@azure/identity 4.5.1-alpha.20250114.1 → 4.6.0
Sign up to get free protection for your applications and to get access to all the features.
- package/README.md +1 -5
- package/dist/index.js +4211 -0
- package/dist/index.js.map +1 -0
- package/{dist/esm → dist-esm/src}/client/identityClient.js +7 -7
- package/dist-esm/src/client/identityClient.js.map +1 -0
- package/{dist/esm → dist-esm/src}/constants.js +2 -10
- package/dist-esm/src/constants.js.map +1 -0
- package/{dist/browser/credentials/authorizationCodeCredential.js → dist-esm/src/credentials/authorizationCodeCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/authorizationCodeCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/authorizationCodeCredential.js +6 -6
- package/dist-esm/src/credentials/authorizationCodeCredential.js.map +1 -0
- package/dist-esm/src/credentials/authorizationCodeCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azureApplicationCredential.js → dist-esm/src/credentials/azureApplicationCredential.browser.js} +3 -3
- package/dist-esm/src/credentials/azureApplicationCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azureApplicationCredential.js +2 -2
- package/dist-esm/src/credentials/azureApplicationCredential.js.map +1 -0
- package/dist-esm/src/credentials/azureApplicationCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azureCliCredential.js → dist-esm/src/credentials/azureCliCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/azureCliCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azureCliCredential.js +10 -24
- package/dist-esm/src/credentials/azureCliCredential.js.map +1 -0
- package/dist-esm/src/credentials/azureCliCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azureDeveloperCliCredential.js → dist-esm/src/credentials/azureDeveloperCliCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/azureDeveloperCliCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azureDeveloperCliCredential.js +8 -8
- package/dist-esm/src/credentials/azureDeveloperCliCredential.js.map +1 -0
- package/dist-esm/src/credentials/azureDeveloperCliCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azurePipelinesCredential.js → dist-esm/src/credentials/azurePipelinesCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/azurePipelinesCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azurePipelinesCredential.js +5 -5
- package/dist-esm/src/credentials/azurePipelinesCredential.js.map +1 -0
- package/dist-esm/src/credentials/azurePipelinesCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azurePowerShellCredential.js → dist-esm/src/credentials/azurePowerShellCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/azurePowerShellCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azurePowerShellCredential.js +6 -6
- package/dist-esm/src/credentials/azurePowerShellCredential.js.map +1 -0
- package/dist-esm/src/credentials/azurePowerShellCredentialOptions.js.map +1 -0
- package/dist-esm/src/credentials/brokerAuthOptions.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/chainedTokenCredential.js +5 -8
- package/dist-esm/src/credentials/chainedTokenCredential.js.map +1 -0
- package/{dist/browser/credentials/clientAssertionCredential.js → dist-esm/src/credentials/clientAssertionCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/clientAssertionCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/clientAssertionCredential.js +5 -5
- package/dist-esm/src/credentials/clientAssertionCredential.js.map +1 -0
- package/dist-esm/src/credentials/clientAssertionCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/clientCertificateCredential.js → dist-esm/src/credentials/clientCertificateCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/clientCertificateCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/clientCertificateCredential.js +9 -12
- package/dist-esm/src/credentials/clientCertificateCredential.js.map +1 -0
- package/dist-esm/src/credentials/clientCertificateCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/clientSecretCredential.js → dist-esm/src/credentials/clientSecretCredential.browser.js} +6 -6
- package/dist-esm/src/credentials/clientSecretCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/clientSecretCredential.js +6 -6
- package/dist-esm/src/credentials/clientSecretCredential.js.map +1 -0
- package/dist-esm/src/credentials/clientSecretCredentialOptions.js.map +1 -0
- package/dist-esm/src/credentials/credentialPersistenceOptions.js.map +1 -0
- package/{dist/browser/credentials/defaultAzureCredential.js → dist-esm/src/credentials/defaultAzureCredential.browser.js} +3 -3
- package/dist-esm/src/credentials/defaultAzureCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/defaultAzureCredential.js +10 -23
- package/dist-esm/src/credentials/defaultAzureCredential.js.map +1 -0
- package/dist-esm/src/credentials/defaultAzureCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/deviceCodeCredential.js → dist-esm/src/credentials/deviceCodeCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/deviceCodeCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/deviceCodeCredential.js +6 -6
- package/dist-esm/src/credentials/deviceCodeCredential.js.map +1 -0
- package/dist-esm/src/credentials/deviceCodeCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/environmentCredential.js → dist-esm/src/credentials/environmentCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/environmentCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/environmentCredential.js +7 -7
- package/dist-esm/src/credentials/environmentCredential.js.map +1 -0
- package/dist-esm/src/credentials/environmentCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/interactiveBrowserCredential.js → dist-esm/src/credentials/interactiveBrowserCredential.browser.js} +6 -6
- package/dist-esm/src/credentials/interactiveBrowserCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/interactiveBrowserCredential.js +6 -6
- package/{dist/commonjs → dist-esm/src}/credentials/interactiveBrowserCredential.js.map +1 -1
- package/dist-esm/src/credentials/interactiveBrowserCredentialOptions.js.map +1 -0
- package/dist-esm/src/credentials/interactiveCredentialOptions.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/appServiceMsi2017.js +71 -0
- package/dist-esm/src/credentials/managedIdentityCredential/appServiceMsi2017.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/appServiceMsi2019.js +71 -0
- package/dist-esm/src/credentials/managedIdentityCredential/appServiceMsi2019.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/arcMsi.js +140 -0
- package/dist-esm/src/credentials/managedIdentityCredential/arcMsi.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/cloudShellMsi.js +75 -0
- package/dist-esm/src/credentials/managedIdentityCredential/cloudShellMsi.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/constants.js +9 -0
- package/dist-esm/src/credentials/managedIdentityCredential/constants.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/fabricMsi.js +95 -0
- package/dist-esm/src/credentials/managedIdentityCredential/fabricMsi.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/managedIdentityCredential/imdsMsi.js +38 -16
- package/dist-esm/src/credentials/managedIdentityCredential/imdsMsi.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/imdsRetryPolicy.js.map +1 -0
- package/{dist/browser/credentials/managedIdentityCredential/index.js → dist-esm/src/credentials/managedIdentityCredential/index.browser.js} +2 -2
- package/dist-esm/src/credentials/managedIdentityCredential/index.browser.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/index.js +37 -0
- package/dist-esm/src/credentials/managedIdentityCredential/index.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/legacyMsiProvider.js +309 -0
- package/dist-esm/src/credentials/managedIdentityCredential/legacyMsiProvider.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/models.js.map +1 -0
- package/{dist/esm/credentials/managedIdentityCredential/index.js → dist-esm/src/credentials/managedIdentityCredential/msalMsiProvider.js} +26 -31
- package/dist-esm/src/credentials/managedIdentityCredential/msalMsiProvider.js.map +1 -0
- package/{dist/browser → dist-esm/src}/credentials/managedIdentityCredential/tokenExchangeMsi.js +3 -6
- package/dist-esm/src/credentials/managedIdentityCredential/tokenExchangeMsi.js.map +1 -0
- package/{dist/browser → dist-esm/src}/credentials/managedIdentityCredential/utils.js +1 -1
- package/dist-esm/src/credentials/managedIdentityCredential/utils.js.map +1 -0
- package/dist-esm/src/credentials/multiTenantTokenCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/onBehalfOfCredential.js → dist-esm/src/credentials/onBehalfOfCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/onBehalfOfCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/onBehalfOfCredential.js +6 -6
- package/dist-esm/src/credentials/onBehalfOfCredential.js.map +1 -0
- package/dist-esm/src/credentials/onBehalfOfCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/usernamePasswordCredential.js → dist-esm/src/credentials/usernamePasswordCredential.browser.js} +6 -6
- package/dist-esm/src/credentials/usernamePasswordCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/usernamePasswordCredential.js +6 -6
- package/dist-esm/src/credentials/usernamePasswordCredential.js.map +1 -0
- package/dist-esm/src/credentials/usernamePasswordCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/visualStudioCodeCredential.js → dist-esm/src/credentials/visualStudioCodeCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/visualStudioCodeCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/visualStudioCodeCredential.js +9 -9
- package/dist-esm/src/credentials/visualStudioCodeCredential.js.map +1 -0
- package/dist-esm/src/credentials/visualStudioCodeCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/workloadIdentityCredential.js → dist-esm/src/credentials/workloadIdentityCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/workloadIdentityCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/workloadIdentityCredential.js +5 -5
- package/dist-esm/src/credentials/workloadIdentityCredential.js.map +1 -0
- package/dist-esm/src/credentials/workloadIdentityCredentialOptions.js.map +1 -0
- package/dist-esm/src/errors.js.map +1 -0
- package/{dist/browser → dist-esm/src}/index.js +25 -25
- package/dist-esm/src/index.js.map +1 -0
- package/dist-esm/src/msal/browserFlows/flows.js.map +1 -0
- package/{dist/esm → dist-esm/src}/msal/browserFlows/msalAuthCode.js +3 -3
- package/dist-esm/src/msal/browserFlows/msalAuthCode.js.map +1 -0
- package/{dist/browser → dist-esm/src}/msal/browserFlows/msalBrowserCommon.js +5 -5
- package/dist-esm/src/msal/browserFlows/msalBrowserCommon.js.map +1 -0
- package/dist-esm/src/msal/credentials.js.map +1 -0
- package/{dist/browser/msal/msal.js → dist-esm/src/msal/msal.browser.js} +1 -1
- package/dist-esm/src/msal/msal.browser.js.map +1 -0
- package/{dist/browser → dist-esm/src}/msal/nodeFlows/msalClient.js +16 -9
- package/dist-esm/src/msal/nodeFlows/msalClient.js.map +1 -0
- package/{dist/browser → dist-esm/src}/msal/nodeFlows/msalPlugins.js +1 -1
- package/dist-esm/src/msal/nodeFlows/msalPlugins.js.map +1 -0
- package/{dist/browser → dist-esm/src}/msal/types.js.map +1 -1
- package/{dist/browser → dist-esm/src}/msal/utils.js +8 -14
- package/dist-esm/src/msal/utils.js.map +1 -0
- package/{dist/browser/plugins/consumer.js → dist-esm/src/plugins/consumer.browser.js} +1 -1
- package/dist-esm/src/plugins/consumer.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/plugins/consumer.js +2 -2
- package/dist-esm/src/plugins/consumer.js.map +1 -0
- package/dist-esm/src/plugins/provider.js.map +1 -0
- package/dist-esm/src/tokenCredentialOptions.js.map +1 -0
- package/{dist/browser → dist-esm/src}/tokenProvider.js +0 -1
- package/dist-esm/src/tokenProvider.js.map +1 -0
- package/{dist/esm/util/authHostEnv-browser.mjs → dist-esm/src/util/authHostEnv.browser.js} +1 -1
- package/dist-esm/src/util/authHostEnv.browser.js.map +1 -0
- package/dist-esm/src/util/logging.js.map +1 -0
- package/{dist/browser/util/processMultiTenantRequest.js → dist-esm/src/util/processMultiTenantRequest.browser.js} +1 -1
- package/dist-esm/src/util/processMultiTenantRequest.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/util/processMultiTenantRequest.js +2 -2
- package/{dist/commonjs → dist-esm/src}/util/processMultiTenantRequest.js.map +1 -1
- package/{dist/browser → dist-esm/src}/util/scopeUtils.js +1 -1
- package/dist-esm/src/util/scopeUtils.js.map +1 -0
- package/{dist/esm → dist-esm/src}/util/tenantIdUtils.js +3 -3
- package/dist-esm/src/util/tenantIdUtils.js.map +1 -0
- package/{dist/browser → dist-esm/src}/util/tracing.js +1 -1
- package/dist-esm/src/util/tracing.js.map +1 -0
- package/package.json +80 -66
- package/types/identity.d.ts +1853 -0
- package/dist/browser/client/identityClient.d.ts +0 -65
- package/dist/browser/client/identityClient.d.ts.map +0 -1
- package/dist/browser/client/identityClient.js +0 -248
- package/dist/browser/client/identityClient.js.map +0 -1
- package/dist/browser/constants.d.ts +0 -69
- package/dist/browser/constants.d.ts.map +0 -1
- package/dist/browser/constants.js +0 -75
- package/dist/browser/constants.js.map +0 -1
- package/dist/browser/credentials/authorityValidationOptions.d.ts +0 -16
- package/dist/browser/credentials/authorityValidationOptions.d.ts.map +0 -1
- package/dist/browser/credentials/authorizationCodeCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/authorizationCodeCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/authorizationCodeCredential.d.ts +0 -11
- package/dist/browser/credentials/authorizationCodeCredentialOptions.d.ts +0 -8
- package/dist/browser/credentials/authorizationCodeCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/authorizationCodeCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azureApplicationCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azureApplicationCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azureApplicationCredential.d.ts +0 -24
- package/dist/browser/credentials/azureApplicationCredentialOptions.d.ts +0 -13
- package/dist/browser/credentials/azureApplicationCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azureApplicationCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azureCliCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azureCliCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azureCliCredential.d.ts +0 -13
- package/dist/browser/credentials/azureCliCredentialOptions.d.ts +0 -20
- package/dist/browser/credentials/azureCliCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azureCliCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azureDeveloperCliCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azureDeveloperCliCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azureDeveloperCliCredential.d.ts +0 -13
- package/dist/browser/credentials/azureDeveloperCliCredentialOptions.d.ts +0 -15
- package/dist/browser/credentials/azureDeveloperCliCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azureDeveloperCliCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azurePipelinesCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azurePipelinesCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azurePipelinesCredential.d.ts +0 -13
- package/dist/browser/credentials/azurePipelinesCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/azurePipelinesCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azurePipelinesCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azurePowerShellCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azurePowerShellCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azurePowerShellCredential.d.ts +0 -12
- package/dist/browser/credentials/azurePowerShellCredentialOptions.d.ts +0 -15
- package/dist/browser/credentials/azurePowerShellCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azurePowerShellCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/brokerAuthOptions.d.ts +0 -13
- package/dist/browser/credentials/brokerAuthOptions.d.ts.map +0 -1
- package/dist/browser/credentials/brokerAuthOptions.js.map +0 -1
- package/dist/browser/credentials/browserCustomizationOptions.d.ts +0 -19
- package/dist/browser/credentials/browserCustomizationOptions.d.ts.map +0 -1
- package/dist/browser/credentials/chainedTokenCredential.d.ts +0 -51
- package/dist/browser/credentials/chainedTokenCredential.d.ts.map +0 -1
- package/dist/browser/credentials/chainedTokenCredential.js +0 -92
- package/dist/browser/credentials/chainedTokenCredential.js.map +0 -1
- package/dist/browser/credentials/clientAssertionCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/clientAssertionCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/clientAssertionCredential.d.ts +0 -12
- package/dist/browser/credentials/clientAssertionCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/clientAssertionCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/clientAssertionCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/clientCertificateCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/clientCertificateCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/clientCertificateCredential.d.ts +0 -13
- package/dist/browser/credentials/clientCertificateCredentialModels.d.ts +0 -31
- package/dist/browser/credentials/clientCertificateCredentialModels.d.ts.map +0 -1
- package/dist/browser/credentials/clientCertificateCredentialModels.js +0 -4
- package/dist/browser/credentials/clientCertificateCredentialModels.js.map +0 -1
- package/dist/browser/credentials/clientCertificateCredentialOptions.d.ts +0 -14
- package/dist/browser/credentials/clientCertificateCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/clientCertificateCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/clientSecretCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/clientSecretCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/clientSecretCredential.d.ts +0 -40
- package/dist/browser/credentials/clientSecretCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/clientSecretCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/clientSecretCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/credentialPersistenceOptions.d.ts +0 -30
- package/dist/browser/credentials/credentialPersistenceOptions.d.ts.map +0 -1
- package/dist/browser/credentials/credentialPersistenceOptions.js.map +0 -1
- package/dist/browser/credentials/defaultAzureCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/defaultAzureCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/defaultAzureCredential.d.ts +0 -19
- package/dist/browser/credentials/defaultAzureCredentialOptions.d.ts +0 -49
- package/dist/browser/credentials/defaultAzureCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/defaultAzureCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/deviceCodeCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/deviceCodeCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/deviceCodeCredential.d.ts +0 -13
- package/dist/browser/credentials/deviceCodeCredentialOptions.d.ts +0 -53
- package/dist/browser/credentials/deviceCodeCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/deviceCodeCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/environmentCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/environmentCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/environmentCredential.d.ts +0 -13
- package/dist/browser/credentials/environmentCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/environmentCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/environmentCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/interactiveBrowserCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/interactiveBrowserCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/interactiveBrowserCredential.d.ts +0 -53
- package/dist/browser/credentials/interactiveBrowserCredentialOptions.d.ts +0 -77
- package/dist/browser/credentials/interactiveBrowserCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/interactiveBrowserCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/interactiveCredentialOptions.d.ts +0 -25
- package/dist/browser/credentials/interactiveCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/interactiveCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/imdsMsi.d.ts +0 -18
- package/dist/browser/credentials/managedIdentityCredential/imdsMsi.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/imdsMsi.js +0 -122
- package/dist/browser/credentials/managedIdentityCredential/imdsMsi.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts +0 -12
- package/dist/browser/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/imdsRetryPolicy.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/index-browser.d.mts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/index-browser.mjs.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/index.d.ts +0 -6
- package/dist/browser/credentials/managedIdentityCredential/models.d.ts +0 -24
- package/dist/browser/credentials/managedIdentityCredential/models.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/models.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/options.d.ts +0 -37
- package/dist/browser/credentials/managedIdentityCredential/options.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/options.js +0 -4
- package/dist/browser/credentials/managedIdentityCredential/options.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts +0 -14
- package/dist/browser/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/tokenExchangeMsi.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/utils.d.ts +0 -33
- package/dist/browser/credentials/managedIdentityCredential/utils.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/utils.js.map +0 -1
- package/dist/browser/credentials/multiTenantTokenCredentialOptions.d.ts +0 -12
- package/dist/browser/credentials/multiTenantTokenCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/multiTenantTokenCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/onBehalfOfCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/onBehalfOfCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/onBehalfOfCredential.d.ts +0 -12
- package/dist/browser/credentials/onBehalfOfCredentialOptions.d.ts +0 -76
- package/dist/browser/credentials/onBehalfOfCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/onBehalfOfCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/usernamePasswordCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/usernamePasswordCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/usernamePasswordCredential.d.ts +0 -40
- package/dist/browser/credentials/usernamePasswordCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/usernamePasswordCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/usernamePasswordCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredential.d.ts +0 -15
- package/dist/browser/credentials/visualStudioCodeCredentialOptions.d.ts +0 -11
- package/dist/browser/credentials/visualStudioCodeCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredentialPlugin.d.ts +0 -11
- package/dist/browser/credentials/visualStudioCodeCredentialPlugin.d.ts.map +0 -1
- package/dist/browser/credentials/workloadIdentityCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/workloadIdentityCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/workloadIdentityCredential.d.ts +0 -17
- package/dist/browser/credentials/workloadIdentityCredentialOptions.d.ts +0 -20
- package/dist/browser/credentials/workloadIdentityCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/workloadIdentityCredentialOptions.js.map +0 -1
- package/dist/browser/errors.d.ts +0 -139
- package/dist/browser/errors.d.ts.map +0 -1
- package/dist/browser/errors.js.map +0 -1
- package/dist/browser/index.d.ts +0 -61
- package/dist/browser/index.d.ts.map +0 -1
- package/dist/browser/index.js.map +0 -1
- package/dist/browser/msal/browserFlows/flows.d.ts +0 -42
- package/dist/browser/msal/browserFlows/flows.d.ts.map +0 -1
- package/dist/browser/msal/browserFlows/flows.js.map +0 -1
- package/dist/browser/msal/browserFlows/msalAuthCode.d.ts +0 -48
- package/dist/browser/msal/browserFlows/msalAuthCode.d.ts.map +0 -1
- package/dist/browser/msal/browserFlows/msalAuthCode.js +0 -203
- package/dist/browser/msal/browserFlows/msalAuthCode.js.map +0 -1
- package/dist/browser/msal/browserFlows/msalBrowserCommon.d.ts +0 -106
- package/dist/browser/msal/browserFlows/msalBrowserCommon.d.ts.map +0 -1
- package/dist/browser/msal/browserFlows/msalBrowserCommon.js.map +0 -1
- package/dist/browser/msal/credentials.d.ts +0 -52
- package/dist/browser/msal/credentials.d.ts.map +0 -1
- package/dist/browser/msal/credentials.js.map +0 -1
- package/dist/browser/msal/msal-browser.d.mts.map +0 -1
- package/dist/browser/msal/msal-browser.mjs.map +0 -1
- package/dist/browser/msal/msal.d.ts +0 -3
- package/dist/browser/msal/nodeFlows/brokerOptions.d.ts +0 -44
- package/dist/browser/msal/nodeFlows/brokerOptions.d.ts.map +0 -1
- package/dist/browser/msal/nodeFlows/msalClient.d.ts +0 -186
- package/dist/browser/msal/nodeFlows/msalClient.d.ts.map +0 -1
- package/dist/browser/msal/nodeFlows/msalClient.js.map +0 -1
- package/dist/browser/msal/nodeFlows/msalPlugins.d.ts +0 -91
- package/dist/browser/msal/nodeFlows/msalPlugins.d.ts.map +0 -1
- package/dist/browser/msal/nodeFlows/msalPlugins.js.map +0 -1
- package/dist/browser/msal/nodeFlows/tokenCachePersistenceOptions.d.ts +0 -24
- package/dist/browser/msal/nodeFlows/tokenCachePersistenceOptions.d.ts.map +0 -1
- package/dist/browser/msal/types.d.ts +0 -87
- package/dist/browser/msal/types.d.ts.map +0 -1
- package/dist/browser/msal/utils.d.ts +0 -95
- package/dist/browser/msal/utils.d.ts.map +0 -1
- package/dist/browser/msal/utils.js.map +0 -1
- package/dist/browser/package.json +0 -3
- package/dist/browser/plugins/consumer-browser.d.mts.map +0 -1
- package/dist/browser/plugins/consumer-browser.mjs.map +0 -1
- package/dist/browser/plugins/consumer.d.ts +0 -2
- package/dist/browser/plugins/provider.d.ts +0 -36
- package/dist/browser/plugins/provider.d.ts.map +0 -1
- package/dist/browser/plugins/provider.js.map +0 -1
- package/dist/browser/regionalAuthority.d.ts +0 -122
- package/dist/browser/regionalAuthority.d.ts.map +0 -1
- package/dist/browser/tokenCredentialOptions.d.ts +0 -28
- package/dist/browser/tokenCredentialOptions.d.ts.map +0 -1
- package/dist/browser/tokenCredentialOptions.js.map +0 -1
- package/dist/browser/tokenProvider.d.ts +0 -39
- package/dist/browser/tokenProvider.d.ts.map +0 -1
- package/dist/browser/tokenProvider.js.map +0 -1
- package/dist/browser/util/authHostEnv-browser.d.mts +0 -4
- package/dist/browser/util/authHostEnv-browser.d.mts.map +0 -1
- package/dist/browser/util/authHostEnv-browser.mjs +0 -7
- package/dist/browser/util/authHostEnv-browser.mjs.map +0 -1
- package/dist/browser/util/identityTokenEndpoint.d.ts +0 -2
- package/dist/browser/util/identityTokenEndpoint.d.ts.map +0 -1
- package/dist/browser/util/logging.d.ts +0 -70
- package/dist/browser/util/logging.d.ts.map +0 -1
- package/dist/browser/util/logging.js.map +0 -1
- package/dist/browser/util/processMultiTenantRequest-browser.d.mts.map +0 -1
- package/dist/browser/util/processMultiTenantRequest-browser.mjs.map +0 -1
- package/dist/browser/util/processMultiTenantRequest.d.ts +0 -9
- package/dist/browser/util/processUtils.d.ts +0 -13
- package/dist/browser/util/processUtils.d.ts.map +0 -1
- package/dist/browser/util/scopeUtils.d.ts +0 -17
- package/dist/browser/util/scopeUtils.d.ts.map +0 -1
- package/dist/browser/util/scopeUtils.js.map +0 -1
- package/dist/browser/util/subscriptionUtils.d.ts +0 -6
- package/dist/browser/util/subscriptionUtils.d.ts.map +0 -1
- package/dist/browser/util/subscriptionUtils.js +0 -14
- package/dist/browser/util/subscriptionUtils.js.map +0 -1
- package/dist/browser/util/tenantIdUtils.d.ts +0 -15
- package/dist/browser/util/tenantIdUtils.d.ts.map +0 -1
- package/dist/browser/util/tenantIdUtils.js +0 -44
- package/dist/browser/util/tenantIdUtils.js.map +0 -1
- package/dist/browser/util/tracing.d.ts +0 -6
- package/dist/browser/util/tracing.d.ts.map +0 -1
- package/dist/browser/util/tracing.js.map +0 -1
- package/dist/commonjs/client/identityClient.d.ts +0 -65
- package/dist/commonjs/client/identityClient.d.ts.map +0 -1
- package/dist/commonjs/client/identityClient.js +0 -253
- package/dist/commonjs/client/identityClient.js.map +0 -1
- package/dist/commonjs/constants.d.ts +0 -69
- package/dist/commonjs/constants.d.ts.map +0 -1
- package/dist/commonjs/constants.js +0 -78
- package/dist/commonjs/constants.js.map +0 -1
- package/dist/commonjs/credentials/authorityValidationOptions.d.ts +0 -16
- package/dist/commonjs/credentials/authorityValidationOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/authorityValidationOptions.js +0 -5
- package/dist/commonjs/credentials/authorityValidationOptions.js.map +0 -1
- package/dist/commonjs/credentials/authorizationCodeCredential.d.ts +0 -73
- package/dist/commonjs/credentials/authorizationCodeCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/authorizationCodeCredential.js +0 -64
- package/dist/commonjs/credentials/authorizationCodeCredential.js.map +0 -1
- package/dist/commonjs/credentials/authorizationCodeCredentialOptions.d.ts +0 -8
- package/dist/commonjs/credentials/authorizationCodeCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/authorizationCodeCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/authorizationCodeCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azureApplicationCredential.d.ts +0 -24
- package/dist/commonjs/credentials/azureApplicationCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureApplicationCredential.js +0 -36
- package/dist/commonjs/credentials/azureApplicationCredential.js.map +0 -1
- package/dist/commonjs/credentials/azureApplicationCredentialOptions.d.ts +0 -13
- package/dist/commonjs/credentials/azureApplicationCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureApplicationCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azureApplicationCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azureCliCredential.d.ts +0 -64
- package/dist/commonjs/credentials/azureCliCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureCliCredential.js +0 -194
- package/dist/commonjs/credentials/azureCliCredential.js.map +0 -1
- package/dist/commonjs/credentials/azureCliCredentialOptions.d.ts +0 -20
- package/dist/commonjs/credentials/azureCliCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureCliCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azureCliCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azureDeveloperCliCredential.d.ts +0 -71
- package/dist/commonjs/credentials/azureDeveloperCliCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureDeveloperCliCredential.js +0 -176
- package/dist/commonjs/credentials/azureDeveloperCliCredential.js.map +0 -1
- package/dist/commonjs/credentials/azureDeveloperCliCredentialOptions.d.ts +0 -15
- package/dist/commonjs/credentials/azureDeveloperCliCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureDeveloperCliCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azureDeveloperCliCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azurePipelinesCredential.d.ts +0 -38
- package/dist/commonjs/credentials/azurePipelinesCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azurePipelinesCredential.js +0 -146
- package/dist/commonjs/credentials/azurePipelinesCredential.js.map +0 -1
- package/dist/commonjs/credentials/azurePipelinesCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/azurePipelinesCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azurePipelinesCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azurePipelinesCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azurePowerShellCredential.d.ts +0 -75
- package/dist/commonjs/credentials/azurePowerShellCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azurePowerShellCredential.js +0 -235
- package/dist/commonjs/credentials/azurePowerShellCredential.js.map +0 -1
- package/dist/commonjs/credentials/azurePowerShellCredentialOptions.d.ts +0 -15
- package/dist/commonjs/credentials/azurePowerShellCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azurePowerShellCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azurePowerShellCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/brokerAuthOptions.d.ts +0 -13
- package/dist/commonjs/credentials/brokerAuthOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/brokerAuthOptions.js +0 -3
- package/dist/commonjs/credentials/brokerAuthOptions.js.map +0 -1
- package/dist/commonjs/credentials/browserCustomizationOptions.d.ts +0 -19
- package/dist/commonjs/credentials/browserCustomizationOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/browserCustomizationOptions.js +0 -5
- package/dist/commonjs/credentials/browserCustomizationOptions.js.map +0 -1
- package/dist/commonjs/credentials/chainedTokenCredential.d.ts +0 -51
- package/dist/commonjs/credentials/chainedTokenCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/chainedTokenCredential.js +0 -96
- package/dist/commonjs/credentials/chainedTokenCredential.js.map +0 -1
- package/dist/commonjs/credentials/clientAssertionCredential.d.ts +0 -33
- package/dist/commonjs/credentials/clientAssertionCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientAssertionCredential.js +0 -59
- package/dist/commonjs/credentials/clientAssertionCredential.js.map +0 -1
- package/dist/commonjs/credentials/clientAssertionCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/clientAssertionCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientAssertionCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/clientAssertionCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredential.d.ts +0 -72
- package/dist/commonjs/credentials/clientCertificateCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredential.js +0 -127
- package/dist/commonjs/credentials/clientCertificateCredential.js.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredentialModels.d.ts +0 -31
- package/dist/commonjs/credentials/clientCertificateCredentialModels.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredentialModels.js +0 -5
- package/dist/commonjs/credentials/clientCertificateCredentialModels.js.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredentialOptions.d.ts +0 -14
- package/dist/commonjs/credentials/clientCertificateCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/clientCertificateCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/clientSecretCredential.d.ts +0 -37
- package/dist/commonjs/credentials/clientSecretCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientSecretCredential.js +0 -64
- package/dist/commonjs/credentials/clientSecretCredential.js.map +0 -1
- package/dist/commonjs/credentials/clientSecretCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/clientSecretCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientSecretCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/clientSecretCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/credentialPersistenceOptions.d.ts +0 -30
- package/dist/commonjs/credentials/credentialPersistenceOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/credentialPersistenceOptions.js +0 -5
- package/dist/commonjs/credentials/credentialPersistenceOptions.js.map +0 -1
- package/dist/commonjs/credentials/defaultAzureCredential.d.ts +0 -65
- package/dist/commonjs/credentials/defaultAzureCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/defaultAzureCredential.js +0 -171
- package/dist/commonjs/credentials/defaultAzureCredential.js.map +0 -1
- package/dist/commonjs/credentials/defaultAzureCredentialOptions.d.ts +0 -49
- package/dist/commonjs/credentials/defaultAzureCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/defaultAzureCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/defaultAzureCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/deviceCodeCredential.d.ts +0 -67
- package/dist/commonjs/credentials/deviceCodeCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/deviceCodeCredential.js +0 -96
- package/dist/commonjs/credentials/deviceCodeCredential.js.map +0 -1
- package/dist/commonjs/credentials/deviceCodeCredentialOptions.d.ts +0 -53
- package/dist/commonjs/credentials/deviceCodeCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/deviceCodeCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/deviceCodeCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/environmentCredential.d.ts +0 -52
- package/dist/commonjs/credentials/environmentCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/environmentCredential.js +0 -135
- package/dist/commonjs/credentials/environmentCredential.js.map +0 -1
- package/dist/commonjs/credentials/environmentCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/environmentCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/environmentCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/environmentCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/interactiveBrowserCredential.d.ts +0 -56
- package/dist/commonjs/credentials/interactiveBrowserCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/interactiveBrowserCredential.js +0 -95
- package/dist/commonjs/credentials/interactiveBrowserCredentialOptions.d.ts +0 -77
- package/dist/commonjs/credentials/interactiveBrowserCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/interactiveBrowserCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/interactiveBrowserCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/interactiveCredentialOptions.d.ts +0 -25
- package/dist/commonjs/credentials/interactiveCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/interactiveCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/interactiveCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/imdsMsi.d.ts +0 -18
- package/dist/commonjs/credentials/managedIdentityCredential/imdsMsi.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/imdsMsi.js +0 -125
- package/dist/commonjs/credentials/managedIdentityCredential/imdsMsi.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts +0 -12
- package/dist/commonjs/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/imdsRetryPolicy.js +0 -36
- package/dist/commonjs/credentials/managedIdentityCredential/imdsRetryPolicy.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/index.d.ts +0 -61
- package/dist/commonjs/credentials/managedIdentityCredential/index.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/index.js +0 -221
- package/dist/commonjs/credentials/managedIdentityCredential/index.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/models.d.ts +0 -24
- package/dist/commonjs/credentials/managedIdentityCredential/models.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/models.js +0 -5
- package/dist/commonjs/credentials/managedIdentityCredential/models.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/options.d.ts +0 -37
- package/dist/commonjs/credentials/managedIdentityCredential/options.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/options.js +0 -5
- package/dist/commonjs/credentials/managedIdentityCredential/options.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts +0 -14
- package/dist/commonjs/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/tokenExchangeMsi.js +0 -35
- package/dist/commonjs/credentials/managedIdentityCredential/tokenExchangeMsi.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/utils.d.ts +0 -33
- package/dist/commonjs/credentials/managedIdentityCredential/utils.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/utils.js +0 -82
- package/dist/commonjs/credentials/managedIdentityCredential/utils.js.map +0 -1
- package/dist/commonjs/credentials/multiTenantTokenCredentialOptions.d.ts +0 -12
- package/dist/commonjs/credentials/multiTenantTokenCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/multiTenantTokenCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/multiTenantTokenCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/onBehalfOfCredential.d.ts +0 -105
- package/dist/commonjs/credentials/onBehalfOfCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/onBehalfOfCredential.js +0 -116
- package/dist/commonjs/credentials/onBehalfOfCredential.js.map +0 -1
- package/dist/commonjs/credentials/onBehalfOfCredentialOptions.d.ts +0 -76
- package/dist/commonjs/credentials/onBehalfOfCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/onBehalfOfCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/onBehalfOfCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/usernamePasswordCredential.d.ts +0 -41
- package/dist/commonjs/credentials/usernamePasswordCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/usernamePasswordCredential.js +0 -71
- package/dist/commonjs/credentials/usernamePasswordCredential.js.map +0 -1
- package/dist/commonjs/credentials/usernamePasswordCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/usernamePasswordCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/usernamePasswordCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/usernamePasswordCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredential.d.ts +0 -60
- package/dist/commonjs/credentials/visualStudioCodeCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredential.js +0 -196
- package/dist/commonjs/credentials/visualStudioCodeCredential.js.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredentialOptions.d.ts +0 -11
- package/dist/commonjs/credentials/visualStudioCodeCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/visualStudioCodeCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredentialPlugin.d.ts +0 -11
- package/dist/commonjs/credentials/visualStudioCodeCredentialPlugin.d.ts.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredentialPlugin.js +0 -5
- package/dist/commonjs/credentials/visualStudioCodeCredentialPlugin.js.map +0 -1
- package/dist/commonjs/credentials/workloadIdentityCredential.d.ts +0 -47
- package/dist/commonjs/credentials/workloadIdentityCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/workloadIdentityCredential.js +0 -118
- package/dist/commonjs/credentials/workloadIdentityCredential.js.map +0 -1
- package/dist/commonjs/credentials/workloadIdentityCredentialOptions.d.ts +0 -20
- package/dist/commonjs/credentials/workloadIdentityCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/workloadIdentityCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/workloadIdentityCredentialOptions.js.map +0 -1
- package/dist/commonjs/errors.d.ts +0 -139
- package/dist/commonjs/errors.d.ts.map +0 -1
- package/dist/commonjs/errors.js +0 -130
- package/dist/commonjs/errors.js.map +0 -1
- package/dist/commonjs/index.d.ts +0 -61
- package/dist/commonjs/index.d.ts.map +0 -1
- package/dist/commonjs/index.js +0 -69
- package/dist/commonjs/index.js.map +0 -1
- package/dist/commonjs/msal/browserFlows/flows.d.ts +0 -42
- package/dist/commonjs/msal/browserFlows/flows.d.ts.map +0 -1
- package/dist/commonjs/msal/browserFlows/flows.js +0 -5
- package/dist/commonjs/msal/browserFlows/flows.js.map +0 -1
- package/dist/commonjs/msal/browserFlows/msalAuthCode.d.ts +0 -48
- package/dist/commonjs/msal/browserFlows/msalAuthCode.d.ts.map +0 -1
- package/dist/commonjs/msal/browserFlows/msalAuthCode.js +0 -208
- package/dist/commonjs/msal/browserFlows/msalAuthCode.js.map +0 -1
- package/dist/commonjs/msal/browserFlows/msalBrowserCommon.d.ts +0 -106
- package/dist/commonjs/msal/browserFlows/msalBrowserCommon.d.ts.map +0 -1
- package/dist/commonjs/msal/browserFlows/msalBrowserCommon.js +0 -121
- package/dist/commonjs/msal/browserFlows/msalBrowserCommon.js.map +0 -1
- package/dist/commonjs/msal/credentials.d.ts +0 -52
- package/dist/commonjs/msal/credentials.d.ts.map +0 -1
- package/dist/commonjs/msal/credentials.js +0 -5
- package/dist/commonjs/msal/credentials.js.map +0 -1
- package/dist/commonjs/msal/msal.d.ts +0 -3
- package/dist/commonjs/msal/msal.d.ts.map +0 -1
- package/dist/commonjs/msal/msal.js +0 -9
- package/dist/commonjs/msal/msal.js.map +0 -1
- package/dist/commonjs/msal/nodeFlows/brokerOptions.d.ts +0 -44
- package/dist/commonjs/msal/nodeFlows/brokerOptions.d.ts.map +0 -1
- package/dist/commonjs/msal/nodeFlows/brokerOptions.js +0 -3
- package/dist/commonjs/msal/nodeFlows/brokerOptions.js.map +0 -1
- package/dist/commonjs/msal/nodeFlows/msalClient.d.ts +0 -186
- package/dist/commonjs/msal/nodeFlows/msalClient.d.ts.map +0 -1
- package/dist/commonjs/msal/nodeFlows/msalClient.js +0 -482
- package/dist/commonjs/msal/nodeFlows/msalClient.js.map +0 -1
- package/dist/commonjs/msal/nodeFlows/msalPlugins.d.ts +0 -91
- package/dist/commonjs/msal/nodeFlows/msalPlugins.d.ts.map +0 -1
- package/dist/commonjs/msal/nodeFlows/msalPlugins.js +0 -91
- package/dist/commonjs/msal/nodeFlows/msalPlugins.js.map +0 -1
- package/dist/commonjs/msal/nodeFlows/tokenCachePersistenceOptions.d.ts +0 -24
- package/dist/commonjs/msal/nodeFlows/tokenCachePersistenceOptions.d.ts.map +0 -1
- package/dist/commonjs/msal/nodeFlows/tokenCachePersistenceOptions.js +0 -5
- package/dist/commonjs/msal/nodeFlows/tokenCachePersistenceOptions.js.map +0 -1
- package/dist/commonjs/msal/types.d.ts +0 -87
- package/dist/commonjs/msal/types.d.ts.map +0 -1
- package/dist/commonjs/msal/types.js +0 -5
- package/dist/commonjs/msal/types.js.map +0 -1
- package/dist/commonjs/msal/utils.d.ts +0 -95
- package/dist/commonjs/msal/utils.d.ts.map +0 -1
- package/dist/commonjs/msal/utils.js +0 -253
- package/dist/commonjs/msal/utils.js.map +0 -1
- package/dist/commonjs/package.json +0 -3
- package/dist/commonjs/plugins/consumer.d.ts +0 -28
- package/dist/commonjs/plugins/consumer.d.ts.map +0 -1
- package/dist/commonjs/plugins/consumer.js +0 -46
- package/dist/commonjs/plugins/consumer.js.map +0 -1
- package/dist/commonjs/plugins/provider.d.ts +0 -36
- package/dist/commonjs/plugins/provider.d.ts.map +0 -1
- package/dist/commonjs/plugins/provider.js +0 -5
- package/dist/commonjs/plugins/provider.js.map +0 -1
- package/dist/commonjs/regionalAuthority.d.ts +0 -122
- package/dist/commonjs/regionalAuthority.d.ts.map +0 -1
- package/dist/commonjs/regionalAuthority.js +0 -144
- package/dist/commonjs/regionalAuthority.js.map +0 -1
- package/dist/commonjs/tokenCredentialOptions.d.ts +0 -28
- package/dist/commonjs/tokenCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/tokenCredentialOptions.js +0 -5
- package/dist/commonjs/tokenCredentialOptions.js.map +0 -1
- package/dist/commonjs/tokenProvider.d.ts +0 -39
- package/dist/commonjs/tokenProvider.d.ts.map +0 -1
- package/dist/commonjs/tokenProvider.js +0 -56
- package/dist/commonjs/tokenProvider.js.map +0 -1
- package/dist/commonjs/tsdoc-metadata.json +0 -11
- package/dist/commonjs/util/identityTokenEndpoint.d.ts +0 -2
- package/dist/commonjs/util/identityTokenEndpoint.d.ts.map +0 -1
- package/dist/commonjs/util/identityTokenEndpoint.js +0 -14
- package/dist/commonjs/util/identityTokenEndpoint.js.map +0 -1
- package/dist/commonjs/util/logging.d.ts +0 -70
- package/dist/commonjs/util/logging.d.ts.map +0 -1
- package/dist/commonjs/util/logging.js +0 -103
- package/dist/commonjs/util/logging.js.map +0 -1
- package/dist/commonjs/util/processMultiTenantRequest.d.ts +0 -10
- package/dist/commonjs/util/processMultiTenantRequest.d.ts.map +0 -1
- package/dist/commonjs/util/processMultiTenantRequest.js +0 -38
- package/dist/commonjs/util/processUtils.d.ts +0 -13
- package/dist/commonjs/util/processUtils.d.ts.map +0 -1
- package/dist/commonjs/util/processUtils.js +0 -36
- package/dist/commonjs/util/processUtils.js.map +0 -1
- package/dist/commonjs/util/scopeUtils.d.ts +0 -17
- package/dist/commonjs/util/scopeUtils.d.ts.map +0 -1
- package/dist/commonjs/util/scopeUtils.js +0 -34
- package/dist/commonjs/util/scopeUtils.js.map +0 -1
- package/dist/commonjs/util/subscriptionUtils.d.ts +0 -6
- package/dist/commonjs/util/subscriptionUtils.d.ts.map +0 -1
- package/dist/commonjs/util/subscriptionUtils.js +0 -17
- package/dist/commonjs/util/subscriptionUtils.js.map +0 -1
- package/dist/commonjs/util/tenantIdUtils.d.ts +0 -15
- package/dist/commonjs/util/tenantIdUtils.d.ts.map +0 -1
- package/dist/commonjs/util/tenantIdUtils.js +0 -51
- package/dist/commonjs/util/tenantIdUtils.js.map +0 -1
- package/dist/commonjs/util/tracing.d.ts +0 -6
- package/dist/commonjs/util/tracing.d.ts.map +0 -1
- package/dist/commonjs/util/tracing.js +0 -17
- package/dist/commonjs/util/tracing.js.map +0 -1
- package/dist/esm/client/identityClient.d.ts +0 -65
- package/dist/esm/client/identityClient.d.ts.map +0 -1
- package/dist/esm/client/identityClient.js.map +0 -1
- package/dist/esm/constants.d.ts +0 -69
- package/dist/esm/constants.d.ts.map +0 -1
- package/dist/esm/constants.js.map +0 -1
- package/dist/esm/credentials/authorityValidationOptions.d.ts +0 -16
- package/dist/esm/credentials/authorityValidationOptions.d.ts.map +0 -1
- package/dist/esm/credentials/authorityValidationOptions.js +0 -4
- package/dist/esm/credentials/authorityValidationOptions.js.map +0 -1
- package/dist/esm/credentials/authorizationCodeCredential.d.ts +0 -73
- package/dist/esm/credentials/authorizationCodeCredential.d.ts.map +0 -1
- package/dist/esm/credentials/authorizationCodeCredential.js.map +0 -1
- package/dist/esm/credentials/authorizationCodeCredentialOptions.d.ts +0 -8
- package/dist/esm/credentials/authorizationCodeCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/authorizationCodeCredentialOptions.js +0 -4
- package/dist/esm/credentials/authorizationCodeCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azureApplicationCredential.d.ts +0 -24
- package/dist/esm/credentials/azureApplicationCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azureApplicationCredential.js.map +0 -1
- package/dist/esm/credentials/azureApplicationCredentialOptions.d.ts +0 -13
- package/dist/esm/credentials/azureApplicationCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azureApplicationCredentialOptions.js +0 -4
- package/dist/esm/credentials/azureApplicationCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azureCliCredential.d.ts +0 -64
- package/dist/esm/credentials/azureCliCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azureCliCredential.js.map +0 -1
- package/dist/esm/credentials/azureCliCredentialOptions.d.ts +0 -20
- package/dist/esm/credentials/azureCliCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azureCliCredentialOptions.js +0 -4
- package/dist/esm/credentials/azureCliCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azureDeveloperCliCredential.d.ts +0 -71
- package/dist/esm/credentials/azureDeveloperCliCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azureDeveloperCliCredential.js.map +0 -1
- package/dist/esm/credentials/azureDeveloperCliCredentialOptions.d.ts +0 -15
- package/dist/esm/credentials/azureDeveloperCliCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azureDeveloperCliCredentialOptions.js +0 -4
- package/dist/esm/credentials/azureDeveloperCliCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azurePipelinesCredential.d.ts +0 -38
- package/dist/esm/credentials/azurePipelinesCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azurePipelinesCredential.js.map +0 -1
- package/dist/esm/credentials/azurePipelinesCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/azurePipelinesCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azurePipelinesCredentialOptions.js +0 -4
- package/dist/esm/credentials/azurePipelinesCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azurePowerShellCredential.d.ts +0 -75
- package/dist/esm/credentials/azurePowerShellCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azurePowerShellCredential.js.map +0 -1
- package/dist/esm/credentials/azurePowerShellCredentialOptions.d.ts +0 -15
- package/dist/esm/credentials/azurePowerShellCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azurePowerShellCredentialOptions.js +0 -4
- package/dist/esm/credentials/azurePowerShellCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/brokerAuthOptions.d.ts +0 -13
- package/dist/esm/credentials/brokerAuthOptions.d.ts.map +0 -1
- package/dist/esm/credentials/brokerAuthOptions.js +0 -2
- package/dist/esm/credentials/brokerAuthOptions.js.map +0 -1
- package/dist/esm/credentials/browserCustomizationOptions.d.ts +0 -19
- package/dist/esm/credentials/browserCustomizationOptions.d.ts.map +0 -1
- package/dist/esm/credentials/browserCustomizationOptions.js +0 -4
- package/dist/esm/credentials/browserCustomizationOptions.js.map +0 -1
- package/dist/esm/credentials/chainedTokenCredential.d.ts +0 -51
- package/dist/esm/credentials/chainedTokenCredential.d.ts.map +0 -1
- package/dist/esm/credentials/chainedTokenCredential.js.map +0 -1
- package/dist/esm/credentials/clientAssertionCredential.d.ts +0 -33
- package/dist/esm/credentials/clientAssertionCredential.d.ts.map +0 -1
- package/dist/esm/credentials/clientAssertionCredential.js.map +0 -1
- package/dist/esm/credentials/clientAssertionCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/clientAssertionCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/clientAssertionCredentialOptions.js +0 -4
- package/dist/esm/credentials/clientAssertionCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/clientCertificateCredential.d.ts +0 -72
- package/dist/esm/credentials/clientCertificateCredential.d.ts.map +0 -1
- package/dist/esm/credentials/clientCertificateCredential.js.map +0 -1
- package/dist/esm/credentials/clientCertificateCredentialModels.d.ts +0 -31
- package/dist/esm/credentials/clientCertificateCredentialModels.d.ts.map +0 -1
- package/dist/esm/credentials/clientCertificateCredentialModels.js +0 -4
- package/dist/esm/credentials/clientCertificateCredentialModels.js.map +0 -1
- package/dist/esm/credentials/clientCertificateCredentialOptions.d.ts +0 -14
- package/dist/esm/credentials/clientCertificateCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/clientCertificateCredentialOptions.js +0 -4
- package/dist/esm/credentials/clientCertificateCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/clientSecretCredential.d.ts +0 -37
- package/dist/esm/credentials/clientSecretCredential.d.ts.map +0 -1
- package/dist/esm/credentials/clientSecretCredential.js.map +0 -1
- package/dist/esm/credentials/clientSecretCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/clientSecretCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/clientSecretCredentialOptions.js +0 -4
- package/dist/esm/credentials/clientSecretCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/credentialPersistenceOptions.d.ts +0 -30
- package/dist/esm/credentials/credentialPersistenceOptions.d.ts.map +0 -1
- package/dist/esm/credentials/credentialPersistenceOptions.js +0 -4
- package/dist/esm/credentials/credentialPersistenceOptions.js.map +0 -1
- package/dist/esm/credentials/defaultAzureCredential.d.ts +0 -65
- package/dist/esm/credentials/defaultAzureCredential.d.ts.map +0 -1
- package/dist/esm/credentials/defaultAzureCredential.js.map +0 -1
- package/dist/esm/credentials/defaultAzureCredentialOptions.d.ts +0 -49
- package/dist/esm/credentials/defaultAzureCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/defaultAzureCredentialOptions.js +0 -4
- package/dist/esm/credentials/defaultAzureCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/deviceCodeCredential.d.ts +0 -67
- package/dist/esm/credentials/deviceCodeCredential.d.ts.map +0 -1
- package/dist/esm/credentials/deviceCodeCredential.js.map +0 -1
- package/dist/esm/credentials/deviceCodeCredentialOptions.d.ts +0 -53
- package/dist/esm/credentials/deviceCodeCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/deviceCodeCredentialOptions.js +0 -4
- package/dist/esm/credentials/deviceCodeCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/environmentCredential.d.ts +0 -52
- package/dist/esm/credentials/environmentCredential.d.ts.map +0 -1
- package/dist/esm/credentials/environmentCredential.js.map +0 -1
- package/dist/esm/credentials/environmentCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/environmentCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/environmentCredentialOptions.js +0 -4
- package/dist/esm/credentials/environmentCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/interactiveBrowserCredential.d.ts +0 -56
- package/dist/esm/credentials/interactiveBrowserCredential.d.ts.map +0 -1
- package/dist/esm/credentials/interactiveBrowserCredential.js.map +0 -1
- package/dist/esm/credentials/interactiveBrowserCredentialOptions.d.ts +0 -77
- package/dist/esm/credentials/interactiveBrowserCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/interactiveBrowserCredentialOptions.js +0 -4
- package/dist/esm/credentials/interactiveBrowserCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/interactiveCredentialOptions.d.ts +0 -25
- package/dist/esm/credentials/interactiveCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/interactiveCredentialOptions.js +0 -4
- package/dist/esm/credentials/interactiveCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/imdsMsi.d.ts +0 -18
- package/dist/esm/credentials/managedIdentityCredential/imdsMsi.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/imdsMsi.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts +0 -12
- package/dist/esm/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/imdsRetryPolicy.js +0 -33
- package/dist/esm/credentials/managedIdentityCredential/imdsRetryPolicy.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/index.d.ts +0 -61
- package/dist/esm/credentials/managedIdentityCredential/index.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/index.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/models.d.ts +0 -24
- package/dist/esm/credentials/managedIdentityCredential/models.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/models.js +0 -4
- package/dist/esm/credentials/managedIdentityCredential/models.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/options.d.ts +0 -37
- package/dist/esm/credentials/managedIdentityCredential/options.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/options.js +0 -4
- package/dist/esm/credentials/managedIdentityCredential/options.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts +0 -14
- package/dist/esm/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/tokenExchangeMsi.js +0 -32
- package/dist/esm/credentials/managedIdentityCredential/tokenExchangeMsi.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/utils.d.ts +0 -33
- package/dist/esm/credentials/managedIdentityCredential/utils.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/utils.js +0 -77
- package/dist/esm/credentials/managedIdentityCredential/utils.js.map +0 -1
- package/dist/esm/credentials/multiTenantTokenCredentialOptions.d.ts +0 -12
- package/dist/esm/credentials/multiTenantTokenCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/multiTenantTokenCredentialOptions.js +0 -4
- package/dist/esm/credentials/multiTenantTokenCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/onBehalfOfCredential.d.ts +0 -105
- package/dist/esm/credentials/onBehalfOfCredential.d.ts.map +0 -1
- package/dist/esm/credentials/onBehalfOfCredential.js.map +0 -1
- package/dist/esm/credentials/onBehalfOfCredentialOptions.d.ts +0 -76
- package/dist/esm/credentials/onBehalfOfCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/onBehalfOfCredentialOptions.js +0 -4
- package/dist/esm/credentials/onBehalfOfCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/usernamePasswordCredential.d.ts +0 -41
- package/dist/esm/credentials/usernamePasswordCredential.d.ts.map +0 -1
- package/dist/esm/credentials/usernamePasswordCredential.js.map +0 -1
- package/dist/esm/credentials/usernamePasswordCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/usernamePasswordCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/usernamePasswordCredentialOptions.js +0 -4
- package/dist/esm/credentials/usernamePasswordCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredential.d.ts +0 -60
- package/dist/esm/credentials/visualStudioCodeCredential.d.ts.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredential.js.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredentialOptions.d.ts +0 -11
- package/dist/esm/credentials/visualStudioCodeCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredentialOptions.js +0 -4
- package/dist/esm/credentials/visualStudioCodeCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredentialPlugin.d.ts +0 -11
- package/dist/esm/credentials/visualStudioCodeCredentialPlugin.d.ts.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredentialPlugin.js +0 -4
- package/dist/esm/credentials/visualStudioCodeCredentialPlugin.js.map +0 -1
- package/dist/esm/credentials/workloadIdentityCredential.d.ts +0 -47
- package/dist/esm/credentials/workloadIdentityCredential.d.ts.map +0 -1
- package/dist/esm/credentials/workloadIdentityCredential.js.map +0 -1
- package/dist/esm/credentials/workloadIdentityCredentialOptions.d.ts +0 -20
- package/dist/esm/credentials/workloadIdentityCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/workloadIdentityCredentialOptions.js +0 -4
- package/dist/esm/credentials/workloadIdentityCredentialOptions.js.map +0 -1
- package/dist/esm/errors.d.ts +0 -139
- package/dist/esm/errors.d.ts.map +0 -1
- package/dist/esm/errors.js +0 -123
- package/dist/esm/errors.js.map +0 -1
- package/dist/esm/index.d.ts +0 -61
- package/dist/esm/index.d.ts.map +0 -1
- package/dist/esm/index.js +0 -34
- package/dist/esm/index.js.map +0 -1
- package/dist/esm/msal/browserFlows/flows.d.ts +0 -42
- package/dist/esm/msal/browserFlows/flows.d.ts.map +0 -1
- package/dist/esm/msal/browserFlows/flows.js +0 -4
- package/dist/esm/msal/browserFlows/flows.js.map +0 -1
- package/dist/esm/msal/browserFlows/msalAuthCode.d.ts +0 -48
- package/dist/esm/msal/browserFlows/msalAuthCode.d.ts.map +0 -1
- package/dist/esm/msal/browserFlows/msalAuthCode.js.map +0 -1
- package/dist/esm/msal/browserFlows/msalBrowserCommon.d.ts +0 -106
- package/dist/esm/msal/browserFlows/msalBrowserCommon.d.ts.map +0 -1
- package/dist/esm/msal/browserFlows/msalBrowserCommon.js +0 -116
- package/dist/esm/msal/browserFlows/msalBrowserCommon.js.map +0 -1
- package/dist/esm/msal/credentials.d.ts +0 -52
- package/dist/esm/msal/credentials.d.ts.map +0 -1
- package/dist/esm/msal/credentials.js +0 -4
- package/dist/esm/msal/credentials.js.map +0 -1
- package/dist/esm/msal/msal.d.ts +0 -3
- package/dist/esm/msal/msal.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/brokerOptions.d.ts +0 -44
- package/dist/esm/msal/nodeFlows/brokerOptions.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/brokerOptions.js +0 -2
- package/dist/esm/msal/nodeFlows/brokerOptions.js.map +0 -1
- package/dist/esm/msal/nodeFlows/msalClient.d.ts +0 -186
- package/dist/esm/msal/nodeFlows/msalClient.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/msalClient.js +0 -477
- package/dist/esm/msal/nodeFlows/msalClient.js.map +0 -1
- package/dist/esm/msal/nodeFlows/msalPlugins.d.ts +0 -91
- package/dist/esm/msal/nodeFlows/msalPlugins.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/msalPlugins.js +0 -87
- package/dist/esm/msal/nodeFlows/msalPlugins.js.map +0 -1
- package/dist/esm/msal/nodeFlows/tokenCachePersistenceOptions.d.ts +0 -24
- package/dist/esm/msal/nodeFlows/tokenCachePersistenceOptions.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/tokenCachePersistenceOptions.js +0 -4
- package/dist/esm/msal/nodeFlows/tokenCachePersistenceOptions.js.map +0 -1
- package/dist/esm/msal/types.d.ts +0 -87
- package/dist/esm/msal/types.d.ts.map +0 -1
- package/dist/esm/msal/types.js +0 -4
- package/dist/esm/msal/types.js.map +0 -1
- package/dist/esm/msal/utils.d.ts +0 -95
- package/dist/esm/msal/utils.d.ts.map +0 -1
- package/dist/esm/msal/utils.js +0 -238
- package/dist/esm/msal/utils.js.map +0 -1
- package/dist/esm/package.json +0 -3
- package/dist/esm/plugins/consumer.d.ts +0 -28
- package/dist/esm/plugins/consumer.d.ts.map +0 -1
- package/dist/esm/plugins/consumer.js.map +0 -1
- package/dist/esm/plugins/provider.d.ts +0 -36
- package/dist/esm/plugins/provider.d.ts.map +0 -1
- package/dist/esm/plugins/provider.js +0 -4
- package/dist/esm/plugins/provider.js.map +0 -1
- package/dist/esm/regionalAuthority.d.ts +0 -122
- package/dist/esm/regionalAuthority.d.ts.map +0 -1
- package/dist/esm/regionalAuthority.js +0 -140
- package/dist/esm/regionalAuthority.js.map +0 -1
- package/dist/esm/tokenCredentialOptions.d.ts +0 -28
- package/dist/esm/tokenCredentialOptions.d.ts.map +0 -1
- package/dist/esm/tokenCredentialOptions.js +0 -4
- package/dist/esm/tokenCredentialOptions.js.map +0 -1
- package/dist/esm/tokenProvider.d.ts +0 -39
- package/dist/esm/tokenProvider.d.ts.map +0 -1
- package/dist/esm/tokenProvider.js +0 -53
- package/dist/esm/tokenProvider.js.map +0 -1
- package/dist/esm/util/authHostEnv-browser.d.mts +0 -4
- package/dist/esm/util/authHostEnv-browser.d.mts.map +0 -1
- package/dist/esm/util/authHostEnv-browser.mjs.map +0 -1
- package/dist/esm/util/identityTokenEndpoint.d.ts +0 -2
- package/dist/esm/util/identityTokenEndpoint.d.ts.map +0 -1
- package/dist/esm/util/identityTokenEndpoint.js +0 -11
- package/dist/esm/util/identityTokenEndpoint.js.map +0 -1
- package/dist/esm/util/logging.d.ts +0 -70
- package/dist/esm/util/logging.d.ts.map +0 -1
- package/dist/esm/util/logging.js +0 -94
- package/dist/esm/util/logging.js.map +0 -1
- package/dist/esm/util/processMultiTenantRequest.d.ts +0 -10
- package/dist/esm/util/processMultiTenantRequest.d.ts.map +0 -1
- package/dist/esm/util/processMultiTenantRequest.js.map +0 -1
- package/dist/esm/util/processUtils.d.ts +0 -13
- package/dist/esm/util/processUtils.d.ts.map +0 -1
- package/dist/esm/util/processUtils.js +0 -32
- package/dist/esm/util/processUtils.js.map +0 -1
- package/dist/esm/util/scopeUtils.d.ts +0 -17
- package/dist/esm/util/scopeUtils.d.ts.map +0 -1
- package/dist/esm/util/scopeUtils.js +0 -29
- package/dist/esm/util/scopeUtils.js.map +0 -1
- package/dist/esm/util/subscriptionUtils.d.ts +0 -6
- package/dist/esm/util/subscriptionUtils.d.ts.map +0 -1
- package/dist/esm/util/subscriptionUtils.js +0 -14
- package/dist/esm/util/subscriptionUtils.js.map +0 -1
- package/dist/esm/util/tenantIdUtils.d.ts +0 -15
- package/dist/esm/util/tenantIdUtils.d.ts.map +0 -1
- package/dist/esm/util/tenantIdUtils.js.map +0 -1
- package/dist/esm/util/tracing.d.ts +0 -6
- package/dist/esm/util/tracing.d.ts.map +0 -1
- package/dist/esm/util/tracing.js +0 -14
- package/dist/esm/util/tracing.js.map +0 -1
- /package/{dist/browser → dist-esm/src}/credentials/authorityValidationOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/authorityValidationOptions.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/authorizationCodeCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azureApplicationCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azureCliCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azureDeveloperCliCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azurePipelinesCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azurePowerShellCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/brokerAuthOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/browserCustomizationOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/browserCustomizationOptions.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/clientAssertionCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/clientCertificateCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/clientSecretCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/credentialPersistenceOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/defaultAzureCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/deviceCodeCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/environmentCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/interactiveBrowserCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/interactiveCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/managedIdentityCredential/imdsRetryPolicy.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/managedIdentityCredential/models.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/multiTenantTokenCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/onBehalfOfCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/usernamePasswordCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/visualStudioCodeCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/visualStudioCodeCredentialPlugin.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/visualStudioCodeCredentialPlugin.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/workloadIdentityCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/errors.js +0 -0
- /package/{dist/browser → dist-esm/src}/msal/browserFlows/flows.js +0 -0
- /package/{dist/browser → dist-esm/src}/msal/credentials.js +0 -0
- /package/{dist/esm → dist-esm/src}/msal/msal.js +0 -0
- /package/{dist/esm → dist-esm/src}/msal/msal.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/msal/nodeFlows/brokerOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/msal/nodeFlows/brokerOptions.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/msal/nodeFlows/tokenCachePersistenceOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/msal/nodeFlows/tokenCachePersistenceOptions.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/msal/types.js +0 -0
- /package/{dist/browser → dist-esm/src}/plugins/provider.js +0 -0
- /package/{dist/browser → dist-esm/src}/regionalAuthority.js +0 -0
- /package/{dist/browser → dist-esm/src}/regionalAuthority.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/tokenCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/util/identityTokenEndpoint.js +0 -0
- /package/{dist/browser → dist-esm/src}/util/identityTokenEndpoint.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/util/logging.js +0 -0
- /package/{dist/browser → dist-esm/src}/util/processUtils.js +0 -0
- /package/{dist/browser → dist-esm/src}/util/processUtils.js.map +0 -0
|
@@ -2,13 +2,13 @@
|
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
3
|
import { ServiceClient } from "@azure/core-client";
|
|
4
4
|
import { isNode } from "@azure/core-util";
|
|
5
|
-
import { createHttpHeaders, createPipelineRequest } from "@azure/core-rest-pipeline";
|
|
6
|
-
import { AuthenticationError, AuthenticationErrorName } from "../errors
|
|
7
|
-
import { getIdentityTokenEndpointSuffix } from "../util/identityTokenEndpoint
|
|
8
|
-
import { DefaultAuthorityHost, SDK_VERSION } from "../constants
|
|
9
|
-
import { tracingClient } from "../util/tracing
|
|
10
|
-
import { logger } from "../util/logging
|
|
11
|
-
import { parseExpirationTimestamp, parseRefreshTimestamp, } from "../credentials/managedIdentityCredential/utils
|
|
5
|
+
import { createHttpHeaders, createPipelineRequest, } from "@azure/core-rest-pipeline";
|
|
6
|
+
import { AuthenticationError, AuthenticationErrorName } from "../errors";
|
|
7
|
+
import { getIdentityTokenEndpointSuffix } from "../util/identityTokenEndpoint";
|
|
8
|
+
import { DefaultAuthorityHost, SDK_VERSION } from "../constants";
|
|
9
|
+
import { tracingClient } from "../util/tracing";
|
|
10
|
+
import { logger } from "../util/logging";
|
|
11
|
+
import { parseExpirationTimestamp, parseRefreshTimestamp, } from "../credentials/managedIdentityCredential/utils";
|
|
12
12
|
const noCorrelationId = "noCorrelationId";
|
|
13
13
|
/**
|
|
14
14
|
* @internal
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"identityClient.js","sourceRoot":"","sources":["../../../src/client/identityClient.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAIlC,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAGL,iBAAiB,EACjB,qBAAqB,GACtB,MAAM,2BAA2B,CAAC;AAEnC,OAAO,EAAE,mBAAmB,EAAE,uBAAuB,EAAE,MAAM,WAAW,CAAC;AACzE,OAAO,EAAE,8BAA8B,EAAE,MAAM,+BAA+B,CAAC;AAC/E,OAAO,EAAE,oBAAoB,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AACjE,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAChD,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAC;AAEzC,OAAO,EAEL,wBAAwB,EACxB,qBAAqB,GACtB,MAAM,gDAAgD,CAAC;AAExD,MAAM,eAAe,GAAG,iBAAiB,CAAC;AAiB1C;;GAEG;AACH,MAAM,UAAU,8BAA8B,CAAC,OAAgC;IAC7E,iGAAiG;IACjG,IAAI,aAAa,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,aAAa,CAAC;IAE3C,iFAAiF;IACjF,IAAI,MAAM,EAAE,CAAC;QACX,aAAa,GAAG,aAAa,aAAb,aAAa,cAAb,aAAa,GAAI,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC;IACpE,CAAC;IAED,wHAAwH;IACxH,OAAO,aAAa,aAAb,aAAa,cAAb,aAAa,GAAI,oBAAoB,CAAC;AAC/C,CAAC;AAED;;;;;;GAMG;AACH,MAAM,OAAO,cAAe,SAAQ,aAAa;IAQ/C,YAAY,OAAgC;;QAC1C,MAAM,cAAc,GAAG,qBAAqB,WAAW,EAAE,CAAC;QAC1D,MAAM,eAAe,GAAG,CAAA,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,gBAAgB,0CAAE,eAAe;YAChE,CAAC,CAAC,GAAG,OAAO,CAAC,gBAAgB,CAAC,eAAe,IAAI,cAAc,EAAE;YACjE,CAAC,CAAC,GAAG,cAAc,EAAE,CAAC;QAExB,MAAM,OAAO,GAAG,8BAA8B,CAAC,OAAO,CAAC,CAAC;QACxD,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAC;QAC9E,CAAC;QAED,KAAK,+BACH,kBAAkB,EAAE,iCAAiC,EACrD,YAAY,EAAE;gBACZ,UAAU,EAAE,CAAC;aACd,IACE,OAAO,KACV,gBAAgB,EAAE;gBAChB,eAAe;aAChB,EACD,OAAO,IACP,CAAC;QAzBG,4BAAuB,GAAY,KAAK,CAAC;QA2B/C,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC;QAC7B,IAAI,CAAC,gBAAgB,GAAG,IAAI,GAAG,EAAE,CAAC;QAClC,IAAI,CAAC,8BAA8B,GAAG,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,cAAc,0CAAE,8BAA8B,CAAC;QAC9F,4BAA4B;QAC5B,IAAI,CAAC,sBAAsB,qBAAQ,OAAO,CAAE,CAAC;QAE7C,2BAA2B;QAC3B,IAAI,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,uBAAuB,EAAE,CAAC;YACrC,IAAI,CAAC,uBAAuB,GAAG,OAAO,CAAC,uBAAuB,CAAC;QACjE,CAAC;IACH,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,OAAwB;QAC7C,MAAM,CAAC,IAAI,CAAC,6CAA6C,OAAO,CAAC,GAAG,GAAG,CAAC,CAAC;QACzE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QACjD,IAAI,QAAQ,CAAC,UAAU,IAAI,CAAC,QAAQ,CAAC,MAAM,KAAK,GAAG,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,CAAC,EAAE,CAAC;YAChF,MAAM,UAAU,GAA4B,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;YAE5E,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;gBAC7B,OAAO,IAAI,CAAC;YACd,CAAC;YAED,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;YAE9B,MAAM,KAAK,GAAG;gBACZ,WAAW,EAAE;oBACX,KAAK,EAAE,UAAU,CAAC,YAAY;oBAC9B,kBAAkB,EAAE,wBAAwB,CAAC,UAAU,CAAC;oBACxD,qBAAqB,EAAE,qBAAqB,CAAC,UAAU,CAAC;oBACxD,SAAS,EAAE,QAAQ;iBACL;gBAChB,YAAY,EAAE,UAAU,CAAC,aAAa;aACvC,CAAC;YAEF,MAAM,CAAC,IAAI,CACT,oBAAoB,OAAO,CAAC,GAAG,gCAAgC,KAAK,CAAC,WAAW,CAAC,kBAAkB,EAAE,CACtG,CAAC;YACF,OAAO,KAAK,CAAC;QACf,CAAC;aAAM,CAAC;YACN,MAAM,KAAK,GAAG,IAAI,mBAAmB,CAAC,QAAQ,CAAC,MAAM,EAAE,QAAQ,CAAC,UAAU,CAAC,CAAC;YAC5E,MAAM,CAAC,OAAO,CACZ,sDAAsD,QAAQ,CAAC,MAAM,KAAK,KAAK,CAAC,aAAa,CAAC,gBAAgB,EAAE,CACjH,CAAC;YACF,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED,KAAK,CAAC,kBAAkB,CACtB,QAAgB,EAChB,QAAgB,EAChB,MAAc,EACd,YAAgC,EAChC,YAAgC,EAChC,UAA2B,EAAE;QAE7B,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;YAC/B,OAAO,IAAI,CAAC;QACd,CAAC;QACD,MAAM,CAAC,IAAI,CACT,2DAA2D,QAAQ,aAAa,MAAM,UAAU,CACjG,CAAC;QAEF,MAAM,aAAa,GAAG;YACpB,UAAU,EAAE,eAAe;YAC3B,SAAS,EAAE,QAAQ;YACnB,aAAa,EAAE,YAAY;YAC3B,KAAK,EAAE,MAAM;SACd,CAAC;QAEF,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;YAC9B,aAAqB,CAAC,aAAa,GAAG,YAAY,CAAC;QACtD,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,eAAe,CAAC,aAAa,CAAC,CAAC;QAEjD,OAAO,aAAa,CAAC,QAAQ,CAC3B,mCAAmC,EACnC,OAAO,EACP,KAAK,EAAE,cAAc,EAAE,EAAE;YACvB,IAAI,CAAC;gBACH,MAAM,SAAS,GAAG,8BAA8B,CAAC,QAAQ,CAAC,CAAC;gBAC3D,MAAM,OAAO,GAAG,qBAAqB,CAAC;oBACpC,GAAG,EAAE,GAAG,IAAI,CAAC,aAAa,IAAI,QAAQ,IAAI,SAAS,EAAE;oBACrD,MAAM,EAAE,MAAM;oBACd,IAAI,EAAE,KAAK,CAAC,QAAQ,EAAE;oBACtB,WAAW,EAAE,OAAO,CAAC,WAAW;oBAChC,OAAO,EAAE,iBAAiB,CAAC;wBACzB,MAAM,EAAE,kBAAkB;wBAC1B,cAAc,EAAE,mCAAmC;qBACpD,CAAC;oBACF,cAAc,EAAE,cAAc,CAAC,cAAc;iBAC9C,CAAC,CAAC;gBAEH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;gBACtD,MAAM,CAAC,IAAI,CAAC,kDAAkD,QAAQ,EAAE,CAAC,CAAC;gBAC1E,OAAO,QAAQ,CAAC;YAClB,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAClB,IACE,GAAG,CAAC,IAAI,KAAK,uBAAuB;oBACpC,GAAG,CAAC,aAAa,CAAC,KAAK,KAAK,sBAAsB,EAClD,CAAC;oBACD,qDAAqD;oBACrD,yDAAyD;oBACzD,0CAA0C;oBAC1C,MAAM,CAAC,IAAI,CAAC,uDAAuD,QAAQ,EAAE,CAAC,CAAC;oBAC/E,OAAO,IAAI,CAAC;gBACd,CAAC;qBAAM,CAAC;oBACN,MAAM,CAAC,OAAO,CACZ,0DAA0D,QAAQ,KAAK,GAAG,EAAE,CAC7E,CAAC;oBACF,MAAM,GAAG,CAAC;gBACZ,CAAC;YACH,CAAC;QACH,CAAC,CACF,CAAC;IACJ,CAAC;IAED,gFAAgF;IAChF,mEAAmE;IAEnE,mBAAmB,CAAC,aAAqB;QACvC,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,WAAW,GAAG,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,aAAa,CAAC,IAAI,EAAE,CAAC;QACnE,WAAW,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAC7B,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,aAAa,EAAE,WAAW,CAAC,CAAC;QACtD,MAAM,eAAe,GAAG,UAAU,CAAC,MAAM,CAAC,OAAO,CAAC;QAClD,UAAU,CAAC,MAAM,CAAC,OAAO,GAAG,CAAC,GAAG,MAAM,EAAE,EAAE;YACxC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,aAAa,EAAE,SAAS,CAAC,CAAC;YACpD,IAAI,eAAe,EAAE,CAAC;gBACpB,eAAe,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;YACnD,CAAC;QACH,CAAC,CAAC;QACF,OAAO,UAAU,CAAC,MAAM,CAAC;IAC3B,CAAC;IAED,aAAa,CAAC,aAAsB;QAClC,MAAM,GAAG,GAAG,aAAa,IAAI,eAAe,CAAC;QAC7C,MAAM,WAAW,GAAG;YAClB,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;YACzC,uDAAuD;YACvD,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC;SACtD,CAAC;QACF,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,CAAC;YACxB,OAAO;QACT,CAAC;QACD,KAAK,MAAM,UAAU,IAAI,WAAW,EAAE,CAAC;YACrC,UAAU,CAAC,KAAK,EAAE,CAAC;QACrB,CAAC;QACD,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;IAC5C,CAAC;IAED,gBAAgB,CAAC,OAA+B;;QAC9C,MAAM,SAAS,GAAG,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,IAAI,0CAC3B,KAAK,CAAC,GAAG,EACV,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,EAC7B,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,mBAAmB,CAAC,CAAC;QAChD,OAAO,SAAS,IAAI,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,eAAe,CAAC,CAAC,CAAC,eAAe,CAAC;IAC3F,CAAC;IAED,yCAAyC;IAEzC,KAAK,CAAC,mBAAmB,CACvB,GAAW,EACX,OAA+B;QAE/B,MAAM,OAAO,GAAG,qBAAqB,CAAC;YACpC,GAAG;YACH,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,IAAI;YACnB,uBAAuB,EAAE,IAAI,CAAC,uBAAuB;YACrD,OAAO,EAAE,iBAAiB,CAAC,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,OAAO,CAAC;YAC5C,WAAW,EAAE,IAAI,CAAC,mBAAmB,CAAC,eAAe,CAAC;SACvD,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QAEjD,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAE9B,OAAO;YACL,IAAI,EAAE,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,SAAS;YACvE,OAAO,EAAE,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE;YAClC,MAAM,EAAE,QAAQ,CAAC,MAAM;SACxB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,oBAAoB,CACxB,GAAW,EACX,OAA+B;QAE/B,MAAM,OAAO,GAAG,qBAAqB,CAAC;YACpC,GAAG;YACH,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,IAAI;YACnB,OAAO,EAAE,iBAAiB,CAAC,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,OAAO,CAAC;YAC5C,uBAAuB,EAAE,IAAI,CAAC,uBAAuB;YACrD,4DAA4D;YAC5D,WAAW,EAAE,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;SACtE,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QAEjD,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAE9B,OAAO;YACL,IAAI,EAAE,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,SAAS;YACvE,OAAO,EAAE,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE;YAClC,MAAM,EAAE,QAAQ,CAAC,MAAM;SACxB,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,yBAAyB;QACvB,OAAO,IAAI,CAAC,sBAAsB,CAAC;IACrC,CAAC;IACD;;;;;;;;;;;OAWG;IACK,cAAc,CAAC,QAA0B;QAC/C,IAAI,CAAC,IAAI,CAAC,8BAA8B,IAAI,CAAC,QAAQ,CAAC,UAAU,EAAE,CAAC;YACjE,OAAO;QACT,CAAC;QACD,MAAM,cAAc,GAAG,kCAAkC,CAAC;QAC1D,IAAI,CAAC;YACH,MAAM,MAAM,GAAI,QAAgB,CAAC,UAAU,IAAI,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;YAC/E,MAAM,WAAW,GAAG,MAAM,CAAC,YAAY,CAAC;YACxC,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,uEAAuE;gBACvE,OAAO;YACT,CAAC;YACD,MAAM,cAAc,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;YACjD,MAAM,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,KAAK,CACzC,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CACvD,CAAC;YAEF,MAAM,CAAC,IAAI,CACT,sCAAsC,KAAK,gBAAgB,GAAG,0BAC5D,GAAG,IAAI,cACT,uBAAuB,GAAG,EAAE,CAC7B,CAAC;QACJ,CAAC;QAAC,OAAO,CAAM,EAAE,CAAC;YAChB,MAAM,CAAC,OAAO,CACZ,6FAA6F,EAC7F,CAAC,CAAC,OAAO,CACV,CAAC;QACJ,CAAC;IACH,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport type { INetworkModule, NetworkRequestOptions, NetworkResponse } from \"@azure/msal-node\";\nimport { AccessToken, GetTokenOptions } from \"@azure/core-auth\";\nimport { ServiceClient } from \"@azure/core-client\";\nimport { isNode } from \"@azure/core-util\";\nimport {\n PipelineRequest,\n PipelineResponse,\n createHttpHeaders,\n createPipelineRequest,\n} from \"@azure/core-rest-pipeline\";\nimport { AbortSignalLike } from \"@azure/abort-controller\";\nimport { AuthenticationError, AuthenticationErrorName } from \"../errors\";\nimport { getIdentityTokenEndpointSuffix } from \"../util/identityTokenEndpoint\";\nimport { DefaultAuthorityHost, SDK_VERSION } from \"../constants\";\nimport { tracingClient } from \"../util/tracing\";\nimport { logger } from \"../util/logging\";\nimport { TokenCredentialOptions } from \"../tokenCredentialOptions\";\nimport {\n TokenResponseParsedBody,\n parseExpirationTimestamp,\n parseRefreshTimestamp,\n} from \"../credentials/managedIdentityCredential/utils\";\n\nconst noCorrelationId = \"noCorrelationId\";\n\n/**\n * An internal type used to communicate details of a token request's\n * response that should not be sent back as part of the access token.\n */\nexport interface TokenResponse {\n /**\n * The AccessToken to be returned from getToken.\n */\n accessToken: AccessToken;\n /**\n * The refresh token if the 'offline_access' scope was used.\n */\n refreshToken?: string;\n}\n\n/**\n * @internal\n */\nexport function getIdentityClientAuthorityHost(options?: TokenCredentialOptions): string {\n // The authorityHost can come from options or from the AZURE_AUTHORITY_HOST environment variable.\n let authorityHost = options?.authorityHost;\n\n // The AZURE_AUTHORITY_HOST environment variable can only be provided in Node.js.\n if (isNode) {\n authorityHost = authorityHost ?? process.env.AZURE_AUTHORITY_HOST;\n }\n\n // If the authorityHost is not provided, we use the default one from the public cloud: https://login.microsoftonline.com\n return authorityHost ?? DefaultAuthorityHost;\n}\n\n/**\n * The network module used by the Identity credentials.\n *\n * It allows for credentials to abort any pending request independently of the MSAL flow,\n * by calling to the `abortRequests()` method.\n *\n */\nexport class IdentityClient extends ServiceClient implements INetworkModule {\n public authorityHost: string;\n private allowLoggingAccountIdentifiers?: boolean;\n private abortControllers: Map<string, AbortController[] | undefined>;\n private allowInsecureConnection: boolean = false;\n // used for WorkloadIdentity\n private tokenCredentialOptions: TokenCredentialOptions;\n\n constructor(options?: TokenCredentialOptions) {\n const packageDetails = `azsdk-js-identity/${SDK_VERSION}`;\n const userAgentPrefix = options?.userAgentOptions?.userAgentPrefix\n ? `${options.userAgentOptions.userAgentPrefix} ${packageDetails}`\n : `${packageDetails}`;\n\n const baseUri = getIdentityClientAuthorityHost(options);\n if (!baseUri.startsWith(\"https:\")) {\n throw new Error(\"The authorityHost address must use the 'https' protocol.\");\n }\n\n super({\n requestContentType: \"application/json; charset=utf-8\",\n retryOptions: {\n maxRetries: 3,\n },\n ...options,\n userAgentOptions: {\n userAgentPrefix,\n },\n baseUri,\n });\n\n this.authorityHost = baseUri;\n this.abortControllers = new Map();\n this.allowLoggingAccountIdentifiers = options?.loggingOptions?.allowLoggingAccountIdentifiers;\n // used for WorkloadIdentity\n this.tokenCredentialOptions = { ...options };\n\n // used for ManagedIdentity\n if (options?.allowInsecureConnection) {\n this.allowInsecureConnection = options.allowInsecureConnection;\n }\n }\n\n async sendTokenRequest(request: PipelineRequest): Promise<TokenResponse | null> {\n logger.info(`IdentityClient: sending token request to [${request.url}]`);\n const response = await this.sendRequest(request);\n if (response.bodyAsText && (response.status === 200 || response.status === 201)) {\n const parsedBody: TokenResponseParsedBody = JSON.parse(response.bodyAsText);\n\n if (!parsedBody.access_token) {\n return null;\n }\n\n this.logIdentifiers(response);\n\n const token = {\n accessToken: {\n token: parsedBody.access_token,\n expiresOnTimestamp: parseExpirationTimestamp(parsedBody),\n refreshAfterTimestamp: parseRefreshTimestamp(parsedBody),\n tokenType: \"Bearer\",\n } as AccessToken,\n refreshToken: parsedBody.refresh_token,\n };\n\n logger.info(\n `IdentityClient: [${request.url}] token acquired, expires on ${token.accessToken.expiresOnTimestamp}`,\n );\n return token;\n } else {\n const error = new AuthenticationError(response.status, response.bodyAsText);\n logger.warning(\n `IdentityClient: authentication error. HTTP status: ${response.status}, ${error.errorResponse.errorDescription}`,\n );\n throw error;\n }\n }\n\n async refreshAccessToken(\n tenantId: string,\n clientId: string,\n scopes: string,\n refreshToken: string | undefined,\n clientSecret: string | undefined,\n options: GetTokenOptions = {},\n ): Promise<TokenResponse | null> {\n if (refreshToken === undefined) {\n return null;\n }\n logger.info(\n `IdentityClient: refreshing access token with client ID: ${clientId}, scopes: ${scopes} started`,\n );\n\n const refreshParams = {\n grant_type: \"refresh_token\",\n client_id: clientId,\n refresh_token: refreshToken,\n scope: scopes,\n };\n\n if (clientSecret !== undefined) {\n (refreshParams as any).client_secret = clientSecret;\n }\n\n const query = new URLSearchParams(refreshParams);\n\n return tracingClient.withSpan(\n \"IdentityClient.refreshAccessToken\",\n options,\n async (updatedOptions) => {\n try {\n const urlSuffix = getIdentityTokenEndpointSuffix(tenantId);\n const request = createPipelineRequest({\n url: `${this.authorityHost}/${tenantId}/${urlSuffix}`,\n method: \"POST\",\n body: query.toString(),\n abortSignal: options.abortSignal,\n headers: createHttpHeaders({\n Accept: \"application/json\",\n \"Content-Type\": \"application/x-www-form-urlencoded\",\n }),\n tracingOptions: updatedOptions.tracingOptions,\n });\n\n const response = await this.sendTokenRequest(request);\n logger.info(`IdentityClient: refreshed token for client ID: ${clientId}`);\n return response;\n } catch (err: any) {\n if (\n err.name === AuthenticationErrorName &&\n err.errorResponse.error === \"interaction_required\"\n ) {\n // It's likely that the refresh token has expired, so\n // return null so that the credential implementation will\n // initiate the authentication flow again.\n logger.info(`IdentityClient: interaction required for client ID: ${clientId}`);\n return null;\n } else {\n logger.warning(\n `IdentityClient: failed refreshing token for client ID: ${clientId}: ${err}`,\n );\n throw err;\n }\n }\n },\n );\n }\n\n // Here is a custom layer that allows us to abort requests that go through MSAL,\n // since MSAL doesn't allow us to pass options all the way through.\n\n generateAbortSignal(correlationId: string): AbortSignalLike {\n const controller = new AbortController();\n const controllers = this.abortControllers.get(correlationId) || [];\n controllers.push(controller);\n this.abortControllers.set(correlationId, controllers);\n const existingOnAbort = controller.signal.onabort;\n controller.signal.onabort = (...params) => {\n this.abortControllers.set(correlationId, undefined);\n if (existingOnAbort) {\n existingOnAbort.apply(controller.signal, params);\n }\n };\n return controller.signal;\n }\n\n abortRequests(correlationId?: string): void {\n const key = correlationId || noCorrelationId;\n const controllers = [\n ...(this.abortControllers.get(key) || []),\n // MSAL passes no correlation ID to the get requests...\n ...(this.abortControllers.get(noCorrelationId) || []),\n ];\n if (!controllers.length) {\n return;\n }\n for (const controller of controllers) {\n controller.abort();\n }\n this.abortControllers.set(key, undefined);\n }\n\n getCorrelationId(options?: NetworkRequestOptions): string {\n const parameter = options?.body\n ?.split(\"&\")\n .map((part) => part.split(\"=\"))\n .find(([key]) => key === \"client-request-id\");\n return parameter && parameter.length ? parameter[1] || noCorrelationId : noCorrelationId;\n }\n\n // The MSAL network module methods follow\n\n async sendGetRequestAsync<T>(\n url: string,\n options?: NetworkRequestOptions,\n ): Promise<NetworkResponse<T>> {\n const request = createPipelineRequest({\n url,\n method: \"GET\",\n body: options?.body,\n allowInsecureConnection: this.allowInsecureConnection,\n headers: createHttpHeaders(options?.headers),\n abortSignal: this.generateAbortSignal(noCorrelationId),\n });\n\n const response = await this.sendRequest(request);\n\n this.logIdentifiers(response);\n\n return {\n body: response.bodyAsText ? JSON.parse(response.bodyAsText) : undefined,\n headers: response.headers.toJSON(),\n status: response.status,\n };\n }\n\n async sendPostRequestAsync<T>(\n url: string,\n options?: NetworkRequestOptions,\n ): Promise<NetworkResponse<T>> {\n const request = createPipelineRequest({\n url,\n method: \"POST\",\n body: options?.body,\n headers: createHttpHeaders(options?.headers),\n allowInsecureConnection: this.allowInsecureConnection,\n // MSAL doesn't send the correlation ID on the get requests.\n abortSignal: this.generateAbortSignal(this.getCorrelationId(options)),\n });\n\n const response = await this.sendRequest(request);\n\n this.logIdentifiers(response);\n\n return {\n body: response.bodyAsText ? JSON.parse(response.bodyAsText) : undefined,\n headers: response.headers.toJSON(),\n status: response.status,\n };\n }\n\n /**\n *\n * @internal\n */\n getTokenCredentialOptions(): TokenCredentialOptions {\n return this.tokenCredentialOptions;\n }\n /**\n * If allowLoggingAccountIdentifiers was set on the constructor options\n * we try to log the account identifiers by parsing the received access token.\n *\n * The account identifiers we try to log are:\n * - `appid`: The application or Client Identifier.\n * - `upn`: User Principal Name.\n * - It might not be available in some authentication scenarios.\n * - If it's not available, we put a placeholder: \"No User Principal Name available\".\n * - `tid`: Tenant Identifier.\n * - `oid`: Object Identifier of the authenticated user.\n */\n private logIdentifiers(response: PipelineResponse): void {\n if (!this.allowLoggingAccountIdentifiers || !response.bodyAsText) {\n return;\n }\n const unavailableUpn = \"No User Principal Name available\";\n try {\n const parsed = (response as any).parsedBody || JSON.parse(response.bodyAsText);\n const accessToken = parsed.access_token;\n if (!accessToken) {\n // Without an access token allowLoggingAccountIdentifiers isn't useful.\n return;\n }\n const base64Metadata = accessToken.split(\".\")[1];\n const { appid, upn, tid, oid } = JSON.parse(\n Buffer.from(base64Metadata, \"base64\").toString(\"utf8\"),\n );\n\n logger.info(\n `[Authenticated account] Client ID: ${appid}. Tenant ID: ${tid}. User Principal Name: ${\n upn || unavailableUpn\n }. Object ID (user): ${oid}`,\n );\n } catch (e: any) {\n logger.warning(\n \"allowLoggingAccountIdentifiers was set, but we couldn't log the account information. Error:\",\n e.message,\n );\n }\n }\n}\n"]}
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
/**
|
|
4
4
|
* Current version of the `@azure/identity` package.
|
|
5
5
|
*/
|
|
6
|
-
export const SDK_VERSION = `4.
|
|
6
|
+
export const SDK_VERSION = `4.6.0`;
|
|
7
7
|
/**
|
|
8
8
|
* The default client ID for authentication
|
|
9
9
|
* @internal
|
|
@@ -28,10 +28,7 @@ export var AzureAuthorityHosts;
|
|
|
28
28
|
AzureAuthorityHosts["AzureChina"] = "https://login.chinacloudapi.cn";
|
|
29
29
|
/**
|
|
30
30
|
* Germany-based Azure Authority Host
|
|
31
|
-
|
|
32
|
-
* @deprecated Microsoft Cloud Germany was closed on October 29th, 2021.
|
|
33
|
-
*
|
|
34
|
-
* */
|
|
31
|
+
*/
|
|
35
32
|
AzureAuthorityHosts["AzureGermany"] = "https://login.microsoftonline.de";
|
|
36
33
|
/**
|
|
37
34
|
* US Government Azure Authority Host
|
|
@@ -47,11 +44,6 @@ export var AzureAuthorityHosts;
|
|
|
47
44
|
* The default authority host.
|
|
48
45
|
*/
|
|
49
46
|
export const DefaultAuthorityHost = AzureAuthorityHosts.AzurePublicCloud;
|
|
50
|
-
/**
|
|
51
|
-
* @internal
|
|
52
|
-
* The default environment host for Azure Public Cloud
|
|
53
|
-
*/
|
|
54
|
-
export const DefaultAuthority = "login.microsoftonline.com";
|
|
55
47
|
/**
|
|
56
48
|
* @internal
|
|
57
49
|
* Allow acquiring tokens for any tenant for multi-tentant auth.
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAElC;;GAEG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG,OAAO,CAAC;AAEnC;;;GAGG;AACH,2EAA2E;AAC3E,6CAA6C;AAC7C,uGAAuG;AACvG,MAAM,CAAC,MAAM,uBAAuB,GAAG,sCAAsC,CAAC;AAE9E;;;GAGG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,QAAQ,CAAC;AAExC;;GAEG;AACH,MAAM,CAAN,IAAY,mBAiBX;AAjBD,WAAY,mBAAmB;IAC7B;;OAEG;IACH,oEAA6C,CAAA;IAC7C;;OAEG;IACH,wEAAiD,CAAA;IACjD;;OAEG;IACH,2EAAoD,CAAA;IACpD;;OAEG;IACH,6EAAsD,CAAA;AACxD,CAAC,EAjBW,mBAAmB,KAAnB,mBAAmB,QAiB9B;AAED;;;GAGG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,mBAAmB,CAAC,gBAAgB,CAAC;AAEzE;;;GAGG;AACH,MAAM,CAAC,MAAM,WAAW,GAAa,CAAC,GAAG,CAAC,CAAC;AAE3C;;GAEG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,KAAK,CAAC;AAEtC;;GAEG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,OAAO,CAAC;AAE5C;;;;;GAKG;AACH,MAAM,CAAC,MAAM,wBAAwB,GAAG,YAAY,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\n/**\n * Current version of the `@azure/identity` package.\n */\nexport const SDK_VERSION = `4.6.0`;\n\n/**\n * The default client ID for authentication\n * @internal\n */\n// TODO: temporary - this is the Azure CLI clientID - we'll replace it when\n// Developer Sign On application is available\n// https://github.com/Azure/azure-sdk-for-net/blob/main/sdk/identity/Azure.Identity/src/Constants.cs#L9\nexport const DeveloperSignOnClientId = \"04b07795-8ddb-461a-bbee-02f9e1bf7b46\";\n\n/**\n * The default tenant for authentication\n * @internal\n */\nexport const DefaultTenantId = \"common\";\n\n/**\n * A list of known Azure authority hosts\n */\nexport enum AzureAuthorityHosts {\n /**\n * China-based Azure Authority Host\n */\n AzureChina = \"https://login.chinacloudapi.cn\",\n /**\n * Germany-based Azure Authority Host\n */\n AzureGermany = \"https://login.microsoftonline.de\",\n /**\n * US Government Azure Authority Host\n */\n AzureGovernment = \"https://login.microsoftonline.us\",\n /**\n * Public Cloud Azure Authority Host\n */\n AzurePublicCloud = \"https://login.microsoftonline.com\",\n}\n\n/**\n * @internal\n * The default authority host.\n */\nexport const DefaultAuthorityHost = AzureAuthorityHosts.AzurePublicCloud;\n\n/**\n * @internal\n * Allow acquiring tokens for any tenant for multi-tentant auth.\n */\nexport const ALL_TENANTS: string[] = [\"*\"];\n\n/**\n * @internal\n */\nexport const CACHE_CAE_SUFFIX = \"cae\";\n\n/**\n * @internal\n */\nexport const CACHE_NON_CAE_SUFFIX = \"nocae\";\n\n/**\n * @internal\n *\n * The default name for the cache persistence plugin.\n * Matches the constant defined in the cache persistence package.\n */\nexport const DEFAULT_TOKEN_CACHE_NAME = \"msal.cache\";\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("AuthorizationCodeCredential is not supported in the browser. InteractiveBrowserCredential is more appropriate for this use case.");
|
|
5
5
|
const logger = credentialLogger("AuthorizationCodeCredential");
|
|
6
6
|
export class AuthorizationCodeCredential {
|
|
@@ -13,4 +13,4 @@ export class AuthorizationCodeCredential {
|
|
|
13
13
|
throw BrowserNotSupportedError;
|
|
14
14
|
}
|
|
15
15
|
}
|
|
16
|
-
//# sourceMappingURL=authorizationCodeCredential
|
|
16
|
+
//# sourceMappingURL=authorizationCodeCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"authorizationCodeCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/authorizationCodeCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAGhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,kIAAkI,CACnI,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,6BAA6B,CAAC,CAAC;AAE/D,MAAM,OAAO,2BAA2B;IAmBtC;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAEM,QAAQ;QACb,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError } from \"../util/logging\";\nimport { AuthorizationCodeCredentialOptions } from \"./authorizationCodeCredentialOptions\";\n\nconst BrowserNotSupportedError = new Error(\n \"AuthorizationCodeCredential is not supported in the browser. InteractiveBrowserCredential is more appropriate for this use case.\",\n);\nconst logger = credentialLogger(\"AuthorizationCodeCredential\");\n\nexport class AuthorizationCodeCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor(\n tenantId: string | \"common\",\n clientId: string,\n clientSecret: string,\n authorizationCode: string,\n redirectUri: string,\n options?: AuthorizationCodeCredentialOptions,\n );\n constructor(\n tenantId: string | \"common\",\n clientId: string,\n authorizationCode: string,\n redirectUri: string,\n options?: AuthorizationCodeCredentialOptions,\n );\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n public getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils
|
|
4
|
-
import { checkTenantId } from "../util/tenantIdUtils
|
|
5
|
-
import { credentialLogger } from "../util/logging
|
|
6
|
-
import { ensureScopes } from "../util/scopeUtils
|
|
7
|
-
import { tracingClient } from "../util/tracing
|
|
8
|
-
import { createMsalClient } from "../msal/nodeFlows/msalClient
|
|
3
|
+
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils";
|
|
4
|
+
import { checkTenantId } from "../util/tenantIdUtils";
|
|
5
|
+
import { credentialLogger } from "../util/logging";
|
|
6
|
+
import { ensureScopes } from "../util/scopeUtils";
|
|
7
|
+
import { tracingClient } from "../util/tracing";
|
|
8
|
+
import { createMsalClient } from "../msal/nodeFlows/msalClient";
|
|
9
9
|
const logger = credentialLogger("AuthorizationCodeCredential");
|
|
10
10
|
/**
|
|
11
11
|
* Enables authentication to Microsoft Entra ID using an authorization code
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"authorizationCodeCredential.js","sourceRoot":"","sources":["../../../src/credentials/authorizationCodeCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EACL,yBAAyB,EACzB,mCAAmC,GACpC,MAAM,uBAAuB,CAAC;AAE/B,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAChD,OAAO,EAAc,gBAAgB,EAAE,MAAM,8BAA8B,CAAC;AAE5E,MAAM,MAAM,GAAG,gBAAgB,CAAC,6BAA6B,CAAC,CAAC;AAE/D;;;;;;GAMG;AACH,MAAM,OAAO,2BAA2B;IAmEtC;;;OAGG;IACH,YACE,QAA2B,EAC3B,QAAgB,EAChB,+BAAuC,EACvC,8BAAsC,EACtC,oBAA6E,EAC7E,OAA4C;QAE5C,aAAa,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;QAChC,IAAI,CAAC,YAAY,GAAG,+BAA+B,CAAC;QAEpD,IAAI,OAAO,oBAAoB,KAAK,QAAQ,EAAE,CAAC;YAC7C,wCAAwC;YACxC,IAAI,CAAC,iBAAiB,GAAG,8BAA8B,CAAC;YACxD,IAAI,CAAC,WAAW,GAAG,oBAAoB,CAAC;YACxC,8CAA8C;QAChD,CAAC;aAAM,CAAC;YACN,gBAAgB;YAChB,IAAI,CAAC,iBAAiB,GAAG,+BAA+B,CAAC;YACzD,IAAI,CAAC,WAAW,GAAG,8BAAwC,CAAC;YAC5D,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC;YAC9B,OAAO,GAAG,oBAA0D,CAAC;QACvE,CAAC;QAED,oCAAoC;QACpC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QAEF,IAAI,CAAC,UAAU,GAAG,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,kCAChD,OAAO,KACV,MAAM,EACN,sBAAsB,EAAE,OAAO,aAAP,OAAO,cAAP,OAAO,GAAI,EAAE,IACrC,CAAC;IACL,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,QAAQ,CAAC,MAAyB,EAAE,UAA2B,EAAE;QACrE,OAAO,aAAa,CAAC,QAAQ,CAC3B,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,WAAW,EACnC,OAAO,EACP,KAAK,EAAE,UAAU,EAAE,EAAE;YACnB,MAAM,QAAQ,GAAG,yBAAyB,CACxC,IAAI,CAAC,QAAQ,EACb,UAAU,EACV,IAAI,CAAC,4BAA4B,CAClC,CAAC;YACF,UAAU,CAAC,QAAQ,GAAG,QAAQ,CAAC;YAE/B,MAAM,WAAW,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;YACzC,OAAO,IAAI,CAAC,UAAU,CAAC,2BAA2B,CAChD,WAAW,EACX,IAAI,CAAC,WAAW,EAChB,IAAI,CAAC,iBAAiB,EACtB,IAAI,CAAC,YAAY,kCAEZ,UAAU,KACb,8BAA8B,EAAE,IAAI,CAAC,8BAA8B,IAEtE,CAAC;QACJ,CAAC,CACF,CAAC;IACJ,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport {\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n} from \"../util/tenantIdUtils\";\nimport { AuthorizationCodeCredentialOptions } from \"./authorizationCodeCredentialOptions\";\nimport { checkTenantId } from \"../util/tenantIdUtils\";\nimport { credentialLogger } from \"../util/logging\";\nimport { ensureScopes } from \"../util/scopeUtils\";\nimport { tracingClient } from \"../util/tracing\";\nimport { MsalClient, createMsalClient } from \"../msal/nodeFlows/msalClient\";\n\nconst logger = credentialLogger(\"AuthorizationCodeCredential\");\n\n/**\n * Enables authentication to Microsoft Entra ID using an authorization code\n * that was obtained through the authorization code flow, described in more detail\n * in the Microsoft Entra ID documentation:\n *\n * https://learn.microsoft.com/entra/identity-platform/v2-oauth2-auth-code-flow\n */\nexport class AuthorizationCodeCredential implements TokenCredential {\n private msalClient: MsalClient;\n private disableAutomaticAuthentication?: boolean;\n private authorizationCode: string;\n private redirectUri: string;\n private tenantId?: string;\n private additionallyAllowedTenantIds: string[];\n private clientSecret?: string;\n\n /**\n * Creates an instance of AuthorizationCodeCredential with the details needed\n * to request an access token using an authentication that was obtained\n * from Microsoft Entra ID.\n *\n * It is currently necessary for the user of this credential to initiate\n * the authorization code flow to obtain an authorization code to be used\n * with this credential. A full example of this flow is provided here:\n *\n * https://github.com/Azure/azure-sdk-for-js/blob/main/sdk/identity/identity/samples/v2/manual/authorizationCodeSample.ts\n *\n * @param tenantId - The Microsoft Entra tenant (directory) ID or name.\n * 'common' may be used when dealing with multi-tenant scenarios.\n * @param clientId - The client (application) ID of an App Registration in the tenant.\n * @param clientSecret - A client secret that was generated for the App Registration\n * @param authorizationCode - An authorization code that was received from following the\n authorization code flow. This authorization code must not\n have already been used to obtain an access token.\n * @param redirectUri - The redirect URI that was used to request the authorization code.\n Must be the same URI that is configured for the App Registration.\n * @param options - Options for configuring the client which makes the access token request.\n */\n constructor(\n tenantId: string | \"common\",\n clientId: string,\n clientSecret: string,\n authorizationCode: string,\n redirectUri: string,\n options?: AuthorizationCodeCredentialOptions,\n );\n /**\n * Creates an instance of AuthorizationCodeCredential with the details needed\n * to request an access token using an authentication that was obtained\n * from Microsoft Entra ID.\n *\n * It is currently necessary for the user of this credential to initiate\n * the authorization code flow to obtain an authorization code to be used\n * with this credential. A full example of this flow is provided here:\n *\n * https://github.com/Azure/azure-sdk-for-js/blob/main/sdk/identity/identity/samples/v2/manual/authorizationCodeSample.ts\n *\n * @param tenantId - The Microsoft Entra tenant (directory) ID or name.\n * 'common' may be used when dealing with multi-tenant scenarios.\n * @param clientId - The client (application) ID of an App Registration in the tenant.\n * @param authorizationCode - An authorization code that was received from following the\n authorization code flow. This authorization code must not\n have already been used to obtain an access token.\n * @param redirectUri - The redirect URI that was used to request the authorization code.\n Must be the same URI that is configured for the App Registration.\n * @param options - Options for configuring the client which makes the access token request.\n */\n constructor(\n tenantId: string | \"common\",\n clientId: string,\n authorizationCode: string,\n redirectUri: string,\n options?: AuthorizationCodeCredentialOptions,\n );\n /**\n * @hidden\n * @internal\n */\n constructor(\n tenantId: string | \"common\",\n clientId: string,\n clientSecretOrAuthorizationCode: string,\n authorizationCodeOrRedirectUri: string,\n redirectUriOrOptions: string | AuthorizationCodeCredentialOptions | undefined,\n options?: AuthorizationCodeCredentialOptions,\n ) {\n checkTenantId(logger, tenantId);\n this.clientSecret = clientSecretOrAuthorizationCode;\n\n if (typeof redirectUriOrOptions === \"string\") {\n // the clientId+clientSecret constructor\n this.authorizationCode = authorizationCodeOrRedirectUri;\n this.redirectUri = redirectUriOrOptions;\n // in this case, options are good as they come\n } else {\n // clientId only\n this.authorizationCode = clientSecretOrAuthorizationCode;\n this.redirectUri = authorizationCodeOrRedirectUri as string;\n this.clientSecret = undefined;\n options = redirectUriOrOptions as AuthorizationCodeCredentialOptions;\n }\n\n // TODO: Validate tenant if provided\n this.tenantId = tenantId;\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n\n this.msalClient = createMsalClient(clientId, tenantId, {\n ...options,\n logger,\n tokenCredentialOptions: options ?? {},\n });\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} will be thrown with the details of the failure.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n async getToken(scopes: string | string[], options: GetTokenOptions = {}): Promise<AccessToken> {\n return tracingClient.withSpan(\n `${this.constructor.name}.getToken`,\n options,\n async (newOptions) => {\n const tenantId = processMultiTenantRequest(\n this.tenantId,\n newOptions,\n this.additionallyAllowedTenantIds,\n );\n newOptions.tenantId = tenantId;\n\n const arrayScopes = ensureScopes(scopes);\n return this.msalClient.getTokenByAuthorizationCode(\n arrayScopes,\n this.redirectUri,\n this.authorizationCode,\n this.clientSecret,\n {\n ...newOptions,\n disableAutomaticAuthentication: this.disableAutomaticAuthentication,\n },\n );\n },\n );\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"authorizationCodeCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/authorizationCodeCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AuthorityValidationOptions } from \"./authorityValidationOptions\";\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Options for the {@link AuthorizationCodeCredential}\n */\nexport interface AuthorizationCodeCredentialOptions\n extends MultiTenantTokenCredentialOptions,\n AuthorityValidationOptions {}\n"]}
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
4
|
-
import { ChainedTokenCredential } from "./chainedTokenCredential
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
|
+
import { ChainedTokenCredential } from "./chainedTokenCredential";
|
|
5
5
|
const BrowserNotSupportedError = new Error("ApplicationCredential is not supported in the browser. Use InteractiveBrowserCredential instead.");
|
|
6
6
|
const logger = credentialLogger("ApplicationCredential");
|
|
7
7
|
/**
|
|
@@ -31,4 +31,4 @@ export class AzureApplicationCredential extends ChainedTokenCredential {
|
|
|
31
31
|
throw BrowserNotSupportedError;
|
|
32
32
|
}
|
|
33
33
|
}
|
|
34
|
-
//# sourceMappingURL=azureApplicationCredential
|
|
34
|
+
//# sourceMappingURL=azureApplicationCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureApplicationCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/azureApplicationCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAElC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,OAAO,EAAE,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAGlE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,kGAAkG,CACnG,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,uBAAuB,CAAC,CAAC;AAEzD;;;;;GAKG;AACH,MAAM,OAAO,0BAA2B,SAAQ,sBAAsB;IACpE;;;;;;;;;OASG;IACH,YAAY,uBAAgD;QAC1D,KAAK,EAAE,CAAC;QACR,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAEM,QAAQ;QACb,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { credentialLogger, formatError } from \"../util/logging\";\nimport { AccessToken } from \"@azure/core-auth\";\nimport { ChainedTokenCredential } from \"./chainedTokenCredential\";\nimport { TokenCredentialOptions } from \"../tokenCredentialOptions\";\n\nconst BrowserNotSupportedError = new Error(\n \"ApplicationCredential is not supported in the browser. Use InteractiveBrowserCredential instead.\",\n);\nconst logger = credentialLogger(\"ApplicationCredential\");\n\n/**\n * Provides a default {@link ChainedTokenCredential} configuration for\n * applications that will be deployed to Azure.\n *\n * Only available in Node.js\n */\nexport class AzureApplicationCredential extends ChainedTokenCredential {\n /**\n * Creates an instance of the AzureApplicationCredential class.\n *\n * The AzureApplicationCredential provides a default {@link ChainedTokenCredential} configuration for\n * applications that will be deployed to Azure.\n *\n * Only available in Node.js\n *\n * @param options - Options for configuring the client which makes the authentication request.\n */\n constructor(_tokenCredentialOptions?: TokenCredentialOptions) {\n super();\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n public getToken(): Promise<AccessToken> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { createDefaultManagedIdentityCredential, createEnvironmentCredential, } from "./defaultAzureCredential
|
|
4
|
-
import { ChainedTokenCredential } from "./chainedTokenCredential
|
|
3
|
+
import { createDefaultManagedIdentityCredential, createEnvironmentCredential, } from "./defaultAzureCredential";
|
|
4
|
+
import { ChainedTokenCredential } from "./chainedTokenCredential";
|
|
5
5
|
/**
|
|
6
6
|
* Provides a default {@link ChainedTokenCredential} configuration that should
|
|
7
7
|
* work for most applications that use the Azure SDK.
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureApplicationCredential.js","sourceRoot":"","sources":["../../../src/credentials/azureApplicationCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAElC,OAAO,EACL,sCAAsC,EACtC,2BAA2B,GAC5B,MAAM,0BAA0B,CAAC;AAGlC,OAAO,EAAE,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAElE;;;GAGG;AACH,MAAM,OAAO,0BAA2B,SAAQ,sBAAsB;IACpE;;;;;;;;;;;;;OAaG;IACH,YAAY,OAA2C;QACrD,MAAM,mBAAmB,GAAG;YAC1B,2BAA2B;YAC3B,sCAAsC;SACvC,CAAC;QACF,KAAK,CAAC,GAAG,mBAAmB,CAAC,GAAG,CAAC,CAAC,kBAAkB,EAAE,EAAE,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;IACzF,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport {\n createDefaultManagedIdentityCredential,\n createEnvironmentCredential,\n} from \"./defaultAzureCredential\";\n\nimport { AzureApplicationCredentialOptions } from \"./azureApplicationCredentialOptions\";\nimport { ChainedTokenCredential } from \"./chainedTokenCredential\";\n\n/**\n * Provides a default {@link ChainedTokenCredential} configuration that should\n * work for most applications that use the Azure SDK.\n */\nexport class AzureApplicationCredential extends ChainedTokenCredential {\n /**\n * Creates an instance of the AzureApplicationCredential class.\n *\n * The AzureApplicationCredential provides a default {@link ChainedTokenCredential} configuration that should\n * work for most applications deployed on Azure. The following credential types will be tried, in order:\n *\n * - {@link EnvironmentCredential}\n * - {@link ManagedIdentityCredential}\n *\n * Consult the documentation of these credential types for more information\n * on how they attempt authentication.\n *\n * @param options - Optional parameters. See {@link AzureApplicationCredentialOptions}.\n */\n constructor(options?: AzureApplicationCredentialOptions) {\n const credentialFunctions = [\n createEnvironmentCredential,\n createDefaultManagedIdentityCredential,\n ];\n super(...credentialFunctions.map((createCredentialFn) => createCredentialFn(options)));\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureApplicationCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/azureApplicationCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { CredentialPersistenceOptions } from \"./credentialPersistenceOptions\";\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Provides options to configure the {@link AzureApplicationCredential} class.\n */\nexport interface AzureApplicationCredentialOptions\n extends MultiTenantTokenCredentialOptions,\n CredentialPersistenceOptions {\n /**\n * Optionally pass in a user assigned client ID to be used by the {@link ManagedIdentityCredential}.\n * This client ID can also be passed through to the {@link ManagedIdentityCredential} through the environment variable: AZURE_CLIENT_ID.\n */\n managedIdentityClientId?: string;\n}\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("AzureCliCredential is not supported in the browser.");
|
|
5
5
|
const logger = credentialLogger("AzureCliCredential");
|
|
6
6
|
/**
|
|
@@ -20,4 +20,4 @@ export class AzureCliCredential {
|
|
|
20
20
|
throw BrowserNotSupportedError;
|
|
21
21
|
}
|
|
22
22
|
}
|
|
23
|
-
//# sourceMappingURL=azureCliCredential
|
|
23
|
+
//# sourceMappingURL=azureCliCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureCliCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/azureCliCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;AAClG,MAAM,MAAM,GAAG,gBAAgB,CAAC,oBAAoB,CAAC,CAAC;AAEtD;;;GAGG;AACH,MAAM,OAAO,kBAAkB;IAC7B;;OAEG;IACH;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAED,QAAQ;QACN,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError } from \"../util/logging\";\n\nconst BrowserNotSupportedError = new Error(\"AzureCliCredential is not supported in the browser.\");\nconst logger = credentialLogger(\"AzureCliCredential\");\n\n/**\n * This credential will use the currently logged-in user login information\n * via the Azure CLI ('az') commandline tool.\n */\nexport class AzureCliCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,12 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { checkTenantId, processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils
|
|
4
|
-
import { credentialLogger, formatError, formatSuccess } from "../util/logging
|
|
5
|
-
import { ensureValidScopeForDevTimeCreds, getScopeResource } from "../util/scopeUtils
|
|
6
|
-
import { CredentialUnavailableError } from "../errors
|
|
3
|
+
import { checkTenantId, processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils";
|
|
4
|
+
import { credentialLogger, formatError, formatSuccess } from "../util/logging";
|
|
5
|
+
import { ensureValidScopeForDevTimeCreds, getScopeResource } from "../util/scopeUtils";
|
|
6
|
+
import { CredentialUnavailableError } from "../errors";
|
|
7
7
|
import child_process from "child_process";
|
|
8
|
-
import { tracingClient } from "../util/tracing
|
|
9
|
-
import { checkSubscription } from "../util/subscriptionUtils.js";
|
|
8
|
+
import { tracingClient } from "../util/tracing";
|
|
10
9
|
/**
|
|
11
10
|
* Mockable reference to the CLI credential cliCredentialFunctions
|
|
12
11
|
* @internal
|
|
@@ -17,10 +16,10 @@ export const cliCredentialInternals = {
|
|
|
17
16
|
*/
|
|
18
17
|
getSafeWorkingDir() {
|
|
19
18
|
if (process.platform === "win32") {
|
|
20
|
-
if (!process.env
|
|
21
|
-
throw new Error("Azure CLI credential expects a '
|
|
19
|
+
if (!process.env.SystemRoot) {
|
|
20
|
+
throw new Error("Azure CLI credential expects a 'SystemRoot' environment variable");
|
|
22
21
|
}
|
|
23
|
-
return process.env
|
|
22
|
+
return process.env.SystemRoot;
|
|
24
23
|
}
|
|
25
24
|
else {
|
|
26
25
|
return "/bin";
|
|
@@ -31,16 +30,11 @@ export const cliCredentialInternals = {
|
|
|
31
30
|
* @param resource - The resource to use when getting the token
|
|
32
31
|
* @internal
|
|
33
32
|
*/
|
|
34
|
-
async getAzureCliAccessToken(resource, tenantId,
|
|
33
|
+
async getAzureCliAccessToken(resource, tenantId, timeout) {
|
|
35
34
|
let tenantSection = [];
|
|
36
|
-
let subscriptionSection = [];
|
|
37
35
|
if (tenantId) {
|
|
38
36
|
tenantSection = ["--tenant", tenantId];
|
|
39
37
|
}
|
|
40
|
-
if (subscription) {
|
|
41
|
-
// Add quotes around the subscription to handle subscriptions with spaces
|
|
42
|
-
subscriptionSection = ["--subscription", `"${subscription}"`];
|
|
43
|
-
}
|
|
44
38
|
return new Promise((resolve, reject) => {
|
|
45
39
|
try {
|
|
46
40
|
child_process.execFile("az", [
|
|
@@ -51,7 +45,6 @@ export const cliCredentialInternals = {
|
|
|
51
45
|
"--resource",
|
|
52
46
|
resource,
|
|
53
47
|
...tenantSection,
|
|
54
|
-
...subscriptionSection,
|
|
55
48
|
], { cwd: cliCredentialInternals.getSafeWorkingDir(), shell: true, timeout }, (error, stdout, stderr) => {
|
|
56
49
|
resolve({ stdout: stdout, stderr: stderr, error });
|
|
57
50
|
});
|
|
@@ -83,10 +76,6 @@ export class AzureCliCredential {
|
|
|
83
76
|
checkTenantId(logger, options === null || options === void 0 ? void 0 : options.tenantId);
|
|
84
77
|
this.tenantId = options === null || options === void 0 ? void 0 : options.tenantId;
|
|
85
78
|
}
|
|
86
|
-
if (options === null || options === void 0 ? void 0 : options.subscription) {
|
|
87
|
-
checkSubscription(logger, options === null || options === void 0 ? void 0 : options.subscription);
|
|
88
|
-
this.subscription = options === null || options === void 0 ? void 0 : options.subscription;
|
|
89
|
-
}
|
|
90
79
|
this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(options === null || options === void 0 ? void 0 : options.additionallyAllowedTenants);
|
|
91
80
|
this.timeout = options === null || options === void 0 ? void 0 : options.processTimeoutInMs;
|
|
92
81
|
}
|
|
@@ -103,9 +92,6 @@ export class AzureCliCredential {
|
|
|
103
92
|
if (tenantId) {
|
|
104
93
|
checkTenantId(logger, tenantId);
|
|
105
94
|
}
|
|
106
|
-
if (this.subscription) {
|
|
107
|
-
checkSubscription(logger, this.subscription);
|
|
108
|
-
}
|
|
109
95
|
const scope = typeof scopes === "string" ? scopes : scopes[0];
|
|
110
96
|
logger.getToken.info(`Using the scope ${scope}`);
|
|
111
97
|
return tracingClient.withSpan(`${this.constructor.name}.getToken`, options, async () => {
|
|
@@ -113,7 +99,7 @@ export class AzureCliCredential {
|
|
|
113
99
|
try {
|
|
114
100
|
ensureValidScopeForDevTimeCreds(scope, logger);
|
|
115
101
|
const resource = getScopeResource(scope);
|
|
116
|
-
const obj = await cliCredentialInternals.getAzureCliAccessToken(resource, tenantId, this.
|
|
102
|
+
const obj = await cliCredentialInternals.getAzureCliAccessToken(resource, tenantId, this.timeout);
|
|
117
103
|
const specificScope = (_a = obj.stderr) === null || _a === void 0 ? void 0 : _a.match("(.*)az login --scope(.*)");
|
|
118
104
|
const isLoginError = ((_b = obj.stderr) === null || _b === void 0 ? void 0 : _b.match("(.*)az login(.*)")) && !specificScope;
|
|
119
105
|
const isNotInstallError = ((_c = obj.stderr) === null || _c === void 0 ? void 0 : _c.match("az:(.*)not found")) || ((_d = obj.stderr) === null || _d === void 0 ? void 0 : _d.startsWith("'az' is not recognized"));
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureCliCredential.js","sourceRoot":"","sources":["../../../src/credentials/azureCliCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EACL,aAAa,EACb,yBAAyB,EACzB,mCAAmC,GACpC,MAAM,uBAAuB,CAAC;AAC/B,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC/E,OAAO,EAAE,+BAA+B,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAGvF,OAAO,EAAE,0BAA0B,EAAE,MAAM,WAAW,CAAC;AACvD,OAAO,aAAa,MAAM,eAAe,CAAC;AAC1C,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD;;;GAGG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAAG;IACpC;;OAEG;IACH,iBAAiB;QACf,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;YACjC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,UAAU,EAAE,CAAC;gBAC5B,MAAM,IAAI,KAAK,CAAC,kEAAkE,CAAC,CAAC;YACtF,CAAC;YACD,OAAO,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC;QAChC,CAAC;aAAM,CAAC;YACN,OAAO,MAAM,CAAC;QAChB,CAAC;IACH,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,sBAAsB,CAC1B,QAAgB,EAChB,QAAiB,EACjB,OAAgB;QAEhB,IAAI,aAAa,GAAa,EAAE,CAAC;QACjC,IAAI,QAAQ,EAAE,CAAC;YACb,aAAa,GAAG,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;QACzC,CAAC;QACD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,IAAI,CAAC;gBACH,aAAa,CAAC,QAAQ,CACpB,IAAI,EACJ;oBACE,SAAS;oBACT,kBAAkB;oBAClB,UAAU;oBACV,MAAM;oBACN,YAAY;oBACZ,QAAQ;oBACR,GAAG,aAAa;iBACjB,EACD,EAAE,GAAG,EAAE,sBAAsB,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,EACzE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,EAAE;oBACxB,OAAO,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;gBACrD,CAAC,CACF,CAAC;YACJ,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAClB,MAAM,CAAC,GAAG,CAAC,CAAC;YACd,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;CACF,CAAC;AAEF,MAAM,MAAM,GAAG,gBAAgB,CAAC,oBAAoB,CAAC,CAAC;AAEtD;;;;;GAKG;AACH,MAAM,OAAO,kBAAkB;IAK7B;;;;;;;OAOG;IACH,YAAY,OAAmC;QAC7C,IAAI,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,EAAE,CAAC;YACtB,aAAa,CAAC,MAAM,EAAE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,CAAC,CAAC;YACzC,IAAI,CAAC,QAAQ,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,CAAC;QACpC,CAAC;QACD,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QACF,IAAI,CAAC,OAAO,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,kBAAkB,CAAC;IAC7C,CAAC;IAED;;;;;;;OAOG;IACI,KAAK,CAAC,QAAQ,CACnB,MAAyB,EACzB,UAA2B,EAAE;QAE7B,MAAM,QAAQ,GAAG,yBAAyB,CACxC,IAAI,CAAC,QAAQ,EACb,OAAO,EACP,IAAI,CAAC,4BAA4B,CAClC,CAAC;QAEF,IAAI,QAAQ,EAAE,CAAC;YACb,aAAa,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;QAClC,CAAC;QACD,MAAM,KAAK,GAAG,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QAC9D,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,KAAK,EAAE,CAAC,CAAC;QAEjD,OAAO,aAAa,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,WAAW,EAAE,OAAO,EAAE,KAAK,IAAI,EAAE;;YACrF,IAAI,CAAC;gBACH,+BAA+B,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;gBAC/C,MAAM,QAAQ,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC;gBACzC,MAAM,GAAG,GAAG,MAAM,sBAAsB,CAAC,sBAAsB,CAC7D,QAAQ,EACR,QAAQ,EACR,IAAI,CAAC,OAAO,CACb,CAAC;gBACF,MAAM,aAAa,GAAG,MAAA,GAAG,CAAC,MAAM,0CAAE,KAAK,CAAC,0BAA0B,CAAC,CAAC;gBACpE,MAAM,YAAY,GAAG,CAAA,MAAA,GAAG,CAAC,MAAM,0CAAE,KAAK,CAAC,kBAAkB,CAAC,KAAI,CAAC,aAAa,CAAC;gBAC7E,MAAM,iBAAiB,GACrB,CAAA,MAAA,GAAG,CAAC,MAAM,0CAAE,KAAK,CAAC,kBAAkB,CAAC,MAAI,MAAA,GAAG,CAAC,MAAM,0CAAE,UAAU,CAAC,wBAAwB,CAAC,CAAA,CAAC;gBAE5F,IAAI,iBAAiB,EAAE,CAAC;oBACtB,MAAM,KAAK,GAAG,IAAI,0BAA0B,CAC1C,kLAAkL,CACnL,CAAC;oBACF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC;oBACjD,MAAM,KAAK,CAAC;gBACd,CAAC;gBACD,IAAI,YAAY,EAAE,CAAC;oBACjB,MAAM,KAAK,GAAG,IAAI,0BAA0B,CAC1C,2FAA2F,CAC5F,CAAC;oBACF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC;oBACjD,MAAM,KAAK,CAAC;gBACd,CAAC;gBACD,IAAI,CAAC;oBACH,MAAM,YAAY,GAAG,GAAG,CAAC,MAAM,CAAC;oBAChC,MAAM,QAAQ,GAAgB,IAAI,CAAC,gBAAgB,CAAC,YAAY,CAAC,CAAC;oBAClE,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC;oBAC5C,OAAO,QAAQ,CAAC;gBAClB,CAAC;gBAAC,OAAO,CAAM,EAAE,CAAC;oBAChB,IAAI,GAAG,CAAC,MAAM,EAAE,CAAC;wBACf,MAAM,IAAI,0BAA0B,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;oBACnD,CAAC;oBACD,MAAM,CAAC,CAAC;gBACV,CAAC;YACH,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAClB,MAAM,KAAK,GACT,GAAG,CAAC,IAAI,KAAK,4BAA4B;oBACvC,CAAC,CAAC,GAAG;oBACL,CAAC,CAAC,IAAI,0BAA0B,CAC3B,GAAa,CAAC,OAAO,IAAI,yDAAyD,CACpF,CAAC;gBACR,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC;gBACjD,MAAM,KAAK,CAAC;YACd,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;;;;;;OASG;IACK,gBAAgB,CAAC,WAAmB;QAC1C,MAAM,QAAQ,GAAQ,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;QAC9C,MAAM,KAAK,GAAG,QAAQ,CAAC,WAAW,CAAC;QACnC,8EAA8E;QAC9E,8BAA8B;QAC9B,IAAI,kBAAkB,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,UAAU,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC;QACzE,IAAI,CAAC,KAAK,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAC/B,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,gDAAgD,CAAC,CAAC;YACvE,OAAO;gBACL,KAAK;gBACL,kBAAkB;gBAClB,SAAS,EAAE,QAAQ;aACpB,CAAC;QACJ,CAAC;QAED,2DAA2D;QAC3D,kBAAkB,GAAG,IAAI,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC;QAE5D,qCAAqC;QACrC,IAAI,KAAK,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAC9B,MAAM,IAAI,0BAA0B,CAClC,kHAAkH,QAAQ,CAAC,SAAS,GAAG,CACxI,CAAC;QACJ,CAAC;QAED,OAAO;YACL,KAAK;YACL,kBAAkB;YAClB,SAAS,EAAE,QAAQ;SACpB,CAAC;IACJ,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport {\n checkTenantId,\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n} from \"../util/tenantIdUtils\";\nimport { credentialLogger, formatError, formatSuccess } from \"../util/logging\";\nimport { ensureValidScopeForDevTimeCreds, getScopeResource } from \"../util/scopeUtils\";\n\nimport { AzureCliCredentialOptions } from \"./azureCliCredentialOptions\";\nimport { CredentialUnavailableError } from \"../errors\";\nimport child_process from \"child_process\";\nimport { tracingClient } from \"../util/tracing\";\n\n/**\n * Mockable reference to the CLI credential cliCredentialFunctions\n * @internal\n */\nexport const cliCredentialInternals = {\n /**\n * @internal\n */\n getSafeWorkingDir(): string {\n if (process.platform === \"win32\") {\n if (!process.env.SystemRoot) {\n throw new Error(\"Azure CLI credential expects a 'SystemRoot' environment variable\");\n }\n return process.env.SystemRoot;\n } else {\n return \"/bin\";\n }\n },\n\n /**\n * Gets the access token from Azure CLI\n * @param resource - The resource to use when getting the token\n * @internal\n */\n async getAzureCliAccessToken(\n resource: string,\n tenantId?: string,\n timeout?: number,\n ): Promise<{ stdout: string; stderr: string; error: Error | null }> {\n let tenantSection: string[] = [];\n if (tenantId) {\n tenantSection = [\"--tenant\", tenantId];\n }\n return new Promise((resolve, reject) => {\n try {\n child_process.execFile(\n \"az\",\n [\n \"account\",\n \"get-access-token\",\n \"--output\",\n \"json\",\n \"--resource\",\n resource,\n ...tenantSection,\n ],\n { cwd: cliCredentialInternals.getSafeWorkingDir(), shell: true, timeout },\n (error, stdout, stderr) => {\n resolve({ stdout: stdout, stderr: stderr, error });\n },\n );\n } catch (err: any) {\n reject(err);\n }\n });\n },\n};\n\nconst logger = credentialLogger(\"AzureCliCredential\");\n\n/**\n * This credential will use the currently logged-in user login information\n * via the Azure CLI ('az') commandline tool.\n * To do so, it will read the user access token and expire time\n * with Azure CLI command \"az account get-access-token\".\n */\nexport class AzureCliCredential implements TokenCredential {\n private tenantId?: string;\n private additionallyAllowedTenantIds: string[];\n private timeout?: number;\n\n /**\n * Creates an instance of the {@link AzureCliCredential}.\n *\n * To use this credential, ensure that you have already logged\n * in via the 'az' tool using the command \"az login\" from the commandline.\n *\n * @param options - Options, to optionally allow multi-tenant requests.\n */\n constructor(options?: AzureCliCredentialOptions) {\n if (options?.tenantId) {\n checkTenantId(logger, options?.tenantId);\n this.tenantId = options?.tenantId;\n }\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n this.timeout = options?.processTimeoutInMs;\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} will be thrown with the details of the failure.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n public async getToken(\n scopes: string | string[],\n options: GetTokenOptions = {},\n ): Promise<AccessToken> {\n const tenantId = processMultiTenantRequest(\n this.tenantId,\n options,\n this.additionallyAllowedTenantIds,\n );\n\n if (tenantId) {\n checkTenantId(logger, tenantId);\n }\n const scope = typeof scopes === \"string\" ? scopes : scopes[0];\n logger.getToken.info(`Using the scope ${scope}`);\n\n return tracingClient.withSpan(`${this.constructor.name}.getToken`, options, async () => {\n try {\n ensureValidScopeForDevTimeCreds(scope, logger);\n const resource = getScopeResource(scope);\n const obj = await cliCredentialInternals.getAzureCliAccessToken(\n resource,\n tenantId,\n this.timeout,\n );\n const specificScope = obj.stderr?.match(\"(.*)az login --scope(.*)\");\n const isLoginError = obj.stderr?.match(\"(.*)az login(.*)\") && !specificScope;\n const isNotInstallError =\n obj.stderr?.match(\"az:(.*)not found\") || obj.stderr?.startsWith(\"'az' is not recognized\");\n\n if (isNotInstallError) {\n const error = new CredentialUnavailableError(\n \"Azure CLI could not be found. Please visit https://aka.ms/azure-cli for installation instructions and then, once installed, authenticate to your Azure account using 'az login'.\",\n );\n logger.getToken.info(formatError(scopes, error));\n throw error;\n }\n if (isLoginError) {\n const error = new CredentialUnavailableError(\n \"Please run 'az login' from a command prompt to authenticate before using this credential.\",\n );\n logger.getToken.info(formatError(scopes, error));\n throw error;\n }\n try {\n const responseData = obj.stdout;\n const response: AccessToken = this.parseRawResponse(responseData);\n logger.getToken.info(formatSuccess(scopes));\n return response;\n } catch (e: any) {\n if (obj.stderr) {\n throw new CredentialUnavailableError(obj.stderr);\n }\n throw e;\n }\n } catch (err: any) {\n const error =\n err.name === \"CredentialUnavailableError\"\n ? err\n : new CredentialUnavailableError(\n (err as Error).message || \"Unknown error while trying to retrieve the access token\",\n );\n logger.getToken.info(formatError(scopes, error));\n throw error;\n }\n });\n }\n\n /**\n * Parses the raw JSON response from the Azure CLI into a usable AccessToken object\n *\n * @param rawResponse - The raw JSON response from the Azure CLI\n * @returns An access token with the expiry time parsed from the raw response\n *\n * The expiryTime of the credential's access token, in milliseconds, is calculated as follows:\n *\n * When available, expires_on (introduced in Azure CLI v2.54.0) will be preferred. Otherwise falls back to expiresOn.\n */\n private parseRawResponse(rawResponse: string): AccessToken {\n const response: any = JSON.parse(rawResponse);\n const token = response.accessToken;\n // if available, expires_on will be a number representing seconds since epoch.\n // ensure it's a number or NaN\n let expiresOnTimestamp = Number.parseInt(response.expires_on, 10) * 1000;\n if (!isNaN(expiresOnTimestamp)) {\n logger.getToken.info(\"expires_on is available and is valid, using it\");\n return {\n token,\n expiresOnTimestamp,\n tokenType: \"Bearer\",\n };\n }\n\n // fallback to the older expiresOn - an RFC3339 date string\n expiresOnTimestamp = new Date(response.expiresOn).getTime();\n\n // ensure expiresOn is well-formatted\n if (isNaN(expiresOnTimestamp)) {\n throw new CredentialUnavailableError(\n `Unexpected response from Azure CLI when getting token. Expected \"expiresOn\" to be a RFC3339 date string. Got: \"${response.expiresOn}\"`,\n );\n }\n\n return {\n token,\n expiresOnTimestamp,\n tokenType: \"Bearer\",\n };\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureCliCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/azureCliCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Options for the {@link AzureCliCredential}\n */\nexport interface AzureCliCredentialOptions extends MultiTenantTokenCredentialOptions {\n /**\n * Allows specifying a tenant ID\n */\n tenantId?: string;\n /**\n * Process timeout configurable for making token requests, provided in milliseconds\n */\n processTimeoutInMs?: number;\n}\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("AzureDeveloperCliCredential is not supported in the browser.");
|
|
5
5
|
const logger = credentialLogger("AzureDeveloperCliCredential");
|
|
6
6
|
/**
|
|
@@ -20,4 +20,4 @@ export class AzureDeveloperCliCredential {
|
|
|
20
20
|
throw BrowserNotSupportedError;
|
|
21
21
|
}
|
|
22
22
|
}
|
|
23
|
-
//# sourceMappingURL=azureDeveloperCliCredential
|
|
23
|
+
//# sourceMappingURL=azureDeveloperCliCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureDeveloperCliCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/azureDeveloperCliCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,8DAA8D,CAC/D,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,6BAA6B,CAAC,CAAC;AAE/D;;;GAGG;AACH,MAAM,OAAO,2BAA2B;IACtC;;OAEG;IACH;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAED,QAAQ;QACN,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError } from \"../util/logging\";\n\nconst BrowserNotSupportedError = new Error(\n \"AzureDeveloperCliCredential is not supported in the browser.\",\n);\nconst logger = credentialLogger(\"AzureDeveloperCliCredential\");\n\n/**\n * This credential will use the currently logged-in user login information\n * via the Azure Developer CLI ('azd') commandline tool.\n */\nexport class AzureDeveloperCliCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError, formatSuccess } from "../util/logging
|
|
4
|
-
import { CredentialUnavailableError } from "../errors
|
|
3
|
+
import { credentialLogger, formatError, formatSuccess } from "../util/logging";
|
|
4
|
+
import { CredentialUnavailableError } from "../errors";
|
|
5
5
|
import child_process from "child_process";
|
|
6
|
-
import { checkTenantId, processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils
|
|
7
|
-
import { tracingClient } from "../util/tracing
|
|
8
|
-
import { ensureValidScopeForDevTimeCreds } from "../util/scopeUtils
|
|
6
|
+
import { checkTenantId, processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils";
|
|
7
|
+
import { tracingClient } from "../util/tracing";
|
|
8
|
+
import { ensureValidScopeForDevTimeCreds } from "../util/scopeUtils";
|
|
9
9
|
/**
|
|
10
10
|
* Mockable reference to the Developer CLI credential cliCredentialFunctions
|
|
11
11
|
* @internal
|
|
@@ -16,10 +16,10 @@ export const developerCliCredentialInternals = {
|
|
|
16
16
|
*/
|
|
17
17
|
getSafeWorkingDir() {
|
|
18
18
|
if (process.platform === "win32") {
|
|
19
|
-
if (!process.env
|
|
20
|
-
throw new Error("Azure Developer CLI credential expects a '
|
|
19
|
+
if (!process.env.SystemRoot) {
|
|
20
|
+
throw new Error("Azure Developer CLI credential expects a 'SystemRoot' environment variable");
|
|
21
21
|
}
|
|
22
|
-
return process.env
|
|
22
|
+
return process.env.SystemRoot;
|
|
23
23
|
}
|
|
24
24
|
else {
|
|
25
25
|
return "/bin";
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureDeveloperCliCredential.js","sourceRoot":"","sources":["../../../src/credentials/azureDeveloperCliCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAE/E,OAAO,EAAE,0BAA0B,EAAE,MAAM,WAAW,CAAC;AACvD,OAAO,aAAa,MAAM,eAAe,CAAC;AAC1C,OAAO,EACL,aAAa,EACb,yBAAyB,EACzB,mCAAmC,GACpC,MAAM,uBAAuB,CAAC;AAC/B,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAChD,OAAO,EAAE,+BAA+B,EAAE,MAAM,oBAAoB,CAAC;AAErE;;;GAGG;AACH,MAAM,CAAC,MAAM,+BAA+B,GAAG;IAC7C;;OAEG;IACH,iBAAiB;QACf,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;YACjC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,UAAU,EAAE,CAAC;gBAC5B,MAAM,IAAI,KAAK,CACb,4EAA4E,CAC7E,CAAC;YACJ,CAAC;YACD,OAAO,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC;QAChC,CAAC;aAAM,CAAC;YACN,OAAO,MAAM,CAAC;QAChB,CAAC;IACH,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,iBAAiB,CACrB,MAAgB,EAChB,QAAiB,EACjB,OAAgB;QAEhB,IAAI,aAAa,GAAa,EAAE,CAAC;QACjC,IAAI,QAAQ,EAAE,CAAC;YACb,aAAa,GAAG,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC;QAC5C,CAAC;QACD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,IAAI,CAAC;gBACH,aAAa,CAAC,QAAQ,CACpB,KAAK,EACL;oBACE,MAAM;oBACN,OAAO;oBACP,UAAU;oBACV,MAAM;oBACN,GAAG,MAAM,CAAC,MAAM,CACd,CAAC,QAAQ,EAAE,OAAO,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,EAAE,OAAO,CAAC,EAC1D,EAAE,CACH;oBACD,GAAG,aAAa;iBACjB,EACD;oBACE,GAAG,EAAE,+BAA+B,CAAC,iBAAiB,EAAE;oBACxD,OAAO;iBACR,EACD,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,EAAE;oBACxB,OAAO,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;gBACrC,CAAC,CACF,CAAC;YACJ,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAClB,MAAM,CAAC,GAAG,CAAC,CAAC;YACd,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;CACF,CAAC;AAEF,MAAM,MAAM,GAAG,gBAAgB,CAAC,6BAA6B,CAAC,CAAC;AAE/D;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,MAAM,OAAO,2BAA2B;IAKtC;;;;;;;OAOG;IACH,YAAY,OAA4C;QACtD,IAAI,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,EAAE,CAAC;YACtB,aAAa,CAAC,MAAM,EAAE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,CAAC,CAAC;YACzC,IAAI,CAAC,QAAQ,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,CAAC;QACpC,CAAC;QACD,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QACF,IAAI,CAAC,OAAO,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,kBAAkB,CAAC;IAC7C,CAAC;IAED;;;;;;;OAOG;IACI,KAAK,CAAC,QAAQ,CACnB,MAAyB,EACzB,UAA2B,EAAE;QAE7B,MAAM,QAAQ,GAAG,yBAAyB,CACxC,IAAI,CAAC,QAAQ,EACb,OAAO,EACP,IAAI,CAAC,4BAA4B,CAClC,CAAC;QACF,IAAI,QAAQ,EAAE,CAAC;YACb,aAAa,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;QAClC,CAAC;QACD,IAAI,SAAmB,CAAC;QACxB,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC/B,SAAS,GAAG,CAAC,MAAM,CAAC,CAAC;QACvB,CAAC;aAAM,CAAC;YACN,SAAS,GAAG,MAAM,CAAC;QACrB,CAAC;QACD,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,oBAAoB,MAAM,EAAE,CAAC,CAAC;QAEnD,OAAO,aAAa,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,WAAW,EAAE,OAAO,EAAE,KAAK,IAAI,EAAE;;YACrF,IAAI,CAAC;gBACH,SAAS,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,EAAE;oBAC1B,+BAA+B,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;gBACjD,CAAC,CAAC,CAAC;gBACH,MAAM,GAAG,GAAG,MAAM,+BAA+B,CAAC,iBAAiB,CACjE,SAAS,EACT,QAAQ,EACR,IAAI,CAAC,OAAO,CACb,CAAC;gBACF,MAAM,kBAAkB,GACtB,CAAA,MAAA,GAAG,CAAC,MAAM,0CAAE,KAAK,CAAC,yCAAyC,CAAC;qBAC5D,MAAA,GAAG,CAAC,MAAM,0CAAE,KAAK,CAAC,8CAA8C,CAAC,CAAA,CAAC;gBACpE,MAAM,iBAAiB,GACrB,CAAA,MAAA,GAAG,CAAC,MAAM,0CAAE,KAAK,CAAC,mBAAmB,CAAC;qBACtC,MAAA,GAAG,CAAC,MAAM,0CAAE,UAAU,CAAC,yBAAyB,CAAC,CAAA,CAAC;gBAEpD,IAAI,iBAAiB,IAAI,CAAC,GAAG,CAAC,KAAK,IAAK,GAAG,CAAC,KAAa,CAAC,IAAI,KAAK,QAAQ,CAAC,EAAE,CAAC;oBAC7E,MAAM,KAAK,GAAG,IAAI,0BAA0B,CAC1C,wKAAwK,CACzK,CAAC;oBACF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC;oBACjD,MAAM,KAAK,CAAC;gBACd,CAAC;gBAED,IAAI,kBAAkB,EAAE,CAAC;oBACvB,MAAM,KAAK,GAAG,IAAI,0BAA0B,CAC1C,+NAA+N,CAChO,CAAC;oBACF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC;oBACjD,MAAM,KAAK,CAAC;gBACd,CAAC;gBAED,IAAI,CAAC;oBACH,MAAM,IAAI,GAAyC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;oBAC1E,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC;oBAC5C,OAAO;wBACL,KAAK,EAAE,IAAI,CAAC,KAAK;wBACjB,kBAAkB,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE;wBACtD,SAAS,EAAE,QAAQ;qBACL,CAAC;gBACnB,CAAC;gBAAC,OAAO,CAAM,EAAE,CAAC;oBAChB,IAAI,GAAG,CAAC,MAAM,EAAE,CAAC;wBACf,MAAM,IAAI,0BAA0B,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;oBACnD,CAAC;oBACD,MAAM,CAAC,CAAC;gBACV,CAAC;YACH,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAClB,MAAM,KAAK,GACT,GAAG,CAAC,IAAI,KAAK,4BAA4B;oBACvC,CAAC,CAAC,GAAG;oBACL,CAAC,CAAC,IAAI,0BAA0B,CAC3B,GAAa,CAAC,OAAO,IAAI,yDAAyD,CACpF,CAAC;gBACR,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC;gBACjD,MAAM,KAAK,CAAC;YACd,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError, formatSuccess } from \"../util/logging\";\nimport { AzureDeveloperCliCredentialOptions } from \"./azureDeveloperCliCredentialOptions\";\nimport { CredentialUnavailableError } from \"../errors\";\nimport child_process from \"child_process\";\nimport {\n checkTenantId,\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n} from \"../util/tenantIdUtils\";\nimport { tracingClient } from \"../util/tracing\";\nimport { ensureValidScopeForDevTimeCreds } from \"../util/scopeUtils\";\n\n/**\n * Mockable reference to the Developer CLI credential cliCredentialFunctions\n * @internal\n */\nexport const developerCliCredentialInternals = {\n /**\n * @internal\n */\n getSafeWorkingDir(): string {\n if (process.platform === \"win32\") {\n if (!process.env.SystemRoot) {\n throw new Error(\n \"Azure Developer CLI credential expects a 'SystemRoot' environment variable\",\n );\n }\n return process.env.SystemRoot;\n } else {\n return \"/bin\";\n }\n },\n\n /**\n * Gets the access token from Azure Developer CLI\n * @param scopes - The scopes to use when getting the token\n * @internal\n */\n async getAzdAccessToken(\n scopes: string[],\n tenantId?: string,\n timeout?: number,\n ): Promise<{ stdout: string; stderr: string; error: Error | null }> {\n let tenantSection: string[] = [];\n if (tenantId) {\n tenantSection = [\"--tenant-id\", tenantId];\n }\n return new Promise((resolve, reject) => {\n try {\n child_process.execFile(\n \"azd\",\n [\n \"auth\",\n \"token\",\n \"--output\",\n \"json\",\n ...scopes.reduce<string[]>(\n (previous, current) => previous.concat(\"--scope\", current),\n [],\n ),\n ...tenantSection,\n ],\n {\n cwd: developerCliCredentialInternals.getSafeWorkingDir(),\n timeout,\n },\n (error, stdout, stderr) => {\n resolve({ stdout, stderr, error });\n },\n );\n } catch (err: any) {\n reject(err);\n }\n });\n },\n};\n\nconst logger = credentialLogger(\"AzureDeveloperCliCredential\");\n\n/**\n * Azure Developer CLI is a command-line interface tool that allows developers to create, manage, and deploy\n * resources in Azure. It's built on top of the Azure CLI and provides additional functionality specific\n * to Azure developers. It allows users to authenticate as a user and/or a service principal against\n * <a href=\"https://learn.microsoft.com/entra/fundamentals/\">Microsoft Entra ID</a>. The\n * AzureDeveloperCliCredential authenticates in a development environment and acquires a token on behalf of\n * the logged-in user or service principal in the Azure Developer CLI. It acts as the Azure Developer CLI logged in user or\n * service principal and executes an Azure CLI command underneath to authenticate the application against\n * Microsoft Entra ID.\n *\n * <h2> Configure AzureDeveloperCliCredential </h2>\n *\n * To use this credential, the developer needs to authenticate locally in Azure Developer CLI using one of the\n * commands below:\n *\n * <ol>\n * <li>Run \"azd auth login\" in Azure Developer CLI to authenticate interactively as a user.</li>\n * <li>Run \"azd auth login --client-id clientID --client-secret clientSecret\n * --tenant-id tenantID\" to authenticate as a service principal.</li>\n * </ol>\n *\n * You may need to repeat this process after a certain time period, depending on the refresh token validity in your\n * organization. Generally, the refresh token validity period is a few weeks to a few months.\n * AzureDeveloperCliCredential will prompt you to sign in again.\n */\nexport class AzureDeveloperCliCredential implements TokenCredential {\n private tenantId?: string;\n private additionallyAllowedTenantIds: string[];\n private timeout?: number;\n\n /**\n * Creates an instance of the {@link AzureDeveloperCliCredential}.\n *\n * To use this credential, ensure that you have already logged\n * in via the 'azd' tool using the command \"azd auth login\" from the commandline.\n *\n * @param options - Options, to optionally allow multi-tenant requests.\n */\n constructor(options?: AzureDeveloperCliCredentialOptions) {\n if (options?.tenantId) {\n checkTenantId(logger, options?.tenantId);\n this.tenantId = options?.tenantId;\n }\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n this.timeout = options?.processTimeoutInMs;\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} will be thrown with the details of the failure.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n public async getToken(\n scopes: string | string[],\n options: GetTokenOptions = {},\n ): Promise<AccessToken> {\n const tenantId = processMultiTenantRequest(\n this.tenantId,\n options,\n this.additionallyAllowedTenantIds,\n );\n if (tenantId) {\n checkTenantId(logger, tenantId);\n }\n let scopeList: string[];\n if (typeof scopes === \"string\") {\n scopeList = [scopes];\n } else {\n scopeList = scopes;\n }\n logger.getToken.info(`Using the scopes ${scopes}`);\n\n return tracingClient.withSpan(`${this.constructor.name}.getToken`, options, async () => {\n try {\n scopeList.forEach((scope) => {\n ensureValidScopeForDevTimeCreds(scope, logger);\n });\n const obj = await developerCliCredentialInternals.getAzdAccessToken(\n scopeList,\n tenantId,\n this.timeout,\n );\n const isNotLoggedInError =\n obj.stderr?.match(\"not logged in, run `azd login` to login\") ||\n obj.stderr?.match(\"not logged in, run `azd auth login` to login\");\n const isNotInstallError =\n obj.stderr?.match(\"azd:(.*)not found\") ||\n obj.stderr?.startsWith(\"'azd' is not recognized\");\n\n if (isNotInstallError || (obj.error && (obj.error as any).code === \"ENOENT\")) {\n const error = new CredentialUnavailableError(\n \"Azure Developer CLI couldn't be found. To mitigate this issue, see the troubleshooting guidelines at https://aka.ms/azsdk/js/identity/azdevclicredential/troubleshoot.\",\n );\n logger.getToken.info(formatError(scopes, error));\n throw error;\n }\n\n if (isNotLoggedInError) {\n const error = new CredentialUnavailableError(\n \"Please run 'azd auth login' from a command prompt to authenticate before using this credential. For more information, see the troubleshooting guidelines at https://aka.ms/azsdk/js/identity/azdevclicredential/troubleshoot.\",\n );\n logger.getToken.info(formatError(scopes, error));\n throw error;\n }\n\n try {\n const resp: { token: string; expiresOn: string } = JSON.parse(obj.stdout);\n logger.getToken.info(formatSuccess(scopes));\n return {\n token: resp.token,\n expiresOnTimestamp: new Date(resp.expiresOn).getTime(),\n tokenType: \"Bearer\",\n } as AccessToken;\n } catch (e: any) {\n if (obj.stderr) {\n throw new CredentialUnavailableError(obj.stderr);\n }\n throw e;\n }\n } catch (err: any) {\n const error =\n err.name === \"CredentialUnavailableError\"\n ? err\n : new CredentialUnavailableError(\n (err as Error).message || \"Unknown error while trying to retrieve the access token\",\n );\n logger.getToken.info(formatError(scopes, error));\n throw error;\n }\n });\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azureDeveloperCliCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/azureDeveloperCliCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Options for the {@link AzureDeveloperCliCredential}\n */\nexport interface AzureDeveloperCliCredentialOptions extends MultiTenantTokenCredentialOptions {\n /**\n * Allows specifying a tenant ID\n */\n tenantId?: string;\n /**\n * Process timeout configurable for making token requests, provided in milliseconds\n */\n processTimeoutInMs?: number;\n}\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("AzurePipelinesCredential is not supported in the browser.");
|
|
5
5
|
const logger = credentialLogger("AzurePipelinesCredential");
|
|
6
6
|
/**
|
|
@@ -20,4 +20,4 @@ export class AzurePipelinesCredential {
|
|
|
20
20
|
throw BrowserNotSupportedError;
|
|
21
21
|
}
|
|
22
22
|
}
|
|
23
|
-
//# sourceMappingURL=azurePipelinesCredential
|
|
23
|
+
//# sourceMappingURL=azurePipelinesCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azurePipelinesCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/azurePipelinesCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,2DAA2D,CAC5D,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,0BAA0B,CAAC,CAAC;AAE5D;;;GAGG;AACH,MAAM,OAAO,wBAAwB;IACnC;;OAEG;IACH;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAEM,QAAQ;QACb,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError } from \"../util/logging\";\n\nconst BrowserNotSupportedError = new Error(\n \"AzurePipelinesCredential is not supported in the browser.\",\n);\nconst logger = credentialLogger(\"AzurePipelinesCredential\");\n\n/**\n * Enables authentication to Microsoft Entra ID using a PEM-encoded\n * certificate that is assigned to an App Registration.\n */\nexport class AzurePipelinesCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n public getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { AuthenticationError, CredentialUnavailableError } from "../errors
|
|
3
|
+
import { AuthenticationError, CredentialUnavailableError } from "../errors";
|
|
4
4
|
import { createHttpHeaders, createPipelineRequest } from "@azure/core-rest-pipeline";
|
|
5
|
-
import { ClientAssertionCredential } from "./clientAssertionCredential
|
|
6
|
-
import { IdentityClient } from "../client/identityClient
|
|
7
|
-
import { checkTenantId } from "../util/tenantIdUtils
|
|
8
|
-
import { credentialLogger } from "../util/logging
|
|
5
|
+
import { ClientAssertionCredential } from "./clientAssertionCredential";
|
|
6
|
+
import { IdentityClient } from "../client/identityClient";
|
|
7
|
+
import { checkTenantId } from "../util/tenantIdUtils";
|
|
8
|
+
import { credentialLogger } from "../util/logging";
|
|
9
9
|
const credentialName = "AzurePipelinesCredential";
|
|
10
10
|
const logger = credentialLogger(credentialName);
|
|
11
11
|
const OIDC_API_VERSION = "7.1";
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azurePipelinesCredential.js","sourceRoot":"","sources":["../../../src/credentials/azurePipelinesCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,mBAAmB,EAAE,0BAA0B,EAAE,MAAM,WAAW,CAAC;AAC5E,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,MAAM,2BAA2B,CAAC;AAGrF,OAAO,EAAE,yBAAyB,EAAE,MAAM,6BAA6B,CAAC;AACxE,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAE1D,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAEnD,MAAM,cAAc,GAAG,0BAA0B,CAAC;AAClD,MAAM,MAAM,GAAG,gBAAgB,CAAC,cAAc,CAAC,CAAC;AAChD,MAAM,gBAAgB,GAAG,KAAK,CAAC;AAE/B;;;GAGG;AACH,MAAM,OAAO,wBAAwB;IAInC;;;;;;;OAOG;IACH,YACE,QAAgB,EAChB,QAAgB,EAChB,mBAA2B,EAC3B,iBAAyB,EACzB,UAA2C,EAAE;;QAE7C,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,0BAA0B,CAClC,GAAG,cAAc,qDAAqD,CACvE,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,0BAA0B,CAClC,GAAG,cAAc,qDAAqD,CACvE,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;YACzB,MAAM,IAAI,0BAA0B,CAClC,GAAG,cAAc,gEAAgE,CAClF,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACvB,MAAM,IAAI,0BAA0B,CAClC,GAAG,cAAc,8DAA8D,CAChF,CAAC;QACJ,CAAC;QAED,0EAA0E;QAC1E,OAAO,CAAC,cAAc,mCACjB,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,cAAc,KAC1B,4BAA4B,EAAE;gBAC5B,GAAG,CAAC,MAAA,MAAA,OAAO,CAAC,cAAc,0CAAE,4BAA4B,mCAAI,EAAE,CAAC;gBAC/D,aAAa;gBACb,cAAc;aACf,GACF,CAAC;QAEF,IAAI,CAAC,cAAc,GAAG,IAAI,cAAc,CAAC,OAAO,CAAC,CAAC;QAClD,aAAa,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;QAChC,MAAM,CAAC,IAAI,CACT,qDAAqD,QAAQ,gBAAgB,QAAQ,gCAAgC,mBAAmB,EAAE,CAC3I,CAAC;QACF,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,qBAAqB,EAAE,CAAC;YACvC,MAAM,IAAI,0BAA0B,CAClC,GAAG,cAAc,mKAAmK,CACrL,CAAC;QACJ,CAAC;QAED,MAAM,cAAc,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,qBAAqB,gBAAgB,gBAAgB,wBAAwB,mBAAmB,EAAE,CAAC;QACzI,MAAM,CAAC,IAAI,CACT,sDAAsD,QAAQ,gBAAgB,QAAQ,+BAA+B,mBAAmB,EAAE,CAC3I,CAAC;QACF,IAAI,CAAC,yBAAyB,GAAG,IAAI,yBAAyB,CAC5D,QAAQ,EACR,QAAQ,EACR,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,EAAE,cAAc,EAAE,iBAAiB,CAAC,EACnE,OAAO,CACR,CAAC;IACJ,CAAC;IAED;;;;;;;OAOG;IACI,KAAK,CAAC,QAAQ,CACnB,MAAyB,EACzB,OAAyB;QAEzB,IAAI,CAAC,IAAI,CAAC,yBAAyB,EAAE,CAAC;YACpC,MAAM,YAAY,GAAG,GAAG,cAAc;;;;;;iIAMqF,CAAC;YAC5H,MAAM,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;YAC3B,MAAM,IAAI,0BAA0B,CAAC,YAAY,CAAC,CAAC;QACrD,CAAC;QACD,MAAM,CAAC,IAAI,CAAC,oDAAoD,CAAC,CAAC;QAClE,OAAO,IAAI,CAAC,yBAAyB,CAAC,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClE,CAAC;IAED;;;;;OAKG;IACK,KAAK,CAAC,gBAAgB,CAC5B,cAAsB,EACtB,iBAAyB;QAEzB,MAAM,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;QAC7D,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC5B,MAAM,OAAO,GAAG,qBAAqB,CAAC;YACpC,GAAG,EAAE,cAAc;YACnB,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,iBAAiB,CAAC;gBACzB,cAAc,EAAE,kBAAkB;gBAClC,aAAa,EAAE,UAAU,iBAAiB,EAAE;gBAC5C,iGAAiG;gBACjG,uBAAuB,EAAE,UAAU;aACpC,CAAC;SACH,CAAC,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QAChE,OAAO,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IACtC,CAAC;CACF;AAED,MAAM,UAAU,kBAAkB,CAAC,QAA0B;IAC3D,8CAA8C;IAC9C,MAAM,IAAI,GAAG,QAAQ,CAAC,UAAU,CAAC;IACjC,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,CAAC,KAAK,CACV,GAAG,cAAc,oFACf,QAAQ,CAAC,MACX,yBAAyB,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,CACpD,CAAC;QACF,MAAM,IAAI,mBAAmB,CAAC,QAAQ,CAAC,MAAM,EAAE;YAC7C,KAAK,EAAE,GAAG,cAAc,iEAAiE;YACzF,iBAAiB,EAAE,GAAG,IAAI,CAAC,SAAS,CAClC,QAAQ,CACT,8HAA8H;SAChI,CAAC,CAAC;IACL,CAAC;IACD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAChC,IAAI,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,SAAS,EAAE,CAAC;YACtB,OAAO,MAAM,CAAC,SAAS,CAAC;QAC1B,CAAC;aAAM,CAAC;YACN,MAAM,YAAY,GAAG,GAAG,cAAc,wEAAwE,CAAC;YAC/G,IAAI,gBAAgB,GAAG,EAAE,CAAC;YAC1B,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC5B,gBAAgB,GAAG,mBAAmB,IAAI,wCAAwC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC,2BAA2B,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,8HAA8H,CAAC;YACrT,CAAC;YACD,MAAM,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;YAC3B,MAAM,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;YAC/B,MAAM,IAAI,mBAAmB,CAAC,QAAQ,CAAC,MAAM,EAAE;gBAC7C,KAAK,EAAE,YAAY;gBACnB,iBAAiB,EAAE,gBAAgB;aACpC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,MAAM,YAAY,GAAG,GAAG,cAAc,wEAAwE,CAAC;QAC/G,MAAM,CAAC,KAAK,CACV,2BAA2B,IAAI,wCAAwC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC;+BACjF,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,qBAAqB,CAAC,CAAC,OAAO,EAAE,CAC9F,CAAC;QACF,MAAM,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;QAC3B,MAAM,IAAI,mBAAmB,CAAC,QAAQ,CAAC,MAAM,EAAE;YAC7C,KAAK,EAAE,YAAY;YACnB,iBAAiB,EAAE,cAAc,IAAI,wCAAwC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC,4BAA4B,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,8HAA8H;SAC/S,CAAC,CAAC;IACL,CAAC;AACH,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport { AuthenticationError, CredentialUnavailableError } from \"../errors\";\nimport { createHttpHeaders, createPipelineRequest } from \"@azure/core-rest-pipeline\";\n\nimport { AzurePipelinesCredentialOptions } from \"./azurePipelinesCredentialOptions\";\nimport { ClientAssertionCredential } from \"./clientAssertionCredential\";\nimport { IdentityClient } from \"../client/identityClient\";\nimport { PipelineResponse } from \"@azure/core-rest-pipeline\";\nimport { checkTenantId } from \"../util/tenantIdUtils\";\nimport { credentialLogger } from \"../util/logging\";\n\nconst credentialName = \"AzurePipelinesCredential\";\nconst logger = credentialLogger(credentialName);\nconst OIDC_API_VERSION = \"7.1\";\n\n/**\n * This credential is designed to be used in Azure Pipelines with service connections\n * as a setup for workload identity federation.\n */\nexport class AzurePipelinesCredential implements TokenCredential {\n private clientAssertionCredential: ClientAssertionCredential | undefined;\n private identityClient: IdentityClient;\n\n /**\n * AzurePipelinesCredential supports Federated Identity on Azure Pipelines through Service Connections.\n * @param tenantId - tenantId associated with the service connection\n * @param clientId - clientId associated with the service connection\n * @param serviceConnectionId - Unique ID for the service connection, as found in the querystring's resourceId key\n * @param systemAccessToken - The pipeline's <see href=\"https://learn.microsoft.com/azure/devops/pipelines/build/variables?view=azure-devops%26tabs=yaml#systemaccesstoken\">System.AccessToken</see> value.\n * @param options - The identity client options to use for authentication.\n */\n constructor(\n tenantId: string,\n clientId: string,\n serviceConnectionId: string,\n systemAccessToken: string,\n options: AzurePipelinesCredentialOptions = {},\n ) {\n if (!clientId) {\n throw new CredentialUnavailableError(\n `${credentialName}: is unavailable. clientId is a required parameter.`,\n );\n }\n if (!tenantId) {\n throw new CredentialUnavailableError(\n `${credentialName}: is unavailable. tenantId is a required parameter.`,\n );\n }\n if (!serviceConnectionId) {\n throw new CredentialUnavailableError(\n `${credentialName}: is unavailable. serviceConnectionId is a required parameter.`,\n );\n }\n if (!systemAccessToken) {\n throw new CredentialUnavailableError(\n `${credentialName}: is unavailable. systemAccessToken is a required parameter.`,\n );\n }\n\n // Allow these headers to be logged for troubleshooting by AzurePipelines.\n options.loggingOptions = {\n ...options?.loggingOptions,\n additionalAllowedHeaderNames: [\n ...(options.loggingOptions?.additionalAllowedHeaderNames ?? []),\n \"x-vss-e2eid\",\n \"x-msedge-ref\",\n ],\n };\n\n this.identityClient = new IdentityClient(options);\n checkTenantId(logger, tenantId);\n logger.info(\n `Invoking AzurePipelinesCredential with tenant ID: ${tenantId}, client ID: ${clientId}, and service connection ID: ${serviceConnectionId}`,\n );\n if (!process.env.SYSTEM_OIDCREQUESTURI) {\n throw new CredentialUnavailableError(\n `${credentialName}: is unavailable. Ensure that you're running this task in an Azure Pipeline, so that following missing system variable(s) can be defined- \"SYSTEM_OIDCREQUESTURI\"`,\n );\n }\n\n const oidcRequestUrl = `${process.env.SYSTEM_OIDCREQUESTURI}?api-version=${OIDC_API_VERSION}&serviceConnectionId=${serviceConnectionId}`;\n logger.info(\n `Invoking ClientAssertionCredential with tenant ID: ${tenantId}, client ID: ${clientId} and service connection ID: ${serviceConnectionId}`,\n );\n this.clientAssertionCredential = new ClientAssertionCredential(\n tenantId,\n clientId,\n this.requestOidcToken.bind(this, oidcRequestUrl, systemAccessToken),\n options,\n );\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} or {@link AuthenticationError} will be thrown with the details of the failure.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n public async getToken(\n scopes: string | string[],\n options?: GetTokenOptions,\n ): Promise<AccessToken> {\n if (!this.clientAssertionCredential) {\n const errorMessage = `${credentialName}: is unavailable. To use Federation Identity in Azure Pipelines, the following parameters are required - \n tenantId,\n clientId,\n serviceConnectionId,\n systemAccessToken,\n \"SYSTEM_OIDCREQUESTURI\". \n See the troubleshooting guide for more information: https://aka.ms/azsdk/js/identity/azurepipelinescredential/troubleshoot`;\n logger.error(errorMessage);\n throw new CredentialUnavailableError(errorMessage);\n }\n logger.info(\"Invoking getToken() of Client Assertion Credential\");\n return this.clientAssertionCredential.getToken(scopes, options);\n }\n\n /**\n *\n * @param oidcRequestUrl - oidc request url\n * @param systemAccessToken - system access token\n * @returns OIDC token from Azure Pipelines\n */\n private async requestOidcToken(\n oidcRequestUrl: string,\n systemAccessToken: string,\n ): Promise<string> {\n logger.info(\"Requesting OIDC token from Azure Pipelines...\");\n logger.info(oidcRequestUrl);\n const request = createPipelineRequest({\n url: oidcRequestUrl,\n method: \"POST\",\n headers: createHttpHeaders({\n \"Content-Type\": \"application/json\",\n Authorization: `Bearer ${systemAccessToken}`,\n // Prevents the service from responding with a redirect HTTP status code (useful for automation).\n \"X-TFS-FedAuthRedirect\": \"Suppress\",\n }),\n });\n const response = await this.identityClient.sendRequest(request);\n return handleOidcResponse(response);\n }\n}\n\nexport function handleOidcResponse(response: PipelineResponse): string {\n // OIDC token is present in `bodyAsText` field\n const text = response.bodyAsText;\n if (!text) {\n logger.error(\n `${credentialName}: Authentication Failed. Received null token from OIDC request. Response status- ${\n response.status\n }. Complete response - ${JSON.stringify(response)}`,\n );\n throw new AuthenticationError(response.status, {\n error: `${credentialName}: Authentication Failed. Received null token from OIDC request.`,\n error_description: `${JSON.stringify(\n response,\n )}. See the troubleshooting guide for more information: https://aka.ms/azsdk/js/identity/azurepipelinescredential/troubleshoot`,\n });\n }\n try {\n const result = JSON.parse(text);\n if (result?.oidcToken) {\n return result.oidcToken;\n } else {\n const errorMessage = `${credentialName}: Authentication Failed. oidcToken field not detected in the response.`;\n let errorDescription = ``;\n if (response.status !== 200) {\n errorDescription = `Response body = ${text}. Response Headers [\"x-vss-e2eid\"] = ${response.headers.get(\"x-vss-e2eid\")} and [\"x-msedge-ref\"] = ${response.headers.get(\"x-msedge-ref\")}. See the troubleshooting guide for more information: https://aka.ms/azsdk/js/identity/azurepipelinescredential/troubleshoot`;\n }\n logger.error(errorMessage);\n logger.error(errorDescription);\n throw new AuthenticationError(response.status, {\n error: errorMessage,\n error_description: errorDescription,\n });\n }\n } catch (e: any) {\n const errorDetails = `${credentialName}: Authentication Failed. oidcToken field not detected in the response.`;\n logger.error(\n `Response from service = ${text}, Response Headers [\"x-vss-e2eid\"] = ${response.headers.get(\"x-vss-e2eid\")} \n and [\"x-msedge-ref\"] = ${response.headers.get(\"x-msedge-ref\")}, error message = ${e.message}`,\n );\n logger.error(errorDetails);\n throw new AuthenticationError(response.status, {\n error: errorDetails,\n error_description: `Response = ${text}. Response headers [\"x-vss-e2eid\"] = ${response.headers.get(\"x-vss-e2eid\")} and [\"x-msedge-ref\"] = ${response.headers.get(\"x-msedge-ref\")}. See the troubleshooting guide for more information: https://aka.ms/azsdk/js/identity/azurepipelinescredential/troubleshoot`,\n });\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azurePipelinesCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/azurePipelinesCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AuthorityValidationOptions } from \"./authorityValidationOptions\";\nimport { CredentialPersistenceOptions } from \"./credentialPersistenceOptions\";\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Optional parameters for the {@link AzurePipelinesCredential} class.\n */\nexport interface AzurePipelinesCredentialOptions\n extends MultiTenantTokenCredentialOptions,\n CredentialPersistenceOptions,\n AuthorityValidationOptions {}\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("AzurePowerShellCredential is not supported in the browser.");
|
|
5
5
|
const logger = credentialLogger("AzurePowerShellCredential");
|
|
6
6
|
/**
|
|
@@ -19,4 +19,4 @@ export class AzurePowerShellCredential {
|
|
|
19
19
|
throw BrowserNotSupportedError;
|
|
20
20
|
}
|
|
21
21
|
}
|
|
22
|
-
//# sourceMappingURL=azurePowerShellCredential
|
|
22
|
+
//# sourceMappingURL=azurePowerShellCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azurePowerShellCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/azurePowerShellCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,4DAA4D,CAC7D,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,2BAA2B,CAAC,CAAC;AAE7D;;GAEG;AACH,MAAM,OAAO,yBAAyB;IACpC;;OAEG;IACH;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAED,QAAQ;QACN,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError } from \"../util/logging\";\n\nconst BrowserNotSupportedError = new Error(\n \"AzurePowerShellCredential is not supported in the browser.\",\n);\nconst logger = credentialLogger(\"AzurePowerShellCredential\");\n\n/**\n * This credential will use the currently-logged-in user's login information via the Azure Power Shell command line tool.\n */\nexport class AzurePowerShellCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { checkTenantId, processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils
|
|
4
|
-
import { credentialLogger, formatError, formatSuccess } from "../util/logging
|
|
5
|
-
import { ensureValidScopeForDevTimeCreds, getScopeResource } from "../util/scopeUtils
|
|
6
|
-
import { CredentialUnavailableError } from "../errors
|
|
7
|
-
import { processUtils } from "../util/processUtils
|
|
8
|
-
import { tracingClient } from "../util/tracing
|
|
3
|
+
import { checkTenantId, processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils";
|
|
4
|
+
import { credentialLogger, formatError, formatSuccess } from "../util/logging";
|
|
5
|
+
import { ensureValidScopeForDevTimeCreds, getScopeResource } from "../util/scopeUtils";
|
|
6
|
+
import { CredentialUnavailableError } from "../errors";
|
|
7
|
+
import { processUtils } from "../util/processUtils";
|
|
8
|
+
import { tracingClient } from "../util/tracing";
|
|
9
9
|
const logger = credentialLogger("AzurePowerShellCredential");
|
|
10
10
|
const isWindows = process.platform === "win32";
|
|
11
11
|
/**
|