Use this GitHub Action to deploy a TrustFramework KeySet certificate into your Azure Active Directory B2C tenant using the Microsoft Graph API. If the certificate does not yet exist, it will be created. If the certificate already exists, it will be replaced with a new version.

For more information on TrustFramework Policies and the Identity Experience Framework, see the Azure AD B2C documentation.

To authenticate to the Microsoft Graph, you will need to obtain client application credentials using these instructions.

on: push

env:
  clientId: 00000000-0000-0000-0000-000000000000
  tenant: my-tenant.onmicrosoft.com
  certificateKeyContainer: B2C_1A_MyCertificate

jobs:
  build-and-deploy:
    runs-on: ubuntu-latest
    steps:
    - uses: actions/checkout@v2

    - name: Upload Facebook Client Secret
      uses: azure-ad-b2c/deploy-trustframework-keyset-secret@v1
      with:
        name: ${{ env.certificateKeyContainer }}
        file: ./path-to/cert.pfx
        password: ${{ secrets.pfxPassword }}
        tenant: ${{ env.tenant }}
        clientId: ${{ env.clientId }}
        clientSecret: ${{ secrets.clientSecret }}

Use Stack Overflow to get support from the community. Ask your questions on Stack Overflow first and browse existing issues to see if someone has asked your question before. Make sure that your questions or comments are tagged with [azure-ad-b2c].

If you find a bug in the sample, please raise the issue on GitHub Issues.

To provide product feedback, visit the Azure AD B2C feedback page.