fix string comparison bug in b2c samples

Author: derisen

1-Authentication/2-sign-in-b2c/SPA/src/App.jsx

@@ -1,12 +1,12 @@
 import { useEffect } from 'react';
+import { Route, Routes } from 'react-router-dom';
 import { MsalProvider, useMsal } from '@azure/msal-react';
 import { EventType } from '@azure/msal-browser';
 
-import { Route, Routes } from 'react-router-dom';
 import { PageLayout } from './components/PageLayout';
 import { Home } from './pages/Home';
 import { b2cPolicies } from './authConfig';
-
+import { compareIssuingPolicy } from './utils/claimUtils';
 
 import './styles/App.css';
 
@@ -57,7 +57,7 @@ const Pages = () => {
                  * you can replace the code below with the same pattern used for handling the return from
                  * profile edit flow
                  */
-                if (event.payload.idTokenClaims['tfp'] === b2cPolicies.names.forgotPassword) {
+                if (compareIssuingPolicy(event.payload.idTokenClaims, b2cPolicies.names.forgotPassword)) {
                     let signUpSignInFlowRequest = {
                         authority: b2cPolicies.authorities.signUpSignIn.authority,
                     };

1-Authentication/2-sign-in-b2c/SPA/src/utils/claimUtils.js

@@ -220,4 +220,16 @@ const populateClaim = (claim, value, description, index, claimsObject) => {
 const changeDateFormat = (date) => {
     let dateObj = new Date(date * 1000);
     return `${date} - [${dateObj.toString()}]`;
-};
+};
+
+/**
+ * Compare the token issuing policy with a specific policy name
+ * @param {object} idTokenClaims - Object containing the claims from the parsed token
+ * @param {string} policyToCompare - ID/Name of the policy as expressed in the Azure portal
+ * @returns {boolean}
+ */
+export function compareIssuingPolicy(idTokenClaims, policyToCompare) {
+    let tfpMatches = idTokenClaims.hasOwnProperty('tfp') && idTokenClaims['tfp'].toLowerCase() === policyToCompare.toLowerCase();
+    let acrMatches = idTokenClaims.hasOwnProperty('acr') && idTokenClaims['acr'].toLowerCase() === policyToCompare.toLowerCase();
+    return tfpMatches || acrMatches;
+}

3-Authorization-II/2-call-api-b2c/SPA/src/App.jsx

@@ -1,12 +1,11 @@
 import { useEffect } from 'react';
+import { Routes, Route } from "react-router-dom";
 import { MsalProvider, useMsal } from '@azure/msal-react';
 import { EventType } from '@azure/msal-browser';
 
-import { Routes, Route } from "react-router-dom";
 import { PageLayout } from './components/PageLayout';
 import { TodoList } from './pages/TodoList';
 import { Home } from './pages/Home';
-
 import { b2cPolicies, protectedResources } from './authConfig';
 import { compareIssuingPolicy } from './utils/claimUtils';
 

3-Authorization-II/2-call-api-b2c/SPA/src/hooks/useFetchWithMsal.jsx

@@ -3,7 +3,7 @@ import {
     useCallback,
 } from 'react';
 
-import { InteractionType, PopupRequest } from '@azure/msal-browser';
+import { InteractionType } from '@azure/msal-browser';
 import { useMsal, useMsalAuthentication } from "@azure/msal-react";
 
 /**

3-Authorization-II/2-call-api-b2c/SPA/src/utils/claimUtils.js

@@ -175,13 +175,13 @@ export const createClaimsTable = (claims) => {
                 index++;
                 break;
             case "at_hash":
-                 populateClaim(
-                     key,
-                     claims[key],
-                     'An access token hash included in an ID token only when the token is issued together with an OAuth 2.0 access token. An access token hash can be used to validate the authenticity of an access token',
-                     index,
-                     claimsObj
-                 );
+                populateClaim(
+                    key,
+                    claims[key],
+                    'An access token hash included in an ID token only when the token is issued together with an OAuth 2.0 access token. An access token hash can be used to validate the authenticity of an access token',
+                    index,
+                    claimsObj
+                );
                 index++;
                 break;
             case 'uti':
@@ -225,13 +225,12 @@ const changeDateFormat = (date) => {
 
 /**
  * Compare the token issuing policy with a specific policy name
- * @param {object} idTokenClaims - Object containining token claims
+ * @param {object} idTokenClaims - Object containing the claims from the parsed token
  * @param {string} policyToCompare - ID/Name of the policy as expressed in the Azure portal
  * @returns {boolean}
  */
- export function compareIssuingPolicy(idTokenClaims, policyToCompare) {
-    let tfpMatches = idTokenClaims['tfp'] === policyToCompare.toLowerCase();
-    let acrMatches = idTokenClaims['acr'] === policyToCompare.toLowerCase()
-    return tfpMatches || acrMatches
-  }
-  
+export function compareIssuingPolicy(idTokenClaims, policyToCompare) {
+    let tfpMatches = idTokenClaims.hasOwnProperty('tfp') && idTokenClaims['tfp'].toLowerCase() === policyToCompare.toLowerCase();
+    let acrMatches = idTokenClaims.hasOwnProperty('acr') && idTokenClaims['acr'].toLowerCase() === policyToCompare.toLowerCase();
+    return tfpMatches || acrMatches;
+}