Add .WithClientAssertion to support client assertions
See original GitHub issueADAL supports ClientAssertions. We will need to support the same in MSAL. See more:
Note: This looks very similar to UserAssertion
Describe the solution you’d like We should follow the new model of .With in the API With Claims:
Dictionary<string, string> claims = new[]
{
{ "client_ip", ipAddres}
};
IClientAssertion clientAssertion = CreateClientAssertion(certificate, claims);
var app = ConfidentialClientApplicationBuilder.Create(clientId)
.WithClientAssertion(clientAssertion))
.Build();
With Signed assertion:
string SignedAssertion =
string.Concat(token, ".", UrlEncodeSegment(credential.Sign(certificate, token)));
IClientAssertion clientAssertion = CreateClientAssertion(SignedAssertion);
var app = ConfidentialClientApplicationBuilder.Create(clientId)
.WithClientAssertion(clientAssertion))
.Build();
Describe alternatives you’ve considered N/A
Additional context We have a current ask from customers for adding this to be able to move to MSAL.
Issue Analytics
- State:
- Created 4 years ago
- Comments:8 (6 by maintainers)
Top Results From Across the Web
Client assertions (MSAL.NET) - Microsoft Entra
MSAL.NET has four methods to provide either credentials or assertions to the confidential client app: .WithClientSecret() .WithCertificate() .
Read more >ConfidentialClientApplicationBuil...
This will create an assertion that will be held within the client application's memory for the duration of the client. You can use...
Read more >AzureADB2C Client Credentials Grant with Client Assertion ...
The intention is to secure the API using AzureAD B2C - Client Credential Grant flow. I have created a custom policy on B2C...
Read more >Azure AD Authentication with Certificate
Azure Active Directory authentication with certificates can be quite tricky. You need a socalled client assertion. This article covers how ...
Read more >Client Assertions and the JWKS URI
A client assertion is a JWT that is directly produced by a client ... When a new key is added, it is used...
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
this is now available in MSAL.NET 4.1
@henrik-me : something like ^^