Is there a way to construct different flows for different levels of access? Here's what I'm going for...
Users will of course need have both a password and MFA (email) enabled before continuing with this.
I want users of application A to only be required to login with an emailed code because it won't have much personal data hidden behind it. But, for users of application B, which stores financial information, I want them to have to provide their password plus a six digit code. If they first enter application B, they shouldn't have to reauthenticate to use application A. If they use application A first, however, I want them to enter a password and MFA when accessing application B.
Is there any support for this? I realize this is not Azure AD B2C, but B2C does support this kind of thing and I imagine this use case is also included in Duende or STS.
Thanks!
Is there a way to construct different flows for different levels of access? Here's what I'm going for...
Users will of course need have both a password and MFA (email) enabled before continuing with this.
I want users of application A to only be required to login with an emailed code because it won't have much personal data hidden behind it. But, for users of application B, which stores financial information, I want them to have to provide their password plus a six digit code. If they first enter application B, they shouldn't have to reauthenticate to use application A. If they use application A first, however, I want them to enter a password and MFA when accessing application B.
Is there any support for this? I realize this is not Azure AD B2C, but B2C does support this kind of thing and I imagine this use case is also included in Duende or STS.
Thanks!