Skip to content

[Identity] Revert regional auth env var change#44663

Merged
pvaneck merged 2 commits intoAzure:mainfrom
pvaneck:identity-revert-regional-env
Jan 17, 2026
Merged

[Identity] Revert regional auth env var change#44663
pvaneck merged 2 commits intoAzure:mainfrom
pvaneck:identity-revert-regional-env

Conversation

@pvaneck
Copy link
Member

@pvaneck pvaneck commented Jan 15, 2026

This change reverts #44347.

We've decided to shelf this for now until the picture for ESTS-R support becomes more clear. This introduced some baggage that was a bit undesirable, and it's still possible to use regional auth endpoints without this change through the use of the AZURE_AUTHORITY_HOST env var or by explicitly passing in a regional endpoint to a credential constructor via the authority kwarg.

@pvaneck
[Identity] Revert regional auth env var change
82bc4c8 
We've decided to shelve this for now until the picture for ESTS-R
support becomes more clear. This intrduces some baggage that is a bit
undesirable, and it's still possible to use regional auth endpoints
without this change through the use of the AZURE_AUTHORITY_HOST env var
or by explicitly passing in a regional endpoint to a credential
constructor via the `authority` kwarg.

Signed-off-by: Paul Van Eck <paulvaneck@microsoft.com>
@pvaneck pvaneck marked this pull request as ready for review January 16, 2026 22:40
@pvaneck pvaneck requested review from a team and xiangyan99 as code owners January 16, 2026 22:40
Copilot AI reviewed Jan 16, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR reverts the regional authority environment variable change introduced in PR #44347, removing support for AZURE_REGIONAL_AUTHORITY_NAME from the internal AadClient and AadClientBase classes. The change removes the region discovery logic and regional authority URL construction from these internal clients while preserving support in MSAL-based credentials through msal_credentials.py.

Changes:

  • Removed regional authority initialization logic from AadClient and AadClientBase classes
  • Removed calls to _initialize_regional_authority() from all token acquisition methods
  • Removed region discovery and URL building helper methods
  • Removed associated test cases for regional authority functionality in internal AAD clients
  • Updated CHANGELOG to remove the fixed issue entry

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 2 comments.

Show a summary per file
File Description
sdk/identity/azure-identity/azure/identity/_internal/aad_client_base.py Removed _regional_authority attribute, regional authority helper methods, and reverted token URL construction to use only _authority
sdk/identity/azure-identity/azure/identity/_internal/aad_client.py Removed _initialize_regional_authority() calls and implementation, removed unused imports
sdk/identity/azure-identity/azure/identity/aio/_internal/aad_client.py Removed async regional authority initialization calls and implementation, removed unused imports
sdk/identity/azure-identity/tests/test_aad_client.py Removed test cases for regional authority functionality
sdk/identity/azure-identity/tests/test_aad_client_async.py Removed async test cases for regional authority functionality
sdk/identity/azure-identity/CHANGELOG.md Removed changelog entry about the regional authority bug fix

@github-project-automation github-project-automation bot moved this from Untriaged to In Progress in Azure Identity SDK Improvements Jan 16, 2026
@pvaneck
Copy link
Member Author

pvaneck commented Jan 17, 2026

/check-enforcer override

@pvaneck pvaneck merged commit e1274e1 into Azure:main Jan 17, 2026
35 of 36 checks passed
@github-project-automation github-project-automation bot moved this from In Progress to Done in Azure Identity SDK Improvements Jan 17, 2026
@pvaneck pvaneck deleted the identity-revert-regional-env branch January 17, 2026 00:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@scottaddie scottaddie scottaddie approved these changes

@chlowell chlowell chlowell approved these changes

@xiangyan99 xiangyan99 Awaiting requested review from xiangyan99 xiangyan99 is a code owner

@maorleger maorleger Awaiting requested review from maorleger maorleger is a code owner automatically assigned from Azure/azure-sdk-write-identity

@joshfree joshfree Awaiting requested review from joshfree joshfree is a code owner automatically assigned from Azure/azure-sdk-write-identity

@KarishmaGhiya KarishmaGhiya Awaiting requested review from KarishmaGhiya KarishmaGhiya is a code owner automatically assigned from Azure/azure-sdk-write-identity

@JonathanCrd JonathanCrd Awaiting requested review from JonathanCrd JonathanCrd is a code owner automatically assigned from Azure/azure-sdk-write-identity

@anannya03 anannya03 Awaiting requested review from anannya03 anannya03 is a code owner automatically assigned from Azure/azure-sdk-write-identity

@minhanh-phan minhanh-phan Awaiting requested review from minhanh-phan minhanh-phan is a code owner automatically assigned from Azure/azure-sdk-write-identity

Assignees

No one assigned

Labels

Azure.Identity

Projects

Azure Identity SDK Improvements
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@pvaneck @scottaddie @chlowell