I have a solution that is supposed to be using the Azure AD B2C external authentication.
I have configured 2 environments: Dev and Production using Dynamicweb 9.10.12.
I have configured both the same way, only with different sets of credentials. Everything works pretty well so far.
I have then upgraded the production version to 9.12.2. After the upgrade, the authentication does not happen anymore unless you visit the external authentication link: /Admin/Public/Social/ExternalLogin.aspx?action=login&providerID=2
While running on 9.10.12, the authentication happened seamlessly.
I have tested again by changing the version back to 9.10.12 and it seems that the authentication works well again.
What can be the issue between these 2 versions? Am I missing a 9.12 specific setting? A web.config record? Or is it a bug?
One more thing that I have noticed is that by using the "logout function": /Admin/Public/ExtranetLogoff.aspx?ID=8065, I get a pretty nasty error:
IDX20108: The address specified '[PII is hidden. For more details, see https://aka.ms/IdentityModel/PII.]' is not valid as per HTTPS scheme. Please specify an https address for security reasons. If you want to test with http address, set the RequireHttps property on IDocumentRetriever to false.
Parameter name: address
I am not sure if this is related to the "Logout from Azure on extranet logout" checkbox on my configuration. I have tried with both options (on and off) and I get the same error. It can be, however, related to how the entire Azure B2C authentication is configured in Microsoft Azure.