Regression in ImdsManagedIdentitySource from Azure.Identity behavior for invalid json responses

Prior to the migration of IMDS logic migration from Azure.Identity, when the IMDS endpoint returned invalid json, the exception thrown was distinguishable from other general failures such that it could be treated as if the IMDS endpoint was unavailable.

In the MSAL implementation of [ImdsManagedIdentitySource.HandleResponseAsync](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/blob/cc2ce882aa7ffb5d38a92e30bade12563bc00615/src/client/Microsoft.Identity.Client/ManagedIdentity/ImdsManagedIdentitySource.cs#L88) the `MsalError.ManagedIdentityRequestFailed` error code is thrown unconditionally. 

In the Azure.Identity implementation, when the response from IMDS cannot be parsed as valid json, a [distinct exception is thrown](https://github.com/Azure/azure-sdk-for-net/blob/c34aa9fbc44e4473779da929cab74f2d23bc049d/sdk/identity/Azure.Identity/src/ImdsManagedIdentitySource.cs#L168) so that we can handle it appropriately. 

In the case of MSAL, perhaps a distinct MsalError could be used so that Azure.Identity could handle this in the same way as before to prevent the regression.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Regression in ImdsManagedIdentitySource from Azure.Identity behavior for invalid json responses #5016

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Regression in ImdsManagedIdentitySource from Azure.Identity behavior for invalid json responses #5016

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions