SharedTokenCacheCredential Class

Authenticates using tokens in the local cache shared between Microsoft applications.

Constructor

SharedTokenCacheCredential(username: str | None = None, *, authority: str | None = None, tenant_id: str | None = None, **kwargs: Any)

Parameters

Name	Description
username	str Username (typically an email address) of the user to authenticate as. This is required because the local cache may contain tokens for multiple identities. Default value: None

Keyword-Only Parameters

Name	Description
authority	str Authority of a Microsoft Entra endpoint, for example 'login.microsoftonline.com', the authority for Azure Public Cloud (which is the default). AzureAuthorityHosts defines authorities for other clouds. Default value: None
tenant_id	str a Microsoft Entra tenant ID. Used to select an account when the cache contains tokens for multiple identities. Default value: None
cache_persistence_options	TokenCachePersistenceOptions configuration for persistent token caching. If not provided, the credential will use the persistent cache shared by Microsoft development applications

Methods

close	Close the credential's transport session.
get_token	Get an access token for scopes from the shared cache. If no access token is cached, attempt to acquire one using a cached refresh token. This method is called automatically by Azure SDK clients.
get_token_info	Get an access token for scopes from the shared cache. If no access token is cached, attempt to acquire one using a cached refresh token. This is an alternative to get_token to enable certain scenarios that require additional properties on the token. This method is called automatically by Azure SDK clients.
supported	Whether the shared token cache is supported on the current platform.

close

Close the credential's transport session.

async close() -> None

get_token

Get an access token for scopes from the shared cache.

If no access token is cached, attempt to acquire one using a cached refresh token.

This method is called automatically by Azure SDK clients.

async get_token(*scopes: str, claims: str | None = None, tenant_id: str | None = None, enable_cae: bool = False, **kwargs: Any) -> AccessToken

Parameters

Name	Description
scopes Required	str desired scopes for the access token. This method requires at least one scope. For more information about scopes, see https://free.blessedness.top/entra/identity-platform/scopes-oidc.

Keyword-Only Parameters

Name	Description
claims	str additional claims required in the token, such as those returned in a resource provider's claims challenge following an authorization failure. Default value: None
tenant_id	str optional tenant to include in the token request. Default value: None
enable_cae	bool indicates whether to enable Continuous Access Evaluation (CAE) for the requested token. Defaults to False. Default value: False

Returns

Type	Description
AccessToken	An access token with the desired scopes.

Exceptions

Type	Description
CredentialUnavailableError	the cache is unavailable or contains insufficient user information
ClientAuthenticationError	authentication failed. The error's `message` attribute gives a reason. Any error response from Microsoft Entra ID is available as the error's `response` attribute.

get_token_info

Get an access token for scopes from the shared cache.

If no access token is cached, attempt to acquire one using a cached refresh token.

This is an alternative to get_token to enable certain scenarios that require additional properties on the token. This method is called automatically by Azure SDK clients.

async get_token_info(*scopes: str, options: TokenRequestOptions | None = None) -> AccessTokenInfo

Parameters

Name	Description
scopes Required	str desired scope for the access token. This method requires at least one scope. For more information about scopes, see https://free.blessedness.top/entra/identity-platform/scopes-oidc.

Keyword-Only Parameters

Name	Description
options	TokenRequestOptions A dictionary of options for the token request. Unknown options will be ignored. Optional. Default value: None

Returns

Type	Description
AccessTokenInfo	An AccessTokenInfo instance containing information about the token.

Exceptions

Type	Description
CredentialUnavailableError	the cache is unavailable or contains insufficient user information
ClientAuthenticationError	authentication failed. The error's `message` attribute gives a reason. Any error response from Microsoft Entra ID is available as the error's `response` attribute.

supported

Whether the shared token cache is supported on the current platform.

static supported() -> bool

Returns

Type	Description
bool	True if the shared token cache is supported on the current platform.

Feedback

Is deze pagina nuttig?

Delen via

SharedTokenCacheCredential Class

Constructor

Parameters

Keyword-Only Parameters

Methods

close

get_token

Parameters

Keyword-Only Parameters

Returns

Exceptions

get_token_info

Parameters

Keyword-Only Parameters

Returns

Exceptions

supported

Returns

Feedback