Sourced from msal's releases.

1.36.0

What's Changed

• Fix the PoP flow in the console app by @​PetarSDimov in AzureAD/microsoft-authentication-library-for-python#887
• Add ADO CI, SDL, and release pipelines with e2e test enablement by @​RyAuld in AzureAD/microsoft-authentication-library-for-python#890
• Add documentation for Managed Identity v2 Hackathon by @​gladjohn in AzureAD/microsoft-authentication-library-for-python#885
• Potential fix for code scanning alert no. 74: Workflow does not contain permissions by @​Avery-Dunn in AzureAD/microsoft-authentication-library-for-python#884
• Added withFmi method for cca app by @​4gust in AzureAD/microsoft-authentication-library-for-python#876
• Use cryptographically secure randomness for PKCE, state, and nonce generation by @​ashok672 in AzureAD/microsoft-authentication-library-for-python#894
• Fix OIDC issuer domain spoofing in B2C host validation by @​4gust in AzureAD/microsoft-authentication-library-for-python#896

New Contributors

• @​PetarSDimov made their first contribution in AzureAD/microsoft-authentication-library-for-python#887
• @​gladjohn made their first contribution in AzureAD/microsoft-authentication-library-for-python#885

Full Changelog: https://github.com/AzureAD/microsoft-authentication-library-for-python/compare/1.35.1...1.36.0

1.35.1

What's Changed

• Instance discovery remains cloud local on known clouds by @​bgavrilMS in AzureAD/microsoft-authentication-library-for-python#875

Full Changelog: https://github.com/AzureAD/microsoft-authentication-library-for-python/compare/1.35.0...1.35.1

1.35.0

What's Changed

• Set Redirect Uri for broker silent flow on Linux platform by @​xinyuxu1026 in AzureAD/microsoft-authentication-library-for-python#846
• ROPC deprecation by @​Ugonnaak1 in AzureAD/microsoft-authentication-library-for-python#855
• Update pymsalruntime version range to handle the latest 0.20.0 release by @​DharshanBJ in AzureAD/microsoft-authentication-library-for-python#858
• Document how to enable sha256 for client credential by @​rayluo in AzureAD/microsoft-authentication-library-for-python#833
• Remove the reliance on getfqdn() by @​rayluo in AzureAD/microsoft-authentication-library-for-python#859
• Thumbprint for certificate made optional by @​vi7us in AzureAD/microsoft-authentication-library-for-python#835
• Support Python 3.14 by @​rayluo in AzureAD/microsoft-authentication-library-for-python#861
• Add form_post response mode support for system browser authentication by @​ashok672 in AzureAD/microsoft-authentication-library-for-python#868
• Add OIDC issuer validation by @​Avery-Dunn in AzureAD/microsoft-authentication-library-for-python#840
• Security: Remove unsafe PowerShell fallback in WSL by @​RinZ27 in AzureAD/microsoft-authentication-library-for-python#866

Full Changelog: https://github.com/AzureAD/microsoft-authentication-library-for-python/compare/1.34.0...1.35.0

MSAL Python 1.35.0b1

Highlights

• The managed identity code path no longer has a dependency on the socket.getfqdn(). No API change is needed. Existing MSAL-powered apps will automatically pick up this new behavior.
• This version of MSAL Python will pick up PyMsalRuntime 0.20.*. No API change is needed. Existing MSAL-powered apps will automatically pick up this new behavior.
• The thumbprint name-value pair in the client_credential parameter becomes optional now. See API docs for usage.

What's Changed

• ROPC deprecation by @​Ugonnaak1 in AzureAD/microsoft-authentication-library-for-python#855
• Test case for token response scope differing from token request scope by @​rayluo in AzureAD/microsoft-authentication-library-for-python#856
• Update pymsalruntime version range to handle the latest 0.20.0 release by @​DharshanBJ in AzureAD/microsoft-authentication-library-for-python#858
• Document how to enable sha256 for client credential by @​rayluo in AzureAD/microsoft-authentication-library-for-python#833

... (truncated)

• 4a2cb98 Update sku.py
• a3ba722 Fix OIDC issuer domain spoofing in B2C host validation (#896)
• 6a92f24 Use cryptographically secure randomness for PKCE, state, and nonce generation...
• ecf515a Added withFmi method for cca app (#876)
• eb78068 Potential fix for code scanning alert no. 74: Workflow does not contain permi...
• 6de712e Add documentation for Managed Identity v2 Hackathon (#885)
• 1f71ede Add ADO CI, SDL, and release pipelines with e2e test enablement (#890)
• e4e692c Fix the PoP flow in the console app (#887)
• 2de45ae Instance discovery remains cloud local on known clouds (#875)
• 09c8821 Create RELEASE_GUIDE.md (#880)
• Additional commits viewable in compare view