client capabilities

Client capabilities

MSAL.NET has a way of expressing client capabilities. This is needed for scenarios such as Conditional access evaluation

How to express client capabilities

The ConfidentialClientApplicationOptions expose the ClientCapabilities property

Therefore you can express them in the appsettings.json:

"AzureAD" : 
{
 // usual members
 "ClientCapabilities" : [  "cp1" ]
}

or, programmatically, through the options you set in .EnableTokenAcquisitionToCallDownstreamApis