AzureAD
diff --git a/‎src/Microsoft.Identity.Web.OWIN/AppBuilderExtension.cs
Lines changed: 2 additions & 2 deletions b/‎src/Microsoft.Identity.Web.OWIN/AppBuilderExtension.cs
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/Microsoft.Identity.Web.TokenAcquisition/AspNetCore/TokenAcquisition-AspnetCore.cs
Lines changed: 2 additions & 2 deletions b/‎src/Microsoft.Identity.Web.TokenAcquisition/AspNetCore/TokenAcquisition-AspnetCore.cs
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/Microsoft.Identity.Web.TokenAcquisition/Base64UrlHelpers.cs
Lines changed: 4 additions & 4 deletions b/‎src/Microsoft.Identity.Web.TokenAcquisition/Base64UrlHelpers.cs
Lines changed: 4 additions & 4 deletions
diff --git a/‎src/Microsoft.Identity.Web.TokenAcquisition/ClientInfo.cs
Lines changed: 2 additions & 2 deletions b/‎src/Microsoft.Identity.Web.TokenAcquisition/ClientInfo.cs
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/Microsoft.Identity.Web.TokenAcquisition/ITokenAcquisitionInternal.cs
Lines changed: 4 additions & 2 deletions b/‎src/Microsoft.Identity.Web.TokenAcquisition/ITokenAcquisitionInternal.cs
Lines changed: 4 additions & 2 deletions
diff --git a/‎src/Microsoft.Identity.Web.TokenAcquisition/TokenAcquisition.cs
Lines changed: 11 additions & 6 deletions b/‎src/Microsoft.Identity.Web.TokenAcquisition/TokenAcquisition.cs
Lines changed: 11 additions & 6 deletions
diff --git a/‎src/Microsoft.Identity.Web.TokenCache/Distributed/MsalDistributedTokenCacheAdapter.cs
Lines changed: 4 additions & 3 deletions b/‎src/Microsoft.Identity.Web.TokenCache/Distributed/MsalDistributedTokenCacheAdapter.cs
Lines changed: 4 additions & 3 deletions
diff --git a/‎src/Microsoft.Identity.Web/DownstreamWebApiSupport/DownstreamWebApi.cs
Lines changed: 6 additions & 0 deletions b/‎src/Microsoft.Identity.Web/DownstreamWebApiSupport/DownstreamWebApi.cs
Lines changed: 6 additions & 0 deletions
diff --git a/‎src/Microsoft.Identity.Web/DownstreamWebApiSupport/DownstreamWebApiExtensions.cs
Lines changed: 3 additions & 0 deletions b/‎src/Microsoft.Identity.Web/DownstreamWebApiSupport/DownstreamWebApiExtensions.cs
Lines changed: 3 additions & 0 deletions
diff --git a/‎src/Microsoft.Identity.Web/DownstreamWebApiSupport/DownstreamWebApiGenericExtensions.cs
Lines changed: 7 additions & 0 deletions b/‎src/Microsoft.Identity.Web/DownstreamWebApiSupport/DownstreamWebApiGenericExtensions.cs
Lines changed: 7 additions & 0 deletions
@@ -189,7 +189,7 @@ public static IAppBuilder AddMicrosoftIdentityWebApp(
                 context.TokenEndpointRequest.Parameters.TryGetValue("code_verifier", out string codeVerifier);
                 var tokenAcquisition = tokenAcquirerFactory?.ServiceProvider?.GetRequiredService<ITokenAcquisitionInternal>();
                 var msIdentityOptions = tokenAcquirerFactory?.ServiceProvider?.GetRequiredService<IOptions<MicrosoftIdentityOptions>>();
-                var idToken = await (tokenAcquisition!.AddAccountToCacheFromAuthorizationCodeAsync(
+                var result = await (tokenAcquisition!.AddAccountToCacheFromAuthorizationCodeAsync(
                     new string[] { options.Scope },
                     context.Code,
                     string.Empty,
@@ -198,7 +198,7 @@ public static IAppBuilder AddMicrosoftIdentityWebApp(
                     msIdentityOptions?.Value.DefaultUserFlow)).ConfigureAwait(false);
                 HttpContextBase httpContext = context.OwinContext.Get<HttpContextBase>(typeof(HttpContextBase).FullName);
                 httpContext.Session.Add(ClaimConstants.ClientInfo, context.ProtocolMessage.GetParameter(ClaimConstants.ClientInfo));
-                context.HandleCodeRedemption(null, idToken);
+                context.HandleCodeRedemption(result.AccessToken, result.IdToken);
             };
 
             updateOptions?.Invoke(options);
 
@@ -151,8 +151,8 @@ public async Task AddAccountToCacheFromAuthorizationCodeAsync(
             string authCode = context!.ProtocolMessage!.Code;
             string? userFlow = context.Principal?.GetUserFlowId();
 
-            string idToken = await AddAccountToCacheFromAuthorizationCodeAsync(scopes, authCode, authenticationScheme, clientInfo, codeVerifier, userFlow).ConfigureAwait(false);
-            context.HandleCodeRedemption(null, idToken);
+            AcquireTokenResult result = await AddAccountToCacheFromAuthorizationCodeAsync(scopes, authCode, authenticationScheme, clientInfo, codeVerifier, userFlow).ConfigureAwait(false);
+            context.HandleCodeRedemption(result.AccessToken!, result.IdToken!);
         }
 
         TokenAcquirerFactory_GetTokenAcquirers? _implementation;
 
@@ -36,7 +36,7 @@ internal static class Base64UrlHelpers
         /// </summary>
         /// <param name="arg">string to encode.</param>
         /// <returns>Base64Url encoding of the UTF8 bytes.</returns>
-        public static string? Encode(string arg)
+        public static string? Encode(string? arg)
         {
             if (arg == null)
             {
@@ -143,7 +143,7 @@ private static string Encode(byte[] inArray, int offset, int length)
         /// <returns>The string representation in base 64 url encoding of length elements of inArray, starting at position offset.</returns>
         /// <exception cref="ArgumentNullException">'inArray' is null.</exception>
         /// <exception cref="ArgumentOutOfRangeException">offset or length is negative OR offset plus length is greater than the length of inArray.</exception>
-        public static string? Encode(byte[] inArray)
+        public static string? Encode(byte[]? inArray)
         {
             if (inArray == null)
             {
@@ -153,7 +153,7 @@ private static string Encode(byte[] inArray, int offset, int length)
             return Encode(inArray, 0, inArray.Length);
         }
 
-        internal static string? EncodeString(string str)
+        internal static string? EncodeString(string? str)
         {
             if (str == null)
             {
@@ -167,7 +167,7 @@ private static string Encode(byte[] inArray, int offset, int length)
         ///  Converts the specified string, which encodes binary data as base-64-url digits, to an equivalent 8-bit unsigned integer array.</summary>
         /// <param name="str">base64Url encoded string.</param>
         /// <returns>UTF8 bytes.</returns>
-        public static byte[]? DecodeBytes(string str)
+        public static byte[]? DecodeBytes(string? str)
         {
             if (str == null)
             {
 
@@ -16,7 +16,7 @@ internal class ClientInfo
         [JsonPropertyName(ClaimConstants.UniqueTenantIdentifier)]
         public string? UniqueTenantIdentifier { get; set; } = null;
 
-        public static ClientInfo? CreateFromJson(string clientInfo)
+        public static ClientInfo? CreateFromJson(string? clientInfo)
         {
             if (string.IsNullOrEmpty(clientInfo))
             {
@@ -27,7 +27,7 @@ internal class ClientInfo
             return bytes != null ? DeserializeFromJson(bytes) : null;
         }
 
-        internal static ClientInfo? DeserializeFromJson(byte[] jsonByteArray)
+        internal static ClientInfo? DeserializeFromJson(byte[]? jsonByteArray)
         {
             if (jsonByteArray == null || jsonByteArray.Length == 0)
             {
 
@@ -8,6 +8,8 @@
 using Microsoft.AspNetCore.Authentication.OpenIdConnect;
 #endif
 
+using Microsoft.Identity.Abstractions;
+
 namespace Microsoft.Identity.Web
 {
     /// <summary>
@@ -63,8 +65,8 @@ Task AddAccountToCacheFromAuthorizationCodeAsync(
         /// <param name="clientInfo">Client Info obtained with the code</param>
         /// <param name="codeVerifier">PKCE code verifier</param>
         /// <param name="userFlow">User flow in the case of B2C</param>
-        /// <returns>The ID Token.</returns>
-        Task<string> AddAccountToCacheFromAuthorizationCodeAsync(
+        /// <returns>The token acquirer result.</returns>
+        Task<AcquireTokenResult> AddAccountToCacheFromAuthorizationCodeAsync(
             IEnumerable<string> scopes, 
             string authCode, 
             string authenticationScheme, 
 
@@ -102,7 +102,7 @@ public TokenAcquisition(
             _credentialsLoader = credentialsLoader;
         }
 
-        public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(
+        public async Task<AcquireTokenResult> AddAccountToCacheFromAuthorizationCodeAsync(
             IEnumerable<string> scopes,
             string authCode,
             string authenticationScheme,
@@ -124,7 +124,7 @@ public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(
                 string? backUpAuthRoutingHint = string.Empty;
                 if (!string.IsNullOrEmpty(clientInfo))
                 {
-                    ClientInfo? clientInfoFromAuthorize = ClientInfo.CreateFromJson(clientInfo!);
+                    ClientInfo? clientInfoFromAuthorize = ClientInfo.CreateFromJson(clientInfo);
                     if (clientInfoFromAuthorize != null && clientInfoFromAuthorize.UniqueTenantIdentifier != null && clientInfoFromAuthorize.UniqueObjectIdentifier != null)
                     {
                         backUpAuthRoutingHint = $"oid:{clientInfoFromAuthorize.UniqueObjectIdentifier}@{clientInfoFromAuthorize.UniqueTenantIdentifier}";
@@ -153,7 +153,14 @@ public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(
                     _tokenAcquisitionHost.SetSession(Constants.SpaAuthCode, result.SpaAuthCode);
                 }
 
-                return result.IdToken;
+                return new AcquireTokenResult(
+                result.AccessToken,
+                result.ExpiresOn,
+                result.TenantId,
+                result.IdToken,
+                result.Scopes,
+                result.CorrelationId,
+                result.TokenType);
             }
             catch (MsalServiceException exMsal) when (IsInvalidClientCertificateError(exMsal))
             {
@@ -162,7 +169,7 @@ public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(
 
                 // Retry
                 _retryClientCertificate = true;
-                await AddAccountToCacheFromAuthorizationCodeAsync(scopes, authCode, authenticationScheme, clientInfo, codeVerifier, userFlow).ConfigureAwait(false);
+                return await AddAccountToCacheFromAuthorizationCodeAsync(scopes, authCode, authenticationScheme, clientInfo, codeVerifier, userFlow).ConfigureAwait(false);
             }
             catch (MsalException ex)
             {
@@ -173,8 +180,6 @@ public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(
             {
                 _retryClientCertificate = false;
             }
-
-            return authenticationScheme;
         }
 
         private static string GetApplicationKey(MergedOptions mergedOptions)
 
@@ -223,7 +223,7 @@ protected override async Task WriteCacheBytesAsync(string cacheKey, byte[] bytes
         protected override async Task WriteCacheBytesAsync(
             string cacheKey,
             byte[] bytes,
-            CacheSerializerHints cacheSerializerHints)
+            CacheSerializerHints? cacheSerializerHints)
         {
             const string write = "Write";
 
@@ -263,7 +263,8 @@ await L2OperationWithRetryOnFailureAsync(
                     write,
                     (cacheKey) => _distributedCache.SetAsync(
                         cacheKey,
-                        bytes,
+                        bytes!, // We know that in the Write case, the bytes won't be null 
+                                // the parent class 
                         distributedCacheEntryOptions,
                         cacheSerializerHints?.CancellationToken ?? CancellationToken.None),
                     cacheKey).Measure().ConfigureAwait(false);
@@ -275,7 +276,7 @@ await L2OperationWithRetryOnFailureAsync(
                  write,
                  (cacheKey) => _distributedCache.SetAsync(
                      cacheKey,
-                     bytes,
+                     bytes!,
                      distributedCacheEntryOptions,
                      cacheSerializerHints?.CancellationToken ?? CancellationToken.None),
                  cacheKey).Measure().ConfigureAwait(false));
 
@@ -2,6 +2,7 @@
 // Licensed under the MIT License.
 
 using System;
+using System.ComponentModel;
 using System.Net.Http;
 using System.Security.Claims;
 using System.Text;
@@ -16,7 +17,12 @@ namespace Microsoft.Identity.Web
     /// <summary>
     /// Implementation for the downstream web API.
     /// </summary>
+#pragma warning disable CS0618 // Type or member is obsolete
+    [Obsolete("Use DownstreamRestApi in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
+        "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+    [EditorBrowsable(EditorBrowsableState.Never)]
     public class DownstreamWebApi : IDownstreamWebApi
+#pragma warning restore CS0618 // Type or member is obsolete
     {
         private readonly ITokenAcquisition _tokenAcquisition;
         private readonly HttpClient _httpClient;
 
@@ -2,6 +2,7 @@
 // Licensed under the MIT License.
 
 using System;
+using System.ComponentModel;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
 
@@ -22,6 +23,7 @@ public static class DownstreamWebApiExtensions
         /// <returns>The builder for chaining.</returns>
         [Obsolete("Use AddDownstreamRestApi in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
         "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public static MicrosoftIdentityAppCallsWebApiAuthenticationBuilder AddDownstreamWebApi(
             this MicrosoftIdentityAppCallsWebApiAuthenticationBuilder builder,
             string serviceName,
@@ -44,6 +46,7 @@ public static MicrosoftIdentityAppCallsWebApiAuthenticationBuilder AddDownstream
         /// <returns>The builder for chaining.</returns>
         [Obsolete("Use AddDownstreamRestApi in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
         "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public static MicrosoftIdentityAppCallsWebApiAuthenticationBuilder AddDownstreamWebApi(
             this MicrosoftIdentityAppCallsWebApiAuthenticationBuilder builder,
             string serviceName,
 
@@ -2,6 +2,7 @@
 // Licensed under the MIT License.
 
 using System;
+using System.ComponentModel;
 using System.Net.Http;
 using System.Security.Claims;
 using System.Text;
@@ -35,6 +36,7 @@ public static class DownstreamWebApiGenericExtensions
         /// <returns>A strongly typed response from the web API.</returns>
         [Obsolete("Use IDownstreamRestApi.GetForUserAsync in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
         "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public static async Task<TOutput?> GetForUserAsync<TOutput>(
             this IDownstreamWebApi downstreamWebApi,
             string serviceName,
@@ -75,6 +77,7 @@ public static class DownstreamWebApiGenericExtensions
         /// <returns>The value returned by the downstream web API.</returns>
         [Obsolete("Use IDownstreamRestApi.GetForUserAsync in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
         "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public static async Task GetForUserAsync<TInput>(
             this IDownstreamWebApi downstreamWebApi,
             string serviceName,
@@ -118,6 +121,7 @@ await downstreamWebApi.CallWebApiForUserAsync(
         /// <returns>A strongly typed response from the web API.</returns>
         [Obsolete("Use IDownstreamRestApi.PostForUserAsync in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
         "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public static async Task<TOutput?> PostForUserAsync<TOutput, TInput>(
             this IDownstreamWebApi downstreamWebApi,
             string serviceName,
@@ -163,6 +167,7 @@ await downstreamWebApi.CallWebApiForUserAsync(
         /// <returns>The value returned by the downstream web API.</returns>
         [Obsolete("Use IDownstreamRestApi.PutForUserAsync in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
         "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public static async Task PutForUserAsync<TInput>(
             this IDownstreamWebApi downstreamWebApi,
             string serviceName,
@@ -207,6 +212,7 @@ await downstreamWebApi.CallWebApiForUserAsync(
         /// <returns>A strongly typed response from the web API.</returns>
         [Obsolete("Use IDownstreamRestApi.PutForUserAsync in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
         "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public static async Task<TOutput?> PutForUserAsync<TOutput, TInput>(
             this IDownstreamWebApi downstreamWebApi,
             string serviceName,
@@ -251,6 +257,7 @@ await downstreamWebApi.CallWebApiForUserAsync(
         /// <returns>The value returned by the downstream web API.</returns>
         [Obsolete("Use IDownstreamRestApi.CallWebApiForUserAsync in Microsoft.Identity.Abstractions, implemented in Microsoft.Identity.Web.DownstreamRestApi." +
         "See aka.ms/id-web-downstream-api-v2 for migration details.", false)]
+        [EditorBrowsable(EditorBrowsableState.Never)]
         public static async Task<TOutput?> CallWebApiForUserAsync<TOutput>(
             this IDownstreamWebApi downstreamWebApi,
             string serviceName,
Original file line number	Diff line number	Diff line change
`@@ -151,8 +151,8 @@ public async Task AddAccountToCacheFromAuthorizationCodeAsync(`
`151`	`151`	`string authCode = context!.ProtocolMessage!.Code;`
`152`	`152`	`string? userFlow = context.Principal?.GetUserFlowId();`
`153`	`153`
`154`		`- string idToken = await AddAccountToCacheFromAuthorizationCodeAsync(scopes, authCode, authenticationScheme, clientInfo, codeVerifier, userFlow).ConfigureAwait(false);`
`155`		`- context.HandleCodeRedemption(null, idToken);`
	`154`	`+ AcquireTokenResult result = await AddAccountToCacheFromAuthorizationCodeAsync(scopes, authCode, authenticationScheme, clientInfo, codeVerifier, userFlow).ConfigureAwait(false);`
	`155`	`+ context.HandleCodeRedemption(result.AccessToken!, result.IdToken!);`
`156`	`156`	`}`
`157`	`157`
`158`	`158`	`TokenAcquirerFactory_GetTokenAcquirers? _implementation;`
Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,7 @@ internal static class Base64UrlHelpers`
`36`	`36`	`/// </summary>`
`37`	`37`	`/// <param name="arg">string to encode.</param>`
`38`	`38`	`/// <returns>Base64Url encoding of the UTF8 bytes.</returns>`
`39`		`- public static string? Encode(string arg)`
	`39`	`+ public static string? Encode(string? arg)`
`40`	`40`	`{`
`41`	`41`	`if (arg == null)`
`42`	`42`	`{`
`@@ -143,7 +143,7 @@ private static string Encode(byte[] inArray, int offset, int length)`
`143`	`143`	`/// <returns>The string representation in base 64 url encoding of length elements of inArray, starting at position offset.</returns>`
`144`	`144`	`/// <exception cref="ArgumentNullException">'inArray' is null.</exception>`
`145`	`145`	`/// <exception cref="ArgumentOutOfRangeException">offset or length is negative OR offset plus length is greater than the length of inArray.</exception>`
`146`		`- public static string? Encode(byte[] inArray)`
	`146`	`+ public static string? Encode(byte[]? inArray)`
`147`	`147`	`{`
`148`	`148`	`if (inArray == null)`
`149`	`149`	`{`
`@@ -153,7 +153,7 @@ private static string Encode(byte[] inArray, int offset, int length)`
`153`	`153`	`return Encode(inArray, 0, inArray.Length);`
`154`	`154`	`}`
`155`	`155`
`156`		`- internal static string? EncodeString(string str)`
	`156`	`+ internal static string? EncodeString(string? str)`
`157`	`157`	`{`
`158`	`158`	`if (str == null)`
`159`	`159`	`{`
`@@ -167,7 +167,7 @@ private static string Encode(byte[] inArray, int offset, int length)`
`167`	`167`	`/// Converts the specified string, which encodes binary data as base-64-url digits, to an equivalent 8-bit unsigned integer array.</summary>`
`168`	`168`	`/// <param name="str">base64Url encoded string.</param>`
`169`	`169`	`/// <returns>UTF8 bytes.</returns>`
`170`		`- public static byte[]? DecodeBytes(string str)`
	`170`	`+ public static byte[]? DecodeBytes(string? str)`
`171`	`171`	`{`
`172`	`172`	`if (str == null)`
`173`	`173`	`{`
Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,7 @@ internal class ClientInfo`
`16`	`16`	`[JsonPropertyName(ClaimConstants.UniqueTenantIdentifier)]`
`17`	`17`	`public string? UniqueTenantIdentifier { get; set; } = null;`
`18`	`18`
`19`		`- public static ClientInfo? CreateFromJson(string clientInfo)`
	`19`	`+ public static ClientInfo? CreateFromJson(string? clientInfo)`
`20`	`20`	`{`
`21`	`21`	`if (string.IsNullOrEmpty(clientInfo))`
`22`	`22`	`{`
`@@ -27,7 +27,7 @@ internal class ClientInfo`
`27`	`27`	`return bytes != null ? DeserializeFromJson(bytes) : null;`
`28`	`28`	`}`
`29`	`29`
`30`		`- internal static ClientInfo? DeserializeFromJson(byte[] jsonByteArray)`
	`30`	`+ internal static ClientInfo? DeserializeFromJson(byte[]? jsonByteArray)`
`31`	`31`	`{`
`32`	`32`	`if (jsonByteArray == null \|\| jsonByteArray.Length == 0)`
`33`	`33`	`{`
Original file line number	Diff line number	Diff line change
`@@ -102,7 +102,7 @@ public TokenAcquisition(`
`102`	`102`	`_credentialsLoader = credentialsLoader;`
`103`	`103`	`}`
`104`	`104`
`105`		`- public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(`
	`105`	`+ public async Task<AcquireTokenResult> AddAccountToCacheFromAuthorizationCodeAsync(`
`106`	`106`	`IEnumerable<string> scopes,`
`107`	`107`	`string authCode,`
`108`	`108`	`string authenticationScheme,`
`@@ -124,7 +124,7 @@ public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(`
`124`	`124`	`string? backUpAuthRoutingHint = string.Empty;`
`125`	`125`	`if (!string.IsNullOrEmpty(clientInfo))`
`126`	`126`	`{`
`127`		`- ClientInfo? clientInfoFromAuthorize = ClientInfo.CreateFromJson(clientInfo!);`
	`127`	`+ ClientInfo? clientInfoFromAuthorize = ClientInfo.CreateFromJson(clientInfo);`
`128`	`128`	`if (clientInfoFromAuthorize != null && clientInfoFromAuthorize.UniqueTenantIdentifier != null && clientInfoFromAuthorize.UniqueObjectIdentifier != null)`
`129`	`129`	`{`
`130`	`130`	`backUpAuthRoutingHint = $"oid:{clientInfoFromAuthorize.UniqueObjectIdentifier}@{clientInfoFromAuthorize.UniqueTenantIdentifier}";`
`@@ -153,7 +153,14 @@ public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(`
`153`	`153`	`_tokenAcquisitionHost.SetSession(Constants.SpaAuthCode, result.SpaAuthCode);`
`154`	`154`	`}`
`155`	`155`
`156`		`- return result.IdToken;`
	`156`	`+ return new AcquireTokenResult(`
	`157`	`+ result.AccessToken,`
	`158`	`+ result.ExpiresOn,`
	`159`	`+ result.TenantId,`
	`160`	`+ result.IdToken,`
	`161`	`+ result.Scopes,`
	`162`	`+ result.CorrelationId,`
	`163`	`+ result.TokenType);`
`157`	`164`	`}`
`158`	`165`	`catch (MsalServiceException exMsal) when (IsInvalidClientCertificateError(exMsal))`
`159`	`166`	`{`
`@@ -162,7 +169,7 @@ public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(`
`162`	`169`
`163`	`170`	`// Retry`
`164`	`171`	`_retryClientCertificate = true;`
`165`		`- await AddAccountToCacheFromAuthorizationCodeAsync(scopes, authCode, authenticationScheme, clientInfo, codeVerifier, userFlow).ConfigureAwait(false);`
	`172`	`+ return await AddAccountToCacheFromAuthorizationCodeAsync(scopes, authCode, authenticationScheme, clientInfo, codeVerifier, userFlow).ConfigureAwait(false);`
`166`	`173`	`}`
`167`	`174`	`catch (MsalException ex)`
`168`	`175`	`{`
`@@ -173,8 +180,6 @@ public async Task<string> AddAccountToCacheFromAuthorizationCodeAsync(`
`173`	`180`	`{`
`174`	`181`	`_retryClientCertificate = false;`
`175`	`182`	`}`
`176`		`-`
`177`		`- return authenticationScheme;`
`178`	`183`	`}`
`179`	`184`
`180`	`185`	`private static string GetApplicationKey(MergedOptions mergedOptions)`