microsoft-authentication-library-for-dotnet/src/client/Microsoft.Identity.Client/ManagedIdentity/ManagedIdentitySourceResult.cs at 85d93520d0635c2c451d6eaec6ee8a02445bd12c · AzureAD/microsoft-authentication-library-for-dotnet · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
// Copyright (c) Microsoft Corporation. All rights reserved.
// Licensed under the MIT License.

namespace Microsoft.Identity.Client.ManagedIdentity
{
    /// <summary>
    /// Result of managed identity source detection, including the detected source and any failure information from the IMDS probe.
    /// </summary>
    /// <remarks>
    /// This class is returned by <see cref="ManagedIdentityApplication.GetManagedIdentitySourceAsync"/> to provide
    /// detailed information about managed identity source detection, including failure reasons when the IMDS probe fails.
    /// This information is useful for credential chains like DefaultAzureCredential to determine whether to skip
    /// managed identity authentication entirely.
    /// </remarks>
    public class ManagedIdentitySourceResult
    {
        /// <summary>
        /// Gets the detected managed identity source.
        /// </summary>
        /// <value>
        /// The <see cref="ManagedIdentitySource"/> that was detected on the environment.
        /// Returns <see cref="ManagedIdentitySource.None"/> if no managed identity source was detected.
        /// </value>
        public ManagedIdentitySource Source { get; }

        /// <summary>
        /// Gets or sets the failure reason from the IMDS probe, if it failed.
        /// </summary>
        /// <value>
        /// A string describing why the IMDS probe failed, or <c>null</c> if the probe succeeded or was not attempted.
        /// </value>
        public string ImdsFailureReason { get; set; }

        /// <summary>
        /// Gets a value indicating whether the host VM supports mTLS Proof-of-Possession (PoP) tokens.
        /// </summary>
        /// <value>
        /// <c>true</c> if the VM runs Windows and has a security profile indicating a Trusted VM (TVM)
        /// or Confidential VM (CVM); <c>false</c> if the compute metadata could not be retrieved,
        /// the VM is not Windows, or the VM does not have a TVM/CVM security profile.
        /// This property is only meaningful when <see cref="Source"/> is <see cref="ManagedIdentitySource.Imds"/>.
        /// </value>
        public bool IsMtlsPopSupportedByHost { get; internal set; }

        /// <summary>
        /// Initializes a new instance of the <see cref="ManagedIdentitySourceResult"/> class.
        /// </summary>
        /// <param name="source">The detected managed identity source.</param>
        public ManagedIdentitySourceResult(ManagedIdentitySource source)
        {
            Source = source;
        }
    }
}