Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[release/8.0] Bump Microsoft.Identity.Web from 2.18.2 to 2.19.0 in /eng/dependabot/independent in the identity-dependencies group #6743

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 29, 2024

Bumps the identity-dependencies group in /eng/dependabot/independent with 1 update: Microsoft.Identity.Web.

Updates Microsoft.Identity.Web from 2.18.2 to 2.19.0

Release notes

Sourced from Microsoft.Identity.Web's releases.

2.19.0

  • Updated to Microsoft.IdentityModel.* 7.6.0

New features

  • Id Web now provides a .WithUser() modifier to the Microsoft Graph queries (like WithAppOnly()). See issue #2855 for details.
  • Id Web now provides a base class for implementing a custom IAuthorizationHeaderProvider. See issue #2856 for details.

Bug fixes

  • Id Web now processes the extra query parameters when included as part of the authority. See issue #2697 for details.
Changelog

Sourced from Microsoft.Identity.Web's changelog.

2.19.0

  • Updated to Microsoft.IdentityModel.* 7.6.0

New features

  • Id Web now provides a .WithUser() modifier to the Microsoft Graph queries (like WithAppOnly()). See issue #2855 for details.
  • Id Web now provides a base class for implementing a custom IAuthorizationHeaderProvider. See issue #2856 for details.

Bug Fixes

  • Id Web now processes the extra query parameters when included as part of the authority. See issue #2697 for details.
  • If Logging:LogLevel:Microsoft.Identity.Web is assigned to None, no default logger is initialized and Microsoft.Identity.Web does not record any logs. See #2816 for details.
  • GraphAuthenticationProvider checks that the RequestInformation.URI is a Graph URI before appending the authorization header, resolving #2710. See PR #2818 for details.
  • TokenAcquisition processes the error code AADSTS1000502 (The provided certificate is not within its specified validity window). See PR #2840 for details.

3.0.0-preview1

Breaking changes

  • Remove netcoreapp3.1 support, see issue #2262 for details.
  • Remove net5.0 support from Microsoft.Identity.Web.UI, see issue #2711 for details.

New features

  • Microsoft.Identity.Web can be conditionally built on .net9.0-preview, see issue #2702 for details.
  • Microsoft.Identity.Web nows processes the AcceptHeader and ContentType if provided, see issue #2806 for details.
  • Target Microsoft.IdentityModel 7x in OWIN targets, see issue #2785 for details.

2.18.1

  • Updated to Microsoft.IdentityModel.* 7.5.1

Bug fix

  • Fix for FIC due to appending ./default, see issue #2796 for details.

2.18.0

  • Updated to Microsoft.Identity.Abstractions 5.3.0
  • Updated Azure.Security libraries to 4.6.0

New features

  • Added support for Managed Identity Federated Identity Credential. See issue #2749 for details.
  • Added support to read a section to register multiple downstream APIs. See issue #2255 for details.

Bug fix

  • TokenAcquirer factory is now thread safe and can handle multiple azure regions. See issue #2765 for details.

2.17.5

  • Updated to MSAL 4.59.1.

2.17.4

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the identity-dependencies group in /eng/dependabot/independent with 1 update: [Microsoft.Identity.Web](https://github.com/AzureAD/microsoft-identity-web).


Updates `Microsoft.Identity.Web` from 2.18.2 to 2.19.0
- [Release notes](https://github.com/AzureAD/microsoft-identity-web/releases)
- [Changelog](https://github.com/AzureAD/microsoft-identity-web/blob/master/changelog.md)
- [Commits](AzureAD/microsoft-identity-web@2.18.2...2.19.0)

---
updated-dependencies:
- dependency-name: Microsoft.Identity.Web
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: identity-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner May 29, 2024 16:59
@dependabot dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels May 29, 2024
@wiktork wiktork merged commit b30feaf into release/8.0 May 31, 2024
26 checks passed
@wiktork wiktork deleted the dependabot/nuget/eng/dependabot/independent/release/8.0/identity-dependencies-ec9cfc08fc branch May 31, 2024 21:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file .NET Pull requests that update .net code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant