Sourced from azure-identity's releases.

azure-identity_1.24.0

1.24.0 (2025-08-07)

Bugs Fixed

• Fixed an issue where CAE (Continuous Access Evaluation) caches were not properly used by AuthorizationCodeCredential and the asynchronous OnBehalfOfCredential. (#42145)

Other Changes

• ManagedIdentityCredential now retries IMDS 410 status responses for at least 70 seconds total duration as required by Azure IMDS documentation. (#42330)
• Improved DefaultAzureCredential diagnostics when WorkloadIdentityCredential initialization fails. If DAC fails to find a successful credential in the chain, the reason WorkloadIdentityCredential failed will be included in the error message. (#42346)

azure-identity_1.24.0b1

1.24.0b1 (2025-07-17)

Features Added

• Expanded the set of acceptable values for environment variable AZURE_TOKEN_CREDENTIALS to allow for selection of a specific credential in the DefaultAzureCredential chain. At runtime, only the specified credential will be used when acquiring tokens with DefaultAzureCredential. For example, setting AZURE_TOKEN_CREDENTIALS=WorkloadIdentityCredential will make DefaultAzureCredential use only WorkloadIdentityCredential.
  • Valid values are EnvironmentCredential, WorkloadIdentityCredential, ManagedIdentityCredential, AzureCliCredential, AzurePowershellCredential, AzureDeveloperCliCredential, and InteractiveBrowserCredential. (#41709)
• Re-enabled VisualStudioCodeCredential - Previously deprecated VisualStudioCodeCredential has been re-implemented to work with the VS Code Azure Resources extension instead of the deprecated Azure Account extension. This requires the azure-identity-broker package to be installed for authentication. (#41822)
  • VisualStudioCodeCredential is now included in the DefaultAzureCredential token chain by default.
• DefaultAzureCredential now supports authentication with the currently signed-in Windows account, provided the azure-identity-broker package is installed. This auth mechanism is added at the end of the DefaultAzureCredential credential chain. (#40335)

• 92ae66c [Identity] Ensure DAC contextvar is reset (#42413)
• 53c705d [Identity] Adjustments for release (#42394)
• ddfda00 [Identity] Refactor broker logic (#42375)
• 992c402 [Identity] Improve WorkloadIdentityCredential/DAC diagnosability (#42346)
• 8a42e73 [Identity] Add custom IMDS retry policy (#42330)
• b3e716b [Identity] Fix issue with cae_cache not being used (#42145)
• ff82059 Retire Azure Cache for Redis code samples (#42184)
• a209e4a Increment version for identity releases (#42086)
• 5fc1f5a [Identity] Prep identity beta releases (#42083)
• aa29c33 [Identity] Enable brokered auth in DAC (#40335)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)