Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug] WwwAuthenticateParameters should not expose Resource #3144

Closed
1 task
jmprieur opened this issue Feb 7, 2022 · 0 comments · Fixed by #3160
Closed
1 task

[Bug] WwwAuthenticateParameters should not expose Resource #3144

jmprieur opened this issue Feb 7, 2022 · 0 comments · Fixed by #3160
Assignees
@gladjohn
Labels
bug
Milestone
4.42.0

Comments

@jmprieur
Copy link
Contributor

jmprieur commented Feb 7, 2022
edited by gladjohn
Loading

Which version of MSAL.NET are you using?
4.41

Platform
All

Other?
WWW-Authenticate parameters

Actual behavior
WwwAuthenticateParameters exposes the Resource property. It should not as the client should know which ressource it called

microsoft-authentication-library-for-dotnet/src/client/Microsoft.Identity.Client/WwwAuthenticateParameters.cs

Line 28 in efddbb7

public string Resource { get; set; }

Expected behavior
Don't expose the Resource property any longer.

Possible solution

  /// <summary>
  /// Resource for which to request scopes.
  /// This is the App ID URI of the API that returned the WWW-Authenticate header.
  /// </summary>
  public string Resource 
  {
    [Obsolete("The client apps should know which App ID URI it requests scopes for") 
    get; 
    set; 
   }
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gladjohn gladjohn

Labels
bug
Projects
None yet
Milestone
4.42.0
3 participants
@bgavrilMS @jmprieur @gladjohn