Skip to content
Original file line number Diff line number Diff line change
@@ -1,5 +1,11 @@
# Release History

## 2.0.0b2 (Unreleased)

### Bugs Fixed

- Fixed authentication failure on HTTP redirects by preserving sensitive headers during service-managed redirects within the Confidential Ledger endpoint.

## 2.0.0b1 (2025-10-20)

### Features Added
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,13 @@ def __init__( # pylint: disable=missing-client-constructor-parameter-credential
self._config.custom_hook_policy,
self._config.logging_policy,
policies.DistributedTracingPolicy(**kwargs),
policies.SensitiveHeaderCleanupPolicy(**kwargs) if self._config.redirect_policy else None,
# Redirect cleanup is disabled to preserve authentication and ledger-specific headers
Comment thread
ryazhang-microsoft marked this conversation as resolved.
# on service-managed redirects. Confidential Ledger redirects are expected to stay within
# the same trusted ledger endpoint, so forwarding these sensitive headers is required
# for correct authentication behavior.
Comment thread
ryazhang-microsoft marked this conversation as resolved.
Comment thread
ryazhang-microsoft marked this conversation as resolved.
policies.SensitiveHeaderCleanupPolicy(
disable_redirect_cleanup=True, **kwargs
) if self._config.redirect_policy else None,
Comment thread
ryazhang-microsoft marked this conversation as resolved.
self._config.http_logging_policy,
]
self._client: PipelineClient = PipelineClient(base_url=_endpoint, policies=_policies, **kwargs)
Expand Down
Loading