Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE REQ] Add on behalf of token support in identity library #6924

Closed
2 tasks done
jialindai opened this issue Dec 17, 2019 · 6 comments
Closed
2 tasks done

[FEATURE REQ] Add on behalf of token support in identity library #6924

jialindai opened this issue Dec 17, 2019 · 6 comments
Assignees
@g2vinay
Labels
Azure.Identity Client This issue points to a problem in the data-plane of the library. feature-request This issue requires a new behavior in the product in order be resolved.
Milestone
Backlog

Comments

@jialindai
Copy link
Contributor

Is your feature request related to a problem? Please describe.
Currently azure spring boot integration use on behalf of token to query graph API:

  1. Use user token (together with client credential) to get one access token to graph API
  2. Call graph API with the access token

This feature is needed for azure spring boot integration to upgrade to identity library.

Describe the solution you'd like
Identity library should provide same functionality.

Additional context
The code of azure spring boot which utilize the on behalf of token can be found at:
https://github.com/microsoft/azure-spring-boot/blob/master/azure-spring-boot/src/main/java/com/microsoft/azure/spring/autoconfigure/aad/AADOAuth2UserService.java

Information Checklist
Kindly make sure that you have added all the following information above and checkoff the required fields otherwise we will treat the issuer as an incomplete report

  • Description Added
  • Expected solution specified
@hemanttanwar hemanttanwar added the Client This issue points to a problem in the data-plane of the library. label Dec 17, 2019
@jianghaolu
Copy link
Contributor

Hi @jialindai, for now you will need to use the msal4j library to complete the on-behalf flow: https://github.com/AzureAD/microsoft-authentication-library-for-java. We will also integrate the feature in the azure-identity library in an upcoming release.

@jialindai
Copy link
Contributor Author

Thanks for the information, we will target msal lib.

@jialindai
Copy link
Contributor Author

In the meantime, is there a timeline about the release containing on behalf flow?

@joshfree joshfree added the feature-request This issue requires a new behavior in the product in order be resolved. label Dec 28, 2019
@joshfree joshfree reopened this Dec 28, 2019
@joshfree
Copy link
Member

Reopening issue to track the OBO auth flow support request

@jianghaolu jianghaolu added this to the Backlog milestone Jul 15, 2020
@chenrujun chenrujun added the azure-spring All azure-spring related issues label Jul 23, 2020
@yiliuTo yiliuTo removed the azure-spring All azure-spring related issues label Mar 19, 2021
@jianghaolu jianghaolu assigned g2vinay and unassigned jianghaolu Aug 27, 2021
@jianghaolu
Copy link
Contributor

I believe this is being worked on by @g2vinay - please close & link if duplicate

@g2vinay
Copy link
Member

g2vinay commented Sep 3, 2021

This is a duplicate of #22363
We will be shipping this out in the September beta release of Identity SDK.

@g2vinay g2vinay closed this as completed Sep 3, 2021
@github-actions github-actions bot locked and limited conversation to collaborators Apr 12, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@g2vinay g2vinay

Labels
Azure.Identity Client This issue points to a problem in the data-plane of the library. feature-request This issue requires a new behavior in the product in order be resolved.
Projects
None yet
Milestone
Backlog
Development

No branches or pull requests
7 participants
@joshfree @jianghaolu @g2vinay @hemanttanwar @chenrujun @jialindai @yiliuTo