Skip to content

Add changelog entry for version 4.82.0 #5696

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
gladjohn merged 5 commits into from
Feb 2, 2026
Merged

Add changelog entry for version 4.82.0 #5696

Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
023c3d5
Initial plan
Copilot Jan 31, 2026
e74d897
Add changelog entry for version 4.82.0
Copilot Jan 31, 2026
395ac8d
Fix capitalization of PoP in MSI PoP Attestation
Copilot Jan 31, 2026
ba88dd6
Update CHANGELOG.md to remove MSI PoP Attestation
gladjohn Jan 31, 2026
8ee3f17
Update CHANGELOG for release 4.82.0
gladjohn Feb 1, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 16 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,19 @@
4.82.0
======

### Highlights
This release expands extensibility for confidential-client authentication (certificates + client assertions), adds additional sovereign cloud environments, and hardens security-sensitive flows (mTLS PoP and system browser auth) with clearer validation and safer defaults.

### Features
* **Certificate-based confidential client extensibility:** Introduced `CertificateOptions` and updated `WithCertificate` extensibility APIs to accept it, including support for passing `sendX5C` configuration through the options model. ([#5655](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/pull/5655))
* **Sovereign cloud support:** Added instance discovery / authority validation support for Bleu (France), Delos (Germany), and GovSG (Singapore) cloud environments. ([#5671](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/pull/5671))
* **Client assertion customization:** Added `WithExtraClientAssertionClaims` on `AcquireTokenForClientParameterBuilder` to enable supplying additional signed claims in client assertions (intended for advanced scenarios and higher-level libraries). ([#5650](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/pull/5650))
* **mTLS PoP guardrails:** Added validation and explicit error handling when mTLS PoP is requested for unsupported environments and/or non-`login.*` hosts. ([#5684](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/pull/5684))
* **System browser hardening:** Added `response_mode=form_post` support for the default system browser (loopback) flow. MSAL will enforce `form_post` and process the authorization response from POST data. ([#5678](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/pull/5678))

### Changes
* **Key Attestation packaging rename:** `Microsoft.Identity.Client.MtlsPop` renamed to `Microsoft.Identity.Client.KeyAttestation` (assembly/package naming update). ([#5653](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/pull/5653))

4.81.0
======

Expand Down