[release/6.x] Bump the identity-dependencies group in /eng/dependabot/independent with 3 updates #6854

dependabot · 2024-06-18T16:32:33Z

Bumps the identity-dependencies group in /eng/dependabot/independent with 3 updates: Azure.Identity, Microsoft.IdentityModel.Tokens and Microsoft.IdentityModel.Validators.

Updates Azure.Identity from 1.11.4 to 1.12.0

Release notes

Sourced from Azure.Identity's releases.

Azure.Identity_1.12.0

1.12.0 (2024-06-17)

Features Added

Added AzurePipelinesCredential for authenticating with Azure Pipelines service connections.

OnBehalfOfCredential now supports client assertion callbacks for acquiring tokens on behalf of a user.

All credentials now support setting RefreshOn value if received from MSAL.

ManagedIdentityCredential sets RefreshOn value of half the token lifetime for AccessTokens with an ExpiresOn value greater than 2 hours in the future.

ClientAssertionCredentialOptions now supports TokenCachePersistenceOptions for configuring token cache persistence.

Azure.Identity_1.12.0-beta.3

1.12.0-beta.3 (2024-06-11)

Features Added

OnBehalfOfCredential now supports client assertion callbacks for acquiring tokens on behalf of a user.

All credentials now support setting RefreshOn value if received from MSAL.

ManagedIdentityCredential sets RefreshOn value of half the token lifetime for AccessTokens with an ExpiresOn value greater than 2 hours in the future.

Breaking Changes

The constructor of AzurePipelinesCredential now includes additional required parameters for the Azure Pipelines service connection.

Bugs Fixed

Bug fixes for AzurePipelinesCredential

Managed identity bug fixes.

Commits

75fb76b Increment package version after release of Azure.ResourceManager.ContainerSer...
b2c628b .NET SDK for Oracle.Database (#44499)
a509f6f Fixed issue Azure/azure-sdk-for-net#44501 (#44573)
35ae1fa Clear scheduled enqueue time when creating a message from a received message ...
e6edf97 Increment package version after release of Azure.AI.Vision.ImageAnalysis (#44...
177d831 Increment package version after release of Azure.AI.OpenAI (#44592)
f6dce1e Update AutoRest C# version to 3.0.0-beta.20240614.3 (#44590)
6adc0dc Azure OpenAI: 2.0.0-beta.2 release (#44591)
2005968 Chagelog update for Beta3 (#44586)
b9b2c60 [Messaging] Allow relative URI property values (#44583)
Additional commits viewable in compare view

Updates Microsoft.IdentityModel.Tokens from 7.6.0 to 7.6.1

Release notes

Sourced from Microsoft.IdentityModel.Tokens's releases.

7.6.1

New Features:

Add missing metadata parameters to OpenIdConnectConfiguration. See issue #2498 for details.

Bug Fixes:

Fix over-reporting of IDX14100. See issue #2058 and PR #2618 for details.

JwtRegisteredClaimNames now contains previously missing Standard OpenIdConnect claims. See issue #1598 for details.

Performance Improvements:

Reduced allocations in AadIssuerValidator by not using string.Replace where appropriate. See issue #2595 and PR #2597 for more details.

No longer for every string claim, calling DateTime.TryParse on each value, whether it is expected to be a DateTime or not. See issue #2615 for details.

Changelog

Sourced from Microsoft.IdentityModel.Tokens's changelog.

7.6.1

New Features:

Add missing metadata parameters to OpenIdConnectConfiguration. See issue #2498 for details.

Bug Fixes:

Fix over-reporting of IDX14100. See issue #2058 and PR #2618 for details.

JwtRegisteredClaimNames now contains previously missing Standard OpenIdConnect claims. See issue #1598 for details.

Performance Improvements:

Reduced allocations in AadIssuerValidator by not using string.Replace where appropriate. See issue #2595 and PR #2597 for more details.

No longer for every string claim, calling DateTime.TryParse on each value, whether it is expected to be a DateTime or not. See issue #2615 for details.

Commits

8671342 Update changelog for 7.6.1 (#2639)
3f1697b Revert "Add support for RSA-OAEP 256 (#1293)"
b8b244b Add missing comma
4efb6fd Lexicographic order part 3
54c6d3f Lexicographic order part 2
22fce39 Lexicographic order
f4dcbee Fix unit tests
c3ead8a Add additional metadata parameters to OpenIdConnectConfiguration
cb49356 Don't always test string claims for Date Time (#2622)
67da84e Add support for RSA-OAEP 256 (#1293)
Additional commits viewable in compare view

Updates Microsoft.IdentityModel.Validators from 7.6.0 to 7.6.1

Release notes

Sourced from Microsoft.IdentityModel.Validators's releases.

7.6.1

New Features:

Add missing metadata parameters to OpenIdConnectConfiguration. See issue #2498 for details.

Bug Fixes:

Fix over-reporting of IDX14100. See issue #2058 and PR #2618 for details.

JwtRegisteredClaimNames now contains previously missing Standard OpenIdConnect claims. See issue #1598 for details.

Performance Improvements:

Reduced allocations in AadIssuerValidator by not using string.Replace where appropriate. See issue #2595 and PR #2597 for more details.

No longer for every string claim, calling DateTime.TryParse on each value, whether it is expected to be a DateTime or not. See issue #2615 for details.

Changelog

Sourced from Microsoft.IdentityModel.Validators's changelog.

7.6.1

New Features:

Add missing metadata parameters to OpenIdConnectConfiguration. See issue #2498 for details.

Bug Fixes:

Fix over-reporting of IDX14100. See issue #2058 and PR #2618 for details.

JwtRegisteredClaimNames now contains previously missing Standard OpenIdConnect claims. See issue #1598 for details.

Performance Improvements:

Reduced allocations in AadIssuerValidator by not using string.Replace where appropriate. See issue #2595 and PR #2597 for more details.

No longer for every string claim, calling DateTime.TryParse on each value, whether it is expected to be a DateTime or not. See issue #2615 for details.

Commits

8671342 Update changelog for 7.6.1 (#2639)
3f1697b Revert "Add support for RSA-OAEP 256 (#1293)"
b8b244b Add missing comma
4efb6fd Lexicographic order part 3
54c6d3f Lexicographic order part 2
22fce39 Lexicographic order
f4dcbee Fix unit tests
c3ead8a Add additional metadata parameters to OpenIdConnectConfiguration
cb49356 Don't always test string claims for Date Time (#2622)
67da84e Add support for RSA-OAEP 256 (#1293)
Additional commits viewable in compare view

Updates Microsoft.IdentityModel.Tokens from 7.6.0 to 7.6.1

Release notes

Sourced from Microsoft.IdentityModel.Tokens's releases.

7.6.1

New Features:

Add missing metadata parameters to OpenIdConnectConfiguration. See issue #2498 for details.

Bug Fixes:

Fix over-reporting of IDX14100. See issue #2058 and PR #2618 for details.

JwtRegisteredClaimNames now contains previously missing Standard OpenIdConnect claims. See issue #1598 for details.

Performance Improvements:

Reduced allocations in AadIssuerValidator by not using string.Replace where appropriate. See issue #2595 and PR #2597 for more details.

No longer for every string claim, calling DateTime.TryParse on each value, whether it is expected to be a DateTime or not. See issue #2615 for details.

Changelog

Sourced from Microsoft.IdentityModel.Tokens's changelog.

7.6.1

New Features:

Add missing metadata parameters to OpenIdConnectConfiguration. See issue #2498 for details.

Bug Fixes:

Fix over-reporting of IDX14100. See issue #2058 and PR #2618 for details.

JwtRegisteredClaimNames now contains previously missing Standard OpenIdConnect claims. See issue #1598 for details.

Performance Improvements:

Reduced allocations in AadIssuerValidator by not using string.Replace where appropriate. See issue #2595 and PR #2597 for more details.

No longer for every string claim, calling DateTime.TryParse on each value, whether it is expected to be a DateTime or not. See issue #2615 for details.

Commits

8671342 Update changelog for 7.6.1 (#2639)
3f1697b Revert "Add support for RSA-OAEP 256 (#1293)"
b8b244b Add missing comma
4efb6fd Lexicographic order part 3
54c6d3f Lexicographic order part 2
22fce39 Lexicographic order
f4dcbee Fix unit tests
c3ead8a Add additional metadata parameters to OpenIdConnectConfiguration
cb49356 Don't always test string claims for Date Time (#2622)
67da84e Add support for RSA-OAEP 256 (#1293)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the identity-dependencies group in /eng/dependabot/independent with 3 updates: [Azure.Identity](https://github.com/Azure/azure-sdk-for-net), [Microsoft.IdentityModel.Tokens](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet) and [Microsoft.IdentityModel.Validators](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet). Updates `Azure.Identity` from 1.11.4 to 1.12.0 - [Release notes](https://github.com/Azure/azure-sdk-for-net/releases) - [Commits](Azure/azure-sdk-for-net@Azure.Identity_1.11.4...Azure.Identity_1.12.0) Updates `Microsoft.IdentityModel.Tokens` from 7.6.0 to 7.6.1 - [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases) - [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/7.6.1/CHANGELOG.md) - [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@7.6.0...7.6.1) Updates `Microsoft.IdentityModel.Validators` from 7.6.0 to 7.6.1 - [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases) - [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/7.6.1/CHANGELOG.md) - [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@7.6.0...7.6.1) Updates `Microsoft.IdentityModel.Tokens` from 7.6.0 to 7.6.1 - [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases) - [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/7.6.1/CHANGELOG.md) - [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@7.6.0...7.6.1) --- updated-dependencies: - dependency-name: Azure.Identity dependency-type: direct:production update-type: version-update:semver-minor dependency-group: identity-dependencies - dependency-name: Microsoft.IdentityModel.Tokens dependency-type: direct:production update-type: version-update:semver-patch dependency-group: identity-dependencies - dependency-name: Microsoft.IdentityModel.Validators dependency-type: direct:production update-type: version-update:semver-patch dependency-group: identity-dependencies - dependency-name: Microsoft.IdentityModel.Tokens dependency-type: direct:production update-type: version-update:semver-patch dependency-group: identity-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot requested a review from a team as a code owner June 18, 2024 16:32

dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Jun 18, 2024

dotnet-policy-service bot added the needs-review label Jun 18, 2024

schmittjoseph previously approved these changes Jun 18, 2024

View reviewed changes

schmittjoseph enabled auto-merge (squash) June 18, 2024 22:09

dotnet-policy-service bot removed the needs-review label Jun 18, 2024

dependabot bot dismissed schmittjoseph’s stale review via aeaf5ba June 18, 2024 22:12

dependabot bot force-pushed the dependabot/nuget/eng/dependabot/independent/release/6.x/identity-dependencies-5138a24892 branch from ab4c583 to aeaf5ba Compare June 18, 2024 22:12

dotnet-policy-service bot added the needs-review label Jun 18, 2024

schmittjoseph approved these changes Jun 18, 2024

View reviewed changes

dotnet-policy-service bot removed the needs-review label Jun 18, 2024

schmittjoseph merged commit 920f834 into release/6.x Jun 18, 2024
13 checks passed

schmittjoseph deleted the dependabot/nuget/eng/dependabot/independent/release/6.x/identity-dependencies-5138a24892 branch June 18, 2024 22:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[release/6.x] Bump the identity-dependencies group in /eng/dependabot/independent with 3 updates #6854

[release/6.x] Bump the identity-dependencies group in /eng/dependabot/independent with 3 updates #6854

dependabot bot commented on behalf of github Jun 18, 2024 •

edited

Loading

[release/6.x] Bump the identity-dependencies group in /eng/dependabot/independent with 3 updates #6854

[release/6.x] Bump the identity-dependencies group in /eng/dependabot/independent with 3 updates #6854

Conversation

dependabot bot commented on behalf of github Jun 18, 2024 • edited Loading

Azure.Identity_1.12.0

1.12.0 (2024-06-17)

Features Added

Azure.Identity_1.12.0-beta.3

1.12.0-beta.3 (2024-06-11)

Features Added

Breaking Changes

Bugs Fixed

7.6.1

New Features:

Bug Fixes:

Performance Improvements:

7.6.1

New Features:

Bug Fixes:

Performance Improvements:

7.6.1

New Features:

Bug Fixes:

Performance Improvements:

7.6.1

New Features:

Bug Fixes:

Performance Improvements:

7.6.1

New Features:

Bug Fixes:

Performance Improvements:

7.6.1

New Features:

Bug Fixes:

Performance Improvements:

dependabot bot commented on behalf of github Jun 18, 2024 •

edited

Loading