- Added missing
executorService
API toManagedIdentityCredentialBuilder
, cleaned up comments in other types for this method.
@Deprecated
methodsDefaultAzureCredential.setIntelliJKeePassDatabasePath
andIntelliJCredentialBuilder.keePassDatabasePath
. #42437- Changed Identity credentials to use
SharedExecutorService
threadpool instead ofForkJoin
's common pool by default. #42468
- Fixed issue in Managed Identity scopes #42934
- Upgraded
azure-core
from1.54.0
to version1.54.1
. - Upgraded
azure-core-http-netty
from1.15.6
to version1.15.7
. - Upgraded
jna-platform
from5.6.0
to version5.13.0
.
- Upgraded
azure-core
from1.53.0
to version1.54.0
. - Upgraded
azure-core-http-netty
from1.15.5
to version1.15.6
.
- Features now generally available from previous betas:
- Added object id support in
ManagedIdentityCredential
. It can be configured viaManagedIdentityCredentialBuilder
. - Added support for a client assertion in
OnBehalfOfCredential
#40552
- Added object id support in
- Breaking changes generally available from previous betas:
- Removed support in
IntelliJCredential
for legacy Azure Toolkit for IntelliJ versions. Please upgrade to latest if you are using 3.52 or below.
- Removed support in
- Fixed the request sent in
AzurePipelinesCredential
so it doesn't result in a redirect response when an invalid system access token is provided.
- Allow certain response headers to be logged in
AzurePipelinesCredential
for diagnostics and include them in the exception message. - Mark
AzureAuthorityHosts.AZURE_GERMANY
deprecated as the Germany cloud closed in 2021. #42148 - Using msal4j's managed identity implementation is now on by default. (Added in 1.13.0-beta.1)
- Upgraded
azure-core
from1.52.0
to version1.53.0
. - Upgraded
azure-core-http-netty
from1.15.4
to version1.15.5
. - Upgraded
msal4j
from1.17.1
to version1.17.2
.
- Added object id support in
ManagedIdentityCredential
. It can be configured viaManagedIdentityCredentialBuilder
.
- Removed support in
IntelliJCredential
for legacy Azure Toolkit for IntelliJ versions. Please upgrade to latest if you are using 3.52 or below.
Fixed issue in IntelliJCredential
blocking sign in #39799
- Upgraded
azure-core
from1.51.0
to version1.52.0
. - Upgraded
azure-core-http-netty
from1.15.3
to version1.15.4
. - Upgraded
azure-json
from1.2.0
to version1.3.0
. - Upgraded
msal4j
from1.16.2
to version1.17.1
.
- Fixed bugs in
AzurePowerShellCredential
- Fixed break on Windows related to ordering of parameters, and fixed #41234 (previously shipped in beta)
- Upgraded
azure-core
from1.50.0
to version1.51.0
. - Upgraded
azure-core-http-netty
from1.15.2
to version1.15.3
. - Upgraded
azure-json
from1.1.0
to version1.2.0
. - Upgraded
msal4j
from1.16.1
to version1.16.2
.
- Fixed bugs in
AzurePowerShellCredential
- Fixed break on Windows related to ordering of parameters, and fixed #41234
- Added support in
EnvironmentCredential
(and thusDefaultAzureCredential
when it choosesEnvironmentCredential
) for using subject name / issuer authentication with client certificates by settingAZURE_CLIENT_SEND_CERTIFICATE_CHAIN
to1
ortrue
. #40013
- Fixed certificate type detection, which fixes using a PFX certificate without a password. #37210
- Fix
PowershellCredential
issue when user had a profile #41030
- Upgraded
azure-core
from1.49.1
to1.50.0
- Upgraded
azure-core-http-netty
from1.15.1
to1.15.2
- Upgraded
msal4j
from1.16.0
to1.16.1
- GA for
AzurePipelinesCredential
- Fixed an issue which may block
AzurePowershellCredential
from functioning correctly. #40552
- Added support for a client assertion in
OnBehalfOfCredential
#40552
- Fixed an issue which may block
AzurePowershellCredential
from functioning correctly. #40552
- Managed identity bug fixes
- Upgraded
azure-core
from1.49.0
to version1.49.1
. - Upgraded
azure-core-http-netty
from1.15.0
to version1.15.1
. - Upgraded
msal4j
from1.15.0
to version1.15.1
.
- Added
AzurePipelinesCredential
to support Microsoft Entra Workload ID in Azure Pipelines service connections.
- Migrated Managed Identity authentication flow to utilize Msal4j MI implementation.
- Upgraded
azure-core
from1.48.0
to version1.49.0
. - Upgraded
azure-core-http-netty
from1.14.2
to version1.15.0
.
- Added default sign-in experience for brokered authentication. See the documentation in the
azure-identity-broker
package for more information. #39284
- The timeout interval for IMDS probing has been adjusted from 0.5 seconds to 1 second. This update is designed to enhance the system's reliability without affecting user applications. #38345
- The default retry logic of Managed Identity has been updated to retry 5 times, the retry delay increases exponentially, starting at 800 milliseconds and doubling with each subsequent retry, up to 5 retries. This change is designed to optimize the retry mechanism, reducing the likelihood of congestion and improving the overall stability of service connections under varying network conditions. #38345
- The
DefaultAzureCredential
caches the last working credential by default and tries it directly on subsequent attempts. This change is designed to improve the performance of theDefaultAzureCredential
by reducing the number of attempts required to acquire a token. #36867
- Changed log level of an informational message in token acquisition. #39063
- Upgraded
azure-core
from1.47.0
to version1.48.0
. - Upgraded
azure-core-http-netty
from1.14.1
to version1.14.2
. - Upgraded
msal4j
from1.14.3
to version1.15.0
. - Upgraded
msal4j-persistence-extension
from1.2.0
to version1.3.0
.
- Upgraded
msal4j
from1.14.0
to version1.14.3
.
- Fixed an issue where the broker dependency library was being probed for when it shouldn't be, resulting in an erronous error message. #39002
- Upgraded
azure-core
from1.46.0
to version1.47.0
. - Upgraded
azure-core-http-netty
from1.14.0
to version1.14.1
.
- Added expires_on parsing support to
AzureCliCredential
.(#38406) - Added caching support for working credential in
DefaultAzureCredential
. (#38404)
- Lowered logging level of token cache misses from
ERROR
toDEBUG
. (#38502)
- Upgraded
azure-core
from1.45.1
to version1.46.0
- Upgraded
azure-core-http-netty
from1.13.11
to version1.14.0
- Fixed Azure Arc Managed Identity token retrieval issue.
- Upgraded
azure-core
from1.45.0
to version1.45.1
- Upgraded
azure-core-http-netty
from1.13.10
to version1.13.11
- GA release of Web Account Manager (WAM) support for Azure Identity.
- Cache streams used for client certificates #37502
- Fix incorrect use of organizations tenant for sync calls on
AzureCliCredential
andAzureDeveloperCliCredential
#37457
- Upgraded
azure-core
from1.44.1
to version1.45.0
. - Upgraded
azure-core-http-netty
from1.13.9
to version1.13.10
- Initial release of Web Account Manager (WAM) support for Azure Identity. This is a Windows-only auithentication broker.
- Upgraded 'msal4j' from '1.13.9' to version '1.14.0'.
- Upgraded
azure-core
from1.44.0
to version1.44.1
. - Upgraded
azure-core-http-netty
from1.13.8
to version1.13.9
.
- Upgraded
azure-core
from1.43.0
to version1.44.0
. - Upgraded
azure-core-http-netty
from1.13.7
to version1.13.8
.
- Bug fixes for developer credentials
- Added support for passing an InputStream containing a client cerfificate #36747
- Fixed flowing
HttpClientOptions
through credentials #36382 - Fixed edge case in Docker where 403s erronously caused CredentialUnavailableExceptions #36747
- Upgraded
azure-core
from1.42.0
to version1.43.0
. - Upgraded
azure-core-http-netty
from1.13.6
to version1.13.7
.
- Added
BrowserCustomizationOptions
toInteractiveBrowserCredentialBuilder
to allow for customization of the browser window.
- Renamed
enableSupportLogging
toenableUnsafeSupportLogging
. This is a breaking change from 1.10.0-beta.1. DefaultAzureCredential
will try all developer credentials. Previously if a developer credential attempted to acquire a token and failed, it would stop the chain. Deployed credentials are unaffected.
- Upgraded
azure-core
from1.41.0
to version1.42.0
. - Upgraded
azure-core-http-netty
from1.13.5
to version1.13.6
.
- Added CAE Authentication support for Service principal authentication.
- Added the ability to log PII from MSAL using new
enableSupportLogging
API.
- CAE Authentication is disabled by default. It needs to be enabled by invoking
setEnableCae
onTokenRequestContext
class.
- Azure CLI and Azure Developer CLI no longer pass
organizations
as a tenant value when retrieving a token. #34387 WorkloadIdentityCredential
now uses the tenant value specified inDefaultAzureCredential
when authenticating with Azure Identity. #35619
- Upgraded
azure-core
from1.40.0
to version1.41.0
. - Upgraded
azure-core-http-netty
from1.13.4
to version1.13.5
.
- Moved
AzureDeveloperCliCredential
to the end of theDefaultAzureCredential
chain.
- Upgraded
azure-core
from1.38.0
to version1.39.0
. - Upgraded
azure-core-http-netty
from1.13.3
to version1.13.4
.
- Added configurable timeout for developer credentials (Azure CLI, Azure Developer CLI)
- Added
WorkloadIdentityCredential
to authenticate using workload identity in Azure Kubernetes.
- renamed
DefaultAzureCredential.processTimeout
tocredentialProcessTimeout
.
- Upgraded
azure-core
from1.38.0
to version1.39.0
.
- Upgraded
msal4j
from1.13.7
to version1.13.8
. - Upgraded
msal4j-persistence-extension
from1.1.0
to version1.2.0
.
- Add
disableInstanceDiscovery
toDefaultAzureCredentialBuilder
- Removed feature from previous betas to compute refresh values for managed identity tokens.
- Fixed a bug in managed identity not properly URLEncoding a value. #34375
- Upgraded
azure-core
from1.37.0
to version1.38.0
. - Upgraded
azure-core-http-netty
from1.13.1
to version1.13.2
. - Upgraded
msal4j
from1.13.5
to version1.13.7
.
- Added CAE support to service principal authentication.
- Pass more detailed refresh policy for managed identity tokens to MSAL.
- Add configurable timeout for developer credentials (Azure CLI, Azure Developer CLI)
- Fixed detection logic for az/azd.
- Upgraded
azure-core
from1.36.0
to version1.37.0
. - Upgraded
azure-core-http-netty
from1.13.0
to version1.13.1
. - Upgraded
msal4j
from1.13.4
to version1.13.5
.
- [#32527] Added Azure Developer CLI Credential.
- Added support to disable instance discovery on Microsoft Entra ID credentials.
WorkloadIdentityCredential
andDefaultAzureCredential
support Workload Identity Federation on Kubernetes.DefaultAzureCredential
support requires environment variable configuration as set by the Workload Identity webhook.
- Added support to configure
clientOptions
,httpLogOptions
,retryPolicy
,retryOptions
andaddPolicy
on Identity credentials.
- Upgraded
azure-core
from1.35.0
to version1.36.0
. - Upgraded
azure-core-http-netty
from1.12.8
to version1.13.0
. - Upgraded
msal4j
from1.13.3
to version1.13.4
.
- Added support to configure
clientOptions
,httpLogOptions
,retryPolicy
,retryOptions
andaddPolicy
on Identity credentials. - Added support to disable instance discovery on Microsoft Entra ID credentials.
- No longer statically accessing environment variables. #32781
- Use
ThreadLocalRandom
instead ofRandom
to better enable static compilation. #32744
- Upgraded
azure-core
from1.34.0
to version1.35.0
.
- Fixed MSI token
expires_in
parsing issue.
- Added user-agent header to Identity requests
- Upgraded
azure-core
from1.33.0
to version1.34.0
. - Upgraded
msal4j
from1.13.2
to1.13.3
GetTokenSync
method implementation/support in Token Credentials.- Read
AZURE_REGIONAL_AUTHORITY_NAME
from the environment to specify region for client credential types.
- Upgraded
msal4j
from1.13.1
to1.13.2
- Upgraded
azure-core
from1.32.0
to version1.33.0
. - Upgraded
azure-core-http-netty
from1.12.5
to version1.12.6
.
EnvironmentCredential
will read the environment variableAZURE_CLIENT_CERTIFICATE_PASSWORD
for apem
/pfx
certificate specified byAZURE_CLIENT_CERTIFICATE_PATH
.- Added support for in-memory token caching in
ManagedIdentityCredential
.
- Removed
VisualStudioCodeCredential
fromDefaultAzureCredential
token chain. Issue 27364 tracks this.
- Added
additionallyAllowedTenants
to the following credential builders to force explicit opt-in behavior for multi-tenant authentication:AuthorizationCodeCredentialBuilder
AzureCliCredentialBuilder
AzurePowerShellCredentialBuilder
ClientAssertionCredentialBuilder
ClientCertificateCredentialBuilder
ClientSecretCredentialBuilder
DefaultAzureCredentialBuilder
OnBehalfOfCredentialBuilder
UsernamePasswordCredentialBuilder
VisualStudioCodeCredentialBuilder
VisualStudioCredentialBuilder
-
Credential types supporting multi-tenant authentication will now throw
ClientAuthenticationException
if the requested tenant ID doesn't match the credential's tenant ID, and is not included in theadditionallyAllowedTenants
option. Applications must now explicitly add additional tenants to theadditionallyAllowedTenants
list, or add '*' to list, to enable acquiring tokens from tenants other than the originally specified tenant ID. See BREAKING_CHANGES.md. -
These beta features in version
1.6.0-beta.1
have been removed from this release and will be added back in version1.7.0-beta.1
:- removed
VisualStudioCodeCredential
fromDefaultAzureCredential
token chain AZURE_CLIENT_CERTIFICATE_PASSWORD
support forEnvironmentCredential
- in-memory token caching support for
ManagedIdentityCredential
.
- removed
- Upgraded
msal4j
from1.13.0
to1.13.1
.
- Upgraded
azure-core
from1.31.0
to version1.32.0
. - Upgraded
azure-core-http-netty
from1.12.4
to version1.12.5
. - Upgraded
msal4j
from1.12.0
to1.13.0
.
EnvironmentCredential
will read the environment variableAZURE_CLIENT_CERTIFICATE_PASSWORD
for apem
/pfx
certificate specified byAZURE_CLIENT_CERTIFICATE_PATH
.- Added support for in-memory token caching in
ManagedIdentityCredential
.
- Removed
VisualStudioCodeCredential
fromDefaultAzureCredential
token chain. Issue 27364 tracks this.
- Upgraded
msal4j
from1.12.0
to version1.13.0
.
- Fixes IntelliJCredential 21150
- Fixes AzureCliCredential to properly respect tenant IDs.
- Upgraded
azure-core
from1.30.0
to version1.31.0
. - Upgraded
azure-core-http-netty
from1.12.3
to version1.12.4
.
- Upgraded
azure-core
dependency to 1.30.0
- Upgraded
azure-core
dependency to 1.29.1
- Upgraded
msal4j
dependency to 1.12.0 - Upgraded
azure-core
dependency to 1.28.0
- Removed
disableAuthorityValidationSafetyCheck
for GA, will reintroduce in next beta. This is not a breaking change from last GA. - Replaced
identityLogOptions
setter with theenableAccountIdentifierLogging
setter on the credential builders. This is not a breaking change from last GA.
- Upgraded
azure-core
dependency to 1.27.0
Correctly use an AppServiceMsiCredential
in the case both IDENTITY_ENDPOINT
and IDENTITY_HEADER
are set.
- Added ability to configure
IdentityLogOptions
on Credential Builders to make account Identifier logging configurable. - Added the option
disableAuthoriyValidaionSafetyCheck
on Credential Builders.
- Upgraded
azure-core
dependency to 1.26.0
- Upgraded
azure-core
dependency to 1.26.0
- Logging level of false positive
ERROR
logs is changed toVERBOSE
/DEBUG
underDefaultAzureCredential
- Added
resourceId
to Managed Identity for Virtual Machines, App Service, and Service Bus. - Added
ClientAssertionCredential
for client assertion based authentication flows.
- Upgraded App Service Managed Identity endpoint to
2019-08-01
.
- Upgraded
azure-core
dependency to 1.25.0
- Upgraded
azure-core
dependency to 1.24.1
- Fixes the edge case scenario when MSI Tokens return both
expires_on
andexpires_in
fields populated forManagedIdentityCredential
.
- Upgraded
azure-core
dependency to 1.22.0
- The
ManagedIdentityCredential
reads value of AZURE_POD_IDENTITY_TOKEN_URL environment variable from AZURE_POD_IDENTITY_AUTHORITY_HOST now.
- Added
tenantId
setter onAzurePowerShellCredential
andAzureCliCredential
Note the breaking changes below don't apply if you're upgrading from a previous released stable version.
- Removed 'AzureApplicationCredential' and 'AzureApplicationCredentialBuilder'
- Removed 'regionalAuthority' setter on
ClientSecretCredentialBuilder
andClientCertificateCredentialBuilder
- Removed
RegionalAuthority
enum class. - Removed
allowMultiTenantAuthentication
method from Credential Builders. The Multi Tenant Authentication is enabled by default now.
- Upgraded
azure-core
dependency to 1.21.0
- Added support to
ManagedIdentityCredential
for Bridge to Kubernetes local development authentication. - Added regional STS support to client credential types.
- Added the
RegionalAuthority
type, that allows specifying Azure regions. - Added
regionalAuthority()
setter toClientSecretCredentialBuilder
andClientCertificateCredentialBuilder
. - If instead of a region,
RegionalAuthority.AutoDiscoverRegion
is specified as the value forregionalAuthority
, MSAL will be used to attempt to discover the region. - A region can also be specified through the
AZURE_REGIONAL_AUTHORITY_NAME
environment variable.
- Added the
- Added
loginHint()
setter toInteractiveBrowserCredentialBuilder
which allows a username to be pre-selected for interactive logins. - Added support to consume
TenantId
challenges fromTokenRequestContext
. - Added support for AKS Token Exchange support in
ManagedIdentityCredential
- Upgraded
azure-core
dependency to 1.20.0
- Upgraded
azure-core
dependency to 1.19.0
- Dropped
KeePassJava2
dependency
- Pinned
json-smart
dependency to 2.4.7
- Upgraded
azure-core
dependency to 1.18.0
- Upgraded
azure-core
dependency to 1.17.0
- Added
AzurePowerShellCredential
to support authentication using Powershell on development platforms. - Added support to disable CP1 capability in
TokenCredentials
via configuration of environment variableAZURE_IDENTITY_DISABLE_CP1
- Upgraded
azure-core
dependency to 1.16.0 - Upgraded
msal4j
dependency to 1.1.0
- Added the support to enable and configure Persistent Token Cache via
TokenCachePersistenceOptions
API onInteractiveBrowserCredentialBuilder
,AuthorizationCodeCredentialBuilder
,UsernamePasswordCredentialBuilder
,DeviceCodeCredentialBuilderBuilder
ClientSecretCredentialBuilder
,ClientCertificateCredentialBuilder
andSharedTokenCacheCredentialBuilder
. - Added new APIs for authenticating users with
DeviceCodeCredential
,InteractiveBrowserCredential
andUsernamePasswordCredential
.- Added method
authenticate
which pro-actively interacts with the user to authenticate if necessary and returns a serializableAuthenticationRecord
- Added method
- Added following configurable options in classes
DeviceCodeCredentialBuilder
andInteractiveBrowserCredentialBuilder
authenticationRecord
enables initializing a credential with anAuthenticationRecord
returned from a prior call toAuthenticate
disableAutomaticAuthentication
disables automatic user interaction causing the credential to throw anAuthenticationRequiredException
when interactive authentication is necessary.
- Upgraded
azure-core
dependency to 1.14.0 - Upgraded
msal4j
dependency to 1.9.1 - Upgraded
msal4j-persistence-extension
to 1.1.0
- Added the support to consume claims from
TokenRequestContext
send it as part of authentication request.
- Upgraded
azure-core
dependency to 1.13.0 - Upgraded
msal4j
dependency to 1.8.1
- Upgraded
azure-core
dependency to 1.13.0 - Upgraded
msal4j
dependency to 1.8.1
- Upgraded
azure-core
dependency to 1.12.0
- Upgraded
azure-core
dependency to 1.11.0
- Added Azure Service Fabric Managed Identity support to
ManagedIdentityCredential
- Added Azure Arc Managed Identity support to
ManagedIdentityCredential
- Added support for Docker Containers in
DefaultAzureCredential
- Prevent
VisualStudioCodeCredential
using invalid authentication data when no user is signed in to Visual Studio Code
- Upgraded
azure-core
dependency to 1.10.0 - Upgraded
msal4j
dependency to 1.8.0
- Added the methods
pfxCertificate(InputStream certificate, String clientCertificatePassword)
andpemCertificate(InputStream certificate)
inClientCertificateCredentialBuilder
. - Added
includeX5c(boolean)
method inClientCertificateCredentialBuilder
to enable subject name / issuer based authentication. - Added a default
challengeConsumer
inDeviceCodeCredentialBuilder
which prints the device code information to console. ThechallengeConsumer
configuration is no longer required inDeviceCodeCredentialBuilder
.
- Upgraded
azure-core
dependency to 1.9.0 - Upgraded
jna-platform
dependency to 5.6.0 - Upgraded
msal4j
dependency to 1.7.1
- Added
InteractiveBrowserCredentialBuilder.redirectUrl(String)
to configure the redirect URL - Deprecated
InteractiveBrowserCredentialBuilder.port(int)
- Added support for App Service 2019 MSI Endpoint in
ManagedIdentityCredential
- Added Shared Token cache support for MacOS Keychain, Gnome Keyring, and plain text for other Linux environments
- Added option to write to shared token cache from
InteractiveBrowserCredential
,AuthorizationCodeCredential
,UsernamePasswordCredential
,DeviceCodeCredential
ClientSecretCredential
andClientCertificateCredential
- Added new APIs for authenticating users with
DeviceCodeCredential
,InteractiveBrowserCredential
andUsernamePasswordCredential
.- Added method
authenticate
which pro-actively interacts with the user to authenticate if necessary and returns a serializableAuthenticationRecord
- Added method
- Added following configurable options in classes
DeviceCodeCredentialBuilder
andInteractiveBrowserCredentialBuilder
authenticationRecord
enables initializing a credential with anAuthenticationRecord
returned from a prior call toAuthenticate
disableAutomaticAuthentication
disables automatic user interaction causing the credential to throw anAuthenticationRequiredException
when interactive authentication is necessary.
- Upgraded core dependency to 1.7.0
- Removed the default value of 0 for port in
InteractiveBrowserCredential
.
- Removing Application Authentication APIs for GA release. These will be reintroduced in 1.2.0-beta.1.
- Removed class
AuthenticationRecord
- Removed class
AuthenticationRequiredException
- Removed methods
allowUnencryptedCache()
andenablePersistentCache()
fromClientCertificateCredentialBuilder
,ClientSecretCredentialBuilder
,InteractiveBrowserCredentialBuilder
,DeviceCodeCredentialBuilder
,UsernamePasswordCredentialBuilder
andClientCertificateCredentialBuilder
. - Removed methods
allowUnencryptedCache()
andauthenticationRecord(AuthenticationRecord)
fromSharedTokenCacheCredentialBuilder
. - Removed methods
authenticationRecord(AuthenticationRecord)
anddisableAutomaticAuthentication()
fromDeviceCodeCredentialBuilder
andInteractiveBrowserCredentialBuilder
. - Removed methods
authenticate(TokenRequestContext)
andauthenticate()
fromDeviceCodeCredential
,InteractiveBrowserCredential
andUsernamePasswordCredential
.
- Removed class
- Added support for web apps (confidential apps) for
AuthorizationCodeCredential
. A client secret is required on the builder for web apps. - Added support for user assigned managed identities for
DefaultAzureCredential
with.managedIdentityClientId()
. - Added
AzureAuthorityHosts
to access well knwon authority hosts. - Added
getClientId()
method inAuthenticationRecord
- Removed persistent caching support from
AuthorizationCodeCredential
. - Removed
KnownAuthorityHosts
- Removed
getCredentials()
method inChainedTokenCredential
&DefaultAzureCredential
- Changed return type of
serialize
method inAuthenticationRecord
toMono<OutputStream>
. - Changed method signatures
enablePersistentCache(boolean)
andallowUnencryptedCache(boolean)
on credential builders toenablePersistentCache()
andallowUnencryptedCache()
- Added
.getCredentials()
method toDefaultAzureCredential
andChainedTokenCredential
and added option.addAll(Collection<? extends TokenCredential>)
onChainedtokenCredentialBuilder
. - Added logging information in credentials and improved error messages in
DefaultAzureCredential
.
- Added option to write to shared token cache from
ClientSecretCredential
,ClientCertificateCredential
. - Added new developer credentials
IntelliJCredential
,VsCodeCredential
andAzureCliCredential
. - New APIs for authenticating users with
DeviceCodeCredential
,InteractiveBrowserCredential
andUsernamePasswordCredential
.- Added method
authenticate
which pro-actively interacts with the user to authenticate if necessary and returns a serializableAuthenticationRecord
- Added method
- Added following configurable options in classes
DeviceCodeCredentialBuilder
andInteractiveBrowserCredentialBuilder
authenticationRecord
enables initializing a credential with anAuthenticationRecord
returned from a prior call toAuthenticate
disableAutomaticAuthentication
disables automatic user interaction