@azure/msal-browser 4.22.1 → 4.24.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/app/IPublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientNext.mjs +1 -1
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/cache/AccountManager.mjs +1 -1
- package/dist/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/cache/BrowserCacheManager.mjs +1 -1
- package/dist/cache/CacheHelpers.mjs +1 -1
- package/dist/cache/CacheKeys.mjs +1 -1
- package/dist/cache/CookieStorage.mjs +1 -1
- package/dist/cache/DatabaseStorage.mjs +1 -1
- package/dist/cache/EncryptedData.mjs +1 -1
- package/dist/cache/LocalStorage.mjs +1 -1
- package/dist/cache/MemoryStorage.mjs +1 -1
- package/dist/cache/SessionStorage.mjs +1 -1
- package/dist/cache/TokenCache.mjs +1 -1
- package/dist/config/Configuration.mjs +1 -1
- package/dist/controllers/ControllerFactory.mjs +1 -1
- package/dist/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/dist/controllers/NestedAppAuthController.mjs +16 -15
- package/dist/controllers/NestedAppAuthController.mjs.map +1 -1
- package/dist/controllers/StandardController.d.ts.map +1 -1
- package/dist/controllers/StandardController.mjs +24 -51
- package/dist/controllers/StandardController.mjs.map +1 -1
- package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
- package/dist/crypto/BrowserCrypto.mjs +1 -1
- package/dist/crypto/CryptoOps.mjs +1 -1
- package/dist/crypto/PkceGenerator.mjs +1 -1
- package/dist/crypto/SignedHttpRequest.mjs +1 -1
- package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
- package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
- package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
- package/dist/custom-auth-path/config/Configuration.mjs +1 -1
- package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
- package/dist/custom-auth-path/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.mjs +24 -51
- package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
- package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
- package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
- package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +3 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +4 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.d.ts +1 -0
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +38 -5
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +15 -2
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +14 -2
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.d.ts +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +42 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +41 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +55 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +33 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +45 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +4 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +13 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +4 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +13 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +74 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +166 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +22 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +36 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +30 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +7 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +7 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +59 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.d.ts +1 -2
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +3 -4
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +10 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +21 -2
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +105 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +24 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +3 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +4 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +7 -3
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +51 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs.map +1 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +7 -2
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +16 -4
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +21 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +26 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +5 -3
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.d.ts +4 -0
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +6 -3
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/index.d.ts +11 -3
- package/dist/custom-auth-path/custom_auth/index.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/index.mjs +7 -1
- package/dist/custom-auth-path/custom_auth/index.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +3 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +2 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +10 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +9 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +10 -2
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +3 -3
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +19 -2
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +11 -3
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +14 -4
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +33 -4
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +30 -4
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.d.ts +14 -13
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +73 -31
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +13 -0
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +16 -2
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +2 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +5 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +3 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +2 -0
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
- package/dist/custom-auth-path/event/EventType.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/custom-auth-path/naa/TokenRequest.d.ts +1 -0
- package/dist/custom-auth-path/naa/TokenRequest.d.ts.map +1 -1
- package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
- package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
- package/dist/custom-auth-path/packageMetadata.mjs +2 -2
- package/dist/custom-auth-path/protocol/Authorize.mjs +1 -1
- package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
- package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
- package/dist/custom-auth-path/telemetry/BrowserPerformanceClient.d.ts.map +1 -1
- package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
- package/dist/custom_auth/CustomAuthConstants.d.ts +3 -1
- package/dist/custom_auth/CustomAuthConstants.d.ts.map +1 -1
- package/dist/custom_auth/controller/CustomAuthStandardController.d.ts +1 -0
- package/dist/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -1
- package/dist/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +2 -0
- package/dist/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -1
- package/dist/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -1
- package/dist/custom_auth/core/auth_flow/AuthFlowState.d.ts +1 -1
- package/dist/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -1
- package/dist/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
- package/dist/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
- package/dist/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +41 -0
- package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +33 -0
- package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +4 -0
- package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +4 -0
- package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +74 -0
- package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
- package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +22 -0
- package/dist/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +36 -0
- package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +30 -0
- package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +7 -0
- package/dist/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +7 -0
- package/dist/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +59 -0
- package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
- package/dist/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
- package/dist/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
- package/dist/custom_auth/core/error/MsalCustomAuthError.d.ts +1 -2
- package/dist/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -1
- package/dist/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +10 -0
- package/dist/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/dist/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
- package/dist/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
- package/dist/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
- package/dist/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
- package/dist/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
- package/dist/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
- package/dist/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
- package/dist/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
- package/dist/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
- package/dist/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
- package/dist/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
- package/dist/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +2 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -1
- package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +4 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -1
- package/dist/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +2 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -1
- package/dist/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +7 -2
- package/dist/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -1
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +21 -1
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -1
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +26 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -1
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +2 -0
- package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -1
- package/dist/custom_auth/core/telemetry/PublicApiId.d.ts +4 -0
- package/dist/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -1
- package/dist/custom_auth/index.d.ts +11 -3
- package/dist/custom_auth/index.d.ts.map +1 -1
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -1
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -1
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +2 -0
- package/dist/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +10 -1
- package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +10 -2
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +19 -2
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +2 -0
- package/dist/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/interaction_client/SignInClient.d.ts +14 -13
- package/dist/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +13 -0
- package/dist/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -1
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -1
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -1
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -1
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +2 -0
- package/dist/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -1
- package/dist/encode/Base64Decode.mjs +1 -1
- package/dist/encode/Base64Encode.mjs +1 -1
- package/dist/error/BrowserAuthError.mjs +1 -1
- package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/error/NativeAuthError.mjs +1 -1
- package/dist/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/error/NestedAppAuthError.mjs +1 -1
- package/dist/event/EventHandler.mjs +1 -1
- package/dist/event/EventMessage.mjs +1 -1
- package/dist/event/EventType.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
- package/dist/interaction_client/PopupClient.mjs +1 -1
- package/dist/interaction_client/RedirectClient.mjs +1 -1
- package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/interaction_client/SilentIframeClient.mjs +1 -1
- package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/naa/BridgeError.mjs +1 -1
- package/dist/naa/BridgeProxy.mjs +1 -1
- package/dist/naa/BridgeStatusCode.mjs +1 -1
- package/dist/naa/TokenRequest.d.ts +1 -0
- package/dist/naa/TokenRequest.d.ts.map +1 -1
- package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
- package/dist/navigation/NavigationClient.mjs +1 -1
- package/dist/network/FetchClient.mjs +1 -1
- package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
- package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.mjs +1 -1
- package/dist/request/RequestHelpers.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceClient.d.ts.map +1 -1
- package/dist/telemetry/BrowserPerformanceClient.mjs +3 -3
- package/dist/telemetry/BrowserPerformanceClient.mjs.map +1 -1
- package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
- package/dist/utils/BrowserConstants.mjs +1 -1
- package/dist/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/utils/BrowserUtils.mjs +1 -1
- package/dist/utils/Helpers.mjs +1 -1
- package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
- package/lib/custom-auth-path/msal-custom-auth.cjs +865 -210
- package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
- package/lib/custom-auth-path/types/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +3 -1
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/controller/CustomAuthStandardController.d.ts +1 -0
- package/lib/custom-auth-path/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +41 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +33 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +4 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +4 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +74 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +22 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +36 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +30 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +7 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +7 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +59 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
- package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/error/MsalCustomAuthError.d.ts +1 -2
- package/lib/custom-auth-path/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +10 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +4 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +7 -2
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +21 -1
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +26 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/telemetry/PublicApiId.d.ts +4 -0
- package/lib/custom-auth-path/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/index.d.ts +11 -3
- package/lib/custom-auth-path/types/custom_auth/index.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +10 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +10 -2
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +19 -2
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +14 -13
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +13 -0
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +2 -0
- package/lib/custom-auth-path/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -1
- package/lib/custom-auth-path/types/naa/TokenRequest.d.ts +1 -0
- package/lib/custom-auth-path/types/naa/TokenRequest.d.ts.map +1 -1
- package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -1
- package/lib/msal-browser.cjs +134 -136
- package/lib/msal-browser.cjs.map +1 -1
- package/lib/msal-browser.js +134 -136
- package/lib/msal-browser.js.map +1 -1
- package/lib/msal-browser.min.js +60 -60
- package/lib/types/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/lib/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/types/custom_auth/CustomAuthConstants.d.ts +3 -1
- package/lib/types/custom_auth/CustomAuthConstants.d.ts.map +1 -1
- package/lib/types/custom_auth/controller/CustomAuthStandardController.d.ts +1 -0
- package/lib/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -1
- package/lib/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +2 -0
- package/lib/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -1
- package/lib/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -1
- package/lib/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +1 -1
- package/lib/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -1
- package/lib/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
- package/lib/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
- package/lib/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +41 -0
- package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +33 -0
- package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +4 -0
- package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +4 -0
- package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +74 -0
- package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
- package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +22 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +36 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +30 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +7 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +7 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +59 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
- package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
- package/lib/types/custom_auth/core/error/MsalCustomAuthError.d.ts +1 -2
- package/lib/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -1
- package/lib/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +10 -0
- package/lib/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/lib/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
- package/lib/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
- package/lib/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
- package/lib/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
- package/lib/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
- package/lib/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
- package/lib/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
- package/lib/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
- package/lib/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
- package/lib/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +2 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -1
- package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +4 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -1
- package/lib/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +2 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -1
- package/lib/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +7 -2
- package/lib/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -1
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +21 -1
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -1
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +26 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -1
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +2 -0
- package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -1
- package/lib/types/custom_auth/core/telemetry/PublicApiId.d.ts +4 -0
- package/lib/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -1
- package/lib/types/custom_auth/index.d.ts +11 -3
- package/lib/types/custom_auth/index.d.ts.map +1 -1
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -1
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -1
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +2 -0
- package/lib/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +10 -1
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +10 -2
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +19 -2
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +2 -0
- package/lib/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +14 -13
- package/lib/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +13 -0
- package/lib/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +2 -0
- package/lib/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -1
- package/lib/types/naa/TokenRequest.d.ts +1 -0
- package/lib/types/naa/TokenRequest.d.ts.map +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/lib/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -1
- package/package.json +3 -3
- package/src/controllers/NestedAppAuthController.ts +41 -23
- package/src/controllers/StandardController.ts +97 -79
- package/src/custom_auth/CustomAuthConstants.ts +2 -0
- package/src/custom_auth/controller/CustomAuthStandardController.ts +62 -14
- package/src/custom_auth/core/auth_flow/AuthFlowErrorBase.ts +22 -1
- package/src/custom_auth/core/auth_flow/AuthFlowResultBase.ts +14 -0
- package/src/custom_auth/core/auth_flow/AuthFlowState.ts +1 -1
- package/src/custom_auth/core/auth_flow/jit/AuthMethodDetails.ts +21 -0
- package/src/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.ts +40 -0
- package/src/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.ts +79 -0
- package/src/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.ts +64 -0
- package/src/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.ts +8 -0
- package/src/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.ts +8 -0
- package/src/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.ts +260 -0
- package/src/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.ts +30 -0
- package/src/custom_auth/core/auth_flow/mfa/error_type/MfaError.ts +32 -0
- package/src/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.ts +59 -0
- package/src/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.ts +52 -0
- package/src/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.ts +11 -0
- package/src/custom_auth/core/auth_flow/mfa/state/MfaFailedState.ts +11 -0
- package/src/custom_auth/core/auth_flow/mfa/state/MfaState.ts +188 -0
- package/src/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.ts +28 -0
- package/src/custom_auth/core/error/MsalCustomAuthError.ts +2 -5
- package/src/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.ts +46 -0
- package/src/custom_auth/core/interaction_client/jit/JitClient.ts +165 -0
- package/src/custom_auth/core/interaction_client/jit/parameter/JitParams.ts +27 -0
- package/src/custom_auth/core/interaction_client/jit/result/JitActionResult.ts +47 -0
- package/src/custom_auth/core/interaction_client/mfa/MfaClient.ts +148 -0
- package/src/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.ts +20 -0
- package/src/custom_auth/core/interaction_client/mfa/result/MfaActionResult.ts +48 -0
- package/src/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.ts +7 -0
- package/src/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.ts +5 -0
- package/src/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.ts +2 -0
- package/src/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.ts +95 -0
- package/src/custom_auth/core/network_client/custom_auth_api/SignInApiClient.ts +29 -2
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.ts +26 -1
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.ts +32 -0
- package/src/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.ts +2 -0
- package/src/custom_auth/core/telemetry/PublicApiId.ts +8 -0
- package/src/custom_auth/index.ts +35 -4
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.ts +2 -0
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.ts +1 -0
- package/src/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.ts +2 -0
- package/src/custom_auth/sign_in/auth_flow/result/SignInResult.ts +14 -1
- package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.ts +17 -2
- package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.ts +30 -2
- package/src/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.ts +23 -12
- package/src/custom_auth/sign_in/auth_flow/state/SignInContinuationState.ts +50 -9
- package/src/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.ts +50 -12
- package/src/custom_auth/sign_in/auth_flow/state/SignInStateParameters.ts +2 -0
- package/src/custom_auth/sign_in/interaction_client/SignInClient.ts +166 -82
- package/src/custom_auth/sign_in/interaction_client/result/SignInActionResult.ts +31 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.ts +1 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.ts +4 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.ts +2 -0
- package/src/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.ts +2 -0
- package/src/naa/TokenRequest.ts +1 -0
- package/src/packageMetadata.ts +1 -1
- package/src/telemetry/BrowserPerformanceClient.ts +5 -2
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts +0 -21
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts.map +0 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.mjs +0 -24
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.mjs.map +0 -1
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts +0 -21
- package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts.map +0 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts +0 -21
- package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts.map +0 -1
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts +0 -21
- package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.d.ts.map +0 -1
- package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitCredentialResult.ts +0 -43
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
/*! @azure/msal-browser v4.
|
|
1
|
+
/*! @azure/msal-browser v4.24.0 2025-09-24 */
|
|
2
2
|
'use strict';
|
|
3
3
|
'use strict';
|
|
4
4
|
|
|
5
|
-
/*! @azure/msal-common v15.
|
|
5
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
6
6
|
/*
|
|
7
7
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8
8
|
* Licensed under the MIT License.
|
|
@@ -276,7 +276,7 @@ const JsonWebTokenTypes = {
|
|
|
276
276
|
// Token renewal offset default in seconds
|
|
277
277
|
const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
|
|
278
278
|
|
|
279
|
-
/*! @azure/msal-common v15.
|
|
279
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
280
280
|
/*
|
|
281
281
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
282
282
|
* Licensed under the MIT License.
|
|
@@ -287,7 +287,7 @@ const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
|
|
|
287
287
|
const unexpectedError = "unexpected_error";
|
|
288
288
|
const postRequestFailed$1 = "post_request_failed";
|
|
289
289
|
|
|
290
|
-
/*! @azure/msal-common v15.
|
|
290
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
291
291
|
|
|
292
292
|
/*
|
|
293
293
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -322,7 +322,7 @@ function createAuthError(code, additionalMessage) {
|
|
|
322
322
|
: AuthErrorMessages[code]);
|
|
323
323
|
}
|
|
324
324
|
|
|
325
|
-
/*! @azure/msal-common v15.
|
|
325
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
326
326
|
/*
|
|
327
327
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
328
328
|
* Licensed under the MIT License.
|
|
@@ -372,7 +372,7 @@ const missingTenantIdError = "missing_tenant_id_error";
|
|
|
372
372
|
const methodNotImplemented = "method_not_implemented";
|
|
373
373
|
const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
|
|
374
374
|
|
|
375
|
-
/*! @azure/msal-common v15.
|
|
375
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
376
376
|
|
|
377
377
|
/*
|
|
378
378
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -446,7 +446,7 @@ function createClientAuthError(errorCode, additionalMessage) {
|
|
|
446
446
|
return new ClientAuthError(errorCode, additionalMessage);
|
|
447
447
|
}
|
|
448
448
|
|
|
449
|
-
/*! @azure/msal-common v15.
|
|
449
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
450
450
|
|
|
451
451
|
/*
|
|
452
452
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -485,7 +485,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
|
|
|
485
485
|
},
|
|
486
486
|
};
|
|
487
487
|
|
|
488
|
-
/*! @azure/msal-common v15.
|
|
488
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
489
489
|
|
|
490
490
|
/*
|
|
491
491
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -676,12 +676,12 @@ class Logger {
|
|
|
676
676
|
}
|
|
677
677
|
}
|
|
678
678
|
|
|
679
|
-
/*! @azure/msal-common v15.
|
|
679
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
680
680
|
/* eslint-disable header/header */
|
|
681
681
|
const name$1 = "@azure/msal-common";
|
|
682
|
-
const version$1 = "15.
|
|
682
|
+
const version$1 = "15.13.0";
|
|
683
683
|
|
|
684
|
-
/*! @azure/msal-common v15.
|
|
684
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
685
685
|
/*
|
|
686
686
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
687
687
|
* Licensed under the MIT License.
|
|
@@ -690,7 +690,7 @@ const AzureCloudInstance = {
|
|
|
690
690
|
// AzureCloudInstance is not specified.
|
|
691
691
|
None: "none"};
|
|
692
692
|
|
|
693
|
-
/*! @azure/msal-common v15.
|
|
693
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
694
694
|
/*
|
|
695
695
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
696
696
|
* Licensed under the MIT License.
|
|
@@ -719,7 +719,7 @@ const authorityMismatch = "authority_mismatch";
|
|
|
719
719
|
const invalidRequestMethodForEAR = "invalid_request_method_for_EAR";
|
|
720
720
|
const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
|
|
721
721
|
|
|
722
|
-
/*! @azure/msal-common v15.
|
|
722
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
723
723
|
|
|
724
724
|
/*
|
|
725
725
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -764,7 +764,7 @@ function createClientConfigurationError(errorCode) {
|
|
|
764
764
|
return new ClientConfigurationError(errorCode);
|
|
765
765
|
}
|
|
766
766
|
|
|
767
|
-
/*! @azure/msal-common v15.
|
|
767
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
768
768
|
/*
|
|
769
769
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
770
770
|
* Licensed under the MIT License.
|
|
@@ -861,7 +861,7 @@ class StringUtils {
|
|
|
861
861
|
}
|
|
862
862
|
}
|
|
863
863
|
|
|
864
|
-
/*! @azure/msal-common v15.
|
|
864
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
865
865
|
|
|
866
866
|
/*
|
|
867
867
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1056,7 +1056,7 @@ class ScopeSet {
|
|
|
1056
1056
|
}
|
|
1057
1057
|
}
|
|
1058
1058
|
|
|
1059
|
-
/*! @azure/msal-common v15.
|
|
1059
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
1060
1060
|
/*
|
|
1061
1061
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1062
1062
|
* Licensed under the MIT License.
|
|
@@ -1138,7 +1138,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
|
|
|
1138
1138
|
return updatedAccountInfo;
|
|
1139
1139
|
}
|
|
1140
1140
|
|
|
1141
|
-
/*! @azure/msal-common v15.
|
|
1141
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
1142
1142
|
|
|
1143
1143
|
/*
|
|
1144
1144
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1199,7 +1199,7 @@ function checkMaxAge(authTime, maxAge) {
|
|
|
1199
1199
|
}
|
|
1200
1200
|
}
|
|
1201
1201
|
|
|
1202
|
-
/*! @azure/msal-common v15.
|
|
1202
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
1203
1203
|
|
|
1204
1204
|
/*
|
|
1205
1205
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1315,7 +1315,7 @@ function normalizeUrlForComparison(url) {
|
|
|
1315
1315
|
}
|
|
1316
1316
|
}
|
|
1317
1317
|
|
|
1318
|
-
/*! @azure/msal-common v15.
|
|
1318
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
1319
1319
|
|
|
1320
1320
|
/*
|
|
1321
1321
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1479,7 +1479,7 @@ class UrlString {
|
|
|
1479
1479
|
}
|
|
1480
1480
|
}
|
|
1481
1481
|
|
|
1482
|
-
/*! @azure/msal-common v15.
|
|
1482
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
1483
1483
|
|
|
1484
1484
|
/*
|
|
1485
1485
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1618,7 +1618,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
|
|
|
1618
1618
|
return null;
|
|
1619
1619
|
}
|
|
1620
1620
|
|
|
1621
|
-
/*! @azure/msal-common v15.
|
|
1621
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
1622
1622
|
/*
|
|
1623
1623
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1624
1624
|
* Licensed under the MIT License.
|
|
@@ -1626,7 +1626,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
|
|
|
1626
1626
|
const cacheQuotaExceeded = "cache_quota_exceeded";
|
|
1627
1627
|
const cacheErrorUnknown = "cache_error_unknown";
|
|
1628
1628
|
|
|
1629
|
-
/*! @azure/msal-common v15.
|
|
1629
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
1630
1630
|
|
|
1631
1631
|
/*
|
|
1632
1632
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1671,7 +1671,7 @@ function createCacheError(e) {
|
|
|
1671
1671
|
}
|
|
1672
1672
|
}
|
|
1673
1673
|
|
|
1674
|
-
/*! @azure/msal-common v15.
|
|
1674
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
1675
1675
|
|
|
1676
1676
|
/*
|
|
1677
1677
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2779,7 +2779,7 @@ class DefaultStorageClass extends CacheManager {
|
|
|
2779
2779
|
}
|
|
2780
2780
|
}
|
|
2781
2781
|
|
|
2782
|
-
/*! @azure/msal-common v15.
|
|
2782
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
2783
2783
|
/*
|
|
2784
2784
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2785
2785
|
* Licensed under the MIT License.
|
|
@@ -2803,7 +2803,7 @@ const ProtocolMode = {
|
|
|
2803
2803
|
EAR: "EAR",
|
|
2804
2804
|
};
|
|
2805
2805
|
|
|
2806
|
-
/*! @azure/msal-common v15.
|
|
2806
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
2807
2807
|
/*
|
|
2808
2808
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2809
2809
|
* Licensed under the MIT License.
|
|
@@ -3070,7 +3070,7 @@ const PerformanceEvents = {
|
|
|
3070
3070
|
const PerformanceEventStatus = {
|
|
3071
3071
|
InProgress: 1};
|
|
3072
3072
|
|
|
3073
|
-
/*! @azure/msal-common v15.
|
|
3073
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3074
3074
|
|
|
3075
3075
|
/*
|
|
3076
3076
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3149,7 +3149,7 @@ class StubPerformanceClient {
|
|
|
3149
3149
|
}
|
|
3150
3150
|
}
|
|
3151
3151
|
|
|
3152
|
-
/*! @azure/msal-common v15.
|
|
3152
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3153
3153
|
|
|
3154
3154
|
/*
|
|
3155
3155
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3249,7 +3249,7 @@ function isOidcProtocolMode(config) {
|
|
|
3249
3249
|
return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
|
|
3250
3250
|
}
|
|
3251
3251
|
|
|
3252
|
-
/*! @azure/msal-common v15.
|
|
3252
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3253
3253
|
/*
|
|
3254
3254
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3255
3255
|
* Licensed under the MIT License.
|
|
@@ -3259,7 +3259,7 @@ const CcsCredentialType = {
|
|
|
3259
3259
|
UPN: "UPN",
|
|
3260
3260
|
};
|
|
3261
3261
|
|
|
3262
|
-
/*! @azure/msal-common v15.
|
|
3262
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3263
3263
|
|
|
3264
3264
|
/*
|
|
3265
3265
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3299,7 +3299,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
|
|
|
3299
3299
|
};
|
|
3300
3300
|
}
|
|
3301
3301
|
|
|
3302
|
-
/*! @azure/msal-common v15.
|
|
3302
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3303
3303
|
/*
|
|
3304
3304
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3305
3305
|
* Licensed under the MIT License.
|
|
@@ -3349,7 +3349,7 @@ const INSTANCE_AWARE = "instance_aware";
|
|
|
3349
3349
|
const EAR_JWK = "ear_jwk";
|
|
3350
3350
|
const EAR_JWE_CRYPTO = "ear_jwe_crypto";
|
|
3351
3351
|
|
|
3352
|
-
/*! @azure/msal-common v15.
|
|
3352
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3353
3353
|
|
|
3354
3354
|
/*
|
|
3355
3355
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3729,7 +3729,7 @@ function addPostBodyParameters(parameters, bodyParameters) {
|
|
|
3729
3729
|
});
|
|
3730
3730
|
}
|
|
3731
3731
|
|
|
3732
|
-
/*! @azure/msal-common v15.
|
|
3732
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3733
3733
|
/*
|
|
3734
3734
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3735
3735
|
* Licensed under the MIT License.
|
|
@@ -3744,7 +3744,7 @@ const AuthorityType = {
|
|
|
3744
3744
|
Ciam: 3,
|
|
3745
3745
|
};
|
|
3746
3746
|
|
|
3747
|
-
/*! @azure/msal-common v15.
|
|
3747
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3748
3748
|
/*
|
|
3749
3749
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3750
3750
|
* Licensed under the MIT License.
|
|
@@ -3756,7 +3756,7 @@ function isOpenIdConfigResponse(response) {
|
|
|
3756
3756
|
response.hasOwnProperty("jwks_uri"));
|
|
3757
3757
|
}
|
|
3758
3758
|
|
|
3759
|
-
/*! @azure/msal-common v15.
|
|
3759
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3760
3760
|
/*
|
|
3761
3761
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3762
3762
|
* Licensed under the MIT License.
|
|
@@ -3766,7 +3766,7 @@ function isCloudInstanceDiscoveryResponse(response) {
|
|
|
3766
3766
|
response.hasOwnProperty("metadata"));
|
|
3767
3767
|
}
|
|
3768
3768
|
|
|
3769
|
-
/*! @azure/msal-common v15.
|
|
3769
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3770
3770
|
/*
|
|
3771
3771
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3772
3772
|
* Licensed under the MIT License.
|
|
@@ -3776,7 +3776,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
|
|
|
3776
3776
|
response.hasOwnProperty("error_description"));
|
|
3777
3777
|
}
|
|
3778
3778
|
|
|
3779
|
-
/*! @azure/msal-common v15.
|
|
3779
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3780
3780
|
/*
|
|
3781
3781
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3782
3782
|
* Licensed under the MIT License.
|
|
@@ -3872,7 +3872,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
|
|
|
3872
3872
|
};
|
|
3873
3873
|
};
|
|
3874
3874
|
|
|
3875
|
-
/*! @azure/msal-common v15.
|
|
3875
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3876
3876
|
|
|
3877
3877
|
/*
|
|
3878
3878
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3978,7 +3978,7 @@ RegionDiscovery.IMDS_OPTIONS = {
|
|
|
3978
3978
|
},
|
|
3979
3979
|
};
|
|
3980
3980
|
|
|
3981
|
-
/*! @azure/msal-common v15.
|
|
3981
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
3982
3982
|
/*
|
|
3983
3983
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3984
3984
|
* Licensed under the MIT License.
|
|
@@ -4043,7 +4043,7 @@ function wasClockTurnedBack(cachedAt) {
|
|
|
4043
4043
|
return cachedAtSec > nowSeconds();
|
|
4044
4044
|
}
|
|
4045
4045
|
|
|
4046
|
-
/*! @azure/msal-common v15.
|
|
4046
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
4047
4047
|
|
|
4048
4048
|
/*
|
|
4049
4049
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4305,7 +4305,7 @@ function isAuthorityMetadataExpired(metadata) {
|
|
|
4305
4305
|
return metadata.expiresAt <= nowSeconds();
|
|
4306
4306
|
}
|
|
4307
4307
|
|
|
4308
|
-
/*! @azure/msal-common v15.
|
|
4308
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
4309
4309
|
|
|
4310
4310
|
/*
|
|
4311
4311
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5144,7 +5144,7 @@ function buildStaticAuthorityOptions(authOptions) {
|
|
|
5144
5144
|
};
|
|
5145
5145
|
}
|
|
5146
5146
|
|
|
5147
|
-
/*! @azure/msal-common v15.
|
|
5147
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5148
5148
|
|
|
5149
5149
|
/*
|
|
5150
5150
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5175,7 +5175,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
|
|
|
5175
5175
|
}
|
|
5176
5176
|
}
|
|
5177
5177
|
|
|
5178
|
-
/*! @azure/msal-common v15.
|
|
5178
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5179
5179
|
|
|
5180
5180
|
/*
|
|
5181
5181
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5194,7 +5194,7 @@ class ServerError extends AuthError {
|
|
|
5194
5194
|
}
|
|
5195
5195
|
}
|
|
5196
5196
|
|
|
5197
|
-
/*! @azure/msal-common v15.
|
|
5197
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5198
5198
|
/*
|
|
5199
5199
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5200
5200
|
* Licensed under the MIT License.
|
|
@@ -5215,7 +5215,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
|
|
|
5215
5215
|
};
|
|
5216
5216
|
}
|
|
5217
5217
|
|
|
5218
|
-
/*! @azure/msal-common v15.
|
|
5218
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5219
5219
|
|
|
5220
5220
|
/*
|
|
5221
5221
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5302,7 +5302,7 @@ class ThrottlingUtils {
|
|
|
5302
5302
|
}
|
|
5303
5303
|
}
|
|
5304
5304
|
|
|
5305
|
-
/*! @azure/msal-common v15.
|
|
5305
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5306
5306
|
|
|
5307
5307
|
/*
|
|
5308
5308
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5333,7 +5333,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
|
|
|
5333
5333
|
return new NetworkError(error, httpStatus, responseHeaders);
|
|
5334
5334
|
}
|
|
5335
5335
|
|
|
5336
|
-
/*! @azure/msal-common v15.
|
|
5336
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5337
5337
|
|
|
5338
5338
|
/*
|
|
5339
5339
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5481,7 +5481,7 @@ class BaseClient {
|
|
|
5481
5481
|
}
|
|
5482
5482
|
}
|
|
5483
5483
|
|
|
5484
|
-
/*! @azure/msal-common v15.
|
|
5484
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5485
5485
|
/*
|
|
5486
5486
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5487
5487
|
* Licensed under the MIT License.
|
|
@@ -5503,7 +5503,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
|
|
|
5503
5503
|
return null;
|
|
5504
5504
|
}
|
|
5505
5505
|
|
|
5506
|
-
/*! @azure/msal-common v15.
|
|
5506
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5507
5507
|
|
|
5508
5508
|
/*
|
|
5509
5509
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5551,6 +5551,7 @@ class AccountEntity {
|
|
|
5551
5551
|
tenantProfiles: new Map((this.tenantProfiles || []).map((tenantProfile) => {
|
|
5552
5552
|
return [tenantProfile.tenantId, tenantProfile];
|
|
5553
5553
|
})),
|
|
5554
|
+
dataBoundary: this.dataBoundary,
|
|
5554
5555
|
};
|
|
5555
5556
|
}
|
|
5556
5557
|
/**
|
|
@@ -5577,6 +5578,10 @@ class AccountEntity {
|
|
|
5577
5578
|
let clientInfo;
|
|
5578
5579
|
if (accountDetails.clientInfo && base64Decode) {
|
|
5579
5580
|
clientInfo = buildClientInfo(accountDetails.clientInfo, base64Decode);
|
|
5581
|
+
if (clientInfo.xms_tdbr) {
|
|
5582
|
+
account.dataBoundary =
|
|
5583
|
+
clientInfo.xms_tdbr === "EU" ? "EU" : "None";
|
|
5584
|
+
}
|
|
5580
5585
|
}
|
|
5581
5586
|
account.clientInfo = accountDetails.clientInfo;
|
|
5582
5587
|
account.homeAccountId = accountDetails.homeAccountId;
|
|
@@ -5645,6 +5650,7 @@ class AccountEntity {
|
|
|
5645
5650
|
account.msGraphHost = msGraphHost;
|
|
5646
5651
|
// Serialize tenant profiles map into an array
|
|
5647
5652
|
account.tenantProfiles = Array.from(accountInfo.tenantProfiles?.values() || []);
|
|
5653
|
+
account.dataBoundary = accountInfo.dataBoundary;
|
|
5648
5654
|
return account;
|
|
5649
5655
|
}
|
|
5650
5656
|
/**
|
|
@@ -5718,7 +5724,7 @@ class AccountEntity {
|
|
|
5718
5724
|
}
|
|
5719
5725
|
}
|
|
5720
5726
|
|
|
5721
|
-
/*! @azure/msal-common v15.
|
|
5727
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5722
5728
|
/*
|
|
5723
5729
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5724
5730
|
* Licensed under the MIT License.
|
|
@@ -5734,7 +5740,7 @@ const consentRequired = "consent_required";
|
|
|
5734
5740
|
const loginRequired = "login_required";
|
|
5735
5741
|
const badToken = "bad_token";
|
|
5736
5742
|
|
|
5737
|
-
/*! @azure/msal-common v15.
|
|
5743
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5738
5744
|
|
|
5739
5745
|
/*
|
|
5740
5746
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5806,7 +5812,7 @@ function createInteractionRequiredAuthError(errorCode) {
|
|
|
5806
5812
|
return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
|
|
5807
5813
|
}
|
|
5808
5814
|
|
|
5809
|
-
/*! @azure/msal-common v15.
|
|
5815
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5810
5816
|
|
|
5811
5817
|
/*
|
|
5812
5818
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5878,7 +5884,7 @@ class ProtocolUtils {
|
|
|
5878
5884
|
}
|
|
5879
5885
|
}
|
|
5880
5886
|
|
|
5881
|
-
/*! @azure/msal-common v15.
|
|
5887
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5882
5888
|
|
|
5883
5889
|
/*
|
|
5884
5890
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5960,7 +5966,7 @@ class PopTokenGenerator {
|
|
|
5960
5966
|
}
|
|
5961
5967
|
}
|
|
5962
5968
|
|
|
5963
|
-
/*! @azure/msal-common v15.
|
|
5969
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5964
5970
|
/*
|
|
5965
5971
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5966
5972
|
* Licensed under the MIT License.
|
|
@@ -5987,7 +5993,7 @@ class PopTokenGenerator {
|
|
|
5987
5993
|
}
|
|
5988
5994
|
}
|
|
5989
5995
|
|
|
5990
|
-
/*! @azure/msal-common v15.
|
|
5996
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
5991
5997
|
|
|
5992
5998
|
/*
|
|
5993
5999
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6318,7 +6324,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
|
|
|
6318
6324
|
return baseAccount;
|
|
6319
6325
|
}
|
|
6320
6326
|
|
|
6321
|
-
/*! @azure/msal-common v15.
|
|
6327
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
6322
6328
|
/*
|
|
6323
6329
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
6324
6330
|
* Licensed under the MIT License.
|
|
@@ -6336,7 +6342,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
|
|
|
6336
6342
|
}
|
|
6337
6343
|
}
|
|
6338
6344
|
|
|
6339
|
-
/*! @azure/msal-common v15.
|
|
6345
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
6340
6346
|
|
|
6341
6347
|
/*
|
|
6342
6348
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6571,7 +6577,7 @@ class AuthorizationCodeClient extends BaseClient {
|
|
|
6571
6577
|
}
|
|
6572
6578
|
}
|
|
6573
6579
|
|
|
6574
|
-
/*! @azure/msal-common v15.
|
|
6580
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
6575
6581
|
|
|
6576
6582
|
/*
|
|
6577
6583
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6780,7 +6786,7 @@ class RefreshTokenClient extends BaseClient {
|
|
|
6780
6786
|
}
|
|
6781
6787
|
}
|
|
6782
6788
|
|
|
6783
|
-
/*! @azure/msal-common v15.
|
|
6789
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
6784
6790
|
|
|
6785
6791
|
/*
|
|
6786
6792
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6878,7 +6884,7 @@ class SilentFlowClient extends BaseClient {
|
|
|
6878
6884
|
}
|
|
6879
6885
|
}
|
|
6880
6886
|
|
|
6881
|
-
/*! @azure/msal-common v15.
|
|
6887
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
6882
6888
|
|
|
6883
6889
|
/*
|
|
6884
6890
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6893,7 +6899,7 @@ const StubbedNetworkModule = {
|
|
|
6893
6899
|
},
|
|
6894
6900
|
};
|
|
6895
6901
|
|
|
6896
|
-
/*! @azure/msal-common v15.
|
|
6902
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
6897
6903
|
|
|
6898
6904
|
/*
|
|
6899
6905
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7117,7 +7123,7 @@ function extractLoginHint(account) {
|
|
|
7117
7123
|
return account.loginHint || account.idTokenClaims?.login_hint || null;
|
|
7118
7124
|
}
|
|
7119
7125
|
|
|
7120
|
-
/*! @azure/msal-common v15.
|
|
7126
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
7121
7127
|
|
|
7122
7128
|
/*
|
|
7123
7129
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7380,7 +7386,7 @@ class ServerTelemetryManager {
|
|
|
7380
7386
|
}
|
|
7381
7387
|
}
|
|
7382
7388
|
|
|
7383
|
-
/*! @azure/msal-common v15.
|
|
7389
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
7384
7390
|
/*
|
|
7385
7391
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
7386
7392
|
* Licensed under the MIT License.
|
|
@@ -7388,7 +7394,7 @@ class ServerTelemetryManager {
|
|
|
7388
7394
|
const missingKidError = "missing_kid_error";
|
|
7389
7395
|
const missingAlgError = "missing_alg_error";
|
|
7390
7396
|
|
|
7391
|
-
/*! @azure/msal-common v15.
|
|
7397
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
7392
7398
|
|
|
7393
7399
|
/*
|
|
7394
7400
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7413,7 +7419,7 @@ function createJoseHeaderError(code) {
|
|
|
7413
7419
|
return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
|
|
7414
7420
|
}
|
|
7415
7421
|
|
|
7416
|
-
/*! @azure/msal-common v15.
|
|
7422
|
+
/*! @azure/msal-common v15.13.0 2025-09-24 */
|
|
7417
7423
|
|
|
7418
7424
|
/*
|
|
7419
7425
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7476,10 +7482,9 @@ class CustomAuthError extends Error {
|
|
|
7476
7482
|
* Licensed under the MIT License.
|
|
7477
7483
|
*/
|
|
7478
7484
|
class MsalCustomAuthError extends CustomAuthError {
|
|
7479
|
-
constructor(error, errorDescription, subError, correlationId) {
|
|
7480
|
-
super(error, errorDescription, correlationId);
|
|
7485
|
+
constructor(error, errorDescription, subError, errorCodes, correlationId) {
|
|
7486
|
+
super(error, errorDescription, correlationId, errorCodes, subError);
|
|
7481
7487
|
Object.setPrototypeOf(this, MsalCustomAuthError.prototype);
|
|
7482
|
-
this.subError = subError || "";
|
|
7483
7488
|
}
|
|
7484
7489
|
}
|
|
7485
7490
|
|
|
@@ -7537,7 +7542,19 @@ class AuthFlowResultBase {
|
|
|
7537
7542
|
return error;
|
|
7538
7543
|
}
|
|
7539
7544
|
else if (error instanceof AuthError) {
|
|
7540
|
-
|
|
7545
|
+
const errorCodes = [];
|
|
7546
|
+
if ("errorNo" in error) {
|
|
7547
|
+
if (typeof error.errorNo === "string") {
|
|
7548
|
+
const code = Number(error.errorNo);
|
|
7549
|
+
if (!isNaN(code)) {
|
|
7550
|
+
errorCodes.push(code);
|
|
7551
|
+
}
|
|
7552
|
+
}
|
|
7553
|
+
else if (typeof error.errorNo === "number") {
|
|
7554
|
+
errorCodes.push(error.errorNo);
|
|
7555
|
+
}
|
|
7556
|
+
}
|
|
7557
|
+
return new MsalCustomAuthError(error.errorCode, error.errorMessage, error.subError, errorCodes, error.correlationId);
|
|
7541
7558
|
}
|
|
7542
7559
|
else {
|
|
7543
7560
|
return new UnexpectedError(error);
|
|
@@ -7633,7 +7650,9 @@ const PASSWORD_RECENTLY_USED = "password_recently_used";
|
|
|
7633
7650
|
const PASSWORD_BANNED = "password_banned";
|
|
7634
7651
|
const PASSWORD_IS_INVALID = "password_is_invalid";
|
|
7635
7652
|
const INVALID_OOB_VALUE = "invalid_oob_value";
|
|
7636
|
-
const ATTRIBUTE_VALIATION_FAILED = "attribute_validation_failed";
|
|
7653
|
+
const ATTRIBUTE_VALIATION_FAILED = "attribute_validation_failed";
|
|
7654
|
+
const REGISTRATION_REQUIRED = "registration_required";
|
|
7655
|
+
const MFA_REQUIRED = "mfa_required";
|
|
7637
7656
|
|
|
7638
7657
|
/*
|
|
7639
7658
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7677,7 +7696,9 @@ class AuthFlowErrorBase {
|
|
|
7677
7696
|
this.errorData.subError ===
|
|
7678
7697
|
INVALID_OOB_VALUE) ||
|
|
7679
7698
|
(this.errorData instanceof InvalidArgumentError &&
|
|
7680
|
-
this.errorData.errorDescription?.includes("code")
|
|
7699
|
+
(this.errorData.errorDescription?.includes("code") ||
|
|
7700
|
+
this.errorData.errorDescription?.includes("challenge")) ===
|
|
7701
|
+
true));
|
|
7681
7702
|
}
|
|
7682
7703
|
isRedirectError() {
|
|
7683
7704
|
return this.errorData instanceof RedirectError;
|
|
@@ -7728,6 +7749,17 @@ class AuthFlowErrorBase {
|
|
|
7728
7749
|
this.errorData.error === INVALID_REQUEST &&
|
|
7729
7750
|
this.errorData.errorCodes?.includes(50142) === true);
|
|
7730
7751
|
}
|
|
7752
|
+
isInvalidInputError() {
|
|
7753
|
+
return (this.errorData instanceof CustomAuthApiError &&
|
|
7754
|
+
this.errorData.error === INVALID_REQUEST &&
|
|
7755
|
+
this.errorData.errorCodes?.includes(901001) === true);
|
|
7756
|
+
}
|
|
7757
|
+
isVerificationContactBlockedError() {
|
|
7758
|
+
return (this.errorData instanceof CustomAuthApiError &&
|
|
7759
|
+
this.errorData.error === INVALID_REQUEST &&
|
|
7760
|
+
this.errorData.errorCodes?.includes(550024) === true &&
|
|
7761
|
+
this.errorData.errorDescription?.includes("multi-factor authentication method is blocked") === true);
|
|
7762
|
+
}
|
|
7731
7763
|
}
|
|
7732
7764
|
class AuthActionErrorBase extends AuthFlowErrorBase {
|
|
7733
7765
|
/**
|
|
@@ -7820,7 +7852,7 @@ function ensureArgumentIsJSONString(argName, argValue, correlationId) {
|
|
|
7820
7852
|
|
|
7821
7853
|
/* eslint-disable header/header */
|
|
7822
7854
|
const name = "@azure/msal-browser";
|
|
7823
|
-
const version = "4.
|
|
7855
|
+
const version = "4.24.0";
|
|
7824
7856
|
|
|
7825
7857
|
/*
|
|
7826
7858
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7830,12 +7862,15 @@ const GrantType = {
|
|
|
7830
7862
|
PASSWORD: "password",
|
|
7831
7863
|
OOB: "oob",
|
|
7832
7864
|
CONTINUATION_TOKEN: "continuation_token",
|
|
7865
|
+
REDIRECT: "redirect",
|
|
7833
7866
|
ATTRIBUTES: "attributes",
|
|
7867
|
+
MFA_OOB: "mfa_oob",
|
|
7834
7868
|
};
|
|
7835
7869
|
const ChallengeType = {
|
|
7836
7870
|
PASSWORD: "password",
|
|
7837
7871
|
OOB: "oob",
|
|
7838
7872
|
REDIRECT: "redirect",
|
|
7873
|
+
PREVERIFIED: "preverified",
|
|
7839
7874
|
};
|
|
7840
7875
|
const DefaultScopes = [
|
|
7841
7876
|
Constants.OPENID_SCOPE,
|
|
@@ -8300,24 +8335,6 @@ class SignInResendCodeResult extends AuthFlowResultBase {
|
|
|
8300
8335
|
class SignInCompletedState extends AuthFlowStateBase {
|
|
8301
8336
|
}
|
|
8302
8337
|
|
|
8303
|
-
/*
|
|
8304
|
-
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8305
|
-
* Licensed under the MIT License.
|
|
8306
|
-
*/
|
|
8307
|
-
/*
|
|
8308
|
-
* Result of a sign-in submit credential operation.
|
|
8309
|
-
*/
|
|
8310
|
-
class SignInSubmitCredentialResult extends AuthFlowResultBase {
|
|
8311
|
-
/**
|
|
8312
|
-
* Creates a new instance of SignInSubmitCredentialResult.
|
|
8313
|
-
* @param state The state of the result.
|
|
8314
|
-
* @param resultData The result data.
|
|
8315
|
-
*/
|
|
8316
|
-
constructor(state, resultData) {
|
|
8317
|
-
super(state, resultData);
|
|
8318
|
-
}
|
|
8319
|
-
}
|
|
8320
|
-
|
|
8321
8338
|
/*
|
|
8322
8339
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8323
8340
|
* Licensed under the MIT License.
|
|
@@ -8325,7 +8342,7 @@ class SignInSubmitCredentialResult extends AuthFlowResultBase {
|
|
|
8325
8342
|
/*
|
|
8326
8343
|
* Result of a sign-in submit code operation.
|
|
8327
8344
|
*/
|
|
8328
|
-
class SignInSubmitCodeResult extends
|
|
8345
|
+
class SignInSubmitCodeResult extends AuthFlowResultBase {
|
|
8329
8346
|
/**
|
|
8330
8347
|
* Creates a new instance of SignInSubmitCodeResult with error data.
|
|
8331
8348
|
* @param error The error that occurred.
|
|
@@ -8369,6 +8386,46 @@ class SignInState extends AuthFlowActionRequiredStateBase {
|
|
|
8369
8386
|
}
|
|
8370
8387
|
}
|
|
8371
8388
|
|
|
8389
|
+
/*
|
|
8390
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8391
|
+
* Licensed under the MIT License.
|
|
8392
|
+
*/
|
|
8393
|
+
const SIGN_IN_CODE_SEND_RESULT_TYPE = "SignInCodeSendResult";
|
|
8394
|
+
const SIGN_IN_PASSWORD_REQUIRED_RESULT_TYPE = "SignInPasswordRequiredResult";
|
|
8395
|
+
const SIGN_IN_COMPLETED_RESULT_TYPE = "SignInCompletedResult";
|
|
8396
|
+
const SIGN_IN_JIT_REQUIRED_RESULT_TYPE = "SignInJitRequiredResult";
|
|
8397
|
+
const SIGN_IN_MFA_REQUIRED_RESULT_TYPE = "SignInMfaRequiredResult";
|
|
8398
|
+
function createSignInCompleteResult(input) {
|
|
8399
|
+
return {
|
|
8400
|
+
type: SIGN_IN_COMPLETED_RESULT_TYPE,
|
|
8401
|
+
...input,
|
|
8402
|
+
};
|
|
8403
|
+
}
|
|
8404
|
+
function createSignInPasswordRequiredResult(input) {
|
|
8405
|
+
return {
|
|
8406
|
+
type: SIGN_IN_PASSWORD_REQUIRED_RESULT_TYPE,
|
|
8407
|
+
...input,
|
|
8408
|
+
};
|
|
8409
|
+
}
|
|
8410
|
+
function createSignInCodeSendResult(input) {
|
|
8411
|
+
return {
|
|
8412
|
+
type: SIGN_IN_CODE_SEND_RESULT_TYPE,
|
|
8413
|
+
...input,
|
|
8414
|
+
};
|
|
8415
|
+
}
|
|
8416
|
+
function createSignInJitRequiredResult(input) {
|
|
8417
|
+
return {
|
|
8418
|
+
type: SIGN_IN_JIT_REQUIRED_RESULT_TYPE,
|
|
8419
|
+
...input,
|
|
8420
|
+
};
|
|
8421
|
+
}
|
|
8422
|
+
function createSignInMfaRequiredResult(input) {
|
|
8423
|
+
return {
|
|
8424
|
+
type: SIGN_IN_MFA_REQUIRED_RESULT_TYPE,
|
|
8425
|
+
...input,
|
|
8426
|
+
};
|
|
8427
|
+
}
|
|
8428
|
+
|
|
8372
8429
|
/*
|
|
8373
8430
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8374
8431
|
* Licensed under the MIT License.
|
|
@@ -8397,10 +8454,18 @@ class SignInCodeRequiredState extends SignInState {
|
|
|
8397
8454
|
claims: this.stateParameters.claims,
|
|
8398
8455
|
};
|
|
8399
8456
|
this.stateParameters.logger.verbose("Submitting code for sign-in.", this.stateParameters.correlationId);
|
|
8400
|
-
const
|
|
8457
|
+
const submitCodeResult = await this.stateParameters.signInClient.submitCode(submitCodeParams);
|
|
8401
8458
|
this.stateParameters.logger.verbose("Code submitted for sign-in.", this.stateParameters.correlationId);
|
|
8402
|
-
|
|
8403
|
-
|
|
8459
|
+
if (submitCodeResult.type === SIGN_IN_COMPLETED_RESULT_TYPE) {
|
|
8460
|
+
const accountInfo = new CustomAuthAccountData(submitCodeResult.authenticationResult.account, this.stateParameters.config, this.stateParameters.cacheClient, this.stateParameters.logger, this.stateParameters.correlationId);
|
|
8461
|
+
return new SignInSubmitCodeResult(new SignInCompletedState(), accountInfo);
|
|
8462
|
+
}
|
|
8463
|
+
else {
|
|
8464
|
+
// Unexpected result type
|
|
8465
|
+
const result = submitCodeResult;
|
|
8466
|
+
const error = new Error(`Unexpected result type: ${result.type}`);
|
|
8467
|
+
return SignInSubmitCodeResult.createWithError(error);
|
|
8468
|
+
}
|
|
8404
8469
|
}
|
|
8405
8470
|
catch (error) {
|
|
8406
8471
|
this.stateParameters.logger.errorPii(`Failed to submit code for sign-in. Error: ${error}.`, this.stateParameters.correlationId);
|
|
@@ -8430,6 +8495,7 @@ class SignInCodeRequiredState extends SignInState {
|
|
|
8430
8495
|
config: this.stateParameters.config,
|
|
8431
8496
|
signInClient: this.stateParameters.signInClient,
|
|
8432
8497
|
cacheClient: this.stateParameters.cacheClient,
|
|
8498
|
+
jitClient: this.stateParameters.jitClient,
|
|
8433
8499
|
username: this.stateParameters.username,
|
|
8434
8500
|
codeLength: result.codeLength,
|
|
8435
8501
|
scopes: this.stateParameters.scopes,
|
|
@@ -8455,6 +8521,313 @@ class SignInCodeRequiredState extends SignInState {
|
|
|
8455
8521
|
}
|
|
8456
8522
|
}
|
|
8457
8523
|
|
|
8524
|
+
/*
|
|
8525
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8526
|
+
* Licensed under the MIT License.
|
|
8527
|
+
*/
|
|
8528
|
+
// Result type constants
|
|
8529
|
+
const JIT_VERIFICATION_REQUIRED_RESULT_TYPE = "JitVerificationRequiredResult";
|
|
8530
|
+
const JIT_COMPLETED_RESULT_TYPE = "JitCompletedResult";
|
|
8531
|
+
function createJitVerificationRequiredResult(input) {
|
|
8532
|
+
return {
|
|
8533
|
+
type: JIT_VERIFICATION_REQUIRED_RESULT_TYPE,
|
|
8534
|
+
...input,
|
|
8535
|
+
};
|
|
8536
|
+
}
|
|
8537
|
+
function createJitCompletedResult(input) {
|
|
8538
|
+
return {
|
|
8539
|
+
type: JIT_COMPLETED_RESULT_TYPE,
|
|
8540
|
+
...input,
|
|
8541
|
+
};
|
|
8542
|
+
}
|
|
8543
|
+
|
|
8544
|
+
/*
|
|
8545
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8546
|
+
* Licensed under the MIT License.
|
|
8547
|
+
*/
|
|
8548
|
+
/**
|
|
8549
|
+
* Error that occurred during authentication method challenge request.
|
|
8550
|
+
*/
|
|
8551
|
+
class AuthMethodRegistrationChallengeMethodError extends AuthActionErrorBase {
|
|
8552
|
+
/**
|
|
8553
|
+
* Checks if the input for auth method registration is incorrect.
|
|
8554
|
+
* @returns true if the input is incorrect, false otherwise.
|
|
8555
|
+
*/
|
|
8556
|
+
isInvalidInput() {
|
|
8557
|
+
return this.isInvalidInputError();
|
|
8558
|
+
}
|
|
8559
|
+
/**
|
|
8560
|
+
* Checks if the error is due to the verification contact (e.g., phone number or email) being blocked. Consider using a different email/phone number or a different authentication method.
|
|
8561
|
+
* @returns true if the error is due to the verification contact being blocked, false otherwise.
|
|
8562
|
+
*/
|
|
8563
|
+
isVerificationContactBlocked() {
|
|
8564
|
+
return this.isVerificationContactBlockedError();
|
|
8565
|
+
}
|
|
8566
|
+
}
|
|
8567
|
+
/**
|
|
8568
|
+
* Error that occurred during authentication method challenge submission.
|
|
8569
|
+
*/
|
|
8570
|
+
class AuthMethodRegistrationSubmitChallengeError extends AuthActionErrorBase {
|
|
8571
|
+
/**
|
|
8572
|
+
* Checks if the submitted challenge code is incorrect.
|
|
8573
|
+
* @returns true if the challenge code is incorrect, false otherwise.
|
|
8574
|
+
*/
|
|
8575
|
+
isIncorrectChallenge() {
|
|
8576
|
+
return this.isInvalidCodeError();
|
|
8577
|
+
}
|
|
8578
|
+
}
|
|
8579
|
+
|
|
8580
|
+
/*
|
|
8581
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8582
|
+
* Licensed under the MIT License.
|
|
8583
|
+
*/
|
|
8584
|
+
class AuthMethodRegistrationFailedState extends AuthFlowStateBase {
|
|
8585
|
+
}
|
|
8586
|
+
|
|
8587
|
+
/*
|
|
8588
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8589
|
+
* Licensed under the MIT License.
|
|
8590
|
+
*/
|
|
8591
|
+
/**
|
|
8592
|
+
* Result of challenging an authentication method for registration.
|
|
8593
|
+
* Uses base state type to avoid circular dependencies.
|
|
8594
|
+
*/
|
|
8595
|
+
class AuthMethodRegistrationChallengeMethodResult extends AuthFlowResultBase {
|
|
8596
|
+
/**
|
|
8597
|
+
* Creates an AuthMethodRegistrationChallengeMethodResult with an error.
|
|
8598
|
+
* @param error The error that occurred.
|
|
8599
|
+
* @returns The AuthMethodRegistrationChallengeMethodResult with error.
|
|
8600
|
+
*/
|
|
8601
|
+
static createWithError(error) {
|
|
8602
|
+
const result = new AuthMethodRegistrationChallengeMethodResult(new AuthMethodRegistrationFailedState());
|
|
8603
|
+
result.error = new AuthMethodRegistrationChallengeMethodError(AuthMethodRegistrationChallengeMethodResult.createErrorData(error));
|
|
8604
|
+
return result;
|
|
8605
|
+
}
|
|
8606
|
+
/**
|
|
8607
|
+
* Checks if the result indicates that verification is required.
|
|
8608
|
+
* @returns true if verification is required, false otherwise.
|
|
8609
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8610
|
+
*/
|
|
8611
|
+
isVerificationRequired() {
|
|
8612
|
+
return (this.state.constructor?.name ===
|
|
8613
|
+
"AuthMethodVerificationRequiredState");
|
|
8614
|
+
}
|
|
8615
|
+
/**
|
|
8616
|
+
* Checks if the result indicates that registration is completed (fast-pass scenario).
|
|
8617
|
+
* @returns true if registration is completed, false otherwise.
|
|
8618
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8619
|
+
*/
|
|
8620
|
+
isCompleted() {
|
|
8621
|
+
return (this.state.constructor?.name ===
|
|
8622
|
+
"AuthMethodRegistrationCompletedState");
|
|
8623
|
+
}
|
|
8624
|
+
/**
|
|
8625
|
+
* Checks if the result is in a failed state.
|
|
8626
|
+
* @returns true if the result is failed, false otherwise.
|
|
8627
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8628
|
+
*/
|
|
8629
|
+
isFailed() {
|
|
8630
|
+
return this.state instanceof AuthMethodRegistrationFailedState;
|
|
8631
|
+
}
|
|
8632
|
+
}
|
|
8633
|
+
|
|
8634
|
+
/*
|
|
8635
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8636
|
+
* Licensed under the MIT License.
|
|
8637
|
+
*/
|
|
8638
|
+
/**
|
|
8639
|
+
* Result of submitting a challenge for authentication method registration.
|
|
8640
|
+
*/
|
|
8641
|
+
class AuthMethodRegistrationSubmitChallengeResult extends AuthFlowResultBase {
|
|
8642
|
+
/**
|
|
8643
|
+
* Creates an AuthMethodRegistrationSubmitChallengeResult with an error.
|
|
8644
|
+
* @param error The error that occurred.
|
|
8645
|
+
* @returns The AuthMethodRegistrationSubmitChallengeResult with error.
|
|
8646
|
+
*/
|
|
8647
|
+
static createWithError(error) {
|
|
8648
|
+
const result = new AuthMethodRegistrationSubmitChallengeResult(new AuthMethodRegistrationFailedState());
|
|
8649
|
+
result.error = new AuthMethodRegistrationSubmitChallengeError(AuthMethodRegistrationSubmitChallengeResult.createErrorData(error));
|
|
8650
|
+
return result;
|
|
8651
|
+
}
|
|
8652
|
+
/**
|
|
8653
|
+
* Checks if the result indicates that registration is completed.
|
|
8654
|
+
* @returns true if registration is completed, false otherwise.
|
|
8655
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8656
|
+
*/
|
|
8657
|
+
isCompleted() {
|
|
8658
|
+
return (this.state.constructor?.name ===
|
|
8659
|
+
"AuthMethodRegistrationCompletedState");
|
|
8660
|
+
}
|
|
8661
|
+
/**
|
|
8662
|
+
* Checks if the result is in a failed state.
|
|
8663
|
+
* @returns true if the result is failed, false otherwise.
|
|
8664
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8665
|
+
*/
|
|
8666
|
+
isFailed() {
|
|
8667
|
+
return this.state instanceof AuthMethodRegistrationFailedState;
|
|
8668
|
+
}
|
|
8669
|
+
}
|
|
8670
|
+
|
|
8671
|
+
/*
|
|
8672
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8673
|
+
* Licensed under the MIT License.
|
|
8674
|
+
*/
|
|
8675
|
+
class AuthMethodRegistrationCompletedState extends AuthFlowStateBase {
|
|
8676
|
+
}
|
|
8677
|
+
|
|
8678
|
+
/*
|
|
8679
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8680
|
+
* Licensed under the MIT License.
|
|
8681
|
+
*/
|
|
8682
|
+
/**
|
|
8683
|
+
* Abstract base class for authentication method registration states.
|
|
8684
|
+
*/
|
|
8685
|
+
class AuthMethodRegistrationState extends AuthFlowActionRequiredStateBase {
|
|
8686
|
+
/**
|
|
8687
|
+
* Internal method to challenge an authentication method.
|
|
8688
|
+
* @param authMethodDetails The authentication method details to challenge.
|
|
8689
|
+
* @returns Promise that resolves to AuthMethodRegistrationChallengeMethodResult.
|
|
8690
|
+
*/
|
|
8691
|
+
async challengeAuthMethodInternal(authMethodDetails) {
|
|
8692
|
+
try {
|
|
8693
|
+
this.stateParameters.logger.verbose(`Challenging authentication method - '${authMethodDetails.authMethodType.id}' for auth method registration.`, this.stateParameters.correlationId);
|
|
8694
|
+
const challengeParams = {
|
|
8695
|
+
correlationId: this.stateParameters.correlationId,
|
|
8696
|
+
continuationToken: this.stateParameters.continuationToken ?? "",
|
|
8697
|
+
authMethod: authMethodDetails.authMethodType,
|
|
8698
|
+
verificationContact: authMethodDetails.verificationContact,
|
|
8699
|
+
scopes: this.stateParameters.scopes ?? [],
|
|
8700
|
+
username: this.stateParameters.username,
|
|
8701
|
+
claims: this.stateParameters.claims,
|
|
8702
|
+
};
|
|
8703
|
+
const result = await this.stateParameters.jitClient.challengeAuthMethod(challengeParams);
|
|
8704
|
+
this.stateParameters.logger.verbose("Authentication method challenged successfully for auth method registration.", this.stateParameters.correlationId);
|
|
8705
|
+
if (result.type === JIT_VERIFICATION_REQUIRED_RESULT_TYPE) {
|
|
8706
|
+
// Verification required
|
|
8707
|
+
this.stateParameters.logger.verbose("Auth method verification required.", this.stateParameters.correlationId);
|
|
8708
|
+
return new AuthMethodRegistrationChallengeMethodResult(new AuthMethodVerificationRequiredState({
|
|
8709
|
+
correlationId: result.correlationId,
|
|
8710
|
+
continuationToken: result.continuationToken,
|
|
8711
|
+
config: this.stateParameters.config,
|
|
8712
|
+
logger: this.stateParameters.logger,
|
|
8713
|
+
jitClient: this.stateParameters.jitClient,
|
|
8714
|
+
cacheClient: this.stateParameters.cacheClient,
|
|
8715
|
+
challengeChannel: result.challengeChannel,
|
|
8716
|
+
challengeTargetLabel: result.challengeTargetLabel,
|
|
8717
|
+
codeLength: result.codeLength,
|
|
8718
|
+
scopes: this.stateParameters.scopes ?? [],
|
|
8719
|
+
username: this.stateParameters.username,
|
|
8720
|
+
claims: this.stateParameters.claims,
|
|
8721
|
+
}));
|
|
8722
|
+
}
|
|
8723
|
+
else if (result.type === JIT_COMPLETED_RESULT_TYPE) {
|
|
8724
|
+
// Registration completed (fast-pass scenario)
|
|
8725
|
+
this.stateParameters.logger.verbose("Auth method registration completed via fast-pass.", this.stateParameters.correlationId);
|
|
8726
|
+
const accountInfo = new CustomAuthAccountData(result.authenticationResult.account, this.stateParameters.config, this.stateParameters.cacheClient, this.stateParameters.logger, this.stateParameters.correlationId);
|
|
8727
|
+
return new AuthMethodRegistrationChallengeMethodResult(new AuthMethodRegistrationCompletedState(), accountInfo);
|
|
8728
|
+
}
|
|
8729
|
+
else {
|
|
8730
|
+
// Handle unexpected result type with proper typing
|
|
8731
|
+
this.stateParameters.logger.error("Unexpected result type from auth challenge method", this.stateParameters.correlationId);
|
|
8732
|
+
throw new UnexpectedError("Unexpected result type from auth challenge method");
|
|
8733
|
+
}
|
|
8734
|
+
}
|
|
8735
|
+
catch (error) {
|
|
8736
|
+
this.stateParameters.logger.error("Failed to challenge authentication method for auth method registration.", this.stateParameters.correlationId);
|
|
8737
|
+
return AuthMethodRegistrationChallengeMethodResult.createWithError(error);
|
|
8738
|
+
}
|
|
8739
|
+
}
|
|
8740
|
+
}
|
|
8741
|
+
/**
|
|
8742
|
+
* State indicating that authentication method registration is required.
|
|
8743
|
+
*/
|
|
8744
|
+
class AuthMethodRegistrationRequiredState extends AuthMethodRegistrationState {
|
|
8745
|
+
/**
|
|
8746
|
+
* Gets the available authentication methods for registration.
|
|
8747
|
+
* @returns Array of available authentication methods.
|
|
8748
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8749
|
+
*/
|
|
8750
|
+
getAuthMethods() {
|
|
8751
|
+
return this.stateParameters.authMethods;
|
|
8752
|
+
}
|
|
8753
|
+
/**
|
|
8754
|
+
* Challenges an authentication method for registration.
|
|
8755
|
+
* @param authMethodDetails The authentication method details to challenge.
|
|
8756
|
+
* @returns Promise that resolves to AuthMethodRegistrationChallengeMethodResult.
|
|
8757
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8758
|
+
*/
|
|
8759
|
+
async challengeAuthMethod(authMethodDetails) {
|
|
8760
|
+
return this.challengeAuthMethodInternal(authMethodDetails);
|
|
8761
|
+
}
|
|
8762
|
+
}
|
|
8763
|
+
/**
|
|
8764
|
+
* State indicating that verification is required for the challenged authentication method.
|
|
8765
|
+
*/
|
|
8766
|
+
class AuthMethodVerificationRequiredState extends AuthMethodRegistrationState {
|
|
8767
|
+
/**
|
|
8768
|
+
* Gets the length of the expected verification code.
|
|
8769
|
+
* @returns The code length.
|
|
8770
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8771
|
+
*/
|
|
8772
|
+
getCodeLength() {
|
|
8773
|
+
return this.stateParameters.codeLength;
|
|
8774
|
+
}
|
|
8775
|
+
/**
|
|
8776
|
+
* Gets the channel through which the challenge was sent.
|
|
8777
|
+
* @returns The challenge channel (e.g., "email").
|
|
8778
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8779
|
+
*/
|
|
8780
|
+
getChannel() {
|
|
8781
|
+
return this.stateParameters.challengeChannel;
|
|
8782
|
+
}
|
|
8783
|
+
/**
|
|
8784
|
+
* Gets the target label indicating where the challenge was sent.
|
|
8785
|
+
* @returns The challenge target label (e.g., masked email address).
|
|
8786
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8787
|
+
*/
|
|
8788
|
+
getSentTo() {
|
|
8789
|
+
return this.stateParameters.challengeTargetLabel;
|
|
8790
|
+
}
|
|
8791
|
+
/**
|
|
8792
|
+
* Submits the verification challenge to complete the authentication method registration.
|
|
8793
|
+
* @param code The verification code entered by the user.
|
|
8794
|
+
* @returns Promise that resolves to AuthMethodRegistrationSubmitChallengeResult.
|
|
8795
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8796
|
+
*/
|
|
8797
|
+
async submitChallenge(code) {
|
|
8798
|
+
try {
|
|
8799
|
+
this.ensureCodeIsValid(code, this.getCodeLength());
|
|
8800
|
+
this.stateParameters.logger.verbose("Submitting auth method challenge.", this.stateParameters.correlationId);
|
|
8801
|
+
const submitParams = {
|
|
8802
|
+
correlationId: this.stateParameters.correlationId,
|
|
8803
|
+
continuationToken: this.stateParameters.continuationToken ?? "",
|
|
8804
|
+
scopes: this.stateParameters.scopes ?? [],
|
|
8805
|
+
grantType: GrantType.OOB,
|
|
8806
|
+
challenge: code,
|
|
8807
|
+
username: this.stateParameters.username,
|
|
8808
|
+
claims: this.stateParameters.claims,
|
|
8809
|
+
};
|
|
8810
|
+
const result = await this.stateParameters.jitClient.submitChallenge(submitParams);
|
|
8811
|
+
this.stateParameters.logger.verbose("Auth method challenge submitted successfully.", this.stateParameters.correlationId);
|
|
8812
|
+
const accountInfo = new CustomAuthAccountData(result.authenticationResult.account, this.stateParameters.config, this.stateParameters.cacheClient, this.stateParameters.logger, this.stateParameters.correlationId);
|
|
8813
|
+
return new AuthMethodRegistrationSubmitChallengeResult(new AuthMethodRegistrationCompletedState(), accountInfo);
|
|
8814
|
+
}
|
|
8815
|
+
catch (error) {
|
|
8816
|
+
this.stateParameters.logger.error("Failed to submit auth method challenge.", this.stateParameters.correlationId);
|
|
8817
|
+
return AuthMethodRegistrationSubmitChallengeResult.createWithError(error);
|
|
8818
|
+
}
|
|
8819
|
+
}
|
|
8820
|
+
/**
|
|
8821
|
+
* Challenges a different authentication method for registration.
|
|
8822
|
+
* @param authMethodDetails The authentication method details to challenge.
|
|
8823
|
+
* @returns Promise that resolves to AuthMethodRegistrationChallengeMethodResult.
|
|
8824
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8825
|
+
*/
|
|
8826
|
+
async challengeAuthMethod(authMethodDetails) {
|
|
8827
|
+
return this.challengeAuthMethodInternal(authMethodDetails);
|
|
8828
|
+
}
|
|
8829
|
+
}
|
|
8830
|
+
|
|
8458
8831
|
/*
|
|
8459
8832
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8460
8833
|
* Licensed under the MIT License.
|
|
@@ -8462,7 +8835,7 @@ class SignInCodeRequiredState extends SignInState {
|
|
|
8462
8835
|
/*
|
|
8463
8836
|
* Result of a sign-in submit password operation.
|
|
8464
8837
|
*/
|
|
8465
|
-
class SignInSubmitPasswordResult extends
|
|
8838
|
+
class SignInSubmitPasswordResult extends AuthFlowResultBase {
|
|
8466
8839
|
static createWithError(error) {
|
|
8467
8840
|
const result = new SignInSubmitPasswordResult(new SignInFailedState());
|
|
8468
8841
|
result.error = new SignInSubmitPasswordError(SignInSubmitPasswordResult.createErrorData(error));
|
|
@@ -8480,6 +8853,13 @@ class SignInSubmitPasswordResult extends SignInSubmitCredentialResult {
|
|
|
8480
8853
|
isCompleted() {
|
|
8481
8854
|
return this.state instanceof SignInCompletedState;
|
|
8482
8855
|
}
|
|
8856
|
+
/**
|
|
8857
|
+
* Checks if the result requires authentication method registration.
|
|
8858
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8859
|
+
*/
|
|
8860
|
+
isAuthMethodRegistrationRequired() {
|
|
8861
|
+
return this.state instanceof AuthMethodRegistrationRequiredState;
|
|
8862
|
+
}
|
|
8483
8863
|
}
|
|
8484
8864
|
|
|
8485
8865
|
/*
|
|
@@ -8509,10 +8889,34 @@ class SignInPasswordRequiredState extends SignInState {
|
|
|
8509
8889
|
claims: this.stateParameters.claims,
|
|
8510
8890
|
};
|
|
8511
8891
|
this.stateParameters.logger.verbose("Submitting password for sign-in.", this.stateParameters.correlationId);
|
|
8512
|
-
const
|
|
8892
|
+
const submitPasswordResult = await this.stateParameters.signInClient.submitPassword(submitPasswordParams);
|
|
8513
8893
|
this.stateParameters.logger.verbose("Password submitted for sign-in.", this.stateParameters.correlationId);
|
|
8514
|
-
|
|
8515
|
-
|
|
8894
|
+
if (submitPasswordResult.type === SIGN_IN_COMPLETED_RESULT_TYPE) {
|
|
8895
|
+
const accountInfo = new CustomAuthAccountData(submitPasswordResult.authenticationResult.account, this.stateParameters.config, this.stateParameters.cacheClient, this.stateParameters.logger, this.stateParameters.correlationId);
|
|
8896
|
+
return new SignInSubmitPasswordResult(new SignInCompletedState(), accountInfo);
|
|
8897
|
+
}
|
|
8898
|
+
else if (submitPasswordResult.type === SIGN_IN_JIT_REQUIRED_RESULT_TYPE) {
|
|
8899
|
+
// JIT is required - return AuthMethodRegistrationRequiredState
|
|
8900
|
+
this.stateParameters.logger.verbose("Authentication method registration required after password submission.", this.stateParameters.correlationId);
|
|
8901
|
+
return new SignInSubmitPasswordResult(new AuthMethodRegistrationRequiredState({
|
|
8902
|
+
correlationId: this.stateParameters.correlationId,
|
|
8903
|
+
continuationToken: submitPasswordResult.continuationToken,
|
|
8904
|
+
logger: this.stateParameters.logger,
|
|
8905
|
+
config: this.stateParameters.config,
|
|
8906
|
+
jitClient: this.stateParameters.jitClient,
|
|
8907
|
+
cacheClient: this.stateParameters.cacheClient,
|
|
8908
|
+
authMethods: submitPasswordResult.authMethods,
|
|
8909
|
+
username: this.stateParameters.username,
|
|
8910
|
+
scopes: this.stateParameters.scopes ?? [],
|
|
8911
|
+
claims: this.stateParameters.claims,
|
|
8912
|
+
}));
|
|
8913
|
+
}
|
|
8914
|
+
else {
|
|
8915
|
+
// Unexpected result type
|
|
8916
|
+
const result = submitPasswordResult;
|
|
8917
|
+
const error = new Error(`Unexpected result type: ${result.type}`);
|
|
8918
|
+
return SignInSubmitPasswordResult.createWithError(error);
|
|
8919
|
+
}
|
|
8516
8920
|
}
|
|
8517
8921
|
catch (error) {
|
|
8518
8922
|
this.stateParameters.logger.errorPii(`Failed to sign in after submitting password. Error: ${error}.`, this.stateParameters.correlationId);
|
|
@@ -8577,6 +8981,13 @@ class SignInResult extends AuthFlowResultBase {
|
|
|
8577
8981
|
isCompleted() {
|
|
8578
8982
|
return this.state instanceof SignInCompletedState;
|
|
8579
8983
|
}
|
|
8984
|
+
/**
|
|
8985
|
+
* Checks if the result requires authentication method registration.
|
|
8986
|
+
* @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
|
|
8987
|
+
*/
|
|
8988
|
+
isAuthMethodRegistrationRequired() {
|
|
8989
|
+
return this.state instanceof AuthMethodRegistrationRequiredState;
|
|
8990
|
+
}
|
|
8580
8991
|
}
|
|
8581
8992
|
|
|
8582
8993
|
/*
|
|
@@ -8726,10 +9137,37 @@ class SignInContinuationState extends SignInState {
|
|
|
8726
9137
|
claims: signInWithContinuationTokenInputs?.claims,
|
|
8727
9138
|
};
|
|
8728
9139
|
this.stateParameters.logger.verbose("Signing in with continuation token.", this.stateParameters.correlationId);
|
|
8729
|
-
const
|
|
9140
|
+
const signInResult = await this.stateParameters.signInClient.signInWithContinuationToken(continuationTokenParams);
|
|
8730
9141
|
this.stateParameters.logger.verbose("Signed in with continuation token.", this.stateParameters.correlationId);
|
|
8731
|
-
|
|
8732
|
-
|
|
9142
|
+
if (signInResult.type === SIGN_IN_COMPLETED_RESULT_TYPE) {
|
|
9143
|
+
// Sign-in completed successfully
|
|
9144
|
+
const accountInfo = new CustomAuthAccountData(signInResult.authenticationResult.account, this.stateParameters.config, this.stateParameters.cacheClient, this.stateParameters.logger, this.stateParameters.correlationId);
|
|
9145
|
+
return new SignInResult(new SignInCompletedState(), accountInfo);
|
|
9146
|
+
}
|
|
9147
|
+
else if (signInResult.type === SIGN_IN_JIT_REQUIRED_RESULT_TYPE) {
|
|
9148
|
+
// JIT is required
|
|
9149
|
+
this.stateParameters.logger.warning("Auth method registration required during continuation token sign-in.", this.stateParameters.correlationId);
|
|
9150
|
+
// Return AuthMethodRegistrationRequiredState to handle JIT scenario
|
|
9151
|
+
const authMethodRegistrationState = new AuthMethodRegistrationRequiredState({
|
|
9152
|
+
correlationId: this.stateParameters.correlationId,
|
|
9153
|
+
continuationToken: signInResult.continuationToken,
|
|
9154
|
+
logger: this.stateParameters.logger,
|
|
9155
|
+
config: this.stateParameters.config,
|
|
9156
|
+
jitClient: this.stateParameters.jitClient,
|
|
9157
|
+
cacheClient: this.stateParameters.cacheClient,
|
|
9158
|
+
authMethods: signInResult.authMethods,
|
|
9159
|
+
username: this.stateParameters.username,
|
|
9160
|
+
scopes: signInWithContinuationTokenInputs?.scopes ?? [],
|
|
9161
|
+
claims: this.stateParameters.claims,
|
|
9162
|
+
});
|
|
9163
|
+
return new SignInResult(authMethodRegistrationState);
|
|
9164
|
+
}
|
|
9165
|
+
else {
|
|
9166
|
+
// Unexpected result type
|
|
9167
|
+
const result = signInResult;
|
|
9168
|
+
const error = new Error(`Unexpected result type: ${result.type}`);
|
|
9169
|
+
return SignInResult.createWithError(error);
|
|
9170
|
+
}
|
|
8733
9171
|
}
|
|
8734
9172
|
catch (error) {
|
|
8735
9173
|
this.stateParameters.logger.errorPii(`Failed to sign in with continuation token. Error: ${error}.`, this.stateParameters.correlationId);
|
|
@@ -8867,6 +9305,7 @@ class SignUpAttributesRequiredState extends SignUpState {
|
|
|
8867
9305
|
config: this.stateParameters.config,
|
|
8868
9306
|
signInClient: this.stateParameters.signInClient,
|
|
8869
9307
|
cacheClient: this.stateParameters.cacheClient,
|
|
9308
|
+
jitClient: this.stateParameters.jitClient,
|
|
8870
9309
|
username: this.stateParameters.username,
|
|
8871
9310
|
signInScenario: SignInScenario.SignInAfterSignUp,
|
|
8872
9311
|
}));
|
|
@@ -9013,6 +9452,7 @@ class SignUpPasswordRequiredState extends SignUpState {
|
|
|
9013
9452
|
signInClient: this.stateParameters.signInClient,
|
|
9014
9453
|
signUpClient: this.stateParameters.signUpClient,
|
|
9015
9454
|
cacheClient: this.stateParameters.cacheClient,
|
|
9455
|
+
jitClient: this.stateParameters.jitClient,
|
|
9016
9456
|
username: this.stateParameters.username,
|
|
9017
9457
|
requiredAttributes: result.requiredAttributes,
|
|
9018
9458
|
}));
|
|
@@ -9027,6 +9467,7 @@ class SignUpPasswordRequiredState extends SignUpState {
|
|
|
9027
9467
|
config: this.stateParameters.config,
|
|
9028
9468
|
signInClient: this.stateParameters.signInClient,
|
|
9029
9469
|
cacheClient: this.stateParameters.cacheClient,
|
|
9470
|
+
jitClient: this.stateParameters.jitClient,
|
|
9030
9471
|
username: this.stateParameters.username,
|
|
9031
9472
|
signInScenario: SignInScenario.SignInAfterSignUp,
|
|
9032
9473
|
}));
|
|
@@ -9128,6 +9569,7 @@ class SignUpCodeRequiredState extends SignUpState {
|
|
|
9128
9569
|
signInClient: this.stateParameters.signInClient,
|
|
9129
9570
|
signUpClient: this.stateParameters.signUpClient,
|
|
9130
9571
|
cacheClient: this.stateParameters.cacheClient,
|
|
9572
|
+
jitClient: this.stateParameters.jitClient,
|
|
9131
9573
|
username: this.stateParameters.username,
|
|
9132
9574
|
}));
|
|
9133
9575
|
}
|
|
@@ -9142,6 +9584,7 @@ class SignUpCodeRequiredState extends SignUpState {
|
|
|
9142
9584
|
signInClient: this.stateParameters.signInClient,
|
|
9143
9585
|
signUpClient: this.stateParameters.signUpClient,
|
|
9144
9586
|
cacheClient: this.stateParameters.cacheClient,
|
|
9587
|
+
jitClient: this.stateParameters.jitClient,
|
|
9145
9588
|
username: this.stateParameters.username,
|
|
9146
9589
|
requiredAttributes: result.requiredAttributes,
|
|
9147
9590
|
}));
|
|
@@ -9156,6 +9599,7 @@ class SignUpCodeRequiredState extends SignUpState {
|
|
|
9156
9599
|
config: this.stateParameters.config,
|
|
9157
9600
|
signInClient: this.stateParameters.signInClient,
|
|
9158
9601
|
cacheClient: this.stateParameters.cacheClient,
|
|
9602
|
+
jitClient: this.stateParameters.jitClient,
|
|
9159
9603
|
username: this.stateParameters.username,
|
|
9160
9604
|
signInScenario: SignInScenario.SignInAfterSignUp,
|
|
9161
9605
|
}));
|
|
@@ -9190,6 +9634,7 @@ class SignUpCodeRequiredState extends SignUpState {
|
|
|
9190
9634
|
signInClient: this.stateParameters.signInClient,
|
|
9191
9635
|
signUpClient: this.stateParameters.signUpClient,
|
|
9192
9636
|
cacheClient: this.stateParameters.cacheClient,
|
|
9637
|
+
jitClient: this.stateParameters.jitClient,
|
|
9193
9638
|
username: this.stateParameters.username,
|
|
9194
9639
|
codeLength: result.codeLength,
|
|
9195
9640
|
codeResendInterval: result.interval,
|
|
@@ -10564,6 +11009,7 @@ class CustomAuthInteractionClientBase extends StandardInteractionClient {
|
|
|
10564
11009
|
super(config, storageImpl, browserCrypto, logger, eventHandler, navigationClient, performanceClient);
|
|
10565
11010
|
this.customAuthApiClient = customAuthApiClient;
|
|
10566
11011
|
this.customAuthAuthority = customAuthAuthority;
|
|
11012
|
+
this.tokenResponseHandler = new ResponseHandler(this.config.auth.clientId, this.browserStorage, this.browserCrypto, this.logger, null, null);
|
|
10567
11013
|
}
|
|
10568
11014
|
getChallengeTypes(configuredChallengeTypes) {
|
|
10569
11015
|
const challengeType = configuredChallengeTypes ?? [];
|
|
@@ -10582,6 +11028,24 @@ class CustomAuthInteractionClientBase extends StandardInteractionClient {
|
|
|
10582
11028
|
Constants.OFFLINE_ACCESS_SCOPE,
|
|
10583
11029
|
];
|
|
10584
11030
|
}
|
|
11031
|
+
/**
|
|
11032
|
+
* Common method to handle token response processing.
|
|
11033
|
+
* @param tokenResponse The token response from the API
|
|
11034
|
+
* @param requestScopes Scopes for the token request
|
|
11035
|
+
* @param correlationId Correlation ID for logging
|
|
11036
|
+
* @returns Authentication result from the token response
|
|
11037
|
+
*/
|
|
11038
|
+
async handleTokenResponse(tokenResponse, requestScopes, correlationId) {
|
|
11039
|
+
this.logger.verbose("Processing token response.", correlationId);
|
|
11040
|
+
const requestTimestamp = Math.round(new Date().getTime() / 1000.0);
|
|
11041
|
+
// Save tokens and create authentication result
|
|
11042
|
+
const result = await this.tokenResponseHandler.handleServerTokenResponse(tokenResponse, this.customAuthAuthority, requestTimestamp, {
|
|
11043
|
+
authority: this.customAuthAuthority.canonicalAuthority,
|
|
11044
|
+
correlationId: tokenResponse.correlation_id ?? correlationId,
|
|
11045
|
+
scopes: requestScopes,
|
|
11046
|
+
});
|
|
11047
|
+
return result;
|
|
11048
|
+
}
|
|
10585
11049
|
// It is not necessary to implement this method from base class.
|
|
10586
11050
|
acquireToken(
|
|
10587
11051
|
// eslint-disable-next-line @typescript-eslint/no-unused-vars
|
|
@@ -10596,32 +11060,6 @@ class CustomAuthInteractionClientBase extends StandardInteractionClient {
|
|
|
10596
11060
|
}
|
|
10597
11061
|
}
|
|
10598
11062
|
|
|
10599
|
-
/*
|
|
10600
|
-
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
10601
|
-
* Licensed under the MIT License.
|
|
10602
|
-
*/
|
|
10603
|
-
const SIGN_IN_CODE_SEND_RESULT_TYPE = "SignInCodeSendResult";
|
|
10604
|
-
const SIGN_IN_PASSWORD_REQUIRED_RESULT_TYPE = "SignInPasswordRequiredResult";
|
|
10605
|
-
const SIGN_IN_COMPLETED_RESULT_TYPE = "SignInCompletedResult";
|
|
10606
|
-
function createSignInCompleteResult(input) {
|
|
10607
|
-
return {
|
|
10608
|
-
type: SIGN_IN_COMPLETED_RESULT_TYPE,
|
|
10609
|
-
...input,
|
|
10610
|
-
};
|
|
10611
|
-
}
|
|
10612
|
-
function createSignInPasswordRequiredResult(input) {
|
|
10613
|
-
return {
|
|
10614
|
-
type: SIGN_IN_PASSWORD_REQUIRED_RESULT_TYPE,
|
|
10615
|
-
...input,
|
|
10616
|
-
};
|
|
10617
|
-
}
|
|
10618
|
-
function createSignInCodeSendResult(input) {
|
|
10619
|
-
return {
|
|
10620
|
-
type: SIGN_IN_CODE_SEND_RESULT_TYPE,
|
|
10621
|
-
...input,
|
|
10622
|
-
};
|
|
10623
|
-
}
|
|
10624
|
-
|
|
10625
11063
|
/*
|
|
10626
11064
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
10627
11065
|
* Licensed under the MIT License.
|
|
@@ -10650,17 +11088,16 @@ const PASSWORD_RESET_START = 100041;
|
|
|
10650
11088
|
const PASSWORD_RESET_SUBMIT_CODE = 100042;
|
|
10651
11089
|
const PASSWORD_RESET_SUBMIT_PASSWORD = 100043;
|
|
10652
11090
|
const PASSWORD_RESET_RESEND_CODE = 100044;
|
|
10653
|
-
const ACCOUNT_GET_ACCESS_TOKEN = 100063;
|
|
11091
|
+
const ACCOUNT_GET_ACCESS_TOKEN = 100063;
|
|
11092
|
+
// JIT (Just-In-Time) Auth Method Registration
|
|
11093
|
+
const JIT_CHALLENGE_AUTH_METHOD = 100081;
|
|
11094
|
+
const JIT_SUBMIT_CHALLENGE = 100082;
|
|
10654
11095
|
|
|
10655
11096
|
/*
|
|
10656
11097
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
10657
11098
|
* Licensed under the MIT License.
|
|
10658
11099
|
*/
|
|
10659
11100
|
class SignInClient extends CustomAuthInteractionClientBase {
|
|
10660
|
-
constructor(config, storageImpl, browserCrypto, logger, eventHandler, navigationClient, performanceClient, customAuthApiClient, customAuthAuthority) {
|
|
10661
|
-
super(config, storageImpl, browserCrypto, logger, eventHandler, navigationClient, performanceClient, customAuthApiClient, customAuthAuthority);
|
|
10662
|
-
this.tokenResponseHandler = new ResponseHandler(this.config.auth.clientId, this.browserStorage, this.browserCrypto, this.logger, null, null);
|
|
10663
|
-
}
|
|
10664
11101
|
/**
|
|
10665
11102
|
* Starts the signin flow.
|
|
10666
11103
|
* @param parameters The parameters required to start the sign-in flow.
|
|
@@ -10722,6 +11159,7 @@ class SignInClient extends CustomAuthInteractionClientBase {
|
|
|
10722
11159
|
const request = {
|
|
10723
11160
|
continuation_token: parameters.continuationToken,
|
|
10724
11161
|
oob: parameters.code,
|
|
11162
|
+
grant_type: GrantType.OOB,
|
|
10725
11163
|
scope: scopes.join(" "),
|
|
10726
11164
|
correlationId: parameters.correlationId,
|
|
10727
11165
|
telemetryManager: telemetryManager,
|
|
@@ -10729,7 +11167,7 @@ class SignInClient extends CustomAuthInteractionClientBase {
|
|
|
10729
11167
|
claims: parameters.claims,
|
|
10730
11168
|
}),
|
|
10731
11169
|
};
|
|
10732
|
-
return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokensWithOob(request), scopes);
|
|
11170
|
+
return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokensWithOob(request), scopes, parameters.correlationId, telemetryManager);
|
|
10733
11171
|
}
|
|
10734
11172
|
/**
|
|
10735
11173
|
* Submits the password for sign-in flow.
|
|
@@ -10751,7 +11189,7 @@ class SignInClient extends CustomAuthInteractionClientBase {
|
|
|
10751
11189
|
claims: parameters.claims,
|
|
10752
11190
|
}),
|
|
10753
11191
|
};
|
|
10754
|
-
return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokensWithPassword(request), scopes);
|
|
11192
|
+
return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokensWithPassword(request), scopes, parameters.correlationId, telemetryManager);
|
|
10755
11193
|
}
|
|
10756
11194
|
/**
|
|
10757
11195
|
* Signs in with continuation token.
|
|
@@ -10774,28 +11212,39 @@ class SignInClient extends CustomAuthInteractionClientBase {
|
|
|
10774
11212
|
}),
|
|
10775
11213
|
};
|
|
10776
11214
|
// Call token endpoint.
|
|
10777
|
-
return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokenWithContinuationToken(request), scopes);
|
|
11215
|
+
return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokenWithContinuationToken(request), scopes, parameters.correlationId, telemetryManager);
|
|
10778
11216
|
}
|
|
10779
|
-
|
|
10780
|
-
|
|
10781
|
-
|
|
10782
|
-
|
|
10783
|
-
|
|
10784
|
-
|
|
10785
|
-
|
|
10786
|
-
|
|
10787
|
-
|
|
10788
|
-
|
|
10789
|
-
|
|
10790
|
-
|
|
10791
|
-
|
|
10792
|
-
|
|
10793
|
-
|
|
10794
|
-
|
|
10795
|
-
|
|
10796
|
-
|
|
10797
|
-
|
|
10798
|
-
|
|
11217
|
+
/**
|
|
11218
|
+
* Common method to handle token endpoint calls and create sign-in results.
|
|
11219
|
+
* @param tokenEndpointCaller Function that calls the specific token endpoint
|
|
11220
|
+
* @param scopes Scopes for the token request
|
|
11221
|
+
* @param correlationId Correlation ID for logging and result
|
|
11222
|
+
* @param telemetryManager Telemetry manager for telemetry logging
|
|
11223
|
+
* @returns SignInCompletedResult | SignInJitRequiredResult | SignInMfaRequiredResult with authentication result
|
|
11224
|
+
*/
|
|
11225
|
+
async performTokenRequest(tokenEndpointCaller, scopes, correlationId, telemetryManager) {
|
|
11226
|
+
this.logger.verbose("Calling token endpoint for sign in.", correlationId);
|
|
11227
|
+
try {
|
|
11228
|
+
const tokenResponse = await tokenEndpointCaller();
|
|
11229
|
+
this.logger.verbose("Token endpoint response received for sign in.", correlationId);
|
|
11230
|
+
const authResult = await this.handleTokenResponse(tokenResponse, scopes, correlationId);
|
|
11231
|
+
return createSignInCompleteResult({
|
|
11232
|
+
correlationId: tokenResponse.correlation_id ?? correlationId,
|
|
11233
|
+
authenticationResult: authResult,
|
|
11234
|
+
});
|
|
11235
|
+
}
|
|
11236
|
+
catch (error) {
|
|
11237
|
+
if (error instanceof CustomAuthApiError &&
|
|
11238
|
+
error.subError === REGISTRATION_REQUIRED) {
|
|
11239
|
+
return this.handleJitRequiredError(error, telemetryManager, correlationId);
|
|
11240
|
+
}
|
|
11241
|
+
else if (error instanceof CustomAuthApiError &&
|
|
11242
|
+
error.subError === MFA_REQUIRED) {
|
|
11243
|
+
return this.handleMfaRequiredError(error, telemetryManager, correlationId);
|
|
11244
|
+
}
|
|
11245
|
+
// Re-throw any other errors or JIT errors when handleJit is false
|
|
11246
|
+
throw error;
|
|
11247
|
+
}
|
|
10799
11248
|
}
|
|
10800
11249
|
async performChallengeRequest(request) {
|
|
10801
11250
|
this.logger.verbose("Calling challenge endpoint for sign in.", request.correlationId);
|
|
@@ -10835,6 +11284,40 @@ class SignInClient extends CustomAuthInteractionClientBase {
|
|
|
10835
11284
|
throw new UnexpectedError(`Unsupported sign-in scenario '${scenario}'.`, correlationId);
|
|
10836
11285
|
}
|
|
10837
11286
|
}
|
|
11287
|
+
async handleJitRequiredError(error, telemetryManager, correlationId) {
|
|
11288
|
+
this.logger.verbose("Auth method registration required for sign in.", correlationId);
|
|
11289
|
+
// Call register introspect endpoint to get available authentication methods
|
|
11290
|
+
const introspectRequest = {
|
|
11291
|
+
continuation_token: error.continuationToken ?? "",
|
|
11292
|
+
correlationId: error.correlationId ?? correlationId,
|
|
11293
|
+
telemetryManager,
|
|
11294
|
+
};
|
|
11295
|
+
this.logger.verbose("Calling introspect endpoint for getting auth methods.", correlationId);
|
|
11296
|
+
const introspectResponse = await this.customAuthApiClient.registerApi.introspect(introspectRequest);
|
|
11297
|
+
this.logger.verbose("Introspect endpoint called for getting auth methods.", introspectResponse.correlation_id ?? correlationId);
|
|
11298
|
+
return createSignInJitRequiredResult({
|
|
11299
|
+
correlationId: introspectResponse.correlation_id ?? correlationId,
|
|
11300
|
+
continuationToken: introspectResponse.continuation_token ?? "",
|
|
11301
|
+
authMethods: introspectResponse.methods,
|
|
11302
|
+
});
|
|
11303
|
+
}
|
|
11304
|
+
async handleMfaRequiredError(error, telemetryManager, correlationId) {
|
|
11305
|
+
this.logger.verbose("MFA required for sign in.", correlationId);
|
|
11306
|
+
// Call sign-in introspect endpoint to get available MFA methods
|
|
11307
|
+
const introspectRequest = {
|
|
11308
|
+
continuation_token: error.continuationToken ?? "",
|
|
11309
|
+
correlationId: error.correlationId ?? correlationId,
|
|
11310
|
+
telemetryManager,
|
|
11311
|
+
};
|
|
11312
|
+
this.logger.verbose("Calling introspect endpoint for MFA auth methods.", correlationId);
|
|
11313
|
+
const introspectResponse = await this.customAuthApiClient.signInApi.requestAuthMethods(introspectRequest);
|
|
11314
|
+
this.logger.verbose("Introspect endpoint called for MFA auth methods.", introspectResponse.correlation_id ?? correlationId);
|
|
11315
|
+
return createSignInMfaRequiredResult({
|
|
11316
|
+
correlationId: introspectResponse.correlation_id ?? correlationId,
|
|
11317
|
+
continuationToken: introspectResponse.continuation_token ?? "",
|
|
11318
|
+
authMethods: introspectResponse.methods,
|
|
11319
|
+
});
|
|
11320
|
+
}
|
|
10838
11321
|
}
|
|
10839
11322
|
|
|
10840
11323
|
/*
|
|
@@ -11046,6 +11529,7 @@ class ResetPasswordPasswordRequiredState extends ResetPasswordState {
|
|
|
11046
11529
|
username: this.stateParameters.username,
|
|
11047
11530
|
signInClient: this.stateParameters.signInClient,
|
|
11048
11531
|
cacheClient: this.stateParameters.cacheClient,
|
|
11532
|
+
jitClient: this.stateParameters.jitClient,
|
|
11049
11533
|
signInScenario: SignInScenario.SignInAfterPasswordReset,
|
|
11050
11534
|
}));
|
|
11051
11535
|
}
|
|
@@ -11130,6 +11614,7 @@ class ResetPasswordCodeRequiredState extends ResetPasswordState {
|
|
|
11130
11614
|
resetPasswordClient: this.stateParameters.resetPasswordClient,
|
|
11131
11615
|
signInClient: this.stateParameters.signInClient,
|
|
11132
11616
|
cacheClient: this.stateParameters.cacheClient,
|
|
11617
|
+
jitClient: this.stateParameters.jitClient,
|
|
11133
11618
|
username: this.stateParameters.username,
|
|
11134
11619
|
}));
|
|
11135
11620
|
}
|
|
@@ -11162,6 +11647,7 @@ class ResetPasswordCodeRequiredState extends ResetPasswordState {
|
|
|
11162
11647
|
resetPasswordClient: this.stateParameters.resetPasswordClient,
|
|
11163
11648
|
signInClient: this.stateParameters.signInClient,
|
|
11164
11649
|
cacheClient: this.stateParameters.cacheClient,
|
|
11650
|
+
jitClient: this.stateParameters.jitClient,
|
|
11165
11651
|
username: this.stateParameters.username,
|
|
11166
11652
|
codeLength: result.codeLength,
|
|
11167
11653
|
}));
|
|
@@ -11226,6 +11712,7 @@ class ResetPasswordStartResult extends AuthFlowResultBase {
|
|
|
11226
11712
|
const SIGNIN_INITIATE = "/oauth2/v2.0/initiate";
|
|
11227
11713
|
const SIGNIN_CHALLENGE = "/oauth2/v2.0/challenge";
|
|
11228
11714
|
const SIGNIN_TOKEN = "/oauth2/v2.0/token";
|
|
11715
|
+
const SIGNIN_INTROSPECT = "/oauth2/v2.0/introspect";
|
|
11229
11716
|
const SIGNUP_START = "/signup/v1.0/start";
|
|
11230
11717
|
const SIGNUP_CHALLENGE = "/signup/v1.0/challenge";
|
|
11231
11718
|
const SIGNUP_CONTINUE = "/signup/v1.0/continue";
|
|
@@ -11233,7 +11720,10 @@ const RESET_PWD_START = "/resetpassword/v1.0/start";
|
|
|
11233
11720
|
const RESET_PWD_CHALLENGE = "/resetpassword/v1.0/challenge";
|
|
11234
11721
|
const RESET_PWD_CONTINUE = "/resetpassword/v1.0/continue";
|
|
11235
11722
|
const RESET_PWD_SUBMIT = "/resetpassword/v1.0/submit";
|
|
11236
|
-
const RESET_PWD_POLL = "/resetpassword/v1.0/poll_completion";
|
|
11723
|
+
const RESET_PWD_POLL = "/resetpassword/v1.0/poll_completion";
|
|
11724
|
+
const REGISTER_INTROSPECT = "/register/v1.0/introspect";
|
|
11725
|
+
const REGISTER_CHALLENGE = "/register/v1.0/challenge";
|
|
11726
|
+
const REGISTER_CONTINUE = "/register/v1.0/continue";
|
|
11237
11727
|
|
|
11238
11728
|
/*
|
|
11239
11729
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -11869,6 +12359,7 @@ class SignInApiClient extends BaseApiClient {
|
|
|
11869
12359
|
const result = await this.request(SIGNIN_CHALLENGE, {
|
|
11870
12360
|
continuation_token: params.continuation_token,
|
|
11871
12361
|
challenge_type: params.challenge_type,
|
|
12362
|
+
...(params.id && { id: params.id }),
|
|
11872
12363
|
}, params.telemetryManager, params.correlationId);
|
|
11873
12364
|
this.ensureContinuationTokenIsValid(result.continuation_token, params.correlationId);
|
|
11874
12365
|
return result;
|
|
@@ -11893,19 +12384,30 @@ class SignInApiClient extends BaseApiClient {
|
|
|
11893
12384
|
continuation_token: params.continuation_token,
|
|
11894
12385
|
scope: params.scope,
|
|
11895
12386
|
oob: params.oob,
|
|
11896
|
-
grant_type:
|
|
12387
|
+
grant_type: params.grant_type,
|
|
11897
12388
|
...(params.claims && { claims: params.claims }),
|
|
11898
12389
|
}, params.telemetryManager, params.correlationId);
|
|
11899
12390
|
}
|
|
11900
12391
|
async requestTokenWithContinuationToken(params) {
|
|
11901
12392
|
return this.requestTokens({
|
|
11902
12393
|
continuation_token: params.continuation_token,
|
|
11903
|
-
username: params.username,
|
|
11904
12394
|
scope: params.scope,
|
|
11905
12395
|
grant_type: GrantType.CONTINUATION_TOKEN,
|
|
11906
12396
|
client_info: true,
|
|
11907
12397
|
...(params.claims && { claims: params.claims }),
|
|
12398
|
+
...(params.username && { username: params.username }),
|
|
12399
|
+
}, params.telemetryManager, params.correlationId);
|
|
12400
|
+
}
|
|
12401
|
+
/**
|
|
12402
|
+
* Requests available authentication methods for MFA
|
|
12403
|
+
* @param continuationToken Token from previous response
|
|
12404
|
+
*/
|
|
12405
|
+
async requestAuthMethods(params) {
|
|
12406
|
+
const result = await this.request(SIGNIN_INTROSPECT, {
|
|
12407
|
+
continuation_token: params.continuation_token,
|
|
11908
12408
|
}, params.telemetryManager, params.correlationId);
|
|
12409
|
+
this.ensureContinuationTokenIsValid(result.continuation_token, params.correlationId);
|
|
12410
|
+
return result;
|
|
11909
12411
|
}
|
|
11910
12412
|
async requestTokens(requestData, telemetryManager, correlationId) {
|
|
11911
12413
|
// The client_info parameter is required for MSAL to return the uid and utid in the response.
|
|
@@ -11948,6 +12450,50 @@ class SignInApiClient extends BaseApiClient {
|
|
|
11948
12450
|
}
|
|
11949
12451
|
}
|
|
11950
12452
|
|
|
12453
|
+
/*
|
|
12454
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
12455
|
+
* Licensed under the MIT License.
|
|
12456
|
+
*/
|
|
12457
|
+
class RegisterApiClient extends BaseApiClient {
|
|
12458
|
+
/**
|
|
12459
|
+
* Gets available authentication methods for registration
|
|
12460
|
+
*/
|
|
12461
|
+
async introspect(params) {
|
|
12462
|
+
const result = await this.request(REGISTER_INTROSPECT, {
|
|
12463
|
+
continuation_token: params.continuation_token,
|
|
12464
|
+
}, params.telemetryManager, params.correlationId);
|
|
12465
|
+
this.ensureContinuationTokenIsValid(result.continuation_token, params.correlationId);
|
|
12466
|
+
return result;
|
|
12467
|
+
}
|
|
12468
|
+
/**
|
|
12469
|
+
* Sends challenge to specified authentication method
|
|
12470
|
+
*/
|
|
12471
|
+
async challenge(params) {
|
|
12472
|
+
const result = await this.request(REGISTER_CHALLENGE, {
|
|
12473
|
+
continuation_token: params.continuation_token,
|
|
12474
|
+
challenge_type: params.challenge_type,
|
|
12475
|
+
challenge_target: params.challenge_target,
|
|
12476
|
+
...(params.challenge_channel && {
|
|
12477
|
+
challenge_channel: params.challenge_channel,
|
|
12478
|
+
}),
|
|
12479
|
+
}, params.telemetryManager, params.correlationId);
|
|
12480
|
+
this.ensureContinuationTokenIsValid(result.continuation_token, params.correlationId);
|
|
12481
|
+
return result;
|
|
12482
|
+
}
|
|
12483
|
+
/**
|
|
12484
|
+
* Submits challenge response and continues registration
|
|
12485
|
+
*/
|
|
12486
|
+
async continue(params) {
|
|
12487
|
+
const result = await this.request(REGISTER_CONTINUE, {
|
|
12488
|
+
continuation_token: params.continuation_token,
|
|
12489
|
+
grant_type: params.grant_type,
|
|
12490
|
+
...(params.oob && { oob: params.oob }),
|
|
12491
|
+
}, params.telemetryManager, params.correlationId);
|
|
12492
|
+
this.ensureContinuationTokenIsValid(result.continuation_token, params.correlationId);
|
|
12493
|
+
return result;
|
|
12494
|
+
}
|
|
12495
|
+
}
|
|
12496
|
+
|
|
11951
12497
|
/*
|
|
11952
12498
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
11953
12499
|
* Licensed under the MIT License.
|
|
@@ -11957,6 +12503,7 @@ class CustomAuthApiClient {
|
|
|
11957
12503
|
this.signInApi = new SignInApiClient(customAuthApiBaseUrl, clientId, httpClient, capabilities, customAuthApiQueryParams);
|
|
11958
12504
|
this.signUpApi = new SignupApiClient(customAuthApiBaseUrl, clientId, httpClient, capabilities, customAuthApiQueryParams);
|
|
11959
12505
|
this.resetPasswordApi = new ResetPasswordApiClient(customAuthApiBaseUrl, clientId, httpClient, capabilities, customAuthApiQueryParams);
|
|
12506
|
+
this.registerApi = new RegisterApiClient(customAuthApiBaseUrl, clientId, httpClient);
|
|
11960
12507
|
}
|
|
11961
12508
|
}
|
|
11962
12509
|
|
|
@@ -12178,6 +12725,102 @@ class ResetPasswordClient extends CustomAuthInteractionClientBase {
|
|
|
12178
12725
|
}
|
|
12179
12726
|
}
|
|
12180
12727
|
|
|
12728
|
+
/*
|
|
12729
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
12730
|
+
* Licensed under the MIT License.
|
|
12731
|
+
*/
|
|
12732
|
+
/**
|
|
12733
|
+
* JIT client for handling just-in-time authentication method registration flows.
|
|
12734
|
+
*/
|
|
12735
|
+
class JitClient extends CustomAuthInteractionClientBase {
|
|
12736
|
+
/**
|
|
12737
|
+
* Challenges an authentication method for JIT registration.
|
|
12738
|
+
* @param parameters The parameters for challenging the auth method.
|
|
12739
|
+
* @returns Promise that resolves to either JitVerificationRequiredResult or JitCompletedResult.
|
|
12740
|
+
*/
|
|
12741
|
+
async challengeAuthMethod(parameters) {
|
|
12742
|
+
const apiId = JIT_CHALLENGE_AUTH_METHOD;
|
|
12743
|
+
const telemetryManager = this.initializeServerTelemetryManager(apiId);
|
|
12744
|
+
this.logger.verbose("Calling challenge endpoint for getting auth method.", parameters.correlationId);
|
|
12745
|
+
const challengeReq = {
|
|
12746
|
+
continuation_token: parameters.continuationToken,
|
|
12747
|
+
challenge_type: parameters.authMethod.challenge_type,
|
|
12748
|
+
challenge_target: parameters.verificationContact,
|
|
12749
|
+
challenge_channel: parameters.authMethod.challenge_channel,
|
|
12750
|
+
correlationId: parameters.correlationId,
|
|
12751
|
+
telemetryManager: telemetryManager,
|
|
12752
|
+
};
|
|
12753
|
+
const challengeResponse = await this.customAuthApiClient.registerApi.challenge(challengeReq);
|
|
12754
|
+
this.logger.verbose("Challenge endpoint called for auth method registration.", parameters.correlationId);
|
|
12755
|
+
/*
|
|
12756
|
+
* Handle fast-pass scenario (preverified)
|
|
12757
|
+
* This occurs when the user selects the same email used during sign-up
|
|
12758
|
+
* Since the email was already verified during sign-up, no additional verification is needed
|
|
12759
|
+
*/
|
|
12760
|
+
if (challengeResponse.challenge_type === ChallengeType.PREVERIFIED) {
|
|
12761
|
+
this.logger.verbose("Fast-pass scenario detected - completing registration without additional verification.", challengeResponse.correlation_id);
|
|
12762
|
+
// Use submitChallenge for fast-pass scenario with continuation_token grant type
|
|
12763
|
+
const fastPassParams = {
|
|
12764
|
+
correlationId: challengeResponse.correlation_id,
|
|
12765
|
+
continuationToken: challengeResponse.continuation_token,
|
|
12766
|
+
grantType: GrantType.CONTINUATION_TOKEN,
|
|
12767
|
+
scopes: parameters.scopes,
|
|
12768
|
+
username: parameters.username,
|
|
12769
|
+
claims: parameters.claims,
|
|
12770
|
+
};
|
|
12771
|
+
const completedResult = await this.submitChallenge(fastPassParams);
|
|
12772
|
+
return completedResult;
|
|
12773
|
+
}
|
|
12774
|
+
// Verification required
|
|
12775
|
+
return createJitVerificationRequiredResult({
|
|
12776
|
+
correlationId: challengeResponse.correlation_id,
|
|
12777
|
+
continuationToken: challengeResponse.continuation_token,
|
|
12778
|
+
challengeChannel: challengeResponse.challenge_channel,
|
|
12779
|
+
challengeTargetLabel: challengeResponse.challenge_target,
|
|
12780
|
+
codeLength: challengeResponse.code_length || DefaultCustomAuthApiCodeLength,
|
|
12781
|
+
});
|
|
12782
|
+
}
|
|
12783
|
+
/**
|
|
12784
|
+
* Submits challenge response and completes JIT registration.
|
|
12785
|
+
* @param parameters The parameters for submitting the challenge.
|
|
12786
|
+
* @returns Promise that resolves to JitCompletedResult.
|
|
12787
|
+
*/
|
|
12788
|
+
async submitChallenge(parameters) {
|
|
12789
|
+
const apiId = JIT_SUBMIT_CHALLENGE;
|
|
12790
|
+
const telemetryManager = this.initializeServerTelemetryManager(apiId);
|
|
12791
|
+
this.logger.verbose("Calling continue endpoint for auth method challenge submission.", parameters.correlationId);
|
|
12792
|
+
// Submit challenge to complete registration
|
|
12793
|
+
const continueReq = {
|
|
12794
|
+
continuation_token: parameters.continuationToken,
|
|
12795
|
+
grant_type: parameters.grantType,
|
|
12796
|
+
...(parameters.challenge && {
|
|
12797
|
+
oob: parameters.challenge,
|
|
12798
|
+
}),
|
|
12799
|
+
correlationId: parameters.correlationId,
|
|
12800
|
+
telemetryManager: telemetryManager,
|
|
12801
|
+
};
|
|
12802
|
+
const continueResponse = await this.customAuthApiClient.registerApi.continue(continueReq);
|
|
12803
|
+
this.logger.verbose("Continue endpoint called for auth method challenge submission.", parameters.correlationId);
|
|
12804
|
+
// Use continuation token to get authentication tokens
|
|
12805
|
+
const scopes = this.getScopes(parameters.scopes);
|
|
12806
|
+
const tokenRequest = {
|
|
12807
|
+
continuation_token: continueResponse.continuation_token,
|
|
12808
|
+
scope: scopes.join(" "),
|
|
12809
|
+
correlationId: continueResponse.correlation_id,
|
|
12810
|
+
telemetryManager: telemetryManager,
|
|
12811
|
+
...(parameters.claims && {
|
|
12812
|
+
claims: parameters.claims,
|
|
12813
|
+
}),
|
|
12814
|
+
};
|
|
12815
|
+
const tokenResponse = await this.customAuthApiClient.signInApi.requestTokenWithContinuationToken(tokenRequest);
|
|
12816
|
+
const authResult = await this.handleTokenResponse(tokenResponse, scopes, tokenResponse.correlation_id || continueResponse.correlation_id);
|
|
12817
|
+
return createJitCompletedResult({
|
|
12818
|
+
correlationId: continueResponse.correlation_id,
|
|
12819
|
+
authenticationResult: authResult,
|
|
12820
|
+
});
|
|
12821
|
+
}
|
|
12822
|
+
}
|
|
12823
|
+
|
|
12181
12824
|
/*
|
|
12182
12825
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
12183
12826
|
* Licensed under the MIT License.
|
|
@@ -18291,25 +18934,12 @@ function collectInstanceStats(currentClientId, performanceEvent, logger) {
|
|
|
18291
18934
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
18292
18935
|
* Licensed under the MIT License.
|
|
18293
18936
|
*/
|
|
18294
|
-
function
|
|
18295
|
-
const idTokenClaims = account?.idTokenClaims;
|
|
18296
|
-
if (idTokenClaims?.tfp || idTokenClaims?.acr) {
|
|
18297
|
-
return "B2C";
|
|
18298
|
-
}
|
|
18299
|
-
if (!idTokenClaims?.tid) {
|
|
18300
|
-
return undefined;
|
|
18301
|
-
}
|
|
18302
|
-
else if (idTokenClaims?.tid === "9188040d-6c67-4c5b-b112-36a304b66dad") {
|
|
18303
|
-
return "MSA";
|
|
18304
|
-
}
|
|
18305
|
-
return "AAD";
|
|
18306
|
-
}
|
|
18307
|
-
function preflightCheck(initialized, performanceEvent) {
|
|
18937
|
+
function preflightCheck(initialized, performanceEvent, account) {
|
|
18308
18938
|
try {
|
|
18309
18939
|
preflightCheck$1(initialized);
|
|
18310
18940
|
}
|
|
18311
18941
|
catch (e) {
|
|
18312
|
-
performanceEvent.end({ success: false }, e);
|
|
18942
|
+
performanceEvent.end({ success: false }, e, account);
|
|
18313
18943
|
throw e;
|
|
18314
18944
|
}
|
|
18315
18945
|
}
|
|
@@ -18540,8 +19170,7 @@ class StandardController {
|
|
|
18540
19170
|
}
|
|
18541
19171
|
rootMeasurement.end({
|
|
18542
19172
|
success: true,
|
|
18543
|
-
|
|
18544
|
-
});
|
|
19173
|
+
}, undefined, result.account);
|
|
18545
19174
|
}
|
|
18546
19175
|
else {
|
|
18547
19176
|
/*
|
|
@@ -18549,7 +19178,7 @@ class StandardController {
|
|
|
18549
19178
|
* is empty and the error code is missing.
|
|
18550
19179
|
*/
|
|
18551
19180
|
if (rootMeasurement.event.errorCode) {
|
|
18552
|
-
rootMeasurement.end({ success: false });
|
|
19181
|
+
rootMeasurement.end({ success: false }, undefined);
|
|
18553
19182
|
}
|
|
18554
19183
|
else {
|
|
18555
19184
|
rootMeasurement.discard();
|
|
@@ -18590,7 +19219,6 @@ class StandardController {
|
|
|
18590
19219
|
this.logger.verbose("acquireTokenRedirect called", correlationId);
|
|
18591
19220
|
const atrMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.AcquireTokenPreRedirect, correlationId);
|
|
18592
19221
|
atrMeasurement.add({
|
|
18593
|
-
accountType: getAccountType(request.account),
|
|
18594
19222
|
scenarioId: request.scenarioId,
|
|
18595
19223
|
});
|
|
18596
19224
|
// Override on request only if set, as onRedirectNavigate field is deprecated
|
|
@@ -18604,8 +19232,7 @@ class StandardController {
|
|
|
18604
19232
|
navigateCallbackResult: navigate !== false,
|
|
18605
19233
|
});
|
|
18606
19234
|
atrMeasurement.event =
|
|
18607
|
-
atrMeasurement.end({ success: true }) ||
|
|
18608
|
-
atrMeasurement.event;
|
|
19235
|
+
atrMeasurement.end({ success: true }, undefined, request.account) || atrMeasurement.event;
|
|
18609
19236
|
return navigate;
|
|
18610
19237
|
};
|
|
18611
19238
|
}
|
|
@@ -18619,8 +19246,7 @@ class StandardController {
|
|
|
18619
19246
|
navigateCallbackResult: navigate !== false,
|
|
18620
19247
|
});
|
|
18621
19248
|
atrMeasurement.event =
|
|
18622
|
-
atrMeasurement.end({ success: true }) ||
|
|
18623
|
-
atrMeasurement.event;
|
|
19249
|
+
atrMeasurement.end({ success: true }, undefined, request.account) || atrMeasurement.event;
|
|
18624
19250
|
return navigate;
|
|
18625
19251
|
};
|
|
18626
19252
|
}
|
|
@@ -18675,10 +19301,10 @@ class StandardController {
|
|
|
18675
19301
|
if (atrMeasurement.event.status === 2) {
|
|
18676
19302
|
this.performanceClient
|
|
18677
19303
|
.startMeasurement(PerformanceEvents.AcquireTokenRedirect, correlationId)
|
|
18678
|
-
.end({ success: false }, e);
|
|
19304
|
+
.end({ success: false }, e, request.account);
|
|
18679
19305
|
}
|
|
18680
19306
|
else {
|
|
18681
|
-
atrMeasurement.end({ success: false }, e);
|
|
19307
|
+
atrMeasurement.end({ success: false }, e, request.account);
|
|
18682
19308
|
}
|
|
18683
19309
|
if (isLoggedIn) {
|
|
18684
19310
|
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, InteractionType.Redirect, null, e);
|
|
@@ -18703,11 +19329,10 @@ class StandardController {
|
|
|
18703
19329
|
const atPopupMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.AcquireTokenPopup, correlationId);
|
|
18704
19330
|
atPopupMeasurement.add({
|
|
18705
19331
|
scenarioId: request.scenarioId,
|
|
18706
|
-
accountType: getAccountType(request.account),
|
|
18707
19332
|
});
|
|
18708
19333
|
try {
|
|
18709
19334
|
this.logger.verbose("acquireTokenPopup called", correlationId);
|
|
18710
|
-
preflightCheck(this.initialized, atPopupMeasurement);
|
|
19335
|
+
preflightCheck(this.initialized, atPopupMeasurement, request.account);
|
|
18711
19336
|
this.browserStorage.setInteractionInProgress(true, INTERACTION_TYPE.SIGNIN);
|
|
18712
19337
|
}
|
|
18713
19338
|
catch (e) {
|
|
@@ -18735,8 +19360,7 @@ class StandardController {
|
|
|
18735
19360
|
.then((response) => {
|
|
18736
19361
|
atPopupMeasurement.end({
|
|
18737
19362
|
success: true,
|
|
18738
|
-
|
|
18739
|
-
});
|
|
19363
|
+
}, undefined, response.account);
|
|
18740
19364
|
return response;
|
|
18741
19365
|
})
|
|
18742
19366
|
.catch((e) => {
|
|
@@ -18778,8 +19402,7 @@ class StandardController {
|
|
|
18778
19402
|
success: true,
|
|
18779
19403
|
accessTokenSize: result.accessToken.length,
|
|
18780
19404
|
idTokenSize: result.idToken.length,
|
|
18781
|
-
|
|
18782
|
-
});
|
|
19405
|
+
}, undefined, result.account);
|
|
18783
19406
|
return result;
|
|
18784
19407
|
})
|
|
18785
19408
|
.catch((e) => {
|
|
@@ -18791,7 +19414,7 @@ class StandardController {
|
|
|
18791
19414
|
}
|
|
18792
19415
|
atPopupMeasurement.end({
|
|
18793
19416
|
success: false,
|
|
18794
|
-
}, e);
|
|
19417
|
+
}, e, request.account);
|
|
18795
19418
|
// Since this function is syncronous we need to reject
|
|
18796
19419
|
return Promise.reject(e);
|
|
18797
19420
|
})
|
|
@@ -18841,9 +19464,8 @@ class StandardController {
|
|
|
18841
19464
|
this.ssoSilentMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.SsoSilent, correlationId);
|
|
18842
19465
|
this.ssoSilentMeasurement?.add({
|
|
18843
19466
|
scenarioId: request.scenarioId,
|
|
18844
|
-
accountType: getAccountType(request.account),
|
|
18845
19467
|
});
|
|
18846
|
-
preflightCheck(this.initialized, this.ssoSilentMeasurement);
|
|
19468
|
+
preflightCheck(this.initialized, this.ssoSilentMeasurement, request.account);
|
|
18847
19469
|
this.ssoSilentMeasurement?.increment({
|
|
18848
19470
|
visibilityChangeCount: 0,
|
|
18849
19471
|
});
|
|
@@ -18880,15 +19502,14 @@ class StandardController {
|
|
|
18880
19502
|
success: true,
|
|
18881
19503
|
accessTokenSize: response.accessToken.length,
|
|
18882
19504
|
idTokenSize: response.idToken.length,
|
|
18883
|
-
|
|
18884
|
-
});
|
|
19505
|
+
}, undefined, response.account);
|
|
18885
19506
|
return response;
|
|
18886
19507
|
})
|
|
18887
19508
|
.catch((e) => {
|
|
18888
19509
|
this.eventHandler.emitEvent(EventType.SSO_SILENT_FAILURE, InteractionType.Silent, null, e);
|
|
18889
19510
|
this.ssoSilentMeasurement?.end({
|
|
18890
19511
|
success: false,
|
|
18891
|
-
}, e);
|
|
19512
|
+
}, e, request.account);
|
|
18892
19513
|
throw e;
|
|
18893
19514
|
})
|
|
18894
19515
|
.finally(() => {
|
|
@@ -18933,8 +19554,7 @@ class StandardController {
|
|
|
18933
19554
|
success: true,
|
|
18934
19555
|
accessTokenSize: result.accessToken.length,
|
|
18935
19556
|
idTokenSize: result.idToken.length,
|
|
18936
|
-
|
|
18937
|
-
});
|
|
19557
|
+
}, undefined, result.account);
|
|
18938
19558
|
return result;
|
|
18939
19559
|
})
|
|
18940
19560
|
.catch((error) => {
|
|
@@ -18974,9 +19594,8 @@ class StandardController {
|
|
|
18974
19594
|
throw e;
|
|
18975
19595
|
});
|
|
18976
19596
|
atbcMeasurement.end({
|
|
18977
|
-
accountType: getAccountType(result.account),
|
|
18978
19597
|
success: true,
|
|
18979
|
-
});
|
|
19598
|
+
}, undefined, result.account);
|
|
18980
19599
|
return result;
|
|
18981
19600
|
}
|
|
18982
19601
|
else {
|
|
@@ -19500,13 +20119,12 @@ class StandardController {
|
|
|
19500
20119
|
cacheLookupPolicy: request.cacheLookupPolicy,
|
|
19501
20120
|
scenarioId: request.scenarioId,
|
|
19502
20121
|
});
|
|
19503
|
-
preflightCheck(this.initialized, atsMeasurement);
|
|
20122
|
+
preflightCheck(this.initialized, atsMeasurement, request.account);
|
|
19504
20123
|
this.logger.verbose("acquireTokenSilent called", correlationId);
|
|
19505
20124
|
const account = request.account || this.getActiveAccount();
|
|
19506
20125
|
if (!account) {
|
|
19507
20126
|
throw createBrowserAuthError(noAccountError);
|
|
19508
20127
|
}
|
|
19509
|
-
atsMeasurement.add({ accountType: getAccountType(account) });
|
|
19510
20128
|
return this.acquireTokenSilentDeduped(request, account, correlationId)
|
|
19511
20129
|
.then((result) => {
|
|
19512
20130
|
atsMeasurement.end({
|
|
@@ -19514,7 +20132,7 @@ class StandardController {
|
|
|
19514
20132
|
fromCache: result.fromCache,
|
|
19515
20133
|
accessTokenSize: result.accessToken.length,
|
|
19516
20134
|
idTokenSize: result.idToken.length,
|
|
19517
|
-
});
|
|
20135
|
+
}, undefined, result.account);
|
|
19518
20136
|
return {
|
|
19519
20137
|
...result,
|
|
19520
20138
|
state: request.state,
|
|
@@ -19528,7 +20146,7 @@ class StandardController {
|
|
|
19528
20146
|
}
|
|
19529
20147
|
atsMeasurement.end({
|
|
19530
20148
|
success: false,
|
|
19531
|
-
}, error);
|
|
20149
|
+
}, error, account);
|
|
19532
20150
|
throw error;
|
|
19533
20151
|
});
|
|
19534
20152
|
}
|
|
@@ -19641,11 +20259,9 @@ class StandardController {
|
|
|
19641
20259
|
return result
|
|
19642
20260
|
.then((response) => {
|
|
19643
20261
|
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, InteractionType.Silent, response);
|
|
19644
|
-
|
|
19645
|
-
|
|
19646
|
-
|
|
19647
|
-
}, request.correlationId);
|
|
19648
|
-
}
|
|
20262
|
+
this.performanceClient.addFields({
|
|
20263
|
+
fromCache: response.fromCache,
|
|
20264
|
+
}, request.correlationId);
|
|
19649
20265
|
return response;
|
|
19650
20266
|
})
|
|
19651
20267
|
.catch((tokenRenewalError) => {
|
|
@@ -19792,6 +20408,7 @@ class CustomAuthStandardController extends StandardController {
|
|
|
19792
20408
|
this.signUpClient = interactionClientFactory.create(SignUpClient);
|
|
19793
20409
|
this.resetPasswordClient =
|
|
19794
20410
|
interactionClientFactory.create(ResetPasswordClient);
|
|
20411
|
+
this.jitClient = interactionClientFactory.create(JitClient);
|
|
19795
20412
|
this.cacheClient = interactionClientFactory.create(CustomAuthSilentCacheClient);
|
|
19796
20413
|
}
|
|
19797
20414
|
/*
|
|
@@ -19850,6 +20467,7 @@ class CustomAuthStandardController extends StandardController {
|
|
|
19850
20467
|
config: this.customAuthConfig,
|
|
19851
20468
|
signInClient: this.signInClient,
|
|
19852
20469
|
cacheClient: this.cacheClient,
|
|
20470
|
+
jitClient: this.jitClient,
|
|
19853
20471
|
username: signInInputs.username,
|
|
19854
20472
|
codeLength: startResult.codeLength,
|
|
19855
20473
|
scopes: signInInputs.scopes ?? [],
|
|
@@ -19868,6 +20486,7 @@ class CustomAuthStandardController extends StandardController {
|
|
|
19868
20486
|
config: this.customAuthConfig,
|
|
19869
20487
|
signInClient: this.signInClient,
|
|
19870
20488
|
cacheClient: this.cacheClient,
|
|
20489
|
+
jitClient: this.jitClient,
|
|
19871
20490
|
username: signInInputs.username,
|
|
19872
20491
|
scopes: signInInputs.scopes ?? [],
|
|
19873
20492
|
claims: signInInputs.claims,
|
|
@@ -19885,10 +20504,35 @@ class CustomAuthStandardController extends StandardController {
|
|
|
19885
20504
|
username: signInInputs.username,
|
|
19886
20505
|
claims: signInInputs.claims,
|
|
19887
20506
|
};
|
|
19888
|
-
const
|
|
20507
|
+
const submitPasswordResult = await this.signInClient.submitPassword(submitPasswordParams);
|
|
19889
20508
|
this.logger.verbose("Sign-in flow completed.", correlationId);
|
|
19890
|
-
|
|
19891
|
-
|
|
20509
|
+
if (submitPasswordResult.type === SIGN_IN_COMPLETED_RESULT_TYPE) {
|
|
20510
|
+
const accountInfo = new CustomAuthAccountData(submitPasswordResult.authenticationResult.account, this.customAuthConfig, this.cacheClient, this.logger, correlationId);
|
|
20511
|
+
return new SignInResult(new SignInCompletedState(), accountInfo);
|
|
20512
|
+
}
|
|
20513
|
+
else if (submitPasswordResult.type ===
|
|
20514
|
+
SIGN_IN_JIT_REQUIRED_RESULT_TYPE) {
|
|
20515
|
+
// Authentication method registration is required - create AuthMethodRegistrationRequiredState
|
|
20516
|
+
this.logger.verbose("Authentication method registration required for sign-in.", correlationId);
|
|
20517
|
+
return new SignInResult(new AuthMethodRegistrationRequiredState({
|
|
20518
|
+
correlationId: correlationId,
|
|
20519
|
+
continuationToken: submitPasswordResult.continuationToken,
|
|
20520
|
+
logger: this.logger,
|
|
20521
|
+
config: this.customAuthConfig,
|
|
20522
|
+
jitClient: this.jitClient,
|
|
20523
|
+
cacheClient: this.cacheClient,
|
|
20524
|
+
authMethods: submitPasswordResult.authMethods,
|
|
20525
|
+
username: signInInputs.username,
|
|
20526
|
+
scopes: signInInputs.scopes ?? [],
|
|
20527
|
+
claims: signInInputs.claims,
|
|
20528
|
+
}));
|
|
20529
|
+
}
|
|
20530
|
+
else {
|
|
20531
|
+
// Unexpected result type
|
|
20532
|
+
const result = submitPasswordResult;
|
|
20533
|
+
const error = new Error(`Unexpected result type: ${result.type}`);
|
|
20534
|
+
return SignInResult.createWithError(error);
|
|
20535
|
+
}
|
|
19892
20536
|
}
|
|
19893
20537
|
this.logger.error("Unexpected sign-in result type. Returning error.", correlationId);
|
|
19894
20538
|
throw new UnexpectedError("Unknow sign-in result type", correlationId);
|
|
@@ -19934,6 +20578,7 @@ class CustomAuthStandardController extends StandardController {
|
|
|
19934
20578
|
signInClient: this.signInClient,
|
|
19935
20579
|
signUpClient: this.signUpClient,
|
|
19936
20580
|
cacheClient: this.cacheClient,
|
|
20581
|
+
jitClient: this.jitClient,
|
|
19937
20582
|
username: signUpInputs.username,
|
|
19938
20583
|
codeLength: startResult.codeLength,
|
|
19939
20584
|
codeResendInterval: startResult.interval,
|
|
@@ -19950,6 +20595,7 @@ class CustomAuthStandardController extends StandardController {
|
|
|
19950
20595
|
signInClient: this.signInClient,
|
|
19951
20596
|
signUpClient: this.signUpClient,
|
|
19952
20597
|
cacheClient: this.cacheClient,
|
|
20598
|
+
jitClient: this.jitClient,
|
|
19953
20599
|
username: signUpInputs.username,
|
|
19954
20600
|
}));
|
|
19955
20601
|
}
|
|
@@ -19988,6 +20634,7 @@ class CustomAuthStandardController extends StandardController {
|
|
|
19988
20634
|
signInClient: this.signInClient,
|
|
19989
20635
|
resetPasswordClient: this.resetPasswordClient,
|
|
19990
20636
|
cacheClient: this.cacheClient,
|
|
20637
|
+
jitClient: this.jitClient,
|
|
19991
20638
|
username: resetPasswordInputs.username,
|
|
19992
20639
|
codeLength: startResult.codeLength,
|
|
19993
20640
|
}));
|
|
@@ -20874,6 +21521,14 @@ class UserAccountAttributeError extends CustomAuthError {
|
|
|
20874
21521
|
|
|
20875
21522
|
exports.AuthFlowActionRequiredStateBase = AuthFlowActionRequiredStateBase;
|
|
20876
21523
|
exports.AuthFlowStateBase = AuthFlowStateBase;
|
|
21524
|
+
exports.AuthMethodRegistrationChallengeMethodError = AuthMethodRegistrationChallengeMethodError;
|
|
21525
|
+
exports.AuthMethodRegistrationChallengeMethodResult = AuthMethodRegistrationChallengeMethodResult;
|
|
21526
|
+
exports.AuthMethodRegistrationCompletedState = AuthMethodRegistrationCompletedState;
|
|
21527
|
+
exports.AuthMethodRegistrationFailedState = AuthMethodRegistrationFailedState;
|
|
21528
|
+
exports.AuthMethodRegistrationRequiredState = AuthMethodRegistrationRequiredState;
|
|
21529
|
+
exports.AuthMethodRegistrationSubmitChallengeError = AuthMethodRegistrationSubmitChallengeError;
|
|
21530
|
+
exports.AuthMethodRegistrationSubmitChallengeResult = AuthMethodRegistrationSubmitChallengeResult;
|
|
21531
|
+
exports.AuthMethodVerificationRequiredState = AuthMethodVerificationRequiredState;
|
|
20877
21532
|
exports.CustomAuthAccountData = CustomAuthAccountData;
|
|
20878
21533
|
exports.CustomAuthApiError = CustomAuthApiError;
|
|
20879
21534
|
exports.CustomAuthError = CustomAuthError;
|