Skip to content

Adjust WithExtraQueryParameters APIs and cache key behavior #5536

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 8 commits into
base: main
Choose a base branch
from
Open

Adjust WithExtraQueryParameters APIs and cache key behavior #5536

wants to merge 8 commits into from

Conversation

@Avery-Dunn
Copy link
Contributor

This PR is for KR 3310905 and issue #5361.

In short, there is a problem in our existing WithExtraQueryParameters behavior: the extra query parameters could affect tokens but were not used as part of the cache keys, so if the WithExtraQueryParameters values changed between requests we could return cached tokens that were not valid for the new request. However, simply adding the extra query parameters to the cache key would not work: it would break existing cache lookup behavior, and not all parameters should be cached.

This PR tries to solve that problem with the following changes:

  • Add a new WithExtraQueryParameters that takes in a IDictionary<string, (string value, bool includeInCacheKey)>
    • Essentially, instead of a key-value pair of strings the value is a tuple, allowing the caller to control which parameters are used in the cache key
    • This new API adds the extra query parameters to the existing CacheKeyComponents field, which already does the task of adding extra parameters to the cache key
    • Affects: BaseAbstractAcquireTokenParameterBuilder, AbstractApplicationBuilder
  • Deprecate the existing WithExtraQueryParameters APIs, and have them call the new API to set the ExtraQueryParameters fields
    • Affects: AbstractAcquireTokenParameterBuilder, BaseAbstractAcquireTokenParameterBuilder, AbstractApplicationBuilder
  • New internal helper method in CoreHelpers to covert the old Dictionary style to the new one

This PR also adds some new tests to cover the new behavior, and makes some small changes to existing tests:

  • ExtraQueryParametersTests: A new test class with tests covering the new cache key behavior, as well as demonstrating the behavior of the deprecated WithExtraQueryParameters APIs
  • CacheKeyExtensionTests: A new test to show the new WithExtraQueryParameters API does not conflict with the existing WithAdditionalCacheKeyComponents API from the extensibility package
  • The rest of the changes to the test files were just to follow the new style and avoid deprecation warnings, no test behavior was actually changed

@Avery-Dunn
Add new WithExtraQueryParameters API and behavior affects cache keys,…
215f703 
… deprecate existing WithExtraQueryParameters APIs
@Avery-Dunn Avery-Dunn requested a review from a team as a code owner October 18, 2025 02:02
bgavrilMS
bgavrilMS requested changes Oct 20, 2025
View reviewed changes
Copy link
Member

@bgavrilMS bgavrilMS left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, but the tuple in public API is not going to work

@Avery-Dunn Avery-Dunn requested a review from bgavrilMS October 22, 2025 18:27
@Avery-Dunn @bgavrilMS
Update src/client/Microsoft.Identity.Client/ApiConfig/BaseAbstractAcq…
d8d60ef 
…uireTokenParameterBuilder.cs

Co-authored-by: Bogdan Gavril <bogavril@microsoft.com>
bgavrilMS
bgavrilMS reviewed Oct 22, 2025
View reviewed changes
src/client/Microsoft.Identity.Client/ApiConfig/BaseAbstractAcquireTokenParameterBuilder.cs Outdated
/// For each parameter, you can specify whether it should be included in the cache key.
/// The parameter can be null.</param>
/// <returns>The builder to chain .With methods.</returns>
public T WithExtraQueryParameters(IDictionary<string, (string value, bool includeInCacheKey)> extraQueryParameters)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Naming: (string ParameterValue, bool IncludeInCacheKey)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In the latest commit the names start with an uppercase letter, and I improved the comments explaining each parameter.

bgavrilMS
bgavrilMS approved these changes Oct 22, 2025
View reviewed changes
Copy link
Member

@bgavrilMS bgavrilMS left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, minor option

neha-bhargava
neha-bhargava reviewed Oct 23, 2025
View reviewed changes
neha-bhargava
neha-bhargava reviewed Oct 23, 2025
View reviewed changes
tests/devapps/DesktopTestApp/PublicClientHandler.cs
CreateOrUpdatePublicClientApp(InteractiveAuthority, ApplicationId);

AuthenticationResult result;
#pragma warning disable CS0618 // Type or member is obsolete
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe replace these with the new method and remove this line everywhere?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this is the only file where I suppressed the warnings instead of making the actual change. Unlike all the other places, using the new API here would've meant multiple method signature changes, then changes to everything that referenced those methods, then changes to fields in different classes...

It was already started to be a big PR, and those suppressions seemed to be used in a lot of tests, so I figured I'd take a shortcut on this one test app.

neha-bhargava
neha-bhargava reviewed Oct 23, 2025
View reviewed changes
src/client/Microsoft.Identity.Client/ApiConfig/BaseAbstractAcquireTokenParameterBuilder.cs Outdated
/// Sets Extra Query Parameters for the query string in the HTTP authentication request with control over which parameters are included in the cache key
/// </summary>
/// <param name="extraQueryParameters">This parameter will be appended as is to the query string in the HTTP authentication request to the authority.
/// For each parameter, you can specify whether it should be included in the cache key.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would recommend adding some suggestions or examples when it will make sense to add the param to cache key and when to exclude

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In the latest commit I adjusted the comments here and at the app-level API: explained the different parameters in more detail, and gave suggestions on when to set the cache key value to true.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@neha-bhargava neha-bhargava neha-bhargava left review comments

@bgavrilMS bgavrilMS bgavrilMS approved these changes

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Avery-Dunn @bgavrilMS @neha-bhargava