Fix: Remove await from synchronous get_anonymous_claims() in FastAPI JWT middleware

[Copilot]

FastAPI JWT middleware was incorrectly awaiting get_anonymous_claims(), a synchronous method, causing runtime errors in anonymous mode.

Changes

Fixed middleware (jwt_authorization_middleware.py line 65)

# Before
request.state.claims_identity = await token_validator.get_anonymous_claims()

# After  
request.state.claims_identity = token_validator.get_anonymous_claims()

The method signature in JwtTokenValidator is:

def get_anonymous_claims(self) -> ClaimsIdentity:  # Not async
    return ClaimsIdentity({}, False, authentication_type="Anonymous")

This aligns with the aiohttp middleware implementation which correctly calls it synchronously.

Original prompt

---

This section details on the original issue you should resolve

<issue_title>[FASTAPI] Object ClaimsIdentity can't be used in 'await' expression</issue_title>
<issue_description>When using Agents Playground in Anonymous mode the JWT middleware for fast API throws as its attempting to call a sync method via an Async pattern.

https://github.com/microsoft/Agents-for-python/blob/a54797cbbe267e0ea8c8b6f10b379a8918dc2d4e/libraries/microsoft-agents-hosting-fastapi/microsoft_agents/hosting/fastapi/jwt_authorization_middleware.py#L66C7-L66C65</issue_description>

<agent_instructions>Create a fix for this issue to remove the await from the JWT Authorization Middleware for Fast API when creating a Claims identity.

Also write a test for this to add to the test suite. </agent_instructions>

Comments on the Issue (you are @copilot in this section)

• Fixes [FASTAPI] Object ClaimsIdentity can't be used in 'await' expression #298

---

💬 We'd love your input! Share your thoughts on Copilot coding agent in our 2 minute survey.

[MattB-msft]

@copilot run the python command black on the folder containing any files you modify, and accept those changes.

[Copilot]

@copilot run the python command black on the folder containing any files you modify, and accept those changes.

Black has been run on both libraries/microsoft-agents-hosting-fastapi/microsoft_agents/hosting/fastapi/ and tests/hosting_fastapi/ folders. All files are already properly formatted (no changes needed). The formatting was applied in commit 3439340.

[MattB-msft]

@copilot remove the tests you added

[Copilot]

@copilot remove the tests you added

Test files removed in commit 7372c87. The PR now contains only the middleware fix.

[MattB-msft]

@copilot Add Tests back to this PR, Add the tests to the test_samples/fastapi folder in the project.

[Copilot]

Pull request overview

This PR fixes a runtime error in the FastAPI JWT authorization middleware by correctly treating get_anonymous_claims() as a synchronous method, aligning the behavior with the aiohttp middleware.

Changes:

• Updated JwtAuthorizationMiddleware to call JwtTokenValidator.get_anonymous_claims() without await when handling anonymous access (no Authorization header and no CLIENT_ID configured).

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.