Added withFmi method for cca app

[4gust]

Add acquire_token_for_client_with_fmi_path() for FMI support

Adds a new method to ConfidentialClientApplication for acquiring tokens with a Federated Managed Identity (FMI) path. It wraps acquire_token_for_client(), injecting fmi_path into the request body while preserving all existing caching, telemetry, and regional endpoint behavior.

Usage

import msal

app = msal.ConfidentialClientApplication(
    "your-client-id",
    client_credential={"private_key_pfx_path": "/path/to/cert.pfx", "public_certificate": True},
    authority="https://login.microsoftonline.com/your-tenant-id",
)

result = app.acquire_token_for_client_with_fmi_path(
    scopes=["api://resource/.default"],
    fmi_path="SomeFmiPath/FmiCredentialPath",
)

E2E test

Added E2E test to msid client

[bgavrilMS]

Are the tokens cached like in MSAL .NET and MSAL GO? I don't think they are.

I see a PR here that look at proper caching #759 but I am not sure it is compliant with the rest.

[4gust]

Added a cache enhancement so now we create a hash key for some data keyvalues

[bgavrilMS]

Should we have FMI path as one of the kwargs instead? Creating an entire new API seems pretty heavy.

[bgavrilMS]

This comment still stands. Should we "an overload" of AcquireTokenForClient existing API?

[bgavrilMS]

Pls add a comment that these fields are already taken care of separately.

[bgavrilMS]

I think you are missing a few things:

• client_assertion and client_assertion_type and client_secret
• grant_type
• force_refresh

We probably need to enhance existing tests to assert that no "unknown" key is used.

[bgavrilMS]

The .NET spec mentioned using "atext" in the cache key. Maybe we are missing a test that attempts to load a token from a file.