Reimplement AadClient without msal.oauth2cli by chlowell · Pull Request #11466 · Azure/azure-sdk-for-python

chlowell · 2020-05-15T18:50:30Z

Upcoming features need an Azure AD client which separates acquiring tokens from caching them. We have two Azure AD clients, AuthnClient and AadClient, both of which require reshaping to meet this new requirement. I chose the latter because it has a simpler API. Its implementation, however, is quite complex and uses msal.oauth2cli, which the MSAL team doesn't consider public. So this PR takes the first step toward supporting new features by simplifying the implementation and removing usage of msal.oauth2cli.

While making these changes, I observed the async AuthorizationCodeCredential.get_token accepts two optional keyword arguments but doesn't use them correctly, provoking exceptions when either is passed. This has been the case since I added the credential in 1.0.0b4. Whoops 😇. This PR removes them because they have never worked and the AadClient changes make them obsolete.

sdk/identity/azure-identity/azure/identity/_credentials/authorization_code.py

sdk/identity/azure-identity/azure/identity/_internal/aad_client_base.py

xiangyan99 · 2020-05-27T17:29:38Z

sdk/identity/azure-identity/CHANGELOG.md


 ## 1.4.0b4 (Unreleased)
+- `azure.identity.aio.AuthorizationCodeCredential.get_token()` no longer accepts
+  optional keyword arguments `executor` or `loop`. Prior versions of the method


executor & loop were already in 1.3.1?

Yes, they've been around since 1.0.0b4.

So do we really want 1.4.0 to break 1.3.1?

As I wrote at the top of this PR, these arguments never worked. Trying to use them just raises exceptions.

So the behavior is
Raise exception -> silently ignored?

We should add it into Breaking Change section

sdk/identity/azure-identity/azure/identity/_credentials/shared_cache.py

sdk/identity/azure-identity/azure/identity/_internal/aad_client.py

sdk/identity/azure-identity/azure/identity/_internal/shared_token_cache.py

sdk/identity/azure-identity/azure/identity/_internal/aad_client_base.py

…into fix_annotation_initial_response * 'master' of https://github.com/Azure/azure-sdk-for-python: Adding digital twins CI configuration. (Azure#11730) Sync eng/common directory with azure-sdk-tools repository (Azure#11692) Reimplement AadClient without msal.oauth2cli (Azure#11466)

chlowell added 2 commits May 15, 2020 11:28

reimplement AadClient without msal.oauth2cli

5cfb6f4

remove unused optional kwargs causing exceptions

920e1de

chlowell added Client This issue points to a problem in the data-plane of the library. Azure.Identity labels May 15, 2020

chlowell requested a review from xiangyan99 May 15, 2020 18:50

chlowell requested a review from schaabs as a code owner May 15, 2020 18:50

chlowell added 2 commits May 15, 2020 13:06

tests

751cb11

update changelog

cc86f12

chlowell force-pushed the aadclient branch from 7feacf9 to cc86f12 Compare May 15, 2020 20:06

chlowell added 2 commits May 15, 2020 14:10

scopes argument is always first

5269b20

Merge branch 'master' into aadclient

b5cba43

xiangyan99 reviewed May 27, 2020

View reviewed changes

sdk/identity/azure-identity/azure/identity/_credentials/authorization_code.py Show resolved Hide resolved

xiangyan99 reviewed May 27, 2020

View reviewed changes

sdk/identity/azure-identity/azure/identity/_credentials/authorization_code.py Show resolved Hide resolved

xiangyan99 reviewed May 27, 2020

View reviewed changes

sdk/identity/azure-identity/azure/identity/_internal/aad_client_base.py Show resolved Hide resolved

xiangyan99 reviewed May 27, 2020

View reviewed changes

chlowell added 2 commits May 27, 2020 12:32

Merge branch 'master' into aadclient

26750d1

Merge branch 'master' into aadclient

94a3c29

chlowell requested a review from xiangyan99 May 29, 2020 21:51