Merge pull request #1552 from AzureAD/swagup/cc/byredirecturlvalidationfornativeEdgeBrowserSSO

ByPass RedirectUrlValidation for Native Edge Browser SSO flow

Author: swasti29

IdentityCore/src/broker_operation/request/token_request/MSIDBrokerOperationTokenRequest.h

@@ -50,7 +50,7 @@ NS_ASSUME_NONNULL_BEGIN
 @property (nonatomic) BOOL skipValidateResultAccount;
 @property (nonatomic) BOOL forceRefresh;
 @property (nonatomic) BOOL ignoreScopeValidation;
-
+@property (nonatomic) BOOL bypassRedirectURIValidation;
 
 + (BOOL)fillRequest:(MSIDBrokerOperationTokenRequest *)request
      withParameters:(MSIDRequestParameters *)parameters

IdentityCore/src/broker_operation/request/token_request/MSIDBrokerOperationTokenRequest.m

@@ -68,6 +68,7 @@ + (BOOL)fillRequest:(MSIDBrokerOperationTokenRequest *)request
     request.platformSequence = parameters.platformSequence;
     request.allowAnyExtraURLQueryParameters = parameters.allowAnyExtraURLQueryParameters;
     request.ignoreScopeValidation = parameters.ignoreScopeValidation;
+    request.bypassRedirectURIValidation = parameters.bypassRedirectURIValidation;
     return YES;
 }
 

IdentityCore/src/parameters/MSIDRequestParameters.h

@@ -59,6 +59,9 @@
 @property (nonatomic) NSString *clientSku;
 @property (nonatomic) BOOL skipValidateResultAccount;
 @property (nonatomic) BOOL forceRefresh;
+// If YES — redirect URI validation is bypassed.
+// This flag may be set by either the MSAL app or the broker process.
+// - When set by the MSAL app: brokered flows are disabled, and MSAL falls back to local auth flows.
 @property (nonatomic) BOOL bypassRedirectURIValidation;
 
 // Telemetry metadata