-
Notifications
You must be signed in to change notification settings - Fork 328
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for MSA passthrough for silent token acquisition calls through the boker #4419
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Great unit tests. LGTM
@iulico-1 - could you please open a bug or feature request on MSAL.NET and associate it with this PR? This is so that the change gets included in the release notes. |
tests/Microsoft.Identity.Test.Unit/CoreTests/InstanceTests/AadAuthorityTests.cs
Outdated
Show resolved
Hide resolved
…AuthorityTests.cs Async methods should be suffixed with "async" (enforced by an analyzer)
d22ae22
to
3f6b099
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good.
Fixes #4425
Currently MSA passthrough doesn't work as expected for silent token acquisition flows because MSAL.net normalizes /organizations authority using accounts home tenant. This logic made sense for V1 requests, but it breaks MSA passthrough flows using the runtime.
Changes proposed in this request
Stop normalizing /organizations authority for MSA passthrough flows.
Testing
Unit and component tests added.
Performance impact
Negligible