What Does STS Mean in the Context of Azure AD B2C

Question

From the Class UserAgentApplication documentation there is a reference to STS. What is STS?

acquireTokenSilent: Used to get the token from cache. MSAL will return the cached token if it is not expired. Or it will send a request to the STS to obtain an access_token using a hidden iframe. To renew idToken, clientId should be passed as the only scope in the scopes array.

score 9 · Accepted Answer · edited Oct 07 '21 at 08:46

9

STS stands for the Security Token Service. In the context of the standard OAuth protocol, it basically maps to the Authorization Server which issues tokens to the applications after authentication and authorization.

In Azure AD B2C, the STS can federate with other Identity Providers such as Facebook, Google, etc.

edited Oct 07 '21 at 08:46

Community

1
1

answered Jul 18 '17 at 23:19

Navya Canumalla

507
2
7

So this *can* refer to azure custom policies? As I have all token configurations there. If I need my STS server to have a specific header, I can add it there? – Cedric Mar 27 '19 at 10:12

What Does STS Mean in the Context of Azure AD B2C

1 Answers1

Linked