Releases: AzureAD/microsoft-authentication-library-for-dotnet
4.47.0
New Features
- Support for .NET MAUI is now generally available for iOS, Windows and Android targets. The package also works with UWP. Refer to
MauiStatus.mdfor details. - The new MSAL logging feature is now generally available.
WithExperimentalFeatures()is no longer required when callingWithLogging(). See 3548, wiki. - Adding IsProofOfPosessionSupportedByClient api to be used to determine if the current broker is able to support Proof-of-Posession. See 3496
- Adding ability to turn off the default retry-once policy on 5xx errors. See 2877
- Adds new public builder API accepting instances of
ITelemetryClient. See 3533. - Added logic to log some acquire token data via the new telemetry pipeline. See 3534.
Bug Fixes
- MSAL will now throw an exception if no scopes are passed when the new preview broker is invoked. See #3654 and #3677
MsalServiceException.IsRetryableis now correctly set. See #3661- Added extra logging in Preview Broker
RemoveAccountAsyncAPI. See #3658 - Added a check for null account in Preview Broker
RemoveAccountAsyncAPI. See #3657 AuthenticationResultnow shows correct authority for multi-cloud requests using WAM. See #3637- Adding null IdentityLogger to prevent null reference exception when using cache logger. See #3678
4.46.2
New Features
- WAM Authentication Library now explicitly supports .NET 4.6.2. See #3539
Bug Fixes
- Fixed 'Authenticator Factory has already been started` exception in new MSAL WAM preview. See #3604
- Added back missing .NET Standard 2.0 target to MSAL.NativeInterop package. See #3612
- [Resilience] Changed to an improved implementation of HTTP client factory on .NET Framework to improve resiliency (for ex. by reducing the amount of request timeouts). See #3546
- Logging additional exceptions to telemetry. See #3547
4.46.1
4.46.0
New Features
- Added
AcquireTokenByUsernamePasswordflow in WAM broker preview. See 3308. - Added support for Proof-of-Possession tokens to
AcquireTokenByUsernamePasswordflow in WAM broker preview. See 3308. - Added
WithTenantIdFromAuthorityAPI to request builder. See 3429. - Exposed new Identity Logger in the
TokenCacheNotificationArgs. See 3404. - [Security] Increased size of PKCE verifier. See 1777.
- Enabled multi-cloud support in WAM. See 3477.
Bug Fixes
- Deprecated and replaced
SecureStringusage with strings. See 2437. - Refactored authority related code to use URI class instead of strings. See 3487.
- Fixed authority resolution for B2C authorities. See 3471.
- Improved WAM broker preview behavior for remembered accounts. See 3437.
- Obsoleted with a warning
AcquireTokenSilent(scopes, login_hint)for confidential client applications as it's not applicable in those scenarios. See 3403. - Now passing
intune_mam_resourceto the mobile broker. See 3490. - Fixed DSTS endpoints. See 3492.
- Cancellation tokens are now correctly passed to Windows broker and embedded web views. See 3225.
- Move app token provider feature to extensibility namespace and clarified its use. See 3475.
Fundamentals
4.46.0-Preview2
New Features
This preview package adds support for.NET MAUI. It adds .NET 6 iOS and Android targets. The package also works with UWP. Refer to MauiStatus.md for details.
4.45.0
Important changes for UWP apps
Upgrade the minimum target platform to 10.0.17763.0.
Upgrade Microsoft.NETCore.UniversalWindowsPlatform to 6.1.9 or above.
Add a reference to Microsoft.IdentityModel.Abstractions, for projects that use package.json.
New Features
Logs are now consistent when you use several .NET authentication libraries from Microsoft. See 3028.
Exposed tenant ID and scopes in TokenCacheNotificationArgs. See 3389.
Added new WithClientAssertion API that exposes the token endpoint. See 3352.
Added additional descriptive information to error logs. See 3278.
Updated support from .NET Standard 1.3 to.NET Standard 2.0. See 1991.
Bug Fixes
Tenant profiles are now returned when calling GetAccounts with broker enabled. See 3349.
Fixed parsing of authentication result from broker preview. See 3354.
Fixed DSTS endpoints. See 3492.
Privacy and Terms of Use links are now visible in embedded picker UI on smaller screens. See 3153.
Fixed broker Proof-of-Possession token appearing as Bearer when calling GetAuthorizationHeader(). See 3353.
Ensured MSAL doesn't check local cache for tokens when using Proof-of-Possession with the broker preview. See 3363.
4.44.0
New Features
Added support in MSAL for dSTS authority See 3198.
Enabled Azure.Identity (Azure SDK) to benefit from MSAL.NET token cache when used for Managed Identity See 3137.
Experimental Features
MSAL.NET now has a new WAM preview which is an abstraction layer based on MSAL C++ with support for Proof-of-Possession access tokens. This fixes some issues with current WAM implementation. See 3192 and wiki.
Bug Fixes
Improved exception handling in case of an Operation Cancelled Exception See 3283.
Fixed AcquireTokenSilent to not display a login prompt unnecessarily for operating system accounts in WAM. See 3294.
Fixed NullReferenceException in IsBrokerAvailable() See 3261.
Fixed a race condition to improve stability of region autodiscovery. See 3277.
Fixed a bug in instance discovery by adding pre-production environment (PPE) domains to known endpoints. See 3265.
Fundamentals
Improved automated performance microbenchmarks to better reflect common scenarios See 3297 and wiki.
4.43.2
4.43.1
4.43.0
New Features
Added Intune Mobile App Management (MAM) support for Android. See 3185.
MSAL.NET Cache Extensions now protects plaintext cache files with owner only read/write permissions.See 3186, 169.
Bug Fixes
Client capabilities flags are correctly passed to Android Broker. See 3203.
Fixed WithAccount(result.Account) to work when using WAM. See 3121.
Improved token cache filtering logic. See 3178, and 3233.
Fixed an error in creating UWP package for Microsoft Store upload. See 3184, 3239.
Fixed a bug to correctly sign-out an account from WAM. See 3248.
Correctly showing a browser in WSL2. See 3251.