npm - @azure/identity - Versions diffs - 2.0.2-alpha.20211206.2 → 2.0.2-alpha.20211221.3 - Mend

@azure/identity 2.0.2-alpha.20211206.2 → 2.0.2-alpha.20211221.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of @azure/identity might be problematic. Click here for more details.

Files changed (86) hide show

package/dist/index.js CHANGED Viewed

@@ -62,7 +62,7 @@ class AuthenticationError extends Error {
     constructor(statusCode, errorBody) {
         let errorResponse = {
             error: "unknown",
-            errorDescription: "An unknown error occurred and no additional details are available."
+            errorDescription: "An unknown error occurred and no additional details are available.",
         };
         if (isErrorResponse(errorBody)) {
             errorResponse = convertOAuthErrorResponseToErrorResponse(errorBody);
@@ -78,13 +78,13 @@ class AuthenticationError extends Error {
                 if (statusCode === 400) {
                     errorResponse = {
                         error: "authority_not_found",
-                        errorDescription: "The specified authority URL was not found."
+                        errorDescription: "The specified authority URL was not found.",
                     };
                 }
                 else {
                     errorResponse = {
                         error: "unknown_error",
-                        errorDescription: `An unknown error has occurred. Response body:\n\n${errorBody}`
+                        errorDescription: `An unknown error has occurred. Response body:\n\n${errorBody}`,
                     };
                 }
             }
@@ -92,7 +92,7 @@ class AuthenticationError extends Error {
         else {
             errorResponse = {
                 error: "unknown_error",
-                errorDescription: "An unknown error occurred and no additional details are available."
+                errorDescription: "An unknown error occurred and no additional details are available.",
             };
         }
         super(`${errorResponse.error}(status code ${statusCode}).\nMore details:\n${errorResponse.errorDescription}`);
@@ -126,7 +126,7 @@ function convertOAuthErrorResponseToErrorResponse(errorBody) {
         correlationId: errorBody.correlation_id,
         errorCodes: errorBody.error_codes,
         timestamp: errorBody.timestamp,
-        traceId: errorBody.trace_id
+        traceId: errorBody.trace_id,
     };
 }
 /**
@@ -201,7 +201,7 @@ const DefaultAuthorityHost = exports.AzureAuthorityHosts.AzurePublicCloud;
  */
 const createSpan = coreTracing.createSpanFunction({
     packagePrefix: "",
-    namespace: "Microsoft.AAD"
+    namespace: "Microsoft.AAD",
 });
 /**
  * From: https://github.com/Azure/azure-sdk-for-js/blob/46139daa3317a0d12e8b55b02b9d9cdf1b2e762a/sdk/appconfiguration/app-configuration/src/internal/tracingHelpers.ts
@@ -221,14 +221,14 @@ async function trace(operationName, options, fn, createSpanFn = createSpan) {
         const result = await fn(updatedOptions, span);
         // otel 0.16+ needs this or else the code ends up being set as UNSET
         span.setStatus({
-            code: coreTracing.SpanStatusCode.OK
+            code: coreTracing.SpanStatusCode.OK,
         });
         return result;
     }
     catch (err) {
         span.setStatus({
             code: coreTracing.SpanStatusCode.ERROR,
-            message: err.message
+            message: err.message,
         });
         throw err;
     }
@@ -289,7 +289,7 @@ function credentialLoggerInstance(title, parent, log = logger) {
     return {
         title,
         fullTitle,
-        info
+        info,
     };
 }
 /**
@@ -341,7 +341,7 @@ class IdentityClient extends coreClient.ServiceClient {
             throw new Error("The authorityHost address must use the 'https' protocol.");
         }
         super(Object.assign(Object.assign({ requestContentType: "application/json; charset=utf-8" }, options), { userAgentOptions: {
-                userAgentPrefix
+                userAgentPrefix,
             }, baseUri }));
         this.authorityHost = baseUri;
         this.abortControllers = new Map();
@@ -362,9 +362,9 @@ class IdentityClient extends coreClient.ServiceClient {
             const token = {
                 accessToken: {
                     token: parsedBody.access_token,
-                    expiresOnTimestamp: expiresOnParser(parsedBody)
+                    expiresOnTimestamp: expiresOnParser(parsedBody),
                 },
-                refreshToken: parsedBody.refresh_token
+                refreshToken: parsedBody.refresh_token,
             };
             logger.info(`IdentityClient: [${request.url}] token acquired, expires on ${token.accessToken.expiresOnTimestamp}`);
             return token;
@@ -385,7 +385,7 @@ class IdentityClient extends coreClient.ServiceClient {
             grant_type: "refresh_token",
             client_id: clientId,
             refresh_token: refreshToken,
-            scope: scopes
+            scope: scopes,
         };
         if (clientSecret !== undefined) {
             refreshParams.client_secret = clientSecret;
@@ -400,9 +400,9 @@ class IdentityClient extends coreClient.ServiceClient {
                 abortSignal: options && options.abortSignal,
                 headers: coreRestPipeline.createHttpHeaders({
                     Accept: "application/json",
-                    "Content-Type": "application/x-www-form-urlencoded"
+                    "Content-Type": "application/x-www-form-urlencoded",
                 }),
-                tracingOptions: updatedOptions === null || updatedOptions === void 0 ? void 0 : updatedOptions.tracingOptions
+                tracingOptions: updatedOptions === null || updatedOptions === void 0 ? void 0 : updatedOptions.tracingOptions,
             });
             const response = await this.sendTokenRequest(request, expiresOnParser);
             logger.info(`IdentityClient: refreshed token for client ID: ${clientId}`);
@@ -417,7 +417,7 @@ class IdentityClient extends coreClient.ServiceClient {
                 logger.info(`IdentityClient: interaction required for client ID: ${clientId}`);
                 span.setStatus({
                     code: coreTracing.SpanStatusCode.ERROR,
-                    message: err.message
+                    message: err.message,
                 });
                 return null;
             }
@@ -425,7 +425,7 @@ class IdentityClient extends coreClient.ServiceClient {
                 logger.warning(`IdentityClient: failed refreshing token for client ID: ${clientId}: ${err}`);
                 span.setStatus({
                     code: coreTracing.SpanStatusCode.ERROR,
-                    message: err.message
+                    message: err.message,
                 });
                 throw err;
             }
@@ -455,7 +455,7 @@ class IdentityClient extends coreClient.ServiceClient {
         const controllers = [
             ...(this.abortControllers.get(key) || []),
             // MSAL passes no correlation ID to the get requests...
-            ...(this.abortControllers.get(noCorrelationId) || [])
+            ...(this.abortControllers.get(noCorrelationId) || []),
         ];
         if (!controllers.length) {
             return;
@@ -477,13 +477,13 @@ class IdentityClient extends coreClient.ServiceClient {
             method: "GET",
             body: options === null || options === void 0 ? void 0 : options.body,
             headers: coreRestPipeline.createHttpHeaders(options === null || options === void 0 ? void 0 : options.headers),
-            abortSignal: this.generateAbortSignal(noCorrelationId)
+            abortSignal: this.generateAbortSignal(noCorrelationId),
         });
         const response = await this.sendRequest(request);
         return {
             body: response.bodyAsText ? JSON.parse(response.bodyAsText) : undefined,
             headers: response.headers.toJSON(),
-            status: response.status
+            status: response.status,
         };
     }
     async sendPostRequestAsync(url, options) {
@@ -493,13 +493,13 @@ class IdentityClient extends coreClient.ServiceClient {
             body: options === null || options === void 0 ? void 0 : options.body,
             headers: coreRestPipeline.createHttpHeaders(options === null || options === void 0 ? void 0 : options.headers),
             // MSAL doesn't send the correlation ID on the get requests.
-            abortSignal: this.generateAbortSignal(this.getCorrelationId(options))
+            abortSignal: this.generateAbortSignal(this.getCorrelationId(options)),
         });
         const response = await this.sendRequest(request);
         return {
             body: response.bodyAsText ? JSON.parse(response.bodyAsText) : undefined,
             headers: response.headers.toJSON(),
-            status: response.status
+            status: response.status,
         };
     }
 }
@@ -544,7 +544,7 @@ function ensureValidMsalToken(scopes, logger, msalToken, getTokenOptions) {
         return new AuthenticationRequiredError({
             scopes: Array.isArray(scopes) ? scopes : [scopes],
             getTokenOptions,
-            message
+            message,
         });
     };
     if (!msalToken) {
@@ -641,7 +641,7 @@ class MsalBaseUtilities {
         this.logger.getToken.info(formatSuccess(scopes));
         return {
             token: result.accessToken,
-            expiresOnTimestamp: result.expiresOn.getTime()
+            expiresOnTimestamp: result.expiresOn.getTime(),
         };
     }
     /**
@@ -688,7 +688,7 @@ function msalToPublic(clientId, account) {
         tenantId: account.tenantId || DefaultTenantId,
         username: account.username,
         clientId,
-        version: LatestAuthenticationRecordVersion
+        version: LatestAuthenticationRecordVersion,
     };
     return record;
 }
@@ -893,7 +893,7 @@ let persistenceProvider = undefined;
 const msalNodeFlowCacheControl = {
     setPersistence(pluginProvider) {
         persistenceProvider = pluginProvider;
-    }
+    },
 };
 /**
  * MSAL partial base client for Node.js.
@@ -921,7 +921,7 @@ class MsalNode extends MsalBaseUtilities {
                 "Persistent token caching was requested, but no persistence provider was configured.",
                 "You must install the identity-cache-persistence plugin package (`npm install --save @azure/identity-cache-persistence`)",
                 "and enable it by importing `useIdentityPlugin` from `@azure/identity` and calling",
-                "`useIdentityPlugin(cachePersistencePlugin)` before using `tokenCachePersistenceOptions`."
+                "`useIdentityPlugin(cachePersistencePlugin)` before using `tokenCachePersistenceOptions`.",
             ].join(" "));
         }
         this.azureRegion = (_c = options.regionalAuthority) !== null && _c !== void 0 ? _c : process.env.AZURE_REGIONAL_AUTHORITY_NAME;
@@ -947,15 +947,15 @@ class MsalNode extends MsalBaseUtilities {
                 clientId,
                 authority,
                 knownAuthorities: getKnownAuthorities(tenantId, authority),
-                clientCapabilities
+                clientCapabilities,
             },
             // Cache is defined in this.prepare();
             system: {
                 networkClient: this.identityClient,
                 loggerOptions: {
-                    loggerCallback: defaultLoggerCallback(options.logger)
-                }
-            }
+                    loggerCallback: defaultLoggerCallback(options.logger),
+                },
+            },
         };
     }
     /**
@@ -974,7 +974,7 @@ class MsalNode extends MsalBaseUtilities {
         }
         if (this.createCachePlugin !== undefined) {
             this.msalConfig.cache = {
-                cachePlugin: await this.createCachePlugin()
+                cachePlugin: await this.createCachePlugin(),
             };
         }
         this.publicApp = new msalNode.PublicClientApplication(this.msalConfig);
@@ -1044,7 +1044,7 @@ To work with multiple accounts for the same Client ID and Tenant ID, please prov
             throw new AuthenticationRequiredError({
                 scopes,
                 getTokenOptions: options,
-                message: "Silent authentication failed. We couldn't retrieve an active account from the cache."
+                message: "Silent authentication failed. We couldn't retrieve an active account from the cache.",
             });
         }
         const silentRequest = {
@@ -1053,7 +1053,7 @@ To work with multiple accounts for the same Client ID and Tenant ID, please prov
             correlationId: options === null || options === void 0 ? void 0 : options.correlationId,
             scopes,
             authority: options === null || options === void 0 ? void 0 : options.authority,
-            claims: options === null || options === void 0 ? void 0 : options.claims
+            claims: options === null || options === void 0 ? void 0 : options.claims,
         };
         try {
             this.logger.info("Attempting to acquire token silently");
@@ -1084,7 +1084,7 @@ To work with multiple accounts for the same Client ID and Tenant ID, please prov
                 throw new AuthenticationRequiredError({
                     scopes,
                     getTokenOptions: options,
-                    message: "Automatic authentication has been disabled. You may call the authentication() method."
+                    message: "Automatic authentication has been disabled. You may call the authentication() method.",
                 });
             }
             this.logger.info(`Silent authentication failed, falling back to interactive method.`);
@@ -1101,11 +1101,11 @@ let findCredentials = undefined;
 const vsCodeCredentialControl = {
     setVsCodeCredentialFinder(finder) {
         findCredentials = finder;
-    }
+    },
 };
 // Map of unsupported Tenant IDs and the errors we will be throwing.
 const unsupportedTenantIds = {
-    adfs: "The VisualStudioCodeCredential does not support authentication with ADFS tenants."
+    adfs: "The VisualStudioCodeCredential does not support authentication with ADFS tenants.",
 };
 function checkUnsupportedTenant(tenantId) {
     // If the Tenant ID isn't supported, we throw.
@@ -1118,7 +1118,7 @@ const mapVSCodeAuthorityHosts = {
     AzureCloud: exports.AzureAuthorityHosts.AzurePublicCloud,
     AzureChina: exports.AzureAuthorityHosts.AzureChina,
     AzureGermanCloud: exports.AzureAuthorityHosts.AzureGermany,
-    AzureUSGovernment: exports.AzureAuthorityHosts.AzureGovernment
+    AzureUSGovernment: exports.AzureAuthorityHosts.AzureGovernment,
 };
 /**
  * Attempts to load a specific property from the VSCode configurations of the current OS.
@@ -1222,7 +1222,7 @@ class VisualStudioCodeCredential {
                 "No implementation of `VisualStudioCodeCredential` is available.",
                 "You must install the identity-vscode plugin package (`npm install --save-dev @azure/identity-vscode`)",
                 "and enable it by importing `useIdentityPlugin` from `@azure/identity` and calling",
-                "`useIdentityPlugin(vsCodePlugin)` before creating a `VisualStudioCodeCredential`."
+                "`useIdentityPlugin(vsCodePlugin)` before creating a `VisualStudioCodeCredential`.",
             ].join(" "));
         }
         let scopeString = typeof scopes === "string" ? scopes : scopes.join(" ");
@@ -1253,13 +1253,13 @@ class VisualStudioCodeCredential {
                 return tokenResponse.accessToken;
             }
             else {
-                const error = new CredentialUnavailableError("Could not retrieve the token associated with Visual Studio Code. Have you connected using the 'Azure Account' extension recently? To troubleshoot, visit https://aka.ms/azsdk/js/identity/visualstudiocodecredential/troubleshoot.");
+                const error = new CredentialUnavailableError("Could not retrieve the token associated with Visual Studio Code. Have you connected using the 'Azure Account' extension recently? To troubleshoot, visit https://aka.ms/azsdk/js/identity/vscodecredential/troubleshoot.");
                 logger$1.getToken.info(formatError(scopes, error));
                 throw error;
             }
         }
         else {
-            const error = new CredentialUnavailableError("Could not retrieve the token associated with Visual Studio Code. Did you connect using the 'Azure Account' extension? To troubleshoot, visit https://aka.ms/azsdk/js/identity/visualstudiocodecredential/troubleshoot.");
+            const error = new CredentialUnavailableError("Could not retrieve the token associated with Visual Studio Code. Did you connect using the 'Azure Account' extension? To troubleshoot, visit https://aka.ms/azsdk/js/identity/vscodecredential/troubleshoot.");
             logger$1.getToken.info(formatError(scopes, error));
             throw error;
         }
@@ -1274,7 +1274,7 @@ class VisualStudioCodeCredential {
  */
 const pluginContext = {
     cachePluginControl: msalNodeFlowCacheControl,
-    vsCodeCredentialControl: vsCodeCredentialControl
+    vsCodeCredentialControl: vsCodeCredentialControl,
 };
 /**
  * Extend Azure Identity with additional functionality. Pass a plugin from
@@ -1375,7 +1375,7 @@ class ChainedTokenCredential {
             const err = new AggregateAuthenticationError(errors, "ChainedTokenCredential authentication failed.");
             span.setStatus({
                 code: coreTracing.SpanStatusCode.ERROR,
-                message: err.message
+                message: err.message,
             });
             logger$2.getToken.info(formatError(scopes, err));
             throw err;
@@ -1448,7 +1448,7 @@ const cliCredentialInternals = {
                     "json",
                     "--resource",
                     resource,
-                    ...tenantSection
+                    ...tenantSection,
                 ], { cwd: cliCredentialInternals.getSafeWorkingDir(), shell: true }, (error, stdout, stderr) => {
                     resolve({ stdout: stdout, stderr: stderr, error });
                 });
@@ -1457,7 +1457,7 @@ const cliCredentialInternals = {
                 reject(err);
             }
         });
-    }
+    },
 };
 const logger$3 = credentialLogger("AzureCliCredential");
 /**
@@ -1522,7 +1522,7 @@ class AzureCliCredential {
                 logger$3.getToken.info(formatSuccess(scopes));
                 const returnValue = {
                     token: response.accessToken,
-                    expiresOnTimestamp: new Date(response.expiresOn).getTime()
+                    expiresOnTimestamp: new Date(response.expiresOn).getTime(),
                 };
                 return returnValue;
             }
@@ -1531,7 +1531,7 @@ class AzureCliCredential {
             const error = new Error(err.message || "Unknown error while trying to retrieve the access token");
             span.setStatus({
                 code: coreTracing.SpanStatusCode.ERROR,
-                message: error.message
+                message: error.message,
             });
             logger$3.getToken.info(formatError(scopes, error));
             throw error;
@@ -1566,7 +1566,7 @@ const processUtils = {
                 }
             });
         });
-    }
+    },
 };
 // Copyright (c) Microsoft Corporation.
@@ -1605,7 +1605,7 @@ async function runCommands(commands) {
  */
 const powerShellErrors = {
     login: "Run Connect-AzAccount to login",
-    installed: "The specified module 'Az.Accounts' with version '2.2.0' was not loaded because no valid module file was found in any module directory"
+    installed: "The specified module 'Az.Accounts' with version '2.2.0' was not loaded because no valid module file was found in any module directory",
 };
 /**
  * Messages to use when throwing in this credential.
@@ -1614,7 +1614,7 @@ const powerShellErrors = {
 const powerShellPublicErrorMessages = {
     login: "Please run 'Connect-AzAccount' from PowerShell to authenticate before using this credential.",
     installed: `The 'Az.Account' module >= 2.2.0 is not installed. Install the Azure Az PowerShell module with: "Install-Module -Name Az -Scope CurrentUser -Repository PSGallery -Force".`,
-    troubleshoot: `To troubleshoot, visit https://aka.ms/azsdk/js/identity/powershellcredential/troubleshoot.`
+    troubleshoot: `To troubleshoot, visit https://aka.ms/azsdk/js/identity/powershellcredential/troubleshoot.`,
 };
 // PowerShell Azure User not logged in error check.
 const isLoginError = (err) => err.message.match(`(.*)${powerShellErrors.login}(.*)`);
@@ -1672,13 +1672,13 @@ class AzurePowerShellCredential {
                 [
                     powerShellCommand,
                     "-Command",
-                    "Import-Module Az.Accounts -MinimumVersion 2.2.0 -PassThru"
+                    "Import-Module Az.Accounts -MinimumVersion 2.2.0 -PassThru",
                 ],
                 [
                     powerShellCommand,
                     "-Command",
-                    `Get-AzAccessToken ${tenantSection} -ResourceUrl "${resource}" | ConvertTo-Json`
-                ]
+                    `Get-AzAccessToken ${tenantSection} -ResourceUrl "${resource}" | ConvertTo-Json`,
+                ],
             ]);
             const result = results[1];
             try {
@@ -1712,7 +1712,7 @@ class AzurePowerShellCredential {
                 logger$4.getToken.info(formatSuccess(scopes));
                 return {
                     token: response.Token,
-                    expiresOnTimestamp: new Date(response.ExpiresOn).getTime()
+                    expiresOnTimestamp: new Date(response.ExpiresOn).getTime(),
                 };
             }
             catch (err) {
@@ -1752,7 +1752,7 @@ class MsalClientSecret extends MsalNode {
                 correlationId: options.correlationId,
                 azureRegion: this.azureRegion,
                 authority: options.authority,
-                claims: options.claims
+                claims: options.claims,
             });
             // The Client Credential flow does not return an account,
             // so each time getToken gets called, we will have to acquire a new token through the service.
@@ -1864,7 +1864,7 @@ class MsalClientCertificate extends MsalNode {
             this.msalConfig.auth.clientCertificate = {
                 thumbprint: parts.thumbprint,
                 privateKey: parts.certificateContents,
-                x5c: parts.x5c
+                x5c: parts.x5c,
             };
         }
         catch (error) {
@@ -1880,7 +1880,7 @@ class MsalClientCertificate extends MsalNode {
                 correlationId: options.correlationId,
                 azureRegion: this.azureRegion,
                 authority: options.authority,
-                claims: options.claims
+                claims: options.claims,
             });
             // Even though we're providing the same default in memory persistence cache that we use for DeviceCodeCredential,
             // The Client Credential flow does not return the account information from the authentication service,
@@ -1911,7 +1911,7 @@ class ClientCertificateCredential {
         }
         const configuration = Object.assign({}, (typeof certificatePathOrConfiguration === "string"
             ? {
-                certificatePath: certificatePathOrConfiguration
+                certificatePath: certificatePathOrConfiguration,
             }
             : certificatePathOrConfiguration));
         if (!configuration || !(configuration.certificate || configuration.certificatePath)) {
@@ -1960,7 +1960,7 @@ class MsalUsernamePassword extends MsalNode {
                 password: this.password,
                 correlationId: options === null || options === void 0 ? void 0 : options.correlationId,
                 authority: options === null || options === void 0 ? void 0 : options.authority,
-                claims: options === null || options === void 0 ? void 0 : options.claims
+                claims: options === null || options === void 0 ? void 0 : options.claims,
             };
             const result = await this.publicApp.acquireTokenByUsernamePassword(requestOptions);
             return this.handleResult(scopes, this.clientId, result || undefined);
@@ -2035,7 +2035,7 @@ const AllSupportedEnvironmentVariables = [
     "AZURE_CLIENT_SECRET",
     "AZURE_CLIENT_CERTIFICATE_PATH",
     "AZURE_USERNAME",
-    "AZURE_PASSWORD"
+    "AZURE_PASSWORD",
 ];
 const credentialName$1 = "EnvironmentCredential";
 const logger$8 = credentialLogger(credentialName$1);
@@ -2108,10 +2108,7 @@ class EnvironmentCredential {
                 catch (err) {
                     const authenticationError = new AuthenticationError(400, {
                         error: `${credentialName$1} authentication failed. To troubleshoot, visit https://aka.ms/azsdk/js/identity/environmentcredential/troubleshoot.`,
-                        error_description: err.message
-                            .toString()
-                            .split("More details:")
-                            .join("")
+                        error_description: err.message.toString().split("More details:").join(""),
                     });
                     logger$8.getToken.info(formatError(scopes, authenticationError));
                     throw authenticationError;
@@ -2178,7 +2175,7 @@ function prepareRequestOptions(scopes, clientId) {
     }
     const queryParameters = {
         resource,
-        "api-version": "2017-09-01"
+        "api-version": "2017-09-01",
     };
     if (clientId) {
         queryParameters.clientid = clientId;
@@ -2196,8 +2193,8 @@ function prepareRequestOptions(scopes, clientId) {
         method: "GET",
         headers: coreRestPipeline.createHttpHeaders({
             Accept: "application/json",
-            secret: process.env.MSI_SECRET
-        })
+            secret: process.env.MSI_SECRET,
+        }),
     };
 }
 /**
@@ -2225,7 +2222,7 @@ const appServiceMsi2017 = {
             allowInsecureConnection: true }));
         const tokenResponse = await identityClient.sendTokenRequest(request, expiresOnParser);
         return (tokenResponse && tokenResponse.accessToken) || null;
-    }
+    },
 };
 // Copyright (c) Microsoft Corporation.
@@ -2240,7 +2237,7 @@ function prepareRequestOptions$1(scopes, clientId) {
         throw new Error(`${msiName$1}: Multiple scopes are not supported.`);
     }
     const body = {
-        resource
+        resource,
     };
     if (clientId) {
         body.client_id = clientId;
@@ -2257,8 +2254,8 @@ function prepareRequestOptions$1(scopes, clientId) {
         headers: coreRestPipeline.createHttpHeaders({
             Accept: "application/json",
             Metadata: "true",
-            "Content-Type": "application/x-www-form-urlencoded"
-        })
+            "Content-Type": "application/x-www-form-urlencoded",
+        }),
     };
 }
 /**
@@ -2285,7 +2282,7 @@ const cloudShellMsi = {
             allowInsecureConnection: true }));
         const tokenResponse = await identityClient.sendTokenRequest(request);
         return (tokenResponse && tokenResponse.accessToken) || null;
-    }
+    },
 };
 // Copyright (c) Microsoft Corporation.
@@ -2324,7 +2321,7 @@ function prepareRequestOptions$2(scopes, clientId, options) {
     if (!skipQuery) {
         const queryParameters = {
             resource,
-            "api-version": imdsApiVersion
+            "api-version": imdsApiVersion,
         };
         if (clientId) {
             queryParameters.client_id = clientId;
@@ -2335,7 +2332,7 @@ function prepareRequestOptions$2(scopes, clientId, options) {
     const url = new URL(imdsEndpointPath, (_a = process.env.AZURE_POD_IDENTITY_AUTHORITY_HOST) !== null && _a !== void 0 ? _a : imdsHost);
     const rawHeaders = {
         Accept: "application/json",
-        Metadata: "true"
+        Metadata: "true",
     };
     // Remove the Metadata header to invoke a request error from some IMDS endpoints.
     if (skipMetadataHeader) {
@@ -2345,14 +2342,14 @@ function prepareRequestOptions$2(scopes, clientId, options) {
         // In this case, the `?` should be added in the "query" variable `skipQuery` is not set.
         url: `${url}${query}`,
         method: "GET",
-        headers: coreRestPipeline.createHttpHeaders(rawHeaders)
+        headers: coreRestPipeline.createHttpHeaders(rawHeaders),
     };
 }
 // 800ms -> 1600ms -> 3200ms
 const imdsMsiRetryConfig = {
     maxRetries: 3,
     startDelayInMs: 800,
-    intervalIncrement: 2
+    intervalIncrement: 2,
 };
 /**
  * Defines how to determine whether the Azure IMDS MSI is available, and also how to retrieve a token from the Azure IMDS MSI.
@@ -2372,7 +2369,7 @@ const imdsMsi = {
         }
         const requestOptions = prepareRequestOptions$2(resource, clientId, {
             skipMetadataHeader: true,
-            skipQuery: true
+            skipQuery: true,
         });
         requestOptions.tracingOptions = options.tracingOptions;
         try {
@@ -2399,7 +2396,7 @@ const imdsMsi = {
                     logger$b.info(`${msiName$2}: The Azure IMDS endpoint is unavailable`);
                     span.setStatus({
                         code: coreTracing.SpanStatusCode.ERROR,
-                        message: err.message
+                        message: err.message,
                     });
                     return false;
                 }
@@ -2414,7 +2411,7 @@ const imdsMsi = {
             logger$b.info(`${msiName$2}: Error when creating the WebResource for the Azure IMDS endpoint: ${err.message}`);
             span.setStatus({
                 code: coreTracing.SpanStatusCode.ERROR,
-                message: err.message
+                message: err.message,
             });
             throw err;
         }
@@ -2442,7 +2439,7 @@ const imdsMsi = {
             }
         }
         throw new AuthenticationError(404, `${msiName$2}: Failed to retrieve IMDS token after ${imdsMsiRetryConfig.maxRetries} retries.`);
-    }
+    },
 };
 // Copyright (c) Microsoft Corporation.
@@ -2458,7 +2455,7 @@ function prepareRequestOptions$3(scopes) {
     }
     const queryParameters = {
         resource,
-        "api-version": azureArcAPIVersion
+        "api-version": azureArcAPIVersion,
     };
     const query = new URLSearchParams(queryParameters);
     // This error should not bubble up, since we verify that this environment variable is defined in the isAvailable() method defined below.
@@ -2471,8 +2468,8 @@ function prepareRequestOptions$3(scopes) {
         method: "GET",
         headers: coreRestPipeline.createHttpHeaders({
             Accept: "application/json",
-            Metadata: "true"
-        })
+            Metadata: "true",
+        }),
     });
 }
 /**
@@ -2542,7 +2539,7 @@ const arcMsi = {
             allowInsecureConnection: true }));
         const tokenResponse = await identityClient.sendTokenRequest(request);
         return (tokenResponse && tokenResponse.accessToken) || null;
-    }
+    },
 };
 // Copyright (c) Microsoft Corporation.
@@ -2559,7 +2556,7 @@ function prepareRequestOptions$4(scopes, clientAssertion, clientId) {
         client_assertion: clientAssertion,
         client_assertion_type: "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
         client_id: clientId,
-        grant_type: "client_credentials"
+        grant_type: "client_credentials",
     };
     const urlParams = new URLSearchParams(bodyParams);
     const url = new URL(`${process.env.AZURE_TENANT_ID}/oauth2/v2.0/token`, (_a = process.env.AZURE_AUTHORITY_HOST) !== null && _a !== void 0 ? _a : DefaultAuthorityHost);
@@ -2568,8 +2565,8 @@ function prepareRequestOptions$4(scopes, clientAssertion, clientId) {
         method: "POST",
         body: urlParams.toString(),
         headers: coreRestPipeline.createHttpHeaders({
-            Accept: "application/json"
-        })
+            Accept: "application/json",
+        }),
     };
 }
 /**
@@ -2622,7 +2619,7 @@ function tokenExchangeMsi() {
                 allowInsecureConnection: true }));
             const tokenResponse = await identityClient.sendTokenRequest(request);
             return (tokenResponse && tokenResponse.accessToken) || null;
-        }
+        },
     };
 }
@@ -2656,7 +2653,7 @@ function prepareRequestOptions$5(scopes, clientId) {
     }
     const queryParameters = {
         resource,
-        "api-version": azureFabricVersion
+        "api-version": azureFabricVersion,
     };
     if (clientId) {
         queryParameters.client_id = clientId;
@@ -2674,8 +2671,8 @@ function prepareRequestOptions$5(scopes, clientId) {
         method: "GET",
         headers: coreRestPipeline.createHttpHeaders({
             Accept: "application/json",
-            secret: process.env.IDENTITY_HEADER
-        })
+            secret: process.env.IDENTITY_HEADER,
+        }),
     };
 }
 /**
@@ -2702,20 +2699,17 @@ const fabricMsi = {
             "Using the endpoint and the secret coming from the environment variables:",
             `IDENTITY_ENDPOINT=${process.env.IDENTITY_ENDPOINT},`,
             "IDENTITY_HEADER=[REDACTED] and",
-            "IDENTITY_SERVER_THUMBPRINT=[REDACTED]."
+            "IDENTITY_SERVER_THUMBPRINT=[REDACTED].",
         ].join(" "));
-        const request = coreRestPipeline.createPipelineRequest(Object.assign({ abortSignal: getTokenOptions.abortSignal }, prepareRequestOptions$5(scopes, clientId)
-        // The service fabric MSI endpoint will be HTTPS (however, the certificate will be self-signed).
-        // allowInsecureConnection: true
-        ));
+        const request = coreRestPipeline.createPipelineRequest(Object.assign({ abortSignal: getTokenOptions.abortSignal }, prepareRequestOptions$5(scopes, clientId)));
         request.agent = new https.Agent({
             // This is necessary because Service Fabric provides a self-signed certificate.
             // The alternative path is to verify the certificate using the IDENTITY_SERVER_THUMBPRINT env variable.
-            rejectUnauthorized: false
+            rejectUnauthorized: false,
         });
         const tokenResponse = await identityClient.sendTokenRequest(request, expiresOnParser$2);
         return (tokenResponse && tokenResponse.accessToken) || null;
-    }
+    },
 };
 // Copyright (c) Microsoft Corporation.
@@ -2766,13 +2760,13 @@ class ManagedIdentityCredential {
             return availableMSI.getToken({
                 identityClient: this.identityClient,
                 scopes,
-                clientId
+                clientId,
             }, updatedOptions);
         }
         catch (err) {
             span.setStatus({
                 code: coreTracing.SpanStatusCode.ERROR,
-                message: err.message
+                message: err.message,
             });
             throw err;
         }
@@ -2837,7 +2831,7 @@ class ManagedIdentityCredential {
             //   but no identity is available.
             span.setStatus({
                 code: coreTracing.SpanStatusCode.ERROR,
-                message: err.message
+                message: err.message,
             });
             // If either the network is unreachable,
             // we can safely assume the credential is unavailable.
@@ -2866,7 +2860,7 @@ class ManagedIdentityCredential {
             // Any other error should break the chain.
             throw new AuthenticationError(err.statusCode, {
                 error: `${ManagedIdentityCredential.name} authentication failed.`,
-                error_description: err.message
+                error_description: err.message,
             });
         }
         finally {
@@ -2900,7 +2894,7 @@ const defaultCredentials = [
     DefaultManagedIdentityCredential,
     VisualStudioCodeCredential,
     AzureCliCredential,
-    AzurePowerShellCredential
+    AzurePowerShellCredential,
 ];
 /**
  * Provides a default {@link ChainedTokenCredential} configuration that should
@@ -2944,7 +2938,7 @@ class DefaultAzureCredential extends ChainedTokenCredential {
  * @internal
  */
 const interactiveBrowserMockable = {
-    open
+    open,
 };
 /**
  * This MSAL client sets up a web server to listen for redirect callbacks, then calls to the MSAL's public application's `acquireTokenByDeviceCode` during `doGetToken`
@@ -2989,7 +2983,7 @@ class MsalOpenBrowser extends MsalNode {
                     redirectUri: this.redirectUri,
                     scopes: scopes,
                     authority: options === null || options === void 0 ? void 0 : options.authority,
-                    codeVerifier: (_a = this.pkceCodes) === null || _a === void 0 ? void 0 : _a.verifier
+                    codeVerifier: (_a = this.pkceCodes) === null || _a === void 0 ? void 0 : _a.verifier,
                 };
                 this.acquireTokenByCode(tokenRequest)
                     .then((authResponse) => {
@@ -3004,7 +2998,7 @@ class MsalOpenBrowser extends MsalNode {
                         this.logger.getToken.info(formatSuccess(scopes));
                         resolve({
                             expiresOnTimestamp,
-                            token: authResponse.accessToken
+                            token: authResponse.accessToken,
                         });
                     }
                     else {
@@ -3049,7 +3043,7 @@ class MsalOpenBrowser extends MsalNode {
                     reject(new CredentialUnavailableError([
                         `InteractiveBrowserCredential: Access denied to port ${this.port}.`,
                         `Try sending a redirect URI with a different port, as follows:`,
-                        '`new InteractiveBrowserCredential({ redirectUri: "http://localhost:1337" })`'
+                        '`new InteractiveBrowserCredential({ redirectUri: "http://localhost:1337" })`',
                     ].join(" ")));
                 }
                 else {
@@ -3085,7 +3079,7 @@ class MsalOpenBrowser extends MsalNode {
             claims: options === null || options === void 0 ? void 0 : options.claims,
             loginHint: this.loginHint,
             codeChallenge: this.pkceCodes.challenge,
-            codeChallengeMethod: "S256" // Use SHA256 Algorithm
+            codeChallengeMethod: "S256", // Use SHA256 Algorithm
         };
         const response = await this.publicApp.getAuthCodeUrl(authCodeUrlParameters);
         try {
@@ -3182,7 +3176,7 @@ class MsalDeviceCode extends MsalNode {
                 cancel: false,
                 correlationId: options === null || options === void 0 ? void 0 : options.correlationId,
                 authority: options === null || options === void 0 ? void 0 : options.authority,
-                claims: options === null || options === void 0 ? void 0 : options.claims
+                claims: options === null || options === void 0 ? void 0 : options.claims,
             };
             const promise = this.publicApp.acquireTokenByDeviceCode(requestOptions);
             // TODO:
@@ -3302,7 +3296,7 @@ class MsalAuthorizationCode extends MsalNode {
                 code: this.authorizationCode,
                 correlationId: options === null || options === void 0 ? void 0 : options.correlationId,
                 authority: options === null || options === void 0 ? void 0 : options.authority,
-                claims: options === null || options === void 0 ? void 0 : options.claims
+                claims: options === null || options === void 0 ? void 0 : options.claims,
             }));
             // The Client Credential flow does not return an account,
             // so each time getToken gets called, we will have to acquire a new token through the service.
@@ -3386,7 +3380,7 @@ class MsalOnBehalfOf extends MsalNode {
                 this.msalConfig.auth.clientCertificate = {
                     thumbprint: parts.thumbprint,
                     privateKey: parts.certificateContents,
-                    x5c: parts.x5c
+                    x5c: parts.x5c,
                 };
             }
             catch (error) {
@@ -3406,7 +3400,7 @@ class MsalOnBehalfOf extends MsalNode {
                 correlationId: options.correlationId,
                 authority: options.authority,
                 claims: options.claims,
-                oboAssertion: this.userAssertionToken
+                oboAssertion: this.userAssertionToken,
             });
             return this.handleResult(scopes, this.clientId, result || undefined);
         }