azure-sdk-for-cpp icon indicating copy to clipboard operation
azure-sdk-for-cpp copied to clipboard

Published 20 hours ago verified publisher icon Azure

Entra access token authentication policies such as `BearerTokenAuthenticationPolicy` should respect `refresh_on` information

Open christothes opened this issue 1 year ago • 1 comments

Long lived credentials such as those received from managed identity authentication include additional metadata concerning when a token can/should be refreshed. Our authentication policies should take this information into account when refreshing access tokens.

This involves:

  • Modifying relevant authentication policies
  • Modifying the AccessToken type to include this optional information
  • Modifying Azure.Identity credential implementations to populate the refresh_on information in the AccessToken

christothes avatar May 03 '24 19:05 christothes

Related

https://github.com/Azure/azure-sdk-for-java/issues/40027

https://github.com/Azure/azure-sdk-for-python/issues/35473

https://github.com/Azure/azure-sdk-for-js/issues/29576

https://github.com/Azure/azure-sdk-for-go/issues/22837

https://github.com/Azure/azure-sdk-for-cpp/issues/5598

https://github.com/Azure/azure-sdk-for-rust/issues/1657

joshfree avatar May 03 '24 19:05 joshfree