Revert "Native Auth remove legacy interface" (#2586)

spetrescu84 · swasti29 · web-flow · commit 63894227a13f · 2025-04-17T22:49:56.000+01:00
Co-authored-by: Swasti Gupta &lt;swastinitb@gmail.com&gt;
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,7 +1,6 @@
 ## [1.9.0]
 * Add feature flags provider to be controlled from broker (#2540)
 * Added GitHub issue templates for better issue tracking and reporting (#2554)
-* Removed deprecated methods from native auth public interface (#2582)
 
 ## [1.8.1]
 * Cherry pick DUNA "resume" action fix #2558
diff --git a/MSAL/src/native_auth/public/MSALNativeAuthPublicClientApplication.swift b/MSAL/src/native_auth/public/MSALNativeAuthPublicClientApplication.swift
@@ -184,6 +184,33 @@ public final class MSALNativeAuthPublicClientApplication: MSALPublicClientApplic
         }
     }
 
+    /// Sign up a user with a given username and password.
+    /// - Parameters:
+    ///   - username: Username for the new account.
+    ///   - password: Optional. Password to be used for the new account.
+    ///   - attributes: Optional. User attributes to be used during account creation.
+    ///   - correlationId: Optional. UUID to correlate this request with the server for debugging.
+    ///   - delegate: Delegate that receives callbacks for the Sign Up flow.
+    @available(*, deprecated, message: "This method is now deprecated. Use the method 'signUp(parameters:)' instead.")
+    public func signUp(
+        username: String,
+        password: String? = nil,
+        attributes: [String: Any]? = nil,
+        correlationId: UUID? = nil,
+        delegate: SignUpStartDelegate
+    ) {
+        Task {
+            let parameters = MSALNativeAuthSignUpParameters(username: username)
+            parameters.password = password
+            parameters.attributes = attributes
+            parameters.correlationId = correlationId
+            signUp(
+                parameters: parameters,
+                delegate: delegate
+            )
+        }
+    }
+
     /// Sign in a user using parameters.
     /// - Parameters:
     ///   - parameters: Parameters used for the Sign In flow.
@@ -225,6 +252,31 @@ public final class MSALNativeAuthPublicClientApplication: MSALPublicClientApplic
         }
     }
 
+    /// Sign in a user with a given username and password.
+    /// - Parameters:
+    ///   - username: Username for the account
+    ///   - password: Optional. Password for the account.
+    ///   - scopes: Optional. Permissions you want included in the access token received after sign in flow has completed.
+    ///   - correlationId: Optional. UUID to correlate this request with the server for debugging.
+    ///   - delegate: Delegate that receives callbacks for the Sign In flow.
+    @available(*, deprecated, message: "This method is now deprecated. Use the method 'signIn(parameters:)' instead.")
+    public func signIn(
+        username: String,
+        password: String? = nil,
+        scopes: [String]? = nil,
+        correlationId: UUID? = nil,
+        delegate: SignInStartDelegate
+    ) {
+        let parameters = MSALNativeAuthSignInParameters(username: username)
+        parameters.password = password
+        parameters.scopes = scopes
+        parameters.correlationId = correlationId
+        signIn(
+            parameters: parameters,
+            delegate: delegate
+        )
+    }
+
     /// Reset the password using parameters
     /// - Parameters:
     ///   - parameters: Parameters used for the Reset Password flow.
@@ -254,6 +306,25 @@ public final class MSALNativeAuthPublicClientApplication: MSALPublicClientApplic
         }
     }
 
+    /// Reset the password for a given username.
+    /// - Parameters:
+    ///   - username: Username for the account.
+    ///   - correlationId: Optional. UUID to correlate this request with the server for debugging.
+    ///   - delegate: Delegate that receives callbacks for the Reset Password flow.
+    @available(*, deprecated, message: "This method is now deprecated. Use the method 'resetPassword(parameters:)' instead.")
+    public func resetPassword(
+        username: String,
+        correlationId: UUID? = nil,
+        delegate: ResetPasswordStartDelegate
+    ) {
+        let parameters = MSALNativeAuthResetPasswordParameters(username: username)
+        parameters.correlationId = correlationId
+        resetPassword(
+            parameters: parameters,
+            delegate: delegate
+        )
+    }
+
     /// Retrieve the current signed in account from the cache.
     /// - Parameter correlationId: Optional. UUID to correlate this request with the server for debugging.
     /// - Returns: An object representing the account information if present in the local cache.
diff --git a/MSAL/src/native_auth/public/MSALNativeAuthUserAccountResult.swift b/MSAL/src/native_auth/public/MSALNativeAuthUserAccountResult.swift
@@ -96,4 +96,59 @@ import Foundation
                                correlationId: parameters.correlationId,
                                delegate: delegate)
     }
+
+    /// Retrieves the access token for the default OIDC(openid, offline_access, profile) scopes from the cache.
+    /// - Parameters:
+    ///   - forceRefresh: Optional. Ignore any existing access token in the cache and force MSAL to get a new access token from the service.
+    ///   - correlationId: Optional. UUID to correlate this request with the server for debugging.
+    ///   - delegate: Delegate that receives callbacks for the Get Access Token flow.
+    @available(*, deprecated, message: "This method is now deprecated. Use the method 'getAccessToken(parameters:)' instead.")
+    @objc public func getAccessToken(forceRefresh: Bool = false,
+                                     correlationId: UUID? = nil,
+                                     delegate: CredentialsDelegate) {
+        MSALNativeAuthLogger.log(
+            level: .info,
+            context: nil,
+            format: "Retrieving access token without scopes.")
+
+        getAccessTokenInternal(forceRefresh: forceRefresh,
+                               scopes: [],
+                               claimsRequest: nil,
+                               correlationId: correlationId,
+                               delegate: delegate)
+    }
+
+    /// Retrieves the access token for the currently signed in account from the cache such that
+    /// the scope of retrieved access token is a superset of requested scopes. If the access token
+    /// has expired, it will be refreshed using the refresh token that's stored in the cache. If no
+    /// access token matching the requested scopes is found in cache then a new access token is fetched.
+    /// - Parameters:
+    ///   - scopes: Permissions you want included in the access token received in the result. Not all scopes are guaranteed to be included in the access token returned.
+    ///   - forceRefresh: Optional. Ignore any existing access token in the cache and force MSAL to get a new access token from the service.
+    ///   - correlationId: Optional. UUID to correlate this request with the server for debugging.
+    ///   - delegate: Delegate that receives callbacks for the Get Access Token flow.
+    @available(*, deprecated, message: "This method is now deprecated. Use the method 'getAccessToken(parameters:)' instead.")
+    public func getAccessToken(scopes: [String],
+                               forceRefresh: Bool = false,
+                               correlationId: UUID? = nil,
+                               delegate: CredentialsDelegate) {
+
+        guard inputValidator.isInputValid(scopes) else {
+            Task { await delegate.onAccessTokenRetrieveError(error: RetrieveAccessTokenError(type: .invalidScope,
+                                                                                             correlationId: correlationId ?? UUID())) }
+            return
+        }
+
+        MSALNativeAuthLogger.log(
+            level: .info,
+            context: nil,
+            format: "Retrieving access token with scopes started."
+        )
+
+        getAccessTokenInternal(forceRefresh: forceRefresh,
+                               scopes: scopes,
+                               claimsRequest: nil,
+                               correlationId: correlationId,
+                               delegate: delegate)
+    }
 }
diff --git a/MSAL/src/native_auth/public/state_machine/state/SignInAfterResetPasswordState.swift b/MSAL/src/native_auth/public/state_machine/state/SignInAfterResetPasswordState.swift
@@ -56,4 +56,18 @@ import Foundation
             }
         }
     }
+
+    /// Sign in the user that just reset the password.
+    /// - Parameters:
+    ///   - scopes: Optional. Permissions you want included in the access token received after sign in flow has completed.
+    ///   - delegate: Delegate that receives callbacks for the Sign In flow.
+    @available(*, deprecated, message: "This method is now deprecated. Use the method 'signIn(parameters:)' instead.")
+    public func signIn(scopes: [String]? = nil, delegate: SignInAfterResetPasswordDelegate) {
+        let parameters = MSALNativeAuthSignInAfterResetPasswordParameters()
+        parameters.scopes = scopes
+        signIn(
+            parameters: parameters,
+            delegate: delegate
+        )
+    }
 }
diff --git a/MSAL/src/native_auth/public/state_machine/state/SignInAfterSignUpState.swift b/MSAL/src/native_auth/public/state_machine/state/SignInAfterSignUpState.swift
@@ -51,4 +51,17 @@ import Foundation
             }
         }
     }
+
+    /// Sign in the user that signed up.
+    /// - Parameters:
+    ///   - scopes: Optional. Permissions you want included in the access token received after sign in flow has completed.
+    ///   - delegate: Delegate that receives callbacks for the Sign In flow.
+    @available(*, deprecated, message: "This method is now deprecated. Use the method 'signIn(parameters:)' instead.")
+    public func signIn(scopes: [String]? = nil, delegate: SignInAfterSignUpDelegate) {
+        let parameters = MSALNativeAuthSignInAfterSignUpParameters()
+        parameters.scopes = scopes
+        signIn(
+            parameters: parameters,
+            delegate: delegate)
+    }
 }
diff --git a/MSAL/test/integration/native_auth/end_to_end/credentials/MSALNativeAuthUserAccountEndToEndTests.swift b/MSAL/test/integration/native_auth/end_to_end/credentials/MSALNativeAuthUserAccountEndToEndTests.swift
@@ -119,11 +119,7 @@ final class MSALNativeAuthUserAccountEndToEndTests: MSALNativeAuthEndToEndPasswo
         let signInExpectation = expectation(description: "signing in")
         let signInDelegateSpy = SignInPasswordStartDelegateSpy(expectation: signInExpectation)
 
-        let params = MSALNativeAuthSignInParameters(username: username)
-        params.password = password
-        params.scopes = ["User.Read"]
-        params.correlationId = correlationId
-        sut.signIn(parameters: params, delegate: signInDelegateSpy)
+        sut.signIn(username: username, password: password, scopes: ["User.Read"], correlationId: correlationId, delegate: signInDelegateSpy)
 
         await fulfillment(of: [signInExpectation])
 
@@ -134,9 +130,7 @@ final class MSALNativeAuthUserAccountEndToEndTests: MSALNativeAuthEndToEndPasswo
         let getAccessTokenExpectation = expectation(description: "getting access token")
         let credentialsDelegateSpy = CredentialsDelegateSpy(expectation: getAccessTokenExpectation)
 
-        let getTokenParam = MSALNativeAuthGetAccessTokenParameters()
-        getTokenParam.scopes = ["User.Read"]
-        signInDelegateSpy.result?.getAccessToken(parameters: getTokenParam, delegate: credentialsDelegateSpy)
+        signInDelegateSpy.result?.getAccessToken(scopes: ["User.Read"], delegate: credentialsDelegateSpy)
 
         await fulfillment(of: [getAccessTokenExpectation])
 
diff --git a/MSAL/test/integration/native_auth/end_to_end/reset_password/MSALNativeAuthResetPasswordEndToEndTests.swift b/MSAL/test/integration/native_auth/end_to_end/reset_password/MSALNativeAuthResetPasswordEndToEndTests.swift
@@ -86,8 +86,7 @@ final class MSALNativeAuthResetPasswordEndToEndTests: MSALNativeAuthEndToEndBase
         let codeRequiredExp = expectation(description: "code required")
         let resetPasswordStartDelegate = ResetPasswordStartDelegateSpy(expectation: codeRequiredExp)
 
-        let param = MSALNativeAuthResetPasswordParameters(username: username)
-        sut.resetPassword(parameters: param, delegate: resetPasswordStartDelegate)
+        sut.resetPassword(username: username, delegate: resetPasswordStartDelegate)
 
         await fulfillment(of: [codeRequiredExp])
         XCTAssertTrue(resetPasswordStartDelegate.onResetPasswordCodeRequiredCalled)
@@ -131,8 +130,7 @@ final class MSALNativeAuthResetPasswordEndToEndTests: MSALNativeAuthEndToEndBase
         let codeRequiredExp = expectation(description: "code required")
         let resetPasswordStartDelegate = ResetPasswordStartDelegateSpy(expectation: codeRequiredExp)
 
-        let param = MSALNativeAuthResetPasswordParameters(username: username)
-        sut.resetPassword(parameters: param, delegate: resetPasswordStartDelegate)
+        sut.resetPassword(username: username, delegate: resetPasswordStartDelegate)
 
         await fulfillment(of: [codeRequiredExp])
         XCTAssertTrue(resetPasswordStartDelegate.onResetPasswordCodeRequiredCalled)
@@ -198,8 +196,7 @@ final class MSALNativeAuthResetPasswordEndToEndTests: MSALNativeAuthEndToEndBase
         
         let unknownUsername = UUID().uuidString + "@contoso.com"
         
-        let param = MSALNativeAuthResetPasswordParameters(username: unknownUsername)
-        sut.resetPassword(parameters: param, delegate: resetPasswordStartDelegate)
+        sut.resetPassword(username: unknownUsername, delegate: resetPasswordStartDelegate)
         
         await fulfillment(of: [resetPasswordFailureExp])
         
@@ -220,8 +217,7 @@ final class MSALNativeAuthResetPasswordEndToEndTests: MSALNativeAuthEndToEndBase
         let resetPasswordFailureExp = expectation(description: "reset password web-fallback")
         let resetPasswordStartDelegate = ResetPasswordStartDelegateSpy(expectation: resetPasswordFailureExp)
         
-        let param = MSALNativeAuthResetPasswordParameters(username: username)
-        sut.resetPassword(parameters: param, delegate: resetPasswordStartDelegate)
+        sut.resetPassword(username: username, delegate: resetPasswordStartDelegate)
         
         await fulfillment(of: [resetPasswordFailureExp])
         
@@ -242,8 +238,7 @@ final class MSALNativeAuthResetPasswordEndToEndTests: MSALNativeAuthEndToEndBase
         let resetPasswordFailureExp = expectation(description: "does not support password")
         let resetPasswordStartDelegate = ResetPasswordStartDelegateSpy(expectation: resetPasswordFailureExp)
         
-        let param = MSALNativeAuthResetPasswordParameters(username: username)
-        sut.resetPassword(parameters: param, delegate: resetPasswordStartDelegate)
+        sut.resetPassword(username: username, delegate: resetPasswordStartDelegate)
         
         await fulfillment(of: [resetPasswordFailureExp])
         
@@ -266,8 +261,7 @@ final class MSALNativeAuthResetPasswordEndToEndTests: MSALNativeAuthEndToEndBase
         let resetPasswordFailureExp = expectation(description: "reset password user not found")
         let resetPasswordStartDelegate = ResetPasswordStartDelegateSpy(expectation: resetPasswordFailureExp)
         
-        let param = MSALNativeAuthResetPasswordParameters(username: username)
-        sut.resetPassword(parameters: param, delegate: resetPasswordStartDelegate)
+        sut.resetPassword(username: username, delegate: resetPasswordStartDelegate)
         
         await fulfillment(of: [resetPasswordFailureExp])
         
diff --git a/MSAL/test/integration/native_auth/end_to_end/sign_in/MSALNativeAuthSignInUserNameAndPasswordEndToEndTests.swift b/MSAL/test/integration/native_auth/end_to_end/sign_in/MSALNativeAuthSignInUserNameAndPasswordEndToEndTests.swift
@@ -40,10 +40,7 @@ final class MSALNativeAuthSignInUsernameAndPasswordEndToEndTests: MSALNativeAuth
         let signInExpectation = expectation(description: "signing in")
         let signInDelegateSpy = SignInPasswordStartDelegateSpy(expectation: signInExpectation)
 
-        let parameters = MSALNativeAuthSignInParameters(username: username)
-        parameters.password = password
-        parameters.correlationId = correlationId
-        sut.signIn(parameters: parameters, delegate: signInDelegateSpy)
+        sut.signIn(username: username, password: password, correlationId: correlationId, delegate: signInDelegateSpy)
 
         await fulfillment(of: [signInExpectation])
 
@@ -84,11 +81,8 @@ final class MSALNativeAuthSignInUsernameAndPasswordEndToEndTests: MSALNativeAuth
 
         let signInExpectation = expectation(description: "signing in")
         let signInDelegateSpy = SignInPasswordStartDelegateSpy(expectation: signInExpectation)
-        
-        let signInParam = MSALNativeAuthSignInParameters(username: username)
-        signInParam.password = "An Invalid Password"
-        signInParam.correlationId = correlationId
-        sut.signIn(parameters: signInParam, delegate: signInDelegateSpy)
+
+        sut.signIn(username: username, password: "An Invalid Password", correlationId: correlationId, delegate: signInDelegateSpy)
 
         await fulfillment(of: [signInExpectation])
 
@@ -114,6 +108,7 @@ final class MSALNativeAuthSignInUsernameAndPasswordEndToEndTests: MSALNativeAuth
         let signInParam = MSALNativeAuthSignInParameters(username: username)
         signInParam.password = password
         signInParam.correlationId = correlationId
+        
         sut.signIn(parameters: signInParam, delegate: signInDelegateSpy)
 
         await fulfillment(of: [signInExpectation])
@@ -126,10 +121,7 @@ final class MSALNativeAuthSignInUsernameAndPasswordEndToEndTests: MSALNativeAuth
         let signInExpectation2 = expectation(description: "signing in")
         let signInDelegateSpy2 = SignInPasswordStartDelegateSpy(expectation: signInExpectation2)
 
-        let signInParam2 = MSALNativeAuthSignInParameters(username: username)
-        signInParam2.password = password
-        signInParam2.correlationId = correlationId
-        sut.signIn(parameters: signInParam2, delegate: signInDelegateSpy2)
+        sut.signIn(username: username, password: password, correlationId: correlationId, delegate: signInDelegateSpy2)
         
         XCTAssertTrue(signInDelegateSpy.onSignInCompletedCalled)
         XCTAssertNotNil(signInDelegateSpy.result?.idToken)
@@ -148,10 +140,7 @@ final class MSALNativeAuthSignInUsernameAndPasswordEndToEndTests: MSALNativeAuth
         let signInExpectation = expectation(description: "signing in")
         let signInDelegateSpy = SignInPasswordStartDelegateSpy(expectation: signInExpectation)
 
-        let signInParam = MSALNativeAuthSignInParameters(username: username)
-        signInParam.password = password
-        signInParam.correlationId = correlationId
-        sut.signIn(parameters: signInParam, delegate: signInDelegateSpy)
+        sut.signIn(username: username, password: password, correlationId: correlationId, delegate: signInDelegateSpy)
 
         await fulfillment(of: [signInExpectation])
 
@@ -163,9 +152,7 @@ final class MSALNativeAuthSignInUsernameAndPasswordEndToEndTests: MSALNativeAuth
         let signInExpectation2 = expectation(description: "signing in")
         let signInDelegateSpy2 = SignInStartDelegateSpy(expectation: signInExpectation)
 
-        let signInParam2 = MSALNativeAuthSignInParameters(username: username2)
-        signInParam2.correlationId = correlationId
-        sut.signIn(parameters: signInParam2, delegate: signInDelegateSpy2)
+        sut.signIn(username: username2, correlationId: correlationId, delegate: signInDelegateSpy2)
 
         await fulfillment(of: [signInExpectation2])
 
@@ -194,11 +181,7 @@ final class MSALNativeAuthSignInUsernameAndPasswordEndToEndTests: MSALNativeAuth
     /* User Case 1.2.6. Sign In - Ability to provide scope to control auth strength of the token
         Please refer to Crendentials test (test_signInWithExtraScopes())
      
-        let signInParam = MSALNativeAuthSignInParameters(username: username)
-        signInParam.password = password
-        signInParam.correlationId = correlationId
-        sut.signIn(parameters: signInParam, delegate: signInDelegateSpy)
-
+        sut.signIn(username: username, password: password, scopes: ["User.Read"], correlationId: correlationId, delegate: signInDelegateSpy)
         ...
         XCTAssertTrue(credentialsDelegateSpy.result!.scopes.contains("User.Read"))
     */
@@ -215,10 +198,7 @@ final class MSALNativeAuthSignInUsernameAndPasswordEndToEndTests: MSALNativeAuth
         let signInExpectation = expectation(description: "signing in")
         let signInDelegateSpy = SignInStartDelegateSpy(expectation: signInExpectation)
 
-        let signInParam = MSALNativeAuthSignInParameters(username: username)
-        signInParam.password = password
-        signInParam.correlationId = correlationId
-        sut.signIn(parameters: signInParam, delegate: signInDelegateSpy)
+        sut.signIn(username: username, password: password, correlationId: correlationId, delegate: signInDelegateSpy)
 
         await fulfillment(of: [signInExpectation])
 
diff --git a/MSAL/test/unit/native_auth/controllers/MSALNativeAuthResetPasswordControllerTests.swift b/MSAL/test/unit/native_auth/controllers/MSALNativeAuthResetPasswordControllerTests.swift
diff --git a/MSAL/test/unit/native_auth/controllers/MSALNativeAuthSignUpControllerTests.swift b/MSAL/test/unit/native_auth/controllers/MSALNativeAuthSignUpControllerTests.swift
diff --git a/MSAL/test/unit/native_auth/public/MSALNativeAuthPublicClientApplicationTest.swift b/MSAL/test/unit/native_auth/public/MSALNativeAuthPublicClientApplicationTest.swift
diff --git a/MSAL/test/unit/native_auth/public/MSALNativeAuthUserAccountResultTests.swift b/MSAL/test/unit/native_auth/public/MSALNativeAuthUserAccountResultTests.swift

Original file line number	Diff line number	Diff line change
`@@ -56,4 +56,18 @@ import Foundation`
`56`	`56`	`}`
`57`	`57`	`}`
`58`	`58`	`}`
	`59`	`+`
	`60`	`+ /// Sign in the user that just reset the password.`
	`61`	`+ /// - Parameters:`
	`62`	`+ /// - scopes: Optional. Permissions you want included in the access token received after sign in flow has completed.`
	`63`	`+ /// - delegate: Delegate that receives callbacks for the Sign In flow.`
	`64`	`+ @available(*, deprecated, message: "This method is now deprecated. Use the method 'signIn(parameters:)' instead.")`
	`65`	`+ public func signIn(scopes: [String]? = nil, delegate: SignInAfterResetPasswordDelegate) {`
	`66`	`+ let parameters = MSALNativeAuthSignInAfterResetPasswordParameters()`
	`67`	`+ parameters.scopes = scopes`
	`68`	`+ signIn(`
	`69`	`+ parameters: parameters,`
	`70`	`+ delegate: delegate`
	`71`	`+ )`
	`72`	`+ }`
`59`	`73`	`}`
Original file line number	Diff line number	Diff line change
`@@ -51,4 +51,17 @@ import Foundation`
`51`	`51`	`}`
`52`	`52`	`}`
`53`	`53`	`}`
	`54`	`+`
	`55`	`+ /// Sign in the user that signed up.`
	`56`	`+ /// - Parameters:`
	`57`	`+ /// - scopes: Optional. Permissions you want included in the access token received after sign in flow has completed.`
	`58`	`+ /// - delegate: Delegate that receives callbacks for the Sign In flow.`
	`59`	`+ @available(*, deprecated, message: "This method is now deprecated. Use the method 'signIn(parameters:)' instead.")`
	`60`	`+ public func signIn(scopes: [String]? = nil, delegate: SignInAfterSignUpDelegate) {`
	`61`	`+ let parameters = MSALNativeAuthSignInAfterSignUpParameters()`
	`62`	`+ parameters.scopes = scopes`
	`63`	`+ signIn(`
	`64`	`+ parameters: parameters,`
	`65`	`+ delegate: delegate)`
	`66`	`+ }`
`54`	`67`	`}`