@azure/identity-cache-persistence 1.2.2-alpha.20260227.2 → 1.2.2-alpha.20260304.2

package/dist/commonjs/index.js

@@ -1,40 +1,31 @@
-"use strict";
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT License.
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.cachePersistencePlugin = void 0;
-const provider_js_1 = require("./provider.js");
-/**
- * A plugin that provides persistent token caching for `@azure/identity`
- * credentials. The plugin API is compatible with `@azure/identity` versions
- * 2.0.0 and later. Load this plugin using the `useIdentityPlugin`
- * function, imported from `@azure/identity`.
- *
- * In order to enable this functionality, you must also pass
- * `tokenCachePersistenceOptions` to your credential constructors with an
- * `enabled` property set to true.
- *
- * Example:
- *
- * ```ts snippet:ReadmeSampleDeviceCodeCredential
- * import { DeviceCodeCredential } from "@azure/identity";
- *
- * const credential = new DeviceCodeCredential({
- *   tokenCachePersistenceOptions: {
- *     enabled: true,
- *   },
- * });
- *
- * // We'll use the Microsoft Graph scope as an example
- * const scope = "https://graph.microsoft.com/.default";
- *
- * // Print out part of the access token
- * console.log((await credential.getToken(scope)).token.substring(0, 10), "...");
- * ```
- */
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var src_exports = {};
+__export(src_exports, {
+  cachePersistencePlugin: () => cachePersistencePlugin
+});
+module.exports = __toCommonJS(src_exports);
+var import_provider = require("./provider.js");
 const cachePersistencePlugin = (context) => {
-    const { cachePluginControl } = context;
-    cachePluginControl.setPersistence(provider_js_1.createPersistenceCachePlugin);
+  const { cachePluginControl } = context;
+  cachePluginControl.setPersistence(import_provider.createPersistenceCachePlugin);
 };
-exports.cachePersistencePlugin = cachePersistencePlugin;
-//# sourceMappingURL=index.js.map
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  cachePersistencePlugin
+});

package/dist/commonjs/index.js.map

@@ -1 +1,7 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":";AAAA,uCAAuC;AACvC,kCAAkC;;;AAGlC,+CAA6D;AAuB7D;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAEI,MAAM,sBAAsB,GAAmB,CAAC,OAAO,EAAE,EAAE;IAChE,MAAM,EAAE,kBAAkB,EAAE,GAAG,OAA6B,CAAC;IAE7D,kBAAkB,CAAC,cAAc,CAAC,0CAA4B,CAAC,CAAC;AAClE,CAAC,CAAC;AAJW,QAAA,sBAAsB,0BAIjC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { IdentityPlugin, TokenCachePersistenceOptions } from \"@azure/identity\";\nimport { createPersistenceCachePlugin } from \"./provider.js\";\n\n/**\n * Plugin context entries for controlling cache plugins.\n */\ninterface CachePluginControl {\n  setPersistence(\n    persistenceFactory: (\n      options?: TokenCachePersistenceOptions,\n      // eslint-disable-next-line @typescript-eslint/consistent-type-imports\n    ) => Promise<import(\"@azure/msal-node\").ICachePlugin>,\n  ): void;\n}\n/**\n * Context options passed to a plugin during initialization.\n *\n * Represents a subset of the context defined in `@azure/identity`\n *\n */\ninterface AzurePluginContext {\n  cachePluginControl: CachePluginControl;\n}\n\n/**\n * A plugin that provides persistent token caching for `@azure/identity`\n * credentials. The plugin API is compatible with `@azure/identity` versions\n * 2.0.0 and later. Load this plugin using the `useIdentityPlugin`\n * function, imported from `@azure/identity`.\n *\n * In order to enable this functionality, you must also pass\n * `tokenCachePersistenceOptions` to your credential constructors with an\n * `enabled` property set to true.\n *\n * Example:\n *\n * ```ts snippet:ReadmeSampleDeviceCodeCredential\n * import { DeviceCodeCredential } from \"@azure/identity\";\n *\n * const credential = new DeviceCodeCredential({\n *   tokenCachePersistenceOptions: {\n *     enabled: true,\n *   },\n * });\n *\n * // We'll use the Microsoft Graph scope as an example\n * const scope = \"https://graph.microsoft.com/.default\";\n *\n * // Print out part of the access token\n * console.log((await credential.getToken(scope)).token.substring(0, 10), \"...\");\n * ```\n */\n\nexport const cachePersistencePlugin: IdentityPlugin = (context) => {\n  const { cachePluginControl } = context as AzurePluginContext;\n\n  cachePluginControl.setPersistence(createPersistenceCachePlugin);\n};\n"]}
+{
+  "version": 3,
+  "sources": ["/mnt/vss/_work/1/s/sdk/identity/identity-cache-persistence/src/index.ts"],
+  "sourcesContent": ["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { IdentityPlugin, TokenCachePersistenceOptions } from \"@azure/identity\";\nimport { createPersistenceCachePlugin } from \"./provider.js\";\n\n/**\n * Plugin context entries for controlling cache plugins.\n */\ninterface CachePluginControl {\n  setPersistence(\n    persistenceFactory: (\n      options?: TokenCachePersistenceOptions,\n      // eslint-disable-next-line @typescript-eslint/consistent-type-imports\n    ) => Promise<import(\"@azure/msal-node\").ICachePlugin>,\n  ): void;\n}\n/**\n * Context options passed to a plugin during initialization.\n *\n * Represents a subset of the context defined in `@azure/identity`\n *\n */\ninterface AzurePluginContext {\n  cachePluginControl: CachePluginControl;\n}\n\n/**\n * A plugin that provides persistent token caching for `@azure/identity`\n * credentials. The plugin API is compatible with `@azure/identity` versions\n * 2.0.0 and later. Load this plugin using the `useIdentityPlugin`\n * function, imported from `@azure/identity`.\n *\n * In order to enable this functionality, you must also pass\n * `tokenCachePersistenceOptions` to your credential constructors with an\n * `enabled` property set to true.\n *\n * Example:\n *\n * ```ts snippet:ReadmeSampleDeviceCodeCredential\n * import { DeviceCodeCredential } from \"@azure/identity\";\n *\n * const credential = new DeviceCodeCredential({\n *   tokenCachePersistenceOptions: {\n *     enabled: true,\n *   },\n * });\n *\n * // We'll use the Microsoft Graph scope as an example\n * const scope = \"https://graph.microsoft.com/.default\";\n *\n * // Print out part of the access token\n * console.log((await credential.getToken(scope)).token.substring(0, 10), \"...\");\n * ```\n */\n\nexport const cachePersistencePlugin: IdentityPlugin = (context) => {\n  const { cachePluginControl } = context as AzurePluginContext;\n\n  cachePluginControl.setPersistence(createPersistenceCachePlugin);\n};\n"],
+  "mappings": ";;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAIA,sBAA6C;AAoDtC,MAAM,yBAAyC,CAAC,YAAY;AACjE,QAAM,EAAE,mBAAmB,IAAI;AAE/B,qBAAmB,eAAe,4CAA4B;AAChE;",
+  "names": []
+}

package/dist/commonjs/platforms.js

@@ -1,108 +1,105 @@
-"use strict";
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT License.
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.msalPersistencePlatforms = exports.defaultMsalValues = void 0;
-const tslib_1 = require("tslib");
-/* eslint-disable tsdoc/syntax */
-const node_path_1 = tslib_1.__importDefault(require("node:path"));
-const msal_node_extensions_1 = require("@azure/msal-node-extensions");
-/**
- * Local application data folder
- * Expected values:
- * - Darwin: '/Users/user/'
- * - Windows 8+: 'C:\Users\user\AppData\Local'
- * - Linux: '/home/user/.local/share'
- */
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var platforms_exports = {};
+__export(platforms_exports, {
+  defaultMsalValues: () => defaultMsalValues,
+  msalPersistencePlatforms: () => msalPersistencePlatforms
+});
+module.exports = __toCommonJS(platforms_exports);
+var import_node_path = __toESM(require("node:path"));
+var import_msal_node_extensions = require("@azure/msal-node-extensions");
 const localApplicationDataFolder = process.env.APPDATA?.replace?.(/(.Roaming)*$/, "\\Local") ?? process.env.HOME;
-/**
- * Dictionary of values that we use as default as we discover, pick and enable the persistence layer.
- * @internal
- */
-exports.defaultMsalValues = {
-    tokenCache: {
-        name: "msal.cache",
-        // Expected values:
-        // - Darwin: '/Users/user/.IdentityService'
-        // - Windows 8+: 'C:\Users\user\AppData\Local\.IdentityService'
-        // - Linux: '/home/user/.IdentityService'
-        directory: node_path_1.default.join(localApplicationDataFolder, ".IdentityService"),
-    },
-    keyRing: {
-        label: "MSALCache",
-        schema: "msal.cache",
-        collection: "default",
-        attributes: {
-            MsalClientID: "Microsoft.Developer.IdentityService",
-            "Microsoft.Developer.IdentityService": "1.0.0.0",
-        },
-        service: "Microsoft.Developer.IdentityService",
-        account: "MSALCache",
-    },
-    keyChain: {
-        service: "Microsoft.Developer.IdentityService",
-        account: "MSALCache",
+const defaultMsalValues = {
+  tokenCache: {
+    name: "msal.cache",
+    // Expected values:
+    // - Darwin: '/Users/user/.IdentityService'
+    // - Windows 8+: 'C:\Users\user\AppData\Local\.IdentityService'
+    // - Linux: '/home/user/.IdentityService'
+    directory: import_node_path.default.join(localApplicationDataFolder, ".IdentityService")
+  },
+  keyRing: {
+    label: "MSALCache",
+    schema: "msal.cache",
+    collection: "default",
+    attributes: {
+      MsalClientID: "Microsoft.Developer.IdentityService",
+      "Microsoft.Developer.IdentityService": "1.0.0.0"
     },
+    service: "Microsoft.Developer.IdentityService",
+    account: "MSALCache"
+  },
+  keyChain: {
+    service: "Microsoft.Developer.IdentityService",
+    account: "MSALCache"
+  }
 };
-/**
- * Expected responses:
- * - Darwin: '/Users/user/.IdentityService/<name>'
- * - Windows 8+: 'C:\Users\user\AppData\Local\.IdentityService\<name>'
- * - Linux: '/home/user/.IdentityService/<name>'
- */
 function getPersistencePath(name) {
-    return node_path_1.default.join(exports.defaultMsalValues.tokenCache.directory, name);
+  return import_node_path.default.join(defaultMsalValues.tokenCache.directory, name);
 }
-/**
- * Set of the platforms we attempt to deliver persistence on.
- *
- * - On Windows we use DPAPI.
- * - On OSX (Darwin), we try to use the system's Keychain, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.
- * - On Linux, we try to use the system's Keyring, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.
- *
- * Other platforms _are not supported_ at this time.
- *
- * @internal
- */
-exports.msalPersistencePlatforms = {
-    win32: ({ name = exports.defaultMsalValues.tokenCache.name } = {}) => msal_node_extensions_1.FilePersistenceWithDataProtection.create(getPersistencePath(name), msal_node_extensions_1.DataProtectionScope.CurrentUser),
-    darwin: async (options = {}) => {
-        const { name, unsafeAllowUnencryptedStorage } = options;
-        const { service, account } = exports.defaultMsalValues.keyChain;
-        const persistencePath = getPersistencePath(name || exports.defaultMsalValues.tokenCache.name);
-        try {
-            const persistence = await msal_node_extensions_1.KeychainPersistence.create(persistencePath, service, account);
-            // If we don't encounter an error when trying to read from the keychain, then we should be good to go.
-            await persistence.load();
-            return persistence;
-        }
-        catch (e) {
-            // If we got an error while trying to read from the keyring,
-            // we will proceed only if the user has specified that unencrypted storage is allowed.
-            if (!unsafeAllowUnencryptedStorage) {
-                throw new Error("Unable to read from the macOS Keychain.");
-            }
-            return msal_node_extensions_1.FilePersistence.create(persistencePath);
-        }
-    },
-    linux: async (options = {}) => {
-        const { name, unsafeAllowUnencryptedStorage } = options;
-        const { service, account } = exports.defaultMsalValues.keyRing;
-        const persistencePath = getPersistencePath(name || exports.defaultMsalValues.tokenCache.name);
-        try {
-            const persistence = await msal_node_extensions_1.LibSecretPersistence.create(persistencePath, service, account);
-            // If we don't encounter an error when trying to read from the keyring, then we should be good to go.
-            await persistence.load();
-            return persistence;
-        }
-        catch (e) {
-            // If we got an error while trying to read from the keyring,
-            // we will proceed only if the user has specified that unencrypted storage is allowed.
-            if (!unsafeAllowUnencryptedStorage) {
-                throw new Error("Unable to read from the system keyring (libsecret).");
-            }
-            return msal_node_extensions_1.FilePersistence.create(persistencePath);
-        }
-    },
+const msalPersistencePlatforms = {
+  win32: ({ name = defaultMsalValues.tokenCache.name } = {}) => import_msal_node_extensions.FilePersistenceWithDataProtection.create(
+    getPersistencePath(name),
+    import_msal_node_extensions.DataProtectionScope.CurrentUser
+  ),
+  darwin: async (options = {}) => {
+    const { name, unsafeAllowUnencryptedStorage } = options;
+    const { service, account } = defaultMsalValues.keyChain;
+    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);
+    try {
+      const persistence = await import_msal_node_extensions.KeychainPersistence.create(persistencePath, service, account);
+      await persistence.load();
+      return persistence;
+    } catch (e) {
+      if (!unsafeAllowUnencryptedStorage) {
+        throw new Error("Unable to read from the macOS Keychain.");
+      }
+      return import_msal_node_extensions.FilePersistence.create(persistencePath);
+    }
+  },
+  linux: async (options = {}) => {
+    const { name, unsafeAllowUnencryptedStorage } = options;
+    const { service, account } = defaultMsalValues.keyRing;
+    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);
+    try {
+      const persistence = await import_msal_node_extensions.LibSecretPersistence.create(persistencePath, service, account);
+      await persistence.load();
+      return persistence;
+    } catch (e) {
+      if (!unsafeAllowUnencryptedStorage) {
+        throw new Error("Unable to read from the system keyring (libsecret).");
+      }
+      return import_msal_node_extensions.FilePersistence.create(persistencePath);
+    }
+  }
 };
-//# sourceMappingURL=platforms.js.map
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  defaultMsalValues,
+  msalPersistencePlatforms
+});

package/dist/commonjs/platforms.js.map

@@ -1 +1,7 @@
-{"version":3,"file":"platforms.js","sourceRoot":"","sources":["../../src/platforms.ts"],"names":[],"mappings":";AAAA,uCAAuC;AACvC,kCAAkC;;;;AAElC,iCAAiC;AAEjC,kEAA6B;AAE7B,sEAMqC;AAGrC;;;;;;GAMG;AACH,MAAM,0BAA0B,GAC9B,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,EAAE,CAAC,cAAc,EAAE,SAAS,CAAC,IAAI,OAAO,CAAC,GAAG,CAAC,IAAK,CAAC;AAEjF;;;GAGG;AACU,QAAA,iBAAiB,GAAG;IAC/B,UAAU,EAAE;QACV,IAAI,EAAE,YAAY;QAClB,mBAAmB;QACnB,2CAA2C;QAC3C,+DAA+D;QAC/D,yCAAyC;QACzC,SAAS,EAAE,mBAAI,CAAC,IAAI,CAAC,0BAA0B,EAAE,kBAAkB,CAAC;KACrE;IACD,OAAO,EAAE;QACP,KAAK,EAAE,WAAW;QAClB,MAAM,EAAE,YAAY;QACpB,UAAU,EAAE,SAAS;QACrB,UAAU,EAAE;YACV,YAAY,EAAE,qCAAqC;YACnD,qCAAqC,EAAE,SAAS;SACjD;QACD,OAAO,EAAE,qCAAqC;QAC9C,OAAO,EAAE,WAAW;KACrB;IACD,QAAQ,EAAE;QACR,OAAO,EAAE,qCAAqC;QAC9C,OAAO,EAAE,WAAW;KACrB;CACF,CAAC;AAaF;;;;;GAKG;AACH,SAAS,kBAAkB,CAAC,IAAY;IACtC,OAAO,mBAAI,CAAC,IAAI,CAAC,yBAAiB,CAAC,UAAU,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;AACjE,CAAC;AAED;;;;;;;;;;GAUG;AACU,QAAA,wBAAwB,GAA6D;IAChG,KAAK,EAAE,CAAC,EAAE,IAAI,GAAG,yBAAiB,CAAC,UAAU,CAAC,IAAI,EAAE,GAAG,EAAE,EAAwB,EAAE,CACjF,wDAAiC,CAAC,MAAM,CACtC,kBAAkB,CAAC,IAAI,CAAC,EACxB,0CAAmB,CAAC,WAAW,CAChC;IAEH,MAAM,EAAE,KAAK,EAAE,UAAkC,EAAE,EAAwB,EAAE;QAC3E,MAAM,EAAE,IAAI,EAAE,6BAA6B,EAAE,GAAG,OAAO,CAAC;QACxD,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,yBAAiB,CAAC,QAAQ,CAAC;QACxD,MAAM,eAAe,GAAG,kBAAkB,CAAC,IAAI,IAAI,yBAAiB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QAEtF,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,MAAM,0CAAmB,CAAC,MAAM,CAAC,eAAe,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;YACxF,sGAAsG;YACtG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAC;YACzB,OAAO,WAAW,CAAC;QACrB,CAAC;QAAC,OAAO,CAAM,EAAE,CAAC;YAChB,4DAA4D;YAC5D,sFAAsF;YACtF,IAAI,CAAC,6BAA6B,EAAE,CAAC;gBACnC,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;YAC7D,CAAC;YACD,OAAO,sCAAe,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;IAED,KAAK,EAAE,KAAK,EAAE,UAAkC,EAAE,EAAwB,EAAE;QAC1E,MAAM,EAAE,IAAI,EAAE,6BAA6B,EAAE,GAAG,OAAO,CAAC;QACxD,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,yBAAiB,CAAC,OAAO,CAAC;QACvD,MAAM,eAAe,GAAG,kBAAkB,CAAC,IAAI,IAAI,yBAAiB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QAEtF,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,MAAM,2CAAoB,CAAC,MAAM,CAAC,eAAe,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;YACzF,qGAAqG;YACrG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAC;YACzB,OAAO,WAAW,CAAC;QACrB,CAAC;QAAC,OAAO,CAAM,EAAE,CAAC;YAChB,4DAA4D;YAC5D,sFAAsF;YACtF,IAAI,CAAC,6BAA6B,EAAE,CAAC;gBACnC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;YACzE,CAAC;YACD,OAAO,sCAAe,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;CACF,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\n/* eslint-disable tsdoc/syntax */\n\nimport path from \"node:path\";\nimport type { IPersistence as Persistence } from \"@azure/msal-node-extensions\";\nimport {\n  DataProtectionScope,\n  FilePersistence,\n  FilePersistenceWithDataProtection,\n  KeychainPersistence,\n  LibSecretPersistence,\n} from \"@azure/msal-node-extensions\";\nimport type { TokenCachePersistenceOptions } from \"@azure/identity\";\n\n/**\n * Local application data folder\n * Expected values:\n * - Darwin: '/Users/user/'\n * - Windows 8+: 'C:\\Users\\user\\AppData\\Local'\n * - Linux: '/home/user/.local/share'\n */\nconst localApplicationDataFolder =\n  process.env.APPDATA?.replace?.(/(.Roaming)*$/, \"\\\\Local\") ?? process.env.HOME!;\n\n/**\n * Dictionary of values that we use as default as we discover, pick and enable the persistence layer.\n * @internal\n */\nexport const defaultMsalValues = {\n  tokenCache: {\n    name: \"msal.cache\",\n    // Expected values:\n    // - Darwin: '/Users/user/.IdentityService'\n    // - Windows 8+: 'C:\\Users\\user\\AppData\\Local\\.IdentityService'\n    // - Linux: '/home/user/.IdentityService'\n    directory: path.join(localApplicationDataFolder, \".IdentityService\"),\n  },\n  keyRing: {\n    label: \"MSALCache\",\n    schema: \"msal.cache\",\n    collection: \"default\",\n    attributes: {\n      MsalClientID: \"Microsoft.Developer.IdentityService\",\n      \"Microsoft.Developer.IdentityService\": \"1.0.0.0\",\n    },\n    service: \"Microsoft.Developer.IdentityService\",\n    account: \"MSALCache\",\n  },\n  keyChain: {\n    service: \"Microsoft.Developer.IdentityService\",\n    account: \"MSALCache\",\n  },\n};\n\n/**\n * Options that are used by the underlying MSAL cache provider.\n * @internal\n */\nexport type MsalPersistenceOptions = Omit<TokenCachePersistenceOptions, \"enabled\">;\n\n/**\n * A function that returns a persistent token cache instance.\n */\ntype MsalPersistenceFactory = (options?: MsalPersistenceOptions) => Promise<Persistence>;\n\n/**\n * Expected responses:\n * - Darwin: '/Users/user/.IdentityService/<name>'\n * - Windows 8+: 'C:\\Users\\user\\AppData\\Local\\.IdentityService\\<name>'\n * - Linux: '/home/user/.IdentityService/<name>'\n */\nfunction getPersistencePath(name: string): string {\n  return path.join(defaultMsalValues.tokenCache.directory, name);\n}\n\n/**\n * Set of the platforms we attempt to deliver persistence on.\n *\n * - On Windows we use DPAPI.\n * - On OSX (Darwin), we try to use the system's Keychain, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.\n * - On Linux, we try to use the system's Keyring, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.\n *\n * Other platforms _are not supported_ at this time.\n *\n * @internal\n */\nexport const msalPersistencePlatforms: Partial<Record<NodeJS.Platform, MsalPersistenceFactory>> = {\n  win32: ({ name = defaultMsalValues.tokenCache.name } = {}): Promise<Persistence> =>\n    FilePersistenceWithDataProtection.create(\n      getPersistencePath(name),\n      DataProtectionScope.CurrentUser,\n    ),\n\n  darwin: async (options: MsalPersistenceOptions = {}): Promise<Persistence> => {\n    const { name, unsafeAllowUnencryptedStorage } = options;\n    const { service, account } = defaultMsalValues.keyChain;\n    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);\n\n    try {\n      const persistence = await KeychainPersistence.create(persistencePath, service, account);\n      // If we don't encounter an error when trying to read from the keychain, then we should be good to go.\n      await persistence.load();\n      return persistence;\n    } catch (e: any) {\n      // If we got an error while trying to read from the keyring,\n      // we will proceed only if the user has specified that unencrypted storage is allowed.\n      if (!unsafeAllowUnencryptedStorage) {\n        throw new Error(\"Unable to read from the macOS Keychain.\");\n      }\n      return FilePersistence.create(persistencePath);\n    }\n  },\n\n  linux: async (options: MsalPersistenceOptions = {}): Promise<Persistence> => {\n    const { name, unsafeAllowUnencryptedStorage } = options;\n    const { service, account } = defaultMsalValues.keyRing;\n    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);\n\n    try {\n      const persistence = await LibSecretPersistence.create(persistencePath, service, account);\n      // If we don't encounter an error when trying to read from the keyring, then we should be good to go.\n      await persistence.load();\n      return persistence;\n    } catch (e: any) {\n      // If we got an error while trying to read from the keyring,\n      // we will proceed only if the user has specified that unencrypted storage is allowed.\n      if (!unsafeAllowUnencryptedStorage) {\n        throw new Error(\"Unable to read from the system keyring (libsecret).\");\n      }\n      return FilePersistence.create(persistencePath);\n    }\n  },\n};\n"]}
+{
+  "version": 3,
+  "sources": ["/mnt/vss/_work/1/s/sdk/identity/identity-cache-persistence/src/platforms.ts"],
+  "sourcesContent": ["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\n/* eslint-disable tsdoc/syntax */\n\nimport path from \"node:path\";\nimport type { IPersistence as Persistence } from \"@azure/msal-node-extensions\";\nimport {\n  DataProtectionScope,\n  FilePersistence,\n  FilePersistenceWithDataProtection,\n  KeychainPersistence,\n  LibSecretPersistence,\n} from \"@azure/msal-node-extensions\";\nimport type { TokenCachePersistenceOptions } from \"@azure/identity\";\n\n/**\n * Local application data folder\n * Expected values:\n * - Darwin: '/Users/user/'\n * - Windows 8+: 'C:\\Users\\user\\AppData\\Local'\n * - Linux: '/home/user/.local/share'\n */\nconst localApplicationDataFolder =\n  process.env.APPDATA?.replace?.(/(.Roaming)*$/, \"\\\\Local\") ?? process.env.HOME!;\n\n/**\n * Dictionary of values that we use as default as we discover, pick and enable the persistence layer.\n * @internal\n */\nexport const defaultMsalValues = {\n  tokenCache: {\n    name: \"msal.cache\",\n    // Expected values:\n    // - Darwin: '/Users/user/.IdentityService'\n    // - Windows 8+: 'C:\\Users\\user\\AppData\\Local\\.IdentityService'\n    // - Linux: '/home/user/.IdentityService'\n    directory: path.join(localApplicationDataFolder, \".IdentityService\"),\n  },\n  keyRing: {\n    label: \"MSALCache\",\n    schema: \"msal.cache\",\n    collection: \"default\",\n    attributes: {\n      MsalClientID: \"Microsoft.Developer.IdentityService\",\n      \"Microsoft.Developer.IdentityService\": \"1.0.0.0\",\n    },\n    service: \"Microsoft.Developer.IdentityService\",\n    account: \"MSALCache\",\n  },\n  keyChain: {\n    service: \"Microsoft.Developer.IdentityService\",\n    account: \"MSALCache\",\n  },\n};\n\n/**\n * Options that are used by the underlying MSAL cache provider.\n * @internal\n */\nexport type MsalPersistenceOptions = Omit<TokenCachePersistenceOptions, \"enabled\">;\n\n/**\n * A function that returns a persistent token cache instance.\n */\ntype MsalPersistenceFactory = (options?: MsalPersistenceOptions) => Promise<Persistence>;\n\n/**\n * Expected responses:\n * - Darwin: '/Users/user/.IdentityService/<name>'\n * - Windows 8+: 'C:\\Users\\user\\AppData\\Local\\.IdentityService\\<name>'\n * - Linux: '/home/user/.IdentityService/<name>'\n */\nfunction getPersistencePath(name: string): string {\n  return path.join(defaultMsalValues.tokenCache.directory, name);\n}\n\n/**\n * Set of the platforms we attempt to deliver persistence on.\n *\n * - On Windows we use DPAPI.\n * - On OSX (Darwin), we try to use the system's Keychain, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.\n * - On Linux, we try to use the system's Keyring, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.\n *\n * Other platforms _are not supported_ at this time.\n *\n * @internal\n */\nexport const msalPersistencePlatforms: Partial<Record<NodeJS.Platform, MsalPersistenceFactory>> = {\n  win32: ({ name = defaultMsalValues.tokenCache.name } = {}): Promise<Persistence> =>\n    FilePersistenceWithDataProtection.create(\n      getPersistencePath(name),\n      DataProtectionScope.CurrentUser,\n    ),\n\n  darwin: async (options: MsalPersistenceOptions = {}): Promise<Persistence> => {\n    const { name, unsafeAllowUnencryptedStorage } = options;\n    const { service, account } = defaultMsalValues.keyChain;\n    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);\n\n    try {\n      const persistence = await KeychainPersistence.create(persistencePath, service, account);\n      // If we don't encounter an error when trying to read from the keychain, then we should be good to go.\n      await persistence.load();\n      return persistence;\n    } catch (e: any) {\n      // If we got an error while trying to read from the keyring,\n      // we will proceed only if the user has specified that unencrypted storage is allowed.\n      if (!unsafeAllowUnencryptedStorage) {\n        throw new Error(\"Unable to read from the macOS Keychain.\");\n      }\n      return FilePersistence.create(persistencePath);\n    }\n  },\n\n  linux: async (options: MsalPersistenceOptions = {}): Promise<Persistence> => {\n    const { name, unsafeAllowUnencryptedStorage } = options;\n    const { service, account } = defaultMsalValues.keyRing;\n    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);\n\n    try {\n      const persistence = await LibSecretPersistence.create(persistencePath, service, account);\n      // If we don't encounter an error when trying to read from the keyring, then we should be good to go.\n      await persistence.load();\n      return persistence;\n    } catch (e: any) {\n      // If we got an error while trying to read from the keyring,\n      // we will proceed only if the user has specified that unencrypted storage is allowed.\n      if (!unsafeAllowUnencryptedStorage) {\n        throw new Error(\"Unable to read from the system keyring (libsecret).\");\n      }\n      return FilePersistence.create(persistencePath);\n    }\n  },\n};\n"],
+  "mappings": ";;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAKA,uBAAiB;AAEjB,kCAMO;AAUP,MAAM,6BACJ,QAAQ,IAAI,SAAS,UAAU,gBAAgB,SAAS,KAAK,QAAQ,IAAI;AAMpE,MAAM,oBAAoB;AAAA,EAC/B,YAAY;AAAA,IACV,MAAM;AAAA;AAAA;AAAA;AAAA;AAAA,IAKN,WAAW,iBAAAA,QAAK,KAAK,4BAA4B,kBAAkB;AAAA,EACrE;AAAA,EACA,SAAS;AAAA,IACP,OAAO;AAAA,IACP,QAAQ;AAAA,IACR,YAAY;AAAA,IACZ,YAAY;AAAA,MACV,cAAc;AAAA,MACd,uCAAuC;AAAA,IACzC;AAAA,IACA,SAAS;AAAA,IACT,SAAS;AAAA,EACX;AAAA,EACA,UAAU;AAAA,IACR,SAAS;AAAA,IACT,SAAS;AAAA,EACX;AACF;AAmBA,SAAS,mBAAmB,MAAsB;AAChD,SAAO,iBAAAA,QAAK,KAAK,kBAAkB,WAAW,WAAW,IAAI;AAC/D;AAaO,MAAM,2BAAqF;AAAA,EAChG,OAAO,CAAC,EAAE,OAAO,kBAAkB,WAAW,KAAK,IAAI,CAAC,MACtD,8DAAkC;AAAA,IAChC,mBAAmB,IAAI;AAAA,IACvB,gDAAoB;AAAA,EACtB;AAAA,EAEF,QAAQ,OAAO,UAAkC,CAAC,MAA4B;AAC5E,UAAM,EAAE,MAAM,8BAA8B,IAAI;AAChD,UAAM,EAAE,SAAS,QAAQ,IAAI,kBAAkB;AAC/C,UAAM,kBAAkB,mBAAmB,QAAQ,kBAAkB,WAAW,IAAI;AAEpF,QAAI;AACF,YAAM,cAAc,MAAM,gDAAoB,OAAO,iBAAiB,SAAS,OAAO;AAEtF,YAAM,YAAY,KAAK;AACvB,aAAO;AAAA,IACT,SAAS,GAAQ;AAGf,UAAI,CAAC,+BAA+B;AAClC,cAAM,IAAI,MAAM,yCAAyC;AAAA,MAC3D;AACA,aAAO,4CAAgB,OAAO,eAAe;AAAA,IAC/C;AAAA,EACF;AAAA,EAEA,OAAO,OAAO,UAAkC,CAAC,MAA4B;AAC3E,UAAM,EAAE,MAAM,8BAA8B,IAAI;AAChD,UAAM,EAAE,SAAS,QAAQ,IAAI,kBAAkB;AAC/C,UAAM,kBAAkB,mBAAmB,QAAQ,kBAAkB,WAAW,IAAI;AAEpF,QAAI;AACF,YAAM,cAAc,MAAM,iDAAqB,OAAO,iBAAiB,SAAS,OAAO;AAEvF,YAAM,YAAY,KAAK;AACvB,aAAO;AAAA,IACT,SAAS,GAAQ;AAGf,UAAI,CAAC,+BAA+B;AAClC,cAAM,IAAI,MAAM,qDAAqD;AAAA,MACvE;AACA,aAAO,4CAAgB,OAAO,eAAe;AAAA,IAC/C;AAAA,EACF;AACF;",
+  "names": ["path"]
+}

package/dist/commonjs/provider.js

@@ -1,29 +1,44 @@
-"use strict";
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT License.
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createPersistence = createPersistence;
-exports.createPersistenceCachePlugin = createPersistenceCachePlugin;
-const platforms_js_1 = require("./platforms.js");
-const msal_node_extensions_1 = require("@azure/msal-node-extensions");
-/**
- * This is used to gain access to the underlying Persistence instance, which we use for testing
- *
- * @returns a raw persistence instance
- * @internal
- */
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var provider_exports = {};
+__export(provider_exports, {
+  createPersistence: () => createPersistence,
+  createPersistenceCachePlugin: () => createPersistenceCachePlugin
+});
+module.exports = __toCommonJS(provider_exports);
+var import_platforms = require("./platforms.js");
+var import_msal_node_extensions = require("@azure/msal-node-extensions");
 async function createPersistence(options) {
-    const persistence = await platforms_js_1.msalPersistencePlatforms[process.platform]?.(options);
-    if (persistence === undefined) {
-        throw new Error("no persistence providers are available on this platform");
-    }
-    return persistence;
+  const persistence = await import_platforms.msalPersistencePlatforms[process.platform]?.(options);
+  if (persistence === void 0) {
+    throw new Error("no persistence providers are available on this platform");
+  }
+  return persistence;
 }
 async function createPersistenceCachePlugin(options) {
-    const persistence = await createPersistence(options ?? {});
-    return new msal_node_extensions_1.PersistenceCachePlugin(persistence, {
-        retryNumber: 100,
-        retryDelay: 50,
-    });
+  const persistence = await createPersistence(options ?? {});
+  return new import_msal_node_extensions.PersistenceCachePlugin(persistence, {
+    retryNumber: 100,
+    retryDelay: 50
+  });
 }
-//# sourceMappingURL=provider.js.map
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  createPersistence,
+  createPersistenceCachePlugin
+});

package/dist/commonjs/provider.js.map

@@ -1 +1,7 @@
-{"version":3,"file":"provider.js","sourceRoot":"","sources":["../../src/provider.ts"],"names":[],"mappings":";AAAA,uCAAuC;AACvC,kCAAkC;;AAclC,8CAQC;AAED,oEASC;AA9BD,iDAA0D;AAE1D,sEAAqE;AAGrE;;;;;GAKG;AACI,KAAK,UAAU,iBAAiB,CAAC,OAA+B;IACrE,MAAM,WAAW,GAAG,MAAM,uCAAwB,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC;IAEhF,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;IAC7E,CAAC;IAED,OAAO,WAAW,CAAC;AACrB,CAAC;AAEM,KAAK,UAAU,4BAA4B,CAChD,OAAgC;IAEhC,MAAM,WAAW,GAAG,MAAM,iBAAiB,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC;IAE3D,OAAO,IAAI,6CAAsB,CAAC,WAAW,EAAE;QAC7C,WAAW,EAAE,GAAG;QAChB,UAAU,EAAE,EAAE;KACf,CAAC,CAAC;AACL,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { MsalPersistenceOptions } from \"./platforms.js\";\nimport { msalPersistencePlatforms } from \"./platforms.js\";\nimport type { IPersistence as Persistence } from \"@azure/msal-node-extensions\";\nimport { PersistenceCachePlugin } from \"@azure/msal-node-extensions\";\nimport type { ICachePlugin as CachePlugin } from \"@azure/msal-node\";\n\n/**\n * This is used to gain access to the underlying Persistence instance, which we use for testing\n *\n * @returns a raw persistence instance\n * @internal\n */\nexport async function createPersistence(options: MsalPersistenceOptions): Promise<Persistence> {\n  const persistence = await msalPersistencePlatforms[process.platform]?.(options);\n\n  if (persistence === undefined) {\n    throw new Error(\"no persistence providers are available on this platform\");\n  }\n\n  return persistence;\n}\n\nexport async function createPersistenceCachePlugin(\n  options?: MsalPersistenceOptions,\n): Promise<CachePlugin> {\n  const persistence = await createPersistence(options ?? {});\n\n  return new PersistenceCachePlugin(persistence, {\n    retryNumber: 100,\n    retryDelay: 50,\n  });\n}\n"]}
+{
+  "version": 3,
+  "sources": ["/mnt/vss/_work/1/s/sdk/identity/identity-cache-persistence/src/provider.ts"],
+  "sourcesContent": ["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { MsalPersistenceOptions } from \"./platforms.js\";\nimport { msalPersistencePlatforms } from \"./platforms.js\";\nimport type { IPersistence as Persistence } from \"@azure/msal-node-extensions\";\nimport { PersistenceCachePlugin } from \"@azure/msal-node-extensions\";\nimport type { ICachePlugin as CachePlugin } from \"@azure/msal-node\";\n\n/**\n * This is used to gain access to the underlying Persistence instance, which we use for testing\n *\n * @returns a raw persistence instance\n * @internal\n */\nexport async function createPersistence(options: MsalPersistenceOptions): Promise<Persistence> {\n  const persistence = await msalPersistencePlatforms[process.platform]?.(options);\n\n  if (persistence === undefined) {\n    throw new Error(\"no persistence providers are available on this platform\");\n  }\n\n  return persistence;\n}\n\nexport async function createPersistenceCachePlugin(\n  options?: MsalPersistenceOptions,\n): Promise<CachePlugin> {\n  const persistence = await createPersistence(options ?? {});\n\n  return new PersistenceCachePlugin(persistence, {\n    retryNumber: 100,\n    retryDelay: 50,\n  });\n}\n"],
+  "mappings": ";;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAIA,uBAAyC;AAEzC,kCAAuC;AASvC,eAAsB,kBAAkB,SAAuD;AAC7F,QAAM,cAAc,MAAM,0CAAyB,QAAQ,QAAQ,IAAI,OAAO;AAE9E,MAAI,gBAAgB,QAAW;AAC7B,UAAM,IAAI,MAAM,yDAAyD;AAAA,EAC3E;AAEA,SAAO;AACT;AAEA,eAAsB,6BACpB,SACsB;AACtB,QAAM,cAAc,MAAM,kBAAkB,WAAW,CAAC,CAAC;AAEzD,SAAO,IAAI,mDAAuB,aAAa;AAAA,IAC7C,aAAa;AAAA,IACb,YAAY;AAAA,EACd,CAAC;AACH;",
+  "names": []
+}

package/dist/esm/index.js

@@ -1,36 +1,8 @@
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT License.
 import { createPersistenceCachePlugin } from "./provider.js";
-/**
- * A plugin that provides persistent token caching for `@azure/identity`
- * credentials. The plugin API is compatible with `@azure/identity` versions
- * 2.0.0 and later. Load this plugin using the `useIdentityPlugin`
- * function, imported from `@azure/identity`.
- *
- * In order to enable this functionality, you must also pass
- * `tokenCachePersistenceOptions` to your credential constructors with an
- * `enabled` property set to true.
- *
- * Example:
- *
- * ```ts snippet:ReadmeSampleDeviceCodeCredential
- * import { DeviceCodeCredential } from "@azure/identity";
- *
- * const credential = new DeviceCodeCredential({
- *   tokenCachePersistenceOptions: {
- *     enabled: true,
- *   },
- * });
- *
- * // We'll use the Microsoft Graph scope as an example
- * const scope = "https://graph.microsoft.com/.default";
- *
- * // Print out part of the access token
- * console.log((await credential.getToken(scope)).token.substring(0, 10), "...");
- * ```
- */
-export const cachePersistencePlugin = (context) => {
-    const { cachePluginControl } = context;
-    cachePluginControl.setPersistence(createPersistenceCachePlugin);
+const cachePersistencePlugin = (context) => {
+  const { cachePluginControl } = context;
+  cachePluginControl.setPersistence(createPersistenceCachePlugin);
+};
+export {
+  cachePersistencePlugin
 };
-//# sourceMappingURL=index.js.map

package/dist/esm/index.js.map

@@ -1 +1,7 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,4BAA4B,EAAE,MAAM,eAAe,CAAC;AAuB7D;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAEH,MAAM,CAAC,MAAM,sBAAsB,GAAmB,CAAC,OAAO,EAAE,EAAE;IAChE,MAAM,EAAE,kBAAkB,EAAE,GAAG,OAA6B,CAAC;IAE7D,kBAAkB,CAAC,cAAc,CAAC,4BAA4B,CAAC,CAAC;AAClE,CAAC,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { IdentityPlugin, TokenCachePersistenceOptions } from \"@azure/identity\";\nimport { createPersistenceCachePlugin } from \"./provider.js\";\n\n/**\n * Plugin context entries for controlling cache plugins.\n */\ninterface CachePluginControl {\n  setPersistence(\n    persistenceFactory: (\n      options?: TokenCachePersistenceOptions,\n      // eslint-disable-next-line @typescript-eslint/consistent-type-imports\n    ) => Promise<import(\"@azure/msal-node\").ICachePlugin>,\n  ): void;\n}\n/**\n * Context options passed to a plugin during initialization.\n *\n * Represents a subset of the context defined in `@azure/identity`\n *\n */\ninterface AzurePluginContext {\n  cachePluginControl: CachePluginControl;\n}\n\n/**\n * A plugin that provides persistent token caching for `@azure/identity`\n * credentials. The plugin API is compatible with `@azure/identity` versions\n * 2.0.0 and later. Load this plugin using the `useIdentityPlugin`\n * function, imported from `@azure/identity`.\n *\n * In order to enable this functionality, you must also pass\n * `tokenCachePersistenceOptions` to your credential constructors with an\n * `enabled` property set to true.\n *\n * Example:\n *\n * ```ts snippet:ReadmeSampleDeviceCodeCredential\n * import { DeviceCodeCredential } from \"@azure/identity\";\n *\n * const credential = new DeviceCodeCredential({\n *   tokenCachePersistenceOptions: {\n *     enabled: true,\n *   },\n * });\n *\n * // We'll use the Microsoft Graph scope as an example\n * const scope = \"https://graph.microsoft.com/.default\";\n *\n * // Print out part of the access token\n * console.log((await credential.getToken(scope)).token.substring(0, 10), \"...\");\n * ```\n */\n\nexport const cachePersistencePlugin: IdentityPlugin = (context) => {\n  const { cachePluginControl } = context as AzurePluginContext;\n\n  cachePluginControl.setPersistence(createPersistenceCachePlugin);\n};\n"]}
+{
+  "version": 3,
+  "sources": ["/mnt/vss/_work/1/s/sdk/identity/identity-cache-persistence/src/index.ts"],
+  "sourcesContent": ["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { IdentityPlugin, TokenCachePersistenceOptions } from \"@azure/identity\";\nimport { createPersistenceCachePlugin } from \"./provider.js\";\n\n/**\n * Plugin context entries for controlling cache plugins.\n */\ninterface CachePluginControl {\n  setPersistence(\n    persistenceFactory: (\n      options?: TokenCachePersistenceOptions,\n      // eslint-disable-next-line @typescript-eslint/consistent-type-imports\n    ) => Promise<import(\"@azure/msal-node\").ICachePlugin>,\n  ): void;\n}\n/**\n * Context options passed to a plugin during initialization.\n *\n * Represents a subset of the context defined in `@azure/identity`\n *\n */\ninterface AzurePluginContext {\n  cachePluginControl: CachePluginControl;\n}\n\n/**\n * A plugin that provides persistent token caching for `@azure/identity`\n * credentials. The plugin API is compatible with `@azure/identity` versions\n * 2.0.0 and later. Load this plugin using the `useIdentityPlugin`\n * function, imported from `@azure/identity`.\n *\n * In order to enable this functionality, you must also pass\n * `tokenCachePersistenceOptions` to your credential constructors with an\n * `enabled` property set to true.\n *\n * Example:\n *\n * ```ts snippet:ReadmeSampleDeviceCodeCredential\n * import { DeviceCodeCredential } from \"@azure/identity\";\n *\n * const credential = new DeviceCodeCredential({\n *   tokenCachePersistenceOptions: {\n *     enabled: true,\n *   },\n * });\n *\n * // We'll use the Microsoft Graph scope as an example\n * const scope = \"https://graph.microsoft.com/.default\";\n *\n * // Print out part of the access token\n * console.log((await credential.getToken(scope)).token.substring(0, 10), \"...\");\n * ```\n */\n\nexport const cachePersistencePlugin: IdentityPlugin = (context) => {\n  const { cachePluginControl } = context as AzurePluginContext;\n\n  cachePluginControl.setPersistence(createPersistenceCachePlugin);\n};\n"],
+  "mappings": "AAIA,SAAS,oCAAoC;AAoDtC,MAAM,yBAAyC,CAAC,YAAY;AACjE,QAAM,EAAE,mBAAmB,IAAI;AAE/B,qBAAmB,eAAe,4BAA4B;AAChE;",
+  "names": []
+}

package/dist/esm/platforms.js

@@ -1,104 +1,77 @@
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT License.
-/* eslint-disable tsdoc/syntax */
 import path from "node:path";
-import { DataProtectionScope, FilePersistence, FilePersistenceWithDataProtection, KeychainPersistence, LibSecretPersistence, } from "@azure/msal-node-extensions";
-/**
- * Local application data folder
- * Expected values:
- * - Darwin: '/Users/user/'
- * - Windows 8+: 'C:\Users\user\AppData\Local'
- * - Linux: '/home/user/.local/share'
- */
+import {
+  DataProtectionScope,
+  FilePersistence,
+  FilePersistenceWithDataProtection,
+  KeychainPersistence,
+  LibSecretPersistence
+} from "@azure/msal-node-extensions";
 const localApplicationDataFolder = process.env.APPDATA?.replace?.(/(.Roaming)*$/, "\\Local") ?? process.env.HOME;
-/**
- * Dictionary of values that we use as default as we discover, pick and enable the persistence layer.
- * @internal
- */
-export const defaultMsalValues = {
-    tokenCache: {
-        name: "msal.cache",
-        // Expected values:
-        // - Darwin: '/Users/user/.IdentityService'
-        // - Windows 8+: 'C:\Users\user\AppData\Local\.IdentityService'
-        // - Linux: '/home/user/.IdentityService'
-        directory: path.join(localApplicationDataFolder, ".IdentityService"),
-    },
-    keyRing: {
-        label: "MSALCache",
-        schema: "msal.cache",
-        collection: "default",
-        attributes: {
-            MsalClientID: "Microsoft.Developer.IdentityService",
-            "Microsoft.Developer.IdentityService": "1.0.0.0",
-        },
-        service: "Microsoft.Developer.IdentityService",
-        account: "MSALCache",
-    },
-    keyChain: {
-        service: "Microsoft.Developer.IdentityService",
-        account: "MSALCache",
+const defaultMsalValues = {
+  tokenCache: {
+    name: "msal.cache",
+    // Expected values:
+    // - Darwin: '/Users/user/.IdentityService'
+    // - Windows 8+: 'C:\Users\user\AppData\Local\.IdentityService'
+    // - Linux: '/home/user/.IdentityService'
+    directory: path.join(localApplicationDataFolder, ".IdentityService")
+  },
+  keyRing: {
+    label: "MSALCache",
+    schema: "msal.cache",
+    collection: "default",
+    attributes: {
+      MsalClientID: "Microsoft.Developer.IdentityService",
+      "Microsoft.Developer.IdentityService": "1.0.0.0"
     },
+    service: "Microsoft.Developer.IdentityService",
+    account: "MSALCache"
+  },
+  keyChain: {
+    service: "Microsoft.Developer.IdentityService",
+    account: "MSALCache"
+  }
 };
-/**
- * Expected responses:
- * - Darwin: '/Users/user/.IdentityService/<name>'
- * - Windows 8+: 'C:\Users\user\AppData\Local\.IdentityService\<name>'
- * - Linux: '/home/user/.IdentityService/<name>'
- */
 function getPersistencePath(name) {
-    return path.join(defaultMsalValues.tokenCache.directory, name);
+  return path.join(defaultMsalValues.tokenCache.directory, name);
 }
-/**
- * Set of the platforms we attempt to deliver persistence on.
- *
- * - On Windows we use DPAPI.
- * - On OSX (Darwin), we try to use the system's Keychain, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.
- * - On Linux, we try to use the system's Keyring, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.
- *
- * Other platforms _are not supported_ at this time.
- *
- * @internal
- */
-export const msalPersistencePlatforms = {
-    win32: ({ name = defaultMsalValues.tokenCache.name } = {}) => FilePersistenceWithDataProtection.create(getPersistencePath(name), DataProtectionScope.CurrentUser),
-    darwin: async (options = {}) => {
-        const { name, unsafeAllowUnencryptedStorage } = options;
-        const { service, account } = defaultMsalValues.keyChain;
-        const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);
-        try {
-            const persistence = await KeychainPersistence.create(persistencePath, service, account);
-            // If we don't encounter an error when trying to read from the keychain, then we should be good to go.
-            await persistence.load();
-            return persistence;
-        }
-        catch (e) {
-            // If we got an error while trying to read from the keyring,
-            // we will proceed only if the user has specified that unencrypted storage is allowed.
-            if (!unsafeAllowUnencryptedStorage) {
-                throw new Error("Unable to read from the macOS Keychain.");
-            }
-            return FilePersistence.create(persistencePath);
-        }
-    },
-    linux: async (options = {}) => {
-        const { name, unsafeAllowUnencryptedStorage } = options;
-        const { service, account } = defaultMsalValues.keyRing;
-        const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);
-        try {
-            const persistence = await LibSecretPersistence.create(persistencePath, service, account);
-            // If we don't encounter an error when trying to read from the keyring, then we should be good to go.
-            await persistence.load();
-            return persistence;
-        }
-        catch (e) {
-            // If we got an error while trying to read from the keyring,
-            // we will proceed only if the user has specified that unencrypted storage is allowed.
-            if (!unsafeAllowUnencryptedStorage) {
-                throw new Error("Unable to read from the system keyring (libsecret).");
-            }
-            return FilePersistence.create(persistencePath);
-        }
-    },
+const msalPersistencePlatforms = {
+  win32: ({ name = defaultMsalValues.tokenCache.name } = {}) => FilePersistenceWithDataProtection.create(
+    getPersistencePath(name),
+    DataProtectionScope.CurrentUser
+  ),
+  darwin: async (options = {}) => {
+    const { name, unsafeAllowUnencryptedStorage } = options;
+    const { service, account } = defaultMsalValues.keyChain;
+    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);
+    try {
+      const persistence = await KeychainPersistence.create(persistencePath, service, account);
+      await persistence.load();
+      return persistence;
+    } catch (e) {
+      if (!unsafeAllowUnencryptedStorage) {
+        throw new Error("Unable to read from the macOS Keychain.");
+      }
+      return FilePersistence.create(persistencePath);
+    }
+  },
+  linux: async (options = {}) => {
+    const { name, unsafeAllowUnencryptedStorage } = options;
+    const { service, account } = defaultMsalValues.keyRing;
+    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);
+    try {
+      const persistence = await LibSecretPersistence.create(persistencePath, service, account);
+      await persistence.load();
+      return persistence;
+    } catch (e) {
+      if (!unsafeAllowUnencryptedStorage) {
+        throw new Error("Unable to read from the system keyring (libsecret).");
+      }
+      return FilePersistence.create(persistencePath);
+    }
+  }
+};
+export {
+  defaultMsalValues,
+  msalPersistencePlatforms
 };
-//# sourceMappingURL=platforms.js.map

package/dist/esm/platforms.js.map

@@ -1 +1,7 @@
-{"version":3,"file":"platforms.js","sourceRoot":"","sources":["../../src/platforms.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAElC,iCAAiC;AAEjC,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EACL,mBAAmB,EACnB,eAAe,EACf,iCAAiC,EACjC,mBAAmB,EACnB,oBAAoB,GACrB,MAAM,6BAA6B,CAAC;AAGrC;;;;;;GAMG;AACH,MAAM,0BAA0B,GAC9B,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,EAAE,CAAC,cAAc,EAAE,SAAS,CAAC,IAAI,OAAO,CAAC,GAAG,CAAC,IAAK,CAAC;AAEjF;;;GAGG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG;IAC/B,UAAU,EAAE;QACV,IAAI,EAAE,YAAY;QAClB,mBAAmB;QACnB,2CAA2C;QAC3C,+DAA+D;QAC/D,yCAAyC;QACzC,SAAS,EAAE,IAAI,CAAC,IAAI,CAAC,0BAA0B,EAAE,kBAAkB,CAAC;KACrE;IACD,OAAO,EAAE;QACP,KAAK,EAAE,WAAW;QAClB,MAAM,EAAE,YAAY;QACpB,UAAU,EAAE,SAAS;QACrB,UAAU,EAAE;YACV,YAAY,EAAE,qCAAqC;YACnD,qCAAqC,EAAE,SAAS;SACjD;QACD,OAAO,EAAE,qCAAqC;QAC9C,OAAO,EAAE,WAAW;KACrB;IACD,QAAQ,EAAE;QACR,OAAO,EAAE,qCAAqC;QAC9C,OAAO,EAAE,WAAW;KACrB;CACF,CAAC;AAaF;;;;;GAKG;AACH,SAAS,kBAAkB,CAAC,IAAY;IACtC,OAAO,IAAI,CAAC,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;AACjE,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,CAAC,MAAM,wBAAwB,GAA6D;IAChG,KAAK,EAAE,CAAC,EAAE,IAAI,GAAG,iBAAiB,CAAC,UAAU,CAAC,IAAI,EAAE,GAAG,EAAE,EAAwB,EAAE,CACjF,iCAAiC,CAAC,MAAM,CACtC,kBAAkB,CAAC,IAAI,CAAC,EACxB,mBAAmB,CAAC,WAAW,CAChC;IAEH,MAAM,EAAE,KAAK,EAAE,UAAkC,EAAE,EAAwB,EAAE;QAC3E,MAAM,EAAE,IAAI,EAAE,6BAA6B,EAAE,GAAG,OAAO,CAAC;QACxD,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,iBAAiB,CAAC,QAAQ,CAAC;QACxD,MAAM,eAAe,GAAG,kBAAkB,CAAC,IAAI,IAAI,iBAAiB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QAEtF,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,MAAM,mBAAmB,CAAC,MAAM,CAAC,eAAe,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;YACxF,sGAAsG;YACtG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAC;YACzB,OAAO,WAAW,CAAC;QACrB,CAAC;QAAC,OAAO,CAAM,EAAE,CAAC;YAChB,4DAA4D;YAC5D,sFAAsF;YACtF,IAAI,CAAC,6BAA6B,EAAE,CAAC;gBACnC,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;YAC7D,CAAC;YACD,OAAO,eAAe,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;IAED,KAAK,EAAE,KAAK,EAAE,UAAkC,EAAE,EAAwB,EAAE;QAC1E,MAAM,EAAE,IAAI,EAAE,6BAA6B,EAAE,GAAG,OAAO,CAAC;QACxD,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,iBAAiB,CAAC,OAAO,CAAC;QACvD,MAAM,eAAe,GAAG,kBAAkB,CAAC,IAAI,IAAI,iBAAiB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QAEtF,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,MAAM,oBAAoB,CAAC,MAAM,CAAC,eAAe,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;YACzF,qGAAqG;YACrG,MAAM,WAAW,CAAC,IAAI,EAAE,CAAC;YACzB,OAAO,WAAW,CAAC;QACrB,CAAC;QAAC,OAAO,CAAM,EAAE,CAAC;YAChB,4DAA4D;YAC5D,sFAAsF;YACtF,IAAI,CAAC,6BAA6B,EAAE,CAAC;gBACnC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;YACzE,CAAC;YACD,OAAO,eAAe,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QACjD,CAAC;IACH,CAAC;CACF,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\n/* eslint-disable tsdoc/syntax */\n\nimport path from \"node:path\";\nimport type { IPersistence as Persistence } from \"@azure/msal-node-extensions\";\nimport {\n  DataProtectionScope,\n  FilePersistence,\n  FilePersistenceWithDataProtection,\n  KeychainPersistence,\n  LibSecretPersistence,\n} from \"@azure/msal-node-extensions\";\nimport type { TokenCachePersistenceOptions } from \"@azure/identity\";\n\n/**\n * Local application data folder\n * Expected values:\n * - Darwin: '/Users/user/'\n * - Windows 8+: 'C:\\Users\\user\\AppData\\Local'\n * - Linux: '/home/user/.local/share'\n */\nconst localApplicationDataFolder =\n  process.env.APPDATA?.replace?.(/(.Roaming)*$/, \"\\\\Local\") ?? process.env.HOME!;\n\n/**\n * Dictionary of values that we use as default as we discover, pick and enable the persistence layer.\n * @internal\n */\nexport const defaultMsalValues = {\n  tokenCache: {\n    name: \"msal.cache\",\n    // Expected values:\n    // - Darwin: '/Users/user/.IdentityService'\n    // - Windows 8+: 'C:\\Users\\user\\AppData\\Local\\.IdentityService'\n    // - Linux: '/home/user/.IdentityService'\n    directory: path.join(localApplicationDataFolder, \".IdentityService\"),\n  },\n  keyRing: {\n    label: \"MSALCache\",\n    schema: \"msal.cache\",\n    collection: \"default\",\n    attributes: {\n      MsalClientID: \"Microsoft.Developer.IdentityService\",\n      \"Microsoft.Developer.IdentityService\": \"1.0.0.0\",\n    },\n    service: \"Microsoft.Developer.IdentityService\",\n    account: \"MSALCache\",\n  },\n  keyChain: {\n    service: \"Microsoft.Developer.IdentityService\",\n    account: \"MSALCache\",\n  },\n};\n\n/**\n * Options that are used by the underlying MSAL cache provider.\n * @internal\n */\nexport type MsalPersistenceOptions = Omit<TokenCachePersistenceOptions, \"enabled\">;\n\n/**\n * A function that returns a persistent token cache instance.\n */\ntype MsalPersistenceFactory = (options?: MsalPersistenceOptions) => Promise<Persistence>;\n\n/**\n * Expected responses:\n * - Darwin: '/Users/user/.IdentityService/<name>'\n * - Windows 8+: 'C:\\Users\\user\\AppData\\Local\\.IdentityService\\<name>'\n * - Linux: '/home/user/.IdentityService/<name>'\n */\nfunction getPersistencePath(name: string): string {\n  return path.join(defaultMsalValues.tokenCache.directory, name);\n}\n\n/**\n * Set of the platforms we attempt to deliver persistence on.\n *\n * - On Windows we use DPAPI.\n * - On OSX (Darwin), we try to use the system's Keychain, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.\n * - On Linux, we try to use the system's Keyring, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.\n *\n * Other platforms _are not supported_ at this time.\n *\n * @internal\n */\nexport const msalPersistencePlatforms: Partial<Record<NodeJS.Platform, MsalPersistenceFactory>> = {\n  win32: ({ name = defaultMsalValues.tokenCache.name } = {}): Promise<Persistence> =>\n    FilePersistenceWithDataProtection.create(\n      getPersistencePath(name),\n      DataProtectionScope.CurrentUser,\n    ),\n\n  darwin: async (options: MsalPersistenceOptions = {}): Promise<Persistence> => {\n    const { name, unsafeAllowUnencryptedStorage } = options;\n    const { service, account } = defaultMsalValues.keyChain;\n    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);\n\n    try {\n      const persistence = await KeychainPersistence.create(persistencePath, service, account);\n      // If we don't encounter an error when trying to read from the keychain, then we should be good to go.\n      await persistence.load();\n      return persistence;\n    } catch (e: any) {\n      // If we got an error while trying to read from the keyring,\n      // we will proceed only if the user has specified that unencrypted storage is allowed.\n      if (!unsafeAllowUnencryptedStorage) {\n        throw new Error(\"Unable to read from the macOS Keychain.\");\n      }\n      return FilePersistence.create(persistencePath);\n    }\n  },\n\n  linux: async (options: MsalPersistenceOptions = {}): Promise<Persistence> => {\n    const { name, unsafeAllowUnencryptedStorage } = options;\n    const { service, account } = defaultMsalValues.keyRing;\n    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);\n\n    try {\n      const persistence = await LibSecretPersistence.create(persistencePath, service, account);\n      // If we don't encounter an error when trying to read from the keyring, then we should be good to go.\n      await persistence.load();\n      return persistence;\n    } catch (e: any) {\n      // If we got an error while trying to read from the keyring,\n      // we will proceed only if the user has specified that unencrypted storage is allowed.\n      if (!unsafeAllowUnencryptedStorage) {\n        throw new Error(\"Unable to read from the system keyring (libsecret).\");\n      }\n      return FilePersistence.create(persistencePath);\n    }\n  },\n};\n"]}
+{
+  "version": 3,
+  "sources": ["/mnt/vss/_work/1/s/sdk/identity/identity-cache-persistence/src/platforms.ts"],
+  "sourcesContent": ["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\n/* eslint-disable tsdoc/syntax */\n\nimport path from \"node:path\";\nimport type { IPersistence as Persistence } from \"@azure/msal-node-extensions\";\nimport {\n  DataProtectionScope,\n  FilePersistence,\n  FilePersistenceWithDataProtection,\n  KeychainPersistence,\n  LibSecretPersistence,\n} from \"@azure/msal-node-extensions\";\nimport type { TokenCachePersistenceOptions } from \"@azure/identity\";\n\n/**\n * Local application data folder\n * Expected values:\n * - Darwin: '/Users/user/'\n * - Windows 8+: 'C:\\Users\\user\\AppData\\Local'\n * - Linux: '/home/user/.local/share'\n */\nconst localApplicationDataFolder =\n  process.env.APPDATA?.replace?.(/(.Roaming)*$/, \"\\\\Local\") ?? process.env.HOME!;\n\n/**\n * Dictionary of values that we use as default as we discover, pick and enable the persistence layer.\n * @internal\n */\nexport const defaultMsalValues = {\n  tokenCache: {\n    name: \"msal.cache\",\n    // Expected values:\n    // - Darwin: '/Users/user/.IdentityService'\n    // - Windows 8+: 'C:\\Users\\user\\AppData\\Local\\.IdentityService'\n    // - Linux: '/home/user/.IdentityService'\n    directory: path.join(localApplicationDataFolder, \".IdentityService\"),\n  },\n  keyRing: {\n    label: \"MSALCache\",\n    schema: \"msal.cache\",\n    collection: \"default\",\n    attributes: {\n      MsalClientID: \"Microsoft.Developer.IdentityService\",\n      \"Microsoft.Developer.IdentityService\": \"1.0.0.0\",\n    },\n    service: \"Microsoft.Developer.IdentityService\",\n    account: \"MSALCache\",\n  },\n  keyChain: {\n    service: \"Microsoft.Developer.IdentityService\",\n    account: \"MSALCache\",\n  },\n};\n\n/**\n * Options that are used by the underlying MSAL cache provider.\n * @internal\n */\nexport type MsalPersistenceOptions = Omit<TokenCachePersistenceOptions, \"enabled\">;\n\n/**\n * A function that returns a persistent token cache instance.\n */\ntype MsalPersistenceFactory = (options?: MsalPersistenceOptions) => Promise<Persistence>;\n\n/**\n * Expected responses:\n * - Darwin: '/Users/user/.IdentityService/<name>'\n * - Windows 8+: 'C:\\Users\\user\\AppData\\Local\\.IdentityService\\<name>'\n * - Linux: '/home/user/.IdentityService/<name>'\n */\nfunction getPersistencePath(name: string): string {\n  return path.join(defaultMsalValues.tokenCache.directory, name);\n}\n\n/**\n * Set of the platforms we attempt to deliver persistence on.\n *\n * - On Windows we use DPAPI.\n * - On OSX (Darwin), we try to use the system's Keychain, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.\n * - On Linux, we try to use the system's Keyring, otherwise if the property `unsafeAllowUnencryptedStorage` is set to true, we use an unencrypted file.\n *\n * Other platforms _are not supported_ at this time.\n *\n * @internal\n */\nexport const msalPersistencePlatforms: Partial<Record<NodeJS.Platform, MsalPersistenceFactory>> = {\n  win32: ({ name = defaultMsalValues.tokenCache.name } = {}): Promise<Persistence> =>\n    FilePersistenceWithDataProtection.create(\n      getPersistencePath(name),\n      DataProtectionScope.CurrentUser,\n    ),\n\n  darwin: async (options: MsalPersistenceOptions = {}): Promise<Persistence> => {\n    const { name, unsafeAllowUnencryptedStorage } = options;\n    const { service, account } = defaultMsalValues.keyChain;\n    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);\n\n    try {\n      const persistence = await KeychainPersistence.create(persistencePath, service, account);\n      // If we don't encounter an error when trying to read from the keychain, then we should be good to go.\n      await persistence.load();\n      return persistence;\n    } catch (e: any) {\n      // If we got an error while trying to read from the keyring,\n      // we will proceed only if the user has specified that unencrypted storage is allowed.\n      if (!unsafeAllowUnencryptedStorage) {\n        throw new Error(\"Unable to read from the macOS Keychain.\");\n      }\n      return FilePersistence.create(persistencePath);\n    }\n  },\n\n  linux: async (options: MsalPersistenceOptions = {}): Promise<Persistence> => {\n    const { name, unsafeAllowUnencryptedStorage } = options;\n    const { service, account } = defaultMsalValues.keyRing;\n    const persistencePath = getPersistencePath(name || defaultMsalValues.tokenCache.name);\n\n    try {\n      const persistence = await LibSecretPersistence.create(persistencePath, service, account);\n      // If we don't encounter an error when trying to read from the keyring, then we should be good to go.\n      await persistence.load();\n      return persistence;\n    } catch (e: any) {\n      // If we got an error while trying to read from the keyring,\n      // we will proceed only if the user has specified that unencrypted storage is allowed.\n      if (!unsafeAllowUnencryptedStorage) {\n        throw new Error(\"Unable to read from the system keyring (libsecret).\");\n      }\n      return FilePersistence.create(persistencePath);\n    }\n  },\n};\n"],
+  "mappings": "AAKA,OAAO,UAAU;AAEjB;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAUP,MAAM,6BACJ,QAAQ,IAAI,SAAS,UAAU,gBAAgB,SAAS,KAAK,QAAQ,IAAI;AAMpE,MAAM,oBAAoB;AAAA,EAC/B,YAAY;AAAA,IACV,MAAM;AAAA;AAAA;AAAA;AAAA;AAAA,IAKN,WAAW,KAAK,KAAK,4BAA4B,kBAAkB;AAAA,EACrE;AAAA,EACA,SAAS;AAAA,IACP,OAAO;AAAA,IACP,QAAQ;AAAA,IACR,YAAY;AAAA,IACZ,YAAY;AAAA,MACV,cAAc;AAAA,MACd,uCAAuC;AAAA,IACzC;AAAA,IACA,SAAS;AAAA,IACT,SAAS;AAAA,EACX;AAAA,EACA,UAAU;AAAA,IACR,SAAS;AAAA,IACT,SAAS;AAAA,EACX;AACF;AAmBA,SAAS,mBAAmB,MAAsB;AAChD,SAAO,KAAK,KAAK,kBAAkB,WAAW,WAAW,IAAI;AAC/D;AAaO,MAAM,2BAAqF;AAAA,EAChG,OAAO,CAAC,EAAE,OAAO,kBAAkB,WAAW,KAAK,IAAI,CAAC,MACtD,kCAAkC;AAAA,IAChC,mBAAmB,IAAI;AAAA,IACvB,oBAAoB;AAAA,EACtB;AAAA,EAEF,QAAQ,OAAO,UAAkC,CAAC,MAA4B;AAC5E,UAAM,EAAE,MAAM,8BAA8B,IAAI;AAChD,UAAM,EAAE,SAAS,QAAQ,IAAI,kBAAkB;AAC/C,UAAM,kBAAkB,mBAAmB,QAAQ,kBAAkB,WAAW,IAAI;AAEpF,QAAI;AACF,YAAM,cAAc,MAAM,oBAAoB,OAAO,iBAAiB,SAAS,OAAO;AAEtF,YAAM,YAAY,KAAK;AACvB,aAAO;AAAA,IACT,SAAS,GAAQ;AAGf,UAAI,CAAC,+BAA+B;AAClC,cAAM,IAAI,MAAM,yCAAyC;AAAA,MAC3D;AACA,aAAO,gBAAgB,OAAO,eAAe;AAAA,IAC/C;AAAA,EACF;AAAA,EAEA,OAAO,OAAO,UAAkC,CAAC,MAA4B;AAC3E,UAAM,EAAE,MAAM,8BAA8B,IAAI;AAChD,UAAM,EAAE,SAAS,QAAQ,IAAI,kBAAkB;AAC/C,UAAM,kBAAkB,mBAAmB,QAAQ,kBAAkB,WAAW,IAAI;AAEpF,QAAI;AACF,YAAM,cAAc,MAAM,qBAAqB,OAAO,iBAAiB,SAAS,OAAO;AAEvF,YAAM,YAAY,KAAK;AACvB,aAAO;AAAA,IACT,SAAS,GAAQ;AAGf,UAAI,CAAC,+BAA+B;AAClC,cAAM,IAAI,MAAM,qDAAqD;AAAA,MACvE;AACA,aAAO,gBAAgB,OAAO,eAAe;AAAA,IAC/C;AAAA,EACF;AACF;",
+  "names": []
+}

package/dist/esm/provider.js

@@ -1,25 +1,20 @@
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT License.
 import { msalPersistencePlatforms } from "./platforms.js";
 import { PersistenceCachePlugin } from "@azure/msal-node-extensions";
-/**
- * This is used to gain access to the underlying Persistence instance, which we use for testing
- *
- * @returns a raw persistence instance
- * @internal
- */
-export async function createPersistence(options) {
-    const persistence = await msalPersistencePlatforms[process.platform]?.(options);
-    if (persistence === undefined) {
-        throw new Error("no persistence providers are available on this platform");
-    }
-    return persistence;
+async function createPersistence(options) {
+  const persistence = await msalPersistencePlatforms[process.platform]?.(options);
+  if (persistence === void 0) {
+    throw new Error("no persistence providers are available on this platform");
+  }
+  return persistence;
 }
-export async function createPersistenceCachePlugin(options) {
-    const persistence = await createPersistence(options ?? {});
-    return new PersistenceCachePlugin(persistence, {
-        retryNumber: 100,
-        retryDelay: 50,
-    });
+async function createPersistenceCachePlugin(options) {
+  const persistence = await createPersistence(options ?? {});
+  return new PersistenceCachePlugin(persistence, {
+    retryNumber: 100,
+    retryDelay: 50
+  });
 }
-//# sourceMappingURL=provider.js.map
+export {
+  createPersistence,
+  createPersistenceCachePlugin
+};

package/dist/esm/provider.js.map

@@ -1 +1,7 @@
-{"version":3,"file":"provider.js","sourceRoot":"","sources":["../../src/provider.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,wBAAwB,EAAE,MAAM,gBAAgB,CAAC;AAE1D,OAAO,EAAE,sBAAsB,EAAE,MAAM,6BAA6B,CAAC;AAGrE;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,OAA+B;IACrE,MAAM,WAAW,GAAG,MAAM,wBAAwB,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC;IAEhF,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;IAC7E,CAAC;IAED,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,4BAA4B,CAChD,OAAgC;IAEhC,MAAM,WAAW,GAAG,MAAM,iBAAiB,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC;IAE3D,OAAO,IAAI,sBAAsB,CAAC,WAAW,EAAE;QAC7C,WAAW,EAAE,GAAG;QAChB,UAAU,EAAE,EAAE;KACf,CAAC,CAAC;AACL,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { MsalPersistenceOptions } from \"./platforms.js\";\nimport { msalPersistencePlatforms } from \"./platforms.js\";\nimport type { IPersistence as Persistence } from \"@azure/msal-node-extensions\";\nimport { PersistenceCachePlugin } from \"@azure/msal-node-extensions\";\nimport type { ICachePlugin as CachePlugin } from \"@azure/msal-node\";\n\n/**\n * This is used to gain access to the underlying Persistence instance, which we use for testing\n *\n * @returns a raw persistence instance\n * @internal\n */\nexport async function createPersistence(options: MsalPersistenceOptions): Promise<Persistence> {\n  const persistence = await msalPersistencePlatforms[process.platform]?.(options);\n\n  if (persistence === undefined) {\n    throw new Error(\"no persistence providers are available on this platform\");\n  }\n\n  return persistence;\n}\n\nexport async function createPersistenceCachePlugin(\n  options?: MsalPersistenceOptions,\n): Promise<CachePlugin> {\n  const persistence = await createPersistence(options ?? {});\n\n  return new PersistenceCachePlugin(persistence, {\n    retryNumber: 100,\n    retryDelay: 50,\n  });\n}\n"]}
+{
+  "version": 3,
+  "sources": ["/mnt/vss/_work/1/s/sdk/identity/identity-cache-persistence/src/provider.ts"],
+  "sourcesContent": ["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { MsalPersistenceOptions } from \"./platforms.js\";\nimport { msalPersistencePlatforms } from \"./platforms.js\";\nimport type { IPersistence as Persistence } from \"@azure/msal-node-extensions\";\nimport { PersistenceCachePlugin } from \"@azure/msal-node-extensions\";\nimport type { ICachePlugin as CachePlugin } from \"@azure/msal-node\";\n\n/**\n * This is used to gain access to the underlying Persistence instance, which we use for testing\n *\n * @returns a raw persistence instance\n * @internal\n */\nexport async function createPersistence(options: MsalPersistenceOptions): Promise<Persistence> {\n  const persistence = await msalPersistencePlatforms[process.platform]?.(options);\n\n  if (persistence === undefined) {\n    throw new Error(\"no persistence providers are available on this platform\");\n  }\n\n  return persistence;\n}\n\nexport async function createPersistenceCachePlugin(\n  options?: MsalPersistenceOptions,\n): Promise<CachePlugin> {\n  const persistence = await createPersistence(options ?? {});\n\n  return new PersistenceCachePlugin(persistence, {\n    retryNumber: 100,\n    retryDelay: 50,\n  });\n}\n"],
+  "mappings": "AAIA,SAAS,gCAAgC;AAEzC,SAAS,8BAA8B;AASvC,eAAsB,kBAAkB,SAAuD;AAC7F,QAAM,cAAc,MAAM,yBAAyB,QAAQ,QAAQ,IAAI,OAAO;AAE9E,MAAI,gBAAgB,QAAW;AAC7B,UAAM,IAAI,MAAM,yDAAyD;AAAA,EAC3E;AAEA,SAAO;AACT;AAEA,eAAsB,6BACpB,SACsB;AACtB,QAAM,cAAc,MAAM,kBAAkB,WAAW,CAAC,CAAC;AAEzD,SAAO,IAAI,uBAAuB,aAAa;AAAA,IAC7C,aAAa;AAAA,IACb,YAAY;AAAA,EACd,CAAC;AACH;",
+  "names": []
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@azure/identity-cache-persistence",
-  "version": "1.2.2-alpha.20260227.2",
+  "version": "1.2.2-alpha.20260304.2",
   "sdk-type": "client",
   "description": "A secure, persistent token cache for Azure Identity credentials that uses the OS secret-management API",
   "main": "./dist/commonjs/index.js",
@@ -52,7 +52,6 @@
     "playwright": "^1.56.1",
     "prettier": "^3.6.2",
     "rimraf": "^6.1.0",
-    "tshy": "^3.0.3",
     "typescript": "~5.9.3",
     "vitest": "^4.0.8",
     "@azure-tools/test-recorder": "^4.1.1",
@@ -61,22 +60,6 @@
     "@azure/eslint-plugin-azure-sdk": "^3.0.0"
   },
   "type": "module",
-  "tshy": {
-    "project": "../../../tsconfig.src.build.json",
-    "exports": {
-      "./package.json": "./package.json",
-      ".": "./src/index.ts"
-    },
-    "dialects": [
-      "esm",
-      "commonjs"
-    ],
-    "esmDialects": [
-      "browser",
-      "react-native"
-    ],
-    "selfLink": false
-  },
   "browser": "./dist/browser/index.js",
   "exports": {
     "./package.json": "./package.json",