azuread / microsoft-authentication-library-for-dotnet Goto Github PK
View Code? Open in Web Editor NEWMicrosoft Authentication Library (MSAL) for .NET
Home Page: https://aka.ms/msal-net
License: MIT License
microsoft-authentication-library-for-dotnet's People
Stargazers
Watchers
Forkers
vijayaramb dianambb deniscelcer camiloborges newblife clairernovotny jolmiracle killer-frog blinds52 oriain shoatman jennyf19 injac clav88 tlddesigns migueldeicaza danieldobalian jicailiu jmprieur vairamsvsjdo masakura codemillmatt markti imad9999 windylzy swimlanebuilder sfarmer-mesaaz davesullivanatwork m26jiang skyhoshi swoog peterthegreat86 nhat-tong twsouthwick 0k1 mikelapierre mc5eamus carlalopez15 michaelmilk sandeshthakur dendrok ruckybosnet fr830 msybairy9 flaviup onixus74 devigned cormacpayne tom-made universalofficellc ahmedtharwat2 samoilasergiu86 jburman stefangossner malikj hhy5277 jeremysbrown rickykaare okj9dddd emzha dystudio wilcobmsft calian-pace jbohua spillchek2 dmsheets smartpcr mjcheetham roederja pkjmesra rwike77 krishnaxamarin deisterhold dev-platformaxcloud cloudcarmon zhaozhongming davidjohnoliver evanspjz kjyam98 cobrabr yarg ksagala pushpindersingh maheshmole ashco-2019 vijayraavi skolbin-ssi sauerkraut51 ramanmiddha90 isra-fel tiagobrenck arielcortez hareshdc jacekrud kaneleung chougules739 shurugwi clarkshataiyou aravindhv mjfusamicrosoft-authentication-library-for-dotnet's Issues
disable SSO header feature
disable SSO header feature
MSAL.Net Cache is backward and forward compatible
Why?
To enable an easy migration of applications using ADAL.Net to MSAL.Net, we'd want the cache to be backward and forward compatible in both libraries.
What?
MSAL.Net should be able to:
- read ADAL.NET v3.0 cache blobs and migrate refresh tokens to MSAL cache format.
- write both ADAL.NET v3.0 blob format and MSAL.NET Json format.
- Add a test where HasStateChanged is false due to the token not in the cache, thus not deleted, thus no state changed (See #252)
- RequestParams should not be passed in the token cache. request classes must pass exact information to the methods (#317)
Use SOAPValue to determine WSTrust 1.3 vs 2005
Use SOAPValue to determine WSTrust 1.3 vs 2005
throw Argument exception when platform parameters are not complete
throw Argument exception when platform parameters are not complete
special case b2c scenarios to not send email and profile as scopes for BUILD
special case b2c scenarios to not send email and profile as scopes
update TokenCacheTests.LoadCacheItems to create cache
update TokenCacheTests.LoadCacheItems to create cache
Fix webview bug in iOS and cache storage label issue
Fix webview bug in iOS and cache storage label issue
remove stream.position and fix MSALServiceException
remove stream.position and fix MSALServiceException in HttpClientWrapper.GetResponseAsync
Add OSS header to all source
access token not returned when restrict2singleuser=true and authority is common
MSAL does not return access token when restrictToSingleUser=true and authority tenant is set to common. MSAL should be able to ignore the tenant and return the AT because we guarantee single unique user in the cache.
Add forceRefresh support in Silent calls
Add forceRefresh support in Silent calls
disable HTTP redirects in webview
disable HTTP redirects in webview
Remove integrated auth support using WS-Trust
Remove integrated auth support using WS-Trust. Update source to use silent web UI.
Send client_info=1 parameter on token endpoint.
We need to send client_info=1 parameter on token endpoint to get uid, utid. Update cache model to use uid/utid as a key instead of home oid.
Add innerexception to AcquireTokenSilentAcquisitionException
Add innerexception to AcquireTokenSilentAcquisitionException
Rework Exception handling
Rework Exception handling
Refresh Token as a SSO artifact
Refresh Token as a SSO artifact -- (Header)
Add log.error for every caught exception in MSAL
Add log.error for every caught exception in MSAL. Make sure all the catch statements in the code are covered.
Normalize cache storage to have 1 RT per user
Normalize cache storage to have 1 RT per user
refactor hard-coded string into variables
refactor hard-coded string into variables
turn on warnings as errors in build
turn on warnings as errors in build. This requires removing all the code warnings in the source first.
support Resiliency for outages
Add support for resiliency/client heuristics for outages
add whitelist for url schemes
add whitelist for url schemes where only HTTPS redirects are allowed.-- see adal v3 for reference
make token cache scope lookup case insensitive
make token cache scope lookup case insensitive
Handle organizations and consumers as common authority
Handle organizations and consumers as common authority. Currently only "/common" is treated as Common endpoint. MSAL needs to add support for /organizations and /consumers.
add last updated time to refresh tokens
this is required for family of client id feature
MSAL should send haschrome=1 QP for all interactive requests
MSAL should send haschrome=1 QP for all interactive requests. This will hide the back button the UI and developers will stop getting access_denied error when it was actually user_cancel.
Add support to read error and error_description from URL when user cancels web ui
Add support to read error and error_description from URL when user cancels web ui for cases when the user gets an error on authorize like your app does not have access to the resource or transient error happened. These pages are generally non-recoverable and user ends up calling "cancel". This results in user_cancelled error in the API even though it was actually some other error. Putting the error and description will allow us to provide error details to developers and will improve our and developer's ability to build telemetry.
app.Users does not add client_id and cache reference to object
app.Users does not add client_id and cache reference to object
look up userIdentifier in the cache to load user object
look up userIdentifier in the cache to load user object when developer passes identifier instead of User in AcquireTokenSilentHandler and other flows.
Make client Id immutable in application object
Make client Id immutable in application object.
Revert changes for Issue #55 once b2c is updated
Revert changes for Issue #55 once b2c is updated
Instance discovery fails with HTTP 400 for valid authorities
compare with ADAL and make necessary fixes.
Revert changes for issue #65 once feature is fully supported
Revert changes for issue #65
Clean project structure
Clean project structure
Add hook to test browser control launch and close
Add hook to test browser control launch and close
Update README
Update README
Add fxcop analysis during build
Add fxcop analysis during build
MSAL.NET supports family of client ids
Family of client ids
Make the cache thread safe
Make the cache thread safe
Add logging implementation for iOS/Android
Add logging implementation for iOS/Android
add default client id for public clients
add default client id for public clients
add get authz url tests
add get authz url tests
New JSON cache format for cross platform sharing
New JSON cache format for cross platform sharing
check if we can have empty scopes
check if we can have empty scopes and document how to handle them.
replace PCL. to MSAL. in PlatformInformation.GetProductName
replace PCL. to MSAL. in PlatformInformation.GetProductName
Port bug fixes from v2 and v3 in to MSAL
Port bug fixes from v2 and v3 in to MSAL
Use rootId to represent user instead of uniqueId
Use rootId to represent user instead of uniqueId
Clean up warnings during the build
Clean up warnings during the build
Add support for UserAssertion Hash
Add support for UserAssertion Hash
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.