Nonce redirect changes, Fixes AB#3098972

AzureAD / microsoft-authentication-library-common-for-android

Common code used by both the Active Directory Authentication Library (ADAL) and the Microsoft Authentication Library (MSAL)

MIT License

41 stars 36 forks source link

Nonce redirect changes, Fixes AB#3098972 #2552

Open somalaya opened 2 days ago

somalaya commented 2 days ago

What : Server can reject nonce sent in PRT header in requests. In this case, server redirects to a url with sso_nonce provided in the URL. Broker should be able to handle redirect and replay request with updated PRT credential using new nonce.

Fixes AB#3098972

github-actions[bot] commented 2 days ago

❌ Work item link check failed. Description does not contain AB#{ID}.

Click here to Learn more.

github-actions[bot] commented 1 day ago

✅ Work item link check complete. Description contains link AB#3098972 to an Azure Boards work item.