mirror of
https://github.com/microsoft/vscode.git
synced 2026-07-14 16:04:09 +01:00
dd668b452b
Mark microsoft-sovereign-cloud.environment and .customEnvironment as restrictedConfigurations so their workspace-level values are ignored in untrusted workspaces. These settings feed the MSAL authority/endpoint URLs, so an attacker-supplied folder must not be able to override them in Restricted Mode. This requires switching untrustedWorkspaces.supported from `true` to `limited`, since restrictedConfigurations is only honored for `limited` support (see configurationExtensionPoint.ts). Fixes microsoft/vscode-internalbacklog#8355 Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>
Microsoft Authentication for Visual Studio Code
Notice: This extension is bundled with Visual Studio Code. It can be disabled but not uninstalled.
Features
This extension provides support for authenticating to Microsoft. It registers the microsoft Authentication Provider that can be leveraged by other extensions. This also provides the Microsoft authentication used by Settings Sync.
Additionally, it provides the microsoft-sovereign-cloud Authentication Provider that can be used to sign in to other Azure clouds like Azure for US Government or Azure China. Use the setting microsoft-sovereign-cloud.endpoint to select the authentication endpoint the provider should use. Please note that different scopes may also be required in different environments.