AzureAD · bgavrilMS · May 15, 2019 · May 8, 2019 · May 10, 2019 · May 13, 2019
diff --git a/LibsNetCore.sln b/LibsNetCore.sln
diff --git a/src/Directory.Build.props b/src/Directory.Build.props
@@ -13,8 +13,7 @@
     <!--<TargetFrameworks Condition="$([MSBuild]::IsOsPlatform('Windows'))">$(TargetFrameworkMac)</TargetFrameworks>-->
     <TargetFrameworks Condition="$([MSBuild]::IsOsPlatform('Windows'))">$(TargetFrameworkNetDesktop);$(TargetFrameworkNetStandard);$(TargetFrameworkNetCore);$(TargetFrameworkUap);$(TargetFrameworkIos);$(TargetFrameworkAndroid);$(TargetFrameworkMac)</TargetFrameworks>
     <TargetFrameworks Condition="$([MSBuild]::IsOsPlatform('OSX'))">$(TargetFrameworkNetStandard);$(TargetFrameworkNetCore);$(TargetFrameworkIos);$(TargetFrameworkAndroid);$(TargetFrameworkMac)</TargetFrameworks>
-    <TargetFrameworks Condition="$([MSBuild]::IsOsPlatform('Linux'))">$(TargetFrameworkNetStandard);$(TargetFrameworkNetCore);</TargetFrameworks>
-  </PropertyGroup>
+    <TargetFrameworks Condition="$([MSBuild]::IsOsPlatform('Linux')) Or '$(NetCoreOnly)' !='' ">$(TargetFrameworkNetStandard);$(TargetFrameworkNetCore);</TargetFrameworks>  </PropertyGroup>
 
   <PropertyGroup>
     <!-- The MSAL.snk has both private and public keys -->

diff --git a/src/Microsoft.Identity.Client/ApiConfig/Executors/AbstractExecutor.cs b/src/Microsoft.Identity.Client/ApiConfig/Executors/AbstractExecutor.cs
@@ -4,7 +4,6 @@
 using System;
 using System.Globalization;
 using Microsoft.Identity.Client.Core;
-using Microsoft.Identity.Client.Internal;
 using Microsoft.Identity.Client.Utils;
 
 namespace Microsoft.Identity.Client.ApiConfig.Executors
@@ -23,10 +22,7 @@ protected AbstractExecutor(IServiceBundle serviceBundle, ClientApplicationBase c
 
         protected RequestContext CreateRequestContextAndLogVersionInfo(Guid telemetryCorrelationId)
         {
-            var requestContext = new RequestContext(
-                _clientApplicationBase.AppConfig.ClientId,
-                MsalLogger.Create(telemetryCorrelationId, ServiceBundle.Config),
-                telemetryCorrelationId);
+            var requestContext = new RequestContext(ServiceBundle, telemetryCorrelationId);
 
             requestContext.Logger.Info(
                 string.Format(

diff --git a/src/Microsoft.Identity.Client/ApiConfig/Executors/PublicClientExecutor.cs b/src/Microsoft.Identity.Client/ApiConfig/Executors/PublicClientExecutor.cs
@@ -136,7 +136,9 @@ public PublicClientExecutor(IServiceBundle serviceBundle, PublicClientApplicatio
             coreUiParent.UseCorporateNetwork = _publicClientApplication.AppConfig.UseCorporateNetwork;
 #endif
 #endif
-            return ServiceBundle.PlatformProxy.GetWebUiFactory().CreateAuthenticationDialog(coreUiParent, requestContext);
+            return ServiceBundle.PlatformProxy.GetWebUiFactory().CreateAuthenticationDialog(
+                coreUiParent,
+                requestContext);
         }
 
     }

diff --git a/src/Microsoft.Identity.Client/ClientApplicationBase.cs b/src/Microsoft.Identity.Client/ClientApplicationBase.cs
@@ -153,7 +153,7 @@ internal static Authority GetAuthority(IServiceBundle serviceBundle, IAccount ac
         // For service calls, the request context should be created in the **Executor classes as part of request execution.
         private RequestContext CreateRequestContext(Guid telemetryCorrelationId)
         {
-            return new RequestContext(AppConfig.ClientId, MsalLogger.Create(telemetryCorrelationId, ServiceBundle.Config), telemetryCorrelationId);
+            return new RequestContext(ServiceBundle, telemetryCorrelationId);
         }
 
         /// <summary>

diff --git a/src/Microsoft.Identity.Client/Core/RequestContext.cs b/src/Microsoft.Identity.Client/Core/RequestContext.cs
@@ -9,28 +9,15 @@ namespace Microsoft.Identity.Client.Core
 {
     internal class RequestContext
     {
-        public RequestContext(string clientId, ICoreLogger logger, Guid telemetryCorrelationId)
-        {
-            ClientId = string.IsNullOrWhiteSpace(clientId) ? "unset_client_id" : clientId;
-            Logger = logger;
-            TelemetryCorrelationId = telemetryCorrelationId.AsMatsCorrelationId();
-        }
-
         public string TelemetryCorrelationId { get; }
-        public string ClientId { get; set; }
+        public ICoreLogger Logger { get;  }
+        public IServiceBundle ServiceBundle { get; }
 
-        public ICoreLogger Logger { get; set; }
-
-        public static RequestContext CreateForTest(IServiceBundle serviceBundle = null)
+        public RequestContext(IServiceBundle serviceBundle, Guid telemetryCorrelationId)
         {
-            var telemetryCorrelationId = Guid.NewGuid();
-
-            var logger = serviceBundle?.DefaultLogger ?? MsalLogger.Create(
-                             telemetryCorrelationId,
-                             null,
-                             isDefaultPlatformLoggingEnabled: true);
-
-            return new RequestContext(null, logger, telemetryCorrelationId);
+            ServiceBundle = serviceBundle ?? throw new ArgumentNullException(nameof(serviceBundle));
+            Logger = MsalLogger.Create(telemetryCorrelationId, ServiceBundle.Config);
+            TelemetryCorrelationId = telemetryCorrelationId.AsMatsCorrelationId();
         }
     }
 }
diff --git a/src/Microsoft.Identity.Client/Http/HttpManager.cs b/src/Microsoft.Identity.Client/Http/HttpManager.cs
@@ -38,41 +38,41 @@ protected virtual HttpClient GetHttpClient()
             Uri endpoint,
             IDictionary<string, string> headers,
             IDictionary<string, string> bodyParameters,
-            RequestContext requestContext)
+            ICoreLogger logger)
         {
             HttpContent body = bodyParameters == null ? null : new FormUrlEncodedContent(bodyParameters);
-            return await SendPostAsync(endpoint, headers, body, requestContext).ConfigureAwait(false);
+            return await SendPostAsync(endpoint, headers, body, logger).ConfigureAwait(false);
         }
 
         public async Task<HttpResponse> SendPostAsync(
             Uri endpoint,
             IDictionary<string, string> headers,
             HttpContent body,
-            RequestContext requestContext)
+            ICoreLogger logger)
         {
-            return await ExecuteWithRetryAsync(endpoint, headers, body, HttpMethod.Post, requestContext).ConfigureAwait(false);
+            return await ExecuteWithRetryAsync(endpoint, headers, body, HttpMethod.Post, logger).ConfigureAwait(false);
         }
 
         public async Task<HttpResponse> SendGetAsync(
             Uri endpoint,
             IDictionary<string, string> headers,
-            RequestContext requestContext)
+            ICoreLogger logger)
         {
-            return await ExecuteWithRetryAsync(endpoint, headers, null, HttpMethod.Get, requestContext).ConfigureAwait(false);
+            return await ExecuteWithRetryAsync(endpoint, headers, null, HttpMethod.Get, logger).ConfigureAwait(false);
         }
 
         /// <summary>
-        /// Performs the POST request just like <see cref="SendPostAsync(Uri, IDictionary{string, string}, HttpContent, RequestContext)"/>
+        /// Performs the POST request just like <see cref="SendPostAsync(Uri, IDictionary{string, string}, HttpContent, ICoreLogger)"/>
         /// but does not throw a ServiceUnavailable service exception. Instead, it returns the <see cref="HttpResponse"/> associated
         /// with the request.
         /// </summary>
         public async Task<HttpResponse> SendPostForceResponseAsync(
             Uri uri,
             Dictionary<string, string> headers,
             StringContent body,
-            RequestContext requestContext)
+            ICoreLogger logger)
         {
-            return await ExecuteWithRetryAsync(uri, headers, body, HttpMethod.Post, requestContext, doNotThrow: true).ConfigureAwait(false);
+            return await ExecuteWithRetryAsync(uri, headers, body, HttpMethod.Post, logger, doNotThrow: true).ConfigureAwait(false);
         }
 
         private HttpRequestMessage CreateRequestMessage(Uri endpoint, IDictionary<string, string> headers)
@@ -95,7 +95,7 @@ private HttpRequestMessage CreateRequestMessage(Uri endpoint, IDictionary<string
             IDictionary<string, string> headers,
             HttpContent body,
             HttpMethod method,
-            RequestContext requestContext,
+            ICoreLogger logger,
             bool doNotThrow = false,
             bool retry = true)
         {
@@ -120,7 +120,7 @@ private HttpRequestMessage CreateRequestMessage(Uri endpoint, IDictionary<string
                     return response;
                 }
 
-                requestContext.Logger.Info(string.Format(CultureInfo.InvariantCulture,
+                logger.Info(string.Format(CultureInfo.InvariantCulture,
                     MsalErrorMessage.HttpRequestUnsuccessful,
                     (int)response.StatusCode, response.StatusCode));
 
@@ -131,7 +131,7 @@ private HttpRequestMessage CreateRequestMessage(Uri endpoint, IDictionary<string
             }
             catch (TaskCanceledException exception)
             {
-                requestContext.Logger.Error("The HTTP request failed or it was canceled. " + exception.Message);
+                logger.Error("The HTTP request failed or it was canceled. " + exception.Message);
                 isRetryable = true;
                 timeoutException = exception;
             }
@@ -140,19 +140,19 @@ private HttpRequestMessage CreateRequestMessage(Uri endpoint, IDictionary<string
             {
                 if (retry)
                 {
-                    requestContext.Logger.Info("Retrying one more time..");
+                    logger.Info("Retrying one more time..");
                     await Task.Delay(TimeSpan.FromSeconds(1)).ConfigureAwait(false);
                     return await ExecuteWithRetryAsync(
                         endpoint,
                         headers,
                         body,
                         method,
-                        requestContext,
+                        logger,
                         doNotThrow,
                         retry: false).ConfigureAwait(false);
                 }
 
-                requestContext.Logger.Error("Request retry failed.");
+                logger.Error("Request retry failed.");
                 if (timeoutException != null)
                 {
                     throw new MsalServiceException(

diff --git a/src/Microsoft.Identity.Client/Http/IHttpManager.cs b/src/Microsoft.Identity.Client/Http/IHttpManager.cs
@@ -15,23 +15,23 @@ internal interface IHttpManager
             Uri endpoint,
             IDictionary<string, string> headers,
             IDictionary<string, string> bodyParameters,
-            RequestContext requestContext);
+            ICoreLogger logger);
 
         Task<HttpResponse> SendPostAsync(
             Uri endpoint,
             IDictionary<string, string> headers,
             HttpContent body,
-            RequestContext requestContext);
+            ICoreLogger logger);
 
         Task<HttpResponse> SendGetAsync(
             Uri endpoint,
             IDictionary<string, string> headers,
-            RequestContext requestContext);
+            ICoreLogger logger);
 
         Task<HttpResponse> SendPostForceResponseAsync(
             Uri uri,
             Dictionary<string, string> headers,
             StringContent body,
-            RequestContext requestContext);
+            ICoreLogger logger);
     }
 }
diff --git a/src/Microsoft.Identity.Client/Instance/AdfsOpenIdConfigurationEndpointManager.cs b/src/Microsoft.Identity.Client/Instance/AdfsOpenIdConfigurationEndpointManager.cs
@@ -46,7 +46,7 @@ public AdfsOpenIdConfigurationEndpointManager(IServiceBundle serviceBundle)
                     drsResponse.IdentityProviderService.PassiveAuthEndpoint.Host,
                     resource);
 
-                var httpResponse = await _serviceBundle.HttpManager.SendGetAsync(new Uri(webFingerUrl), null, requestContext)
+                var httpResponse = await _serviceBundle.HttpManager.SendGetAsync(new Uri(webFingerUrl), null, requestContext.Logger)
                                                        .ConfigureAwait(false);
 
                 if (httpResponse.StatusCode != HttpStatusCode.OK)

diff --git a/src/Microsoft.Identity.Client/Internal/Requests/InteractiveRequest.cs b/src/Microsoft.Identity.Client/Internal/Requests/InteractiveRequest.cs
@@ -250,14 +250,9 @@ private void VerifyAuthorizationResult()
                     MsalErrorMessage.NoPromptFailedErrorMessage);
             }
 
-            if (_authorizationResult.Status == AuthorizationStatus.UserCancel)
-            {
-                throw new MsalClientException(_authorizationResult.Error, _authorizationResult.ErrorDescription);
-            }
-
             if (_authorizationResult.Status != AuthorizationStatus.Success)
             {
-                throw new MsalServiceException(_authorizationResult.Error, _authorizationResult.ErrorDescription, null);
+                throw new MsalClientException(_authorizationResult.Error, _authorizationResult.ErrorDescription ?? "Unkown error.");
             }
         }
     }

diff --git a/src/Microsoft.Identity.Client/Internal/Requests/SilentRequest.cs b/src/Microsoft.Identity.Client/Internal/Requests/SilentRequest.cs
@@ -57,7 +57,7 @@ private async Task<IAccount> GetSingleAccountForLoginHintAsync(string loginHint)
             return accounts.First();
         }
 
-        private async Task<IAccount>  GetAccountFromParamsOrLoginHintAsync(AcquireTokenSilentParameters silentParameters)
+        private async Task<IAccount> GetAccountFromParamsOrLoginHintAsync(AcquireTokenSilentParameters silentParameters)
         {
             if (silentParameters.Account != null)
             {

diff --git a/src/Microsoft.Identity.Client/Microsoft.Identity.Client.csproj b/src/Microsoft.Identity.Client/Microsoft.Identity.Client.csproj
@@ -20,8 +20,8 @@
   </PropertyGroup>
   <PropertyGroup Condition="'$(TargetFramework)' == '$(TargetFrameworkNetStandard)'">
     <DefineConstants>$(DefineConstants);NETSTANDARD_RUNTIME</DefineConstants>
-  </PropertyGroup>  
+  </PropertyGroup>
   <ItemGroup>
     <ReferenceAssemblyProjectReference Include="..\Microsoft.Identity.Client.Ref\Microsoft.Identity.Client.Ref.csproj" />
-  </ItemGroup>
+  </ItemGroup>  
 </Project>
diff --git a/src/Microsoft.Identity.Client/MsalError.cs b/src/Microsoft.Identity.Client/MsalError.cs
@@ -546,6 +546,28 @@ public static class MsalError
         /// </summary>
         public const string PlatformNotSupported = "platform_not_supported";
 
+        /// <summary>
+        /// An authorization Uri has been intercepted, but it cannot be parsed. See the log for more details.
+        /// </summary>
+        public const string InvalidAuthorizationUri = "invalid_authorization_uri";
+
+        /// <summary>
+        /// To use the OS browser, a loopback url must be configured. See https://aka.ms/msal-net-os-browser for details.
+        /// </summary>
+        public const string LoopbackRedirectUri = "loopback_redirect_uri";
+
+        /// <summary>
+        /// Error code used when the CustomWebUI has returned an uri, but it does not match the Authroity and AbsolutePath of
+        /// the configured redirect uri.
+        /// </summary>
+        public const string LoopbackResponseUriMisatch = "loopback_response_uri_mismatch";
+
+        /// <summary>
+        /// To use the default OS browser on Linux, make sure you can open a page using xdg-open tool. See https://aka.ms/msal-net-os-browser for details.
+        /// </summary>
+        public const string LinuxXdgOpen = "linux_xdg_open_failed";
+
+
 #if iOS
         /// <summary>
         /// Xamarin.iOS specific. This error indicates that keychain access has not be enabled for the application.

diff --git a/src/Microsoft.Identity.Client/MsalErrorMessage.cs b/src/Microsoft.Identity.Client/MsalErrorMessage.cs
@@ -239,7 +239,7 @@ public static string InvalidRedirectUriReceived(string invalidRedirectUri)
 
         public const string CustomWebUiReturnedInvalidUri = "ICustomWebUi returned an invalid uri - it is empty or has no query.";
 
-        public static string CustomWebUiRedirectUriMismatch(string expectedUri, string actualUri)
+        public static string RedirectUriMismatch(string expectedUri, string actualUri)
         {
             return string.Format(CultureInfo.InvariantCulture, "Redirect Uri mismatch.  Expected ({0}) Actual ({1})", expectedUri, actualUri);
         }

diff --git a/src/Microsoft.Identity.Client/OAuth2/OAuth2Client.cs b/src/Microsoft.Identity.Client/OAuth2/OAuth2Client.cs
@@ -87,12 +87,12 @@ internal async Task<T> ExecuteRequestAsync<T>(Uri endPoint, HttpMethod method, R
             {
                 if (method == HttpMethod.Post)
                 {
-                    response = await _httpManager.SendPostAsync(endpointUri, _headers, _bodyParameters, requestContext)
+                    response = await _httpManager.SendPostAsync(endpointUri, _headers, _bodyParameters, requestContext.Logger)
                                                 .ConfigureAwait(false);
                 }
                 else
                 {
-                    response = await _httpManager.SendGetAsync(endpointUri, _headers, requestContext).ConfigureAwait(false);
+                    response = await _httpManager.SendGetAsync(endpointUri, _headers, requestContext.Logger).ConfigureAwait(false);
                 }
 
                 httpEvent.HttpResponseStatus = (int)response.StatusCode;
@@ -109,7 +109,10 @@ internal async Task<T> ExecuteRequestAsync<T>(Uri endPoint, HttpMethod method, R
                 if (headersAsDictionary.ContainsKey("x-ms-clitelem") &&
                     headersAsDictionary["x-ms-clitelem"] != null)
                 {
-                    XmsCliTelemInfo xmsCliTeleminfo = new XmsCliTelemInfoParser().ParseXMsTelemHeader(headersAsDictionary["x-ms-clitelem"], requestContext);
+                    XmsCliTelemInfo xmsCliTeleminfo = new XmsCliTelemInfoParser().ParseXMsTelemHeader(
+                        headersAsDictionary["x-ms-clitelem"],
+                        requestContext.Logger);
+
                     if (xmsCliTeleminfo != null)
                     {
                         httpEvent.TokenAge = xmsCliTeleminfo.TokenAge;

diff --git a/src/Microsoft.Identity.Client/Platforms/Android/AndroidWebUIFactory.cs b/src/Microsoft.Identity.Client/Platforms/Android/AndroidWebUIFactory.cs
@@ -4,24 +4,25 @@
 using Microsoft.Identity.Client.Core;
 using Microsoft.Identity.Client.Platforms.Android.EmbeddedWebview;
 using Microsoft.Identity.Client.Platforms.Android.SystemWebview;
+using Microsoft.Identity.Client.PlatformsCommon.Interfaces;
 using Microsoft.Identity.Client.UI;
 
 namespace Microsoft.Identity.Client.Platforms.Android
 {
     [global::Android.Runtime.Preserve(AllMembers = true)]
     internal class AndroidWebUIFactory : IWebUIFactory
     {
-        public IWebUI CreateAuthenticationDialog(CoreUIParent coreUIParent, RequestContext requestContext)
+        public IWebUI CreateAuthenticationDialog(CoreUIParent parent, RequestContext requestContext)
         {
-            if (coreUIParent.UseEmbeddedWebview)
+            if (parent.UseEmbeddedWebview)
             {
-                return new EmbeddedWebUI(coreUIParent)
+                return new EmbeddedWebUI(parent)
                 {
                     RequestContext = requestContext
                 };
             }
 
-            return new SystemWebUI(coreUIParent)
+            return new SystemWebUI(parent)
             {
                 RequestContext = requestContext
             };