Bump Microsoft.Identity.Client from 4.76.0 to 4.82.1

[dependabot]

Updated Microsoft.Identity.Client from 4.76.0 to 4.82.1.

Release notes

Sourced from Microsoft.Identity.Client's releases.

4.82.1

Bug Fixes

• Remove experimental flag requirement from IAuthenticationOperation #​5699
• Add security warning to ICustomWebUi documentation #​5704

Changes

• Adds support for implicit mTLS (Mutual TLS) transport for client assertion delegates #​5670

4.82.0

4.82.0

Highlights

This release expands extensibility for confidential-client authentication (certificates + client assertions), adds additional sovereign cloud environments, and hardens security-sensitive flows (mTLS PoP and system browser auth) with clearer validation and safer defaults.

Features

• Certificate-based confidential client extensibility: Introduced CertificateOptions and updated WithCertificate extensibility APIs to accept it, including support for passing sendX5C configuration through the options model. (#​5655)
• Sovereign cloud support: Added instance discovery / authority validation support for Bleu (France), Delos (Germany), and GovSG (Singapore) cloud environments. (#​5671)
• Client assertion customization: Added WithExtraClientAssertionClaims on AcquireTokenForClientParameterBuilder to enable supplying additional signed claims in client assertions (intended for advanced scenarios and higher-level libraries). (#​5650)
• mTLS PoP guardrails: Added validation and explicit error handling when mTLS PoP is requested for unsupported environments and/or non-login.* hosts. (#​5684)
• System browser hardening: Added response_mode=form_post support for the default system browser (loopback) flow. MSAL will enforce form_post and process the authorization response from POST data. (#​5678)

Changes

• Key Attestation packaging rename: Microsoft.Identity.Client.MtlsPop renamed to Microsoft.Identity.Client.KeyAttestation (assembly/package naming update). (#​5653)

4.81.0

What's Changed

• Expose API SendX5C from ROPC CCA flow by @​neha-bhargava in Expose API SendX5C from ROPC CCA flow AzureAD/microsoft-authentication-library-for-dotnet#5635
• Refactor and simplify Microsoft.Identity.Test.LabInfrastructure by @​Avery-Dunn in Refactor and simplify Microsoft.Identity.Test.LabInfrastructure AzureAD/microsoft-authentication-library-for-dotnet#5631
• Remove Headers from MsalServiceException.ToString() to prevent logging sensitive data by @​Copilot in Remove Headers from MsalServiceException.ToString() to prevent logging sensitive data AzureAD/microsoft-authentication-library-for-dotnet#5642

Full Changelog: AzureAD/microsoft-authentication-library-for-dotnet@4.80.0...4.81.0

4.80.0

Features

• Added extensibility APIs—WithCertificate, OnMsalServiceFailure, and OnCompletion—to enable callback handling for certificate injection, retry on MSAL service failure events, and completion notifications #​5573
• Extend IAuthenticationOperation interface with Async methods in IAuthenticationOperation2 #​5376
• Enable IAuthenticationOperation2 to reject MSAL cached tokens and fetch new ones from ESTS #​5567

Changes

• IMDS Source Detection Logic Improvement #​5602
• Update DesktopOsHelper.IsMac to work properly on .NET 10 + macOS 26 #​5541

Bug Fixes

• Fix KeyNotFoundException during retry when headers lack correlation ID #​5617
• Implement Service Exception for IMDS Probe #​5615

4.79.2

What's Changed

• Bump winsdk dependency by @​bgavrilMS in Bump winsdk dependency AzureAD/microsoft-authentication-library-for-dotnet#5575
• ImdsV2 probe does not fire when .WithMtlsProofOfPossesstion is not used by @​Robbie-Microsoft in ImdsV2 probe does not fire when .WithMtlsProofOfPossesstion is not used AzureAD/microsoft-authentication-library-for-dotnet#5579
• Downgrade System.Formats.Asn1 to match ID web by @​Avery-Dunn in Downgrade System.Formats.Asn1 to match ID web AzureAD/microsoft-authentication-library-for-dotnet#5583

Full Changelog: AzureAD/microsoft-authentication-library-for-dotnet@4.79.0...4.79.2

4.79.0

What's Changed

• Fix instance discovery bug 5546 by @​bgavrilMS in Fix instance discovery bug 5546 AzureAD/microsoft-authentication-library-for-dotnet#5549
• Managed Identity IMDSv2 and new support APIs (ResetForTest, GetSourceAsync) by @​Robbie-Microsoft in Managed Identity IMDSv2 and new support APIs (ResetForTest, GetSourceAsync) AzureAD/microsoft-authentication-library-for-dotnet#5501
• Bearer Requests should Fallback to IMDS in Preview by @​gladjohn in Bearer Requests should Fallback to IMDS in Preview  AzureAD/microsoft-authentication-library-for-dotnet#5562
• Updating MSAL to send client info = 2 on client credential flow by @​trwalke in Updating MSAL to send client info = 2 on client credential flow AzureAD/microsoft-authentication-library-for-dotnet#5529
• Make IMsalMtlsHttpClientFactory interface public by @​cpp11nullptr in Make IMsalMtlsHttpClientFactory interface public AzureAD/microsoft-authentication-library-for-dotnet#5559
• Mark WithClientAssertion API as experimental by @​gladjohn in Mark WithClientAssertion API as experimental AzureAD/microsoft-authentication-library-for-dotnet#5551
• Adjust WithExtraQueryParameters APIs and cache key behavior by @​Avery-Dunn in Adjust WithExtraQueryParameters APIs and cache key behavior AzureAD/microsoft-authentication-library-for-dotnet#5536

Full Changelog: AzureAD/microsoft-authentication-library-for-dotnet@4.78.0...4.79.0

4.78.0

Changes

• Update SDK version from 8.0.404 to 8.0.415. #​5543
• Hide / deprecate some obscure APIs. #​5484

Bug Fixes

• Support Android edge-to-edge. #​5499
• Android broker does not support ADFS authority. #​5522

4.77.1

What's Changed

• Fix prototype code to address CodeQL by @​bgavrilMS in Fix prototype code to address CodeQL AzureAD/microsoft-authentication-library-for-dotnet#5472
• Update CHANGELOG.md for MSAL 4.77.0 by @​gladjohn in Update CHANGELOG.md for MSAL 4.77.0 AzureAD/microsoft-authentication-library-for-dotnet#5473
• Mark project as AOT compatible for net 8 by @​neha-bhargava in Mark project as AOT compatible for net 8 AzureAD/microsoft-authentication-library-for-dotnet#5458
• Update public api for MSAL Release 4.77.0 by @​gladjohn in Update public api for MSAL Release 4.77.0 AzureAD/microsoft-authentication-library-for-dotnet#5471
• Adjust issuer validation to accept differing paths by @​Avery-Dunn in Adjust issuer validation to accept differing paths AzureAD/microsoft-authentication-library-for-dotnet#5466
• Added better error message for OIDC error by @​trwalke in Added better error message for OIDC error AzureAD/microsoft-authentication-library-for-dotnet#5433
• Remove failing test project from solution to prevent build breaks. by @​MZOLN in Remove failing test project from solution to prevent build breaks. AzureAD/microsoft-authentication-library-for-dotnet#5481
• Fix MSB3277 “WindowsBase” conflicts in dev apps by enabling WPF build ref by @​gladjohn in Fix MSB3277 “WindowsBase” conflicts in dev apps by enabling WPF build ref AzureAD/microsoft-authentication-library-for-dotnet#5482
• Remove some flaky tests that were just an overkill by @​gladjohn in Remove some flaky tests that were just an overkill AzureAD/microsoft-authentication-library-for-dotnet#5486
• Remove dupe ropc b2c tests by @​gladjohn in Remove dupe ropc b2c tests AzureAD/microsoft-authentication-library-for-dotnet#5487
• Revert changes made for Http2 by @​neha-bhargava in Revert changes made for Http2 AzureAD/microsoft-authentication-library-for-dotnet#5462

Full Changelog: AzureAD/microsoft-authentication-library-for-dotnet@4.77.0...4.77.1

4.77.0

Features

• Added WinUI 3 support for Desktop Broker flows. Implement WinUI3 support for Desktop package AzureAD/microsoft-authentication-library-for-dotnet#5411
• Introduced extensibility API to allow users to add custom HTTP headers to token acquisition requests (under extensibility). Introduces the extensibility API to allow users to add custom HTTP headers to token acquisition requests (under extensibility) AzureAD/microsoft-authentication-library-for-dotnet#5440

Changes

• Remove passing x-client-os as a query parameter in the authorization URI. Remove passing x-client-os as query param in authorization uri AzureAD/microsoft-authentication-library-for-dotnet#5456
• Bump Microsoft.IdentityModel.Abstractions to a supported version. Bump Microsoft.IdentityModel.Abstractions as current version is out o… AzureAD/microsoft-authentication-library-for-dotnet#5452

Bug fixes

• Remove confusing error text as it only applies to one of many possible causes. Remove confusing error text as it only applies to one of many possible causes AzureAD/microsoft-authentication-library-for-dotnet#5467

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.