@azure/identity 4.5.1-alpha.20250115.7 → 4.6.0
Sign up to get free protection for your applications and to get access to all the features.
- package/README.md +1 -5
- package/dist/index.js +4211 -0
- package/dist/index.js.map +1 -0
- package/{dist/esm → dist-esm/src}/client/identityClient.js +7 -7
- package/dist-esm/src/client/identityClient.js.map +1 -0
- package/{dist/esm → dist-esm/src}/constants.js +2 -10
- package/dist-esm/src/constants.js.map +1 -0
- package/{dist/browser/credentials/authorizationCodeCredential.js → dist-esm/src/credentials/authorizationCodeCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/authorizationCodeCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/authorizationCodeCredential.js +6 -6
- package/dist-esm/src/credentials/authorizationCodeCredential.js.map +1 -0
- package/dist-esm/src/credentials/authorizationCodeCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azureApplicationCredential.js → dist-esm/src/credentials/azureApplicationCredential.browser.js} +3 -3
- package/dist-esm/src/credentials/azureApplicationCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azureApplicationCredential.js +2 -2
- package/dist-esm/src/credentials/azureApplicationCredential.js.map +1 -0
- package/dist-esm/src/credentials/azureApplicationCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azureCliCredential.js → dist-esm/src/credentials/azureCliCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/azureCliCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azureCliCredential.js +10 -24
- package/dist-esm/src/credentials/azureCliCredential.js.map +1 -0
- package/dist-esm/src/credentials/azureCliCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azureDeveloperCliCredential.js → dist-esm/src/credentials/azureDeveloperCliCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/azureDeveloperCliCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azureDeveloperCliCredential.js +8 -8
- package/dist-esm/src/credentials/azureDeveloperCliCredential.js.map +1 -0
- package/dist-esm/src/credentials/azureDeveloperCliCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azurePipelinesCredential.js → dist-esm/src/credentials/azurePipelinesCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/azurePipelinesCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azurePipelinesCredential.js +5 -5
- package/dist-esm/src/credentials/azurePipelinesCredential.js.map +1 -0
- package/dist-esm/src/credentials/azurePipelinesCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/azurePowerShellCredential.js → dist-esm/src/credentials/azurePowerShellCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/azurePowerShellCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/azurePowerShellCredential.js +6 -6
- package/dist-esm/src/credentials/azurePowerShellCredential.js.map +1 -0
- package/dist-esm/src/credentials/azurePowerShellCredentialOptions.js.map +1 -0
- package/dist-esm/src/credentials/brokerAuthOptions.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/chainedTokenCredential.js +5 -8
- package/dist-esm/src/credentials/chainedTokenCredential.js.map +1 -0
- package/{dist/browser/credentials/clientAssertionCredential.js → dist-esm/src/credentials/clientAssertionCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/clientAssertionCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/clientAssertionCredential.js +5 -5
- package/dist-esm/src/credentials/clientAssertionCredential.js.map +1 -0
- package/dist-esm/src/credentials/clientAssertionCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/clientCertificateCredential.js → dist-esm/src/credentials/clientCertificateCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/clientCertificateCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/clientCertificateCredential.js +9 -12
- package/dist-esm/src/credentials/clientCertificateCredential.js.map +1 -0
- package/dist-esm/src/credentials/clientCertificateCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/clientSecretCredential.js → dist-esm/src/credentials/clientSecretCredential.browser.js} +6 -6
- package/dist-esm/src/credentials/clientSecretCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/clientSecretCredential.js +6 -6
- package/dist-esm/src/credentials/clientSecretCredential.js.map +1 -0
- package/dist-esm/src/credentials/clientSecretCredentialOptions.js.map +1 -0
- package/dist-esm/src/credentials/credentialPersistenceOptions.js.map +1 -0
- package/{dist/browser/credentials/defaultAzureCredential.js → dist-esm/src/credentials/defaultAzureCredential.browser.js} +3 -3
- package/dist-esm/src/credentials/defaultAzureCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/defaultAzureCredential.js +10 -23
- package/dist-esm/src/credentials/defaultAzureCredential.js.map +1 -0
- package/dist-esm/src/credentials/defaultAzureCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/deviceCodeCredential.js → dist-esm/src/credentials/deviceCodeCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/deviceCodeCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/deviceCodeCredential.js +6 -6
- package/dist-esm/src/credentials/deviceCodeCredential.js.map +1 -0
- package/dist-esm/src/credentials/deviceCodeCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/environmentCredential.js → dist-esm/src/credentials/environmentCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/environmentCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/environmentCredential.js +7 -7
- package/dist-esm/src/credentials/environmentCredential.js.map +1 -0
- package/dist-esm/src/credentials/environmentCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/interactiveBrowserCredential.js → dist-esm/src/credentials/interactiveBrowserCredential.browser.js} +6 -6
- package/dist-esm/src/credentials/interactiveBrowserCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/interactiveBrowserCredential.js +6 -6
- package/{dist/commonjs → dist-esm/src}/credentials/interactiveBrowserCredential.js.map +1 -1
- package/dist-esm/src/credentials/interactiveBrowserCredentialOptions.js.map +1 -0
- package/dist-esm/src/credentials/interactiveCredentialOptions.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/appServiceMsi2017.js +71 -0
- package/dist-esm/src/credentials/managedIdentityCredential/appServiceMsi2017.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/appServiceMsi2019.js +71 -0
- package/dist-esm/src/credentials/managedIdentityCredential/appServiceMsi2019.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/arcMsi.js +140 -0
- package/dist-esm/src/credentials/managedIdentityCredential/arcMsi.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/cloudShellMsi.js +75 -0
- package/dist-esm/src/credentials/managedIdentityCredential/cloudShellMsi.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/constants.js +9 -0
- package/dist-esm/src/credentials/managedIdentityCredential/constants.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/fabricMsi.js +95 -0
- package/dist-esm/src/credentials/managedIdentityCredential/fabricMsi.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/managedIdentityCredential/imdsMsi.js +38 -16
- package/dist-esm/src/credentials/managedIdentityCredential/imdsMsi.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/imdsRetryPolicy.js.map +1 -0
- package/{dist/browser/credentials/managedIdentityCredential/index.js → dist-esm/src/credentials/managedIdentityCredential/index.browser.js} +2 -2
- package/dist-esm/src/credentials/managedIdentityCredential/index.browser.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/index.js +37 -0
- package/dist-esm/src/credentials/managedIdentityCredential/index.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/legacyMsiProvider.js +309 -0
- package/dist-esm/src/credentials/managedIdentityCredential/legacyMsiProvider.js.map +1 -0
- package/dist-esm/src/credentials/managedIdentityCredential/models.js.map +1 -0
- package/{dist/esm/credentials/managedIdentityCredential/index.js → dist-esm/src/credentials/managedIdentityCredential/msalMsiProvider.js} +26 -31
- package/dist-esm/src/credentials/managedIdentityCredential/msalMsiProvider.js.map +1 -0
- package/{dist/browser → dist-esm/src}/credentials/managedIdentityCredential/tokenExchangeMsi.js +3 -6
- package/dist-esm/src/credentials/managedIdentityCredential/tokenExchangeMsi.js.map +1 -0
- package/{dist/browser → dist-esm/src}/credentials/managedIdentityCredential/utils.js +1 -1
- package/dist-esm/src/credentials/managedIdentityCredential/utils.js.map +1 -0
- package/dist-esm/src/credentials/multiTenantTokenCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/onBehalfOfCredential.js → dist-esm/src/credentials/onBehalfOfCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/onBehalfOfCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/onBehalfOfCredential.js +6 -6
- package/dist-esm/src/credentials/onBehalfOfCredential.js.map +1 -0
- package/dist-esm/src/credentials/onBehalfOfCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/usernamePasswordCredential.js → dist-esm/src/credentials/usernamePasswordCredential.browser.js} +6 -6
- package/dist-esm/src/credentials/usernamePasswordCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/usernamePasswordCredential.js +6 -6
- package/dist-esm/src/credentials/usernamePasswordCredential.js.map +1 -0
- package/dist-esm/src/credentials/usernamePasswordCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/visualStudioCodeCredential.js → dist-esm/src/credentials/visualStudioCodeCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/visualStudioCodeCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/visualStudioCodeCredential.js +9 -9
- package/dist-esm/src/credentials/visualStudioCodeCredential.js.map +1 -0
- package/dist-esm/src/credentials/visualStudioCodeCredentialOptions.js.map +1 -0
- package/{dist/browser/credentials/workloadIdentityCredential.js → dist-esm/src/credentials/workloadIdentityCredential.browser.js} +2 -2
- package/dist-esm/src/credentials/workloadIdentityCredential.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/credentials/workloadIdentityCredential.js +5 -5
- package/dist-esm/src/credentials/workloadIdentityCredential.js.map +1 -0
- package/dist-esm/src/credentials/workloadIdentityCredentialOptions.js.map +1 -0
- package/dist-esm/src/errors.js.map +1 -0
- package/{dist/browser → dist-esm/src}/index.js +25 -25
- package/dist-esm/src/index.js.map +1 -0
- package/dist-esm/src/msal/browserFlows/flows.js.map +1 -0
- package/{dist/esm → dist-esm/src}/msal/browserFlows/msalAuthCode.js +3 -3
- package/dist-esm/src/msal/browserFlows/msalAuthCode.js.map +1 -0
- package/{dist/browser → dist-esm/src}/msal/browserFlows/msalBrowserCommon.js +5 -5
- package/dist-esm/src/msal/browserFlows/msalBrowserCommon.js.map +1 -0
- package/dist-esm/src/msal/credentials.js.map +1 -0
- package/{dist/browser/msal/msal.js → dist-esm/src/msal/msal.browser.js} +1 -1
- package/dist-esm/src/msal/msal.browser.js.map +1 -0
- package/{dist/browser → dist-esm/src}/msal/nodeFlows/msalClient.js +16 -9
- package/dist-esm/src/msal/nodeFlows/msalClient.js.map +1 -0
- package/{dist/browser → dist-esm/src}/msal/nodeFlows/msalPlugins.js +1 -1
- package/dist-esm/src/msal/nodeFlows/msalPlugins.js.map +1 -0
- package/{dist/browser → dist-esm/src}/msal/types.js.map +1 -1
- package/{dist/browser → dist-esm/src}/msal/utils.js +8 -14
- package/dist-esm/src/msal/utils.js.map +1 -0
- package/{dist/browser/plugins/consumer.js → dist-esm/src/plugins/consumer.browser.js} +1 -1
- package/dist-esm/src/plugins/consumer.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/plugins/consumer.js +2 -2
- package/dist-esm/src/plugins/consumer.js.map +1 -0
- package/dist-esm/src/plugins/provider.js.map +1 -0
- package/dist-esm/src/tokenCredentialOptions.js.map +1 -0
- package/{dist/browser → dist-esm/src}/tokenProvider.js +0 -1
- package/dist-esm/src/tokenProvider.js.map +1 -0
- package/{dist/esm/util/authHostEnv-browser.mjs → dist-esm/src/util/authHostEnv.browser.js} +1 -1
- package/dist-esm/src/util/authHostEnv.browser.js.map +1 -0
- package/dist-esm/src/util/logging.js.map +1 -0
- package/{dist/browser/util/processMultiTenantRequest.js → dist-esm/src/util/processMultiTenantRequest.browser.js} +1 -1
- package/dist-esm/src/util/processMultiTenantRequest.browser.js.map +1 -0
- package/{dist/esm → dist-esm/src}/util/processMultiTenantRequest.js +2 -2
- package/{dist/commonjs → dist-esm/src}/util/processMultiTenantRequest.js.map +1 -1
- package/{dist/browser → dist-esm/src}/util/scopeUtils.js +1 -1
- package/dist-esm/src/util/scopeUtils.js.map +1 -0
- package/{dist/esm → dist-esm/src}/util/tenantIdUtils.js +3 -3
- package/dist-esm/src/util/tenantIdUtils.js.map +1 -0
- package/{dist/browser → dist-esm/src}/util/tracing.js +1 -1
- package/dist-esm/src/util/tracing.js.map +1 -0
- package/package.json +79 -65
- package/types/identity.d.ts +1853 -0
- package/dist/browser/client/identityClient.d.ts +0 -65
- package/dist/browser/client/identityClient.d.ts.map +0 -1
- package/dist/browser/client/identityClient.js +0 -248
- package/dist/browser/client/identityClient.js.map +0 -1
- package/dist/browser/constants.d.ts +0 -69
- package/dist/browser/constants.d.ts.map +0 -1
- package/dist/browser/constants.js +0 -75
- package/dist/browser/constants.js.map +0 -1
- package/dist/browser/credentials/authorityValidationOptions.d.ts +0 -16
- package/dist/browser/credentials/authorityValidationOptions.d.ts.map +0 -1
- package/dist/browser/credentials/authorizationCodeCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/authorizationCodeCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/authorizationCodeCredential.d.ts +0 -11
- package/dist/browser/credentials/authorizationCodeCredentialOptions.d.ts +0 -8
- package/dist/browser/credentials/authorizationCodeCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/authorizationCodeCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azureApplicationCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azureApplicationCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azureApplicationCredential.d.ts +0 -24
- package/dist/browser/credentials/azureApplicationCredentialOptions.d.ts +0 -13
- package/dist/browser/credentials/azureApplicationCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azureApplicationCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azureCliCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azureCliCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azureCliCredential.d.ts +0 -13
- package/dist/browser/credentials/azureCliCredentialOptions.d.ts +0 -20
- package/dist/browser/credentials/azureCliCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azureCliCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azureDeveloperCliCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azureDeveloperCliCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azureDeveloperCliCredential.d.ts +0 -13
- package/dist/browser/credentials/azureDeveloperCliCredentialOptions.d.ts +0 -15
- package/dist/browser/credentials/azureDeveloperCliCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azureDeveloperCliCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azurePipelinesCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azurePipelinesCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azurePipelinesCredential.d.ts +0 -13
- package/dist/browser/credentials/azurePipelinesCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/azurePipelinesCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azurePipelinesCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/azurePowerShellCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/azurePowerShellCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/azurePowerShellCredential.d.ts +0 -12
- package/dist/browser/credentials/azurePowerShellCredentialOptions.d.ts +0 -15
- package/dist/browser/credentials/azurePowerShellCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/azurePowerShellCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/brokerAuthOptions.d.ts +0 -13
- package/dist/browser/credentials/brokerAuthOptions.d.ts.map +0 -1
- package/dist/browser/credentials/brokerAuthOptions.js.map +0 -1
- package/dist/browser/credentials/browserCustomizationOptions.d.ts +0 -19
- package/dist/browser/credentials/browserCustomizationOptions.d.ts.map +0 -1
- package/dist/browser/credentials/chainedTokenCredential.d.ts +0 -51
- package/dist/browser/credentials/chainedTokenCredential.d.ts.map +0 -1
- package/dist/browser/credentials/chainedTokenCredential.js +0 -92
- package/dist/browser/credentials/chainedTokenCredential.js.map +0 -1
- package/dist/browser/credentials/clientAssertionCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/clientAssertionCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/clientAssertionCredential.d.ts +0 -12
- package/dist/browser/credentials/clientAssertionCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/clientAssertionCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/clientAssertionCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/clientCertificateCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/clientCertificateCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/clientCertificateCredential.d.ts +0 -13
- package/dist/browser/credentials/clientCertificateCredentialModels.d.ts +0 -31
- package/dist/browser/credentials/clientCertificateCredentialModels.d.ts.map +0 -1
- package/dist/browser/credentials/clientCertificateCredentialModels.js +0 -4
- package/dist/browser/credentials/clientCertificateCredentialModels.js.map +0 -1
- package/dist/browser/credentials/clientCertificateCredentialOptions.d.ts +0 -14
- package/dist/browser/credentials/clientCertificateCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/clientCertificateCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/clientSecretCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/clientSecretCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/clientSecretCredential.d.ts +0 -40
- package/dist/browser/credentials/clientSecretCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/clientSecretCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/clientSecretCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/credentialPersistenceOptions.d.ts +0 -30
- package/dist/browser/credentials/credentialPersistenceOptions.d.ts.map +0 -1
- package/dist/browser/credentials/credentialPersistenceOptions.js.map +0 -1
- package/dist/browser/credentials/defaultAzureCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/defaultAzureCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/defaultAzureCredential.d.ts +0 -19
- package/dist/browser/credentials/defaultAzureCredentialOptions.d.ts +0 -49
- package/dist/browser/credentials/defaultAzureCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/defaultAzureCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/deviceCodeCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/deviceCodeCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/deviceCodeCredential.d.ts +0 -13
- package/dist/browser/credentials/deviceCodeCredentialOptions.d.ts +0 -53
- package/dist/browser/credentials/deviceCodeCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/deviceCodeCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/environmentCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/environmentCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/environmentCredential.d.ts +0 -13
- package/dist/browser/credentials/environmentCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/environmentCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/environmentCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/interactiveBrowserCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/interactiveBrowserCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/interactiveBrowserCredential.d.ts +0 -53
- package/dist/browser/credentials/interactiveBrowserCredentialOptions.d.ts +0 -77
- package/dist/browser/credentials/interactiveBrowserCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/interactiveBrowserCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/interactiveCredentialOptions.d.ts +0 -25
- package/dist/browser/credentials/interactiveCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/interactiveCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/imdsMsi.d.ts +0 -18
- package/dist/browser/credentials/managedIdentityCredential/imdsMsi.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/imdsMsi.js +0 -122
- package/dist/browser/credentials/managedIdentityCredential/imdsMsi.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts +0 -12
- package/dist/browser/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/imdsRetryPolicy.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/index-browser.d.mts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/index-browser.mjs.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/index.d.ts +0 -6
- package/dist/browser/credentials/managedIdentityCredential/models.d.ts +0 -24
- package/dist/browser/credentials/managedIdentityCredential/models.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/models.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/options.d.ts +0 -37
- package/dist/browser/credentials/managedIdentityCredential/options.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/options.js +0 -4
- package/dist/browser/credentials/managedIdentityCredential/options.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts +0 -14
- package/dist/browser/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/tokenExchangeMsi.js.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/utils.d.ts +0 -33
- package/dist/browser/credentials/managedIdentityCredential/utils.d.ts.map +0 -1
- package/dist/browser/credentials/managedIdentityCredential/utils.js.map +0 -1
- package/dist/browser/credentials/multiTenantTokenCredentialOptions.d.ts +0 -12
- package/dist/browser/credentials/multiTenantTokenCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/multiTenantTokenCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/onBehalfOfCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/onBehalfOfCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/onBehalfOfCredential.d.ts +0 -12
- package/dist/browser/credentials/onBehalfOfCredentialOptions.d.ts +0 -76
- package/dist/browser/credentials/onBehalfOfCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/onBehalfOfCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/usernamePasswordCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/usernamePasswordCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/usernamePasswordCredential.d.ts +0 -40
- package/dist/browser/credentials/usernamePasswordCredentialOptions.d.ts +0 -9
- package/dist/browser/credentials/usernamePasswordCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/usernamePasswordCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredential.d.ts +0 -15
- package/dist/browser/credentials/visualStudioCodeCredentialOptions.d.ts +0 -11
- package/dist/browser/credentials/visualStudioCodeCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredentialOptions.js.map +0 -1
- package/dist/browser/credentials/visualStudioCodeCredentialPlugin.d.ts +0 -11
- package/dist/browser/credentials/visualStudioCodeCredentialPlugin.d.ts.map +0 -1
- package/dist/browser/credentials/workloadIdentityCredential-browser.d.mts.map +0 -1
- package/dist/browser/credentials/workloadIdentityCredential-browser.mjs.map +0 -1
- package/dist/browser/credentials/workloadIdentityCredential.d.ts +0 -17
- package/dist/browser/credentials/workloadIdentityCredentialOptions.d.ts +0 -20
- package/dist/browser/credentials/workloadIdentityCredentialOptions.d.ts.map +0 -1
- package/dist/browser/credentials/workloadIdentityCredentialOptions.js.map +0 -1
- package/dist/browser/errors.d.ts +0 -139
- package/dist/browser/errors.d.ts.map +0 -1
- package/dist/browser/errors.js.map +0 -1
- package/dist/browser/index.d.ts +0 -61
- package/dist/browser/index.d.ts.map +0 -1
- package/dist/browser/index.js.map +0 -1
- package/dist/browser/msal/browserFlows/flows.d.ts +0 -42
- package/dist/browser/msal/browserFlows/flows.d.ts.map +0 -1
- package/dist/browser/msal/browserFlows/flows.js.map +0 -1
- package/dist/browser/msal/browserFlows/msalAuthCode.d.ts +0 -48
- package/dist/browser/msal/browserFlows/msalAuthCode.d.ts.map +0 -1
- package/dist/browser/msal/browserFlows/msalAuthCode.js +0 -203
- package/dist/browser/msal/browserFlows/msalAuthCode.js.map +0 -1
- package/dist/browser/msal/browserFlows/msalBrowserCommon.d.ts +0 -106
- package/dist/browser/msal/browserFlows/msalBrowserCommon.d.ts.map +0 -1
- package/dist/browser/msal/browserFlows/msalBrowserCommon.js.map +0 -1
- package/dist/browser/msal/credentials.d.ts +0 -52
- package/dist/browser/msal/credentials.d.ts.map +0 -1
- package/dist/browser/msal/credentials.js.map +0 -1
- package/dist/browser/msal/msal-browser.d.mts.map +0 -1
- package/dist/browser/msal/msal-browser.mjs.map +0 -1
- package/dist/browser/msal/msal.d.ts +0 -3
- package/dist/browser/msal/nodeFlows/brokerOptions.d.ts +0 -44
- package/dist/browser/msal/nodeFlows/brokerOptions.d.ts.map +0 -1
- package/dist/browser/msal/nodeFlows/msalClient.d.ts +0 -186
- package/dist/browser/msal/nodeFlows/msalClient.d.ts.map +0 -1
- package/dist/browser/msal/nodeFlows/msalClient.js.map +0 -1
- package/dist/browser/msal/nodeFlows/msalPlugins.d.ts +0 -91
- package/dist/browser/msal/nodeFlows/msalPlugins.d.ts.map +0 -1
- package/dist/browser/msal/nodeFlows/msalPlugins.js.map +0 -1
- package/dist/browser/msal/nodeFlows/tokenCachePersistenceOptions.d.ts +0 -24
- package/dist/browser/msal/nodeFlows/tokenCachePersistenceOptions.d.ts.map +0 -1
- package/dist/browser/msal/types.d.ts +0 -87
- package/dist/browser/msal/types.d.ts.map +0 -1
- package/dist/browser/msal/utils.d.ts +0 -95
- package/dist/browser/msal/utils.d.ts.map +0 -1
- package/dist/browser/msal/utils.js.map +0 -1
- package/dist/browser/package.json +0 -3
- package/dist/browser/plugins/consumer-browser.d.mts.map +0 -1
- package/dist/browser/plugins/consumer-browser.mjs.map +0 -1
- package/dist/browser/plugins/consumer.d.ts +0 -2
- package/dist/browser/plugins/provider.d.ts +0 -36
- package/dist/browser/plugins/provider.d.ts.map +0 -1
- package/dist/browser/plugins/provider.js.map +0 -1
- package/dist/browser/regionalAuthority.d.ts +0 -122
- package/dist/browser/regionalAuthority.d.ts.map +0 -1
- package/dist/browser/tokenCredentialOptions.d.ts +0 -28
- package/dist/browser/tokenCredentialOptions.d.ts.map +0 -1
- package/dist/browser/tokenCredentialOptions.js.map +0 -1
- package/dist/browser/tokenProvider.d.ts +0 -39
- package/dist/browser/tokenProvider.d.ts.map +0 -1
- package/dist/browser/tokenProvider.js.map +0 -1
- package/dist/browser/util/authHostEnv-browser.d.mts +0 -4
- package/dist/browser/util/authHostEnv-browser.d.mts.map +0 -1
- package/dist/browser/util/authHostEnv-browser.mjs +0 -7
- package/dist/browser/util/authHostEnv-browser.mjs.map +0 -1
- package/dist/browser/util/identityTokenEndpoint.d.ts +0 -2
- package/dist/browser/util/identityTokenEndpoint.d.ts.map +0 -1
- package/dist/browser/util/logging.d.ts +0 -70
- package/dist/browser/util/logging.d.ts.map +0 -1
- package/dist/browser/util/logging.js.map +0 -1
- package/dist/browser/util/processMultiTenantRequest-browser.d.mts.map +0 -1
- package/dist/browser/util/processMultiTenantRequest-browser.mjs.map +0 -1
- package/dist/browser/util/processMultiTenantRequest.d.ts +0 -9
- package/dist/browser/util/processUtils.d.ts +0 -13
- package/dist/browser/util/processUtils.d.ts.map +0 -1
- package/dist/browser/util/scopeUtils.d.ts +0 -17
- package/dist/browser/util/scopeUtils.d.ts.map +0 -1
- package/dist/browser/util/scopeUtils.js.map +0 -1
- package/dist/browser/util/subscriptionUtils.d.ts +0 -6
- package/dist/browser/util/subscriptionUtils.d.ts.map +0 -1
- package/dist/browser/util/subscriptionUtils.js +0 -14
- package/dist/browser/util/subscriptionUtils.js.map +0 -1
- package/dist/browser/util/tenantIdUtils.d.ts +0 -15
- package/dist/browser/util/tenantIdUtils.d.ts.map +0 -1
- package/dist/browser/util/tenantIdUtils.js +0 -44
- package/dist/browser/util/tenantIdUtils.js.map +0 -1
- package/dist/browser/util/tracing.d.ts +0 -6
- package/dist/browser/util/tracing.d.ts.map +0 -1
- package/dist/browser/util/tracing.js.map +0 -1
- package/dist/commonjs/client/identityClient.d.ts +0 -65
- package/dist/commonjs/client/identityClient.d.ts.map +0 -1
- package/dist/commonjs/client/identityClient.js +0 -253
- package/dist/commonjs/client/identityClient.js.map +0 -1
- package/dist/commonjs/constants.d.ts +0 -69
- package/dist/commonjs/constants.d.ts.map +0 -1
- package/dist/commonjs/constants.js +0 -78
- package/dist/commonjs/constants.js.map +0 -1
- package/dist/commonjs/credentials/authorityValidationOptions.d.ts +0 -16
- package/dist/commonjs/credentials/authorityValidationOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/authorityValidationOptions.js +0 -5
- package/dist/commonjs/credentials/authorityValidationOptions.js.map +0 -1
- package/dist/commonjs/credentials/authorizationCodeCredential.d.ts +0 -73
- package/dist/commonjs/credentials/authorizationCodeCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/authorizationCodeCredential.js +0 -64
- package/dist/commonjs/credentials/authorizationCodeCredential.js.map +0 -1
- package/dist/commonjs/credentials/authorizationCodeCredentialOptions.d.ts +0 -8
- package/dist/commonjs/credentials/authorizationCodeCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/authorizationCodeCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/authorizationCodeCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azureApplicationCredential.d.ts +0 -24
- package/dist/commonjs/credentials/azureApplicationCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureApplicationCredential.js +0 -36
- package/dist/commonjs/credentials/azureApplicationCredential.js.map +0 -1
- package/dist/commonjs/credentials/azureApplicationCredentialOptions.d.ts +0 -13
- package/dist/commonjs/credentials/azureApplicationCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureApplicationCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azureApplicationCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azureCliCredential.d.ts +0 -64
- package/dist/commonjs/credentials/azureCliCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureCliCredential.js +0 -194
- package/dist/commonjs/credentials/azureCliCredential.js.map +0 -1
- package/dist/commonjs/credentials/azureCliCredentialOptions.d.ts +0 -20
- package/dist/commonjs/credentials/azureCliCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureCliCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azureCliCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azureDeveloperCliCredential.d.ts +0 -71
- package/dist/commonjs/credentials/azureDeveloperCliCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureDeveloperCliCredential.js +0 -176
- package/dist/commonjs/credentials/azureDeveloperCliCredential.js.map +0 -1
- package/dist/commonjs/credentials/azureDeveloperCliCredentialOptions.d.ts +0 -15
- package/dist/commonjs/credentials/azureDeveloperCliCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azureDeveloperCliCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azureDeveloperCliCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azurePipelinesCredential.d.ts +0 -38
- package/dist/commonjs/credentials/azurePipelinesCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azurePipelinesCredential.js +0 -146
- package/dist/commonjs/credentials/azurePipelinesCredential.js.map +0 -1
- package/dist/commonjs/credentials/azurePipelinesCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/azurePipelinesCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azurePipelinesCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azurePipelinesCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/azurePowerShellCredential.d.ts +0 -75
- package/dist/commonjs/credentials/azurePowerShellCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/azurePowerShellCredential.js +0 -235
- package/dist/commonjs/credentials/azurePowerShellCredential.js.map +0 -1
- package/dist/commonjs/credentials/azurePowerShellCredentialOptions.d.ts +0 -15
- package/dist/commonjs/credentials/azurePowerShellCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/azurePowerShellCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/azurePowerShellCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/brokerAuthOptions.d.ts +0 -13
- package/dist/commonjs/credentials/brokerAuthOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/brokerAuthOptions.js +0 -3
- package/dist/commonjs/credentials/brokerAuthOptions.js.map +0 -1
- package/dist/commonjs/credentials/browserCustomizationOptions.d.ts +0 -19
- package/dist/commonjs/credentials/browserCustomizationOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/browserCustomizationOptions.js +0 -5
- package/dist/commonjs/credentials/browserCustomizationOptions.js.map +0 -1
- package/dist/commonjs/credentials/chainedTokenCredential.d.ts +0 -51
- package/dist/commonjs/credentials/chainedTokenCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/chainedTokenCredential.js +0 -96
- package/dist/commonjs/credentials/chainedTokenCredential.js.map +0 -1
- package/dist/commonjs/credentials/clientAssertionCredential.d.ts +0 -33
- package/dist/commonjs/credentials/clientAssertionCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientAssertionCredential.js +0 -59
- package/dist/commonjs/credentials/clientAssertionCredential.js.map +0 -1
- package/dist/commonjs/credentials/clientAssertionCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/clientAssertionCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientAssertionCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/clientAssertionCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredential.d.ts +0 -72
- package/dist/commonjs/credentials/clientCertificateCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredential.js +0 -127
- package/dist/commonjs/credentials/clientCertificateCredential.js.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredentialModels.d.ts +0 -31
- package/dist/commonjs/credentials/clientCertificateCredentialModels.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredentialModels.js +0 -5
- package/dist/commonjs/credentials/clientCertificateCredentialModels.js.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredentialOptions.d.ts +0 -14
- package/dist/commonjs/credentials/clientCertificateCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientCertificateCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/clientCertificateCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/clientSecretCredential.d.ts +0 -37
- package/dist/commonjs/credentials/clientSecretCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientSecretCredential.js +0 -64
- package/dist/commonjs/credentials/clientSecretCredential.js.map +0 -1
- package/dist/commonjs/credentials/clientSecretCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/clientSecretCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/clientSecretCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/clientSecretCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/credentialPersistenceOptions.d.ts +0 -30
- package/dist/commonjs/credentials/credentialPersistenceOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/credentialPersistenceOptions.js +0 -5
- package/dist/commonjs/credentials/credentialPersistenceOptions.js.map +0 -1
- package/dist/commonjs/credentials/defaultAzureCredential.d.ts +0 -65
- package/dist/commonjs/credentials/defaultAzureCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/defaultAzureCredential.js +0 -171
- package/dist/commonjs/credentials/defaultAzureCredential.js.map +0 -1
- package/dist/commonjs/credentials/defaultAzureCredentialOptions.d.ts +0 -49
- package/dist/commonjs/credentials/defaultAzureCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/defaultAzureCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/defaultAzureCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/deviceCodeCredential.d.ts +0 -67
- package/dist/commonjs/credentials/deviceCodeCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/deviceCodeCredential.js +0 -96
- package/dist/commonjs/credentials/deviceCodeCredential.js.map +0 -1
- package/dist/commonjs/credentials/deviceCodeCredentialOptions.d.ts +0 -53
- package/dist/commonjs/credentials/deviceCodeCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/deviceCodeCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/deviceCodeCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/environmentCredential.d.ts +0 -52
- package/dist/commonjs/credentials/environmentCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/environmentCredential.js +0 -135
- package/dist/commonjs/credentials/environmentCredential.js.map +0 -1
- package/dist/commonjs/credentials/environmentCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/environmentCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/environmentCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/environmentCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/interactiveBrowserCredential.d.ts +0 -56
- package/dist/commonjs/credentials/interactiveBrowserCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/interactiveBrowserCredential.js +0 -95
- package/dist/commonjs/credentials/interactiveBrowserCredentialOptions.d.ts +0 -77
- package/dist/commonjs/credentials/interactiveBrowserCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/interactiveBrowserCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/interactiveBrowserCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/interactiveCredentialOptions.d.ts +0 -25
- package/dist/commonjs/credentials/interactiveCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/interactiveCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/interactiveCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/imdsMsi.d.ts +0 -18
- package/dist/commonjs/credentials/managedIdentityCredential/imdsMsi.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/imdsMsi.js +0 -125
- package/dist/commonjs/credentials/managedIdentityCredential/imdsMsi.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts +0 -12
- package/dist/commonjs/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/imdsRetryPolicy.js +0 -36
- package/dist/commonjs/credentials/managedIdentityCredential/imdsRetryPolicy.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/index.d.ts +0 -61
- package/dist/commonjs/credentials/managedIdentityCredential/index.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/index.js +0 -221
- package/dist/commonjs/credentials/managedIdentityCredential/index.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/models.d.ts +0 -24
- package/dist/commonjs/credentials/managedIdentityCredential/models.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/models.js +0 -5
- package/dist/commonjs/credentials/managedIdentityCredential/models.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/options.d.ts +0 -37
- package/dist/commonjs/credentials/managedIdentityCredential/options.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/options.js +0 -5
- package/dist/commonjs/credentials/managedIdentityCredential/options.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts +0 -14
- package/dist/commonjs/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/tokenExchangeMsi.js +0 -35
- package/dist/commonjs/credentials/managedIdentityCredential/tokenExchangeMsi.js.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/utils.d.ts +0 -33
- package/dist/commonjs/credentials/managedIdentityCredential/utils.d.ts.map +0 -1
- package/dist/commonjs/credentials/managedIdentityCredential/utils.js +0 -82
- package/dist/commonjs/credentials/managedIdentityCredential/utils.js.map +0 -1
- package/dist/commonjs/credentials/multiTenantTokenCredentialOptions.d.ts +0 -12
- package/dist/commonjs/credentials/multiTenantTokenCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/multiTenantTokenCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/multiTenantTokenCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/onBehalfOfCredential.d.ts +0 -105
- package/dist/commonjs/credentials/onBehalfOfCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/onBehalfOfCredential.js +0 -116
- package/dist/commonjs/credentials/onBehalfOfCredential.js.map +0 -1
- package/dist/commonjs/credentials/onBehalfOfCredentialOptions.d.ts +0 -76
- package/dist/commonjs/credentials/onBehalfOfCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/onBehalfOfCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/onBehalfOfCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/usernamePasswordCredential.d.ts +0 -41
- package/dist/commonjs/credentials/usernamePasswordCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/usernamePasswordCredential.js +0 -71
- package/dist/commonjs/credentials/usernamePasswordCredential.js.map +0 -1
- package/dist/commonjs/credentials/usernamePasswordCredentialOptions.d.ts +0 -9
- package/dist/commonjs/credentials/usernamePasswordCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/usernamePasswordCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/usernamePasswordCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredential.d.ts +0 -60
- package/dist/commonjs/credentials/visualStudioCodeCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredential.js +0 -196
- package/dist/commonjs/credentials/visualStudioCodeCredential.js.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredentialOptions.d.ts +0 -11
- package/dist/commonjs/credentials/visualStudioCodeCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/visualStudioCodeCredentialOptions.js.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredentialPlugin.d.ts +0 -11
- package/dist/commonjs/credentials/visualStudioCodeCredentialPlugin.d.ts.map +0 -1
- package/dist/commonjs/credentials/visualStudioCodeCredentialPlugin.js +0 -5
- package/dist/commonjs/credentials/visualStudioCodeCredentialPlugin.js.map +0 -1
- package/dist/commonjs/credentials/workloadIdentityCredential.d.ts +0 -47
- package/dist/commonjs/credentials/workloadIdentityCredential.d.ts.map +0 -1
- package/dist/commonjs/credentials/workloadIdentityCredential.js +0 -118
- package/dist/commonjs/credentials/workloadIdentityCredential.js.map +0 -1
- package/dist/commonjs/credentials/workloadIdentityCredentialOptions.d.ts +0 -20
- package/dist/commonjs/credentials/workloadIdentityCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/credentials/workloadIdentityCredentialOptions.js +0 -5
- package/dist/commonjs/credentials/workloadIdentityCredentialOptions.js.map +0 -1
- package/dist/commonjs/errors.d.ts +0 -139
- package/dist/commonjs/errors.d.ts.map +0 -1
- package/dist/commonjs/errors.js +0 -130
- package/dist/commonjs/errors.js.map +0 -1
- package/dist/commonjs/index.d.ts +0 -61
- package/dist/commonjs/index.d.ts.map +0 -1
- package/dist/commonjs/index.js +0 -69
- package/dist/commonjs/index.js.map +0 -1
- package/dist/commonjs/msal/browserFlows/flows.d.ts +0 -42
- package/dist/commonjs/msal/browserFlows/flows.d.ts.map +0 -1
- package/dist/commonjs/msal/browserFlows/flows.js +0 -5
- package/dist/commonjs/msal/browserFlows/flows.js.map +0 -1
- package/dist/commonjs/msal/browserFlows/msalAuthCode.d.ts +0 -48
- package/dist/commonjs/msal/browserFlows/msalAuthCode.d.ts.map +0 -1
- package/dist/commonjs/msal/browserFlows/msalAuthCode.js +0 -208
- package/dist/commonjs/msal/browserFlows/msalAuthCode.js.map +0 -1
- package/dist/commonjs/msal/browserFlows/msalBrowserCommon.d.ts +0 -106
- package/dist/commonjs/msal/browserFlows/msalBrowserCommon.d.ts.map +0 -1
- package/dist/commonjs/msal/browserFlows/msalBrowserCommon.js +0 -121
- package/dist/commonjs/msal/browserFlows/msalBrowserCommon.js.map +0 -1
- package/dist/commonjs/msal/credentials.d.ts +0 -52
- package/dist/commonjs/msal/credentials.d.ts.map +0 -1
- package/dist/commonjs/msal/credentials.js +0 -5
- package/dist/commonjs/msal/credentials.js.map +0 -1
- package/dist/commonjs/msal/msal.d.ts +0 -3
- package/dist/commonjs/msal/msal.d.ts.map +0 -1
- package/dist/commonjs/msal/msal.js +0 -9
- package/dist/commonjs/msal/msal.js.map +0 -1
- package/dist/commonjs/msal/nodeFlows/brokerOptions.d.ts +0 -44
- package/dist/commonjs/msal/nodeFlows/brokerOptions.d.ts.map +0 -1
- package/dist/commonjs/msal/nodeFlows/brokerOptions.js +0 -3
- package/dist/commonjs/msal/nodeFlows/brokerOptions.js.map +0 -1
- package/dist/commonjs/msal/nodeFlows/msalClient.d.ts +0 -186
- package/dist/commonjs/msal/nodeFlows/msalClient.d.ts.map +0 -1
- package/dist/commonjs/msal/nodeFlows/msalClient.js +0 -482
- package/dist/commonjs/msal/nodeFlows/msalClient.js.map +0 -1
- package/dist/commonjs/msal/nodeFlows/msalPlugins.d.ts +0 -91
- package/dist/commonjs/msal/nodeFlows/msalPlugins.d.ts.map +0 -1
- package/dist/commonjs/msal/nodeFlows/msalPlugins.js +0 -91
- package/dist/commonjs/msal/nodeFlows/msalPlugins.js.map +0 -1
- package/dist/commonjs/msal/nodeFlows/tokenCachePersistenceOptions.d.ts +0 -24
- package/dist/commonjs/msal/nodeFlows/tokenCachePersistenceOptions.d.ts.map +0 -1
- package/dist/commonjs/msal/nodeFlows/tokenCachePersistenceOptions.js +0 -5
- package/dist/commonjs/msal/nodeFlows/tokenCachePersistenceOptions.js.map +0 -1
- package/dist/commonjs/msal/types.d.ts +0 -87
- package/dist/commonjs/msal/types.d.ts.map +0 -1
- package/dist/commonjs/msal/types.js +0 -5
- package/dist/commonjs/msal/types.js.map +0 -1
- package/dist/commonjs/msal/utils.d.ts +0 -95
- package/dist/commonjs/msal/utils.d.ts.map +0 -1
- package/dist/commonjs/msal/utils.js +0 -253
- package/dist/commonjs/msal/utils.js.map +0 -1
- package/dist/commonjs/package.json +0 -3
- package/dist/commonjs/plugins/consumer.d.ts +0 -28
- package/dist/commonjs/plugins/consumer.d.ts.map +0 -1
- package/dist/commonjs/plugins/consumer.js +0 -46
- package/dist/commonjs/plugins/consumer.js.map +0 -1
- package/dist/commonjs/plugins/provider.d.ts +0 -36
- package/dist/commonjs/plugins/provider.d.ts.map +0 -1
- package/dist/commonjs/plugins/provider.js +0 -5
- package/dist/commonjs/plugins/provider.js.map +0 -1
- package/dist/commonjs/regionalAuthority.d.ts +0 -122
- package/dist/commonjs/regionalAuthority.d.ts.map +0 -1
- package/dist/commonjs/regionalAuthority.js +0 -144
- package/dist/commonjs/regionalAuthority.js.map +0 -1
- package/dist/commonjs/tokenCredentialOptions.d.ts +0 -28
- package/dist/commonjs/tokenCredentialOptions.d.ts.map +0 -1
- package/dist/commonjs/tokenCredentialOptions.js +0 -5
- package/dist/commonjs/tokenCredentialOptions.js.map +0 -1
- package/dist/commonjs/tokenProvider.d.ts +0 -39
- package/dist/commonjs/tokenProvider.d.ts.map +0 -1
- package/dist/commonjs/tokenProvider.js +0 -56
- package/dist/commonjs/tokenProvider.js.map +0 -1
- package/dist/commonjs/tsdoc-metadata.json +0 -11
- package/dist/commonjs/util/identityTokenEndpoint.d.ts +0 -2
- package/dist/commonjs/util/identityTokenEndpoint.d.ts.map +0 -1
- package/dist/commonjs/util/identityTokenEndpoint.js +0 -14
- package/dist/commonjs/util/identityTokenEndpoint.js.map +0 -1
- package/dist/commonjs/util/logging.d.ts +0 -70
- package/dist/commonjs/util/logging.d.ts.map +0 -1
- package/dist/commonjs/util/logging.js +0 -103
- package/dist/commonjs/util/logging.js.map +0 -1
- package/dist/commonjs/util/processMultiTenantRequest.d.ts +0 -10
- package/dist/commonjs/util/processMultiTenantRequest.d.ts.map +0 -1
- package/dist/commonjs/util/processMultiTenantRequest.js +0 -38
- package/dist/commonjs/util/processUtils.d.ts +0 -13
- package/dist/commonjs/util/processUtils.d.ts.map +0 -1
- package/dist/commonjs/util/processUtils.js +0 -36
- package/dist/commonjs/util/processUtils.js.map +0 -1
- package/dist/commonjs/util/scopeUtils.d.ts +0 -17
- package/dist/commonjs/util/scopeUtils.d.ts.map +0 -1
- package/dist/commonjs/util/scopeUtils.js +0 -34
- package/dist/commonjs/util/scopeUtils.js.map +0 -1
- package/dist/commonjs/util/subscriptionUtils.d.ts +0 -6
- package/dist/commonjs/util/subscriptionUtils.d.ts.map +0 -1
- package/dist/commonjs/util/subscriptionUtils.js +0 -17
- package/dist/commonjs/util/subscriptionUtils.js.map +0 -1
- package/dist/commonjs/util/tenantIdUtils.d.ts +0 -15
- package/dist/commonjs/util/tenantIdUtils.d.ts.map +0 -1
- package/dist/commonjs/util/tenantIdUtils.js +0 -51
- package/dist/commonjs/util/tenantIdUtils.js.map +0 -1
- package/dist/commonjs/util/tracing.d.ts +0 -6
- package/dist/commonjs/util/tracing.d.ts.map +0 -1
- package/dist/commonjs/util/tracing.js +0 -17
- package/dist/commonjs/util/tracing.js.map +0 -1
- package/dist/esm/client/identityClient.d.ts +0 -65
- package/dist/esm/client/identityClient.d.ts.map +0 -1
- package/dist/esm/client/identityClient.js.map +0 -1
- package/dist/esm/constants.d.ts +0 -69
- package/dist/esm/constants.d.ts.map +0 -1
- package/dist/esm/constants.js.map +0 -1
- package/dist/esm/credentials/authorityValidationOptions.d.ts +0 -16
- package/dist/esm/credentials/authorityValidationOptions.d.ts.map +0 -1
- package/dist/esm/credentials/authorityValidationOptions.js +0 -4
- package/dist/esm/credentials/authorityValidationOptions.js.map +0 -1
- package/dist/esm/credentials/authorizationCodeCredential.d.ts +0 -73
- package/dist/esm/credentials/authorizationCodeCredential.d.ts.map +0 -1
- package/dist/esm/credentials/authorizationCodeCredential.js.map +0 -1
- package/dist/esm/credentials/authorizationCodeCredentialOptions.d.ts +0 -8
- package/dist/esm/credentials/authorizationCodeCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/authorizationCodeCredentialOptions.js +0 -4
- package/dist/esm/credentials/authorizationCodeCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azureApplicationCredential.d.ts +0 -24
- package/dist/esm/credentials/azureApplicationCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azureApplicationCredential.js.map +0 -1
- package/dist/esm/credentials/azureApplicationCredentialOptions.d.ts +0 -13
- package/dist/esm/credentials/azureApplicationCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azureApplicationCredentialOptions.js +0 -4
- package/dist/esm/credentials/azureApplicationCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azureCliCredential.d.ts +0 -64
- package/dist/esm/credentials/azureCliCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azureCliCredential.js.map +0 -1
- package/dist/esm/credentials/azureCliCredentialOptions.d.ts +0 -20
- package/dist/esm/credentials/azureCliCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azureCliCredentialOptions.js +0 -4
- package/dist/esm/credentials/azureCliCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azureDeveloperCliCredential.d.ts +0 -71
- package/dist/esm/credentials/azureDeveloperCliCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azureDeveloperCliCredential.js.map +0 -1
- package/dist/esm/credentials/azureDeveloperCliCredentialOptions.d.ts +0 -15
- package/dist/esm/credentials/azureDeveloperCliCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azureDeveloperCliCredentialOptions.js +0 -4
- package/dist/esm/credentials/azureDeveloperCliCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azurePipelinesCredential.d.ts +0 -38
- package/dist/esm/credentials/azurePipelinesCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azurePipelinesCredential.js.map +0 -1
- package/dist/esm/credentials/azurePipelinesCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/azurePipelinesCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azurePipelinesCredentialOptions.js +0 -4
- package/dist/esm/credentials/azurePipelinesCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/azurePowerShellCredential.d.ts +0 -75
- package/dist/esm/credentials/azurePowerShellCredential.d.ts.map +0 -1
- package/dist/esm/credentials/azurePowerShellCredential.js.map +0 -1
- package/dist/esm/credentials/azurePowerShellCredentialOptions.d.ts +0 -15
- package/dist/esm/credentials/azurePowerShellCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/azurePowerShellCredentialOptions.js +0 -4
- package/dist/esm/credentials/azurePowerShellCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/brokerAuthOptions.d.ts +0 -13
- package/dist/esm/credentials/brokerAuthOptions.d.ts.map +0 -1
- package/dist/esm/credentials/brokerAuthOptions.js +0 -2
- package/dist/esm/credentials/brokerAuthOptions.js.map +0 -1
- package/dist/esm/credentials/browserCustomizationOptions.d.ts +0 -19
- package/dist/esm/credentials/browserCustomizationOptions.d.ts.map +0 -1
- package/dist/esm/credentials/browserCustomizationOptions.js +0 -4
- package/dist/esm/credentials/browserCustomizationOptions.js.map +0 -1
- package/dist/esm/credentials/chainedTokenCredential.d.ts +0 -51
- package/dist/esm/credentials/chainedTokenCredential.d.ts.map +0 -1
- package/dist/esm/credentials/chainedTokenCredential.js.map +0 -1
- package/dist/esm/credentials/clientAssertionCredential.d.ts +0 -33
- package/dist/esm/credentials/clientAssertionCredential.d.ts.map +0 -1
- package/dist/esm/credentials/clientAssertionCredential.js.map +0 -1
- package/dist/esm/credentials/clientAssertionCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/clientAssertionCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/clientAssertionCredentialOptions.js +0 -4
- package/dist/esm/credentials/clientAssertionCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/clientCertificateCredential.d.ts +0 -72
- package/dist/esm/credentials/clientCertificateCredential.d.ts.map +0 -1
- package/dist/esm/credentials/clientCertificateCredential.js.map +0 -1
- package/dist/esm/credentials/clientCertificateCredentialModels.d.ts +0 -31
- package/dist/esm/credentials/clientCertificateCredentialModels.d.ts.map +0 -1
- package/dist/esm/credentials/clientCertificateCredentialModels.js +0 -4
- package/dist/esm/credentials/clientCertificateCredentialModels.js.map +0 -1
- package/dist/esm/credentials/clientCertificateCredentialOptions.d.ts +0 -14
- package/dist/esm/credentials/clientCertificateCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/clientCertificateCredentialOptions.js +0 -4
- package/dist/esm/credentials/clientCertificateCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/clientSecretCredential.d.ts +0 -37
- package/dist/esm/credentials/clientSecretCredential.d.ts.map +0 -1
- package/dist/esm/credentials/clientSecretCredential.js.map +0 -1
- package/dist/esm/credentials/clientSecretCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/clientSecretCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/clientSecretCredentialOptions.js +0 -4
- package/dist/esm/credentials/clientSecretCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/credentialPersistenceOptions.d.ts +0 -30
- package/dist/esm/credentials/credentialPersistenceOptions.d.ts.map +0 -1
- package/dist/esm/credentials/credentialPersistenceOptions.js +0 -4
- package/dist/esm/credentials/credentialPersistenceOptions.js.map +0 -1
- package/dist/esm/credentials/defaultAzureCredential.d.ts +0 -65
- package/dist/esm/credentials/defaultAzureCredential.d.ts.map +0 -1
- package/dist/esm/credentials/defaultAzureCredential.js.map +0 -1
- package/dist/esm/credentials/defaultAzureCredentialOptions.d.ts +0 -49
- package/dist/esm/credentials/defaultAzureCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/defaultAzureCredentialOptions.js +0 -4
- package/dist/esm/credentials/defaultAzureCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/deviceCodeCredential.d.ts +0 -67
- package/dist/esm/credentials/deviceCodeCredential.d.ts.map +0 -1
- package/dist/esm/credentials/deviceCodeCredential.js.map +0 -1
- package/dist/esm/credentials/deviceCodeCredentialOptions.d.ts +0 -53
- package/dist/esm/credentials/deviceCodeCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/deviceCodeCredentialOptions.js +0 -4
- package/dist/esm/credentials/deviceCodeCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/environmentCredential.d.ts +0 -52
- package/dist/esm/credentials/environmentCredential.d.ts.map +0 -1
- package/dist/esm/credentials/environmentCredential.js.map +0 -1
- package/dist/esm/credentials/environmentCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/environmentCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/environmentCredentialOptions.js +0 -4
- package/dist/esm/credentials/environmentCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/interactiveBrowserCredential.d.ts +0 -56
- package/dist/esm/credentials/interactiveBrowserCredential.d.ts.map +0 -1
- package/dist/esm/credentials/interactiveBrowserCredential.js.map +0 -1
- package/dist/esm/credentials/interactiveBrowserCredentialOptions.d.ts +0 -77
- package/dist/esm/credentials/interactiveBrowserCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/interactiveBrowserCredentialOptions.js +0 -4
- package/dist/esm/credentials/interactiveBrowserCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/interactiveCredentialOptions.d.ts +0 -25
- package/dist/esm/credentials/interactiveCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/interactiveCredentialOptions.js +0 -4
- package/dist/esm/credentials/interactiveCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/imdsMsi.d.ts +0 -18
- package/dist/esm/credentials/managedIdentityCredential/imdsMsi.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/imdsMsi.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts +0 -12
- package/dist/esm/credentials/managedIdentityCredential/imdsRetryPolicy.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/imdsRetryPolicy.js +0 -33
- package/dist/esm/credentials/managedIdentityCredential/imdsRetryPolicy.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/index.d.ts +0 -61
- package/dist/esm/credentials/managedIdentityCredential/index.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/index.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/models.d.ts +0 -24
- package/dist/esm/credentials/managedIdentityCredential/models.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/models.js +0 -4
- package/dist/esm/credentials/managedIdentityCredential/models.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/options.d.ts +0 -37
- package/dist/esm/credentials/managedIdentityCredential/options.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/options.js +0 -4
- package/dist/esm/credentials/managedIdentityCredential/options.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts +0 -14
- package/dist/esm/credentials/managedIdentityCredential/tokenExchangeMsi.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/tokenExchangeMsi.js +0 -32
- package/dist/esm/credentials/managedIdentityCredential/tokenExchangeMsi.js.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/utils.d.ts +0 -33
- package/dist/esm/credentials/managedIdentityCredential/utils.d.ts.map +0 -1
- package/dist/esm/credentials/managedIdentityCredential/utils.js +0 -77
- package/dist/esm/credentials/managedIdentityCredential/utils.js.map +0 -1
- package/dist/esm/credentials/multiTenantTokenCredentialOptions.d.ts +0 -12
- package/dist/esm/credentials/multiTenantTokenCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/multiTenantTokenCredentialOptions.js +0 -4
- package/dist/esm/credentials/multiTenantTokenCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/onBehalfOfCredential.d.ts +0 -105
- package/dist/esm/credentials/onBehalfOfCredential.d.ts.map +0 -1
- package/dist/esm/credentials/onBehalfOfCredential.js.map +0 -1
- package/dist/esm/credentials/onBehalfOfCredentialOptions.d.ts +0 -76
- package/dist/esm/credentials/onBehalfOfCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/onBehalfOfCredentialOptions.js +0 -4
- package/dist/esm/credentials/onBehalfOfCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/usernamePasswordCredential.d.ts +0 -41
- package/dist/esm/credentials/usernamePasswordCredential.d.ts.map +0 -1
- package/dist/esm/credentials/usernamePasswordCredential.js.map +0 -1
- package/dist/esm/credentials/usernamePasswordCredentialOptions.d.ts +0 -9
- package/dist/esm/credentials/usernamePasswordCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/usernamePasswordCredentialOptions.js +0 -4
- package/dist/esm/credentials/usernamePasswordCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredential.d.ts +0 -60
- package/dist/esm/credentials/visualStudioCodeCredential.d.ts.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredential.js.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredentialOptions.d.ts +0 -11
- package/dist/esm/credentials/visualStudioCodeCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredentialOptions.js +0 -4
- package/dist/esm/credentials/visualStudioCodeCredentialOptions.js.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredentialPlugin.d.ts +0 -11
- package/dist/esm/credentials/visualStudioCodeCredentialPlugin.d.ts.map +0 -1
- package/dist/esm/credentials/visualStudioCodeCredentialPlugin.js +0 -4
- package/dist/esm/credentials/visualStudioCodeCredentialPlugin.js.map +0 -1
- package/dist/esm/credentials/workloadIdentityCredential.d.ts +0 -47
- package/dist/esm/credentials/workloadIdentityCredential.d.ts.map +0 -1
- package/dist/esm/credentials/workloadIdentityCredential.js.map +0 -1
- package/dist/esm/credentials/workloadIdentityCredentialOptions.d.ts +0 -20
- package/dist/esm/credentials/workloadIdentityCredentialOptions.d.ts.map +0 -1
- package/dist/esm/credentials/workloadIdentityCredentialOptions.js +0 -4
- package/dist/esm/credentials/workloadIdentityCredentialOptions.js.map +0 -1
- package/dist/esm/errors.d.ts +0 -139
- package/dist/esm/errors.d.ts.map +0 -1
- package/dist/esm/errors.js +0 -123
- package/dist/esm/errors.js.map +0 -1
- package/dist/esm/index.d.ts +0 -61
- package/dist/esm/index.d.ts.map +0 -1
- package/dist/esm/index.js +0 -34
- package/dist/esm/index.js.map +0 -1
- package/dist/esm/msal/browserFlows/flows.d.ts +0 -42
- package/dist/esm/msal/browserFlows/flows.d.ts.map +0 -1
- package/dist/esm/msal/browserFlows/flows.js +0 -4
- package/dist/esm/msal/browserFlows/flows.js.map +0 -1
- package/dist/esm/msal/browserFlows/msalAuthCode.d.ts +0 -48
- package/dist/esm/msal/browserFlows/msalAuthCode.d.ts.map +0 -1
- package/dist/esm/msal/browserFlows/msalAuthCode.js.map +0 -1
- package/dist/esm/msal/browserFlows/msalBrowserCommon.d.ts +0 -106
- package/dist/esm/msal/browserFlows/msalBrowserCommon.d.ts.map +0 -1
- package/dist/esm/msal/browserFlows/msalBrowserCommon.js +0 -116
- package/dist/esm/msal/browserFlows/msalBrowserCommon.js.map +0 -1
- package/dist/esm/msal/credentials.d.ts +0 -52
- package/dist/esm/msal/credentials.d.ts.map +0 -1
- package/dist/esm/msal/credentials.js +0 -4
- package/dist/esm/msal/credentials.js.map +0 -1
- package/dist/esm/msal/msal.d.ts +0 -3
- package/dist/esm/msal/msal.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/brokerOptions.d.ts +0 -44
- package/dist/esm/msal/nodeFlows/brokerOptions.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/brokerOptions.js +0 -2
- package/dist/esm/msal/nodeFlows/brokerOptions.js.map +0 -1
- package/dist/esm/msal/nodeFlows/msalClient.d.ts +0 -186
- package/dist/esm/msal/nodeFlows/msalClient.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/msalClient.js +0 -477
- package/dist/esm/msal/nodeFlows/msalClient.js.map +0 -1
- package/dist/esm/msal/nodeFlows/msalPlugins.d.ts +0 -91
- package/dist/esm/msal/nodeFlows/msalPlugins.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/msalPlugins.js +0 -87
- package/dist/esm/msal/nodeFlows/msalPlugins.js.map +0 -1
- package/dist/esm/msal/nodeFlows/tokenCachePersistenceOptions.d.ts +0 -24
- package/dist/esm/msal/nodeFlows/tokenCachePersistenceOptions.d.ts.map +0 -1
- package/dist/esm/msal/nodeFlows/tokenCachePersistenceOptions.js +0 -4
- package/dist/esm/msal/nodeFlows/tokenCachePersistenceOptions.js.map +0 -1
- package/dist/esm/msal/types.d.ts +0 -87
- package/dist/esm/msal/types.d.ts.map +0 -1
- package/dist/esm/msal/types.js +0 -4
- package/dist/esm/msal/types.js.map +0 -1
- package/dist/esm/msal/utils.d.ts +0 -95
- package/dist/esm/msal/utils.d.ts.map +0 -1
- package/dist/esm/msal/utils.js +0 -238
- package/dist/esm/msal/utils.js.map +0 -1
- package/dist/esm/package.json +0 -3
- package/dist/esm/plugins/consumer.d.ts +0 -28
- package/dist/esm/plugins/consumer.d.ts.map +0 -1
- package/dist/esm/plugins/consumer.js.map +0 -1
- package/dist/esm/plugins/provider.d.ts +0 -36
- package/dist/esm/plugins/provider.d.ts.map +0 -1
- package/dist/esm/plugins/provider.js +0 -4
- package/dist/esm/plugins/provider.js.map +0 -1
- package/dist/esm/regionalAuthority.d.ts +0 -122
- package/dist/esm/regionalAuthority.d.ts.map +0 -1
- package/dist/esm/regionalAuthority.js +0 -140
- package/dist/esm/regionalAuthority.js.map +0 -1
- package/dist/esm/tokenCredentialOptions.d.ts +0 -28
- package/dist/esm/tokenCredentialOptions.d.ts.map +0 -1
- package/dist/esm/tokenCredentialOptions.js +0 -4
- package/dist/esm/tokenCredentialOptions.js.map +0 -1
- package/dist/esm/tokenProvider.d.ts +0 -39
- package/dist/esm/tokenProvider.d.ts.map +0 -1
- package/dist/esm/tokenProvider.js +0 -53
- package/dist/esm/tokenProvider.js.map +0 -1
- package/dist/esm/util/authHostEnv-browser.d.mts +0 -4
- package/dist/esm/util/authHostEnv-browser.d.mts.map +0 -1
- package/dist/esm/util/authHostEnv-browser.mjs.map +0 -1
- package/dist/esm/util/identityTokenEndpoint.d.ts +0 -2
- package/dist/esm/util/identityTokenEndpoint.d.ts.map +0 -1
- package/dist/esm/util/identityTokenEndpoint.js +0 -11
- package/dist/esm/util/identityTokenEndpoint.js.map +0 -1
- package/dist/esm/util/logging.d.ts +0 -70
- package/dist/esm/util/logging.d.ts.map +0 -1
- package/dist/esm/util/logging.js +0 -94
- package/dist/esm/util/logging.js.map +0 -1
- package/dist/esm/util/processMultiTenantRequest.d.ts +0 -10
- package/dist/esm/util/processMultiTenantRequest.d.ts.map +0 -1
- package/dist/esm/util/processMultiTenantRequest.js.map +0 -1
- package/dist/esm/util/processUtils.d.ts +0 -13
- package/dist/esm/util/processUtils.d.ts.map +0 -1
- package/dist/esm/util/processUtils.js +0 -32
- package/dist/esm/util/processUtils.js.map +0 -1
- package/dist/esm/util/scopeUtils.d.ts +0 -17
- package/dist/esm/util/scopeUtils.d.ts.map +0 -1
- package/dist/esm/util/scopeUtils.js +0 -29
- package/dist/esm/util/scopeUtils.js.map +0 -1
- package/dist/esm/util/subscriptionUtils.d.ts +0 -6
- package/dist/esm/util/subscriptionUtils.d.ts.map +0 -1
- package/dist/esm/util/subscriptionUtils.js +0 -14
- package/dist/esm/util/subscriptionUtils.js.map +0 -1
- package/dist/esm/util/tenantIdUtils.d.ts +0 -15
- package/dist/esm/util/tenantIdUtils.d.ts.map +0 -1
- package/dist/esm/util/tenantIdUtils.js.map +0 -1
- package/dist/esm/util/tracing.d.ts +0 -6
- package/dist/esm/util/tracing.d.ts.map +0 -1
- package/dist/esm/util/tracing.js +0 -14
- package/dist/esm/util/tracing.js.map +0 -1
- /package/{dist/browser → dist-esm/src}/credentials/authorityValidationOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/authorityValidationOptions.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/authorizationCodeCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azureApplicationCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azureCliCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azureDeveloperCliCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azurePipelinesCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/azurePowerShellCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/brokerAuthOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/browserCustomizationOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/browserCustomizationOptions.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/clientAssertionCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/clientCertificateCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/clientSecretCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/credentialPersistenceOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/defaultAzureCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/deviceCodeCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/environmentCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/interactiveBrowserCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/interactiveCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/managedIdentityCredential/imdsRetryPolicy.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/managedIdentityCredential/models.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/multiTenantTokenCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/onBehalfOfCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/usernamePasswordCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/visualStudioCodeCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/visualStudioCodeCredentialPlugin.js +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/visualStudioCodeCredentialPlugin.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/credentials/workloadIdentityCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/errors.js +0 -0
- /package/{dist/browser → dist-esm/src}/msal/browserFlows/flows.js +0 -0
- /package/{dist/browser → dist-esm/src}/msal/credentials.js +0 -0
- /package/{dist/esm → dist-esm/src}/msal/msal.js +0 -0
- /package/{dist/esm → dist-esm/src}/msal/msal.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/msal/nodeFlows/brokerOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/msal/nodeFlows/brokerOptions.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/msal/nodeFlows/tokenCachePersistenceOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/msal/nodeFlows/tokenCachePersistenceOptions.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/msal/types.js +0 -0
- /package/{dist/browser → dist-esm/src}/plugins/provider.js +0 -0
- /package/{dist/browser → dist-esm/src}/regionalAuthority.js +0 -0
- /package/{dist/browser → dist-esm/src}/regionalAuthority.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/tokenCredentialOptions.js +0 -0
- /package/{dist/browser → dist-esm/src}/util/identityTokenEndpoint.js +0 -0
- /package/{dist/browser → dist-esm/src}/util/identityTokenEndpoint.js.map +0 -0
- /package/{dist/browser → dist-esm/src}/util/logging.js +0 -0
- /package/{dist/browser → dist-esm/src}/util/processUtils.js +0 -0
- /package/{dist/browser → dist-esm/src}/util/processUtils.js.map +0 -0
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azurePowerShellCredential.js","sourceRoot":"","sources":["../../../src/credentials/azurePowerShellCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EACL,aAAa,EACb,yBAAyB,EACzB,mCAAmC,GACpC,MAAM,uBAAuB,CAAC;AAC/B,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC/E,OAAO,EAAE,+BAA+B,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAGvF,OAAO,EAAE,0BAA0B,EAAE,MAAM,WAAW,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD,MAAM,MAAM,GAAG,gBAAgB,CAAC,2BAA2B,CAAC,CAAC;AAE7D,MAAM,SAAS,GAAG,OAAO,CAAC,QAAQ,KAAK,OAAO,CAAC;AAE/C;;;;GAIG;AACH,MAAM,UAAU,aAAa,CAAC,WAAmB;IAC/C,IAAI,SAAS,EAAE,CAAC;QACd,OAAO,GAAG,WAAW,MAAM,CAAC;IAC9B,CAAC;SAAM,CAAC;QACN,OAAO,WAAW,CAAC;IACrB,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,WAAW,CAAC,QAAoB,EAAE,OAAgB;IAC/D,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,CAAC,IAAI,EAAE,GAAG,UAAU,CAAC,GAAG,OAAO,CAAC;QACtC,MAAM,MAAM,GAAG,CAAC,MAAM,YAAY,CAAC,QAAQ,CAAC,IAAI,EAAE,UAAU,EAAE;YAC5D,QAAQ,EAAE,MAAM;YAChB,OAAO;SACR,CAAC,CAAW,CAAC;QAEd,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACvB,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG;IAC9B,KAAK,EAAE,gCAAgC;IACvC,SAAS,EACP,uIAAuI;CAC1I,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,6BAA6B,GAAG;IAC3C,KAAK,EACH,8FAA8F;IAChG,SAAS,EAAE,4KAA4K;IACvL,YAAY,EAAE,4FAA4F;CAC3G,CAAC;AAEF,mDAAmD;AACnD,MAAM,YAAY,GAA4C,CAAC,GAAU,EAAE,EAAE,CAC3E,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,KAAK,MAAM,CAAC,CAAC;AAEzD,qDAAqD;AACrD,MAAM,mBAAmB,GAA4C,CAAC,GAAU,EAAE,EAAE,CAClF,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,gBAAgB,CAAC,SAAS,CAAC,CAAC;AAEhD;;;;GAIG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC;AAEpD,IAAI,SAAS,EAAE,CAAC;IACd,YAAY,CAAC,IAAI,CAAC,aAAa,CAAC,YAAY,CAAC,CAAC,CAAC;AACjD,CAAC;AAED;;;;GAIG;AACH,MAAM,OAAO,yBAAyB;IAKpC;;;;;;;;;;OAUG;IACH,YAAY,OAA0C;QACpD,IAAI,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,EAAE,CAAC;YACtB,aAAa,CAAC,MAAM,EAAE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,CAAC,CAAC;YACzC,IAAI,CAAC,QAAQ,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,CAAC;QACpC,CAAC;QACD,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QACF,IAAI,CAAC,OAAO,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,kBAAkB,CAAC;IAC7C,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,6BAA6B,CACzC,QAAgB,EAChB,QAAiB,EACjB,OAAgB;QAEhB,uDAAuD;QACvD,KAAK,MAAM,iBAAiB,IAAI,CAAC,GAAG,YAAY,CAAC,EAAE,CAAC;YAClD,IAAI,CAAC;gBACH,MAAM,WAAW,CAAC,CAAC,CAAC,iBAAiB,EAAE,IAAI,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;YAC1D,CAAC;YAAC,OAAO,CAAM,EAAE,CAAC;gBAChB,gFAAgF;gBAChF,YAAY,CAAC,KAAK,EAAE,CAAC;gBACrB,SAAS;YACX,CAAC;YAED,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC;gBAChC;oBACE,iBAAiB;oBACjB,YAAY;oBACZ,iBAAiB;oBACjB,UAAU;oBACV;yBACe,QAAQ,aAAR,QAAQ,cAAR,QAAQ,GAAI,EAAE;;;;;6BAKV,QAAQ;;;;;;;;;;;;;;;;;;;;;;WAsB1B;iBACF;aACF,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;YAC1B,OAAO,cAAc,CAAC,MAAM,CAAC,CAAC;QAChC,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,0EAA0E,CAAC,CAAC;IAC9F,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,QAAQ,CACnB,MAAyB,EACzB,UAA2B,EAAE;QAE7B,OAAO,aAAa,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,WAAW,EAAE,OAAO,EAAE,KAAK,IAAI,EAAE;YACrF,MAAM,QAAQ,GAAG,yBAAyB,CACxC,IAAI,CAAC,QAAQ,EACb,OAAO,EACP,IAAI,CAAC,4BAA4B,CAClC,CAAC;YACF,MAAM,KAAK,GAAG,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YAC9D,IAAI,QAAQ,EAAE,CAAC;gBACb,aAAa,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;YAClC,CAAC;YACD,IAAI,CAAC;gBACH,+BAA+B,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;gBAC/C,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,KAAK,EAAE,CAAC,CAAC;gBACjD,MAAM,QAAQ,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC;gBACzC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,6BAA6B,CAAC,QAAQ,EAAE,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;gBAC5F,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC;gBAC5C,OAAO;oBACL,KAAK,EAAE,QAAQ,CAAC,KAAK;oBACrB,kBAAkB,EAAE,IAAI,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE;oBAC1D,SAAS,EAAE,QAAQ;iBACL,CAAC;YACnB,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAClB,IAAI,mBAAmB,CAAC,GAAG,CAAC,EAAE,CAAC;oBAC7B,MAAM,KAAK,GAAG,IAAI,0BAA0B,CAAC,6BAA6B,CAAC,SAAS,CAAC,CAAC;oBACtF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,CAAC;oBAChD,MAAM,KAAK,CAAC;gBACd,CAAC;qBAAM,IAAI,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC;oBAC7B,MAAM,KAAK,GAAG,IAAI,0BAA0B,CAAC,6BAA6B,CAAC,KAAK,CAAC,CAAC;oBAClF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,CAAC;oBAChD,MAAM,KAAK,CAAC;gBACd,CAAC;gBACD,MAAM,KAAK,GAAG,IAAI,0BAA0B,CAC1C,GAAG,GAAG,KAAK,6BAA6B,CAAC,YAAY,EAAE,CACxD,CAAC;gBACF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,CAAC;gBAChD,MAAM,KAAK,CAAC;YACd,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAClC,MAAc;IAEd,MAAM,SAAS,GAAG,WAAW,CAAC;IAC9B,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;IACxC,IAAI,kBAAkB,GAAG,MAAM,CAAC;IAChC,IAAI,OAAO,EAAE,CAAC;QACZ,IAAI,CAAC;YACH,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;gBAC3B,IAAI,CAAC;oBACH,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;oBACrC,IAAI,WAAW,aAAX,WAAW,uBAAX,WAAW,CAAE,KAAK,EAAE,CAAC;wBACvB,kBAAkB,GAAG,kBAAkB,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;wBAC1D,IAAI,kBAAkB,EAAE,CAAC;4BACvB,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAC;wBAC9C,CAAC;wBACD,OAAO,WAAW,CAAC;oBACrB,CAAC;gBACH,CAAC;gBAAC,OAAO,CAAC,EAAE,CAAC;oBACX,SAAS;gBACX,CAAC;YACH,CAAC;QACH,CAAC;QAAC,OAAO,CAAM,EAAE,CAAC;YAChB,MAAM,IAAI,KAAK,CAAC,8DAA8D,MAAM,EAAE,CAAC,CAAC;QAC1F,CAAC;IACH,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,yDAAyD,MAAM,EAAE,CAAC,CAAC;AACrF,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport {\n checkTenantId,\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n} from \"../util/tenantIdUtils\";\nimport { credentialLogger, formatError, formatSuccess } from \"../util/logging\";\nimport { ensureValidScopeForDevTimeCreds, getScopeResource } from \"../util/scopeUtils\";\n\nimport { AzurePowerShellCredentialOptions } from \"./azurePowerShellCredentialOptions\";\nimport { CredentialUnavailableError } from \"../errors\";\nimport { processUtils } from \"../util/processUtils\";\nimport { tracingClient } from \"../util/tracing\";\n\nconst logger = credentialLogger(\"AzurePowerShellCredential\");\n\nconst isWindows = process.platform === \"win32\";\n\n/**\n * Returns a platform-appropriate command name by appending \".exe\" on Windows.\n *\n * @internal\n */\nexport function formatCommand(commandName: string): string {\n if (isWindows) {\n return `${commandName}.exe`;\n } else {\n return commandName;\n }\n}\n\n/**\n * Receives a list of commands to run, executes them, then returns the outputs.\n * If anything fails, an error is thrown.\n * @internal\n */\nasync function runCommands(commands: string[][], timeout?: number): Promise<string[]> {\n const results: string[] = [];\n\n for (const command of commands) {\n const [file, ...parameters] = command;\n const result = (await processUtils.execFile(file, parameters, {\n encoding: \"utf8\",\n timeout,\n })) as string;\n\n results.push(result);\n }\n\n return results;\n}\n\n/**\n * Known PowerShell errors\n * @internal\n */\nexport const powerShellErrors = {\n login: \"Run Connect-AzAccount to login\",\n installed:\n \"The specified module 'Az.Accounts' with version '2.2.0' was not loaded because no valid module file was found in any module directory\",\n};\n\n/**\n * Messages to use when throwing in this credential.\n * @internal\n */\nexport const powerShellPublicErrorMessages = {\n login:\n \"Please run 'Connect-AzAccount' from PowerShell to authenticate before using this credential.\",\n installed: `The 'Az.Account' module >= 2.2.0 is not installed. Install the Azure Az PowerShell module with: \"Install-Module -Name Az -Scope CurrentUser -Repository PSGallery -Force\".`,\n troubleshoot: `To troubleshoot, visit https://aka.ms/azsdk/js/identity/powershellcredential/troubleshoot.`,\n};\n\n// PowerShell Azure User not logged in error check.\nconst isLoginError: (err: Error) => RegExpMatchArray | null = (err: Error) =>\n err.message.match(`(.*)${powerShellErrors.login}(.*)`);\n\n// Az Module not Installed in Azure PowerShell check.\nconst isNotInstalledError: (err: Error) => RegExpMatchArray | null = (err: Error) =>\n err.message.match(powerShellErrors.installed);\n\n/**\n * The PowerShell commands to be tried, in order.\n *\n * @internal\n */\nexport const commandStack = [formatCommand(\"pwsh\")];\n\nif (isWindows) {\n commandStack.push(formatCommand(\"powershell\"));\n}\n\n/**\n * This credential will use the currently logged-in user information from the\n * Azure PowerShell module. To do so, it will read the user access token and\n * expire time with Azure PowerShell command `Get-AzAccessToken -ResourceUrl {ResourceScope}`\n */\nexport class AzurePowerShellCredential implements TokenCredential {\n private tenantId?: string;\n private additionallyAllowedTenantIds: string[];\n private timeout?: number;\n\n /**\n * Creates an instance of the {@link AzurePowerShellCredential}.\n *\n * To use this credential:\n * - Install the Azure Az PowerShell module with:\n * `Install-Module -Name Az -Scope CurrentUser -Repository PSGallery -Force`.\n * - You have already logged in to Azure PowerShell using the command\n * `Connect-AzAccount` from the command line.\n *\n * @param options - Options, to optionally allow multi-tenant requests.\n */\n constructor(options?: AzurePowerShellCredentialOptions) {\n if (options?.tenantId) {\n checkTenantId(logger, options?.tenantId);\n this.tenantId = options?.tenantId;\n }\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n this.timeout = options?.processTimeoutInMs;\n }\n\n /**\n * Gets the access token from Azure PowerShell\n * @param resource - The resource to use when getting the token\n */\n private async getAzurePowerShellAccessToken(\n resource: string,\n tenantId?: string,\n timeout?: number,\n ): Promise<{ Token: string; ExpiresOn: string }> {\n // Clone the stack to avoid mutating it while iterating\n for (const powerShellCommand of [...commandStack]) {\n try {\n await runCommands([[powerShellCommand, \"/?\"]], timeout);\n } catch (e: any) {\n // Remove this credential from the original stack so that we don't try it again.\n commandStack.shift();\n continue;\n }\n\n const results = await runCommands([\n [\n powerShellCommand,\n \"-NoProfile\",\n \"-NonInteractive\",\n \"-Command\",\n `\n $tenantId = \"${tenantId ?? \"\"}\"\n $m = Import-Module Az.Accounts -MinimumVersion 2.2.0 -PassThru\n $useSecureString = $m.Version -ge [version]'2.17.0'\n\n $params = @{\n ResourceUrl = \"${resource}\"\n }\n\n if ($tenantId.Length -gt 0) {\n $params[\"TenantId\"] = $tenantId\n }\n\n if ($useSecureString) {\n $params[\"AsSecureString\"] = $true\n }\n\n $token = Get-AzAccessToken @params\n\n $result = New-Object -TypeName PSObject\n $result | Add-Member -MemberType NoteProperty -Name ExpiresOn -Value $token.ExpiresOn\n if ($useSecureString) {\n $result | Add-Member -MemberType NoteProperty -Name Token -Value (ConvertFrom-SecureString -AsPlainText $token.Token)\n } else {\n $result | Add-Member -MemberType NoteProperty -Name Token -Value $token.Token\n }\n\n Write-Output (ConvertTo-Json $result)\n `,\n ],\n ]);\n\n const result = results[0];\n return parseJsonToken(result);\n }\n throw new Error(`Unable to execute PowerShell. Ensure that it is installed in your system`);\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If the authentication cannot be performed through PowerShell, a {@link CredentialUnavailableError} will be thrown.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this TokenCredential implementation might make.\n */\n public async getToken(\n scopes: string | string[],\n options: GetTokenOptions = {},\n ): Promise<AccessToken> {\n return tracingClient.withSpan(`${this.constructor.name}.getToken`, options, async () => {\n const tenantId = processMultiTenantRequest(\n this.tenantId,\n options,\n this.additionallyAllowedTenantIds,\n );\n const scope = typeof scopes === \"string\" ? scopes : scopes[0];\n if (tenantId) {\n checkTenantId(logger, tenantId);\n }\n try {\n ensureValidScopeForDevTimeCreds(scope, logger);\n logger.getToken.info(`Using the scope ${scope}`);\n const resource = getScopeResource(scope);\n const response = await this.getAzurePowerShellAccessToken(resource, tenantId, this.timeout);\n logger.getToken.info(formatSuccess(scopes));\n return {\n token: response.Token,\n expiresOnTimestamp: new Date(response.ExpiresOn).getTime(),\n tokenType: \"Bearer\",\n } as AccessToken;\n } catch (err: any) {\n if (isNotInstalledError(err)) {\n const error = new CredentialUnavailableError(powerShellPublicErrorMessages.installed);\n logger.getToken.info(formatError(scope, error));\n throw error;\n } else if (isLoginError(err)) {\n const error = new CredentialUnavailableError(powerShellPublicErrorMessages.login);\n logger.getToken.info(formatError(scope, error));\n throw error;\n }\n const error = new CredentialUnavailableError(\n `${err}. ${powerShellPublicErrorMessages.troubleshoot}`,\n );\n logger.getToken.info(formatError(scope, error));\n throw error;\n }\n });\n }\n}\n\n/**\n *\n * @internal\n */\nexport async function parseJsonToken(\n result: string,\n): Promise<{ Token: string; ExpiresOn: string }> {\n const jsonRegex = /{[^{}]*}/g;\n const matches = result.match(jsonRegex);\n let resultWithoutToken = result;\n if (matches) {\n try {\n for (const item of matches) {\n try {\n const jsonContent = JSON.parse(item);\n if (jsonContent?.Token) {\n resultWithoutToken = resultWithoutToken.replace(item, \"\");\n if (resultWithoutToken) {\n logger.getToken.warning(resultWithoutToken);\n }\n return jsonContent;\n }\n } catch (e) {\n continue;\n }\n }\n } catch (e: any) {\n throw new Error(`Unable to parse the output of PowerShell. Received output: ${result}`);\n }\n }\n throw new Error(`No access token found in the output. Received output: ${result}`);\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"azurePowerShellCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/azurePowerShellCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Options for the {@link AzurePowerShellCredential}\n */\nexport interface AzurePowerShellCredentialOptions extends MultiTenantTokenCredentialOptions {\n /**\n * Allows specifying a tenant ID\n */\n tenantId?: string;\n /**\n * Process timeout configurable for making token requests, provided in milliseconds\n */\n processTimeoutInMs?: number;\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"brokerAuthOptions.js","sourceRoot":"","sources":["../../../src/credentials/brokerAuthOptions.ts"],"names":[],"mappings":"","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\nimport { BrokerOptions } from \"../msal/nodeFlows/brokerOptions\";\n\n/**\n * Configuration options for InteractiveBrowserCredential\n * to support WAM Broker Authentication.\n */\n\nexport interface BrokerAuthOptions {\n /**\n * Options to allow broker authentication when using InteractiveBrowserCredential\n *\n */\n brokerOptions?: BrokerOptions;\n}\n"]}
|
|
@@ -1,16 +1,15 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { AggregateAuthenticationError, CredentialUnavailableError } from "../errors
|
|
4
|
-
import { credentialLogger, formatError, formatSuccess } from "../util/logging
|
|
5
|
-
import { tracingClient } from "../util/tracing
|
|
3
|
+
import { AggregateAuthenticationError, CredentialUnavailableError } from "../errors";
|
|
4
|
+
import { credentialLogger, formatError, formatSuccess } from "../util/logging";
|
|
5
|
+
import { tracingClient } from "../util/tracing";
|
|
6
6
|
/**
|
|
7
7
|
* @internal
|
|
8
8
|
*/
|
|
9
9
|
export const logger = credentialLogger("ChainedTokenCredential");
|
|
10
10
|
/**
|
|
11
|
-
* Enables multiple `TokenCredential` implementations to be tried in order
|
|
12
|
-
* one of the getToken methods returns an access token.
|
|
13
|
-
* [ChainedTokenCredential overview](https://aka.ms/azsdk/js/identity/credential-chains#use-chainedtokencredential-for-granularity).
|
|
11
|
+
* Enables multiple `TokenCredential` implementations to be tried in order
|
|
12
|
+
* until one of the getToken methods returns an access token.
|
|
14
13
|
*/
|
|
15
14
|
export class ChainedTokenCredential {
|
|
16
15
|
/**
|
|
@@ -27,10 +26,8 @@ export class ChainedTokenCredential {
|
|
|
27
26
|
* const clientSecret = "<client-secret>";
|
|
28
27
|
* const anotherClientId = "<another-client-id>";
|
|
29
28
|
* const anotherSecret = "<another-client-secret>";
|
|
30
|
-
*
|
|
31
29
|
* const firstCredential = new ClientSecretCredential(tenantId, clientId, clientSecret);
|
|
32
30
|
* const secondCredential = new ClientSecretCredential(tenantId, anotherClientId, anotherSecret);
|
|
33
|
-
*
|
|
34
31
|
* const credentialChain = new ChainedTokenCredential(firstCredential, secondCredential);
|
|
35
32
|
* ```
|
|
36
33
|
*/
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"chainedTokenCredential.js","sourceRoot":"","sources":["../../../src/credentials/chainedTokenCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,4BAA4B,EAAE,0BAA0B,EAAE,MAAM,WAAW,CAAC;AACrF,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC/E,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD;;GAEG;AACH,MAAM,CAAC,MAAM,MAAM,GAAG,gBAAgB,CAAC,wBAAwB,CAAC,CAAC;AAEjE;;;GAGG;AACH,MAAM,OAAO,sBAAsB;IAGjC;;;;;;;;;;;;;;;;;;OAkBG;IACH,YAAY,GAAG,OAA0B;QArBjC,aAAQ,GAAsB,EAAE,CAAC;QAsBvC,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;IAC1B,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,QAAQ,CAAC,MAAyB,EAAE,UAA2B,EAAE;QACrE,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC/D,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,KAAK,CAAC,gBAAgB,CAC5B,MAAyB,EACzB,UAA2B,EAAE;QAE7B,IAAI,KAAK,GAAuB,IAAI,CAAC;QACrC,IAAI,oBAAqC,CAAC;QAC1C,MAAM,MAAM,GAAY,EAAE,CAAC;QAE3B,OAAO,aAAa,CAAC,QAAQ,CAC3B,iCAAiC,EACjC,OAAO,EACP,KAAK,EAAE,cAAc,EAAE,EAAE;YACvB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC,EAAE,EAAE,CAAC;gBAChE,IAAI,CAAC;oBACH,KAAK,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;oBAChE,oBAAoB,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;gBAC1C,CAAC;gBAAC,OAAO,GAAQ,EAAE,CAAC;oBAClB,IACE,GAAG,CAAC,IAAI,KAAK,4BAA4B;wBACzC,GAAG,CAAC,IAAI,KAAK,6BAA6B,EAC1C,CAAC;wBACD,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBACnB,CAAC;yBAAM,CAAC;wBACN,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC;wBAC/C,MAAM,GAAG,CAAC;oBACZ,CAAC;gBACH,CAAC;YACH,CAAC;YAED,IAAI,CAAC,KAAK,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAChC,MAAM,GAAG,GAAG,IAAI,4BAA4B,CAC1C,MAAM,EACN,+CAA+C,CAChD,CAAC;gBACF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC;gBAC/C,MAAM,GAAG,CAAC;YACZ,CAAC;YAED,MAAM,CAAC,QAAQ,CAAC,IAAI,CAClB,cAAc,oBAAoB,CAAC,WAAW,CAAC,IAAI,KAAK,aAAa,CAAC,MAAM,CAAC,EAAE,CAChF,CAAC;YAEF,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;gBACnB,MAAM,IAAI,0BAA0B,CAAC,kCAAkC,CAAC,CAAC;YAC3E,CAAC;YACD,OAAO,EAAE,KAAK,EAAE,oBAAoB,EAAE,CAAC;QACzC,CAAC,CACF,CAAC;IACJ,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport { AggregateAuthenticationError, CredentialUnavailableError } from \"../errors\";\nimport { credentialLogger, formatError, formatSuccess } from \"../util/logging\";\nimport { tracingClient } from \"../util/tracing\";\n\n/**\n * @internal\n */\nexport const logger = credentialLogger(\"ChainedTokenCredential\");\n\n/**\n * Enables multiple `TokenCredential` implementations to be tried in order\n * until one of the getToken methods returns an access token.\n */\nexport class ChainedTokenCredential implements TokenCredential {\n private _sources: TokenCredential[] = [];\n\n /**\n * Creates an instance of ChainedTokenCredential using the given credentials.\n *\n * @param sources - `TokenCredential` implementations to be tried in order.\n *\n * Example usage:\n * ```ts snippet:chained_token_credential_example\n * import { ClientSecretCredential, ChainedTokenCredential } from \"@azure/identity\";\n *\n * const tenantId = \"<tenant-id>\";\n * const clientId = \"<client-id>\";\n * const clientSecret = \"<client-secret>\";\n * const anotherClientId = \"<another-client-id>\";\n * const anotherSecret = \"<another-client-secret>\";\n * const firstCredential = new ClientSecretCredential(tenantId, clientId, clientSecret);\n * const secondCredential = new ClientSecretCredential(tenantId, anotherClientId, anotherSecret);\n * const credentialChain = new ChainedTokenCredential(firstCredential, secondCredential);\n * ```\n */\n constructor(...sources: TokenCredential[]) {\n this._sources = sources;\n }\n\n /**\n * Returns the first access token returned by one of the chained\n * `TokenCredential` implementations. Throws an {@link AggregateAuthenticationError}\n * when one or more credentials throws an {@link AuthenticationError} and\n * no credentials have returned an access token.\n *\n * This method is called automatically by Azure SDK client libraries. You may call this method\n * directly, but you must also handle token caching and token refreshing.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * `TokenCredential` implementation might make.\n */\n async getToken(scopes: string | string[], options: GetTokenOptions = {}): Promise<AccessToken> {\n const { token } = await this.getTokenInternal(scopes, options);\n return token;\n }\n\n private async getTokenInternal(\n scopes: string | string[],\n options: GetTokenOptions = {},\n ): Promise<{ token: AccessToken; successfulCredential: TokenCredential }> {\n let token: AccessToken | null = null;\n let successfulCredential: TokenCredential;\n const errors: Error[] = [];\n\n return tracingClient.withSpan(\n \"ChainedTokenCredential.getToken\",\n options,\n async (updatedOptions) => {\n for (let i = 0; i < this._sources.length && token === null; i++) {\n try {\n token = await this._sources[i].getToken(scopes, updatedOptions);\n successfulCredential = this._sources[i];\n } catch (err: any) {\n if (\n err.name === \"CredentialUnavailableError\" ||\n err.name === \"AuthenticationRequiredError\"\n ) {\n errors.push(err);\n } else {\n logger.getToken.info(formatError(scopes, err));\n throw err;\n }\n }\n }\n\n if (!token && errors.length > 0) {\n const err = new AggregateAuthenticationError(\n errors,\n \"ChainedTokenCredential authentication failed.\",\n );\n logger.getToken.info(formatError(scopes, err));\n throw err;\n }\n\n logger.getToken.info(\n `Result for ${successfulCredential.constructor.name}: ${formatSuccess(scopes)}`,\n );\n\n if (token === null) {\n throw new CredentialUnavailableError(\"Failed to retrieve a valid token\");\n }\n return { token, successfulCredential };\n },\n );\n }\n}\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("ClientAssertionCredential is not supported in the browser.");
|
|
5
5
|
const logger = credentialLogger("ClientAssertionCredential");
|
|
6
6
|
/**
|
|
@@ -19,4 +19,4 @@ export class ClientAssertionCredential {
|
|
|
19
19
|
throw BrowserNotSupportedError;
|
|
20
20
|
}
|
|
21
21
|
}
|
|
22
|
-
//# sourceMappingURL=clientAssertionCredential
|
|
22
|
+
//# sourceMappingURL=clientAssertionCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientAssertionCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/clientAssertionCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,4DAA4D,CAC7D,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,2BAA2B,CAAC,CAAC;AAE7D;;GAEG;AACH,MAAM,OAAO,yBAAyB;IACpC;;OAEG;IACH;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAEM,QAAQ;QACb,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError } from \"../util/logging\";\n\nconst BrowserNotSupportedError = new Error(\n \"ClientAssertionCredential is not supported in the browser.\",\n);\nconst logger = credentialLogger(\"ClientAssertionCredential\");\n\n/**\n * Authenticates a service principal with a JWT assertion.\n */\nexport class ClientAssertionCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n public getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,10 +1,10 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { createMsalClient } from "../msal/nodeFlows/msalClient
|
|
4
|
-
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils
|
|
5
|
-
import { CredentialUnavailableError } from "../errors
|
|
6
|
-
import { credentialLogger } from "../util/logging
|
|
7
|
-
import { tracingClient } from "../util/tracing
|
|
3
|
+
import { createMsalClient } from "../msal/nodeFlows/msalClient";
|
|
4
|
+
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils";
|
|
5
|
+
import { CredentialUnavailableError } from "../errors";
|
|
6
|
+
import { credentialLogger } from "../util/logging";
|
|
7
|
+
import { tracingClient } from "../util/tracing";
|
|
8
8
|
const logger = credentialLogger("ClientAssertionCredential");
|
|
9
9
|
/**
|
|
10
10
|
* Authenticates a service principal with a JWT assertion.
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientAssertionCredential.js","sourceRoot":"","sources":["../../../src/credentials/clientAssertionCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAc,gBAAgB,EAAE,MAAM,8BAA8B,CAAC;AAC5E,OAAO,EACL,yBAAyB,EACzB,mCAAmC,GACpC,MAAM,uBAAuB,CAAC;AAG/B,OAAO,EAAE,0BAA0B,EAAE,MAAM,WAAW,CAAC;AACvD,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD,MAAM,MAAM,GAAG,gBAAgB,CAAC,2BAA2B,CAAC,CAAC;AAE7D;;GAEG;AACH,MAAM,OAAO,yBAAyB;IAOpC;;;;;;;;;OASG;IACH,YACE,QAAgB,EAChB,QAAgB,EAChB,YAAmC,EACnC,UAA4C,EAAE;QAE9C,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,0BAA0B,CAClC,8DAA8D,CAC/D,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,0BAA0B,CAClC,8DAA8D,CAC/D,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,MAAM,IAAI,0BAA0B,CAClC,qEAAqE,CACtE,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QAEF,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;QACjC,IAAI,CAAC,UAAU,GAAG,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,kCAChD,OAAO,KACV,MAAM,EACN,sBAAsB,EAAE,IAAI,CAAC,OAAO,IACpC,CAAC;IACL,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,QAAQ,CAAC,MAAyB,EAAE,UAA2B,EAAE;QACrE,OAAO,aAAa,CAAC,QAAQ,CAC3B,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,WAAW,EACnC,OAAO,EACP,KAAK,EAAE,UAAU,EAAE,EAAE;YACnB,UAAU,CAAC,QAAQ,GAAG,yBAAyB,CAC7C,IAAI,CAAC,QAAQ,EACb,UAAU,EACV,IAAI,CAAC,4BAA4B,EACjC,MAAM,CACP,CAAC;YAEF,MAAM,WAAW,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;YAC9D,OAAO,IAAI,CAAC,UAAU,CAAC,yBAAyB,CAC9C,WAAW,EACX,IAAI,CAAC,YAAY,EACjB,UAAU,CACX,CAAC;QACJ,CAAC,CACF,CAAC;IACJ,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport { MsalClient, createMsalClient } from \"../msal/nodeFlows/msalClient\";\nimport {\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n} from \"../util/tenantIdUtils\";\n\nimport { ClientAssertionCredentialOptions } from \"./clientAssertionCredentialOptions\";\nimport { CredentialUnavailableError } from \"../errors\";\nimport { credentialLogger } from \"../util/logging\";\nimport { tracingClient } from \"../util/tracing\";\n\nconst logger = credentialLogger(\"ClientAssertionCredential\");\n\n/**\n * Authenticates a service principal with a JWT assertion.\n */\nexport class ClientAssertionCredential implements TokenCredential {\n private msalClient: MsalClient;\n private tenantId: string;\n private additionallyAllowedTenantIds: string[];\n private getAssertion: () => Promise<string>;\n private options: ClientAssertionCredentialOptions;\n\n /**\n * Creates an instance of the ClientAssertionCredential with the details\n * needed to authenticate against Microsoft Entra ID with a client\n * assertion provided by the developer through the `getAssertion` function parameter.\n *\n * @param tenantId - The Microsoft Entra tenant (directory) ID.\n * @param clientId - The client (application) ID of an App Registration in the tenant.\n * @param getAssertion - A function that retrieves the assertion for the credential to use.\n * @param options - Options for configuring the client which makes the authentication request.\n */\n constructor(\n tenantId: string,\n clientId: string,\n getAssertion: () => Promise<string>,\n options: ClientAssertionCredentialOptions = {},\n ) {\n if (!tenantId) {\n throw new CredentialUnavailableError(\n \"ClientAssertionCredential: tenantId is a required parameter.\",\n );\n }\n\n if (!clientId) {\n throw new CredentialUnavailableError(\n \"ClientAssertionCredential: clientId is a required parameter.\",\n );\n }\n\n if (!getAssertion) {\n throw new CredentialUnavailableError(\n \"ClientAssertionCredential: clientAssertion is a required parameter.\",\n );\n }\n this.tenantId = tenantId;\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n\n this.options = options;\n this.getAssertion = getAssertion;\n this.msalClient = createMsalClient(clientId, tenantId, {\n ...options,\n logger,\n tokenCredentialOptions: this.options,\n });\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} will be thrown with the details of the failure.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n async getToken(scopes: string | string[], options: GetTokenOptions = {}): Promise<AccessToken> {\n return tracingClient.withSpan(\n `${this.constructor.name}.getToken`,\n options,\n async (newOptions) => {\n newOptions.tenantId = processMultiTenantRequest(\n this.tenantId,\n newOptions,\n this.additionallyAllowedTenantIds,\n logger,\n );\n\n const arrayScopes = Array.isArray(scopes) ? scopes : [scopes];\n return this.msalClient.getTokenByClientAssertion(\n arrayScopes,\n this.getAssertion,\n newOptions,\n );\n },\n );\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientAssertionCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/clientAssertionCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AuthorityValidationOptions } from \"./authorityValidationOptions\";\nimport { CredentialPersistenceOptions } from \"./credentialPersistenceOptions\";\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Options for the {@link ClientAssertionCredential}\n */\nexport interface ClientAssertionCredentialOptions\n extends MultiTenantTokenCredentialOptions,\n CredentialPersistenceOptions,\n AuthorityValidationOptions {}\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("ClientCertificateCredential is not supported in the browser.");
|
|
5
5
|
const logger = credentialLogger("ClientCertificateCredential");
|
|
6
6
|
/**
|
|
@@ -20,4 +20,4 @@ export class ClientCertificateCredential {
|
|
|
20
20
|
throw BrowserNotSupportedError;
|
|
21
21
|
}
|
|
22
22
|
}
|
|
23
|
-
//# sourceMappingURL=clientCertificateCredential
|
|
23
|
+
//# sourceMappingURL=clientCertificateCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientCertificateCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/clientCertificateCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,8DAA8D,CAC/D,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,6BAA6B,CAAC,CAAC;AAE/D;;;GAGG;AACH,MAAM,OAAO,2BAA2B;IACtC;;OAEG;IACH;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAEM,QAAQ;QACb,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError } from \"../util/logging\";\n\nconst BrowserNotSupportedError = new Error(\n \"ClientCertificateCredential is not supported in the browser.\",\n);\nconst logger = credentialLogger(\"ClientCertificateCredential\");\n\n/**\n * Enables authentication to Microsoft Entra ID using a PEM-encoded\n * certificate that is assigned to an App Registration.\n */\nexport class ClientCertificateCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n public getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { createMsalClient } from "../msal/nodeFlows/msalClient
|
|
4
|
-
import { createHash, createPrivateKey } from "
|
|
5
|
-
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils
|
|
6
|
-
import { credentialLogger } from "../util/logging
|
|
7
|
-
import { readFile } from "
|
|
8
|
-
import { tracingClient } from "../util/tracing
|
|
3
|
+
import { createMsalClient } from "../msal/nodeFlows/msalClient";
|
|
4
|
+
import { createHash, createPrivateKey } from "crypto";
|
|
5
|
+
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils";
|
|
6
|
+
import { credentialLogger } from "../util/logging";
|
|
7
|
+
import { readFile } from "fs/promises";
|
|
8
|
+
import { tracingClient } from "../util/tracing";
|
|
9
9
|
const credentialName = "ClientCertificateCredential";
|
|
10
10
|
const logger = credentialLogger(credentialName);
|
|
11
11
|
/**
|
|
@@ -29,10 +29,8 @@ export class ClientCertificateCredential {
|
|
|
29
29
|
certificatePath: certificatePathOrConfiguration,
|
|
30
30
|
}
|
|
31
31
|
: certificatePathOrConfiguration));
|
|
32
|
-
const certificate = this.certificateConfiguration
|
|
33
|
-
|
|
34
|
-
const certificatePath = this.certificateConfiguration
|
|
35
|
-
.certificatePath;
|
|
32
|
+
const certificate = this.certificateConfiguration.certificate;
|
|
33
|
+
const certificatePath = this.certificateConfiguration.certificatePath;
|
|
36
34
|
if (!this.certificateConfiguration || !(certificate || certificatePath)) {
|
|
37
35
|
throw new Error(`${credentialName}: Provide either a PEM certificate in string form, or the path to that certificate in the filesystem. To troubleshoot, visit https://aka.ms/azsdk/js/identity/serviceprincipalauthentication/troubleshoot.`);
|
|
38
36
|
}
|
|
@@ -92,8 +90,7 @@ export class ClientCertificateCredential {
|
|
|
92
90
|
*/
|
|
93
91
|
export async function parseCertificate(certificateConfiguration, sendCertificateChain) {
|
|
94
92
|
const certificate = certificateConfiguration.certificate;
|
|
95
|
-
const certificatePath = certificateConfiguration
|
|
96
|
-
.certificatePath;
|
|
93
|
+
const certificatePath = certificateConfiguration.certificatePath;
|
|
97
94
|
const certificateContents = certificate || (await readFile(certificatePath, "utf8"));
|
|
98
95
|
const x5c = sendCertificateChain ? certificateContents : undefined;
|
|
99
96
|
const certificatePattern = /(-+BEGIN CERTIFICATE-+)(\n\r?|\r\n?)([A-Za-z0-9+/\n\r]+=*)(\n\r?|\r\n?)(-+END CERTIFICATE-+)/g;
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientCertificateCredential.js","sourceRoot":"","sources":["../../../src/credentials/clientCertificateCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAc,gBAAgB,EAAE,MAAM,8BAA8B,CAAC;AAC5E,OAAO,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,QAAQ,CAAC;AACtD,OAAO,EACL,yBAAyB,EACzB,mCAAmC,GACpC,MAAM,uBAAuB,CAAC;AAI/B,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACvC,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD,MAAM,cAAc,GAAG,6BAA6B,CAAC;AACrD,MAAM,MAAM,GAAG,gBAAgB,CAAC,cAAc,CAAC,CAAC;AAqChD;;;;;;;GAOG;AACH,MAAM,OAAO,2BAA2B;IAsDtC,YACE,QAAgB,EAChB,QAAgB,EAChB,8BAAoF,EACpF,UAA8C,EAAE;QAEhD,IAAI,CAAC,QAAQ,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC3B,MAAM,IAAI,KAAK,CAAC,GAAG,cAAc,kDAAkD,CAAC,CAAC;QACvF,CAAC;QAED,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QAEF,IAAI,CAAC,oBAAoB,GAAG,OAAO,CAAC,oBAAoB,CAAC;QAEzD,IAAI,CAAC,wBAAwB,qBACxB,CAAC,OAAO,8BAA8B,KAAK,QAAQ;YACpD,CAAC,CAAC;gBACE,eAAe,EAAE,8BAA8B;aAChD;YACH,CAAC,CAAC,8BAA8B,CAAC,CACpC,CAAC;QACF,MAAM,WAAW,GACf,IAAI,CAAC,wBACN,CAAC,WAAW,CAAC;QACd,MAAM,eAAe,GACnB,IAAI,CAAC,wBACN,CAAC,eAAe,CAAC;QAClB,IAAI,CAAC,IAAI,CAAC,wBAAwB,IAAI,CAAC,CAAC,WAAW,IAAI,eAAe,CAAC,EAAE,CAAC;YACxE,MAAM,IAAI,KAAK,CACb,GAAG,cAAc,4MAA4M,CAC9N,CAAC;QACJ,CAAC;QACD,IAAI,WAAW,IAAI,eAAe,EAAE,CAAC;YACnC,MAAM,IAAI,KAAK,CACb,GAAG,cAAc,wOAAwO,CAC1P,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,UAAU,GAAG,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,kCAChD,OAAO,KACV,MAAM,EACN,sBAAsB,EAAE,OAAO,IAC/B,CAAC;IACL,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,QAAQ,CAAC,MAAyB,EAAE,UAA2B,EAAE;QACrE,OAAO,aAAa,CAAC,QAAQ,CAAC,GAAG,cAAc,WAAW,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,EAAE;YACxF,UAAU,CAAC,QAAQ,GAAG,yBAAyB,CAC7C,IAAI,CAAC,QAAQ,EACb,UAAU,EACV,IAAI,CAAC,4BAA4B,EACjC,MAAM,CACP,CAAC;YAEF,MAAM,WAAW,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;YAC9D,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,sBAAsB,EAAE,CAAC;YACxD,OAAO,IAAI,CAAC,UAAU,CAAC,2BAA2B,CAAC,WAAW,EAAE,WAAW,EAAE,UAAU,CAAC,CAAC;QAC3F,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,sBAAsB;;QAClC,MAAM,KAAK,GAAG,MAAM,gBAAgB,CAClC,IAAI,CAAC,wBAAwB,EAC7B,MAAA,IAAI,CAAC,oBAAoB,mCAAI,KAAK,CACnC,CAAC;QAEF,IAAI,UAAkB,CAAC;QACvB,IAAI,IAAI,CAAC,wBAAwB,CAAC,mBAAmB,KAAK,SAAS,EAAE,CAAC;YACpE,UAAU,GAAG,gBAAgB,CAAC;gBAC5B,GAAG,EAAE,KAAK,CAAC,mBAAmB;gBAC9B,UAAU,EAAE,IAAI,CAAC,wBAAwB,CAAC,mBAAmB;gBAC7D,MAAM,EAAE,KAAK;aACd,CAAC;iBACC,MAAM,CAAC;gBACN,MAAM,EAAE,KAAK;gBACb,IAAI,EAAE,OAAO;aACd,CAAC;iBACD,QAAQ,EAAE,CAAC;QAChB,CAAC;aAAM,CAAC;YACN,UAAU,GAAG,KAAK,CAAC,mBAAmB,CAAC;QACzC,CAAC;QAED,OAAO;YACL,UAAU,EAAE,KAAK,CAAC,UAAU;YAC5B,UAAU;YACV,GAAG,EAAE,KAAK,CAAC,GAAG;SACf,CAAC;IACJ,CAAC;CACF;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,wBAAqE,EACrE,oBAA6B;IAE7B,MAAM,WAAW,GACf,wBACD,CAAC,WAAW,CAAC;IACd,MAAM,eAAe,GACnB,wBACD,CAAC,eAAe,CAAC;IAClB,MAAM,mBAAmB,GAAG,WAAW,IAAI,CAAC,MAAM,QAAQ,CAAC,eAAgB,EAAE,MAAM,CAAC,CAAC,CAAC;IACtF,MAAM,GAAG,GAAG,oBAAoB,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;IAEnE,MAAM,kBAAkB,GACtB,+FAA+F,CAAC;IAClG,MAAM,UAAU,GAAa,EAAE,CAAC;IAEhC,qHAAqH;IACrH,IAAI,KAAK,CAAC;IACV,GAAG,CAAC;QACF,KAAK,GAAG,kBAAkB,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;QACrD,IAAI,KAAK,EAAE,CAAC;YACV,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC,QAAQ,KAAK,EAAE;IAEhB,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,4EAA4E,CAAC,CAAC;IAChG,CAAC;IAED,MAAM,UAAU,GAAG,UAAU,CAAC,MAAM,CAAC;SAClC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;SAC5C,MAAM,CAAC,KAAK,CAAC;SACb,WAAW,EAAE,CAAC;IAEjB,OAAO;QACL,mBAAmB;QACnB,UAAU;QACV,GAAG;KACJ,CAAC;AACJ,CAAC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport { MsalClient, createMsalClient } from \"../msal/nodeFlows/msalClient\";\nimport { createHash, createPrivateKey } from \"crypto\";\nimport {\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n} from \"../util/tenantIdUtils\";\n\nimport { CertificateParts } from \"../msal/types\";\nimport { ClientCertificateCredentialOptions } from \"./clientCertificateCredentialOptions\";\nimport { credentialLogger } from \"../util/logging\";\nimport { readFile } from \"fs/promises\";\nimport { tracingClient } from \"../util/tracing\";\n\nconst credentialName = \"ClientCertificateCredential\";\nconst logger = credentialLogger(credentialName);\n\n/**\n * Required configuration options for the {@link ClientCertificateCredential}, with the string contents of a PEM certificate\n */\nexport interface ClientCertificatePEMCertificate {\n /**\n * The PEM-encoded public/private key certificate on the filesystem.\n */\n certificate: string;\n\n /**\n * The password for the certificate file.\n */\n certificatePassword?: string;\n}\n/**\n * Required configuration options for the {@link ClientCertificateCredential}, with the path to a PEM certificate.\n */\nexport interface ClientCertificatePEMCertificatePath {\n /**\n * The path to the PEM-encoded public/private key certificate on the filesystem.\n */\n certificatePath: string;\n\n /**\n * The password for the certificate file.\n */\n certificatePassword?: string;\n}\n/**\n * Required configuration options for the {@link ClientCertificateCredential}, with either the string contents of a PEM certificate, or the path to a PEM certificate.\n */\nexport type ClientCertificateCredentialPEMConfiguration =\n | ClientCertificatePEMCertificate\n | ClientCertificatePEMCertificatePath;\n\n/**\n * Enables authentication to Microsoft Entra ID using a PEM-encoded\n * certificate that is assigned to an App Registration. More information\n * on how to configure certificate authentication can be found here:\n *\n * https://learn.microsoft.com/en-us/azure/active-directory/develop/active-directory-certificate-credentials#register-your-certificate-with-azure-ad\n *\n */\nexport class ClientCertificateCredential implements TokenCredential {\n private tenantId: string;\n private additionallyAllowedTenantIds: string[];\n private certificateConfiguration: ClientCertificateCredentialPEMConfiguration;\n private sendCertificateChain?: boolean;\n private msalClient: MsalClient;\n\n /**\n * Creates an instance of the ClientCertificateCredential with the details\n * needed to authenticate against Microsoft Entra ID with a certificate.\n *\n * @param tenantId - The Microsoft Entra tenant (directory) ID.\n * @param clientId - The client (application) ID of an App Registration in the tenant.\n * @param certificatePath - The path to a PEM-encoded public/private key certificate on the filesystem.\n * @param options - Options for configuring the client which makes the authentication request.\n */\n constructor(\n tenantId: string,\n clientId: string,\n certificatePath: string,\n options?: ClientCertificateCredentialOptions,\n );\n /**\n * Creates an instance of the ClientCertificateCredential with the details\n * needed to authenticate against Microsoft Entra ID with a certificate.\n *\n * @param tenantId - The Microsoft Entra tenant (directory) ID.\n * @param clientId - The client (application) ID of an App Registration in the tenant.\n * @param configuration - Other parameters required, including the path of the certificate on the filesystem.\n * If the type is ignored, we will throw the value of the path to a PEM certificate.\n * @param options - Options for configuring the client which makes the authentication request.\n */\n constructor(\n tenantId: string,\n clientId: string,\n configuration: ClientCertificatePEMCertificatePath,\n options?: ClientCertificateCredentialOptions,\n );\n /**\n * Creates an instance of the ClientCertificateCredential with the details\n * needed to authenticate against Microsoft Entra ID with a certificate.\n *\n * @param tenantId - The Microsoft Entra tenant (directory) ID.\n * @param clientId - The client (application) ID of an App Registration in the tenant.\n * @param configuration - Other parameters required, including the PEM-encoded certificate as a string.\n * If the type is ignored, we will throw the value of the PEM-encoded certificate.\n * @param options - Options for configuring the client which makes the authentication request.\n */\n constructor(\n tenantId: string,\n clientId: string,\n configuration: ClientCertificatePEMCertificate,\n options?: ClientCertificateCredentialOptions,\n );\n constructor(\n tenantId: string,\n clientId: string,\n certificatePathOrConfiguration: string | ClientCertificateCredentialPEMConfiguration,\n options: ClientCertificateCredentialOptions = {},\n ) {\n if (!tenantId || !clientId) {\n throw new Error(`${credentialName}: tenantId and clientId are required parameters.`);\n }\n\n this.tenantId = tenantId;\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n\n this.sendCertificateChain = options.sendCertificateChain;\n\n this.certificateConfiguration = {\n ...(typeof certificatePathOrConfiguration === \"string\"\n ? {\n certificatePath: certificatePathOrConfiguration,\n }\n : certificatePathOrConfiguration),\n };\n const certificate: string | undefined = (\n this.certificateConfiguration as ClientCertificatePEMCertificate\n ).certificate;\n const certificatePath: string | undefined = (\n this.certificateConfiguration as ClientCertificatePEMCertificatePath\n ).certificatePath;\n if (!this.certificateConfiguration || !(certificate || certificatePath)) {\n throw new Error(\n `${credentialName}: Provide either a PEM certificate in string form, or the path to that certificate in the filesystem. To troubleshoot, visit https://aka.ms/azsdk/js/identity/serviceprincipalauthentication/troubleshoot.`,\n );\n }\n if (certificate && certificatePath) {\n throw new Error(\n `${credentialName}: To avoid unexpected behaviors, providing both the contents of a PEM certificate and the path to a PEM certificate is forbidden. To troubleshoot, visit https://aka.ms/azsdk/js/identity/serviceprincipalauthentication/troubleshoot.`,\n );\n }\n this.msalClient = createMsalClient(clientId, tenantId, {\n ...options,\n logger,\n tokenCredentialOptions: options,\n });\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} will be thrown with the details of the failure.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n async getToken(scopes: string | string[], options: GetTokenOptions = {}): Promise<AccessToken> {\n return tracingClient.withSpan(`${credentialName}.getToken`, options, async (newOptions) => {\n newOptions.tenantId = processMultiTenantRequest(\n this.tenantId,\n newOptions,\n this.additionallyAllowedTenantIds,\n logger,\n );\n\n const arrayScopes = Array.isArray(scopes) ? scopes : [scopes];\n const certificate = await this.buildClientCertificate();\n return this.msalClient.getTokenByClientCertificate(arrayScopes, certificate, newOptions);\n });\n }\n\n private async buildClientCertificate(): Promise<CertificateParts> {\n const parts = await parseCertificate(\n this.certificateConfiguration,\n this.sendCertificateChain ?? false,\n );\n\n let privateKey: string;\n if (this.certificateConfiguration.certificatePassword !== undefined) {\n privateKey = createPrivateKey({\n key: parts.certificateContents,\n passphrase: this.certificateConfiguration.certificatePassword,\n format: \"pem\",\n })\n .export({\n format: \"pem\",\n type: \"pkcs8\",\n })\n .toString();\n } else {\n privateKey = parts.certificateContents;\n }\n\n return {\n thumbprint: parts.thumbprint,\n privateKey,\n x5c: parts.x5c,\n };\n }\n}\n\n/**\n * Parses a certificate into its relevant parts\n *\n * @param certificateConfiguration - The certificate contents or path to the certificate\n * @param sendCertificateChain - true if the entire certificate chain should be sent for SNI, false otherwise\n * @returns The parsed certificate parts and the certificate contents\n */\nexport async function parseCertificate(\n certificateConfiguration: ClientCertificateCredentialPEMConfiguration,\n sendCertificateChain: boolean,\n): Promise<Omit<CertificateParts, \"privateKey\"> & { certificateContents: string }> {\n const certificate: string | undefined = (\n certificateConfiguration as ClientCertificatePEMCertificate\n ).certificate;\n const certificatePath: string | undefined = (\n certificateConfiguration as ClientCertificatePEMCertificatePath\n ).certificatePath;\n const certificateContents = certificate || (await readFile(certificatePath!, \"utf8\"));\n const x5c = sendCertificateChain ? certificateContents : undefined;\n\n const certificatePattern =\n /(-+BEGIN CERTIFICATE-+)(\\n\\r?|\\r\\n?)([A-Za-z0-9+/\\n\\r]+=*)(\\n\\r?|\\r\\n?)(-+END CERTIFICATE-+)/g;\n const publicKeys: string[] = [];\n\n // Match all possible certificates, in the order they are in the file. These will form the chain that is used for x5c\n let match;\n do {\n match = certificatePattern.exec(certificateContents);\n if (match) {\n publicKeys.push(match[3]);\n }\n } while (match);\n\n if (publicKeys.length === 0) {\n throw new Error(\"The file at the specified path does not contain a PEM-encoded certificate.\");\n }\n\n const thumbprint = createHash(\"sha1\")\n .update(Buffer.from(publicKeys[0], \"base64\"))\n .digest(\"hex\")\n .toUpperCase();\n\n return {\n certificateContents,\n thumbprint,\n x5c,\n };\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientCertificateCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/clientCertificateCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AuthorityValidationOptions } from \"./authorityValidationOptions\";\nimport { CredentialPersistenceOptions } from \"./credentialPersistenceOptions\";\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Optional parameters for the {@link ClientCertificateCredential} class.\n */\nexport interface ClientCertificateCredentialOptions\n extends MultiTenantTokenCredentialOptions,\n CredentialPersistenceOptions,\n AuthorityValidationOptions {\n /**\n * Option to include x5c header for SubjectName and Issuer name authorization.\n * Set this option to send base64 encoded public certificate in the client assertion header as an x5c claim\n */\n sendCertificateChain?: boolean;\n // TODO: Export again once we're ready to release this feature.\n // /**\n // * Specifies a regional authority. Please refer to the {@link RegionalAuthority} type for the accepted values.\n // * If {@link RegionalAuthority.AutoDiscoverRegion} is specified, we will try to discover the regional authority endpoint.\n // * If the property is not specified, the credential uses the global authority endpoint.\n // */\n // regionalAuthority?: string;\n}\n"]}
|
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
3
|
import { createHttpHeaders, createPipelineRequest } from "@azure/core-rest-pipeline";
|
|
4
|
-
import { credentialLogger, formatError, formatSuccess } from "../util/logging
|
|
5
|
-
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils
|
|
6
|
-
import { IdentityClient } from "../client/identityClient
|
|
7
|
-
import { getIdentityTokenEndpointSuffix } from "../util/identityTokenEndpoint
|
|
8
|
-
import { tracingClient } from "../util/tracing
|
|
4
|
+
import { credentialLogger, formatError, formatSuccess } from "../util/logging";
|
|
5
|
+
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils";
|
|
6
|
+
import { IdentityClient } from "../client/identityClient";
|
|
7
|
+
import { getIdentityTokenEndpointSuffix } from "../util/identityTokenEndpoint";
|
|
8
|
+
import { tracingClient } from "../util/tracing";
|
|
9
9
|
const logger = credentialLogger("ClientSecretCredential");
|
|
10
10
|
// This credential is exported on browser bundles for development purposes.
|
|
11
11
|
// For this credential to work in browsers, browsers would need to have security features disabled.
|
|
@@ -80,4 +80,4 @@ export class ClientSecretCredential {
|
|
|
80
80
|
});
|
|
81
81
|
}
|
|
82
82
|
}
|
|
83
|
-
//# sourceMappingURL=clientSecretCredential
|
|
83
|
+
//# sourceMappingURL=clientSecretCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientSecretCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/clientSecretCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,MAAM,2BAA2B,CAAC;AACrF,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC/E,OAAO,EACL,yBAAyB,EACzB,mCAAmC,GACpC,MAAM,uBAAuB,CAAC;AAE/B,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAC1D,OAAO,EAAE,8BAA8B,EAAE,MAAM,+BAA+B,CAAC;AAC/E,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD,MAAM,MAAM,GAAG,gBAAgB,CAAC,wBAAwB,CAAC,CAAC;AAE1D,2EAA2E;AAC3E,mGAAmG;AACnG,wDAAwD;AAExD;;;;;;;GAOG;AACH,MAAM,OAAO,sBAAsB;IAOjC;;;;;;;;;OASG;IACH,YACE,QAAgB,EAChB,QAAgB,EAChB,YAAoB,EACpB,OAAuC;QAEvC,IAAI,CAAC,cAAc,GAAG,IAAI,cAAc,CAAC,OAAO,CAAC,CAAC;QAClD,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QACF,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;IACnC,CAAC;IAED;;;;;;;;;OASG;IACI,KAAK,CAAC,QAAQ,CACnB,MAAyB,EACzB,UAA2B,EAAE;QAE7B,OAAO,aAAa,CAAC,QAAQ,CAC3B,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,WAAW,EACnC,OAAO,EACP,KAAK,EAAE,UAAU,EAAE,EAAE;YACnB,MAAM,QAAQ,GAAG,yBAAyB,CACxC,IAAI,CAAC,QAAQ,EACb,UAAU,EACV,IAAI,CAAC,4BAA4B,CAClC,CAAC;YAEF,MAAM,KAAK,GAAG,IAAI,eAAe,CAAC;gBAChC,aAAa,EAAE,OAAO;gBACtB,UAAU,EAAE,oBAAoB;gBAChC,SAAS,EAAE,IAAI,CAAC,QAAQ;gBACxB,aAAa,EAAE,IAAI,CAAC,YAAY;gBAChC,KAAK,EAAE,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC;aAC9D,CAAC,CAAC;YAEH,IAAI,CAAC;gBACH,MAAM,SAAS,GAAG,8BAA8B,CAAC,QAAS,CAAC,CAAC;gBAC5D,MAAM,OAAO,GAAG,qBAAqB,CAAC;oBACpC,GAAG,EAAE,GAAG,IAAI,CAAC,cAAc,CAAC,aAAa,IAAI,QAAS,IAAI,SAAS,EAAE;oBACrE,MAAM,EAAE,MAAM;oBACd,IAAI,EAAE,KAAK,CAAC,QAAQ,EAAE;oBACtB,OAAO,EAAE,iBAAiB,CAAC;wBACzB,MAAM,EAAE,kBAAkB;wBAC1B,cAAc,EAAE,mCAAmC;qBACpD,CAAC;oBACF,WAAW,EAAE,OAAO,IAAI,OAAO,CAAC,WAAW;oBAC3C,cAAc,EAAE,UAAU,aAAV,UAAU,uBAAV,UAAU,CAAE,cAAc;iBAC3C,CAAC,CAAC;gBAEH,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;gBAC1E,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC;gBAC5C,OAAO,CAAC,aAAa,IAAI,aAAa,CAAC,WAAW,CAAC,IAAI,IAAI,CAAC;YAC9D,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAClB,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC;gBAC/C,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC,CACF,CAAC;IACJ,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport { createHttpHeaders, createPipelineRequest } from \"@azure/core-rest-pipeline\";\nimport { credentialLogger, formatError, formatSuccess } from \"../util/logging\";\nimport {\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n} from \"../util/tenantIdUtils\";\nimport { ClientSecretCredentialOptions } from \"./clientSecretCredentialOptions\";\nimport { IdentityClient } from \"../client/identityClient\";\nimport { getIdentityTokenEndpointSuffix } from \"../util/identityTokenEndpoint\";\nimport { tracingClient } from \"../util/tracing\";\n\nconst logger = credentialLogger(\"ClientSecretCredential\");\n\n// This credential is exported on browser bundles for development purposes.\n// For this credential to work in browsers, browsers would need to have security features disabled.\n// Please do not disable your browser security features.\n\n/**\n * Enables authentication to Microsoft Entra ID using a client secret\n * that was generated for an App Registration. More information on how\n * to configure a client secret can be found here:\n *\n * https://learn.microsoft.com/en-us/azure/active-directory/develop/quickstart-configure-app-access-web-apis#add-credentials-to-your-web-application\n *\n */\nexport class ClientSecretCredential implements TokenCredential {\n private identityClient: IdentityClient;\n private tenantId: string;\n private additionallyAllowedTenantIds: string[];\n private clientId: string;\n private clientSecret: string;\n\n /**\n * Creates an instance of the ClientSecretCredential with the details\n * needed to authenticate against Microsoft Entra ID with a client\n * secret.\n *\n * @param tenantId - The Microsoft Entra tenant (directory) ID.\n * @param clientId - The client (application) ID of an App Registration in the tenant.\n * @param clientSecret - A client secret that was generated for the App Registration.\n * @param options - Options for configuring the client which makes the authentication request.\n */\n constructor(\n tenantId: string,\n clientId: string,\n clientSecret: string,\n options?: ClientSecretCredentialOptions,\n ) {\n this.identityClient = new IdentityClient(options);\n this.tenantId = tenantId;\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n this.clientId = clientId;\n this.clientSecret = clientSecret;\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if\n * successful. If authentication cannot be performed at this time, this method may\n * return null. If an error occurs during authentication, an {@link AuthenticationError}\n * containing failure details will be thrown.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n public async getToken(\n scopes: string | string[],\n options: GetTokenOptions = {},\n ): Promise<AccessToken | null> {\n return tracingClient.withSpan(\n `${this.constructor.name}.getToken`,\n options,\n async (newOptions) => {\n const tenantId = processMultiTenantRequest(\n this.tenantId,\n newOptions,\n this.additionallyAllowedTenantIds,\n );\n\n const query = new URLSearchParams({\n response_type: \"token\",\n grant_type: \"client_credentials\",\n client_id: this.clientId,\n client_secret: this.clientSecret,\n scope: typeof scopes === \"string\" ? scopes : scopes.join(\" \"),\n });\n\n try {\n const urlSuffix = getIdentityTokenEndpointSuffix(tenantId!);\n const request = createPipelineRequest({\n url: `${this.identityClient.authorityHost}/${tenantId!}/${urlSuffix}`,\n method: \"POST\",\n body: query.toString(),\n headers: createHttpHeaders({\n Accept: \"application/json\",\n \"Content-Type\": \"application/x-www-form-urlencoded\",\n }),\n abortSignal: options && options.abortSignal,\n tracingOptions: newOptions?.tracingOptions,\n });\n\n const tokenResponse = await this.identityClient.sendTokenRequest(request);\n logger.getToken.info(formatSuccess(scopes));\n return (tokenResponse && tokenResponse.accessToken) || null;\n } catch (err: any) {\n logger.getToken.info(formatError(scopes, err));\n throw err;\n }\n },\n );\n }\n}\n"]}
|
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { createMsalClient } from "../msal/nodeFlows/msalClient
|
|
4
|
-
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils
|
|
5
|
-
import { CredentialUnavailableError } from "../errors
|
|
6
|
-
import { credentialLogger } from "../util/logging
|
|
7
|
-
import { ensureScopes } from "../util/scopeUtils
|
|
8
|
-
import { tracingClient } from "../util/tracing
|
|
3
|
+
import { createMsalClient } from "../msal/nodeFlows/msalClient";
|
|
4
|
+
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, } from "../util/tenantIdUtils";
|
|
5
|
+
import { CredentialUnavailableError } from "../errors";
|
|
6
|
+
import { credentialLogger } from "../util/logging";
|
|
7
|
+
import { ensureScopes } from "../util/scopeUtils";
|
|
8
|
+
import { tracingClient } from "../util/tracing";
|
|
9
9
|
const logger = credentialLogger("ClientSecretCredential");
|
|
10
10
|
/**
|
|
11
11
|
* Enables authentication to Microsoft Entra ID using a client secret
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientSecretCredential.js","sourceRoot":"","sources":["../../../src/credentials/clientSecretCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAc,gBAAgB,EAAE,MAAM,8BAA8B,CAAC;AAC5E,OAAO,EACL,yBAAyB,EACzB,mCAAmC,GACpC,MAAM,uBAAuB,CAAC;AAG/B,OAAO,EAAE,0BAA0B,EAAE,MAAM,WAAW,CAAC;AACvD,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD,MAAM,MAAM,GAAG,gBAAgB,CAAC,wBAAwB,CAAC,CAAC;AAE1D;;;;;;;GAOG;AACH,MAAM,OAAO,sBAAsB;IAMjC;;;;;;;;;OASG;IACH,YACE,QAAgB,EAChB,QAAgB,EAChB,YAAoB,EACpB,UAAyC,EAAE;QAE3C,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,0BAA0B,CAClC,gKAAgK,CACjK,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,0BAA0B,CAClC,gKAAgK,CACjK,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,MAAM,IAAI,0BAA0B,CAClC,oKAAoK,CACrK,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC;QACjC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QAEF,IAAI,CAAC,UAAU,GAAG,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,kCAChD,OAAO,KACV,MAAM,EACN,sBAAsB,EAAE,OAAO,IAC/B,CAAC;IACL,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,QAAQ,CAAC,MAAyB,EAAE,UAA2B,EAAE;QACrE,OAAO,aAAa,CAAC,QAAQ,CAC3B,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,WAAW,EACnC,OAAO,EACP,KAAK,EAAE,UAAU,EAAE,EAAE;YACnB,UAAU,CAAC,QAAQ,GAAG,yBAAyB,CAC7C,IAAI,CAAC,QAAQ,EACb,UAAU,EACV,IAAI,CAAC,4BAA4B,EACjC,MAAM,CACP,CAAC;YAEF,MAAM,WAAW,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;YACzC,OAAO,IAAI,CAAC,UAAU,CAAC,sBAAsB,CAAC,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC;QAC5F,CAAC,CACF,CAAC;IACJ,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport { MsalClient, createMsalClient } from \"../msal/nodeFlows/msalClient\";\nimport {\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n} from \"../util/tenantIdUtils\";\n\nimport { ClientSecretCredentialOptions } from \"./clientSecretCredentialOptions\";\nimport { CredentialUnavailableError } from \"../errors\";\nimport { credentialLogger } from \"../util/logging\";\nimport { ensureScopes } from \"../util/scopeUtils\";\nimport { tracingClient } from \"../util/tracing\";\n\nconst logger = credentialLogger(\"ClientSecretCredential\");\n\n/**\n * Enables authentication to Microsoft Entra ID using a client secret\n * that was generated for an App Registration. More information on how\n * to configure a client secret can be found here:\n *\n * https://learn.microsoft.com/entra/identity-platform/quickstart-configure-app-access-web-apis#add-credentials-to-your-web-application\n *\n */\nexport class ClientSecretCredential implements TokenCredential {\n private tenantId: string;\n private additionallyAllowedTenantIds: string[];\n private msalClient: MsalClient;\n private clientSecret: string;\n\n /**\n * Creates an instance of the ClientSecretCredential with the details\n * needed to authenticate against Microsoft Entra ID with a client\n * secret.\n *\n * @param tenantId - The Microsoft Entra tenant (directory) ID.\n * @param clientId - The client (application) ID of an App Registration in the tenant.\n * @param clientSecret - A client secret that was generated for the App Registration.\n * @param options - Options for configuring the client which makes the authentication request.\n */\n constructor(\n tenantId: string,\n clientId: string,\n clientSecret: string,\n options: ClientSecretCredentialOptions = {},\n ) {\n if (!tenantId) {\n throw new CredentialUnavailableError(\n \"ClientSecretCredential: tenantId is a required parameter. To troubleshoot, visit https://aka.ms/azsdk/js/identity/serviceprincipalauthentication/troubleshoot.\",\n );\n }\n\n if (!clientId) {\n throw new CredentialUnavailableError(\n \"ClientSecretCredential: clientId is a required parameter. To troubleshoot, visit https://aka.ms/azsdk/js/identity/serviceprincipalauthentication/troubleshoot.\",\n );\n }\n\n if (!clientSecret) {\n throw new CredentialUnavailableError(\n \"ClientSecretCredential: clientSecret is a required parameter. To troubleshoot, visit https://aka.ms/azsdk/js/identity/serviceprincipalauthentication/troubleshoot.\",\n );\n }\n\n this.clientSecret = clientSecret;\n this.tenantId = tenantId;\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n\n this.msalClient = createMsalClient(clientId, tenantId, {\n ...options,\n logger,\n tokenCredentialOptions: options,\n });\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} will be thrown with the details of the failure.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n async getToken(scopes: string | string[], options: GetTokenOptions = {}): Promise<AccessToken> {\n return tracingClient.withSpan(\n `${this.constructor.name}.getToken`,\n options,\n async (newOptions) => {\n newOptions.tenantId = processMultiTenantRequest(\n this.tenantId,\n newOptions,\n this.additionallyAllowedTenantIds,\n logger,\n );\n\n const arrayScopes = ensureScopes(scopes);\n return this.msalClient.getTokenByClientSecret(arrayScopes, this.clientSecret, newOptions);\n },\n );\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"clientSecretCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/clientSecretCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AuthorityValidationOptions } from \"./authorityValidationOptions\";\nimport { CredentialPersistenceOptions } from \"./credentialPersistenceOptions\";\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Optional parameters for the {@link ClientSecretCredential} class.\n */\nexport interface ClientSecretCredentialOptions\n extends MultiTenantTokenCredentialOptions,\n CredentialPersistenceOptions,\n AuthorityValidationOptions {\n // TODO: Export again once we're ready to release this feature.\n // /**\n // * Specifies a regional authority. Please refer to the {@link RegionalAuthority} type for the accepted values.\n // * If {@link RegionalAuthority.AutoDiscoverRegion} is specified, we will try to discover the regional authority endpoint.\n // * If the property is not specified, the credential uses the global authority endpoint.\n // */\n // regionalAuthority?: string;\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"credentialPersistenceOptions.js","sourceRoot":"","sources":["../../../src/credentials/credentialPersistenceOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { TokenCachePersistenceOptions } from \"../msal/nodeFlows/tokenCachePersistenceOptions\";\n\n/**\n * Shared configuration options for credentials that support persistent token\n * caching.\n */\nexport interface CredentialPersistenceOptions {\n /**\n * Options to provide to the persistence layer (if one is available) when\n * storing credentials.\n *\n * You must first register a persistence provider plugin. See the\n * `@azure/identity-cache-persistence` package on NPM.\n *\n * Example:\n *\n * ```ts snippet:credential_persistence_options_example\n * import { useIdentityPlugin, DeviceCodeCredential } from \"@azure/identity\";\n *\n * useIdentityPlugin(cachePersistencePlugin);\n * const credential = new DeviceCodeCredential({\n * tokenCachePersistenceOptions: {\n * enabled: true,\n * },\n * });\n * ```\n */\n\n tokenCachePersistenceOptions?: TokenCachePersistenceOptions;\n}\n"]}
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
4
|
-
import { ChainedTokenCredential } from "./chainedTokenCredential
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
|
+
import { ChainedTokenCredential } from "./chainedTokenCredential";
|
|
5
5
|
const BrowserNotSupportedError = new Error("DefaultAzureCredential is not supported in the browser. Use InteractiveBrowserCredential instead.");
|
|
6
6
|
const logger = credentialLogger("DefaultAzureCredential");
|
|
7
7
|
/**
|
|
@@ -26,4 +26,4 @@ export class DefaultAzureCredential extends ChainedTokenCredential {
|
|
|
26
26
|
throw BrowserNotSupportedError;
|
|
27
27
|
}
|
|
28
28
|
}
|
|
29
|
-
//# sourceMappingURL=defaultAzureCredential
|
|
29
|
+
//# sourceMappingURL=defaultAzureCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"defaultAzureCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/defaultAzureCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAElC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,OAAO,EAAE,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAGlE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,mGAAmG,CACpG,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,wBAAwB,CAAC,CAAC;AAE1D;;;;;GAKG;AACH,MAAM,OAAO,sBAAuB,SAAQ,sBAAsB;IAChE;;;;OAIG;IACH,YAAY,uBAAgD;QAC1D,KAAK,EAAE,CAAC;QACR,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAEM,QAAQ;QACb,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { credentialLogger, formatError } from \"../util/logging\";\nimport { AccessToken } from \"@azure/core-auth\";\nimport { ChainedTokenCredential } from \"./chainedTokenCredential\";\nimport { TokenCredentialOptions } from \"../tokenCredentialOptions\";\n\nconst BrowserNotSupportedError = new Error(\n \"DefaultAzureCredential is not supported in the browser. Use InteractiveBrowserCredential instead.\",\n);\nconst logger = credentialLogger(\"DefaultAzureCredential\");\n\n/**\n * Provides a default {@link ChainedTokenCredential} configuration for\n * applications that will be deployed to Azure.\n *\n * Only available in Node.js.\n */\nexport class DefaultAzureCredential extends ChainedTokenCredential {\n /**\n * Creates an instance of the DefaultAzureCredential class.\n *\n * @param options - Options for configuring the client which makes the authentication request.\n */\n constructor(_tokenCredentialOptions?: TokenCredentialOptions) {\n super();\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n public getToken(): Promise<AccessToken> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,13 +1,13 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { ManagedIdentityCredential } from "./managedIdentityCredential
|
|
4
|
-
import { AzureCliCredential } from "./azureCliCredential
|
|
5
|
-
import { AzureDeveloperCliCredential } from "./azureDeveloperCliCredential
|
|
6
|
-
import { AzurePowerShellCredential } from "./azurePowerShellCredential
|
|
7
|
-
import { ChainedTokenCredential } from "./chainedTokenCredential
|
|
8
|
-
import { EnvironmentCredential } from "./environmentCredential
|
|
9
|
-
import { WorkloadIdentityCredential } from "./workloadIdentityCredential
|
|
10
|
-
import { credentialLogger } from "../util/logging
|
|
3
|
+
import { ManagedIdentityCredential, } from "./managedIdentityCredential";
|
|
4
|
+
import { AzureCliCredential } from "./azureCliCredential";
|
|
5
|
+
import { AzureDeveloperCliCredential } from "./azureDeveloperCliCredential";
|
|
6
|
+
import { AzurePowerShellCredential } from "./azurePowerShellCredential";
|
|
7
|
+
import { ChainedTokenCredential } from "./chainedTokenCredential";
|
|
8
|
+
import { EnvironmentCredential } from "./environmentCredential";
|
|
9
|
+
import { WorkloadIdentityCredential } from "./workloadIdentityCredential";
|
|
10
|
+
import { credentialLogger } from "../util/logging";
|
|
11
11
|
const logger = credentialLogger("DefaultAzureCredential");
|
|
12
12
|
/**
|
|
13
13
|
* Creates a {@link ManagedIdentityCredential} from the provided options.
|
|
@@ -118,21 +118,8 @@ export class UnavailableDefaultCredential {
|
|
|
118
118
|
}
|
|
119
119
|
}
|
|
120
120
|
/**
|
|
121
|
-
* Provides a default {@link ChainedTokenCredential} configuration that
|
|
122
|
-
* applications that use Azure SDK
|
|
123
|
-
* [DefaultAzureCredential overview](https://aka.ms/azsdk/js/identity/credential-chains#use-defaultazurecredential-for-flexibility).
|
|
124
|
-
*
|
|
125
|
-
* The following credential types will be tried, in order:
|
|
126
|
-
*
|
|
127
|
-
* - {@link EnvironmentCredential}
|
|
128
|
-
* - {@link WorkloadIdentityCredential}
|
|
129
|
-
* - {@link ManagedIdentityCredential}
|
|
130
|
-
* - {@link AzureCliCredential}
|
|
131
|
-
* - {@link AzurePowerShellCredential}
|
|
132
|
-
* - {@link AzureDeveloperCliCredential}
|
|
133
|
-
*
|
|
134
|
-
* Consult the documentation of these credential types for more information
|
|
135
|
-
* on how they attempt authentication.
|
|
121
|
+
* Provides a default {@link ChainedTokenCredential} configuration that should
|
|
122
|
+
* work for most applications that use the Azure SDK.
|
|
136
123
|
*/
|
|
137
124
|
export class DefaultAzureCredential extends ChainedTokenCredential {
|
|
138
125
|
constructor(options) {
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"defaultAzureCredential.js","sourceRoot":"","sources":["../../../src/credentials/defaultAzureCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAOlC,OAAO,EACL,yBAAyB,GAG1B,MAAM,6BAA6B,CAAC;AAErC,OAAO,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC1D,OAAO,EAAE,2BAA2B,EAAE,MAAM,+BAA+B,CAAC;AAC5E,OAAO,EAAE,yBAAyB,EAAE,MAAM,6BAA6B,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAClE,OAAO,EAAE,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAEhE,OAAO,EAAE,0BAA0B,EAAE,MAAM,8BAA8B,CAAC;AAE1E,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAEnD,MAAM,MAAM,GAAG,gBAAgB,CAAC,wBAAwB,CAAC,CAAC;AAE1D;;;;;GAKG;AACH,MAAM,UAAU,sCAAsC,CACpD,UAG4C,EAAE;;IAE9C,MAAA,OAAO,CAAC,YAAY,oCAApB,OAAO,CAAC,YAAY,GAAK;QACvB,UAAU,EAAE,CAAC;QACb,cAAc,EAAE,GAAG;KACpB,EAAC;IACF,MAAM,uBAAuB,GAC3B,MAAC,OAAiD,aAAjD,OAAO,uBAAP,OAAO,CAA4C,uBAAuB,mCAC3E,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAC9B,MAAM,wBAAwB,GAC5B,MAAC,OAAiD,aAAjD,OAAO,uBAAP,OAAO,CAA4C,wBAAwB,mCAC5E,uBAAuB,CAAC;IAC1B,MAAM,iBAAiB,GAAI,OAAmD,aAAnD,OAAO,uBAAP,OAAO,CAC9B,yBAAyB,CAAC;IAC9B,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,0BAA0B,CAAC;IAC5D,MAAM,QAAQ,GAAG,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,mCAAI,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAClE,IAAI,iBAAiB,EAAE,CAAC;QACtB,MAAM,gCAAgC,mCACjC,OAAO,KACV,UAAU,EAAE,iBAAiB,GAC9B,CAAC;QACF,OAAO,IAAI,yBAAyB,CAAC,gCAAgC,CAAC,CAAC;IACzE,CAAC;IAED,IAAI,YAAY,IAAI,wBAAwB,EAAE,CAAC;QAC7C,MAAM,iCAAiC,mCAClC,OAAO,KACV,QAAQ,EAAE,QAAQ,GACnB,CAAC;QAEF,OAAO,IAAI,yBAAyB,CAClC,wBAAwB,EACxB,iCAAiC,CAClC,CAAC;IACJ,CAAC;IAED,IAAI,uBAAuB,EAAE,CAAC;QAC5B,MAAM,4BAA4B,mCAC7B,OAAO,KACV,QAAQ,EAAE,uBAAuB,GAClC,CAAC;QAEF,OAAO,IAAI,yBAAyB,CAAC,4BAA4B,CAAC,CAAC;IACrE,CAAC;IAED,2FAA2F;IAC3F,OAAO,IAAI,yBAAyB,CAAC,OAAO,CAAC,CAAC;AAChD,CAAC;AAED;;;;;GAKG;AACH,SAAS,uCAAuC,CAC9C,OAA+E;;IAE/E,MAAM,uBAAuB,GAC3B,MAAC,OAAiD,aAAjD,OAAO,uBAAP,OAAO,CAA4C,uBAAuB,mCAC3E,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAC9B,MAAM,wBAAwB,GAC5B,MAAC,OAAiD,aAAjD,OAAO,uBAAP,OAAO,CAA4C,wBAAwB,mCAC5E,uBAAuB,CAAC;IAC1B,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,0BAA0B,CAAC;IAC5D,MAAM,QAAQ,GAAG,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,mCAAI,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAClE,IAAI,YAAY,IAAI,wBAAwB,EAAE,CAAC;QAC7C,MAAM,iCAAiC,mCAClC,OAAO,KACV,QAAQ,EACR,QAAQ,EAAE,wBAAwB,EAClC,aAAa,EAAE,YAAY,GAC5B,CAAC;QACF,OAAO,IAAI,0BAA0B,CAAC,iCAAiC,CAAC,CAAC;IAC3E,CAAC;IACD,IAAI,QAAQ,EAAE,CAAC;QACb,MAAM,mCAAmC,mCACpC,OAAO,KACV,QAAQ,GACT,CAAC;QACF,OAAO,IAAI,0BAA0B,CAAC,mCAAmC,CAAC,CAAC;IAC7E,CAAC;IAED,2FAA2F;IAC3F,OAAO,IAAI,0BAA0B,CAAC,OAAO,CAAC,CAAC;AACjD,CAAC;AAED;;;;;GAKG;AACH,SAAS,wCAAwC,CAC/C,UAAyC,EAAE;IAE3C,MAAM,kBAAkB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IACtD,OAAO,IAAI,2BAA2B,iBAAG,kBAAkB,IAAK,OAAO,EAAG,CAAC;AAC7E,CAAC;AAED;;;;;GAKG;AACH,SAAS,+BAA+B,CACtC,UAAyC,EAAE;IAE3C,MAAM,kBAAkB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IACtD,OAAO,IAAI,kBAAkB,iBAAG,kBAAkB,IAAK,OAAO,EAAG,CAAC;AACpE,CAAC;AAED;;;;;GAKG;AACH,SAAS,sCAAsC,CAC7C,UAAyC,EAAE;IAE3C,MAAM,kBAAkB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IACtD,OAAO,IAAI,yBAAyB,iBAAG,kBAAkB,IAAK,OAAO,EAAG,CAAC;AAC3E,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,2BAA2B,CACzC,UAAyC,EAAE;IAE3C,OAAO,IAAI,qBAAqB,CAAC,OAAO,CAAC,CAAC;AAC5C,CAAC;AAED;;;GAGG;AACH,MAAM,OAAO,4BAA4B;IAIvC,YAAY,cAAsB,EAAE,OAAe;QACjD,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,iCAAiC,GAAG,OAAO,CAAC;IACnD,CAAC;IAED,QAAQ;QACN,MAAM,CAAC,QAAQ,CAAC,IAAI,CAClB,YAAY,IAAI,CAAC,cAAc,aAAa,IAAI,CAAC,iCAAiC,EAAE,CACrF,CAAC;QACF,OAAO,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IAC/B,CAAC;CACF;AAED;;;GAGG;AACH,MAAM,OAAO,sBAAuB,SAAQ,sBAAsB;IAmEhE,YAAY,OAAuC;QACjD,MAAM,mBAAmB,GAAG;YAC1B,2BAA2B;YAC3B,uCAAuC;YACvC,sCAAsC;YACtC,+BAA+B;YAC/B,sCAAsC;YACtC,wCAAwC;SACzC,CAAC;QAEF,8HAA8H;QAE9H,8DAA8D;QAC9D,6DAA6D;QAC7D,gEAAgE;QAChE,sHAAsH;QACtH,MAAM,WAAW,GAAsB,mBAAmB,CAAC,GAAG,CAAC,CAAC,kBAAkB,EAAE,EAAE;YACpF,IAAI,CAAC;gBACH,OAAO,kBAAkB,CAAC,OAAO,CAAC,CAAC;YACrC,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAClB,MAAM,CAAC,OAAO,CACZ,WAAW,kBAAkB,CAAC,IAAI,iDAAiD,GAAG,EAAE,CACzF,CAAC;gBACF,OAAO,IAAI,4BAA4B,CAAC,kBAAkB,CAAC,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;YAChF,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,GAAG,WAAW,CAAC,CAAC;IACxB,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport {\n DefaultAzureCredentialClientIdOptions,\n DefaultAzureCredentialOptions,\n DefaultAzureCredentialResourceIdOptions,\n} from \"./defaultAzureCredentialOptions\";\nimport {\n ManagedIdentityCredential,\n ManagedIdentityCredentialClientIdOptions,\n ManagedIdentityCredentialResourceIdOptions,\n} from \"./managedIdentityCredential\";\n\nimport { AzureCliCredential } from \"./azureCliCredential\";\nimport { AzureDeveloperCliCredential } from \"./azureDeveloperCliCredential\";\nimport { AzurePowerShellCredential } from \"./azurePowerShellCredential\";\nimport { ChainedTokenCredential } from \"./chainedTokenCredential\";\nimport { EnvironmentCredential } from \"./environmentCredential\";\nimport { TokenCredential } from \"@azure/core-auth\";\nimport { WorkloadIdentityCredential } from \"./workloadIdentityCredential\";\nimport { WorkloadIdentityCredentialOptions } from \"./workloadIdentityCredentialOptions\";\nimport { credentialLogger } from \"../util/logging\";\n\nconst logger = credentialLogger(\"DefaultAzureCredential\");\n\n/**\n * Creates a {@link ManagedIdentityCredential} from the provided options.\n * @param options - Options to configure the credential.\n *\n * @internal\n */\nexport function createDefaultManagedIdentityCredential(\n options:\n | DefaultAzureCredentialOptions\n | DefaultAzureCredentialResourceIdOptions\n | DefaultAzureCredentialClientIdOptions = {},\n): TokenCredential {\n options.retryOptions ??= {\n maxRetries: 5,\n retryDelayInMs: 800,\n };\n const managedIdentityClientId =\n (options as DefaultAzureCredentialClientIdOptions)?.managedIdentityClientId ??\n process.env.AZURE_CLIENT_ID;\n const workloadIdentityClientId =\n (options as DefaultAzureCredentialClientIdOptions)?.workloadIdentityClientId ??\n managedIdentityClientId;\n const managedResourceId = (options as DefaultAzureCredentialResourceIdOptions)\n ?.managedIdentityResourceId;\n const workloadFile = process.env.AZURE_FEDERATED_TOKEN_FILE;\n const tenantId = options?.tenantId ?? process.env.AZURE_TENANT_ID;\n if (managedResourceId) {\n const managedIdentityResourceIdOptions: ManagedIdentityCredentialResourceIdOptions = {\n ...options,\n resourceId: managedResourceId,\n };\n return new ManagedIdentityCredential(managedIdentityResourceIdOptions);\n }\n\n if (workloadFile && workloadIdentityClientId) {\n const workloadIdentityCredentialOptions: DefaultAzureCredentialOptions = {\n ...options,\n tenantId: tenantId,\n };\n\n return new ManagedIdentityCredential(\n workloadIdentityClientId,\n workloadIdentityCredentialOptions,\n );\n }\n\n if (managedIdentityClientId) {\n const managedIdentityClientOptions: ManagedIdentityCredentialClientIdOptions = {\n ...options,\n clientId: managedIdentityClientId,\n };\n\n return new ManagedIdentityCredential(managedIdentityClientOptions);\n }\n\n // We may be able to return a UnavailableCredential here, but that may be a breaking change\n return new ManagedIdentityCredential(options);\n}\n\n/**\n * Creates a {@link WorkloadIdentityCredential} from the provided options.\n * @param options - Options to configure the credential.\n *\n * @internal\n */\nfunction createDefaultWorkloadIdentityCredential(\n options?: DefaultAzureCredentialOptions | DefaultAzureCredentialClientIdOptions,\n): TokenCredential {\n const managedIdentityClientId =\n (options as DefaultAzureCredentialClientIdOptions)?.managedIdentityClientId ??\n process.env.AZURE_CLIENT_ID;\n const workloadIdentityClientId =\n (options as DefaultAzureCredentialClientIdOptions)?.workloadIdentityClientId ??\n managedIdentityClientId;\n const workloadFile = process.env.AZURE_FEDERATED_TOKEN_FILE;\n const tenantId = options?.tenantId ?? process.env.AZURE_TENANT_ID;\n if (workloadFile && workloadIdentityClientId) {\n const workloadIdentityCredentialOptions: WorkloadIdentityCredentialOptions = {\n ...options,\n tenantId,\n clientId: workloadIdentityClientId,\n tokenFilePath: workloadFile,\n };\n return new WorkloadIdentityCredential(workloadIdentityCredentialOptions);\n }\n if (tenantId) {\n const workloadIdentityClientTenantOptions: WorkloadIdentityCredentialOptions = {\n ...options,\n tenantId,\n };\n return new WorkloadIdentityCredential(workloadIdentityClientTenantOptions);\n }\n\n // We may be able to return a UnavailableCredential here, but that may be a breaking change\n return new WorkloadIdentityCredential(options);\n}\n\n/**\n * Creates a {@link AzureDeveloperCliCredential} from the provided options.\n * @param options - Options to configure the credential.\n *\n * @internal\n */\nfunction createDefaultAzureDeveloperCliCredential(\n options: DefaultAzureCredentialOptions = {},\n): TokenCredential {\n const processTimeoutInMs = options.processTimeoutInMs;\n return new AzureDeveloperCliCredential({ processTimeoutInMs, ...options });\n}\n\n/**\n * Creates a {@link AzureCliCredential} from the provided options.\n * @param options - Options to configure the credential.\n *\n * @internal\n */\nfunction createDefaultAzureCliCredential(\n options: DefaultAzureCredentialOptions = {},\n): TokenCredential {\n const processTimeoutInMs = options.processTimeoutInMs;\n return new AzureCliCredential({ processTimeoutInMs, ...options });\n}\n\n/**\n * Creates a {@link AzurePowerShellCredential} from the provided options.\n * @param options - Options to configure the credential.\n *\n * @internal\n */\nfunction createDefaultAzurePowershellCredential(\n options: DefaultAzureCredentialOptions = {},\n): TokenCredential {\n const processTimeoutInMs = options.processTimeoutInMs;\n return new AzurePowerShellCredential({ processTimeoutInMs, ...options });\n}\n\n/**\n * Creates an {@link EnvironmentCredential} from the provided options.\n * @param options - Options to configure the credential.\n *\n * @internal\n */\nexport function createEnvironmentCredential(\n options: DefaultAzureCredentialOptions = {},\n): TokenCredential {\n return new EnvironmentCredential(options);\n}\n\n/**\n * A no-op credential that logs the reason it was skipped if getToken is called.\n * @internal\n */\nexport class UnavailableDefaultCredential implements TokenCredential {\n credentialUnavailableErrorMessage: string;\n credentialName: string;\n\n constructor(credentialName: string, message: string) {\n this.credentialName = credentialName;\n this.credentialUnavailableErrorMessage = message;\n }\n\n getToken(): Promise<null> {\n logger.getToken.info(\n `Skipping ${this.credentialName}, reason: ${this.credentialUnavailableErrorMessage}`,\n );\n return Promise.resolve(null);\n }\n}\n\n/**\n * Provides a default {@link ChainedTokenCredential} configuration that should\n * work for most applications that use the Azure SDK.\n */\nexport class DefaultAzureCredential extends ChainedTokenCredential {\n /**\n * Creates an instance of the DefaultAzureCredential class with {@link DefaultAzureCredentialClientIdOptions}\n *\n * This credential provides a default {@link ChainedTokenCredential} configuration that should\n * work for most applications that use the Azure SDK.\n *\n * The following credential types will be tried, in order:\n *\n * - {@link EnvironmentCredential}\n * - {@link WorkloadIdentityCredential}\n * - {@link ManagedIdentityCredential}\n * - {@link AzureCliCredential}\n * - {@link AzurePowerShellCredential}\n * - {@link AzureDeveloperCliCredential}\n *\n * Consult the documentation of these credential types for more information\n * on how they attempt authentication.\n *\n * @param options - Optional parameters. See {@link DefaultAzureCredentialClientIdOptions}.\n */\n constructor(options?: DefaultAzureCredentialClientIdOptions);\n\n /**\n * Creates an instance of the DefaultAzureCredential class with {@link DefaultAzureCredentialResourceIdOptions}\n *\n * This credential provides a default {@link ChainedTokenCredential} configuration that should\n * work for most applications that use the Azure SDK.\n *\n * The following credential types will be tried, in order:\n *\n * - {@link EnvironmentCredential}\n * - {@link WorkloadIdentityCredential}\n * - {@link ManagedIdentityCredential}\n * - {@link AzureCliCredential}\n * - {@link AzurePowerShellCredential}\n * - {@link AzureDeveloperCliCredential}\n *\n * Consult the documentation of these credential types for more information\n * on how they attempt authentication.\n *\n * @param options - Optional parameters. See {@link DefaultAzureCredentialResourceIdOptions}.\n */\n constructor(options?: DefaultAzureCredentialResourceIdOptions);\n\n /**\n * Creates an instance of the DefaultAzureCredential class with {@link DefaultAzureCredentialOptions}\n *\n * This credential provides a default {@link ChainedTokenCredential} configuration that should\n * work for most applications that use the Azure SDK.\n *\n * The following credential types will be tried, in order:\n *\n * - {@link EnvironmentCredential}\n * - {@link WorkloadIdentityCredential}\n * - {@link ManagedIdentityCredential}\n * - {@link AzureCliCredential}\n * - {@link AzurePowerShellCredential}\n * - {@link AzureDeveloperCliCredential}\n *\n * Consult the documentation of these credential types for more information\n * on how they attempt authentication.\n *\n * @param options - Optional parameters. See {@link DefaultAzureCredentialOptions}.\n */\n constructor(options?: DefaultAzureCredentialOptions);\n\n constructor(options?: DefaultAzureCredentialOptions) {\n const credentialFunctions = [\n createEnvironmentCredential,\n createDefaultWorkloadIdentityCredential,\n createDefaultManagedIdentityCredential,\n createDefaultAzureCliCredential,\n createDefaultAzurePowershellCredential,\n createDefaultAzureDeveloperCliCredential,\n ];\n\n // DefaultCredential constructors should not throw, instead throwing on getToken() which is handled by ChainedTokenCredential.\n\n // When adding new credentials to the default chain, consider:\n // 1. Making the constructor parameters required and explicit\n // 2. Validating any required parameters in the factory function\n // 3. Returning a UnavailableDefaultCredential from the factory function if a credential is unavailable for any reason\n const credentials: TokenCredential[] = credentialFunctions.map((createCredentialFn) => {\n try {\n return createCredentialFn(options);\n } catch (err: any) {\n logger.warning(\n `Skipped ${createCredentialFn.name} because of an error creating the credential: ${err}`,\n );\n return new UnavailableDefaultCredential(createCredentialFn.name, err.message);\n }\n });\n\n super(...credentials);\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"defaultAzureCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/defaultAzureCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AuthorityValidationOptions } from \"./authorityValidationOptions\";\nimport { MultiTenantTokenCredentialOptions } from \"./multiTenantTokenCredentialOptions\";\n\n/**\n * Provides options to configure the {@link DefaultAzureCredential} class.\n * This variation supports `managedIdentityClientId` and not `managedIdentityResourceId`, since only one of both is supported.\n */\nexport interface DefaultAzureCredentialClientIdOptions extends DefaultAzureCredentialOptions {\n /**\n * Optionally pass in a user assigned client ID to be used by the {@link ManagedIdentityCredential}.\n * This client ID can also be passed through to the {@link ManagedIdentityCredential} through the environment variable: AZURE_CLIENT_ID.\n */\n managedIdentityClientId?: string;\n /**\n * Optionally pass in a user assigned client ID to be used by the {@link WorkloadIdentityCredential}.\n * This client ID can also be passed through to the {@link WorkloadIdentityCredential} through the environment variable: AZURE_CLIENT_ID.\n */\n workloadIdentityClientId?: string;\n}\n\n/**\n * Provides options to configure the {@link DefaultAzureCredential} class.\n * This variation supports `managedIdentityResourceId` and not `managedIdentityClientId`, since only one of both is supported.\n */\nexport interface DefaultAzureCredentialResourceIdOptions extends DefaultAzureCredentialOptions {\n /**\n * Optionally pass in a resource ID to be used by the {@link ManagedIdentityCredential}.\n * In scenarios such as when user assigned identities are created using an ARM template,\n * where the resource Id of the identity is known but the client Id can't be known ahead of time,\n * this parameter allows programs to use these user assigned identities\n * without having to first determine the client Id of the created identity.\n */\n managedIdentityResourceId: string;\n}\n\n/**\n * Provides options to configure the {@link DefaultAzureCredential} class.\n */\nexport interface DefaultAzureCredentialOptions\n extends MultiTenantTokenCredentialOptions,\n AuthorityValidationOptions {\n /**\n * Optionally pass in a Tenant ID to be used as part of the credential.\n * By default it may use a generic tenant ID depending on the underlying credential.\n */\n tenantId?: string;\n\n /**\n * Timeout configurable for making token requests for developer credentials, namely, {@link AzurePowershellCredential},\n * {@link AzureDeveloperCliCredential} and {@link AzureCliCredential}.\n * Process timeout for credentials should be provided in milliseconds.\n */\n processTimeoutInMs?: number;\n}\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("DeviceCodeCredential is not supported in the browser.");
|
|
5
5
|
const logger = credentialLogger("DeviceCodeCredential");
|
|
6
6
|
/**
|
|
@@ -20,4 +20,4 @@ export class DeviceCodeCredential {
|
|
|
20
20
|
throw BrowserNotSupportedError;
|
|
21
21
|
}
|
|
22
22
|
}
|
|
23
|
-
//# sourceMappingURL=deviceCodeCredential
|
|
23
|
+
//# sourceMappingURL=deviceCodeCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"deviceCodeCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/deviceCodeCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAIlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;AACpG,MAAM,MAAM,GAAG,gBAAgB,CAAC,sBAAsB,CAAC,CAAC;AAExD;;;GAGG;AACH,MAAM,OAAO,oBAAoB;IAC/B;;OAEG;IACH;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAEM,QAAQ;QACb,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\n\nimport { credentialLogger, formatError } from \"../util/logging\";\n\nconst BrowserNotSupportedError = new Error(\"DeviceCodeCredential is not supported in the browser.\");\nconst logger = credentialLogger(\"DeviceCodeCredential\");\n\n/**\n * Enables authentication to Microsoft Entra ID using a device code\n * that the user can enter into https://microsoft.com/devicelogin.\n */\nexport class DeviceCodeCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n public getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, resolveTenantId, } from "../util/tenantIdUtils
|
|
4
|
-
import { credentialLogger } from "../util/logging
|
|
5
|
-
import { ensureScopes } from "../util/scopeUtils
|
|
6
|
-
import { tracingClient } from "../util/tracing
|
|
7
|
-
import { createMsalClient } from "../msal/nodeFlows/msalClient
|
|
8
|
-
import { DeveloperSignOnClientId } from "../constants
|
|
3
|
+
import { processMultiTenantRequest, resolveAdditionallyAllowedTenantIds, resolveTenantId, } from "../util/tenantIdUtils";
|
|
4
|
+
import { credentialLogger } from "../util/logging";
|
|
5
|
+
import { ensureScopes } from "../util/scopeUtils";
|
|
6
|
+
import { tracingClient } from "../util/tracing";
|
|
7
|
+
import { createMsalClient } from "../msal/nodeFlows/msalClient";
|
|
8
|
+
import { DeveloperSignOnClientId } from "../constants";
|
|
9
9
|
const logger = credentialLogger("DeviceCodeCredential");
|
|
10
10
|
/**
|
|
11
11
|
* Method that logs the user code from the DeviceCodeCredential.
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"deviceCodeCredential.js","sourceRoot":"","sources":["../../../src/credentials/deviceCodeCredential.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EACL,yBAAyB,EACzB,mCAAmC,EACnC,eAAe,GAChB,MAAM,uBAAuB,CAAC;AAO/B,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAChD,OAAO,EAAc,gBAAgB,EAAE,MAAM,8BAA8B,CAAC;AAC5E,OAAO,EAAE,uBAAuB,EAAE,MAAM,cAAc,CAAC;AAEvD,MAAM,MAAM,GAAG,gBAAgB,CAAC,sBAAsB,CAAC,CAAC;AAExD;;;GAGG;AACH,MAAM,UAAU,+BAA+B,CAAC,cAA8B;IAC5E,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;AACtC,CAAC;AAED;;;GAGG;AACH,MAAM,OAAO,oBAAoB;IAO/B;;;;;;;;;;;;;;;;;;;;;OAqBG;IACH,YAAY,OAAqC;;QAC/C,IAAI,CAAC,QAAQ,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,CAAC;QAClC,IAAI,CAAC,4BAA4B,GAAG,mCAAmC,CACrE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,0BAA0B,CACpC,CAAC;QACF,MAAM,QAAQ,GAAG,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,mCAAI,uBAAuB,CAAC;QAC9D,MAAM,QAAQ,GAAG,eAAe,CAAC,MAAM,EAAE,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;QACtE,IAAI,CAAC,kBAAkB,GAAG,MAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,kBAAkB,mCAAI,+BAA+B,CAAC;QACzF,IAAI,CAAC,UAAU,GAAG,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,kCAChD,OAAO,KACV,MAAM,EACN,sBAAsB,EAAE,OAAO,IAAI,EAAE,IACrC,CAAC;QACH,IAAI,CAAC,8BAA8B,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,8BAA8B,CAAC;IAChF,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,QAAQ,CAAC,MAAyB,EAAE,UAA2B,EAAE;QACrE,OAAO,aAAa,CAAC,QAAQ,CAC3B,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,WAAW,EACnC,OAAO,EACP,KAAK,EAAE,UAAU,EAAE,EAAE;YACnB,UAAU,CAAC,QAAQ,GAAG,yBAAyB,CAC7C,IAAI,CAAC,QAAQ,EACb,UAAU,EACV,IAAI,CAAC,4BAA4B,EACjC,MAAM,CACP,CAAC;YAEF,MAAM,WAAW,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;YACzC,OAAO,IAAI,CAAC,UAAU,CAAC,oBAAoB,CAAC,WAAW,EAAE,IAAI,CAAC,kBAAkB,kCAC3E,UAAU,KACb,8BAA8B,EAAE,IAAI,CAAC,8BAA8B,IACnE,CAAC;QACL,CAAC,CACF,CAAC;IACJ,CAAC;IAED;;;;;;;;;OASG;IACH,KAAK,CAAC,YAAY,CAChB,MAAyB,EACzB,UAA2B,EAAE;QAE7B,OAAO,aAAa,CAAC,QAAQ,CAC3B,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,eAAe,EACvC,OAAO,EACP,KAAK,EAAE,UAAU,EAAE,EAAE;YACnB,MAAM,WAAW,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;YAC9D,MAAM,IAAI,CAAC,UAAU,CAAC,oBAAoB,CAAC,WAAW,EAAE,IAAI,CAAC,kBAAkB,kCAC1E,UAAU,KACb,8BAA8B,EAAE,KAAK,IACrC,CAAC;YACH,OAAO,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;QAC5C,CAAC,CACF,CAAC;IACJ,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, GetTokenOptions, TokenCredential } from \"@azure/core-auth\";\nimport {\n processMultiTenantRequest,\n resolveAdditionallyAllowedTenantIds,\n resolveTenantId,\n} from \"../util/tenantIdUtils\";\nimport {\n DeviceCodeCredentialOptions,\n DeviceCodeInfo,\n DeviceCodePromptCallback,\n} from \"./deviceCodeCredentialOptions\";\nimport { AuthenticationRecord } from \"../msal/types\";\nimport { credentialLogger } from \"../util/logging\";\nimport { ensureScopes } from \"../util/scopeUtils\";\nimport { tracingClient } from \"../util/tracing\";\nimport { MsalClient, createMsalClient } from \"../msal/nodeFlows/msalClient\";\nimport { DeveloperSignOnClientId } from \"../constants\";\n\nconst logger = credentialLogger(\"DeviceCodeCredential\");\n\n/**\n * Method that logs the user code from the DeviceCodeCredential.\n * @param deviceCodeInfo - The device code.\n */\nexport function defaultDeviceCodePromptCallback(deviceCodeInfo: DeviceCodeInfo): void {\n console.log(deviceCodeInfo.message);\n}\n\n/**\n * Enables authentication to Microsoft Entra ID using a device code\n * that the user can enter into https://microsoft.com/devicelogin.\n */\nexport class DeviceCodeCredential implements TokenCredential {\n private tenantId?: string;\n private additionallyAllowedTenantIds: string[];\n private disableAutomaticAuthentication?: boolean;\n private msalClient: MsalClient;\n private userPromptCallback: DeviceCodePromptCallback;\n\n /**\n * Creates an instance of DeviceCodeCredential with the details needed\n * to initiate the device code authorization flow with Microsoft Entra ID.\n *\n * A message will be logged, giving users a code that they can use to authenticate once they go to https://microsoft.com/devicelogin\n *\n * Developers can configure how this message is shown by passing a custom `userPromptCallback`:\n *\n * ```ts snippet:device_code_credential_example\n * import { DeviceCodeCredential } from \"@azure/identity\";\n *\n * const credential = new DeviceCodeCredential({\n * tenantId: process.env.AZURE_TENANT_ID,\n * clientId: process.env.AZURE_CLIENT_ID,\n * userPromptCallback: (info) => {\n * console.log(\"CUSTOMIZED PROMPT CALLBACK\", info.message);\n * },\n * });\n * ```\n *\n * @param options - Options for configuring the client which makes the authentication requests.\n */\n constructor(options?: DeviceCodeCredentialOptions) {\n this.tenantId = options?.tenantId;\n this.additionallyAllowedTenantIds = resolveAdditionallyAllowedTenantIds(\n options?.additionallyAllowedTenants,\n );\n const clientId = options?.clientId ?? DeveloperSignOnClientId;\n const tenantId = resolveTenantId(logger, options?.tenantId, clientId);\n this.userPromptCallback = options?.userPromptCallback ?? defaultDeviceCodePromptCallback;\n this.msalClient = createMsalClient(clientId, tenantId, {\n ...options,\n logger,\n tokenCredentialOptions: options || {},\n });\n this.disableAutomaticAuthentication = options?.disableAutomaticAuthentication;\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} will be thrown with the details of the failure.\n *\n * If the user provided the option `disableAutomaticAuthentication`,\n * once the token can't be retrieved silently,\n * this method won't attempt to request user interaction to retrieve the token.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n async getToken(scopes: string | string[], options: GetTokenOptions = {}): Promise<AccessToken> {\n return tracingClient.withSpan(\n `${this.constructor.name}.getToken`,\n options,\n async (newOptions) => {\n newOptions.tenantId = processMultiTenantRequest(\n this.tenantId,\n newOptions,\n this.additionallyAllowedTenantIds,\n logger,\n );\n\n const arrayScopes = ensureScopes(scopes);\n return this.msalClient.getTokenByDeviceCode(arrayScopes, this.userPromptCallback, {\n ...newOptions,\n disableAutomaticAuthentication: this.disableAutomaticAuthentication,\n });\n },\n );\n }\n\n /**\n * Authenticates with Microsoft Entra ID and returns an access token if successful.\n * If authentication fails, a {@link CredentialUnavailableError} will be thrown with the details of the failure.\n *\n * If the token can't be retrieved silently, this method will always generate a challenge for the user.\n *\n * @param scopes - The list of scopes for which the token will have access.\n * @param options - The options used to configure any requests this\n * TokenCredential implementation might make.\n */\n async authenticate(\n scopes: string | string[],\n options: GetTokenOptions = {},\n ): Promise<AuthenticationRecord | undefined> {\n return tracingClient.withSpan(\n `${this.constructor.name}.authenticate`,\n options,\n async (newOptions) => {\n const arrayScopes = Array.isArray(scopes) ? scopes : [scopes];\n await this.msalClient.getTokenByDeviceCode(arrayScopes, this.userPromptCallback, {\n ...newOptions,\n disableAutomaticAuthentication: false, // this method should always allow user interaction\n });\n return this.msalClient.getActiveAccount();\n },\n );\n }\n}\n"]}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"deviceCodeCredentialOptions.js","sourceRoot":"","sources":["../../../src/credentials/deviceCodeCredentialOptions.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { CredentialPersistenceOptions } from \"./credentialPersistenceOptions\";\nimport { InteractiveCredentialOptions } from \"./interactiveCredentialOptions\";\n\n/**\n * Provides the user code and verification URI where the code must be\n * entered. Also provides a message to display to the user which\n * contains an instruction with these details.\n */\nexport interface DeviceCodeInfo {\n /**\n * The device code that the user must enter into the verification page.\n */\n userCode: string;\n\n /**\n * The verification URI to which the user must navigate to enter the device\n * code.\n */\n verificationUri: string;\n\n /**\n * A message that may be shown to the user to instruct them on how to enter\n * the device code in the page specified by the verification URI.\n */\n message: string;\n}\n\n/**\n * Defines the signature of a callback which will be passed to\n * DeviceCodeCredential for the purpose of displaying authentication\n * details to the user.\n */\nexport type DeviceCodePromptCallback = (deviceCodeInfo: DeviceCodeInfo) => void;\n\n/**\n * Defines options for the InteractiveBrowserCredential class for Node.js.\n */\nexport interface DeviceCodeCredentialOptions\n extends InteractiveCredentialOptions,\n CredentialPersistenceOptions {\n /**\n * The Microsoft Entra tenant (directory) ID.\n */\n tenantId?: string;\n /**\n * Client ID of the Microsoft Entra application that users will sign into.\n * It is recommended that developers register their applications and assign appropriate roles.\n * For more information, visit https://aka.ms/identity/AppRegistrationAndRoleAssignment.\n * If not specified, users will authenticate to an Azure development application,\n * which is not recommended for production scenarios.\n */\n clientId?: string;\n /**\n * A callback function that will be invoked to show {@link DeviceCodeInfo} to the user.\n * If left unassigned, we will automatically log the device code information\n * and the authentication instructions in the console.\n */\n userPromptCallback?: DeviceCodePromptCallback;\n}\n"]}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
// Copyright (c) Microsoft Corporation.
|
|
2
2
|
// Licensed under the MIT License.
|
|
3
|
-
import { credentialLogger, formatError } from "../util/logging
|
|
3
|
+
import { credentialLogger, formatError } from "../util/logging";
|
|
4
4
|
const BrowserNotSupportedError = new Error("EnvironmentCredential is not supported in the browser.");
|
|
5
5
|
const logger = credentialLogger("EnvironmentCredential");
|
|
6
6
|
/**
|
|
@@ -20,4 +20,4 @@ export class EnvironmentCredential {
|
|
|
20
20
|
throw BrowserNotSupportedError;
|
|
21
21
|
}
|
|
22
22
|
}
|
|
23
|
-
//# sourceMappingURL=environmentCredential
|
|
23
|
+
//# sourceMappingURL=environmentCredential.browser.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"environmentCredential.browser.js","sourceRoot":"","sources":["../../../src/credentials/environmentCredential.browser.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,kCAAkC;AAGlC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEhE,MAAM,wBAAwB,GAAG,IAAI,KAAK,CACxC,wDAAwD,CACzD,CAAC;AACF,MAAM,MAAM,GAAG,gBAAgB,CAAC,uBAAuB,CAAC,CAAC;AAEzD;;;GAGG;AACH,MAAM,OAAO,qBAAqB;IAChC;;OAEG;IACH;QACE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACvD,MAAM,wBAAwB,CAAC;IACjC,CAAC;IAED,QAAQ;QACN,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,wBAAwB,CAAC,CAAC,CAAC;QAChE,MAAM,wBAAwB,CAAC;IACjC,CAAC;CACF","sourcesContent":["// Copyright (c) Microsoft Corporation.\n// Licensed under the MIT License.\n\nimport { AccessToken, TokenCredential } from \"@azure/core-auth\";\nimport { credentialLogger, formatError } from \"../util/logging\";\n\nconst BrowserNotSupportedError = new Error(\n \"EnvironmentCredential is not supported in the browser.\",\n);\nconst logger = credentialLogger(\"EnvironmentCredential\");\n\n/**\n * Enables authentication to Microsoft Entra ID using client secret\n * details configured in environment variables\n */\nexport class EnvironmentCredential implements TokenCredential {\n /**\n * Only available in Node.js\n */\n constructor() {\n logger.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n\n getToken(): Promise<AccessToken | null> {\n logger.getToken.info(formatError(\"\", BrowserNotSupportedError));\n throw BrowserNotSupportedError;\n }\n}\n"]}
|