msal4j v1.13.8

• Added support for CIAM authority
• Added refresh_in logic for managed identity flow
• Better exception handling in interactive flow
• Updated vulnerable dependency versions

msal4j v1.13.7 release

Address security vulnerability - Update net.minidev:json-smart version to 2.4.10

msal4j v1.13.6 release

• Added ExtraQueryParameters API.
• added tests for a CIAM user.
• updated condition to throw exception only for an invalid authority while performing instance discovery.

msal4j v1.13.5 release

• fixed url for admin consent.
• added 2s timeout to IMDS endpoint call.
• fixed url for regional endpoint calls.
• added support for current and legacy B2c authority formats.

msal4j v1.13.4 release

• regional endpoint updates
• fixed manifest
• Expose instance discovery flag to perform instance discovery.

msal4j v1.13.3 release

Update jackson-databind version to 2.13.4.2

v1.13.2

• Add IBroker interface
• Update AppTokenProvider callback logging to be consistent with Azure SDK logging
• Restructure library and add broker module
• Update version of vulnerable libraries
• Update README for broken links

v1.13.1

• Bug fixes and improvements for region API
• Allow configuration of timeouts for interactive requests
• Additional and more informative logging for regional scenarios and token requests in general

msal4j v1.13.0 release

• Provide token caching functionality for managed identity tokens
• Updates for obo-for-service-principal scenarios
• version updates for nimbusds-oauth2 library

v1.12.0

• Updates several dependencies to avoid security vulnerabilities
• Improves serialization of ID tokens and authentication results
• Various bug fixes related to authority paths, regional endpoints, and unclear logs