimType="name" /> <Protocol Name="SAML2" PartnerClaimType="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" /> DefaultPartnerClaimTypes> <UserHelpText>Your display name.UserHelpText> <UserInputType>TextBoxUserInputType> ClaimType> <ClaimType Id="hasFullProfile"> <DataType>booleanDataType> ClaimType> <ClaimType Id="strongAuthEmailExists"> <DataType>booleanDataType> ClaimType> <ClaimType Id="nca"> <DisplayName>ncaDisplayName> <DataType>stringDataType> <UserHelpText>Special parameter passed for local account authentication to login.microsoftonline.com.UserHelpText> ClaimType> <ClaimType Id="grant_type"> <DisplayName>grant_typeDisplayName> <DataType>stringDataType> <UserHelpText>Special parameter passed for local account authentication to login.microsoftonline.com.UserHelpText> ClaimType> <ClaimType Id="scope"> <DisplayName>scopeDisplayName> <DataType>stringDataType> <UserHelpText>Special parameter passed for local account authentication to login.microsoftonline.com.UserHelpText> ClaimType> <ClaimType Id="objectIdFromSession"> <DisplayName>objectIdFromSessionDisplayName> <DataType>booleanDataType> <UserHelpText>Parameter provided by the default session management provider to indicate that the object id has been retrieved from an SSO session.UserHelpText> ClaimType> <ClaimType Id="upnUserName"> <DisplayName>UPN User NameDisplayName> <DataType>stringDataType> <AdminHelpText>The user name for creating user principal name.AdminHelpText> <UserHelpText>The user name for creating user principal name.UserHelpText> ClaimType> <ClaimType Id="userPrincipalName"> <DisplayName>UserPrincipalNameDisplayName> <DataType>stringDataType> <DefaultPartnerClaimTypes> <Protocol Name="OAuth2" PartnerClaimType="upn" /> <Protocol Name="OpenIdConnect" PartnerClaimType="upn" /> <Protocol Name="SAML2" PartnerClaimType="http://schemas.microsoft.com/identity/claims/userprincipalname" /> DefaultPartnerClaimTypes> <AdminHelpText>The user name as stored in the Azure Active Directory.AdminHelpText> <UserHelpText>Your user name as stored in the Azure Active Directory.UserHelpText> ClaimType> <ClaimType Id="givenName"> <DisplayName>Given NameDisplayName> <DataType>stringDataType> <UserHelpText>Your given name (also known as first name).UserHelpText> <UserInputType>TextBoxUserInputType> ClaimType> <ClaimType Id="surname"> <DisplayName>SurnameDisplayName> <DataType>stringDataType> <UserHelpText>Your surname (also known as family name or last name).UserHelpText> <UserInputType>TextBoxUserInputType> ClaimType> ClaimsSchema> <Predicates> <Predicate Id="email" Method="MatchesRegex"> <UserHelpText>Please enter a valid email address.UserHelpText> <Parameters> <Parameter Id="RegularExpression">^[a-zA-Z0-9!#$%&'+^_`{}~-]+(?:\.[a-zA-Z0-9!#$%&'+^_`{}~-]+)*@(?:[a-zA-Z0-9](?:[a-zA-Z0-9-]*[a-zA-Z0-9])?\.)+[a-zA-Z0-9](?:[a-zA-Z0-9-]*[a-zA-Z0-9])?$Parameter> Parameters> Predicate> <Predicate Id="internationalOrNationalPhoneNumber" Method="MatchesRegex"> <UserHelpText>The value entered needs to be a phone number.UserHelpText> <Parameters> <Parameter Id="RegularExpression">^\+?(?:[-()\s]*\d[-()\s]*){4,16}$Parameter> Parameters> Predicate> <Predicate Id="noLeadingPlus" Method="MatchesRegex"> <UserHelpText>The national number should not include a country code.UserHelpText> <Parameters> <Parameter Id="RegularExpression">^[^\\+]+$Parameter> Parameters> Predicate> Predicates> <PredicateValidations> <PredicateValidation Id="email"> <PredicateGroups> <PredicateGroup Id="email"> <PredicateReferences> <PredicateReference Id="email" /> PredicateReferences> PredicateGroup> PredicateGroups> PredicateValidation> <PredicateValidation Id="phoneOrEmailSignInName"> <PredicateGroups> <PredicateGroup Id="phoneOrEmailSignInName"> <UserHelpText>Please enter a valid email address or phone number.UserHelpText> <PredicateReferences MatchAtLeast="1"> <PredicateReference Id="email" /> <PredicateReference Id="internationalOrNationalPhoneNumber" /> PredicateReferences> PredicateGroup> PredicateGroups> PredicateValidation> <PredicateValidation Id="nationalNumber"> <PredicateGroups> <PredicateGroup Id="internationalOrNationalPhoneNumber"> <PredicateReferences> <PredicateReference Id="internationalOrNationalPhoneNumber" /> PredicateReferences> PredicateGroup> <PredicateGroup Id="noLeadingPlus"> <PredicateReferences> <PredicateReference Id="noLeadingPlus" /> PredicateReferences> PredicateGroup> PredicateGroups> PredicateValidation> <PredicateValidation Id="internationalOrNationalPhoneNumber"> <PredicateGroups> <PredicateGroup Id="internationalOrNationalPhoneNumber"> <UserHelpText>Please enter a valid phone number.UserHelpText> <PredicateReferences> <PredicateReference Id="internationalOrNationalPhoneNumber" /> PredicateReferences> PredicateGroup> PredicateGroups> PredicateValidation> PredicateValidations> <ClaimsTransformations> <ClaimsTransformation Id="CreateRandomUPNUserName" TransformationMethod="CreateRandomString"> <InputParameters> <InputParameter Id="randomGeneratorType" DataType="string" Value="GUID" /> InputParameters> <OutputClaims> <OutputClaim ClaimTypeReferenceId="upnUserName" TransformationClaimType="outputClaim" /> OutputClaims> ClaimsTransformation> <ClaimsTransformation Id="CreateUserPrincipalName" TransformationMethod="FormatStringClaim"> <InputClaims> <InputClaim ClaimTypeReferenceId="upnUserName" TransformationClaimType="inputClaim" /> InputClaims> <InputParameters> <InputParameter Id="stringFormat" DataType="string" Value="cpim_{0}@{RelyingPartyTenantId}" /> InputParameters> <OutputClaims> <OutputClaim ClaimTypeReferenceId="userPrincipalName" TransformationClaimType="outputClaim" /> OutputClaims> ClaimsTransformation> <ClaimsTransformation Id="ConvertStringToPhoneNumber" TransformationMethod="ConvertStringToPhoneNumberClaim"> <InputClaims> <InputClaim ClaimTypeReferenceId="countryCode" TransformationClaimType="country" /> <InputClaim ClaimTypeReferenceId="nationalNumber" TransformationClaimType="phoneNumberString" /> InputClaims> <OutputClaims> <OutputClaim ClaimTypeReferenceId="signInNames.phoneNumber" TransformationClaimType="outputClaim" /> OutputClaims> ClaimsTransformation> <ClaimsTransformation Id="SetPhoneNumberIfPredicateMatch" TransformationMethod="CopyClaimIfPredicateMatch"> <InputClaims> <InputClaim ClaimTypeReferenceId="signInName" TransformationClaimType="inputClaim" /> InputClaims> <OutputClaims> <OutputClaim ClaimTypeReferenceId="phoneNumber" TransformationClaimType="outputClaim" /> OutputClaims> ClaimsTransformation> <ClaimsTransformation Id="SetEmailIfPredicateMatch" TransformationMethod="CopyClaimIfPredicateMatch"> <InputClaims> <InputClaim ClaimTypeReferenceId="signInName" TransformationClaimType="inputClaim" /> InputClaims> <OutputClaims> <OutputClaim ClaimTypeReferenceId="email" TransformationClaimType="outputClaim" /> OutputClaims> ClaimsTransformation> <ClaimsTransformation Id="GetNationalNumberAndCountryCodeIfInternationalFormat" TransformationMethod="GetNationalNumberAndCountryCodeFromPhoneNumberString"> <InputClaims> <InputClaim ClaimTypeReferenceId="phoneNumber" TransformationClaimType="phoneNumber" /> InputClaims> <InputParameters> <InputParameter Id="throwExceptionOnFailure" DataType="boolean" Value="false" /> <InputParameter Id="countryCodeType" DataType="string" Value="ISO3166" /> InputParameters> <OutputClaims> <OutputClaim ClaimTypeReferenceId="phoneNumber" TransformationClaimType="nationalNumber" /> <OutputClaim ClaimTypeReferenceId="countryCode" TransformationClaimType="countryCode" /> OutputClaims> ClaimsTransformation> <ClaimsTransformation Id="PhoneNumberToNationalNumber" TransformationMethod="CopyClaim"> <InputClaims> <InputClaim ClaimTypeReferenceId="phoneNumber" TransformationClaimType="inputClaim" /> InputClaims> <OutputClaims> <OutputClaim ClaimTypeReferenceId="nationalNumber" TransformationClaimType="outputClaim" /> OutputClaims> ClaimsTransformation> <ClaimsTransformation Id="CheckIfStrongAuthEmailExists" TransformationMethod="DoesClaimExist"> <InputClaims> <InputClaim ClaimTypeReferenceId="strongAuthenticationEmailAddress" TransformationClaimType="inputClaim" /> InputClaims> <OutputClaims> <OutputClaim ClaimTypeReferenceId="strongAuthEmailExists" TransformationClaimType="outputClaim" /> OutputClaims> ClaimsTransformation> <ClaimsTransformation Id="ThrowErrorIfStrongAuthEmailDoesNotExist" TransformationMethod="AssertBooleanClaimIsEqualToValue"> <InputClaims> <InputClaim ClaimTypeReferenceId="strongAuthEmailExists" TransformationClaimType="inputClaim" /> InputClaims> <InputParameters> <InputParameter Id="valueToCompareTo" DataType="boolean" Value="true" /> InputParameters> ClaimsTransformation> ClaimsTransformations> <ClientDefinitions> <ClientDefinition Id="DefaultWeb"> <ClientUIFilterFlags>LineMarkers, MetaRefreshClientUIFilterFlags> ClientDefinition> ClientDefinitions> <ContentDefinitions> <ContentDefinition Id="api.error"> <LoadUri>~/tenant/templates/AzureBlue/exception.cshtmlLoadUri> <RecoveryUri>~/common/default_page_error.htmlRecoveryUri> <DataUri>urn:com:microsoft:aad:b2c:elements:contract:globalexception:1.2.1DataUri> <Metadata> <Item Key="DisplayName">Error pageItem> Metadata> ContentDefinition> <ContentDefinition Id="phoneInput"> <LoadUri>~/tenant/templates/AzureBlue/selfAsserted.cshtmlLoadUri> <RecoveryUri>~/common/default_page_error.htmlRecoveryUri> <DataUri>urn:com:microsoft:aad:b2c:elements:contract:selfasserted:2.1.1DataUri> <Metadata> <Item Key="DisplayName">Enter phone number to continueItem> Metadata> <LocalizedResourcesReferences MergeBehavior="Prepend"> <LocalizedResourcesReference Language="en" LocalizedResourcesReferenceId="phoneInput.en" /> LocalizedResourcesReferences> ContentDefinition> <ContentDefinition Id="newPhoneNumber"> <LoadUri>~/tenant/templates/AzureBlue/selfAsserted.cshtmlLoadUri> <RecoveryUri>~/common/default_page_error.htmlRecoveryUri> <DataUri>urn:com:microsoft:aad:b2c:elements:contract:selfasserted:2.1.1DataUri> <Metadata> <Item Key="DisplayName">Verify new phone numberItem> Metadata> <LocalizedResourcesReferences MergeBehavior="Prepend"> <LocalizedResourcesReference Language="en" LocalizedResourcesReferenceId="newPhoneNumber.en" /> LocalizedResourcesReferences> ContentDefinition> <ContentDefinition Id="phoneSignIn"> <LoadUri>~/tenant/templates/AzureBlue/selfAsserted.cshtmlLoadUri> <RecoveryUri>~/common/default_page_error.htmlRecoveryUri> <DataUri>urn:com:microsoft:aad:b2c:elements:contract:selfasserted:2.1.1DataUri> <Metadata> <Item Key="DisplayName">Verify phone to sign inItem> Metadata> <LocalizedResourcesReferences MergeBehavior="Prepend"> <LocalizedResourcesReference Language="en" LocalizedResourcesReferenceId="phoneSignIn.en" /> LocalizedResourcesReferences> ContentDefinition> <ContentDefinition Id="phoneSignUp"> <LoadUri>~/tenant/templates/AzureBlue/selfAsserted.cshtmlLoadUri> <RecoveryUri>~/common/default_page_error.htmlRecoveryUri> <DataUri>urn:com:microsoft:aad:b2c:elements:contract:selfasserted:2.1.1DataUri> <Metadata> <Item Key="DisplayName">Verify phone to sign upItem> Metadata> <LocalizedResourcesReferences MergeBehavior="Prepend"> <LocalizedResourcesReference Language="en" LocalizedResourcesReferenceId="phoneSignUp.en" /> LocalizedResourcesReferences>