Skip to content

Use tenant-specific authority instead of organizations in certain tests #909

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
Avery-Dunn wants to merge 3 commits into
base: dev
Choose a base branch
from
+19 −21
Open

Use tenant-specific authority instead of organizations in certain tests #909

Changes from 1 commit
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
2231d4f
Use tenant-specific authority instead of organizations in certain tests
Avery-Dunn May 8, 2026
ae2a00e
Bump cryptography ceiling
Avery-Dunn May 8, 2026
8a0b6eb
Adjust OBO test structure
Avery-Dunn May 8, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 3 additions & 4 deletions tests/test_e2e.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -910,9 +910,8 @@ def test_acquire_token_obo(self):
web_api_app = get_app_config(AppSecrets.WEB_API_CLIENT)

# Step 1: PCA gets token for user to access the WebAPI
# Note: Java test uses "organizations" authority for PCA
config_pca = {
"authority": "https://login.microsoftonline.com/organizations",
"authority": user.authority,
"client_id": web_api_app.app_id,
"username": user.upn,
"password": password,
Expand All @@ -923,7 +922,7 @@ def test_acquire_token_obo(self):
# Note: web_api_app.client_secret contains the Key Vault secret name,
# which we pass to get_secret() to retrieve the actual secret value.
config_cca = {
"authority": user.authority, # Tenant-specific authority
"authority": user.authority,
"client_id": web_api_app.app_id,
"client_secret": get_secret(web_api_app.client_secret, vault="msal_team"),
"scope": ["https://graph.microsoft.com/.default"],
Expand Down Expand Up @@ -1247,7 +1246,7 @@ def test_cca_obo_should_bypass_regional_endpoint_therefore_still_work(self):

# Step 1: PCA gets token for user to access the WebAPI
config_pca = {
"authority": "https://login.microsoftonline.com/organizations",
"authority": user.authority,
"client_id": web_api_app.app_id,
"username": user.upn,
"password": password,
Expand Down
Loading