microsoft
diff --git a/‎src/GeneralTools/DataverseClient/Client/Auth/AuthProcessor.cs‎
Lines changed: 53 additions & 53 deletions b/‎src/GeneralTools/DataverseClient/Client/Auth/AuthProcessor.cs‎
Lines changed: 53 additions & 53 deletions
@@ -17,7 +17,7 @@ namespace Microsoft.PowerPlatform.Dataverse.Client.Auth
     internal class AuthProcessor
     {
 		/// <summary>
-		/// Executes Authentication against a service 
+		/// Executes Authentication against a service
 		/// </summary>
 		/// <param name="serviceUrl"></param>
 		/// <param name="clientCredentials"></param>
@@ -35,38 +35,38 @@ internal class AuthProcessor
 		/// <param name="addVersionInfoToUri">indicates if the serviceURI should be updated to include the /web?sdk version</param>
 		/// <returns>AuthenticationResult containing a JWT Token for the requested Resource and user/app</returns>
 		internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServiceProcessAsync(
-			Uri serviceUrl, 
-			ClientCredentials clientCredentials, 
-			X509Certificate2 userCert, 
-			string clientId, 
-			Uri redirectUri, 
-			PromptBehavior promptBehavior, 
-			bool isOnPrem, 
-			string authority, 
-			object msalAuthClient , 
-			DataverseTraceLogger logSink = null, 
-			bool useDefaultCreds = false, 
-			SecureString clientSecret = null, 
+			Uri serviceUrl,
+			ClientCredentials clientCredentials,
+			X509Certificate2 userCert,
+			string clientId,
+			Uri redirectUri,
+			PromptBehavior promptBehavior,
+			bool isOnPrem,
+			string authority,
+			object msalAuthClient ,
+			DataverseTraceLogger logSink = null,
+			bool useDefaultCreds = false,
+			SecureString clientSecret = null,
 			bool addVersionInfoToUri = true,
 			IAccount user = null
 			)
 		{
 			ExecuteAuthenticationResults processResult = new ExecuteAuthenticationResults();
 			bool createdLogSource = false;
-			
+
 			AuthenticationResult authenticationResult = null;
 
 			try
 			{
 				if (logSink == null)
 				{
-					// when set, the log source is locally created. 
+					// when set, the log source is locally created.
 					createdLogSource = true;
 					logSink = new DataverseTraceLogger();
 				}
 
 				string Authority = string.Empty;
-				string Resource = string.Empty; 
+				string Resource = string.Empty;
 
 				bool clientCredentialsCheck = clientCredentials != null && clientCredentials.UserName != null && !string.IsNullOrEmpty(clientCredentials.UserName.UserName) && !string.IsNullOrEmpty(clientCredentials.UserName.Password);
 				Resource = serviceUrl.GetComponents(UriComponents.SchemeAndServer, UriFormat.Unescaped);
@@ -96,21 +96,21 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ
 				}
 				//	clientCredentialsCheck = false;  // Forcing system to provide a UX popup vs UID/PW
 
-				// Assign outbound properties. 
+				// Assign outbound properties.
 				processResult.Resource = Resource;
-				processResult.Authority = Authority; 
+				processResult.Authority = Authority;
 
 				logSink.Log("AuthenticateService - found authority with name " + (string.IsNullOrEmpty(Authority) ? "<Not Provided>" : Authority));
 				logSink.Log("AuthenticateService - found resource with name " + (string.IsNullOrEmpty(Resource) ? "<Not Provided>" : Resource));
 
 				Uri ResourceUri = new Uri(Resource);
-                // Add Scope, 
+                // Add Scope,
                 List<string> Scopes = Utilities.AddScope($"{Resource}/user_impersonation");
 
 				AuthenticationResult _authenticationResult = null;
 				if (userCert != null || clientSecret != null)
 				{
-					// Add Scope, 
+					// Add Scope,
 					Scopes.Clear();
 					Scopes = Utilities.AddScope($"{Resource}.default" , Scopes);
 
@@ -138,27 +138,27 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ
 					{
 						logSink.Log("Initial ObtainAccessToken - CERT", TraceEventType.Verbose);
 						cApp = cAppBuilder.WithCertificate(userCert).Build();
-						_authenticationResult = await ObtainAccessTokenAsync(cApp, Scopes, logSink);
+						_authenticationResult = await ObtainAccessTokenAsync(cApp, Scopes, logSink).ConfigureAwait(false);
 					}
 					else
 					{
 						if (clientSecret != null)
 						{
 							logSink.Log("Initial ObtainAccessToken - Client Secret", TraceEventType.Verbose);
 							cApp = cAppBuilder.WithClientSecret(clientSecret.ToUnsecureString()).Build();
-							_authenticationResult = await ObtainAccessTokenAsync(cApp, Scopes, logSink);
+							_authenticationResult = await ObtainAccessTokenAsync(cApp, Scopes, logSink).ConfigureAwait(false);
 						}
 						else
 							throw new Exception("Invalid Cert or Client Secret Auth flow");
 					}
 
 					// Update the MSAL Client handed back.
-					processResult.MsalAuthClient = cApp; 
+					processResult.MsalAuthClient = cApp;
 				}
 				else
 				{
 					PublicClientApplicationBuilder cApp = null;
-					IPublicClientApplication pApp = null; 
+					IPublicClientApplication pApp = null;
 					if (msalAuthClient is IPublicClientApplication)
 					{
 						pApp = (IPublicClientApplication)msalAuthClient;
@@ -179,8 +179,8 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ
 						pApp = cApp.Build();
 					}
 
-					//Run user Auth flow. 
-					_authenticationResult = await ObtainAccessTokenAsync(pApp, Scopes, user, promptBehavior, clientCredentials, useDefaultCreds, logSink);
+					//Run user Auth flow.
+					_authenticationResult = await ObtainAccessTokenAsync(pApp, Scopes, user, promptBehavior, clientCredentials, useDefaultCreds, logSink).ConfigureAwait(false);
 
 					// Assign the application back out
 					processResult.MsalAuthClient = pApp;
@@ -195,7 +195,7 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ
 					//_userId = _authenticationResult.Account;
 					processResult.UserIdent = _authenticationResult.Account;
 				}
-		
+
 				if (null == _authenticationResult)
 				{
 					throw new ArgumentNullException("AuthenticationResult");
@@ -207,7 +207,7 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ
 			{
 				if (ex.InnerException is Microsoft.Identity.Client.MsalException)
 				{
-					var errorHandledResult = await ProcessAdalExecptionAsync(serviceUrl, clientCredentials, userCert, clientId, redirectUri, promptBehavior, isOnPrem, authority , msalAuthClient, logSink, useDefaultCreds , (Microsoft.Identity.Client.MsalException)ex.InnerException);
+					var errorHandledResult = await ProcessAdalExecptionAsync(serviceUrl, clientCredentials, userCert, clientId, redirectUri, promptBehavior, isOnPrem, authority , msalAuthClient, logSink, useDefaultCreds , (Microsoft.Identity.Client.MsalException)ex.InnerException).ConfigureAwait(false);
 					if (errorHandledResult != null)
 						processResult = errorHandledResult;
 				}
@@ -232,7 +232,7 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ
 			}
 			finally
 			{
-				if (createdLogSource) // Only dispose it if it was created locally. 
+				if (createdLogSource) // Only dispose it if it was created locally.
 					logSink.Dispose();
 			}
 			return processResult;
@@ -241,7 +241,7 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ
 
 
 		/// <summary>
-		///  Token refresh flow for MSAL User Flows. 
+		///  Token refresh flow for MSAL User Flows.
 		/// </summary>
 		/// <param name="publicAppClient">MSAL Client to use.</param>
 		/// <param name="scopes">Scopes to send in.</param>
@@ -260,10 +260,10 @@ internal async static Task<AuthenticationResult> ObtainAccessTokenAsync(
 			bool useDefaultCreds = false,
 			DataverseTraceLogger logSink = null)
 		{
-			// This works for user Auth flows. 
+			// This works for user Auth flows.
 			AuthenticationResult _authenticationResult = null;
 			bool clientCredentialsCheck = clientCredentials != null && clientCredentials.UserName != null && !string.IsNullOrEmpty(clientCredentials.UserName.UserName) && !string.IsNullOrEmpty(clientCredentials.UserName.Password);
-			// Login user hint 
+			// Login user hint
 			string loginUserHint = (clientCredentials != null && clientCredentials.UserName != null) ? clientCredentials.UserName.UserName : string.Empty;
 			if (publicAppClient != null)
 			{
@@ -284,11 +284,11 @@ internal async static Task<AuthenticationResult> ObtainAccessTokenAsync(
 					{
 						if (!string.IsNullOrEmpty(loginUserHint))
 						{
-							_authenticationResult = await publicAppClient.AcquireTokenByIntegratedWindowsAuth(scopes).WithUsername(loginUserHint).ExecuteAsync();
+							_authenticationResult = await publicAppClient.AcquireTokenByIntegratedWindowsAuth(scopes).WithUsername(loginUserHint).ExecuteAsync().ConfigureAwait(false);
 						}
 						else
 						{
-							_authenticationResult = await publicAppClient.AcquireTokenByIntegratedWindowsAuth(scopes).ExecuteAsync();
+							_authenticationResult = await publicAppClient.AcquireTokenByIntegratedWindowsAuth(scopes).ExecuteAsync().ConfigureAwait(false);
 						}
 					}
 					else
@@ -315,32 +315,32 @@ internal async static Task<AuthenticationResult> ObtainAccessTokenAsync(
 
 						if (userPrompt != null)
 						{
-							_authenticationResult = await publicAppClient.AcquireTokenInteractive(scopes).WithLoginHint(loginUserHint).WithPrompt(userPrompt.Value).ExecuteAsync();
+							_authenticationResult = await publicAppClient.AcquireTokenInteractive(scopes).WithLoginHint(loginUserHint).WithPrompt(userPrompt.Value).ExecuteAsync().ConfigureAwait(false);
 						}
 						else
 						{
 							if (account != null)
 							{
-								_authenticationResult = await publicAppClient.AcquireTokenSilent(scopes, account).ExecuteAsync();
+								_authenticationResult = await publicAppClient.AcquireTokenSilent(scopes, account).ExecuteAsync().ConfigureAwait(false);
 							}
 							else
 							{
-								_authenticationResult = await publicAppClient.AcquireTokenInteractive(scopes).WithLoginHint(loginUserHint).ExecuteAsync();
+								_authenticationResult = await publicAppClient.AcquireTokenInteractive(scopes).WithLoginHint(loginUserHint).ExecuteAsync().ConfigureAwait(false);
 							}
 						}
 					}
 				}
 			}
 			else
 			{
-				// throw here. 
+				// throw here.
 			}
 			return _authenticationResult;
 		}
 
 
 		/// <summary>
-		/// Acquires Confidential client token. 
+		/// Acquires Confidential client token.
 		/// </summary>
 		/// <param name="confidentialAppClient">Confidential client application</param>
 		/// <param name="scopes">Scope List</param>
@@ -351,15 +351,15 @@ internal async static Task<AuthenticationResult> ObtainAccessTokenAsync(
 			List<string> scopes,
 			DataverseTraceLogger logSink = null)
 		{
-			// This works for user Auth flows. 
+			// This works for user Auth flows.
 			AuthenticationResult _authenticationResult = null;
 			if (confidentialAppClient != null)
 			{
-				_authenticationResult = await confidentialAppClient.AcquireTokenForClient(scopes).ExecuteAsync();
+				_authenticationResult = await confidentialAppClient.AcquireTokenForClient(scopes).ExecuteAsync().ConfigureAwait(false);
 			}
 			else
 			{
-				// throw here. 
+				// throw here.
 			}
 			return _authenticationResult;
 		}
@@ -412,7 +412,7 @@ internal class AuthRoutingProperties
         }
 
 		/// <summary>
-		/// Get authority and resource for this instance. 
+		/// Get authority and resource for this instance.
 		/// </summary>
 		/// <param name="targetServiceUrl">URI to query</param>
 		/// <param name="logger">Logger to write info too</param>
@@ -423,12 +423,12 @@ private static async Task<AuthRoutingProperties> GetAuthorityFromTargetServiceAs
 			AuthRoutingProperties authRoutingProperties = new AuthRoutingProperties();
 			var client = clientFactory.CreateClient("DataverseHttpClientFactory");
 			var rslt = await client.GetAsync(targetServiceUrl).ConfigureAwait(false);
-			
+
 			if ( rslt.StatusCode == System.Net.HttpStatusCode.NotFound || rslt.StatusCode == System.Net.HttpStatusCode.BadRequest )
 			{
-				// didnt find endpoint. 
+				// didnt find endpoint.
 				logger.Log($"Failed to get Authority and Resource error. Attempt to Access Endpoint {targetServiceUrl.ToString()} resulted in {rslt.StatusCode}.", TraceEventType.Error);
-				return authRoutingProperties; 
+				return authRoutingProperties;
 			}
 
 			if (rslt.Headers.Contains("WWW-Authenticate"))
@@ -469,19 +469,19 @@ private static async Task<AuthRoutingProperties> GetAuthorityFromTargetServiceAs
 				{
 					string param;
 					authenticateHeaderItems.TryGetValue(AuthorityKey, out param);
-					authRoutingProperties.Authority = 
+					authRoutingProperties.Authority =
 						param.Replace("oauth2/authorize", "") // swap out the old oAuth pattern.
-						.Replace("common" , "organizations"); // swap common for organizations because MSAL reasons. 
+						.Replace("common" , "organizations"); // swap common for organizations because MSAL reasons.
 					authenticateHeaderItems.TryGetValue(ResourceKey, out param);
 					authRoutingProperties.Resource = param;
 				}
 			}
 
-			return authRoutingProperties; 
+			return authRoutingProperties;
 		}
 
 		/// <summary>
-		/// Process ADAL exception and provide common handlers. 
+		/// Process ADAL exception and provide common handlers.
 		/// </summary>
 		/// <param name="serviceUrl"></param>
 		/// <param name="clientCredentials"></param>
@@ -499,18 +499,18 @@ private async static Task<ExecuteAuthenticationResults> ProcessAdalExecptionAsyn
 		{
 			if (adalEx.ErrorCode.Equals("interaction_required", StringComparison.OrdinalIgnoreCase) ||
 				adalEx.ErrorCode.Equals("user_password_expired", StringComparison.OrdinalIgnoreCase) ||
-				adalEx.ErrorCode.Equals("password_required_for_managed_user", StringComparison.OrdinalIgnoreCase) || 
+				adalEx.ErrorCode.Equals("password_required_for_managed_user", StringComparison.OrdinalIgnoreCase) ||
 				adalEx is Microsoft.Identity.Client.MsalUiRequiredException)
 			{
 				logSink.Log("ERROR REQUESTING TOKEN FROM THE AUTHENTICATION CONTEXT - USER intervention required", TraceEventType.Warning);
 				// ADAL wants the User to do something,, determine if we are able to see a user
 				if (promptBehavior == PromptBehavior.Always || promptBehavior == PromptBehavior.Auto)
 				{
 					// Switch to MFA user mode..
-					Microsoft.Identity.Client.IAccount user = null;  //TODO:UPDATE THIS OR REMOVE AS WE DETERMIN HOW TO SOLVE THIS ISSUE IN MSAL //  new Microsoft.Identity.Client.AccountId(); 
+					Microsoft.Identity.Client.IAccount user = null;  //TODO:UPDATE THIS OR REMOVE AS WE DETERMIN HOW TO SOLVE THIS ISSUE IN MSAL //  new Microsoft.Identity.Client.AccountId();
 					user = null;
 					//user = new UserIdentifier(clientCredentials.UserName.UserName, UserIdentifierType.OptionalDisplayableId);
-					return await ExecuteAuthenticateServiceProcessAsync(serviceUrl, null, userCert, clientId, redirectUri, promptBehavior, isOnPrem, authority, msalAuthClient, logSink, useDefaultCreds: useDefaultCreds, user: user);
+					return await ExecuteAuthenticateServiceProcessAsync(serviceUrl, null, userCert, clientId, redirectUri, promptBehavior, isOnPrem, authority, msalAuthClient, logSink, useDefaultCreds: useDefaultCreds, user: user).ConfigureAwait(false);
 				}
 				else
 				{
Original file line number	Diff line number	Diff line change
`@@ -17,7 +17,7 @@ namespace Microsoft.PowerPlatform.Dataverse.Client.Auth`
`17`	`17`	`internal class AuthProcessor`
`18`	`18`	`{`
`19`	`19`	`/// <summary>`
`20`		`- /// Executes Authentication against a service`
	`20`	`+ /// Executes Authentication against a service`
`21`	`21`	`/// </summary>`
`22`	`22`	`/// <param name="serviceUrl"></param>`
`23`	`23`	`/// <param name="clientCredentials"></param>`
`@@ -35,38 +35,38 @@ internal class AuthProcessor`
`35`	`35`	`/// <param name="addVersionInfoToUri">indicates if the serviceURI should be updated to include the /web?sdk version</param>`
`36`	`36`	`/// <returns>AuthenticationResult containing a JWT Token for the requested Resource and user/app</returns>`
`37`	`37`	`internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServiceProcessAsync(`
`38`		`- Uri serviceUrl,`
`39`		`- ClientCredentials clientCredentials,`
`40`		`- X509Certificate2 userCert,`
`41`		`- string clientId,`
`42`		`- Uri redirectUri,`
`43`		`- PromptBehavior promptBehavior,`
`44`		`- bool isOnPrem,`
`45`		`- string authority,`
`46`		`- object msalAuthClient ,`
`47`		`- DataverseTraceLogger logSink = null,`
`48`		`- bool useDefaultCreds = false,`
`49`		`- SecureString clientSecret = null,`
	`38`	`+ Uri serviceUrl,`
	`39`	`+ ClientCredentials clientCredentials,`
	`40`	`+ X509Certificate2 userCert,`
	`41`	`+ string clientId,`
	`42`	`+ Uri redirectUri,`
	`43`	`+ PromptBehavior promptBehavior,`
	`44`	`+ bool isOnPrem,`
	`45`	`+ string authority,`
	`46`	`+ object msalAuthClient ,`
	`47`	`+ DataverseTraceLogger logSink = null,`
	`48`	`+ bool useDefaultCreds = false,`
	`49`	`+ SecureString clientSecret = null,`
`50`	`50`	`bool addVersionInfoToUri = true,`
`51`	`51`	`IAccount user = null`
`52`	`52`	`)`
`53`	`53`	`{`
`54`	`54`	`ExecuteAuthenticationResults processResult = new ExecuteAuthenticationResults();`
`55`	`55`	`bool createdLogSource = false;`
`56`		`-`
	`56`	`+`
`57`	`57`	`AuthenticationResult authenticationResult = null;`
`58`	`58`
`59`	`59`	`try`
`60`	`60`	`{`
`61`	`61`	`if (logSink == null)`
`62`	`62`	`{`
`63`		`- // when set, the log source is locally created.`
	`63`	`+ // when set, the log source is locally created.`
`64`	`64`	`createdLogSource = true;`
`65`	`65`	`logSink = new DataverseTraceLogger();`
`66`	`66`	`}`
`67`	`67`
`68`	`68`	`string Authority = string.Empty;`
`69`		`- string Resource = string.Empty;`
	`69`	`+ string Resource = string.Empty;`
`70`	`70`
`71`	`71`	`bool clientCredentialsCheck = clientCredentials != null && clientCredentials.UserName != null && !string.IsNullOrEmpty(clientCredentials.UserName.UserName) && !string.IsNullOrEmpty(clientCredentials.UserName.Password);`
`72`	`72`	`Resource = serviceUrl.GetComponents(UriComponents.SchemeAndServer, UriFormat.Unescaped);`
`@@ -96,21 +96,21 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ`
`96`	`96`	`}`
`97`	`97`	`// clientCredentialsCheck = false; // Forcing system to provide a UX popup vs UID/PW`
`98`	`98`
`99`		`- // Assign outbound properties.`
	`99`	`+ // Assign outbound properties.`
`100`	`100`	`processResult.Resource = Resource;`
`101`		`- processResult.Authority = Authority;`
	`101`	`+ processResult.Authority = Authority;`
`102`	`102`
`103`	`103`	`logSink.Log("AuthenticateService - found authority with name " + (string.IsNullOrEmpty(Authority) ? "<Not Provided>" : Authority));`
`104`	`104`	`logSink.Log("AuthenticateService - found resource with name " + (string.IsNullOrEmpty(Resource) ? "<Not Provided>" : Resource));`
`105`	`105`
`106`	`106`	`Uri ResourceUri = new Uri(Resource);`
`107`		`- // Add Scope,`
	`107`	`+ // Add Scope,`
`108`	`108`	`List<string> Scopes = Utilities.AddScope($"{Resource}/user_impersonation");`
`109`	`109`
`110`	`110`	`AuthenticationResult _authenticationResult = null;`
`111`	`111`	`if (userCert != null \|\| clientSecret != null)`
`112`	`112`	`{`
`113`		`- // Add Scope,`
	`113`	`+ // Add Scope,`
`114`	`114`	`Scopes.Clear();`
`115`	`115`	`Scopes = Utilities.AddScope($"{Resource}.default" , Scopes);`
`116`	`116`
`@@ -138,27 +138,27 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ`
`138`	`138`	`{`
`139`	`139`	`logSink.Log("Initial ObtainAccessToken - CERT", TraceEventType.Verbose);`
`140`	`140`	`cApp = cAppBuilder.WithCertificate(userCert).Build();`
`141`		`- _authenticationResult = await ObtainAccessTokenAsync(cApp, Scopes, logSink);`
	`141`	`+ _authenticationResult = await ObtainAccessTokenAsync(cApp, Scopes, logSink).ConfigureAwait(false);`
`142`	`142`	`}`
`143`	`143`	`else`
`144`	`144`	`{`
`145`	`145`	`if (clientSecret != null)`
`146`	`146`	`{`
`147`	`147`	`logSink.Log("Initial ObtainAccessToken - Client Secret", TraceEventType.Verbose);`
`148`	`148`	`cApp = cAppBuilder.WithClientSecret(clientSecret.ToUnsecureString()).Build();`
`149`		`- _authenticationResult = await ObtainAccessTokenAsync(cApp, Scopes, logSink);`
	`149`	`+ _authenticationResult = await ObtainAccessTokenAsync(cApp, Scopes, logSink).ConfigureAwait(false);`
`150`	`150`	`}`
`151`	`151`	`else`
`152`	`152`	`throw new Exception("Invalid Cert or Client Secret Auth flow");`
`153`	`153`	`}`
`154`	`154`
`155`	`155`	`// Update the MSAL Client handed back.`
`156`		`- processResult.MsalAuthClient = cApp;`
	`156`	`+ processResult.MsalAuthClient = cApp;`
`157`	`157`	`}`
`158`	`158`	`else`
`159`	`159`	`{`
`160`	`160`	`PublicClientApplicationBuilder cApp = null;`
`161`		`- IPublicClientApplication pApp = null;`
	`161`	`+ IPublicClientApplication pApp = null;`
`162`	`162`	`if (msalAuthClient is IPublicClientApplication)`
`163`	`163`	`{`
`164`	`164`	`pApp = (IPublicClientApplication)msalAuthClient;`
`@@ -179,8 +179,8 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ`
`179`	`179`	`pApp = cApp.Build();`
`180`	`180`	`}`
`181`	`181`
`182`		`- //Run user Auth flow.`
`183`		`- _authenticationResult = await ObtainAccessTokenAsync(pApp, Scopes, user, promptBehavior, clientCredentials, useDefaultCreds, logSink);`
	`182`	`+ //Run user Auth flow.`
	`183`	`+ _authenticationResult = await ObtainAccessTokenAsync(pApp, Scopes, user, promptBehavior, clientCredentials, useDefaultCreds, logSink).ConfigureAwait(false);`
`184`	`184`
`185`	`185`	`// Assign the application back out`
`186`	`186`	`processResult.MsalAuthClient = pApp;`
`@@ -195,7 +195,7 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ`
`195`	`195`	`//_userId = _authenticationResult.Account;`
`196`	`196`	`processResult.UserIdent = _authenticationResult.Account;`
`197`	`197`	`}`
`198`		`-`
	`198`	`+`
`199`	`199`	`if (null == _authenticationResult)`
`200`	`200`	`{`
`201`	`201`	`throw new ArgumentNullException("AuthenticationResult");`
`@@ -207,7 +207,7 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ`
`207`	`207`	`{`
`208`	`208`	`if (ex.InnerException is Microsoft.Identity.Client.MsalException)`
`209`	`209`	`{`
`210`		`- var errorHandledResult = await ProcessAdalExecptionAsync(serviceUrl, clientCredentials, userCert, clientId, redirectUri, promptBehavior, isOnPrem, authority , msalAuthClient, logSink, useDefaultCreds , (Microsoft.Identity.Client.MsalException)ex.InnerException);`
	`210`	`+ var errorHandledResult = await ProcessAdalExecptionAsync(serviceUrl, clientCredentials, userCert, clientId, redirectUri, promptBehavior, isOnPrem, authority , msalAuthClient, logSink, useDefaultCreds , (Microsoft.Identity.Client.MsalException)ex.InnerException).ConfigureAwait(false);`
`211`	`211`	`if (errorHandledResult != null)`
`212`	`212`	`processResult = errorHandledResult;`
`213`	`213`	`}`
`@@ -232,7 +232,7 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ`
`232`	`232`	`}`
`233`	`233`	`finally`
`234`	`234`	`{`
`235`		`- if (createdLogSource) // Only dispose it if it was created locally.`
	`235`	`+ if (createdLogSource) // Only dispose it if it was created locally.`
`236`	`236`	`logSink.Dispose();`
`237`	`237`	`}`
`238`	`238`	`return processResult;`
`@@ -241,7 +241,7 @@ internal async static Task<ExecuteAuthenticationResults> ExecuteAuthenticateServ`
`241`	`241`
`242`	`242`
`243`	`243`	`/// <summary>`
`244`		`- /// Token refresh flow for MSAL User Flows.`
	`244`	`+ /// Token refresh flow for MSAL User Flows.`
`245`	`245`	`/// </summary>`
`246`	`246`	`/// <param name="publicAppClient">MSAL Client to use.</param>`
`247`	`247`	`/// <param name="scopes">Scopes to send in.</param>`
`@@ -260,10 +260,10 @@ internal async static Task<AuthenticationResult> ObtainAccessTokenAsync(`
`260`	`260`	`bool useDefaultCreds = false,`
`261`	`261`	`DataverseTraceLogger logSink = null)`
`262`	`262`	`{`
`263`		`- // This works for user Auth flows.`
	`263`	`+ // This works for user Auth flows.`
`264`	`264`	`AuthenticationResult _authenticationResult = null;`
`265`	`265`	`bool clientCredentialsCheck = clientCredentials != null && clientCredentials.UserName != null && !string.IsNullOrEmpty(clientCredentials.UserName.UserName) && !string.IsNullOrEmpty(clientCredentials.UserName.Password);`
`266`		`- // Login user hint`
	`266`	`+ // Login user hint`
`267`	`267`	`string loginUserHint = (clientCredentials != null && clientCredentials.UserName != null) ? clientCredentials.UserName.UserName : string.Empty;`
`268`	`268`	`if (publicAppClient != null)`
`269`	`269`	`{`
`@@ -284,11 +284,11 @@ internal async static Task<AuthenticationResult> ObtainAccessTokenAsync(`
`284`	`284`	`{`
`285`	`285`	`if (!string.IsNullOrEmpty(loginUserHint))`
`286`	`286`	`{`
`287`		`- _authenticationResult = await publicAppClient.AcquireTokenByIntegratedWindowsAuth(scopes).WithUsername(loginUserHint).ExecuteAsync();`
	`287`	`+ _authenticationResult = await publicAppClient.AcquireTokenByIntegratedWindowsAuth(scopes).WithUsername(loginUserHint).ExecuteAsync().ConfigureAwait(false);`
`288`	`288`	`}`
`289`	`289`	`else`
`290`	`290`	`{`
`291`		`- _authenticationResult = await publicAppClient.AcquireTokenByIntegratedWindowsAuth(scopes).ExecuteAsync();`
	`291`	`+ _authenticationResult = await publicAppClient.AcquireTokenByIntegratedWindowsAuth(scopes).ExecuteAsync().ConfigureAwait(false);`
`292`	`292`	`}`
`293`	`293`	`}`
`294`	`294`	`else`
`@@ -315,32 +315,32 @@ internal async static Task<AuthenticationResult> ObtainAccessTokenAsync(`
`315`	`315`
`316`	`316`	`if (userPrompt != null)`
`317`	`317`	`{`
`318`		`- _authenticationResult = await publicAppClient.AcquireTokenInteractive(scopes).WithLoginHint(loginUserHint).WithPrompt(userPrompt.Value).ExecuteAsync();`
	`318`	`+ _authenticationResult = await publicAppClient.AcquireTokenInteractive(scopes).WithLoginHint(loginUserHint).WithPrompt(userPrompt.Value).ExecuteAsync().ConfigureAwait(false);`
`319`	`319`	`}`
`320`	`320`	`else`
`321`	`321`	`{`
`322`	`322`	`if (account != null)`
`323`	`323`	`{`
`324`		`- _authenticationResult = await publicAppClient.AcquireTokenSilent(scopes, account).ExecuteAsync();`
	`324`	`+ _authenticationResult = await publicAppClient.AcquireTokenSilent(scopes, account).ExecuteAsync().ConfigureAwait(false);`
`325`	`325`	`}`
`326`	`326`	`else`
`327`	`327`	`{`
`328`		`- _authenticationResult = await publicAppClient.AcquireTokenInteractive(scopes).WithLoginHint(loginUserHint).ExecuteAsync();`
	`328`	`+ _authenticationResult = await publicAppClient.AcquireTokenInteractive(scopes).WithLoginHint(loginUserHint).ExecuteAsync().ConfigureAwait(false);`
`329`	`329`	`}`
`330`	`330`	`}`
`331`	`331`	`}`
`332`	`332`	`}`
`333`	`333`	`}`
`334`	`334`	`else`
`335`	`335`	`{`
`336`		`- // throw here.`
	`336`	`+ // throw here.`
`337`	`337`	`}`
`338`	`338`	`return _authenticationResult;`
`339`	`339`	`}`
`340`	`340`
`341`	`341`
`342`	`342`	`/// <summary>`
`343`		`- /// Acquires Confidential client token.`
	`343`	`+ /// Acquires Confidential client token.`
`344`	`344`	`/// </summary>`
`345`	`345`	`/// <param name="confidentialAppClient">Confidential client application</param>`
`346`	`346`	`/// <param name="scopes">Scope List</param>`
`@@ -351,15 +351,15 @@ internal async static Task<AuthenticationResult> ObtainAccessTokenAsync(`
`351`	`351`	`List<string> scopes,`
`352`	`352`	`DataverseTraceLogger logSink = null)`
`353`	`353`	`{`
`354`		`- // This works for user Auth flows.`
	`354`	`+ // This works for user Auth flows.`
`355`	`355`	`AuthenticationResult _authenticationResult = null;`
`356`	`356`	`if (confidentialAppClient != null)`
`357`	`357`	`{`
`358`		`- _authenticationResult = await confidentialAppClient.AcquireTokenForClient(scopes).ExecuteAsync();`
	`358`	`+ _authenticationResult = await confidentialAppClient.AcquireTokenForClient(scopes).ExecuteAsync().ConfigureAwait(false);`
`359`	`359`	`}`
`360`	`360`	`else`
`361`	`361`	`{`
`362`		`- // throw here.`
	`362`	`+ // throw here.`
`363`	`363`	`}`
`364`	`364`	`return _authenticationResult;`
`365`	`365`	`}`
`@@ -412,7 +412,7 @@ internal class AuthRoutingProperties`
`412`	`412`	`}`
`413`	`413`
`414`	`414`	`/// <summary>`
`415`		`- /// Get authority and resource for this instance.`
	`415`	`+ /// Get authority and resource for this instance.`
`416`	`416`	`/// </summary>`
`417`	`417`	`/// <param name="targetServiceUrl">URI to query</param>`
`418`	`418`	`/// <param name="logger">Logger to write info too</param>`
`@@ -423,12 +423,12 @@ private static async Task<AuthRoutingProperties> GetAuthorityFromTargetServiceAs`
`423`	`423`	`AuthRoutingProperties authRoutingProperties = new AuthRoutingProperties();`
`424`	`424`	`var client = clientFactory.CreateClient("DataverseHttpClientFactory");`
`425`	`425`	`var rslt = await client.GetAsync(targetServiceUrl).ConfigureAwait(false);`
`426`		`-`
	`426`	`+`
`427`	`427`	`if ( rslt.StatusCode == System.Net.HttpStatusCode.NotFound \|\| rslt.StatusCode == System.Net.HttpStatusCode.BadRequest )`
`428`	`428`	`{`
`429`		`- // didnt find endpoint.`
	`429`	`+ // didnt find endpoint.`
`430`	`430`	`logger.Log($"Failed to get Authority and Resource error. Attempt to Access Endpoint {targetServiceUrl.ToString()} resulted in {rslt.StatusCode}.", TraceEventType.Error);`
`431`		`- return authRoutingProperties;`
	`431`	`+ return authRoutingProperties;`
`432`	`432`	`}`
`433`	`433`
`434`	`434`	`if (rslt.Headers.Contains("WWW-Authenticate"))`
`@@ -469,19 +469,19 @@ private static async Task<AuthRoutingProperties> GetAuthorityFromTargetServiceAs`
`469`	`469`	`{`
`470`	`470`	`string param;`
`471`	`471`	`authenticateHeaderItems.TryGetValue(AuthorityKey, out param);`
`472`		`- authRoutingProperties.Authority =`
	`472`	`+ authRoutingProperties.Authority =`
`473`	`473`	`param.Replace("oauth2/authorize", "") // swap out the old oAuth pattern.`
`474`		`- .Replace("common" , "organizations"); // swap common for organizations because MSAL reasons.`
	`474`	`+ .Replace("common" , "organizations"); // swap common for organizations because MSAL reasons.`
`475`	`475`	`authenticateHeaderItems.TryGetValue(ResourceKey, out param);`
`476`	`476`	`authRoutingProperties.Resource = param;`
`477`	`477`	`}`
`478`	`478`	`}`
`479`	`479`
`480`		`- return authRoutingProperties;`
	`480`	`+ return authRoutingProperties;`
`481`	`481`	`}`
`482`	`482`
`483`	`483`	`/// <summary>`
`484`		`- /// Process ADAL exception and provide common handlers.`
	`484`	`+ /// Process ADAL exception and provide common handlers.`
`485`	`485`	`/// </summary>`
`486`	`486`	`/// <param name="serviceUrl"></param>`
`487`	`487`	`/// <param name="clientCredentials"></param>`
`@@ -499,18 +499,18 @@ private async static Task<ExecuteAuthenticationResults> ProcessAdalExecptionAsyn`
`499`	`499`	`{`
`500`	`500`	`if (adalEx.ErrorCode.Equals("interaction_required", StringComparison.OrdinalIgnoreCase) \|\|`
`501`	`501`	`adalEx.ErrorCode.Equals("user_password_expired", StringComparison.OrdinalIgnoreCase) \|\|`
`502`		`- adalEx.ErrorCode.Equals("password_required_for_managed_user", StringComparison.OrdinalIgnoreCase) \|\|`
	`502`	`+ adalEx.ErrorCode.Equals("password_required_for_managed_user", StringComparison.OrdinalIgnoreCase) \|\|`
`503`	`503`	`adalEx is Microsoft.Identity.Client.MsalUiRequiredException)`
`504`	`504`	`{`
`505`	`505`	`logSink.Log("ERROR REQUESTING TOKEN FROM THE AUTHENTICATION CONTEXT - USER intervention required", TraceEventType.Warning);`
`506`	`506`	`// ADAL wants the User to do something,, determine if we are able to see a user`
`507`	`507`	`if (promptBehavior == PromptBehavior.Always \|\| promptBehavior == PromptBehavior.Auto)`
`508`	`508`	`{`
`509`	`509`	`// Switch to MFA user mode..`
`510`		`- Microsoft.Identity.Client.IAccount user = null; //TODO:UPDATE THIS OR REMOVE AS WE DETERMIN HOW TO SOLVE THIS ISSUE IN MSAL // new Microsoft.Identity.Client.AccountId();`
	`510`	`+ Microsoft.Identity.Client.IAccount user = null; //TODO:UPDATE THIS OR REMOVE AS WE DETERMIN HOW TO SOLVE THIS ISSUE IN MSAL // new Microsoft.Identity.Client.AccountId();`
`511`	`511`	`user = null;`
`512`	`512`	`//user = new UserIdentifier(clientCredentials.UserName.UserName, UserIdentifierType.OptionalDisplayableId);`
`513`		`- return await ExecuteAuthenticateServiceProcessAsync(serviceUrl, null, userCert, clientId, redirectUri, promptBehavior, isOnPrem, authority, msalAuthClient, logSink, useDefaultCreds: useDefaultCreds, user: user);`
	`513`	`+ return await ExecuteAuthenticateServiceProcessAsync(serviceUrl, null, userCert, clientId, redirectUri, promptBehavior, isOnPrem, authority, msalAuthClient, logSink, useDefaultCreds: useDefaultCreds, user: user).ConfigureAwait(false);`
`514`	`514`	`}`
`515`	`515`	`else`
`516`	`516`	`{`