MSI CAE Claims handling - claims merging issue #4447
Labels
bug
confidential-client
P1
public-client
regression
Behavior that worked in a previous release that no longer works in a newer release
scenario:ManagedIdentity
Milestone
With SLC CAE, the claims we get back from ESTS is,
And the merged claims and capab should be like this,
In MSAL .NET, we build claims and capab with
access_token
andxms_cc
, but with the new incoming claim, we fail to do a proper merge, instead just return the incoming claim without the capab.All MSAL's need to check if this is being properly handled.
The text was updated successfully, but these errors were encountered: