Extended managed identity experimental functionality with support for Azure Arc. See 3862
Bug Fixes
Updated the Broker package to use Microsoft.Identity.Client.NativeInterop 0.13.3 to resolve crash related to garbage collection when using new WAM broker preview. See 3868
Disabled additional logging in new WAM broker introduced in MSAL 4.49.0. See 3875
4.49.0
New Features
MSAL will now use <region>.login.microsoft.com when using regional ESTS-R for public cloud. See 3252
Added support for acquiring Work and School accounts when calling GetAccounts using the new Broker preview. See 3458
Added the ability to disable Instance Discovery/Authority validation using WithInstanceDiscovery(bool enableInstanceDiscovery). See 3775
Added new APIs to acquire authentication data from WWW-Authenticate and Authentication-Info request headers. This will provide additional support for Proof-of-Possession. See 3026
Experimental Features
Managed identities for Azure resources provide Azure services with an automatically managed identity in Azure Active Directory. You can use this identity to authenticate to any service that supports Azure AD authentication, without having credentials in your code. MSAL now supports acquiring token for managed identities for Azure App Services and Azure Virtual Machines. Use WithManagedIdentity() method on the AcquireTokenForClient API to get an MSI token. This is an experimental feature and may change in the future versions of MSAL. See 3754 and 3829
Fixed a NullReferenceException related to authority URLs when calling AcquireTokenSilent with an Operating System account in apps using WAM. See 3769.
Fixed a NullReferenceException when using preview broker and calling AcquireTokenSilent with MSA account and MSA-PT enabled. See 3743.
Added an Exported attribute to Android activities to be compliant with Android OS 12.1 (API 32) and above requirements. See 3680.
Fixed incorrect home account details in AuthenticationResult of AcquireTokenByRefreshToken. See 3736.
.NET 5 and .NET 6 public client applications
If you have a Windows application which targets net5.0, net5.0-windows, net5.0-windowsX, net6.0, or net6.0-windows and would like to use either WAM or embedded browser, you must change the app target to at least net6.0-windows10.0.17763.0. System browser works on all of the above targets.
Extended managed identity experimental functionality with support for Azure Arc. See 3862
Bug Fixes
Updated the Broker package to use Microsoft.Identity.Client.NativeInterop 0.13.3 to resolve crash related to garbage collection when using new WAM broker preview. See 3868
Disabled additional logging in new WAM broker introduced in MSAL 4.49.0. See 3875
4.49.0
New Features
MSAL will now use <region>.login.microsoft.com when using regional ESTS-R for public cloud. See 3252
Added support for acquiring Work and School accounts when calling GetAccounts using the new Broker preview. See 3458
Added the ability to disable Instance Discovery/Authority validation using WithInstanceDiscovery(bool enableInstanceDiscovery). See 3775
Added new APIs to acquire authentication data from WWW-Authenticate and Authentication-Info request headers. This will provide additional support for Proof-of-Possession. See 3026
Experimental Features
Managed identities for Azure resources provide Azure services with an automatically managed identity in Azure Active Directory. You can use this identity to authenticate to any service that supports Azure AD authentication, without having credentials in your code. MSAL now supports acquiring token for managed identities for Azure App Services and Azure Virtual Machines. Use WithManagedIdentity() method on the AcquireTokenForClient API to get an MSI token. This is an experimental feature and may change in the future versions of MSAL. See 3754 and 3829
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps Microsoft.Identity.Client from 4.47.1 to 4.49.1.
Release notes
Sourced from Microsoft.Identity.Client's releases.
... (truncated)
Changelog
Sourced from Microsoft.Identity.Client's changelog.
... (truncated)
Commits
8e21adc
Update to 4.49.1 (#3873)fbb21fa
Disable runtime logging from new preview broker (#3875)f261e09
Add azure arc managed identity source (#3862)1abab2f
Update CHANGELOG.md (#3869)6d57630
update Dev App to use the latest native interop08433ed
Update Broker to use Interop 0.13.3 (#3868)3528773
Fix XML comments, spelling, move devapp to devapps folder (#3867)f7cc4db
Fix PII messages (#3865)4e96195
Add Pop support to wwwAuthenticateParameters (#3436)c65578c
Add IMDS source to managed identity (#3849)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)