respond to comments

Author: salman90

1-Authentication/2-sign-in-b2c/App/authPopup.js

@@ -24,7 +24,6 @@ myMSALObj.addEventCallback((event) => {
                 .getAllAccounts()
                 .find(
                     (account) =>
-                        account.idTokenClaims.oid === event.payload.idTokenClaims.oid &&
                         account.idTokenClaims.sub === event.payload.idTokenClaims.sub &&
                         account.idTokenClaims['tfp'] === b2cPolicies.names.signUpSignIn
                 );
@@ -35,7 +34,10 @@ myMSALObj.addEventCallback((event) => {
             };
 
             // silently login again with the signUpSignIn policy
-            myMSALObj.ssoSilent(signUpSignInFlowRequest).catch((error) => {
+            myMSALObj.ssoSilent(signUpSignInFlowRequest)
+            .then(() => {
+                // window.location.reload();
+            }).catch((error) => {
                 console.log(error);
                 if (error instanceof msal.InteractionRequiredAuthError) {
                     myMSALObj.loginPopup({

1-Authentication/2-sign-in-b2c/App/authRedirect.js

@@ -35,7 +35,10 @@ myMSALObj.addEventCallback((event) => {
             };
 
             // silently login again with the signUpSignIn policy
-            myMSALObj.ssoSilent(signUpSignInFlowRequest).catch((error) => {
+            myMSALObj.ssoSilent(signUpSignInFlowRequest)
+            .redirect(() => {
+                window.location.reload();
+            }).catch((error) => {
                 console.log(error);
                 if (error instanceof msal.InteractionRequiredAuthError) {
                     myMSALObj.loginRedirect({

1-Authentication/2-sign-in-b2c/package-lock.json

@@ -30,7 +30,6 @@
   "homepage": "https://github.com/Azure-Samples/ms-identity-javascript-tutorial#readme",
   "dependencies": {
     "express": "^4.17.1",
-    "express-rate-limit": "^6.7.0",
     "morgan": "^1.10.0"
   },
   "devDependencies": {

1-Authentication/2-sign-in-b2c/package.json

@@ -2,31 +2,11 @@ const express = require('express');
 const morgan = require('morgan');
 const path = require('path');
 
-const rateLimit = require('express-rate-limit');
-
 const DEFAULT_PORT = process.env.PORT || 6420;
 
 // initialize express.
 const app = express();
 
-/**
- * HTTP request handlers should not perform expensive operations such as accessing the file system,
- * executing an operating system command or interacting with a database without limiting the rate at
- * which requests are accepted. Otherwise, the application becomes vulnerable to denial-of-service attacks
- * where an attacker can cause the application to crash or become unresponsive by issuing a large number of
- * requests at the same time. For more information, visit: https://cheatsheetseries.owasp.org/cheatsheets/Denial_of_Service_Cheat_Sheet.html
- */
-const limiter = rateLimit({
-    windowMs: 15 * 60 * 1000, // 15 minutes
-    max: 100, // Limit each IP to 100 requests per `window` (here, per 15 minutes)
-    standardHeaders: true, // Return rate limit info in the `RateLimit-*` headers
-    legacyHeaders: false, // Disable the `X-RateLimit-*` headers
-});
-
-
-// Apply the rate limiting middleware to all requests
-app.use(limiter);
-
 // Configure morgan module to log all requests.
 app.use(morgan('dev'));