Hi,

Using per the sample in the SU link, you could rather call something like "SelfAsserted-LocalAccountSignin-Email" that calls "login-NonInteractive" to sign you in. In your case, signInName and password would be input claims using the values in the JWT.

But passing these values in a JWT is not secure. They should be encrypted.

Alternatively, use ROPC - https://learn.microsoft.com/en-us/azure/active-directory-b2c/add-ropc-policy?tabs=app-reg-ga&pivots=b2c-custom-policy

Rory