Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug] WithMtlsProofOfPossession() Should Fail for /organizations Authority #5093

Open
gladjohn opened this issue Jan 21, 2025 · 0 comments
Open

[Bug] WithMtlsProofOfPossession() Should Fail for /organizations Authority #5093

gladjohn opened this issue Jan 21, 2025 · 0 comments
Assignees
@ksaaf
Labels
bug confidential-client P3

Comments

@gladjohn
Copy link
Contributor

Library version used

Latest

.NET version

NET 8

Scenario

ConfidentialClient - service to service (AcquireTokenForClient)

Is this a new or an existing app?

This is a new app or experiment

Issue description and reproduction steps

Currently, the WithMtlsProofOfPossession() validation logic ensures that requests using /common fail with an MsalClientException (MsalError.MissingTenantedAuthority). But no checks are done for /org or /consumers

Relevant code snippets



Expected behavior


Expected Behavior:


    

  • Requests using /organizations should fail with an appropriate MsalClientException, similar to /common, as they do not specify a single-tenant authority.
    • 

  • Requests using /consumers should not fail, as /consumers is a valid tenant.
    • 

  • Write tests for both scenarios
    • 



Identity provider


Microsoft Entra ID (Work and School accounts and Personal Microsoft accounts)


Regression


No response


Solution and workarounds


No response

      		
    

      
  





        



            

              
            

        

      


      
    








      


  




  
  

              

  
    Sign up for free
    to join this conversation on GitHub.
    Already have an account?
    Sign in to comment


  



  






  
                    




    

  


      
  

    Assignees
  



        

      

        

  
      @ksaaf
  
    ksaaf
    

      








      


  


  

    Labels
  



    

      

    bug

  

    confidential-client

  

    P3









      

  

    

        

    Projects
  


        




        
  

    

      
          
        MSAL Customer Trust / QM
        
    

    

      

            
    Status: Committed

              
      

    

    

  







  



      


  

    
  

    Milestone
  


      No milestone





    
      
          
  

    

      

        
          

            
    

    Development
  




              
    
No branches or pull requests







        
      

    

  


      

    

  
      

  

    

      4 participants
    

    

        
          @GeoK 
        
          @bgavrilMS 
        
          @ksaaf 
        
          @gladjohn