You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently, MSAL with Managed Identity does not expose any API claims API. With CAE (Continuous Access Evaluation) being enabled by default, we need to implement a mechanism to bypass the cache if claims are detected in the token request.
Steps to Reproduce:
Enable CAE by default in MSAL with Managed Identity.
Make a token request with claims present.
Observe that the cache is not bypassed, leading to potential stale token usage.
Expected Behavior:
When claims are present in the token request, the cache should be bypassed to ensure that the latest token is used, in line with CAE requirements.
Solution
Proposed Solution:
Expose the claims API in MSAL for MI
Expose Claims to MI Assertion Provider for FIC
The text was updated successfully, but these errors were encountered:
Task type
Development
Description
Currently, MSAL with Managed Identity does not expose any API claims API. With CAE (Continuous Access Evaluation) being enabled by default, we need to implement a mechanism to bypass the cache if claims are detected in the token request.
Steps to Reproduce:
Enable CAE by default in MSAL with Managed Identity.
Make a token request with claims present.
Observe that the cache is not bypassed, leading to potential stale token usage.
Expected Behavior:
When claims are present in the token request, the cache should be bypassed to ensure that the latest token is used, in line with CAE requirements.
Solution
Proposed Solution:
The text was updated successfully, but these errors were encountered: