Bump Microsoft.Identity.Client from 4.42.0 to 4.52.0

[dependabot]

Bumps Microsoft.Identity.Client from 4.42.0 to 4.52.0.

Release notes

Sourced from Microsoft.Identity.Client's releases.

4.52.0

New Features

• The improved experience using Windows broker (WAM) is now generally available for all desktop platforms, except UWP. See 3375, 3447.
• Acquiring Proof-of-Possession tokens on public desktop clients using WAM broker is now generally available. See 3992.
• The requirement for a specific Windows SDK version on .NET 6 platform has been removed, which should improve the package usage on .NET 6 platforms. MSAL.NET now targets a more general net6.0-windows instead of net6.0-windows10.0.17763.0. See 3986.
• Added support for non-Azure AD IdP's in client credential flows. Use WithGenericAuthority(authority). This is still an experimental API and may change in the future. See 4047, 1538.
• Added AuthenticationResult.AdditionalResponseParameters property bag with any extra parameters from the AAD response. This collection will also have spa_accountId parameter which can be used in brokered hybrid single-page application (SPA) scenarios. See 3994.

4.51.0

New Features

• Simplified managed identity API. Use ManagedIdentityApplicationBuilder to create a IManagedIdentityApplication and call AcquireTokenForManagedIdentity. See 3970 and wiki.
• Added StopLongRunningProcessInWebApiAsync which allows to remove cached tokens based on a long-running OBO key. See 3346 and wiki.

Bug Fixes

• InitiateLongRunningProcessInWebApi will now always acquire new tokens from AAD without checking the token cache first. See 3825.
• When using preview Windows broker, MSAL will correctly handle the transitive reference to Microsoft.Identity.Client.NativeInterop. Any explicit references to Microsoft.Identity.Client.NativeInterop in projects also referencing MSAL should be removed. See 3964.
• Fixed preview Windows broker throwing a signed out exception when calling AcquireTokenSilent after acquiring token using the Username/Password flow. See 3916 and See 3961.

4.50.0

New Features

• Extended managed identity experimental functionality with support for Azure Cloud Shell. See 3832.
• Added support for PII logging for WAM preview. See 3845, 3822.

Bug Fixes

• Fixed JSON serialization issues for apps running on .NET 7. See 3892.
• Improved logging performance to only create logs when a specified log level is enabled. See 3901.
• Fixed Unable to load DLL 'msalruntime' exception for apps that use WAM preview and are packaged as MSIX. See 3740.
• WAM preview now honors the login hint. See 3301 and WAM docs.
• WAM preview now allows to sign in with an account different from the provided login hint. See 3929.
• Fixed an ApiContractViolation exception in WAM preview when signing out. See 3685.
• MSAL now allows passing no scopes when using WAM preview. See 3675.
• When broker is enabled, MSAL will now use the refresh token from the broker instead of a locally cached one. See 3613.
• Added a more descriptive error message when combined flat user and app cache is used. Use a partitioned token cache (for ex. distributed cache like Redis) or separate files for app and user token caches. See 3218.
• Updated logs to clarify that managed identity correlation ID differs from MSAL one. See #3908.
• Fixed an occasional cryptographic exception by removing the RSA public key size check - AAD is better suited to handle this verification. See 3896.
• Fixed JSON parsing errors when receiving an error token response. See 3883.
• Added better error handling when receiving WS-Trust responses. See 3614.
• WithAuthority methods on the request builders are hidden. Use either WithTenantId on the request builders or WithAuthority only on the application builder. See #2929.
• Deprecated IsBrokerAvailable method on mobile platforms. Applications should rely on the library automatically falling back to a browser if the broker is not available. See 3320.
• Deprecated unused extended expiry API. See 1377.

4.49.1

New Features

• Extended managed identity experimental functionality with support for Azure Arc. See 3862

Bug Fixes

• Updated the Broker package to use Microsoft.Identity.Client.NativeInterop 0.13.3 to resolve crash related to garbage collection when using new WAM broker preview. See 3868
• Disabled additional logging in new WAM broker introduced in MSAL 4.49.0. See 3875

... (truncated)

Changelog

Sourced from Microsoft.Identity.Client's changelog.

4.52.0

New Features

• The improved experience using Windows broker (WAM) is now generally available for all desktop platforms, except UWP. See 3375, 3447.
• Acquiring Proof-of-Possession tokens on public desktop clients using WAM broker is now generally available. See 3992.
• The requirement for a specific Windows SDK version on .NET 6 platform has been removed, which should improve the package usage on .NET 6 platforms. MSAL.NET now targets a more general net6.0-windows instead of net6.0-windows10.0.17763.0. See 3986.
• Added support for non-Azure AD IdP's in client credential flows. Use WithGenericAuthority(authority). This is still an experimental API and may change in the future. See 4047, 1538.
• Added AuthenticationResult.AdditionalResponseParameters property bag with any extra parameters from the AAD response. This collection will also have spa_accountId parameter which can be used in brokered hybrid single-page application (SPA) scenarios. See 3994.

4.51.0

New Features

• Simplified managed identity API. Use ManagedIdentityApplicationBuilder to create a IManagedIdentityApplication and call AcquireTokenForManagedIdentity. See 3970 and wiki.
• Added StopLongRunningProcessInWebApiAsync which allows to remove cached tokens based on a long-running OBO key. See 3346 and wiki.

Bug Fixes

• InitiateLongRunningProcessInWebApi will now always acquire new tokens from AAD without checking the token cache first. See 3825.
• When using preview Windows broker, MSAL will correctly handle the transitive reference to Microsoft.Identity.Client.NativeInterop. Any explicit references to Microsoft.Identity.Client.NativeInterop in projects also referencing MSAL should be removed. See 3964.
• Fixed preview Windows broker throwing a signed out exception when calling AcquireTokenSilent after acquiring token using the Username/Password flow. See 3916 and See 3961.

4.50.0

New Features

• Extended managed identity experimental functionality with support for Azure Cloud Shell. See 3832.
• Added support for PII logging for WAM preview. See 3845, 3822.

Bug Fixes

• Fixed JSON serialization issues for apps running on .NET 7. See 3892.
• Improved logging performance to only create logs when a specified log level is enabled. See 3901.
• Fixed Unable to load DLL 'msalruntime' exception for apps that use WAM preview and are packaged as MSIX. See 3740.
• WAM preview now honors the login hint. See 3301 and WAM docs.
• WAM preview now allows to sign in with an account different from the provided login hint. See 3929.
• Fixed an ApiContractViolation exception in WAM preview when signing out. See 3685.
• MSAL now allows passing no scopes when using WAM preview. See 3675.
• When broker is enabled, MSAL will now use the refresh token from the broker instead of a locally cached one. See 3613.
• Added a more descriptive error message when combined flat user and app cache is used. Use a partitioned token cache (for ex. distributed cache like Redis) or separate files for app and user token caches. See 3218.
• Updated logs to clarify that managed identity correlation ID differs from MSAL one. See #3908.
• Fixed an occasional cryptographic exception by removing the RSA public key size check - AAD is better suited to handle this verification. See 3896.
• Fixed JSON parsing errors when receiving an error token response. See 3883.
• Added better error handling when receiving WS-Trust responses. See 3614.
• WithAuthority methods on the request builders are hidden. Use either WithTenantId on the request builders or WithAuthority only on the application builder. See #2929.
• Deprecated IsBrokerAvailable method on mobile platforms. Applications should rely on the library automatically falling back to a browser if the broker is not available. See 3320.
• Deprecated unused extended expiry API. See 1377.

4.49.1

New Features

• Extended managed identity experimental functionality with support for Azure Arc. See 3862

... (truncated)

Commits

• 218643b Brokered Hybrid Spa (#4020)
• 8682dd6 Update WithPoP comments - not experimental on PCA with broker (#4048)
• a3bc192 Introduce client_credentials flow support with GenericAuthority (#3948)
• c9c5e98 Updated test app(s) (#4016)
• 4441d6b Update to Microsoft.Identity.Client.NativeInterop version 0.13.7 (#4043)
• 00c521b Upgrade nunit to avoid net 7.0 exception (#4036)
• 48a023c [Managed Identity] [Dev App] Add support for Azure ARC in MSI Helper Service ...
• 663965f Test Certificate by Name (#3950)
• ea65c20 MI : Fix Dev App path (#4028)
• 7291280 Add dev app to test managed identity on app service (#4024)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #2084.