Facebook authentication issue due to service-wide changes. RESOLVED for all Standard Azure AD B2C tenants.


ISSUE:

Today, March 27, 2017, at  1235h PST, the Azure AD B2C monitors detected failures in new authentications when Facebook was used as the identity provider (most existing sessions would continue unaffected).   The team has discovered that Facebook has implemented a change in the method they use to send their response from the access_token endpoint.  The query response method, which was expected by Azure AD B2C, has been deprecated in favor of a JSON -formatted response.

 

FIX: The Azure AD B2C team has RESOLVED the issue for 100% of our impacted Azure AD B2C Standard customers.  No action is needed.

 

 

Jose Rojas, Principal Program Manager, Azure AD B2C team

 

 

NOTE: A few tenants using some advanced private preview features (less than 1% of our total) with policies of the format B2C_1A_name must make an addition to their policies.  The B2C team has contacted all tenants with active Facebook usage.  All private preview developers are advised to add the following to their Facebook Technical Profile’s metadata section. Reach out to us at AADB2CPreview@microsoft.com with questions.

<!– The Facebook required HTTP GET method, but the access token response is in JSON format from 3/27/2017 –>

<Item Key=”AccessTokenResponseFormat”>json</Item>

 

 


Comments (4)

  1. Hey Guys, im having issue with App Service facebook authentication. The facebook UI disappears and never recover after that. Just experience it couple of hours ago. Any update?

    1. Gerardo Saca says:

      Hey, apologies for the delayed response here. App Service Facebook auth is separate from Azure AD B2C’s integration with Facebook. That took a bit longer to get fixed by the App Services team but you shouldn’t be facing any issues. If you are, post on StackOverflow, both the Azure AD and the App Services team monitor it for new posts.

  2. nor0x says:

    Authentication on Azure Mobile Apps still seems the be broken. A login request results in an “401.71 Unathorized” response coming from the Facebook API. Waiting for a fix – users can’t login 🙁

    1. Gerardo Saca says:

      **Same response as for tofrex**
      Hey, apologies for the delayed response here. App Service Facebook auth is separate from Azure AD B2C’s integration with Facebook. That took a bit longer to get fixed by the App Services team but you shouldn’t be facing any issues. If you are, post on StackOverflow, both the Azure AD and the App Services team monitor it for new posts.

Skip to main content