microsoft-authentication-library-for-java
microsoft-authentication-library-for-java copied to clipboard
AzureAD
Microsoft Authentication Library (MSAL) for Java http://aka.ms/aadv2
### MSAL client type Confidential ### Problem Statement When MSAL creates the client assertion, it uses PKCS1 padding for digital signature and SHA1 as x5t claim. These are old crypto...
Adds an option to use a static/shared cache in ConfidentialClientApplication instead of the per-instance cache (https://github.com/AzureAD/microsoft-authentication-library-for-java/issues/699), and adds a new field to AuthenticationResult to store helpful metadata about the result...
We are reorganizing our samples to provide a better experience for users. We are better positioning the Spring samples that use MSAL Java more directly to give them better visibility....
### MSAL client type Public, Confidential, Managed identity ### Problem Statement See https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/issues/4167#issuecomment-1736303602 for details ### Proposed solution Stop sending this header. ### Alternatives _No response_
### MSAL client type Public ### Problem Statement https://learn.microsoft.com/en-us/azure/active-directory/develop/sample-v2-code?tabs=apptype - does not have any public client recommended flow - only ROPC, device code flow and IWA. We should add an...
The tool we used to scan our microservices for vulnerabilities detected a vulnerability in the hashing algorithm used by com.microsoft.aad.msal4j.ClientCertificate.java. The insecure code is the #getHash function: private static byte[]...
https://learn.microsoft.com/en-us/azure/active-directory/develop/msal-logging-java is not fit for purpose, as it ties to Spring framework.
MSAL.NET has an additional datapoint in `AuthenticationResult.AuthenticationResultMetadata.TokenSource` (which may not be the best naming, but the team wanted an object to be able to add more properties there) which can...