Skip to content

Introduce UFIC into api contract #1670

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
agubuzomaximus wants to merge 5 commits into
base: dev
Choose a base branch
from
Open

Introduce UFIC into api contract #1670

agubuzomaximus wants to merge 5 commits into from

Conversation

@agubuzomaximus
Copy link
Contributor

@agubuzomaximus agubuzomaximus commented Jan 21, 2026

PR Title Format

Required Format: [Keyword1] [Keyword2]: Description

  • Keyword1: major, minor, or patch (case-insensitive)
  • Keyword2: feature, bugfix, engg, or tests (case-insensitive)

Examples:

  • [MAJOR] [Feature]: new API
  • [minor] [bugfix]: fix crash
  • [PATCH][tests]:add coverage

Proposed changes

Describe what this PR is trying to do.

Type of change

  • Feature work
  • Bug fix
  • Documentation
  • Engineering change
  • Test
  • Logging/Telemetry

Risk

  • High – Errors could cause MAJOR regression of many scenarios. (Example: new large features or high level infrastructure changes)
  • Medium – Errors could cause regression of 1 or more scenarios. (Example: somewhat complex bug fixes, small new features)
  • Small – No issues are expected. (Example: Very small bug fixes, string changes, or configuration settings changes)

Additional information

Maximus Agubuzo added 2 commits January 21, 2026 13:37
@agubuzomaximus agubuzomaximus requested a review from a team as a code owner January 21, 2026 19:42
azure-pipelines[bot]
azure-pipelines bot reviewed Jan 21, 2026
View reviewed changes
IdentityCore/src/MSIDConstants.h
extern NSString * _Nonnull const MSID_DEVICE_MODEL_KEY;//E.g. iPhone 5S
extern NSString * _Nonnull const MSID_APP_NAME_KEY;
extern NSString * _Nonnull const MSID_APP_VER_KEY;
extern NSString * _Nonnull const MSID_CCS_HINT_KEY;
Copy link

@azure-pipelines azure-pipelines bot Jan 21, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This pull request does not update changelog.txt.

Please consider if this change would be noticeable to a partner or user and either update changelog.txt or resolve this conversation.

Copilot AI reviewed Jan 21, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR introduces UFIC (User Federated Identity Credential) support into the API contract for OneAuth internal automation testing. The token will be passed through the authentication flow and consumed by ESTS as a form of MFA.

Changes:

  • Added userFederatetedIdentityToken property to MSIDInteractiveTokenRequestParameters
  • Added constant MSID_USER_FEDERATED_IDENTITY_CREDENTIAL_KEY for the header name
  • Integrated the token into broker operation flow and web view custom headers

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 7 comments.

Show a summary per file
File Description
IdentityCore/src/MSIDConstants.h Added constant declaration for UFIC header key
IdentityCore/src/MSIDConstants.m Added constant definition for UFIC header value
IdentityCore/src/parameters/MSIDInteractiveTokenRequestParameters.h Added property for user federated identity token
IdentityCore/src/broker_operation/request/interactive_token_request/MSIDBrokerOperationInteractiveTokenRequest.h Added property to broker operation request
IdentityCore/src/broker_operation/request/interactive_token_request/MSIDBrokerOperationInteractiveTokenRequest.m Added token assignment and JSON serialization
IdentityCore/src/requests/MSIDInteractiveAuthorizationCodeRequest.m Added token to web view custom headers

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@tongyuze
Copy link
Contributor

tongyuze commented Jan 21, 2026

Can you please do some manual tests to see if the header can be passed in broker request?

@agubuzomaximus
Copy link
Contributor Author

agubuzomaximus commented Jan 22, 2026

Can you please do some manual tests to see if the header can be passed in broker request?

Yes, that logic is within a separate PR. This PR is for you to pass the JWT into common core. In another PR I will accept that value from common core and route from broker to web view headers.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@azure-pipelines azure-pipelines[bot] azure-pipelines[bot] left review comments

Copilot code review Copilot Copilot left review comments

@antrix1989 antrix1989 antrix1989 approved these changes

@tongyuze tongyuze tongyuze approved these changes

@juan-arias juan-arias Awaiting requested review from juan-arias juan-arias is a code owner automatically assigned from AzureAD/appleidentityteam

@neha-rsn neha-rsn Awaiting requested review from neha-rsn neha-rsn is a code owner automatically assigned from AzureAD/appleidentityteam

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@agubuzomaximus @tongyuze @antrix1989