Azure/azure-sdk-for-net Azure.Identity

1.15.0-beta.1 (2025-07-17)

Expanded the set of acceptable values for environment variable AZURE_TOKEN_CREDENTIALS to allow for selection of a specific credential in the DefaultAzureCredential chain. The valid values now include any of the credential names available in the default chain (VisualStudioCredential, VisualStudioCodeCredential, AzureCliCredential, AzurePowerShellCredential, AzureDeveloperCliCredential, EnvironmentCredential, WorkloadIdentityCredential, ManagedIdentityCredential, InteractiveBrowserCredential, or BrokerAuthenticationCredential.) Note: BrokerAuthenticationCredential requires that the project include a reference to package Azure.Identity.Broker.
Re-introduced VisualStudioCodeCredential and included it in the DefaultAzureCredential authentication flow. This credential now supports Single Sign-On (SSO) through the authentication broker on Windows, macOS, and Linux using the Azure.Identity.Broker package.

ManagedIdentityCredential now retries 410 status responses for at least 70 seconds total duration as required by Azure IMDS documentation. Previously, 410 responses were retried with the same short exponential backoff as other status codes, resulting in insufficient retry duration (#50724).
ManagedIdentityCredential throws CredentialUnavailableException when the IMDS endpoint is unavailable. This addresses a regression in how it behaves in the ChainedTokenCredential (47057).

VisualStudioCredential throws CredentialUnavailableException for all failures except for OperationCancelledException due to cancellation being requested for a CancellationToken. This ensures that it falls through for most failures when part of a chained credential.
Removed AzureApplicationCredential. For context, see issue 49781.