Remove unused _keyVault field from OBO test classes

RyAuld · Copilot · RyAuld · commit 69656d5af0c0 · 2026-05-21T16:20:09.000-07:00
Addresses Copilot review feedback: _keyVault (MsalTeam instance) is no
longer referenced after switching to _keyVaultMsidLab for LabAuth cert.
Removing to avoid CS0169 warning with TreatWarningsAsErrors.

Co-authored-by: Copilot &lt;223556219+Copilot@users.noreply.github.com&gt;
diff --git a/tests/Microsoft.Identity.Test.Integration.netcore/HeadlessTests/LongRunningOnBehalfOfTests.cs b/tests/Microsoft.Identity.Test.Integration.netcore/HeadlessTests/LongRunningOnBehalfOfTests.cs
@@ -25,7 +25,6 @@ public class LongRunningOnBehalfOfTests
 
         private X509Certificate2 _labAuthCert;
 
-        private readonly KeyVaultSecretsProvider _keyVault = new KeyVaultSecretsProvider(KeyVaultInstance.MsalTeam);
         private readonly KeyVaultSecretsProvider _keyVaultMsidLab = new KeyVaultSecretsProvider(KeyVaultInstance.MSIDLab);
 
         #region Test Hooks
diff --git a/tests/Microsoft.Identity.Test.Integration.netcore/HeadlessTests/OnBehalfOfTests.cs b/tests/Microsoft.Identity.Test.Integration.netcore/HeadlessTests/OnBehalfOfTests.cs
@@ -29,7 +29,6 @@ public class OnBehalfOfTests
         private static InMemoryTokenCache s_inMemoryTokenCache = new InMemoryTokenCache();
         private X509Certificate2 _labAuthCert;
 
-        private readonly KeyVaultSecretsProvider _keyVault = new KeyVaultSecretsProvider(KeyVaultInstance.MsalTeam);
         private readonly KeyVaultSecretsProvider _keyVaultMsidLab = new KeyVaultSecretsProvider(KeyVaultInstance.MSIDLab);
 
         #region Test Hooks
@@ -521,24 +520,17 @@ void AssertExtraHttpHeadersAreSent(HttpSnifferClientFactory factory)
 
         private async Task<ConfidentialClientApplication> BuildCcaAsync(string tenantId, bool withRegion = false)
         {
-            var appConfig = await LabResponseHelper.GetAppConfigAsync(KeyVaultSecrets.AppS2S).ConfigureAwait(false);
             var appApiConfig = await LabResponseHelper.GetAppConfigAsync(KeyVaultSecrets.AppOBOService).ConfigureAwait(false);
-            string secret = LabResponseHelper.FetchSecretString(appConfig.SecretName, LabResponseHelper.KeyVaultSecretsProviderMsal);
 
             var builder = ConfidentialClientApplicationBuilder
-             .Create(withRegion ? appApiConfig.AppId : appConfig.AppId)
+             .Create(appApiConfig.AppId)
              .WithAuthority(new Uri($"https://login.microsoftonline.com/{tenantId}"), true)
+             .WithCertificate(_labAuthCert, true)
              .WithLegacyCacheCompatibility(false);
 
             if (withRegion)
             {
-                builder
-                    .WithCertificate(_labAuthCert, true)
-                    .WithAzureRegion(TestConstants.Region);
-            }
-            else
-            {
-                builder.WithClientSecret(secret);
+                builder.WithAzureRegion(TestConstants.Region);
             }
 
             return builder.BuildConcrete();
