Bump the deps group in /src with 21 updates

[dependabot]

Bumps the deps group in /src with 22 updates:

Package	From	To
Azure.ResourceManager	1.10.1	1.11.0
Azure.ResourceManager.Resources	1.7.0	1.7.1
Microsoft.Graph	5.43.0	5.47.0
System.IdentityModel.Tokens.Jwt	7.3.1	7.4.1
Nox.Secrets	7.0.204	7.0.230
Nox.Secrets.Abstractions	7.0.204	7.0.230
Nox.Solution	7.0.204	7.0.230
Nox.Yaml	7.0.204	7.0.230
YamlDotNet	15.1.1	15.1.2
Nox.Secrets.Azure	7.0.204	7.0.230
System.IO.Abstractions	20.0.15	20.0.34
Microsoft.AspNetCore.DataProtection.Abstractions	8.0.2	8.0.3
Microsoft.Extensions.DependencyInjection.Abstractions	8.0.0	8.0.1
Microsoft.Identity.Client	4.59.0	4.60.1
Microsoft.Data.SqlClient	5.1.5	5.2.0
Azure.ResourceManager.KeyVault	1.2.0	1.2.1
Nox.Types	7.0.204	7.0.230
Microsoft.AspNetCore.Authentication.JwtBearer	8.0.2	8.0.3
Microsoft.AspNetCore.Authentication.OpenIdConnect	8.0.2	8.0.3
Microsoft.Identity.Web	2.17.0	2.17.4
System.IdentityModel.Tokens.Jwt	7.4.1	7.5.0
coverlet.collector	6.0.1	6.0.2

Updates Azure.ResourceManager from 1.10.1 to 1.11.0

Release notes

Sourced from Azure.ResourceManager's releases.

Azure.ResourceManager_1.11.0

1.11.0 (2024-03-22)

Features Added

• Added BicepModelReaderWriterOptions.

Commits

• 6c3331a Hotfix/resourcemanager/1.10.3 (#42908)
• 64cd051 Add operation group 'ManagementGroupSubscriptions' (#41173)
• c417e4c Fix the spec address (#42313)
• f08a3bf [Dns] Add model factory for FooRecordData (#41680)
• 816e9d9 update openai (#42280)
• 58cc733 Update Generator Version 3.0.0-beta.20240229.1 (#42311)
• 05ee57c Fist iotfirmwaredefense update SDK to swagger 2024-01-10 (#42005)
• e81bdbf Update github-event-processor ver to 1.0.0-dev.20240229.2 (#42306)
• efa3731 Increment package version after release of System.ClientModel (#42300)
• 1dc50f4 Sync eng/common directory with azure-sdk-tools for PR 7682 (#42207)
• Additional commits viewable in compare view

Updates Azure.ResourceManager.Resources from 1.7.0 to 1.7.1

Release notes

Sourced from Azure.ResourceManager.Resources's releases.

Azure.ResourceManager.Resources_1.7.1

1.7.1 (2024-03-23)

Features Added

• Enable the new model serialization by using the System.ClientModel, refer this document for more details.
• Added experimental Bicep serialization.

Commits

• 0fd6cc7 Prep ARM releases (#42930)
• 9e75f04 Re-enable tests and add custom serialization for ManagedServiceIdentity (#42929)
• f1b5b5b Increment package version after release of Azure.ResourceManager (#42923)
• 60c39ea Updating MobileNetwork SDK with new API release 2024-02-01 (#42217)
• c729cdc Merge feature/cdk into main (#42870)
• 1f40862 Added documentaiton to clarify BlobCopyFromUriOptions.CopySourceTagsMode beha...
• 0ef8e8d [Storage] [DataMovement] Blob Preserve - Http headers, Access Tier and Metada...
• f403667 Prepare for release (#42912)
• 95aa88f Fix for GeographyEntity.Neighborhood causes RequestFailedException (#42905)
• 5e398e5 Hotfix/resourcemanager/1.10.3 (#42908) (#42913)
• Additional commits viewable in compare view

Updates Microsoft.Graph from 5.43.0 to 5.47.0

Changelog

Sourced from Microsoft.Graph's changelog.

[5.47.0] - 2024-04-04

• Latest metadata updates from 4th April 2024.

[5.46.0] - 2024-03-27

• Latest metadata updates from 27th March 2024.

[5.45.0] - 2024-03-21

• Latest metadata updates from 20th March 2024.

[5.44.0] - 2024-02-28

• Latest metadata updates from 27th February 2024.

Commits

• fdc5210 Merge pull request #2410 from microsoftgraph/dev
• d650061 Merge pull request #2403 from microsoftgraph/kiota/v1.0/pipelinebuild/141818
• ea61418 Bump version and release notes
• f3d9ae7 Update generated files with build 141818
• 1deded9 Merge pull request #2400 from microsoftgraph/dev
• fea8c90 Merge pull request #2399 from microsoftgraph/kiota/v1.0/pipelinebuild/141029
• 98d688f Bumps version and release notes.
• 0ef0ad6 Update generated files with build 141029
• 890e0df Merge pull request #2395 from microsoftgraph/dependabot/github_actions/depend...
• 56c1ecf Bump dependabot/fetch-metadata from 1.6.0 to 2.0.0
• Additional commits viewable in compare view

Updates System.IdentityModel.Tokens.Jwt from 7.3.1 to 7.4.1

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

7.4.1

Bug Fixes:

• SamlSecurityTokenHandler and Saml2SecurityTokenHandler now can fetch configuration when validating SAML issuer and signature. See PR #2412
• JsonWebToken.ReadToken now correctly checks Dot3 index in JWE. See PR #2501

Engineering Excellence:

• Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityModel.Protocols, which already depends on it via Microsoft.IdentityModel.Tokens. See PR #2508
• Adjust uppercase json serialization tests to fix an unreliable test method, add consistency to naming. See PR #2512
• Disable the 'restore' and 'build' steps of 'build and pack' in build.sh, improving speed. See PR #2521

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

7.4.0-preview1

Performance Improvements:

• The existing JsonWebToken constructors now utilizes ReadOnlyMemory and Span to extract token segments, eliminating the need for string.split operations.
• A new constructor has been introduced that accepts ReadOnlyMemory of an encoded token. See issue #2487.

Performance Assessment on .NET 8:

• When using the preview version and opting for the constructor that accepts a string for the encoded token, the generation of a JWS yields a 3.95% decrease in memory usage, a 4.52% reduction in Gen0 and a 4.61% decrease in execution time compared to the latest release.
• The performance of the constructor that accepts ReadOnlyMemory is comparable to the constructor accepting a string for the encoded token, both for JWS and JWE.

Preview branch:

Dev (main) branch:

View the benchmarks here.

Changelog

Sourced from System.IdentityModel.Tokens.Jwt's changelog.

7.4.1

Bug Fixes:

• SamlSecurityTokenHandler and Saml2SecurityTokenHandler now can fetch configuration when validating SAML issuer and signature. See PR #2412
• JsonWebToken.ReadToken now correctly checks Dot3 index in JWE. See PR #2501

Engineering Excellence:

• Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityModel.Protocols, which already depends on it via Microsoft.IdentityModel.Tokens. See PR #2508
• Adjust uppercase json serialization tests to fix an unreliable test method, add consistency to naming. See PR #2512
• Disable the 'restore' and 'build' steps of 'build and pack' in build.sh, improving speed. See PR #2521

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

Commits

• c1c24e2 Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityMode...
• 795bbf0 Revert whitespace change in tests
• 7cf0b79 Revert more whitespace changes
• d2caeb8 Fix unnecessary whitespace changes
• a1eaeeb Add tests:
• 8def3ae Refactor PopulateValidationParametersWithCurrentConfigurationAsync to a share...
• 3eae565 Small refactor of Saml2SecurityTokenHandler
• 24927af Small refactor of SamlSecurityTokenHandler
• 10c7984 Fetch configuration when validating SAML issuer and signature
• 4279d53 Improve build.sh speed (#2521)
• Additional commits viewable in compare view

Updates Nox.Secrets from 7.0.204 to 7.0.230

Commits

• See full diff in compare view

Updates Nox.Secrets.Abstractions from 7.0.204 to 7.0.230

Commits

• See full diff in compare view

Updates Nox.Solution from 7.0.204 to 7.0.230

Commits

• See full diff in compare view

Updates Nox.Yaml from 7.0.204 to 7.0.230

Release notes

Sourced from Nox.Yaml's releases.

v7.0.230

No release notes provided.

v7.0.229

No release notes provided.

v7.0.228

No release notes provided.

v7.0.227

No release notes provided.

v7.0.226

No release notes provided.

v7.0.225

No release notes provided.

v7.0.224

No release notes provided.

v7.0.223

What's Changed

• unambiguous entities that the plurar name is the same as singular name by @​rochar in NoxOrg/Nox#1474

Full Changelog: NoxOrg/Nox@v7.0.222...v7.0.223

v7.0.222

No release notes provided.

v7.0.221

What's Changed

• NOX-830 - Update Delete Owned Entity Localized API by @​dejobratic in NoxOrg/Nox#1471

Full Changelog: NoxOrg/Nox@v7.0.220...v7.0.221

v7.0.220

No release notes provided.

v7.0.219

No release notes provided.

v7.0.218

What's Changed

• Issues/fixpack2 by @​rochar in NoxOrg/Nox#1467

Full Changelog: NoxOrg/Nox@v7.0.217...v7.0.218

... (truncated)

Commits

• 8112779 Merge pull request #1480 from NoxOrg/feature/NOX-819
• a345685 cleanup;
• d208235 added changes;
• 105bf84 NOX-820 - Delete Owned Entity with Localized field fails in Postgres (#1475)
• 378f8fa Merge pull request #1478 from NoxOrg/feature/NOX-883
• 404056f Added tests
• 3f0d21a Updated OwnedTranslationsByParentIdQuery to use PluralName when relationship ...
• bbb02f7 NOX-812 Add new API to Get Owned Entity Localized Data (#1477)
• a29c612 Merge pull request #1476 from NoxOrg/feature/env-var-regex
• 391b322 Change Regex for Environment Varibales
• Additional commits viewable in compare view

Updates YamlDotNet from 15.1.1 to 15.1.2

Release notes

Sourced from YamlDotNet's releases.

Release 15.1.2

• Merge pull request #912 from EdwardCooke/ec-732
  Fixed #732, quote strings starting with whitespace characters

Commits

• 7ae209b Quoted test changes to not log to stdout
• 33ed33b Merge pull request #912 from EdwardCooke/ec-732
• 66c68a2 Fixed #732, quote strings starting with whitespace characters
• See full diff in compare view

Updates Nox.Secrets.Azure from 7.0.204 to 7.0.230

Commits

• See full diff in compare view

Updates System.IO.Abstractions from 20.0.15 to 20.0.34

Release notes

Sourced from System.IO.Abstractions's releases.

v20.0.34

What's Changed

• chore(deps): update dependency coverlet.collector to v6.0.2 by @​renovate in TestableIO/System.IO.Abstractions#1096
• chore(deps): update dependency dotnet-sdk to v8.0.202 by @​renovate in TestableIO/System.IO.Abstractions#1097
• chore(deps): update danielpalme/reportgenerator-github-action action to v5.2.3 by @​renovate in TestableIO/System.IO.Abstractions#1098
• fix: make FileSystemStream properties virtual by @​vbreuss in TestableIO/System.IO.Abstractions#1099
• chore(deps): update dependency dotnet-sdk to v8.0.203 by @​renovate in TestableIO/System.IO.Abstractions#1100
• fix: remove unused .NET versions in CI build by @​vbreuss in TestableIO/System.IO.Abstractions#1101

Full Changelog: TestableIO/System.IO.Abstractions@v20.0.28...v20.0.34

v20.0.28

What's Changed

• chore(deps): update dotnet/nbgv action to v0.4.2 by @​renovate in TestableIO/System.IO.Abstractions#1082
• chore(deps): update dependency nunit.analyzers to v4 by @​renovate in TestableIO/System.IO.Abstractions#1083
• chore(deps): update dependency nunit.analyzers to v4.0.1 by @​renovate in TestableIO/System.IO.Abstractions#1084
• chore(deps): update danielpalme/reportgenerator-github-action action to v5.2.1 by @​renovate in TestableIO/System.IO.Abstractions#1085
• chore(deps): update dependency microsoft.net.test.sdk to v17.9.0 by @​renovate in TestableIO/System.IO.Abstractions#1086
• chore(deps): update dependency saucecontrol.inheritdoc to v2.0.1 by @​renovate in TestableIO/System.IO.Abstractions#1087
• chore(deps): update dependency dotnet-sdk to v8.0.200 by @​renovate in TestableIO/System.IO.Abstractions#1088
• chore(deps): update dependency dotnet-sdk to v8.0.201 by @​renovate in TestableIO/System.IO.Abstractions#1089
• chore(deps): update dependency coverlet.collector to v6.0.1 by @​renovate in TestableIO/System.IO.Abstractions#1090
• chore(deps): update danielpalme/reportgenerator-github-action action to v5.2.2 by @​renovate in TestableIO/System.IO.Abstractions#1092
• chore(deps): update dependency nunit to v4.1.0 by @​renovate in TestableIO/System.IO.Abstractions#1093
• chore(deps): update softprops/action-gh-release action to v2 by @​renovate in TestableIO/System.IO.Abstractions#1095
• feat: add testability for DriveInfo by @​FantasyTeddy in TestableIO/System.IO.Abstractions#1094

New Contributors

• @​FantasyTeddy made their first contribution in TestableIO/System.IO.Abstractions#1094

Full Changelog: TestableIO/System.IO.Abstractions@v20.0.15...v20.0.28

Commits

• c7eca74 fix: remove unused .NET versions in CI build (#1101)
• 6c82ec4 chore(deps): update dependency dotnet-sdk to v8.0.203 (#1100)
• 269854a Make FileSystemStream properties virtual: (#1099)
• 5ab2fed chore(deps): update danielpalme/reportgenerator-github-action action to v5.2....
• 9226403 chore(deps): update dependency dotnet-sdk to v8.0.202 (#1097)
• e381375 chore(deps): update dependency coverlet.collector to v6.0.2 (#1096)
• 3229ce9 feat: add testability for DriveInfo (#1094)
• d517e19 chore(deps): update softprops/action-gh-release action to v2 (#1095)
• 71f534c chore(deps): update dependency nunit to v4.1.0 (#1093)
• f7f884a chore(deps): update danielpalme/reportgenerator-github-action action to v5.2....
• Additional commits viewable in compare view

Updates System.IdentityModel.Tokens.Jwt from 7.3.1 to 7.4.1

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

7.4.1

Bug Fixes:

• SamlSecurityTokenHandler and Saml2SecurityTokenHandler now can fetch configuration when validating SAML issuer and signature. See PR #2412
• JsonWebToken.ReadToken now correctly checks Dot3 index in JWE. See PR #2501

Engineering Excellence:

• Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityModel.Protocols, which already depends on it via Microsoft.IdentityModel.Tokens. See PR #2508
• Adjust uppercase json serialization tests to fix an unreliable test method, add consistency to naming. See PR #2512
• Disable the 'restore' and 'build' steps of 'build and pack' in build.sh, improving speed. See PR #2521

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

7.4.0-preview1

Performance Improvements:

• The existing JsonWebToken constructors now utilizes ReadOnlyMemory and Span to extract token segments, eliminating the need for string.split operations.
• A new constructor has been introduced that accepts ReadOnlyMemory of an encoded token. See issue #2487.

Performance Assessment on .NET 8:

• When using the preview version and opting for the constructor that accepts a string for the encoded token, the generation of a JWS yields a 3.95% decrease in memory usage, a 4.52% reduction in Gen0 and a 4.61% decrease in execution time compared to the latest release.
• The performance of the constructor that accepts ReadOnlyMemory is comparable to the constructor accepting a string for the encoded token, both for JWS and JWE.

Preview branch:

Dev (main) branch:

View the benchmarks here.

Changelog

Sourced from System.IdentityModel.Tokens.Jwt's changelog.

7.4.1

Bug Fixes:

• SamlSecurityTokenHandler and Saml2SecurityTokenHandler now can fetch configuration when validating SAML issuer and signature. See PR #2412
• JsonWebToken.ReadToken now correctly checks Dot3 index in JWE. See PR #2501

Engineering Excellence:

• Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityModel.Protocols, which already depends on it via Microsoft.IdentityModel.Tokens. See PR #2508
• Adjust uppercase json serialization tests to fix an unreliable test method, add consistency to naming. See PR #2512
• Disable the 'restore' and 'build' steps of 'build and pack' in build.sh, improving speed. See PR #2521

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

Commits

• c1c24e2 Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityMode...
• 795bbf0 Revert whitespace change in tests
• 7cf0b79 Revert more whitespace changes
• d2caeb8 Fix unnecessary whitespace changes
• a1eaeeb Add tests:
• 8def3ae Refactor PopulateValidationParametersWithCurrentConfigurationAsync to a share...
• 3eae565 Small refactor of Saml2SecurityTokenHandler
• 24927af Small refactor of SamlSecurityTokenHandler
• 10c7984 Fetch configuration when validating SAML issuer and signature
• 4279d53 Improve build.sh speed (#2521)
• Additional commits viewable in compare view

Updates Microsoft.AspNetCore.DataProtection.Abstractions from 8.0.2 to 8.0.3

Release notes

Sourced from Microsoft.AspNetCore.DataProtection.Abstractions's releases.

.NET 8.0.3

Release

Commits

• 88ec3bc [internal/release/8.0] Update dependencies from dnceng/internal/dotnet-efcore...
• 560be09 Merged PR 37362: [internal/release/8.0] Update dependencies from dnceng/inter...
• b95da6a Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ef...
• cb8a5f3 Merged PR 37354: [internal/release/8.0] Merge from public
• 476e2aa Update dependencies from https://github.com/dotnet/arcade build 20240213.2 (#...
• a244ff1 Merge in 'release/8.0' changes
• 9ee54e5 Merge pull request #54011 from vseanreesermsft/internal-merge-8.0-2024-02-13-...
• 62a5df1 Update baseline, SDK
• 9cd97f4 Merged PR 37179: [internal/release/8.0] [Blazor] Fix interactive server compo...
• 0996244 Merge commit 'da7e9894ce22ef8cc02e5acc56e95a6f8cf8f644' into internal-merge-8...
• Additional commits viewable in compare view

Updates Microsoft.Extensions.DependencyInjection.Abstractions from 8.0.0 to 8.0.1

Release notes

Sourced from Microsoft.Extensions.DependencyInjection.Abstractions's releases.

.NET 8.0.1

Release

Commits

• bf5e279 Merge in 'release/8.0' changes
• a6e4834 [release/8.0] Free the tls memory on thread termination (#95439)
• eddf880 Merge in 'release/8.0' changes
• 89a2364 [release/8.0] Downgrade ServicingVersion for Microsoft.Extensions.Options to ...
• d682195 Merge in 'release/8.0' changes
• 8557ef2 Merge pull request #95148 from carlossanlop/release/8.0-staging
• aaa4b27 Merge pull request #95082 from dotnet-maestro-bot/merge/release/8.0-to-releas...
• 72e5ae9 X509Chain.Build should throw when an internal error occurs
• a20ee6f [release/8.0-staging] Fix JsonArray.Add and ReplaceWith regressions. (#94882)
• 4fc3df2 Fix incremental servicing condition (#95119)
• Additional commits viewable in compare view

Updates Microsoft.Identity.Client from 4.59.0 to 4.60.1

Release notes

Sourced from Microsoft.Identity.Client's releases.

4.60.1

Addressed an issue where attempts to acquire a token via certificate authentication resulted in a Microsoft.Identity.Client.MsalServiceException (Error code: AADSTS5002730), signaling an "Invalid JWT token. Unsupported key for the signing algorithm." This was due to a known bug in Microsoft Entra ID (Azure AD) that affects the handling of JWT tokens signed with certain algorithms, specifically SHA2 and PSS. See 4690

4.60.0

New Features

• AAD client assertions are computed using SHA 256 and PSS padding. See 4428
• CorrelationId is available in MsalException. See 4187
• Open telemetry records telemetry for proactive token refresh background process. See 4492
• MSAL.Net now supports generic authorities with query parameters. See 4631

Bug Fixes

• MSAL.Net now logs an error when OBO is performed over common or organizations. See 4606
• MSAL.Net now handles the v2.0 authorization endpoint. See 4416
• Improved logging and error message when the web api received claims challenge. See 4496
• Cloud shell error message from the managed identity endpoint is parsed correctly. See 4402
• Improved error message when CCA certificate is disposed before MSAL can use it. See 4602
• Client id is now accepted as a scope. See 4652

Changelog

Sourced from Microsoft.Identity.Client's changelog.

4.60.1

Bug Fixes

Resolved an issue where MSAL attempts to acquire a token via certificate authentication using SHA2 and PSS resulting in a `MsalServiceException' (Error code: AADSTS5002730). See 4690

4.60.0

New Features

• AAD client assertions are computed using SHA 256 and PSS padding. See 4428
• CorrelationId is available in MsalException. See 4187
• Open telemetry records telemetry for proactive token refresh background process. See 4492
• MSAL.Net now supports generic authorities with query parameters. See 4631

Bug Fixes

• MSAL.Net now logs an error when OBO is performed over common or organizations. See 4606
• MSAL.Net now handles the v2.0 authorization endpoint. See 4416
• Improved logging and error message when the web api receives a claims challenge. See 4496
• Cloud shell error message from the managed identity endpoint is now parsed correctly. See 4402
• Improved error message when CCA certificate is disposed before MSAL can use it. See 4602
• Client id is now accepted as a scope. See 4652

Commits

• 463c985 Temporary Workaround for AAD JWT Token Signing Algorithm Issue (#4692)
• 6e129f6 Update CHANGELOG.md (#4684)
• 3e806d8 Fix xml comments warnings (#4683)
• 80faef7 SsoPolicy support for PCA. (#4659)
• e065471 Make URL settable in extensibility point to allow setting query params
• adedbaa Try to fix the tests failing on one branch (#4680)
• 1230d24 [OneBranch] Update InstallAndroid.ps1 and install android 31 (Description has been truncated

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.