Azure AD Workload Identity uses Kubernetes primitives to associate managed identities for Azure resources and identities in Azure Active Directory (AAD) with pods.
Change: pip install msal[broker] will now pick up the latest PyMsalRuntime 0.16.x which contains a bugfix for being run as administrator. This release fixes #707.
MSAL Python 1.28.0
New feature: PublicClientApplication and ConfidentialClientApplication have a new oidc_authority parameter that can be used to specify authority of any generic OpenID Connect authority, typically the customized domain for CIAM. (#676, #678)
Dropping Python 2.7
MSAL Python 1.27.0
What's Changed
Release Notes:
New feature: remove_tokens_for_client() will remove tokens acquired by acquire_token_for_client() (#640, #650, #666)
Observability: Successful token response will contain a new token_source field to indicate where the token was obtained from: identity_provider, cache or broker. (#610)
MSAL Python 1.24.1
Includes minor adjustments on handling acquire_token_interactive(). The scope of the issue being addressed was limited to a short-lived sign-in attempt. The potential misuse vector complexity was high, therefore it is unlikely to be reproduced in standard usage scenarios; however, out of abundance of caution, this fix is shipped to align ourselves with Microsoft's policy of secure-by-default.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the all group in /examples/msal-python with 2 updates: azure-keyvault-secrets and msal.
Updates
azure-keyvault-secrets
from 4.7.0 to 4.8.0Commits
7561277
[Key Vault] Prepare for data-plane library releases (#34409)ef19493
[Key Vault] Handlecryptography
RSA keys without local key material (#34330)ddbe1ed
[Key Vault] Removex509_thumbprint_string
property (#34386)d7ed3e0
[Key Vault] Support 7.5 API version in Keys (#34233)f412402
[Key Vault] Support 7.5 API version in Administration (#34057)fa3b6d1
[Key Vault] Support 7.5 API version in Certificates (#34187)fc82782
[Key Vault] Support 7.5 API version in Secrets (#34230)d717767
NO_CI enable strict_sphinx where libraries are passing already9900995
[Key Vault] Prepare forstrict-sphinx
(#33969)0f9eb9c
[Key Vault] Remove direct uses ofasyncio.sleep
(#33819)Updates
msal
from 1.22.0 to 1.28.1Release notes
Sourced from msal's releases.
... (truncated)
Commits
cf23892
Adapting to a lab change introduced todayddb94b2
Pick up PyMsalRuntime 0.16.xb081f3d
Lab API changed since May 14, 2024d0693ac
Support reading CCA cert from a pfx file. Tested.c4152d2
Suggests to use XDG_RUNTIME_DIR for token cachedd4dbe7
Upgrade action's versions and also enable cachefff9855
Merges remote-tracking branch and fixes #5167fffded
Raise exception rather than returning None for interaction timeout48a7bd3
Should have used the constant instead of a raw strf821b2d
Add CODEOWNERS file (#689)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show