Skip to content

[Bug] WithMtlsProofOfPossession() Should Fail for /organizations Authority #5093

New issue
New issue
Closed
Bug
#5174
Closed
[Bug] WithMtlsProofOfPossession() Should Fail for /organizations Authority#5093
Bug
#5174
Assignees
ksaaf
Labels
P3bugconfidential-client
@gladjohn

Description

@gladjohn
gladjohn
opened on Jan 21, 2025

Library version used

Latest

.NET version

NET 8

Scenario

ConfidentialClient - service to service (AcquireTokenForClient)

Is this a new or an existing app?

This is a new app or experiment

Issue description and reproduction steps

Currently, the WithMtlsProofOfPossession() validation logic ensures that requests using /common fail with an MsalClientException (MsalError.MissingTenantedAuthority). But no checks are done for /org or /consumers

Relevant code snippets



Expected behavior


Expected Behavior:


    

  • Requests using /organizations should fail with an appropriate MsalClientException, similar to /common, as they do not specify a single-tenant authority.
    • 

  • Requests using /consumers should not fail, as /consumers is a valid tenant.
    • 

  • Write tests for both scenarios
    • 



Identity provider


Microsoft Entra ID (Work and School accounts and Personal Microsoft accounts)


Regression


No response


Solution and workarounds


No response
Metadata
Metadata
Assignees
Labels
P3bugconfidential-client
Type
Bug
Projects
MSAL Customer Trust
Status
Done
Milestone
No milestone
Relationships
None yet
Development
No branches or pull requests
Issue actions