-
Notifications
You must be signed in to change notification settings - Fork 126
/
Copy pathchangelog
518 lines (439 loc) · 17.3 KB
/
changelog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
MSAL Wiki : https://github.com/AzureAD/microsoft-authentication-library-for-android/wiki
vNext
----------
- [MINOR] Move native auth public methods to parameter class (#2245)
- [MINOR] Add support for claims requests for native auth sign in (#2246)
Version 5.9.0
----------
-[MINOR] Add suberror for network errors (#2218)
-[PATCH] Update common @19.0.0
Version 5.8.2
----------
-[PATCH] Update common @18.2.2
Version 5.8.1
----------
-[PATCH] Update common @18.2.1
Version 5.8.0
----------
-[PATCH] Update common @18.2.0
-[MINOR] Migrate Base64 away from Msebera (#2210)
Version 5.7.0
----------
-[PATCH] Update common @18.1.0
-[MINOR] Support for email OTP MFA in native authentication (#2167)
-[MINOR] Add legacy FIDO2 API version (#2188)
Version 5.6.0
----------
-[PATCH] Update common @18.0.0
-[MINOR] Moving OS version check for passkeys (#2138)
-[PATCH] Fix Native Auth authority data being persisted across different SDK instances (#2159)
Version 5.5.0
---------
- [MINOR] Fix UserAttributesBuilder being a singleton bug (#2145)
- [PATCH] Update common @17.7.0
Version 5.4.2
---------
- [PATCH] Update common @17.6.1
Version 5.4.0
----------
- [PATCH] Update common @17.5.0
- [MINOR] Support for multiple access tokens in NativeAuth (#2082)
- [MINOR] YubiKit 2.5.0 and CredMan 1.2.2 (#2109)
- [MINOR] Updated Pom Task (#2111)
- [PATCH] Return API error and errorDescription in case of unexpected response (#2125)
Version 5.3.1
---------
- [PATCH] Safe logging of Kotlin data classes through ILoggable interface (#2081)
- [PATCH] Update nimbus-jose-jwt 9.37.3 and junit 4.13.2 (#2084)
- [PATCH] Update to [email protected]
Version 5.3.0
---------
- [MINOR] Give BrokerMsalController higher priority than LocalMsalController if available (#2040)
- [PATCH] Update to [email protected]
Version 5.2.1
---------
- [MINOR] Update common @17.2.1
Version 5.2.0
---------
- [MINOR] Rename "is QR + PIN available" API to "get preferred auth method". (#2012)
- [MINOR] Add support for CIAM custom domain (#2029)
- [MINOR] Removing passkey feature flag (#2044)
- [MINOR] Update common @17.2.0
Version 5.1.0
---------
- [PATCH] Update common @17.1.0
- [PATCH] Fix MSAL Issue #1864 (#2003)
- [MINOR] Add isQRPinAvailable API to MSAL IPublicClientApplication (#1931)
- [MINOR] Add PreferredAuthMethod to interactive token flow (#1964)
Version 5.0.1
---------
- [PATCH] Update robolectricVersion 4.11.1 (#2015)
- [PATCH] Update common @17.0.1
Version 5.0.0
---------
- [MINOR] Update common @17.0.0
- [MINOR] Add consumer rule to remove native auth from msal by default (#1986)
- [MAJOR] Consuming Credential Manager from common (brings minCompileSdk 34) (#1987)
Version 4.10.0
---------
- [PATCH] Update common @16.2.0
- [PATCH] Fix NPE in SingleAccountPublicClientApplication.getPersistedCurrentAccount (#1933)
- [PATCH] Updating JSON version (#1932)
- [MINOR] Updating Moshi versions (#1926)
Version 4.9.0
---------
- [PATCH] Update common @16.1.0
- [MINOR] Adding webauthn_capable property option for MSAL config files (#1895)
Version 4.8.1
---------
- [MINOR] Add LTW as prod broker app (#2179)
- [PATCH] Update common @16.0.1
Version 4.8.0
---------
- [MINOR] Use Active Broker cache specifically for Client SDK (#1892)
- [MINOR] MSA UI tests for Brokered Auth (#1856)
- [MINOR] Updated target, compile SDK, AGP and gradle versions(#1882)
- [PATCH] Update common @16.0.0
Version 4.7.0
---------
- [MINOR] MsalTestApp uses 1.4.0 for com.microsoft.identity.client:opentelemetry.exporter (#1878)
- [PATCH] Accommodating broker validator refactoring (#1851)
- [MINOR] Update YubiKit version to 2.3.0 (#1854)
- [PATCH] Update common @15.0.0
Version 4.6.3
---------
- [PATCH] Update common @14.0.1
Version 4.6.2
---------
- [PATCH] Wire new Broker Discovery Client into MSAL - still disabled by default (#1835)
- [PATCH] Update common @14.0.0
Version 4.6.1
---------
- [PATCH] Version 4.6.0 was built with common which had lint errors, updating common after fixing the errors
- [MINOR] Replacing SHA-1 used in broker validation with SHA-512 (#1826)
- [PATCH] Update common @13.0.1
Version 4.5.0
---------
- [MINOR] Changes to support MSA accounts in Broker (#1793)
- [PATCH] Update common @12.0.0
Version 4.4.0
---------
- [PATCH] Update common @11.0.0
- [MINOR] Support CIAM Authority Type (#1783)
- [MINOR] Bumping YubiKit Versions to 2.2.0 (#1784)
Version 4.3.1
---------
- [PATCH] Version 4.3.0 was built with RC versions, just need to bump version to 4.3.1
- [MINOR] Add preferred browser support (#1761)
- [MINOR] Adding sub error codes to MsalUiRequiredException (#1758)
- [MINOR] Wrap Runnable with Current Telemetry Context (#1747)
Version 4.2.0
---------
- [PATCH] Update common @10.0.0
Version 4.1.3
---------
- [PATCH] Update common @9.1.0
Version 4.1.0
---------
- [MINOR] Add new exception type for broker protocol not supported exception during msal-broker handshake (#1703)
Version 4.0.4
---------
- [PATCH] Update common @8.0.2
Version 4.0.3
---------
- [PATCH] Update common @8.0.0
Version 4.0.2
---------
- [PATCH] Update common @7.0.0
- [PATCH] Updating the single account cache before notifying the caller of account change/load via callback. (#1688)
- [MINOR] Added keyboard flag to configChanges in Manifest for YubiKey compatibility. (#1685)
Version 4.0.1
---------
- [PATCH] Update common to 6.0.1
Version 4.0.0
---------
- [PATCH] Update common to 6.0.0
- [PATCH] Update androidx appcompat version from 1.0.2 -> 1.1.0 (#1629)
- [MINOR] Add prompt=create support. (#1611)
- [PATCH] Ensure consistent TAGs in the logger (#1612)
- [MAJOR] Deprecate methods not using TokenParameters (#1595)
- [PATCH] Update gson version to 2.8.9
Version 3.0.2
---------
- [PATCH] Update [email protected]
Version 3.0.1
------------
- [PATCH] Fix msal get account crash in Account Matcher due to NPE because account id was missing (#1560)
- [PATCH] Better messaging clarity around redirect URI (#1265).
- [PATCH] Fixes deprecated PackageInfo.signatures and PackageManager.GET_SIGNATURES (#1321)
- [MINOR] Added support for handling null taskAffinity. Add configuration to enable this new feature. "handle_null_taskaffinity" which is a boolean (#1342)
- [PATCH] Log and throw exception if there are other apps listening for the redirect URL scheme defined in Android Manifest (#1357)
- [PATCH] Update Nimbus dependency version (#1382)
- [MAJOR] Migrate *TokenCache classes to common4j (#1652)
- [MINOR] Adapt to BaseController migration (#1483)
Version 2.2.3
---------
- Remove the broker check for MSA FRT saving function (#1571)
- Fix msal get account crash in Account Matcher due to NPE because account id was missing (#1558)
- Picks up [email protected]
Version 2.2.2
---------
- Picks up [email protected]
Version 2.2.1
---------
- [PATCH] Picks up [email protected]
- [PATCH] Allow Authenticator to pass older format for redirect uri (#1517)
Version 2.2.0
---------
- Picks up [email protected]
Version 2.1.0
---------
- Picks up [email protected]
- Adds preview support for authorization using current Android Task
- Fixes resource URI casing issue.
Version 2.0.12
---------
- Picks up [email protected]
Version 2.0.10
---------
- [PATCH] Add extra '/' in the example intent filter (#1323)
- [PATCH] Better PublicClientApplicationConfiguration validation to fail when empty string is passed (#1324)
- [PATCH] Improve redirect_uri validation of PCA manifest (#1327)
- Picks up [email protected]
Version 2.0.8
---------
- [MINOR] Changes to Broker Validation to allow setting whether to trust debug brokers (prod brokers are always trusted) (#1274)
- Picks up [email protected]
Version 2.0.6
---------
- Warn if SAPCA used with B2C. Throw Exception if Multiple Policies are Configured (#1270)
- Picks up [email protected]
Version 2.0.5
---------
- Fix exception casting issue in CommandDispatcher (common #1121)
Version 2.0.4
---------
- Fix syntax error in proguard rules, add usage of proguard to test app #1224
Version 2.0.3
---------
- Expose expiresIn in MSAL Device Code flow callback #1169
- Fixed a bug where proguard rules would include too many symbols #1161
Version 2.0.2
---------
- Correct capitalization of client_capabilities claim 'xms_cc' (LLT) #1191
Version 2.0.1
---------
- Added a check for UNSET OpenIdConnectPromptParameter value.
- Picks up [email protected]
Version 2.0.0
---------
- Add Device Code Flow Support (#1112)
- Moved broker controller and strategy classes to common for MSALCPP brokered auth. (#1115)
- Allow Broker apps to obtain an RT associated to Broker's client ID (for WPJ). (#1126)
- (API Breaking Change) Removed 'defaultAuthority' param from TokenShareUtility; MSA RT ingestion always uses WW-/consumers. (#1147)
- Picks up [email protected]
Version 1.6.0
----------
- Introduces new AadAuthorityAudience enum to support new syntax for specifying cloud + audience
- Adds new property to IAuthenticationResult: correlation_id
- Fix for String encoding issue affecting devices with Turkish locale
- Fix for #1092: (Single Account Mode) getCurrentAccount() does not return MSA accounts if broker is installed
- Fix for #1096: (Single Account Mode) signOut() doesn't remove MSA accounts if broker is installed
- Picks up [email protected]
Version 1.5.5
----------
- Picks up fixes in [email protected]
Version 1.5.4
----------
- Fix for NPE if sub_error is null.
- Picks up [email protected]
Version 1.5.3
----------
- Changes to delete RT on bad_token suberror.
- Picks up [email protected]
Version 1.5.2
-----------
- Broker Content Provider Changes
- FOCI support for Local MSAL
- Robolectric version update
- Fixed a bug related tenant ID(#1057)
Version 1.5.1
-----------
- Fix to add the throwIfNetworkNotAvailable API back to common library for ADAL back compat.
- Picks up [email protected]
Version 1.5.0
-----------
- Added new Single Account Public Client Application API overloads
* Added new signIn() overload which adds a prompt param
* Added new reauthorize() method which lets your set a prompt for the already-signed-in account
- Added default proguard config to project
- Added MSAL configuration flag to enable/disable power optimization check
- Added dual screen support
- Added Throttling
- Added support to compress broker payload using GZIP
- Added Dual Client Stack support for FoCI apps
- Added Client Clock Skew Mitigation for AT/PoP
- Added changes to client-server telemetry to capture multiple previous errors
- Fixed #995 (Make persistedAccount operations thread safe)
- Fixed #963 (onCancel callback not called when Browser is used)
- Fixed #942 (NPE in create custom tab response intent)
- Fixed #838 (Fragment state NPE)
- Fixed #957 (cache migration not performed)
- Project wide internal code refactoring using Lombok
- Picks up [email protected]
Version 1.4.1
-----------
- Hotfix release for Teams.
- Fixes #1005
- Fixes common #871
- Limit silent thread pool to 5 threads.
- Picks up [email protected]
Version 1.4.0
-----------
- Fix for MSAL #920, 924, 935, 940
* Crash due to error receiving CANCEL broadcast
- (Preview) Support for AT PoP
Version 1.3.0
-----------
- Picks up fixes in [email protected]
- Fix for msal#915
* Incorrect id_token returned for B2C app with multiple policies
- Fix for msal#916
* WebView calls loadUrl multiple times over lifecycle
- Fix for msal#921
* WebView displays error when connectivity lost
- Fix for msal#904
* AT caching logic change for scope intersection
- MSAL Enhancement: WebView zoom controls are now configurable
Version 1.2.0-hf1
-----------
- Fixed issue #910
- Adds spinner to WebView when loading interactive requests using WEBVIEW authorization_user_agent.
Version 1.2.0
-----------
- API change
* Replaced the following PublicClientApplication#create methods.
- create(context, clientId, listener)
- create(context, clientId, authority, listener)
with
- create(context, clientId, authority, redirectUri, listener)
- Fixed issue #850, #890.
- Fixed issue #770 in common.
- Return AndroidManifest config error in onError() instead of throwing a runtime exception.
- Added Fragment support in WebView flow.
Version 1.1.0-hf1
-----------
- Fix issue #882.
Version 1.1.0
--------------------------
- Expose id_token (raw) via IAccount/ITenantProfile from AuthenticationResult (#850).
Version 1.0.1
--------------------------
- Fix issue #785, #786, #805, #806, #807, #816, #828, #855, #859
- Fixed multiple cloud support in MSAL with Broker.
- Added support for client capabilities to config.
- Added Server Side Telemetry to MSAL.
- Added authority to account object.
- Added support to silently acquire token for a another tenant for an already authorized user for different tenant.
- Added Broker BrowserSupport for COBO.
- Enabled MSAL-Broker communication via AccountManager.
Version 1.0.0-hf1
--------------------------
- Logging fixes in common.
Version 1.0.0
--------------------------
- MSAL Android is now generally available with MSAL 1.0
- Supported Authorities (Microsoft identity platform and Azure Active Directory B2C)
- Microsoft authentication broker support
- Supports enterprise scenarios including:
* Device Registration
* Device Management
* Intune App Protection
* Device Single Sign On
- Introduction of Single and Multi Account Public Client Applications
- IAccount and access to claims
- Support for synchronous methods from worker threads
- Improved configuration and control of your PublicClientApplication using configuration file
- AndroidX Compatible
- Common version: 1.0.7
Version 0.3.1-alpha
--------------------------
- Picks up [email protected]
- Adds additional validation to PublicClientApplicationConfiguration
- Adds support for non-tfp B2C authority URIs when declared via configuration
- Improved logging around network requests
- getAccounts() is now asynchronous
- Improved tooltips via nullability annotations
- Introduced 10 minute request timeout to unlock threading resources if a user is inactive
- Improved caching of IdTokens
* Support for ver: 1 IdTokens added, supports B2C & ADAL backwards compatibility
- Improved argument validation
* Fixed an issue where a null callback could be provided to acquireToken, triggering an NPE
- Caching improvements
* Guest-account migration support added
* Network I/O for performing cache migrations has been parallelized
* Adds support for setting cache encryption keys
Known issues:
- Property `authority` of `IAuthenticationResult` is always `null` for AAD authorities
Version 0.2.2
--------------------------
- Picks up [email protected]
* Bugfix: Resolves MSAL/#517
- Fix the bug caused by fragment parameter when extracting the redirect url
* Bugfix: Resolves COMMON/#343
- Fix the discrepancy on "mIdentityProvider" of Account object between ADAL v1.14.1 and ADAL v1.15.1
Version 0.2.1
--------------------------
- Picks up [email protected]
* Bugfix: Resolves MSAL/#420
- Corrects an issue whereby expired access tokens can be returned from the cache
* Bugfix: Resolves MSAL/#418
- Adds client_id, redirect_uri to refresh token requests (previously missing, yielding inconsistent behavior depending on account type).
Version 0.2.0
--------------------------
- Cache schema has been redesigned to support migration from ADAL 1.15.2+
- SSO and user state will be lost in migration from prior MSAL versions.
- Added support for authorization via:
* Embedded WebView
* Device default browser (not only Chrome)
- PublicClientApplication now accepts a JSON metadata document to configure
* client_id
* redirect_uri
* authorities
* authorization_user_agent
* http settings
- configurable timeouts for read/connection
- API changes
* User has been replaced by IAccount
- getUsers() -> getAccounts()
- getUser(String) -> getAccounts(String)
- removeUser(User) -> removeAccount(IAccount)
- acquireToken/acquireTokenSilent overloads now accept IAccount parameter
- User.getName() -> IAccount.getUserName()
- New API's: IAccount.getAccountIdentifier(), IAccount.getHomeAccountIdentifier()
* Telemetry has been temporarily removed, and will return in a future release
* PublicClientApplication#setComponent has been removed
* PublicClientApplication#setValidateAuthority has been removed
- Authorities known to developers can be supplied via PublicClientApplication
- Authorities known to Microsoft are loaded via metadata service when acquiring tokens
* Extra query param overloads now accept List<Pair<String, String>> instead of String
* Illegal arguments to acquireToken or acquireTokenSilent now throw MsalArgumentException
* PublicClientApplication#setSliceParameters has been moved to PublicClientApplicationConfiguration
Version 0.1.3
--------------------------
1. GDPR compliance to Telemetry and Logger. Link: https://github.com/AzureAD/microsoft-authentication-library-for-android/wiki/Logging
2. Fix the bug on CustomTabService checking when calling getCustomTabsServiceIsBound()
3. Update Telemetry to track telemetry Event data in a single Map instance
4. Specifies thrown Exception classes in AbstractMetadataRequestor
5. Create "no-args" constructor for GSON POJOs to prevent using "sun.misc.Unsafe"
6. Specifies the default locale to UTF_8 to guarantee consistent behavior across all Android devices.
7. Use versions.gradle to aggregate versions across subproject
8. Update Gradle to 4.1
9. Update Gson to 2.8.0
Version 0.1.1
--------------------------
* This release contains the preview for Microsoft Authentication library (MSAL) for Android.
Re-tag to fix the dependencies pulling issue from jcenter.
Version 0.1.0
--------------------------
* Initial preview release for MSAL