Forum Discussion
yoelh
Mar 17, 2023Microsoft
Azure AD B2C authorization code and refresh token size increase update
Update September 11, 2023: This post is irrelevant anymore
As part of ongoing security improvement efforts in Azure Active Directory (AAD), part of Microsoft Entra, Azure AD B2C will be rolling...
Dan_Greil
Apr 19, 2023Copper Contributor
Chiming in to confirm the token size increased in a couple of B2C tenants and did cause application down-time because the WAF max URL size is 2KB and we're seeing 3KB tokens.
Confirming also that this blog post is the only mention we've seen of this new behavior. This change doesn't, for example, appear on the Azure Updates page. Not what we expect for enterprise services.
Confirming also that this blog post is the only mention we've seen of this new behavior. This change doesn't, for example, appear on the Azure Updates page. Not what we expect for enterprise services.