Description of Ask:
To have ClientAssertionCredentialOptions implement ISupportsTokenCachePersistenceOptions. As a consumer of Identity, Azure PowerShell is dependent on the Azure Identity library for .NET. Now the client assertion workflow has increasing usage, so the ask should have higher priority.
Business Impact:
In the client assertion auth flow, Azure PowerShell customers acquire the access token with the federated token. The access token must be used by the subsequent Azure PowerShell cmdlets. We depend on Azure.Identity to save the tokens to the MSAL cache. As the federated token has a short lifetime, it's impossible to cache the federated token and reauthenticate every time a cmdlet is run.
.NET reference implementation - Azure/azure-sdk-for-net#43633
Moved from https://github.com/Azure/azure-sdk-for-cpp-pr/issues/26
cc @scottaddie
Description of Ask:
To have
ClientAssertionCredentialOptionsimplementISupportsTokenCachePersistenceOptions. As a consumer of Identity, Azure PowerShell is dependent on the Azure Identity library for .NET. Now the client assertion workflow has increasing usage, so the ask should have higher priority.Business Impact:
In the client assertion auth flow, Azure PowerShell customers acquire the access token with the federated token. The access token must be used by the subsequent Azure PowerShell cmdlets. We depend on Azure.Identity to save the tokens to the MSAL cache. As the federated token has a short lifetime, it's impossible to cache the federated token and reauthenticate every time a cmdlet is run.
.NET reference implementation - Azure/azure-sdk-for-net#43633
Moved from https://github.com/Azure/azure-sdk-for-cpp-pr/issues/26
cc @scottaddie