chore: bump the all group across 1 directory with 7 updates

[dependabot]

Bumps the all group with 7 updates in the /examples/msal-java directory:

Package	From	To
com.azure:azure-security-keyvault-secrets	4.7.3	4.9.0
com.azure:azure-identity	1.12.2	1.14.1
com.azure:azure-core	1.45.1	1.54.0
com.microsoft.azure:msal4j	1.14.2	1.17.2
org.slf4j:slf4j-simple	2.0.10	2.0.16
org.apache.maven.plugins:maven-shade-plugin	3.5.1	3.6.0
org.apache.maven.plugins:maven-dependency-plugin	3.6.1	3.8.1

Updates com.azure:azure-security-keyvault-secrets from 4.7.3 to 4.9.0

Commits

• b3dc745 Release azure cosmos 4.9.0 (#18088)
• 0e377a8 Deprecate AADAppRoleStatelessAuthenticationFilter and AADAuthenticationFilter...
• 908bc27 Access to multi-tenant app (#18080)
• 6ec4175 Solve the issue : Azure/azure-sdk-for-java#17811 (#...
• 54cedfd [Communication] - Common - Remove all Future and replace with Mono (#18052)
• c229944 Create PR to target against master (#18074)
• ed16583 Small readme fix on creating a filestore (#18022)
• c4231d5 set tenantId default value (#18045)
• 5ed2491 Handle conditional access. (#17980)
• 819b3e6 Increment package version after release of com.microsoft.azure azure-serviceb...
• Additional commits viewable in compare view

Updates com.azure:azure-identity from 1.12.2 to 1.14.1

Release notes

Sourced from com.azure:azure-identity's releases.

azure-identity_1.14.1

1.14.1 (2024-11-04)

Other Changes

Dependency Updates

• Upgraded azure-core from 1.53.0 to version 1.54.0.
• Upgraded azure-core-http-netty from 1.15.5 to version 1.15.6.

azure-core-http-okhttp_1.12.5

1.12.5 (2024-11-01)

Other Changes

Dependency Updates

• Upgraded azure-core from 1.53.0 to 1.54.0.

Commits

• 5cecba6 Prepare azure-core and azure-core-serializer-json-jackson for Hotfix Releases...
• e1d09df Use Reflection to Configure Jackson 2.12 Features (#19918) (#19967)
• cd30e0c Prepare Azure Core Libraries for March 2021 Release (#19703)
• 1d905cd Rework tests (#19614)
• 94285f5 Reactor, Reactor Netty, and Spring Framework Version Upgrades (#19563)
• 1c993ba Fix live test pipeline - Formrecognizer (#19656)
• 3acc7f3 Synapse march 2021 update (#19632)
• ce0f46a Add step annotate and improve AADHandleConditionalAccessFilter for Conditiona...
• e9d211e mgmt, make storage account more secure by setting better default (#19649)
• 4ec4b2a Increment package version after release of com.azure.resourcemanager azure-re...
• Additional commits viewable in compare view

Updates com.azure:azure-core from 1.45.1 to 1.54.0

Release notes

Sourced from com.azure:azure-core's releases.

azure-core_1.54.0

1.54.0 (2024-11-01)

Features Added

• Added HttpLogOptions.getAllowHttpHeaderNames(), HttpLogOptions.setAllowedHeaderNames(Set<HttpHeaderNames>), and HttpLogOptions.addAllowedHeaderName(HttpHeaderName).

Bugs Fixed

• Fixed a bug where Duration.between could result in an exception if OffsetDateTime.MAX was used.

Other Changes

• Deprecated String-based equivalent APIs in HttpLogOptions for allowed header names.
• Deprecated HttpLogOptions.prettyPrintBody.

Dependency Updates

• Updated Reactor from 3.4.38 to 3.4.41.

Commits

• ef716ed Prepare Core libraries for November 2024 release (#42761)
• 9076361 Enable Spotless on Storage (#42766)
• ac46a73 resolveFewTODOCommentsInKafka (#42715)
• 78b753b Sync eng/common directory with azure-sdk-tools for PR 9294 (#42767)
• 13c4e30 Increment package versions for batch releases (#42768)
• 04752f3 Sync eng/common directory with azure-sdk-tools for PR 9288 (#42763)
• 71409ca Batch Track 2 SDK for 2024-07-01 API (#42545)
• 7554add Reduce unnecessary delete calls to ARM for storage accounts (#42764)
• 1d88f82 AddDocs (#42758)
• 4cf3d9f Default CAE challenge handling in BearerTokenAuthenticationPolicy (#42471)
• Additional commits viewable in compare view

Updates com.microsoft.azure:msal4j from 1.14.2 to 1.17.2

Release notes

Sourced from com.microsoft.azure:msal4j's releases.

v1.17.2

• Make ManagedIdentityApplication.getManagedIdentitySource static (#864)

v1.17.1

• Fix 'refresh on' value calculation in Managed Identity flows (#858)
• Bump nimbusds-oauth2-oidc-sdk version (#859)

v1.17.0

• Add object ID option for Managed Identity (#854)
• Add support for custom authorities (#851)
• Fix bug where claims did not cause cache to be skipped (#811)

v1.16.2

• Use SHA256 thumbprints in non-ADFS cert flows (#840)
• Reduce logging level of cache miss messages (#844)
• Make ManagedIdentitySourceType enum public (#845)

v1.16.1

• Add missing refreshOn metadata (#838)

v1.16.0

• Fix breaking API changes introduced in v1.15.0 (AzureAD/microsoft-authentication-library-for-java#828)
• Expose refreshOn parameter in AuthenticationResultMetadata (AzureAD/microsoft-authentication-library-for-java#829)

v1.15.1

• Fix to correctly use custom SSLSocketFactory (#821)
• Add public API to determine the Managed Identity environment (#823)

v1.15.0

• GA support for Azure managed identity scenarios
• Support managed identities in Azure Functions, App Service, IMDS (#661)
• Support MI in Cloud Shell (#713)
• Support MI in Service Fabric (#729)
• Support MI in Azure Arc (#730)
• Adjust loopback address binding in interactive flow by @​crimsonvspurple (#797)

Changelog

Sourced from com.microsoft.azure:msal4j's changelog.

Version 1.17.2

• Make ManagedIdentityApplication.getManagedIdentitySource static (#864)

Version 1.17.1

• Fix 'refresh on' value calculation in Managed Identity flows (#858)
• Bump nimbusds-oauth2-oidc-sdk version (#859)

Version 1.17.0

• Add object ID option for Managed Identity (#854)
• Add support for custom authorities (#851)
• Fix bug where claims did not cause cache to be skipped (#811)

Version 1.16.2

• Use SHA256 thumbprints in non-ADFS cert flows (#840)
• Reduce logging level of cache miss messages (#844)
• Make ManagedIdentitySourceType enum public (#845)

Version 1.16.1

• Add missing refreshOn metadata (#838)

Version 1.16.0

• Fix breaking API changes introduced in v1.15.0 (#828)
• Expose refreshOn parameter in AuthenticationResultMetadata (#829)

Version 1.15.1

• Fix to correctly use custom SSLSocketFactory (#821)
• Add public API to determine the Managed Identity environment (#823)

Version 1.15.0

• GA support for Azure managed identity scenarios
• Support managed identities in Azure Functions, App Service, IMDS (#661)
• Support MI in Cloud Shell (#713)
• Support MI in Service Fabric (#729)
• Support MI in Azure Arc (#730)
• Adjust loopback address binding in interactive flow (#797)

Version 1.14.3

• Hotfix to update oauth2-oidc-sdk dependency (#781)

Commits

• 081341c Merge pull request #865 from AzureAD/avdunn/release-1.17.2
• 8431576 Version updates for 1.17.2
• d27faab Merge pull request #864 from AzureAD/avdunn/mi-sourcetype-static
• 02ca194 Make getManagedIdentitySource static
• 46cc756 Update README.md
• 64a462c Merge pull request #861 from AzureAD/avdunn/release-1.17.1
• 4a5cfb8 Version updates for 1.17.1
• 7d9ce19 Merge pull request #858 from AzureAD/avdunn/mi-refreshon
• 6f431a3 Merge pull request #859 from crimsonvspurple/dev
• 791f30a Bump com.nimbusds.oauth2-oidc-sdk from 11.9.1 to 11.18
• Additional commits viewable in compare view

Updates org.slf4j:slf4j-simple from 2.0.10 to 2.0.16

Updates org.apache.maven.plugins:maven-shade-plugin from 3.5.1 to 3.6.0

Commits

• 9a572e2 [maven-release-plugin] prepare release maven-shade-plugin-3.6.0
• ade2e35 [MSHADE-428] Prevent null value in array of transformers (#229)
• b573b8c [MSHADE-478] Extra JARs feature (#228)
• 199ffae Drop the cruft (#225)
• 912a81d Bump maven-gh-actions-shared to v4
• 80e4420 [maven-release-plugin] prepare for next development iteration
• 19618cd [maven-release-plugin] prepare release maven-shade-plugin-3.5.3
• faf233e [MSHADE-472] upgrade parent POM
• 7de9ae7 [MSHADE-471] deal with DST
• 58d8cfe [MSHADE-470] Bump asmVersion from 9.6 to 9.7 (#218)
• Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.8.1

Release notes

Sourced from org.apache.maven.plugins:maven-dependency-plugin's releases.

3.8.0

• [MDEP-930] - Make test robust against platform default character sets (#448) @​elharo
• Delete obsolete commented code (#446) @​elharo
• Replace old workaround for Maven 3.2.5 bug (#438) @​elharo
• [MNGSITE-393] - Cleanup and correct usage docs (#440) @​elharo
• Minor copy editing (#437) @​elharo
• [MDEP-956][MDEP-932] - Silence artifact copying (#436) @​elharo
• (doc) Remove repeated word (#426) @​maffe
• Remove outdated invoker conditions (#422) @​michael-o
• MDEP-913 Add dependency:collect on index-page (#416) @​Bukama

📦 Dependency updates

• Bump org.apache.maven.reporting:maven-reporting-impl from 4.0.0-M15 to 4.0.0 (#443) @​dependabot
• Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.17.0 (#428) @​dependabot
• Bump jettyVersion from 9.4.55.v20240627 to 9.4.56.v20240826 (#429) @​dependabot
• Bump org.codehaus.plexus:plexus-io from 3.5.0 to 3.5.1 (#430) @​dependabot
• Bump commons-io:commons-io from 2.16.1 to 2.17.0 (#431) @​dependabot
• Bump org.apache.maven.reporting:maven-reporting-api from 4.0.0-M12 to 4.0.0 (#435) @​dependabot
• [MDEP-958] - Bump org.apache.maven.shared:maven-dependency-analyzer from 1.14.1 to 1.15.0 (#434) @​dependabot
• Bump org.apache.maven.doxia:doxia-sink-api from 2.0.0-M12 to 2.0.0 (#432) @​dependabot
• Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0 (#420) @​dependabot
• Bump org.apache.maven.plugins:maven-plugins from 42 to 43 (#424) @​dependabot
• Bump jettyVersion from 9.4.54.v20240208 to 9.4.55.v20240627 (#419) @​dependabot
• Bump org.codehaus.plexus:plexus-io from 3.4.2 to 3.5.0 (#421) @​dependabot
• Bump org.jsoup:jsoup from 1.17.2 to 1.18.1 (#425) @​dependabot
• Bump org.assertj:assertj-core from 3.26.0 to 3.26.3 (#423) @​dependabot

👻 Maintenance

• Fix mismatching Parameter initial field values (#418) @​Marcono1234

3.7.1

🐛 Bug Fixes

• [MDEP-943] - Fix appendOutput option (#414) @​slawekjaranowski

📦 Dependency updates

• [MDEP-944] - Bump org.apache.maven.shared:maven-common-artifact-filters from 3.3.2 to 3.4.0 (#413) @​dependabot

👻 Maintenance

• [MDEP-945] - Fix documentation about get goal (#415) @​slawekjaranowski
• [MDEP-940] - Use Resolver API instead of m-a-t for resolving artifacts (#410) @​slawekjaranowski

3.7.0

... (truncated)

Commits

• 954e44a [maven-release-plugin] prepare release maven-dependency-plugin-3.8.1
• 842075d Bump org.apache.maven.reporting:maven-reporting-impl
• 7e1aadc Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.17.0
• 188531c Fix SCM tag
• 361058e Bump jettyVersion from 9.4.55.v20240627 to 9.4.56.v20240826
• 38ab100 Bump org.codehaus.plexus:plexus-io from 3.5.0 to 3.5.1
• cbac4a7 Bump commons-io:commons-io from 2.16.1 to 2.17.0
• b19b7e0 [MDEP-930] Make test robust against platform default character sets (#448)
• e347ef7 Delete obsolete commented code for issue that was won't fixed 10 years ago (#...
• 7b137a1 [MDEP-946] Add analyze exclusions to list of goals
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #1499.