v1.13.1

• Bug fixes and improvements for region API
• Allow configuration of timeouts for interactive requests
• Additional and more informative logging for regional scenarios and token requests in general

msal4j v1.13.0 release

• Provide token caching functionality for managed identity tokens
• Updates for obo-for-service-principal scenarios
• version updates for nimbusds-oauth2 library

v1.12.0

• Updates several dependencies to avoid security vulnerabilities
• Improves serialization of ID tokens and authentication results
• Various bug fixes related to authority paths, regional endpoints, and unclear logs

v1.11.3

• Allow client assertions as callbacks and as per-request parameters #466
• Adjust scope for azure-security-keyvault-secrets dependency

v1.11.2

• Updated oauth2-oidc-sdk version to address security vulnerability
• Fixed a bug where acquire token using client assertion failed

v1.11.1

#437

Fixed Retrofit security vulnerabilities

v1.11.0

• Adds ability to override authority in AcquireToken calls
• Fixes issue where authority port was being dropped from URLs

v1.10.1

• Improved behavior when using regional authorities
• Fix scope override issue in OBO flow
• Update server-side telemetry
• Adjusted logging levels to reduce noise
• Improved HTTP error handling and messaging
• Upgrade oauth2-oidc-sdk dependency 9.4 -> 9.7
• Upgrade httpclient dependency 4.5.9 -> 4.5.13

v1.10.0

• Instance aware support for interactive requests
• Default cache lookup for on-behalf-of and client credential flows
• Cross cloud accounts support
• Using default security provider for client certificate creation
• Upgrades the commons-io dependency 2.6 -> 2.7
• Upgrades the oauth2-oidc-sdk dependency 8.23.1 -> 9.4
• Upgrades the guava dependency 26.0 -> 29.0

v1.9.1

• Update com.fasterxml.jackson.core.jackson-databind to 2.12.1