bad -> revoked

GladwinJohnson · GladwinJohnson · commit 15fc53cfbff9 · 2025-08-06T18:56:38.000-07:00
diff --git a/src/client/Microsoft.Identity.Client/Internal/Requests/ManagedIdentityAuthRequest.cs b/src/client/Microsoft.Identity.Client/Internal/Requests/ManagedIdentityAuthRequest.cs
@@ -63,19 +63,19 @@ protected override async Task<AuthenticationResult> ExecuteAsync(CancellationTok
                 _managedIdentityParameters.Claims = AuthenticationRequestParameters.Claims;
                 AuthenticationRequestParameters.RequestContext.ApiEvent.CacheInfo = CacheRefreshReason.ForceRefreshOrClaims;
 
-                // If there is a cached token, compute its hash for the “bad token” scenario
+                // If there is a cached token, compute its hash for the “revoked token” scenario
                 if (cachedAccessTokenItem != null)
                 {
                     string cachedTokenHash = _cryptoManager.CreateSha256HashHex(cachedAccessTokenItem.Secret);
                     _managedIdentityParameters.RevokedTokenHash = cachedTokenHash;
 
-                    logger.Info("[ManagedIdentityRequest] Claims are present. Computed hash of the cached (bad) token. " +
+                    logger.Info("[ManagedIdentityRequest] Claims are present. Computed hash of the cached (revoked) token. " +
                                 "Will now request a fresh token from the MI endpoint.");
                 }
                 else
                 {
                     logger.Info("[ManagedIdentityRequest] Claims are present, but no cached token was found. " +
-                                "Requesting a fresh token from the MI endpoint without a bad-token hash.");
+                                "Requesting a fresh token from the MI endpoint without a revoked-token hash.");
                 }
 
                 // In both cases, we skip using the cached token and get a new one

Original file line number	Diff line number	Diff line change
`@@ -63,19 +63,19 @@ protected override async Task<AuthenticationResult> ExecuteAsync(CancellationTok`
`63`	`63`	`_managedIdentityParameters.Claims = AuthenticationRequestParameters.Claims;`
`64`	`64`	`AuthenticationRequestParameters.RequestContext.ApiEvent.CacheInfo = CacheRefreshReason.ForceRefreshOrClaims;`
`65`	`65`
`66`		`- // If there is a cached token, compute its hash for the “bad token” scenario`
	`66`	`+ // If there is a cached token, compute its hash for the “revoked token” scenario`
`67`	`67`	`if (cachedAccessTokenItem != null)`
`68`	`68`	`{`
`69`	`69`	`string cachedTokenHash = _cryptoManager.CreateSha256HashHex(cachedAccessTokenItem.Secret);`
`70`	`70`	`_managedIdentityParameters.RevokedTokenHash = cachedTokenHash;`
`71`	`71`
`72`		`- logger.Info("[ManagedIdentityRequest] Claims are present. Computed hash of the cached (bad) token. " +`
	`72`	`+ logger.Info("[ManagedIdentityRequest] Claims are present. Computed hash of the cached (revoked) token. " +`
`73`	`73`	`"Will now request a fresh token from the MI endpoint.");`
`74`	`74`	`}`
`75`	`75`	`else`
`76`	`76`	`{`
`77`	`77`	`logger.Info("[ManagedIdentityRequest] Claims are present, but no cached token was found. " +`
`78`		`- "Requesting a fresh token from the MI endpoint without a bad-token hash.");`
	`78`	`+ "Requesting a fresh token from the MI endpoint without a revoked-token hash.");`
`79`	`79`	`}`
`80`	`80`
`81`	`81`	`// In both cases, we skip using the cached token and get a new one`