@azure/msal-browser 4.13.2 → 4.15.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/app/IPublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientNext.mjs +1 -1
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/cache/AccountManager.d.ts +7 -7
- package/dist/cache/AccountManager.d.ts.map +1 -1
- package/dist/cache/AccountManager.mjs +17 -15
- package/dist/cache/AccountManager.mjs.map +1 -1
- package/dist/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/cache/BrowserCacheManager.d.ts +40 -25
- package/dist/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/cache/BrowserCacheManager.mjs +215 -124
- package/dist/cache/BrowserCacheManager.mjs.map +1 -1
- package/dist/cache/CacheHelpers.mjs +1 -1
- package/dist/cache/CookieStorage.mjs +1 -1
- package/dist/cache/DatabaseStorage.mjs +1 -1
- package/dist/cache/IWindowStorage.d.ts +1 -1
- package/dist/cache/IWindowStorage.d.ts.map +1 -1
- package/dist/cache/LocalStorage.d.ts +1 -1
- package/dist/cache/LocalStorage.d.ts.map +1 -1
- package/dist/cache/LocalStorage.mjs +4 -3
- package/dist/cache/LocalStorage.mjs.map +1 -1
- package/dist/cache/MemoryStorage.mjs +1 -1
- package/dist/cache/SessionStorage.mjs +1 -1
- package/dist/cache/TokenCache.d.ts.map +1 -1
- package/dist/cache/TokenCache.mjs +2 -2
- package/dist/cache/TokenCache.mjs.map +1 -1
- package/dist/config/Configuration.mjs +3 -3
- package/dist/controllers/ControllerFactory.mjs +1 -1
- package/dist/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/dist/controllers/NestedAppAuthController.mjs +18 -10
- package/dist/controllers/NestedAppAuthController.mjs.map +1 -1
- package/dist/controllers/StandardController.d.ts.map +1 -1
- package/dist/controllers/StandardController.mjs +16 -9
- package/dist/controllers/StandardController.mjs.map +1 -1
- package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
- package/dist/crypto/BrowserCrypto.mjs +1 -1
- package/dist/crypto/CryptoOps.mjs +1 -1
- package/dist/crypto/PkceGenerator.mjs +1 -1
- package/dist/crypto/SignedHttpRequest.mjs +1 -1
- package/dist/custom-auth-path/app/IPublicClientApplication.d.ts +55 -0
- package/dist/custom-auth-path/app/IPublicClientApplication.d.ts.map +1 -0
- package/dist/custom-auth-path/app/PublicClientApplication.d.ts +297 -0
- package/dist/custom-auth-path/app/PublicClientApplication.d.ts.map +1 -0
- package/dist/custom-auth-path/app/PublicClientApplication.mjs +346 -0
- package/dist/custom-auth-path/app/PublicClientApplication.mjs.map +1 -0
- package/dist/custom-auth-path/app/PublicClientNext.d.ts +278 -0
- package/dist/custom-auth-path/app/PublicClientNext.d.ts.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/IPlatformAuthHandler.d.ts +12 -0
- package/dist/custom-auth-path/broker/nativeBroker/IPlatformAuthHandler.d.ts.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.d.ts +9 -0
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +17 -0
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.d.ts +30 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.d.ts.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +143 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts +63 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +274 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts +26 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +90 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthRequest.d.ts +78 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthResponse.d.ts +71 -0
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthResponse.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/AccountManager.d.ts +49 -0
- package/dist/custom-auth-path/cache/AccountManager.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/AccountManager.mjs +133 -0
- package/dist/custom-auth-path/cache/AccountManager.mjs.map +1 -0
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.d.ts +51 -0
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +141 -0
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs.map +1 -0
- package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts +297 -0
- package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +989 -0
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs.map +1 -0
- package/dist/custom-auth-path/cache/CacheHelpers.d.ts +16 -0
- package/dist/custom-auth-path/cache/CacheHelpers.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/CacheHelpers.mjs +46 -0
- package/dist/custom-auth-path/cache/CacheHelpers.mjs.map +1 -0
- package/dist/custom-auth-path/cache/CookieStorage.d.ts +22 -0
- package/dist/custom-auth-path/cache/CookieStorage.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/CookieStorage.mjs +78 -0
- package/dist/custom-auth-path/cache/CookieStorage.mjs.map +1 -0
- package/dist/custom-auth-path/cache/DatabaseStorage.d.ts +57 -0
- package/dist/custom-auth-path/cache/DatabaseStorage.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/DatabaseStorage.mjs +209 -0
- package/dist/custom-auth-path/cache/DatabaseStorage.mjs.map +1 -0
- package/dist/custom-auth-path/cache/IAsyncStorage.d.ts +28 -0
- package/dist/custom-auth-path/cache/IAsyncStorage.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/ITokenCache.d.ts +12 -0
- package/dist/custom-auth-path/cache/ITokenCache.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/IWindowStorage.d.ts +40 -0
- package/dist/custom-auth-path/cache/IWindowStorage.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/LocalStorage.d.ts +49 -0
- package/dist/custom-auth-path/cache/LocalStorage.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/LocalStorage.mjs +264 -0
- package/dist/custom-auth-path/cache/LocalStorage.mjs.map +1 -0
- package/dist/custom-auth-path/cache/MemoryStorage.d.ts +15 -0
- package/dist/custom-auth-path/cache/MemoryStorage.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/MemoryStorage.mjs +45 -0
- package/dist/custom-auth-path/cache/MemoryStorage.mjs.map +1 -0
- package/dist/custom-auth-path/cache/SessionStorage.d.ts +13 -0
- package/dist/custom-auth-path/cache/SessionStorage.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/SessionStorage.mjs +43 -0
- package/dist/custom-auth-path/cache/SessionStorage.mjs.map +1 -0
- package/dist/custom-auth-path/cache/TokenCache.d.ts +78 -0
- package/dist/custom-auth-path/cache/TokenCache.d.ts.map +1 -0
- package/dist/custom-auth-path/cache/TokenCache.mjs +207 -0
- package/dist/custom-auth-path/cache/TokenCache.mjs.map +1 -0
- package/dist/custom-auth-path/config/Configuration.d.ts +228 -0
- package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -0
- package/dist/custom-auth-path/config/Configuration.mjs +141 -0
- package/dist/custom-auth-path/config/Configuration.mjs.map +1 -0
- package/dist/custom-auth-path/controllers/ControllerFactory.d.ts +6 -0
- package/dist/custom-auth-path/controllers/ControllerFactory.d.ts.map +1 -0
- package/dist/custom-auth-path/controllers/ControllerFactory.mjs +17 -0
- package/dist/custom-auth-path/controllers/ControllerFactory.mjs.map +1 -0
- package/dist/custom-auth-path/controllers/IController.d.ts +59 -0
- package/dist/custom-auth-path/controllers/IController.d.ts.map +1 -0
- package/dist/custom-auth-path/controllers/NestedAppAuthController.d.ts +203 -0
- package/dist/custom-auth-path/controllers/NestedAppAuthController.d.ts.map +1 -0
- package/dist/custom-auth-path/controllers/StandardController.d.ts +425 -0
- package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -0
- package/dist/custom-auth-path/controllers/StandardController.mjs +1469 -0
- package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -0
- package/dist/custom-auth-path/controllers/UnknownOperatingContextController.d.ts +86 -0
- package/dist/custom-auth-path/controllers/UnknownOperatingContextController.d.ts.map +1 -0
- package/dist/custom-auth-path/crypto/BrowserCrypto.d.ts +97 -0
- package/dist/custom-auth-path/crypto/BrowserCrypto.d.ts.map +1 -0
- package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +308 -0
- package/dist/custom-auth-path/crypto/BrowserCrypto.mjs.map +1 -0
- package/dist/custom-auth-path/crypto/CryptoOps.d.ts +75 -0
- package/dist/custom-auth-path/crypto/CryptoOps.d.ts.map +1 -0
- package/dist/custom-auth-path/crypto/CryptoOps.mjs +191 -0
- package/dist/custom-auth-path/crypto/CryptoOps.mjs.map +1 -0
- package/dist/custom-auth-path/crypto/PkceGenerator.d.ts +9 -0
- package/dist/custom-auth-path/crypto/PkceGenerator.d.ts.map +1 -0
- package/dist/custom-auth-path/crypto/PkceGenerator.mjs +65 -0
- package/dist/custom-auth-path/crypto/PkceGenerator.mjs.map +1 -0
- package/dist/custom-auth-path/crypto/SignedHttpRequest.d.ts +31 -0
- package/dist/custom-auth-path/crypto/SignedHttpRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthActionInputs.d.ts +26 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +33 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +47 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +97 -0
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
- package/dist/custom-auth-path/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/configuration/CustomAuthConfiguration.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.d.ts +25 -0
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +274 -0
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
- package/dist/custom-auth-path/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +83 -0
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +28 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +105 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +47 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.d.ts +27 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +45 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.d.ts +19 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +33 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.d.ts +9 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +22 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +17 -0
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +11 -0
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +18 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +17 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +12 -0
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +18 -0
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.d.ts +6 -0
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +18 -0
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +17 -0
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +17 -0
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +10 -0
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +30 -0
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +17 -0
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +18 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +17 -0
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +24 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +47 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +25 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +14 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +86 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +20 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +20 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +9 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +31 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +87 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +29 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +113 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +20 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +71 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +22 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +29 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +65 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +45 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +10 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +17 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +54 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +15 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.d.ts +21 -0
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +34 -0
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.d.ts +3 -0
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +21 -0
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.d.ts +3 -0
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +26 -0
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +122 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +47 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +48 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +47 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +47 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +21 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +21 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +21 -0
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +122 -0
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/index.d.ts +69 -0
- package/dist/custom-auth-path/custom_auth/index.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/index.mjs +57 -0
- package/dist/custom-auth-path/custom_auth/index.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +35 -0
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +55 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +88 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +51 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +48 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +48 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +43 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +23 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +94 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +7 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +16 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +7 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +16 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +54 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +25 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +15 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +155 -0
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +13 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +50 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +76 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +48 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +54 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +62 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +25 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +41 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts +21 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.mjs +24 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +20 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +36 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +29 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +95 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +8 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +17 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +13 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +46 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +7 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +16 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +17 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +54 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +6 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +26 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +20 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.d.ts +48 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +191 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +29 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +30 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +30 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +87 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +126 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +51 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +62 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +48 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +62 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +55 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +21 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +74 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +28 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +139 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +7 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +16 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +7 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +16 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +12 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +77 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +26 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +20 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +241 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +37 -0
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs.map +1 -0
- package/dist/custom-auth-path/encode/Base64Decode.d.ts +15 -0
- package/dist/custom-auth-path/encode/Base64Decode.d.ts.map +1 -0
- package/dist/custom-auth-path/encode/Base64Decode.mjs +44 -0
- package/dist/custom-auth-path/encode/Base64Decode.mjs.map +1 -0
- package/dist/custom-auth-path/encode/Base64Encode.d.ts +20 -0
- package/dist/custom-auth-path/encode/Base64Encode.d.ts.map +1 -0
- package/dist/custom-auth-path/encode/Base64Encode.mjs +48 -0
- package/dist/custom-auth-path/encode/Base64Encode.mjs.map +1 -0
- package/dist/custom-auth-path/error/BrowserAuthError.d.ts +257 -0
- package/dist/custom-auth-path/error/BrowserAuthError.d.ts.map +1 -0
- package/dist/custom-auth-path/error/BrowserAuthError.mjs +82 -0
- package/dist/custom-auth-path/error/BrowserAuthError.mjs.map +1 -0
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.d.ts +52 -0
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +60 -0
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs.map +1 -0
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.d.ts +34 -0
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.d.ts.map +1 -0
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +30 -0
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs.map +1 -0
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.d.ts +4 -0
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +12 -0
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs.map +1 -0
- package/dist/custom-auth-path/error/NativeAuthError.d.ts +30 -0
- package/dist/custom-auth-path/error/NativeAuthError.d.ts.map +1 -0
- package/dist/custom-auth-path/error/NativeAuthError.mjs +73 -0
- package/dist/custom-auth-path/error/NativeAuthError.mjs.map +1 -0
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.d.ts +3 -0
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.d.ts.map +1 -0
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +11 -0
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs.map +1 -0
- package/dist/custom-auth-path/error/NestedAppAuthError.d.ts +15 -0
- package/dist/custom-auth-path/error/NestedAppAuthError.d.ts.map +1 -0
- package/dist/custom-auth-path/event/EventHandler.d.ts +49 -0
- package/dist/custom-auth-path/event/EventHandler.d.ts.map +1 -0
- package/dist/custom-auth-path/event/EventHandler.mjs +112 -0
- package/dist/custom-auth-path/event/EventHandler.mjs.map +1 -0
- package/dist/custom-auth-path/event/EventMessage.d.ts +40 -0
- package/dist/custom-auth-path/event/EventMessage.d.ts.map +1 -0
- package/dist/custom-auth-path/event/EventType.d.ts +31 -0
- package/dist/custom-auth-path/event/EventType.d.ts.map +1 -0
- package/dist/custom-auth-path/event/EventType.mjs +38 -0
- package/dist/custom-auth-path/event/EventType.mjs.map +1 -0
- package/dist/custom-auth-path/index.d.ts +45 -0
- package/dist/custom-auth-path/index.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.d.ts +59 -0
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +128 -0
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.d.ts +5 -0
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +17 -0
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts +149 -0
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +630 -0
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/PopupClient.d.ts +120 -0
- package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs +469 -0
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts +68 -0
- package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +427 -0
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.d.ts +24 -0
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +76 -0
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.d.ts +17 -0
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +58 -0
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +43 -0
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +154 -0
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.d.ts +32 -0
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +75 -0
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.d.ts +64 -0
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +209 -0
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.d.ts +33 -0
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +102 -0
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs.map +1 -0
- package/dist/custom-auth-path/interaction_handler/SilentHandler.d.ts +16 -0
- package/dist/custom-auth-path/interaction_handler/SilentHandler.d.ts.map +1 -0
- package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +154 -0
- package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs.map +1 -0
- package/dist/custom-auth-path/naa/AccountInfo.d.ts +12 -0
- package/dist/custom-auth-path/naa/AccountInfo.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/AuthBridge.d.ts +9 -0
- package/dist/custom-auth-path/naa/AuthBridge.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/AuthResult.d.ts +7 -0
- package/dist/custom-auth-path/naa/AuthResult.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/BridgeAccountContext.d.ts +13 -0
- package/dist/custom-auth-path/naa/BridgeAccountContext.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/BridgeCapabilities.d.ts +4 -0
- package/dist/custom-auth-path/naa/BridgeCapabilities.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/BridgeError.d.ts +10 -0
- package/dist/custom-auth-path/naa/BridgeError.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/BridgeProxy.d.ts +69 -0
- package/dist/custom-auth-path/naa/BridgeProxy.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/BridgeRequest.d.ts +8 -0
- package/dist/custom-auth-path/naa/BridgeRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/BridgeRequestEnvelope.d.ts +13 -0
- package/dist/custom-auth-path/naa/BridgeRequestEnvelope.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/BridgeResponseEnvelope.d.ts +14 -0
- package/dist/custom-auth-path/naa/BridgeResponseEnvelope.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/BridgeStatusCode.d.ts +12 -0
- package/dist/custom-auth-path/naa/BridgeStatusCode.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/IBridgeProxy.d.ts +11 -0
- package/dist/custom-auth-path/naa/IBridgeProxy.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/InitContext.d.ts +9 -0
- package/dist/custom-auth-path/naa/InitContext.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/TokenRequest.d.ts +19 -0
- package/dist/custom-auth-path/naa/TokenRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/TokenResponse.d.ts +14 -0
- package/dist/custom-auth-path/naa/TokenResponse.d.ts.map +1 -0
- package/dist/custom-auth-path/naa/mapping/NestedAppAuthAdapter.d.ts +36 -0
- package/dist/custom-auth-path/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -0
- package/dist/custom-auth-path/navigation/INavigationClient.d.ts +17 -0
- package/dist/custom-auth-path/navigation/INavigationClient.d.ts.map +1 -0
- package/dist/custom-auth-path/navigation/NavigationClient.d.ts +23 -0
- package/dist/custom-auth-path/navigation/NavigationClient.d.ts.map +1 -0
- package/dist/custom-auth-path/navigation/NavigationClient.mjs +48 -0
- package/dist/custom-auth-path/navigation/NavigationClient.mjs.map +1 -0
- package/dist/custom-auth-path/navigation/NavigationOptions.d.ts +13 -0
- package/dist/custom-auth-path/navigation/NavigationOptions.d.ts.map +1 -0
- package/dist/custom-auth-path/network/FetchClient.d.ts +21 -0
- package/dist/custom-auth-path/network/FetchClient.d.ts.map +1 -0
- package/dist/custom-auth-path/network/FetchClient.mjs +128 -0
- package/dist/custom-auth-path/network/FetchClient.mjs.map +1 -0
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.d.ts +42 -0
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.d.ts.map +1 -0
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +104 -0
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs.map +1 -0
- package/dist/custom-auth-path/operatingcontext/NestedAppOperatingContext.d.ts +40 -0
- package/dist/custom-auth-path/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -0
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.d.ts +26 -0
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.d.ts.map +1 -0
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +50 -0
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs.map +1 -0
- package/dist/custom-auth-path/operatingcontext/UnknownOperatingContext.d.ts +26 -0
- package/dist/custom-auth-path/operatingcontext/UnknownOperatingContext.d.ts.map +1 -0
- package/dist/custom-auth-path/packageMetadata.d.ts +3 -0
- package/dist/custom-auth-path/packageMetadata.d.ts.map +1 -0
- package/dist/custom-auth-path/packageMetadata.mjs +8 -0
- package/dist/custom-auth-path/packageMetadata.mjs.map +1 -0
- package/dist/custom-auth-path/protocol/Authorize.d.ts +65 -0
- package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -0
- package/dist/custom-auth-path/protocol/Authorize.mjs +218 -0
- package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -0
- package/dist/custom-auth-path/request/AuthorizationCodeRequest.d.ts +9 -0
- package/dist/custom-auth-path/request/AuthorizationCodeRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/AuthorizationUrlRequest.d.ts +7 -0
- package/dist/custom-auth-path/request/AuthorizationUrlRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/ClearCacheRequest.d.ts +11 -0
- package/dist/custom-auth-path/request/ClearCacheRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/EndSessionPopupRequest.d.ts +21 -0
- package/dist/custom-auth-path/request/EndSessionPopupRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/EndSessionRequest.d.ts +16 -0
- package/dist/custom-auth-path/request/EndSessionRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/InitializeApplicationRequest.d.ts +9 -0
- package/dist/custom-auth-path/request/InitializeApplicationRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/PopupRequest.d.ts +36 -0
- package/dist/custom-auth-path/request/PopupRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/PopupWindowAttributes.d.ts +16 -0
- package/dist/custom-auth-path/request/PopupWindowAttributes.d.ts.map +1 -0
- package/dist/custom-auth-path/request/RedirectRequest.d.ts +40 -0
- package/dist/custom-auth-path/request/RedirectRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/RequestHelpers.d.ts +14 -0
- package/dist/custom-auth-path/request/RequestHelpers.d.ts.map +1 -0
- package/dist/custom-auth-path/request/RequestHelpers.mjs +61 -0
- package/dist/custom-auth-path/request/RequestHelpers.mjs.map +1 -0
- package/dist/custom-auth-path/request/SilentRequest.d.ts +33 -0
- package/dist/custom-auth-path/request/SilentRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/request/SsoSilentRequest.d.ts +28 -0
- package/dist/custom-auth-path/request/SsoSilentRequest.d.ts.map +1 -0
- package/dist/custom-auth-path/response/AuthenticationResult.d.ts +5 -0
- package/dist/custom-auth-path/response/AuthenticationResult.d.ts.map +1 -0
- package/dist/custom-auth-path/response/ResponseHandler.d.ts +8 -0
- package/dist/custom-auth-path/response/ResponseHandler.d.ts.map +1 -0
- package/dist/custom-auth-path/response/ResponseHandler.mjs +46 -0
- package/dist/custom-auth-path/response/ResponseHandler.mjs.map +1 -0
- package/dist/custom-auth-path/telemetry/BrowserPerformanceClient.d.ts +35 -0
- package/dist/custom-auth-path/telemetry/BrowserPerformanceClient.d.ts.map +1 -0
- package/dist/custom-auth-path/telemetry/BrowserPerformanceMeasurement.d.ts +22 -0
- package/dist/custom-auth-path/telemetry/BrowserPerformanceMeasurement.d.ts.map +1 -0
- package/dist/custom-auth-path/utils/BrowserConstants.d.ts +184 -0
- package/dist/custom-auth-path/utils/BrowserConstants.d.ts.map +1 -0
- package/dist/custom-auth-path/utils/BrowserConstants.mjs +177 -0
- package/dist/custom-auth-path/utils/BrowserConstants.mjs.map +1 -0
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.d.ts +12 -0
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.d.ts.map +1 -0
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +28 -0
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs.map +1 -0
- package/dist/custom-auth-path/utils/BrowserUtils.d.ts +76 -0
- package/dist/custom-auth-path/utils/BrowserUtils.d.ts.map +1 -0
- package/dist/custom-auth-path/utils/BrowserUtils.mjs +173 -0
- package/dist/custom-auth-path/utils/BrowserUtils.mjs.map +1 -0
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.d.ts +3 -0
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.d.ts.map +1 -0
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +23 -0
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs.map +1 -0
- package/dist/custom_auth/CustomAuthActionInputs.d.ts +26 -0
- package/dist/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
- package/dist/custom_auth/CustomAuthConstants.d.ts +33 -0
- package/dist/custom_auth/CustomAuthConstants.d.ts.map +1 -0
- package/dist/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
- package/dist/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
- package/dist/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
- package/dist/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
- package/dist/custom_auth/UserAccountAttributes.d.ts +12 -0
- package/dist/custom_auth/UserAccountAttributes.d.ts.map +1 -0
- package/dist/custom_auth/configuration/CustomAuthConfiguration.d.ts +12 -0
- package/dist/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
- package/dist/custom_auth/controller/CustomAuthStandardController.d.ts +25 -0
- package/dist/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
- package/dist/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
- package/dist/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
- package/dist/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
- package/dist/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +28 -0
- package/dist/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
- package/dist/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/AuthFlowState.d.ts +27 -0
- package/dist/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
- package/dist/custom_auth/core/error/CustomAuthApiError.d.ts +19 -0
- package/dist/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/CustomAuthError.d.ts +9 -0
- package/dist/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/HttpError.d.ts +5 -0
- package/dist/custom_auth/core/error/HttpError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
- package/dist/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
- package/dist/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
- package/dist/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
- package/dist/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
- package/dist/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
- package/dist/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
- package/dist/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/MsalCustomAuthError.d.ts +6 -0
- package/dist/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
- package/dist/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
- package/dist/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
- package/dist/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
- package/dist/custom_auth/core/error/UnexpectedError.d.ts +5 -0
- package/dist/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
- package/dist/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
- package/dist/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
- package/dist/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
- package/dist/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
- package/dist/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
- package/dist/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
- package/dist/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +24 -0
- package/dist/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
- package/dist/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
- package/dist/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +14 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +12 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +12 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +9 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +31 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +29 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +20 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +22 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +65 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +45 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +10 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
- package/dist/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
- package/dist/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
- package/dist/custom_auth/core/telemetry/PublicApiId.d.ts +21 -0
- package/dist/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
- package/dist/custom_auth/core/utils/ArgumentValidator.d.ts +3 -0
- package/dist/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
- package/dist/custom_auth/core/utils/UrlUtils.d.ts +3 -0
- package/dist/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
- package/dist/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
- package/dist/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
- package/dist/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
- package/dist/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
- package/dist/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
- package/dist/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
- package/dist/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
- package/dist/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
- package/dist/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
- package/dist/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
- package/dist/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +12 -0
- package/dist/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
- package/dist/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +12 -0
- package/dist/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
- package/dist/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +12 -0
- package/dist/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
- package/dist/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
- package/dist/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
- package/dist/custom_auth/index.d.ts +69 -0
- package/dist/custom_auth/index.d.ts.map +1 -0
- package/dist/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
- package/dist/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +55 -0
- package/dist/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
- package/dist/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
- package/dist/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
- package/dist/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
- package/dist/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +23 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +7 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +7 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +12 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +15 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
- package/dist/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
- package/dist/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
- package/dist/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
- package/dist/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
- package/dist/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +50 -0
- package/dist/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +54 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +25 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts +21 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +20 -0
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +29 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +8 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +13 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +7 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +17 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +6 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +20 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/interaction_client/SignInClient.d.ts +48 -0
- package/dist/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +29 -0
- package/dist/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
- package/dist/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +30 -0
- package/dist/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +87 -0
- package/dist/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
- package/dist/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +21 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +28 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +7 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +7 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +12 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +20 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
- package/dist/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
- package/dist/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
- package/dist/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
- package/dist/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
- package/dist/encode/Base64Decode.mjs +1 -1
- package/dist/encode/Base64Encode.mjs +1 -1
- package/dist/error/BrowserAuthError.d.ts +1 -0
- package/dist/error/BrowserAuthError.d.ts.map +1 -1
- package/dist/error/BrowserAuthError.mjs +3 -2
- package/dist/error/BrowserAuthError.mjs.map +1 -1
- package/dist/error/BrowserAuthErrorCodes.d.ts +1 -0
- package/dist/error/BrowserAuthErrorCodes.d.ts.map +1 -1
- package/dist/error/BrowserAuthErrorCodes.mjs +4 -3
- package/dist/error/BrowserAuthErrorCodes.mjs.map +1 -1
- package/dist/error/BrowserConfigurationAuthError.mjs +2 -2
- package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/error/NativeAuthError.mjs +1 -1
- package/dist/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/error/NestedAppAuthError.mjs +1 -1
- package/dist/event/EventHandler.mjs +1 -1
- package/dist/event/EventMessage.mjs +1 -1
- package/dist/event/EventType.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/interaction_client/BaseInteractionClient.d.ts +1 -1
- package/dist/interaction_client/BaseInteractionClient.d.ts.map +1 -1
- package/dist/interaction_client/BaseInteractionClient.mjs +6 -6
- package/dist/interaction_client/BaseInteractionClient.mjs.map +1 -1
- package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.d.ts +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs +9 -9
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
- package/dist/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/interaction_client/PopupClient.mjs +2 -2
- package/dist/interaction_client/PopupClient.mjs.map +1 -1
- package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/interaction_client/RedirectClient.mjs +8 -3
- package/dist/interaction_client/RedirectClient.mjs.map +1 -1
- package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/interaction_client/SilentCacheClient.d.ts.map +1 -1
- package/dist/interaction_client/SilentCacheClient.mjs +2 -2
- package/dist/interaction_client/SilentCacheClient.mjs.map +1 -1
- package/dist/interaction_client/SilentIframeClient.mjs +1 -1
- package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/interaction_client/StandardInteractionClient.d.ts.map +1 -1
- package/dist/interaction_client/StandardInteractionClient.mjs +3 -2
- package/dist/interaction_client/StandardInteractionClient.mjs.map +1 -1
- package/dist/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/interaction_handler/SilentHandler.mjs +3 -3
- package/dist/naa/BridgeError.mjs +1 -1
- package/dist/naa/BridgeProxy.mjs +1 -1
- package/dist/naa/BridgeStatusCode.mjs +1 -1
- package/dist/naa/mapping/NestedAppAuthAdapter.mjs +2 -2
- package/dist/navigation/NavigationClient.d.ts.map +1 -1
- package/dist/navigation/NavigationClient.mjs +6 -3
- package/dist/navigation/NavigationClient.mjs.map +1 -1
- package/dist/network/FetchClient.mjs +1 -1
- package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
- package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.mjs +1 -1
- package/dist/request/RequestHelpers.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
- package/dist/utils/BrowserConstants.mjs +1 -5
- package/dist/utils/BrowserConstants.mjs.map +1 -1
- package/dist/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/utils/BrowserUtils.mjs +1 -1
- package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
- package/lib/custom-auth-path/msal-custom-auth.cjs +20549 -0
- package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -0
- package/lib/custom-auth-path/types/app/IPublicClientApplication.d.ts +55 -0
- package/lib/custom-auth-path/types/app/IPublicClientApplication.d.ts.map +1 -0
- package/lib/custom-auth-path/types/app/PublicClientApplication.d.ts +297 -0
- package/lib/custom-auth-path/types/app/PublicClientApplication.d.ts.map +1 -0
- package/lib/custom-auth-path/types/app/PublicClientNext.d.ts +278 -0
- package/lib/custom-auth-path/types/app/PublicClientNext.d.ts.map +1 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/IPlatformAuthHandler.d.ts +12 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/IPlatformAuthHandler.d.ts.map +1 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/NativeStatusCodes.d.ts +9 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/NativeStatusCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts +30 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts.map +1 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts +63 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts.map +1 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts +26 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthRequest.d.ts +78 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthResponse.d.ts +71 -0
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthResponse.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/AccountManager.d.ts +49 -0
- package/lib/custom-auth-path/types/cache/AccountManager.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/AsyncMemoryStorage.d.ts +51 -0
- package/lib/custom-auth-path/types/cache/AsyncMemoryStorage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts +297 -0
- package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/CacheHelpers.d.ts +16 -0
- package/lib/custom-auth-path/types/cache/CacheHelpers.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/CookieStorage.d.ts +22 -0
- package/lib/custom-auth-path/types/cache/CookieStorage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/DatabaseStorage.d.ts +57 -0
- package/lib/custom-auth-path/types/cache/DatabaseStorage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/IAsyncStorage.d.ts +28 -0
- package/lib/custom-auth-path/types/cache/IAsyncStorage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/ITokenCache.d.ts +12 -0
- package/lib/custom-auth-path/types/cache/ITokenCache.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/IWindowStorage.d.ts +40 -0
- package/lib/custom-auth-path/types/cache/IWindowStorage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/LocalStorage.d.ts +49 -0
- package/lib/custom-auth-path/types/cache/LocalStorage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/MemoryStorage.d.ts +15 -0
- package/lib/custom-auth-path/types/cache/MemoryStorage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/SessionStorage.d.ts +13 -0
- package/lib/custom-auth-path/types/cache/SessionStorage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/cache/TokenCache.d.ts +78 -0
- package/lib/custom-auth-path/types/cache/TokenCache.d.ts.map +1 -0
- package/lib/custom-auth-path/types/config/Configuration.d.ts +228 -0
- package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -0
- package/lib/custom-auth-path/types/controllers/ControllerFactory.d.ts +6 -0
- package/lib/custom-auth-path/types/controllers/ControllerFactory.d.ts.map +1 -0
- package/lib/custom-auth-path/types/controllers/IController.d.ts +59 -0
- package/lib/custom-auth-path/types/controllers/IController.d.ts.map +1 -0
- package/lib/custom-auth-path/types/controllers/NestedAppAuthController.d.ts +203 -0
- package/lib/custom-auth-path/types/controllers/NestedAppAuthController.d.ts.map +1 -0
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts +425 -0
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -0
- package/lib/custom-auth-path/types/controllers/UnknownOperatingContextController.d.ts +86 -0
- package/lib/custom-auth-path/types/controllers/UnknownOperatingContextController.d.ts.map +1 -0
- package/lib/custom-auth-path/types/crypto/BrowserCrypto.d.ts +97 -0
- package/lib/custom-auth-path/types/crypto/BrowserCrypto.d.ts.map +1 -0
- package/lib/custom-auth-path/types/crypto/CryptoOps.d.ts +75 -0
- package/lib/custom-auth-path/types/crypto/CryptoOps.d.ts.map +1 -0
- package/lib/custom-auth-path/types/crypto/PkceGenerator.d.ts +9 -0
- package/lib/custom-auth-path/types/crypto/PkceGenerator.d.ts.map +1 -0
- package/lib/custom-auth-path/types/crypto/SignedHttpRequest.d.ts +31 -0
- package/lib/custom-auth-path/types/crypto/SignedHttpRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/CustomAuthActionInputs.d.ts +26 -0
- package/lib/custom-auth-path/types/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +33 -0
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
- package/lib/custom-auth-path/types/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
- package/lib/custom-auth-path/types/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/configuration/CustomAuthConfiguration.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/controller/CustomAuthStandardController.d.ts +25 -0
- package/lib/custom-auth-path/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
- package/lib/custom-auth-path/types/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
- package/lib/custom-auth-path/types/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +28 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +27 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/CustomAuthApiError.d.ts +19 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/CustomAuthError.d.ts +9 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/HttpError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/HttpError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/MsalCustomAuthError.d.ts +6 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UnexpectedError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +24 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +14 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +9 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +31 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +29 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +20 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +22 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +65 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +45 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +10 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/telemetry/PublicApiId.d.ts +21 -0
- package/lib/custom-auth-path/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/utils/ArgumentValidator.d.ts +3 -0
- package/lib/custom-auth-path/types/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/utils/UrlUtils.d.ts +3 -0
- package/lib/custom-auth-path/types/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
- package/lib/custom-auth-path/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/index.d.ts +69 -0
- package/lib/custom-auth-path/types/custom_auth/index.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
- package/lib/custom-auth-path/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +55 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +23 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +7 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +7 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +15 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +50 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +54 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +25 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts +21 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +20 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +29 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +8 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +13 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +7 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +17 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +6 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +20 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +48 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +29 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +30 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +87 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +21 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +28 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +7 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +7 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +12 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +20 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/encode/Base64Decode.d.ts +15 -0
- package/lib/custom-auth-path/types/encode/Base64Decode.d.ts.map +1 -0
- package/lib/custom-auth-path/types/encode/Base64Encode.d.ts +20 -0
- package/lib/custom-auth-path/types/encode/Base64Encode.d.ts.map +1 -0
- package/lib/custom-auth-path/types/error/BrowserAuthError.d.ts +257 -0
- package/lib/custom-auth-path/types/error/BrowserAuthError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/error/BrowserAuthErrorCodes.d.ts +52 -0
- package/lib/custom-auth-path/types/error/BrowserAuthErrorCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/error/BrowserConfigurationAuthError.d.ts +34 -0
- package/lib/custom-auth-path/types/error/BrowserConfigurationAuthError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/error/BrowserConfigurationAuthErrorCodes.d.ts +4 -0
- package/lib/custom-auth-path/types/error/BrowserConfigurationAuthErrorCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/error/NativeAuthError.d.ts +30 -0
- package/lib/custom-auth-path/types/error/NativeAuthError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/error/NativeAuthErrorCodes.d.ts +3 -0
- package/lib/custom-auth-path/types/error/NativeAuthErrorCodes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/error/NestedAppAuthError.d.ts +15 -0
- package/lib/custom-auth-path/types/error/NestedAppAuthError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/event/EventHandler.d.ts +49 -0
- package/lib/custom-auth-path/types/event/EventHandler.d.ts.map +1 -0
- package/lib/custom-auth-path/types/event/EventMessage.d.ts +40 -0
- package/lib/custom-auth-path/types/event/EventMessage.d.ts.map +1 -0
- package/lib/custom-auth-path/types/event/EventType.d.ts +31 -0
- package/lib/custom-auth-path/types/event/EventType.d.ts.map +1 -0
- package/lib/custom-auth-path/types/index.d.ts +45 -0
- package/lib/custom-auth-path/types/index.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/BaseInteractionClient.d.ts +59 -0
- package/lib/custom-auth-path/types/interaction_client/BaseInteractionClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts +5 -0
- package/lib/custom-auth-path/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts +149 -0
- package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts +120 -0
- package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts +68 -0
- package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/SilentAuthCodeClient.d.ts +24 -0
- package/lib/custom-auth-path/types/interaction_client/SilentAuthCodeClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/SilentCacheClient.d.ts +17 -0
- package/lib/custom-auth-path/types/interaction_client/SilentCacheClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +43 -0
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/SilentRefreshClient.d.ts +32 -0
- package/lib/custom-auth-path/types/interaction_client/SilentRefreshClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_client/StandardInteractionClient.d.ts +64 -0
- package/lib/custom-auth-path/types/interaction_client/StandardInteractionClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_handler/InteractionHandler.d.ts +33 -0
- package/lib/custom-auth-path/types/interaction_handler/InteractionHandler.d.ts.map +1 -0
- package/lib/custom-auth-path/types/interaction_handler/SilentHandler.d.ts +16 -0
- package/lib/custom-auth-path/types/interaction_handler/SilentHandler.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/AccountInfo.d.ts +12 -0
- package/lib/custom-auth-path/types/naa/AccountInfo.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/AuthBridge.d.ts +9 -0
- package/lib/custom-auth-path/types/naa/AuthBridge.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/AuthResult.d.ts +7 -0
- package/lib/custom-auth-path/types/naa/AuthResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/BridgeAccountContext.d.ts +13 -0
- package/lib/custom-auth-path/types/naa/BridgeAccountContext.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/BridgeCapabilities.d.ts +4 -0
- package/lib/custom-auth-path/types/naa/BridgeCapabilities.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/BridgeError.d.ts +10 -0
- package/lib/custom-auth-path/types/naa/BridgeError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/BridgeProxy.d.ts +69 -0
- package/lib/custom-auth-path/types/naa/BridgeProxy.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/BridgeRequest.d.ts +8 -0
- package/lib/custom-auth-path/types/naa/BridgeRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/BridgeRequestEnvelope.d.ts +13 -0
- package/lib/custom-auth-path/types/naa/BridgeRequestEnvelope.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/BridgeResponseEnvelope.d.ts +14 -0
- package/lib/custom-auth-path/types/naa/BridgeResponseEnvelope.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/BridgeStatusCode.d.ts +12 -0
- package/lib/custom-auth-path/types/naa/BridgeStatusCode.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/IBridgeProxy.d.ts +11 -0
- package/lib/custom-auth-path/types/naa/IBridgeProxy.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/InitContext.d.ts +9 -0
- package/lib/custom-auth-path/types/naa/InitContext.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/TokenRequest.d.ts +19 -0
- package/lib/custom-auth-path/types/naa/TokenRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/TokenResponse.d.ts +14 -0
- package/lib/custom-auth-path/types/naa/TokenResponse.d.ts.map +1 -0
- package/lib/custom-auth-path/types/naa/mapping/NestedAppAuthAdapter.d.ts +36 -0
- package/lib/custom-auth-path/types/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -0
- package/lib/custom-auth-path/types/navigation/INavigationClient.d.ts +17 -0
- package/lib/custom-auth-path/types/navigation/INavigationClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/navigation/NavigationClient.d.ts +23 -0
- package/lib/custom-auth-path/types/navigation/NavigationClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/navigation/NavigationOptions.d.ts +13 -0
- package/lib/custom-auth-path/types/navigation/NavigationOptions.d.ts.map +1 -0
- package/lib/custom-auth-path/types/network/FetchClient.d.ts +21 -0
- package/lib/custom-auth-path/types/network/FetchClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/operatingcontext/BaseOperatingContext.d.ts +42 -0
- package/lib/custom-auth-path/types/operatingcontext/BaseOperatingContext.d.ts.map +1 -0
- package/lib/custom-auth-path/types/operatingcontext/NestedAppOperatingContext.d.ts +40 -0
- package/lib/custom-auth-path/types/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -0
- package/lib/custom-auth-path/types/operatingcontext/StandardOperatingContext.d.ts +26 -0
- package/lib/custom-auth-path/types/operatingcontext/StandardOperatingContext.d.ts.map +1 -0
- package/lib/custom-auth-path/types/operatingcontext/UnknownOperatingContext.d.ts +26 -0
- package/lib/custom-auth-path/types/operatingcontext/UnknownOperatingContext.d.ts.map +1 -0
- package/lib/custom-auth-path/types/packageMetadata.d.ts +3 -0
- package/lib/custom-auth-path/types/packageMetadata.d.ts.map +1 -0
- package/lib/custom-auth-path/types/protocol/Authorize.d.ts +65 -0
- package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/AuthorizationCodeRequest.d.ts +9 -0
- package/lib/custom-auth-path/types/request/AuthorizationCodeRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/AuthorizationUrlRequest.d.ts +7 -0
- package/lib/custom-auth-path/types/request/AuthorizationUrlRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/ClearCacheRequest.d.ts +11 -0
- package/lib/custom-auth-path/types/request/ClearCacheRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/EndSessionPopupRequest.d.ts +21 -0
- package/lib/custom-auth-path/types/request/EndSessionPopupRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/EndSessionRequest.d.ts +16 -0
- package/lib/custom-auth-path/types/request/EndSessionRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/InitializeApplicationRequest.d.ts +9 -0
- package/lib/custom-auth-path/types/request/InitializeApplicationRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/PopupRequest.d.ts +36 -0
- package/lib/custom-auth-path/types/request/PopupRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/PopupWindowAttributes.d.ts +16 -0
- package/lib/custom-auth-path/types/request/PopupWindowAttributes.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/RedirectRequest.d.ts +40 -0
- package/lib/custom-auth-path/types/request/RedirectRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/RequestHelpers.d.ts +14 -0
- package/lib/custom-auth-path/types/request/RequestHelpers.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/SilentRequest.d.ts +33 -0
- package/lib/custom-auth-path/types/request/SilentRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/request/SsoSilentRequest.d.ts +28 -0
- package/lib/custom-auth-path/types/request/SsoSilentRequest.d.ts.map +1 -0
- package/lib/custom-auth-path/types/response/AuthenticationResult.d.ts +5 -0
- package/lib/custom-auth-path/types/response/AuthenticationResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/response/ResponseHandler.d.ts +8 -0
- package/lib/custom-auth-path/types/response/ResponseHandler.d.ts.map +1 -0
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceClient.d.ts +35 -0
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceMeasurement.d.ts +22 -0
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceMeasurement.d.ts.map +1 -0
- package/lib/custom-auth-path/types/utils/BrowserConstants.d.ts +184 -0
- package/lib/custom-auth-path/types/utils/BrowserConstants.d.ts.map +1 -0
- package/lib/custom-auth-path/types/utils/BrowserProtocolUtils.d.ts +12 -0
- package/lib/custom-auth-path/types/utils/BrowserProtocolUtils.d.ts.map +1 -0
- package/lib/custom-auth-path/types/utils/BrowserUtils.d.ts +76 -0
- package/lib/custom-auth-path/types/utils/BrowserUtils.d.ts.map +1 -0
- package/lib/custom-auth-path/types/utils/MsalFrameStatsUtils.d.ts +3 -0
- package/lib/custom-auth-path/types/utils/MsalFrameStatsUtils.d.ts.map +1 -0
- package/lib/msal-browser.cjs +469 -447
- package/lib/msal-browser.cjs.map +1 -1
- package/lib/msal-browser.js +469 -447
- package/lib/msal-browser.js.map +1 -1
- package/lib/msal-browser.min.js +68 -69
- package/lib/types/cache/AccountManager.d.ts +7 -7
- package/lib/types/cache/AccountManager.d.ts.map +1 -1
- package/lib/types/cache/BrowserCacheManager.d.ts +40 -25
- package/lib/types/cache/BrowserCacheManager.d.ts.map +1 -1
- package/lib/types/cache/IWindowStorage.d.ts +1 -1
- package/lib/types/cache/IWindowStorage.d.ts.map +1 -1
- package/lib/types/cache/LocalStorage.d.ts +1 -1
- package/lib/types/cache/LocalStorage.d.ts.map +1 -1
- package/lib/types/cache/TokenCache.d.ts.map +1 -1
- package/lib/types/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/lib/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/types/custom_auth/CustomAuthActionInputs.d.ts +26 -0
- package/lib/types/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
- package/lib/types/custom_auth/CustomAuthConstants.d.ts +33 -0
- package/lib/types/custom_auth/CustomAuthConstants.d.ts.map +1 -0
- package/lib/types/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
- package/lib/types/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
- package/lib/types/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
- package/lib/types/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
- package/lib/types/custom_auth/UserAccountAttributes.d.ts +12 -0
- package/lib/types/custom_auth/UserAccountAttributes.d.ts.map +1 -0
- package/lib/types/custom_auth/configuration/CustomAuthConfiguration.d.ts +12 -0
- package/lib/types/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
- package/lib/types/custom_auth/controller/CustomAuthStandardController.d.ts +25 -0
- package/lib/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
- package/lib/types/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
- package/lib/types/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
- package/lib/types/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
- package/lib/types/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +28 -0
- package/lib/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
- package/lib/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +27 -0
- package/lib/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/CustomAuthApiError.d.ts +19 -0
- package/lib/types/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/CustomAuthError.d.ts +9 -0
- package/lib/types/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/HttpError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/HttpError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
- package/lib/types/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
- package/lib/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/MsalCustomAuthError.d.ts +6 -0
- package/lib/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
- package/lib/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/UnexpectedError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
- package/lib/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
- package/lib/types/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +24 -0
- package/lib/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
- package/lib/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
- package/lib/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +14 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +12 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +12 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +9 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +31 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +29 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +20 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +22 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +65 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +45 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +10 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
- package/lib/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
- package/lib/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/telemetry/PublicApiId.d.ts +21 -0
- package/lib/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
- package/lib/types/custom_auth/core/utils/ArgumentValidator.d.ts +3 -0
- package/lib/types/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
- package/lib/types/custom_auth/core/utils/UrlUtils.d.ts +3 -0
- package/lib/types/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
- package/lib/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
- package/lib/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
- package/lib/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
- package/lib/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
- package/lib/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +12 -0
- package/lib/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +12 -0
- package/lib/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +12 -0
- package/lib/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
- package/lib/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
- package/lib/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
- package/lib/types/custom_auth/index.d.ts +69 -0
- package/lib/types/custom_auth/index.d.ts.map +1 -0
- package/lib/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
- package/lib/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +55 -0
- package/lib/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
- package/lib/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
- package/lib/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
- package/lib/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
- package/lib/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +23 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +7 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +7 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +12 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +15 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
- package/lib/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
- package/lib/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
- package/lib/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
- package/lib/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
- package/lib/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +50 -0
- package/lib/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +54 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +25 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts +21 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +20 -0
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +29 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +8 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +13 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +7 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +17 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +6 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +20 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +48 -0
- package/lib/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +29 -0
- package/lib/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +30 -0
- package/lib/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +87 -0
- package/lib/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
- package/lib/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +21 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +28 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +7 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +7 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +12 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +20 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
- package/lib/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
- package/lib/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
- package/lib/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
- package/lib/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
- package/lib/types/error/BrowserAuthError.d.ts +1 -0
- package/lib/types/error/BrowserAuthError.d.ts.map +1 -1
- package/lib/types/error/BrowserAuthErrorCodes.d.ts +1 -0
- package/lib/types/error/BrowserAuthErrorCodes.d.ts.map +1 -1
- package/lib/types/interaction_client/BaseInteractionClient.d.ts +1 -1
- package/lib/types/interaction_client/BaseInteractionClient.d.ts.map +1 -1
- package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts +1 -1
- package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
- package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
- package/lib/types/interaction_client/SilentCacheClient.d.ts.map +1 -1
- package/lib/types/interaction_client/StandardInteractionClient.d.ts.map +1 -1
- package/lib/types/navigation/NavigationClient.d.ts.map +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/package.json +12 -2
- package/src/cache/AccountManager.ts +40 -20
- package/src/cache/BrowserCacheManager.ts +323 -202
- package/src/cache/IWindowStorage.ts +6 -1
- package/src/cache/LocalStorage.ts +4 -1
- package/src/cache/TokenCache.ts +1 -0
- package/src/controllers/NestedAppAuthController.ts +31 -9
- package/src/controllers/StandardController.ts +25 -6
- package/src/custom_auth/CustomAuthActionInputs.ts +37 -0
- package/src/custom_auth/CustomAuthConstants.ts +50 -0
- package/src/custom_auth/CustomAuthPublicClientApplication.ts +158 -0
- package/src/custom_auth/ICustomAuthPublicClientApplication.ts +51 -0
- package/src/custom_auth/UserAccountAttributes.ts +16 -0
- package/src/custom_auth/configuration/CustomAuthConfiguration.ts +22 -0
- package/src/custom_auth/controller/CustomAuthStandardController.ts +509 -0
- package/src/custom_auth/controller/ICustomAuthStandardController.ts +53 -0
- package/src/custom_auth/core/CustomAuthAuthority.ts +112 -0
- package/src/custom_auth/core/auth_flow/AuthFlowErrorBase.ts +140 -0
- package/src/custom_auth/core/auth_flow/AuthFlowResultBase.ts +55 -0
- package/src/custom_auth/core/auth_flow/AuthFlowState.ts +73 -0
- package/src/custom_auth/core/error/CustomAuthApiError.ts +41 -0
- package/src/custom_auth/core/error/CustomAuthError.ts +20 -0
- package/src/custom_auth/core/error/HttpError.ts +13 -0
- package/src/custom_auth/core/error/HttpErrorCodes.ts +7 -0
- package/src/custom_auth/core/error/InvalidArgumentError.ts +15 -0
- package/src/custom_auth/core/error/InvalidConfigurationError.ts +13 -0
- package/src/custom_auth/core/error/InvalidConfigurationErrorCodes.ts +8 -0
- package/src/custom_auth/core/error/MethodNotImplementedError.ts +15 -0
- package/src/custom_auth/core/error/MsalCustomAuthError.ts +22 -0
- package/src/custom_auth/core/error/NoCachedAccountFoundError.ts +17 -0
- package/src/custom_auth/core/error/ParsedUrlError.ts +13 -0
- package/src/custom_auth/core/error/ParsedUrlErrorCodes.ts +6 -0
- package/src/custom_auth/core/error/UnexpectedError.ts +25 -0
- package/src/custom_auth/core/error/UnsupportedEnvironmentError.ts +17 -0
- package/src/custom_auth/core/error/UserAccountAttributeError.ts +15 -0
- package/src/custom_auth/core/error/UserAccountAttributeErrorCodes.ts +6 -0
- package/src/custom_auth/core/error/UserAlreadySignedInError.ts +17 -0
- package/src/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.ts +92 -0
- package/src/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.ts +57 -0
- package/src/custom_auth/core/network_client/custom_auth_api/BaseApiClient.ts +168 -0
- package/src/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.ts +38 -0
- package/src/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.ts +18 -0
- package/src/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.ts +13 -0
- package/src/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.ts +172 -0
- package/src/custom_auth/core/network_client/custom_auth_api/SignInApiClient.ts +186 -0
- package/src/custom_auth/core/network_client/custom_auth_api/SignupApiClient.ts +141 -0
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.ts +26 -0
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.ts +36 -0
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.ts +91 -0
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.ts +66 -0
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.ts +14 -0
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.ts +15 -0
- package/src/custom_auth/core/network_client/http_client/FetchHttpClient.ts +86 -0
- package/src/custom_auth/core/network_client/http_client/IHttpClient.ts +54 -0
- package/src/custom_auth/core/telemetry/PublicApiId.ts +37 -0
- package/src/custom_auth/core/utils/ArgumentValidator.ts +26 -0
- package/src/custom_auth/core/utils/UrlUtils.ts +25 -0
- package/src/custom_auth/get_account/auth_flow/CustomAuthAccountData.ts +185 -0
- package/src/custom_auth/get_account/auth_flow/error_type/GetAccountError.ts +45 -0
- package/src/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.ts +72 -0
- package/src/custom_auth/get_account/auth_flow/result/GetAccountResult.ts +69 -0
- package/src/custom_auth/get_account/auth_flow/result/SignOutResult.ts +62 -0
- package/src/custom_auth/get_account/auth_flow/state/GetAccessTokenState.ts +16 -0
- package/src/custom_auth/get_account/auth_flow/state/GetAccountState.ts +16 -0
- package/src/custom_auth/get_account/auth_flow/state/SignOutState.ts +16 -0
- package/src/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.ts +215 -0
- package/src/custom_auth/index.ts +185 -0
- package/src/custom_auth/operating_context/CustomAuthOperatingContext.ts +43 -0
- package/src/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.ts +96 -0
- package/src/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.ts +76 -0
- package/src/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.ts +70 -0
- package/src/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.ts +70 -0
- package/src/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.ts +65 -0
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.ts +130 -0
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.ts +11 -0
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.ts +11 -0
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.ts +73 -0
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordState.ts +29 -0
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.ts +25 -0
- package/src/custom_auth/reset_password/interaction_client/ResetPasswordClient.ts +311 -0
- package/src/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.ts +28 -0
- package/src/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.ts +21 -0
- package/src/custom_auth/sign_in/auth_flow/SignInScenario.ts +12 -0
- package/src/custom_auth/sign_in/auth_flow/error_type/SignInError.ts +79 -0
- package/src/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.ts +67 -0
- package/src/custom_auth/sign_in/auth_flow/result/SignInResult.ts +87 -0
- package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.ts +44 -0
- package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.ts +43 -0
- package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.ts +41 -0
- package/src/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.ts +141 -0
- package/src/custom_auth/sign_in/auth_flow/state/SignInCompletedState.ts +12 -0
- package/src/custom_auth/sign_in/auth_flow/state/SignInContinuationState.ts +71 -0
- package/src/custom_auth/sign_in/auth_flow/state/SignInFailedState.ts +11 -0
- package/src/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.ts +83 -0
- package/src/custom_auth/sign_in/auth_flow/state/SignInState.ts +34 -0
- package/src/custom_auth/sign_in/auth_flow/state/SignInStateParameters.ts +32 -0
- package/src/custom_auth/sign_in/interaction_client/SignInClient.ts +396 -0
- package/src/custom_auth/sign_in/interaction_client/parameter/SignInParams.ts +39 -0
- package/src/custom_auth/sign_in/interaction_client/result/SignInActionResult.ts +65 -0
- package/src/custom_auth/sign_up/auth_flow/error_type/SignUpError.ts +138 -0
- package/src/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.ts +70 -0
- package/src/custom_auth/sign_up/auth_flow/result/SignUpResult.ts +88 -0
- package/src/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.ts +70 -0
- package/src/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.ts +90 -0
- package/src/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.ts +80 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.ts +115 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.ts +196 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.ts +11 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpFailedState.ts +11 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.ts +112 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpState.ts +34 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.ts +31 -0
- package/src/custom_auth/sign_up/interaction_client/SignUpClient.ts +496 -0
- package/src/custom_auth/sign_up/interaction_client/parameter/SignUpParams.ts +36 -0
- package/src/custom_auth/sign_up/interaction_client/result/SignUpActionResult.ts +77 -0
- package/src/error/BrowserAuthError.ts +1 -0
- package/src/error/BrowserAuthErrorCodes.ts +1 -0
- package/src/interaction_client/BaseInteractionClient.ts +5 -4
- package/src/interaction_client/PlatformAuthInteractionClient.ts +19 -12
- package/src/interaction_client/PopupClient.ts +4 -1
- package/src/interaction_client/RedirectClient.ts +14 -1
- package/src/interaction_client/SilentCacheClient.ts +4 -1
- package/src/interaction_client/StandardInteractionClient.ts +2 -1
- package/src/navigation/NavigationClient.ts +11 -2
- package/src/packageMetadata.ts +1 -1
package/lib/msal-browser.min.js
CHANGED
|
@@ -1,71 +1,70 @@
|
|
|
1
|
-
/*! @azure/msal-browser v4.
|
|
1
|
+
/*! @azure/msal-browser v4.15.0 2025-07-08 */
|
|
2
2
|
"use strict";!function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e||self).msal={})}(this,(function(e){
|
|
3
|
-
/*! @azure/msal-common v15.
|
|
4
|
-
const t={LIBRARY_NAME:"MSAL.JS",SKU:"msal.js.common",CACHE_PREFIX:"msal",DEFAULT_AUTHORITY:"https://login.microsoftonline.com/common/",DEFAULT_AUTHORITY_HOST:"login.microsoftonline.com",DEFAULT_COMMON_TENANT:"common",ADFS:"adfs",DSTS:"dstsv2",AAD_INSTANCE_DISCOVERY_ENDPT:"https://login.microsoftonline.com/common/discovery/instance?api-version=1.1&authorization_endpoint=",CIAM_AUTH_URL:".ciamlogin.com",AAD_TENANT_DOMAIN_SUFFIX:".onmicrosoft.com",RESOURCE_DELIM:"|",NO_ACCOUNT:"NO_ACCOUNT",CLAIMS:"claims",CONSUMER_UTID:"9188040d-6c67-4c5b-b112-36a304b66dad",OPENID_SCOPE:"openid",PROFILE_SCOPE:"profile",OFFLINE_ACCESS_SCOPE:"offline_access",EMAIL_SCOPE:"email",CODE_GRANT_TYPE:"authorization_code",RT_GRANT_TYPE:"refresh_token",S256_CODE_CHALLENGE_METHOD:"S256",URL_FORM_CONTENT_TYPE:"application/x-www-form-urlencoded;charset=utf-8",AUTHORIZATION_PENDING:"authorization_pending",NOT_DEFINED:"not_defined",EMPTY_STRING:"",NOT_APPLICABLE:"N/A",NOT_AVAILABLE:"Not Available",FORWARD_SLASH:"/",IMDS_ENDPOINT:"http://169.254.169.254/metadata/instance/compute/location",IMDS_VERSION:"2020-06-01",IMDS_TIMEOUT:2e3,AZURE_REGION_AUTO_DISCOVER_FLAG:"TryAutoDetect",REGIONAL_AUTH_PUBLIC_CLOUD_SUFFIX:"login.microsoft.com",KNOWN_PUBLIC_CLOUDS:["login.microsoftonline.com","login.windows.net","login.microsoft.com","sts.windows.net"],SHR_NONCE_VALIDITY:240,INVALID_INSTANCE:"invalid_instance"},r=200,n=400,o=400,i=499,
|
|
5
|
-
/*! @azure/msal-common v15.
|
|
6
|
-
/*! @azure/msal-common v15.
|
|
7
|
-
/*! @azure/msal-common v15.
|
|
8
|
-
/*! @azure/msal-common v15.
|
|
9
|
-
/*! @azure/msal-common v15.
|
|
10
|
-
/*! @azure/msal-common v15.
|
|
11
|
-
/*! @azure/msal-common v15.
|
|
12
|
-
function
|
|
13
|
-
/*! @azure/msal-common v15.
|
|
14
|
-
/*! @azure/msal-common v15.
|
|
15
|
-
/*! @azure/msal-common v15.
|
|
16
|
-
/*! @azure/msal-common v15.
|
|
17
|
-
/*! @azure/msal-common v15.
|
|
18
|
-
/*! @azure/msal-common v15.
|
|
19
|
-
/*! @azure/msal-common v15.
|
|
20
|
-
/*! @azure/msal-common v15.
|
|
21
|
-
/*! @azure/msal-common v15.
|
|
22
|
-
/*! @azure/msal-common v15.
|
|
23
|
-
/*! @azure/msal-common v15.
|
|
24
|
-
/*! @azure/msal-common v15.
|
|
25
|
-
/*! @azure/msal-common v15.
|
|
26
|
-
/*! @azure/msal-common v15.
|
|
27
|
-
/*! @azure/msal-common v15.
|
|
28
|
-
/*! @azure/msal-common v15.
|
|
29
|
-
/*! @azure/msal-common v15.7.1 2025-06-18 */class Fr{constructor(e,t,r,n,o){this.clientId=e,this.cryptoImpl=t,this.commonLogger=r.clone(yt,Ct),this.staticAuthorityOptions=o,this.performanceClient=n}getAllAccounts(e){return this.buildTenantProfiles(this.getAccountsFilteredBy(e||{}),e)}getAccountInfoFilteredBy(e){const t=this.getAllAccounts(e);if(t.length>1){return t.sort((e=>e.idTokenClaims?-1:1))[0]}return 1===t.length?t[0]:null}getBaseAccountInfo(e){const t=this.getAccountsFilteredBy(e);return t.length>0?t[0].getAccountInfo():null}buildTenantProfiles(e,t){return e.flatMap((e=>this.getTenantProfilesFromAccountEntity(e,t?.tenantId,t)))}getTenantedAccountInfoByFilter(e,t,r,n){let o,i=null;if(n&&!this.tenantProfileMatchesFilter(r,n))return null;const a=this.getIdToken(e,t,r.tenantId);return a&&(o=wt(a.secret,this.cryptoImpl.base64Decode),!this.idTokenClaimsMatchTenantProfileFilter(o,n))?null:(i=wr(e,r,o,a?.secret),i)}getTenantProfilesFromAccountEntity(e,t,r){const n=e.getAccountInfo();let o=n.tenantProfiles||new Map;const i=this.getTokenKeys();if(t){const e=o.get(t);if(!e)return[];o=new Map([[t,e]])}const a=[];return o.forEach((e=>{const t=this.getTenantedAccountInfoByFilter(n,i,e,r);t&&a.push(t)})),a}tenantProfileMatchesFilter(e,t){return!(t.localAccountId&&!this.matchLocalAccountIdFromTenantProfile(e,t.localAccountId))&&((!t.name||e.name===t.name)&&(void 0===t.isHomeTenant||e.isHomeTenant===t.isHomeTenant))}idTokenClaimsMatchTenantProfileFilter(e,t){if(t){if(t.localAccountId&&!this.matchLocalAccountIdFromTokenClaims(e,t.localAccountId))return!1;if(t.loginHint&&!this.matchLoginHintFromTokenClaims(e,t.loginHint))return!1;if(t.username&&!this.matchUsername(e.preferred_username,t.username))return!1;if(t.name&&!this.matchName(e,t.name))return!1;if(t.sid&&!this.matchSid(e,t.sid))return!1}return!0}async saveCacheRecord(e,t,r){if(!e)throw gt(Ge);try{e.account&&await this.setAccount(e.account,t),e.idToken&&!1!==r?.idToken&&await this.setIdTokenCredential(e.idToken,t),e.accessToken&&!1!==r?.accessToken&&await this.saveAccessToken(e.accessToken,t),e.refreshToken&&!1!==r?.refreshToken&&await this.setRefreshTokenCredential(e.refreshToken,t),e.appMetadata&&this.setAppMetadata(e.appMetadata)}catch(e){throw this.commonLogger?.error("CacheManager.saveCacheRecord: failed"),e instanceof Error?(this.commonLogger?.errorPii(`CacheManager.saveCacheRecord: ${e.message}`,t),"QuotaExceededError"===e.name||"NS_ERROR_DOM_QUOTA_REACHED"===e.name||e.message.includes("exceeded the quota")?(this.commonLogger?.error("CacheManager.saveCacheRecord: exceeded storage quota",t),new Br(Hr)):new Br(e.name,e.message)):(this.commonLogger?.errorPii(`CacheManager.saveCacheRecord: ${e}`,t),new Br(xr))}}async saveAccessToken(e,t){const r={clientId:e.clientId,credentialType:e.credentialType,environment:e.environment,homeAccountId:e.homeAccountId,realm:e.realm,tokenType:e.tokenType,requestedClaimsHash:e.requestedClaimsHash},n=this.getTokenKeys(),o=mr.fromString(e.target);n.accessToken.forEach((e=>{if(!this.accessTokenKeyMatchesFilter(e,r,!1))return;const n=this.getAccessTokenCredential(e);if(n&&this.credentialMatchesFilter(n,r)){mr.fromString(n.target).intersectingScopeSets(o)&&this.removeAccessToken(e,t)}})),await this.setAccessTokenCredential(e,t)}getAccountsFilteredBy(e){const t=this.getAccountKeys(),r=[];return t.forEach((t=>{if(!this.isAccountKey(t,e.homeAccountId))return;const n=this.getAccount(t,this.commonLogger);if(!n)return;if(e.homeAccountId&&!this.matchHomeAccountId(n,e.homeAccountId))return;if(e.username&&!this.matchUsername(n.username,e.username))return;if(e.environment&&!this.matchEnvironment(n,e.environment))return;if(e.realm&&!this.matchRealm(n,e.realm))return;if(e.nativeAccountId&&!this.matchNativeAccountId(n,e.nativeAccountId))return;if(e.authorityType&&!this.matchAuthorityType(n,e.authorityType))return;const o={localAccountId:e?.localAccountId,name:e?.name},i=n.tenantProfiles?.filter((e=>this.tenantProfileMatchesFilter(e,o)));i&&0===i.length||r.push(n)})),r}isAccountKey(e,t,r){return!(e.split(L).length<3)&&(!(t&&!e.toLowerCase().includes(t.toLowerCase()))&&!(r&&!e.toLowerCase().includes(r.toLowerCase())))}isCredentialKey(e){if(e.split(L).length<6)return!1;const t=e.toLowerCase();if(-1===t.indexOf(H.ID_TOKEN.toLowerCase())&&-1===t.indexOf(H.ACCESS_TOKEN.toLowerCase())&&-1===t.indexOf(H.ACCESS_TOKEN_WITH_AUTH_SCHEME.toLowerCase())&&-1===t.indexOf(H.REFRESH_TOKEN.toLowerCase()))return!1;if(t.indexOf(H.REFRESH_TOKEN.toLowerCase())>-1){const e=`${H.REFRESH_TOKEN}${L}${this.clientId}${L}`,r=`${H.REFRESH_TOKEN}${L}${D}${L}`;if(-1===t.indexOf(e.toLowerCase())&&-1===t.indexOf(r.toLowerCase()))return!1}else if(-1===t.indexOf(this.clientId.toLowerCase()))return!1;return!0}credentialMatchesFilter(e,t){if(t.clientId&&!this.matchClientId(e,t.clientId))return!1;if(t.userAssertionHash&&!this.matchUserAssertionHash(e,t.userAssertionHash))return!1;if("string"==typeof t.homeAccountId&&!this.matchHomeAccountId(e,t.homeAccountId))return!1;if(t.environment&&!this.matchEnvironment(e,t.environment))return!1;if(t.realm&&!this.matchRealm(e,t.realm))return!1;if(t.credentialType&&!this.matchCredentialType(e,t.credentialType))return!1;if(t.familyId&&!this.matchFamilyId(e,t.familyId))return!1;if(t.target&&!this.matchTarget(e,t.target))return!1;if((t.requestedClaimsHash||e.requestedClaimsHash)&&e.requestedClaimsHash!==t.requestedClaimsHash)return!1;if(e.credentialType===H.ACCESS_TOKEN_WITH_AUTH_SCHEME){if(t.tokenType&&!this.matchTokenType(e,t.tokenType))return!1;if(t.tokenType===j.SSH&&t.keyId&&!this.matchKeyId(e,t.keyId))return!1}return!0}getAppMetadataFilteredBy(e){const t=this.getKeys(),r={};return t.forEach((t=>{if(!this.isAppMetadata(t))return;const n=this.getAppMetadata(t);n&&(e.environment&&!this.matchEnvironment(n,e.environment)||e.clientId&&!this.matchClientId(n,e.clientId)||(r[t]=n))})),r}getAuthorityMetadataByAlias(e){const t=this.getAuthorityMetadataKeys();let r=null;return t.forEach((t=>{if(!this.isAuthorityMetadata(t)||-1===t.indexOf(this.clientId))return;const n=this.getAuthorityMetadata(t);n&&-1!==n.aliases.indexOf(e)&&(r=n)})),r}removeAllAccounts(e){this.getAccountKeys().forEach((t=>{this.removeAccount(t,e)}))}removeAccount(e,t){const r=this.getAccount(e,this.commonLogger);r&&(this.removeAccountContext(r,t),this.removeItem(e))}removeAccountContext(e,t){const r=this.getTokenKeys(),n=e.generateAccountId();r.idToken.forEach((e=>{0===e.indexOf(n)&&this.removeIdToken(e)})),r.accessToken.forEach((e=>{0===e.indexOf(n)&&this.removeAccessToken(e,t)})),r.refreshToken.forEach((e=>{0===e.indexOf(n)&&this.removeRefreshToken(e)}))}removeAccessToken(e,t){const r=this.getAccessTokenCredential(e);if(r&&(this.removeItem(e),r.credentialType.toLowerCase()===H.ACCESS_TOKEN_WITH_AUTH_SCHEME.toLowerCase()&&r.tokenType===j.POP)){const e=r.keyId;e&&this.cryptoImpl.removeTokenBindingKey(e).catch((()=>{this.commonLogger.error(`Failed to remove token binding key ${e}`,t),this.performanceClient?.incrementFields({removeTokenBindingKeyFailure:1},t)}))}}removeAppMetadata(){return this.getKeys().forEach((e=>{this.isAppMetadata(e)&&this.removeItem(e)})),!0}readAccountFromCache(e){const t=Er.generateAccountCacheKey(e);return this.getAccount(t,this.commonLogger)}getIdToken(e,t,r,n,o){this.commonLogger.trace("CacheManager - getIdToken called");const i={homeAccountId:e.homeAccountId,environment:e.environment,credentialType:H.ID_TOKEN,clientId:this.clientId,realm:r},a=this.getIdTokensByFilter(i,t),s=a.size;if(s<1)return this.commonLogger.info("CacheManager:getIdToken - No token found"),null;if(s>1){let t=a;if(!r){const r=new Map;a.forEach(((t,n)=>{t.realm===e.tenantId&&r.set(n,t)}));const n=r.size;if(n<1)return this.commonLogger.info("CacheManager:getIdToken - Multiple ID tokens found for account but none match account entity tenant id, returning first result"),a.values().next().value;if(1===n)return this.commonLogger.info("CacheManager:getIdToken - Multiple ID tokens found for account, defaulting to home tenant profile"),r.values().next().value;t=r}return this.commonLogger.info("CacheManager:getIdToken - Multiple matching ID tokens found, clearing them"),t.forEach(((e,t)=>{this.removeIdToken(t)})),n&&o&&n.addFields({multiMatchedID:a.size},o),null}return this.commonLogger.info("CacheManager:getIdToken - Returning ID token"),a.values().next().value}getIdTokensByFilter(e,t){const r=t&&t.idToken||this.getTokenKeys().idToken,n=new Map;return r.forEach((t=>{if(!this.idTokenKeyMatchesFilter(t,{clientId:this.clientId,...e}))return;const r=this.getIdTokenCredential(t);r&&this.credentialMatchesFilter(r,e)&&n.set(t,r)})),n}idTokenKeyMatchesFilter(e,t){const r=e.toLowerCase();return(!t.clientId||-1!==r.indexOf(t.clientId.toLowerCase()))&&(!t.homeAccountId||-1!==r.indexOf(t.homeAccountId.toLowerCase()))}removeIdToken(e){this.removeItem(e)}removeRefreshToken(e){this.removeItem(e)}getAccessToken(e,t,r,n){const o=t.correlationId;this.commonLogger.trace("CacheManager - getAccessToken called",o);const i=mr.createSearchScopes(t.scopes),a=t.authenticationScheme||j.BEARER,s=a&&a.toLowerCase()!==j.BEARER.toLowerCase()?H.ACCESS_TOKEN_WITH_AUTH_SCHEME:H.ACCESS_TOKEN,c={homeAccountId:e.homeAccountId,environment:e.environment,credentialType:s,clientId:this.clientId,realm:n||e.tenantId,target:i,tokenType:a,keyId:t.sshKid,requestedClaimsHash:t.requestedClaimsHash},l=r&&r.accessToken||this.getTokenKeys().accessToken,h=[];l.forEach((e=>{if(this.accessTokenKeyMatchesFilter(e,c,!0)){const t=this.getAccessTokenCredential(e);t&&this.credentialMatchesFilter(t,c)&&h.push(t)}}));const d=h.length;return d<1?(this.commonLogger.info("CacheManager:getAccessToken - No token found",o),null):d>1?(this.commonLogger.info("CacheManager:getAccessToken - Multiple access tokens found, clearing them",o),h.forEach((e=>{this.removeAccessToken(Et(e),o)})),this.performanceClient.addFields({multiMatchedAT:h.length},o),null):(this.commonLogger.info("CacheManager:getAccessToken - Returning access token",o),h[0])}accessTokenKeyMatchesFilter(e,t,r){const n=e.toLowerCase();if(t.clientId&&-1===n.indexOf(t.clientId.toLowerCase()))return!1;if(t.homeAccountId&&-1===n.indexOf(t.homeAccountId.toLowerCase()))return!1;if(t.realm&&-1===n.indexOf(t.realm.toLowerCase()))return!1;if(t.requestedClaimsHash&&-1===n.indexOf(t.requestedClaimsHash.toLowerCase()))return!1;if(t.target){const e=t.target.asArray();for(let t=0;t<e.length;t++){if(r&&!n.includes(e[t].toLowerCase()))return!1;if(!r&&n.includes(e[t].toLowerCase()))return!0}}return!0}getAccessTokensByFilter(e){const t=this.getTokenKeys(),r=[];return t.accessToken.forEach((t=>{if(!this.accessTokenKeyMatchesFilter(t,e,!0))return;const n=this.getAccessTokenCredential(t);n&&this.credentialMatchesFilter(n,e)&&r.push(n)})),r}getRefreshToken(e,t,r,n,o){this.commonLogger.trace("CacheManager - getRefreshToken called");const i=t?D:void 0,a={homeAccountId:e.homeAccountId,environment:e.environment,credentialType:H.REFRESH_TOKEN,clientId:this.clientId,familyId:i},s=r&&r.refreshToken||this.getTokenKeys().refreshToken,c=[];s.forEach((e=>{if(this.refreshTokenKeyMatchesFilter(e,a)){const t=this.getRefreshTokenCredential(e);t&&this.credentialMatchesFilter(t,a)&&c.push(t)}}));const l=c.length;return l<1?(this.commonLogger.info("CacheManager:getRefreshToken - No refresh token found."),null):(l>1&&n&&o&&n.addFields({multiMatchedRT:l},o),this.commonLogger.info("CacheManager:getRefreshToken - returning refresh token"),c[0])}refreshTokenKeyMatchesFilter(e,t){const r=e.toLowerCase();return(!t.familyId||-1!==r.indexOf(t.familyId.toLowerCase()))&&(!(!t.familyId&&t.clientId&&-1===r.indexOf(t.clientId.toLowerCase()))&&(!t.homeAccountId||-1!==r.indexOf(t.homeAccountId.toLowerCase())))}readAppMetadataFromCache(e){const t={environment:e,clientId:this.clientId},r=this.getAppMetadataFilteredBy(t),n=Object.keys(r).map((e=>r[e])),o=n.length;if(o<1)return null;if(o>1)throw gt(Le);return n[0]}isAppMetadataFOCI(e){const t=this.readAppMetadataFromCache(e);return!(!t||t.familyId!==D)}matchHomeAccountId(e,t){return!("string"!=typeof e.homeAccountId||t!==e.homeAccountId)}matchLocalAccountIdFromTokenClaims(e,t){return t===(e.oid||e.sub)}matchLocalAccountIdFromTenantProfile(e,t){return e.localAccountId===t}matchName(e,t){return!(t.toLowerCase()!==e.name?.toLowerCase())}matchUsername(e,t){return!(!e||"string"!=typeof e||t?.toLowerCase()!==e.toLowerCase())}matchUserAssertionHash(e,t){return!(!e.userAssertionHash||t!==e.userAssertionHash)}matchEnvironment(e,t){if(this.staticAuthorityOptions){const r=function(e,t){let r;const n=e.canonicalAuthority;if(n){const o=new Mr(n).getUrlComponents().HostNameAndPort;r=Lr(o,e.cloudDiscoveryMetadata?.metadata,K,t)||Lr(o,Nr.metadata,$,t)||e.knownAuthorities}return r||[]}(this.staticAuthorityOptions,this.commonLogger);if(r.includes(t)&&r.includes(e.environment))return!0}const r=this.getAuthorityMetadataByAlias(t);return!!(r&&r.aliases.indexOf(e.environment)>-1)}matchCredentialType(e,t){return e.credentialType&&t.toLowerCase()===e.credentialType.toLowerCase()}matchClientId(e,t){return!(!e.clientId||t!==e.clientId)}matchFamilyId(e,t){return!(!e.familyId||t!==e.familyId)}matchRealm(e,t){return!(e.realm?.toLowerCase()!==t.toLowerCase())}matchNativeAccountId(e,t){return!(!e.nativeAccountId||t!==e.nativeAccountId)}matchLoginHintFromTokenClaims(e,t){return e.login_hint===t||(e.preferred_username===t||e.upn===t)}matchSid(e,t){return e.sid===t}matchAuthorityType(e,t){return!(!e.authorityType||t.toLowerCase()!==e.authorityType.toLowerCase())}matchTarget(e,t){if(e.credentialType!==H.ACCESS_TOKEN&&e.credentialType!==H.ACCESS_TOKEN_WITH_AUTH_SCHEME||!e.target)return!1;return mr.fromString(e.target).containsScopeSet(t)}matchTokenType(e,t){return!(!e.tokenType||e.tokenType!==t)}matchKeyId(e,t){return!(!e.keyId||e.keyId!==t)}isAppMetadata(e){return-1!==e.indexOf(x)}isAuthorityMetadata(e){return-1!==e.indexOf(B)}generateAuthorityMetadataCacheKey(e){return`${B}-${this.clientId}-${e}`}static toObject(e,t){for(const r in t)e[r]=t[r];return e}}class Kr extends Fr{async setAccount(){throw gt(st)}getAccount(){throw gt(st)}async setIdTokenCredential(){throw gt(st)}getIdTokenCredential(){throw gt(st)}async setAccessTokenCredential(){throw gt(st)}getAccessTokenCredential(){throw gt(st)}async setRefreshTokenCredential(){throw gt(st)}getRefreshTokenCredential(){throw gt(st)}setAppMetadata(){throw gt(st)}getAppMetadata(){throw gt(st)}setServerTelemetry(){throw gt(st)}getServerTelemetry(){throw gt(st)}setAuthorityMetadata(){throw gt(st)}getAuthorityMetadata(){throw gt(st)}getAuthorityMetadataKeys(){throw gt(st)}setThrottlingCache(){throw gt(st)}getThrottlingCache(){throw gt(st)}removeItem(){throw gt(st)}getKeys(){throw gt(st)}getAccountKeys(){throw gt(st)}getTokenKeys(){throw gt(st)}}
|
|
30
|
-
/*! @azure/msal-common v15.7.1 2025-06-18 */const zr={AcquireTokenByCode:"acquireTokenByCode",AcquireTokenByRefreshToken:"acquireTokenByRefreshToken",AcquireTokenSilent:"acquireTokenSilent",AcquireTokenSilentAsync:"acquireTokenSilentAsync",AcquireTokenPopup:"acquireTokenPopup",AcquireTokenPreRedirect:"acquireTokenPreRedirect",AcquireTokenRedirect:"acquireTokenRedirect",CryptoOptsGetPublicKeyThumbprint:"cryptoOptsGetPublicKeyThumbprint",CryptoOptsSignJwt:"cryptoOptsSignJwt",SilentCacheClientAcquireToken:"silentCacheClientAcquireToken",SilentIframeClientAcquireToken:"silentIframeClientAcquireToken",AwaitConcurrentIframe:"awaitConcurrentIframe",SilentRefreshClientAcquireToken:"silentRefreshClientAcquireToken",SsoSilent:"ssoSilent",StandardInteractionClientGetDiscoveredAuthority:"standardInteractionClientGetDiscoveredAuthority",FetchAccountIdWithNativeBroker:"fetchAccountIdWithNativeBroker",NativeInteractionClientAcquireToken:"nativeInteractionClientAcquireToken",BaseClientCreateTokenRequestHeaders:"baseClientCreateTokenRequestHeaders",NetworkClientSendPostRequestAsync:"networkClientSendPostRequestAsync",RefreshTokenClientExecutePostToTokenEndpoint:"refreshTokenClientExecutePostToTokenEndpoint",AuthorizationCodeClientExecutePostToTokenEndpoint:"authorizationCodeClientExecutePostToTokenEndpoint",BrokerHandhshake:"brokerHandshake",AcquireTokenByRefreshTokenInBroker:"acquireTokenByRefreshTokenInBroker",AcquireTokenByBroker:"acquireTokenByBroker",RefreshTokenClientExecuteTokenRequest:"refreshTokenClientExecuteTokenRequest",RefreshTokenClientAcquireToken:"refreshTokenClientAcquireToken",RefreshTokenClientAcquireTokenWithCachedRefreshToken:"refreshTokenClientAcquireTokenWithCachedRefreshToken",RefreshTokenClientAcquireTokenByRefreshToken:"refreshTokenClientAcquireTokenByRefreshToken",RefreshTokenClientCreateTokenRequestBody:"refreshTokenClientCreateTokenRequestBody",AcquireTokenFromCache:"acquireTokenFromCache",SilentFlowClientAcquireCachedToken:"silentFlowClientAcquireCachedToken",SilentFlowClientGenerateResultFromCacheRecord:"silentFlowClientGenerateResultFromCacheRecord",AcquireTokenBySilentIframe:"acquireTokenBySilentIframe",InitializeBaseRequest:"initializeBaseRequest",InitializeSilentRequest:"initializeSilentRequest",InitializeClientApplication:"initializeClientApplication",InitializeCache:"initializeCache",SilentIframeClientTokenHelper:"silentIframeClientTokenHelper",SilentHandlerInitiateAuthRequest:"silentHandlerInitiateAuthRequest",SilentHandlerMonitorIframeForHash:"silentHandlerMonitorIframeForHash",SilentHandlerLoadFrame:"silentHandlerLoadFrame",SilentHandlerLoadFrameSync:"silentHandlerLoadFrameSync",StandardInteractionClientCreateAuthCodeClient:"standardInteractionClientCreateAuthCodeClient",StandardInteractionClientGetClientConfiguration:"standardInteractionClientGetClientConfiguration",StandardInteractionClientInitializeAuthorizationRequest:"standardInteractionClientInitializeAuthorizationRequest",GetAuthCodeUrl:"getAuthCodeUrl",GetStandardParams:"getStandardParams",HandleCodeResponseFromServer:"handleCodeResponseFromServer",HandleCodeResponse:"handleCodeResponse",HandleResponseEar:"handleResponseEar",HandleResponsePlatformBroker:"handleResponsePlatformBroker",HandleResponseCode:"handleResponseCode",UpdateTokenEndpointAuthority:"updateTokenEndpointAuthority",AuthClientAcquireToken:"authClientAcquireToken",AuthClientExecuteTokenRequest:"authClientExecuteTokenRequest",AuthClientCreateTokenRequestBody:"authClientCreateTokenRequestBody",PopTokenGenerateCnf:"popTokenGenerateCnf",PopTokenGenerateKid:"popTokenGenerateKid",HandleServerTokenResponse:"handleServerTokenResponse",DeserializeResponse:"deserializeResponse",AuthorityFactoryCreateDiscoveredInstance:"authorityFactoryCreateDiscoveredInstance",AuthorityResolveEndpointsAsync:"authorityResolveEndpointsAsync",AuthorityResolveEndpointsFromLocalSources:"authorityResolveEndpointsFromLocalSources",AuthorityGetCloudDiscoveryMetadataFromNetwork:"authorityGetCloudDiscoveryMetadataFromNetwork",AuthorityUpdateCloudDiscoveryMetadata:"authorityUpdateCloudDiscoveryMetadata",AuthorityGetEndpointMetadataFromNetwork:"authorityGetEndpointMetadataFromNetwork",AuthorityUpdateEndpointMetadata:"authorityUpdateEndpointMetadata",AuthorityUpdateMetadataWithRegionalInformation:"authorityUpdateMetadataWithRegionalInformation",RegionDiscoveryDetectRegion:"regionDiscoveryDetectRegion",RegionDiscoveryGetRegionFromIMDS:"regionDiscoveryGetRegionFromIMDS",RegionDiscoveryGetCurrentVersion:"regionDiscoveryGetCurrentVersion",AcquireTokenByCodeAsync:"acquireTokenByCodeAsync",GetEndpointMetadataFromNetwork:"getEndpointMetadataFromNetwork",GetCloudDiscoveryMetadataFromNetworkMeasurement:"getCloudDiscoveryMetadataFromNetworkMeasurement",HandleRedirectPromiseMeasurement:"handleRedirectPromise",HandleNativeRedirectPromiseMeasurement:"handleNativeRedirectPromise",UpdateCloudDiscoveryMetadataMeasurement:"updateCloudDiscoveryMetadataMeasurement",UsernamePasswordClientAcquireToken:"usernamePasswordClientAcquireToken",NativeMessageHandlerHandshake:"nativeMessageHandlerHandshake",NativeGenerateAuthResult:"nativeGenerateAuthResult",RemoveHiddenIframe:"removeHiddenIframe",ClearTokensAndKeysWithClaims:"clearTokensAndKeysWithClaims",CacheManagerGetRefreshToken:"cacheManagerGetRefreshToken",ImportExistingCache:"importExistingCache",SetUserData:"setUserData",LocalStorageUpdated:"localStorageUpdated",GeneratePkceCodes:"generatePkceCodes",GenerateCodeVerifier:"generateCodeVerifier",GenerateCodeChallengeFromVerifier:"generateCodeChallengeFromVerifier",Sha256Digest:"sha256Digest",GetRandomValues:"getRandomValues",GenerateHKDF:"generateHKDF",GenerateBaseKey:"generateBaseKey",Base64Decode:"base64Decode",UrlEncodeArr:"urlEncodeArr",Encrypt:"encrypt",Decrypt:"decrypt",GenerateEarKey:"generateEarKey",DecryptEarResponse:"decryptEarResponse"},Gr=new Map([[zr.AcquireTokenByCode,"ATByCode"],[zr.AcquireTokenByRefreshToken,"ATByRT"],[zr.AcquireTokenSilent,"ATS"],[zr.AcquireTokenSilentAsync,"ATSAsync"],[zr.AcquireTokenPopup,"ATPopup"],[zr.AcquireTokenRedirect,"ATRedirect"],[zr.CryptoOptsGetPublicKeyThumbprint,"CryptoGetPKThumb"],[zr.CryptoOptsSignJwt,"CryptoSignJwt"],[zr.SilentCacheClientAcquireToken,"SltCacheClientAT"],[zr.SilentIframeClientAcquireToken,"SltIframeClientAT"],[zr.SilentRefreshClientAcquireToken,"SltRClientAT"],[zr.SsoSilent,"SsoSlt"],[zr.StandardInteractionClientGetDiscoveredAuthority,"StdIntClientGetDiscAuth"],[zr.FetchAccountIdWithNativeBroker,"FetchAccIdWithNtvBroker"],[zr.NativeInteractionClientAcquireToken,"NtvIntClientAT"],[zr.BaseClientCreateTokenRequestHeaders,"BaseClientCreateTReqHead"],[zr.NetworkClientSendPostRequestAsync,"NetClientSendPost"],[zr.RefreshTokenClientExecutePostToTokenEndpoint,"RTClientExecPost"],[zr.AuthorizationCodeClientExecutePostToTokenEndpoint,"AuthCodeClientExecPost"],[zr.BrokerHandhshake,"BrokerHandshake"],[zr.AcquireTokenByRefreshTokenInBroker,"ATByRTInBroker"],[zr.AcquireTokenByBroker,"ATByBroker"],[zr.RefreshTokenClientExecuteTokenRequest,"RTClientExecTReq"],[zr.RefreshTokenClientAcquireToken,"RTClientAT"],[zr.RefreshTokenClientAcquireTokenWithCachedRefreshToken,"RTClientATWithCachedRT"],[zr.RefreshTokenClientAcquireTokenByRefreshToken,"RTClientATByRT"],[zr.RefreshTokenClientCreateTokenRequestBody,"RTClientCreateTReqBody"],[zr.AcquireTokenFromCache,"ATFromCache"],[zr.SilentFlowClientAcquireCachedToken,"SltFlowClientATCached"],[zr.SilentFlowClientGenerateResultFromCacheRecord,"SltFlowClientGenResFromCache"],[zr.AcquireTokenBySilentIframe,"ATBySltIframe"],[zr.InitializeBaseRequest,"InitBaseReq"],[zr.InitializeSilentRequest,"InitSltReq"],[zr.InitializeClientApplication,"InitClientApplication"],[zr.InitializeCache,"InitCache"],[zr.ImportExistingCache,"importCache"],[zr.SetUserData,"setUserData"],[zr.LocalStorageUpdated,"localStorageUpdated"],[zr.SilentIframeClientTokenHelper,"SIClientTHelper"],[zr.SilentHandlerInitiateAuthRequest,"SHandlerInitAuthReq"],[zr.SilentHandlerMonitorIframeForHash,"SltHandlerMonitorIframeForHash"],[zr.SilentHandlerLoadFrame,"SHandlerLoadFrame"],[zr.SilentHandlerLoadFrameSync,"SHandlerLoadFrameSync"],[zr.StandardInteractionClientCreateAuthCodeClient,"StdIntClientCreateAuthCodeClient"],[zr.StandardInteractionClientGetClientConfiguration,"StdIntClientGetClientConf"],[zr.StandardInteractionClientInitializeAuthorizationRequest,"StdIntClientInitAuthReq"],[zr.GetAuthCodeUrl,"GetAuthCodeUrl"],[zr.HandleCodeResponseFromServer,"HandleCodeResFromServer"],[zr.HandleCodeResponse,"HandleCodeResp"],[zr.HandleResponseEar,"HandleRespEar"],[zr.HandleResponseCode,"HandleRespCode"],[zr.HandleResponsePlatformBroker,"HandleRespPlatBroker"],[zr.UpdateTokenEndpointAuthority,"UpdTEndpointAuth"],[zr.AuthClientAcquireToken,"AuthClientAT"],[zr.AuthClientExecuteTokenRequest,"AuthClientExecTReq"],[zr.AuthClientCreateTokenRequestBody,"AuthClientCreateTReqBody"],[zr.PopTokenGenerateCnf,"PopTGenCnf"],[zr.PopTokenGenerateKid,"PopTGenKid"],[zr.HandleServerTokenResponse,"HandleServerTRes"],[zr.DeserializeResponse,"DeserializeRes"],[zr.AuthorityFactoryCreateDiscoveredInstance,"AuthFactCreateDiscInst"],[zr.AuthorityResolveEndpointsAsync,"AuthResolveEndpointsAsync"],[zr.AuthorityResolveEndpointsFromLocalSources,"AuthResolveEndpointsFromLocal"],[zr.AuthorityGetCloudDiscoveryMetadataFromNetwork,"AuthGetCDMetaFromNet"],[zr.AuthorityUpdateCloudDiscoveryMetadata,"AuthUpdCDMeta"],[zr.AuthorityGetEndpointMetadataFromNetwork,"AuthUpdCDMetaFromNet"],[zr.AuthorityUpdateEndpointMetadata,"AuthUpdEndpointMeta"],[zr.AuthorityUpdateMetadataWithRegionalInformation,"AuthUpdMetaWithRegInfo"],[zr.RegionDiscoveryDetectRegion,"RegDiscDetectReg"],[zr.RegionDiscoveryGetRegionFromIMDS,"RegDiscGetRegFromIMDS"],[zr.RegionDiscoveryGetCurrentVersion,"RegDiscGetCurrentVer"],[zr.AcquireTokenByCodeAsync,"ATByCodeAsync"],[zr.GetEndpointMetadataFromNetwork,"GetEndpointMetaFromNet"],[zr.GetCloudDiscoveryMetadataFromNetworkMeasurement,"GetCDMetaFromNet"],[zr.HandleRedirectPromiseMeasurement,"HandleRedirectPromise"],[zr.HandleNativeRedirectPromiseMeasurement,"HandleNtvRedirectPromise"],[zr.UpdateCloudDiscoveryMetadataMeasurement,"UpdateCDMeta"],[zr.UsernamePasswordClientAcquireToken,"UserPassClientAT"],[zr.NativeMessageHandlerHandshake,"NtvMsgHandlerHandshake"],[zr.NativeGenerateAuthResult,"NtvGenAuthRes"],[zr.RemoveHiddenIframe,"RemoveHiddenIframe"],[zr.ClearTokensAndKeysWithClaims,"ClearTAndKeysWithClaims"],[zr.CacheManagerGetRefreshToken,"CacheManagerGetRT"],[zr.GeneratePkceCodes,"GenPkceCodes"],[zr.GenerateCodeVerifier,"GenCodeVerifier"],[zr.GenerateCodeChallengeFromVerifier,"GenCodeChallengeFromVerifier"],[zr.Sha256Digest,"Sha256Digest"],[zr.GetRandomValues,"GetRandomValues"],[zr.GenerateHKDF,"genHKDF"],[zr.GenerateBaseKey,"genBaseKey"],[zr.Base64Decode,"b64Decode"],[zr.UrlEncodeArr,"urlEncArr"],[zr.Encrypt,"encrypt"],[zr.Decrypt,"decrypt"],[zr.GenerateEarKey,"genEarKey"],[zr.DecryptEarResponse,"decryptEarResp"]]),$r=1,Qr=2,jr=new Set(["accessTokenSize","durationMs","idTokenSize","matsSilentStatus","matsHttpStatus","refreshTokenSize","queuedTimeMs","startTimeMs","status","multiMatchedAT","multiMatchedID","multiMatchedRT","unencryptedCacheCount","encryptedCacheExpiredCount"]);
|
|
31
|
-
/*! @azure/msal-common v15.
|
|
32
|
-
class
|
|
33
|
-
/*! @azure/msal-common v15.
|
|
34
|
-
/*! @azure/msal-common v15.
|
|
35
|
-
/*! @azure/msal-common v15.
|
|
36
|
-
/*! @azure/msal-common v15.
|
|
37
|
-
function
|
|
38
|
-
/*! @azure/msal-common v15.
|
|
39
|
-
const
|
|
40
|
-
/*! @azure/msal-common v15.
|
|
41
|
-
class
|
|
42
|
-
/*! @azure/msal-common v15.
|
|
43
|
-
class
|
|
44
|
-
/*! @azure/msal-common v15.
|
|
3
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
4
|
+
const t={LIBRARY_NAME:"MSAL.JS",SKU:"msal.js.common",CACHE_PREFIX:"msal",DEFAULT_AUTHORITY:"https://login.microsoftonline.com/common/",DEFAULT_AUTHORITY_HOST:"login.microsoftonline.com",DEFAULT_COMMON_TENANT:"common",ADFS:"adfs",DSTS:"dstsv2",AAD_INSTANCE_DISCOVERY_ENDPT:"https://login.microsoftonline.com/common/discovery/instance?api-version=1.1&authorization_endpoint=",CIAM_AUTH_URL:".ciamlogin.com",AAD_TENANT_DOMAIN_SUFFIX:".onmicrosoft.com",RESOURCE_DELIM:"|",NO_ACCOUNT:"NO_ACCOUNT",CLAIMS:"claims",CONSUMER_UTID:"9188040d-6c67-4c5b-b112-36a304b66dad",OPENID_SCOPE:"openid",PROFILE_SCOPE:"profile",OFFLINE_ACCESS_SCOPE:"offline_access",EMAIL_SCOPE:"email",CODE_GRANT_TYPE:"authorization_code",RT_GRANT_TYPE:"refresh_token",S256_CODE_CHALLENGE_METHOD:"S256",URL_FORM_CONTENT_TYPE:"application/x-www-form-urlencoded;charset=utf-8",AUTHORIZATION_PENDING:"authorization_pending",NOT_DEFINED:"not_defined",EMPTY_STRING:"",NOT_APPLICABLE:"N/A",NOT_AVAILABLE:"Not Available",FORWARD_SLASH:"/",IMDS_ENDPOINT:"http://169.254.169.254/metadata/instance/compute/location",IMDS_VERSION:"2020-06-01",IMDS_TIMEOUT:2e3,AZURE_REGION_AUTO_DISCOVER_FLAG:"TryAutoDetect",REGIONAL_AUTH_PUBLIC_CLOUD_SUFFIX:"login.microsoft.com",KNOWN_PUBLIC_CLOUDS:["login.microsoftonline.com","login.windows.net","login.microsoft.com","sts.windows.net"],SHR_NONCE_VALIDITY:240,INVALID_INSTANCE:"invalid_instance"},r=200,n=400,o=400,i=499,s=500,a=599,c=[t.OPENID_SCOPE,t.PROFILE_SCOPE,t.OFFLINE_ACCESS_SCOPE],l=[...c,t.EMAIL_SCOPE],h="Content-Type",d="Content-Length",u="Retry-After",g="X-AnchorMailbox",p="WWW-Authenticate",m="Authentication-Info",f="x-ms-request-id",y="x-ms-httpver",C="active-account-filters",v="common",w="organizations",I="consumers",T="access_token",A="xms_cc",k={LOGIN:"login",SELECT_ACCOUNT:"select_account",CONSENT:"consent",NONE:"none",CREATE:"create",NO_SESSION:"no_session"},S="code",b="id_token token refresh_token",E={QUERY:"query",FRAGMENT:"fragment"},R="query",_="authorization_code",P="refresh_token",M="MSSTS",O="ADFS",N="Generic",q="-",L=".",U={ID_TOKEN:"IdToken",ACCESS_TOKEN:"AccessToken",ACCESS_TOKEN_WITH_AUTH_SCHEME:"AccessToken_With_AuthScheme",REFRESH_TOKEN:"RefreshToken"},H="appmetadata",x="1",D="authority-metadata",B=86400,F="config",K="cache",z="network",G="hardcoded_values",$={SCHEMA_VERSION:5,MAX_LAST_HEADER_BYTES:330,MAX_CACHED_ERRORS:50,CACHE_KEY:"server-telemetry",CATEGORY_SEPARATOR:"|",VALUE_SEPARATOR:",",OVERFLOW_TRUE:"1",OVERFLOW_FALSE:"0",UNKNOWN_ERROR:"unknown_error"},Q={BEARER:"Bearer",POP:"pop",SSH:"ssh-cert"},j=60,W=3600,V="throttling",J="retry-after, h429",Y="invalid_grant",X="client_mismatch",Z="1",ee="3",te="4",re="2",ne="4",oe="5",ie="0",se="1",ae="2",ce="3",le="4",he={Jwt:"JWT",Jwk:"JWK",Pop:"pop"},de="unexpected_error",ue="post_request_failed";var ge=Object.freeze({__proto__:null,postRequestFailed:ue,unexpectedError:de});
|
|
5
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const pe={[de]:"Unexpected error in authentication.",[ue]:"Post request failed from the network, could be a 4xx/5xx or a network unavailability. Please check the exact error code for details."},me={unexpectedError:{code:de,desc:pe[de]},postRequestFailed:{code:ue,desc:pe[ue]}};class fe extends Error{constructor(e,r,n){super(r?`${e}: ${r}`:e),Object.setPrototypeOf(this,fe.prototype),this.errorCode=e||t.EMPTY_STRING,this.errorMessage=r||t.EMPTY_STRING,this.subError=n||t.EMPTY_STRING,this.name="AuthError"}setCorrelationId(e){this.correlationId=e}}function ye(e,t){return new fe(e,t?`${pe[e]} ${t}`:pe[e])}
|
|
6
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const Ce="client_info_decoding_error",ve="client_info_empty_error",we="token_parsing_error",Ie="null_or_empty_token",Te="endpoints_resolution_error",Ae="network_error",ke="openid_config_error",Se="hash_not_deserialized",be="invalid_state",Ee="state_mismatch",Re="state_not_found",_e="nonce_mismatch",Pe="auth_time_not_found",Me="max_age_transpired",Oe="multiple_matching_tokens",Ne="multiple_matching_accounts",qe="multiple_matching_appMetadata",Le="request_cannot_be_made",Ue="cannot_remove_empty_scope",He="cannot_append_scopeset",xe="empty_input_scopeset",De="device_code_polling_cancelled",Be="device_code_expired",Fe="device_code_unknown_error",Ke="no_account_in_silent_request",ze="invalid_cache_record",Ge="invalid_cache_environment",$e="no_account_found",Qe="no_crypto_object",je="unexpected_credential_type",We="invalid_assertion",Ve="invalid_client_credential",Je="token_refresh_required",Ye="user_timeout_reached",Xe="token_claims_cnf_required_for_signedjwt",Ze="authorization_code_missing_from_server_response",et="binding_key_not_removed",tt="end_session_endpoint_not_supported",rt="key_id_missing",nt="no_network_connectivity",ot="user_canceled",it="missing_tenant_id_error",st="method_not_implemented",at="nested_app_auth_bridge_disabled";var ct=Object.freeze({__proto__:null,authTimeNotFound:Pe,authorizationCodeMissingFromServerResponse:Ze,bindingKeyNotRemoved:et,cannotAppendScopeSet:He,cannotRemoveEmptyScope:Ue,clientInfoDecodingError:Ce,clientInfoEmptyError:ve,deviceCodeExpired:Be,deviceCodePollingCancelled:De,deviceCodeUnknownError:Fe,emptyInputScopeSet:xe,endSessionEndpointNotSupported:tt,endpointResolutionError:Te,hashNotDeserialized:Se,invalidAssertion:We,invalidCacheEnvironment:Ge,invalidCacheRecord:ze,invalidClientCredential:Ve,invalidState:be,keyIdMissing:rt,maxAgeTranspired:Me,methodNotImplemented:st,missingTenantIdError:it,multipleMatchingAccounts:Ne,multipleMatchingAppMetadata:qe,multipleMatchingTokens:Oe,nestedAppAuthBridgeDisabled:at,networkError:Ae,noAccountFound:$e,noAccountInSilentRequest:Ke,noCryptoObject:Qe,noNetworkConnectivity:nt,nonceMismatch:_e,nullOrEmptyToken:Ie,openIdConfigError:ke,requestCannotBeMade:Le,stateMismatch:Ee,stateNotFound:Re,tokenClaimsCnfRequiredForSignedJwt:Xe,tokenParsingError:we,tokenRefreshRequired:Je,unexpectedCredentialType:je,userCanceled:ot,userTimeoutReached:Ye});
|
|
7
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const lt={[Ce]:"The client info could not be parsed/decoded correctly",[ve]:"The client info was empty",[we]:"Token cannot be parsed",[Ie]:"The token is null or empty",[Te]:"Endpoints cannot be resolved",[Ae]:"Network request failed",[ke]:"Could not retrieve endpoints. Check your authority and verify the .well-known/openid-configuration endpoint returns the required endpoints.",[Se]:"The hash parameters could not be deserialized",[be]:"State was not the expected format",[Ee]:"State mismatch error",[Re]:"State not found",[_e]:"Nonce mismatch error",[Pe]:"Max Age was requested and the ID token is missing the auth_time variable. auth_time is an optional claim and is not enabled by default - it must be enabled. See https://aka.ms/msaljs/optional-claims for more information.",[Me]:"Max Age is set to 0, or too much time has elapsed since the last end-user authentication.",[Oe]:"The cache contains multiple tokens satisfying the requirements. Call AcquireToken again providing more requirements such as authority or account.",[Ne]:"The cache contains multiple accounts satisfying the given parameters. Please pass more info to obtain the correct account",[qe]:"The cache contains multiple appMetadata satisfying the given parameters. Please pass more info to obtain the correct appMetadata",[Le]:"Token request cannot be made without authorization code or refresh token.",[Ue]:"Cannot remove null or empty scope from ScopeSet",[He]:"Cannot append ScopeSet",[xe]:"Empty input ScopeSet cannot be processed",[De]:"Caller has cancelled token endpoint polling during device code flow by setting DeviceCodeRequest.cancel = true.",[Be]:"Device code is expired.",[Fe]:"Device code stopped polling for unknown reasons.",[Ke]:"Please pass an account object, silent flow is not supported without account information",[ze]:"Cache record object was null or undefined.",[Ge]:"Invalid environment when attempting to create cache entry",[$e]:"No account found in cache for given key.",[Qe]:"No crypto object detected.",[je]:"Unexpected credential type.",[We]:"Client assertion must meet requirements described in https://tools.ietf.org/html/rfc7515",[Ve]:"Client credential (secret, certificate, or assertion) must not be empty when creating a confidential client. An application should at most have one credential",[Je]:"Cannot return token from cache because it must be refreshed. This may be due to one of the following reasons: forceRefresh parameter is set to true, claims have been requested, there is no cached access token or it is expired.",[Ye]:"User defined timeout for device code polling reached",[Xe]:"Cannot generate a POP jwt if the token_claims are not populated",[Ze]:"Server response does not contain an authorization code to proceed",[et]:"Could not remove the credential's binding key from storage.",[tt]:"The provided authority does not support logout",[rt]:"A keyId value is missing from the requested bound token's cache record and is required to match the token to it's stored binding key.",[nt]:"No network connectivity. Check your internet connection.",[ot]:"User cancelled the flow.",[it]:"A tenant id - not common, organizations, or consumers - must be specified when using the client_credentials flow.",[st]:"This method has not been implemented",[at]:"The nested app auth bridge is disabled"},ht={clientInfoDecodingError:{code:Ce,desc:lt[Ce]},clientInfoEmptyError:{code:ve,desc:lt[ve]},tokenParsingError:{code:we,desc:lt[we]},nullOrEmptyToken:{code:Ie,desc:lt[Ie]},endpointResolutionError:{code:Te,desc:lt[Te]},networkError:{code:Ae,desc:lt[Ae]},unableToGetOpenidConfigError:{code:ke,desc:lt[ke]},hashNotDeserialized:{code:Se,desc:lt[Se]},invalidStateError:{code:be,desc:lt[be]},stateMismatchError:{code:Ee,desc:lt[Ee]},stateNotFoundError:{code:Re,desc:lt[Re]},nonceMismatchError:{code:_e,desc:lt[_e]},authTimeNotFoundError:{code:Pe,desc:lt[Pe]},maxAgeTranspired:{code:Me,desc:lt[Me]},multipleMatchingTokens:{code:Oe,desc:lt[Oe]},multipleMatchingAccounts:{code:Ne,desc:lt[Ne]},multipleMatchingAppMetadata:{code:qe,desc:lt[qe]},tokenRequestCannotBeMade:{code:Le,desc:lt[Le]},removeEmptyScopeError:{code:Ue,desc:lt[Ue]},appendScopeSetError:{code:He,desc:lt[He]},emptyInputScopeSetError:{code:xe,desc:lt[xe]},DeviceCodePollingCancelled:{code:De,desc:lt[De]},DeviceCodeExpired:{code:Be,desc:lt[Be]},DeviceCodeUnknownError:{code:Fe,desc:lt[Fe]},NoAccountInSilentRequest:{code:Ke,desc:lt[Ke]},invalidCacheRecord:{code:ze,desc:lt[ze]},invalidCacheEnvironment:{code:Ge,desc:lt[Ge]},noAccountFound:{code:$e,desc:lt[$e]},noCryptoObj:{code:Qe,desc:lt[Qe]},unexpectedCredentialType:{code:je,desc:lt[je]},invalidAssertion:{code:We,desc:lt[We]},invalidClientCredential:{code:Ve,desc:lt[Ve]},tokenRefreshRequired:{code:Je,desc:lt[Je]},userTimeoutReached:{code:Ye,desc:lt[Ye]},tokenClaimsRequired:{code:Xe,desc:lt[Xe]},noAuthorizationCodeFromServer:{code:Ze,desc:lt[Ze]},bindingKeyNotRemovedError:{code:et,desc:lt[et]},logoutNotSupported:{code:tt,desc:lt[tt]},keyIdMissing:{code:rt,desc:lt[rt]},noNetworkConnectivity:{code:nt,desc:lt[nt]},userCanceledError:{code:ot,desc:lt[ot]},missingTenantIdError:{code:it,desc:lt[it]},nestedAppAuthBridgeDisabled:{code:at,desc:lt[at]}};class dt extends fe{constructor(e,t){super(e,t?`${lt[e]}: ${t}`:lt[e]),this.name="ClientAuthError",Object.setPrototypeOf(this,dt.prototype)}}function ut(e,t){return new dt(e,t)}
|
|
8
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const gt={createNewGuid:()=>{throw ut(st)},base64Decode:()=>{throw ut(st)},base64Encode:()=>{throw ut(st)},base64UrlEncode:()=>{throw ut(st)},encodeKid:()=>{throw ut(st)},async getPublicKeyThumbprint(){throw ut(st)},async removeTokenBindingKey(){throw ut(st)},async clearKeystore(){throw ut(st)},async signJwt(){throw ut(st)},async hashString(){throw ut(st)}};
|
|
9
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */var pt;e.LogLevel=void 0,(pt=e.LogLevel||(e.LogLevel={}))[pt.Error=0]="Error",pt[pt.Warning=1]="Warning",pt[pt.Info=2]="Info",pt[pt.Verbose=3]="Verbose",pt[pt.Trace=4]="Trace";class mt{constructor(r,n,o){this.level=e.LogLevel.Info;const i=r||mt.createDefaultLoggerOptions();this.localCallback=i.loggerCallback||(()=>{}),this.piiLoggingEnabled=i.piiLoggingEnabled||!1,this.level="number"==typeof i.logLevel?i.logLevel:e.LogLevel.Info,this.correlationId=i.correlationId||t.EMPTY_STRING,this.packageName=n||t.EMPTY_STRING,this.packageVersion=o||t.EMPTY_STRING}static createDefaultLoggerOptions(){return{loggerCallback:()=>{},piiLoggingEnabled:!1,logLevel:e.LogLevel.Info}}clone(e,t,r){return new mt({loggerCallback:this.localCallback,piiLoggingEnabled:this.piiLoggingEnabled,logLevel:this.level,correlationId:r||this.correlationId},e,t)}logMessage(t,r){if(r.logLevel>this.level||!this.piiLoggingEnabled&&r.containsPii)return;const n=`${`[${(new Date).toUTCString()}] : [${r.correlationId||this.correlationId||""}]`} : ${this.packageName}@${this.packageVersion} : ${e.LogLevel[r.logLevel]} - ${t}`;this.executeCallback(r.logLevel,n,r.containsPii||!1)}executeCallback(e,t,r){this.localCallback&&this.localCallback(e,t,r)}error(r,n){this.logMessage(r,{logLevel:e.LogLevel.Error,containsPii:!1,correlationId:n||t.EMPTY_STRING})}errorPii(r,n){this.logMessage(r,{logLevel:e.LogLevel.Error,containsPii:!0,correlationId:n||t.EMPTY_STRING})}warning(r,n){this.logMessage(r,{logLevel:e.LogLevel.Warning,containsPii:!1,correlationId:n||t.EMPTY_STRING})}warningPii(r,n){this.logMessage(r,{logLevel:e.LogLevel.Warning,containsPii:!0,correlationId:n||t.EMPTY_STRING})}info(r,n){this.logMessage(r,{logLevel:e.LogLevel.Info,containsPii:!1,correlationId:n||t.EMPTY_STRING})}infoPii(r,n){this.logMessage(r,{logLevel:e.LogLevel.Info,containsPii:!0,correlationId:n||t.EMPTY_STRING})}verbose(r,n){this.logMessage(r,{logLevel:e.LogLevel.Verbose,containsPii:!1,correlationId:n||t.EMPTY_STRING})}verbosePii(r,n){this.logMessage(r,{logLevel:e.LogLevel.Verbose,containsPii:!0,correlationId:n||t.EMPTY_STRING})}trace(r,n){this.logMessage(r,{logLevel:e.LogLevel.Trace,containsPii:!1,correlationId:n||t.EMPTY_STRING})}tracePii(r,n){this.logMessage(r,{logLevel:e.LogLevel.Trace,containsPii:!0,correlationId:n||t.EMPTY_STRING})}isPiiLoggingEnabled(){return this.piiLoggingEnabled||!1}}
|
|
10
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const ft="@azure/msal-common",yt="15.8.1",Ct={None:"none",AzurePublic:"https://login.microsoftonline.com",AzurePpe:"https://login.windows-ppe.net",AzureChina:"https://login.chinacloudapi.cn",AzureGermany:"https://login.microsoftonline.de",AzureUsGovernment:"https://login.microsoftonline.us"};
|
|
11
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
12
|
+
function vt(e,t){const r=function(e){if(!e)throw ut(Ie);const t=/^([^\.\s]*)\.([^\.\s]+)\.([^\.\s]*)$/.exec(e);if(!t||t.length<4)throw ut(we);return t[2]}(e);try{const e=t(r);return JSON.parse(e)}catch(e){throw ut(we)}}function wt(e,t){if(0===t||Date.now()-3e5>e+t)throw ut(Me)}
|
|
13
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function It(){return Math.round((new Date).getTime()/1e3)}function Tt(e){return e.getTime()/1e3}function At(e){return e?new Date(1e3*Number(e)):new Date}function kt(e,t){const r=Number(e)||0;return It()+t>r}function St(e){return Number(e)>It()}
|
|
14
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function bt(e){return[Mt(e),Ot(e),Nt(e),qt(e),Lt(e)].join(q).toLowerCase()}function Et(e,t,r,n,o){return{credentialType:U.ID_TOKEN,homeAccountId:e,environment:t,clientId:n,secret:r,realm:o}}function Rt(e,t,r,n,o,i,s,a,c,l,h,d,u,g,p){const m={homeAccountId:e,credentialType:U.ACCESS_TOKEN,secret:r,cachedAt:It().toString(),expiresOn:s.toString(),extendedExpiresOn:a.toString(),environment:t,clientId:n,realm:o,target:i,tokenType:h||Q.BEARER};if(d&&(m.userAssertionHash=d),l&&(m.refreshOn=l.toString()),g&&(m.requestedClaims=g,m.requestedClaimsHash=p),m.tokenType?.toLowerCase()!==Q.BEARER.toLowerCase())switch(m.credentialType=U.ACCESS_TOKEN_WITH_AUTH_SCHEME,m.tokenType){case Q.POP:const e=vt(r,c);if(!e?.cnf?.kid)throw ut(Xe);m.keyId=e.cnf.kid;break;case Q.SSH:m.keyId=u}return m}function _t(e,t,r,n,o,i,s){const a={credentialType:U.REFRESH_TOKEN,homeAccountId:e,environment:t,clientId:n,secret:r};return i&&(a.userAssertionHash=i),o&&(a.familyId=o),s&&(a.expiresOn=s.toString()),a}function Pt(e){return e.hasOwnProperty("homeAccountId")&&e.hasOwnProperty("environment")&&e.hasOwnProperty("credentialType")&&e.hasOwnProperty("clientId")&&e.hasOwnProperty("secret")}function Mt(e){return[e.homeAccountId,e.environment].join(q).toLowerCase()}function Ot(e){const t=e.credentialType===U.REFRESH_TOKEN&&e.familyId||e.clientId;return[e.credentialType,t,e.realm||""].join(q).toLowerCase()}function Nt(e){return(e.target||"").toLowerCase()}function qt(e){return(e.requestedClaimsHash||"").toLowerCase()}function Lt(e){return e.tokenType&&e.tokenType.toLowerCase()!==Q.BEARER.toLowerCase()?e.tokenType.toLowerCase():""}function Ut(){return It()+B}function Ht(e,t,r){e.authorization_endpoint=t.authorization_endpoint,e.token_endpoint=t.token_endpoint,e.end_session_endpoint=t.end_session_endpoint,e.issuer=t.issuer,e.endpointsFromNetwork=r,e.jwks_uri=t.jwks_uri}function xt(e,t,r){e.aliases=t.aliases,e.preferred_cache=t.preferred_cache,e.preferred_network=t.preferred_network,e.aliasesFromNetwork=r}function Dt(e){return e.expiresAt<=It()}
|
|
15
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const Bt="redirect_uri_empty",Ft="claims_request_parsing_error",Kt="authority_uri_insecure",zt="url_parse_error",Gt="empty_url_error",$t="empty_input_scopes_error",Qt="invalid_claims",jt="token_request_empty",Wt="logout_request_empty",Vt="invalid_code_challenge_method",Jt="pkce_params_missing",Yt="invalid_cloud_discovery_metadata",Xt="invalid_authority_metadata",Zt="untrusted_authority",er="missing_ssh_jwk",tr="missing_ssh_kid",rr="missing_nonce_authentication_header",nr="invalid_authentication_header",or="cannot_set_OIDCOptions",ir="cannot_allow_platform_broker",sr="authority_mismatch";var ar=Object.freeze({__proto__:null,authorityMismatch:sr,authorityUriInsecure:Kt,cannotAllowPlatformBroker:ir,cannotSetOIDCOptions:or,claimsRequestParsingError:Ft,emptyInputScopesError:$t,invalidAuthenticationHeader:nr,invalidAuthorityMetadata:Xt,invalidClaims:Qt,invalidCloudDiscoveryMetadata:Yt,invalidCodeChallengeMethod:Vt,logoutRequestEmpty:Wt,missingNonceAuthenticationHeader:rr,missingSshJwk:er,missingSshKid:tr,pkceParamsMissing:Jt,redirectUriEmpty:Bt,tokenRequestEmpty:jt,untrustedAuthority:Zt,urlEmptyError:Gt,urlParseError:zt});
|
|
16
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const cr={[Bt]:"A redirect URI is required for all calls, and none has been set.",[Ft]:"Could not parse the given claims request object.",[Kt]:"Authority URIs must use https. Please see here for valid authority configuration options: https://docs.microsoft.com/en-us/azure/active-directory/develop/msal-js-initializing-client-applications#configuration-options",[zt]:"URL could not be parsed into appropriate segments.",[Gt]:"URL was empty or null.",[$t]:"Scopes cannot be passed as null, undefined or empty array because they are required to obtain an access token.",[Qt]:"Given claims parameter must be a stringified JSON object.",[jt]:"Token request was empty and not found in cache.",[Wt]:"The logout request was null or undefined.",[Vt]:'code_challenge_method passed is invalid. Valid values are "plain" and "S256".',[Jt]:"Both params: code_challenge and code_challenge_method are to be passed if to be sent in the request",[Yt]:"Invalid cloudDiscoveryMetadata provided. Must be a stringified JSON object containing tenant_discovery_endpoint and metadata fields",[Xt]:"Invalid authorityMetadata provided. Must by a stringified JSON object containing authorization_endpoint, token_endpoint, issuer fields.",[Zt]:"The provided authority is not a trusted authority. Please include this authority in the knownAuthorities config parameter.",[er]:"Missing sshJwk in SSH certificate request. A stringified JSON Web Key is required when using the SSH authentication scheme.",[tr]:"Missing sshKid in SSH certificate request. A string that uniquely identifies the public SSH key is required when using the SSH authentication scheme.",[rr]:"Unable to find an authentication header containing server nonce. Either the Authentication-Info or WWW-Authenticate headers must be present in order to obtain a server nonce.",[nr]:"Invalid authentication header provided",[or]:"Cannot set OIDCOptions parameter. Please change the protocol mode to OIDC or use a non-Microsoft authority.",[ir]:"Cannot set allowPlatformBroker parameter to true when not in AAD protocol mode.",[sr]:"Authority mismatch error. Authority provided in login request or PublicClientApplication config does not match the environment of the provided account. Please use a matching account or make an interactive request to login to this authority."},lr={redirectUriNotSet:{code:Bt,desc:cr[Bt]},claimsRequestParsingError:{code:Ft,desc:cr[Ft]},authorityUriInsecure:{code:Kt,desc:cr[Kt]},urlParseError:{code:zt,desc:cr[zt]},urlEmptyError:{code:Gt,desc:cr[Gt]},emptyScopesError:{code:$t,desc:cr[$t]},invalidClaimsRequest:{code:Qt,desc:cr[Qt]},tokenRequestEmptyError:{code:jt,desc:cr[jt]},logoutRequestEmptyError:{code:Wt,desc:cr[Wt]},invalidCodeChallengeMethod:{code:Vt,desc:cr[Vt]},invalidCodeChallengeParams:{code:Jt,desc:cr[Jt]},invalidCloudDiscoveryMetadata:{code:Yt,desc:cr[Yt]},invalidAuthorityMetadata:{code:Xt,desc:cr[Xt]},untrustedAuthority:{code:Zt,desc:cr[Zt]},missingSshJwk:{code:er,desc:cr[er]},missingSshKid:{code:tr,desc:cr[tr]},missingNonceAuthenticationHeader:{code:rr,desc:cr[rr]},invalidAuthenticationHeader:{code:nr,desc:cr[nr]},cannotSetOIDCOptions:{code:or,desc:cr[or]},cannotAllowPlatformBroker:{code:ir,desc:cr[ir]},authorityMismatch:{code:sr,desc:cr[sr]}};class hr extends fe{constructor(e){super(e,cr[e]),this.name="ClientConfigurationError",Object.setPrototypeOf(this,hr.prototype)}}function dr(e){return new hr(e)}
|
|
17
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class ur{static isEmptyObj(e){if(e)try{const t=JSON.parse(e);return 0===Object.keys(t).length}catch(e){}return!0}static startsWith(e,t){return 0===e.indexOf(t)}static endsWith(e,t){return e.length>=t.length&&e.lastIndexOf(t)===e.length-t.length}static queryStringToObject(e){const t={},r=e.split("&"),n=e=>decodeURIComponent(e.replace(/\+/g," "));return r.forEach((e=>{if(e.trim()){const[r,o]=e.split(/=(.+)/g,2);r&&o&&(t[n(r)]=n(o))}})),t}static trimArrayEntries(e){return e.map((e=>e.trim()))}static removeEmptyStringsFromArray(e){return e.filter((e=>!!e))}static jsonParseHelper(e){try{return JSON.parse(e)}catch(e){return null}}static matchPattern(e,t){return new RegExp(e.replace(/\\/g,"\\\\").replace(/\*/g,"[^ ]*").replace(/\?/g,"\\?")).test(t)}}
|
|
18
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class gr{constructor(e){const t=e?ur.trimArrayEntries([...e]):[],r=t?ur.removeEmptyStringsFromArray(t):[];if(!r||!r.length)throw dr($t);this.scopes=new Set,r.forEach((e=>this.scopes.add(e)))}static fromString(e){const r=(e||t.EMPTY_STRING).split(" ");return new gr(r)}static createSearchScopes(e){const r=new gr(e);return r.containsOnlyOIDCScopes()?r.removeScope(t.OFFLINE_ACCESS_SCOPE):r.removeOIDCScopes(),r}containsScope(e){const t=this.printScopesLowerCase().split(" "),r=new gr(t);return!!e&&r.scopes.has(e.toLowerCase())}containsScopeSet(e){return!(!e||e.scopes.size<=0)&&(this.scopes.size>=e.scopes.size&&e.asArray().every((e=>this.containsScope(e))))}containsOnlyOIDCScopes(){let e=0;return l.forEach((t=>{this.containsScope(t)&&(e+=1)})),this.scopes.size===e}appendScope(e){e&&this.scopes.add(e.trim())}appendScopes(e){try{e.forEach((e=>this.appendScope(e)))}catch(e){throw ut(He)}}removeScope(e){if(!e)throw ut(Ue);this.scopes.delete(e.trim())}removeOIDCScopes(){l.forEach((e=>{this.scopes.delete(e)}))}unionScopeSets(e){if(!e)throw ut(xe);const t=new Set;return e.scopes.forEach((e=>t.add(e.toLowerCase()))),this.scopes.forEach((e=>t.add(e.toLowerCase()))),t}intersectingScopeSets(e){if(!e)throw ut(xe);e.containsOnlyOIDCScopes()||e.removeOIDCScopes();const t=this.unionScopeSets(e),r=e.getScopeCount(),n=this.getScopeCount();return t.size<n+r}getScopeCount(){return this.scopes.size}asArray(){const e=[];return this.scopes.forEach((t=>e.push(t))),e}printScopes(){if(this.scopes){return this.asArray().join(" ")}return t.EMPTY_STRING}printScopesLowerCase(){return this.printScopes().toLowerCase()}}
|
|
19
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function pr(e,t){if(!e)throw ut(ve);try{const r=t(e);return JSON.parse(r)}catch(e){throw ut(Ce)}}function mr(e){if(!e)throw ut(Ce);const r=e.split(L,2);return{uid:r[0],utid:r.length<2?t.EMPTY_STRING:r[1]}}
|
|
20
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function fr(e,t){return!!e&&!!t&&e===t.split(".")[1]}function yr(e,t,r,n){if(n){const{oid:t,sub:r,tid:o,name:i,tfp:s,acr:a}=n,c=o||s||a||"";return{tenantId:c,localAccountId:t||r||"",name:i,isHomeTenant:fr(c,e)}}return{tenantId:r,localAccountId:t,isHomeTenant:fr(r,e)}}function Cr(e,t,r,n){let o=e;if(t){const{isHomeTenant:r,...n}=t;o={...e,...n}}if(r){const{isHomeTenant:t,...i}=yr(e.homeAccountId,e.localAccountId,e.tenantId,r);return o={...o,...i,idTokenClaims:r,idToken:n},o}return o}
|
|
21
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const vr=0,wr=1,Ir=2,Tr=3;
|
|
22
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function Ar(e){if(e){return e.tid||e.tfp||e.acr||null}return null}
|
|
23
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const kr={AAD:"AAD",OIDC:"OIDC",EAR:"EAR"};
|
|
24
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class Sr{generateAccountId(){return[this.homeAccountId,this.environment].join(q).toLowerCase()}generateAccountKey(){return Sr.generateAccountCacheKey({homeAccountId:this.homeAccountId,environment:this.environment,tenantId:this.realm,username:this.username,localAccountId:this.localAccountId})}getAccountInfo(){return{homeAccountId:this.homeAccountId,environment:this.environment,tenantId:this.realm,username:this.username,localAccountId:this.localAccountId,name:this.name,nativeAccountId:this.nativeAccountId,authorityType:this.authorityType,tenantProfiles:new Map((this.tenantProfiles||[]).map((e=>[e.tenantId,e])))}}isSingleTenant(){return!this.tenantProfiles}static generateAccountCacheKey(e){const t=e.homeAccountId.split(".")[1];return[e.homeAccountId,e.environment||"",t||e.tenantId||""].join(q).toLowerCase()}static createAccount(e,t,r){const n=new Sr;let o;t.authorityType===wr?n.authorityType=O:t.protocolMode===kr.OIDC?n.authorityType=N:n.authorityType=M,e.clientInfo&&r&&(o=pr(e.clientInfo,r)),n.clientInfo=e.clientInfo,n.homeAccountId=e.homeAccountId,n.nativeAccountId=e.nativeAccountId;const i=e.environment||t&&t.getPreferredCache();if(!i)throw ut(Ge);n.environment=i,n.realm=o?.utid||Ar(e.idTokenClaims)||"",n.localAccountId=o?.uid||e.idTokenClaims?.oid||e.idTokenClaims?.sub||"";const s=e.idTokenClaims?.preferred_username||e.idTokenClaims?.upn,a=e.idTokenClaims?.emails?e.idTokenClaims.emails[0]:null;if(n.username=s||a||"",n.name=e.idTokenClaims?.name||"",n.cloudGraphHostName=e.cloudGraphHostName,n.msGraphHost=e.msGraphHost,e.tenantProfiles)n.tenantProfiles=e.tenantProfiles;else{const t=yr(e.homeAccountId,n.localAccountId,n.realm,e.idTokenClaims);n.tenantProfiles=[t]}return n}static createFromAccountInfo(e,t,r){const n=new Sr;return n.authorityType=e.authorityType||N,n.homeAccountId=e.homeAccountId,n.localAccountId=e.localAccountId,n.nativeAccountId=e.nativeAccountId,n.realm=e.tenantId,n.environment=e.environment,n.username=e.username,n.name=e.name,n.cloudGraphHostName=t,n.msGraphHost=r,n.tenantProfiles=Array.from(e.tenantProfiles?.values()||[]),n}static generateHomeAccountId(e,t,r,n,o){if(t!==wr&&t!==Ir){if(e)try{const t=pr(e,n.base64Decode);if(t.uid&&t.utid)return`${t.uid}.${t.utid}`}catch(e){}r.warning("No client info in response")}return o?.sub||""}static isAccountEntity(e){return!!e&&(e.hasOwnProperty("homeAccountId")&&e.hasOwnProperty("environment")&&e.hasOwnProperty("realm")&&e.hasOwnProperty("localAccountId")&&e.hasOwnProperty("username")&&e.hasOwnProperty("authorityType"))}static accountInfoIsEqual(e,t,r){if(!e||!t)return!1;let n=!0;if(r){const r=e.idTokenClaims||{},o=t.idTokenClaims||{};n=r.iat===o.iat&&r.nonce===o.nonce}return e.homeAccountId===t.homeAccountId&&e.localAccountId===t.localAccountId&&e.username===t.username&&e.tenantId===t.tenantId&&e.environment===t.environment&&e.nativeAccountId===t.nativeAccountId&&n}}
|
|
25
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function br(e){return e.startsWith("#/")?e.substring(2):e.startsWith("#")||e.startsWith("?")?e.substring(1):e}function Er(e){if(!e||e.indexOf("=")<0)return null;try{const t=br(e),r=Object.fromEntries(new URLSearchParams(t));if(r.code||r.ear_jwe||r.error||r.error_description||r.state)return r}catch(e){throw ut(Se)}return null}function Rr(e,t=!0,r){const n=new Array;return e.forEach(((e,o)=>{!t&&r&&o in r?n.push(`${o}=${e}`):n.push(`${o}=${encodeURIComponent(e)}`)})),n.join("&")}
|
|
26
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class _r{get urlString(){return this._urlString}constructor(e){if(this._urlString=e,!this._urlString)throw dr(Gt);e.includes("#")||(this._urlString=_r.canonicalizeUri(e))}static canonicalizeUri(e){if(e){let t=e.toLowerCase();return ur.endsWith(t,"?")?t=t.slice(0,-1):ur.endsWith(t,"?/")&&(t=t.slice(0,-2)),ur.endsWith(t,"/")||(t+="/"),t}return e}validateAsUri(){let e;try{e=this.getUrlComponents()}catch(e){throw dr(zt)}if(!e.HostNameAndPort||!e.PathSegments)throw dr(zt);if(!e.Protocol||"https:"!==e.Protocol.toLowerCase())throw dr(Kt)}static appendQueryString(e,t){return t?e.indexOf("?")<0?`${e}?${t}`:`${e}&${t}`:e}static removeHashFromUrl(e){return _r.canonicalizeUri(e.split("#")[0])}replaceTenantPath(e){const t=this.getUrlComponents(),r=t.PathSegments;return!e||0===r.length||r[0]!==v&&r[0]!==w||(r[0]=e),_r.constructAuthorityUriFromObject(t)}getUrlComponents(){const e=RegExp("^(([^:/?#]+):)?(//([^/?#]*))?([^?#]*)(\\?([^#]*))?(#(.*))?"),t=this.urlString.match(e);if(!t)throw dr(zt);const r={Protocol:t[1],HostNameAndPort:t[4],AbsolutePath:t[5],QueryString:t[7]};let n=r.AbsolutePath.split("/");return n=n.filter((e=>e&&e.length>0)),r.PathSegments=n,r.QueryString&&r.QueryString.endsWith("/")&&(r.QueryString=r.QueryString.substring(0,r.QueryString.length-1)),r}static getDomainFromUrl(e){const t=RegExp("^([^:/?#]+://)?([^/?#]*)"),r=e.match(t);if(!r)throw dr(zt);return r[2]}static getAbsoluteUrl(e,r){if(e[0]===t.FORWARD_SLASH){const t=new _r(r).getUrlComponents();return t.Protocol+"//"+t.HostNameAndPort+e}return e}static constructAuthorityUriFromObject(e){return new _r(e.Protocol+"//"+e.HostNameAndPort+"/"+e.PathSegments.join("/"))}static hashContainsKnownProperties(e){return!!Er(e)}}
|
|
27
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const Pr={"login.microsoftonline.com":{token_endpoint:"https://login.microsoftonline.com/{tenantid}/oauth2/v2.0/token",jwks_uri:"https://login.microsoftonline.com/{tenantid}/discovery/v2.0/keys",issuer:"https://login.microsoftonline.com/{tenantid}/v2.0",authorization_endpoint:"https://login.microsoftonline.com/{tenantid}/oauth2/v2.0/authorize",end_session_endpoint:"https://login.microsoftonline.com/{tenantid}/oauth2/v2.0/logout"},"login.chinacloudapi.cn":{token_endpoint:"https://login.chinacloudapi.cn/{tenantid}/oauth2/v2.0/token",jwks_uri:"https://login.chinacloudapi.cn/{tenantid}/discovery/v2.0/keys",issuer:"https://login.partner.microsoftonline.cn/{tenantid}/v2.0",authorization_endpoint:"https://login.chinacloudapi.cn/{tenantid}/oauth2/v2.0/authorize",end_session_endpoint:"https://login.chinacloudapi.cn/{tenantid}/oauth2/v2.0/logout"},"login.microsoftonline.us":{token_endpoint:"https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/token",jwks_uri:"https://login.microsoftonline.us/{tenantid}/discovery/v2.0/keys",issuer:"https://login.microsoftonline.us/{tenantid}/v2.0",authorization_endpoint:"https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/authorize",end_session_endpoint:"https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/logout"}},Mr={metadata:[{preferred_network:"login.microsoftonline.com",preferred_cache:"login.windows.net",aliases:["login.microsoftonline.com","login.windows.net","login.microsoft.com","sts.windows.net"]},{preferred_network:"login.partner.microsoftonline.cn",preferred_cache:"login.partner.microsoftonline.cn",aliases:["login.partner.microsoftonline.cn","login.chinacloudapi.cn"]},{preferred_network:"login.microsoftonline.de",preferred_cache:"login.microsoftonline.de",aliases:["login.microsoftonline.de"]},{preferred_network:"login.microsoftonline.us",preferred_cache:"login.microsoftonline.us",aliases:["login.microsoftonline.us","login.usgovcloudapi.net"]},{preferred_network:"login-us.microsoftonline.com",preferred_cache:"login-us.microsoftonline.com",aliases:["login-us.microsoftonline.com"]}]},Or=new Set;function Nr(e,t,r,n){if(n?.trace(`getAliasesFromMetadata called with source: ${r}`),e&&t){const o=qr(t,e);if(o)return n?.trace(`getAliasesFromMetadata: found cloud discovery metadata in ${r}, returning aliases`),o.aliases;n?.trace(`getAliasesFromMetadata: did not find cloud discovery metadata in ${r}`)}return null}function qr(e,t){for(let r=0;r<e.length;r++){const n=e[r];if(n.aliases.includes(t))return n}return null}
|
|
28
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */Mr.metadata.forEach((e=>{e.aliases.forEach((e=>{Or.add(e)}))}));const Lr="cache_quota_exceeded",Ur="cache_error_unknown",Hr={[Lr]:"Exceeded cache storage capacity.",[Ur]:"Unexpected error occurred when using cache storage."};class xr extends fe{constructor(e,t){const r=t||(Hr[e]?Hr[e]:Hr[Ur]);super(`${e}: ${r}`),Object.setPrototypeOf(this,xr.prototype),this.name="CacheError",this.errorCode=e,this.errorMessage=r}}function Dr(e){return e instanceof Error?"QuotaExceededError"===e.name||"NS_ERROR_DOM_QUOTA_REACHED"===e.name||e.message.includes("exceeded the quota")?new xr(Lr):new xr(e.name,e.message):new xr(Ur)}
|
|
29
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class Br{constructor(e,t,r,n,o){this.clientId=e,this.cryptoImpl=t,this.commonLogger=r.clone(ft,yt),this.staticAuthorityOptions=o,this.performanceClient=n}getAllAccounts(e,t){return this.buildTenantProfiles(this.getAccountsFilteredBy(e,t),t,e)}getAccountInfoFilteredBy(e,t){const r=this.getAllAccounts(e,t);if(r.length>1){return r.sort((e=>e.idTokenClaims?-1:1))[0]}return 1===r.length?r[0]:null}getBaseAccountInfo(e,t){const r=this.getAccountsFilteredBy(e,t);return r.length>0?r[0].getAccountInfo():null}buildTenantProfiles(e,t,r){return e.flatMap((e=>this.getTenantProfilesFromAccountEntity(e,t,r?.tenantId,r)))}getTenantedAccountInfoByFilter(e,t,r,n,o){let i,s=null;if(o&&!this.tenantProfileMatchesFilter(r,o))return null;const a=this.getIdToken(e,n,t,r.tenantId);return a&&(i=vt(a.secret,this.cryptoImpl.base64Decode),!this.idTokenClaimsMatchTenantProfileFilter(i,o))?null:(s=Cr(e,r,i,a?.secret),s)}getTenantProfilesFromAccountEntity(e,t,r,n){const o=e.getAccountInfo();let i=o.tenantProfiles||new Map;const s=this.getTokenKeys();if(r){const e=i.get(r);if(!e)return[];i=new Map([[r,e]])}const a=[];return i.forEach((e=>{const r=this.getTenantedAccountInfoByFilter(o,s,e,t,n);r&&a.push(r)})),a}tenantProfileMatchesFilter(e,t){return!(t.localAccountId&&!this.matchLocalAccountIdFromTenantProfile(e,t.localAccountId))&&((!t.name||e.name===t.name)&&(void 0===t.isHomeTenant||e.isHomeTenant===t.isHomeTenant))}idTokenClaimsMatchTenantProfileFilter(e,t){if(t){if(t.localAccountId&&!this.matchLocalAccountIdFromTokenClaims(e,t.localAccountId))return!1;if(t.loginHint&&!this.matchLoginHintFromTokenClaims(e,t.loginHint))return!1;if(t.username&&!this.matchUsername(e.preferred_username,t.username))return!1;if(t.name&&!this.matchName(e,t.name))return!1;if(t.sid&&!this.matchSid(e,t.sid))return!1}return!0}async saveCacheRecord(e,t,r){if(!e)throw ut(ze);try{e.account&&await this.setAccount(e.account,t),e.idToken&&!1!==r?.idToken&&await this.setIdTokenCredential(e.idToken,t),e.accessToken&&!1!==r?.accessToken&&await this.saveAccessToken(e.accessToken,t),e.refreshToken&&!1!==r?.refreshToken&&await this.setRefreshTokenCredential(e.refreshToken,t),e.appMetadata&&this.setAppMetadata(e.appMetadata,t)}catch(e){throw this.commonLogger?.error("CacheManager.saveCacheRecord: failed"),e instanceof fe?e:Dr(e)}}async saveAccessToken(e,t){const r={clientId:e.clientId,credentialType:e.credentialType,environment:e.environment,homeAccountId:e.homeAccountId,realm:e.realm,tokenType:e.tokenType,requestedClaimsHash:e.requestedClaimsHash},n=this.getTokenKeys(),o=gr.fromString(e.target);n.accessToken.forEach((e=>{if(!this.accessTokenKeyMatchesFilter(e,r,!1))return;const n=this.getAccessTokenCredential(e,t);if(n&&this.credentialMatchesFilter(n,r)){gr.fromString(n.target).intersectingScopeSets(o)&&this.removeAccessToken(e,t)}})),await this.setAccessTokenCredential(e,t)}getAccountsFilteredBy(e,t){const r=this.getAccountKeys(),n=[];return r.forEach((r=>{if(!this.isAccountKey(r,e.homeAccountId))return;const o=this.getAccount(r,t);if(!o)return;if(e.homeAccountId&&!this.matchHomeAccountId(o,e.homeAccountId))return;if(e.username&&!this.matchUsername(o.username,e.username))return;if(e.environment&&!this.matchEnvironment(o,e.environment))return;if(e.realm&&!this.matchRealm(o,e.realm))return;if(e.nativeAccountId&&!this.matchNativeAccountId(o,e.nativeAccountId))return;if(e.authorityType&&!this.matchAuthorityType(o,e.authorityType))return;const i={localAccountId:e?.localAccountId,name:e?.name},s=o.tenantProfiles?.filter((e=>this.tenantProfileMatchesFilter(e,i)));s&&0===s.length||n.push(o)})),n}isAccountKey(e,t,r){return!(e.split(q).length<3)&&(!(t&&!e.toLowerCase().includes(t.toLowerCase()))&&!(r&&!e.toLowerCase().includes(r.toLowerCase())))}isCredentialKey(e){if(e.split(q).length<6)return!1;const t=e.toLowerCase();if(-1===t.indexOf(U.ID_TOKEN.toLowerCase())&&-1===t.indexOf(U.ACCESS_TOKEN.toLowerCase())&&-1===t.indexOf(U.ACCESS_TOKEN_WITH_AUTH_SCHEME.toLowerCase())&&-1===t.indexOf(U.REFRESH_TOKEN.toLowerCase()))return!1;if(t.indexOf(U.REFRESH_TOKEN.toLowerCase())>-1){const e=`${U.REFRESH_TOKEN}${q}${this.clientId}${q}`,r=`${U.REFRESH_TOKEN}${q}${x}${q}`;if(-1===t.indexOf(e.toLowerCase())&&-1===t.indexOf(r.toLowerCase()))return!1}else if(-1===t.indexOf(this.clientId.toLowerCase()))return!1;return!0}credentialMatchesFilter(e,t){if(t.clientId&&!this.matchClientId(e,t.clientId))return!1;if(t.userAssertionHash&&!this.matchUserAssertionHash(e,t.userAssertionHash))return!1;if("string"==typeof t.homeAccountId&&!this.matchHomeAccountId(e,t.homeAccountId))return!1;if(t.environment&&!this.matchEnvironment(e,t.environment))return!1;if(t.realm&&!this.matchRealm(e,t.realm))return!1;if(t.credentialType&&!this.matchCredentialType(e,t.credentialType))return!1;if(t.familyId&&!this.matchFamilyId(e,t.familyId))return!1;if(t.target&&!this.matchTarget(e,t.target))return!1;if((t.requestedClaimsHash||e.requestedClaimsHash)&&e.requestedClaimsHash!==t.requestedClaimsHash)return!1;if(e.credentialType===U.ACCESS_TOKEN_WITH_AUTH_SCHEME){if(t.tokenType&&!this.matchTokenType(e,t.tokenType))return!1;if(t.tokenType===Q.SSH&&t.keyId&&!this.matchKeyId(e,t.keyId))return!1}return!0}getAppMetadataFilteredBy(e){const t=this.getKeys(),r={};return t.forEach((t=>{if(!this.isAppMetadata(t))return;const n=this.getAppMetadata(t);n&&(e.environment&&!this.matchEnvironment(n,e.environment)||e.clientId&&!this.matchClientId(n,e.clientId)||(r[t]=n))})),r}getAuthorityMetadataByAlias(e){const t=this.getAuthorityMetadataKeys();let r=null;return t.forEach((t=>{if(!this.isAuthorityMetadata(t)||-1===t.indexOf(this.clientId))return;const n=this.getAuthorityMetadata(t);n&&-1!==n.aliases.indexOf(e)&&(r=n)})),r}removeAllAccounts(e){this.getAccountKeys().forEach((t=>{this.removeAccount(t,e)}))}removeAccount(e,t){const r=this.getAccount(e,t);r&&(this.removeAccountContext(r,t),this.removeItem(e,t))}removeAccountContext(e,t){const r=this.getTokenKeys(),n=e.generateAccountId();r.idToken.forEach((e=>{0===e.indexOf(n)&&this.removeIdToken(e,t)})),r.accessToken.forEach((e=>{0===e.indexOf(n)&&this.removeAccessToken(e,t)})),r.refreshToken.forEach((e=>{0===e.indexOf(n)&&this.removeRefreshToken(e,t)}))}removeAccessToken(e,t){const r=this.getAccessTokenCredential(e,t);if(this.removeItem(e,t),this.performanceClient.incrementFields({accessTokensRemoved:1},t),!r||r.credentialType.toLowerCase()!==U.ACCESS_TOKEN_WITH_AUTH_SCHEME.toLowerCase()||r.tokenType!==Q.POP)return;const n=r.keyId;n&&this.cryptoImpl.removeTokenBindingKey(n).catch((()=>{this.commonLogger.error(`Failed to remove token binding key ${n}`,t),this.performanceClient?.incrementFields({removeTokenBindingKeyFailure:1},t)}))}removeAppMetadata(e){return this.getKeys().forEach((t=>{this.isAppMetadata(t)&&this.removeItem(t,e)})),!0}readAccountFromCache(e,t){const r=Sr.generateAccountCacheKey(e);return this.getAccount(r,t)}getIdToken(e,t,r,n,o){this.commonLogger.trace("CacheManager - getIdToken called");const i={homeAccountId:e.homeAccountId,environment:e.environment,credentialType:U.ID_TOKEN,clientId:this.clientId,realm:n},s=this.getIdTokensByFilter(i,t,r),a=s.size;if(a<1)return this.commonLogger.info("CacheManager:getIdToken - No token found"),null;if(a>1){let r=s;if(!n){const t=new Map;s.forEach(((r,n)=>{r.realm===e.tenantId&&t.set(n,r)}));const n=t.size;if(n<1)return this.commonLogger.info("CacheManager:getIdToken - Multiple ID tokens found for account but none match account entity tenant id, returning first result"),s.values().next().value;if(1===n)return this.commonLogger.info("CacheManager:getIdToken - Multiple ID tokens found for account, defaulting to home tenant profile"),t.values().next().value;r=t}return this.commonLogger.info("CacheManager:getIdToken - Multiple matching ID tokens found, clearing them"),r.forEach(((e,r)=>{this.removeIdToken(r,t)})),o&&t&&o.addFields({multiMatchedID:s.size},t),null}return this.commonLogger.info("CacheManager:getIdToken - Returning ID token"),s.values().next().value}getIdTokensByFilter(e,t,r){const n=r&&r.idToken||this.getTokenKeys().idToken,o=new Map;return n.forEach((r=>{if(!this.idTokenKeyMatchesFilter(r,{clientId:this.clientId,...e}))return;const n=this.getIdTokenCredential(r,t);n&&this.credentialMatchesFilter(n,e)&&o.set(r,n)})),o}idTokenKeyMatchesFilter(e,t){const r=e.toLowerCase();return(!t.clientId||-1!==r.indexOf(t.clientId.toLowerCase()))&&(!t.homeAccountId||-1!==r.indexOf(t.homeAccountId.toLowerCase()))}removeIdToken(e,t){this.removeItem(e,t)}removeRefreshToken(e,t){this.removeItem(e,t)}getAccessToken(e,t,r,n){const o=t.correlationId;this.commonLogger.trace("CacheManager - getAccessToken called",o);const i=gr.createSearchScopes(t.scopes),s=t.authenticationScheme||Q.BEARER,a=s&&s.toLowerCase()!==Q.BEARER.toLowerCase()?U.ACCESS_TOKEN_WITH_AUTH_SCHEME:U.ACCESS_TOKEN,c={homeAccountId:e.homeAccountId,environment:e.environment,credentialType:a,clientId:this.clientId,realm:n||e.tenantId,target:i,tokenType:s,keyId:t.sshKid,requestedClaimsHash:t.requestedClaimsHash},l=r&&r.accessToken||this.getTokenKeys().accessToken,h=[];l.forEach((e=>{if(this.accessTokenKeyMatchesFilter(e,c,!0)){const t=this.getAccessTokenCredential(e,o);t&&this.credentialMatchesFilter(t,c)&&h.push(t)}}));const d=h.length;return d<1?(this.commonLogger.info("CacheManager:getAccessToken - No token found",o),null):d>1?(this.commonLogger.info("CacheManager:getAccessToken - Multiple access tokens found, clearing them",o),h.forEach((e=>{this.removeAccessToken(bt(e),o)})),this.performanceClient.addFields({multiMatchedAT:h.length},o),null):(this.commonLogger.info("CacheManager:getAccessToken - Returning access token",o),h[0])}accessTokenKeyMatchesFilter(e,t,r){const n=e.toLowerCase();if(t.clientId&&-1===n.indexOf(t.clientId.toLowerCase()))return!1;if(t.homeAccountId&&-1===n.indexOf(t.homeAccountId.toLowerCase()))return!1;if(t.realm&&-1===n.indexOf(t.realm.toLowerCase()))return!1;if(t.requestedClaimsHash&&-1===n.indexOf(t.requestedClaimsHash.toLowerCase()))return!1;if(t.target){const e=t.target.asArray();for(let t=0;t<e.length;t++){if(r&&!n.includes(e[t].toLowerCase()))return!1;if(!r&&n.includes(e[t].toLowerCase()))return!0}}return!0}getAccessTokensByFilter(e,t){const r=this.getTokenKeys(),n=[];return r.accessToken.forEach((r=>{if(!this.accessTokenKeyMatchesFilter(r,e,!0))return;const o=this.getAccessTokenCredential(r,t);o&&this.credentialMatchesFilter(o,e)&&n.push(o)})),n}getRefreshToken(e,t,r,n,o){this.commonLogger.trace("CacheManager - getRefreshToken called");const i=t?x:void 0,s={homeAccountId:e.homeAccountId,environment:e.environment,credentialType:U.REFRESH_TOKEN,clientId:this.clientId,familyId:i},a=n&&n.refreshToken||this.getTokenKeys().refreshToken,c=[];a.forEach((e=>{if(this.refreshTokenKeyMatchesFilter(e,s)){const t=this.getRefreshTokenCredential(e,r);t&&this.credentialMatchesFilter(t,s)&&c.push(t)}}));const l=c.length;return l<1?(this.commonLogger.info("CacheManager:getRefreshToken - No refresh token found."),null):(l>1&&o&&r&&o.addFields({multiMatchedRT:l},r),this.commonLogger.info("CacheManager:getRefreshToken - returning refresh token"),c[0])}refreshTokenKeyMatchesFilter(e,t){const r=e.toLowerCase();return(!t.familyId||-1!==r.indexOf(t.familyId.toLowerCase()))&&(!(!t.familyId&&t.clientId&&-1===r.indexOf(t.clientId.toLowerCase()))&&(!t.homeAccountId||-1!==r.indexOf(t.homeAccountId.toLowerCase())))}readAppMetadataFromCache(e){const t={environment:e,clientId:this.clientId},r=this.getAppMetadataFilteredBy(t),n=Object.keys(r).map((e=>r[e])),o=n.length;if(o<1)return null;if(o>1)throw ut(qe);return n[0]}isAppMetadataFOCI(e){const t=this.readAppMetadataFromCache(e);return!(!t||t.familyId!==x)}matchHomeAccountId(e,t){return!("string"!=typeof e.homeAccountId||t!==e.homeAccountId)}matchLocalAccountIdFromTokenClaims(e,t){return t===(e.oid||e.sub)}matchLocalAccountIdFromTenantProfile(e,t){return e.localAccountId===t}matchName(e,t){return!(t.toLowerCase()!==e.name?.toLowerCase())}matchUsername(e,t){return!(!e||"string"!=typeof e||t?.toLowerCase()!==e.toLowerCase())}matchUserAssertionHash(e,t){return!(!e.userAssertionHash||t!==e.userAssertionHash)}matchEnvironment(e,t){if(this.staticAuthorityOptions){const r=function(e,t){let r;const n=e.canonicalAuthority;if(n){const o=new _r(n).getUrlComponents().HostNameAndPort;r=Nr(o,e.cloudDiscoveryMetadata?.metadata,F,t)||Nr(o,Mr.metadata,G,t)||e.knownAuthorities}return r||[]}(this.staticAuthorityOptions,this.commonLogger);if(r.includes(t)&&r.includes(e.environment))return!0}const r=this.getAuthorityMetadataByAlias(t);return!!(r&&r.aliases.indexOf(e.environment)>-1)}matchCredentialType(e,t){return e.credentialType&&t.toLowerCase()===e.credentialType.toLowerCase()}matchClientId(e,t){return!(!e.clientId||t!==e.clientId)}matchFamilyId(e,t){return!(!e.familyId||t!==e.familyId)}matchRealm(e,t){return!(e.realm?.toLowerCase()!==t.toLowerCase())}matchNativeAccountId(e,t){return!(!e.nativeAccountId||t!==e.nativeAccountId)}matchLoginHintFromTokenClaims(e,t){return e.login_hint===t||(e.preferred_username===t||e.upn===t)}matchSid(e,t){return e.sid===t}matchAuthorityType(e,t){return!(!e.authorityType||t.toLowerCase()!==e.authorityType.toLowerCase())}matchTarget(e,t){if(e.credentialType!==U.ACCESS_TOKEN&&e.credentialType!==U.ACCESS_TOKEN_WITH_AUTH_SCHEME||!e.target)return!1;return gr.fromString(e.target).containsScopeSet(t)}matchTokenType(e,t){return!(!e.tokenType||e.tokenType!==t)}matchKeyId(e,t){return!(!e.keyId||e.keyId!==t)}isAppMetadata(e){return-1!==e.indexOf(H)}isAuthorityMetadata(e){return-1!==e.indexOf(D)}generateAuthorityMetadataCacheKey(e){return`${D}-${this.clientId}-${e}`}static toObject(e,t){for(const r in t)e[r]=t[r];return e}}class Fr extends Br{async setAccount(){throw ut(st)}getAccount(){throw ut(st)}async setIdTokenCredential(){throw ut(st)}getIdTokenCredential(){throw ut(st)}async setAccessTokenCredential(){throw ut(st)}getAccessTokenCredential(){throw ut(st)}async setRefreshTokenCredential(){throw ut(st)}getRefreshTokenCredential(){throw ut(st)}setAppMetadata(){throw ut(st)}getAppMetadata(){throw ut(st)}setServerTelemetry(){throw ut(st)}getServerTelemetry(){throw ut(st)}setAuthorityMetadata(){throw ut(st)}getAuthorityMetadata(){throw ut(st)}getAuthorityMetadataKeys(){throw ut(st)}setThrottlingCache(){throw ut(st)}getThrottlingCache(){throw ut(st)}removeItem(){throw ut(st)}getKeys(){throw ut(st)}getAccountKeys(){throw ut(st)}getTokenKeys(){throw ut(st)}}
|
|
30
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const Kr={AcquireTokenByCode:"acquireTokenByCode",AcquireTokenByRefreshToken:"acquireTokenByRefreshToken",AcquireTokenSilent:"acquireTokenSilent",AcquireTokenSilentAsync:"acquireTokenSilentAsync",AcquireTokenPopup:"acquireTokenPopup",AcquireTokenPreRedirect:"acquireTokenPreRedirect",AcquireTokenRedirect:"acquireTokenRedirect",CryptoOptsGetPublicKeyThumbprint:"cryptoOptsGetPublicKeyThumbprint",CryptoOptsSignJwt:"cryptoOptsSignJwt",SilentCacheClientAcquireToken:"silentCacheClientAcquireToken",SilentIframeClientAcquireToken:"silentIframeClientAcquireToken",AwaitConcurrentIframe:"awaitConcurrentIframe",SilentRefreshClientAcquireToken:"silentRefreshClientAcquireToken",SsoSilent:"ssoSilent",StandardInteractionClientGetDiscoveredAuthority:"standardInteractionClientGetDiscoveredAuthority",FetchAccountIdWithNativeBroker:"fetchAccountIdWithNativeBroker",NativeInteractionClientAcquireToken:"nativeInteractionClientAcquireToken",BaseClientCreateTokenRequestHeaders:"baseClientCreateTokenRequestHeaders",NetworkClientSendPostRequestAsync:"networkClientSendPostRequestAsync",RefreshTokenClientExecutePostToTokenEndpoint:"refreshTokenClientExecutePostToTokenEndpoint",AuthorizationCodeClientExecutePostToTokenEndpoint:"authorizationCodeClientExecutePostToTokenEndpoint",BrokerHandhshake:"brokerHandshake",AcquireTokenByRefreshTokenInBroker:"acquireTokenByRefreshTokenInBroker",AcquireTokenByBroker:"acquireTokenByBroker",RefreshTokenClientExecuteTokenRequest:"refreshTokenClientExecuteTokenRequest",RefreshTokenClientAcquireToken:"refreshTokenClientAcquireToken",RefreshTokenClientAcquireTokenWithCachedRefreshToken:"refreshTokenClientAcquireTokenWithCachedRefreshToken",RefreshTokenClientAcquireTokenByRefreshToken:"refreshTokenClientAcquireTokenByRefreshToken",RefreshTokenClientCreateTokenRequestBody:"refreshTokenClientCreateTokenRequestBody",AcquireTokenFromCache:"acquireTokenFromCache",SilentFlowClientAcquireCachedToken:"silentFlowClientAcquireCachedToken",SilentFlowClientGenerateResultFromCacheRecord:"silentFlowClientGenerateResultFromCacheRecord",AcquireTokenBySilentIframe:"acquireTokenBySilentIframe",InitializeBaseRequest:"initializeBaseRequest",InitializeSilentRequest:"initializeSilentRequest",InitializeClientApplication:"initializeClientApplication",InitializeCache:"initializeCache",SilentIframeClientTokenHelper:"silentIframeClientTokenHelper",SilentHandlerInitiateAuthRequest:"silentHandlerInitiateAuthRequest",SilentHandlerMonitorIframeForHash:"silentHandlerMonitorIframeForHash",SilentHandlerLoadFrame:"silentHandlerLoadFrame",SilentHandlerLoadFrameSync:"silentHandlerLoadFrameSync",StandardInteractionClientCreateAuthCodeClient:"standardInteractionClientCreateAuthCodeClient",StandardInteractionClientGetClientConfiguration:"standardInteractionClientGetClientConfiguration",StandardInteractionClientInitializeAuthorizationRequest:"standardInteractionClientInitializeAuthorizationRequest",GetAuthCodeUrl:"getAuthCodeUrl",GetStandardParams:"getStandardParams",HandleCodeResponseFromServer:"handleCodeResponseFromServer",HandleCodeResponse:"handleCodeResponse",HandleResponseEar:"handleResponseEar",HandleResponsePlatformBroker:"handleResponsePlatformBroker",HandleResponseCode:"handleResponseCode",UpdateTokenEndpointAuthority:"updateTokenEndpointAuthority",AuthClientAcquireToken:"authClientAcquireToken",AuthClientExecuteTokenRequest:"authClientExecuteTokenRequest",AuthClientCreateTokenRequestBody:"authClientCreateTokenRequestBody",PopTokenGenerateCnf:"popTokenGenerateCnf",PopTokenGenerateKid:"popTokenGenerateKid",HandleServerTokenResponse:"handleServerTokenResponse",DeserializeResponse:"deserializeResponse",AuthorityFactoryCreateDiscoveredInstance:"authorityFactoryCreateDiscoveredInstance",AuthorityResolveEndpointsAsync:"authorityResolveEndpointsAsync",AuthorityResolveEndpointsFromLocalSources:"authorityResolveEndpointsFromLocalSources",AuthorityGetCloudDiscoveryMetadataFromNetwork:"authorityGetCloudDiscoveryMetadataFromNetwork",AuthorityUpdateCloudDiscoveryMetadata:"authorityUpdateCloudDiscoveryMetadata",AuthorityGetEndpointMetadataFromNetwork:"authorityGetEndpointMetadataFromNetwork",AuthorityUpdateEndpointMetadata:"authorityUpdateEndpointMetadata",AuthorityUpdateMetadataWithRegionalInformation:"authorityUpdateMetadataWithRegionalInformation",RegionDiscoveryDetectRegion:"regionDiscoveryDetectRegion",RegionDiscoveryGetRegionFromIMDS:"regionDiscoveryGetRegionFromIMDS",RegionDiscoveryGetCurrentVersion:"regionDiscoveryGetCurrentVersion",AcquireTokenByCodeAsync:"acquireTokenByCodeAsync",GetEndpointMetadataFromNetwork:"getEndpointMetadataFromNetwork",GetCloudDiscoveryMetadataFromNetworkMeasurement:"getCloudDiscoveryMetadataFromNetworkMeasurement",HandleRedirectPromiseMeasurement:"handleRedirectPromise",HandleNativeRedirectPromiseMeasurement:"handleNativeRedirectPromise",UpdateCloudDiscoveryMetadataMeasurement:"updateCloudDiscoveryMetadataMeasurement",UsernamePasswordClientAcquireToken:"usernamePasswordClientAcquireToken",NativeMessageHandlerHandshake:"nativeMessageHandlerHandshake",NativeGenerateAuthResult:"nativeGenerateAuthResult",RemoveHiddenIframe:"removeHiddenIframe",ClearTokensAndKeysWithClaims:"clearTokensAndKeysWithClaims",CacheManagerGetRefreshToken:"cacheManagerGetRefreshToken",ImportExistingCache:"importExistingCache",SetUserData:"setUserData",LocalStorageUpdated:"localStorageUpdated",GeneratePkceCodes:"generatePkceCodes",GenerateCodeVerifier:"generateCodeVerifier",GenerateCodeChallengeFromVerifier:"generateCodeChallengeFromVerifier",Sha256Digest:"sha256Digest",GetRandomValues:"getRandomValues",GenerateHKDF:"generateHKDF",GenerateBaseKey:"generateBaseKey",Base64Decode:"base64Decode",UrlEncodeArr:"urlEncodeArr",Encrypt:"encrypt",Decrypt:"decrypt",GenerateEarKey:"generateEarKey",DecryptEarResponse:"decryptEarResponse"},zr=new Map([[Kr.AcquireTokenByCode,"ATByCode"],[Kr.AcquireTokenByRefreshToken,"ATByRT"],[Kr.AcquireTokenSilent,"ATS"],[Kr.AcquireTokenSilentAsync,"ATSAsync"],[Kr.AcquireTokenPopup,"ATPopup"],[Kr.AcquireTokenRedirect,"ATRedirect"],[Kr.CryptoOptsGetPublicKeyThumbprint,"CryptoGetPKThumb"],[Kr.CryptoOptsSignJwt,"CryptoSignJwt"],[Kr.SilentCacheClientAcquireToken,"SltCacheClientAT"],[Kr.SilentIframeClientAcquireToken,"SltIframeClientAT"],[Kr.SilentRefreshClientAcquireToken,"SltRClientAT"],[Kr.SsoSilent,"SsoSlt"],[Kr.StandardInteractionClientGetDiscoveredAuthority,"StdIntClientGetDiscAuth"],[Kr.FetchAccountIdWithNativeBroker,"FetchAccIdWithNtvBroker"],[Kr.NativeInteractionClientAcquireToken,"NtvIntClientAT"],[Kr.BaseClientCreateTokenRequestHeaders,"BaseClientCreateTReqHead"],[Kr.NetworkClientSendPostRequestAsync,"NetClientSendPost"],[Kr.RefreshTokenClientExecutePostToTokenEndpoint,"RTClientExecPost"],[Kr.AuthorizationCodeClientExecutePostToTokenEndpoint,"AuthCodeClientExecPost"],[Kr.BrokerHandhshake,"BrokerHandshake"],[Kr.AcquireTokenByRefreshTokenInBroker,"ATByRTInBroker"],[Kr.AcquireTokenByBroker,"ATByBroker"],[Kr.RefreshTokenClientExecuteTokenRequest,"RTClientExecTReq"],[Kr.RefreshTokenClientAcquireToken,"RTClientAT"],[Kr.RefreshTokenClientAcquireTokenWithCachedRefreshToken,"RTClientATWithCachedRT"],[Kr.RefreshTokenClientAcquireTokenByRefreshToken,"RTClientATByRT"],[Kr.RefreshTokenClientCreateTokenRequestBody,"RTClientCreateTReqBody"],[Kr.AcquireTokenFromCache,"ATFromCache"],[Kr.SilentFlowClientAcquireCachedToken,"SltFlowClientATCached"],[Kr.SilentFlowClientGenerateResultFromCacheRecord,"SltFlowClientGenResFromCache"],[Kr.AcquireTokenBySilentIframe,"ATBySltIframe"],[Kr.InitializeBaseRequest,"InitBaseReq"],[Kr.InitializeSilentRequest,"InitSltReq"],[Kr.InitializeClientApplication,"InitClientApplication"],[Kr.InitializeCache,"InitCache"],[Kr.ImportExistingCache,"importCache"],[Kr.SetUserData,"setUserData"],[Kr.LocalStorageUpdated,"localStorageUpdated"],[Kr.SilentIframeClientTokenHelper,"SIClientTHelper"],[Kr.SilentHandlerInitiateAuthRequest,"SHandlerInitAuthReq"],[Kr.SilentHandlerMonitorIframeForHash,"SltHandlerMonitorIframeForHash"],[Kr.SilentHandlerLoadFrame,"SHandlerLoadFrame"],[Kr.SilentHandlerLoadFrameSync,"SHandlerLoadFrameSync"],[Kr.StandardInteractionClientCreateAuthCodeClient,"StdIntClientCreateAuthCodeClient"],[Kr.StandardInteractionClientGetClientConfiguration,"StdIntClientGetClientConf"],[Kr.StandardInteractionClientInitializeAuthorizationRequest,"StdIntClientInitAuthReq"],[Kr.GetAuthCodeUrl,"GetAuthCodeUrl"],[Kr.HandleCodeResponseFromServer,"HandleCodeResFromServer"],[Kr.HandleCodeResponse,"HandleCodeResp"],[Kr.HandleResponseEar,"HandleRespEar"],[Kr.HandleResponseCode,"HandleRespCode"],[Kr.HandleResponsePlatformBroker,"HandleRespPlatBroker"],[Kr.UpdateTokenEndpointAuthority,"UpdTEndpointAuth"],[Kr.AuthClientAcquireToken,"AuthClientAT"],[Kr.AuthClientExecuteTokenRequest,"AuthClientExecTReq"],[Kr.AuthClientCreateTokenRequestBody,"AuthClientCreateTReqBody"],[Kr.PopTokenGenerateCnf,"PopTGenCnf"],[Kr.PopTokenGenerateKid,"PopTGenKid"],[Kr.HandleServerTokenResponse,"HandleServerTRes"],[Kr.DeserializeResponse,"DeserializeRes"],[Kr.AuthorityFactoryCreateDiscoveredInstance,"AuthFactCreateDiscInst"],[Kr.AuthorityResolveEndpointsAsync,"AuthResolveEndpointsAsync"],[Kr.AuthorityResolveEndpointsFromLocalSources,"AuthResolveEndpointsFromLocal"],[Kr.AuthorityGetCloudDiscoveryMetadataFromNetwork,"AuthGetCDMetaFromNet"],[Kr.AuthorityUpdateCloudDiscoveryMetadata,"AuthUpdCDMeta"],[Kr.AuthorityGetEndpointMetadataFromNetwork,"AuthUpdCDMetaFromNet"],[Kr.AuthorityUpdateEndpointMetadata,"AuthUpdEndpointMeta"],[Kr.AuthorityUpdateMetadataWithRegionalInformation,"AuthUpdMetaWithRegInfo"],[Kr.RegionDiscoveryDetectRegion,"RegDiscDetectReg"],[Kr.RegionDiscoveryGetRegionFromIMDS,"RegDiscGetRegFromIMDS"],[Kr.RegionDiscoveryGetCurrentVersion,"RegDiscGetCurrentVer"],[Kr.AcquireTokenByCodeAsync,"ATByCodeAsync"],[Kr.GetEndpointMetadataFromNetwork,"GetEndpointMetaFromNet"],[Kr.GetCloudDiscoveryMetadataFromNetworkMeasurement,"GetCDMetaFromNet"],[Kr.HandleRedirectPromiseMeasurement,"HandleRedirectPromise"],[Kr.HandleNativeRedirectPromiseMeasurement,"HandleNtvRedirectPromise"],[Kr.UpdateCloudDiscoveryMetadataMeasurement,"UpdateCDMeta"],[Kr.UsernamePasswordClientAcquireToken,"UserPassClientAT"],[Kr.NativeMessageHandlerHandshake,"NtvMsgHandlerHandshake"],[Kr.NativeGenerateAuthResult,"NtvGenAuthRes"],[Kr.RemoveHiddenIframe,"RemoveHiddenIframe"],[Kr.ClearTokensAndKeysWithClaims,"ClearTAndKeysWithClaims"],[Kr.CacheManagerGetRefreshToken,"CacheManagerGetRT"],[Kr.GeneratePkceCodes,"GenPkceCodes"],[Kr.GenerateCodeVerifier,"GenCodeVerifier"],[Kr.GenerateCodeChallengeFromVerifier,"GenCodeChallengeFromVerifier"],[Kr.Sha256Digest,"Sha256Digest"],[Kr.GetRandomValues,"GetRandomValues"],[Kr.GenerateHKDF,"genHKDF"],[Kr.GenerateBaseKey,"genBaseKey"],[Kr.Base64Decode,"b64Decode"],[Kr.UrlEncodeArr,"urlEncArr"],[Kr.Encrypt,"encrypt"],[Kr.Decrypt,"decrypt"],[Kr.GenerateEarKey,"genEarKey"],[Kr.DecryptEarResponse,"decryptEarResp"]]),Gr=1,$r=2,Qr=new Set(["accessTokenSize","durationMs","idTokenSize","matsSilentStatus","matsHttpStatus","refreshTokenSize","queuedTimeMs","startTimeMs","status","multiMatchedAT","multiMatchedID","multiMatchedRT","unencryptedCacheCount","encryptedCacheExpiredCount"]);
|
|
31
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
32
|
+
class jr{startMeasurement(){}endMeasurement(){}flushMeasurement(){return null}}class Wr{generateId(){return"callback-id"}startMeasurement(e,t){return{end:()=>null,discard:()=>{},add:()=>{},increment:()=>{},event:{eventId:this.generateId(),status:Gr,authority:"",libraryName:"",libraryVersion:"",clientId:"",name:e,startTimeMs:Date.now(),correlationId:t||""},measurement:new jr}}startPerformanceMeasurement(){return new jr}calculateQueuedTime(){return 0}addQueueMeasurement(){}setPreQueueTime(){}endMeasurement(){return null}discardMeasurements(){}removePerformanceCallback(){return!0}addPerformanceCallback(){return""}emitEvents(){}addFields(){}incrementFields(){}cacheEventByCorrelationId(){}}
|
|
33
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const Vr={tokenRenewalOffsetSeconds:300,preventCorsPreflight:!1},Jr={loggerCallback:()=>{},piiLoggingEnabled:!1,logLevel:e.LogLevel.Info,correlationId:t.EMPTY_STRING},Yr={claimsBasedCachingEnabled:!1},Xr={async sendGetRequestAsync(){throw ut(st)},async sendPostRequestAsync(){throw ut(st)}},Zr={sku:t.SKU,version:yt,cpu:t.EMPTY_STRING,os:t.EMPTY_STRING},en={clientSecret:t.EMPTY_STRING,clientAssertion:void 0},tn={azureCloudInstance:Ct.None,tenant:`${t.DEFAULT_COMMON_TENANT}`},rn={application:{appName:"",appVersion:""}};function nn(e){return e.authOptions.authority.options.protocolMode===kr.OIDC}
|
|
34
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const on="home_account_id",sn="UPN",an="client_id",cn="redirect_uri",ln="token_type",hn="req_cnf",dn="return_spa_code",un="x-client-xtra-sku",gn="brk_client_id",pn="brk_redirect_uri",mn="instance_aware";
|
|
35
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
36
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
37
|
+
function fn(e,t,r){if(!t)return;const n=e.get(an);n&&e.has(gn)&&r?.addFields({embeddedClientId:n,embeddedRedirectUri:e.get(cn)},t)}function yn(e,t){e.set("response_type",t)}function Cn(e,t,r=!0,n=c){!r||n.includes("openid")||t.includes("openid")||n.push("openid");const o=r?[...t||[],...n]:t||[],i=new gr(o);e.set("scope",i.printScopes())}function vn(e,t){e.set(an,t)}function wn(e,t){e.set(cn,t)}function In(e,t){e.set("login_hint",t)}function Tn(e,t){e.set(g,`UPN:${t}`)}function An(e,t){e.set(g,`Oid:${t.uid}@${t.utid}`)}function kn(e,t){e.set("sid",t)}function Sn(e,t,r){const n=Hn(t,r);try{JSON.parse(n)}catch(e){throw dr(Qt)}e.set("claims",n)}function bn(e,t){e.set("client-request-id",t)}function En(e,t){e.set("x-client-SKU",t.sku),e.set("x-client-VER",t.version),t.os&&e.set("x-client-OS",t.os),t.cpu&&e.set("x-client-CPU",t.cpu)}function Rn(e,t){t?.appName&&e.set("x-app-name",t.appName),t?.appVersion&&e.set("x-app-ver",t.appVersion)}function _n(e,t){t&&e.set("state",t)}function Pn(e,t){e.set("client_secret",t)}function Mn(e,t){t&&e.set("client_assertion",t)}function On(e,t){t&&e.set("client_assertion_type",t)}function Nn(e,t){e.set("grant_type",t)}function qn(e){e.set("client_info","1")}function Ln(e){e.has(mn)||e.set(mn,"true")}function Un(e,t){Object.entries(t).forEach((([t,r])=>{!e.has(t)&&r&&e.set(t,r)}))}function Hn(e,t){let r;if(e)try{r=JSON.parse(e)}catch(e){throw dr(Qt)}else r={};return t&&t.length>0&&(r.hasOwnProperty(T)||(r[T]={}),r[T][A]={values:t}),JSON.stringify(r)}function xn(e,t){t&&(e.set(ln,Q.POP),e.set(hn,t))}function Dn(e,t){t&&(e.set(ln,Q.SSH),e.set(hn,t))}function Bn(e,t){e.set("x-client-current-telemetry",t.generateCurrentRequestHeaderValue()),e.set("x-client-last-telemetry",t.generateLastRequestHeaderValue())}function Fn(e){e.set("x-ms-lib-capability",J)}function Kn(e,t,r){e.has(gn)||e.set(gn,t),e.has(pn)||e.set(pn,r)}
|
|
38
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
39
|
+
const zn=(e,t,r,n,o)=>(...i)=>{r.trace(`Executing function ${t}`);const s=n?.startMeasurement(t,o);if(o){const e=t+"CallCount";n?.incrementFields({[e]:1},o)}try{const n=e(...i);return s?.end({success:!0}),r.trace(`Returning result from ${t}`),n}catch(e){r.trace(`Error occurred in ${t}`);try{r.trace(JSON.stringify(e))}catch(e){r.trace("Unable to print error message.")}throw s?.end({success:!1},e),e}},Gn=(e,t,r,n,o)=>(...i)=>{r.trace(`Executing function ${t}`);const s=n?.startMeasurement(t,o);if(o){const e=t+"CallCount";n?.incrementFields({[e]:1},o)}return n?.setPreQueueTime(t,o),e(...i).then((e=>(r.trace(`Returning result from ${t}`),s?.end({success:!0}),e))).catch((e=>{r.trace(`Error occurred in ${t}`);try{r.trace(JSON.stringify(e))}catch(e){r.trace("Unable to print error message.")}throw s?.end({success:!1},e),e}))};
|
|
40
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
41
|
+
class $n{constructor(e,t,r,n){this.networkInterface=e,this.logger=t,this.performanceClient=r,this.correlationId=n}async detectRegion(e,n){this.performanceClient?.addQueueMeasurement(Kr.RegionDiscoveryDetectRegion,this.correlationId);let i=e;if(i)n.region_source=ee;else{const e=$n.IMDS_OPTIONS;try{const s=await Gn(this.getRegionFromIMDS.bind(this),Kr.RegionDiscoveryGetRegionFromIMDS,this.logger,this.performanceClient,this.correlationId)(t.IMDS_VERSION,e);if(s.status===r&&(i=s.body,n.region_source=te),s.status===o){const t=await Gn(this.getCurrentVersion.bind(this),Kr.RegionDiscoveryGetCurrentVersion,this.logger,this.performanceClient,this.correlationId)(e);if(!t)return n.region_source=Z,null;const o=await Gn(this.getRegionFromIMDS.bind(this),Kr.RegionDiscoveryGetRegionFromIMDS,this.logger,this.performanceClient,this.correlationId)(t,e);o.status===r&&(i=o.body,n.region_source=te)}}catch(e){return n.region_source=Z,null}}return i||(n.region_source=Z),i||null}async getRegionFromIMDS(e,r){return this.performanceClient?.addQueueMeasurement(Kr.RegionDiscoveryGetRegionFromIMDS,this.correlationId),this.networkInterface.sendGetRequestAsync(`${t.IMDS_ENDPOINT}?api-version=${e}&format=text`,r,t.IMDS_TIMEOUT)}async getCurrentVersion(e){this.performanceClient?.addQueueMeasurement(Kr.RegionDiscoveryGetCurrentVersion,this.correlationId);try{const r=await this.networkInterface.sendGetRequestAsync(`${t.IMDS_ENDPOINT}?format=json`,e);return r.status===o&&r.body&&r.body["newest-versions"]&&r.body["newest-versions"].length>0?r.body["newest-versions"][0]:null}catch(e){return null}}}$n.IMDS_OPTIONS={headers:{Metadata:"true"}};
|
|
42
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
43
|
+
class Qn{constructor(e,t,r,n,o,i,s,a){this.canonicalAuthority=e,this._canonicalAuthority.validateAsUri(),this.networkInterface=t,this.cacheManager=r,this.authorityOptions=n,this.regionDiscoveryMetadata={region_used:void 0,region_source:void 0,region_outcome:void 0},this.logger=o,this.performanceClient=s,this.correlationId=i,this.managedIdentity=a||!1,this.regionDiscovery=new $n(t,this.logger,this.performanceClient,this.correlationId)}getAuthorityType(e){if(e.HostNameAndPort.endsWith(t.CIAM_AUTH_URL))return Tr;const r=e.PathSegments;if(r.length)switch(r[0].toLowerCase()){case t.ADFS:return wr;case t.DSTS:return Ir}return vr}get authorityType(){return this.getAuthorityType(this.canonicalAuthorityUrlComponents)}get protocolMode(){return this.authorityOptions.protocolMode}get options(){return this.authorityOptions}get canonicalAuthority(){return this._canonicalAuthority.urlString}set canonicalAuthority(e){this._canonicalAuthority=new _r(e),this._canonicalAuthority.validateAsUri(),this._canonicalAuthorityUrlComponents=null}get canonicalAuthorityUrlComponents(){return this._canonicalAuthorityUrlComponents||(this._canonicalAuthorityUrlComponents=this._canonicalAuthority.getUrlComponents()),this._canonicalAuthorityUrlComponents}get hostnameAndPort(){return this.canonicalAuthorityUrlComponents.HostNameAndPort.toLowerCase()}get tenant(){return this.canonicalAuthorityUrlComponents.PathSegments[0]}get authorizationEndpoint(){if(this.discoveryComplete())return this.replacePath(this.metadata.authorization_endpoint);throw ut(Te)}get tokenEndpoint(){if(this.discoveryComplete())return this.replacePath(this.metadata.token_endpoint);throw ut(Te)}get deviceCodeEndpoint(){if(this.discoveryComplete())return this.replacePath(this.metadata.token_endpoint.replace("/token","/devicecode"));throw ut(Te)}get endSessionEndpoint(){if(this.discoveryComplete()){if(!this.metadata.end_session_endpoint)throw ut(tt);return this.replacePath(this.metadata.end_session_endpoint)}throw ut(Te)}get selfSignedJwtAudience(){if(this.discoveryComplete())return this.replacePath(this.metadata.issuer);throw ut(Te)}get jwksUri(){if(this.discoveryComplete())return this.replacePath(this.metadata.jwks_uri);throw ut(Te)}canReplaceTenant(e){return 1===e.PathSegments.length&&!Qn.reservedTenantDomains.has(e.PathSegments[0])&&this.getAuthorityType(e)===vr&&this.protocolMode!==kr.OIDC}replaceTenant(e){return e.replace(/{tenant}|{tenantid}/g,this.tenant)}replacePath(e){let t=e;const r=new _r(this.metadata.canonical_authority).getUrlComponents(),n=r.PathSegments;return this.canonicalAuthorityUrlComponents.PathSegments.forEach(((e,o)=>{let i=n[o];if(0===o&&this.canReplaceTenant(r)){const e=new _r(this.metadata.authorization_endpoint).getUrlComponents().PathSegments[0];i!==e&&(this.logger.verbose(`Replacing tenant domain name ${i} with id ${e}`),i=e)}e!==i&&(t=t.replace(`/${i}/`,`/${e}/`))})),this.replaceTenant(t)}get defaultOpenIdConfigurationEndpoint(){const e=this.hostnameAndPort;return this.canonicalAuthority.endsWith("v2.0/")||this.authorityType===wr||this.protocolMode===kr.OIDC&&!this.isAliasOfKnownMicrosoftAuthority(e)?`${this.canonicalAuthority}.well-known/openid-configuration`:`${this.canonicalAuthority}v2.0/.well-known/openid-configuration`}discoveryComplete(){return!!this.metadata}async resolveEndpointsAsync(){this.performanceClient?.addQueueMeasurement(Kr.AuthorityResolveEndpointsAsync,this.correlationId);const e=this.getCurrentMetadataEntity(),t=await Gn(this.updateCloudDiscoveryMetadata.bind(this),Kr.AuthorityUpdateCloudDiscoveryMetadata,this.logger,this.performanceClient,this.correlationId)(e);this.canonicalAuthority=this.canonicalAuthority.replace(this.hostnameAndPort,e.preferred_network);const r=await Gn(this.updateEndpointMetadata.bind(this),Kr.AuthorityUpdateEndpointMetadata,this.logger,this.performanceClient,this.correlationId)(e);this.updateCachedMetadata(e,t,{source:r}),this.performanceClient?.addFields({cloudDiscoverySource:t,authorityEndpointSource:r},this.correlationId)}getCurrentMetadataEntity(){let e=this.cacheManager.getAuthorityMetadataByAlias(this.hostnameAndPort);return e||(e={aliases:[],preferred_cache:this.hostnameAndPort,preferred_network:this.hostnameAndPort,canonical_authority:this.canonicalAuthority,authorization_endpoint:"",token_endpoint:"",end_session_endpoint:"",issuer:"",aliasesFromNetwork:!1,endpointsFromNetwork:!1,expiresAt:Ut(),jwks_uri:""}),e}updateCachedMetadata(e,t,r){t!==K&&r?.source!==K&&(e.expiresAt=Ut(),e.canonical_authority=this.canonicalAuthority);const n=this.cacheManager.generateAuthorityMetadataCacheKey(e.preferred_cache);this.cacheManager.setAuthorityMetadata(n,e),this.metadata=e}async updateEndpointMetadata(e){this.performanceClient?.addQueueMeasurement(Kr.AuthorityUpdateEndpointMetadata,this.correlationId);const t=this.updateEndpointMetadataFromLocalSources(e);if(t){if(t.source===G&&this.authorityOptions.azureRegionConfiguration?.azureRegion&&t.metadata){Ht(e,await Gn(this.updateMetadataWithRegionalInformation.bind(this),Kr.AuthorityUpdateMetadataWithRegionalInformation,this.logger,this.performanceClient,this.correlationId)(t.metadata),!1),e.canonical_authority=this.canonicalAuthority}return t.source}let r=await Gn(this.getEndpointMetadataFromNetwork.bind(this),Kr.AuthorityGetEndpointMetadataFromNetwork,this.logger,this.performanceClient,this.correlationId)();if(r)return this.authorityOptions.azureRegionConfiguration?.azureRegion&&(r=await Gn(this.updateMetadataWithRegionalInformation.bind(this),Kr.AuthorityUpdateMetadataWithRegionalInformation,this.logger,this.performanceClient,this.correlationId)(r)),Ht(e,r,!0),z;throw ut(ke,this.defaultOpenIdConfigurationEndpoint)}updateEndpointMetadataFromLocalSources(e){this.logger.verbose("Attempting to get endpoint metadata from authority configuration");const t=this.getEndpointMetadataFromConfig();if(t)return this.logger.verbose("Found endpoint metadata in authority configuration"),Ht(e,t,!1),{source:F};if(this.logger.verbose("Did not find endpoint metadata in the config... Attempting to get endpoint metadata from the hardcoded values."),this.authorityOptions.skipAuthorityMetadataCache)this.logger.verbose("Skipping hardcoded metadata cache since skipAuthorityMetadataCache is set to true. Attempting to get endpoint metadata from the network metadata cache.");else{const t=this.getEndpointMetadataFromHardcodedValues();if(t)return Ht(e,t,!1),{source:G,metadata:t};this.logger.verbose("Did not find endpoint metadata in hardcoded values... Attempting to get endpoint metadata from the network metadata cache.")}const r=Dt(e);return this.isAuthoritySameType(e)&&e.endpointsFromNetwork&&!r?(this.logger.verbose("Found endpoint metadata in the cache."),{source:K}):(r&&this.logger.verbose("The metadata entity is expired."),null)}isAuthoritySameType(e){return new _r(e.canonical_authority).getUrlComponents().PathSegments.length===this.canonicalAuthorityUrlComponents.PathSegments.length}getEndpointMetadataFromConfig(){if(this.authorityOptions.authorityMetadata)try{return JSON.parse(this.authorityOptions.authorityMetadata)}catch(e){throw dr(Xt)}return null}async getEndpointMetadataFromNetwork(){this.performanceClient?.addQueueMeasurement(Kr.AuthorityGetEndpointMetadataFromNetwork,this.correlationId);const e={},t=this.defaultOpenIdConfigurationEndpoint;this.logger.verbose(`Authority.getEndpointMetadataFromNetwork: attempting to retrieve OAuth endpoints from ${t}`);try{const r=await this.networkInterface.sendGetRequestAsync(t,e),n=
|
|
44
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */
|
|
45
45
|
function(e){return e.hasOwnProperty("authorization_endpoint")&&e.hasOwnProperty("token_endpoint")&&e.hasOwnProperty("issuer")&&e.hasOwnProperty("jwks_uri")}
|
|
46
|
-
/*! @azure/msal-common v15.
|
|
47
|
-
/*! @azure/msal-common v15.
|
|
48
|
-
/*! @azure/msal-common v15.
|
|
49
|
-
/*! @azure/msal-common v15.
|
|
50
|
-
/*! @azure/msal-common v15.
|
|
51
|
-
/*! @azure/msal-common v15.
|
|
52
|
-
/*! @azure/msal-common v15.
|
|
53
|
-
/*! @azure/msal-common v15.
|
|
54
|
-
/*! @azure/msal-common v15.
|
|
55
|
-
/*! @azure/msal-common v15.
|
|
56
|
-
/*! @azure/msal-common v15.
|
|
57
|
-
/*! @azure/msal-common v15.
|
|
58
|
-
/*! @azure/msal-common v15.
|
|
59
|
-
/*! @azure/msal-common v15.
|
|
60
|
-
/*! @azure/msal-common v15.
|
|
61
|
-
/*! @azure/msal-common v15.
|
|
62
|
-
/*! @azure/msal-common v15.
|
|
63
|
-
/*! @azure/msal-common v15.
|
|
64
|
-
/*! @azure/msal-common v15.
|
|
65
|
-
/*! @azure/msal-common v15.
|
|
66
|
-
/*! @azure/msal-common v15.
|
|
67
|
-
/*! @azure/msal-common v15.
|
|
68
|
-
/*! @azure/msal-common v15.
|
|
69
|
-
/*! @azure/msal-common v15.7.1 2025-06-18 */class Ko{constructor(e){this.typ=e.typ,this.alg=e.alg,this.kid=e.kid}static getShrHeaderString(e){if(!e.kid)throw Fo(Ho);if(!e.alg)throw Fo(xo);const t=new Ko({typ:e.typ||de.Pop,kid:e.kid,alg:e.alg});return JSON.stringify(t)}}
|
|
70
|
-
/*! @azure/msal-common v15.7.1 2025-06-18 */function zo(e,t,r,n=5){if(e instanceof Error)return e instanceof ye?(r.errorCode=e.errorCode,r.subErrorCode=e.subError,void((e instanceof Yn||e instanceof yo)&&(r.serverErrorNo=e.errorNo))):void(e instanceof Br?r.errorCode=e.errorCode:r.errorStack?.length?t.trace("PerformanceClient.addErrorStack: Stack already exist",r.correlationId):e.stack?.length?(e.stack&&(r.errorStack=function(e,t){if(t<0)return[];const r=e.split("\n")||[],n=[],o=r[0];o.startsWith("TypeError: Cannot read property")||o.startsWith("TypeError: Cannot read properties of")||o.startsWith("TypeError: Cannot set property")||o.startsWith("TypeError: Cannot set properties of")||o.endsWith("is not a function")?n.push(Go(o)):(o.startsWith("SyntaxError")||o.startsWith("TypeError"))&&n.push(Go(o.replace(/['].*[']|["].*["]/g,"<redacted>")));for(let e=1;e<r.length&&!(n.length>=t);e++){const t=r[e];n.push(Go(t))}return n}(e.stack,n)),r.errorName=e.name):t.trace("PerformanceClient.addErrorStack: Input stack is empty",r.correlationId));t.trace("PerformanceClient.addErrorStack: Input error is not instance of Error",r.correlationId)}function Go(e){const t=e.lastIndexOf(" ")+1;if(t<1)return e;const r=e.substring(t);let n=r.lastIndexOf("/");return n=n<0?r.lastIndexOf("\\"):n,n>=0?(e.substring(0,t)+"("+r.substring(n+1)+(")"===r.charAt(r.length-1)?"":")")).trimStart():e.trimStart()}class $o{constructor(e,t,r,n,o,i,a,s){this.authority=t,this.libraryName=n,this.libraryVersion=o,this.applicationTelemetry=i,this.clientId=e,this.logger=r,this.callbacks=new Map,this.eventsByCorrelationId=new Map,this.eventStack=new Map,this.queueMeasurements=new Map,this.preQueueTimeByCorrelationId=new Map,this.intFields=a||new Set;for(const e of jr)this.intFields.add(e);this.abbreviations=s||new Map;for(const[e,t]of Gr)this.abbreviations.set(e,t)}startPerformanceMeasurement(e,t){return{}}getPreQueueTime(e,t){const r=this.preQueueTimeByCorrelationId.get(t);if(r){if(r.name===e)return r.time;this.logger.trace(`PerformanceClient.getPreQueueTime: no pre-queue time found for ${e}, unable to add queue measurement`)}else this.logger.trace(`PerformanceClient.getPreQueueTime: no pre-queue times found for correlationId: ${t}, unable to add queue measurement`)}calculateQueuedTime(e,t){return e<1?(this.logger.trace(`PerformanceClient: preQueueTime should be a positive integer and not ${e}`),0):t<1?(this.logger.trace(`PerformanceClient: currentTime should be a positive integer and not ${t}`),0):t<e?(this.logger.trace("PerformanceClient: currentTime is less than preQueueTime, check how time is being retrieved"),0):t-e}addQueueMeasurement(e,t,r,n){if(!t)return void this.logger.trace(`PerformanceClient.addQueueMeasurement: correlationId not provided for ${e}, cannot add queue measurement`);if(0===r)this.logger.trace(`PerformanceClient.addQueueMeasurement: queue time provided for ${e} is ${r}`);else if(!r)return void this.logger.trace(`PerformanceClient.addQueueMeasurement: no queue time provided for ${e}`);const o={eventName:e,queueTime:n?0:r,manuallyCompleted:n},i=this.queueMeasurements.get(t);if(i)i.push(o),this.queueMeasurements.set(t,i);else{this.logger.trace(`PerformanceClient.addQueueMeasurement: adding correlationId ${t} to queue measurements`);const e=[o];this.queueMeasurements.set(t,e)}this.preQueueTimeByCorrelationId.delete(t)}startMeasurement(e,t){const r=t||this.generateId();t||this.logger.info(`PerformanceClient: No correlation id provided for ${e}, generating`,r),this.logger.trace(`PerformanceClient: Performance measurement started for ${e}`,r);const n={eventId:this.generateId(),status:$r,authority:this.authority,libraryName:this.libraryName,libraryVersion:this.libraryVersion,clientId:this.clientId,name:e,startTimeMs:Date.now(),correlationId:r,appName:this.applicationTelemetry?.appName,appVersion:this.applicationTelemetry?.appVersion};var o,i,a;return this.cacheEventByCorrelationId(n),o=n,i=this.abbreviations,(a=this.eventStack.get(r))&&a.push({name:i.get(o.name)||o.name}),{end:(e,t)=>this.endMeasurement({...n,...e},t),discard:()=>this.discardMeasurements(n.correlationId),add:e=>this.addFields(e,n.correlationId),increment:e=>this.incrementFields(e,n.correlationId),event:n,measurement:new Wr}}endMeasurement(e,t){const r=this.eventsByCorrelationId.get(e.correlationId);if(!r)return this.logger.trace(`PerformanceClient: Measurement not found for ${e.eventId}`,e.correlationId),null;const n=e.eventId===r.eventId;let o={totalQueueTime:0,totalQueueCount:0,manuallyCompletedCount:0};e.durationMs=Math.round(e.durationMs||this.getDurationMs(e.startTimeMs));const i=JSON.stringify(function(e,t,r,n){if(!r?.length)return;const o=e=>e.length?e[e.length-1]:void 0,i=t.get(e.name)||e.name,a=o(r);if(a?.name!==i)return;const s=r?.pop();if(!s)return;const c=n instanceof ye?n.errorCode:n instanceof Error?n.name:void 0,l=n instanceof ye?n.subError:void 0;c&&s.childErr!==c&&(s.err=c,l&&(s.subErr=l)),delete s.name,delete s.childErr;const h={...s,dur:e.durationMs};e.success||(h.fail=1);const d=o(r);if(!d)return{[i]:h};let u;if(c&&(d.childErr=c),d[i]){const e=Object.keys(d).filter((e=>e.startsWith(i))).length;u=`${i}_${e+1}`}else u=i;return d[u]=h,d}(e,this.abbreviations,this.eventStack.get(r.correlationId),t));if(n?(o=this.getQueueInfo(e.correlationId),this.discardMeasurements(r.correlationId)):r.incompleteSubMeasurements?.delete(e.eventId),this.logger.trace(`PerformanceClient: Performance measurement ended for ${e.name}: ${e.durationMs} ms`,e.correlationId),t&&zo(t,this.logger,r),!n)return r[e.name+"DurationMs"]=Math.floor(e.durationMs),{...r};n&&!t&&(r.errorCode||r.subErrorCode)&&(this.logger.trace(`PerformanceClient: Remove error and sub-error codes for root event ${e.name} as intermediate error was successfully handled`,e.correlationId),r.errorCode=void 0,r.subErrorCode=void 0);let a={...r,...e},s=0;return a.incompleteSubMeasurements?.forEach((t=>{this.logger.trace(`PerformanceClient: Incomplete submeasurement ${t.name} found for ${e.name}`,a.correlationId),s++})),a.incompleteSubMeasurements=void 0,a={...a,queuedTimeMs:o.totalQueueTime,queuedCount:o.totalQueueCount,queuedManuallyCompletedCount:o.manuallyCompletedCount,status:Qr,incompleteSubsCount:s,context:i},this.truncateIntegralFields(a),this.emitEvents([a],e.correlationId),a}addFields(e,t){this.logger.trace("PerformanceClient: Updating static fields");const r=this.eventsByCorrelationId.get(t);r?this.eventsByCorrelationId.set(t,{...r,...e}):this.logger.trace("PerformanceClient: Event not found for",t)}incrementFields(e,t){this.logger.trace("PerformanceClient: Updating counters");const r=this.eventsByCorrelationId.get(t);if(r)for(const t in e){if(r.hasOwnProperty(t)){if(isNaN(Number(r[t])))return}else r[t]=0;r[t]+=e[t]}else this.logger.trace("PerformanceClient: Event not found for",t)}cacheEventByCorrelationId(e){const t=this.eventsByCorrelationId.get(e.correlationId);t?(this.logger.trace(`PerformanceClient: Performance measurement for ${e.name} added/updated`,e.correlationId),t.incompleteSubMeasurements=t.incompleteSubMeasurements||new Map,t.incompleteSubMeasurements.set(e.eventId,{name:e.name,startTimeMs:e.startTimeMs})):(this.logger.trace(`PerformanceClient: Performance measurement for ${e.name} started`,e.correlationId),this.eventsByCorrelationId.set(e.correlationId,{...e}),this.eventStack.set(e.correlationId,[]))}getQueueInfo(e){const t=this.queueMeasurements.get(e);t||this.logger.trace(`PerformanceClient: no queue measurements found for for correlationId: ${e}`);let r=0,n=0,o=0;return t?.forEach((e=>{r+=e.queueTime,n++,o+=e.manuallyCompleted?1:0})),{totalQueueTime:r,totalQueueCount:n,manuallyCompletedCount:o}}discardMeasurements(e){this.logger.trace("PerformanceClient: Performance measurements discarded",e),this.eventsByCorrelationId.delete(e),this.logger.trace("PerformanceClient: QueueMeasurements discarded",e),this.queueMeasurements.delete(e),this.logger.trace("PerformanceClient: Pre-queue times discarded",e),this.preQueueTimeByCorrelationId.delete(e),this.logger.trace("PerformanceClient: Event stack discarded",e),this.eventStack.delete(e)}addPerformanceCallback(e){for(const[t,r]of this.callbacks)if(r.toString()===e.toString())return this.logger.warning(`PerformanceClient: Performance callback is already registered with id: ${t}`),t;const t=this.generateId();return this.callbacks.set(t,e),this.logger.verbose(`PerformanceClient: Performance callback registered with id: ${t}`),t}removePerformanceCallback(e){const t=this.callbacks.delete(e);return t?this.logger.verbose(`PerformanceClient: Performance callback ${e} removed.`):this.logger.verbose(`PerformanceClient: Performance callback ${e} not removed.`),t}emitEvents(e,t){this.logger.verbose("PerformanceClient: Emitting performance events",t),this.callbacks.forEach(((r,n)=>{this.logger.trace(`PerformanceClient: Emitting event to callback ${n}`,t),r.apply(null,[e])}))}truncateIntegralFields(e){this.intFields.forEach((t=>{t in e&&"number"==typeof e[t]&&(e[t]=Math.floor(e[t]))}))}getDurationMs(e){const t=Date.now()-e;return t<0?t:0}}const Qo="pkce_not_created",jo="ear_jwk_empty",Wo="ear_jwe_empty",Vo="crypto_nonexistent",Jo="empty_navigate_uri",Yo="hash_empty_error",Xo="no_state_in_hash",Zo="hash_does_not_contain_known_properties",ei="unable_to_parse_state",ti="state_interaction_type_mismatch",ri="interaction_in_progress",ni="popup_window_error",oi="empty_window_error",ii="user_cancelled",ai="monitor_popup_timeout",si="monitor_window_timeout",ci="redirect_in_iframe",li="block_iframe_reload",hi="block_nested_popups",di="iframe_closed_prematurely",ui="silent_logout_unsupported",gi="no_account_error",pi="silent_prompt_value_error",mi="no_token_request_cache_error",fi="unable_to_parse_token_request_cache_error",yi="auth_request_not_set_error",Ci="invalid_cache_type",vi="non_browser_environment",wi="database_not_open",Ii="no_network_connectivity",Ti="post_request_failed",Ai="get_request_failed",ki="failed_to_parse_response",Si="unable_to_load_token",bi="crypto_key_not_found",Ei="auth_code_required",Ri="auth_code_or_nativeAccountId_required",_i="spa_code_and_nativeAccountId_present",Pi="database_unavailable",Mi="unable_to_acquire_token_from_native_platform",Oi="native_handshake_timeout",Ni="native_extension_not_installed",qi="native_connection_not_established",Li="uninitialized_public_client_application",Ui="native_prompt_not_supported",Hi="invalid_base64_string",xi="invalid_pop_token_request",Di="failed_to_build_headers",Bi="failed_to_parse_headers",Fi="failed_to_decrypt_ear_response";var Ki=Object.freeze({__proto__:null,authCodeOrNativeAccountIdRequired:Ri,authCodeRequired:Ei,authRequestNotSetError:yi,blockIframeReload:li,blockNestedPopups:hi,cryptoKeyNotFound:bi,cryptoNonExistent:Vo,databaseNotOpen:wi,databaseUnavailable:Pi,earJweEmpty:Wo,earJwkEmpty:jo,emptyNavigateUri:Jo,emptyWindowError:oi,failedToBuildHeaders:Di,failedToDecryptEarResponse:Fi,failedToParseHeaders:Bi,failedToParseResponse:ki,getRequestFailed:Ai,hashDoesNotContainKnownProperties:Zo,hashEmptyError:Yo,iframeClosedPrematurely:di,interactionInProgress:ri,invalidBase64String:Hi,invalidCacheType:Ci,invalidPopTokenRequest:xi,monitorPopupTimeout:ai,monitorWindowTimeout:si,nativeConnectionNotEstablished:qi,nativeExtensionNotInstalled:Ni,nativeHandshakeTimeout:Oi,nativePromptNotSupported:Ui,noAccountError:gi,noNetworkConnectivity:Ii,noStateInHash:Xo,noTokenRequestCacheError:mi,nonBrowserEnvironment:vi,pkceNotCreated:Qo,popupWindowError:ni,postRequestFailed:Ti,redirectInIframe:ci,silentLogoutUnsupported:ui,silentPromptValueError:pi,spaCodeAndNativeAccountIdPresent:_i,stateInteractionTypeMismatch:ti,unableToAcquireTokenFromNativePlatform:Mi,unableToLoadToken:Si,unableToParseState:ei,unableToParseTokenRequestCacheError:fi,uninitializedPublicClientApplication:Li,userCancelled:ii});const zi="For more visit: aka.ms/msaljs/browser-errors",Gi={[Qo]:"The PKCE code challenge and verifier could not be generated.",[jo]:"No EAR encryption key provided. This is unexpected.",[Wo]:"Server response does not contain ear_jwe property. This is unexpected.",[Vo]:"The crypto object or function is not available.",[Jo]:"Navigation URI is empty. Please check stack trace for more info.",[Yo]:`Hash value cannot be processed because it is empty. Please verify that your redirectUri is not clearing the hash. ${zi}`,[Xo]:"Hash does not contain state. Please verify that the request originated from msal.",[Zo]:`Hash does not contain known properites. Please verify that your redirectUri is not changing the hash. ${zi}`,[ei]:"Unable to parse state. Please verify that the request originated from msal.",[ti]:"Hash contains state but the interaction type does not match the caller.",[ri]:`Interaction is currently in progress. Please ensure that this interaction has been completed before calling an interactive API. ${zi}`,[ni]:"Error opening popup window. This can happen if you are using IE or if popups are blocked in the browser.",[oi]:"window.open returned null or undefined window object.",[ii]:"User cancelled the flow.",[ai]:`Token acquisition in popup failed due to timeout. ${zi}`,[si]:`Token acquisition in iframe failed due to timeout. ${zi}`,[ci]:"Redirects are not supported for iframed or brokered applications. Please ensure you are using MSAL.js in a top frame of the window if using the redirect APIs, or use the popup APIs.",[li]:`Request was blocked inside an iframe because MSAL detected an authentication response. ${zi}`,[hi]:"Request was blocked inside a popup because MSAL detected it was running in a popup.",[di]:"The iframe being monitored was closed prematurely.",[ui]:"Silent logout not supported. Please call logoutRedirect or logoutPopup instead.",[gi]:"No account object provided to acquireTokenSilent and no active account has been set. Please call setActiveAccount or provide an account on the request.",[pi]:"The value given for the prompt value is not valid for silent requests - must be set to 'none' or 'no_session'.",[mi]:"No token request found in cache.",[fi]:"The cached token request could not be parsed.",[yi]:"Auth Request not set. Please ensure initiateAuthRequest was called from the InteractionHandler",[Ci]:"Invalid cache type",[vi]:"Login and token requests are not supported in non-browser environments.",[wi]:"Database is not open!",[Ii]:"No network connectivity. Check your internet connection.",[Ti]:"Network request failed: If the browser threw a CORS error, check that the redirectUri is registered in the Azure App Portal as type 'SPA'",[Ai]:"Network request failed. Please check the network trace to determine root cause.",[ki]:"Failed to parse network response. Check network trace.",[Si]:"Error loading token to cache.",[bi]:"Cryptographic Key or Keypair not found in browser storage.",[Ei]:"An authorization code must be provided (as the `code` property on the request) to this flow.",[Ri]:"An authorization code or nativeAccountId must be provided to this flow.",[_i]:"Request cannot contain both spa code and native account id.",[Pi]:"IndexedDB, which is required for persistent cryptographic key storage, is unavailable. This may be caused by browser privacy features which block persistent storage in third-party contexts.",[Mi]:`Unable to acquire token from native platform. ${zi}`,[Oi]:"Timed out while attempting to establish connection to browser extension",[Ni]:"Native extension is not installed. If you think this is a mistake call the initialize function.",[qi]:`Connection to native platform has not been established. Please install a compatible browser extension and run initialize(). ${zi}`,[Li]:`You must call and await the initialize function before attempting to call any other MSAL API. ${zi}`,[Ui]:"The provided prompt is not supported by the native platform. This request should be routed to the web based flow.",[Hi]:"Invalid base64 encoded string.",[xi]:"Invalid PoP token request. The request should not have both a popKid value and signPopToken set to true.",[Di]:"Failed to build request headers object.",[Bi]:"Failed to parse response headers",[Fi]:"Failed to decrypt ear response"},$i={pkceNotGenerated:{code:Qo,desc:Gi[Qo]},cryptoDoesNotExist:{code:Vo,desc:Gi[Vo]},emptyNavigateUriError:{code:Jo,desc:Gi[Jo]},hashEmptyError:{code:Yo,desc:Gi[Yo]},hashDoesNotContainStateError:{code:Xo,desc:Gi[Xo]},hashDoesNotContainKnownPropertiesError:{code:Zo,desc:Gi[Zo]},unableToParseStateError:{code:ei,desc:Gi[ei]},stateInteractionTypeMismatchError:{code:ti,desc:Gi[ti]},interactionInProgress:{code:ri,desc:Gi[ri]},popupWindowError:{code:ni,desc:Gi[ni]},emptyWindowError:{code:oi,desc:Gi[oi]},userCancelledError:{code:ii,desc:Gi[ii]},monitorPopupTimeoutError:{code:ai,desc:Gi[ai]},monitorIframeTimeoutError:{code:si,desc:Gi[si]},redirectInIframeError:{code:ci,desc:Gi[ci]},blockTokenRequestsInHiddenIframeError:{code:li,desc:Gi[li]},blockAcquireTokenInPopupsError:{code:hi,desc:Gi[hi]},iframeClosedPrematurelyError:{code:di,desc:Gi[di]},silentLogoutUnsupportedError:{code:ui,desc:Gi[ui]},noAccountError:{code:gi,desc:Gi[gi]},silentPromptValueError:{code:pi,desc:Gi[pi]},noTokenRequestCacheError:{code:mi,desc:Gi[mi]},unableToParseTokenRequestCacheError:{code:fi,desc:Gi[fi]},authRequestNotSet:{code:yi,desc:Gi[yi]},invalidCacheType:{code:Ci,desc:Gi[Ci]},notInBrowserEnvironment:{code:vi,desc:Gi[vi]},databaseNotOpen:{code:wi,desc:Gi[wi]},noNetworkConnectivity:{code:Ii,desc:Gi[Ii]},postRequestFailed:{code:Ti,desc:Gi[Ti]},getRequestFailed:{code:Ai,desc:Gi[Ai]},failedToParseNetworkResponse:{code:ki,desc:Gi[ki]},unableToLoadTokenError:{code:Si,desc:Gi[Si]},signingKeyNotFoundInStorage:{code:bi,desc:Gi[bi]},authCodeRequired:{code:Ei,desc:Gi[Ei]},authCodeOrNativeAccountRequired:{code:Ri,desc:Gi[Ri]},spaCodeAndNativeAccountPresent:{code:_i,desc:Gi[_i]},databaseUnavailable:{code:Pi,desc:Gi[Pi]},unableToAcquireTokenFromNativePlatform:{code:Mi,desc:Gi[Mi]},nativeHandshakeTimeout:{code:Oi,desc:Gi[Oi]},nativeExtensionNotInstalled:{code:Ni,desc:Gi[Ni]},nativeConnectionNotEstablished:{code:qi,desc:Gi[qi]},uninitializedPublicClientApplication:{code:Li,desc:Gi[Li]},nativePromptNotSupported:{code:Ui,desc:Gi[Ui]},invalidBase64StringError:{code:Hi,desc:Gi[Hi]},invalidPopTokenRequest:{code:xi,desc:Gi[xi]}};class Qi extends ye{constructor(e,t){super(e,Gi[e],t),Object.setPrototypeOf(this,Qi.prototype),this.name="BrowserAuthError"}}function ji(e,t){return new Qi(e,t)}const Wi="invalid_grant",Vi=483,Ji=600,Yi="msal",Xi=30,Zi="msal.js.browser",ea="53ee284d-920a-4b59-9d30-a60315b26836",ta="ppnbnpeolgkicgegkbkbjmhlideopiji",ra="MATS",na="MicrosoftEntra",oa="DOM API",ia="get-token-and-sign-out",aa="PlatformAuthDOMHandler",sa="PlatformAuthExtensionHandler",ca="Handshake",la="HandshakeResponse",ha="GetToken",da="Response",ua={LocalStorage:"localStorage",SessionStorage:"sessionStorage",MemoryStorage:"memoryStorage"},ga="GET",pa="POST",ma="signin",fa="signout",ya="request.origin",Ca="urlHash",va="request.params",wa="code.verifier",Ia="interaction.status",Ta="request.native",Aa="msal.account.keys",ka="msal.token.keys",Sa="msal.version",ba="wrapper.sku",Ea="wrapper.version",Ra={acquireTokenRedirect:861,acquireTokenPopup:862,ssoSilent:863,acquireTokenSilent_authCode:864,handleRedirectPromise:865,acquireTokenByCode:866,acquireTokenSilent_silentFlow:61,logout:961,logoutPopup:962};var _a;e.InteractionType=void 0,(_a=e.InteractionType||(e.InteractionType={})).Redirect="redirect",_a.Popup="popup",_a.Silent="silent",_a.None="none";const Pa={Startup:"startup",Login:"login",Logout:"logout",AcquireToken:"acquireToken",SsoSilent:"ssoSilent",HandleRedirect:"handleRedirect",None:"none"},Ma={scopes:c},Oa="msal.db",Na=`${Oa}.keys`,qa={Default:0,AccessToken:1,AccessTokenAndRefreshToken:2,RefreshToken:3,RefreshTokenAndNetwork:4,Skip:5},La=[qa.Default,qa.Skip,qa.RefreshTokenAndNetwork],Ua="msal.browser.platform.auth.dom";function Ha(e){return encodeURIComponent(Da(e).replace(/=/g,"").replace(/\+/g,"-").replace(/\//g,"_"))}function xa(e){return Ba(e).replace(/=/g,"").replace(/\+/g,"-").replace(/\//g,"_")}function Da(e){return Ba((new TextEncoder).encode(e))}function Ba(e){const t=Array.from(e,(e=>String.fromCodePoint(e))).join("");return btoa(t)}function Fa(e){return(new TextDecoder).decode(Ka(e))}function Ka(e){let t=e.replace(/-/g,"+").replace(/_/g,"/");switch(t.length%4){case 0:break;case 2:t+="==";break;case 3:t+="=";break;default:throw ji(Hi)}const r=atob(t);return Uint8Array.from(r,(e=>e.codePointAt(0)||0))}const za="AES-GCM",Ga="HKDF",$a="SHA-256",Qa=new Uint8Array([1,0,1]),ja="0123456789abcdef",Wa=new Uint32Array(1),Va="raw",Ja="encrypt",Ya="decrypt",Xa={name:"RSASSA-PKCS1-v1_5",hash:$a,modulusLength:2048,publicExponent:Qa};async function Za(e,t,r){t?.addQueueMeasurement(zr.Sha256Digest,r);const n=(new TextEncoder).encode(e);return window.crypto.subtle.digest($a,n)}function es(e){return window.crypto.getRandomValues(e)}function ts(){return window.crypto.getRandomValues(Wa),Wa[0]}function rs(){const e=Date.now(),t=1024*ts()+(1023&ts()),r=new Uint8Array(16),n=Math.trunc(t/2**30),o=t&2**30-1,i=ts();r[0]=e/2**40,r[1]=e/2**32,r[2]=e/2**24,r[3]=e/65536,r[4]=e/256,r[5]=e,r[6]=112|n>>>8,r[7]=n,r[8]=128|o>>>24,r[9]=o>>>16,r[10]=o>>>8,r[11]=o,r[12]=i>>>24,r[13]=i>>>16,r[14]=i>>>8,r[15]=i;let a="";for(let e=0;e<r.length;e++)a+=ja.charAt(r[e]>>>4),a+=ja.charAt(15&r[e]),3!==e&&5!==e&&7!==e&&9!==e||(a+="-");return a}async function ns(e){return window.crypto.subtle.exportKey("jwk",e)}async function os(){const e=await as(),t={alg:"dir",kty:"oct",k:xa(new Uint8Array(e))};return Da(JSON.stringify(t))}async function is(e,t){const r=t.split(".");if(5!==r.length)throw ji(Fi,"jwe_length");const n=await async function(e){const t=Fa(e),r=Ka(JSON.parse(t).k);return window.crypto.subtle.importKey(Va,r,za,!1,[Ya])}(e).catch((()=>{throw ji(Fi,"import_key")}));try{const e=(new TextEncoder).encode(r[0]),t=Ka(r[2]),o=Ka(r[3]),i=Ka(r[4]),a=8*i.byteLength,s=new Uint8Array(o.length+i.length);s.set(o),s.set(i,o.length);const c=await window.crypto.subtle.decrypt({name:za,iv:t,tagLength:a,additionalData:e},n,s);return(new TextDecoder).decode(c)}catch(e){throw ji(Fi,"decrypt")}}async function as(){const e=await window.crypto.subtle.generateKey({name:za,length:256},!0,[Ja,Ya]);return window.crypto.subtle.exportKey(Va,e)}async function ss(e){return window.crypto.subtle.importKey(Va,e,Ga,!1,["deriveKey"])}async function cs(e,t,r){return window.crypto.subtle.deriveKey({name:Ga,salt:t,hash:$a,info:(new TextEncoder).encode(r)},e,{name:za,length:256},!1,[Ja,Ya])}async function ls(e,t,r){const n=(new TextEncoder).encode(t),o=window.crypto.getRandomValues(new Uint8Array(16)),i=await cs(e,o,r),a=await window.crypto.subtle.encrypt({name:za,iv:new Uint8Array(12)},i,n);return{data:xa(new Uint8Array(a)),nonce:xa(o)}}async function hs(e,t,r,n){const o=Ka(n),i=await cs(e,Ka(t),r),a=await window.crypto.subtle.decrypt({name:za,iv:new Uint8Array(12)},i,o);return(new TextDecoder).decode(a)}async function ds(e){const t=await Za(e);return xa(new Uint8Array(t))}const us="storage_not_supported",gs="stubbed_public_client_application_called",ps="in_mem_redirect_unavailable";var ms=Object.freeze({__proto__:null,inMemRedirectUnavailable:ps,storageNotSupported:us,stubbedPublicClientApplicationCalled:gs});const fs={[us]:"Given storage configuration option was not supported.",[gs]:"Stub instance of Public Client Application was called. If using msal-react, please ensure context is not used without a provider. For more visit: aka.ms/msaljs/browser-errors",[ps]:"Redirect cannot be supported. In-memory storage was selected and storeAuthStateInCookie=false, which would cause the library to be unable to handle the incoming hash. If you would like to use the redirect API, please use session/localStorage or set storeAuthStateInCookie=true."},ys={storageNotSupportedError:{code:us,desc:fs[us]},stubPcaInstanceCalled:{code:gs,desc:fs[gs]},inMemRedirectUnavailable:{code:ps,desc:fs[ps]}};class Cs extends ye{constructor(e,t){super(e,t),this.name="BrowserConfigurationAuthError",Object.setPrototypeOf(this,Cs.prototype)}}function vs(e){return new Cs(e,fs[e])}function ws(e){e.location.hash="","function"==typeof e.history.replaceState&&e.history.replaceState(null,"",`${e.location.origin}${e.location.pathname}${e.location.search}`)}function Is(e){const t=e.split("#");t.shift(),window.location.hash=t.length>0?t.join("#"):""}function Ts(){return window.parent!==window}function As(){return"undefined"!=typeof window&&!!window.opener&&window.opener!==window&&"string"==typeof window.name&&0===window.name.indexOf(`${Yi}.`)}function ks(){return"undefined"!=typeof window&&window.location?window.location.href.split("?")[0].split("#")[0]:""}function Ss(){const e=new Mr(window.location.href).getUrlComponents();return`${e.Protocol}//${e.HostNameAndPort}/`}function bs(){if(Mr.hashContainsKnownProperties(window.location.hash)&&Ts())throw ji(li)}function Es(e){if(Ts()&&!e)throw ji(ci)}function Rs(){if(As())throw ji(hi)}function _s(){if("undefined"==typeof window)throw ji(vi)}function Ps(e){if(!e)throw ji(Li)}function Ms(e){_s(),bs(),Rs(),Ps(e)}function Os(e,t){if(Ms(e),Es(t.system.allowRedirectInIframe),t.cache.cacheLocation===ua.MemoryStorage&&!t.cache.storeAuthStateInCookie)throw vs(ps)}function Ns(e){const t=document.createElement("link");t.rel="preconnect",t.href=new URL(e).origin,t.crossOrigin="anonymous",document.head.appendChild(t),window.setTimeout((()=>{try{document.head.removeChild(t)}catch{}}),1e4)}function qs(){return rs()}var Ls=Object.freeze({__proto__:null,blockAPICallsBeforeInitialize:Ps,blockAcquireTokenInPopups:Rs,blockNonBrowserEnvironment:_s,blockRedirectInIframe:Es,blockReloadInHiddenIframes:bs,clearHash:ws,createGuid:qs,getCurrentUri:ks,getHomepage:Ss,invoke:Gn,invokeAsync:$n,isInIframe:Ts,isInPopup:As,preconnect:Ns,preflightCheck:Ms,redirectPreflightCheck:Os,replaceHash:Is});class Us{navigateInternal(e,t){return Us.defaultNavigateWindow(e,t)}navigateExternal(e,t){return Us.defaultNavigateWindow(e,t)}static defaultNavigateWindow(e,t){return t.noHistory?window.location.replace(e):window.location.assign(e),new Promise((e=>{setTimeout((()=>{e(!0)}),t.timeout)}))}}class Hs{async sendGetRequestAsync(e,t){let r,n={},o=0;const i=xs(t);try{r=await fetch(e,{method:ga,headers:i})}catch(e){throw to(ji(window.navigator.onLine?Ai:Ii),void 0,void 0,e)}n=Ds(r.headers);try{return o=r.status,{headers:n,body:await r.json(),status:o}}catch(e){throw to(ji(ki),o,n,e)}}async sendPostRequestAsync(e,t){const r=t&&t.body||"",n=xs(t);let o,i=0,a={};try{o=await fetch(e,{method:pa,headers:n,body:r})}catch(e){throw to(ji(window.navigator.onLine?Ti:Ii),void 0,void 0,e)}a=Ds(o.headers);try{return i=o.status,{headers:a,body:await o.json(),status:i}}catch(e){throw to(ji(ki),i,a,e)}}}function xs(e){try{const t=new Headers;if(!e||!e.headers)return t;const r=e.headers;return Object.entries(r).forEach((([e,r])=>{t.append(e,r)})),t}catch(e){throw to(ji(Di),void 0,void 0,e)}}function Ds(e){try{const t={};return e.forEach(((e,r)=>{t[r]=e})),t}catch(e){throw ji(Bi)}}const Bs=1e4;const Fs="@azure/msal-browser",Ks="4.13.2";class zs{static loggerCallback(t,r){switch(t){case e.LogLevel.Error:return void console.error(r);case e.LogLevel.Info:return void console.info(r);case e.LogLevel.Verbose:return void console.debug(r);case e.LogLevel.Warning:return void console.warn(r);default:return void console.log(r)}}constructor(r){let n;this.browserEnvironment="undefined"!=typeof window,this.config=function({auth:r,cache:n,system:o,telemetry:i},a){const s={clientId:t.EMPTY_STRING,authority:`${t.DEFAULT_AUTHORITY}`,knownAuthorities:[],cloudDiscoveryMetadata:t.EMPTY_STRING,authorityMetadata:t.EMPTY_STRING,redirectUri:"undefined"!=typeof window?ks():"",postLogoutRedirectUri:t.EMPTY_STRING,navigateToLoginRequestUrl:!0,clientCapabilities:[],protocolMode:br.AAD,OIDCOptions:{serverResponseType:R.FRAGMENT,defaultScopes:[t.OPENID_SCOPE,t.PROFILE_SCOPE,t.OFFLINE_ACCESS_SCOPE]},azureCloudOptions:{azureCloudInstance:vt.None,tenant:t.EMPTY_STRING},skipAuthorityMetadataCache:!1,supportsNestedAppAuth:!1,instanceAware:!1,encodeExtraQueryParams:!1},c={cacheLocation:ua.SessionStorage,temporaryCacheLocation:ua.SessionStorage,storeAuthStateInCookie:!1,secureCookies:!1,cacheMigrationEnabled:!(!n||n.cacheLocation!==ua.LocalStorage),claimsBasedCachingEnabled:!1},l={loggerCallback:()=>{},logLevel:e.LogLevel.Info,piiLoggingEnabled:!1},h={...{...Jr,loggerOptions:l,networkClient:a?new Hs:Mo,navigationClient:new Us,loadFrameTimeout:0,windowHashTimeout:o?.loadFrameTimeout||6e4,iframeHashTimeout:o?.loadFrameTimeout||Bs,navigateFrameWait:0,redirectNavigationTimeout:3e4,asyncPopups:!1,allowRedirectInIframe:!1,allowPlatformBroker:!1,nativeBrokerHandshakeTimeout:o?.nativeBrokerHandshakeTimeout||2e3,pollIntervalMilliseconds:Xi},...o,loggerOptions:o?.loggerOptions||l},d={application:{appName:t.EMPTY_STRING,appVersion:t.EMPTY_STRING},client:new Vr};r?.protocolMode!==br.OIDC&&r?.OIDCOptions&&new ft(h.loggerOptions).warning(JSON.stringify(gr(ar)));if(r?.protocolMode&&r.protocolMode===br.OIDC&&h?.allowPlatformBroker)throw gr(sr);return{auth:{...s,...r,OIDCOptions:{...s.OIDCOptions,...r?.OIDCOptions}},cache:{...c,...n},system:h,telemetry:{...d,...i}}}(r,this.browserEnvironment);try{n=window[ua.SessionStorage]}catch(e){}const o=n?.getItem("msal.browser.log.level"),i=n?.getItem("msal.browser.log.pii")?.toLowerCase(),a="true"===i||"false"!==i&&void 0,s={...this.config.system.loggerOptions},c=o&&Object.keys(e.LogLevel).includes(o)?e.LogLevel[o]:void 0;c&&(s.loggerCallback=zs.loggerCallback,s.logLevel=c),void 0!==a&&(s.piiLoggingEnabled=a),this.logger=new ft(s,Fs,Ks),this.available=!1}getConfig(){return this.config}getLogger(){return this.logger}isAvailable(){return this.available}isBrowserEnvironment(){return this.browserEnvironment}}const Gs="USER_INTERACTION_REQUIRED",$s="USER_CANCEL",Qs="NO_NETWORK",js="TRANSIENT_ERROR",Ws="PERSISTENT_ERROR",Vs="DISABLED",Js="ACCOUNT_UNAVAILABLE",Ys="NESTED_APP_AUTH_UNAVAILABLE";class Xs{static async initializeNestedAppAuthBridge(){if(void 0===window)throw new Error("window is undefined");if(void 0===window.nestedAppAuthBridge)throw new Error("window.nestedAppAuthBridge is undefined");try{window.nestedAppAuthBridge.addEventListener("message",(e=>{const t="string"==typeof e?e:e.data,r=JSON.parse(t),n=Xs.bridgeRequests.find((e=>e.requestId===r.requestId));void 0!==n&&(Xs.bridgeRequests.splice(Xs.bridgeRequests.indexOf(n),1),r.success?n.resolve(r):n.reject(r.error))}));const e=await new Promise(((e,t)=>{const r=Xs.buildRequest("GetInitContext"),n={requestId:r.requestId,method:r.method,resolve:e,reject:t};Xs.bridgeRequests.push(n),window.nestedAppAuthBridge.postMessage(JSON.stringify(r))}));return Xs.validateBridgeResultOrThrow(e.initContext)}catch(e){throw window.console.log(e),e}}getTokenInteractive(e){return this.getToken("GetTokenPopup",e)}getTokenSilent(e){return this.getToken("GetToken",e)}async getToken(e,t){const r=await this.sendRequest(e,{tokenParams:t});return{token:Xs.validateBridgeResultOrThrow(r.token),account:Xs.validateBridgeResultOrThrow(r.account)}}getHostCapabilities(){return this.capabilities??null}getAccountContext(){return this.accountContext?this.accountContext:null}static buildRequest(e,t){return{messageType:"NestedAppAuthRequest",method:e,requestId:rs(),sendTime:Date.now(),clientLibrary:Zi,clientLibraryVersion:Ks,...t}}sendRequest(e,t){const r=Xs.buildRequest(e,t);return new Promise(((e,t)=>{const n={requestId:r.requestId,method:r.method,resolve:e,reject:t};Xs.bridgeRequests.push(n),window.nestedAppAuthBridge.postMessage(JSON.stringify(r))}))}static validateBridgeResultOrThrow(e){if(void 0===e){throw{status:Ys}}return e}constructor(e,t,r,n){this.sdkName=e,this.sdkVersion=t,this.accountContext=r,this.capabilities=n}static async create(){const e=await Xs.initializeNestedAppAuthBridge();return new Xs(e.sdkName,e.sdkVersion,e.accountContext,e.capabilities)}}Xs.bridgeRequests=[];class Zs extends zs{constructor(){super(...arguments),this.bridgeProxy=void 0,this.accountContext=null}getModuleName(){return Zs.MODULE_NAME}getId(){return Zs.ID}getBridgeProxy(){return this.bridgeProxy}async initialize(){try{if("undefined"!=typeof window){"function"==typeof window.__initializeNestedAppAuth&&await window.__initializeNestedAppAuth();const e=await Xs.create();this.accountContext=e.getAccountContext(),this.bridgeProxy=e,this.available=void 0!==e}}catch(e){this.logger.infoPii(`Could not initialize Nested App Auth bridge (${e})`)}return this.logger.info(`Nested App Auth Bridge available: ${this.available}`),this.available}}Zs.MODULE_NAME="",Zs.ID="NestedAppOperatingContext";class ec extends zs{getModuleName(){return ec.MODULE_NAME}getId(){return ec.ID}async initialize(){return this.available="undefined"!=typeof window,this.available}}ec.MODULE_NAME="",ec.ID="StandardOperatingContext";class tc{constructor(){this.dbName=Oa,this.version=1,this.tableName=Na,this.dbOpen=!1}async open(){return new Promise(((e,t)=>{const r=window.indexedDB.open(this.dbName,this.version);r.addEventListener("upgradeneeded",(e=>{e.target.result.createObjectStore(this.tableName)})),r.addEventListener("success",(t=>{const r=t;this.db=r.target.result,this.dbOpen=!0,e()})),r.addEventListener("error",(()=>t(ji(Pi))))}))}closeConnection(){const e=this.db;e&&this.dbOpen&&(e.close(),this.dbOpen=!1)}async validateDbIsOpen(){if(!this.dbOpen)return this.open()}async getItem(e){return await this.validateDbIsOpen(),new Promise(((t,r)=>{if(!this.db)return r(ji(wi));const n=this.db.transaction([this.tableName],"readonly").objectStore(this.tableName).get(e);n.addEventListener("success",(e=>{const r=e;this.closeConnection(),t(r.target.result)})),n.addEventListener("error",(e=>{this.closeConnection(),r(e)}))}))}async setItem(e,t){return await this.validateDbIsOpen(),new Promise(((r,n)=>{if(!this.db)return n(ji(wi));const o=this.db.transaction([this.tableName],"readwrite").objectStore(this.tableName).put(t,e);o.addEventListener("success",(()=>{this.closeConnection(),r()})),o.addEventListener("error",(e=>{this.closeConnection(),n(e)}))}))}async removeItem(e){return await this.validateDbIsOpen(),new Promise(((t,r)=>{if(!this.db)return r(ji(wi));const n=this.db.transaction([this.tableName],"readwrite").objectStore(this.tableName).delete(e);n.addEventListener("success",(()=>{this.closeConnection(),t()})),n.addEventListener("error",(e=>{this.closeConnection(),r(e)}))}))}async getKeys(){return await this.validateDbIsOpen(),new Promise(((e,t)=>{if(!this.db)return t(ji(wi));const r=this.db.transaction([this.tableName],"readonly").objectStore(this.tableName).getAllKeys();r.addEventListener("success",(t=>{const r=t;this.closeConnection(),e(r.target.result)})),r.addEventListener("error",(e=>{this.closeConnection(),t(e)}))}))}async containsKey(e){return await this.validateDbIsOpen(),new Promise(((t,r)=>{if(!this.db)return r(ji(wi));const n=this.db.transaction([this.tableName],"readonly").objectStore(this.tableName).count(e);n.addEventListener("success",(e=>{const r=e;this.closeConnection(),t(1===r.target.result)})),n.addEventListener("error",(e=>{this.closeConnection(),r(e)}))}))}async deleteDatabase(){return this.db&&this.dbOpen&&this.closeConnection(),new Promise(((e,t)=>{const r=window.indexedDB.deleteDatabase(Oa),n=setTimeout((()=>t(!1)),200);r.addEventListener("success",(()=>(clearTimeout(n),e(!0)))),r.addEventListener("blocked",(()=>(clearTimeout(n),e(!0)))),r.addEventListener("error",(()=>(clearTimeout(n),t(!1))))}))}}class rc{constructor(){this.cache=new Map}async initialize(){}getItem(e){return this.cache.get(e)||null}getUserData(e){return this.getItem(e)}setItem(e,t){this.cache.set(e,t)}async setUserData(e,t){this.setItem(e,t)}removeItem(e){this.cache.delete(e)}getKeys(){const e=[];return this.cache.forEach(((t,r)=>{e.push(r)})),e}containsKey(e){return this.cache.has(e)}clear(){this.cache.clear()}}class nc{constructor(e){this.inMemoryCache=new rc,this.indexedDBCache=new tc,this.logger=e}handleDatabaseAccessError(e){if(!(e instanceof Qi&&e.errorCode===Pi))throw e;this.logger.error("Could not access persistent storage. This may be caused by browser privacy features which block persistent storage in third-party contexts.")}async getItem(e){const t=this.inMemoryCache.getItem(e);if(!t)try{return this.logger.verbose("Queried item not found in in-memory cache, now querying persistent storage."),await this.indexedDBCache.getItem(e)}catch(e){this.handleDatabaseAccessError(e)}return t}async setItem(e,t){this.inMemoryCache.setItem(e,t);try{await this.indexedDBCache.setItem(e,t)}catch(e){this.handleDatabaseAccessError(e)}}async removeItem(e){this.inMemoryCache.removeItem(e);try{await this.indexedDBCache.removeItem(e)}catch(e){this.handleDatabaseAccessError(e)}}async getKeys(){const e=this.inMemoryCache.getKeys();if(0===e.length)try{return this.logger.verbose("In-memory cache is empty, now querying persistent storage."),await this.indexedDBCache.getKeys()}catch(e){this.handleDatabaseAccessError(e)}return e}async containsKey(e){const t=this.inMemoryCache.containsKey(e);if(!t)try{return this.logger.verbose("Key not found in in-memory cache, now querying persistent storage."),await this.indexedDBCache.containsKey(e)}catch(e){this.handleDatabaseAccessError(e)}return t}clearInMemory(){this.logger.verbose("Deleting in-memory keystore"),this.inMemoryCache.clear(),this.logger.verbose("In-memory keystore deleted")}async clearPersistent(){try{this.logger.verbose("Deleting persistent keystore");const e=await this.indexedDBCache.deleteDatabase();return e&&this.logger.verbose("Persistent keystore deleted"),e}catch(e){return this.handleDatabaseAccessError(e),!1}}}class oc{constructor(e,t,r){this.logger=e,function(e){if(!window)throw ji(vi);if(!window.crypto)throw ji(Vo);if(!e&&!window.crypto.subtle)throw ji(Vo,"crypto_subtle_undefined")}(r??!1),this.cache=new nc(this.logger),this.performanceClient=t}createNewGuid(){return rs()}base64Encode(e){return Da(e)}base64Decode(e){return Fa(e)}base64UrlEncode(e){return Ha(e)}encodeKid(e){return this.base64UrlEncode(JSON.stringify({kid:e}))}async getPublicKeyThumbprint(e){const t=this.performanceClient?.startMeasurement(zr.CryptoOptsGetPublicKeyThumbprint,e.correlationId),r=await async function(e,t){return window.crypto.subtle.generateKey(Xa,e,t)}(oc.EXTRACTABLE,oc.POP_KEY_USAGES),n=await ns(r.publicKey),o=ic({e:n.e,kty:n.kty,n:n.n}),i=await this.hashString(o),a=await ns(r.privateKey),s=await async function(e,t,r){return window.crypto.subtle.importKey("jwk",e,Xa,t,r)}(a,!1,["sign"]);return await this.cache.setItem(i,{privateKey:s,publicKey:r.publicKey,requestMethod:e.resourceRequestMethod,requestUri:e.resourceRequestUri}),t&&t.end({success:!0}),i}async removeTokenBindingKey(e){await this.cache.removeItem(e);if(await this.cache.containsKey(e))throw gt(tt)}async clearKeystore(){this.cache.clearInMemory();try{return await this.cache.clearPersistent(),!0}catch(e){return e instanceof Error?this.logger.error(`Clearing keystore failed with error: ${e.message}`):this.logger.error("Clearing keystore failed with unknown error"),!1}}async signJwt(e,t,r,n){const o=this.performanceClient?.startMeasurement(zr.CryptoOptsSignJwt,n),i=await this.cache.getItem(t);if(!i)throw ji(bi);const a=await ns(i.publicKey),s=ic(a),c=Ha(JSON.stringify({kid:t})),l=Ha(Ko.getShrHeaderString({...r?.header,alg:a.alg,kid:c}));e.cnf={jwk:JSON.parse(s)};const h=`${l}.${Ha(JSON.stringify(e))}`,d=(new TextEncoder).encode(h),u=await async function(e,t){return window.crypto.subtle.sign(Xa,e,t)}(i.privateKey,d),g=`${h}.${xa(new Uint8Array(u))}`;return o&&o.end({success:!0}),g}async hashString(e){return ds(e)}}function ic(e){return JSON.stringify(e,Object.keys(e).sort())}oc.POP_KEY_USAGES=["sign","verify"],oc.EXTRACTABLE=!0;const ac=864e5,sc="Lax",cc="None";class lc{initialize(){return Promise.resolve()}getItem(e){const t=`${encodeURIComponent(e)}`,r=document.cookie.split(";");for(let e=0;e<r.length;e++){const n=r[e],[o,...i]=decodeURIComponent(n).trim().split("="),a=i.join("=");if(o===t)return a}return""}getUserData(){throw gt(st)}setItem(e,t,r,n=!0,o=sc){let i=`${encodeURIComponent(e)}=${encodeURIComponent(t)};path=/;SameSite=${o};`;if(r){const e=function(e){const t=new Date,r=new Date(t.getTime()+e*ac);return r.toUTCString()}(r);i+=`expires=${e};`}(n||o===cc)&&(i+="Secure;"),document.cookie=i}async setUserData(){return Promise.reject(gt(st))}removeItem(e){this.setItem(e,"",-1)}getKeys(){const e=document.cookie.split(";"),t=[];return e.forEach((e=>{const r=decodeURIComponent(e).trim().split("=");t.push(r[0])})),t}containsKey(e){return this.getKeys().includes(e)}}function hc(e){const t=e.getItem(Aa);return t?JSON.parse(t):[]}function dc(e,t){const r=t.getItem(`${ka}.${e}`);if(r){const e=JSON.parse(r);if(e&&e.hasOwnProperty("idToken")&&e.hasOwnProperty("accessToken")&&e.hasOwnProperty("refreshToken"))return e}return{idToken:[],accessToken:[],refreshToken:[]}}const uc="msal.cache.encryption";class gc{constructor(e,t,r){if(!window.localStorage)throw vs(us);this.memoryStorage=new rc,this.initialized=!1,this.clientId=e,this.logger=t,this.performanceClient=r,this.broadcast=new BroadcastChannel("msal.broadcast.cache")}async initialize(e){const t=new lc,r=t.getItem(uc);let n={key:"",id:""};if(r)try{n=JSON.parse(r)}catch(e){}if(n.key&&n.id){const t=Gn(Ka,zr.Base64Decode,this.logger,this.performanceClient,e)(n.key);this.encryptionCookie={id:n.id,key:await $n(ss,zr.GenerateHKDF,this.logger,this.performanceClient,e)(t)},await $n(this.importExistingCache.bind(this),zr.ImportExistingCache,this.logger,this.performanceClient,e)(e)}else{this.clear();const r=rs(),n=await $n(as,zr.GenerateBaseKey,this.logger,this.performanceClient,e)(),o=Gn(xa,zr.UrlEncodeArr,this.logger,this.performanceClient,e)(new Uint8Array(n));this.encryptionCookie={id:r,key:await $n(ss,zr.GenerateHKDF,this.logger,this.performanceClient,e)(n)};const i={id:r,key:o};t.setItem(uc,JSON.stringify(i),0,!0,cc)}this.broadcast.addEventListener("message",this.updateCache.bind(this)),this.initialized=!0}getItem(e){return window.localStorage.getItem(e)}getUserData(e){if(!this.initialized)throw ji(Li);return this.memoryStorage.getItem(e)}setItem(e,t){window.localStorage.setItem(e,t)}async setUserData(e,t,r){if(!this.initialized||!this.encryptionCookie)throw ji(Li);const{data:n,nonce:o}=await $n(ls,zr.Encrypt,this.logger,this.performanceClient,r)(this.encryptionCookie.key,t,this.getContext(e)),i={id:this.encryptionCookie.id,nonce:o,data:n};this.memoryStorage.setItem(e,t),this.setItem(e,JSON.stringify(i)),this.broadcast.postMessage({key:e,value:t,context:this.getContext(e)})}removeItem(e){this.memoryStorage.containsKey(e)&&(this.memoryStorage.removeItem(e),this.broadcast.postMessage({key:e,value:null,context:this.getContext(e)})),window.localStorage.removeItem(e)}getKeys(){return Object.keys(window.localStorage)}containsKey(e){return window.localStorage.hasOwnProperty(e)}clear(){this.memoryStorage.clear();hc(this).forEach((e=>this.removeItem(e)));const e=dc(this.clientId,this);e.idToken.forEach((e=>this.removeItem(e))),e.accessToken.forEach((e=>this.removeItem(e))),e.refreshToken.forEach((e=>this.removeItem(e))),this.getKeys().forEach((e=>{(e.startsWith(t.CACHE_PREFIX)||-1!==e.indexOf(this.clientId))&&this.removeItem(e)}))}async importExistingCache(e){if(!this.encryptionCookie)return;let t=hc(this);t=await this.importArray(t,e),this.setItem(Aa,JSON.stringify(t));const r=dc(this.clientId,this);r.idToken=await this.importArray(r.idToken,e),r.accessToken=await this.importArray(r.accessToken,e),r.refreshToken=await this.importArray(r.refreshToken,e),this.setItem(`${ka}.${this.clientId}`,JSON.stringify(r))}async getItemFromEncryptedCache(e,t){if(!this.encryptionCookie)return null;const r=this.getItem(e);if(!r)return null;let n;try{n=JSON.parse(r)}catch(e){return null}return n.id&&n.nonce&&n.data?n.id!==this.encryptionCookie.id?(this.performanceClient.incrementFields({encryptedCacheExpiredCount:1},t),null):$n(hs,zr.Decrypt,this.logger,this.performanceClient,t)(this.encryptionCookie.key,n.nonce,this.getContext(e),n.data):(this.performanceClient.incrementFields({unencryptedCacheCount:1},t),null)}async importArray(e,t){const r=[],n=[];return e.forEach((e=>{const o=this.getItemFromEncryptedCache(e,t).then((t=>{t?(this.memoryStorage.setItem(e,t),r.push(e)):this.removeItem(e)}));n.push(o)})),await Promise.all(n),r}getContext(e){let t="";return e.includes(this.clientId)&&(t=this.clientId),t}updateCache(e){this.logger.trace("Updating internal cache from broadcast event");const t=this.performanceClient.startMeasurement(zr.LocalStorageUpdated);t.add({isBackground:!0});const{key:r,value:n,context:o}=e.data;return r?o&&o!==this.clientId?(this.logger.trace(`Ignoring broadcast event from clientId: ${o}`),void t.end({success:!1,errorCode:"contextMismatch"})):(n?(this.memoryStorage.setItem(r,n),this.logger.verbose("Updated item in internal cache")):(this.memoryStorage.removeItem(r),this.logger.verbose("Removed item from internal cache")),void t.end({success:!0})):(this.logger.error("Broadcast event missing key"),void t.end({success:!1,errorCode:"noKey"}))}}class pc{constructor(){if(!window.sessionStorage)throw vs(us)}async initialize(){}getItem(e){return window.sessionStorage.getItem(e)}getUserData(e){return this.getItem(e)}setItem(e,t){window.sessionStorage.setItem(e,t)}async setUserData(e,t){this.setItem(e,t)}removeItem(e){window.sessionStorage.removeItem(e)}getKeys(){return Object.keys(window.sessionStorage)}containsKey(e){return window.sessionStorage.hasOwnProperty(e)}}const mc={INITIALIZE_START:"msal:initializeStart",INITIALIZE_END:"msal:initializeEnd",ACCOUNT_ADDED:"msal:accountAdded",ACCOUNT_REMOVED:"msal:accountRemoved",ACTIVE_ACCOUNT_CHANGED:"msal:activeAccountChanged",LOGIN_START:"msal:loginStart",LOGIN_SUCCESS:"msal:loginSuccess",LOGIN_FAILURE:"msal:loginFailure",ACQUIRE_TOKEN_START:"msal:acquireTokenStart",ACQUIRE_TOKEN_SUCCESS:"msal:acquireTokenSuccess",ACQUIRE_TOKEN_FAILURE:"msal:acquireTokenFailure",ACQUIRE_TOKEN_NETWORK_START:"msal:acquireTokenFromNetworkStart",SSO_SILENT_START:"msal:ssoSilentStart",SSO_SILENT_SUCCESS:"msal:ssoSilentSuccess",SSO_SILENT_FAILURE:"msal:ssoSilentFailure",ACQUIRE_TOKEN_BY_CODE_START:"msal:acquireTokenByCodeStart",ACQUIRE_TOKEN_BY_CODE_SUCCESS:"msal:acquireTokenByCodeSuccess",ACQUIRE_TOKEN_BY_CODE_FAILURE:"msal:acquireTokenByCodeFailure",HANDLE_REDIRECT_START:"msal:handleRedirectStart",HANDLE_REDIRECT_END:"msal:handleRedirectEnd",POPUP_OPENED:"msal:popupOpened",LOGOUT_START:"msal:logoutStart",LOGOUT_SUCCESS:"msal:logoutSuccess",LOGOUT_FAILURE:"msal:logoutFailure",LOGOUT_END:"msal:logoutEnd",RESTORE_FROM_BFCACHE:"msal:restoreFromBFCache",BROKER_CONNECTION_ESTABLISHED:"msal:brokerConnectionEstablished"};class fc extends Fr{constructor(e,t,r,n,o,i,a){super(e,r,n,o,a),this.cacheConfig=t,this.logger=n,this.internalStorage=new rc,this.browserStorage=yc(e,t.cacheLocation,n,o),this.temporaryCacheStorage=yc(e,t.temporaryCacheLocation,n,o),this.cookieStorage=new lc,this.eventHandler=i}async initialize(e){await this.browserStorage.initialize(e),this.trackVersionChanges(e)}trackVersionChanges(e){const t=this.browserStorage.getItem(Sa);t&&(this.logger.info(`MSAL.js was last initialized by version: ${t}`),this.performanceClient.addFields({previousLibraryVersion:t},e)),t!==Ks&&this.browserStorage.setItem(Sa,Ks)}validateAndParseJson(e){try{const t=JSON.parse(e);return t&&"object"==typeof t?t:null}catch(e){return null}}getAccount(e){this.logger.trace("BrowserCacheManager.getAccount called");const t=this.browserStorage.getUserData(e);if(!t)return this.removeAccountKeyFromMap(e),null;const r=this.validateAndParseJson(t);return r&&Er.isAccountEntity(r)?Fr.toObject(new Er,r):(this.removeAccountKeyFromMap(e),null)}async setAccount(e,t){this.logger.trace("BrowserCacheManager.setAccount called");const r=e.generateAccountKey();await $n(this.browserStorage.setUserData.bind(this.browserStorage),zr.SetUserData,this.logger,this.performanceClient)(r,JSON.stringify(e),t);const n=this.addAccountKeyToMap(r);this.cacheConfig.cacheLocation===ua.LocalStorage&&n&&this.eventHandler.emitEvent(mc.ACCOUNT_ADDED,void 0,e.getAccountInfo())}getAccountKeys(){return hc(this.browserStorage)}addAccountKeyToMap(e){this.logger.trace("BrowserCacheManager.addAccountKeyToMap called"),this.logger.tracePii(`BrowserCacheManager.addAccountKeyToMap called with key: ${e}`);const t=this.getAccountKeys();return-1===t.indexOf(e)?(t.push(e),this.browserStorage.setItem(Aa,JSON.stringify(t)),this.logger.verbose("BrowserCacheManager.addAccountKeyToMap account key added"),!0):(this.logger.verbose("BrowserCacheManager.addAccountKeyToMap account key already exists in map"),!1)}removeAccountKeyFromMap(e){this.logger.trace("BrowserCacheManager.removeAccountKeyFromMap called"),this.logger.tracePii(`BrowserCacheManager.removeAccountKeyFromMap called with key: ${e}`);const t=this.getAccountKeys(),r=t.indexOf(e);r>-1?(t.splice(r,1),this.browserStorage.setItem(Aa,JSON.stringify(t)),this.logger.trace("BrowserCacheManager.removeAccountKeyFromMap account key removed")):this.logger.trace("BrowserCacheManager.removeAccountKeyFromMap key not found in existing map")}removeAccount(e,t){super.removeAccount(e,t),this.removeAccountKeyFromMap(e)}removeAccountContext(e,t){super.removeAccountContext(e,t),this.cacheConfig.cacheLocation===ua.LocalStorage&&this.eventHandler.emitEvent(mc.ACCOUNT_REMOVED,void 0,e.getAccountInfo())}removeIdToken(e){super.removeIdToken(e),this.removeTokenKey(e,H.ID_TOKEN)}removeAccessToken(e,t){super.removeAccessToken(e,t),this.removeTokenKey(e,H.ACCESS_TOKEN)}removeRefreshToken(e){super.removeRefreshToken(e),this.removeTokenKey(e,H.REFRESH_TOKEN)}getTokenKeys(){return dc(this.clientId,this.browserStorage)}addTokenKey(e,t){this.logger.trace("BrowserCacheManager addTokenKey called");const r=this.getTokenKeys();switch(t){case H.ID_TOKEN:-1===r.idToken.indexOf(e)&&(this.logger.info("BrowserCacheManager: addTokenKey - idToken added to map"),r.idToken.push(e));break;case H.ACCESS_TOKEN:-1===r.accessToken.indexOf(e)&&(this.logger.info("BrowserCacheManager: addTokenKey - accessToken added to map"),r.accessToken.push(e));break;case H.REFRESH_TOKEN:-1===r.refreshToken.indexOf(e)&&(this.logger.info("BrowserCacheManager: addTokenKey - refreshToken added to map"),r.refreshToken.push(e));break;default:throw this.logger.error(`BrowserCacheManager:addTokenKey - CredentialType provided invalid. CredentialType: ${t}`),gt(We)}this.browserStorage.setItem(`${ka}.${this.clientId}`,JSON.stringify(r))}removeTokenKey(e,t){this.logger.trace("BrowserCacheManager removeTokenKey called");const r=this.getTokenKeys();switch(t){case H.ID_TOKEN:this.logger.infoPii(`BrowserCacheManager: removeTokenKey - attempting to remove idToken with key: ${e} from map`);const n=r.idToken.indexOf(e);n>-1?(this.logger.info("BrowserCacheManager: removeTokenKey - idToken removed from map"),r.idToken.splice(n,1)):this.logger.info("BrowserCacheManager: removeTokenKey - idToken does not exist in map. Either it was previously removed or it was never added.");break;case H.ACCESS_TOKEN:this.logger.infoPii(`BrowserCacheManager: removeTokenKey - attempting to remove accessToken with key: ${e} from map`);const o=r.accessToken.indexOf(e);o>-1?(this.logger.info("BrowserCacheManager: removeTokenKey - accessToken removed from map"),r.accessToken.splice(o,1)):this.logger.info("BrowserCacheManager: removeTokenKey - accessToken does not exist in map. Either it was previously removed or it was never added.");break;case H.REFRESH_TOKEN:this.logger.infoPii(`BrowserCacheManager: removeTokenKey - attempting to remove refreshToken with key: ${e} from map`);const i=r.refreshToken.indexOf(e);i>-1?(this.logger.info("BrowserCacheManager: removeTokenKey - refreshToken removed from map"),r.refreshToken.splice(i,1)):this.logger.info("BrowserCacheManager: removeTokenKey - refreshToken does not exist in map. Either it was previously removed or it was never added.");break;default:throw this.logger.error(`BrowserCacheManager:removeTokenKey - CredentialType provided invalid. CredentialType: ${t}`),gt(We)}this.browserStorage.setItem(`${ka}.${this.clientId}`,JSON.stringify(r))}getIdTokenCredential(e){const t=this.browserStorage.getUserData(e);if(!t)return this.logger.trace("BrowserCacheManager.getIdTokenCredential: called, no cache hit"),this.removeTokenKey(e,H.ID_TOKEN),null;const r=this.validateAndParseJson(t);return r&&((n=r)&&Mt(n)&&n.hasOwnProperty("realm")&&n.credentialType===H.ID_TOKEN)?(this.logger.trace("BrowserCacheManager.getIdTokenCredential: cache hit"),r):(this.logger.trace("BrowserCacheManager.getIdTokenCredential: called, no cache hit"),this.removeTokenKey(e,H.ID_TOKEN),null);var n}async setIdTokenCredential(e,t){this.logger.trace("BrowserCacheManager.setIdTokenCredential called");const r=Et(e);await $n(this.browserStorage.setUserData.bind(this.browserStorage),zr.SetUserData,this.logger,this.performanceClient)(r,JSON.stringify(e),t),this.addTokenKey(r,H.ID_TOKEN)}getAccessTokenCredential(e){const t=this.browserStorage.getUserData(e);if(!t)return this.logger.trace("BrowserCacheManager.getAccessTokenCredential: called, no cache hit"),this.removeTokenKey(e,H.ACCESS_TOKEN),null;const r=this.validateAndParseJson(t);return r&&(n=r)&&Mt(n)&&n.hasOwnProperty("realm")&&n.hasOwnProperty("target")&&(n.credentialType===H.ACCESS_TOKEN||n.credentialType===H.ACCESS_TOKEN_WITH_AUTH_SCHEME)?(this.logger.trace("BrowserCacheManager.getAccessTokenCredential: cache hit"),r):(this.logger.trace("BrowserCacheManager.getAccessTokenCredential: called, no cache hit"),this.removeTokenKey(e,H.ACCESS_TOKEN),null);var n}async setAccessTokenCredential(e,t){this.logger.trace("BrowserCacheManager.setAccessTokenCredential called");const r=Et(e);await $n(this.browserStorage.setUserData.bind(this.browserStorage),zr.SetUserData,this.logger,this.performanceClient)(r,JSON.stringify(e),t),this.addTokenKey(r,H.ACCESS_TOKEN)}getRefreshTokenCredential(e){const t=this.browserStorage.getUserData(e);if(!t)return this.logger.trace("BrowserCacheManager.getRefreshTokenCredential: called, no cache hit"),this.removeTokenKey(e,H.REFRESH_TOKEN),null;const r=this.validateAndParseJson(t);return r&&(n=r)&&Mt(n)&&n.credentialType===H.REFRESH_TOKEN?(this.logger.trace("BrowserCacheManager.getRefreshTokenCredential: cache hit"),r):(this.logger.trace("BrowserCacheManager.getRefreshTokenCredential: called, no cache hit"),this.removeTokenKey(e,H.REFRESH_TOKEN),null);var n}async setRefreshTokenCredential(e,t){this.logger.trace("BrowserCacheManager.setRefreshTokenCredential called");const r=Et(e);await $n(this.browserStorage.setUserData.bind(this.browserStorage),zr.SetUserData,this.logger,this.performanceClient)(r,JSON.stringify(e),t),this.addTokenKey(r,H.REFRESH_TOKEN)}getAppMetadata(e){const t=this.browserStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getAppMetadata: called, no cache hit"),null;const r=this.validateAndParseJson(t);return r&&(n=e,(o=r)&&0===n.indexOf(x)&&o.hasOwnProperty("clientId")&&o.hasOwnProperty("environment"))?(this.logger.trace("BrowserCacheManager.getAppMetadata: cache hit"),r):(this.logger.trace("BrowserCacheManager.getAppMetadata: called, no cache hit"),null);var n,o}setAppMetadata(e){this.logger.trace("BrowserCacheManager.setAppMetadata called");const t=function({environment:e,clientId:t}){return[x,e,t].join(L).toLowerCase()}(e);this.browserStorage.setItem(t,JSON.stringify(e))}getServerTelemetry(e){const t=this.browserStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getServerTelemetry: called, no cache hit"),null;const r=this.validateAndParseJson(t);return r&&function(e,t){const r=0===e.indexOf(Q.CACHE_KEY);let n=!0;return t&&(n=t.hasOwnProperty("failedRequests")&&t.hasOwnProperty("errors")&&t.hasOwnProperty("cacheHits")),r&&n}(e,r)?(this.logger.trace("BrowserCacheManager.getServerTelemetry: cache hit"),r):(this.logger.trace("BrowserCacheManager.getServerTelemetry: called, no cache hit"),null)}setServerTelemetry(e,t){this.logger.trace("BrowserCacheManager.setServerTelemetry called"),this.browserStorage.setItem(e,JSON.stringify(t))}getAuthorityMetadata(e){const t=this.internalStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getAuthorityMetadata: called, no cache hit"),null;const r=this.validateAndParseJson(t);return r&&function(e,t){return!!t&&0===e.indexOf(B)&&t.hasOwnProperty("aliases")&&t.hasOwnProperty("preferred_cache")&&t.hasOwnProperty("preferred_network")&&t.hasOwnProperty("canonical_authority")&&t.hasOwnProperty("authorization_endpoint")&&t.hasOwnProperty("token_endpoint")&&t.hasOwnProperty("issuer")&&t.hasOwnProperty("aliasesFromNetwork")&&t.hasOwnProperty("endpointsFromNetwork")&&t.hasOwnProperty("expiresAt")&&t.hasOwnProperty("jwks_uri")}(e,r)?(this.logger.trace("BrowserCacheManager.getAuthorityMetadata: cache hit"),r):null}getAuthorityMetadataKeys(){return this.internalStorage.getKeys().filter((e=>this.isAuthorityMetadata(e)))}setWrapperMetadata(e,t){this.internalStorage.setItem(ba,e),this.internalStorage.setItem(Ea,t)}getWrapperMetadata(){return[this.internalStorage.getItem(ba)||t.EMPTY_STRING,this.internalStorage.getItem(Ea)||t.EMPTY_STRING]}setAuthorityMetadata(e,t){this.logger.trace("BrowserCacheManager.setAuthorityMetadata called"),this.internalStorage.setItem(e,JSON.stringify(t))}getActiveAccount(){const e=this.generateCacheKey(C),t=this.browserStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getActiveAccount: No active account filters found"),null;const r=this.validateAndParseJson(t);return r?(this.logger.trace("BrowserCacheManager.getActiveAccount: Active account filters schema found"),this.getAccountInfoFilteredBy({homeAccountId:r.homeAccountId,localAccountId:r.localAccountId,tenantId:r.tenantId})):(this.logger.trace("BrowserCacheManager.getActiveAccount: No active account found"),null)}setActiveAccount(e){const t=this.generateCacheKey(C);if(e){this.logger.verbose("setActiveAccount: Active account set");const r={homeAccountId:e.homeAccountId,localAccountId:e.localAccountId,tenantId:e.tenantId};this.browserStorage.setItem(t,JSON.stringify(r))}else this.logger.verbose("setActiveAccount: No account passed, active account not set"),this.browserStorage.removeItem(t);this.eventHandler.emitEvent(mc.ACTIVE_ACCOUNT_CHANGED)}getThrottlingCache(e){const t=this.browserStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getThrottlingCache: called, no cache hit"),null;const r=this.validateAndParseJson(t);return r&&function(e,t){let r=!1;e&&(r=0===e.indexOf(J));let n=!0;return t&&(n=t.hasOwnProperty("throttleTime")),r&&n}(e,r)?(this.logger.trace("BrowserCacheManager.getThrottlingCache: cache hit"),r):(this.logger.trace("BrowserCacheManager.getThrottlingCache: called, no cache hit"),null)}setThrottlingCache(e,t){this.logger.trace("BrowserCacheManager.setThrottlingCache called"),this.browserStorage.setItem(e,JSON.stringify(t))}getTemporaryCache(e,t){const r=t?this.generateCacheKey(e):e;if(this.cacheConfig.storeAuthStateInCookie){const e=this.cookieStorage.getItem(r);if(e)return this.logger.trace("BrowserCacheManager.getTemporaryCache: storeAuthStateInCookies set to true, retrieving from cookies"),e}const n=this.temporaryCacheStorage.getItem(r);if(!n){if(this.cacheConfig.cacheLocation===ua.LocalStorage){const e=this.browserStorage.getItem(r);if(e)return this.logger.trace("BrowserCacheManager.getTemporaryCache: Temporary cache item found in local storage"),e}return this.logger.trace("BrowserCacheManager.getTemporaryCache: No cache item found in local storage"),null}return this.logger.trace("BrowserCacheManager.getTemporaryCache: Temporary cache item returned"),n}setTemporaryCache(e,t,r){const n=r?this.generateCacheKey(e):e;this.temporaryCacheStorage.setItem(n,t),this.cacheConfig.storeAuthStateInCookie&&(this.logger.trace("BrowserCacheManager.setTemporaryCache: storeAuthStateInCookie set to true, setting item cookie"),this.cookieStorage.setItem(n,t,void 0,this.cacheConfig.secureCookies))}removeItem(e){this.browserStorage.removeItem(e)}removeTemporaryItem(e){this.temporaryCacheStorage.removeItem(e),this.cacheConfig.storeAuthStateInCookie&&(this.logger.trace("BrowserCacheManager.removeItem: storeAuthStateInCookie is true, clearing item cookie"),this.cookieStorage.removeItem(e))}getKeys(){return this.browserStorage.getKeys()}clear(e){this.removeAllAccounts(e),this.removeAppMetadata(),this.temporaryCacheStorage.getKeys().forEach((e=>{-1===e.indexOf(t.CACHE_PREFIX)&&-1===e.indexOf(this.clientId)||this.removeTemporaryItem(e)})),this.browserStorage.getKeys().forEach((e=>{-1===e.indexOf(t.CACHE_PREFIX)&&-1===e.indexOf(this.clientId)||this.browserStorage.removeItem(e)})),this.internalStorage.clear()}clearTokensAndKeysWithClaims(e){this.performanceClient.addQueueMeasurement(zr.ClearTokensAndKeysWithClaims,e);const t=this.getTokenKeys();let r=0;t.accessToken.forEach((t=>{const n=this.getAccessTokenCredential(t);n?.requestedClaimsHash&&t.includes(n.requestedClaimsHash.toLowerCase())&&(this.removeAccessToken(t,e),r++)})),r>0&&this.logger.warning(`${r} access tokens with claims in the cache keys have been removed from the cache.`)}generateCacheKey(e){return this.validateAndParseJson(e)?JSON.stringify(e):pr.startsWith(e,t.CACHE_PREFIX)?e:`${t.CACHE_PREFIX}.${this.clientId}.${e}`}resetRequestCache(){this.logger.trace("BrowserCacheManager.resetRequestCache called"),this.removeTemporaryItem(this.generateCacheKey(va)),this.removeTemporaryItem(this.generateCacheKey(wa)),this.removeTemporaryItem(this.generateCacheKey(ya)),this.removeTemporaryItem(this.generateCacheKey(Ca)),this.removeTemporaryItem(this.generateCacheKey(Ta)),this.setInteractionInProgress(!1)}cacheAuthorizeRequest(e,t){this.logger.trace("BrowserCacheManager.cacheAuthorizeRequest called");const r=Da(JSON.stringify(e));if(this.setTemporaryCache(va,r,!0),t){const e=Da(t);this.setTemporaryCache(wa,e,!0)}}getCachedRequest(){this.logger.trace("BrowserCacheManager.getCachedRequest called");const e=this.getTemporaryCache(va,!0);if(!e)throw ji(mi);const t=this.getTemporaryCache(wa,!0);let r,n="";try{r=JSON.parse(Fa(e)),t&&(n=Fa(t))}catch(t){throw this.logger.errorPii(`Attempted to parse: ${e}`),this.logger.error(`Parsing cached token request threw with error: ${t}`),ji(fi)}return[r,n]}getCachedNativeRequest(){this.logger.trace("BrowserCacheManager.getCachedNativeRequest called");const e=this.getTemporaryCache(Ta,!0);if(!e)return this.logger.trace("BrowserCacheManager.getCachedNativeRequest: No cached native request found"),null;const t=this.validateAndParseJson(e);return t||(this.logger.error("BrowserCacheManager.getCachedNativeRequest: Unable to parse native request"),null)}isInteractionInProgress(e){const t=this.getInteractionInProgress()?.clientId;return e?t===this.clientId:!!t}getInteractionInProgress(){const e=`${t.CACHE_PREFIX}.${Ia}`,r=this.getTemporaryCache(e,!1);try{return r?JSON.parse(r):null}catch(t){return this.logger.error("Cannot parse interaction status. Removing temporary cache items and clearing url hash. Retrying interaction should fix the error"),this.removeTemporaryItem(e),this.resetRequestCache(),ws(window),null}}setInteractionInProgress(e,r=ma){const n=`${t.CACHE_PREFIX}.${Ia}`;if(e){if(this.getInteractionInProgress())throw ji(ri);this.setTemporaryCache(n,JSON.stringify({clientId:this.clientId,type:r}),!1)}else e||this.getInteractionInProgress()?.clientId!==this.clientId||this.removeTemporaryItem(n)}async hydrateCache(e,t){const r=Rt(e.account?.homeAccountId,e.account?.environment,e.idToken,this.clientId,e.tenantId);let n;t.claims&&(n=await this.cryptoImpl.hashString(t.claims));const o={idToken:r,accessToken:_t(e.account?.homeAccountId,e.account.environment,e.accessToken,this.clientId,e.tenantId,e.scopes.join(" "),e.expiresOn?At(e.expiresOn):0,e.extExpiresOn?At(e.extExpiresOn):0,Fa,void 0,e.tokenType,void 0,t.sshKid,t.claims,n)};return this.saveCacheRecord(o,e.correlationId)}async saveCacheRecord(e,t,r){try{await super.saveCacheRecord(e,t,r)}catch(e){if(e instanceof Br&&this.performanceClient&&t)try{const e=this.getTokenKeys();this.performanceClient.addFields({cacheRtCount:e.refreshToken.length,cacheIdCount:e.idToken.length,cacheAtCount:e.accessToken.length},t)}catch(e){}throw e}}}function yc(e,t,r,n){try{switch(t){case ua.LocalStorage:return new gc(e,r,n);case ua.SessionStorage:return new pc}}catch(e){r.error(e)}return new rc}const Cc=(e,t,r,n)=>new fc(e,{cacheLocation:ua.MemoryStorage,temporaryCacheLocation:ua.MemoryStorage,storeAuthStateInCookie:!1,secureCookies:!1,cacheMigrationEnabled:!1,claimsBasedCachingEnabled:!1},pt,t,r,n);function vc(e,t,r,n){return e.verbose("getAllAccounts called"),r?t.getAllAccounts(n):[]}function wc(e,t,r){if(t.trace("getAccount called"),0===Object.keys(e).length)return t.warning("getAccount: No accountFilter provided"),null;const n=r.getAccountInfoFilteredBy(e);return n?(t.verbose("getAccount: Account matching provided filter found, returning"),n):(t.verbose("getAccount: No matching account found, returning null"),null)}function Ic(e,t,r){if(t.trace("getAccountByUsername called"),!e)return t.warning("getAccountByUsername: No username provided"),null;const n=r.getAccountInfoFilteredBy({username:e});return n?(t.verbose("getAccountByUsername: Account matching username found, returning"),t.verbosePii(`getAccountByUsername: Returning signed-in accounts matching username: ${e}`),n):(t.verbose("getAccountByUsername: No matching account found, returning null"),null)}function Tc(e,t,r){if(t.trace("getAccountByHomeId called"),!e)return t.warning("getAccountByHomeId: No homeAccountId provided"),null;const n=r.getAccountInfoFilteredBy({homeAccountId:e});return n?(t.verbose("getAccountByHomeId: Account matching homeAccountId found, returning"),t.verbosePii(`getAccountByHomeId: Returning signed-in accounts matching homeAccountId: ${e}`),n):(t.verbose("getAccountByHomeId: No matching account found, returning null"),null)}function Ac(e,t,r){if(t.trace("getAccountByLocalId called"),!e)return t.warning("getAccountByLocalId: No localAccountId provided"),null;const n=r.getAccountInfoFilteredBy({localAccountId:e});return n?(t.verbose("getAccountByLocalId: Account matching localAccountId found, returning"),t.verbosePii(`getAccountByLocalId: Returning signed-in accounts matching localAccountId: ${e}`),n):(t.verbose("getAccountByLocalId: No matching account found, returning null"),null)}function kc(e,t){t.setActiveAccount(e)}function Sc(e){return e.getActiveAccount()}class bc{constructor(e){this.eventCallbacks=new Map,this.logger=e||new ft({}),"undefined"!=typeof BroadcastChannel&&(this.broadcastChannel=new BroadcastChannel("msal.broadcast.event")),this.invokeCrossTabCallbacks=this.invokeCrossTabCallbacks.bind(this)}addEventCallback(e,t,r){if("undefined"!=typeof window){const n=r||qs();return this.eventCallbacks.has(n)?(this.logger.error(`Event callback with id: ${n} is already registered. Please provide a unique id or remove the existing callback and try again.`),null):(this.eventCallbacks.set(n,[e,t||[]]),this.logger.verbose(`Event callback registered with id: ${n}`),n)}return null}removeEventCallback(e){this.eventCallbacks.delete(e),this.logger.verbose(`Event callback ${e} removed.`)}emitEvent(e,t,r,n){const o={eventType:e,interactionType:t||null,payload:r||null,error:n||null,timestamp:Date.now()};switch(e){case mc.ACCOUNT_ADDED:case mc.ACCOUNT_REMOVED:case mc.ACTIVE_ACCOUNT_CHANGED:this.broadcastChannel?.postMessage(o);break;default:this.invokeCallbacks(o)}}invokeCallbacks(e){this.eventCallbacks.forEach((([t,r],n)=>{(0===r.length||r.includes(e.eventType))&&(this.logger.verbose(`Emitting event to callback ${n}: ${e.eventType}`),t.apply(null,[e]))}))}invokeCrossTabCallbacks(e){const t=e.data;this.invokeCallbacks(t)}subscribeCrossTab(){this.broadcastChannel?.addEventListener("message",this.invokeCrossTabCallbacks)}unsubscribeCrossTab(){this.broadcastChannel?.removeEventListener("message",this.invokeCrossTabCallbacks)}}class Ec{constructor(e,t,r,n,o,i,a,s,c){this.config=e,this.browserStorage=t,this.browserCrypto=r,this.networkClient=this.config.system.networkClient,this.eventHandler=o,this.navigationClient=i,this.platformAuthProvider=s,this.correlationId=c||rs(),this.logger=n.clone(Zi,Ks,this.correlationId),this.performanceClient=a}async clearCacheOnLogout(e){if(e){Er.accountInfoIsEqual(e,this.browserStorage.getActiveAccount(),!1)&&(this.logger.verbose("Setting active account to null"),this.browserStorage.setActiveAccount(null));try{this.browserStorage.removeAccount(Er.generateAccountCacheKey(e),this.correlationId),this.logger.verbose("Cleared cache items belonging to the account provided in the logout request.")}catch(e){this.logger.error("Account provided in logout request was not found. Local cache unchanged.")}}else try{this.logger.verbose("No account provided in logout request, clearing all cache items.",this.correlationId),this.browserStorage.clear(this.correlationId),await this.browserCrypto.clearKeystore()}catch(e){this.logger.error("Attempted to clear all MSAL cache items and failed. Local cache unchanged.")}}getRedirectUri(e){this.logger.verbose("getRedirectUri called");const t=e||this.config.auth.redirectUri;return Mr.getAbsoluteUrl(t,ks())}initializeServerTelemetryManager(e,t){this.logger.verbose("initializeServerTelemetryManager called");const r={clientId:this.config.auth.clientId,correlationId:this.correlationId,apiId:e,forceRefresh:t||!1,wrapperSKU:this.browserStorage.getWrapperMetadata()[0],wrapperVer:this.browserStorage.getWrapperMetadata()[1]};return new Uo(r,this.browserStorage)}async getDiscoveredAuthority(e){const{account:t}=e,r=e.requestExtraQueryParameters&&e.requestExtraQueryParameters.hasOwnProperty("instance_aware")?e.requestExtraQueryParameters.instance_aware:void 0;this.performanceClient.addQueueMeasurement(zr.StandardInteractionClientGetDiscoveredAuthority,this.correlationId);const n={protocolMode:this.config.auth.protocolMode,OIDCOptions:this.config.auth.OIDCOptions,knownAuthorities:this.config.auth.knownAuthorities,cloudDiscoveryMetadata:this.config.auth.cloudDiscoveryMetadata,authorityMetadata:this.config.auth.authorityMetadata,skipAuthorityMetadataCache:this.config.auth.skipAuthorityMetadataCache},o=e.requestAuthority||this.config.auth.authority,i=r?.length?"true"===r:this.config.auth.instanceAware,a=t&&i?this.config.auth.authority.replace(Mr.getDomainFromUrl(o),t.environment):o,s=jn.generateAuthority(a,e.requestAzureCloudOptions||this.config.auth.azureCloudOptions),c=await $n(Jn,zr.AuthorityFactoryCreateDiscoveredInstance,this.logger,this.performanceClient,this.correlationId)(s,this.config.system.networkClient,this.browserStorage,n,this.logger,this.correlationId,this.performanceClient);if(t&&!c.isAlias(t.environment))throw gr(cr);return c}}async function Rc(e,t,r,n){r.addQueueMeasurement(zr.InitializeBaseRequest,e.correlationId);const o=e.authority||t.auth.authority,i=[...e&&e.scopes||[]],a={...e,correlationId:e.correlationId,authority:o,scopes:i};if(a.authenticationScheme){if(a.authenticationScheme===j.SSH){if(!e.sshJwk)throw gr(rr);if(!e.sshKid)throw gr(nr)}n.verbose(`Authentication Scheme set to "${a.authenticationScheme}" as configured in Auth request`)}else a.authenticationScheme=j.BEARER,n.verbose('Authentication Scheme wasn\'t explicitly set in request, defaulting to "Bearer" request');return t.cache.claimsBasedCachingEnabled&&e.claims&&!pr.isEmptyObj(e.claims)&&(a.requestedClaimsHash=await ds(e.claims)),a}async function _c(e,t,r,n,o){n.addQueueMeasurement(zr.InitializeSilentRequest,e.correlationId);const i=await $n(Rc,zr.InitializeBaseRequest,o,n,e.correlationId)(e,r,n,o);return{...e,...i,account:t,forceRefresh:e.forceRefresh||!1}}class Pc extends Ec{initializeLogoutRequest(e){this.logger.verbose("initializeLogoutRequest called",e?.correlationId);const t={correlationId:this.correlationId||rs(),...e};if(e)if(e.logoutHint)this.logger.verbose("logoutHint has already been set in logoutRequest");else if(e.account){const r=this.getLogoutHintFromIdTokenClaims(e.account);r&&(this.logger.verbose("Setting logoutHint to login_hint ID Token Claim value for the account provided"),t.logoutHint=r)}else this.logger.verbose("logoutHint was not set and account was not passed into logout request, logoutHint will not be set");else this.logger.verbose("logoutHint will not be set since no logout request was configured");return e&&null===e.postLogoutRedirectUri?this.logger.verbose("postLogoutRedirectUri passed as null, not setting post logout redirect uri",t.correlationId):e&&e.postLogoutRedirectUri?(this.logger.verbose("Setting postLogoutRedirectUri to uri set on logout request",t.correlationId),t.postLogoutRedirectUri=Mr.getAbsoluteUrl(e.postLogoutRedirectUri,ks())):null===this.config.auth.postLogoutRedirectUri?this.logger.verbose("postLogoutRedirectUri configured as null and no uri set on request, not passing post logout redirect",t.correlationId):this.config.auth.postLogoutRedirectUri?(this.logger.verbose("Setting postLogoutRedirectUri to configured uri",t.correlationId),t.postLogoutRedirectUri=Mr.getAbsoluteUrl(this.config.auth.postLogoutRedirectUri,ks())):(this.logger.verbose("Setting postLogoutRedirectUri to current page",t.correlationId),t.postLogoutRedirectUri=Mr.getAbsoluteUrl(ks(),ks())),t}getLogoutHintFromIdTokenClaims(e){const t=e.idTokenClaims;if(t){if(t.login_hint)return t.login_hint;this.logger.verbose("The ID Token Claims tied to the provided account do not contain a login_hint claim, logoutHint will not be added to logout request")}else this.logger.verbose("The provided account does not contain ID Token Claims, logoutHint will not be added to logout request");return null}async createAuthCodeClient(e){this.performanceClient.addQueueMeasurement(zr.StandardInteractionClientCreateAuthCodeClient,this.correlationId);const t=await $n(this.getClientConfiguration.bind(this),zr.StandardInteractionClientGetClientConfiguration,this.logger,this.performanceClient,this.correlationId)(e);return new Ro(t,this.performanceClient)}async getClientConfiguration(e){const{serverTelemetryManager:r,requestAuthority:n,requestAzureCloudOptions:o,requestExtraQueryParameters:i,account:a}=e;this.performanceClient.addQueueMeasurement(zr.StandardInteractionClientGetClientConfiguration,this.correlationId);const s=await $n(this.getDiscoveredAuthority.bind(this),zr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,this.correlationId)({requestAuthority:n,requestAzureCloudOptions:o,requestExtraQueryParameters:i,account:a}),c=this.config.system.loggerOptions;return{authOptions:{clientId:this.config.auth.clientId,authority:s,clientCapabilities:this.config.auth.clientCapabilities,redirectUri:this.config.auth.redirectUri},systemOptions:{tokenRenewalOffsetSeconds:this.config.system.tokenRenewalOffsetSeconds,preventCorsPreflight:!0},loggerOptions:{loggerCallback:c.loggerCallback,piiLoggingEnabled:c.piiLoggingEnabled,logLevel:c.logLevel,correlationId:this.correlationId},cacheOptions:{claimsBasedCachingEnabled:this.config.cache.claimsBasedCachingEnabled},cryptoInterface:this.browserCrypto,networkInterface:this.networkClient,storageInterface:this.browserStorage,serverTelemetryManager:r,libraryInfo:{sku:Zi,version:Ks,cpu:t.EMPTY_STRING,os:t.EMPTY_STRING},telemetry:this.config.telemetry}}async initializeAuthorizationRequest(e,r){this.performanceClient.addQueueMeasurement(zr.StandardInteractionClientInitializeAuthorizationRequest,this.correlationId);const n=this.getRedirectUri(e.redirectUri),o={interactionType:r},i=wo.setRequestState(this.browserCrypto,e&&e.state||t.EMPTY_STRING,o),a={...await $n(Rc,zr.InitializeBaseRequest,this.logger,this.performanceClient,this.correlationId)({...e,correlationId:this.correlationId},this.config,this.performanceClient,this.logger),redirectUri:n,state:i,nonce:e.nonce||rs(),responseMode:this.config.auth.OIDCOptions.serverResponseType};if(e.loginHint||e.sid)return a;const s=e.account||this.browserStorage.getActiveAccount();return s&&(this.logger.verbose("Setting validated request account",this.correlationId),this.logger.verbosePii(`Setting validated request account: ${s.homeAccountId}`,this.correlationId),a.account=s),a}}function Mc(e,t,r){const n=_r(e);if(!n)throw Rr(e)?(r.error(`A ${t} is present in the iframe but it does not contain known properties. It's likely that the ${t} has been replaced by code running on the redirectUri page.`),r.errorPii(`The ${t} detected is: ${e}`),ji(Zo)):(r.error(`The request has returned to the redirectUri but a ${t} is not present. It's likely that the ${t} has been removed or the page has been redirected by code running on the redirectUri page.`),ji(Yo));return n}function Oc(e,t,r){if(!e.state)throw ji(Xo);const n=function(e,t){if(!t)return null;try{return wo.parseRequestState(e,t).libraryState.meta}catch(e){throw gt(Ee)}}(t,e.state);if(!n)throw ji(ei);if(n.interactionType!==r)throw ji(ti)}class Nc{constructor(e,t,r,n,o){this.authModule=e,this.browserStorage=t,this.authCodeRequest=r,this.logger=n,this.performanceClient=o}async handleCodeResponse(e,t){let r;this.performanceClient.addQueueMeasurement(zr.HandleCodeResponse,t.correlationId);try{r=function(e,t){if(qo(e,t),!e.code)throw gt(et);return e}(e,t.state)}catch(e){throw e instanceof Yn&&e.subError===ii?ji(ii):e}return $n(this.handleCodeResponseFromServer.bind(this),zr.HandleCodeResponseFromServer,this.logger,this.performanceClient,t.correlationId)(r,t)}async handleCodeResponseFromServer(e,t,r=!0){if(this.performanceClient.addQueueMeasurement(zr.HandleCodeResponseFromServer,t.correlationId),this.logger.trace("InteractionHandler.handleCodeResponseFromServer called"),this.authCodeRequest.code=e.code,e.cloud_instance_host_name&&await $n(this.authModule.updateAuthority.bind(this.authModule),zr.UpdateTokenEndpointAuthority,this.logger,this.performanceClient,t.correlationId)(e.cloud_instance_host_name,t.correlationId),r&&(e.nonce=t.nonce||void 0),e.state=t.state,e.client_info)this.authCodeRequest.clientInfo=e.client_info;else{const e=this.createCcsCredentials(t);e&&(this.authCodeRequest.ccsCredential=e)}return await $n(this.authModule.acquireToken.bind(this.authModule),zr.AuthClientAcquireToken,this.logger,this.performanceClient,t.correlationId)(this.authCodeRequest,e)}createCcsCredentials(e){return e.account?{credential:e.account.homeAccountId,type:an}:e.loginHint?{credential:e.loginHint,type:sn}:null}}const qc="user_switch",Lc={[qc]:"User attempted to switch accounts in the native broker, which is not allowed. All new accounts must sign-in through the standard web flow first, please try again."};class Uc extends ye{constructor(e,t,r){super(e,t),Object.setPrototypeOf(this,Uc.prototype),this.name="NativeAuthError",this.ext=r}}function Hc(e){return!(!e.ext||!e.ext.status||"PERSISTENT_ERROR"!==e.ext.status&&"DISABLED"!==e.ext.status)||(!(!e.ext||!e.ext.error||-2147186943!==e.ext.error)||"ContentError"===e.errorCode)}function xc(e,t,r){if(r&&r.status)switch(r.status){case"ACCOUNT_UNAVAILABLE":return vo(oo);case"USER_INTERACTION_REQUIRED":return new yo(e,t);case"USER_CANCEL":return ji(ii);case"NO_NETWORK":return ji(Ii);case"UX_NOT_ALLOWED":return vo(ao)}return new Uc(e,Lc[e]||t,r)}class Dc extends Pc{async acquireToken(e){this.performanceClient.addQueueMeasurement(zr.SilentCacheClientAcquireToken,e.correlationId);const t=this.initializeServerTelemetryManager(Ra.acquireTokenSilent_silentFlow),r=await $n(this.getClientConfiguration.bind(this),zr.StandardInteractionClientGetClientConfiguration,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:t,requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,account:e.account}),n=new Po(r,this.performanceClient);this.logger.verbose("Silent auth client created");try{const t=(await $n(n.acquireCachedToken.bind(n),zr.SilentFlowClientAcquireCachedToken,this.logger,this.performanceClient,e.correlationId)(e))[0];return this.performanceClient.addFields({fromCache:!0},e.correlationId),t}catch(e){throw e instanceof Qi&&e.errorCode===bi&&this.logger.verbose("Signing keypair for bound access token not found. Refreshing bound access token and generating a new crypto keypair."),e}}logout(e){this.logger.verbose("logoutRedirect called");const t=this.initializeLogoutRequest(e);return this.clearCacheOnLogout(t?.account)}}class Bc extends Ec{constructor(e,t,r,n,o,i,a,s,c,l,h,d){super(e,t,r,n,o,i,s,c,d),this.apiId=a,this.accountId=l,this.platformAuthProvider=c,this.nativeStorageManager=h,this.silentCacheClient=new Dc(e,this.nativeStorageManager,r,n,o,i,s,c,d);const u=this.platformAuthProvider.getExtensionName();this.skus=Uo.makeExtraSkuString({libraryName:Zi,libraryVersion:Ks,extensionName:u,extensionVersion:this.platformAuthProvider.getExtensionVersion()})}addRequestSKUs(e){e.extraParameters={...e.extraParameters,[gn]:this.skus}}async acquireToken(e,t){this.performanceClient.addQueueMeasurement(zr.NativeInteractionClientAcquireToken,e.correlationId),this.logger.trace("NativeInteractionClient - acquireToken called.");const r=this.performanceClient.startMeasurement(zr.NativeInteractionClientAcquireToken,e.correlationId),n=Tt(),o=this.initializeServerTelemetryManager(this.apiId);try{const i=await this.initializeNativeRequest(e);try{const e=await this.acquireTokensFromCache(this.accountId,i);return r.end({success:!0,isNativeBroker:!1,fromCache:!0}),e}catch(e){if(t===qa.AccessToken)throw this.logger.info("MSAL internal Cache does not contain tokens, return error as per cache policy"),e;this.logger.info("MSAL internal Cache does not contain tokens, proceed to make a native call")}const a=await this.platformAuthProvider.sendMessage(i);return await this.handleNativeResponse(a,i,n).then((e=>(r.end({success:!0,isNativeBroker:!0,requestId:e.requestId}),o.clearNativeBrokerErrorCode(),e))).catch((e=>{throw r.end({success:!1,errorCode:e.errorCode,subErrorCode:e.subError,isNativeBroker:!0}),e}))}catch(e){throw e instanceof Uc&&o.setNativeBrokerErrorCode(e.errorCode),e}}createSilentCacheRequest(e,t){return{authority:e.authority,correlationId:this.correlationId,scopes:mr.fromString(e.scope).asArray(),account:t,forceRefresh:!1}}async acquireTokensFromCache(e,t){if(!e)throw this.logger.warning("NativeInteractionClient:acquireTokensFromCache - No nativeAccountId provided"),gt(Qe);const r=this.browserStorage.getBaseAccountInfo({nativeAccountId:e});if(!r)throw gt(Qe);try{const e=this.createSilentCacheRequest(t,r),n=await this.silentCacheClient.acquireToken(e),o={...r,idTokenClaims:n?.idTokenClaims,idToken:n?.idToken};return{...n,account:o}}catch(e){throw e}}async acquireTokenRedirect(e,t){this.logger.trace("NativeInteractionClient - acquireTokenRedirect called.");const{...r}=e;delete r.onRedirectNavigate;const n=await this.initializeNativeRequest(r);try{await this.platformAuthProvider.sendMessage(n)}catch(e){if(e instanceof Uc){if(this.initializeServerTelemetryManager(this.apiId).setNativeBrokerErrorCode(e.errorCode),Hc(e))throw e}}this.browserStorage.setTemporaryCache(Ta,JSON.stringify(n),!0);const o={apiId:Ra.acquireTokenRedirect,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},i=this.config.auth.navigateToLoginRequestUrl?window.location.href:this.getRedirectUri(e.redirectUri);t.end({success:!0}),await this.navigationClient.navigateExternal(i,o)}async handleRedirectPromise(e,t){if(this.logger.trace("NativeInteractionClient - handleRedirectPromise called."),!this.browserStorage.isInteractionInProgress(!0))return this.logger.info("handleRedirectPromise called but there is no interaction in progress, returning null."),null;const r=this.browserStorage.getCachedNativeRequest();if(!r)return this.logger.verbose("NativeInteractionClient - handleRedirectPromise called but there is no cached request, returning null."),e&&t&&e?.addFields({errorCode:"no_cached_request"},t),null;const{prompt:n,...o}=r;n&&this.logger.verbose("NativeInteractionClient - handleRedirectPromise called and prompt was included in the original request, removing prompt from cached request to prevent second interaction with native broker window."),this.browserStorage.removeItem(this.browserStorage.generateCacheKey(Ta));const i=Tt();try{this.logger.verbose("NativeInteractionClient - handleRedirectPromise sending message to native broker.");const e=await this.platformAuthProvider.sendMessage(o),t=await this.handleNativeResponse(e,o,i);return this.initializeServerTelemetryManager(this.apiId).clearNativeBrokerErrorCode(),t}catch(e){throw e}}logout(){return this.logger.trace("NativeInteractionClient - logout called."),Promise.reject("Logout not implemented yet")}async handleNativeResponse(e,t,r){this.logger.trace("NativeInteractionClient - handleNativeResponse called.");const n=wt(e.id_token,Fa),o=this.createHomeAccountIdentifier(e,n),i=this.browserStorage.getAccountInfoFilteredBy({nativeAccountId:t.accountId})?.homeAccountId;if(t.extraParameters?.child_client_id&&e.account.id!==t.accountId)this.logger.info("handleNativeServerResponse: Double broker flow detected, ignoring accountId mismatch");else if(o!==i&&e.account.id!==t.accountId)throw xc(qc);const a=await this.getDiscoveredAuthority({requestAuthority:t.authority}),s=So(this.browserStorage,a,o,Fa,n,e.client_info,void 0,n.tid,void 0,e.account.id,this.logger);e.expires_in=Number(e.expires_in);const c=await this.generateAuthenticationResult(e,t,n,s,a.canonicalAuthority,r);return await this.cacheAccount(s),await this.cacheNativeTokens(e,t,o,n,e.access_token,c.tenantId,r),c}createHomeAccountIdentifier(e,r){return Er.generateHomeAccountId(e.client_info||t.EMPTY_STRING,Ir,this.logger,this.browserCrypto,r)}generateScopes(e,t){return t?mr.fromString(t):mr.fromString(e)}async generatePopAccessToken(e,t){if(t.tokenType===j.POP&&t.signPopToken){if(e.shr)return this.logger.trace("handleNativeServerResponse: SHR is enabled in native layer"),e.shr;const r=new To(this.browserCrypto),n={resourceRequestMethod:t.resourceRequestMethod,resourceRequestUri:t.resourceRequestUri,shrClaims:t.shrClaims,shrNonce:t.shrNonce};if(!t.keyId)throw gt(nt);return r.signPopToken(e.access_token,t.keyId,n)}return e.access_token}async generateAuthenticationResult(e,r,n,o,i,a){const s=this.addTelemetryFromNativeResponse(e.properties.MATS),c=this.generateScopes(r.scope,e.scope),l=e.account.properties||{},h=l.UID||n.oid||n.sub||t.EMPTY_STRING,d=l.TenantId||n.tid||t.EMPTY_STRING,u=wr(o.getAccountInfo(),void 0,n,e.id_token);u.nativeAccountId!==e.account.id&&(u.nativeAccountId=e.account.id);const g=await this.generatePopAccessToken(e,r),p=r.tokenType===j.POP?j.POP:j.BEARER;return{authority:i,uniqueId:h,tenantId:d,scopes:c.asArray(),account:u,idToken:e.id_token,idTokenClaims:n,accessToken:g,fromCache:!!s&&this.isResponseFromCache(s),expiresOn:kt(a+e.expires_in),tokenType:p,correlationId:this.correlationId,state:e.state,fromNativeBroker:!0}}async cacheAccount(e){await this.browserStorage.setAccount(e,this.correlationId),this.browserStorage.removeAccountContext(e,this.correlationId)}cacheNativeTokens(e,r,n,o,i,a,s){const c=Rt(n,r.authority,e.id_token||"",r.clientId,o.tid||""),l=s+(r.tokenType===j.POP?t.SHR_NONCE_VALIDITY:("string"==typeof e.expires_in?parseInt(e.expires_in,10):e.expires_in)||0),h=this.generateScopes(e.scope,r.scope),d={idToken:c,accessToken:_t(n,r.authority,i,r.clientId,o.tid||a,h.printScopes(),l,0,Fa,void 0,r.tokenType,void 0,r.keyId)};return this.nativeStorageManager.saveCacheRecord(d,this.correlationId,r.storeInCache)}getExpiresInValue(e,r){return e===j.POP?t.SHR_NONCE_VALIDITY:("string"==typeof r?parseInt(r,10):r)||0}addTelemetryFromNativeResponse(e){const t=this.getMATSFromResponse(e);return t?(this.performanceClient.addFields({extensionId:this.platformAuthProvider.getExtensionId(),extensionVersion:this.platformAuthProvider.getExtensionVersion(),matsBrokerVersion:t.broker_version,matsAccountJoinOnStart:t.account_join_on_start,matsAccountJoinOnEnd:t.account_join_on_end,matsDeviceJoin:t.device_join,matsPromptBehavior:t.prompt_behavior,matsApiErrorCode:t.api_error_code,matsUiVisible:t.ui_visible,matsSilentCode:t.silent_code,matsSilentBiSubCode:t.silent_bi_sub_code,matsSilentMessage:t.silent_message,matsSilentStatus:t.silent_status,matsHttpStatus:t.http_status,matsHttpEventCount:t.http_event_count},this.correlationId),t):null}getMATSFromResponse(e){if(e)try{return JSON.parse(e)}catch(e){this.logger.error("NativeInteractionClient - Error parsing MATS telemetry, returning null instead")}return null}isResponseFromCache(e){return void 0===e.is_cached?(this.logger.verbose("NativeInteractionClient - MATS telemetry does not contain field indicating if response was served from cache. Returning false."),!1):!!e.is_cached}async initializeNativeRequest(e){this.logger.trace("NativeInteractionClient - initializeNativeRequest called");const t=await this.getCanonicalAuthority(e),{scopes:r,...n}=e,o=new mr(r||[]);o.appendScopes(c);const i={...n,accountId:this.accountId,clientId:this.config.auth.clientId,authority:t.urlString,scope:o.printScopes(),redirectUri:this.getRedirectUri(e.redirectUri),prompt:this.getPrompt(e.prompt),correlationId:this.correlationId,tokenType:e.authenticationScheme,windowTitleSubstring:document.title,extraParameters:{...e.extraQueryParameters,...e.tokenQueryParameters},extendedExpiryToken:!1,keyId:e.popKid};if(i.signPopToken&&e.popKid)throw ji(xi);if(this.handleExtraBrokerParams(i),i.extraParameters=i.extraParameters||{},i.extraParameters.telemetry=ra,e.authenticationScheme===j.POP){const t={resourceRequestUri:e.resourceRequestUri,resourceRequestMethod:e.resourceRequestMethod,shrClaims:e.shrClaims,shrNonce:e.shrNonce},r=new To(this.browserCrypto);let n;if(i.keyId)n=this.browserCrypto.base64UrlEncode(JSON.stringify({kid:i.keyId})),i.signPopToken=!1;else{const o=await $n(r.generateCnf.bind(r),zr.PopTokenGenerateCnf,this.logger,this.performanceClient,e.correlationId)(t,this.logger);n=o.reqCnfString,i.keyId=o.kid,i.signPopToken=!0}i.reqCnf=n}return this.addRequestSKUs(i),i}async getCanonicalAuthority(e){const t=e.authority||this.config.auth.authority;e.account&&await this.getDiscoveredAuthority({requestAuthority:t,requestAzureCloudOptions:e.azureCloudOptions,account:e.account});const r=new Mr(t);return r.validateAsUri(),r}getPrompt(e){switch(this.apiId){case Ra.ssoSilent:case Ra.acquireTokenSilent_silentFlow:return this.logger.trace("initializeNativeRequest: silent request sets prompt to none"),k.NONE}if(e)switch(e){case k.NONE:case k.CONSENT:case k.LOGIN:return this.logger.trace("initializeNativeRequest: prompt is compatible with native flow"),e;default:throw this.logger.trace(`initializeNativeRequest: prompt = ${e} is not compatible with native flow`),ji(Ui)}else this.logger.trace("initializeNativeRequest: prompt was not provided")}handleExtraBrokerParams(e){const t=e.extraParameters&&e.extraParameters.hasOwnProperty(pn)&&e.extraParameters.hasOwnProperty(mn)&&e.extraParameters.hasOwnProperty(cn);if(!e.embeddedClientId&&!t)return;let r="";const n=e.redirectUri;e.embeddedClientId?(e.redirectUri=this.config.auth.redirectUri,r=e.embeddedClientId):e.extraParameters&&(e.redirectUri=e.extraParameters[mn],r=e.extraParameters[cn]),e.extraParameters={child_client_id:r,child_redirect_uri:n},this.performanceClient?.addFields({embeddedClientId:r,embeddedRedirectUri:n},e.correlationId)}}async function Fc(e,t,r,n,o){const i=Oo({...e.auth,authority:t},r,n,o);if(Rn(i,{sku:Zi,version:Ks,os:"",cpu:""}),e.auth.protocolMode!==br.OIDC&&_n(i,e.telemetry.application),r.platformBroker&&(function(e){e.set("nativebroker","1")}(i),r.authenticationScheme===j.POP)){const e=new oc(n,o),t=new To(e);let a;if(r.popKid)a=e.encodeKid(r.popKid);else{a=(await $n(t.generateCnf.bind(t),zr.PopTokenGenerateCnf,n,o,r.correlationId)(r,n)).reqCnfString}Dn(i,a)}return yn(i,r.correlationId,o),i}async function Kc(e,r,n,o,i){if(!n.codeChallenge)throw gr(Xt);const a=await $n(Fc,zr.GetStandardParams,o,i,n.correlationId)(e,r,n,o,i);return Cn(a,b),function(e,t,r){if(!t||!r)throw gr(Xt);e.set("code_challenge",t),e.set("code_challenge_method",r)}(a,n.codeChallenge,t.S256_CODE_CHALLENGE_METHOD),Hn(a,n.extraQueryParameters||{}),No(r,a,e.auth.encodeExtraQueryParams,n.extraQueryParameters)}async function zc(e,t,r,n,o,i){if(!n.earJwk)throw ji(jo);const a=await Fc(t,r,n,o,i);Cn(a,E),function(e,t){e.set("ear_jwk",encodeURIComponent(t)),e.set("ear_jwe_crypto","eyJhbGciOiJkaXIiLCJlbmMiOiJBMjU2R0NNIn0")}(a,n.earJwk);const s=new Map;Hn(s,n.extraQueryParameters||{});return function(e,t,r){const n=e.createElement("form");return n.method="post",n.action=t,r.forEach(((t,r)=>{const o=e.createElement("input");o.hidden=!0,o.name=r,o.value=t,n.appendChild(o)})),e.body.appendChild(n),n}(e,No(r,s,t.auth.encodeExtraQueryParams,n.extraQueryParameters),a)}async function Gc(e,t,r,n,o,i,a,s,c,l){if(s.verbose("Account id found, calling WAM for token"),!l)throw ji(qi);const h=new oc(s,c),d=new Bc(n,o,h,s,a,n.system.navigationClient,r,c,l,t,i,e.correlationId),{userRequestState:u}=wo.parseRequestState(h,e.state);return $n(d.acquireToken.bind(d),zr.NativeInteractionClientAcquireToken,s,c,e.correlationId)({...e,state:u,prompt:void 0})}async function $c(e,t,r,n,o,i,a,s,c,l,h,d){if(Zn.removeThrottle(a,o.auth.clientId,e),t.accountId)return $n(Gc,zr.HandleResponsePlatformBroker,l,h,e.correlationId)(e,t.accountId,n,o,a,s,c,l,h,d);const u={...e,code:t.code||"",codeVerifier:r},g=new Nc(i,a,u,l,h);return await $n(g.handleCodeResponse.bind(g),zr.HandleCodeResponse,l,h,e.correlationId)(t,e)}async function Qc(e,t,r,n,o,i,a,s,c,l,h){if(Zn.removeThrottle(i,n.auth.clientId,e),qo(t,e.state),!t.ear_jwe)throw ji(Wo);if(!e.earJwk)throw ji(jo);const d=JSON.parse(await $n(is,zr.DecryptEarResponse,c,l,e.correlationId)(e.earJwk,t.ear_jwe));if(d.accountId)return $n(Gc,zr.HandleResponsePlatformBroker,c,l,e.correlationId)(e,d.accountId,r,n,i,a,s,c,l,h);const u=new ko(n.auth.clientId,i,new oc(c,l),c,null,null,l);u.validateTokenResponse(d);const g={code:"",state:e.state,nonce:e.nonce,client_info:d.client_info,cloud_graph_host_name:d.cloud_graph_host_name,cloud_instance_host_name:d.cloud_instance_host_name,cloud_instance_name:d.cloud_instance_name,msgraph_host:d.msgraph_host};return await $n(u.handleServerTokenResponse.bind(u),zr.HandleServerTokenResponse,c,l,e.correlationId)(d,o,Tt(),e,g,void 0,void 0,void 0,void 0)}async function jc(e,t,r){e.addQueueMeasurement(zr.GeneratePkceCodes,r);const n=Gn(Wc,zr.GenerateCodeVerifier,t,e,r)(e,t,r);return{verifier:n,challenge:await $n(Vc,zr.GenerateCodeChallengeFromVerifier,t,e,r)(n,e,t,r)}}function Wc(e,t,r){try{const n=new Uint8Array(32);Gn(es,zr.GetRandomValues,t,e,r)(n);return xa(n)}catch(e){throw ji(Qo)}}async function Vc(e,t,r,n){t.addQueueMeasurement(zr.GenerateCodeChallengeFromVerifier,n);try{const o=await $n(Za,zr.Sha256Digest,r,t,n)(e,t,n);return xa(new Uint8Array(o))}catch(e){throw ji(Qo)}}class Jc{constructor(e,t,r,n){this.logger=e,this.handshakeTimeoutMs=t,this.extensionId=n,this.resolvers=new Map,this.handshakeResolvers=new Map,this.messageChannel=new MessageChannel,this.windowListener=this.onWindowMessage.bind(this),this.performanceClient=r,this.handshakeEvent=r.startMeasurement(zr.NativeMessageHandlerHandshake),this.platformAuthType=sa}async sendMessage(e){this.logger.trace(this.platformAuthType+" - sendMessage called.");const t={method:ha,request:e},r={channel:ea,extensionId:this.extensionId,responseId:rs(),body:t};this.logger.trace(this.platformAuthType+" - Sending request to browser extension"),this.logger.tracePii(this.platformAuthType+` - Sending request to browser extension: ${JSON.stringify(r)}`),this.messageChannel.port1.postMessage(r);const n=await new Promise(((e,t)=>{this.resolvers.set(r.responseId,{resolve:e,reject:t})}));return this.validatePlatformBrokerResponse(n)}static async createProvider(e,t,r){e.trace("PlatformAuthExtensionHandler - createProvider called.");try{const n=new Jc(e,t,r,ta);return await n.sendHandshakeRequest(),n}catch(n){const o=new Jc(e,t,r);return await o.sendHandshakeRequest(),o}}async sendHandshakeRequest(){this.logger.trace(this.platformAuthType+" - sendHandshakeRequest called."),window.addEventListener("message",this.windowListener,!1);const e={channel:ea,extensionId:this.extensionId,responseId:rs(),body:{method:ca}};return this.handshakeEvent.add({extensionId:this.extensionId,extensionHandshakeTimeoutMs:this.handshakeTimeoutMs}),this.messageChannel.port1.onmessage=e=>{this.onChannelMessage(e)},window.postMessage(e,window.origin,[this.messageChannel.port2]),new Promise(((t,r)=>{this.handshakeResolvers.set(e.responseId,{resolve:t,reject:r}),this.timeoutId=window.setTimeout((()=>{window.removeEventListener("message",this.windowListener,!1),this.messageChannel.port1.close(),this.messageChannel.port2.close(),this.handshakeEvent.end({extensionHandshakeTimedOut:!0,success:!1}),r(ji(Oi)),this.handshakeResolvers.delete(e.responseId)}),this.handshakeTimeoutMs)}))}onWindowMessage(e){if(this.logger.trace(this.platformAuthType+" - onWindowMessage called"),e.source!==window)return;const t=e.data;if(t.channel&&t.channel===ea&&(!t.extensionId||t.extensionId===this.extensionId)&&t.body.method===ca){const e=this.handshakeResolvers.get(t.responseId);if(!e)return void this.logger.trace(this.platformAuthType+`.onWindowMessage - resolver can't be found for request ${t.responseId}`);this.logger.verbose(t.extensionId?`Extension with id: ${t.extensionId} not installed`:"No extension installed"),clearTimeout(this.timeoutId),this.messageChannel.port1.close(),this.messageChannel.port2.close(),window.removeEventListener("message",this.windowListener,!1),this.handshakeEvent.end({success:!1,extensionInstalled:!1}),e.reject(ji(Ni))}}onChannelMessage(e){this.logger.trace(this.platformAuthType+" - onChannelMessage called.");const t=e.data,r=this.resolvers.get(t.responseId),n=this.handshakeResolvers.get(t.responseId);try{const e=t.body.method;if(e===da){if(!r)return;const e=t.body.response;if(this.logger.trace(this.platformAuthType+" - Received response from browser extension"),this.logger.tracePii(this.platformAuthType+` - Received response from browser extension: ${JSON.stringify(e)}`),"Success"!==e.status)r.reject(xc(e.code,e.description,e.ext));else{if(!e.result)throw Ce(ue,"Event does not contain result.");e.result.code&&e.result.description?r.reject(xc(e.result.code,e.result.description,e.result.ext)):r.resolve(e.result)}this.resolvers.delete(t.responseId)}else if(e===la){if(!n)return void this.logger.trace(this.platformAuthType+`.onChannelMessage - resolver can't be found for request ${t.responseId}`);clearTimeout(this.timeoutId),window.removeEventListener("message",this.windowListener,!1),this.extensionId=t.extensionId,this.extensionVersion=t.body.version,this.logger.verbose(this.platformAuthType+` - Received HandshakeResponse from extension: ${this.extensionId}`),this.handshakeEvent.end({extensionInstalled:!0,success:!0}),n.resolve(),this.handshakeResolvers.delete(t.responseId)}}catch(t){this.logger.error("Error parsing response from WAM Extension"),this.logger.errorPii(`Error parsing response from WAM Extension: ${t}`),this.logger.errorPii(`Unable to parse ${e}`),r?r.reject(t):n&&n.reject(t)}}validatePlatformBrokerResponse(e){if(e.hasOwnProperty("access_token")&&e.hasOwnProperty("id_token")&&e.hasOwnProperty("client_info")&&e.hasOwnProperty("account")&&e.hasOwnProperty("scope")&&e.hasOwnProperty("expires_in"))return e;throw Ce(ue,"Response missing expected properties.")}getExtensionId(){return this.extensionId}getExtensionVersion(){return this.extensionVersion}getExtensionName(){return this.getExtensionId()===ta?"chrome":this.getExtensionId()?.length?"unknown":void 0}}class Yc{constructor(e,t,r){this.logger=e,this.performanceClient=t,this.correlationId=r,this.platformAuthType=aa}static async createProvider(e,t,r){if(e.trace("PlatformAuthDOMHandler: createProvider called"),window.navigator?.platformAuthentication){const n=await window.navigator.platformAuthentication.getSupportedContracts(na);if(n?.includes(ia))return e.trace("Platform auth api available in DOM"),new Yc(e,t,r)}}getExtensionId(){return na}getExtensionVersion(){return""}getExtensionName(){return oa}async sendMessage(e){this.logger.trace(this.platformAuthType+" - Sending request to browser DOM API");try{const t=this.initializePlatformDOMRequest(e),r=await window.navigator.platformAuthentication.executeGetToken(t);return this.validatePlatformBrokerResponse(r)}catch(e){throw this.logger.error(this.platformAuthType+" - executeGetToken DOM API error"),e}}initializePlatformDOMRequest(e){this.logger.trace(this.platformAuthType+" - initializeNativeDOMRequest called");const{accountId:t,clientId:r,authority:n,scope:o,redirectUri:i,correlationId:a,state:s,storeInCache:c,embeddedClientId:l,extraParameters:h,...d}=e,u=this.getDOMExtraParams(d);return{accountId:t,brokerId:this.getExtensionId(),authority:n,clientId:r,correlationId:a||this.correlationId,extraParameters:{...h,...u},isSecurityTokenService:!1,redirectUri:i,scope:o,state:s,storeInCache:c,embeddedClientId:l}}validatePlatformBrokerResponse(e){if(e.hasOwnProperty("isSuccess")){if(e.hasOwnProperty("accessToken")&&e.hasOwnProperty("idToken")&&e.hasOwnProperty("clientInfo")&&e.hasOwnProperty("account")&&e.hasOwnProperty("scopes")&&e.hasOwnProperty("expiresIn"))return this.logger.trace(this.platformAuthType+" - platform broker returned successful and valid response"),this.convertToPlatformBrokerResponse(e);if(e.hasOwnProperty("error")){const t=e;if(!1===t.isSuccess&&t.error&&t.error.code)throw this.logger.trace(this.platformAuthType+" - platform broker returned error response"),xc(t.error.code,t.error.description,{error:parseInt(t.error.errorCode),protocol_error:t.error.protocolError,status:t.error.status,properties:t.error.properties})}}throw Ce(ue,"Response missing expected properties.")}convertToPlatformBrokerResponse(e){this.logger.trace(this.platformAuthType+" - convertToNativeResponse called");return{access_token:e.accessToken,id_token:e.idToken,client_info:e.clientInfo,account:e.account,expires_in:e.expiresIn,scope:e.scopes,state:e.state||"",properties:e.properties||{},extendedLifetimeToken:e.extendedLifetimeToken??!1,shr:e.proofOfPossessionPayload}}getDOMExtraParams(e){return{...Object.entries(e).reduce(((e,[t,r])=>(e[t]=String(r),e)),{})}}}async function Xc(e,t,r,n){e.trace("getPlatformAuthProvider called",r);const o=function(){let e;try{return e=window[ua.SessionStorage],"true"===e?.getItem(Ua)}catch(e){return!1}}();let i;e.trace("Has client allowed platform auth via DOM API: "+o);try{o&&(i=await Yc.createProvider(e,t,r)),i||(e.trace("Platform auth via DOM API not available, checking for extension"),i=await Jc.createProvider(e,n||2e3,t))}catch(t){e.trace("Platform auth not available",t)}return i}function Zc(e,t,r,n){if(t.trace("isPlatformAuthAllowed called"),!e.system.allowPlatformBroker)return t.trace("isPlatformAuthAllowed: allowPlatformBroker is not enabled, returning false"),!1;if(!r)return t.trace("isPlatformAuthAllowed: Platform auth provider is not initialized, returning false"),!1;if(n)switch(n){case j.BEARER:case j.POP:return t.trace("isPlatformAuthAllowed: authenticationScheme is supported, returning true"),!0;default:return t.trace("isPlatformAuthAllowed: authenticationScheme is not supported, returning false"),!1}return!0}class el extends Pc{constructor(e,t,r,n,o,i,a,s,c,l){super(e,t,r,n,o,i,a,c,l),this.unloadWindow=this.unloadWindow.bind(this),this.nativeStorage=s,this.eventHandler=o}acquireToken(e,t){try{const r={popupName:this.generatePopupName(e.scopes||c,e.authority||this.config.auth.authority),popupWindowAttributes:e.popupWindowAttributes||{},popupWindowParent:e.popupWindowParent??window};return this.performanceClient.addFields({isAsyncPopup:this.config.system.asyncPopups},this.correlationId),this.config.system.asyncPopups?(this.logger.verbose("asyncPopups set to true, acquiring token"),this.acquireTokenPopupAsync(e,r,t)):(this.logger.verbose("asyncPopup set to false, opening popup before acquiring token"),r.popup=this.openSizedPopup("about:blank",r),this.acquireTokenPopupAsync(e,r,t))}catch(e){return Promise.reject(e)}}logout(e){try{this.logger.verbose("logoutPopup called");const t=this.initializeLogoutRequest(e),r={popupName:this.generateLogoutPopupName(t),popupWindowAttributes:e?.popupWindowAttributes||{},popupWindowParent:e?.popupWindowParent??window},n=e&&e.authority,o=e&&e.mainWindowRedirectUri;return this.config.system.asyncPopups?(this.logger.verbose("asyncPopups set to true"),this.logoutPopupAsync(t,r,n,o)):(this.logger.verbose("asyncPopup set to false, opening popup"),r.popup=this.openSizedPopup("about:blank",r),this.logoutPopupAsync(t,r,n,o))}catch(e){return Promise.reject(e)}}async acquireTokenPopupAsync(t,r,n){this.logger.verbose("acquireTokenPopupAsync called");const o=await $n(this.initializeAuthorizationRequest.bind(this),zr.StandardInteractionClientInitializeAuthorizationRequest,this.logger,this.performanceClient,this.correlationId)(t,e.InteractionType.Popup);r.popup&&Ns(o.authority);const i=Zc(this.config,this.logger,this.platformAuthProvider,t.authenticationScheme);return o.platformBroker=i,this.config.auth.protocolMode===br.EAR?this.executeEarFlow(o,r):this.executeCodeFlow(o,r,n)}async executeCodeFlow(t,r,n){const o=t.correlationId,i=this.initializeServerTelemetryManager(Ra.acquireTokenPopup),a=n||await $n(jc,zr.GeneratePkceCodes,this.logger,this.performanceClient,o)(this.performanceClient,this.logger,o),s={...t,codeChallenge:a.challenge};try{const n=await $n(this.createAuthCodeClient.bind(this),zr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,o)({serverTelemetryManager:i,requestAuthority:s.authority,requestAzureCloudOptions:s.azureCloudOptions,requestExtraQueryParameters:s.extraQueryParameters,account:s.account}),c=await $n(Kc,zr.GetAuthCodeUrl,this.logger,this.performanceClient,o)(this.config,n.authority,s,this.logger,this.performanceClient),l=this.initiateAuthRequest(c,r);this.eventHandler.emitEvent(mc.POPUP_OPENED,e.InteractionType.Popup,{popupWindow:l},null);const h=await this.monitorPopupForHash(l,r.popupWindowParent),d=Gn(Mc,zr.DeserializeResponse,this.logger,this.performanceClient,this.correlationId)(h,this.config.auth.OIDCOptions.serverResponseType,this.logger);return await $n($c,zr.HandleResponseCode,this.logger,this.performanceClient,o)(t,d,a.verifier,Ra.acquireTokenPopup,this.config,n,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}catch(e){throw r.popup?.close(),e instanceof ye&&(e.setCorrelationId(this.correlationId),i.cacheFailedRequest(e)),e}}async executeEarFlow(e,t){const r=e.correlationId,n=await $n(this.getDiscoveredAuthority.bind(this),zr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,r)({requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account}),o=await $n(os,zr.GenerateEarKey,this.logger,this.performanceClient,r)(),i={...e,earJwk:o},a=t.popup||this.openPopup("about:blank",t);(await zc(a.document,this.config,n,i,this.logger,this.performanceClient)).submit();const s=await $n(this.monitorPopupForHash.bind(this),zr.SilentHandlerMonitorIframeForHash,this.logger,this.performanceClient,r)(a,t.popupWindowParent),c=Gn(Mc,zr.DeserializeResponse,this.logger,this.performanceClient,this.correlationId)(s,this.config.auth.OIDCOptions.serverResponseType,this.logger);return $n(Qc,zr.HandleResponseEar,this.logger,this.performanceClient,r)(i,c,Ra.acquireTokenPopup,this.config,n,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}async logoutPopupAsync(t,r,n,o){this.logger.verbose("logoutPopupAsync called"),this.eventHandler.emitEvent(mc.LOGOUT_START,e.InteractionType.Popup,t);const i=this.initializeServerTelemetryManager(Ra.logoutPopup);try{await this.clearCacheOnLogout(t.account);const a=await $n(this.createAuthCodeClient.bind(this),zr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:i,requestAuthority:n,account:t.account||void 0});try{a.authority.endSessionEndpoint}catch{if(t.account?.homeAccountId&&t.postLogoutRedirectUri&&a.authority.protocolMode===br.OIDC){if(this.browserStorage.removeAccount(t.account?.homeAccountId,this.correlationId),this.eventHandler.emitEvent(mc.LOGOUT_SUCCESS,e.InteractionType.Popup,t),o){const e={apiId:Ra.logoutPopup,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},t=Mr.getAbsoluteUrl(o,ks());await this.navigationClient.navigateInternal(t,e)}return void r.popup?.close()}}const s=a.getLogoutUri(t);this.eventHandler.emitEvent(mc.LOGOUT_SUCCESS,e.InteractionType.Popup,t);const c=this.openPopup(s,r);if(this.eventHandler.emitEvent(mc.POPUP_OPENED,e.InteractionType.Popup,{popupWindow:c},null),await this.monitorPopupForHash(c,r.popupWindowParent).catch((()=>{})),o){const e={apiId:Ra.logoutPopup,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},t=Mr.getAbsoluteUrl(o,ks());this.logger.verbose("Redirecting main window to url specified in the request"),this.logger.verbosePii(`Redirecting main window to: ${t}`),await this.navigationClient.navigateInternal(t,e)}else this.logger.verbose("No main window navigation requested")}catch(t){throw r.popup?.close(),t instanceof ye&&(t.setCorrelationId(this.correlationId),i.cacheFailedRequest(t)),this.eventHandler.emitEvent(mc.LOGOUT_FAILURE,e.InteractionType.Popup,null,t),this.eventHandler.emitEvent(mc.LOGOUT_END,e.InteractionType.Popup),t}this.eventHandler.emitEvent(mc.LOGOUT_END,e.InteractionType.Popup)}initiateAuthRequest(e,t){if(e)return this.logger.infoPii(`Navigate to: ${e}`),this.openPopup(e,t);throw this.logger.error("Navigate url is empty"),ji(Jo)}monitorPopupForHash(e,t){return new Promise(((t,r)=>{this.logger.verbose("PopupHandler.monitorPopupForHash - polling started");const n=setInterval((()=>{if(e.closed)return this.logger.error("PopupHandler.monitorPopupForHash - window closed"),clearInterval(n),void r(ji(ii));let o="";try{o=e.location.href}catch(e){}if(!o||"about:blank"===o)return;clearInterval(n);let i="";const a=this.config.auth.OIDCOptions.serverResponseType;e&&(i=a===R.QUERY?e.location.search:e.location.hash),this.logger.verbose("PopupHandler.monitorPopupForHash - popup window is on same origin as caller"),t(i)}),this.config.system.pollIntervalMilliseconds)})).finally((()=>{this.cleanPopup(e,t)}))}openPopup(e,t){try{let r;if(t.popup?(r=t.popup,this.logger.verbosePii(`Navigating popup window to: ${e}`),r.location.assign(e)):void 0===t.popup&&(this.logger.verbosePii(`Opening popup window to: ${e}`),r=this.openSizedPopup(e,t)),!r)throw ji(oi);return r.focus&&r.focus(),this.currentWindow=r,t.popupWindowParent.addEventListener("beforeunload",this.unloadWindow),r}catch(e){throw this.logger.error("error opening popup "+e.message),ji(ni)}}openSizedPopup(e,{popupName:t,popupWindowAttributes:r,popupWindowParent:n}){const o=n.screenLeft?n.screenLeft:n.screenX,i=n.screenTop?n.screenTop:n.screenY,a=n.innerWidth||document.documentElement.clientWidth||document.body.clientWidth,s=n.innerHeight||document.documentElement.clientHeight||document.body.clientHeight;let c=r.popupSize?.width,l=r.popupSize?.height,h=r.popupPosition?.top,d=r.popupPosition?.left;return(!c||c<0||c>a)&&(this.logger.verbose("Default popup window width used. Window width not configured or invalid."),c=Vi),(!l||l<0||l>s)&&(this.logger.verbose("Default popup window height used. Window height not configured or invalid."),l=Ji),(!h||h<0||h>s)&&(this.logger.verbose("Default popup window top position used. Window top not configured or invalid."),h=Math.max(0,s/2-Ji/2+i)),(!d||d<0||d>a)&&(this.logger.verbose("Default popup window left position used. Window left not configured or invalid."),d=Math.max(0,a/2-Vi/2+o)),n.open(e,t,`width=${c}, height=${l}, top=${h}, left=${d}, scrollbars=yes`)}unloadWindow(e){this.currentWindow&&this.currentWindow.close(),e.preventDefault()}cleanPopup(e,t){e.close(),t.removeEventListener("beforeunload",this.unloadWindow)}generatePopupName(e,t){return`${Yi}.${this.config.auth.clientId}.${e.join("-")}.${t}.${this.correlationId}`}generateLogoutPopupName(e){const t=e.account&&e.account.homeAccountId;return`${Yi}.${this.config.auth.clientId}.${t}.${this.correlationId}`}}class tl extends Pc{constructor(e,t,r,n,o,i,a,s,c,l){super(e,t,r,n,o,i,a,c,l),this.nativeStorage=s}async acquireToken(t){const r=await $n(this.initializeAuthorizationRequest.bind(this),zr.StandardInteractionClientInitializeAuthorizationRequest,this.logger,this.performanceClient,this.correlationId)(t,e.InteractionType.Redirect);r.platformBroker=Zc(this.config,this.logger,this.platformAuthProvider,t.authenticationScheme);const n=t=>{t.persisted&&(this.logger.verbose("Page was restored from back/forward cache. Clearing temporary cache."),this.browserStorage.resetRequestCache(),this.eventHandler.emitEvent(mc.RESTORE_FROM_BFCACHE,e.InteractionType.Redirect))},o=this.getRedirectStartPage(t.redirectStartPage);this.logger.verbosePii(`Redirect start page: ${o}`),this.browserStorage.setTemporaryCache(ya,o,!0),window.addEventListener("pageshow",n);try{this.config.auth.protocolMode===br.EAR?await this.executeEarFlow(r):await this.executeCodeFlow(r,t.onRedirectNavigate)}catch(e){throw e instanceof ye&&e.setCorrelationId(this.correlationId),window.removeEventListener("pageshow",n),e}}async executeCodeFlow(e,t){const r=e.correlationId,n=this.initializeServerTelemetryManager(Ra.acquireTokenRedirect),o=await $n(jc,zr.GeneratePkceCodes,this.logger,this.performanceClient,r)(this.performanceClient,this.logger,r),i={...e,codeChallenge:o.challenge};this.browserStorage.cacheAuthorizeRequest(i,o.verifier);try{const r=await $n(this.createAuthCodeClient.bind(this),zr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:n,requestAuthority:i.authority,requestAzureCloudOptions:i.azureCloudOptions,requestExtraQueryParameters:i.extraQueryParameters,account:i.account}),o=await $n(Kc,zr.GetAuthCodeUrl,this.logger,this.performanceClient,e.correlationId)(this.config,r.authority,i,this.logger,this.performanceClient);return await this.initiateAuthRequest(o,t)}catch(e){throw e instanceof ye&&(e.setCorrelationId(this.correlationId),n.cacheFailedRequest(e)),e}}async executeEarFlow(e){const t=e.correlationId,r=await $n(this.getDiscoveredAuthority.bind(this),zr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,t)({requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account}),n=await $n(os,zr.GenerateEarKey,this.logger,this.performanceClient,t)(),o={...e,earJwk:n};this.browserStorage.cacheAuthorizeRequest(o);(await zc(document,this.config,r,o,this.logger,this.performanceClient)).submit()}async handleRedirectPromise(e="",r,n,o){const i=this.initializeServerTelemetryManager(Ra.handleRedirectPromise);try{const[a,s]=this.getRedirectResponse(e||"");if(!a)return this.logger.info("handleRedirectPromise did not detect a response as a result of a redirect. Cleaning temporary cache."),this.browserStorage.resetRequestCache(),"back_forward"!==function(){if("undefined"==typeof window||void 0===window.performance||"function"!=typeof window.performance.getEntriesByType)return;const e=window.performance.getEntriesByType("navigation"),t=e.length?e[0]:void 0;return t?.type}()?o.event.errorCode="no_server_response":this.logger.verbose("Back navigation event detected. Muting no_server_response error"),null;const c=this.browserStorage.getTemporaryCache(ya,!0)||t.EMPTY_STRING,l=Mr.removeHashFromUrl(c);if(l===Mr.removeHashFromUrl(window.location.href)&&this.config.auth.navigateToLoginRequestUrl){this.logger.verbose("Current page is loginRequestUrl, handling response"),c.indexOf("#")>-1&&Is(c);return await this.handleResponse(a,r,n,i)}if(!this.config.auth.navigateToLoginRequestUrl)return this.logger.verbose("NavigateToLoginRequestUrl set to false, handling response"),await this.handleResponse(a,r,n,i);if(!Ts()||this.config.system.allowRedirectInIframe){this.browserStorage.setTemporaryCache(Ca,s,!0);const e={apiId:Ra.handleRedirectPromise,timeout:this.config.system.redirectNavigationTimeout,noHistory:!0};let t=!0;if(c&&"null"!==c)this.logger.verbose(`Navigating to loginRequestUrl: ${c}`),t=await this.navigationClient.navigateInternal(c,e);else{const r=Ss();this.browserStorage.setTemporaryCache(ya,r,!0),this.logger.warning("Unable to get valid login request url from cache, redirecting to home page"),t=await this.navigationClient.navigateInternal(r,e)}if(!t)return await this.handleResponse(a,r,n,i)}return null}catch(e){throw e instanceof ye&&(e.setCorrelationId(this.correlationId),i.cacheFailedRequest(e)),e}}getRedirectResponse(t){this.logger.verbose("getRedirectResponseHash called");let r=t;r||(r=this.config.auth.OIDCOptions.serverResponseType===R.QUERY?window.location.search:window.location.hash);let n=_r(r);if(n){try{Oc(n,this.browserCrypto,e.InteractionType.Redirect)}catch(e){return e instanceof ye&&this.logger.error(`Interaction type validation failed due to ${e.errorCode}: ${e.errorMessage}`),[null,""]}return ws(window),this.logger.verbose("Hash contains known properties, returning response hash"),[n,r]}const o=this.browserStorage.getTemporaryCache(Ca,!0);return this.browserStorage.removeItem(this.browserStorage.generateCacheKey(Ca)),o&&(n=_r(o),n)?(this.logger.verbose("Hash does not contain known properties, returning cached hash"),[n,o]):[null,""]}async handleResponse(e,t,r,n){if(!e.state)throw ji(Xo);if(e.ear_jwe){const r=await $n(this.getDiscoveredAuthority.bind(this),zr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,t.correlationId)({requestAuthority:t.authority,requestAzureCloudOptions:t.azureCloudOptions,requestExtraQueryParameters:t.extraQueryParameters,account:t.account});return $n(Qc,zr.HandleResponseEar,this.logger,this.performanceClient,t.correlationId)(t,e,Ra.acquireTokenRedirect,this.config,r,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}const o=await $n(this.createAuthCodeClient.bind(this),zr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:n,requestAuthority:t.authority});return $n($c,zr.HandleResponseCode,this.logger,this.performanceClient,t.correlationId)(t,e,r,Ra.acquireTokenRedirect,this.config,o,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}async initiateAuthRequest(e,t){if(this.logger.verbose("RedirectHandler.initiateAuthRequest called"),e){this.logger.infoPii(`RedirectHandler.initiateAuthRequest: Navigate to: ${e}`);const r={apiId:Ra.acquireTokenRedirect,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},n=t||this.config.auth.onRedirectNavigate;if("function"==typeof n){this.logger.verbose("RedirectHandler.initiateAuthRequest: Invoking onRedirectNavigate callback");return!1!==n(e)?(this.logger.verbose("RedirectHandler.initiateAuthRequest: onRedirectNavigate did not return false, navigating"),void await this.navigationClient.navigateExternal(e,r)):void this.logger.verbose("RedirectHandler.initiateAuthRequest: onRedirectNavigate returned false, stopping navigation")}return this.logger.verbose("RedirectHandler.initiateAuthRequest: Navigating window to navigate url"),void await this.navigationClient.navigateExternal(e,r)}throw this.logger.info("RedirectHandler.initiateAuthRequest: Navigate url is empty"),ji(Jo)}async logout(t){this.logger.verbose("logoutRedirect called");const r=this.initializeLogoutRequest(t),n=this.initializeServerTelemetryManager(Ra.logout);try{this.eventHandler.emitEvent(mc.LOGOUT_START,e.InteractionType.Redirect,t),await this.clearCacheOnLogout(r.account);const o={apiId:Ra.logout,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},i=await $n(this.createAuthCodeClient.bind(this),zr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:n,requestAuthority:t&&t.authority,requestExtraQueryParameters:t?.extraQueryParameters,account:t&&t.account||void 0});if(i.authority.protocolMode===br.OIDC)try{i.authority.endSessionEndpoint}catch{if(r.account?.homeAccountId)return this.browserStorage.removeAccount(r.account?.homeAccountId,this.correlationId),void this.eventHandler.emitEvent(mc.LOGOUT_SUCCESS,e.InteractionType.Redirect,r)}const a=i.getLogoutUri(r);if(this.eventHandler.emitEvent(mc.LOGOUT_SUCCESS,e.InteractionType.Redirect,r),!t||"function"!=typeof t.onRedirectNavigate)return this.browserStorage.getInteractionInProgress()||this.browserStorage.setInteractionInProgress(!0,fa),void await this.navigationClient.navigateExternal(a,o);if(!1!==t.onRedirectNavigate(a))return this.logger.verbose("Logout onRedirectNavigate did not return false, navigating"),this.browserStorage.getInteractionInProgress()||this.browserStorage.setInteractionInProgress(!0,fa),void await this.navigationClient.navigateExternal(a,o);this.browserStorage.setInteractionInProgress(!1),this.logger.verbose("Logout onRedirectNavigate returned false, stopping navigation")}catch(t){throw t instanceof ye&&(t.setCorrelationId(this.correlationId),n.cacheFailedRequest(t)),this.eventHandler.emitEvent(mc.LOGOUT_FAILURE,e.InteractionType.Redirect,null,t),this.eventHandler.emitEvent(mc.LOGOUT_END,e.InteractionType.Redirect),t}this.eventHandler.emitEvent(mc.LOGOUT_END,e.InteractionType.Redirect)}getRedirectStartPage(e){const t=e||window.location.href;return Mr.getAbsoluteUrl(t,ks())}}async function rl(e,t,r,n,o){if(t.addQueueMeasurement(zr.SilentHandlerInitiateAuthRequest,n),!e)throw r.info("Navigate url is empty"),ji(Jo);return o?$n(il,zr.SilentHandlerLoadFrame,r,t,n)(e,o,t,n):Gn(al,zr.SilentHandlerLoadFrameSync,r,t,n)(e)}async function nl(e,t,r,n,o){const i=sl();if(!i.contentDocument)throw"No document associated with iframe!";return(await zc(i.contentDocument,e,t,r,n,o)).submit(),i}async function ol(e,t,r,n,o,i,a){return n.addQueueMeasurement(zr.SilentHandlerMonitorIframeForHash,i),new Promise(((n,i)=>{t<Bs&&o.warning(`system.loadFrameTimeout or system.iframeHashTimeout set to lower (${t}ms) than the default (10000ms). This may result in timeouts.`);const s=window.setTimeout((()=>{window.clearInterval(c),i(ji(si))}),t),c=window.setInterval((()=>{let t="";const r=e.contentWindow;try{t=r?r.location.href:""}catch(e){}if(!t||"about:blank"===t)return;let o="";r&&(o=a===R.QUERY?r.location.search:r.location.hash),window.clearTimeout(s),window.clearInterval(c),n(o)}),r)})).finally((()=>{Gn(cl,zr.RemoveHiddenIframe,o,n,i)(e)}))}function il(e,t,r,n){return r.addQueueMeasurement(zr.SilentHandlerLoadFrame,n),new Promise(((r,n)=>{const o=sl();window.setTimeout((()=>{o?(o.src=e,r(o)):n("Unable to load iframe")}),t)}))}function al(e){const t=sl();return t.src=e,t}function sl(){const e=document.createElement("iframe");return e.className="msalSilentIframe",e.style.visibility="hidden",e.style.position="absolute",e.style.width=e.style.height="0",e.style.border="0",e.setAttribute("sandbox","allow-scripts allow-same-origin allow-forms"),document.body.appendChild(e),e}function cl(e){document.body===e.parentNode&&document.body.removeChild(e)}class ll extends Pc{constructor(e,t,r,n,o,i,a,s,c,l,h){super(e,t,r,n,o,i,s,l,h),this.apiId=a,this.nativeStorage=c}async acquireToken(t){this.performanceClient.addQueueMeasurement(zr.SilentIframeClientAcquireToken,t.correlationId),t.loginHint||t.sid||t.account&&t.account.username||this.logger.warning("No user hint provided. The authorization server may need more information to complete this request.");const r={...t};r.prompt?r.prompt!==k.NONE&&r.prompt!==k.NO_SESSION&&(this.logger.warning(`SilentIframeClient. Replacing invalid prompt ${r.prompt} with ${k.NONE}`),r.prompt=k.NONE):r.prompt=k.NONE;const n=await $n(this.initializeAuthorizationRequest.bind(this),zr.StandardInteractionClientInitializeAuthorizationRequest,this.logger,this.performanceClient,t.correlationId)(r,e.InteractionType.Silent);return n.platformBroker=Zc(this.config,this.logger,this.platformAuthProvider,n.authenticationScheme),Ns(n.authority),this.config.auth.protocolMode===br.EAR?this.executeEarFlow(n):this.executeCodeFlow(n)}async executeCodeFlow(e){let t;const r=this.initializeServerTelemetryManager(this.apiId);try{return t=await $n(this.createAuthCodeClient.bind(this),zr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,e.correlationId)({serverTelemetryManager:r,requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account}),await $n(this.silentTokenHelper.bind(this),zr.SilentIframeClientTokenHelper,this.logger,this.performanceClient,e.correlationId)(t,e)}catch(n){if(n instanceof ye&&(n.setCorrelationId(this.correlationId),r.cacheFailedRequest(n)),!(t&&n instanceof ye&&n.errorCode===Wi))throw n;return this.performanceClient.addFields({retryError:n.errorCode},this.correlationId),await $n(this.silentTokenHelper.bind(this),zr.SilentIframeClientTokenHelper,this.logger,this.performanceClient,this.correlationId)(t,e)}}async executeEarFlow(e){const t=e.correlationId,r=await $n(this.getDiscoveredAuthority.bind(this),zr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,t)({requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account}),n=await $n(os,zr.GenerateEarKey,this.logger,this.performanceClient,t)(),o={...e,earJwk:n},i=await $n(nl,zr.SilentHandlerInitiateAuthRequest,this.logger,this.performanceClient,t)(this.config,r,o,this.logger,this.performanceClient),a=this.config.auth.OIDCOptions.serverResponseType,s=await $n(ol,zr.SilentHandlerMonitorIframeForHash,this.logger,this.performanceClient,t)(i,this.config.system.iframeHashTimeout,this.config.system.pollIntervalMilliseconds,this.performanceClient,this.logger,t,a),c=Gn(Mc,zr.DeserializeResponse,this.logger,this.performanceClient,t)(s,a,this.logger);return $n(Qc,zr.HandleResponseEar,this.logger,this.performanceClient,t)(o,c,this.apiId,this.config,r,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}logout(){return Promise.reject(ji(ui))}async silentTokenHelper(e,t){const r=t.correlationId;this.performanceClient.addQueueMeasurement(zr.SilentIframeClientTokenHelper,r);const n=await $n(jc,zr.GeneratePkceCodes,this.logger,this.performanceClient,r)(this.performanceClient,this.logger,r),o={...t,codeChallenge:n.challenge},i=await $n(Kc,zr.GetAuthCodeUrl,this.logger,this.performanceClient,r)(this.config,e.authority,o,this.logger,this.performanceClient),a=await $n(rl,zr.SilentHandlerInitiateAuthRequest,this.logger,this.performanceClient,r)(i,this.performanceClient,this.logger,r,this.config.system.navigateFrameWait),s=this.config.auth.OIDCOptions.serverResponseType,c=await $n(ol,zr.SilentHandlerMonitorIframeForHash,this.logger,this.performanceClient,r)(a,this.config.system.iframeHashTimeout,this.config.system.pollIntervalMilliseconds,this.performanceClient,this.logger,r,s),l=Gn(Mc,zr.DeserializeResponse,this.logger,this.performanceClient,r)(c,s,this.logger);return $n($c,zr.HandleResponseCode,this.logger,this.performanceClient,r)(t,l,n.verifier,this.apiId,this.config,e,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}}class hl extends Pc{async acquireToken(e){this.performanceClient.addQueueMeasurement(zr.SilentRefreshClientAcquireToken,e.correlationId);const t=await $n(Rc,zr.InitializeBaseRequest,this.logger,this.performanceClient,e.correlationId)(e,this.config,this.performanceClient,this.logger),r={...e,...t};e.redirectUri&&(r.redirectUri=this.getRedirectUri(e.redirectUri));const n=this.initializeServerTelemetryManager(Ra.acquireTokenSilent_silentFlow),o=await this.createRefreshTokenClient({serverTelemetryManager:n,authorityUrl:r.authority,azureCloudOptions:r.azureCloudOptions,account:r.account});return $n(o.acquireTokenByRefreshToken.bind(o),zr.RefreshTokenClientAcquireTokenByRefreshToken,this.logger,this.performanceClient,e.correlationId)(r).catch((e=>{throw e.setCorrelationId(this.correlationId),n.cacheFailedRequest(e),e}))}logout(){return Promise.reject(ji(ui))}async createRefreshTokenClient(e){const t=await $n(this.getClientConfiguration.bind(this),zr.StandardInteractionClientGetClientConfiguration,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:e.serverTelemetryManager,requestAuthority:e.authorityUrl,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account});return new _o(t,this.performanceClient)}}class dl{constructor(e,t,r,n){this.isBrowserEnvironment="undefined"!=typeof window,this.config=e,this.storage=t,this.logger=r,this.cryptoObj=n}async loadExternalTokens(e,t,r){if(!this.isBrowserEnvironment)throw ji(vi);const n=e.correlationId||rs(),o=t.id_token?wt(t.id_token,Fa):void 0,i={protocolMode:this.config.auth.protocolMode,knownAuthorities:this.config.auth.knownAuthorities,cloudDiscoveryMetadata:this.config.auth.cloudDiscoveryMetadata,authorityMetadata:this.config.auth.authorityMetadata,skipAuthorityMetadataCache:this.config.auth.skipAuthorityMetadataCache},a=e.authority?new jn(jn.generateAuthority(e.authority,e.azureCloudOptions),this.config.system.networkClient,this.storage,i,this.logger,e.correlationId||rs()):void 0,s=await this.loadAccount(e,r.clientInfo||t.client_info||"",n,o,a),c=await this.loadIdToken(t,s.homeAccountId,s.environment,s.realm,n),l=await this.loadAccessToken(e,t,s.homeAccountId,s.environment,s.realm,r,n),h=await this.loadRefreshToken(t,s.homeAccountId,s.environment,n);return this.generateAuthenticationResult(e,{account:s,idToken:c,accessToken:l,refreshToken:h},o,a)}async loadAccount(e,t,r,n,o){if(this.logger.verbose("TokenCache - loading account"),e.account){const t=Er.createFromAccountInfo(e.account);return await this.storage.setAccount(t,r),t}if(!o||!t&&!n)throw this.logger.error("TokenCache - if an account is not provided on the request, authority and either clientInfo or idToken must be provided instead."),ji(Si);const i=Er.generateHomeAccountId(t,o.authorityType,this.logger,this.cryptoObj,n),a=n?.tid,s=So(this.storage,o,i,Fa,n,t,o.hostnameAndPort,a,void 0,void 0,this.logger);return await this.storage.setAccount(s,r),s}async loadIdToken(e,t,r,n,o){if(!e.id_token)return this.logger.verbose("TokenCache - no id token found in response"),null;this.logger.verbose("TokenCache - loading id token");const i=Rt(t,r,e.id_token,this.config.auth.clientId,n);return await this.storage.setIdTokenCredential(i,o),i}async loadAccessToken(e,t,r,n,o,i,a){if(!t.access_token)return this.logger.verbose("TokenCache - no access token found in response"),null;if(!t.expires_in)return this.logger.error("TokenCache - no expiration set on the access token. Cannot add it to the cache."),null;if(!(t.scope||e.scopes&&e.scopes.length))return this.logger.error("TokenCache - scopes not specified in the request or response. Cannot add token to the cache."),null;this.logger.verbose("TokenCache - loading access token");const s=t.scope?mr.fromString(t.scope):new mr(e.scopes),c=i.expiresOn||t.expires_in+Tt(),l=i.extendedExpiresOn||(t.ext_expires_in||t.expires_in)+Tt(),h=_t(r,n,t.access_token,this.config.auth.clientId,o,s.printScopes(),c,l,Fa);return await this.storage.setAccessTokenCredential(h,a),h}async loadRefreshToken(e,t,r,n){if(!e.refresh_token)return this.logger.verbose("TokenCache - no refresh token found in response"),null;this.logger.verbose("TokenCache - loading refresh token");const o=Pt(t,r,e.refresh_token,this.config.auth.clientId,e.foci,void 0,e.refresh_token_expires_in);return await this.storage.setRefreshTokenCredential(o,n),o}generateAuthenticationResult(e,t,r,n){let o,i="",a=[],s=null;t?.accessToken&&(i=t.accessToken.secret,a=mr.fromString(t.accessToken.target).asArray(),s=kt(t.accessToken.expiresOn),o=kt(t.accessToken.extendedExpiresOn));const c=t.account;return{authority:n?n.canonicalAuthority:"",uniqueId:t.account.localAccountId,tenantId:t.account.realm,scopes:a,account:c.getAccountInfo(),idToken:t.idToken?.secret||"",idTokenClaims:r||{},accessToken:i,fromCache:!0,expiresOn:s,correlationId:e.correlationId||"",requestId:"",extExpiresOn:o,familyId:t.refreshToken?.familyId||"",tokenType:t?.accessToken?.tokenType||"",state:e.state||"",cloudGraphHostName:c.cloudGraphHostName||"",msGraphHost:c.msGraphHost||"",fromNativeBroker:!1}}}class ul extends Ro{constructor(e){super(e),this.includeRedirectUri=!1}}class gl extends Pc{constructor(e,t,r,n,o,i,a,s,c,l){super(e,t,r,n,o,i,s,c,l),this.apiId=a}async acquireToken(t){if(!t.code)throw ji(Ei);const r=await $n(this.initializeAuthorizationRequest.bind(this),zr.StandardInteractionClientInitializeAuthorizationRequest,this.logger,this.performanceClient,t.correlationId)(t,e.InteractionType.Silent),n=this.initializeServerTelemetryManager(this.apiId);try{const e={...r,code:t.code},o=await $n(this.getClientConfiguration.bind(this),zr.StandardInteractionClientGetClientConfiguration,this.logger,this.performanceClient,t.correlationId)({serverTelemetryManager:n,requestAuthority:r.authority,requestAzureCloudOptions:r.azureCloudOptions,requestExtraQueryParameters:r.extraQueryParameters,account:r.account}),i=new ul(o);this.logger.verbose("Auth code client created");const a=new Nc(i,this.browserStorage,e,this.logger,this.performanceClient);return await $n(a.handleCodeResponseFromServer.bind(a),zr.HandleCodeResponseFromServer,this.logger,this.performanceClient,t.correlationId)({code:t.code,msgraph_host:t.msGraphHost,cloud_graph_host_name:t.cloudGraphHostName,cloud_instance_host_name:t.cloudInstanceHostName},r,!1)}catch(e){throw e instanceof ye&&(e.setCorrelationId(this.correlationId),n.cacheFailedRequest(e)),e}}logout(){return Promise.reject(ji(ui))}}function pl(e){const t=e?.idTokenClaims;return t?.tfp||t?.acr?"B2C":t?.tid?"9188040d-6c67-4c5b-b112-36a304b66dad"===t?.tid?"MSA":"AAD":void 0}function ml(e,t){try{Ms(e)}catch(e){throw t.end({success:!1},e),e}}class fl{constructor(e){this.operatingContext=e,this.isBrowserEnvironment=this.operatingContext.isBrowserEnvironment(),this.config=e.getConfig(),this.initialized=!1,this.logger=this.operatingContext.getLogger(),this.networkClient=this.config.system.networkClient,this.navigationClient=this.config.system.navigationClient,this.redirectResponse=new Map,this.hybridAuthCodeResponses=new Map,this.performanceClient=this.config.telemetry.client,this.browserCrypto=this.isBrowserEnvironment?new oc(this.logger,this.performanceClient):pt,this.eventHandler=new bc(this.logger),this.browserStorage=this.isBrowserEnvironment?new fc(this.config.auth.clientId,this.config.cache,this.browserCrypto,this.logger,this.performanceClient,this.eventHandler,Vn(this.config.auth)):Cc(this.config.auth.clientId,this.logger,this.performanceClient,this.eventHandler);const t={cacheLocation:ua.MemoryStorage,temporaryCacheLocation:ua.MemoryStorage,storeAuthStateInCookie:!1,secureCookies:!1,cacheMigrationEnabled:!1,claimsBasedCachingEnabled:!1};this.nativeInternalStorage=new fc(this.config.auth.clientId,t,this.browserCrypto,this.logger,this.performanceClient,this.eventHandler),this.tokenCache=new dl(this.config,this.browserStorage,this.logger,this.browserCrypto),this.activeSilentTokenRequests=new Map,this.trackPageVisibility=this.trackPageVisibility.bind(this),this.trackPageVisibilityWithMeasurement=this.trackPageVisibilityWithMeasurement.bind(this)}static async createController(e,t){const r=new fl(e);return await r.initialize(t),r}trackPageVisibility(e){e&&(this.logger.info("Perf: Visibility change detected"),this.performanceClient.incrementFields({visibilityChangeCount:1},e))}async initialize(e,t){if(this.logger.trace("initialize called"),this.initialized)return void this.logger.info("initialize has already been called, exiting early.");if(!this.isBrowserEnvironment)return this.logger.info("in non-browser environment, exiting early."),this.initialized=!0,void this.eventHandler.emitEvent(mc.INITIALIZE_END);const r=e?.correlationId||this.getRequestCorrelationId(),n=this.config.system.allowPlatformBroker,o=this.performanceClient.startMeasurement(zr.InitializeClientApplication,r);if(this.eventHandler.emitEvent(mc.INITIALIZE_START),!t)try{this.logMultipleInstances(o)}catch{}if(await $n(this.browserStorage.initialize.bind(this.browserStorage),zr.InitializeCache,this.logger,this.performanceClient,r)(r),n)try{this.platformAuthProvider=await Xc(this.logger,this.performanceClient,r,this.config.system.nativeBrokerHandshakeTimeout)}catch(e){this.logger.verbose(e)}this.config.cache.claimsBasedCachingEnabled||(this.logger.verbose("Claims-based caching is disabled. Clearing the previous cache with claims"),Gn(this.browserStorage.clearTokensAndKeysWithClaims.bind(this.browserStorage),zr.ClearTokensAndKeysWithClaims,this.logger,this.performanceClient,r)(r)),this.config.system.asyncPopups&&await this.preGeneratePkceCodes(r),this.initialized=!0,this.eventHandler.emitEvent(mc.INITIALIZE_END),o.end({allowPlatformBroker:n,success:!0})}async handleRedirectPromise(e){if(this.logger.verbose("handleRedirectPromise called"),Ps(this.initialized),this.isBrowserEnvironment){const t=e||"";let r=this.redirectResponse.get(t);return void 0===r?(r=this.handleRedirectPromiseInternal(e),this.redirectResponse.set(t,r),this.logger.verbose("handleRedirectPromise has been called for the first time, storing the promise")):this.logger.verbose("handleRedirectPromise has been called previously, returning the result from the first call"),r}return this.logger.verbose("handleRedirectPromise returns null, not browser environment"),null}async handleRedirectPromiseInternal(t){if(!this.browserStorage.isInteractionInProgress(!0))return this.logger.info("handleRedirectPromise called but there is no interaction in progress, returning null."),null;const r=this.browserStorage.getInteractionInProgress()?.type;if(r===fa)return this.logger.verbose("handleRedirectPromise removing interaction_in_progress flag and returning null after sign-out"),this.browserStorage.setInteractionInProgress(!1),Promise.resolve(null);const n=this.getAllAccounts(),o=this.browserStorage.getCachedNativeRequest(),i=o&&this.platformAuthProvider&&!t;let a,s;this.eventHandler.emitEvent(mc.HANDLE_REDIRECT_START,e.InteractionType.Redirect);try{if(i&&this.platformAuthProvider){a=this.performanceClient.startMeasurement(zr.AcquireTokenRedirect,o?.correlationId||""),this.logger.trace("handleRedirectPromise - acquiring token from native platform");const e=new Bc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,Ra.handleRedirectPromise,this.performanceClient,this.platformAuthProvider,o.accountId,this.nativeInternalStorage,o.correlationId);s=$n(e.handleRedirectPromise.bind(e),zr.HandleNativeRedirectPromiseMeasurement,this.logger,this.performanceClient,a.event.correlationId)(this.performanceClient,a.event.correlationId)}else{const[e,r]=this.browserStorage.getCachedRequest(),n=e.correlationId;a=this.performanceClient.startMeasurement(zr.AcquireTokenRedirect,n),this.logger.trace("handleRedirectPromise - acquiring token from web flow");const o=this.createRedirectClient(n);s=$n(o.handleRedirectPromise.bind(o),zr.HandleRedirectPromiseMeasurement,this.logger,this.performanceClient,a.event.correlationId)(t,e,r,a)}}catch(e){throw this.browserStorage.resetRequestCache(),e}return s.then((t=>{if(t){this.browserStorage.resetRequestCache();n.length<this.getAllAccounts().length?(this.eventHandler.emitEvent(mc.LOGIN_SUCCESS,e.InteractionType.Redirect,t),this.logger.verbose("handleRedirectResponse returned result, login success")):(this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Redirect,t),this.logger.verbose("handleRedirectResponse returned result, acquire token success")),a.end({success:!0,accountType:pl(t.account)})}else a.event.errorCode?a.end({success:!1}):a.discard();return this.eventHandler.emitEvent(mc.HANDLE_REDIRECT_END,e.InteractionType.Redirect),t})).catch((t=>{this.browserStorage.resetRequestCache();const r=t;throw n.length>0?this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Redirect,null,r):this.eventHandler.emitEvent(mc.LOGIN_FAILURE,e.InteractionType.Redirect,null,r),this.eventHandler.emitEvent(mc.HANDLE_REDIRECT_END,e.InteractionType.Redirect),a.end({success:!1},r),t}))}async acquireTokenRedirect(t){const r=this.getRequestCorrelationId(t);this.logger.verbose("acquireTokenRedirect called",r);const n=this.performanceClient.startMeasurement(zr.AcquireTokenPreRedirect,r);n.add({accountType:pl(t.account),scenarioId:t.scenarioId});const o=t.onRedirectNavigate;if(o)t.onRedirectNavigate=e=>{const t="function"==typeof o?o(e):void 0;return!1!==t?n.end({success:!0}):n.discard(),t};else{const e=this.config.auth.onRedirectNavigate;this.config.auth.onRedirectNavigate=t=>{const r="function"==typeof e?e(t):void 0;return!1!==r?n.end({success:!0}):n.discard(),r}}const i=this.getAllAccounts().length>0;try{let o;if(Os(this.initialized,this.config),this.browserStorage.setInteractionInProgress(!0,ma),i?this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_START,e.InteractionType.Redirect,t):this.eventHandler.emitEvent(mc.LOGIN_START,e.InteractionType.Redirect,t),this.platformAuthProvider&&this.canUsePlatformBroker(t)){o=new Bc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,Ra.acquireTokenRedirect,this.performanceClient,this.platformAuthProvider,this.getNativeAccountId(t),this.nativeInternalStorage,r).acquireTokenRedirect(t,n).catch((e=>{if(e instanceof Uc&&Hc(e)){this.platformAuthProvider=void 0;return this.createRedirectClient(r).acquireToken(t)}if(e instanceof yo){this.logger.verbose("acquireTokenRedirect - Resolving interaction required error thrown by native broker by falling back to web flow");return this.createRedirectClient(r).acquireToken(t)}throw e}))}else{o=this.createRedirectClient(r).acquireToken(t)}return await o}catch(t){throw this.browserStorage.resetRequestCache(),n.end({success:!1},t),i?this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Redirect,null,t):this.eventHandler.emitEvent(mc.LOGIN_FAILURE,e.InteractionType.Redirect,null,t),t}}acquireTokenPopup(t){const r=this.getRequestCorrelationId(t),n=this.performanceClient.startMeasurement(zr.AcquireTokenPopup,r);n.add({scenarioId:t.scenarioId,accountType:pl(t.account)});try{this.logger.verbose("acquireTokenPopup called",r),ml(this.initialized,n),this.browserStorage.setInteractionInProgress(!0,ma)}catch(e){return Promise.reject(e)}const o=this.getAllAccounts();let i;o.length>0?this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_START,e.InteractionType.Popup,t):this.eventHandler.emitEvent(mc.LOGIN_START,e.InteractionType.Popup,t);const a=this.getPreGeneratedPkceCodes(r);if(this.canUsePlatformBroker(t))i=this.acquireTokenNative({...t,correlationId:r},Ra.acquireTokenPopup).then((e=>(n.end({success:!0,isNativeBroker:!0,accountType:pl(e.account)}),e))).catch((e=>{if(e instanceof Uc&&Hc(e)){this.platformAuthProvider=void 0;return this.createPopupClient(r).acquireToken(t,a)}if(e instanceof yo){this.logger.verbose("acquireTokenPopup - Resolving interaction required error thrown by native broker by falling back to web flow");return this.createPopupClient(r).acquireToken(t,a)}throw e}));else{i=this.createPopupClient(r).acquireToken(t,a)}return i.then((t=>(o.length<this.getAllAccounts().length?this.eventHandler.emitEvent(mc.LOGIN_SUCCESS,e.InteractionType.Popup,t):this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Popup,t),n.end({success:!0,accessTokenSize:t.accessToken.length,idTokenSize:t.idToken.length,accountType:pl(t.account)}),t))).catch((t=>(o.length>0?this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Popup,null,t):this.eventHandler.emitEvent(mc.LOGIN_FAILURE,e.InteractionType.Popup,null,t),n.end({success:!1},t),Promise.reject(t)))).finally((async()=>{this.browserStorage.setInteractionInProgress(!1),this.config.system.asyncPopups&&await this.preGeneratePkceCodes(r)}))}trackPageVisibilityWithMeasurement(){const e=this.ssoSilentMeasurement||this.acquireTokenByCodeAsyncMeasurement;e&&(this.logger.info("Perf: Visibility change detected in ",e.event.name),e.increment({visibilityChangeCount:1}))}async ssoSilent(t){const r=this.getRequestCorrelationId(t),n={...t,prompt:t.prompt,correlationId:r};let o;if(this.ssoSilentMeasurement=this.performanceClient.startMeasurement(zr.SsoSilent,r),this.ssoSilentMeasurement?.add({scenarioId:t.scenarioId,accountType:pl(t.account)}),ml(this.initialized,this.ssoSilentMeasurement),this.ssoSilentMeasurement?.increment({visibilityChangeCount:0}),document.addEventListener("visibilitychange",this.trackPageVisibilityWithMeasurement),this.logger.verbose("ssoSilent called",r),this.eventHandler.emitEvent(mc.SSO_SILENT_START,e.InteractionType.Silent,n),this.canUsePlatformBroker(n))o=this.acquireTokenNative(n,Ra.ssoSilent).catch((e=>{if(e instanceof Uc&&Hc(e)){this.platformAuthProvider=void 0;return this.createSilentIframeClient(n.correlationId).acquireToken(n)}throw e}));else{o=this.createSilentIframeClient(n.correlationId).acquireToken(n)}return o.then((t=>(this.eventHandler.emitEvent(mc.SSO_SILENT_SUCCESS,e.InteractionType.Silent,t),this.ssoSilentMeasurement?.end({success:!0,isNativeBroker:t.fromNativeBroker,accessTokenSize:t.accessToken.length,idTokenSize:t.idToken.length,accountType:pl(t.account)}),t))).catch((t=>{throw this.eventHandler.emitEvent(mc.SSO_SILENT_FAILURE,e.InteractionType.Silent,null,t),this.ssoSilentMeasurement?.end({success:!1},t),t})).finally((()=>{document.removeEventListener("visibilitychange",this.trackPageVisibilityWithMeasurement)}))}async acquireTokenByCode(t){const r=this.getRequestCorrelationId(t);this.logger.trace("acquireTokenByCode called",r);const n=this.performanceClient.startMeasurement(zr.AcquireTokenByCode,r);ml(this.initialized,n),this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_BY_CODE_START,e.InteractionType.Silent,t),n.add({scenarioId:t.scenarioId});try{if(t.code&&t.nativeAccountId)throw ji(_i);if(t.code){const o=t.code;let i=this.hybridAuthCodeResponses.get(o);return i?(this.logger.verbose("Existing acquireTokenByCode request found",r),n.discard()):(this.logger.verbose("Initiating new acquireTokenByCode request",r),i=this.acquireTokenByCodeAsync({...t,correlationId:r}).then((t=>(this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_BY_CODE_SUCCESS,e.InteractionType.Silent,t),this.hybridAuthCodeResponses.delete(o),n.end({success:!0,isNativeBroker:t.fromNativeBroker,accessTokenSize:t.accessToken.length,idTokenSize:t.idToken.length,accountType:pl(t.account)}),t))).catch((t=>{throw this.hybridAuthCodeResponses.delete(o),this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_BY_CODE_FAILURE,e.InteractionType.Silent,null,t),n.end({success:!1},t),t})),this.hybridAuthCodeResponses.set(o,i)),await i}if(t.nativeAccountId){if(this.canUsePlatformBroker(t,t.nativeAccountId)){const e=await this.acquireTokenNative({...t,correlationId:r},Ra.acquireTokenByCode,t.nativeAccountId).catch((e=>{throw e instanceof Uc&&Hc(e)&&(this.platformAuthProvider=void 0),e}));return n.end({accountType:pl(e.account),success:!0}),e}throw ji(Mi)}throw ji(Ri)}catch(t){throw this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_BY_CODE_FAILURE,e.InteractionType.Silent,null,t),n.end({success:!1},t),t}}async acquireTokenByCodeAsync(e){this.logger.trace("acquireTokenByCodeAsync called",e.correlationId),this.acquireTokenByCodeAsyncMeasurement=this.performanceClient.startMeasurement(zr.AcquireTokenByCodeAsync,e.correlationId),this.acquireTokenByCodeAsyncMeasurement?.increment({visibilityChangeCount:0}),document.addEventListener("visibilitychange",this.trackPageVisibilityWithMeasurement);const t=this.createSilentAuthCodeClient(e.correlationId);return await t.acquireToken(e).then((e=>(this.acquireTokenByCodeAsyncMeasurement?.end({success:!0,fromCache:e.fromCache,isNativeBroker:e.fromNativeBroker}),e))).catch((e=>{throw this.acquireTokenByCodeAsyncMeasurement?.end({success:!1},e),e})).finally((()=>{document.removeEventListener("visibilitychange",this.trackPageVisibilityWithMeasurement)}))}async acquireTokenFromCache(e,t){switch(this.performanceClient.addQueueMeasurement(zr.AcquireTokenFromCache,e.correlationId),t){case qa.Default:case qa.AccessToken:case qa.AccessTokenAndRefreshToken:const t=this.createSilentCacheClient(e.correlationId);return $n(t.acquireToken.bind(t),zr.SilentCacheClientAcquireToken,this.logger,this.performanceClient,e.correlationId)(e);default:throw gt(Ye)}}async acquireTokenByRefreshToken(e,t){switch(this.performanceClient.addQueueMeasurement(zr.AcquireTokenByRefreshToken,e.correlationId),t){case qa.Default:case qa.AccessTokenAndRefreshToken:case qa.RefreshToken:case qa.RefreshTokenAndNetwork:const t=this.createSilentRefreshClient(e.correlationId);return $n(t.acquireToken.bind(t),zr.SilentRefreshClientAcquireToken,this.logger,this.performanceClient,e.correlationId)(e);default:throw gt(Ye)}}async acquireTokenBySilentIframe(e){this.performanceClient.addQueueMeasurement(zr.AcquireTokenBySilentIframe,e.correlationId);const t=this.createSilentIframeClient(e.correlationId);return $n(t.acquireToken.bind(t),zr.SilentIframeClientAcquireToken,this.logger,this.performanceClient,e.correlationId)(e)}async logout(e){const t=this.getRequestCorrelationId(e);return this.logger.warning("logout API is deprecated and will be removed in msal-browser v3.0.0. Use logoutRedirect instead.",t),this.logoutRedirect({correlationId:t,...e})}async logoutRedirect(e){const t=this.getRequestCorrelationId(e);Os(this.initialized,this.config),this.browserStorage.setInteractionInProgress(!0,fa);return this.createRedirectClient(t).logout(e)}logoutPopup(e){try{const t=this.getRequestCorrelationId(e);Ms(this.initialized),this.browserStorage.setInteractionInProgress(!0,fa);return this.createPopupClient(t).logout(e).finally((()=>{this.browserStorage.setInteractionInProgress(!1)}))}catch(e){return Promise.reject(e)}}async clearCache(e){if(!this.isBrowserEnvironment)return void this.logger.info("in non-browser environment, returning early.");const t=this.getRequestCorrelationId(e);return this.createSilentCacheClient(t).logout(e)}getAllAccounts(e){return vc(this.logger,this.browserStorage,this.isBrowserEnvironment,e)}getAccount(e){return wc(e,this.logger,this.browserStorage)}getAccountByUsername(e){return Ic(e,this.logger,this.browserStorage)}getAccountByHomeId(e){return Tc(e,this.logger,this.browserStorage)}getAccountByLocalId(e){return Ac(e,this.logger,this.browserStorage)}setActiveAccount(e){kc(e,this.browserStorage)}getActiveAccount(){return Sc(this.browserStorage)}async hydrateCache(e,t){this.logger.verbose("hydrateCache called");const r=Er.createFromAccountInfo(e.account,e.cloudGraphHostName,e.msGraphHost);return await this.browserStorage.setAccount(r,e.correlationId),e.fromNativeBroker?(this.logger.verbose("Response was from native broker, storing in-memory"),this.nativeInternalStorage.hydrateCache(e,t)):this.browserStorage.hydrateCache(e,t)}async acquireTokenNative(e,t,r,n){if(this.logger.trace("acquireTokenNative called"),!this.platformAuthProvider)throw ji(qi);return new Bc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,t,this.performanceClient,this.platformAuthProvider,r||this.getNativeAccountId(e),this.nativeInternalStorage,e.correlationId).acquireToken(e,n)}canUsePlatformBroker(e,t){if(this.logger.trace("canUsePlatformBroker called"),!this.platformAuthProvider)return this.logger.trace("canUsePlatformBroker: platform broker unavilable, returning false"),!1;if(!Zc(this.config,this.logger,this.platformAuthProvider,e.authenticationScheme))return this.logger.trace("canUsePlatformBroker: isBrokerAvailable returned false, returning false"),!1;if(e.prompt)switch(e.prompt){case k.NONE:case k.CONSENT:case k.LOGIN:this.logger.trace("canUsePlatformBroker: prompt is compatible with platform broker flow");break;default:return this.logger.trace(`canUsePlatformBroker: prompt = ${e.prompt} is not compatible with platform broker flow, returning false`),!1}return!(!t&&!this.getNativeAccountId(e))||(this.logger.trace("canUsePlatformBroker: nativeAccountId is not available, returning false"),!1)}getNativeAccountId(e){const t=e.account||this.getAccount({loginHint:e.loginHint,sid:e.sid})||this.getActiveAccount();return t&&t.nativeAccountId||""}createPopupClient(e){return new el(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,this.performanceClient,this.nativeInternalStorage,this.platformAuthProvider,e)}createRedirectClient(e){return new tl(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,this.performanceClient,this.nativeInternalStorage,this.platformAuthProvider,e)}createSilentIframeClient(e){return new ll(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,Ra.ssoSilent,this.performanceClient,this.nativeInternalStorage,this.platformAuthProvider,e)}createSilentCacheClient(e){return new Dc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,this.performanceClient,this.platformAuthProvider,e)}createSilentRefreshClient(e){return new hl(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,this.performanceClient,this.platformAuthProvider,e)}createSilentAuthCodeClient(e){return new gl(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,Ra.acquireTokenByCode,this.performanceClient,this.platformAuthProvider,e)}addEventCallback(e,t){return this.eventHandler.addEventCallback(e,t)}removeEventCallback(e){this.eventHandler.removeEventCallback(e)}addPerformanceCallback(e){return _s(),this.performanceClient.addPerformanceCallback(e)}removePerformanceCallback(e){return this.performanceClient.removePerformanceCallback(e)}enableAccountStorageEvents(){this.config.cache.cacheLocation===ua.LocalStorage?this.eventHandler.subscribeCrossTab():this.logger.info("Account storage events are only available when cacheLocation is set to localStorage")}disableAccountStorageEvents(){this.config.cache.cacheLocation===ua.LocalStorage?this.eventHandler.unsubscribeCrossTab():this.logger.info("Account storage events are only available when cacheLocation is set to localStorage")}getTokenCache(){return this.tokenCache}getLogger(){return this.logger}setLogger(e){this.logger=e}initializeWrapperLibrary(e,t){this.browserStorage.setWrapperMetadata(e,t)}setNavigationClient(e){this.navigationClient=e}getConfiguration(){return this.config}getPerformanceClient(){return this.performanceClient}isBrowserEnv(){return this.isBrowserEnvironment}getRequestCorrelationId(e){return e?.correlationId?e.correlationId:this.isBrowserEnvironment?rs():t.EMPTY_STRING}async loginRedirect(e){const t=this.getRequestCorrelationId(e);return this.logger.verbose("loginRedirect called",t),this.acquireTokenRedirect({correlationId:t,...e||Ma})}loginPopup(e){const t=this.getRequestCorrelationId(e);return this.logger.verbose("loginPopup called",t),this.acquireTokenPopup({correlationId:t,...e||Ma})}async acquireTokenSilent(e){const t=this.getRequestCorrelationId(e),r=this.performanceClient.startMeasurement(zr.AcquireTokenSilent,t);r.add({cacheLookupPolicy:e.cacheLookupPolicy,scenarioId:e.scenarioId}),ml(this.initialized,r),this.logger.verbose("acquireTokenSilent called",t);const n=e.account||this.getActiveAccount();if(!n)throw ji(gi);return r.add({accountType:pl(n)}),this.acquireTokenSilentDeduped(e,n,t).then((n=>(r.end({success:!0,fromCache:n.fromCache,isNativeBroker:n.fromNativeBroker,accessTokenSize:n.accessToken.length,idTokenSize:n.idToken.length}),{...n,state:e.state,correlationId:t}))).catch((e=>{throw e instanceof ye&&e.setCorrelationId(t),r.end({success:!1},e),e}))}async acquireTokenSilentDeduped(e,t,r){const n=Xn(this.config.auth.clientId,{...e,authority:e.authority||this.config.auth.authority,correlationId:r},t.homeAccountId),o=JSON.stringify(n),i=this.activeSilentTokenRequests.get(o);if(void 0===i){this.logger.verbose("acquireTokenSilent called for the first time, storing active request",r),this.performanceClient.addFields({deduped:!1},r);const n=$n(this.acquireTokenSilentAsync.bind(this),zr.AcquireTokenSilentAsync,this.logger,this.performanceClient,r)({...e,correlationId:r},t);return this.activeSilentTokenRequests.set(o,n),n.finally((()=>{this.activeSilentTokenRequests.delete(o)}))}return this.logger.verbose("acquireTokenSilent has been called previously, returning the result from the first call",r),this.performanceClient.addFields({deduped:!0},r),i}async acquireTokenSilentAsync(t,r){const n=()=>this.trackPageVisibility(t.correlationId);this.performanceClient.addQueueMeasurement(zr.AcquireTokenSilentAsync,t.correlationId),this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_START,e.InteractionType.Silent,t),t.correlationId&&this.performanceClient.incrementFields({visibilityChangeCount:0},t.correlationId),document.addEventListener("visibilitychange",n);const o=await $n(_c,zr.InitializeSilentRequest,this.logger,this.performanceClient,t.correlationId)(t,r,this.config,this.performanceClient,this.logger),i=t.cacheLookupPolicy||qa.Default;return this.acquireTokenSilentNoIframe(o,i).catch((async e=>{const t=function(e,t){const r=!(e instanceof yo&&e.subError!==ho),n=e.errorCode===Wi||e.errorCode===Ye,o=r&&n||e.errorCode===no||e.errorCode===io,i=La.includes(t);return o&&i}(e,i);if(t){if(this.activeIframeRequest){if(i!==qa.Skip){const[t,r]=this.activeIframeRequest;this.logger.verbose(`Iframe request is already in progress, awaiting resolution for request with correlationId: ${r}`,o.correlationId);const n=this.performanceClient.startMeasurement(zr.AwaitConcurrentIframe,o.correlationId);n.add({awaitIframeCorrelationId:r});const a=await t;if(n.end({success:a}),a)return this.logger.verbose(`Parallel iframe request with correlationId: ${r} succeeded. Retrying cache and/or RT redemption`,o.correlationId),this.acquireTokenSilentNoIframe(o,i);throw this.logger.info(`Iframe request with correlationId: ${r} failed. Interaction is required.`),e}return this.logger.warning("Another iframe request is currently in progress and CacheLookupPolicy is set to Skip. This may result in degraded performance and/or reliability for both calls. Please consider changing the CacheLookupPolicy to take advantage of request queuing and token cache.",o.correlationId),$n(this.acquireTokenBySilentIframe.bind(this),zr.AcquireTokenBySilentIframe,this.logger,this.performanceClient,o.correlationId)(o)}{let e;return this.activeIframeRequest=[new Promise((t=>{e=t})),o.correlationId],this.logger.verbose("Refresh token expired/invalid or CacheLookupPolicy is set to Skip, attempting acquire token by iframe.",o.correlationId),$n(this.acquireTokenBySilentIframe.bind(this),zr.AcquireTokenBySilentIframe,this.logger,this.performanceClient,o.correlationId)(o).then((t=>(e(!0),t))).catch((t=>{throw e(!1),t})).finally((()=>{this.activeIframeRequest=void 0}))}}throw e})).then((r=>(this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Silent,r),t.correlationId&&this.performanceClient.addFields({fromCache:r.fromCache,isNativeBroker:r.fromNativeBroker},t.correlationId),r))).catch((t=>{throw this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Silent,null,t),t})).finally((()=>{document.removeEventListener("visibilitychange",n)}))}async acquireTokenSilentNoIframe(t,r){return Zc(this.config,this.logger,this.platformAuthProvider,t.authenticationScheme)&&t.account.nativeAccountId?(this.logger.verbose("acquireTokenSilent - attempting to acquire token from native platform"),this.acquireTokenNative(t,Ra.acquireTokenSilent_silentFlow,t.account.nativeAccountId,r).catch((async e=>{if(e instanceof Uc&&Hc(e))throw this.logger.verbose("acquireTokenSilent - native platform unavailable, falling back to web flow"),this.platformAuthProvider=void 0,gt(Ye);throw e}))):(this.logger.verbose("acquireTokenSilent - attempting to acquire token from web flow"),r===qa.AccessToken&&this.logger.verbose("acquireTokenSilent - cache lookup policy set to AccessToken, attempting to acquire token from local cache"),$n(this.acquireTokenFromCache.bind(this),zr.AcquireTokenFromCache,this.logger,this.performanceClient,t.correlationId)(t,r).catch((n=>{if(r===qa.AccessToken)throw n;return this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_NETWORK_START,e.InteractionType.Silent,t),$n(this.acquireTokenByRefreshToken.bind(this),zr.AcquireTokenByRefreshToken,this.logger,this.performanceClient,t.correlationId)(t,r)})))}async preGeneratePkceCodes(e){return this.logger.verbose("Generating new PKCE codes"),this.pkceCode=await $n(jc,zr.GeneratePkceCodes,this.logger,this.performanceClient,e)(this.performanceClient,this.logger,e),Promise.resolve()}getPreGeneratedPkceCodes(e){this.logger.verbose("Attempting to pick up pre-generated PKCE codes");const t=this.pkceCode?{...this.pkceCode}:void 0;return this.pkceCode=void 0,this.logger.verbose((t?"Found":"Did not find")+" pre-generated PKCE codes"),this.performanceClient.addFields({usePreGeneratedPkce:!!t},e),t}logMultipleInstances(e){const t=this.config.auth.clientId;if(!window)return;window.msal=window.msal||{},window.msal.clientIds=window.msal.clientIds||[];window.msal.clientIds.length>0&&this.logger.verbose("There is already an instance of MSAL.js in the window."),window.msal.clientIds.push(t),function(e,t,r){const n=window.msal?.clientIds||[],o=n.length,i=n.filter((t=>t===e)).length;i>1&&r.warning("There is already an instance of MSAL.js in the window with the same client id."),t.add({msalInstanceCount:o,sameClientIdInstanceCount:i})}(t,e,this.logger)}}class yl{constructor(e,t,r,n){this.clientId=e,this.clientCapabilities=t,this.crypto=r,this.logger=n}toNaaTokenRequest(e){let t;t=void 0===e.extraQueryParameters?new Map:new Map(Object.entries(e.extraQueryParameters));const r=e.correlationId||this.crypto.createNewGuid(),n=xn(e.claims,this.clientCapabilities),o=e.scopes||c;return{platformBrokerId:e.account?.homeAccountId,clientId:this.clientId,authority:e.authority,scope:o.join(" "),correlationId:r,claims:pr.isEmptyObj(n)?void 0:n,state:e.state,authenticationScheme:e.authenticationScheme||j.BEARER,extraParameters:t}}fromNaaTokenResponse(e,t,r){if(!t.token.id_token||!t.token.access_token)throw gt(Te);const n=kt(r+(t.token.expires_in||0)),o=wt(t.token.id_token,this.crypto.base64Decode),i=this.fromNaaAccountInfo(t.account,t.token.id_token,o),a=t.token.scope||e.scope;return{authority:t.token.authority||i.environment,uniqueId:i.localAccountId,tenantId:i.tenantId,scopes:a.split(" "),account:i,idToken:t.token.id_token,idTokenClaims:o,accessToken:t.token.access_token,fromCache:!1,expiresOn:n,tokenType:e.authenticationScheme||j.BEARER,correlationId:e.correlationId,extExpiresOn:n,state:e.state}}fromNaaAccountInfo(e,t,r){const n=r||e.idTokenClaims,o=e.localAccountId||n?.oid||n?.sub||"",i=e.tenantId||n?.tid||"",a=e.homeAccountId||`${o}.${i}`,s=e.username||n?.preferred_username||"",c=e.name||n?.name,l=new Map,h=vr(a,o,i,n);l.set(i,h);return{homeAccountId:a,environment:e.environment,tenantId:i,username:s,localAccountId:o,name:c,idToken:t,idTokenClaims:n,tenantProfiles:l}}fromBridgeError(e){if(!function(e){return void 0!==e.status}(e))return new ye("unknown_error","An unknown error occurred");switch(e.status){case $s:return new ut(it);case Qs:return new ut(ot);case Js:return new ut(Qe);case Vs:return new ut(ct);case Ys:return new ut(e.code||ct,e.description);case js:case Ws:return new Yn(e.code,e.description);case Gs:return new yo(e.code,e.description);default:return new ye(e.code,e.description)}}toAuthenticationResultFromCache(e,t,r,n,o){if(!t||!r)throw gt(Te);const i=wt(t.secret,this.crypto.base64Decode),a=r.target||n.scopes.join(" ");return{authority:r.environment||e.environment,uniqueId:e.localAccountId,tenantId:e.tenantId,scopes:a.split(" "),account:e,idToken:t.secret,idTokenClaims:i||{},accessToken:r.secret,fromCache:!0,expiresOn:kt(r.expiresOn),extExpiresOn:kt(r.extendedExpiresOn),tokenType:n.authenticationScheme||j.BEARER,correlationId:o,state:n.state}}}const Cl={code:"unsupported_method",desc:"This method is not supported in nested app environment."};class vl extends ye{constructor(e,t){super(e,t),Object.setPrototypeOf(this,vl.prototype),this.name="NestedAppAuthError"}static createUnsupportedError(){return new vl(Cl.code,Cl.desc)}}class wl{constructor(e){this.operatingContext=e;const t=this.operatingContext.getBridgeProxy();if(void 0===t)throw new Error("unexpected: bridgeProxy is undefined");this.bridgeProxy=t,this.config=e.getConfig(),this.logger=this.operatingContext.getLogger(),this.performanceClient=this.config.telemetry.client,this.browserCrypto=e.isBrowserEnvironment()?new oc(this.logger,this.performanceClient,!0):pt,this.eventHandler=new bc(this.logger),this.browserStorage=this.operatingContext.isBrowserEnvironment()?new fc(this.config.auth.clientId,this.config.cache,this.browserCrypto,this.logger,this.performanceClient,this.eventHandler,Vn(this.config.auth)):Cc(this.config.auth.clientId,this.logger,this.performanceClient,this.eventHandler),this.nestedAppAuthAdapter=new yl(this.config.auth.clientId,this.config.auth.clientCapabilities,this.browserCrypto,this.logger);const r=this.bridgeProxy.getAccountContext();this.currentAccountContext=r||null}static async createController(e){const t=new wl(e);return Promise.resolve(t)}async initialize(e,t){const r=e?.correlationId||rs();return await this.browserStorage.initialize(r),Promise.resolve()}ensureValidRequest(e){return e?.correlationId?e:{...e,correlationId:this.browserCrypto.createNewGuid()}}async acquireTokenInteractive(t){const r=this.ensureValidRequest(t);this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_START,e.InteractionType.Popup,r);const n=this.performanceClient.startMeasurement(zr.AcquireTokenPopup,r.correlationId);n?.add({nestedAppAuthRequest:!0});try{const o=this.nestedAppAuthAdapter.toNaaTokenRequest(r),i=Tt(),a=await this.bridgeProxy.getTokenInteractive(o),s={...this.nestedAppAuthAdapter.fromNaaTokenResponse(o,a,i)};return await this.hydrateCache(s,t),this.currentAccountContext={homeAccountId:s.account.homeAccountId,environment:s.account.environment,tenantId:s.account.tenantId},this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Popup,s),n.add({accessTokenSize:s.accessToken.length,idTokenSize:s.idToken.length}),n.end({success:!0,requestId:s.requestId}),s}catch(t){const r=t instanceof ye?t:this.nestedAppAuthAdapter.fromBridgeError(t);throw this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Popup,null,t),n.end({success:!1},t),r}}async acquireTokenSilentInternal(t){const r=this.ensureValidRequest(t);this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_START,e.InteractionType.Silent,r);const n=await this.acquireTokenFromCache(r);if(n)return this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Silent,n),n;const o=this.performanceClient.startMeasurement(zr.SsoSilent,r.correlationId);o?.increment({visibilityChangeCount:0}),o?.add({nestedAppAuthRequest:!0});try{const n=this.nestedAppAuthAdapter.toNaaTokenRequest(r),i=Tt(),a=await this.bridgeProxy.getTokenSilent(n),s=this.nestedAppAuthAdapter.fromNaaTokenResponse(n,a,i);return await this.hydrateCache(s,t),this.currentAccountContext={homeAccountId:s.account.homeAccountId,environment:s.account.environment,tenantId:s.account.tenantId},this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Silent,s),o?.add({accessTokenSize:s.accessToken.length,idTokenSize:s.idToken.length}),o?.end({success:!0,requestId:s.requestId}),s}catch(t){const r=t instanceof ye?t:this.nestedAppAuthAdapter.fromBridgeError(t);throw this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Silent,null,t),o?.end({success:!1},t),r}}async acquireTokenFromCache(t){const r=this.performanceClient.startMeasurement(zr.AcquireTokenSilent,t.correlationId);if(r?.add({nestedAppAuthRequest:!0}),t.claims)return this.logger.verbose("Claims are present in the request, skipping cache lookup"),null;if(t.forceRefresh)return this.logger.verbose("forceRefresh is set to true, skipping cache lookup"),null;let n=null;switch(t.cacheLookupPolicy||(t.cacheLookupPolicy=qa.Default),t.cacheLookupPolicy){case qa.Default:case qa.AccessToken:case qa.AccessTokenAndRefreshToken:n=await this.acquireTokenFromCacheInternal(t);break;default:return null}return n?(this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Silent,n),r?.add({accessTokenSize:n?.accessToken.length,idTokenSize:n?.idToken.length}),r?.end({success:!0}),n):(this.logger.warning("Cached tokens are not found for the account, proceeding with silent token request."),this.eventHandler.emitEvent(mc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Silent,null),r?.end({success:!1}),null)}async acquireTokenFromCacheInternal(e){const t=this.bridgeProxy.getAccountContext()||this.currentAccountContext;let r=null;if(t&&(r=wc(t,this.logger,this.browserStorage)),!r)return this.logger.verbose("No active account found, falling back to the host"),Promise.resolve(null);this.logger.verbose("active account found, attempting to acquire token silently");const n={...e,correlationId:e.correlationId||this.browserCrypto.createNewGuid(),authority:e.authority||r.environment,scopes:e.scopes?.length?e.scopes:[...c]},o=this.browserStorage.getTokenKeys(),i=this.browserStorage.getAccessToken(r,n,o,r.tenantId);if(!i)return this.logger.verbose("No cached access token found"),Promise.resolve(null);if(bt(i.cachedAt)||St(i.expiresOn,this.config.system.tokenRenewalOffsetSeconds))return this.logger.verbose("Cached access token has expired"),Promise.resolve(null);const a=this.browserStorage.getIdToken(r,o,r.tenantId,this.performanceClient,n.correlationId);return a?this.nestedAppAuthAdapter.toAuthenticationResultFromCache(r,a,i,n,n.correlationId):(this.logger.verbose("No cached id token found"),Promise.resolve(null))}async acquireTokenPopup(e){return this.acquireTokenInteractive(e)}acquireTokenRedirect(e){throw vl.createUnsupportedError()}async acquireTokenSilent(e){return this.acquireTokenSilentInternal(e)}acquireTokenByCode(e){throw vl.createUnsupportedError()}acquireTokenNative(e,t,r){throw vl.createUnsupportedError()}acquireTokenByRefreshToken(e,t){throw vl.createUnsupportedError()}addEventCallback(e,t){return this.eventHandler.addEventCallback(e,t)}removeEventCallback(e){this.eventHandler.removeEventCallback(e)}addPerformanceCallback(e){throw vl.createUnsupportedError()}removePerformanceCallback(e){throw vl.createUnsupportedError()}enableAccountStorageEvents(){throw vl.createUnsupportedError()}disableAccountStorageEvents(){throw vl.createUnsupportedError()}getAllAccounts(e){return vc(this.logger,this.browserStorage,this.isBrowserEnv(),e)}getAccount(e){return wc(e,this.logger,this.browserStorage)}getAccountByUsername(e){return Ic(e,this.logger,this.browserStorage)}getAccountByHomeId(e){return Tc(e,this.logger,this.browserStorage)}getAccountByLocalId(e){return Ac(e,this.logger,this.browserStorage)}setActiveAccount(e){return kc(e,this.browserStorage)}getActiveAccount(){return Sc(this.browserStorage)}handleRedirectPromise(e){return Promise.resolve(null)}loginPopup(e){return this.acquireTokenInteractive(e||Ma)}loginRedirect(e){throw vl.createUnsupportedError()}logout(e){throw vl.createUnsupportedError()}logoutRedirect(e){throw vl.createUnsupportedError()}logoutPopup(e){throw vl.createUnsupportedError()}ssoSilent(e){return this.acquireTokenSilentInternal(e)}getTokenCache(){throw vl.createUnsupportedError()}getLogger(){return this.logger}setLogger(e){this.logger=e}initializeWrapperLibrary(e,t){}setNavigationClient(e){this.logger.warning("setNavigationClient is not supported in nested app auth")}getConfiguration(){return this.config}isBrowserEnv(){return this.operatingContext.isBrowserEnvironment()}getBrowserCrypto(){return this.browserCrypto}getPerformanceClient(){throw vl.createUnsupportedError()}getRedirectResponse(){throw vl.createUnsupportedError()}async clearCache(e){throw vl.createUnsupportedError()}async hydrateCache(e,t){this.logger.verbose("hydrateCache called");const r=Er.createFromAccountInfo(e.account,e.cloudGraphHostName,e.msGraphHost);return await this.browserStorage.setAccount(r,e.correlationId),this.browserStorage.hydrateCache(e,t)}}async function Il(e){const t=new ec(e),r=new Zs(e),n=[t.initialize(),r.initialize()];return await Promise.all(n),r.isAvailable()&&e.auth.supportsNestedAppAuth?wl.createController(r):t.isAvailable()?fl.createController(t):null}class Tl{static async createPublicClientApplication(e){const t=await async function(e,t){const r=new ec(e);return await r.initialize(),fl.createController(r,t)}(e);return new Tl(e,t)}constructor(e,t){this.isBroker=!1,this.controller=t||new fl(new ec(e))}async initialize(e){return this.controller.initialize(e,this.isBroker)}async acquireTokenPopup(e){return this.controller.acquireTokenPopup(e)}acquireTokenRedirect(e){return this.controller.acquireTokenRedirect(e)}acquireTokenSilent(e){return this.controller.acquireTokenSilent(e)}acquireTokenByCode(e){return this.controller.acquireTokenByCode(e)}addEventCallback(e,t){return this.controller.addEventCallback(e,t)}removeEventCallback(e){return this.controller.removeEventCallback(e)}addPerformanceCallback(e){return this.controller.addPerformanceCallback(e)}removePerformanceCallback(e){return this.controller.removePerformanceCallback(e)}enableAccountStorageEvents(){this.controller.enableAccountStorageEvents()}disableAccountStorageEvents(){this.controller.disableAccountStorageEvents()}getAccount(e){return this.controller.getAccount(e)}getAccountByHomeId(e){return this.controller.getAccountByHomeId(e)}getAccountByLocalId(e){return this.controller.getAccountByLocalId(e)}getAccountByUsername(e){return this.controller.getAccountByUsername(e)}getAllAccounts(e){return this.controller.getAllAccounts(e)}handleRedirectPromise(e){return this.controller.handleRedirectPromise(e)}loginPopup(e){return this.controller.loginPopup(e)}loginRedirect(e){return this.controller.loginRedirect(e)}logout(e){return this.controller.logout(e)}logoutRedirect(e){return this.controller.logoutRedirect(e)}logoutPopup(e){return this.controller.logoutPopup(e)}ssoSilent(e){return this.controller.ssoSilent(e)}getTokenCache(){return this.controller.getTokenCache()}getLogger(){return this.controller.getLogger()}setLogger(e){this.controller.setLogger(e)}setActiveAccount(e){this.controller.setActiveAccount(e)}getActiveAccount(){return this.controller.getActiveAccount()}initializeWrapperLibrary(e,t){return this.controller.initializeWrapperLibrary(e,t)}setNavigationClient(e){this.controller.setNavigationClient(e)}getConfiguration(){return this.controller.getConfiguration()}async hydrateCache(e,t){return this.controller.hydrateCache(e,t)}clearCache(e){return this.controller.clearCache(e)}}async function Al(e){const t=new Tl(e);return await t.initialize(),t}class kl{constructor(e){this.initialized=!1,this.operatingContext=e,this.isBrowserEnvironment=this.operatingContext.isBrowserEnvironment(),this.config=e.getConfig(),this.logger=e.getLogger(),this.performanceClient=this.config.telemetry.client,this.browserCrypto=this.isBrowserEnvironment?new oc(this.logger,this.performanceClient):pt,this.eventHandler=new bc(this.logger),this.browserStorage=this.isBrowserEnvironment?new fc(this.config.auth.clientId,this.config.cache,this.browserCrypto,this.logger,this.performanceClient,this.eventHandler,void 0):Cc(this.config.auth.clientId,this.logger,this.performanceClient,this.eventHandler)}getBrowserStorage(){return this.browserStorage}getAccount(e){return null}getAccountByHomeId(e){return null}getAccountByLocalId(e){return null}getAccountByUsername(e){return null}getAllAccounts(){return[]}initialize(){return this.initialized=!0,Promise.resolve()}acquireTokenPopup(e){return Ps(this.initialized),_s(),{}}acquireTokenRedirect(e){return Ps(this.initialized),_s(),Promise.resolve()}acquireTokenSilent(e){return Ps(this.initialized),_s(),{}}acquireTokenByCode(e){return Ps(this.initialized),_s(),{}}acquireTokenNative(e,t,r){return Ps(this.initialized),_s(),{}}acquireTokenByRefreshToken(e,t){return Ps(this.initialized),_s(),{}}addEventCallback(e,t){return null}removeEventCallback(e){}addPerformanceCallback(e){return Ps(this.initialized),_s(),""}removePerformanceCallback(e){return Ps(this.initialized),_s(),!0}enableAccountStorageEvents(){Ps(this.initialized),_s()}disableAccountStorageEvents(){Ps(this.initialized),_s()}handleRedirectPromise(e){return Ps(this.initialized),Promise.resolve(null)}loginPopup(e){return Ps(this.initialized),_s(),{}}loginRedirect(e){return Ps(this.initialized),_s(),{}}logout(e){return Ps(this.initialized),_s(),{}}logoutRedirect(e){return Ps(this.initialized),_s(),{}}logoutPopup(e){return Ps(this.initialized),_s(),{}}ssoSilent(e){return Ps(this.initialized),_s(),{}}getTokenCache(){return Ps(this.initialized),_s(),{}}getLogger(){return this.logger}setLogger(e){Ps(this.initialized),_s()}setActiveAccount(e){Ps(this.initialized),_s()}getActiveAccount(){return Ps(this.initialized),_s(),null}initializeWrapperLibrary(e,t){this.browserStorage.setWrapperMetadata(e,t)}setNavigationClient(e){Ps(this.initialized),_s()}getConfiguration(){return this.config}isBrowserEnv(){return Ps(this.initialized),_s(),!0}getBrowserCrypto(){return Ps(this.initialized),_s(),{}}getPerformanceClient(){return Ps(this.initialized),_s(),{}}getRedirectResponse(){return Ps(this.initialized),_s(),{}}async clearCache(e){Ps(this.initialized),_s()}async hydrateCache(e,t){Ps(this.initialized),_s()}}class Sl extends zs{getId(){return Sl.ID}getModuleName(){return Sl.MODULE_NAME}async initialize(){return!0}}Sl.MODULE_NAME="",Sl.ID="UnknownOperatingContext";class bl{static async createPublicClientApplication(e){const t=await Il(e);let r;return r=null!==t?new bl(e,t):new bl(e),r}constructor(e,t){if(this.configuration=e,t)this.controller=t;else{const t=new Sl(e);this.controller=new kl(t)}}async initialize(){if(this.controller instanceof kl){const e=await Il(this.configuration);return null!==e&&(this.controller=e),this.controller.initialize()}return Promise.resolve()}async acquireTokenPopup(e){return this.controller.acquireTokenPopup(e)}acquireTokenRedirect(e){return this.controller.acquireTokenRedirect(e)}acquireTokenSilent(e){return this.controller.acquireTokenSilent(e)}acquireTokenByCode(e){return this.controller.acquireTokenByCode(e)}addEventCallback(e,t){return this.controller.addEventCallback(e,t)}removeEventCallback(e){return this.controller.removeEventCallback(e)}addPerformanceCallback(e){return this.controller.addPerformanceCallback(e)}removePerformanceCallback(e){return this.controller.removePerformanceCallback(e)}enableAccountStorageEvents(){this.controller.enableAccountStorageEvents()}disableAccountStorageEvents(){this.controller.disableAccountStorageEvents()}getAccount(e){return this.controller.getAccount(e)}getAccountByHomeId(e){return this.controller.getAccountByHomeId(e)}getAccountByLocalId(e){return this.controller.getAccountByLocalId(e)}getAccountByUsername(e){return this.controller.getAccountByUsername(e)}getAllAccounts(e){return this.controller.getAllAccounts(e)}handleRedirectPromise(e){return this.controller.handleRedirectPromise(e)}loginPopup(e){return this.controller.loginPopup(e)}loginRedirect(e){return this.controller.loginRedirect(e)}logout(e){return this.controller.logout(e)}logoutRedirect(e){return this.controller.logoutRedirect(e)}logoutPopup(e){return this.controller.logoutPopup(e)}ssoSilent(e){return this.controller.ssoSilent(e)}getTokenCache(){return this.controller.getTokenCache()}getLogger(){return this.controller.getLogger()}setLogger(e){this.controller.setLogger(e)}setActiveAccount(e){this.controller.setActiveAccount(e)}getActiveAccount(){return this.controller.getActiveAccount()}initializeWrapperLibrary(e,t){return this.controller.initializeWrapperLibrary(e,t)}setNavigationClient(e){this.controller.setNavigationClient(e)}getConfiguration(){return this.controller.getConfiguration()}async hydrateCache(e,t){return this.controller.hydrateCache(e,t)}clearCache(e){return this.controller.clearCache(e)}}const El={initialize:()=>Promise.reject(vs(gs)),acquireTokenPopup:()=>Promise.reject(vs(gs)),acquireTokenRedirect:()=>Promise.reject(vs(gs)),acquireTokenSilent:()=>Promise.reject(vs(gs)),acquireTokenByCode:()=>Promise.reject(vs(gs)),getAllAccounts:()=>[],getAccount:()=>null,getAccountByHomeId:()=>null,getAccountByUsername:()=>null,getAccountByLocalId:()=>null,handleRedirectPromise:()=>Promise.reject(vs(gs)),loginPopup:()=>Promise.reject(vs(gs)),loginRedirect:()=>Promise.reject(vs(gs)),logout:()=>Promise.reject(vs(gs)),logoutRedirect:()=>Promise.reject(vs(gs)),logoutPopup:()=>Promise.reject(vs(gs)),ssoSilent:()=>Promise.reject(vs(gs)),addEventCallback:()=>null,removeEventCallback:()=>{},addPerformanceCallback:()=>"",removePerformanceCallback:()=>!1,enableAccountStorageEvents:()=>{},disableAccountStorageEvents:()=>{},getTokenCache:()=>{throw vs(gs)},getLogger:()=>{throw vs(gs)},setLogger:()=>{},setActiveAccount:()=>{},getActiveAccount:()=>null,initializeWrapperLibrary:()=>{},setNavigationClient:()=>{},getConfiguration:()=>{throw vs(gs)},hydrateCache:()=>Promise.reject(vs(gs)),clearCache:()=>Promise.reject(vs(gs))};function Rl(){let e;try{e=window[ua.SessionStorage];const t=e?.getItem("msal.browser.performance.enabled");if(1===Number(t))return Promise.resolve().then((function(){return Ol}))}catch(e){}}function _l(){return"undefined"!=typeof window&&void 0!==window.performance&&"function"==typeof window.performance.now}function Pl(e){if(e&&_l())return Math.round(window.performance.now()-e)}class Ml{constructor(e,t){this.correlationId=t,this.measureName=Ml.makeMeasureName(e,t),this.startMark=Ml.makeStartMark(e,t),this.endMark=Ml.makeEndMark(e,t)}static makeMeasureName(e,t){return`msal.measure.${e}.${t}`}static makeStartMark(e,t){return`msal.start.${e}.${t}`}static makeEndMark(e,t){return`msal.end.${e}.${t}`}static supportsBrowserPerformance(){return"undefined"!=typeof window&&void 0!==window.performance&&"function"==typeof window.performance.mark&&"function"==typeof window.performance.measure&&"function"==typeof window.performance.clearMarks&&"function"==typeof window.performance.clearMeasures&&"function"==typeof window.performance.getEntriesByName}static flushMeasurements(e,t){if(Ml.supportsBrowserPerformance())try{t.forEach((t=>{const r=Ml.makeMeasureName(t.name,e);window.performance.getEntriesByName(r,"measure").length>0&&(window.performance.clearMeasures(r),window.performance.clearMarks(Ml.makeStartMark(r,e)),window.performance.clearMarks(Ml.makeEndMark(r,e)))}))}catch(e){}}startMeasurement(){if(Ml.supportsBrowserPerformance())try{window.performance.mark(this.startMark)}catch(e){}}endMeasurement(){if(Ml.supportsBrowserPerformance())try{window.performance.mark(this.endMark),window.performance.measure(this.measureName,this.startMark,this.endMark)}catch(e){}}flushMeasurement(){if(Ml.supportsBrowserPerformance())try{const e=window.performance.getEntriesByName(this.measureName,"measure");if(e.length>0){const t=e[0].duration;return window.performance.clearMeasures(this.measureName),window.performance.clearMarks(this.startMark),window.performance.clearMarks(this.endMark),t}}catch(e){}return null}}var Ol=Object.freeze({__proto__:null,BrowserPerformanceMeasurement:Ml});e.AccountEntity=Er,e.ApiId=Ra,e.AuthError=ye,e.AuthErrorCodes=pe,e.AuthErrorMessage=fe,e.AuthenticationHeaderParser=class{constructor(e){this.headers=e}getShrNonce(){const e=this.headers[m];if(e){const t=this.parseChallenges(e);if(t.nextnonce)return t.nextnonce;throw gr(ir)}const t=this.headers[p];if(t){const e=this.parseChallenges(t);if(e.nonce)return e.nonce;throw gr(ir)}throw gr(or)}parseChallenges(e){const r=e.indexOf(" "),n=e.substr(r+1).split(","),o={};return n.forEach((e=>{const[r,n]=e.split("=");o[r]=unescape(n.replace(/['"]+/g,t.EMPTY_STRING))})),o}}
|
|
71
|
-
/*! @azure/msal-common v15.7.1 2025-06-18 */,e.AuthenticationScheme=j,e.AzureCloudInstance=vt,e.BrowserAuthError=Qi,e.BrowserAuthErrorCodes=Ki,e.BrowserAuthErrorMessage=$i,e.BrowserCacheLocation=ua,e.BrowserConfigurationAuthError=Cs,e.BrowserConfigurationAuthErrorCodes=ms,e.BrowserConfigurationAuthErrorMessage=ys,e.BrowserPerformanceClient=class extends $o{constructor(e,r,n){super(e.auth.clientId,e.auth.authority||`${t.DEFAULT_AUTHORITY}`,new ft(e.system?.loggerOptions||{},Fs,Ks),Fs,Ks,e.telemetry?.application||{appName:"",appVersion:""},r,n)}generateId(){return rs()}getPageVisibility(){return document.visibilityState?.toString()||null}deleteIncompleteSubMeasurements(e){Rl()?.then((t=>{const r=this.eventsByCorrelationId.get(e.event.correlationId),n=r&&r.eventId===e.event.eventId,o=[];n&&r?.incompleteSubMeasurements&&r.incompleteSubMeasurements.forEach((e=>{o.push({...e})})),t.BrowserPerformanceMeasurement.flushMeasurements(e.event.correlationId,o)}))}startMeasurement(e,t){const r=this.getPageVisibility(),n=super.startMeasurement(e,t),o=_l()?window.performance.now():void 0,i=Rl()?.then((t=>new t.BrowserPerformanceMeasurement(e,n.event.correlationId)));return i?.then((e=>e.startMeasurement())),{...n,end:(e,t)=>{const a=n.end({...e,startPageVisibility:r,endPageVisibility:this.getPageVisibility(),durationMs:Pl(o)},t);return i?.then((e=>e.endMeasurement())),this.deleteIncompleteSubMeasurements(n),a},discard:()=>{n.discard(),i?.then((e=>e.flushMeasurement())),this.deleteIncompleteSubMeasurements(n)}}}setPreQueueTime(e,t){if(!_l())return void this.logger.trace(`BrowserPerformanceClient: window performance API not available, unable to set telemetry queue time for ${e}`);if(!t)return void this.logger.trace(`BrowserPerformanceClient: correlationId for ${e} not provided, unable to set telemetry queue time`);const r=this.preQueueTimeByCorrelationId.get(t);r&&(this.logger.trace(`BrowserPerformanceClient: Incomplete pre-queue ${r.name} found`,t),this.addQueueMeasurement(r.name,t,void 0,!0)),this.preQueueTimeByCorrelationId.set(t,{name:e,time:window.performance.now()})}addQueueMeasurement(e,t,r,n){if(!_l())return void this.logger.trace(`BrowserPerformanceClient: window performance API not available, unable to add queue measurement for ${e}`);if(!t)return void this.logger.trace(`BrowserPerformanceClient: correlationId for ${e} not provided, unable to add queue measurement`);const o=super.getPreQueueTime(e,t);if(!o)return;const i=window.performance.now(),a=r||super.calculateQueuedTime(o,i);return super.addQueueMeasurement(e,t,a,n)}},e.BrowserPerformanceMeasurement=Ml,e.BrowserUtils=Ls,e.CacheLookupPolicy=qa,e.ClientAuthError=ut,e.ClientAuthErrorCodes=lt,e.ClientAuthErrorMessage=dt,e.ClientConfigurationError=ur,e.ClientConfigurationErrorCodes=lr,e.ClientConfigurationErrorMessage=dr,e.DEFAULT_IFRAME_TIMEOUT_MS=Bs,e.EventHandler=bc,e.EventMessageUtils=class{static getInteractionStatusFromEvent(t,r){switch(t.eventType){case mc.LOGIN_START:return Pa.Login;case mc.SSO_SILENT_START:return Pa.SsoSilent;case mc.ACQUIRE_TOKEN_START:if(t.interactionType===e.InteractionType.Redirect||t.interactionType===e.InteractionType.Popup)return Pa.AcquireToken;break;case mc.HANDLE_REDIRECT_START:return Pa.HandleRedirect;case mc.LOGOUT_START:return Pa.Logout;case mc.SSO_SILENT_SUCCESS:case mc.SSO_SILENT_FAILURE:if(r&&r!==Pa.SsoSilent)break;return Pa.None;case mc.LOGOUT_END:if(r&&r!==Pa.Logout)break;return Pa.None;case mc.HANDLE_REDIRECT_END:if(r&&r!==Pa.HandleRedirect)break;return Pa.None;case mc.LOGIN_SUCCESS:case mc.LOGIN_FAILURE:case mc.ACQUIRE_TOKEN_SUCCESS:case mc.ACQUIRE_TOKEN_FAILURE:case mc.RESTORE_FROM_BFCACHE:if(t.interactionType===e.InteractionType.Redirect||t.interactionType===e.InteractionType.Popup){if(r&&r!==Pa.Login&&r!==Pa.AcquireToken)break;return Pa.None}}return null}},e.EventType=mc,e.InteractionRequiredAuthError=yo,e.InteractionRequiredAuthErrorCodes=uo,e.InteractionRequiredAuthErrorMessage=fo,e.InteractionStatus=Pa,e.JsonWebTokenTypes=de,e.LocalStorage=gc,e.Logger=ft,e.MemoryStorage=rc,e.NavigationClient=Us,e.OIDC_DEFAULT_SCOPES=c,e.PerformanceEvents=zr,e.PromptValue=k,e.ProtocolMode=br,e.PublicClientApplication=Tl,e.PublicClientNext=bl,e.ServerError=Yn,e.ServerResponseType=R,e.SessionStorage=pc,e.SignedHttpRequest=class{constructor(e,t){const r=t&&t.loggerOptions||{};this.logger=new ft(r,Fs,Ks),this.cryptoOps=new oc(this.logger),this.popTokenGenerator=new To(this.cryptoOps),this.shrParameters=e}async generatePublicKeyThumbprint(){const{kid:e}=await this.popTokenGenerator.generateKid(this.shrParameters);return e}async signRequest(e,t,r){return this.popTokenGenerator.signPayload(e,t,this.shrParameters,r)}async removeKeys(e){return this.cryptoOps.removeTokenBindingKey(e).then((()=>!0)).catch((e=>{if(e instanceof ut&&e.errorCode===tt)return!1;throw e}))}},e.StringUtils=pr,e.StubPerformanceClient=Vr,e.UrlString=Mr,e.WrapperSKU={React:"@azure/msal-react",Angular:"@azure/msal-angular"},e.createNestablePublicClientApplication=async function(e){const t=new Zs(e);if(await t.initialize(),t.isAvailable()){const r=new wl(t),n=new Tl(e,r);return await n.initialize(),n}return Al(e)},e.createStandardPublicClientApplication=Al,e.isPlatformBrokerAvailable=async function(e,t,r){const n=new ft(e||{},Fs,Ks);n.trace("isPlatformBrokerAvailable called");const o=t||new Vr;return"undefined"==typeof window?(n.trace("Non-browser environment detected, returning false"),!1):!!await Xc(n,o,r||rs())},e.stubbedPublicClientApplication=El,e.version=Ks}));
|
|
46
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */(r.body);return n?r.body:(this.logger.verbose("Authority.getEndpointMetadataFromNetwork: could not parse response as OpenID configuration"),null)}catch(e){return this.logger.verbose(`Authority.getEndpointMetadataFromNetwork: ${e}`),null}}getEndpointMetadataFromHardcodedValues(){return this.hostnameAndPort in Pr?Pr[this.hostnameAndPort]:null}async updateMetadataWithRegionalInformation(e){this.performanceClient?.addQueueMeasurement(Kr.AuthorityUpdateMetadataWithRegionalInformation,this.correlationId);const r=this.authorityOptions.azureRegionConfiguration?.azureRegion;if(r){if(r!==t.AZURE_REGION_AUTO_DISCOVER_FLAG)return this.regionDiscoveryMetadata.region_outcome=re,this.regionDiscoveryMetadata.region_used=r,Qn.replaceWithRegionalInformation(e,r);const n=await Gn(this.regionDiscovery.detectRegion.bind(this.regionDiscovery),Kr.RegionDiscoveryDetectRegion,this.logger,this.performanceClient,this.correlationId)(this.authorityOptions.azureRegionConfiguration?.environmentRegion,this.regionDiscoveryMetadata);if(n)return this.regionDiscoveryMetadata.region_outcome=ne,this.regionDiscoveryMetadata.region_used=n,Qn.replaceWithRegionalInformation(e,n);this.regionDiscoveryMetadata.region_outcome=oe}return e}async updateCloudDiscoveryMetadata(e){this.performanceClient?.addQueueMeasurement(Kr.AuthorityUpdateCloudDiscoveryMetadata,this.correlationId);const t=this.updateCloudDiscoveryMetadataFromLocalSources(e);if(t)return t;const r=await Gn(this.getCloudDiscoveryMetadataFromNetwork.bind(this),Kr.AuthorityGetCloudDiscoveryMetadataFromNetwork,this.logger,this.performanceClient,this.correlationId)();if(r)return xt(e,r,!0),z;throw dr(Zt)}updateCloudDiscoveryMetadataFromLocalSources(e){this.logger.verbose("Attempting to get cloud discovery metadata from authority configuration"),this.logger.verbosePii(`Known Authorities: ${this.authorityOptions.knownAuthorities||t.NOT_APPLICABLE}`),this.logger.verbosePii(`Authority Metadata: ${this.authorityOptions.authorityMetadata||t.NOT_APPLICABLE}`),this.logger.verbosePii(`Canonical Authority: ${e.canonical_authority||t.NOT_APPLICABLE}`);const r=this.getCloudDiscoveryMetadataFromConfig();if(r)return this.logger.verbose("Found cloud discovery metadata in authority configuration"),xt(e,r,!1),F;if(this.logger.verbose("Did not find cloud discovery metadata in the config... Attempting to get cloud discovery metadata from the hardcoded values."),this.options.skipAuthorityMetadataCache)this.logger.verbose("Skipping hardcoded cloud discovery metadata cache since skipAuthorityMetadataCache is set to true. Attempting to get cloud discovery metadata from the network metadata cache.");else{const t=(n=this.hostnameAndPort,qr(Mr.metadata,n));if(t)return this.logger.verbose("Found cloud discovery metadata from hardcoded values."),xt(e,t,!1),G;this.logger.verbose("Did not find cloud discovery metadata in hardcoded values... Attempting to get cloud discovery metadata from the network metadata cache.")}var n;const o=Dt(e);return this.isAuthoritySameType(e)&&e.aliasesFromNetwork&&!o?(this.logger.verbose("Found cloud discovery metadata in the cache."),K):(o&&this.logger.verbose("The metadata entity is expired."),null)}getCloudDiscoveryMetadataFromConfig(){if(this.authorityType===Tr)return this.logger.verbose("CIAM authorities do not support cloud discovery metadata, generate the aliases from authority host."),Qn.createCloudDiscoveryMetadataFromHost(this.hostnameAndPort);if(this.authorityOptions.cloudDiscoveryMetadata){this.logger.verbose("The cloud discovery metadata has been provided as a network response, in the config.");try{this.logger.verbose("Attempting to parse the cloud discovery metadata.");const e=qr(JSON.parse(this.authorityOptions.cloudDiscoveryMetadata).metadata,this.hostnameAndPort);if(this.logger.verbose("Parsed the cloud discovery metadata."),e)return this.logger.verbose("There is returnable metadata attached to the parsed cloud discovery metadata."),e;this.logger.verbose("There is no metadata attached to the parsed cloud discovery metadata.")}catch(e){throw this.logger.verbose("Unable to parse the cloud discovery metadata. Throwing Invalid Cloud Discovery Metadata Error."),dr(Yt)}}return this.isInKnownAuthorities()?(this.logger.verbose("The host is included in knownAuthorities. Creating new cloud discovery metadata from the host."),Qn.createCloudDiscoveryMetadataFromHost(this.hostnameAndPort)):null}async getCloudDiscoveryMetadataFromNetwork(){this.performanceClient?.addQueueMeasurement(Kr.AuthorityGetCloudDiscoveryMetadataFromNetwork,this.correlationId);const e=`${t.AAD_INSTANCE_DISCOVERY_ENDPT}${this.canonicalAuthority}oauth2/v2.0/authorize`,r={};let n=null;try{const o=await this.networkInterface.sendGetRequestAsync(e,r);let i,s;if(function(e){return e.hasOwnProperty("tenant_discovery_endpoint")&&e.hasOwnProperty("metadata")}
|
|
47
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */(o.body))i=o.body,s=i.metadata,this.logger.verbosePii(`tenant_discovery_endpoint is: ${i.tenant_discovery_endpoint}`);else{if(!function(e){return e.hasOwnProperty("error")&&e.hasOwnProperty("error_description")}(o.body))return this.logger.error("AAD did not return a CloudInstanceDiscoveryResponse or CloudInstanceDiscoveryErrorResponse"),null;if(this.logger.warning(`A CloudInstanceDiscoveryErrorResponse was returned. The cloud instance discovery network request's status code is: ${o.status}`),i=o.body,i.error===t.INVALID_INSTANCE)return this.logger.error("The CloudInstanceDiscoveryErrorResponse error is invalid_instance."),null;this.logger.warning(`The CloudInstanceDiscoveryErrorResponse error is ${i.error}`),this.logger.warning(`The CloudInstanceDiscoveryErrorResponse error description is ${i.error_description}`),this.logger.warning("Setting the value of the CloudInstanceDiscoveryMetadata (returned from the network) to []"),s=[]}this.logger.verbose("Attempting to find a match between the developer's authority and the CloudInstanceDiscoveryMetadata returned from the network request."),n=qr(s,this.hostnameAndPort)}catch(e){if(e instanceof fe)this.logger.error(`There was a network error while attempting to get the cloud discovery instance metadata.\nError: ${e.errorCode}\nError Description: ${e.errorMessage}`);else{const t=e;this.logger.error(`A non-MSALJS error was thrown while attempting to get the cloud instance discovery metadata.\nError: ${t.name}\nError Description: ${t.message}`)}return null}return n||(this.logger.warning("The developer's authority was not found within the CloudInstanceDiscoveryMetadata returned from the network request."),this.logger.verbose("Creating custom Authority for custom domain scenario."),n=Qn.createCloudDiscoveryMetadataFromHost(this.hostnameAndPort)),n}isInKnownAuthorities(){return this.authorityOptions.knownAuthorities.filter((e=>e&&_r.getDomainFromUrl(e).toLowerCase()===this.hostnameAndPort)).length>0}static generateAuthority(e,r){let n;if(r&&r.azureCloudInstance!==Ct.None){const e=r.tenant?r.tenant:t.DEFAULT_COMMON_TENANT;n=`${r.azureCloudInstance}/${e}/`}return n||e}static createCloudDiscoveryMetadataFromHost(e){return{preferred_network:e,preferred_cache:e,aliases:[e]}}getPreferredCache(){if(this.managedIdentity)return t.DEFAULT_AUTHORITY_HOST;if(this.discoveryComplete())return this.metadata.preferred_cache;throw ut(Te)}isAlias(e){return this.metadata.aliases.indexOf(e)>-1}isAliasOfKnownMicrosoftAuthority(e){return Or.has(e)}static isPublicCloudAuthority(e){return t.KNOWN_PUBLIC_CLOUDS.indexOf(e)>=0}static buildRegionalAuthorityString(e,r,n){const o=new _r(e);o.validateAsUri();const i=o.getUrlComponents();let s=`${r}.${i.HostNameAndPort}`;this.isPublicCloudAuthority(i.HostNameAndPort)&&(s=`${r}.${t.REGIONAL_AUTH_PUBLIC_CLOUD_SUFFIX}`);const a=_r.constructAuthorityUriFromObject({...o.getUrlComponents(),HostNameAndPort:s}).urlString;return n?`${a}?${n}`:a}static replaceWithRegionalInformation(e,t){const r={...e};return r.authorization_endpoint=Qn.buildRegionalAuthorityString(r.authorization_endpoint,t),r.token_endpoint=Qn.buildRegionalAuthorityString(r.token_endpoint,t),r.end_session_endpoint&&(r.end_session_endpoint=Qn.buildRegionalAuthorityString(r.end_session_endpoint,t)),r}static transformCIAMAuthority(e){let r=e;const n=new _r(e).getUrlComponents();if(0===n.PathSegments.length&&n.HostNameAndPort.endsWith(t.CIAM_AUTH_URL)){r=`${r}${n.HostNameAndPort.split(".")[0]}${t.AAD_TENANT_DOMAIN_SUFFIX}`}return r}}function jn(e){return e.endsWith(t.FORWARD_SLASH)?e:`${e}${t.FORWARD_SLASH}`}function Wn(e){const t=e.cloudDiscoveryMetadata;let r;if(t)try{r=JSON.parse(t)}catch(e){throw dr(Yt)}return{canonicalAuthority:e.authority?jn(e.authority):void 0,knownAuthorities:e.knownAuthorities,cloudDiscoveryMetadata:r}}
|
|
48
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */async function Vn(e,t,r,n,o,i,s){s?.addQueueMeasurement(Kr.AuthorityFactoryCreateDiscoveredInstance,i);const a=Qn.transformCIAMAuthority(jn(e)),c=new Qn(a,t,r,n,o,i,s);try{return await Gn(c.resolveEndpointsAsync.bind(c),Kr.AuthorityResolveEndpointsAsync,o,s,i)(),c}catch(e){throw ut(Te)}}
|
|
49
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */Qn.reservedTenantDomains=new Set(["{tenant}","{tenantid}",v,I,w]);class Jn extends fe{constructor(e,t,r,n,o){super(e,t,r),this.name="ServerError",this.errorNo=n,this.status=o,Object.setPrototypeOf(this,Jn.prototype)}}
|
|
50
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function Yn(e,t,r){return{clientId:e,authority:t.authority,scopes:t.scopes,homeAccountIdentifier:r,claims:t.claims,authenticationScheme:t.authenticationScheme,resourceRequestMethod:t.resourceRequestMethod,resourceRequestUri:t.resourceRequestUri,shrClaims:t.shrClaims,sshKid:t.sshKid,embeddedClientId:t.embeddedClientId||t.tokenBodyParameters?.clientId}}
|
|
51
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class Xn{static generateThrottlingStorageKey(e){return`${V}.${JSON.stringify(e)}`}static preProcess(e,r,n){const o=Xn.generateThrottlingStorageKey(r),i=e.getThrottlingCache(o);if(i){if(i.throttleTime<Date.now())return void e.removeItem(o,n);throw new Jn(i.errorCodes?.join(" ")||t.EMPTY_STRING,i.errorMessage,i.subError)}}static postProcess(e,t,r,n){if(Xn.checkResponseStatus(r)||Xn.checkResponseForRetryAfter(r)){const o={throttleTime:Xn.calculateThrottleTime(parseInt(r.headers[u])),error:r.body.error,errorCodes:r.body.error_codes,errorMessage:r.body.error_description,subError:r.body.suberror};e.setThrottlingCache(Xn.generateThrottlingStorageKey(t),o,n)}}static checkResponseStatus(e){return 429===e.status||e.status>=500&&e.status<600}static checkResponseForRetryAfter(e){return!!e.headers&&(e.headers.hasOwnProperty(u)&&(e.status<200||e.status>=300))}static calculateThrottleTime(e){const t=e<=0?0:e,r=Date.now()/1e3;return Math.floor(1e3*Math.min(r+(t||j),r+W))}static removeThrottle(e,t,r,n){const o=Yn(t,r,n),i=this.generateThrottlingStorageKey(o);e.removeItem(i,r.correlationId)}}
|
|
52
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class Zn extends fe{constructor(e,t,r){super(e.errorCode,e.errorMessage,e.subError),Object.setPrototypeOf(this,Zn.prototype),this.name="NetworkError",this.error=e,this.httpStatus=t,this.responseHeaders=r}}function eo(e,t,r,n){return e.errorMessage=`${e.errorMessage}, additionalErrorInfo: error.name:${n?.name}, error.message:${n?.message}`,new Zn(e,t,r)}
|
|
53
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class to{constructor(e,t){this.config=function({authOptions:e,systemOptions:t,loggerOptions:r,cacheOptions:n,storageInterface:o,networkInterface:i,cryptoInterface:s,clientCredentials:a,libraryInfo:c,telemetry:l,serverTelemetryManager:h,persistencePlugin:d,serializableCache:u}){const g={...Jr,...r};return{authOptions:(p=e,{clientCapabilities:[],azureCloudOptions:tn,skipAuthorityMetadataCache:!1,instanceAware:!1,encodeExtraQueryParams:!1,...p}),systemOptions:{...Vr,...t},loggerOptions:g,cacheOptions:{...Yr,...n},storageInterface:o||new Fr(e.clientId,gt,new mt(g),new Wr),networkInterface:i||Xr,cryptoInterface:s||gt,clientCredentials:a||en,libraryInfo:{...Zr,...c},telemetry:{...rn,...l},serverTelemetryManager:h||null,persistencePlugin:d||null,serializableCache:u||null};var p}(e),this.logger=new mt(this.config.loggerOptions,ft,yt),this.cryptoUtils=this.config.cryptoInterface,this.cacheManager=this.config.storageInterface,this.networkClient=this.config.networkInterface,this.serverTelemetryManager=this.config.serverTelemetryManager,this.authority=this.config.authOptions.authority,this.performanceClient=t}createTokenRequestHeaders(e){const r={};if(r[h]=t.URL_FORM_CONTENT_TYPE,!this.config.systemOptions.preventCorsPreflight&&e)switch(e.type){case on:try{const t=mr(e.credential);r[g]=`Oid:${t.uid}@${t.utid}`}catch(e){this.logger.verbose("Could not parse home account ID for CCS Header: "+e)}break;case sn:r[g]=`UPN: ${e.credential}`}return r}async executePostToTokenEndpoint(e,t,r,n,o,i){i&&this.performanceClient?.addQueueMeasurement(i,o);const s=await this.sendPostRequest(n,e,{body:t,headers:r},o);return this.config.serverTelemetryManager&&s.status<500&&429!==s.status&&this.config.serverTelemetryManager.clearTelemetryCache(),s}async sendPostRequest(e,t,r,n){let o;Xn.preProcess(this.cacheManager,e,n);try{o=await Gn(this.networkClient.sendPostRequestAsync.bind(this.networkClient),Kr.NetworkClientSendPostRequestAsync,this.logger,this.performanceClient,n)(t,r);const e=o.headers||{};this.performanceClient?.addFields({refreshTokenSize:o.body.refresh_token?.length||0,httpVerToken:e[y]||"",requestId:e[f]||""},n)}catch(e){if(e instanceof Zn){const t=e.responseHeaders;throw t&&this.performanceClient?.addFields({httpVerToken:t[y]||"",requestId:t[f]||"",contentTypeHeader:t[h]||void 0,contentLengthHeader:t[d]||void 0,httpStatus:e.httpStatus},n),e.error}throw e instanceof fe?e:ut(Ae)}return Xn.postProcess(this.cacheManager,e,o,n),o}async updateAuthority(e,t){this.performanceClient?.addQueueMeasurement(Kr.UpdateTokenEndpointAuthority,t);const r=`https://${e}/${this.authority.tenant}/`,n=await Vn(r,this.networkClient,this.cacheManager,this.authority.options,this.logger,t,this.performanceClient);this.authority=n}createTokenQueryParameters(e){const t=new Map;return e.embeddedClientId&&Kn(t,this.config.authOptions.clientId,this.config.authOptions.redirectUri),e.tokenQueryParameters&&Un(t,e.tokenQueryParameters),bn(t,e.correlationId),fn(t,e.correlationId,this.performanceClient),Rr(t)}}
|
|
54
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const ro="no_tokens_found",no="native_account_unavailable",oo="refresh_token_expired",io="ux_not_allowed",so="interaction_required",ao="consent_required",co="login_required",lo="bad_token";var ho=Object.freeze({__proto__:null,badToken:lo,consentRequired:ao,interactionRequired:so,loginRequired:co,nativeAccountUnavailable:no,noTokensFound:ro,refreshTokenExpired:oo,uxNotAllowed:io});
|
|
55
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const uo=[so,ao,co,lo,io],go=["message_only","additional_action","basic_action","user_password_expired","consent_required","bad_token"],po={[ro]:"No refresh token found in the cache. Please sign-in.",[no]:"The requested account is not available in the native broker. It may have been deleted or logged out. Please sign-in again using an interactive API.",[oo]:"Refresh token has expired.",[lo]:"Identity provider returned bad_token due to an expired or invalid refresh token. Please invoke an interactive API to resolve.",[io]:"`canShowUI` flag in Edge was set to false. User interaction required on web page. Please invoke an interactive API to resolve."},mo={noTokensFoundError:{code:ro,desc:po[ro]},native_account_unavailable:{code:no,desc:po[no]},bad_token:{code:lo,desc:po[lo]}};class fo extends fe{constructor(e,r,n,o,i,s,a,c){super(e,r,n),Object.setPrototypeOf(this,fo.prototype),this.timestamp=o||t.EMPTY_STRING,this.traceId=i||t.EMPTY_STRING,this.correlationId=s||t.EMPTY_STRING,this.claims=a||t.EMPTY_STRING,this.name="InteractionRequiredAuthError",this.errorNo=c}}function yo(e,t,r){const n=!!e&&uo.indexOf(e)>-1,o=!!r&&go.indexOf(r)>-1,i=!!t&&uo.some((e=>t.indexOf(e)>-1));return n||i||o}function Co(e){return new fo(e,po[e])}
|
|
56
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class vo{static setRequestState(e,r,n){const o=vo.generateLibraryState(e,n);return r?`${o}${t.RESOURCE_DELIM}${r}`:o}static generateLibraryState(e,t){if(!e)throw ut(Qe);const r={id:e.createNewGuid()};t&&(r.meta=t);const n=JSON.stringify(r);return e.base64Encode(n)}static parseRequestState(e,r){if(!e)throw ut(Qe);if(!r)throw ut(be);try{const n=r.split(t.RESOURCE_DELIM),o=n[0],i=n.length>1?n.slice(1).join(t.RESOURCE_DELIM):t.EMPTY_STRING,s=e.base64Decode(o),a=JSON.parse(s);return{userRequestState:i||t.EMPTY_STRING,libraryState:a}}catch(e){throw ut(be)}}}
|
|
57
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const wo="sw";class Io{constructor(e,t){this.cryptoUtils=e,this.performanceClient=t}async generateCnf(e,t){this.performanceClient?.addQueueMeasurement(Kr.PopTokenGenerateCnf,e.correlationId);const r=await Gn(this.generateKid.bind(this),Kr.PopTokenGenerateCnf,t,this.performanceClient,e.correlationId)(e),n=this.cryptoUtils.base64UrlEncode(JSON.stringify(r));return{kid:r.kid,reqCnfString:n}}async generateKid(e){this.performanceClient?.addQueueMeasurement(Kr.PopTokenGenerateKid,e.correlationId);return{kid:await this.cryptoUtils.getPublicKeyThumbprint(e),xms_ksl:wo}}async signPopToken(e,t,r){return this.signPayload(e,t,r)}async signPayload(e,t,r,n){const{resourceRequestMethod:o,resourceRequestUri:i,shrClaims:s,shrNonce:a,shrOptions:c}=r,l=i?new _r(i):void 0,h=l?.getUrlComponents();return this.cryptoUtils.signJwt({at:e,ts:It(),m:o?.toUpperCase(),u:h?.HostNameAndPort,nonce:a||this.cryptoUtils.createNewGuid(),p:h?.AbsolutePath,q:h?.QueryString?[[],h.QueryString]:void 0,client_claims:s||void 0,...n},t,c,r.correlationId)}}
|
|
58
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class To{constructor(e,t){this.cache=e,this.hasChanged=t}get cacheHasChanged(){return this.hasChanged}get tokenCache(){return this.cache}}
|
|
59
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class Ao{constructor(e,t,r,n,o,i,s){this.clientId=e,this.cacheStorage=t,this.cryptoObj=r,this.logger=n,this.serializableCache=o,this.persistencePlugin=i,this.performanceClient=s}validateTokenResponse(e,r){if(e.error||e.error_description||e.suberror){const o=`Error(s): ${e.error_codes||t.NOT_AVAILABLE} - Timestamp: ${e.timestamp||t.NOT_AVAILABLE} - Description: ${e.error_description||t.NOT_AVAILABLE} - Correlation ID: ${e.correlation_id||t.NOT_AVAILABLE} - Trace ID: ${e.trace_id||t.NOT_AVAILABLE}`,c=e.error_codes?.length?e.error_codes[0]:void 0,l=new Jn(e.error,o,e.suberror,c,e.status);if(r&&e.status&&e.status>=s&&e.status<=a)return void this.logger.warning(`executeTokenRequest:validateTokenResponse - AAD is currently unavailable and the access token is unable to be refreshed.\n${l}`);if(r&&e.status&&e.status>=n&&e.status<=i)return void this.logger.warning(`executeTokenRequest:validateTokenResponse - AAD is currently available but is unable to refresh the access token.\n${l}`);if(yo(e.error,e.error_description,e.suberror))throw new fo(e.error,e.error_description,e.suberror,e.timestamp||t.EMPTY_STRING,e.trace_id||t.EMPTY_STRING,e.correlation_id||t.EMPTY_STRING,e.claims||t.EMPTY_STRING,c);throw l}}async handleServerTokenResponse(e,r,n,o,i,s,a,c,l){let h,d;if(this.performanceClient?.addQueueMeasurement(Kr.HandleServerTokenResponse,e.correlation_id),e.id_token){if(h=vt(e.id_token||t.EMPTY_STRING,this.cryptoObj.base64Decode),i&&i.nonce&&h.nonce!==i.nonce)throw ut(_e);if(o.maxAge||0===o.maxAge){const e=h.auth_time;if(!e)throw ut(Pe);wt(e,o.maxAge)}}this.homeAccountIdentifier=Sr.generateHomeAccountId(e.client_info||t.EMPTY_STRING,r.authorityType,this.logger,this.cryptoObj,h),i&&i.state&&(d=vo.parseRequestState(this.cryptoObj,i.state)),e.key_id=e.key_id||o.sshKid||void 0;const u=this.generateCacheRecord(e,r,n,o,h,s,i);let g;try{if(this.persistencePlugin&&this.serializableCache&&(this.logger.verbose("Persistence enabled, calling beforeCacheAccess"),g=new To(this.serializableCache,!0),await this.persistencePlugin.beforeCacheAccess(g)),a&&!c&&u.account){const e=u.account.generateAccountKey();if(!this.cacheStorage.getAccount(e,o.correlationId))return this.logger.warning("Account used to refresh tokens not in persistence, refreshed tokens will not be stored in the cache"),await Ao.generateAuthenticationResult(this.cryptoObj,r,u,!1,o,h,d,void 0,l)}await this.cacheStorage.saveCacheRecord(u,o.correlationId,o.storeInCache)}finally{this.persistencePlugin&&this.serializableCache&&g&&(this.logger.verbose("Persistence enabled, calling afterCacheAccess"),await this.persistencePlugin.afterCacheAccess(g))}return Ao.generateAuthenticationResult(this.cryptoObj,r,u,!1,o,h,d,e,l)}generateCacheRecord(e,t,r,n,o,i,s){const a=t.getPreferredCache();if(!a)throw ut(Ge);const c=Ar(o);let l,h;e.id_token&&o&&(l=Et(this.homeAccountIdentifier,a,e.id_token,this.clientId,c||""),h=ko(this.cacheStorage,t,this.homeAccountIdentifier,this.cryptoObj.base64Decode,n.correlationId,o,e.client_info,a,c,s,void 0,this.logger));let d=null;if(e.access_token){const o=e.scope?gr.fromString(e.scope):new gr(n.scopes||[]),s=("string"==typeof e.expires_in?parseInt(e.expires_in,10):e.expires_in)||0,l=("string"==typeof e.ext_expires_in?parseInt(e.ext_expires_in,10):e.ext_expires_in)||0,h=("string"==typeof e.refresh_in?parseInt(e.refresh_in,10):e.refresh_in)||void 0,u=r+s,g=u+l,p=h&&h>0?r+h:void 0;d=Rt(this.homeAccountIdentifier,a,e.access_token,this.clientId,c||t.tenant||"",o.printScopes(),u,g,this.cryptoObj.base64Decode,p,e.token_type,i,e.key_id,n.claims,n.requestedClaimsHash)}let u=null;if(e.refresh_token){let t;if(e.refresh_token_expires_in){t=r+("string"==typeof e.refresh_token_expires_in?parseInt(e.refresh_token_expires_in,10):e.refresh_token_expires_in)}u=_t(this.homeAccountIdentifier,a,e.refresh_token,this.clientId,e.foci,i,t)}let g=null;return e.foci&&(g={clientId:this.clientId,environment:a,familyId:e.foci}),{account:h,idToken:l,accessToken:d,refreshToken:u,appMetadata:g}}static async generateAuthenticationResult(e,r,n,o,i,s,a,c,l){let h,d,u=t.EMPTY_STRING,g=[],p=null,m=t.EMPTY_STRING;if(n.accessToken){if(n.accessToken.tokenType!==Q.POP||i.popKid)u=n.accessToken.secret;else{const t=new Io(e),{secret:r,keyId:o}=n.accessToken;if(!o)throw ut(rt);u=await t.signPopToken(r,o,i)}g=gr.fromString(n.accessToken.target).asArray(),p=At(n.accessToken.expiresOn),h=At(n.accessToken.extendedExpiresOn),n.accessToken.refreshOn&&(d=At(n.accessToken.refreshOn))}n.appMetadata&&(m=n.appMetadata.familyId===x?x:"");const f=s?.oid||s?.sub||"",y=s?.tid||"";c?.spa_accountid&&n.account&&(n.account.nativeAccountId=c?.spa_accountid);const C=n.account?Cr(n.account.getAccountInfo(),void 0,s,n.idToken?.secret):null;return{authority:r.canonicalAuthority,uniqueId:f,tenantId:y,scopes:g,account:C,idToken:n?.idToken?.secret||"",idTokenClaims:s||{},accessToken:u,fromCache:o,expiresOn:p,extExpiresOn:h,refreshOn:d,correlationId:i.correlationId,requestId:l||t.EMPTY_STRING,familyId:m,tokenType:n.accessToken?.tokenType||t.EMPTY_STRING,state:a?a.userRequestState:t.EMPTY_STRING,cloudGraphHostName:n.account?.cloudGraphHostName||t.EMPTY_STRING,msGraphHost:n.account?.msGraphHost||t.EMPTY_STRING,code:c?.spa_code,fromNativeBroker:!1}}}function ko(e,t,r,n,o,i,s,a,c,l,h,d){d?.verbose("setCachedAccount called");const u=e.getAccountKeys().find((e=>e.startsWith(r)));let g=null;u&&(g=e.getAccount(u,o));const p=g||Sr.createAccount({homeAccountId:r,idTokenClaims:i,clientInfo:s,environment:a,cloudGraphHostName:l?.cloud_graph_host_name,msGraphHost:l?.msgraph_host,nativeAccountId:h},t,n),m=p.tenantProfiles||[],f=c||p.realm;if(f&&!m.find((e=>e.tenantId===f))){const e=yr(r,p.localAccountId,f,i);m.push(e)}return p.tenantProfiles=m,p}
|
|
60
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */async function So(e,t,r){if("string"==typeof e)return e;return e({clientId:t,tokenEndpoint:r})}
|
|
61
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class bo extends to{constructor(e,t){super(e,t),this.includeRedirectUri=!0,this.oidcDefaultScopes=this.config.authOptions.authority.options.OIDCOptions?.defaultScopes}async acquireToken(e,t){if(this.performanceClient?.addQueueMeasurement(Kr.AuthClientAcquireToken,e.correlationId),!e.code)throw ut(Le);const r=It(),n=await Gn(this.executeTokenRequest.bind(this),Kr.AuthClientExecuteTokenRequest,this.logger,this.performanceClient,e.correlationId)(this.authority,e),o=n.headers?.[f],i=new Ao(this.config.authOptions.clientId,this.cacheManager,this.cryptoUtils,this.logger,this.config.serializableCache,this.config.persistencePlugin,this.performanceClient);return i.validateTokenResponse(n.body),Gn(i.handleServerTokenResponse.bind(i),Kr.HandleServerTokenResponse,this.logger,this.performanceClient,e.correlationId)(n.body,this.authority,r,e,t,void 0,void 0,void 0,o)}getLogoutUri(e){if(!e)throw dr(Wt);const t=this.createLogoutUrlQueryString(e);return _r.appendQueryString(this.authority.endSessionEndpoint,t)}async executeTokenRequest(e,t){this.performanceClient?.addQueueMeasurement(Kr.AuthClientExecuteTokenRequest,t.correlationId);const r=this.createTokenQueryParameters(t),n=_r.appendQueryString(e.tokenEndpoint,r),o=await Gn(this.createTokenRequestBody.bind(this),Kr.AuthClientCreateTokenRequestBody,this.logger,this.performanceClient,t.correlationId)(t);let i;if(t.clientInfo)try{const e=pr(t.clientInfo,this.cryptoUtils.base64Decode);i={credential:`${e.uid}${L}${e.utid}`,type:on}}catch(e){this.logger.verbose("Could not parse client info for CCS Header: "+e)}const s=this.createTokenRequestHeaders(i||t.ccsCredential),a=Yn(this.config.authOptions.clientId,t);return Gn(this.executePostToTokenEndpoint.bind(this),Kr.AuthorizationCodeClientExecutePostToTokenEndpoint,this.logger,this.performanceClient,t.correlationId)(n,o,s,a,t.correlationId,Kr.AuthorizationCodeClientExecutePostToTokenEndpoint)}async createTokenRequestBody(e){this.performanceClient?.addQueueMeasurement(Kr.AuthClientCreateTokenRequestBody,e.correlationId);const t=new Map;if(vn(t,e.embeddedClientId||e.tokenBodyParameters?.[an]||this.config.authOptions.clientId),this.includeRedirectUri)wn(t,e.redirectUri);else if(!e.redirectUri)throw dr(Bt);if(Cn(t,e.scopes,!0,this.oidcDefaultScopes),function(e,t){e.set("code",t)}(t,e.code),En(t,this.config.libraryInfo),Rn(t,this.config.telemetry.application),Fn(t),this.serverTelemetryManager&&!nn(this.config)&&Bn(t,this.serverTelemetryManager),e.codeVerifier&&function(e,t){e.set("code_verifier",t)}(t,e.codeVerifier),this.config.clientCredentials.clientSecret&&Pn(t,this.config.clientCredentials.clientSecret),this.config.clientCredentials.clientAssertion){const r=this.config.clientCredentials.clientAssertion;Mn(t,await So(r.assertion,this.config.authOptions.clientId,e.resourceRequestUri)),On(t,r.assertionType)}if(Nn(t,_),qn(t),e.authenticationScheme===Q.POP){const r=new Io(this.cryptoUtils,this.performanceClient);let n;if(e.popKid)n=this.cryptoUtils.encodeKid(e.popKid);else{n=(await Gn(r.generateCnf.bind(r),Kr.PopTokenGenerateCnf,this.logger,this.performanceClient,e.correlationId)(e,this.logger)).reqCnfString}xn(t,n)}else if(e.authenticationScheme===Q.SSH){if(!e.sshJwk)throw dr(er);Dn(t,e.sshJwk)}let r;if((!ur.isEmptyObj(e.claims)||this.config.authOptions.clientCapabilities&&this.config.authOptions.clientCapabilities.length>0)&&Sn(t,e.claims,this.config.authOptions.clientCapabilities),e.clientInfo)try{const t=pr(e.clientInfo,this.cryptoUtils.base64Decode);r={credential:`${t.uid}${L}${t.utid}`,type:on}}catch(e){this.logger.verbose("Could not parse client info for CCS Header: "+e)}else r=e.ccsCredential;if(this.config.systemOptions.preventCorsPreflight&&r)switch(r.type){case on:try{An(t,mr(r.credential))}catch(e){this.logger.verbose("Could not parse home account ID for CCS Header: "+e)}break;case sn:Tn(t,r.credential)}return e.embeddedClientId&&Kn(t,this.config.authOptions.clientId,this.config.authOptions.redirectUri),e.tokenBodyParameters&&Un(t,e.tokenBodyParameters),!e.enableSpaAuthorizationCode||e.tokenBodyParameters&&e.tokenBodyParameters[dn]||Un(t,{[dn]:"1"}),fn(t,e.correlationId,this.performanceClient),Rr(t)}createLogoutUrlQueryString(e){const t=new Map;return e.postLogoutRedirectUri&&function(e,t){e.set("post_logout_redirect_uri",t)}(t,e.postLogoutRedirectUri),e.correlationId&&bn(t,e.correlationId),e.idTokenHint&&function(e,t){e.set("id_token_hint",t)}(t,e.idTokenHint),e.state&&_n(t,e.state),e.logoutHint&&function(e,t){e.set("logout_hint",t)}(t,e.logoutHint),e.extraQueryParameters&&Un(t,e.extraQueryParameters),this.config.authOptions.instanceAware&&Ln(t),Rr(t,this.config.authOptions.encodeExtraQueryParams,e.extraQueryParameters)}}
|
|
62
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class Eo extends to{constructor(e,t){super(e,t)}async acquireToken(e){this.performanceClient?.addQueueMeasurement(Kr.RefreshTokenClientAcquireToken,e.correlationId);const t=It(),r=await Gn(this.executeTokenRequest.bind(this),Kr.RefreshTokenClientExecuteTokenRequest,this.logger,this.performanceClient,e.correlationId)(e,this.authority),n=r.headers?.[f],o=new Ao(this.config.authOptions.clientId,this.cacheManager,this.cryptoUtils,this.logger,this.config.serializableCache,this.config.persistencePlugin);return o.validateTokenResponse(r.body),Gn(o.handleServerTokenResponse.bind(o),Kr.HandleServerTokenResponse,this.logger,this.performanceClient,e.correlationId)(r.body,this.authority,t,e,void 0,void 0,!0,e.forceCache,n)}async acquireTokenByRefreshToken(e){if(!e)throw dr(jt);if(this.performanceClient?.addQueueMeasurement(Kr.RefreshTokenClientAcquireTokenByRefreshToken,e.correlationId),!e.account)throw ut(Ke);if(this.cacheManager.isAppMetadataFOCI(e.account.environment))try{return await Gn(this.acquireTokenWithCachedRefreshToken.bind(this),Kr.RefreshTokenClientAcquireTokenWithCachedRefreshToken,this.logger,this.performanceClient,e.correlationId)(e,!0)}catch(t){const r=t instanceof fo&&t.errorCode===ro,n=t instanceof Jn&&t.errorCode===Y&&t.subError===X;if(r||n)return Gn(this.acquireTokenWithCachedRefreshToken.bind(this),Kr.RefreshTokenClientAcquireTokenWithCachedRefreshToken,this.logger,this.performanceClient,e.correlationId)(e,!1);throw t}return Gn(this.acquireTokenWithCachedRefreshToken.bind(this),Kr.RefreshTokenClientAcquireTokenWithCachedRefreshToken,this.logger,this.performanceClient,e.correlationId)(e,!1)}async acquireTokenWithCachedRefreshToken(e,t){this.performanceClient?.addQueueMeasurement(Kr.RefreshTokenClientAcquireTokenWithCachedRefreshToken,e.correlationId);const r=zn(this.cacheManager.getRefreshToken.bind(this.cacheManager),Kr.CacheManagerGetRefreshToken,this.logger,this.performanceClient,e.correlationId)(e.account,t,e.correlationId,void 0,this.performanceClient);if(!r)throw Co(ro);if(r.expiresOn&&kt(r.expiresOn,e.refreshTokenExpirationOffsetSeconds||300))throw this.performanceClient?.addFields({rtExpiresOnMs:Number(r.expiresOn)},e.correlationId),Co(oo);const n={...e,refreshToken:r.secret,authenticationScheme:e.authenticationScheme||Q.BEARER,ccsCredential:{credential:e.account.homeAccountId,type:on}};try{return await Gn(this.acquireToken.bind(this),Kr.RefreshTokenClientAcquireToken,this.logger,this.performanceClient,e.correlationId)(n)}catch(t){if(t instanceof fo&&(this.performanceClient?.addFields({rtExpiresOnMs:Number(r.expiresOn)},e.correlationId),t.subError===lo)){this.logger.verbose("acquireTokenWithRefreshToken: bad refresh token, removing from cache");const t=bt(r);this.cacheManager.removeRefreshToken(t,e.correlationId)}throw t}}async executeTokenRequest(e,t){this.performanceClient?.addQueueMeasurement(Kr.RefreshTokenClientExecuteTokenRequest,e.correlationId);const r=this.createTokenQueryParameters(e),n=_r.appendQueryString(t.tokenEndpoint,r),o=await Gn(this.createTokenRequestBody.bind(this),Kr.RefreshTokenClientCreateTokenRequestBody,this.logger,this.performanceClient,e.correlationId)(e),i=this.createTokenRequestHeaders(e.ccsCredential),s=Yn(this.config.authOptions.clientId,e);return Gn(this.executePostToTokenEndpoint.bind(this),Kr.RefreshTokenClientExecutePostToTokenEndpoint,this.logger,this.performanceClient,e.correlationId)(n,o,i,s,e.correlationId,Kr.RefreshTokenClientExecutePostToTokenEndpoint)}async createTokenRequestBody(e){this.performanceClient?.addQueueMeasurement(Kr.RefreshTokenClientCreateTokenRequestBody,e.correlationId);const t=new Map;if(vn(t,e.embeddedClientId||e.tokenBodyParameters?.[an]||this.config.authOptions.clientId),e.redirectUri&&wn(t,e.redirectUri),Cn(t,e.scopes,!0,this.config.authOptions.authority.options.OIDCOptions?.defaultScopes),Nn(t,P),qn(t),En(t,this.config.libraryInfo),Rn(t,this.config.telemetry.application),Fn(t),this.serverTelemetryManager&&!nn(this.config)&&Bn(t,this.serverTelemetryManager),function(e,t){e.set("refresh_token",t)}(t,e.refreshToken),this.config.clientCredentials.clientSecret&&Pn(t,this.config.clientCredentials.clientSecret),this.config.clientCredentials.clientAssertion){const r=this.config.clientCredentials.clientAssertion;Mn(t,await So(r.assertion,this.config.authOptions.clientId,e.resourceRequestUri)),On(t,r.assertionType)}if(e.authenticationScheme===Q.POP){const r=new Io(this.cryptoUtils,this.performanceClient);let n;if(e.popKid)n=this.cryptoUtils.encodeKid(e.popKid);else{n=(await Gn(r.generateCnf.bind(r),Kr.PopTokenGenerateCnf,this.logger,this.performanceClient,e.correlationId)(e,this.logger)).reqCnfString}xn(t,n)}else if(e.authenticationScheme===Q.SSH){if(!e.sshJwk)throw dr(er);Dn(t,e.sshJwk)}if((!ur.isEmptyObj(e.claims)||this.config.authOptions.clientCapabilities&&this.config.authOptions.clientCapabilities.length>0)&&Sn(t,e.claims,this.config.authOptions.clientCapabilities),this.config.systemOptions.preventCorsPreflight&&e.ccsCredential)switch(e.ccsCredential.type){case on:try{An(t,mr(e.ccsCredential.credential))}catch(e){this.logger.verbose("Could not parse home account ID for CCS Header: "+e)}break;case sn:Tn(t,e.ccsCredential.credential)}return e.embeddedClientId&&Kn(t,this.config.authOptions.clientId,this.config.authOptions.redirectUri),e.tokenBodyParameters&&Un(t,e.tokenBodyParameters),fn(t,e.correlationId,this.performanceClient),Rr(t)}}
|
|
63
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class Ro extends to{constructor(e,t){super(e,t)}async acquireCachedToken(e){this.performanceClient?.addQueueMeasurement(Kr.SilentFlowClientAcquireCachedToken,e.correlationId);let t=ie;if(e.forceRefresh||!this.config.cacheOptions.claimsBasedCachingEnabled&&!ur.isEmptyObj(e.claims))throw this.setCacheOutcome(se,e.correlationId),ut(Je);if(!e.account)throw ut(Ke);const r=e.account.tenantId||function(e){const t=new _r(e).getUrlComponents(),r=t.PathSegments.slice(-1)[0]?.toLowerCase();switch(r){case v:case w:case I:return;default:return r}}(e.authority),n=this.cacheManager.getTokenKeys(),o=this.cacheManager.getAccessToken(e.account,e,n,r);if(!o)throw this.setCacheOutcome(ae,e.correlationId),ut(Je);if(St(o.cachedAt)||kt(o.expiresOn,this.config.systemOptions.tokenRenewalOffsetSeconds))throw this.setCacheOutcome(ce,e.correlationId),ut(Je);o.refreshOn&&kt(o.refreshOn,0)&&(t=le);const i=e.authority||this.authority.getPreferredCache(),s={account:this.cacheManager.readAccountFromCache(e.account,e.correlationId),accessToken:o,idToken:this.cacheManager.getIdToken(e.account,e.correlationId,n,r,this.performanceClient),refreshToken:null,appMetadata:this.cacheManager.readAppMetadataFromCache(i)};return this.setCacheOutcome(t,e.correlationId),this.config.serverTelemetryManager&&this.config.serverTelemetryManager.incrementCacheHits(),[await Gn(this.generateResultFromCacheRecord.bind(this),Kr.SilentFlowClientGenerateResultFromCacheRecord,this.logger,this.performanceClient,e.correlationId)(s,e),t]}setCacheOutcome(e,t){this.serverTelemetryManager?.setCacheOutcome(e),this.performanceClient?.addFields({cacheOutcome:e},t),e!==ie&&this.logger.info(`Token refresh is required due to cache outcome: ${e}`)}async generateResultFromCacheRecord(e,t){let r;if(this.performanceClient?.addQueueMeasurement(Kr.SilentFlowClientGenerateResultFromCacheRecord,t.correlationId),e.idToken&&(r=vt(e.idToken.secret,this.config.cryptoInterface.base64Decode)),t.maxAge||0===t.maxAge){const e=r?.auth_time;if(!e)throw ut(Pe);wt(e,t.maxAge)}return Ao.generateAuthenticationResult(this.cryptoUtils,this.authority,e,!0,t,r)}}
|
|
64
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const _o={sendGetRequestAsync:()=>Promise.reject(ut(st)),sendPostRequestAsync:()=>Promise.reject(ut(st))};
|
|
65
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function Po(e,t,r,n){const o=t.correlationId,i=new Map;vn(i,t.embeddedClientId||t.extraQueryParameters?.[an]||e.clientId);if(Cn(i,[...t.scopes||[],...t.extraScopesToConsent||[]],!0,e.authority.options.OIDCOptions?.defaultScopes),wn(i,t.redirectUri),bn(i,o),function(e,t){e.set("response_mode",t||R)}(i,t.responseMode),qn(i),t.prompt&&(!function(e,t){e.set("prompt",t)}(i,t.prompt),n?.addFields({prompt:t.prompt},o)),t.domainHint&&(!function(e,t){e.set("domain_hint",t)}(i,t.domainHint),n?.addFields({domainHintFromRequest:!0},o)),t.prompt!==k.SELECT_ACCOUNT)if(t.sid&&t.prompt===k.NONE)r.verbose("createAuthCodeUrlQueryString: Prompt is none, adding sid from request"),kn(i,t.sid),n?.addFields({sidFromRequest:!0},o);else if(t.account){const e=(s=t.account,s.idTokenClaims?.sid||null);let a=function(e){return e.idTokenClaims?.login_hint||null}
|
|
66
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */(t.account);if(a&&t.domainHint&&(r.warning('AuthorizationCodeClient.createAuthCodeUrlQueryString: "domainHint" param is set, skipping opaque "login_hint" claim. Please consider not passing domainHint'),a=null),a){r.verbose("createAuthCodeUrlQueryString: login_hint claim present on account"),In(i,a),n?.addFields({loginHintFromClaim:!0},o);try{An(i,mr(t.account.homeAccountId))}catch(e){r.verbose("createAuthCodeUrlQueryString: Could not parse home account ID for CCS Header")}}else if(e&&t.prompt===k.NONE){r.verbose("createAuthCodeUrlQueryString: Prompt is none, adding sid from account"),kn(i,e),n?.addFields({sidFromClaim:!0},o);try{An(i,mr(t.account.homeAccountId))}catch(e){r.verbose("createAuthCodeUrlQueryString: Could not parse home account ID for CCS Header")}}else if(t.loginHint)r.verbose("createAuthCodeUrlQueryString: Adding login_hint from request"),In(i,t.loginHint),Tn(i,t.loginHint),n?.addFields({loginHintFromRequest:!0},o);else if(t.account.username){r.verbose("createAuthCodeUrlQueryString: Adding login_hint from account"),In(i,t.account.username),n?.addFields({loginHintFromUpn:!0},o);try{An(i,mr(t.account.homeAccountId))}catch(e){r.verbose("createAuthCodeUrlQueryString: Could not parse home account ID for CCS Header")}}}else t.loginHint&&(r.verbose("createAuthCodeUrlQueryString: No account, adding login_hint from request"),In(i,t.loginHint),Tn(i,t.loginHint),n?.addFields({loginHintFromRequest:!0},o));else r.verbose("createAuthCodeUrlQueryString: Prompt is select_account, ignoring account hints");var s;return t.nonce&&function(e,t){e.set("nonce",t)}(i,t.nonce),t.state&&_n(i,t.state),(t.claims||e.clientCapabilities&&e.clientCapabilities.length>0)&&Sn(i,t.claims,e.clientCapabilities),t.embeddedClientId&&Kn(i,e.clientId,e.redirectUri),!e.instanceAware||t.extraQueryParameters&&Object.keys(t.extraQueryParameters).includes(mn)||Ln(i),i}function Mo(e,t,r,n){const o=Rr(t,r,n);return _r.appendQueryString(e.authorizationEndpoint,o)}function Oo(e,t){if(!e.state||!t)throw e.state?ut(Re,"Cached State"):ut(Re,"Server State");let r,n;try{r=decodeURIComponent(e.state)}catch(t){throw ut(be,e.state)}try{n=decodeURIComponent(t)}catch(t){throw ut(be,e.state)}if(r!==n)throw ut(Ee);if(e.error||e.error_description||e.suberror){const t=function(e){const t="code=",r=e.error_uri?.lastIndexOf(t);return r&&r>=0?e.error_uri?.substring(r+t.length):void 0}(e);if(yo(e.error,e.error_description,e.suberror))throw new fo(e.error||"",e.error_description,e.suberror,e.timestamp||"",e.trace_id||"",e.correlation_id||"",e.claims||"",t);throw new Jn(e.error||"",e.error_description,e.suberror,t)}}function No(e){const{skus:t,libraryName:r,libraryVersion:n,extensionName:o,extensionVersion:i}=e,s=new Map([[0,[r,n]],[2,[o,i]]]);let a=[];if(t?.length){if(a=t.split(","),a.length<4)return t}else a=Array.from({length:4},(()=>"|"));return s.forEach(((e,t)=>{2===e.length&&e[0]?.length&&e[1]?.length&&function(e){const{skuArr:t,index:r,skuName:n,skuVersion:o}=e;if(r>=t.length)return;t[r]=[n,o].join("|")}({skuArr:a,index:t,skuName:e[0],skuVersion:e[1]})})),a.join(",")}class qo{constructor(e,r){this.cacheOutcome=ie,this.cacheManager=r,this.apiId=e.apiId,this.correlationId=e.correlationId,this.wrapperSKU=e.wrapperSKU||t.EMPTY_STRING,this.wrapperVer=e.wrapperVer||t.EMPTY_STRING,this.telemetryCacheKey=$.CACHE_KEY+q+e.clientId}generateCurrentRequestHeaderValue(){const e=`${this.apiId}${$.VALUE_SEPARATOR}${this.cacheOutcome}`,t=[this.wrapperSKU,this.wrapperVer],r=this.getNativeBrokerErrorCode();r?.length&&t.push(`broker_error=${r}`);const n=t.join($.VALUE_SEPARATOR),o=[e,this.getRegionDiscoveryFields()].join($.VALUE_SEPARATOR);return[$.SCHEMA_VERSION,o,n].join($.CATEGORY_SEPARATOR)}generateLastRequestHeaderValue(){const e=this.getLastRequests(),t=qo.maxErrorsToSend(e),r=e.failedRequests.slice(0,2*t).join($.VALUE_SEPARATOR),n=e.errors.slice(0,t).join($.VALUE_SEPARATOR),o=e.errors.length,i=[o,t<o?$.OVERFLOW_TRUE:$.OVERFLOW_FALSE].join($.VALUE_SEPARATOR);return[$.SCHEMA_VERSION,e.cacheHits,r,n,i].join($.CATEGORY_SEPARATOR)}cacheFailedRequest(e){const t=this.getLastRequests();t.errors.length>=$.MAX_CACHED_ERRORS&&(t.failedRequests.shift(),t.failedRequests.shift(),t.errors.shift()),t.failedRequests.push(this.apiId,this.correlationId),e instanceof Error&&e&&e.toString()?e instanceof fe?e.subError?t.errors.push(e.subError):e.errorCode?t.errors.push(e.errorCode):t.errors.push(e.toString()):t.errors.push(e.toString()):t.errors.push($.UNKNOWN_ERROR),this.cacheManager.setServerTelemetry(this.telemetryCacheKey,t,this.correlationId)}incrementCacheHits(){const e=this.getLastRequests();return e.cacheHits+=1,this.cacheManager.setServerTelemetry(this.telemetryCacheKey,e,this.correlationId),e.cacheHits}getLastRequests(){return this.cacheManager.getServerTelemetry(this.telemetryCacheKey)||{failedRequests:[],errors:[],cacheHits:0}}clearTelemetryCache(){const e=this.getLastRequests(),t=qo.maxErrorsToSend(e);if(t===e.errors.length)this.cacheManager.removeItem(this.telemetryCacheKey,this.correlationId);else{const r={failedRequests:e.failedRequests.slice(2*t),errors:e.errors.slice(t),cacheHits:0};this.cacheManager.setServerTelemetry(this.telemetryCacheKey,r,this.correlationId)}}static maxErrorsToSend(e){let r,n=0,o=0;const i=e.errors.length;for(r=0;r<i;r++){const i=e.failedRequests[2*r]||t.EMPTY_STRING,s=e.failedRequests[2*r+1]||t.EMPTY_STRING,a=e.errors[r]||t.EMPTY_STRING;if(o+=i.toString().length+s.toString().length+a.length+3,!(o<$.MAX_LAST_HEADER_BYTES))break;n+=1}return n}getRegionDiscoveryFields(){const e=[];return e.push(this.regionUsed||t.EMPTY_STRING),e.push(this.regionSource||t.EMPTY_STRING),e.push(this.regionOutcome||t.EMPTY_STRING),e.join(",")}updateRegionDiscoveryMetadata(e){this.regionUsed=e.region_used,this.regionSource=e.region_source,this.regionOutcome=e.region_outcome}setCacheOutcome(e){this.cacheOutcome=e}setNativeBrokerErrorCode(e){const t=this.getLastRequests();t.nativeBrokerErrorCode=e,this.cacheManager.setServerTelemetry(this.telemetryCacheKey,t,this.correlationId)}getNativeBrokerErrorCode(){return this.getLastRequests().nativeBrokerErrorCode}clearNativeBrokerErrorCode(){const e=this.getLastRequests();delete e.nativeBrokerErrorCode,this.cacheManager.setServerTelemetry(this.telemetryCacheKey,e,this.correlationId)}static makeExtraSkuString(e){return No(e)}}
|
|
67
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */const Lo="missing_kid_error",Uo="missing_alg_error",Ho={[Lo]:"The JOSE Header for the requested JWT, JWS or JWK object requires a keyId to be configured as the 'kid' header claim. No 'kid' value was provided.",[Uo]:"The JOSE Header for the requested JWT, JWS or JWK object requires an algorithm to be specified as the 'alg' header claim. No 'alg' value was provided."};class xo extends fe{constructor(e,t){super(e,t),this.name="JoseHeaderError",Object.setPrototypeOf(this,xo.prototype)}}function Do(e){return new xo(e,Ho[e])}
|
|
68
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */class Bo{constructor(e){this.typ=e.typ,this.alg=e.alg,this.kid=e.kid}static getShrHeaderString(e){if(!e.kid)throw Do(Lo);if(!e.alg)throw Do(Uo);const t=new Bo({typ:e.typ||he.Pop,kid:e.kid,alg:e.alg});return JSON.stringify(t)}}
|
|
69
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */function Fo(e,t,r,n=5){if(e instanceof Error)return e instanceof fe?(r.errorCode=e.errorCode,r.subErrorCode=e.subError,void((e instanceof Jn||e instanceof fo)&&(r.serverErrorNo=e.errorNo))):void(e instanceof xr?r.errorCode=e.errorCode:r.errorStack?.length?t.trace("PerformanceClient.addErrorStack: Stack already exist",r.correlationId):e.stack?.length?(e.stack&&(r.errorStack=function(e,t){if(t<0)return[];const r=e.split("\n")||[],n=[],o=r[0];o.startsWith("TypeError: Cannot read property")||o.startsWith("TypeError: Cannot read properties of")||o.startsWith("TypeError: Cannot set property")||o.startsWith("TypeError: Cannot set properties of")||o.endsWith("is not a function")?n.push(Ko(o)):(o.startsWith("SyntaxError")||o.startsWith("TypeError"))&&n.push(Ko(o.replace(/['].*[']|["].*["]/g,"<redacted>")));for(let e=1;e<r.length&&!(n.length>=t);e++){const t=r[e];n.push(Ko(t))}return n}(e.stack,n)),r.errorName=e.name):t.trace("PerformanceClient.addErrorStack: Input stack is empty",r.correlationId));t.trace("PerformanceClient.addErrorStack: Input error is not instance of Error",r.correlationId)}function Ko(e){const t=e.lastIndexOf(" ")+1;if(t<1)return e;const r=e.substring(t);let n=r.lastIndexOf("/");return n=n<0?r.lastIndexOf("\\"):n,n>=0?(e.substring(0,t)+"("+r.substring(n+1)+(")"===r.charAt(r.length-1)?"":")")).trimStart():e.trimStart()}class zo{constructor(e,t,r,n,o,i,s,a){this.authority=t,this.libraryName=n,this.libraryVersion=o,this.applicationTelemetry=i,this.clientId=e,this.logger=r,this.callbacks=new Map,this.eventsByCorrelationId=new Map,this.eventStack=new Map,this.queueMeasurements=new Map,this.preQueueTimeByCorrelationId=new Map,this.intFields=s||new Set;for(const e of Qr)this.intFields.add(e);this.abbreviations=a||new Map;for(const[e,t]of zr)this.abbreviations.set(e,t)}startPerformanceMeasurement(e,t){return{}}getPreQueueTime(e,t){const r=this.preQueueTimeByCorrelationId.get(t);if(r){if(r.name===e)return r.time;this.logger.trace(`PerformanceClient.getPreQueueTime: no pre-queue time found for ${e}, unable to add queue measurement`)}else this.logger.trace(`PerformanceClient.getPreQueueTime: no pre-queue times found for correlationId: ${t}, unable to add queue measurement`)}calculateQueuedTime(e,t){return e<1?(this.logger.trace(`PerformanceClient: preQueueTime should be a positive integer and not ${e}`),0):t<1?(this.logger.trace(`PerformanceClient: currentTime should be a positive integer and not ${t}`),0):t<e?(this.logger.trace("PerformanceClient: currentTime is less than preQueueTime, check how time is being retrieved"),0):t-e}addQueueMeasurement(e,t,r,n){if(!t)return void this.logger.trace(`PerformanceClient.addQueueMeasurement: correlationId not provided for ${e}, cannot add queue measurement`);if(0===r)this.logger.trace(`PerformanceClient.addQueueMeasurement: queue time provided for ${e} is ${r}`);else if(!r)return void this.logger.trace(`PerformanceClient.addQueueMeasurement: no queue time provided for ${e}`);const o={eventName:e,queueTime:n?0:r,manuallyCompleted:n},i=this.queueMeasurements.get(t);if(i)i.push(o),this.queueMeasurements.set(t,i);else{this.logger.trace(`PerformanceClient.addQueueMeasurement: adding correlationId ${t} to queue measurements`);const e=[o];this.queueMeasurements.set(t,e)}this.preQueueTimeByCorrelationId.delete(t)}startMeasurement(e,t){const r=t||this.generateId();t||this.logger.info(`PerformanceClient: No correlation id provided for ${e}, generating`,r),this.logger.trace(`PerformanceClient: Performance measurement started for ${e}`,r);const n={eventId:this.generateId(),status:Gr,authority:this.authority,libraryName:this.libraryName,libraryVersion:this.libraryVersion,clientId:this.clientId,name:e,startTimeMs:Date.now(),correlationId:r,appName:this.applicationTelemetry?.appName,appVersion:this.applicationTelemetry?.appVersion};var o,i,s;return this.cacheEventByCorrelationId(n),o=n,i=this.abbreviations,(s=this.eventStack.get(r))&&s.push({name:i.get(o.name)||o.name}),{end:(e,t)=>this.endMeasurement({...n,...e},t),discard:()=>this.discardMeasurements(n.correlationId),add:e=>this.addFields(e,n.correlationId),increment:e=>this.incrementFields(e,n.correlationId),event:n,measurement:new jr}}endMeasurement(e,t){const r=this.eventsByCorrelationId.get(e.correlationId);if(!r)return this.logger.trace(`PerformanceClient: Measurement not found for ${e.eventId}`,e.correlationId),null;const n=e.eventId===r.eventId;let o={totalQueueTime:0,totalQueueCount:0,manuallyCompletedCount:0};e.durationMs=Math.round(e.durationMs||this.getDurationMs(e.startTimeMs));const i=JSON.stringify(function(e,t,r,n){if(!r?.length)return;const o=e=>e.length?e[e.length-1]:void 0,i=t.get(e.name)||e.name,s=o(r);if(s?.name!==i)return;const a=r?.pop();if(!a)return;const c=n instanceof fe?n.errorCode:n instanceof Error?n.name:void 0,l=n instanceof fe?n.subError:void 0;c&&a.childErr!==c&&(a.err=c,l&&(a.subErr=l)),delete a.name,delete a.childErr;const h={...a,dur:e.durationMs};e.success||(h.fail=1);const d=o(r);if(!d)return{[i]:h};let u;if(c&&(d.childErr=c),d[i]){const e=Object.keys(d).filter((e=>e.startsWith(i))).length;u=`${i}_${e+1}`}else u=i;return d[u]=h,d}(e,this.abbreviations,this.eventStack.get(r.correlationId),t));if(n?(o=this.getQueueInfo(e.correlationId),this.discardMeasurements(r.correlationId)):r.incompleteSubMeasurements?.delete(e.eventId),this.logger.trace(`PerformanceClient: Performance measurement ended for ${e.name}: ${e.durationMs} ms`,e.correlationId),t&&Fo(t,this.logger,r),!n)return r[e.name+"DurationMs"]=Math.floor(e.durationMs),{...r};n&&!t&&(r.errorCode||r.subErrorCode)&&(this.logger.trace(`PerformanceClient: Remove error and sub-error codes for root event ${e.name} as intermediate error was successfully handled`,e.correlationId),r.errorCode=void 0,r.subErrorCode=void 0);let s={...r,...e},a=0;return s.incompleteSubMeasurements?.forEach((t=>{this.logger.trace(`PerformanceClient: Incomplete submeasurement ${t.name} found for ${e.name}`,s.correlationId),a++})),s.incompleteSubMeasurements=void 0,s={...s,queuedTimeMs:o.totalQueueTime,queuedCount:o.totalQueueCount,queuedManuallyCompletedCount:o.manuallyCompletedCount,status:$r,incompleteSubsCount:a,context:i},this.truncateIntegralFields(s),this.emitEvents([s],e.correlationId),s}addFields(e,t){this.logger.trace("PerformanceClient: Updating static fields");const r=this.eventsByCorrelationId.get(t);r?this.eventsByCorrelationId.set(t,{...r,...e}):this.logger.trace("PerformanceClient: Event not found for",t)}incrementFields(e,t){this.logger.trace("PerformanceClient: Updating counters");const r=this.eventsByCorrelationId.get(t);if(r)for(const t in e){if(r.hasOwnProperty(t)){if(isNaN(Number(r[t])))return}else r[t]=0;r[t]+=e[t]}else this.logger.trace("PerformanceClient: Event not found for",t)}cacheEventByCorrelationId(e){const t=this.eventsByCorrelationId.get(e.correlationId);t?(this.logger.trace(`PerformanceClient: Performance measurement for ${e.name} added/updated`,e.correlationId),t.incompleteSubMeasurements=t.incompleteSubMeasurements||new Map,t.incompleteSubMeasurements.set(e.eventId,{name:e.name,startTimeMs:e.startTimeMs})):(this.logger.trace(`PerformanceClient: Performance measurement for ${e.name} started`,e.correlationId),this.eventsByCorrelationId.set(e.correlationId,{...e}),this.eventStack.set(e.correlationId,[]))}getQueueInfo(e){const t=this.queueMeasurements.get(e);t||this.logger.trace(`PerformanceClient: no queue measurements found for for correlationId: ${e}`);let r=0,n=0,o=0;return t?.forEach((e=>{r+=e.queueTime,n++,o+=e.manuallyCompleted?1:0})),{totalQueueTime:r,totalQueueCount:n,manuallyCompletedCount:o}}discardMeasurements(e){this.logger.trace("PerformanceClient: Performance measurements discarded",e),this.eventsByCorrelationId.delete(e),this.logger.trace("PerformanceClient: QueueMeasurements discarded",e),this.queueMeasurements.delete(e),this.logger.trace("PerformanceClient: Pre-queue times discarded",e),this.preQueueTimeByCorrelationId.delete(e),this.logger.trace("PerformanceClient: Event stack discarded",e),this.eventStack.delete(e)}addPerformanceCallback(e){for(const[t,r]of this.callbacks)if(r.toString()===e.toString())return this.logger.warning(`PerformanceClient: Performance callback is already registered with id: ${t}`),t;const t=this.generateId();return this.callbacks.set(t,e),this.logger.verbose(`PerformanceClient: Performance callback registered with id: ${t}`),t}removePerformanceCallback(e){const t=this.callbacks.delete(e);return t?this.logger.verbose(`PerformanceClient: Performance callback ${e} removed.`):this.logger.verbose(`PerformanceClient: Performance callback ${e} not removed.`),t}emitEvents(e,t){this.logger.verbose("PerformanceClient: Emitting performance events",t),this.callbacks.forEach(((r,n)=>{this.logger.trace(`PerformanceClient: Emitting event to callback ${n}`,t),r.apply(null,[e])}))}truncateIntegralFields(e){this.intFields.forEach((t=>{t in e&&"number"==typeof e[t]&&(e[t]=Math.floor(e[t]))}))}getDurationMs(e){const t=Date.now()-e;return t<0?t:0}}const Go="pkce_not_created",$o="ear_jwk_empty",Qo="ear_jwe_empty",jo="crypto_nonexistent",Wo="empty_navigate_uri",Vo="hash_empty_error",Jo="no_state_in_hash",Yo="hash_does_not_contain_known_properties",Xo="unable_to_parse_state",Zo="state_interaction_type_mismatch",ei="interaction_in_progress",ti="popup_window_error",ri="empty_window_error",ni="user_cancelled",oi="monitor_popup_timeout",ii="monitor_window_timeout",si="redirect_in_iframe",ai="block_iframe_reload",ci="block_nested_popups",li="iframe_closed_prematurely",hi="silent_logout_unsupported",di="no_account_error",ui="silent_prompt_value_error",gi="no_token_request_cache_error",pi="unable_to_parse_token_request_cache_error",mi="auth_request_not_set_error",fi="invalid_cache_type",yi="non_browser_environment",Ci="database_not_open",vi="no_network_connectivity",wi="post_request_failed",Ii="get_request_failed",Ti="failed_to_parse_response",Ai="unable_to_load_token",ki="crypto_key_not_found",Si="auth_code_required",bi="auth_code_or_nativeAccountId_required",Ei="spa_code_and_nativeAccountId_present",Ri="database_unavailable",_i="unable_to_acquire_token_from_native_platform",Pi="native_handshake_timeout",Mi="native_extension_not_installed",Oi="native_connection_not_established",Ni="uninitialized_public_client_application",qi="native_prompt_not_supported",Li="invalid_base64_string",Ui="invalid_pop_token_request",Hi="failed_to_build_headers",xi="failed_to_parse_headers",Di="failed_to_decrypt_ear_response",Bi="timed_out";var Fi=Object.freeze({__proto__:null,authCodeOrNativeAccountIdRequired:bi,authCodeRequired:Si,authRequestNotSetError:mi,blockIframeReload:ai,blockNestedPopups:ci,cryptoKeyNotFound:ki,cryptoNonExistent:jo,databaseNotOpen:Ci,databaseUnavailable:Ri,earJweEmpty:Qo,earJwkEmpty:$o,emptyNavigateUri:Wo,emptyWindowError:ri,failedToBuildHeaders:Hi,failedToDecryptEarResponse:Di,failedToParseHeaders:xi,failedToParseResponse:Ti,getRequestFailed:Ii,hashDoesNotContainKnownProperties:Yo,hashEmptyError:Vo,iframeClosedPrematurely:li,interactionInProgress:ei,invalidBase64String:Li,invalidCacheType:fi,invalidPopTokenRequest:Ui,monitorPopupTimeout:oi,monitorWindowTimeout:ii,nativeConnectionNotEstablished:Oi,nativeExtensionNotInstalled:Mi,nativeHandshakeTimeout:Pi,nativePromptNotSupported:qi,noAccountError:di,noNetworkConnectivity:vi,noStateInHash:Jo,noTokenRequestCacheError:gi,nonBrowserEnvironment:yi,pkceNotCreated:Go,popupWindowError:ti,postRequestFailed:wi,redirectInIframe:si,silentLogoutUnsupported:hi,silentPromptValueError:ui,spaCodeAndNativeAccountIdPresent:Ei,stateInteractionTypeMismatch:Zo,timedOut:Bi,unableToAcquireTokenFromNativePlatform:_i,unableToLoadToken:Ai,unableToParseState:Xo,unableToParseTokenRequestCacheError:pi,uninitializedPublicClientApplication:Ni,userCancelled:ni});const Ki="For more visit: aka.ms/msaljs/browser-errors",zi={[Go]:"The PKCE code challenge and verifier could not be generated.",[$o]:"No EAR encryption key provided. This is unexpected.",[Qo]:"Server response does not contain ear_jwe property. This is unexpected.",[jo]:"The crypto object or function is not available.",[Wo]:"Navigation URI is empty. Please check stack trace for more info.",[Vo]:`Hash value cannot be processed because it is empty. Please verify that your redirectUri is not clearing the hash. ${Ki}`,[Jo]:"Hash does not contain state. Please verify that the request originated from msal.",[Yo]:`Hash does not contain known properites. Please verify that your redirectUri is not changing the hash. ${Ki}`,[Xo]:"Unable to parse state. Please verify that the request originated from msal.",[Zo]:"Hash contains state but the interaction type does not match the caller.",[ei]:`Interaction is currently in progress. Please ensure that this interaction has been completed before calling an interactive API. ${Ki}`,[ti]:"Error opening popup window. This can happen if you are using IE or if popups are blocked in the browser.",[ri]:"window.open returned null or undefined window object.",[ni]:"User cancelled the flow.",[oi]:`Token acquisition in popup failed due to timeout. ${Ki}`,[ii]:`Token acquisition in iframe failed due to timeout. ${Ki}`,[si]:"Redirects are not supported for iframed or brokered applications. Please ensure you are using MSAL.js in a top frame of the window if using the redirect APIs, or use the popup APIs.",[ai]:`Request was blocked inside an iframe because MSAL detected an authentication response. ${Ki}`,[ci]:"Request was blocked inside a popup because MSAL detected it was running in a popup.",[li]:"The iframe being monitored was closed prematurely.",[hi]:"Silent logout not supported. Please call logoutRedirect or logoutPopup instead.",[di]:"No account object provided to acquireTokenSilent and no active account has been set. Please call setActiveAccount or provide an account on the request.",[ui]:"The value given for the prompt value is not valid for silent requests - must be set to 'none' or 'no_session'.",[gi]:"No token request found in cache.",[pi]:"The cached token request could not be parsed.",[mi]:"Auth Request not set. Please ensure initiateAuthRequest was called from the InteractionHandler",[fi]:"Invalid cache type",[yi]:"Login and token requests are not supported in non-browser environments.",[Ci]:"Database is not open!",[vi]:"No network connectivity. Check your internet connection.",[wi]:"Network request failed: If the browser threw a CORS error, check that the redirectUri is registered in the Azure App Portal as type 'SPA'",[Ii]:"Network request failed. Please check the network trace to determine root cause.",[Ti]:"Failed to parse network response. Check network trace.",[Ai]:"Error loading token to cache.",[ki]:"Cryptographic Key or Keypair not found in browser storage.",[Si]:"An authorization code must be provided (as the `code` property on the request) to this flow.",[bi]:"An authorization code or nativeAccountId must be provided to this flow.",[Ei]:"Request cannot contain both spa code and native account id.",[Ri]:"IndexedDB, which is required for persistent cryptographic key storage, is unavailable. This may be caused by browser privacy features which block persistent storage in third-party contexts.",[_i]:`Unable to acquire token from native platform. ${Ki}`,[Pi]:"Timed out while attempting to establish connection to browser extension",[Mi]:"Native extension is not installed. If you think this is a mistake call the initialize function.",[Oi]:`Connection to native platform has not been established. Please install a compatible browser extension and run initialize(). ${Ki}`,[Ni]:`You must call and await the initialize function before attempting to call any other MSAL API. ${Ki}`,[qi]:"The provided prompt is not supported by the native platform. This request should be routed to the web based flow.",[Li]:"Invalid base64 encoded string.",[Ui]:"Invalid PoP token request. The request should not have both a popKid value and signPopToken set to true.",[Hi]:"Failed to build request headers object.",[xi]:"Failed to parse response headers",[Di]:"Failed to decrypt ear response",[Bi]:"The request timed out."},Gi={pkceNotGenerated:{code:Go,desc:zi[Go]},cryptoDoesNotExist:{code:jo,desc:zi[jo]},emptyNavigateUriError:{code:Wo,desc:zi[Wo]},hashEmptyError:{code:Vo,desc:zi[Vo]},hashDoesNotContainStateError:{code:Jo,desc:zi[Jo]},hashDoesNotContainKnownPropertiesError:{code:Yo,desc:zi[Yo]},unableToParseStateError:{code:Xo,desc:zi[Xo]},stateInteractionTypeMismatchError:{code:Zo,desc:zi[Zo]},interactionInProgress:{code:ei,desc:zi[ei]},popupWindowError:{code:ti,desc:zi[ti]},emptyWindowError:{code:ri,desc:zi[ri]},userCancelledError:{code:ni,desc:zi[ni]},monitorPopupTimeoutError:{code:oi,desc:zi[oi]},monitorIframeTimeoutError:{code:ii,desc:zi[ii]},redirectInIframeError:{code:si,desc:zi[si]},blockTokenRequestsInHiddenIframeError:{code:ai,desc:zi[ai]},blockAcquireTokenInPopupsError:{code:ci,desc:zi[ci]},iframeClosedPrematurelyError:{code:li,desc:zi[li]},silentLogoutUnsupportedError:{code:hi,desc:zi[hi]},noAccountError:{code:di,desc:zi[di]},silentPromptValueError:{code:ui,desc:zi[ui]},noTokenRequestCacheError:{code:gi,desc:zi[gi]},unableToParseTokenRequestCacheError:{code:pi,desc:zi[pi]},authRequestNotSet:{code:mi,desc:zi[mi]},invalidCacheType:{code:fi,desc:zi[fi]},notInBrowserEnvironment:{code:yi,desc:zi[yi]},databaseNotOpen:{code:Ci,desc:zi[Ci]},noNetworkConnectivity:{code:vi,desc:zi[vi]},postRequestFailed:{code:wi,desc:zi[wi]},getRequestFailed:{code:Ii,desc:zi[Ii]},failedToParseNetworkResponse:{code:Ti,desc:zi[Ti]},unableToLoadTokenError:{code:Ai,desc:zi[Ai]},signingKeyNotFoundInStorage:{code:ki,desc:zi[ki]},authCodeRequired:{code:Si,desc:zi[Si]},authCodeOrNativeAccountRequired:{code:bi,desc:zi[bi]},spaCodeAndNativeAccountPresent:{code:Ei,desc:zi[Ei]},databaseUnavailable:{code:Ri,desc:zi[Ri]},unableToAcquireTokenFromNativePlatform:{code:_i,desc:zi[_i]},nativeHandshakeTimeout:{code:Pi,desc:zi[Pi]},nativeExtensionNotInstalled:{code:Mi,desc:zi[Mi]},nativeConnectionNotEstablished:{code:Oi,desc:zi[Oi]},uninitializedPublicClientApplication:{code:Ni,desc:zi[Ni]},nativePromptNotSupported:{code:qi,desc:zi[qi]},invalidBase64StringError:{code:Li,desc:zi[Li]},invalidPopTokenRequest:{code:Ui,desc:zi[Ui]}};class $i extends fe{constructor(e,t){super(e,zi[e],t),Object.setPrototypeOf(this,$i.prototype),this.name="BrowserAuthError"}}function Qi(e,t){return new $i(e,t)}const ji="invalid_grant",Wi=483,Vi=600,Ji="msal",Yi=30,Xi="msal.js.browser",Zi="53ee284d-920a-4b59-9d30-a60315b26836",es="ppnbnpeolgkicgegkbkbjmhlideopiji",ts="MATS",rs="MicrosoftEntra",ns="DOM API",os="get-token-and-sign-out",is="PlatformAuthDOMHandler",ss="PlatformAuthExtensionHandler",as="Handshake",cs="HandshakeResponse",ls="GetToken",hs="Response",ds={LocalStorage:"localStorage",SessionStorage:"sessionStorage",MemoryStorage:"memoryStorage"},us="GET",gs="POST",ps="signin",ms="signout",fs="request.origin",ys="urlHash",Cs="request.params",vs="code.verifier",ws="interaction.status",Is="request.native",Ts="msal.account.keys",As="msal.token.keys",ks="msal.version",Ss="wrapper.sku",bs="wrapper.version",Es={acquireTokenRedirect:861,acquireTokenPopup:862,ssoSilent:863,acquireTokenSilent_authCode:864,handleRedirectPromise:865,acquireTokenByCode:866,acquireTokenSilent_silentFlow:61,logout:961,logoutPopup:962};var Rs;e.InteractionType=void 0,(Rs=e.InteractionType||(e.InteractionType={})).Redirect="redirect",Rs.Popup="popup",Rs.Silent="silent",Rs.None="none";const _s={Startup:"startup",Login:"login",Logout:"logout",AcquireToken:"acquireToken",SsoSilent:"ssoSilent",HandleRedirect:"handleRedirect",None:"none"},Ps={scopes:c},Ms="msal.db",Os=`${Ms}.keys`,Ns={Default:0,AccessToken:1,AccessTokenAndRefreshToken:2,RefreshToken:3,RefreshTokenAndNetwork:4,Skip:5},qs=[Ns.Default,Ns.Skip,Ns.RefreshTokenAndNetwork],Ls="msal.browser.platform.auth.dom";function Us(e){return encodeURIComponent(xs(e).replace(/=/g,"").replace(/\+/g,"-").replace(/\//g,"_"))}function Hs(e){return Ds(e).replace(/=/g,"").replace(/\+/g,"-").replace(/\//g,"_")}function xs(e){return Ds((new TextEncoder).encode(e))}function Ds(e){const t=Array.from(e,(e=>String.fromCodePoint(e))).join("");return btoa(t)}function Bs(e){return(new TextDecoder).decode(Fs(e))}function Fs(e){let t=e.replace(/-/g,"+").replace(/_/g,"/");switch(t.length%4){case 0:break;case 2:t+="==";break;case 3:t+="=";break;default:throw Qi(Li)}const r=atob(t);return Uint8Array.from(r,(e=>e.codePointAt(0)||0))}const Ks="AES-GCM",zs="HKDF",Gs="SHA-256",$s=new Uint8Array([1,0,1]),Qs="0123456789abcdef",js=new Uint32Array(1),Ws="raw",Vs="encrypt",Js="decrypt",Ys={name:"RSASSA-PKCS1-v1_5",hash:Gs,modulusLength:2048,publicExponent:$s};async function Xs(e,t,r){t?.addQueueMeasurement(Kr.Sha256Digest,r);const n=(new TextEncoder).encode(e);return window.crypto.subtle.digest(Gs,n)}function Zs(e){return window.crypto.getRandomValues(e)}function ea(){return window.crypto.getRandomValues(js),js[0]}function ta(){const e=Date.now(),t=1024*ea()+(1023&ea()),r=new Uint8Array(16),n=Math.trunc(t/2**30),o=t&2**30-1,i=ea();r[0]=e/2**40,r[1]=e/2**32,r[2]=e/2**24,r[3]=e/65536,r[4]=e/256,r[5]=e,r[6]=112|n>>>8,r[7]=n,r[8]=128|o>>>24,r[9]=o>>>16,r[10]=o>>>8,r[11]=o,r[12]=i>>>24,r[13]=i>>>16,r[14]=i>>>8,r[15]=i;let s="";for(let e=0;e<r.length;e++)s+=Qs.charAt(r[e]>>>4),s+=Qs.charAt(15&r[e]),3!==e&&5!==e&&7!==e&&9!==e||(s+="-");return s}async function ra(e){return window.crypto.subtle.exportKey("jwk",e)}async function na(){const e=await ia(),t={alg:"dir",kty:"oct",k:Hs(new Uint8Array(e))};return xs(JSON.stringify(t))}async function oa(e,t){const r=t.split(".");if(5!==r.length)throw Qi(Di,"jwe_length");const n=await async function(e){const t=Bs(e),r=Fs(JSON.parse(t).k);return window.crypto.subtle.importKey(Ws,r,Ks,!1,[Js])}(e).catch((()=>{throw Qi(Di,"import_key")}));try{const e=(new TextEncoder).encode(r[0]),t=Fs(r[2]),o=Fs(r[3]),i=Fs(r[4]),s=8*i.byteLength,a=new Uint8Array(o.length+i.length);a.set(o),a.set(i,o.length);const c=await window.crypto.subtle.decrypt({name:Ks,iv:t,tagLength:s,additionalData:e},n,a);return(new TextDecoder).decode(c)}catch(e){throw Qi(Di,"decrypt")}}async function ia(){const e=await window.crypto.subtle.generateKey({name:Ks,length:256},!0,[Vs,Js]);return window.crypto.subtle.exportKey(Ws,e)}async function sa(e){return window.crypto.subtle.importKey(Ws,e,zs,!1,["deriveKey"])}async function aa(e,t,r){return window.crypto.subtle.deriveKey({name:zs,salt:t,hash:Gs,info:(new TextEncoder).encode(r)},e,{name:Ks,length:256},!1,[Vs,Js])}async function ca(e,t,r){const n=(new TextEncoder).encode(t),o=window.crypto.getRandomValues(new Uint8Array(16)),i=await aa(e,o,r),s=await window.crypto.subtle.encrypt({name:Ks,iv:new Uint8Array(12)},i,n);return{data:Hs(new Uint8Array(s)),nonce:Hs(o)}}async function la(e,t,r,n){const o=Fs(n),i=await aa(e,Fs(t),r),s=await window.crypto.subtle.decrypt({name:Ks,iv:new Uint8Array(12)},i,o);return(new TextDecoder).decode(s)}async function ha(e){const t=await Xs(e);return Hs(new Uint8Array(t))}const da="storage_not_supported",ua="stubbed_public_client_application_called",ga="in_mem_redirect_unavailable";var pa=Object.freeze({__proto__:null,inMemRedirectUnavailable:ga,storageNotSupported:da,stubbedPublicClientApplicationCalled:ua});const ma={[da]:"Given storage configuration option was not supported.",[ua]:"Stub instance of Public Client Application was called. If using msal-react, please ensure context is not used without a provider. For more visit: aka.ms/msaljs/browser-errors",[ga]:"Redirect cannot be supported. In-memory storage was selected and storeAuthStateInCookie=false, which would cause the library to be unable to handle the incoming hash. If you would like to use the redirect API, please use session/localStorage or set storeAuthStateInCookie=true."},fa={storageNotSupportedError:{code:da,desc:ma[da]},stubPcaInstanceCalled:{code:ua,desc:ma[ua]},inMemRedirectUnavailable:{code:ga,desc:ma[ga]}};class ya extends fe{constructor(e,t){super(e,t),this.name="BrowserConfigurationAuthError",Object.setPrototypeOf(this,ya.prototype)}}function Ca(e){return new ya(e,ma[e])}function va(e){e.location.hash="","function"==typeof e.history.replaceState&&e.history.replaceState(null,"",`${e.location.origin}${e.location.pathname}${e.location.search}`)}function wa(e){const t=e.split("#");t.shift(),window.location.hash=t.length>0?t.join("#"):""}function Ia(){return window.parent!==window}function Ta(){return"undefined"!=typeof window&&!!window.opener&&window.opener!==window&&"string"==typeof window.name&&0===window.name.indexOf(`${Ji}.`)}function Aa(){return"undefined"!=typeof window&&window.location?window.location.href.split("?")[0].split("#")[0]:""}function ka(){const e=new _r(window.location.href).getUrlComponents();return`${e.Protocol}//${e.HostNameAndPort}/`}function Sa(){if(_r.hashContainsKnownProperties(window.location.hash)&&Ia())throw Qi(ai)}function ba(e){if(Ia()&&!e)throw Qi(si)}function Ea(){if(Ta())throw Qi(ci)}function Ra(){if("undefined"==typeof window)throw Qi(yi)}function _a(e){if(!e)throw Qi(Ni)}function Pa(e){Ra(),Sa(),Ea(),_a(e)}function Ma(e,t){if(Pa(e),ba(t.system.allowRedirectInIframe),t.cache.cacheLocation===ds.MemoryStorage&&!t.cache.storeAuthStateInCookie)throw Ca(ga)}function Oa(e){const t=document.createElement("link");t.rel="preconnect",t.href=new URL(e).origin,t.crossOrigin="anonymous",document.head.appendChild(t),window.setTimeout((()=>{try{document.head.removeChild(t)}catch{}}),1e4)}function Na(){return ta()}var qa=Object.freeze({__proto__:null,blockAPICallsBeforeInitialize:_a,blockAcquireTokenInPopups:Ea,blockNonBrowserEnvironment:Ra,blockRedirectInIframe:ba,blockReloadInHiddenIframes:Sa,clearHash:va,createGuid:Na,getCurrentUri:Aa,getHomepage:ka,invoke:zn,invokeAsync:Gn,isInIframe:Ia,isInPopup:Ta,preconnect:Oa,preflightCheck:Pa,redirectPreflightCheck:Ma,replaceHash:wa});class La{navigateInternal(e,t){return La.defaultNavigateWindow(e,t)}navigateExternal(e,t){return La.defaultNavigateWindow(e,t)}static defaultNavigateWindow(e,t){return t.noHistory?window.location.replace(e):window.location.assign(e),new Promise(((e,r)=>{setTimeout((()=>{r(Qi(Bi,"failed_to_redirect"))}),t.timeout)}))}}class Ua{async sendGetRequestAsync(e,t){let r,n={},o=0;const i=Ha(t);try{r=await fetch(e,{method:us,headers:i})}catch(e){throw eo(Qi(window.navigator.onLine?Ii:vi),void 0,void 0,e)}n=xa(r.headers);try{return o=r.status,{headers:n,body:await r.json(),status:o}}catch(e){throw eo(Qi(Ti),o,n,e)}}async sendPostRequestAsync(e,t){const r=t&&t.body||"",n=Ha(t);let o,i=0,s={};try{o=await fetch(e,{method:gs,headers:n,body:r})}catch(e){throw eo(Qi(window.navigator.onLine?wi:vi),void 0,void 0,e)}s=xa(o.headers);try{return i=o.status,{headers:s,body:await o.json(),status:i}}catch(e){throw eo(Qi(Ti),i,s,e)}}}function Ha(e){try{const t=new Headers;if(!e||!e.headers)return t;const r=e.headers;return Object.entries(r).forEach((([e,r])=>{t.append(e,r)})),t}catch(e){throw eo(Qi(Hi),void 0,void 0,e)}}function xa(e){try{const t={};return e.forEach(((e,r)=>{t[r]=e})),t}catch(e){throw Qi(xi)}}const Da=1e4;const Ba="@azure/msal-browser",Fa="4.15.0";class Ka{static loggerCallback(t,r){switch(t){case e.LogLevel.Error:return void console.error(r);case e.LogLevel.Info:return void console.info(r);case e.LogLevel.Verbose:return void console.debug(r);case e.LogLevel.Warning:return void console.warn(r);default:return void console.log(r)}}constructor(r){let n;this.browserEnvironment="undefined"!=typeof window,this.config=function({auth:r,cache:n,system:o,telemetry:i},s){const a={clientId:t.EMPTY_STRING,authority:`${t.DEFAULT_AUTHORITY}`,knownAuthorities:[],cloudDiscoveryMetadata:t.EMPTY_STRING,authorityMetadata:t.EMPTY_STRING,redirectUri:"undefined"!=typeof window?Aa():"",postLogoutRedirectUri:t.EMPTY_STRING,navigateToLoginRequestUrl:!0,clientCapabilities:[],protocolMode:kr.AAD,OIDCOptions:{serverResponseType:E.FRAGMENT,defaultScopes:[t.OPENID_SCOPE,t.PROFILE_SCOPE,t.OFFLINE_ACCESS_SCOPE]},azureCloudOptions:{azureCloudInstance:Ct.None,tenant:t.EMPTY_STRING},skipAuthorityMetadataCache:!1,supportsNestedAppAuth:!1,instanceAware:!1,encodeExtraQueryParams:!1},c={cacheLocation:ds.SessionStorage,temporaryCacheLocation:ds.SessionStorage,storeAuthStateInCookie:!1,secureCookies:!1,cacheMigrationEnabled:!(!n||n.cacheLocation!==ds.LocalStorage),claimsBasedCachingEnabled:!1},l={loggerCallback:()=>{},logLevel:e.LogLevel.Info,piiLoggingEnabled:!1},h={...{...Vr,loggerOptions:l,networkClient:s?new Ua:_o,navigationClient:new La,loadFrameTimeout:0,windowHashTimeout:o?.loadFrameTimeout||6e4,iframeHashTimeout:o?.loadFrameTimeout||Da,navigateFrameWait:0,redirectNavigationTimeout:3e4,asyncPopups:!1,allowRedirectInIframe:!1,allowPlatformBroker:!1,nativeBrokerHandshakeTimeout:o?.nativeBrokerHandshakeTimeout||2e3,pollIntervalMilliseconds:Yi},...o,loggerOptions:o?.loggerOptions||l},d={application:{appName:t.EMPTY_STRING,appVersion:t.EMPTY_STRING},client:new Wr};r?.protocolMode!==kr.OIDC&&r?.OIDCOptions&&new mt(h.loggerOptions).warning(JSON.stringify(dr(or)));if(r?.protocolMode&&r.protocolMode===kr.OIDC&&h?.allowPlatformBroker)throw dr(ir);return{auth:{...a,...r,OIDCOptions:{...a.OIDCOptions,...r?.OIDCOptions}},cache:{...c,...n},system:h,telemetry:{...d,...i}}}(r,this.browserEnvironment);try{n=window[ds.SessionStorage]}catch(e){}const o=n?.getItem("msal.browser.log.level"),i=n?.getItem("msal.browser.log.pii")?.toLowerCase(),s="true"===i||"false"!==i&&void 0,a={...this.config.system.loggerOptions},c=o&&Object.keys(e.LogLevel).includes(o)?e.LogLevel[o]:void 0;c&&(a.loggerCallback=Ka.loggerCallback,a.logLevel=c),void 0!==s&&(a.piiLoggingEnabled=s),this.logger=new mt(a,Ba,Fa),this.available=!1}getConfig(){return this.config}getLogger(){return this.logger}isAvailable(){return this.available}isBrowserEnvironment(){return this.browserEnvironment}}const za="USER_INTERACTION_REQUIRED",Ga="USER_CANCEL",$a="NO_NETWORK",Qa="TRANSIENT_ERROR",ja="PERSISTENT_ERROR",Wa="DISABLED",Va="ACCOUNT_UNAVAILABLE",Ja="NESTED_APP_AUTH_UNAVAILABLE";class Ya{static async initializeNestedAppAuthBridge(){if(void 0===window)throw new Error("window is undefined");if(void 0===window.nestedAppAuthBridge)throw new Error("window.nestedAppAuthBridge is undefined");try{window.nestedAppAuthBridge.addEventListener("message",(e=>{const t="string"==typeof e?e:e.data,r=JSON.parse(t),n=Ya.bridgeRequests.find((e=>e.requestId===r.requestId));void 0!==n&&(Ya.bridgeRequests.splice(Ya.bridgeRequests.indexOf(n),1),r.success?n.resolve(r):n.reject(r.error))}));const e=await new Promise(((e,t)=>{const r=Ya.buildRequest("GetInitContext"),n={requestId:r.requestId,method:r.method,resolve:e,reject:t};Ya.bridgeRequests.push(n),window.nestedAppAuthBridge.postMessage(JSON.stringify(r))}));return Ya.validateBridgeResultOrThrow(e.initContext)}catch(e){throw window.console.log(e),e}}getTokenInteractive(e){return this.getToken("GetTokenPopup",e)}getTokenSilent(e){return this.getToken("GetToken",e)}async getToken(e,t){const r=await this.sendRequest(e,{tokenParams:t});return{token:Ya.validateBridgeResultOrThrow(r.token),account:Ya.validateBridgeResultOrThrow(r.account)}}getHostCapabilities(){return this.capabilities??null}getAccountContext(){return this.accountContext?this.accountContext:null}static buildRequest(e,t){return{messageType:"NestedAppAuthRequest",method:e,requestId:ta(),sendTime:Date.now(),clientLibrary:Xi,clientLibraryVersion:Fa,...t}}sendRequest(e,t){const r=Ya.buildRequest(e,t);return new Promise(((e,t)=>{const n={requestId:r.requestId,method:r.method,resolve:e,reject:t};Ya.bridgeRequests.push(n),window.nestedAppAuthBridge.postMessage(JSON.stringify(r))}))}static validateBridgeResultOrThrow(e){if(void 0===e){throw{status:Ja}}return e}constructor(e,t,r,n){this.sdkName=e,this.sdkVersion=t,this.accountContext=r,this.capabilities=n}static async create(){const e=await Ya.initializeNestedAppAuthBridge();return new Ya(e.sdkName,e.sdkVersion,e.accountContext,e.capabilities)}}Ya.bridgeRequests=[];class Xa extends Ka{constructor(){super(...arguments),this.bridgeProxy=void 0,this.accountContext=null}getModuleName(){return Xa.MODULE_NAME}getId(){return Xa.ID}getBridgeProxy(){return this.bridgeProxy}async initialize(){try{if("undefined"!=typeof window){"function"==typeof window.__initializeNestedAppAuth&&await window.__initializeNestedAppAuth();const e=await Ya.create();this.accountContext=e.getAccountContext(),this.bridgeProxy=e,this.available=void 0!==e}}catch(e){this.logger.infoPii(`Could not initialize Nested App Auth bridge (${e})`)}return this.logger.info(`Nested App Auth Bridge available: ${this.available}`),this.available}}Xa.MODULE_NAME="",Xa.ID="NestedAppOperatingContext";class Za extends Ka{getModuleName(){return Za.MODULE_NAME}getId(){return Za.ID}async initialize(){return this.available="undefined"!=typeof window,this.available}}Za.MODULE_NAME="",Za.ID="StandardOperatingContext";class ec{constructor(){this.dbName=Ms,this.version=1,this.tableName=Os,this.dbOpen=!1}async open(){return new Promise(((e,t)=>{const r=window.indexedDB.open(this.dbName,this.version);r.addEventListener("upgradeneeded",(e=>{e.target.result.createObjectStore(this.tableName)})),r.addEventListener("success",(t=>{const r=t;this.db=r.target.result,this.dbOpen=!0,e()})),r.addEventListener("error",(()=>t(Qi(Ri))))}))}closeConnection(){const e=this.db;e&&this.dbOpen&&(e.close(),this.dbOpen=!1)}async validateDbIsOpen(){if(!this.dbOpen)return this.open()}async getItem(e){return await this.validateDbIsOpen(),new Promise(((t,r)=>{if(!this.db)return r(Qi(Ci));const n=this.db.transaction([this.tableName],"readonly").objectStore(this.tableName).get(e);n.addEventListener("success",(e=>{const r=e;this.closeConnection(),t(r.target.result)})),n.addEventListener("error",(e=>{this.closeConnection(),r(e)}))}))}async setItem(e,t){return await this.validateDbIsOpen(),new Promise(((r,n)=>{if(!this.db)return n(Qi(Ci));const o=this.db.transaction([this.tableName],"readwrite").objectStore(this.tableName).put(t,e);o.addEventListener("success",(()=>{this.closeConnection(),r()})),o.addEventListener("error",(e=>{this.closeConnection(),n(e)}))}))}async removeItem(e){return await this.validateDbIsOpen(),new Promise(((t,r)=>{if(!this.db)return r(Qi(Ci));const n=this.db.transaction([this.tableName],"readwrite").objectStore(this.tableName).delete(e);n.addEventListener("success",(()=>{this.closeConnection(),t()})),n.addEventListener("error",(e=>{this.closeConnection(),r(e)}))}))}async getKeys(){return await this.validateDbIsOpen(),new Promise(((e,t)=>{if(!this.db)return t(Qi(Ci));const r=this.db.transaction([this.tableName],"readonly").objectStore(this.tableName).getAllKeys();r.addEventListener("success",(t=>{const r=t;this.closeConnection(),e(r.target.result)})),r.addEventListener("error",(e=>{this.closeConnection(),t(e)}))}))}async containsKey(e){return await this.validateDbIsOpen(),new Promise(((t,r)=>{if(!this.db)return r(Qi(Ci));const n=this.db.transaction([this.tableName],"readonly").objectStore(this.tableName).count(e);n.addEventListener("success",(e=>{const r=e;this.closeConnection(),t(1===r.target.result)})),n.addEventListener("error",(e=>{this.closeConnection(),r(e)}))}))}async deleteDatabase(){return this.db&&this.dbOpen&&this.closeConnection(),new Promise(((e,t)=>{const r=window.indexedDB.deleteDatabase(Ms),n=setTimeout((()=>t(!1)),200);r.addEventListener("success",(()=>(clearTimeout(n),e(!0)))),r.addEventListener("blocked",(()=>(clearTimeout(n),e(!0)))),r.addEventListener("error",(()=>(clearTimeout(n),t(!1))))}))}}class tc{constructor(){this.cache=new Map}async initialize(){}getItem(e){return this.cache.get(e)||null}getUserData(e){return this.getItem(e)}setItem(e,t){this.cache.set(e,t)}async setUserData(e,t){this.setItem(e,t)}removeItem(e){this.cache.delete(e)}getKeys(){const e=[];return this.cache.forEach(((t,r)=>{e.push(r)})),e}containsKey(e){return this.cache.has(e)}clear(){this.cache.clear()}}class rc{constructor(e){this.inMemoryCache=new tc,this.indexedDBCache=new ec,this.logger=e}handleDatabaseAccessError(e){if(!(e instanceof $i&&e.errorCode===Ri))throw e;this.logger.error("Could not access persistent storage. This may be caused by browser privacy features which block persistent storage in third-party contexts.")}async getItem(e){const t=this.inMemoryCache.getItem(e);if(!t)try{return this.logger.verbose("Queried item not found in in-memory cache, now querying persistent storage."),await this.indexedDBCache.getItem(e)}catch(e){this.handleDatabaseAccessError(e)}return t}async setItem(e,t){this.inMemoryCache.setItem(e,t);try{await this.indexedDBCache.setItem(e,t)}catch(e){this.handleDatabaseAccessError(e)}}async removeItem(e){this.inMemoryCache.removeItem(e);try{await this.indexedDBCache.removeItem(e)}catch(e){this.handleDatabaseAccessError(e)}}async getKeys(){const e=this.inMemoryCache.getKeys();if(0===e.length)try{return this.logger.verbose("In-memory cache is empty, now querying persistent storage."),await this.indexedDBCache.getKeys()}catch(e){this.handleDatabaseAccessError(e)}return e}async containsKey(e){const t=this.inMemoryCache.containsKey(e);if(!t)try{return this.logger.verbose("Key not found in in-memory cache, now querying persistent storage."),await this.indexedDBCache.containsKey(e)}catch(e){this.handleDatabaseAccessError(e)}return t}clearInMemory(){this.logger.verbose("Deleting in-memory keystore"),this.inMemoryCache.clear(),this.logger.verbose("In-memory keystore deleted")}async clearPersistent(){try{this.logger.verbose("Deleting persistent keystore");const e=await this.indexedDBCache.deleteDatabase();return e&&this.logger.verbose("Persistent keystore deleted"),e}catch(e){return this.handleDatabaseAccessError(e),!1}}}class nc{constructor(e,t,r){this.logger=e,function(e){if(!window)throw Qi(yi);if(!window.crypto)throw Qi(jo);if(!e&&!window.crypto.subtle)throw Qi(jo,"crypto_subtle_undefined")}(r??!1),this.cache=new rc(this.logger),this.performanceClient=t}createNewGuid(){return ta()}base64Encode(e){return xs(e)}base64Decode(e){return Bs(e)}base64UrlEncode(e){return Us(e)}encodeKid(e){return this.base64UrlEncode(JSON.stringify({kid:e}))}async getPublicKeyThumbprint(e){const t=this.performanceClient?.startMeasurement(Kr.CryptoOptsGetPublicKeyThumbprint,e.correlationId),r=await async function(e,t){return window.crypto.subtle.generateKey(Ys,e,t)}(nc.EXTRACTABLE,nc.POP_KEY_USAGES),n=await ra(r.publicKey),o=oc({e:n.e,kty:n.kty,n:n.n}),i=await this.hashString(o),s=await ra(r.privateKey),a=await async function(e,t,r){return window.crypto.subtle.importKey("jwk",e,Ys,t,r)}(s,!1,["sign"]);return await this.cache.setItem(i,{privateKey:a,publicKey:r.publicKey,requestMethod:e.resourceRequestMethod,requestUri:e.resourceRequestUri}),t&&t.end({success:!0}),i}async removeTokenBindingKey(e){await this.cache.removeItem(e);if(await this.cache.containsKey(e))throw ut(et)}async clearKeystore(){this.cache.clearInMemory();try{return await this.cache.clearPersistent(),!0}catch(e){return e instanceof Error?this.logger.error(`Clearing keystore failed with error: ${e.message}`):this.logger.error("Clearing keystore failed with unknown error"),!1}}async signJwt(e,t,r,n){const o=this.performanceClient?.startMeasurement(Kr.CryptoOptsSignJwt,n),i=await this.cache.getItem(t);if(!i)throw Qi(ki);const s=await ra(i.publicKey),a=oc(s),c=Us(JSON.stringify({kid:t})),l=Us(Bo.getShrHeaderString({...r?.header,alg:s.alg,kid:c}));e.cnf={jwk:JSON.parse(a)};const h=`${l}.${Us(JSON.stringify(e))}`,d=(new TextEncoder).encode(h),u=await async function(e,t){return window.crypto.subtle.sign(Ys,e,t)}(i.privateKey,d),g=`${h}.${Hs(new Uint8Array(u))}`;return o&&o.end({success:!0}),g}async hashString(e){return ha(e)}}function oc(e){return JSON.stringify(e,Object.keys(e).sort())}nc.POP_KEY_USAGES=["sign","verify"],nc.EXTRACTABLE=!0;const ic=864e5,sc="Lax",ac="None";class cc{initialize(){return Promise.resolve()}getItem(e){const t=`${encodeURIComponent(e)}`,r=document.cookie.split(";");for(let e=0;e<r.length;e++){const n=r[e],[o,...i]=decodeURIComponent(n).trim().split("="),s=i.join("=");if(o===t)return s}return""}getUserData(){throw ut(st)}setItem(e,t,r,n=!0,o=sc){let i=`${encodeURIComponent(e)}=${encodeURIComponent(t)};path=/;SameSite=${o};`;if(r){const e=function(e){const t=new Date,r=new Date(t.getTime()+e*ic);return r.toUTCString()}(r);i+=`expires=${e};`}(n||o===ac)&&(i+="Secure;"),document.cookie=i}async setUserData(){return Promise.reject(ut(st))}removeItem(e){this.setItem(e,"",-1)}getKeys(){const e=document.cookie.split(";"),t=[];return e.forEach((e=>{const r=decodeURIComponent(e).trim().split("=");t.push(r[0])})),t}containsKey(e){return this.getKeys().includes(e)}}function lc(e){const t=e.getItem(Ts);return t?JSON.parse(t):[]}function hc(e,t){const r=t.getItem(`${As}.${e}`);if(r){const e=JSON.parse(r);if(e&&e.hasOwnProperty("idToken")&&e.hasOwnProperty("accessToken")&&e.hasOwnProperty("refreshToken"))return e}return{idToken:[],accessToken:[],refreshToken:[]}}const dc="msal.cache.encryption";class uc{constructor(e,t,r){if(!window.localStorage)throw Ca(da);this.memoryStorage=new tc,this.initialized=!1,this.clientId=e,this.logger=t,this.performanceClient=r,this.broadcast=new BroadcastChannel("msal.broadcast.cache")}async initialize(e){const t=new cc,r=t.getItem(dc);let n={key:"",id:""};if(r)try{n=JSON.parse(r)}catch(e){}if(n.key&&n.id){const t=zn(Fs,Kr.Base64Decode,this.logger,this.performanceClient,e)(n.key);this.encryptionCookie={id:n.id,key:await Gn(sa,Kr.GenerateHKDF,this.logger,this.performanceClient,e)(t)},await Gn(this.importExistingCache.bind(this),Kr.ImportExistingCache,this.logger,this.performanceClient,e)(e)}else{this.clear();const r=ta(),n=await Gn(ia,Kr.GenerateBaseKey,this.logger,this.performanceClient,e)(),o=zn(Hs,Kr.UrlEncodeArr,this.logger,this.performanceClient,e)(new Uint8Array(n));this.encryptionCookie={id:r,key:await Gn(sa,Kr.GenerateHKDF,this.logger,this.performanceClient,e)(n)};const i={id:r,key:o};t.setItem(dc,JSON.stringify(i),0,!0,ac)}this.broadcast.addEventListener("message",this.updateCache.bind(this)),this.initialized=!0}getItem(e){return window.localStorage.getItem(e)}getUserData(e){if(!this.initialized)throw Qi(Ni);return this.memoryStorage.getItem(e)}setItem(e,t){window.localStorage.setItem(e,t)}async setUserData(e,t,r,n){if(!this.initialized||!this.encryptionCookie)throw Qi(Ni);const{data:o,nonce:i}=await Gn(ca,Kr.Encrypt,this.logger,this.performanceClient,r)(this.encryptionCookie.key,t,this.getContext(e)),s={id:this.encryptionCookie.id,nonce:i,data:o,lastUpdatedAt:n};this.memoryStorage.setItem(e,t),this.setItem(e,JSON.stringify(s)),this.broadcast.postMessage({key:e,value:t,context:this.getContext(e)})}removeItem(e){this.memoryStorage.containsKey(e)&&(this.memoryStorage.removeItem(e),this.broadcast.postMessage({key:e,value:null,context:this.getContext(e)})),window.localStorage.removeItem(e)}getKeys(){return Object.keys(window.localStorage)}containsKey(e){return window.localStorage.hasOwnProperty(e)}clear(){this.memoryStorage.clear();lc(this).forEach((e=>this.removeItem(e)));const e=hc(this.clientId,this);e.idToken.forEach((e=>this.removeItem(e))),e.accessToken.forEach((e=>this.removeItem(e))),e.refreshToken.forEach((e=>this.removeItem(e))),this.getKeys().forEach((e=>{(e.startsWith(t.CACHE_PREFIX)||-1!==e.indexOf(this.clientId))&&this.removeItem(e)}))}async importExistingCache(e){if(!this.encryptionCookie)return;let t=lc(this);t=await this.importArray(t,e),this.setItem(Ts,JSON.stringify(t));const r=hc(this.clientId,this);r.idToken=await this.importArray(r.idToken,e),r.accessToken=await this.importArray(r.accessToken,e),r.refreshToken=await this.importArray(r.refreshToken,e),this.setItem(`${As}.${this.clientId}`,JSON.stringify(r))}async getItemFromEncryptedCache(e,t){if(!this.encryptionCookie)return null;const r=this.getItem(e);if(!r)return null;let n;try{n=JSON.parse(r)}catch(e){return null}return n.id&&n.nonce&&n.data?n.id!==this.encryptionCookie.id?(this.performanceClient.incrementFields({encryptedCacheExpiredCount:1},t),null):Gn(la,Kr.Decrypt,this.logger,this.performanceClient,t)(this.encryptionCookie.key,n.nonce,this.getContext(e),n.data):(this.performanceClient.incrementFields({unencryptedCacheCount:1},t),null)}async importArray(e,t){const r=[],n=[];return e.forEach((e=>{const o=this.getItemFromEncryptedCache(e,t).then((t=>{t?(this.memoryStorage.setItem(e,t),r.push(e)):this.removeItem(e)}));n.push(o)})),await Promise.all(n),r}getContext(e){let t="";return e.includes(this.clientId)&&(t=this.clientId),t}updateCache(e){this.logger.trace("Updating internal cache from broadcast event");const t=this.performanceClient.startMeasurement(Kr.LocalStorageUpdated);t.add({isBackground:!0});const{key:r,value:n,context:o}=e.data;return r?o&&o!==this.clientId?(this.logger.trace(`Ignoring broadcast event from clientId: ${o}`),void t.end({success:!1,errorCode:"contextMismatch"})):(n?(this.memoryStorage.setItem(r,n),this.logger.verbose("Updated item in internal cache")):(this.memoryStorage.removeItem(r),this.logger.verbose("Removed item from internal cache")),void t.end({success:!0})):(this.logger.error("Broadcast event missing key"),void t.end({success:!1,errorCode:"noKey"}))}}class gc{constructor(){if(!window.sessionStorage)throw Ca(da)}async initialize(){}getItem(e){return window.sessionStorage.getItem(e)}getUserData(e){return this.getItem(e)}setItem(e,t){window.sessionStorage.setItem(e,t)}async setUserData(e,t){this.setItem(e,t)}removeItem(e){window.sessionStorage.removeItem(e)}getKeys(){return Object.keys(window.sessionStorage)}containsKey(e){return window.sessionStorage.hasOwnProperty(e)}}const pc={INITIALIZE_START:"msal:initializeStart",INITIALIZE_END:"msal:initializeEnd",ACCOUNT_ADDED:"msal:accountAdded",ACCOUNT_REMOVED:"msal:accountRemoved",ACTIVE_ACCOUNT_CHANGED:"msal:activeAccountChanged",LOGIN_START:"msal:loginStart",LOGIN_SUCCESS:"msal:loginSuccess",LOGIN_FAILURE:"msal:loginFailure",ACQUIRE_TOKEN_START:"msal:acquireTokenStart",ACQUIRE_TOKEN_SUCCESS:"msal:acquireTokenSuccess",ACQUIRE_TOKEN_FAILURE:"msal:acquireTokenFailure",ACQUIRE_TOKEN_NETWORK_START:"msal:acquireTokenFromNetworkStart",SSO_SILENT_START:"msal:ssoSilentStart",SSO_SILENT_SUCCESS:"msal:ssoSilentSuccess",SSO_SILENT_FAILURE:"msal:ssoSilentFailure",ACQUIRE_TOKEN_BY_CODE_START:"msal:acquireTokenByCodeStart",ACQUIRE_TOKEN_BY_CODE_SUCCESS:"msal:acquireTokenByCodeSuccess",ACQUIRE_TOKEN_BY_CODE_FAILURE:"msal:acquireTokenByCodeFailure",HANDLE_REDIRECT_START:"msal:handleRedirectStart",HANDLE_REDIRECT_END:"msal:handleRedirectEnd",POPUP_OPENED:"msal:popupOpened",LOGOUT_START:"msal:logoutStart",LOGOUT_SUCCESS:"msal:logoutSuccess",LOGOUT_FAILURE:"msal:logoutFailure",LOGOUT_END:"msal:logoutEnd",RESTORE_FROM_BFCACHE:"msal:restoreFromBFCache",BROKER_CONNECTION_ESTABLISHED:"msal:brokerConnectionEstablished"};class mc extends Br{constructor(e,t,r,n,o,i,s){super(e,r,n,o,s),this.cacheConfig=t,this.logger=n,this.internalStorage=new tc,this.browserStorage=fc(e,t.cacheLocation,n,o),this.temporaryCacheStorage=fc(e,t.temporaryCacheLocation,n,o),this.cookieStorage=new cc,this.eventHandler=i}async initialize(e){await this.browserStorage.initialize(e),this.trackVersionChanges(e)}trackVersionChanges(e){const t=this.browserStorage.getItem(ks);t&&(this.logger.info(`MSAL.js was last initialized by version: ${t}`),this.performanceClient.addFields({previousLibraryVersion:t},e)),t!==Fa&&this.setItem(ks,Fa,e)}validateAndParseJson(e){try{const t=JSON.parse(e);return t&&"object"==typeof t?t:null}catch(e){return null}}setItem(e,t,r){let n=[];for(let o=0;o<=20;o++)try{this.browserStorage.setItem(e,t),o>0&&this.removeAccessTokenKeys(n.slice(0,o),r);break}catch(i){const s=Dr(i);if(!(s.errorCode===Lr&&o<20))throw s;if(n.length||(n=e===`${As}.${this.clientId}`?JSON.parse(t).accessToken:this.getTokenKeys().accessToken),n.length<=o)throw s;this.removeAccessToken(n[o],r,!1)}}async setUserData(e,t,r,n){let o=[];for(let i=0;i<=20;i++)try{await Gn(this.browserStorage.setUserData.bind(this.browserStorage),Kr.SetUserData,this.logger,this.performanceClient)(e,t,r,n),i>0&&this.removeAccessTokenKeys(o.slice(0,i),r);break}catch(e){const t=Dr(e);if(!(t.errorCode===Lr&&i<20))throw t;if(o.length||(o=this.getTokenKeys().accessToken),o.length<=i)throw t;this.removeAccessToken(o[i],r,!1)}}getAccount(e,t){this.logger.trace("BrowserCacheManager.getAccount called");const r=this.browserStorage.getUserData(e);if(!r)return this.removeAccountKeyFromMap(e,t),null;const n=this.validateAndParseJson(r);return n&&Sr.isAccountEntity(n)?Br.toObject(new Sr,n):null}async setAccount(e,t){this.logger.trace("BrowserCacheManager.setAccount called");const r=e.generateAccountKey(),n=Date.now().toString();e.lastUpdatedAt=n,await this.setUserData(r,JSON.stringify(e),t,n);const o=this.addAccountKeyToMap(r,t);this.cacheConfig.cacheLocation===ds.LocalStorage&&o&&this.eventHandler.emitEvent(pc.ACCOUNT_ADDED,void 0,e.getAccountInfo())}getAccountKeys(){return lc(this.browserStorage)}addAccountKeyToMap(e,t){this.logger.trace("BrowserCacheManager.addAccountKeyToMap called"),this.logger.tracePii(`BrowserCacheManager.addAccountKeyToMap called with key: ${e}`);const r=this.getAccountKeys();return-1===r.indexOf(e)?(r.push(e),this.setItem(Ts,JSON.stringify(r),t),this.logger.verbose("BrowserCacheManager.addAccountKeyToMap account key added"),!0):(this.logger.verbose("BrowserCacheManager.addAccountKeyToMap account key already exists in map"),!1)}removeAccountKeyFromMap(e,t){this.logger.trace("BrowserCacheManager.removeAccountKeyFromMap called"),this.logger.tracePii(`BrowserCacheManager.removeAccountKeyFromMap called with key: ${e}`);const r=this.getAccountKeys(),n=r.indexOf(e);if(n>-1){if(r.splice(n,1),0===r.length)return void this.removeItem(Ts);this.setItem(Ts,JSON.stringify(r),t),this.logger.trace("BrowserCacheManager.removeAccountKeyFromMap account key removed")}else this.logger.trace("BrowserCacheManager.removeAccountKeyFromMap key not found in existing map")}removeAccount(e,t){super.removeAccount(e,t),this.removeAccountKeyFromMap(e,t)}removeAccountContext(e,t){super.removeAccountContext(e,t),this.cacheConfig.cacheLocation===ds.LocalStorage&&this.eventHandler.emitEvent(pc.ACCOUNT_REMOVED,void 0,e.getAccountInfo())}removeIdToken(e,t){super.removeIdToken(e,t);const r=this.getTokenKeys(),n=r.idToken.indexOf(e);n>-1&&(this.logger.info("idToken removed from tokenKeys map"),r.idToken.splice(n,1),this.setTokenKeys(r,t))}removeAccessToken(e,t,r=!0){super.removeAccessToken(e,t),r&&this.removeAccessTokenKeys([e],t)}removeAccessTokenKeys(e,t){this.logger.trace("removeAccessTokenKey called");const r=this.getTokenKeys();let n=0;if(e.forEach((e=>{const t=r.accessToken.indexOf(e);t>-1&&(r.accessToken.splice(t,1),n++)})),n>0)return this.logger.info(`removed ${n} accessToken keys from tokenKeys map`),void this.setTokenKeys(r,t)}removeRefreshToken(e,t){super.removeRefreshToken(e,t);const r=this.getTokenKeys(),n=r.refreshToken.indexOf(e);n>-1&&(this.logger.info("refreshToken removed from tokenKeys map"),r.refreshToken.splice(n,1),this.setTokenKeys(r,t))}getTokenKeys(){return hc(this.clientId,this.browserStorage)}setTokenKeys(e,t){0!==e.idToken.length||0!==e.accessToken.length||0!==e.refreshToken.length?this.setItem(`${As}.${this.clientId}`,JSON.stringify(e),t):this.removeItem(`${As}.${this.clientId}`)}getIdTokenCredential(e,t){const r=this.browserStorage.getUserData(e);if(!r)return this.logger.trace("BrowserCacheManager.getIdTokenCredential: called, no cache hit"),this.removeIdToken(e,t),null;const n=this.validateAndParseJson(r);return n&&((o=n)&&Pt(o)&&o.hasOwnProperty("realm")&&o.credentialType===U.ID_TOKEN)?(this.logger.trace("BrowserCacheManager.getIdTokenCredential: cache hit"),n):(this.logger.trace("BrowserCacheManager.getIdTokenCredential: called, no cache hit"),null);var o}async setIdTokenCredential(e,t){this.logger.trace("BrowserCacheManager.setIdTokenCredential called");const r=bt(e),n=Date.now().toString();e.lastUpdatedAt=n,await this.setUserData(r,JSON.stringify(e),t,n);const o=this.getTokenKeys();-1===o.idToken.indexOf(r)&&(this.logger.info("BrowserCacheManager: addTokenKey - idToken added to map"),o.idToken.push(r),this.setTokenKeys(o,t))}getAccessTokenCredential(e,t){const r=this.browserStorage.getUserData(e);if(!r)return this.logger.trace("BrowserCacheManager.getAccessTokenCredential: called, no cache hit"),this.removeAccessTokenKeys([e],t),null;const n=this.validateAndParseJson(r);return n&&(o=n)&&Pt(o)&&o.hasOwnProperty("realm")&&o.hasOwnProperty("target")&&(o.credentialType===U.ACCESS_TOKEN||o.credentialType===U.ACCESS_TOKEN_WITH_AUTH_SCHEME)?(this.logger.trace("BrowserCacheManager.getAccessTokenCredential: cache hit"),n):(this.logger.trace("BrowserCacheManager.getAccessTokenCredential: called, no cache hit"),null);var o}async setAccessTokenCredential(e,t){this.logger.trace("BrowserCacheManager.setAccessTokenCredential called");const r=bt(e),n=Date.now().toString();e.lastUpdatedAt=n,await this.setUserData(r,JSON.stringify(e),t,n);const o=this.getTokenKeys(),i=o.accessToken.indexOf(r);-1!==i&&o.accessToken.splice(i,1),this.logger.trace(`access token ${-1===i?"added to":"updated in"} map`),o.accessToken.push(r),this.setTokenKeys(o,t)}getRefreshTokenCredential(e,t){const r=this.browserStorage.getUserData(e);if(!r)return this.logger.trace("BrowserCacheManager.getRefreshTokenCredential: called, no cache hit"),this.removeRefreshToken(e,t),null;const n=this.validateAndParseJson(r);return n&&(o=n)&&Pt(o)&&o.credentialType===U.REFRESH_TOKEN?(this.logger.trace("BrowserCacheManager.getRefreshTokenCredential: cache hit"),n):(this.logger.trace("BrowserCacheManager.getRefreshTokenCredential: called, no cache hit"),null);var o}async setRefreshTokenCredential(e,t){this.logger.trace("BrowserCacheManager.setRefreshTokenCredential called");const r=bt(e),n=Date.now().toString();e.lastUpdatedAt=n,await this.setUserData(r,JSON.stringify(e),t,n);const o=this.getTokenKeys();-1===o.refreshToken.indexOf(r)&&(this.logger.info("BrowserCacheManager: addTokenKey - refreshToken added to map"),o.refreshToken.push(r),this.setTokenKeys(o,t))}getAppMetadata(e){const t=this.browserStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getAppMetadata: called, no cache hit"),null;const r=this.validateAndParseJson(t);return r&&(n=e,(o=r)&&0===n.indexOf(H)&&o.hasOwnProperty("clientId")&&o.hasOwnProperty("environment"))?(this.logger.trace("BrowserCacheManager.getAppMetadata: cache hit"),r):(this.logger.trace("BrowserCacheManager.getAppMetadata: called, no cache hit"),null);var n,o}setAppMetadata(e,t){this.logger.trace("BrowserCacheManager.setAppMetadata called");const r=function({environment:e,clientId:t}){return[H,e,t].join(q).toLowerCase()}(e);this.setItem(r,JSON.stringify(e),t)}getServerTelemetry(e){const t=this.browserStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getServerTelemetry: called, no cache hit"),null;const r=this.validateAndParseJson(t);return r&&function(e,t){const r=0===e.indexOf($.CACHE_KEY);let n=!0;return t&&(n=t.hasOwnProperty("failedRequests")&&t.hasOwnProperty("errors")&&t.hasOwnProperty("cacheHits")),r&&n}(e,r)?(this.logger.trace("BrowserCacheManager.getServerTelemetry: cache hit"),r):(this.logger.trace("BrowserCacheManager.getServerTelemetry: called, no cache hit"),null)}setServerTelemetry(e,t,r){this.logger.trace("BrowserCacheManager.setServerTelemetry called"),this.setItem(e,JSON.stringify(t),r)}getAuthorityMetadata(e){const t=this.internalStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getAuthorityMetadata: called, no cache hit"),null;const r=this.validateAndParseJson(t);return r&&function(e,t){return!!t&&0===e.indexOf(D)&&t.hasOwnProperty("aliases")&&t.hasOwnProperty("preferred_cache")&&t.hasOwnProperty("preferred_network")&&t.hasOwnProperty("canonical_authority")&&t.hasOwnProperty("authorization_endpoint")&&t.hasOwnProperty("token_endpoint")&&t.hasOwnProperty("issuer")&&t.hasOwnProperty("aliasesFromNetwork")&&t.hasOwnProperty("endpointsFromNetwork")&&t.hasOwnProperty("expiresAt")&&t.hasOwnProperty("jwks_uri")}(e,r)?(this.logger.trace("BrowserCacheManager.getAuthorityMetadata: cache hit"),r):null}getAuthorityMetadataKeys(){return this.internalStorage.getKeys().filter((e=>this.isAuthorityMetadata(e)))}setWrapperMetadata(e,t){this.internalStorage.setItem(Ss,e),this.internalStorage.setItem(bs,t)}getWrapperMetadata(){return[this.internalStorage.getItem(Ss)||t.EMPTY_STRING,this.internalStorage.getItem(bs)||t.EMPTY_STRING]}setAuthorityMetadata(e,t){this.logger.trace("BrowserCacheManager.setAuthorityMetadata called"),this.internalStorage.setItem(e,JSON.stringify(t))}getActiveAccount(e){const t=this.generateCacheKey(C),r=this.browserStorage.getItem(t);if(!r)return this.logger.trace("BrowserCacheManager.getActiveAccount: No active account filters found"),null;const n=this.validateAndParseJson(r);return n?(this.logger.trace("BrowserCacheManager.getActiveAccount: Active account filters schema found"),this.getAccountInfoFilteredBy({homeAccountId:n.homeAccountId,localAccountId:n.localAccountId,tenantId:n.tenantId},e)):(this.logger.trace("BrowserCacheManager.getActiveAccount: No active account found"),null)}setActiveAccount(e,t){const r=this.generateCacheKey(C);if(e){this.logger.verbose("setActiveAccount: Active account set");const n={homeAccountId:e.homeAccountId,localAccountId:e.localAccountId,tenantId:e.tenantId,lastUpdatedAt:It().toString()};this.setItem(r,JSON.stringify(n),t)}else this.logger.verbose("setActiveAccount: No account passed, active account not set"),this.browserStorage.removeItem(r);this.eventHandler.emitEvent(pc.ACTIVE_ACCOUNT_CHANGED)}getThrottlingCache(e){const t=this.browserStorage.getItem(e);if(!t)return this.logger.trace("BrowserCacheManager.getThrottlingCache: called, no cache hit"),null;const r=this.validateAndParseJson(t);return r&&function(e,t){let r=!1;e&&(r=0===e.indexOf(V));let n=!0;return t&&(n=t.hasOwnProperty("throttleTime")),r&&n}(e,r)?(this.logger.trace("BrowserCacheManager.getThrottlingCache: cache hit"),r):(this.logger.trace("BrowserCacheManager.getThrottlingCache: called, no cache hit"),null)}setThrottlingCache(e,t,r){this.logger.trace("BrowserCacheManager.setThrottlingCache called"),this.setItem(e,JSON.stringify(t),r)}getTemporaryCache(e,t){const r=t?this.generateCacheKey(e):e;if(this.cacheConfig.storeAuthStateInCookie){const e=this.cookieStorage.getItem(r);if(e)return this.logger.trace("BrowserCacheManager.getTemporaryCache: storeAuthStateInCookies set to true, retrieving from cookies"),e}const n=this.temporaryCacheStorage.getItem(r);if(!n){if(this.cacheConfig.cacheLocation===ds.LocalStorage){const e=this.browserStorage.getItem(r);if(e)return this.logger.trace("BrowserCacheManager.getTemporaryCache: Temporary cache item found in local storage"),e}return this.logger.trace("BrowserCacheManager.getTemporaryCache: No cache item found in local storage"),null}return this.logger.trace("BrowserCacheManager.getTemporaryCache: Temporary cache item returned"),n}setTemporaryCache(e,t,r){const n=r?this.generateCacheKey(e):e;this.temporaryCacheStorage.setItem(n,t),this.cacheConfig.storeAuthStateInCookie&&(this.logger.trace("BrowserCacheManager.setTemporaryCache: storeAuthStateInCookie set to true, setting item cookie"),this.cookieStorage.setItem(n,t,void 0,this.cacheConfig.secureCookies))}removeItem(e){this.browserStorage.removeItem(e)}removeTemporaryItem(e){this.temporaryCacheStorage.removeItem(e),this.cacheConfig.storeAuthStateInCookie&&(this.logger.trace("BrowserCacheManager.removeItem: storeAuthStateInCookie is true, clearing item cookie"),this.cookieStorage.removeItem(e))}getKeys(){return this.browserStorage.getKeys()}clear(e){this.removeAllAccounts(e),this.removeAppMetadata(e),this.temporaryCacheStorage.getKeys().forEach((e=>{-1===e.indexOf(t.CACHE_PREFIX)&&-1===e.indexOf(this.clientId)||this.removeTemporaryItem(e)})),this.browserStorage.getKeys().forEach((e=>{-1===e.indexOf(t.CACHE_PREFIX)&&-1===e.indexOf(this.clientId)||this.browserStorage.removeItem(e)})),this.internalStorage.clear()}clearTokensAndKeysWithClaims(e){this.performanceClient.addQueueMeasurement(Kr.ClearTokensAndKeysWithClaims,e);const t=this.getTokenKeys();let r=0;t.accessToken.forEach((t=>{const n=this.getAccessTokenCredential(t,e);n?.requestedClaimsHash&&t.includes(n.requestedClaimsHash.toLowerCase())&&(this.removeAccessToken(t,e),r++)})),r>0&&this.logger.warning(`${r} access tokens with claims in the cache keys have been removed from the cache.`)}generateCacheKey(e){return this.validateAndParseJson(e)?JSON.stringify(e):ur.startsWith(e,t.CACHE_PREFIX)?e:`${t.CACHE_PREFIX}.${this.clientId}.${e}`}resetRequestCache(){this.logger.trace("BrowserCacheManager.resetRequestCache called"),this.removeTemporaryItem(this.generateCacheKey(Cs)),this.removeTemporaryItem(this.generateCacheKey(vs)),this.removeTemporaryItem(this.generateCacheKey(fs)),this.removeTemporaryItem(this.generateCacheKey(ys)),this.removeTemporaryItem(this.generateCacheKey(Is)),this.setInteractionInProgress(!1)}cacheAuthorizeRequest(e,t){this.logger.trace("BrowserCacheManager.cacheAuthorizeRequest called");const r=xs(JSON.stringify(e));if(this.setTemporaryCache(Cs,r,!0),t){const e=xs(t);this.setTemporaryCache(vs,e,!0)}}getCachedRequest(){this.logger.trace("BrowserCacheManager.getCachedRequest called");const e=this.getTemporaryCache(Cs,!0);if(!e)throw Qi(gi);const t=this.getTemporaryCache(vs,!0);let r,n="";try{r=JSON.parse(Bs(e)),t&&(n=Bs(t))}catch(t){throw this.logger.errorPii(`Attempted to parse: ${e}`),this.logger.error(`Parsing cached token request threw with error: ${t}`),Qi(pi)}return[r,n]}getCachedNativeRequest(){this.logger.trace("BrowserCacheManager.getCachedNativeRequest called");const e=this.getTemporaryCache(Is,!0);if(!e)return this.logger.trace("BrowserCacheManager.getCachedNativeRequest: No cached native request found"),null;const t=this.validateAndParseJson(e);return t||(this.logger.error("BrowserCacheManager.getCachedNativeRequest: Unable to parse native request"),null)}isInteractionInProgress(e){const t=this.getInteractionInProgress()?.clientId;return e?t===this.clientId:!!t}getInteractionInProgress(){const e=`${t.CACHE_PREFIX}.${ws}`,r=this.getTemporaryCache(e,!1);try{return r?JSON.parse(r):null}catch(t){return this.logger.error("Cannot parse interaction status. Removing temporary cache items and clearing url hash. Retrying interaction should fix the error"),this.removeTemporaryItem(e),this.resetRequestCache(),va(window),null}}setInteractionInProgress(e,r=ps){const n=`${t.CACHE_PREFIX}.${ws}`;if(e){if(this.getInteractionInProgress())throw Qi(ei);this.setTemporaryCache(n,JSON.stringify({clientId:this.clientId,type:r}),!1)}else e||this.getInteractionInProgress()?.clientId!==this.clientId||this.removeTemporaryItem(n)}async hydrateCache(e,t){const r=Et(e.account?.homeAccountId,e.account?.environment,e.idToken,this.clientId,e.tenantId);let n;t.claims&&(n=await this.cryptoImpl.hashString(t.claims));const o={idToken:r,accessToken:Rt(e.account?.homeAccountId,e.account.environment,e.accessToken,this.clientId,e.tenantId,e.scopes.join(" "),e.expiresOn?Tt(e.expiresOn):0,e.extExpiresOn?Tt(e.extExpiresOn):0,Bs,void 0,e.tokenType,void 0,t.sshKid,t.claims,n)};return this.saveCacheRecord(o,e.correlationId)}async saveCacheRecord(e,t,r){try{await super.saveCacheRecord(e,t,r)}catch(e){if(e instanceof xr&&this.performanceClient&&t)try{const e=this.getTokenKeys();this.performanceClient.addFields({cacheRtCount:e.refreshToken.length,cacheIdCount:e.idToken.length,cacheAtCount:e.accessToken.length},t)}catch(e){}throw e}}}function fc(e,t,r,n){try{switch(t){case ds.LocalStorage:return new uc(e,r,n);case ds.SessionStorage:return new gc}}catch(e){r.error(e)}return new tc}const yc=(e,t,r,n)=>new mc(e,{cacheLocation:ds.MemoryStorage,temporaryCacheLocation:ds.MemoryStorage,storeAuthStateInCookie:!1,secureCookies:!1,cacheMigrationEnabled:!1,claimsBasedCachingEnabled:!1},gt,t,r,n);function Cc(e,t,r,n,o){return e.verbose("getAllAccounts called"),r?t.getAllAccounts(o||{},n):[]}function vc(e,t,r,n){if(t.trace("getAccount called"),0===Object.keys(e).length)return t.warning("getAccount: No accountFilter provided"),null;const o=r.getAccountInfoFilteredBy(e,n);return o?(t.verbose("getAccount: Account matching provided filter found, returning"),o):(t.verbose("getAccount: No matching account found, returning null"),null)}function wc(e,t,r,n){if(t.trace("getAccountByUsername called"),!e)return t.warning("getAccountByUsername: No username provided"),null;const o=r.getAccountInfoFilteredBy({username:e},n);return o?(t.verbose("getAccountByUsername: Account matching username found, returning"),t.verbosePii(`getAccountByUsername: Returning signed-in accounts matching username: ${e}`),o):(t.verbose("getAccountByUsername: No matching account found, returning null"),null)}function Ic(e,t,r,n){if(t.trace("getAccountByHomeId called"),!e)return t.warning("getAccountByHomeId: No homeAccountId provided"),null;const o=r.getAccountInfoFilteredBy({homeAccountId:e},n);return o?(t.verbose("getAccountByHomeId: Account matching homeAccountId found, returning"),t.verbosePii(`getAccountByHomeId: Returning signed-in accounts matching homeAccountId: ${e}`),o):(t.verbose("getAccountByHomeId: No matching account found, returning null"),null)}function Tc(e,t,r,n){if(t.trace("getAccountByLocalId called"),!e)return t.warning("getAccountByLocalId: No localAccountId provided"),null;const o=r.getAccountInfoFilteredBy({localAccountId:e},n);return o?(t.verbose("getAccountByLocalId: Account matching localAccountId found, returning"),t.verbosePii(`getAccountByLocalId: Returning signed-in accounts matching localAccountId: ${e}`),o):(t.verbose("getAccountByLocalId: No matching account found, returning null"),null)}function Ac(e,t,r){t.setActiveAccount(e,r)}function kc(e,t){return e.getActiveAccount(t)}class Sc{constructor(e){this.eventCallbacks=new Map,this.logger=e||new mt({}),"undefined"!=typeof BroadcastChannel&&(this.broadcastChannel=new BroadcastChannel("msal.broadcast.event")),this.invokeCrossTabCallbacks=this.invokeCrossTabCallbacks.bind(this)}addEventCallback(e,t,r){if("undefined"!=typeof window){const n=r||Na();return this.eventCallbacks.has(n)?(this.logger.error(`Event callback with id: ${n} is already registered. Please provide a unique id or remove the existing callback and try again.`),null):(this.eventCallbacks.set(n,[e,t||[]]),this.logger.verbose(`Event callback registered with id: ${n}`),n)}return null}removeEventCallback(e){this.eventCallbacks.delete(e),this.logger.verbose(`Event callback ${e} removed.`)}emitEvent(e,t,r,n){const o={eventType:e,interactionType:t||null,payload:r||null,error:n||null,timestamp:Date.now()};switch(e){case pc.ACCOUNT_ADDED:case pc.ACCOUNT_REMOVED:case pc.ACTIVE_ACCOUNT_CHANGED:this.broadcastChannel?.postMessage(o);break;default:this.invokeCallbacks(o)}}invokeCallbacks(e){this.eventCallbacks.forEach((([t,r],n)=>{(0===r.length||r.includes(e.eventType))&&(this.logger.verbose(`Emitting event to callback ${n}: ${e.eventType}`),t.apply(null,[e]))}))}invokeCrossTabCallbacks(e){const t=e.data;this.invokeCallbacks(t)}subscribeCrossTab(){this.broadcastChannel?.addEventListener("message",this.invokeCrossTabCallbacks)}unsubscribeCrossTab(){this.broadcastChannel?.removeEventListener("message",this.invokeCrossTabCallbacks)}}class bc{constructor(e,t,r,n,o,i,s,a,c){this.config=e,this.browserStorage=t,this.browserCrypto=r,this.networkClient=this.config.system.networkClient,this.eventHandler=o,this.navigationClient=i,this.platformAuthProvider=a,this.correlationId=c||ta(),this.logger=n.clone(Xi,Fa,this.correlationId),this.performanceClient=s}async clearCacheOnLogout(e,t){if(t){Sr.accountInfoIsEqual(t,this.browserStorage.getActiveAccount(e),!1)&&(this.logger.verbose("Setting active account to null"),this.browserStorage.setActiveAccount(null,e));try{this.browserStorage.removeAccount(Sr.generateAccountCacheKey(t),e),this.logger.verbose("Cleared cache items belonging to the account provided in the logout request.")}catch(e){this.logger.error("Account provided in logout request was not found. Local cache unchanged.")}}else try{this.logger.verbose("No account provided in logout request, clearing all cache items.",this.correlationId),this.browserStorage.clear(e),await this.browserCrypto.clearKeystore()}catch(e){this.logger.error("Attempted to clear all MSAL cache items and failed. Local cache unchanged.")}}getRedirectUri(e){this.logger.verbose("getRedirectUri called");const t=e||this.config.auth.redirectUri;return _r.getAbsoluteUrl(t,Aa())}initializeServerTelemetryManager(e,t){this.logger.verbose("initializeServerTelemetryManager called");const r={clientId:this.config.auth.clientId,correlationId:this.correlationId,apiId:e,forceRefresh:t||!1,wrapperSKU:this.browserStorage.getWrapperMetadata()[0],wrapperVer:this.browserStorage.getWrapperMetadata()[1]};return new qo(r,this.browserStorage)}async getDiscoveredAuthority(e){const{account:t}=e,r=e.requestExtraQueryParameters&&e.requestExtraQueryParameters.hasOwnProperty("instance_aware")?e.requestExtraQueryParameters.instance_aware:void 0;this.performanceClient.addQueueMeasurement(Kr.StandardInteractionClientGetDiscoveredAuthority,this.correlationId);const n={protocolMode:this.config.auth.protocolMode,OIDCOptions:this.config.auth.OIDCOptions,knownAuthorities:this.config.auth.knownAuthorities,cloudDiscoveryMetadata:this.config.auth.cloudDiscoveryMetadata,authorityMetadata:this.config.auth.authorityMetadata,skipAuthorityMetadataCache:this.config.auth.skipAuthorityMetadataCache},o=e.requestAuthority||this.config.auth.authority,i=r?.length?"true"===r:this.config.auth.instanceAware,s=t&&i?this.config.auth.authority.replace(_r.getDomainFromUrl(o),t.environment):o,a=Qn.generateAuthority(s,e.requestAzureCloudOptions||this.config.auth.azureCloudOptions),c=await Gn(Vn,Kr.AuthorityFactoryCreateDiscoveredInstance,this.logger,this.performanceClient,this.correlationId)(a,this.config.system.networkClient,this.browserStorage,n,this.logger,this.correlationId,this.performanceClient);if(t&&!c.isAlias(t.environment))throw dr(sr);return c}}async function Ec(e,t,r,n){r.addQueueMeasurement(Kr.InitializeBaseRequest,e.correlationId);const o=e.authority||t.auth.authority,i=[...e&&e.scopes||[]],s={...e,correlationId:e.correlationId,authority:o,scopes:i};if(s.authenticationScheme){if(s.authenticationScheme===Q.SSH){if(!e.sshJwk)throw dr(er);if(!e.sshKid)throw dr(tr)}n.verbose(`Authentication Scheme set to "${s.authenticationScheme}" as configured in Auth request`)}else s.authenticationScheme=Q.BEARER,n.verbose('Authentication Scheme wasn\'t explicitly set in request, defaulting to "Bearer" request');return t.cache.claimsBasedCachingEnabled&&e.claims&&!ur.isEmptyObj(e.claims)&&(s.requestedClaimsHash=await ha(e.claims)),s}async function Rc(e,t,r,n,o){n.addQueueMeasurement(Kr.InitializeSilentRequest,e.correlationId);const i=await Gn(Ec,Kr.InitializeBaseRequest,o,n,e.correlationId)(e,r,n,o);return{...e,...i,account:t,forceRefresh:e.forceRefresh||!1}}class _c extends bc{initializeLogoutRequest(e){this.logger.verbose("initializeLogoutRequest called",e?.correlationId);const t={correlationId:this.correlationId||ta(),...e};if(e)if(e.logoutHint)this.logger.verbose("logoutHint has already been set in logoutRequest");else if(e.account){const r=this.getLogoutHintFromIdTokenClaims(e.account);r&&(this.logger.verbose("Setting logoutHint to login_hint ID Token Claim value for the account provided"),t.logoutHint=r)}else this.logger.verbose("logoutHint was not set and account was not passed into logout request, logoutHint will not be set");else this.logger.verbose("logoutHint will not be set since no logout request was configured");return e&&null===e.postLogoutRedirectUri?this.logger.verbose("postLogoutRedirectUri passed as null, not setting post logout redirect uri",t.correlationId):e&&e.postLogoutRedirectUri?(this.logger.verbose("Setting postLogoutRedirectUri to uri set on logout request",t.correlationId),t.postLogoutRedirectUri=_r.getAbsoluteUrl(e.postLogoutRedirectUri,Aa())):null===this.config.auth.postLogoutRedirectUri?this.logger.verbose("postLogoutRedirectUri configured as null and no uri set on request, not passing post logout redirect",t.correlationId):this.config.auth.postLogoutRedirectUri?(this.logger.verbose("Setting postLogoutRedirectUri to configured uri",t.correlationId),t.postLogoutRedirectUri=_r.getAbsoluteUrl(this.config.auth.postLogoutRedirectUri,Aa())):(this.logger.verbose("Setting postLogoutRedirectUri to current page",t.correlationId),t.postLogoutRedirectUri=_r.getAbsoluteUrl(Aa(),Aa())),t}getLogoutHintFromIdTokenClaims(e){const t=e.idTokenClaims;if(t){if(t.login_hint)return t.login_hint;this.logger.verbose("The ID Token Claims tied to the provided account do not contain a login_hint claim, logoutHint will not be added to logout request")}else this.logger.verbose("The provided account does not contain ID Token Claims, logoutHint will not be added to logout request");return null}async createAuthCodeClient(e){this.performanceClient.addQueueMeasurement(Kr.StandardInteractionClientCreateAuthCodeClient,this.correlationId);const t=await Gn(this.getClientConfiguration.bind(this),Kr.StandardInteractionClientGetClientConfiguration,this.logger,this.performanceClient,this.correlationId)(e);return new bo(t,this.performanceClient)}async getClientConfiguration(e){const{serverTelemetryManager:r,requestAuthority:n,requestAzureCloudOptions:o,requestExtraQueryParameters:i,account:s}=e;this.performanceClient.addQueueMeasurement(Kr.StandardInteractionClientGetClientConfiguration,this.correlationId);const a=await Gn(this.getDiscoveredAuthority.bind(this),Kr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,this.correlationId)({requestAuthority:n,requestAzureCloudOptions:o,requestExtraQueryParameters:i,account:s}),c=this.config.system.loggerOptions;return{authOptions:{clientId:this.config.auth.clientId,authority:a,clientCapabilities:this.config.auth.clientCapabilities,redirectUri:this.config.auth.redirectUri},systemOptions:{tokenRenewalOffsetSeconds:this.config.system.tokenRenewalOffsetSeconds,preventCorsPreflight:!0},loggerOptions:{loggerCallback:c.loggerCallback,piiLoggingEnabled:c.piiLoggingEnabled,logLevel:c.logLevel,correlationId:this.correlationId},cacheOptions:{claimsBasedCachingEnabled:this.config.cache.claimsBasedCachingEnabled},cryptoInterface:this.browserCrypto,networkInterface:this.networkClient,storageInterface:this.browserStorage,serverTelemetryManager:r,libraryInfo:{sku:Xi,version:Fa,cpu:t.EMPTY_STRING,os:t.EMPTY_STRING},telemetry:this.config.telemetry}}async initializeAuthorizationRequest(e,r){this.performanceClient.addQueueMeasurement(Kr.StandardInteractionClientInitializeAuthorizationRequest,this.correlationId);const n=this.getRedirectUri(e.redirectUri),o={interactionType:r},i=vo.setRequestState(this.browserCrypto,e&&e.state||t.EMPTY_STRING,o),s={...await Gn(Ec,Kr.InitializeBaseRequest,this.logger,this.performanceClient,this.correlationId)({...e,correlationId:this.correlationId},this.config,this.performanceClient,this.logger),redirectUri:n,state:i,nonce:e.nonce||ta(),responseMode:this.config.auth.OIDCOptions.serverResponseType};if(e.loginHint||e.sid)return s;const a=e.account||this.browserStorage.getActiveAccount(this.correlationId);return a&&(this.logger.verbose("Setting validated request account",this.correlationId),this.logger.verbosePii(`Setting validated request account: ${a.homeAccountId}`,this.correlationId),s.account=a),s}}function Pc(e,t,r){const n=Er(e);if(!n)throw br(e)?(r.error(`A ${t} is present in the iframe but it does not contain known properties. It's likely that the ${t} has been replaced by code running on the redirectUri page.`),r.errorPii(`The ${t} detected is: ${e}`),Qi(Yo)):(r.error(`The request has returned to the redirectUri but a ${t} is not present. It's likely that the ${t} has been removed or the page has been redirected by code running on the redirectUri page.`),Qi(Vo));return n}function Mc(e,t,r){if(!e.state)throw Qi(Jo);const n=function(e,t){if(!t)return null;try{return vo.parseRequestState(e,t).libraryState.meta}catch(e){throw ut(be)}}(t,e.state);if(!n)throw Qi(Xo);if(n.interactionType!==r)throw Qi(Zo)}class Oc{constructor(e,t,r,n,o){this.authModule=e,this.browserStorage=t,this.authCodeRequest=r,this.logger=n,this.performanceClient=o}async handleCodeResponse(e,t){let r;this.performanceClient.addQueueMeasurement(Kr.HandleCodeResponse,t.correlationId);try{r=function(e,t){if(Oo(e,t),!e.code)throw ut(Ze);return e}(e,t.state)}catch(e){throw e instanceof Jn&&e.subError===ni?Qi(ni):e}return Gn(this.handleCodeResponseFromServer.bind(this),Kr.HandleCodeResponseFromServer,this.logger,this.performanceClient,t.correlationId)(r,t)}async handleCodeResponseFromServer(e,t,r=!0){if(this.performanceClient.addQueueMeasurement(Kr.HandleCodeResponseFromServer,t.correlationId),this.logger.trace("InteractionHandler.handleCodeResponseFromServer called"),this.authCodeRequest.code=e.code,e.cloud_instance_host_name&&await Gn(this.authModule.updateAuthority.bind(this.authModule),Kr.UpdateTokenEndpointAuthority,this.logger,this.performanceClient,t.correlationId)(e.cloud_instance_host_name,t.correlationId),r&&(e.nonce=t.nonce||void 0),e.state=t.state,e.client_info)this.authCodeRequest.clientInfo=e.client_info;else{const e=this.createCcsCredentials(t);e&&(this.authCodeRequest.ccsCredential=e)}return await Gn(this.authModule.acquireToken.bind(this.authModule),Kr.AuthClientAcquireToken,this.logger,this.performanceClient,t.correlationId)(this.authCodeRequest,e)}createCcsCredentials(e){return e.account?{credential:e.account.homeAccountId,type:on}:e.loginHint?{credential:e.loginHint,type:sn}:null}}const Nc="user_switch",qc={[Nc]:"User attempted to switch accounts in the native broker, which is not allowed. All new accounts must sign-in through the standard web flow first, please try again."};class Lc extends fe{constructor(e,t,r){super(e,t),Object.setPrototypeOf(this,Lc.prototype),this.name="NativeAuthError",this.ext=r}}function Uc(e){return!(!e.ext||!e.ext.status||"PERSISTENT_ERROR"!==e.ext.status&&"DISABLED"!==e.ext.status)||(!(!e.ext||!e.ext.error||-2147186943!==e.ext.error)||"ContentError"===e.errorCode)}function Hc(e,t,r){if(r&&r.status)switch(r.status){case"ACCOUNT_UNAVAILABLE":return Co(no);case"USER_INTERACTION_REQUIRED":return new fo(e,t);case"USER_CANCEL":return Qi(ni);case"NO_NETWORK":return Qi(vi);case"UX_NOT_ALLOWED":return Co(io)}return new Lc(e,qc[e]||t,r)}class xc extends _c{async acquireToken(e){this.performanceClient.addQueueMeasurement(Kr.SilentCacheClientAcquireToken,e.correlationId);const t=this.initializeServerTelemetryManager(Es.acquireTokenSilent_silentFlow),r=await Gn(this.getClientConfiguration.bind(this),Kr.StandardInteractionClientGetClientConfiguration,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:t,requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,account:e.account}),n=new Ro(r,this.performanceClient);this.logger.verbose("Silent auth client created");try{const t=(await Gn(n.acquireCachedToken.bind(n),Kr.SilentFlowClientAcquireCachedToken,this.logger,this.performanceClient,e.correlationId)(e))[0];return this.performanceClient.addFields({fromCache:!0},e.correlationId),t}catch(e){throw e instanceof $i&&e.errorCode===ki&&this.logger.verbose("Signing keypair for bound access token not found. Refreshing bound access token and generating a new crypto keypair."),e}}logout(e){this.logger.verbose("logoutRedirect called");const t=this.initializeLogoutRequest(e);return this.clearCacheOnLogout(t.correlationId,t?.account)}}class Dc extends bc{constructor(e,t,r,n,o,i,s,a,c,l,h,d){super(e,t,r,n,o,i,a,c,d),this.apiId=s,this.accountId=l,this.platformAuthProvider=c,this.nativeStorageManager=h,this.silentCacheClient=new xc(e,this.nativeStorageManager,r,n,o,i,a,c,d);const u=this.platformAuthProvider.getExtensionName();this.skus=qo.makeExtraSkuString({libraryName:Xi,libraryVersion:Fa,extensionName:u,extensionVersion:this.platformAuthProvider.getExtensionVersion()})}addRequestSKUs(e){e.extraParameters={...e.extraParameters,[un]:this.skus}}async acquireToken(e,t){this.performanceClient.addQueueMeasurement(Kr.NativeInteractionClientAcquireToken,e.correlationId),this.logger.trace("NativeInteractionClient - acquireToken called.");const r=this.performanceClient.startMeasurement(Kr.NativeInteractionClientAcquireToken,e.correlationId),n=It(),o=this.initializeServerTelemetryManager(this.apiId);try{const i=await this.initializeNativeRequest(e);try{const e=await this.acquireTokensFromCache(this.accountId,i);return r.end({success:!0,isNativeBroker:!1,fromCache:!0}),e}catch(e){if(t===Ns.AccessToken)throw this.logger.info("MSAL internal Cache does not contain tokens, return error as per cache policy"),e;this.logger.info("MSAL internal Cache does not contain tokens, proceed to make a native call")}const s=await this.platformAuthProvider.sendMessage(i);return await this.handleNativeResponse(s,i,n).then((e=>(r.end({success:!0,isNativeBroker:!0,requestId:e.requestId}),o.clearNativeBrokerErrorCode(),e))).catch((e=>{throw r.end({success:!1,errorCode:e.errorCode,subErrorCode:e.subError,isNativeBroker:!0}),e}))}catch(e){throw e instanceof Lc&&o.setNativeBrokerErrorCode(e.errorCode),e}}createSilentCacheRequest(e,t){return{authority:e.authority,correlationId:this.correlationId,scopes:gr.fromString(e.scope).asArray(),account:t,forceRefresh:!1}}async acquireTokensFromCache(e,t){if(!e)throw this.logger.warning("NativeInteractionClient:acquireTokensFromCache - No nativeAccountId provided"),ut($e);const r=this.browserStorage.getBaseAccountInfo({nativeAccountId:e},this.correlationId);if(!r)throw ut($e);try{const e=this.createSilentCacheRequest(t,r),n=await this.silentCacheClient.acquireToken(e),o={...r,idTokenClaims:n?.idTokenClaims,idToken:n?.idToken};return{...n,account:o}}catch(e){throw e}}async acquireTokenRedirect(e,t){this.logger.trace("NativeInteractionClient - acquireTokenRedirect called.");const{...r}=e;delete r.onRedirectNavigate;const n=await this.initializeNativeRequest(r);try{await this.platformAuthProvider.sendMessage(n)}catch(e){if(e instanceof Lc){if(this.initializeServerTelemetryManager(this.apiId).setNativeBrokerErrorCode(e.errorCode),Uc(e))throw e}}this.browserStorage.setTemporaryCache(Is,JSON.stringify(n),!0);const o={apiId:Es.acquireTokenRedirect,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},i=this.config.auth.navigateToLoginRequestUrl?window.location.href:this.getRedirectUri(e.redirectUri);t.end({success:!0}),await this.navigationClient.navigateExternal(i,o)}async handleRedirectPromise(e,t){if(this.logger.trace("NativeInteractionClient - handleRedirectPromise called."),!this.browserStorage.isInteractionInProgress(!0))return this.logger.info("handleRedirectPromise called but there is no interaction in progress, returning null."),null;const r=this.browserStorage.getCachedNativeRequest();if(!r)return this.logger.verbose("NativeInteractionClient - handleRedirectPromise called but there is no cached request, returning null."),e&&t&&e?.addFields({errorCode:"no_cached_request"},t),null;const{prompt:n,...o}=r;n&&this.logger.verbose("NativeInteractionClient - handleRedirectPromise called and prompt was included in the original request, removing prompt from cached request to prevent second interaction with native broker window."),this.browserStorage.removeItem(this.browserStorage.generateCacheKey(Is));const i=It();try{this.logger.verbose("NativeInteractionClient - handleRedirectPromise sending message to native broker.");const e=await this.platformAuthProvider.sendMessage(o),t=await this.handleNativeResponse(e,o,i);return this.initializeServerTelemetryManager(this.apiId).clearNativeBrokerErrorCode(),t}catch(e){throw e}}logout(){return this.logger.trace("NativeInteractionClient - logout called."),Promise.reject("Logout not implemented yet")}async handleNativeResponse(e,t,r){this.logger.trace("NativeInteractionClient - handleNativeResponse called.");const n=vt(e.id_token,Bs),o=this.createHomeAccountIdentifier(e,n),i=this.browserStorage.getAccountInfoFilteredBy({nativeAccountId:t.accountId},this.correlationId)?.homeAccountId;if(t.extraParameters?.child_client_id&&e.account.id!==t.accountId)this.logger.info("handleNativeServerResponse: Double broker flow detected, ignoring accountId mismatch");else if(o!==i&&e.account.id!==t.accountId)throw Hc(Nc);const s=await this.getDiscoveredAuthority({requestAuthority:t.authority}),a=ko(this.browserStorage,s,o,Bs,this.correlationId,n,e.client_info,void 0,n.tid,void 0,e.account.id,this.logger);e.expires_in=Number(e.expires_in);const c=await this.generateAuthenticationResult(e,t,n,a,s.canonicalAuthority,r);return await this.cacheAccount(a,this.correlationId),await this.cacheNativeTokens(e,t,o,n,e.access_token,c.tenantId,r),c}createHomeAccountIdentifier(e,r){return Sr.generateHomeAccountId(e.client_info||t.EMPTY_STRING,vr,this.logger,this.browserCrypto,r)}generateScopes(e,t){return t?gr.fromString(t):gr.fromString(e)}async generatePopAccessToken(e,t){if(t.tokenType===Q.POP&&t.signPopToken){if(e.shr)return this.logger.trace("handleNativeServerResponse: SHR is enabled in native layer"),e.shr;const r=new Io(this.browserCrypto),n={resourceRequestMethod:t.resourceRequestMethod,resourceRequestUri:t.resourceRequestUri,shrClaims:t.shrClaims,shrNonce:t.shrNonce};if(!t.keyId)throw ut(rt);return r.signPopToken(e.access_token,t.keyId,n)}return e.access_token}async generateAuthenticationResult(e,r,n,o,i,s){const a=this.addTelemetryFromNativeResponse(e.properties.MATS),c=this.generateScopes(r.scope,e.scope),l=e.account.properties||{},h=l.UID||n.oid||n.sub||t.EMPTY_STRING,d=l.TenantId||n.tid||t.EMPTY_STRING,u=Cr(o.getAccountInfo(),void 0,n,e.id_token);u.nativeAccountId!==e.account.id&&(u.nativeAccountId=e.account.id);const g=await this.generatePopAccessToken(e,r),p=r.tokenType===Q.POP?Q.POP:Q.BEARER;return{authority:i,uniqueId:h,tenantId:d,scopes:c.asArray(),account:u,idToken:e.id_token,idTokenClaims:n,accessToken:g,fromCache:!!a&&this.isResponseFromCache(a),expiresOn:At(s+e.expires_in),tokenType:p,correlationId:this.correlationId,state:e.state,fromNativeBroker:!0}}async cacheAccount(e,t){await this.browserStorage.setAccount(e,this.correlationId),this.browserStorage.removeAccountContext(e,t)}cacheNativeTokens(e,r,n,o,i,s,a){const c=Et(n,r.authority,e.id_token||"",r.clientId,o.tid||""),l=a+(r.tokenType===Q.POP?t.SHR_NONCE_VALIDITY:("string"==typeof e.expires_in?parseInt(e.expires_in,10):e.expires_in)||0),h=this.generateScopes(e.scope,r.scope),d={idToken:c,accessToken:Rt(n,r.authority,i,r.clientId,o.tid||s,h.printScopes(),l,0,Bs,void 0,r.tokenType,void 0,r.keyId)};return this.nativeStorageManager.saveCacheRecord(d,this.correlationId,r.storeInCache)}getExpiresInValue(e,r){return e===Q.POP?t.SHR_NONCE_VALIDITY:("string"==typeof r?parseInt(r,10):r)||0}addTelemetryFromNativeResponse(e){const t=this.getMATSFromResponse(e);return t?(this.performanceClient.addFields({extensionId:this.platformAuthProvider.getExtensionId(),extensionVersion:this.platformAuthProvider.getExtensionVersion(),matsBrokerVersion:t.broker_version,matsAccountJoinOnStart:t.account_join_on_start,matsAccountJoinOnEnd:t.account_join_on_end,matsDeviceJoin:t.device_join,matsPromptBehavior:t.prompt_behavior,matsApiErrorCode:t.api_error_code,matsUiVisible:t.ui_visible,matsSilentCode:t.silent_code,matsSilentBiSubCode:t.silent_bi_sub_code,matsSilentMessage:t.silent_message,matsSilentStatus:t.silent_status,matsHttpStatus:t.http_status,matsHttpEventCount:t.http_event_count},this.correlationId),t):null}getMATSFromResponse(e){if(e)try{return JSON.parse(e)}catch(e){this.logger.error("NativeInteractionClient - Error parsing MATS telemetry, returning null instead")}return null}isResponseFromCache(e){return void 0===e.is_cached?(this.logger.verbose("NativeInteractionClient - MATS telemetry does not contain field indicating if response was served from cache. Returning false."),!1):!!e.is_cached}async initializeNativeRequest(e){this.logger.trace("NativeInteractionClient - initializeNativeRequest called");const t=await this.getCanonicalAuthority(e),{scopes:r,...n}=e,o=new gr(r||[]);o.appendScopes(c);const i={...n,accountId:this.accountId,clientId:this.config.auth.clientId,authority:t.urlString,scope:o.printScopes(),redirectUri:this.getRedirectUri(e.redirectUri),prompt:this.getPrompt(e.prompt),correlationId:this.correlationId,tokenType:e.authenticationScheme,windowTitleSubstring:document.title,extraParameters:{...e.extraQueryParameters,...e.tokenQueryParameters},extendedExpiryToken:!1,keyId:e.popKid};if(i.signPopToken&&e.popKid)throw Qi(Ui);if(this.handleExtraBrokerParams(i),i.extraParameters=i.extraParameters||{},i.extraParameters.telemetry=ts,e.authenticationScheme===Q.POP){const t={resourceRequestUri:e.resourceRequestUri,resourceRequestMethod:e.resourceRequestMethod,shrClaims:e.shrClaims,shrNonce:e.shrNonce},r=new Io(this.browserCrypto);let n;if(i.keyId)n=this.browserCrypto.base64UrlEncode(JSON.stringify({kid:i.keyId})),i.signPopToken=!1;else{const o=await Gn(r.generateCnf.bind(r),Kr.PopTokenGenerateCnf,this.logger,this.performanceClient,e.correlationId)(t,this.logger);n=o.reqCnfString,i.keyId=o.kid,i.signPopToken=!0}i.reqCnf=n}return this.addRequestSKUs(i),i}async getCanonicalAuthority(e){const t=e.authority||this.config.auth.authority;e.account&&await this.getDiscoveredAuthority({requestAuthority:t,requestAzureCloudOptions:e.azureCloudOptions,account:e.account});const r=new _r(t);return r.validateAsUri(),r}getPrompt(e){switch(this.apiId){case Es.ssoSilent:case Es.acquireTokenSilent_silentFlow:return this.logger.trace("initializeNativeRequest: silent request sets prompt to none"),k.NONE}if(e)switch(e){case k.NONE:case k.CONSENT:case k.LOGIN:return this.logger.trace("initializeNativeRequest: prompt is compatible with native flow"),e;default:throw this.logger.trace(`initializeNativeRequest: prompt = ${e} is not compatible with native flow`),Qi(qi)}else this.logger.trace("initializeNativeRequest: prompt was not provided")}handleExtraBrokerParams(e){const t=e.extraParameters&&e.extraParameters.hasOwnProperty(gn)&&e.extraParameters.hasOwnProperty(pn)&&e.extraParameters.hasOwnProperty(an);if(!e.embeddedClientId&&!t)return;let r="";const n=e.redirectUri;e.embeddedClientId?(e.redirectUri=this.config.auth.redirectUri,r=e.embeddedClientId):e.extraParameters&&(e.redirectUri=e.extraParameters[pn],r=e.extraParameters[an]),e.extraParameters={child_client_id:r,child_redirect_uri:n},this.performanceClient?.addFields({embeddedClientId:r,embeddedRedirectUri:n},e.correlationId)}}async function Bc(e,t,r,n,o){const i=Po({...e.auth,authority:t},r,n,o);if(En(i,{sku:Xi,version:Fa,os:"",cpu:""}),e.auth.protocolMode!==kr.OIDC&&Rn(i,e.telemetry.application),r.platformBroker&&(function(e){e.set("nativebroker","1")}(i),r.authenticationScheme===Q.POP)){const e=new nc(n,o),t=new Io(e);let s;if(r.popKid)s=e.encodeKid(r.popKid);else{s=(await Gn(t.generateCnf.bind(t),Kr.PopTokenGenerateCnf,n,o,r.correlationId)(r,n)).reqCnfString}xn(i,s)}return fn(i,r.correlationId,o),i}async function Fc(e,r,n,o,i){if(!n.codeChallenge)throw dr(Jt);const s=await Gn(Bc,Kr.GetStandardParams,o,i,n.correlationId)(e,r,n,o,i);return yn(s,S),function(e,t,r){if(!t||!r)throw dr(Jt);e.set("code_challenge",t),e.set("code_challenge_method",r)}(s,n.codeChallenge,t.S256_CODE_CHALLENGE_METHOD),Un(s,n.extraQueryParameters||{}),Mo(r,s,e.auth.encodeExtraQueryParams,n.extraQueryParameters)}async function Kc(e,t,r,n,o,i){if(!n.earJwk)throw Qi($o);const s=await Bc(t,r,n,o,i);yn(s,b),function(e,t){e.set("ear_jwk",encodeURIComponent(t)),e.set("ear_jwe_crypto","eyJhbGciOiJkaXIiLCJlbmMiOiJBMjU2R0NNIn0")}(s,n.earJwk);const a=new Map;Un(a,n.extraQueryParameters||{});return function(e,t,r){const n=e.createElement("form");return n.method="post",n.action=t,r.forEach(((t,r)=>{const o=e.createElement("input");o.hidden=!0,o.name=r,o.value=t,n.appendChild(o)})),e.body.appendChild(n),n}(e,Mo(r,a,t.auth.encodeExtraQueryParams,n.extraQueryParameters),s)}async function zc(e,t,r,n,o,i,s,a,c,l){if(a.verbose("Account id found, calling WAM for token"),!l)throw Qi(Oi);const h=new nc(a,c),d=new Dc(n,o,h,a,s,n.system.navigationClient,r,c,l,t,i,e.correlationId),{userRequestState:u}=vo.parseRequestState(h,e.state);return Gn(d.acquireToken.bind(d),Kr.NativeInteractionClientAcquireToken,a,c,e.correlationId)({...e,state:u,prompt:void 0})}async function Gc(e,t,r,n,o,i,s,a,c,l,h,d){if(Xn.removeThrottle(s,o.auth.clientId,e),t.accountId)return Gn(zc,Kr.HandleResponsePlatformBroker,l,h,e.correlationId)(e,t.accountId,n,o,s,a,c,l,h,d);const u={...e,code:t.code||"",codeVerifier:r},g=new Oc(i,s,u,l,h);return await Gn(g.handleCodeResponse.bind(g),Kr.HandleCodeResponse,l,h,e.correlationId)(t,e)}async function $c(e,t,r,n,o,i,s,a,c,l,h){if(Xn.removeThrottle(i,n.auth.clientId,e),Oo(t,e.state),!t.ear_jwe)throw Qi(Qo);if(!e.earJwk)throw Qi($o);const d=JSON.parse(await Gn(oa,Kr.DecryptEarResponse,c,l,e.correlationId)(e.earJwk,t.ear_jwe));if(d.accountId)return Gn(zc,Kr.HandleResponsePlatformBroker,c,l,e.correlationId)(e,d.accountId,r,n,i,s,a,c,l,h);const u=new Ao(n.auth.clientId,i,new nc(c,l),c,null,null,l);u.validateTokenResponse(d);const g={code:"",state:e.state,nonce:e.nonce,client_info:d.client_info,cloud_graph_host_name:d.cloud_graph_host_name,cloud_instance_host_name:d.cloud_instance_host_name,cloud_instance_name:d.cloud_instance_name,msgraph_host:d.msgraph_host};return await Gn(u.handleServerTokenResponse.bind(u),Kr.HandleServerTokenResponse,c,l,e.correlationId)(d,o,It(),e,g,void 0,void 0,void 0,void 0)}async function Qc(e,t,r){e.addQueueMeasurement(Kr.GeneratePkceCodes,r);const n=zn(jc,Kr.GenerateCodeVerifier,t,e,r)(e,t,r);return{verifier:n,challenge:await Gn(Wc,Kr.GenerateCodeChallengeFromVerifier,t,e,r)(n,e,t,r)}}function jc(e,t,r){try{const n=new Uint8Array(32);zn(Zs,Kr.GetRandomValues,t,e,r)(n);return Hs(n)}catch(e){throw Qi(Go)}}async function Wc(e,t,r,n){t.addQueueMeasurement(Kr.GenerateCodeChallengeFromVerifier,n);try{const o=await Gn(Xs,Kr.Sha256Digest,r,t,n)(e,t,n);return Hs(new Uint8Array(o))}catch(e){throw Qi(Go)}}class Vc{constructor(e,t,r,n){this.logger=e,this.handshakeTimeoutMs=t,this.extensionId=n,this.resolvers=new Map,this.handshakeResolvers=new Map,this.messageChannel=new MessageChannel,this.windowListener=this.onWindowMessage.bind(this),this.performanceClient=r,this.handshakeEvent=r.startMeasurement(Kr.NativeMessageHandlerHandshake),this.platformAuthType=ss}async sendMessage(e){this.logger.trace(this.platformAuthType+" - sendMessage called.");const t={method:ls,request:e},r={channel:Zi,extensionId:this.extensionId,responseId:ta(),body:t};this.logger.trace(this.platformAuthType+" - Sending request to browser extension"),this.logger.tracePii(this.platformAuthType+` - Sending request to browser extension: ${JSON.stringify(r)}`),this.messageChannel.port1.postMessage(r);const n=await new Promise(((e,t)=>{this.resolvers.set(r.responseId,{resolve:e,reject:t})}));return this.validatePlatformBrokerResponse(n)}static async createProvider(e,t,r){e.trace("PlatformAuthExtensionHandler - createProvider called.");try{const n=new Vc(e,t,r,es);return await n.sendHandshakeRequest(),n}catch(n){const o=new Vc(e,t,r);return await o.sendHandshakeRequest(),o}}async sendHandshakeRequest(){this.logger.trace(this.platformAuthType+" - sendHandshakeRequest called."),window.addEventListener("message",this.windowListener,!1);const e={channel:Zi,extensionId:this.extensionId,responseId:ta(),body:{method:as}};return this.handshakeEvent.add({extensionId:this.extensionId,extensionHandshakeTimeoutMs:this.handshakeTimeoutMs}),this.messageChannel.port1.onmessage=e=>{this.onChannelMessage(e)},window.postMessage(e,window.origin,[this.messageChannel.port2]),new Promise(((t,r)=>{this.handshakeResolvers.set(e.responseId,{resolve:t,reject:r}),this.timeoutId=window.setTimeout((()=>{window.removeEventListener("message",this.windowListener,!1),this.messageChannel.port1.close(),this.messageChannel.port2.close(),this.handshakeEvent.end({extensionHandshakeTimedOut:!0,success:!1}),r(Qi(Pi)),this.handshakeResolvers.delete(e.responseId)}),this.handshakeTimeoutMs)}))}onWindowMessage(e){if(this.logger.trace(this.platformAuthType+" - onWindowMessage called"),e.source!==window)return;const t=e.data;if(t.channel&&t.channel===Zi&&(!t.extensionId||t.extensionId===this.extensionId)&&t.body.method===as){const e=this.handshakeResolvers.get(t.responseId);if(!e)return void this.logger.trace(this.platformAuthType+`.onWindowMessage - resolver can't be found for request ${t.responseId}`);this.logger.verbose(t.extensionId?`Extension with id: ${t.extensionId} not installed`:"No extension installed"),clearTimeout(this.timeoutId),this.messageChannel.port1.close(),this.messageChannel.port2.close(),window.removeEventListener("message",this.windowListener,!1),this.handshakeEvent.end({success:!1,extensionInstalled:!1}),e.reject(Qi(Mi))}}onChannelMessage(e){this.logger.trace(this.platformAuthType+" - onChannelMessage called.");const t=e.data,r=this.resolvers.get(t.responseId),n=this.handshakeResolvers.get(t.responseId);try{const e=t.body.method;if(e===hs){if(!r)return;const e=t.body.response;if(this.logger.trace(this.platformAuthType+" - Received response from browser extension"),this.logger.tracePii(this.platformAuthType+` - Received response from browser extension: ${JSON.stringify(e)}`),"Success"!==e.status)r.reject(Hc(e.code,e.description,e.ext));else{if(!e.result)throw ye(de,"Event does not contain result.");e.result.code&&e.result.description?r.reject(Hc(e.result.code,e.result.description,e.result.ext)):r.resolve(e.result)}this.resolvers.delete(t.responseId)}else if(e===cs){if(!n)return void this.logger.trace(this.platformAuthType+`.onChannelMessage - resolver can't be found for request ${t.responseId}`);clearTimeout(this.timeoutId),window.removeEventListener("message",this.windowListener,!1),this.extensionId=t.extensionId,this.extensionVersion=t.body.version,this.logger.verbose(this.platformAuthType+` - Received HandshakeResponse from extension: ${this.extensionId}`),this.handshakeEvent.end({extensionInstalled:!0,success:!0}),n.resolve(),this.handshakeResolvers.delete(t.responseId)}}catch(t){this.logger.error("Error parsing response from WAM Extension"),this.logger.errorPii(`Error parsing response from WAM Extension: ${t}`),this.logger.errorPii(`Unable to parse ${e}`),r?r.reject(t):n&&n.reject(t)}}validatePlatformBrokerResponse(e){if(e.hasOwnProperty("access_token")&&e.hasOwnProperty("id_token")&&e.hasOwnProperty("client_info")&&e.hasOwnProperty("account")&&e.hasOwnProperty("scope")&&e.hasOwnProperty("expires_in"))return e;throw ye(de,"Response missing expected properties.")}getExtensionId(){return this.extensionId}getExtensionVersion(){return this.extensionVersion}getExtensionName(){return this.getExtensionId()===es?"chrome":this.getExtensionId()?.length?"unknown":void 0}}class Jc{constructor(e,t,r){this.logger=e,this.performanceClient=t,this.correlationId=r,this.platformAuthType=is}static async createProvider(e,t,r){if(e.trace("PlatformAuthDOMHandler: createProvider called"),window.navigator?.platformAuthentication){const n=await window.navigator.platformAuthentication.getSupportedContracts(rs);if(n?.includes(os))return e.trace("Platform auth api available in DOM"),new Jc(e,t,r)}}getExtensionId(){return rs}getExtensionVersion(){return""}getExtensionName(){return ns}async sendMessage(e){this.logger.trace(this.platformAuthType+" - Sending request to browser DOM API");try{const t=this.initializePlatformDOMRequest(e),r=await window.navigator.platformAuthentication.executeGetToken(t);return this.validatePlatformBrokerResponse(r)}catch(e){throw this.logger.error(this.platformAuthType+" - executeGetToken DOM API error"),e}}initializePlatformDOMRequest(e){this.logger.trace(this.platformAuthType+" - initializeNativeDOMRequest called");const{accountId:t,clientId:r,authority:n,scope:o,redirectUri:i,correlationId:s,state:a,storeInCache:c,embeddedClientId:l,extraParameters:h,...d}=e,u=this.getDOMExtraParams(d);return{accountId:t,brokerId:this.getExtensionId(),authority:n,clientId:r,correlationId:s||this.correlationId,extraParameters:{...h,...u},isSecurityTokenService:!1,redirectUri:i,scope:o,state:a,storeInCache:c,embeddedClientId:l}}validatePlatformBrokerResponse(e){if(e.hasOwnProperty("isSuccess")){if(e.hasOwnProperty("accessToken")&&e.hasOwnProperty("idToken")&&e.hasOwnProperty("clientInfo")&&e.hasOwnProperty("account")&&e.hasOwnProperty("scopes")&&e.hasOwnProperty("expiresIn"))return this.logger.trace(this.platformAuthType+" - platform broker returned successful and valid response"),this.convertToPlatformBrokerResponse(e);if(e.hasOwnProperty("error")){const t=e;if(!1===t.isSuccess&&t.error&&t.error.code)throw this.logger.trace(this.platformAuthType+" - platform broker returned error response"),Hc(t.error.code,t.error.description,{error:parseInt(t.error.errorCode),protocol_error:t.error.protocolError,status:t.error.status,properties:t.error.properties})}}throw ye(de,"Response missing expected properties.")}convertToPlatformBrokerResponse(e){this.logger.trace(this.platformAuthType+" - convertToNativeResponse called");return{access_token:e.accessToken,id_token:e.idToken,client_info:e.clientInfo,account:e.account,expires_in:e.expiresIn,scope:e.scopes,state:e.state||"",properties:e.properties||{},extendedLifetimeToken:e.extendedLifetimeToken??!1,shr:e.proofOfPossessionPayload}}getDOMExtraParams(e){return{...Object.entries(e).reduce(((e,[t,r])=>(e[t]=String(r),e)),{})}}}async function Yc(e,t,r,n){e.trace("getPlatformAuthProvider called",r);const o=function(){let e;try{return e=window[ds.SessionStorage],"true"===e?.getItem(Ls)}catch(e){return!1}}();let i;e.trace("Has client allowed platform auth via DOM API: "+o);try{o&&(i=await Jc.createProvider(e,t,r)),i||(e.trace("Platform auth via DOM API not available, checking for extension"),i=await Vc.createProvider(e,n||2e3,t))}catch(t){e.trace("Platform auth not available",t)}return i}function Xc(e,t,r,n){if(t.trace("isPlatformAuthAllowed called"),!e.system.allowPlatformBroker)return t.trace("isPlatformAuthAllowed: allowPlatformBroker is not enabled, returning false"),!1;if(!r)return t.trace("isPlatformAuthAllowed: Platform auth provider is not initialized, returning false"),!1;if(n)switch(n){case Q.BEARER:case Q.POP:return t.trace("isPlatformAuthAllowed: authenticationScheme is supported, returning true"),!0;default:return t.trace("isPlatformAuthAllowed: authenticationScheme is not supported, returning false"),!1}return!0}class Zc extends _c{constructor(e,t,r,n,o,i,s,a,c,l){super(e,t,r,n,o,i,s,c,l),this.unloadWindow=this.unloadWindow.bind(this),this.nativeStorage=a,this.eventHandler=o}acquireToken(e,t){try{const r={popupName:this.generatePopupName(e.scopes||c,e.authority||this.config.auth.authority),popupWindowAttributes:e.popupWindowAttributes||{},popupWindowParent:e.popupWindowParent??window};return this.performanceClient.addFields({isAsyncPopup:this.config.system.asyncPopups},this.correlationId),this.config.system.asyncPopups?(this.logger.verbose("asyncPopups set to true, acquiring token"),this.acquireTokenPopupAsync(e,r,t)):(this.logger.verbose("asyncPopup set to false, opening popup before acquiring token"),r.popup=this.openSizedPopup("about:blank",r),this.acquireTokenPopupAsync(e,r,t))}catch(e){return Promise.reject(e)}}logout(e){try{this.logger.verbose("logoutPopup called");const t=this.initializeLogoutRequest(e),r={popupName:this.generateLogoutPopupName(t),popupWindowAttributes:e?.popupWindowAttributes||{},popupWindowParent:e?.popupWindowParent??window},n=e&&e.authority,o=e&&e.mainWindowRedirectUri;return this.config.system.asyncPopups?(this.logger.verbose("asyncPopups set to true"),this.logoutPopupAsync(t,r,n,o)):(this.logger.verbose("asyncPopup set to false, opening popup"),r.popup=this.openSizedPopup("about:blank",r),this.logoutPopupAsync(t,r,n,o))}catch(e){return Promise.reject(e)}}async acquireTokenPopupAsync(t,r,n){this.logger.verbose("acquireTokenPopupAsync called");const o=await Gn(this.initializeAuthorizationRequest.bind(this),Kr.StandardInteractionClientInitializeAuthorizationRequest,this.logger,this.performanceClient,this.correlationId)(t,e.InteractionType.Popup);r.popup&&Oa(o.authority);const i=Xc(this.config,this.logger,this.platformAuthProvider,t.authenticationScheme);return o.platformBroker=i,this.config.auth.protocolMode===kr.EAR?this.executeEarFlow(o,r):this.executeCodeFlow(o,r,n)}async executeCodeFlow(t,r,n){const o=t.correlationId,i=this.initializeServerTelemetryManager(Es.acquireTokenPopup),s=n||await Gn(Qc,Kr.GeneratePkceCodes,this.logger,this.performanceClient,o)(this.performanceClient,this.logger,o),a={...t,codeChallenge:s.challenge};try{const n=await Gn(this.createAuthCodeClient.bind(this),Kr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,o)({serverTelemetryManager:i,requestAuthority:a.authority,requestAzureCloudOptions:a.azureCloudOptions,requestExtraQueryParameters:a.extraQueryParameters,account:a.account}),c=await Gn(Fc,Kr.GetAuthCodeUrl,this.logger,this.performanceClient,o)(this.config,n.authority,a,this.logger,this.performanceClient),l=this.initiateAuthRequest(c,r);this.eventHandler.emitEvent(pc.POPUP_OPENED,e.InteractionType.Popup,{popupWindow:l},null);const h=await this.monitorPopupForHash(l,r.popupWindowParent),d=zn(Pc,Kr.DeserializeResponse,this.logger,this.performanceClient,this.correlationId)(h,this.config.auth.OIDCOptions.serverResponseType,this.logger);return await Gn(Gc,Kr.HandleResponseCode,this.logger,this.performanceClient,o)(t,d,s.verifier,Es.acquireTokenPopup,this.config,n,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}catch(e){throw r.popup?.close(),e instanceof fe&&(e.setCorrelationId(this.correlationId),i.cacheFailedRequest(e)),e}}async executeEarFlow(e,t){const r=e.correlationId,n=await Gn(this.getDiscoveredAuthority.bind(this),Kr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,r)({requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account}),o=await Gn(na,Kr.GenerateEarKey,this.logger,this.performanceClient,r)(),i={...e,earJwk:o},s=t.popup||this.openPopup("about:blank",t);(await Kc(s.document,this.config,n,i,this.logger,this.performanceClient)).submit();const a=await Gn(this.monitorPopupForHash.bind(this),Kr.SilentHandlerMonitorIframeForHash,this.logger,this.performanceClient,r)(s,t.popupWindowParent),c=zn(Pc,Kr.DeserializeResponse,this.logger,this.performanceClient,this.correlationId)(a,this.config.auth.OIDCOptions.serverResponseType,this.logger);return Gn($c,Kr.HandleResponseEar,this.logger,this.performanceClient,r)(i,c,Es.acquireTokenPopup,this.config,n,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}async logoutPopupAsync(t,r,n,o){this.logger.verbose("logoutPopupAsync called"),this.eventHandler.emitEvent(pc.LOGOUT_START,e.InteractionType.Popup,t);const i=this.initializeServerTelemetryManager(Es.logoutPopup);try{await this.clearCacheOnLogout(this.correlationId,t.account);const s=await Gn(this.createAuthCodeClient.bind(this),Kr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:i,requestAuthority:n,account:t.account||void 0});try{s.authority.endSessionEndpoint}catch{if(t.account?.homeAccountId&&t.postLogoutRedirectUri&&s.authority.protocolMode===kr.OIDC){if(this.browserStorage.removeAccount(t.account?.homeAccountId,this.correlationId),this.eventHandler.emitEvent(pc.LOGOUT_SUCCESS,e.InteractionType.Popup,t),o){const e={apiId:Es.logoutPopup,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},t=_r.getAbsoluteUrl(o,Aa());await this.navigationClient.navigateInternal(t,e)}return void r.popup?.close()}}const a=s.getLogoutUri(t);this.eventHandler.emitEvent(pc.LOGOUT_SUCCESS,e.InteractionType.Popup,t);const c=this.openPopup(a,r);if(this.eventHandler.emitEvent(pc.POPUP_OPENED,e.InteractionType.Popup,{popupWindow:c},null),await this.monitorPopupForHash(c,r.popupWindowParent).catch((()=>{})),o){const e={apiId:Es.logoutPopup,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},t=_r.getAbsoluteUrl(o,Aa());this.logger.verbose("Redirecting main window to url specified in the request"),this.logger.verbosePii(`Redirecting main window to: ${t}`),await this.navigationClient.navigateInternal(t,e)}else this.logger.verbose("No main window navigation requested")}catch(t){throw r.popup?.close(),t instanceof fe&&(t.setCorrelationId(this.correlationId),i.cacheFailedRequest(t)),this.eventHandler.emitEvent(pc.LOGOUT_FAILURE,e.InteractionType.Popup,null,t),this.eventHandler.emitEvent(pc.LOGOUT_END,e.InteractionType.Popup),t}this.eventHandler.emitEvent(pc.LOGOUT_END,e.InteractionType.Popup)}initiateAuthRequest(e,t){if(e)return this.logger.infoPii(`Navigate to: ${e}`),this.openPopup(e,t);throw this.logger.error("Navigate url is empty"),Qi(Wo)}monitorPopupForHash(e,t){return new Promise(((t,r)=>{this.logger.verbose("PopupHandler.monitorPopupForHash - polling started");const n=setInterval((()=>{if(e.closed)return this.logger.error("PopupHandler.monitorPopupForHash - window closed"),clearInterval(n),void r(Qi(ni));let o="";try{o=e.location.href}catch(e){}if(!o||"about:blank"===o)return;clearInterval(n);let i="";const s=this.config.auth.OIDCOptions.serverResponseType;e&&(i=s===E.QUERY?e.location.search:e.location.hash),this.logger.verbose("PopupHandler.monitorPopupForHash - popup window is on same origin as caller"),t(i)}),this.config.system.pollIntervalMilliseconds)})).finally((()=>{this.cleanPopup(e,t)}))}openPopup(e,t){try{let r;if(t.popup?(r=t.popup,this.logger.verbosePii(`Navigating popup window to: ${e}`),r.location.assign(e)):void 0===t.popup&&(this.logger.verbosePii(`Opening popup window to: ${e}`),r=this.openSizedPopup(e,t)),!r)throw Qi(ri);return r.focus&&r.focus(),this.currentWindow=r,t.popupWindowParent.addEventListener("beforeunload",this.unloadWindow),r}catch(e){throw this.logger.error("error opening popup "+e.message),Qi(ti)}}openSizedPopup(e,{popupName:t,popupWindowAttributes:r,popupWindowParent:n}){const o=n.screenLeft?n.screenLeft:n.screenX,i=n.screenTop?n.screenTop:n.screenY,s=n.innerWidth||document.documentElement.clientWidth||document.body.clientWidth,a=n.innerHeight||document.documentElement.clientHeight||document.body.clientHeight;let c=r.popupSize?.width,l=r.popupSize?.height,h=r.popupPosition?.top,d=r.popupPosition?.left;return(!c||c<0||c>s)&&(this.logger.verbose("Default popup window width used. Window width not configured or invalid."),c=Wi),(!l||l<0||l>a)&&(this.logger.verbose("Default popup window height used. Window height not configured or invalid."),l=Vi),(!h||h<0||h>a)&&(this.logger.verbose("Default popup window top position used. Window top not configured or invalid."),h=Math.max(0,a/2-Vi/2+i)),(!d||d<0||d>s)&&(this.logger.verbose("Default popup window left position used. Window left not configured or invalid."),d=Math.max(0,s/2-Wi/2+o)),n.open(e,t,`width=${c}, height=${l}, top=${h}, left=${d}, scrollbars=yes`)}unloadWindow(e){this.currentWindow&&this.currentWindow.close(),e.preventDefault()}cleanPopup(e,t){e.close(),t.removeEventListener("beforeunload",this.unloadWindow)}generatePopupName(e,t){return`${Ji}.${this.config.auth.clientId}.${e.join("-")}.${t}.${this.correlationId}`}generateLogoutPopupName(e){const t=e.account&&e.account.homeAccountId;return`${Ji}.${this.config.auth.clientId}.${t}.${this.correlationId}`}}class el extends _c{constructor(e,t,r,n,o,i,s,a,c,l){super(e,t,r,n,o,i,s,c,l),this.nativeStorage=a}async acquireToken(t){const r=await Gn(this.initializeAuthorizationRequest.bind(this),Kr.StandardInteractionClientInitializeAuthorizationRequest,this.logger,this.performanceClient,this.correlationId)(t,e.InteractionType.Redirect);r.platformBroker=Xc(this.config,this.logger,this.platformAuthProvider,t.authenticationScheme);const n=t=>{t.persisted&&(this.logger.verbose("Page was restored from back/forward cache. Clearing temporary cache."),this.browserStorage.resetRequestCache(),this.eventHandler.emitEvent(pc.RESTORE_FROM_BFCACHE,e.InteractionType.Redirect))},o=this.getRedirectStartPage(t.redirectStartPage);this.logger.verbosePii(`Redirect start page: ${o}`),this.browserStorage.setTemporaryCache(fs,o,!0),window.addEventListener("pageshow",n);try{this.config.auth.protocolMode===kr.EAR?await this.executeEarFlow(r):await this.executeCodeFlow(r,t.onRedirectNavigate)}catch(e){throw e instanceof fe&&e.setCorrelationId(this.correlationId),window.removeEventListener("pageshow",n),e}}async executeCodeFlow(e,t){const r=e.correlationId,n=this.initializeServerTelemetryManager(Es.acquireTokenRedirect),o=await Gn(Qc,Kr.GeneratePkceCodes,this.logger,this.performanceClient,r)(this.performanceClient,this.logger,r),i={...e,codeChallenge:o.challenge};this.browserStorage.cacheAuthorizeRequest(i,o.verifier);try{const r=await Gn(this.createAuthCodeClient.bind(this),Kr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:n,requestAuthority:i.authority,requestAzureCloudOptions:i.azureCloudOptions,requestExtraQueryParameters:i.extraQueryParameters,account:i.account}),o=await Gn(Fc,Kr.GetAuthCodeUrl,this.logger,this.performanceClient,e.correlationId)(this.config,r.authority,i,this.logger,this.performanceClient);return await this.initiateAuthRequest(o,t)}catch(e){throw e instanceof fe&&(e.setCorrelationId(this.correlationId),n.cacheFailedRequest(e)),e}}async executeEarFlow(e){const t=e.correlationId,r=await Gn(this.getDiscoveredAuthority.bind(this),Kr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,t)({requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account}),n=await Gn(na,Kr.GenerateEarKey,this.logger,this.performanceClient,t)(),o={...e,earJwk:n};this.browserStorage.cacheAuthorizeRequest(o);return(await Kc(document,this.config,r,o,this.logger,this.performanceClient)).submit(),new Promise(((e,t)=>{setTimeout((()=>{t(Qi(Bi,"failed_to_redirect"))}),this.config.system.redirectNavigationTimeout)}))}async handleRedirectPromise(e="",r,n,o){const i=this.initializeServerTelemetryManager(Es.handleRedirectPromise);try{const[s,a]=this.getRedirectResponse(e||"");if(!s)return this.logger.info("handleRedirectPromise did not detect a response as a result of a redirect. Cleaning temporary cache."),this.browserStorage.resetRequestCache(),"back_forward"!==function(){if("undefined"==typeof window||void 0===window.performance||"function"!=typeof window.performance.getEntriesByType)return;const e=window.performance.getEntriesByType("navigation"),t=e.length?e[0]:void 0;return t?.type}()?o.event.errorCode="no_server_response":this.logger.verbose("Back navigation event detected. Muting no_server_response error"),null;const c=this.browserStorage.getTemporaryCache(fs,!0)||t.EMPTY_STRING,l=_r.removeHashFromUrl(c);if(l===_r.removeHashFromUrl(window.location.href)&&this.config.auth.navigateToLoginRequestUrl){this.logger.verbose("Current page is loginRequestUrl, handling response"),c.indexOf("#")>-1&&wa(c);return await this.handleResponse(s,r,n,i)}if(!this.config.auth.navigateToLoginRequestUrl)return this.logger.verbose("NavigateToLoginRequestUrl set to false, handling response"),await this.handleResponse(s,r,n,i);if(!Ia()||this.config.system.allowRedirectInIframe){this.browserStorage.setTemporaryCache(ys,a,!0);const e={apiId:Es.handleRedirectPromise,timeout:this.config.system.redirectNavigationTimeout,noHistory:!0};let t=!0;if(c&&"null"!==c)this.logger.verbose(`Navigating to loginRequestUrl: ${c}`),t=await this.navigationClient.navigateInternal(c,e);else{const r=ka();this.browserStorage.setTemporaryCache(fs,r,!0),this.logger.warning("Unable to get valid login request url from cache, redirecting to home page"),t=await this.navigationClient.navigateInternal(r,e)}if(!t)return await this.handleResponse(s,r,n,i)}return null}catch(e){throw e instanceof fe&&(e.setCorrelationId(this.correlationId),i.cacheFailedRequest(e)),e}}getRedirectResponse(t){this.logger.verbose("getRedirectResponseHash called");let r=t;r||(r=this.config.auth.OIDCOptions.serverResponseType===E.QUERY?window.location.search:window.location.hash);let n=Er(r);if(n){try{Mc(n,this.browserCrypto,e.InteractionType.Redirect)}catch(e){return e instanceof fe&&this.logger.error(`Interaction type validation failed due to ${e.errorCode}: ${e.errorMessage}`),[null,""]}return va(window),this.logger.verbose("Hash contains known properties, returning response hash"),[n,r]}const o=this.browserStorage.getTemporaryCache(ys,!0);return this.browserStorage.removeItem(this.browserStorage.generateCacheKey(ys)),o&&(n=Er(o),n)?(this.logger.verbose("Hash does not contain known properties, returning cached hash"),[n,o]):[null,""]}async handleResponse(e,t,r,n){if(!e.state)throw Qi(Jo);if(e.ear_jwe){const r=await Gn(this.getDiscoveredAuthority.bind(this),Kr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,t.correlationId)({requestAuthority:t.authority,requestAzureCloudOptions:t.azureCloudOptions,requestExtraQueryParameters:t.extraQueryParameters,account:t.account});return Gn($c,Kr.HandleResponseEar,this.logger,this.performanceClient,t.correlationId)(t,e,Es.acquireTokenRedirect,this.config,r,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}const o=await Gn(this.createAuthCodeClient.bind(this),Kr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:n,requestAuthority:t.authority});return Gn(Gc,Kr.HandleResponseCode,this.logger,this.performanceClient,t.correlationId)(t,e,r,Es.acquireTokenRedirect,this.config,o,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}async initiateAuthRequest(e,t){if(this.logger.verbose("RedirectHandler.initiateAuthRequest called"),e){this.logger.infoPii(`RedirectHandler.initiateAuthRequest: Navigate to: ${e}`);const r={apiId:Es.acquireTokenRedirect,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},n=t||this.config.auth.onRedirectNavigate;if("function"==typeof n){this.logger.verbose("RedirectHandler.initiateAuthRequest: Invoking onRedirectNavigate callback");return!1!==n(e)?(this.logger.verbose("RedirectHandler.initiateAuthRequest: onRedirectNavigate did not return false, navigating"),void await this.navigationClient.navigateExternal(e,r)):void this.logger.verbose("RedirectHandler.initiateAuthRequest: onRedirectNavigate returned false, stopping navigation")}return this.logger.verbose("RedirectHandler.initiateAuthRequest: Navigating window to navigate url"),void await this.navigationClient.navigateExternal(e,r)}throw this.logger.info("RedirectHandler.initiateAuthRequest: Navigate url is empty"),Qi(Wo)}async logout(t){this.logger.verbose("logoutRedirect called");const r=this.initializeLogoutRequest(t),n=this.initializeServerTelemetryManager(Es.logout);try{this.eventHandler.emitEvent(pc.LOGOUT_START,e.InteractionType.Redirect,t),await this.clearCacheOnLogout(this.correlationId,r.account);const o={apiId:Es.logout,timeout:this.config.system.redirectNavigationTimeout,noHistory:!1},i=await Gn(this.createAuthCodeClient.bind(this),Kr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:n,requestAuthority:t&&t.authority,requestExtraQueryParameters:t?.extraQueryParameters,account:t&&t.account||void 0});if(i.authority.protocolMode===kr.OIDC)try{i.authority.endSessionEndpoint}catch{if(r.account?.homeAccountId)return this.browserStorage.removeAccount(r.account?.homeAccountId,this.correlationId),void this.eventHandler.emitEvent(pc.LOGOUT_SUCCESS,e.InteractionType.Redirect,r)}const s=i.getLogoutUri(r);if(this.eventHandler.emitEvent(pc.LOGOUT_SUCCESS,e.InteractionType.Redirect,r),!t||"function"!=typeof t.onRedirectNavigate)return this.browserStorage.getInteractionInProgress()||this.browserStorage.setInteractionInProgress(!0,ms),void await this.navigationClient.navigateExternal(s,o);if(!1!==t.onRedirectNavigate(s))return this.logger.verbose("Logout onRedirectNavigate did not return false, navigating"),this.browserStorage.getInteractionInProgress()||this.browserStorage.setInteractionInProgress(!0,ms),void await this.navigationClient.navigateExternal(s,o);this.browserStorage.setInteractionInProgress(!1),this.logger.verbose("Logout onRedirectNavigate returned false, stopping navigation")}catch(t){throw t instanceof fe&&(t.setCorrelationId(this.correlationId),n.cacheFailedRequest(t)),this.eventHandler.emitEvent(pc.LOGOUT_FAILURE,e.InteractionType.Redirect,null,t),this.eventHandler.emitEvent(pc.LOGOUT_END,e.InteractionType.Redirect),t}this.eventHandler.emitEvent(pc.LOGOUT_END,e.InteractionType.Redirect)}getRedirectStartPage(e){const t=e||window.location.href;return _r.getAbsoluteUrl(t,Aa())}}async function tl(e,t,r,n,o){if(t.addQueueMeasurement(Kr.SilentHandlerInitiateAuthRequest,n),!e)throw r.info("Navigate url is empty"),Qi(Wo);return o?Gn(ol,Kr.SilentHandlerLoadFrame,r,t,n)(e,o,t,n):zn(il,Kr.SilentHandlerLoadFrameSync,r,t,n)(e)}async function rl(e,t,r,n,o){const i=sl();if(!i.contentDocument)throw"No document associated with iframe!";return(await Kc(i.contentDocument,e,t,r,n,o)).submit(),i}async function nl(e,t,r,n,o,i,s){return n.addQueueMeasurement(Kr.SilentHandlerMonitorIframeForHash,i),new Promise(((n,i)=>{t<Da&&o.warning(`system.loadFrameTimeout or system.iframeHashTimeout set to lower (${t}ms) than the default (10000ms). This may result in timeouts.`);const a=window.setTimeout((()=>{window.clearInterval(c),i(Qi(ii))}),t),c=window.setInterval((()=>{let t="";const r=e.contentWindow;try{t=r?r.location.href:""}catch(e){}if(!t||"about:blank"===t)return;let o="";r&&(o=s===E.QUERY?r.location.search:r.location.hash),window.clearTimeout(a),window.clearInterval(c),n(o)}),r)})).finally((()=>{zn(al,Kr.RemoveHiddenIframe,o,n,i)(e)}))}function ol(e,t,r,n){return r.addQueueMeasurement(Kr.SilentHandlerLoadFrame,n),new Promise(((r,n)=>{const o=sl();window.setTimeout((()=>{o?(o.src=e,r(o)):n("Unable to load iframe")}),t)}))}function il(e){const t=sl();return t.src=e,t}function sl(){const e=document.createElement("iframe");return e.className="msalSilentIframe",e.style.visibility="hidden",e.style.position="absolute",e.style.width=e.style.height="0",e.style.border="0",e.setAttribute("sandbox","allow-scripts allow-same-origin allow-forms"),document.body.appendChild(e),e}function al(e){document.body===e.parentNode&&document.body.removeChild(e)}class cl extends _c{constructor(e,t,r,n,o,i,s,a,c,l,h){super(e,t,r,n,o,i,a,l,h),this.apiId=s,this.nativeStorage=c}async acquireToken(t){this.performanceClient.addQueueMeasurement(Kr.SilentIframeClientAcquireToken,t.correlationId),t.loginHint||t.sid||t.account&&t.account.username||this.logger.warning("No user hint provided. The authorization server may need more information to complete this request.");const r={...t};r.prompt?r.prompt!==k.NONE&&r.prompt!==k.NO_SESSION&&(this.logger.warning(`SilentIframeClient. Replacing invalid prompt ${r.prompt} with ${k.NONE}`),r.prompt=k.NONE):r.prompt=k.NONE;const n=await Gn(this.initializeAuthorizationRequest.bind(this),Kr.StandardInteractionClientInitializeAuthorizationRequest,this.logger,this.performanceClient,t.correlationId)(r,e.InteractionType.Silent);return n.platformBroker=Xc(this.config,this.logger,this.platformAuthProvider,n.authenticationScheme),Oa(n.authority),this.config.auth.protocolMode===kr.EAR?this.executeEarFlow(n):this.executeCodeFlow(n)}async executeCodeFlow(e){let t;const r=this.initializeServerTelemetryManager(this.apiId);try{return t=await Gn(this.createAuthCodeClient.bind(this),Kr.StandardInteractionClientCreateAuthCodeClient,this.logger,this.performanceClient,e.correlationId)({serverTelemetryManager:r,requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account}),await Gn(this.silentTokenHelper.bind(this),Kr.SilentIframeClientTokenHelper,this.logger,this.performanceClient,e.correlationId)(t,e)}catch(n){if(n instanceof fe&&(n.setCorrelationId(this.correlationId),r.cacheFailedRequest(n)),!(t&&n instanceof fe&&n.errorCode===ji))throw n;return this.performanceClient.addFields({retryError:n.errorCode},this.correlationId),await Gn(this.silentTokenHelper.bind(this),Kr.SilentIframeClientTokenHelper,this.logger,this.performanceClient,this.correlationId)(t,e)}}async executeEarFlow(e){const t=e.correlationId,r=await Gn(this.getDiscoveredAuthority.bind(this),Kr.StandardInteractionClientGetDiscoveredAuthority,this.logger,this.performanceClient,t)({requestAuthority:e.authority,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account}),n=await Gn(na,Kr.GenerateEarKey,this.logger,this.performanceClient,t)(),o={...e,earJwk:n},i=await Gn(rl,Kr.SilentHandlerInitiateAuthRequest,this.logger,this.performanceClient,t)(this.config,r,o,this.logger,this.performanceClient),s=this.config.auth.OIDCOptions.serverResponseType,a=await Gn(nl,Kr.SilentHandlerMonitorIframeForHash,this.logger,this.performanceClient,t)(i,this.config.system.iframeHashTimeout,this.config.system.pollIntervalMilliseconds,this.performanceClient,this.logger,t,s),c=zn(Pc,Kr.DeserializeResponse,this.logger,this.performanceClient,t)(a,s,this.logger);return Gn($c,Kr.HandleResponseEar,this.logger,this.performanceClient,t)(o,c,this.apiId,this.config,r,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}logout(){return Promise.reject(Qi(hi))}async silentTokenHelper(e,t){const r=t.correlationId;this.performanceClient.addQueueMeasurement(Kr.SilentIframeClientTokenHelper,r);const n=await Gn(Qc,Kr.GeneratePkceCodes,this.logger,this.performanceClient,r)(this.performanceClient,this.logger,r),o={...t,codeChallenge:n.challenge},i=await Gn(Fc,Kr.GetAuthCodeUrl,this.logger,this.performanceClient,r)(this.config,e.authority,o,this.logger,this.performanceClient),s=await Gn(tl,Kr.SilentHandlerInitiateAuthRequest,this.logger,this.performanceClient,r)(i,this.performanceClient,this.logger,r,this.config.system.navigateFrameWait),a=this.config.auth.OIDCOptions.serverResponseType,c=await Gn(nl,Kr.SilentHandlerMonitorIframeForHash,this.logger,this.performanceClient,r)(s,this.config.system.iframeHashTimeout,this.config.system.pollIntervalMilliseconds,this.performanceClient,this.logger,r,a),l=zn(Pc,Kr.DeserializeResponse,this.logger,this.performanceClient,r)(c,a,this.logger);return Gn(Gc,Kr.HandleResponseCode,this.logger,this.performanceClient,r)(t,l,n.verifier,this.apiId,this.config,e,this.browserStorage,this.nativeStorage,this.eventHandler,this.logger,this.performanceClient,this.platformAuthProvider)}}class ll extends _c{async acquireToken(e){this.performanceClient.addQueueMeasurement(Kr.SilentRefreshClientAcquireToken,e.correlationId);const t=await Gn(Ec,Kr.InitializeBaseRequest,this.logger,this.performanceClient,e.correlationId)(e,this.config,this.performanceClient,this.logger),r={...e,...t};e.redirectUri&&(r.redirectUri=this.getRedirectUri(e.redirectUri));const n=this.initializeServerTelemetryManager(Es.acquireTokenSilent_silentFlow),o=await this.createRefreshTokenClient({serverTelemetryManager:n,authorityUrl:r.authority,azureCloudOptions:r.azureCloudOptions,account:r.account});return Gn(o.acquireTokenByRefreshToken.bind(o),Kr.RefreshTokenClientAcquireTokenByRefreshToken,this.logger,this.performanceClient,e.correlationId)(r).catch((e=>{throw e.setCorrelationId(this.correlationId),n.cacheFailedRequest(e),e}))}logout(){return Promise.reject(Qi(hi))}async createRefreshTokenClient(e){const t=await Gn(this.getClientConfiguration.bind(this),Kr.StandardInteractionClientGetClientConfiguration,this.logger,this.performanceClient,this.correlationId)({serverTelemetryManager:e.serverTelemetryManager,requestAuthority:e.authorityUrl,requestAzureCloudOptions:e.azureCloudOptions,requestExtraQueryParameters:e.extraQueryParameters,account:e.account});return new Eo(t,this.performanceClient)}}class hl{constructor(e,t,r,n){this.isBrowserEnvironment="undefined"!=typeof window,this.config=e,this.storage=t,this.logger=r,this.cryptoObj=n}async loadExternalTokens(e,t,r){if(!this.isBrowserEnvironment)throw Qi(yi);const n=e.correlationId||ta(),o=t.id_token?vt(t.id_token,Bs):void 0,i={protocolMode:this.config.auth.protocolMode,knownAuthorities:this.config.auth.knownAuthorities,cloudDiscoveryMetadata:this.config.auth.cloudDiscoveryMetadata,authorityMetadata:this.config.auth.authorityMetadata,skipAuthorityMetadataCache:this.config.auth.skipAuthorityMetadataCache},s=e.authority?new Qn(Qn.generateAuthority(e.authority,e.azureCloudOptions),this.config.system.networkClient,this.storage,i,this.logger,e.correlationId||ta()):void 0,a=await this.loadAccount(e,r.clientInfo||t.client_info||"",n,o,s),c=await this.loadIdToken(t,a.homeAccountId,a.environment,a.realm,n),l=await this.loadAccessToken(e,t,a.homeAccountId,a.environment,a.realm,r,n),h=await this.loadRefreshToken(t,a.homeAccountId,a.environment,n);return this.generateAuthenticationResult(e,{account:a,idToken:c,accessToken:l,refreshToken:h},o,s)}async loadAccount(e,t,r,n,o){if(this.logger.verbose("TokenCache - loading account"),e.account){const t=Sr.createFromAccountInfo(e.account);return await this.storage.setAccount(t,r),t}if(!o||!t&&!n)throw this.logger.error("TokenCache - if an account is not provided on the request, authority and either clientInfo or idToken must be provided instead."),Qi(Ai);const i=Sr.generateHomeAccountId(t,o.authorityType,this.logger,this.cryptoObj,n),s=n?.tid,a=ko(this.storage,o,i,Bs,r,n,t,o.hostnameAndPort,s,void 0,void 0,this.logger);return await this.storage.setAccount(a,r),a}async loadIdToken(e,t,r,n,o){if(!e.id_token)return this.logger.verbose("TokenCache - no id token found in response"),null;this.logger.verbose("TokenCache - loading id token");const i=Et(t,r,e.id_token,this.config.auth.clientId,n);return await this.storage.setIdTokenCredential(i,o),i}async loadAccessToken(e,t,r,n,o,i,s){if(!t.access_token)return this.logger.verbose("TokenCache - no access token found in response"),null;if(!t.expires_in)return this.logger.error("TokenCache - no expiration set on the access token. Cannot add it to the cache."),null;if(!(t.scope||e.scopes&&e.scopes.length))return this.logger.error("TokenCache - scopes not specified in the request or response. Cannot add token to the cache."),null;this.logger.verbose("TokenCache - loading access token");const a=t.scope?gr.fromString(t.scope):new gr(e.scopes),c=i.expiresOn||t.expires_in+It(),l=i.extendedExpiresOn||(t.ext_expires_in||t.expires_in)+It(),h=Rt(r,n,t.access_token,this.config.auth.clientId,o,a.printScopes(),c,l,Bs);return await this.storage.setAccessTokenCredential(h,s),h}async loadRefreshToken(e,t,r,n){if(!e.refresh_token)return this.logger.verbose("TokenCache - no refresh token found in response"),null;this.logger.verbose("TokenCache - loading refresh token");const o=_t(t,r,e.refresh_token,this.config.auth.clientId,e.foci,void 0,e.refresh_token_expires_in);return await this.storage.setRefreshTokenCredential(o,n),o}generateAuthenticationResult(e,t,r,n){let o,i="",s=[],a=null;t?.accessToken&&(i=t.accessToken.secret,s=gr.fromString(t.accessToken.target).asArray(),a=At(t.accessToken.expiresOn),o=At(t.accessToken.extendedExpiresOn));const c=t.account;return{authority:n?n.canonicalAuthority:"",uniqueId:t.account.localAccountId,tenantId:t.account.realm,scopes:s,account:c.getAccountInfo(),idToken:t.idToken?.secret||"",idTokenClaims:r||{},accessToken:i,fromCache:!0,expiresOn:a,correlationId:e.correlationId||"",requestId:"",extExpiresOn:o,familyId:t.refreshToken?.familyId||"",tokenType:t?.accessToken?.tokenType||"",state:e.state||"",cloudGraphHostName:c.cloudGraphHostName||"",msGraphHost:c.msGraphHost||"",fromNativeBroker:!1}}}class dl extends bo{constructor(e){super(e),this.includeRedirectUri=!1}}class ul extends _c{constructor(e,t,r,n,o,i,s,a,c,l){super(e,t,r,n,o,i,a,c,l),this.apiId=s}async acquireToken(t){if(!t.code)throw Qi(Si);const r=await Gn(this.initializeAuthorizationRequest.bind(this),Kr.StandardInteractionClientInitializeAuthorizationRequest,this.logger,this.performanceClient,t.correlationId)(t,e.InteractionType.Silent),n=this.initializeServerTelemetryManager(this.apiId);try{const e={...r,code:t.code},o=await Gn(this.getClientConfiguration.bind(this),Kr.StandardInteractionClientGetClientConfiguration,this.logger,this.performanceClient,t.correlationId)({serverTelemetryManager:n,requestAuthority:r.authority,requestAzureCloudOptions:r.azureCloudOptions,requestExtraQueryParameters:r.extraQueryParameters,account:r.account}),i=new dl(o);this.logger.verbose("Auth code client created");const s=new Oc(i,this.browserStorage,e,this.logger,this.performanceClient);return await Gn(s.handleCodeResponseFromServer.bind(s),Kr.HandleCodeResponseFromServer,this.logger,this.performanceClient,t.correlationId)({code:t.code,msgraph_host:t.msGraphHost,cloud_graph_host_name:t.cloudGraphHostName,cloud_instance_host_name:t.cloudInstanceHostName},r,!1)}catch(e){throw e instanceof fe&&(e.setCorrelationId(this.correlationId),n.cacheFailedRequest(e)),e}}logout(){return Promise.reject(Qi(hi))}}function gl(e){const t=e?.idTokenClaims;return t?.tfp||t?.acr?"B2C":t?.tid?"9188040d-6c67-4c5b-b112-36a304b66dad"===t?.tid?"MSA":"AAD":void 0}function pl(e,t){try{Pa(e)}catch(e){throw t.end({success:!1},e),e}}class ml{constructor(e){this.operatingContext=e,this.isBrowserEnvironment=this.operatingContext.isBrowserEnvironment(),this.config=e.getConfig(),this.initialized=!1,this.logger=this.operatingContext.getLogger(),this.networkClient=this.config.system.networkClient,this.navigationClient=this.config.system.navigationClient,this.redirectResponse=new Map,this.hybridAuthCodeResponses=new Map,this.performanceClient=this.config.telemetry.client,this.browserCrypto=this.isBrowserEnvironment?new nc(this.logger,this.performanceClient):gt,this.eventHandler=new Sc(this.logger),this.browserStorage=this.isBrowserEnvironment?new mc(this.config.auth.clientId,this.config.cache,this.browserCrypto,this.logger,this.performanceClient,this.eventHandler,Wn(this.config.auth)):yc(this.config.auth.clientId,this.logger,this.performanceClient,this.eventHandler);const t={cacheLocation:ds.MemoryStorage,temporaryCacheLocation:ds.MemoryStorage,storeAuthStateInCookie:!1,secureCookies:!1,cacheMigrationEnabled:!1,claimsBasedCachingEnabled:!1};this.nativeInternalStorage=new mc(this.config.auth.clientId,t,this.browserCrypto,this.logger,this.performanceClient,this.eventHandler),this.tokenCache=new hl(this.config,this.browserStorage,this.logger,this.browserCrypto),this.activeSilentTokenRequests=new Map,this.trackPageVisibility=this.trackPageVisibility.bind(this),this.trackPageVisibilityWithMeasurement=this.trackPageVisibilityWithMeasurement.bind(this)}static async createController(e,t){const r=new ml(e);return await r.initialize(t),r}trackPageVisibility(e){e&&(this.logger.info("Perf: Visibility change detected"),this.performanceClient.incrementFields({visibilityChangeCount:1},e))}async initialize(e,t){if(this.logger.trace("initialize called"),this.initialized)return void this.logger.info("initialize has already been called, exiting early.");if(!this.isBrowserEnvironment)return this.logger.info("in non-browser environment, exiting early."),this.initialized=!0,void this.eventHandler.emitEvent(pc.INITIALIZE_END);const r=e?.correlationId||this.getRequestCorrelationId(),n=this.config.system.allowPlatformBroker,o=this.performanceClient.startMeasurement(Kr.InitializeClientApplication,r);if(this.eventHandler.emitEvent(pc.INITIALIZE_START),!t)try{this.logMultipleInstances(o)}catch{}if(await Gn(this.browserStorage.initialize.bind(this.browserStorage),Kr.InitializeCache,this.logger,this.performanceClient,r)(r),n)try{this.platformAuthProvider=await Yc(this.logger,this.performanceClient,r,this.config.system.nativeBrokerHandshakeTimeout)}catch(e){this.logger.verbose(e)}this.config.cache.claimsBasedCachingEnabled||(this.logger.verbose("Claims-based caching is disabled. Clearing the previous cache with claims"),zn(this.browserStorage.clearTokensAndKeysWithClaims.bind(this.browserStorage),Kr.ClearTokensAndKeysWithClaims,this.logger,this.performanceClient,r)(r)),this.config.system.asyncPopups&&await this.preGeneratePkceCodes(r),this.initialized=!0,this.eventHandler.emitEvent(pc.INITIALIZE_END),o.end({allowPlatformBroker:n,success:!0})}async handleRedirectPromise(e){if(this.logger.verbose("handleRedirectPromise called"),_a(this.initialized),this.isBrowserEnvironment){const t=e||"";let r=this.redirectResponse.get(t);return void 0===r?(r=this.handleRedirectPromiseInternal(e),this.redirectResponse.set(t,r),this.logger.verbose("handleRedirectPromise has been called for the first time, storing the promise")):this.logger.verbose("handleRedirectPromise has been called previously, returning the result from the first call"),r}return this.logger.verbose("handleRedirectPromise returns null, not browser environment"),null}async handleRedirectPromiseInternal(t){if(!this.browserStorage.isInteractionInProgress(!0))return this.logger.info("handleRedirectPromise called but there is no interaction in progress, returning null."),null;const r=this.browserStorage.getInteractionInProgress()?.type;if(r===ms)return this.logger.verbose("handleRedirectPromise removing interaction_in_progress flag and returning null after sign-out"),this.browserStorage.setInteractionInProgress(!1),Promise.resolve(null);const n=this.getAllAccounts(),o=this.browserStorage.getCachedNativeRequest(),i=o&&this.platformAuthProvider&&!t;let s,a;this.eventHandler.emitEvent(pc.HANDLE_REDIRECT_START,e.InteractionType.Redirect);try{if(i&&this.platformAuthProvider){s=this.performanceClient.startMeasurement(Kr.AcquireTokenRedirect,o?.correlationId||""),this.logger.trace("handleRedirectPromise - acquiring token from native platform");const e=new Dc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,Es.handleRedirectPromise,this.performanceClient,this.platformAuthProvider,o.accountId,this.nativeInternalStorage,o.correlationId);a=Gn(e.handleRedirectPromise.bind(e),Kr.HandleNativeRedirectPromiseMeasurement,this.logger,this.performanceClient,s.event.correlationId)(this.performanceClient,s.event.correlationId)}else{const[e,r]=this.browserStorage.getCachedRequest(),n=e.correlationId;s=this.performanceClient.startMeasurement(Kr.AcquireTokenRedirect,n),this.logger.trace("handleRedirectPromise - acquiring token from web flow");const o=this.createRedirectClient(n);a=Gn(o.handleRedirectPromise.bind(o),Kr.HandleRedirectPromiseMeasurement,this.logger,this.performanceClient,s.event.correlationId)(t,e,r,s)}}catch(e){throw this.browserStorage.resetRequestCache(),e}return a.then((t=>{if(t){this.browserStorage.resetRequestCache();n.length<this.getAllAccounts().length?(this.eventHandler.emitEvent(pc.LOGIN_SUCCESS,e.InteractionType.Redirect,t),this.logger.verbose("handleRedirectResponse returned result, login success")):(this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Redirect,t),this.logger.verbose("handleRedirectResponse returned result, acquire token success")),s.end({success:!0,accountType:gl(t.account)})}else s.event.errorCode?s.end({success:!1}):s.discard();return this.eventHandler.emitEvent(pc.HANDLE_REDIRECT_END,e.InteractionType.Redirect),t})).catch((t=>{this.browserStorage.resetRequestCache();const r=t;throw n.length>0?this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Redirect,null,r):this.eventHandler.emitEvent(pc.LOGIN_FAILURE,e.InteractionType.Redirect,null,r),this.eventHandler.emitEvent(pc.HANDLE_REDIRECT_END,e.InteractionType.Redirect),s.end({success:!1},r),t}))}async acquireTokenRedirect(t){const r=this.getRequestCorrelationId(t);this.logger.verbose("acquireTokenRedirect called",r);const n=this.performanceClient.startMeasurement(Kr.AcquireTokenPreRedirect,r);n.add({accountType:gl(t.account),scenarioId:t.scenarioId});const o=t.onRedirectNavigate;if(o)t.onRedirectNavigate=e=>{const t="function"==typeof o?o(e):void 0;return!1!==t?n.end({success:!0}):n.discard(),t};else{const e=this.config.auth.onRedirectNavigate;this.config.auth.onRedirectNavigate=t=>{const r="function"==typeof e?e(t):void 0;return!1!==r?n.end({success:!0}):n.discard(),r}}const i=this.getAllAccounts().length>0;try{let o;if(Ma(this.initialized,this.config),this.browserStorage.setInteractionInProgress(!0,ps),i?this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_START,e.InteractionType.Redirect,t):this.eventHandler.emitEvent(pc.LOGIN_START,e.InteractionType.Redirect,t),this.platformAuthProvider&&this.canUsePlatformBroker(t)){o=new Dc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,Es.acquireTokenRedirect,this.performanceClient,this.platformAuthProvider,this.getNativeAccountId(t),this.nativeInternalStorage,r).acquireTokenRedirect(t,n).catch((e=>{if(e instanceof Lc&&Uc(e)){this.platformAuthProvider=void 0;return this.createRedirectClient(r).acquireToken(t)}if(e instanceof fo){this.logger.verbose("acquireTokenRedirect - Resolving interaction required error thrown by native broker by falling back to web flow");return this.createRedirectClient(r).acquireToken(t)}throw e}))}else{o=this.createRedirectClient(r).acquireToken(t)}return await o}catch(t){throw this.browserStorage.resetRequestCache(),n.end({success:!1},t),i?this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Redirect,null,t):this.eventHandler.emitEvent(pc.LOGIN_FAILURE,e.InteractionType.Redirect,null,t),t}}acquireTokenPopup(t){const r=this.getRequestCorrelationId(t),n=this.performanceClient.startMeasurement(Kr.AcquireTokenPopup,r);n.add({scenarioId:t.scenarioId,accountType:gl(t.account)});try{this.logger.verbose("acquireTokenPopup called",r),pl(this.initialized,n),this.browserStorage.setInteractionInProgress(!0,ps)}catch(e){return Promise.reject(e)}const o=this.getAllAccounts();let i;o.length>0?this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_START,e.InteractionType.Popup,t):this.eventHandler.emitEvent(pc.LOGIN_START,e.InteractionType.Popup,t);const s=this.getPreGeneratedPkceCodes(r);if(this.canUsePlatformBroker(t))i=this.acquireTokenNative({...t,correlationId:r},Es.acquireTokenPopup).then((e=>(n.end({success:!0,isNativeBroker:!0,accountType:gl(e.account)}),e))).catch((e=>{if(e instanceof Lc&&Uc(e)){this.platformAuthProvider=void 0;return this.createPopupClient(r).acquireToken(t,s)}if(e instanceof fo){this.logger.verbose("acquireTokenPopup - Resolving interaction required error thrown by native broker by falling back to web flow");return this.createPopupClient(r).acquireToken(t,s)}throw e}));else{i=this.createPopupClient(r).acquireToken(t,s)}return i.then((t=>(o.length<this.getAllAccounts().length?this.eventHandler.emitEvent(pc.LOGIN_SUCCESS,e.InteractionType.Popup,t):this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Popup,t),n.end({success:!0,accessTokenSize:t.accessToken.length,idTokenSize:t.idToken.length,accountType:gl(t.account)}),t))).catch((t=>(o.length>0?this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Popup,null,t):this.eventHandler.emitEvent(pc.LOGIN_FAILURE,e.InteractionType.Popup,null,t),n.end({success:!1},t),Promise.reject(t)))).finally((async()=>{this.browserStorage.setInteractionInProgress(!1),this.config.system.asyncPopups&&await this.preGeneratePkceCodes(r)}))}trackPageVisibilityWithMeasurement(){const e=this.ssoSilentMeasurement||this.acquireTokenByCodeAsyncMeasurement;e&&(this.logger.info("Perf: Visibility change detected in ",e.event.name),e.increment({visibilityChangeCount:1}))}async ssoSilent(t){const r=this.getRequestCorrelationId(t),n={...t,prompt:t.prompt,correlationId:r};let o;if(this.ssoSilentMeasurement=this.performanceClient.startMeasurement(Kr.SsoSilent,r),this.ssoSilentMeasurement?.add({scenarioId:t.scenarioId,accountType:gl(t.account)}),pl(this.initialized,this.ssoSilentMeasurement),this.ssoSilentMeasurement?.increment({visibilityChangeCount:0}),document.addEventListener("visibilitychange",this.trackPageVisibilityWithMeasurement),this.logger.verbose("ssoSilent called",r),this.eventHandler.emitEvent(pc.SSO_SILENT_START,e.InteractionType.Silent,n),this.canUsePlatformBroker(n))o=this.acquireTokenNative(n,Es.ssoSilent).catch((e=>{if(e instanceof Lc&&Uc(e)){this.platformAuthProvider=void 0;return this.createSilentIframeClient(n.correlationId).acquireToken(n)}throw e}));else{o=this.createSilentIframeClient(n.correlationId).acquireToken(n)}return o.then((t=>(this.eventHandler.emitEvent(pc.SSO_SILENT_SUCCESS,e.InteractionType.Silent,t),this.ssoSilentMeasurement?.end({success:!0,isNativeBroker:t.fromNativeBroker,accessTokenSize:t.accessToken.length,idTokenSize:t.idToken.length,accountType:gl(t.account)}),t))).catch((t=>{throw this.eventHandler.emitEvent(pc.SSO_SILENT_FAILURE,e.InteractionType.Silent,null,t),this.ssoSilentMeasurement?.end({success:!1},t),t})).finally((()=>{document.removeEventListener("visibilitychange",this.trackPageVisibilityWithMeasurement)}))}async acquireTokenByCode(t){const r=this.getRequestCorrelationId(t);this.logger.trace("acquireTokenByCode called",r);const n=this.performanceClient.startMeasurement(Kr.AcquireTokenByCode,r);pl(this.initialized,n),this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_BY_CODE_START,e.InteractionType.Silent,t),n.add({scenarioId:t.scenarioId});try{if(t.code&&t.nativeAccountId)throw Qi(Ei);if(t.code){const o=t.code;let i=this.hybridAuthCodeResponses.get(o);return i?(this.logger.verbose("Existing acquireTokenByCode request found",r),n.discard()):(this.logger.verbose("Initiating new acquireTokenByCode request",r),i=this.acquireTokenByCodeAsync({...t,correlationId:r}).then((t=>(this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_BY_CODE_SUCCESS,e.InteractionType.Silent,t),this.hybridAuthCodeResponses.delete(o),n.end({success:!0,isNativeBroker:t.fromNativeBroker,accessTokenSize:t.accessToken.length,idTokenSize:t.idToken.length,accountType:gl(t.account)}),t))).catch((t=>{throw this.hybridAuthCodeResponses.delete(o),this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_BY_CODE_FAILURE,e.InteractionType.Silent,null,t),n.end({success:!1},t),t})),this.hybridAuthCodeResponses.set(o,i)),await i}if(t.nativeAccountId){if(this.canUsePlatformBroker(t,t.nativeAccountId)){const e=await this.acquireTokenNative({...t,correlationId:r},Es.acquireTokenByCode,t.nativeAccountId).catch((e=>{throw e instanceof Lc&&Uc(e)&&(this.platformAuthProvider=void 0),e}));return n.end({accountType:gl(e.account),success:!0}),e}throw Qi(_i)}throw Qi(bi)}catch(t){throw this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_BY_CODE_FAILURE,e.InteractionType.Silent,null,t),n.end({success:!1},t),t}}async acquireTokenByCodeAsync(e){this.logger.trace("acquireTokenByCodeAsync called",e.correlationId),this.acquireTokenByCodeAsyncMeasurement=this.performanceClient.startMeasurement(Kr.AcquireTokenByCodeAsync,e.correlationId),this.acquireTokenByCodeAsyncMeasurement?.increment({visibilityChangeCount:0}),document.addEventListener("visibilitychange",this.trackPageVisibilityWithMeasurement);const t=this.createSilentAuthCodeClient(e.correlationId);return await t.acquireToken(e).then((e=>(this.acquireTokenByCodeAsyncMeasurement?.end({success:!0,fromCache:e.fromCache,isNativeBroker:e.fromNativeBroker}),e))).catch((e=>{throw this.acquireTokenByCodeAsyncMeasurement?.end({success:!1},e),e})).finally((()=>{document.removeEventListener("visibilitychange",this.trackPageVisibilityWithMeasurement)}))}async acquireTokenFromCache(e,t){switch(this.performanceClient.addQueueMeasurement(Kr.AcquireTokenFromCache,e.correlationId),t){case Ns.Default:case Ns.AccessToken:case Ns.AccessTokenAndRefreshToken:const t=this.createSilentCacheClient(e.correlationId);return Gn(t.acquireToken.bind(t),Kr.SilentCacheClientAcquireToken,this.logger,this.performanceClient,e.correlationId)(e);default:throw ut(Je)}}async acquireTokenByRefreshToken(e,t){switch(this.performanceClient.addQueueMeasurement(Kr.AcquireTokenByRefreshToken,e.correlationId),t){case Ns.Default:case Ns.AccessTokenAndRefreshToken:case Ns.RefreshToken:case Ns.RefreshTokenAndNetwork:const t=this.createSilentRefreshClient(e.correlationId);return Gn(t.acquireToken.bind(t),Kr.SilentRefreshClientAcquireToken,this.logger,this.performanceClient,e.correlationId)(e);default:throw ut(Je)}}async acquireTokenBySilentIframe(e){this.performanceClient.addQueueMeasurement(Kr.AcquireTokenBySilentIframe,e.correlationId);const t=this.createSilentIframeClient(e.correlationId);return Gn(t.acquireToken.bind(t),Kr.SilentIframeClientAcquireToken,this.logger,this.performanceClient,e.correlationId)(e)}async logout(e){const t=this.getRequestCorrelationId(e);return this.logger.warning("logout API is deprecated and will be removed in msal-browser v3.0.0. Use logoutRedirect instead.",t),this.logoutRedirect({correlationId:t,...e})}async logoutRedirect(e){const t=this.getRequestCorrelationId(e);Ma(this.initialized,this.config),this.browserStorage.setInteractionInProgress(!0,ms);return this.createRedirectClient(t).logout(e)}logoutPopup(e){try{const t=this.getRequestCorrelationId(e);Pa(this.initialized),this.browserStorage.setInteractionInProgress(!0,ms);return this.createPopupClient(t).logout(e).finally((()=>{this.browserStorage.setInteractionInProgress(!1)}))}catch(e){return Promise.reject(e)}}async clearCache(e){if(!this.isBrowserEnvironment)return void this.logger.info("in non-browser environment, returning early.");const t=this.getRequestCorrelationId(e);return this.createSilentCacheClient(t).logout(e)}getAllAccounts(e){const t=this.getRequestCorrelationId();return Cc(this.logger,this.browserStorage,this.isBrowserEnvironment,t,e)}getAccount(e){const t=this.getRequestCorrelationId();return vc(e,this.logger,this.browserStorage,t)}getAccountByUsername(e){const t=this.getRequestCorrelationId();return wc(e,this.logger,this.browserStorage,t)}getAccountByHomeId(e){const t=this.getRequestCorrelationId();return Ic(e,this.logger,this.browserStorage,t)}getAccountByLocalId(e){const t=this.getRequestCorrelationId();return Tc(e,this.logger,this.browserStorage,t)}setActiveAccount(e){const t=this.getRequestCorrelationId();Ac(e,this.browserStorage,t)}getActiveAccount(){const e=this.getRequestCorrelationId();return kc(this.browserStorage,e)}async hydrateCache(e,t){this.logger.verbose("hydrateCache called");const r=Sr.createFromAccountInfo(e.account,e.cloudGraphHostName,e.msGraphHost);return await this.browserStorage.setAccount(r,e.correlationId),e.fromNativeBroker?(this.logger.verbose("Response was from native broker, storing in-memory"),this.nativeInternalStorage.hydrateCache(e,t)):this.browserStorage.hydrateCache(e,t)}async acquireTokenNative(e,t,r,n){if(this.logger.trace("acquireTokenNative called"),!this.platformAuthProvider)throw Qi(Oi);return new Dc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,t,this.performanceClient,this.platformAuthProvider,r||this.getNativeAccountId(e),this.nativeInternalStorage,e.correlationId).acquireToken(e,n)}canUsePlatformBroker(e,t){if(this.logger.trace("canUsePlatformBroker called"),!this.platformAuthProvider)return this.logger.trace("canUsePlatformBroker: platform broker unavilable, returning false"),!1;if(!Xc(this.config,this.logger,this.platformAuthProvider,e.authenticationScheme))return this.logger.trace("canUsePlatformBroker: isBrokerAvailable returned false, returning false"),!1;if(e.prompt)switch(e.prompt){case k.NONE:case k.CONSENT:case k.LOGIN:this.logger.trace("canUsePlatformBroker: prompt is compatible with platform broker flow");break;default:return this.logger.trace(`canUsePlatformBroker: prompt = ${e.prompt} is not compatible with platform broker flow, returning false`),!1}return!(!t&&!this.getNativeAccountId(e))||(this.logger.trace("canUsePlatformBroker: nativeAccountId is not available, returning false"),!1)}getNativeAccountId(e){const t=e.account||this.getAccount({loginHint:e.loginHint,sid:e.sid})||this.getActiveAccount();return t&&t.nativeAccountId||""}createPopupClient(e){return new Zc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,this.performanceClient,this.nativeInternalStorage,this.platformAuthProvider,e)}createRedirectClient(e){return new el(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,this.performanceClient,this.nativeInternalStorage,this.platformAuthProvider,e)}createSilentIframeClient(e){return new cl(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,Es.ssoSilent,this.performanceClient,this.nativeInternalStorage,this.platformAuthProvider,e)}createSilentCacheClient(e){return new xc(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,this.performanceClient,this.platformAuthProvider,e)}createSilentRefreshClient(e){return new ll(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,this.performanceClient,this.platformAuthProvider,e)}createSilentAuthCodeClient(e){return new ul(this.config,this.browserStorage,this.browserCrypto,this.logger,this.eventHandler,this.navigationClient,Es.acquireTokenByCode,this.performanceClient,this.platformAuthProvider,e)}addEventCallback(e,t){return this.eventHandler.addEventCallback(e,t)}removeEventCallback(e){this.eventHandler.removeEventCallback(e)}addPerformanceCallback(e){return Ra(),this.performanceClient.addPerformanceCallback(e)}removePerformanceCallback(e){return this.performanceClient.removePerformanceCallback(e)}enableAccountStorageEvents(){this.config.cache.cacheLocation===ds.LocalStorage?this.eventHandler.subscribeCrossTab():this.logger.info("Account storage events are only available when cacheLocation is set to localStorage")}disableAccountStorageEvents(){this.config.cache.cacheLocation===ds.LocalStorage?this.eventHandler.unsubscribeCrossTab():this.logger.info("Account storage events are only available when cacheLocation is set to localStorage")}getTokenCache(){return this.tokenCache}getLogger(){return this.logger}setLogger(e){this.logger=e}initializeWrapperLibrary(e,t){this.browserStorage.setWrapperMetadata(e,t)}setNavigationClient(e){this.navigationClient=e}getConfiguration(){return this.config}getPerformanceClient(){return this.performanceClient}isBrowserEnv(){return this.isBrowserEnvironment}getRequestCorrelationId(e){return e?.correlationId?e.correlationId:this.isBrowserEnvironment?ta():t.EMPTY_STRING}async loginRedirect(e){const t=this.getRequestCorrelationId(e);return this.logger.verbose("loginRedirect called",t),this.acquireTokenRedirect({correlationId:t,...e||Ps})}loginPopup(e){const t=this.getRequestCorrelationId(e);return this.logger.verbose("loginPopup called",t),this.acquireTokenPopup({correlationId:t,...e||Ps})}async acquireTokenSilent(e){const t=this.getRequestCorrelationId(e),r=this.performanceClient.startMeasurement(Kr.AcquireTokenSilent,t);r.add({cacheLookupPolicy:e.cacheLookupPolicy,scenarioId:e.scenarioId}),pl(this.initialized,r),this.logger.verbose("acquireTokenSilent called",t);const n=e.account||this.getActiveAccount();if(!n)throw Qi(di);return r.add({accountType:gl(n)}),this.acquireTokenSilentDeduped(e,n,t).then((n=>(r.end({success:!0,fromCache:n.fromCache,isNativeBroker:n.fromNativeBroker,accessTokenSize:n.accessToken.length,idTokenSize:n.idToken.length}),{...n,state:e.state,correlationId:t}))).catch((e=>{throw e instanceof fe&&e.setCorrelationId(t),r.end({success:!1},e),e}))}async acquireTokenSilentDeduped(e,t,r){const n=Yn(this.config.auth.clientId,{...e,authority:e.authority||this.config.auth.authority},t.homeAccountId),o=JSON.stringify(n),i=this.activeSilentTokenRequests.get(o);if(void 0===i){this.logger.verbose("acquireTokenSilent called for the first time, storing active request",r),this.performanceClient.addFields({deduped:!1},r);const n=Gn(this.acquireTokenSilentAsync.bind(this),Kr.AcquireTokenSilentAsync,this.logger,this.performanceClient,r)({...e,correlationId:r},t);return this.activeSilentTokenRequests.set(o,n),n.finally((()=>{this.activeSilentTokenRequests.delete(o)}))}return this.logger.verbose("acquireTokenSilent has been called previously, returning the result from the first call",r),this.performanceClient.addFields({deduped:!0},r),i}async acquireTokenSilentAsync(t,r){const n=()=>this.trackPageVisibility(t.correlationId);this.performanceClient.addQueueMeasurement(Kr.AcquireTokenSilentAsync,t.correlationId),this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_START,e.InteractionType.Silent,t),t.correlationId&&this.performanceClient.incrementFields({visibilityChangeCount:0},t.correlationId),document.addEventListener("visibilitychange",n);const o=await Gn(Rc,Kr.InitializeSilentRequest,this.logger,this.performanceClient,t.correlationId)(t,r,this.config,this.performanceClient,this.logger),i=t.cacheLookupPolicy||Ns.Default;return this.acquireTokenSilentNoIframe(o,i).catch((async e=>{const t=function(e,t){const r=!(e instanceof fo&&e.subError!==lo),n=e.errorCode===ji||e.errorCode===Je,o=r&&n||e.errorCode===ro||e.errorCode===oo,i=qs.includes(t);return o&&i}(e,i);if(t){if(this.activeIframeRequest){if(i!==Ns.Skip){const[t,r]=this.activeIframeRequest;this.logger.verbose(`Iframe request is already in progress, awaiting resolution for request with correlationId: ${r}`,o.correlationId);const n=this.performanceClient.startMeasurement(Kr.AwaitConcurrentIframe,o.correlationId);n.add({awaitIframeCorrelationId:r});const s=await t;if(n.end({success:s}),s)return this.logger.verbose(`Parallel iframe request with correlationId: ${r} succeeded. Retrying cache and/or RT redemption`,o.correlationId),this.acquireTokenSilentNoIframe(o,i);throw this.logger.info(`Iframe request with correlationId: ${r} failed. Interaction is required.`),e}return this.logger.warning("Another iframe request is currently in progress and CacheLookupPolicy is set to Skip. This may result in degraded performance and/or reliability for both calls. Please consider changing the CacheLookupPolicy to take advantage of request queuing and token cache.",o.correlationId),Gn(this.acquireTokenBySilentIframe.bind(this),Kr.AcquireTokenBySilentIframe,this.logger,this.performanceClient,o.correlationId)(o)}{let e;return this.activeIframeRequest=[new Promise((t=>{e=t})),o.correlationId],this.logger.verbose("Refresh token expired/invalid or CacheLookupPolicy is set to Skip, attempting acquire token by iframe.",o.correlationId),Gn(this.acquireTokenBySilentIframe.bind(this),Kr.AcquireTokenBySilentIframe,this.logger,this.performanceClient,o.correlationId)(o).then((t=>(e(!0),t))).catch((t=>{throw e(!1),t})).finally((()=>{this.activeIframeRequest=void 0}))}}throw e})).then((r=>(this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Silent,r),t.correlationId&&this.performanceClient.addFields({fromCache:r.fromCache,isNativeBroker:r.fromNativeBroker},t.correlationId),r))).catch((t=>{throw this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Silent,null,t),t})).finally((()=>{document.removeEventListener("visibilitychange",n)}))}async acquireTokenSilentNoIframe(t,r){return Xc(this.config,this.logger,this.platformAuthProvider,t.authenticationScheme)&&t.account.nativeAccountId?(this.logger.verbose("acquireTokenSilent - attempting to acquire token from native platform"),this.acquireTokenNative(t,Es.acquireTokenSilent_silentFlow,t.account.nativeAccountId,r).catch((async e=>{if(e instanceof Lc&&Uc(e))throw this.logger.verbose("acquireTokenSilent - native platform unavailable, falling back to web flow"),this.platformAuthProvider=void 0,ut(Je);throw e}))):(this.logger.verbose("acquireTokenSilent - attempting to acquire token from web flow"),r===Ns.AccessToken&&this.logger.verbose("acquireTokenSilent - cache lookup policy set to AccessToken, attempting to acquire token from local cache"),Gn(this.acquireTokenFromCache.bind(this),Kr.AcquireTokenFromCache,this.logger,this.performanceClient,t.correlationId)(t,r).catch((n=>{if(r===Ns.AccessToken)throw n;return this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_NETWORK_START,e.InteractionType.Silent,t),Gn(this.acquireTokenByRefreshToken.bind(this),Kr.AcquireTokenByRefreshToken,this.logger,this.performanceClient,t.correlationId)(t,r)})))}async preGeneratePkceCodes(e){return this.logger.verbose("Generating new PKCE codes"),this.pkceCode=await Gn(Qc,Kr.GeneratePkceCodes,this.logger,this.performanceClient,e)(this.performanceClient,this.logger,e),Promise.resolve()}getPreGeneratedPkceCodes(e){this.logger.verbose("Attempting to pick up pre-generated PKCE codes");const t=this.pkceCode?{...this.pkceCode}:void 0;return this.pkceCode=void 0,this.logger.verbose((t?"Found":"Did not find")+" pre-generated PKCE codes"),this.performanceClient.addFields({usePreGeneratedPkce:!!t},e),t}logMultipleInstances(e){const t=this.config.auth.clientId;if(!window)return;window.msal=window.msal||{},window.msal.clientIds=window.msal.clientIds||[];window.msal.clientIds.length>0&&this.logger.verbose("There is already an instance of MSAL.js in the window."),window.msal.clientIds.push(t),function(e,t,r){const n=window.msal?.clientIds||[],o=n.length,i=n.filter((t=>t===e)).length;i>1&&r.warning("There is already an instance of MSAL.js in the window with the same client id."),t.add({msalInstanceCount:o,sameClientIdInstanceCount:i})}(t,e,this.logger)}}class fl{constructor(e,t,r,n){this.clientId=e,this.clientCapabilities=t,this.crypto=r,this.logger=n}toNaaTokenRequest(e){let t;t=void 0===e.extraQueryParameters?new Map:new Map(Object.entries(e.extraQueryParameters));const r=e.correlationId||this.crypto.createNewGuid(),n=Hn(e.claims,this.clientCapabilities),o=e.scopes||c;return{platformBrokerId:e.account?.homeAccountId,clientId:this.clientId,authority:e.authority,scope:o.join(" "),correlationId:r,claims:ur.isEmptyObj(n)?void 0:n,state:e.state,authenticationScheme:e.authenticationScheme||Q.BEARER,extraParameters:t}}fromNaaTokenResponse(e,t,r){if(!t.token.id_token||!t.token.access_token)throw ut(Ie);const n=At(r+(t.token.expires_in||0)),o=vt(t.token.id_token,this.crypto.base64Decode),i=this.fromNaaAccountInfo(t.account,t.token.id_token,o),s=t.token.scope||e.scope;return{authority:t.token.authority||i.environment,uniqueId:i.localAccountId,tenantId:i.tenantId,scopes:s.split(" "),account:i,idToken:t.token.id_token,idTokenClaims:o,accessToken:t.token.access_token,fromCache:!1,expiresOn:n,tokenType:e.authenticationScheme||Q.BEARER,correlationId:e.correlationId,extExpiresOn:n,state:e.state}}fromNaaAccountInfo(e,t,r){const n=r||e.idTokenClaims,o=e.localAccountId||n?.oid||n?.sub||"",i=e.tenantId||n?.tid||"",s=e.homeAccountId||`${o}.${i}`,a=e.username||n?.preferred_username||"",c=e.name||n?.name,l=new Map,h=yr(s,o,i,n);l.set(i,h);return{homeAccountId:s,environment:e.environment,tenantId:i,username:a,localAccountId:o,name:c,idToken:t,idTokenClaims:n,tenantProfiles:l}}fromBridgeError(e){if(!function(e){return void 0!==e.status}(e))return new fe("unknown_error","An unknown error occurred");switch(e.status){case Ga:return new dt(ot);case $a:return new dt(nt);case Va:return new dt($e);case Wa:return new dt(at);case Ja:return new dt(e.code||at,e.description);case Qa:case ja:return new Jn(e.code,e.description);case za:return new fo(e.code,e.description);default:return new fe(e.code,e.description)}}toAuthenticationResultFromCache(e,t,r,n,o){if(!t||!r)throw ut(Ie);const i=vt(t.secret,this.crypto.base64Decode),s=r.target||n.scopes.join(" ");return{authority:r.environment||e.environment,uniqueId:e.localAccountId,tenantId:e.tenantId,scopes:s.split(" "),account:e,idToken:t.secret,idTokenClaims:i||{},accessToken:r.secret,fromCache:!0,expiresOn:At(r.expiresOn),extExpiresOn:At(r.extendedExpiresOn),tokenType:n.authenticationScheme||Q.BEARER,correlationId:o,state:n.state}}}const yl={code:"unsupported_method",desc:"This method is not supported in nested app environment."};class Cl extends fe{constructor(e,t){super(e,t),Object.setPrototypeOf(this,Cl.prototype),this.name="NestedAppAuthError"}static createUnsupportedError(){return new Cl(yl.code,yl.desc)}}class vl{constructor(e){this.operatingContext=e;const t=this.operatingContext.getBridgeProxy();if(void 0===t)throw new Error("unexpected: bridgeProxy is undefined");this.bridgeProxy=t,this.config=e.getConfig(),this.logger=this.operatingContext.getLogger(),this.performanceClient=this.config.telemetry.client,this.browserCrypto=e.isBrowserEnvironment()?new nc(this.logger,this.performanceClient,!0):gt,this.eventHandler=new Sc(this.logger),this.browserStorage=this.operatingContext.isBrowserEnvironment()?new mc(this.config.auth.clientId,this.config.cache,this.browserCrypto,this.logger,this.performanceClient,this.eventHandler,Wn(this.config.auth)):yc(this.config.auth.clientId,this.logger,this.performanceClient,this.eventHandler),this.nestedAppAuthAdapter=new fl(this.config.auth.clientId,this.config.auth.clientCapabilities,this.browserCrypto,this.logger);const r=this.bridgeProxy.getAccountContext();this.currentAccountContext=r||null}static async createController(e){const t=new vl(e);return Promise.resolve(t)}async initialize(e,t){const r=e?.correlationId||ta();return await this.browserStorage.initialize(r),Promise.resolve()}ensureValidRequest(e){return e?.correlationId?e:{...e,correlationId:this.browserCrypto.createNewGuid()}}async acquireTokenInteractive(t){const r=this.ensureValidRequest(t);this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_START,e.InteractionType.Popup,r);const n=this.performanceClient.startMeasurement(Kr.AcquireTokenPopup,r.correlationId);n?.add({nestedAppAuthRequest:!0});try{const o=this.nestedAppAuthAdapter.toNaaTokenRequest(r),i=It(),s=await this.bridgeProxy.getTokenInteractive(o),a={...this.nestedAppAuthAdapter.fromNaaTokenResponse(o,s,i)};return await this.hydrateCache(a,t),this.currentAccountContext={homeAccountId:a.account.homeAccountId,environment:a.account.environment,tenantId:a.account.tenantId},this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Popup,a),n.add({accessTokenSize:a.accessToken.length,idTokenSize:a.idToken.length}),n.end({success:!0,requestId:a.requestId}),a}catch(t){const r=t instanceof fe?t:this.nestedAppAuthAdapter.fromBridgeError(t);throw this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Popup,null,t),n.end({success:!1},t),r}}async acquireTokenSilentInternal(t){const r=this.ensureValidRequest(t);this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_START,e.InteractionType.Silent,r);const n=await this.acquireTokenFromCache(r);if(n)return this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Silent,n),n;const o=this.performanceClient.startMeasurement(Kr.SsoSilent,r.correlationId);o?.increment({visibilityChangeCount:0}),o?.add({nestedAppAuthRequest:!0});try{const n=this.nestedAppAuthAdapter.toNaaTokenRequest(r),i=It(),s=await this.bridgeProxy.getTokenSilent(n),a=this.nestedAppAuthAdapter.fromNaaTokenResponse(n,s,i);return await this.hydrateCache(a,t),this.currentAccountContext={homeAccountId:a.account.homeAccountId,environment:a.account.environment,tenantId:a.account.tenantId},this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Silent,a),o?.add({accessTokenSize:a.accessToken.length,idTokenSize:a.idToken.length}),o?.end({success:!0,requestId:a.requestId}),a}catch(t){const r=t instanceof fe?t:this.nestedAppAuthAdapter.fromBridgeError(t);throw this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Silent,null,t),o?.end({success:!1},t),r}}async acquireTokenFromCache(t){const r=this.performanceClient.startMeasurement(Kr.AcquireTokenSilent,t.correlationId);if(r?.add({nestedAppAuthRequest:!0}),t.claims)return this.logger.verbose("Claims are present in the request, skipping cache lookup"),null;if(t.forceRefresh)return this.logger.verbose("forceRefresh is set to true, skipping cache lookup"),null;let n=null;switch(t.cacheLookupPolicy||(t.cacheLookupPolicy=Ns.Default),t.cacheLookupPolicy){case Ns.Default:case Ns.AccessToken:case Ns.AccessTokenAndRefreshToken:n=await this.acquireTokenFromCacheInternal(t);break;default:return null}return n?(this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_SUCCESS,e.InteractionType.Silent,n),r?.add({accessTokenSize:n?.accessToken.length,idTokenSize:n?.idToken.length}),r?.end({success:!0}),n):(this.logger.warning("Cached tokens are not found for the account, proceeding with silent token request."),this.eventHandler.emitEvent(pc.ACQUIRE_TOKEN_FAILURE,e.InteractionType.Silent,null),r?.end({success:!1}),null)}async acquireTokenFromCacheInternal(e){const t=this.bridgeProxy.getAccountContext()||this.currentAccountContext;let r=null;const n=e.correlationId||this.browserCrypto.createNewGuid();if(t&&(r=vc(t,this.logger,this.browserStorage,n)),!r)return this.logger.verbose("No active account found, falling back to the host"),Promise.resolve(null);this.logger.verbose("active account found, attempting to acquire token silently");const o={...e,correlationId:e.correlationId||this.browserCrypto.createNewGuid(),authority:e.authority||r.environment,scopes:e.scopes?.length?e.scopes:[...c]},i=this.browserStorage.getTokenKeys(),s=this.browserStorage.getAccessToken(r,o,i,r.tenantId);if(!s)return this.logger.verbose("No cached access token found"),Promise.resolve(null);if(St(s.cachedAt)||kt(s.expiresOn,this.config.system.tokenRenewalOffsetSeconds))return this.logger.verbose("Cached access token has expired"),Promise.resolve(null);const a=this.browserStorage.getIdToken(r,o.correlationId,i,r.tenantId,this.performanceClient);return a?this.nestedAppAuthAdapter.toAuthenticationResultFromCache(r,a,s,o,o.correlationId):(this.logger.verbose("No cached id token found"),Promise.resolve(null))}async acquireTokenPopup(e){return this.acquireTokenInteractive(e)}acquireTokenRedirect(e){throw Cl.createUnsupportedError()}async acquireTokenSilent(e){return this.acquireTokenSilentInternal(e)}acquireTokenByCode(e){throw Cl.createUnsupportedError()}acquireTokenNative(e,t,r){throw Cl.createUnsupportedError()}acquireTokenByRefreshToken(e,t){throw Cl.createUnsupportedError()}addEventCallback(e,t){return this.eventHandler.addEventCallback(e,t)}removeEventCallback(e){this.eventHandler.removeEventCallback(e)}addPerformanceCallback(e){throw Cl.createUnsupportedError()}removePerformanceCallback(e){throw Cl.createUnsupportedError()}enableAccountStorageEvents(){throw Cl.createUnsupportedError()}disableAccountStorageEvents(){throw Cl.createUnsupportedError()}getAllAccounts(e){const t=this.browserCrypto.createNewGuid();return Cc(this.logger,this.browserStorage,this.isBrowserEnv(),t,e)}getAccount(e){const t=this.browserCrypto.createNewGuid();return vc(e,this.logger,this.browserStorage,t)}getAccountByUsername(e){const t=this.browserCrypto.createNewGuid();return wc(e,this.logger,this.browserStorage,t)}getAccountByHomeId(e){const t=this.browserCrypto.createNewGuid();return Ic(e,this.logger,this.browserStorage,t)}getAccountByLocalId(e){const t=this.browserCrypto.createNewGuid();return Tc(e,this.logger,this.browserStorage,t)}setActiveAccount(e){const t=this.browserCrypto.createNewGuid();return Ac(e,this.browserStorage,t)}getActiveAccount(){const e=this.browserCrypto.createNewGuid();return kc(this.browserStorage,e)}handleRedirectPromise(e){return Promise.resolve(null)}loginPopup(e){return this.acquireTokenInteractive(e||Ps)}loginRedirect(e){throw Cl.createUnsupportedError()}logout(e){throw Cl.createUnsupportedError()}logoutRedirect(e){throw Cl.createUnsupportedError()}logoutPopup(e){throw Cl.createUnsupportedError()}ssoSilent(e){return this.acquireTokenSilentInternal(e)}getTokenCache(){throw Cl.createUnsupportedError()}getLogger(){return this.logger}setLogger(e){this.logger=e}initializeWrapperLibrary(e,t){}setNavigationClient(e){this.logger.warning("setNavigationClient is not supported in nested app auth")}getConfiguration(){return this.config}isBrowserEnv(){return this.operatingContext.isBrowserEnvironment()}getBrowserCrypto(){return this.browserCrypto}getPerformanceClient(){throw Cl.createUnsupportedError()}getRedirectResponse(){throw Cl.createUnsupportedError()}async clearCache(e){throw Cl.createUnsupportedError()}async hydrateCache(e,t){this.logger.verbose("hydrateCache called");const r=Sr.createFromAccountInfo(e.account,e.cloudGraphHostName,e.msGraphHost);return await this.browserStorage.setAccount(r,e.correlationId),this.browserStorage.hydrateCache(e,t)}}async function wl(e){const t=new Za(e),r=new Xa(e),n=[t.initialize(),r.initialize()];return await Promise.all(n),r.isAvailable()&&e.auth.supportsNestedAppAuth?vl.createController(r):t.isAvailable()?ml.createController(t):null}class Il{static async createPublicClientApplication(e){const t=await async function(e,t){const r=new Za(e);return await r.initialize(),ml.createController(r,t)}(e);return new Il(e,t)}constructor(e,t){this.isBroker=!1,this.controller=t||new ml(new Za(e))}async initialize(e){return this.controller.initialize(e,this.isBroker)}async acquireTokenPopup(e){return this.controller.acquireTokenPopup(e)}acquireTokenRedirect(e){return this.controller.acquireTokenRedirect(e)}acquireTokenSilent(e){return this.controller.acquireTokenSilent(e)}acquireTokenByCode(e){return this.controller.acquireTokenByCode(e)}addEventCallback(e,t){return this.controller.addEventCallback(e,t)}removeEventCallback(e){return this.controller.removeEventCallback(e)}addPerformanceCallback(e){return this.controller.addPerformanceCallback(e)}removePerformanceCallback(e){return this.controller.removePerformanceCallback(e)}enableAccountStorageEvents(){this.controller.enableAccountStorageEvents()}disableAccountStorageEvents(){this.controller.disableAccountStorageEvents()}getAccount(e){return this.controller.getAccount(e)}getAccountByHomeId(e){return this.controller.getAccountByHomeId(e)}getAccountByLocalId(e){return this.controller.getAccountByLocalId(e)}getAccountByUsername(e){return this.controller.getAccountByUsername(e)}getAllAccounts(e){return this.controller.getAllAccounts(e)}handleRedirectPromise(e){return this.controller.handleRedirectPromise(e)}loginPopup(e){return this.controller.loginPopup(e)}loginRedirect(e){return this.controller.loginRedirect(e)}logout(e){return this.controller.logout(e)}logoutRedirect(e){return this.controller.logoutRedirect(e)}logoutPopup(e){return this.controller.logoutPopup(e)}ssoSilent(e){return this.controller.ssoSilent(e)}getTokenCache(){return this.controller.getTokenCache()}getLogger(){return this.controller.getLogger()}setLogger(e){this.controller.setLogger(e)}setActiveAccount(e){this.controller.setActiveAccount(e)}getActiveAccount(){return this.controller.getActiveAccount()}initializeWrapperLibrary(e,t){return this.controller.initializeWrapperLibrary(e,t)}setNavigationClient(e){this.controller.setNavigationClient(e)}getConfiguration(){return this.controller.getConfiguration()}async hydrateCache(e,t){return this.controller.hydrateCache(e,t)}clearCache(e){return this.controller.clearCache(e)}}async function Tl(e){const t=new Il(e);return await t.initialize(),t}class Al{constructor(e){this.initialized=!1,this.operatingContext=e,this.isBrowserEnvironment=this.operatingContext.isBrowserEnvironment(),this.config=e.getConfig(),this.logger=e.getLogger(),this.performanceClient=this.config.telemetry.client,this.browserCrypto=this.isBrowserEnvironment?new nc(this.logger,this.performanceClient):gt,this.eventHandler=new Sc(this.logger),this.browserStorage=this.isBrowserEnvironment?new mc(this.config.auth.clientId,this.config.cache,this.browserCrypto,this.logger,this.performanceClient,this.eventHandler,void 0):yc(this.config.auth.clientId,this.logger,this.performanceClient,this.eventHandler)}getBrowserStorage(){return this.browserStorage}getAccount(e){return null}getAccountByHomeId(e){return null}getAccountByLocalId(e){return null}getAccountByUsername(e){return null}getAllAccounts(){return[]}initialize(){return this.initialized=!0,Promise.resolve()}acquireTokenPopup(e){return _a(this.initialized),Ra(),{}}acquireTokenRedirect(e){return _a(this.initialized),Ra(),Promise.resolve()}acquireTokenSilent(e){return _a(this.initialized),Ra(),{}}acquireTokenByCode(e){return _a(this.initialized),Ra(),{}}acquireTokenNative(e,t,r){return _a(this.initialized),Ra(),{}}acquireTokenByRefreshToken(e,t){return _a(this.initialized),Ra(),{}}addEventCallback(e,t){return null}removeEventCallback(e){}addPerformanceCallback(e){return _a(this.initialized),Ra(),""}removePerformanceCallback(e){return _a(this.initialized),Ra(),!0}enableAccountStorageEvents(){_a(this.initialized),Ra()}disableAccountStorageEvents(){_a(this.initialized),Ra()}handleRedirectPromise(e){return _a(this.initialized),Promise.resolve(null)}loginPopup(e){return _a(this.initialized),Ra(),{}}loginRedirect(e){return _a(this.initialized),Ra(),{}}logout(e){return _a(this.initialized),Ra(),{}}logoutRedirect(e){return _a(this.initialized),Ra(),{}}logoutPopup(e){return _a(this.initialized),Ra(),{}}ssoSilent(e){return _a(this.initialized),Ra(),{}}getTokenCache(){return _a(this.initialized),Ra(),{}}getLogger(){return this.logger}setLogger(e){_a(this.initialized),Ra()}setActiveAccount(e){_a(this.initialized),Ra()}getActiveAccount(){return _a(this.initialized),Ra(),null}initializeWrapperLibrary(e,t){this.browserStorage.setWrapperMetadata(e,t)}setNavigationClient(e){_a(this.initialized),Ra()}getConfiguration(){return this.config}isBrowserEnv(){return _a(this.initialized),Ra(),!0}getBrowserCrypto(){return _a(this.initialized),Ra(),{}}getPerformanceClient(){return _a(this.initialized),Ra(),{}}getRedirectResponse(){return _a(this.initialized),Ra(),{}}async clearCache(e){_a(this.initialized),Ra()}async hydrateCache(e,t){_a(this.initialized),Ra()}}class kl extends Ka{getId(){return kl.ID}getModuleName(){return kl.MODULE_NAME}async initialize(){return!0}}kl.MODULE_NAME="",kl.ID="UnknownOperatingContext";class Sl{static async createPublicClientApplication(e){const t=await wl(e);let r;return r=null!==t?new Sl(e,t):new Sl(e),r}constructor(e,t){if(this.configuration=e,t)this.controller=t;else{const t=new kl(e);this.controller=new Al(t)}}async initialize(){if(this.controller instanceof Al){const e=await wl(this.configuration);return null!==e&&(this.controller=e),this.controller.initialize()}return Promise.resolve()}async acquireTokenPopup(e){return this.controller.acquireTokenPopup(e)}acquireTokenRedirect(e){return this.controller.acquireTokenRedirect(e)}acquireTokenSilent(e){return this.controller.acquireTokenSilent(e)}acquireTokenByCode(e){return this.controller.acquireTokenByCode(e)}addEventCallback(e,t){return this.controller.addEventCallback(e,t)}removeEventCallback(e){return this.controller.removeEventCallback(e)}addPerformanceCallback(e){return this.controller.addPerformanceCallback(e)}removePerformanceCallback(e){return this.controller.removePerformanceCallback(e)}enableAccountStorageEvents(){this.controller.enableAccountStorageEvents()}disableAccountStorageEvents(){this.controller.disableAccountStorageEvents()}getAccount(e){return this.controller.getAccount(e)}getAccountByHomeId(e){return this.controller.getAccountByHomeId(e)}getAccountByLocalId(e){return this.controller.getAccountByLocalId(e)}getAccountByUsername(e){return this.controller.getAccountByUsername(e)}getAllAccounts(e){return this.controller.getAllAccounts(e)}handleRedirectPromise(e){return this.controller.handleRedirectPromise(e)}loginPopup(e){return this.controller.loginPopup(e)}loginRedirect(e){return this.controller.loginRedirect(e)}logout(e){return this.controller.logout(e)}logoutRedirect(e){return this.controller.logoutRedirect(e)}logoutPopup(e){return this.controller.logoutPopup(e)}ssoSilent(e){return this.controller.ssoSilent(e)}getTokenCache(){return this.controller.getTokenCache()}getLogger(){return this.controller.getLogger()}setLogger(e){this.controller.setLogger(e)}setActiveAccount(e){this.controller.setActiveAccount(e)}getActiveAccount(){return this.controller.getActiveAccount()}initializeWrapperLibrary(e,t){return this.controller.initializeWrapperLibrary(e,t)}setNavigationClient(e){this.controller.setNavigationClient(e)}getConfiguration(){return this.controller.getConfiguration()}async hydrateCache(e,t){return this.controller.hydrateCache(e,t)}clearCache(e){return this.controller.clearCache(e)}}const bl={initialize:()=>Promise.reject(Ca(ua)),acquireTokenPopup:()=>Promise.reject(Ca(ua)),acquireTokenRedirect:()=>Promise.reject(Ca(ua)),acquireTokenSilent:()=>Promise.reject(Ca(ua)),acquireTokenByCode:()=>Promise.reject(Ca(ua)),getAllAccounts:()=>[],getAccount:()=>null,getAccountByHomeId:()=>null,getAccountByUsername:()=>null,getAccountByLocalId:()=>null,handleRedirectPromise:()=>Promise.reject(Ca(ua)),loginPopup:()=>Promise.reject(Ca(ua)),loginRedirect:()=>Promise.reject(Ca(ua)),logout:()=>Promise.reject(Ca(ua)),logoutRedirect:()=>Promise.reject(Ca(ua)),logoutPopup:()=>Promise.reject(Ca(ua)),ssoSilent:()=>Promise.reject(Ca(ua)),addEventCallback:()=>null,removeEventCallback:()=>{},addPerformanceCallback:()=>"",removePerformanceCallback:()=>!1,enableAccountStorageEvents:()=>{},disableAccountStorageEvents:()=>{},getTokenCache:()=>{throw Ca(ua)},getLogger:()=>{throw Ca(ua)},setLogger:()=>{},setActiveAccount:()=>{},getActiveAccount:()=>null,initializeWrapperLibrary:()=>{},setNavigationClient:()=>{},getConfiguration:()=>{throw Ca(ua)},hydrateCache:()=>Promise.reject(Ca(ua)),clearCache:()=>Promise.reject(Ca(ua))};function El(){let e;try{e=window[ds.SessionStorage];const t=e?.getItem("msal.browser.performance.enabled");if(1===Number(t))return Promise.resolve().then((function(){return Ml}))}catch(e){}}function Rl(){return"undefined"!=typeof window&&void 0!==window.performance&&"function"==typeof window.performance.now}function _l(e){if(e&&Rl())return Math.round(window.performance.now()-e)}class Pl{constructor(e,t){this.correlationId=t,this.measureName=Pl.makeMeasureName(e,t),this.startMark=Pl.makeStartMark(e,t),this.endMark=Pl.makeEndMark(e,t)}static makeMeasureName(e,t){return`msal.measure.${e}.${t}`}static makeStartMark(e,t){return`msal.start.${e}.${t}`}static makeEndMark(e,t){return`msal.end.${e}.${t}`}static supportsBrowserPerformance(){return"undefined"!=typeof window&&void 0!==window.performance&&"function"==typeof window.performance.mark&&"function"==typeof window.performance.measure&&"function"==typeof window.performance.clearMarks&&"function"==typeof window.performance.clearMeasures&&"function"==typeof window.performance.getEntriesByName}static flushMeasurements(e,t){if(Pl.supportsBrowserPerformance())try{t.forEach((t=>{const r=Pl.makeMeasureName(t.name,e);window.performance.getEntriesByName(r,"measure").length>0&&(window.performance.clearMeasures(r),window.performance.clearMarks(Pl.makeStartMark(r,e)),window.performance.clearMarks(Pl.makeEndMark(r,e)))}))}catch(e){}}startMeasurement(){if(Pl.supportsBrowserPerformance())try{window.performance.mark(this.startMark)}catch(e){}}endMeasurement(){if(Pl.supportsBrowserPerformance())try{window.performance.mark(this.endMark),window.performance.measure(this.measureName,this.startMark,this.endMark)}catch(e){}}flushMeasurement(){if(Pl.supportsBrowserPerformance())try{const e=window.performance.getEntriesByName(this.measureName,"measure");if(e.length>0){const t=e[0].duration;return window.performance.clearMeasures(this.measureName),window.performance.clearMarks(this.startMark),window.performance.clearMarks(this.endMark),t}}catch(e){}return null}}var Ml=Object.freeze({__proto__:null,BrowserPerformanceMeasurement:Pl});e.AccountEntity=Sr,e.ApiId=Es,e.AuthError=fe,e.AuthErrorCodes=ge,e.AuthErrorMessage=me,e.AuthenticationHeaderParser=class{constructor(e){this.headers=e}getShrNonce(){const e=this.headers[m];if(e){const t=this.parseChallenges(e);if(t.nextnonce)return t.nextnonce;throw dr(nr)}const t=this.headers[p];if(t){const e=this.parseChallenges(t);if(e.nonce)return e.nonce;throw dr(nr)}throw dr(rr)}parseChallenges(e){const r=e.indexOf(" "),n=e.substr(r+1).split(","),o={};return n.forEach((e=>{const[r,n]=e.split("=");o[r]=unescape(n.replace(/['"]+/g,t.EMPTY_STRING))})),o}}
|
|
70
|
+
/*! @azure/msal-common v15.8.1 2025-07-08 */,e.AuthenticationScheme=Q,e.AzureCloudInstance=Ct,e.BrowserAuthError=$i,e.BrowserAuthErrorCodes=Fi,e.BrowserAuthErrorMessage=Gi,e.BrowserCacheLocation=ds,e.BrowserConfigurationAuthError=ya,e.BrowserConfigurationAuthErrorCodes=pa,e.BrowserConfigurationAuthErrorMessage=fa,e.BrowserPerformanceClient=class extends zo{constructor(e,r,n){super(e.auth.clientId,e.auth.authority||`${t.DEFAULT_AUTHORITY}`,new mt(e.system?.loggerOptions||{},Ba,Fa),Ba,Fa,e.telemetry?.application||{appName:"",appVersion:""},r,n)}generateId(){return ta()}getPageVisibility(){return document.visibilityState?.toString()||null}deleteIncompleteSubMeasurements(e){El()?.then((t=>{const r=this.eventsByCorrelationId.get(e.event.correlationId),n=r&&r.eventId===e.event.eventId,o=[];n&&r?.incompleteSubMeasurements&&r.incompleteSubMeasurements.forEach((e=>{o.push({...e})})),t.BrowserPerformanceMeasurement.flushMeasurements(e.event.correlationId,o)}))}startMeasurement(e,t){const r=this.getPageVisibility(),n=super.startMeasurement(e,t),o=Rl()?window.performance.now():void 0,i=El()?.then((t=>new t.BrowserPerformanceMeasurement(e,n.event.correlationId)));return i?.then((e=>e.startMeasurement())),{...n,end:(e,t)=>{const s=n.end({...e,startPageVisibility:r,endPageVisibility:this.getPageVisibility(),durationMs:_l(o)},t);return i?.then((e=>e.endMeasurement())),this.deleteIncompleteSubMeasurements(n),s},discard:()=>{n.discard(),i?.then((e=>e.flushMeasurement())),this.deleteIncompleteSubMeasurements(n)}}}setPreQueueTime(e,t){if(!Rl())return void this.logger.trace(`BrowserPerformanceClient: window performance API not available, unable to set telemetry queue time for ${e}`);if(!t)return void this.logger.trace(`BrowserPerformanceClient: correlationId for ${e} not provided, unable to set telemetry queue time`);const r=this.preQueueTimeByCorrelationId.get(t);r&&(this.logger.trace(`BrowserPerformanceClient: Incomplete pre-queue ${r.name} found`,t),this.addQueueMeasurement(r.name,t,void 0,!0)),this.preQueueTimeByCorrelationId.set(t,{name:e,time:window.performance.now()})}addQueueMeasurement(e,t,r,n){if(!Rl())return void this.logger.trace(`BrowserPerformanceClient: window performance API not available, unable to add queue measurement for ${e}`);if(!t)return void this.logger.trace(`BrowserPerformanceClient: correlationId for ${e} not provided, unable to add queue measurement`);const o=super.getPreQueueTime(e,t);if(!o)return;const i=window.performance.now(),s=r||super.calculateQueuedTime(o,i);return super.addQueueMeasurement(e,t,s,n)}},e.BrowserPerformanceMeasurement=Pl,e.BrowserUtils=qa,e.CacheLookupPolicy=Ns,e.ClientAuthError=dt,e.ClientAuthErrorCodes=ct,e.ClientAuthErrorMessage=ht,e.ClientConfigurationError=hr,e.ClientConfigurationErrorCodes=ar,e.ClientConfigurationErrorMessage=lr,e.DEFAULT_IFRAME_TIMEOUT_MS=Da,e.EventHandler=Sc,e.EventMessageUtils=class{static getInteractionStatusFromEvent(t,r){switch(t.eventType){case pc.LOGIN_START:return _s.Login;case pc.SSO_SILENT_START:return _s.SsoSilent;case pc.ACQUIRE_TOKEN_START:if(t.interactionType===e.InteractionType.Redirect||t.interactionType===e.InteractionType.Popup)return _s.AcquireToken;break;case pc.HANDLE_REDIRECT_START:return _s.HandleRedirect;case pc.LOGOUT_START:return _s.Logout;case pc.SSO_SILENT_SUCCESS:case pc.SSO_SILENT_FAILURE:if(r&&r!==_s.SsoSilent)break;return _s.None;case pc.LOGOUT_END:if(r&&r!==_s.Logout)break;return _s.None;case pc.HANDLE_REDIRECT_END:if(r&&r!==_s.HandleRedirect)break;return _s.None;case pc.LOGIN_SUCCESS:case pc.LOGIN_FAILURE:case pc.ACQUIRE_TOKEN_SUCCESS:case pc.ACQUIRE_TOKEN_FAILURE:case pc.RESTORE_FROM_BFCACHE:if(t.interactionType===e.InteractionType.Redirect||t.interactionType===e.InteractionType.Popup){if(r&&r!==_s.Login&&r!==_s.AcquireToken)break;return _s.None}}return null}},e.EventType=pc,e.InteractionRequiredAuthError=fo,e.InteractionRequiredAuthErrorCodes=ho,e.InteractionRequiredAuthErrorMessage=mo,e.InteractionStatus=_s,e.JsonWebTokenTypes=he,e.LocalStorage=uc,e.Logger=mt,e.MemoryStorage=tc,e.NavigationClient=La,e.OIDC_DEFAULT_SCOPES=c,e.PerformanceEvents=Kr,e.PromptValue=k,e.ProtocolMode=kr,e.PublicClientApplication=Il,e.PublicClientNext=Sl,e.ServerError=Jn,e.ServerResponseType=E,e.SessionStorage=gc,e.SignedHttpRequest=class{constructor(e,t){const r=t&&t.loggerOptions||{};this.logger=new mt(r,Ba,Fa),this.cryptoOps=new nc(this.logger),this.popTokenGenerator=new Io(this.cryptoOps),this.shrParameters=e}async generatePublicKeyThumbprint(){const{kid:e}=await this.popTokenGenerator.generateKid(this.shrParameters);return e}async signRequest(e,t,r){return this.popTokenGenerator.signPayload(e,t,this.shrParameters,r)}async removeKeys(e){return this.cryptoOps.removeTokenBindingKey(e).then((()=>!0)).catch((e=>{if(e instanceof dt&&e.errorCode===et)return!1;throw e}))}},e.StringUtils=ur,e.StubPerformanceClient=Wr,e.UrlString=_r,e.WrapperSKU={React:"@azure/msal-react",Angular:"@azure/msal-angular"},e.createNestablePublicClientApplication=async function(e){const t=new Xa(e);if(await t.initialize(),t.isAvailable()){const r=new vl(t),n=new Il(e,r);return await n.initialize(),n}return Tl(e)},e.createStandardPublicClientApplication=Tl,e.isPlatformBrokerAvailable=async function(e,t,r){const n=new mt(e||{},Ba,Fa);n.trace("isPlatformBrokerAvailable called");const o=t||new Wr;return"undefined"==typeof window?(n.trace("Non-browser environment detected, returning false"),!1):!!await Yc(n,o,r||ta())},e.stubbedPublicClientApplication=bl,e.version=Fa}));
|