passwordless | 🗝 Authentication for your Rails app | Authentication library

I have two ubuntu aws instance and below are following details

1. DevServer: 172.31.29.201
2. QAServer: 172.31.30.52

I establish a passwordless SSH between two machine bu generating ssh-keygen in DevServer and copied it to QAServer using ssh-copy-id ubuntu@172.31.30.52 [ubuntu is username and 172.31.30.52 is private ip address of the QAServer)

I'm able to successfully make a SSH connection to the QAServer from DevServer without any issue

Even scp command to transfer the .war file to the QAServer tomcat8/webapps is successful. File qaapp.war is transferred to the tomcat8/webapps/ folder

Our SPA uses Azure B2C and MSAL (React) for user authentication. There are other requirements so we use custom policies instead of predefined user flows. But I struggle to implement Keep Me Signed In (KMSI) feature following these instructions.

1. I used custom policies from the starter pack: Phone_Email_Base.xml and SignUpOrSignInWithPhoneOrEmail.xml
2. Added True entry to
3. Updated relying party policy file with this:

I have a Spark program with python. The structure of the program is like this:

I have an existing custom policy (https://github.com/azure-ad-b2c/samples/blob/master/policies/passwordless-email/) and I want to add phone MFA to this. I found https://github.com/azure-ad-b2c/samples/tree/master/policies/mfa-email-or-phone but this allows email or phone, there is also https://github.com/Azure-Samples/active-directory-b2c-custom-policy-starterpack/tree/master/SocialAndLocalAccountsWithMfa and https://docs.microsoft.com/en-us/azure/active-directory-b2c/multi-factor-auth-technical-profile.

Is there any way to force a phone call as mfa? (don't allow sms)

I give the end user to either provide username i.e dest_user for which ssh-keys is already setup on Linux for all destination hosts i.e dest_host.

Below is how I setup dynamic inventory for passwordless user

Is there a way to disable or enable sign ups for a specific application which is independent of the “Disable Sign Ups”-toggle in the dashboard for login with passwordless email (Authentication/Passwordless/Email)?

I'm trying to achieve the following with ansible

1. create a user without a password

...

I'm trying to get the server drop-down to appear in the login screen but it won't, I've added both servers in /etc/phpmyadmin/config.inc.php but so far can only get it to work with one at a time. If I increment the variable $i it just leads to a semi-blank screen with no tangible database information on it, if I comment $i out it, it defaults to the second server.

The first server is localhost, the second is a docker instance, the relevant content of config.inc.php is

I am using Azure B2C custom policy for passwordless signin following this sample.

The <BuildingBlocks> section has the <ClaimsTransformations>.....ClaimsTransformations> which defines random password generation. To customize the UI for my login screens I have also added <ContentDefinitions> .... ContentDefinitions> inside <BuildingBlocks> section.

Now I am getting a validation error when trying to upload the TrustFrameworkExtensions_passwordless_only.xml file saying that the ---> element <BuildingBlocks> has invalid child element <ClaimsTransformations>. List of possible elements expected: Localisation, DisplayControls.

This is strange because in the reference schema ClaimsTransformations is also a valid element. Not idea why I am getting this error. Can anyone please help me with this issue?