Inspector does not work when Microsoft Defender for Cloud Apps is enabled #234
Assignees
Labels
bug
Something isn't working
Comments
|
I'll work on a PR for this issue. |
|
Should be solved in the next version (#239) Note: In that situation, the sid cookie is never usable by the extension, because the sid cookie available to the .mcas.ms domain is encrypted by Microsoft Defender for Cloud Apps, and cannot be used as-is. This means that Microsoft Defender for Cloud Apps users must always use Salesforce Inspector with a Connected App. With Microsoft Defender for Cloud Apps, a valid access token must be generated before using the extension. |
tprouvot
pushed a commit
that referenced
this issue
Dec 1, 2023
## Describe your changes This PR adds support for the `.mcas.ms` domain, which is used when the org is protected behind [Microsoft Defender for Cloud Apps](https://learn.microsoft.com/en-us/defender-cloud-apps/troubleshooting-proxy-url). **Note**: In that situation, the `sid` cookie is never usable by the extension, because the `sid` cookie available to the `.mcas.ms` domain is encrypted by Microsoft Defender for Cloud Apps, and cannot be used as-is. This means that **Microsoft Defender for Cloud Apps users must always [use Salesforce Inspector with a Connected App](https://tprouvot.github.io/Salesforce-Inspector-reloaded/how-to/#use-sf-inspector-with-a-connected-app).** With Microsoft Defender for Cloud Apps, a **valid access token must be generated before using the extension**. ## Issue ticket number and link Solves #234 ## Checklist before requesting a review - [X] I have read and understand the [Contributions section](https://github.com/tprouvot/Salesforce-Inspector-reloaded#contributions) - [X] Target branch is releaseCandidate and not master - [X] I have performed a self-review of my code - [X] I ran the [unit tests](https://github.com/tprouvot/Salesforce-Inspector-reloaded#unit-tests) and my PR does not break any tests - [X] I documented the changes I've made on the [CHANGES.md](https://github.com/tprouvot/Salesforce-Inspector-reloaded/blob/master/CHANGES.md) and followed actual conventions - [ ] I added a new section on [how-to.md](https://github.com/tprouvot/Salesforce-Inspector-reloaded/blob/master/docs/how-to.md) (optional) --------- Co-authored-by: Mehdi Cherfaoui <>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi,
When we are in a work environment that uses Microsoft Defender for Cloud Apps, the Inspector extension does not show.
That is because Microsoft Defender for Cloud Apps redirects the traffic through a
.mcas.msdomain:See also https://learn.microsoft.com/en-us/defender-cloud-apps/troubleshooting-proxy-url
The text was updated successfully, but these errors were encountered: