Identity arch board API feedback changes for GA (#24287)

* Identity arch board API feedback changes

Author: christothes

sdk/identity/Azure.Identity/api/Azure.Identity.netstandard2.0.cs

@@ -31,6 +31,7 @@ public partial class AuthorizationCodeCredential : Azure.Core.TokenCredential
         protected AuthorizationCodeCredential() { }
         public AuthorizationCodeCredential(string tenantId, string clientId, string clientSecret, string authorizationCode) { }
         public AuthorizationCodeCredential(string tenantId, string clientId, string clientSecret, string authorizationCode, Azure.Identity.AuthorizationCodeCredentialOptions options) { }
+        [System.ComponentModel.EditorBrowsableAttribute(System.ComponentModel.EditorBrowsableState.Never)]
         public AuthorizationCodeCredential(string tenantId, string clientId, string clientSecret, string authorizationCode, Azure.Identity.TokenCredentialOptions options) { }
         public override Azure.Core.AccessToken GetToken(Azure.Core.TokenRequestContext requestContext, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
         public override System.Threading.Tasks.ValueTask<Azure.Core.AccessToken> GetTokenAsync(Azure.Core.TokenRequestContext requestContext, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
@@ -104,7 +105,6 @@ public ClientCertificateCredential(string tenantId, string clientId, string clie
     public partial class ClientCertificateCredentialOptions : Azure.Identity.TokenCredentialOptions
     {
         public ClientCertificateCredentialOptions() { }
-        public Azure.Identity.RegionalAuthority? RegionalAuthority { get { throw null; } set { } }
         public bool SendCertificateChain { get { throw null; } set { } }
         public Azure.Identity.TokenCachePersistenceOptions TokenCachePersistenceOptions { get { throw null; } set { } }
     }
@@ -120,7 +120,6 @@ public ClientSecretCredential(string tenantId, string clientId, string clientSec
     public partial class ClientSecretCredentialOptions : Azure.Identity.TokenCredentialOptions
     {
         public ClientSecretCredentialOptions() { }
-        public Azure.Identity.RegionalAuthority? RegionalAuthority { get { throw null; } set { } }
         public Azure.Identity.TokenCachePersistenceOptions TokenCachePersistenceOptions { get { throw null; } set { } }
     }
     public partial class CredentialUnavailableException : Azure.Identity.AuthenticationFailedException
@@ -242,87 +241,17 @@ public partial class OnBehalfOfCredential : Azure.Core.TokenCredential
     {
         protected OnBehalfOfCredential() { }
         public OnBehalfOfCredential(string tenantId, string clientId, System.Security.Cryptography.X509Certificates.X509Certificate2 clientCertificate, string userAssertion) { }
-        public OnBehalfOfCredential(string tenantId, string clientId, System.Security.Cryptography.X509Certificates.X509Certificate2 clientCertificate, string userAssertion, Azure.Identity.OnBehalfOfCredentialOptions options) { }
-        public OnBehalfOfCredential(string tenantId, string clientId, string clientSecret, string userAssertion, Azure.Identity.OnBehalfOfCredentialOptions options = null) { }
+        public OnBehalfOfCredential(string tenantId, string clientId, System.Security.Cryptography.X509Certificates.X509Certificate2 clientCertificate, string userAssertion, Azure.Identity.OnBehalfOfCredentialOptions options = null) { }
+        public OnBehalfOfCredential(string tenantId, string clientId, string clientSecret, string userAssertion, Azure.Identity.OnBehalfOfCredentialOptions options) { }
         public override Azure.Core.AccessToken GetToken(Azure.Core.TokenRequestContext requestContext, System.Threading.CancellationToken cancellationToken) { throw null; }
         public override System.Threading.Tasks.ValueTask<Azure.Core.AccessToken> GetTokenAsync(Azure.Core.TokenRequestContext requestContext, System.Threading.CancellationToken cancellationToken) { throw null; }
     }
     public partial class OnBehalfOfCredentialOptions : Azure.Identity.TokenCredentialOptions
     {
         public OnBehalfOfCredentialOptions() { }
-        public Azure.Identity.RegionalAuthority? RegionalAuthority { get { throw null; } set { } }
         public bool SendCertificateChain { get { throw null; } set { } }
         public Azure.Identity.TokenCachePersistenceOptions TokenCachePersistenceOptions { get { throw null; } set { } }
     }
-    [System.Runtime.InteropServices.StructLayoutAttribute(System.Runtime.InteropServices.LayoutKind.Sequential)]
-    public readonly partial struct RegionalAuthority : System.IEquatable<Azure.Identity.RegionalAuthority>
-    {
-        private readonly object _dummy;
-        private readonly int _dummyPrimitive;
-        public RegionalAuthority(string value) { throw null; }
-        public static Azure.Identity.RegionalAuthority AsiaEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority AsiaSouthEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority AustraliaCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority AustraliaCentral2 { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority AustraliaEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority AustraliaSouthEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority AutoDiscoverRegion { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority BrazilSouth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority CanadaCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority CanadaEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority ChinaEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority ChinaEast2 { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority ChinaNorth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority ChinaNorth2 { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority EuropeNorth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority EuropeWest { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority FranceCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority FranceSouth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GermanyCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GermanyNorth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GermanyNorthEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GermanyWestCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GovernmentUSArizona { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GovernmentUSDodCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GovernmentUSDodEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GovernmentUSIowa { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GovernmentUSTexas { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority GovernmentUSVirginia { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority IndiaCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority IndiaSouth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority IndiaWest { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority JapanEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority JapanWest { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority KoreaCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority KoreaSouth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority NorwayEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority NorwayWest { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority SouthAfricaNorth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority SouthAfricaWest { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority SwitzerlandNorth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority SwitzerlandWest { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority UAECentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority UAENorth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority UKSouth { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority UKWest { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority USCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority USEast { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority USEast2 { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority USNorthCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority USSouthCentral { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority USWest { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority USWest2 { get { throw null; } }
-        public static Azure.Identity.RegionalAuthority USWestCentral { get { throw null; } }
-        public bool Equals(Azure.Identity.RegionalAuthority other) { throw null; }
-        [System.ComponentModel.EditorBrowsableAttribute(System.ComponentModel.EditorBrowsableState.Never)]
-        public override bool Equals(object obj) { throw null; }
-        [System.ComponentModel.EditorBrowsableAttribute(System.ComponentModel.EditorBrowsableState.Never)]
-        public override int GetHashCode() { throw null; }
-        public static bool operator ==(Azure.Identity.RegionalAuthority left, Azure.Identity.RegionalAuthority right) { throw null; }
-        public static implicit operator Azure.Identity.RegionalAuthority (string value) { throw null; }
-        public static bool operator !=(Azure.Identity.RegionalAuthority left, Azure.Identity.RegionalAuthority right) { throw null; }
-        public override string ToString() { throw null; }
-    }
     public partial class SharedTokenCacheCredential : Azure.Core.TokenCredential
     {
         public SharedTokenCacheCredential() { }
@@ -344,23 +273,23 @@ public SharedTokenCacheCredentialOptions(Azure.Identity.TokenCachePersistenceOpt
         public string Username { get { throw null; } set { } }
     }
     [System.Runtime.InteropServices.StructLayoutAttribute(System.Runtime.InteropServices.LayoutKind.Sequential)]
-    public partial struct TokenCacheDetails
+    public partial struct TokenCacheData
     {
         private object _dummy;
         private int _dummyPrimitive;
         public System.ReadOnlyMemory<byte> CacheBytes { get { throw null; } set { } }
     }
-    public partial class TokenCacheNotificationDetails
-    {
-        internal TokenCacheNotificationDetails() { }
-        public string SuggestedCacheKey { get { throw null; } }
-    }
     public partial class TokenCachePersistenceOptions
     {
         public TokenCachePersistenceOptions() { }
         public string Name { get { throw null; } set { } }
         public bool UnsafeAllowUnencryptedStorage { get { throw null; } set { } }
     }
+    public partial class TokenCacheRefreshArgs
+    {
+        internal TokenCacheRefreshArgs() { }
+        public string SuggestedCacheKey { get { throw null; } }
+    }
     public partial class TokenCacheUpdatedArgs
     {
         internal TokenCacheUpdatedArgs() { }
@@ -376,7 +305,7 @@ public abstract partial class UnsafeTokenCacheOptions : Azure.Identity.TokenCach
     {
         protected UnsafeTokenCacheOptions() { }
         protected internal abstract System.Threading.Tasks.Task<System.ReadOnlyMemory<byte>> RefreshCacheAsync();
-        protected internal virtual System.Threading.Tasks.Task<Azure.Identity.TokenCacheDetails> RefreshCacheAsync(Azure.Identity.TokenCacheNotificationDetails details) { throw null; }
+        protected internal virtual System.Threading.Tasks.Task<Azure.Identity.TokenCacheData> RefreshCacheAsync(Azure.Identity.TokenCacheRefreshArgs args, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
         protected internal abstract System.Threading.Tasks.Task TokenCacheUpdatedAsync(Azure.Identity.TokenCacheUpdatedArgs tokenCacheUpdatedArgs);
     }
     public partial class UsernamePasswordCredential : Azure.Core.TokenCredential

sdk/identity/Azure.Identity/src/AuthorizationCodeCredential.cs

@@ -2,6 +2,7 @@
 // Licensed under the MIT License.
 
 using System;
+using System.ComponentModel;
 using System.Threading;
 using System.Threading.Tasks;
 using Azure.Core;
@@ -71,6 +72,7 @@ public AuthorizationCodeCredential(
         /// <param name="authorizationCode">The authorization code obtained from a call to authorize. The code should be obtained with all required scopes.
         /// See https://docs.microsoft.com/azure/active-directory/develop/v2-oauth2-auth-code-flow for more information.</param>
         /// <param name="options">Options that allow to configure the management of the requests sent to the Azure Active Directory service.</param>
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public AuthorizationCodeCredential(string tenantId, string clientId, string clientSecret, string authorizationCode, TokenCredentialOptions options)
             : this(tenantId, clientId, clientSecret, authorizationCode, options, null)
         { }

sdk/identity/Azure.Identity/src/ClientCertificateCredentialOptions.cs

@@ -22,6 +22,6 @@ public class ClientCertificateCredentialOptions : TokenCredentialOptions, IToken
         /// Specifies either the specific <see cref="RegionalAuthority"/> (preferred), or use <see cref="RegionalAuthority.AutoDiscoverRegion"/> to attempt to auto-detect the region.
         /// If not specified or auto-detection fails the non-regional endpoint will be used.
         /// </summary>
-        public RegionalAuthority? RegionalAuthority { get; set; } = Azure.Identity.RegionalAuthority.FromEnvironment();
+        internal RegionalAuthority? RegionalAuthority { get; set; } = Azure.Identity.RegionalAuthority.FromEnvironment();
     }
 }

sdk/identity/Azure.Identity/src/ClientSecretCredentialOptions.cs

@@ -17,6 +17,6 @@ public class ClientSecretCredentialOptions : TokenCredentialOptions, ITokenCache
         /// Specifies either the specific <see cref="RegionalAuthority"/> (preferred), or use <see cref="RegionalAuthority.AutoDiscoverRegion"/> to attempt to auto-detect the region.
         /// If not specified or auto-detection fails the non-regional endpoint will be used.
         /// </summary>
-        public RegionalAuthority? RegionalAuthority { get; set; } = Azure.Identity.RegionalAuthority.FromEnvironment();
+        internal RegionalAuthority? RegionalAuthority { get; set; } = Azure.Identity.RegionalAuthority.FromEnvironment();
     }
 }

sdk/identity/Azure.Identity/src/InMemoryTokenCacheOptions.cs

@@ -2,6 +2,7 @@
 // Licensed under the MIT License.
 
 using System;
+using System.Threading;
 using System.Threading.Tasks;
 
 namespace Azure.Identity

sdk/identity/Azure.Identity/src/OnBehalfOfCredential.cs

@@ -48,10 +48,27 @@ public OnBehalfOfCredential(string tenantId, string clientId, X509Certificate2 c
         /// <param name="clientCertificate">The authentication X509 Certificate of the service principal</param>
         /// <param name="userAssertion">The access token that will be used by <see cref="OnBehalfOfCredential"/> as the user assertion when requesting On-Behalf-Of tokens.</param>
         /// <param name="options">Options that allow to configure the management of the requests sent to the Azure Active Directory service.</param>
-        public OnBehalfOfCredential(string tenantId, string clientId, X509Certificate2 clientCertificate, string userAssertion, OnBehalfOfCredentialOptions options)
+        public OnBehalfOfCredential(string tenantId, string clientId, X509Certificate2 clientCertificate, string userAssertion, OnBehalfOfCredentialOptions options = null)
             : this(tenantId, clientId, clientCertificate, userAssertion, options, null, null)
         { }
 
+        /// <summary>
+        /// Creates an instance of the <see cref="OnBehalfOfCredential"/> with the details needed to authenticate with Azure Active Directory.
+        /// </summary>
+        /// <param name="tenantId">The Azure Active Directory tenant (directory) Id of the service principal.</param>
+        /// <param name="clientId">The client (application) ID of the service principal</param>
+        /// <param name="clientSecret">A client secret that was generated for the App Registration used to authenticate the client.</param>
+        /// <param name="userAssertion">The access token that will be used by <see cref="OnBehalfOfCredential"/> as the user assertion when requesting On-Behalf-Of tokens.</param>
+        /// <param name="options">Options that allow to configure the management of the requests sent to the Azure Active Directory service.</param>
+        public OnBehalfOfCredential(
+            string tenantId,
+            string clientId,
+            string clientSecret,
+            string userAssertion,
+            OnBehalfOfCredentialOptions options)
+            : this(tenantId, clientId, clientSecret, userAssertion, options, null, null)
+        { }
+
         internal OnBehalfOfCredential(
             string tenantId,
             string clientId,
@@ -97,23 +114,6 @@ internal OnBehalfOfCredential(
                           options.IsLoggingPIIEnabled);
         }
 
-        /// <summary>
-        /// Creates an instance of the <see cref="OnBehalfOfCredential"/> with the details needed to authenticate with Azure Active Directory.
-        /// </summary>
-        /// <param name="tenantId">The Azure Active Directory tenant (directory) Id of the service principal.</param>
-        /// <param name="clientId">The client (application) ID of the service principal</param>
-        /// <param name="clientSecret">A client secret that was generated for the App Registration used to authenticate the client.</param>
-        /// <param name="userAssertion">The access token that will be used by <see cref="OnBehalfOfCredential"/> as the user assertion when requesting On-Behalf-Of tokens.</param>
-        /// <param name="options">Options that allow to configure the management of the requests sent to the Azure Active Directory service.</param>
-        public OnBehalfOfCredential(
-            string tenantId,
-            string clientId,
-            string clientSecret,
-            string userAssertion,
-            OnBehalfOfCredentialOptions options = null)
-            : this(tenantId, clientId, clientSecret, userAssertion, options, null, null)
-        { }
-
         internal OnBehalfOfCredential(
             string tenantId,
             string clientId,

sdk/identity/Azure.Identity/src/OnBehalfOfCredentialOptions.cs

@@ -22,6 +22,6 @@ public class OnBehalfOfCredentialOptions : TokenCredentialOptions, ITokenCacheOp
         /// Specifies either the specific <see cref="RegionalAuthority"/> (preferred), or use <see cref="RegionalAuthority.AutoDiscoverRegion"/> to attempt to auto-detect the region.
         /// If not specified or auto-detection fails the non-regional endpoint will be used.
         /// </summary>
-        public RegionalAuthority? RegionalAuthority { get; set; } = Azure.Identity.RegionalAuthority.FromEnvironment();
+        internal RegionalAuthority? RegionalAuthority { get; set; } = Azure.Identity.RegionalAuthority.FromEnvironment();
     }
 }

sdk/identity/Azure.Identity/src/RegionalAuthority.cs

@@ -12,7 +12,7 @@ namespace Azure.Identity
     /// <summary>
     /// Identifies the regional authority to be used for authentication.
     /// </summary>
-    public readonly struct RegionalAuthority : IEquatable<RegionalAuthority>
+    internal readonly struct RegionalAuthority : IEquatable<RegionalAuthority>
     {
         internal const string USWestValue = "westus";
         internal const string USWest2Value = "westus2";