How to acquire Azure management token and call HTTP in .NET for Azure B2C domain name availability check?
I've been working on setting up Azure AD B2C tenants and encountered a roadblock when trying to verify domain name availability before creating a tenant. Following a helpful response on my previous question, I learned about using Azure management API to check domain name availability and successfully obtained an access token via Azure CLI command:
az account get-access-token --resource=https://management.azure.com --query accessToken --output tsv
I'm looking to implement this solution in a .NET application to programmatically acquire access token and make HTTP calls to check domain name availability.
Could someone provide guidance or a code snippet on programmatically acquiring access token in a .NET application and making HTTP POST request to Azure management API endpoint to check domain name availability?
Initially, register one Entra ID application and create client secret in it like this:
You can make use of below sample code to acquire Azure Management token and call API to check domain availability:
using System;
using System.Net.Http;
using System.Net.Http.Headers;
using System.Text;
using System.Threading.Tasks;
using Microsoft.Identity.Client;
using Newtonsoft.Json.Linq;
namespace AzureB2CDomainCheck
{
class Program
{
private static string clientId = "appId";
private static string clientSecret = "secret";
private static string tenantId = "tenantId";
private static string authority = $"https://login.microsoftonline.com/{tenantId}";
private static string subscriptionId = "subId";
private static string apiVersion = "2021-04-01";
static async Task Main(string[] args)
{
var accessToken = await GetAccessToken();
await CheckDomainAvailability(accessToken);
}
private static async Task<string> GetAccessToken()
{
IConfidentialClientApplication app = ConfidentialClientApplicationBuilder.Create(clientId)
.WithClientSecret(clientSecret)
.WithAuthority(new Uri(authority))
.Build();
AuthenticationResult result = await app.AcquireTokenForClient(new string[] { "https://management.azure.com/.default" })
.ExecuteAsync();
return result.AccessToken;
}
private static async Task CheckDomainAvailability(string accessToken)
{
using (HttpClient httpClient = new HttpClient())
{
httpClient.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", accessToken);
httpClient.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));
string requestUri = $"https://management.azure.com/subscriptions/{subscriptionId}/providers/Microsoft.AzureActiveDirectory/checkNameAvailability?api-version={apiVersion}";
string requestBody = @"{
""name"": ""sridemob2c.onmicrosoft.com"",
""countryCode"": ""US""
}";
HttpResponseMessage response = await httpClient.PostAsync(requestUri, new StringContent(requestBody, Encoding.UTF8, "application/json"));
if (response.IsSuccessStatusCode)
{
string responseContent = await response.Content.ReadAsStringAsync();
JObject jsonResponse = JObject.Parse(responseContent);
bool isAvailable = jsonResponse["nameAvailable"].Value<bool>();
Console.WriteLine($"Domain name is {(isAvailable ? "available" : "not available")}");
}
else
{
string responseContent = await response.Content.ReadAsStringAsync();
Console.WriteLine($"Error: {response.StatusCode}");
Console.WriteLine($"Response: {responseContent}");
}
}
}
}
}
Response when domain available:
Response when domain not available:
Make sure to assign proper RBAC role to the service principal under subscription level.
- KeyCloak Integration with Azure B2C UserName Mapping Issue
- How do I programmatically clear or update a phone number for Azure AD B2C MFA?
- B2C - How to override sign up now link (custom policy)
- Azure B2C IdP-Access Token fails with IDX10511: Signature validation failed
- B2C Sign-up screen shows {OIDC:LoginHint} instead of the login
- During signIn receiving B2C error code ‘AADB2C99059’
- Azure B2C / WPF - Handling a failed MFA verification flow
- Assign B2C User to ExternalAzureAD identity
- AADB2C90304: User journey went into a bad state. Claims exchange with id 'LocalAccountSigninEmailExchange' could not be found in orchestration step
- "AADSTS900144: The request body must contain the following parameter: 'grant_type'.?
- Sign in to Azure B2C with an OpenID account (Microsoft Work email) but prevent user from signing up
- Azure b2c still authenticated after hitting logout
- Can Azure AD B2C send extension attributes without the extension prefix on a SAML token in a SAML IdP-initiated SSO flow?
- Azure B2C Signup page
- Azure B2C integration not working on app built using pwabuilder for iOS
- Azure AD B2C problem with Self-Service password reset
- use of b2clogin.com when acquiring token with Client Credential Grant Flow
- Azure B2C does not receive script information written in HTML files uploaded to storage
- Azure B2C: Edit Profile via a single page
- Azure b2c cutom policy signin validation profile
- Mendix and Azure Ad B2C AuthRequest does not have assertion consumer service URL
- Azure Active Directory B2C: How to query MS Graph to get a user's alternative security ID?
- Did B2C user creation defaults change regarding password reset?
- Refresh Tokens and MicrosoftIdentityWebApp
- ADB2C Social Log in - what is the difference between alternateSecurityId and userIdentity?
- To allow external client application users to access B2C Integrated client website
- Correlation failed in asp.net core
- Custom attribute as stringCollection on Azure AD B2C
- How to get detailed exception in Azure B2C Custom policy by Correlation ID?
- Authenticating with Azure AD B2C Issue