[Bug] Using userFlow parameter for both AuthorizeForScopes and GetAccessTokenForUserAsync results in AADB2C90088

[jennyf19]

from: @grzegorzy -

Cannot acquire API access token for B2C Reset Password policy. I used the userFlow parameter for both AuthorizeForScopes and GetAccessTokenForUserAsync but when I sign in via the "reset password" policy I receive an error when the application tries to call the TodoListService. Here is the error:

MSAL.NetCore.4.16.1.0.MsalUiRequiredException:
ErrorCode: invalid_grant
Microsoft.Identity.Client.MsalUiRequiredException: AADB2C90088: The provided grant has not been issued for this endpoint. Actual Value : B2C_1_TEST_susi and Expected Value : B2C_1_TEST_reset_password

My assumption after the 0.2.1-preview release and according to what @jennyf19 said here was that ToDoListClient should redirect me back to the B2C again after I use the "reset password" functionality, in order to acquire an access token for the correct policy "susi". I don't know if this is what should happen. Either way my case still doesn't work.

I tried to quickly check it in the source code and I noticed one thing. Take a look at the AuthorizeForScopes attribute implementation. It looks like the UserFlow property is not used in the OnException method. It might be a mistake or I just don't see something.

Perhaps I am doing something wrong. Perhaps I should create a separate issue instead of writing here. I just wanted to give you guys some feedback.

cc: @jmprieur

Looks like we missed this from this issue.

[jennyf19]

I need to check if this still repros.

[jennyf19]

Could be fixed in 2.5.0, if not, please re-open.