@azure/msal-browser 4.23.0 → 4.24.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (520) hide show
  1. package/dist/app/IPublicClientApplication.mjs +1 -1
  2. package/dist/app/PublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientNext.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  5. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  8. package/dist/cache/AccountManager.mjs +1 -1
  9. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  10. package/dist/cache/BrowserCacheManager.mjs +1 -1
  11. package/dist/cache/CacheHelpers.mjs +1 -1
  12. package/dist/cache/CacheKeys.mjs +1 -1
  13. package/dist/cache/CookieStorage.mjs +1 -1
  14. package/dist/cache/DatabaseStorage.mjs +1 -1
  15. package/dist/cache/EncryptedData.mjs +1 -1
  16. package/dist/cache/LocalStorage.mjs +1 -1
  17. package/dist/cache/MemoryStorage.mjs +1 -1
  18. package/dist/cache/SessionStorage.mjs +1 -1
  19. package/dist/cache/TokenCache.mjs +1 -1
  20. package/dist/config/Configuration.mjs +1 -1
  21. package/dist/controllers/ControllerFactory.mjs +1 -1
  22. package/dist/controllers/NestedAppAuthController.d.ts.map +1 -1
  23. package/dist/controllers/NestedAppAuthController.mjs +15 -15
  24. package/dist/controllers/NestedAppAuthController.mjs.map +1 -1
  25. package/dist/controllers/StandardController.d.ts.map +1 -1
  26. package/dist/controllers/StandardController.mjs +25 -51
  27. package/dist/controllers/StandardController.mjs.map +1 -1
  28. package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
  29. package/dist/crypto/BrowserCrypto.mjs +1 -1
  30. package/dist/crypto/CryptoOps.mjs +1 -1
  31. package/dist/crypto/PkceGenerator.mjs +1 -1
  32. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  33. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  34. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  35. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  36. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  37. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  38. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  39. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  40. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
  41. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  42. package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
  43. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  44. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  45. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  46. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  47. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  48. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  49. package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
  50. package/dist/custom-auth-path/config/Configuration.mjs +1 -1
  51. package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
  52. package/dist/custom-auth-path/controllers/NestedAppAuthController.d.ts.map +1 -1
  53. package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
  54. package/dist/custom-auth-path/controllers/StandardController.mjs +25 -51
  55. package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
  56. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  57. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  58. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  59. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +2 -1
  60. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts.map +1 -1
  61. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +2 -1
  62. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs.map +1 -1
  63. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  64. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  65. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  66. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +2 -1
  67. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -1
  68. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +11 -3
  69. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs.map +1 -1
  70. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  71. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  72. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +5 -0
  73. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -1
  74. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +9 -2
  75. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs.map +1 -1
  76. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
  77. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  79. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
  81. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +22 -0
  82. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
  83. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +36 -0
  84. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
  85. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +30 -0
  86. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
  87. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +7 -0
  88. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
  89. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +7 -0
  90. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
  91. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +59 -0
  92. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
  93. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
  94. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
  95. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  96. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  98. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  100. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  102. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  106. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  108. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  109. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +2 -2
  112. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.d.ts +2 -8
  114. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
  115. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +4 -26
  116. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs.map +1 -1
  117. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +0 -1
  118. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -1
  119. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +2 -11
  120. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -1
  121. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +2 -9
  122. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs.map +1 -1
  123. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
  124. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
  125. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
  126. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
  127. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
  128. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
  129. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +1 -0
  132. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -1
  133. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +3 -2
  134. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs.map +1 -1
  135. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +7 -2
  138. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -1
  139. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +14 -3
  140. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs.map +1 -1
  141. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +5 -0
  144. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -1
  145. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +5 -1
  146. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -1
  147. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +1 -0
  148. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -1
  149. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +4 -3
  150. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs.map +1 -1
  151. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.d.ts +4 -3
  154. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -1
  155. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +4 -5
  156. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs.map +1 -1
  157. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  159. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  160. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  161. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  162. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  163. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  164. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  165. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  166. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  167. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  168. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  169. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  170. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  171. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  172. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  173. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  174. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  175. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  176. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  177. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  178. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  179. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  180. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  181. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  182. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  183. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  184. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
  185. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
  186. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
  187. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -1
  188. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +13 -4
  189. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs.map +1 -1
  190. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  191. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  192. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  193. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  194. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  195. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.d.ts +8 -6
  196. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
  197. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +51 -29
  198. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs.map +1 -1
  199. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +6 -0
  200. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -1
  201. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +9 -2
  202. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs.map +1 -1
  203. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  204. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  205. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  206. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  207. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  208. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  209. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  210. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  211. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  212. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  213. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  214. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  215. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  216. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  217. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  218. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  219. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  220. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  221. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  222. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  223. package/dist/custom-auth-path/error/NativeAuthError.d.ts.map +1 -1
  224. package/dist/custom-auth-path/error/NativeAuthError.mjs +3 -2
  225. package/dist/custom-auth-path/error/NativeAuthError.mjs.map +1 -1
  226. package/dist/custom-auth-path/error/NativeAuthErrorCodes.d.ts +1 -0
  227. package/dist/custom-auth-path/error/NativeAuthErrorCodes.d.ts.map +1 -1
  228. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +3 -2
  229. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs.map +1 -1
  230. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  231. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  232. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  233. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  234. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  235. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +2 -1
  236. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  237. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +1 -1
  238. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +1 -1
  239. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  240. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  241. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +1 -1
  242. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  243. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
  244. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  245. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  246. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  247. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  248. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  249. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  250. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  251. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  252. package/dist/custom-auth-path/protocol/Authorize.mjs +1 -1
  253. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  254. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  255. package/dist/custom-auth-path/telemetry/BrowserPerformanceClient.d.ts.map +1 -1
  256. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  257. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  258. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  259. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  260. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  261. package/dist/custom_auth/CustomAuthConstants.d.ts +2 -1
  262. package/dist/custom_auth/CustomAuthConstants.d.ts.map +1 -1
  263. package/dist/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +2 -1
  264. package/dist/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -1
  265. package/dist/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +5 -0
  266. package/dist/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -1
  267. package/dist/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +22 -0
  268. package/dist/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
  269. package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +36 -0
  270. package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
  271. package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +30 -0
  272. package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
  273. package/dist/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +7 -0
  274. package/dist/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
  275. package/dist/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +7 -0
  276. package/dist/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
  277. package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +59 -0
  278. package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
  279. package/dist/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
  280. package/dist/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
  281. package/dist/custom_auth/core/interaction_client/jit/JitClient.d.ts +2 -8
  282. package/dist/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
  283. package/dist/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +0 -1
  284. package/dist/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -1
  285. package/dist/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +2 -11
  286. package/dist/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -1
  287. package/dist/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
  288. package/dist/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
  289. package/dist/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
  290. package/dist/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
  291. package/dist/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
  292. package/dist/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
  293. package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +1 -0
  294. package/dist/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -1
  295. package/dist/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +7 -2
  296. package/dist/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -1
  297. package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +5 -0
  298. package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -1
  299. package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +5 -1
  300. package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -1
  301. package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +1 -0
  302. package/dist/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -1
  303. package/dist/custom_auth/core/telemetry/PublicApiId.d.ts +4 -3
  304. package/dist/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -1
  305. package/dist/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -1
  306. package/dist/custom_auth/sign_in/interaction_client/SignInClient.d.ts +8 -6
  307. package/dist/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
  308. package/dist/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +6 -0
  309. package/dist/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -1
  310. package/dist/encode/Base64Decode.mjs +1 -1
  311. package/dist/encode/Base64Encode.mjs +1 -1
  312. package/dist/error/BrowserAuthError.mjs +1 -1
  313. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  314. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  315. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  316. package/dist/error/NativeAuthError.d.ts.map +1 -1
  317. package/dist/error/NativeAuthError.mjs +3 -2
  318. package/dist/error/NativeAuthError.mjs.map +1 -1
  319. package/dist/error/NativeAuthErrorCodes.d.ts +1 -0
  320. package/dist/error/NativeAuthErrorCodes.d.ts.map +1 -1
  321. package/dist/error/NativeAuthErrorCodes.mjs +3 -2
  322. package/dist/error/NativeAuthErrorCodes.mjs.map +1 -1
  323. package/dist/error/NestedAppAuthError.mjs +1 -1
  324. package/dist/event/EventHandler.mjs +1 -1
  325. package/dist/event/EventMessage.mjs +1 -1
  326. package/dist/event/EventType.mjs +1 -1
  327. package/dist/index.mjs +1 -1
  328. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  329. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  330. package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  331. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +2 -1
  332. package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  333. package/dist/interaction_client/PopupClient.mjs +1 -1
  334. package/dist/interaction_client/RedirectClient.mjs +1 -1
  335. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  336. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  337. package/dist/interaction_client/SilentIframeClient.mjs +1 -1
  338. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  339. package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
  340. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  341. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  342. package/dist/naa/BridgeError.mjs +1 -1
  343. package/dist/naa/BridgeProxy.mjs +1 -1
  344. package/dist/naa/BridgeStatusCode.mjs +1 -1
  345. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  346. package/dist/navigation/NavigationClient.mjs +1 -1
  347. package/dist/network/FetchClient.mjs +1 -1
  348. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  349. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  350. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  351. package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
  352. package/dist/packageMetadata.d.ts +1 -1
  353. package/dist/packageMetadata.mjs +2 -2
  354. package/dist/protocol/Authorize.mjs +1 -1
  355. package/dist/request/RequestHelpers.mjs +1 -1
  356. package/dist/response/ResponseHandler.mjs +1 -1
  357. package/dist/telemetry/BrowserPerformanceClient.d.ts.map +1 -1
  358. package/dist/telemetry/BrowserPerformanceClient.mjs +3 -3
  359. package/dist/telemetry/BrowserPerformanceClient.mjs.map +1 -1
  360. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  361. package/dist/utils/BrowserConstants.mjs +1 -1
  362. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  363. package/dist/utils/BrowserUtils.mjs +1 -1
  364. package/dist/utils/Helpers.mjs +1 -1
  365. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  366. package/lib/custom-auth-path/msal-custom-auth.cjs +234 -215
  367. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  368. package/lib/custom-auth-path/types/controllers/NestedAppAuthController.d.ts.map +1 -1
  369. package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
  370. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +2 -1
  371. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts.map +1 -1
  372. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +2 -1
  373. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -1
  374. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +5 -0
  375. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -1
  376. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +22 -0
  377. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
  378. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +36 -0
  379. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
  380. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +30 -0
  381. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
  382. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +7 -0
  383. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
  384. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +7 -0
  385. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
  386. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +59 -0
  387. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
  388. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
  389. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
  390. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +2 -8
  391. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
  392. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +0 -1
  393. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -1
  394. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +2 -11
  395. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -1
  396. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
  397. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
  398. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
  399. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
  400. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
  401. package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
  402. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +1 -0
  403. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -1
  404. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +7 -2
  405. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -1
  406. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +5 -0
  407. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -1
  408. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +5 -1
  409. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -1
  410. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +1 -0
  411. package/lib/custom-auth-path/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -1
  412. package/lib/custom-auth-path/types/custom_auth/core/telemetry/PublicApiId.d.ts +4 -3
  413. package/lib/custom-auth-path/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -1
  414. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -1
  415. package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +8 -6
  416. package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
  417. package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +6 -0
  418. package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -1
  419. package/lib/custom-auth-path/types/error/NativeAuthError.d.ts.map +1 -1
  420. package/lib/custom-auth-path/types/error/NativeAuthErrorCodes.d.ts +1 -0
  421. package/lib/custom-auth-path/types/error/NativeAuthErrorCodes.d.ts.map +1 -1
  422. package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  423. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  424. package/lib/custom-auth-path/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -1
  425. package/lib/msal-browser.cjs +137 -136
  426. package/lib/msal-browser.cjs.map +1 -1
  427. package/lib/msal-browser.js +137 -136
  428. package/lib/msal-browser.js.map +1 -1
  429. package/lib/msal-browser.min.js +60 -60
  430. package/lib/types/controllers/NestedAppAuthController.d.ts.map +1 -1
  431. package/lib/types/controllers/StandardController.d.ts.map +1 -1
  432. package/lib/types/custom_auth/CustomAuthConstants.d.ts +2 -1
  433. package/lib/types/custom_auth/CustomAuthConstants.d.ts.map +1 -1
  434. package/lib/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +2 -1
  435. package/lib/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -1
  436. package/lib/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +5 -0
  437. package/lib/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -1
  438. package/lib/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +22 -0
  439. package/lib/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
  440. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +36 -0
  441. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
  442. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +30 -0
  443. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
  444. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +7 -0
  445. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
  446. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +7 -0
  447. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
  448. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +59 -0
  449. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
  450. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
  451. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
  452. package/lib/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +2 -8
  453. package/lib/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
  454. package/lib/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +0 -1
  455. package/lib/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -1
  456. package/lib/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +2 -11
  457. package/lib/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -1
  458. package/lib/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
  459. package/lib/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
  460. package/lib/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
  461. package/lib/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
  462. package/lib/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
  463. package/lib/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
  464. package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +1 -0
  465. package/lib/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -1
  466. package/lib/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +7 -2
  467. package/lib/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -1
  468. package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +5 -0
  469. package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -1
  470. package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +5 -1
  471. package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -1
  472. package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +1 -0
  473. package/lib/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -1
  474. package/lib/types/custom_auth/core/telemetry/PublicApiId.d.ts +4 -3
  475. package/lib/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -1
  476. package/lib/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -1
  477. package/lib/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +8 -6
  478. package/lib/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
  479. package/lib/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +6 -0
  480. package/lib/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -1
  481. package/lib/types/error/NativeAuthError.d.ts.map +1 -1
  482. package/lib/types/error/NativeAuthErrorCodes.d.ts +1 -0
  483. package/lib/types/error/NativeAuthErrorCodes.d.ts.map +1 -1
  484. package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  485. package/lib/types/packageMetadata.d.ts +1 -1
  486. package/lib/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -1
  487. package/package.json +2 -2
  488. package/src/controllers/NestedAppAuthController.ts +40 -23
  489. package/src/controllers/StandardController.ts +98 -79
  490. package/src/custom_auth/CustomAuthConstants.ts +1 -0
  491. package/src/custom_auth/core/auth_flow/AuthFlowErrorBase.ts +15 -2
  492. package/src/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.ts +9 -1
  493. package/src/custom_auth/core/auth_flow/mfa/error_type/MfaError.ts +32 -0
  494. package/src/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.ts +59 -0
  495. package/src/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.ts +52 -0
  496. package/src/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.ts +11 -0
  497. package/src/custom_auth/core/auth_flow/mfa/state/MfaFailedState.ts +11 -0
  498. package/src/custom_auth/core/auth_flow/mfa/state/MfaState.ts +188 -0
  499. package/src/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.ts +28 -0
  500. package/src/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.ts +1 -1
  501. package/src/custom_auth/core/interaction_client/jit/JitClient.ts +1 -42
  502. package/src/custom_auth/core/interaction_client/jit/parameter/JitParams.ts +0 -2
  503. package/src/custom_auth/core/interaction_client/jit/result/JitActionResult.ts +2 -22
  504. package/src/custom_auth/core/interaction_client/mfa/MfaClient.ts +148 -0
  505. package/src/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.ts +20 -0
  506. package/src/custom_auth/core/interaction_client/mfa/result/MfaActionResult.ts +48 -0
  507. package/src/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.ts +1 -0
  508. package/src/custom_auth/core/network_client/custom_auth_api/SignInApiClient.ts +27 -1
  509. package/src/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.ts +6 -0
  510. package/src/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.ts +6 -1
  511. package/src/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.ts +1 -0
  512. package/src/custom_auth/core/telemetry/PublicApiId.ts +6 -3
  513. package/src/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.ts +22 -12
  514. package/src/custom_auth/sign_in/interaction_client/SignInClient.ts +123 -41
  515. package/src/custom_auth/sign_in/interaction_client/result/SignInActionResult.ts +15 -0
  516. package/src/error/NativeAuthError.ts +1 -0
  517. package/src/error/NativeAuthErrorCodes.ts +1 -0
  518. package/src/interaction_client/PlatformAuthInteractionClient.ts +1 -0
  519. package/src/packageMetadata.ts +1 -1
  520. package/src/telemetry/BrowserPerformanceClient.ts +5 -2
@@ -1,8 +1,8 @@
1
- /*! @azure/msal-browser v4.23.0 2025-09-17 */
1
+ /*! @azure/msal-browser v4.24.1 2025-09-30 */
2
2
  'use strict';
3
3
  'use strict';
4
4
 
5
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
6
6
  /*
7
7
  * Copyright (c) Microsoft Corporation. All rights reserved.
8
8
  * Licensed under the MIT License.
@@ -276,7 +276,7 @@ const JsonWebTokenTypes = {
276
276
  // Token renewal offset default in seconds
277
277
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
278
278
 
279
- /*! @azure/msal-common v15.12.0 2025-09-17 */
279
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
280
280
  /*
281
281
  * Copyright (c) Microsoft Corporation. All rights reserved.
282
282
  * Licensed under the MIT License.
@@ -287,7 +287,7 @@ const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
287
287
  const unexpectedError = "unexpected_error";
288
288
  const postRequestFailed$1 = "post_request_failed";
289
289
 
290
- /*! @azure/msal-common v15.12.0 2025-09-17 */
290
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
291
291
 
292
292
  /*
293
293
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -322,7 +322,7 @@ function createAuthError(code, additionalMessage) {
322
322
  : AuthErrorMessages[code]);
323
323
  }
324
324
 
325
- /*! @azure/msal-common v15.12.0 2025-09-17 */
325
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
326
326
  /*
327
327
  * Copyright (c) Microsoft Corporation. All rights reserved.
328
328
  * Licensed under the MIT License.
@@ -372,7 +372,7 @@ const missingTenantIdError = "missing_tenant_id_error";
372
372
  const methodNotImplemented = "method_not_implemented";
373
373
  const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
374
374
 
375
- /*! @azure/msal-common v15.12.0 2025-09-17 */
375
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
376
376
 
377
377
  /*
378
378
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -446,7 +446,7 @@ function createClientAuthError(errorCode, additionalMessage) {
446
446
  return new ClientAuthError(errorCode, additionalMessage);
447
447
  }
448
448
 
449
- /*! @azure/msal-common v15.12.0 2025-09-17 */
449
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
450
450
 
451
451
  /*
452
452
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -485,7 +485,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
485
485
  },
486
486
  };
487
487
 
488
- /*! @azure/msal-common v15.12.0 2025-09-17 */
488
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
489
489
 
490
490
  /*
491
491
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -676,12 +676,12 @@ class Logger {
676
676
  }
677
677
  }
678
678
 
679
- /*! @azure/msal-common v15.12.0 2025-09-17 */
679
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
680
680
  /* eslint-disable header/header */
681
681
  const name$1 = "@azure/msal-common";
682
- const version$1 = "15.12.0";
682
+ const version$1 = "15.13.0";
683
683
 
684
- /*! @azure/msal-common v15.12.0 2025-09-17 */
684
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
685
685
  /*
686
686
  * Copyright (c) Microsoft Corporation. All rights reserved.
687
687
  * Licensed under the MIT License.
@@ -690,7 +690,7 @@ const AzureCloudInstance = {
690
690
  // AzureCloudInstance is not specified.
691
691
  None: "none"};
692
692
 
693
- /*! @azure/msal-common v15.12.0 2025-09-17 */
693
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
694
694
  /*
695
695
  * Copyright (c) Microsoft Corporation. All rights reserved.
696
696
  * Licensed under the MIT License.
@@ -719,7 +719,7 @@ const authorityMismatch = "authority_mismatch";
719
719
  const invalidRequestMethodForEAR = "invalid_request_method_for_EAR";
720
720
  const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
721
721
 
722
- /*! @azure/msal-common v15.12.0 2025-09-17 */
722
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
723
723
 
724
724
  /*
725
725
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -764,7 +764,7 @@ function createClientConfigurationError(errorCode) {
764
764
  return new ClientConfigurationError(errorCode);
765
765
  }
766
766
 
767
- /*! @azure/msal-common v15.12.0 2025-09-17 */
767
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
768
768
  /*
769
769
  * Copyright (c) Microsoft Corporation. All rights reserved.
770
770
  * Licensed under the MIT License.
@@ -861,7 +861,7 @@ class StringUtils {
861
861
  }
862
862
  }
863
863
 
864
- /*! @azure/msal-common v15.12.0 2025-09-17 */
864
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
865
865
 
866
866
  /*
867
867
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1056,7 +1056,7 @@ class ScopeSet {
1056
1056
  }
1057
1057
  }
1058
1058
 
1059
- /*! @azure/msal-common v15.12.0 2025-09-17 */
1059
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
1060
1060
  /*
1061
1061
  * Copyright (c) Microsoft Corporation. All rights reserved.
1062
1062
  * Licensed under the MIT License.
@@ -1138,7 +1138,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1138
1138
  return updatedAccountInfo;
1139
1139
  }
1140
1140
 
1141
- /*! @azure/msal-common v15.12.0 2025-09-17 */
1141
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
1142
1142
 
1143
1143
  /*
1144
1144
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1199,7 +1199,7 @@ function checkMaxAge(authTime, maxAge) {
1199
1199
  }
1200
1200
  }
1201
1201
 
1202
- /*! @azure/msal-common v15.12.0 2025-09-17 */
1202
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
1203
1203
 
1204
1204
  /*
1205
1205
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1315,7 +1315,7 @@ function normalizeUrlForComparison(url) {
1315
1315
  }
1316
1316
  }
1317
1317
 
1318
- /*! @azure/msal-common v15.12.0 2025-09-17 */
1318
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
1319
1319
 
1320
1320
  /*
1321
1321
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1479,7 +1479,7 @@ class UrlString {
1479
1479
  }
1480
1480
  }
1481
1481
 
1482
- /*! @azure/msal-common v15.12.0 2025-09-17 */
1482
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
1483
1483
 
1484
1484
  /*
1485
1485
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1618,7 +1618,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
1618
1618
  return null;
1619
1619
  }
1620
1620
 
1621
- /*! @azure/msal-common v15.12.0 2025-09-17 */
1621
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
1622
1622
  /*
1623
1623
  * Copyright (c) Microsoft Corporation. All rights reserved.
1624
1624
  * Licensed under the MIT License.
@@ -1626,7 +1626,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
1626
1626
  const cacheQuotaExceeded = "cache_quota_exceeded";
1627
1627
  const cacheErrorUnknown = "cache_error_unknown";
1628
1628
 
1629
- /*! @azure/msal-common v15.12.0 2025-09-17 */
1629
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
1630
1630
 
1631
1631
  /*
1632
1632
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1671,7 +1671,7 @@ function createCacheError(e) {
1671
1671
  }
1672
1672
  }
1673
1673
 
1674
- /*! @azure/msal-common v15.12.0 2025-09-17 */
1674
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
1675
1675
 
1676
1676
  /*
1677
1677
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2779,7 +2779,7 @@ class DefaultStorageClass extends CacheManager {
2779
2779
  }
2780
2780
  }
2781
2781
 
2782
- /*! @azure/msal-common v15.12.0 2025-09-17 */
2782
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
2783
2783
  /*
2784
2784
  * Copyright (c) Microsoft Corporation. All rights reserved.
2785
2785
  * Licensed under the MIT License.
@@ -2803,7 +2803,7 @@ const ProtocolMode = {
2803
2803
  EAR: "EAR",
2804
2804
  };
2805
2805
 
2806
- /*! @azure/msal-common v15.12.0 2025-09-17 */
2806
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
2807
2807
  /*
2808
2808
  * Copyright (c) Microsoft Corporation. All rights reserved.
2809
2809
  * Licensed under the MIT License.
@@ -3070,7 +3070,7 @@ const PerformanceEvents = {
3070
3070
  const PerformanceEventStatus = {
3071
3071
  InProgress: 1};
3072
3072
 
3073
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3073
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3074
3074
 
3075
3075
  /*
3076
3076
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3149,7 +3149,7 @@ class StubPerformanceClient {
3149
3149
  }
3150
3150
  }
3151
3151
 
3152
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3152
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3153
3153
 
3154
3154
  /*
3155
3155
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3249,7 +3249,7 @@ function isOidcProtocolMode(config) {
3249
3249
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
3250
3250
  }
3251
3251
 
3252
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3252
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3253
3253
  /*
3254
3254
  * Copyright (c) Microsoft Corporation. All rights reserved.
3255
3255
  * Licensed under the MIT License.
@@ -3259,7 +3259,7 @@ const CcsCredentialType = {
3259
3259
  UPN: "UPN",
3260
3260
  };
3261
3261
 
3262
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3262
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3263
3263
 
3264
3264
  /*
3265
3265
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3299,7 +3299,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
3299
3299
  };
3300
3300
  }
3301
3301
 
3302
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3302
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3303
3303
  /*
3304
3304
  * Copyright (c) Microsoft Corporation. All rights reserved.
3305
3305
  * Licensed under the MIT License.
@@ -3349,7 +3349,7 @@ const INSTANCE_AWARE = "instance_aware";
3349
3349
  const EAR_JWK = "ear_jwk";
3350
3350
  const EAR_JWE_CRYPTO = "ear_jwe_crypto";
3351
3351
 
3352
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3352
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3353
3353
 
3354
3354
  /*
3355
3355
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3729,7 +3729,7 @@ function addPostBodyParameters(parameters, bodyParameters) {
3729
3729
  });
3730
3730
  }
3731
3731
 
3732
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3732
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3733
3733
  /*
3734
3734
  * Copyright (c) Microsoft Corporation. All rights reserved.
3735
3735
  * Licensed under the MIT License.
@@ -3744,7 +3744,7 @@ const AuthorityType = {
3744
3744
  Ciam: 3,
3745
3745
  };
3746
3746
 
3747
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3747
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3748
3748
  /*
3749
3749
  * Copyright (c) Microsoft Corporation. All rights reserved.
3750
3750
  * Licensed under the MIT License.
@@ -3756,7 +3756,7 @@ function isOpenIdConfigResponse(response) {
3756
3756
  response.hasOwnProperty("jwks_uri"));
3757
3757
  }
3758
3758
 
3759
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3759
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3760
3760
  /*
3761
3761
  * Copyright (c) Microsoft Corporation. All rights reserved.
3762
3762
  * Licensed under the MIT License.
@@ -3766,7 +3766,7 @@ function isCloudInstanceDiscoveryResponse(response) {
3766
3766
  response.hasOwnProperty("metadata"));
3767
3767
  }
3768
3768
 
3769
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3769
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3770
3770
  /*
3771
3771
  * Copyright (c) Microsoft Corporation. All rights reserved.
3772
3772
  * Licensed under the MIT License.
@@ -3776,7 +3776,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
3776
3776
  response.hasOwnProperty("error_description"));
3777
3777
  }
3778
3778
 
3779
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3779
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3780
3780
  /*
3781
3781
  * Copyright (c) Microsoft Corporation. All rights reserved.
3782
3782
  * Licensed under the MIT License.
@@ -3872,7 +3872,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
3872
3872
  };
3873
3873
  };
3874
3874
 
3875
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3875
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3876
3876
 
3877
3877
  /*
3878
3878
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3978,7 +3978,7 @@ RegionDiscovery.IMDS_OPTIONS = {
3978
3978
  },
3979
3979
  };
3980
3980
 
3981
- /*! @azure/msal-common v15.12.0 2025-09-17 */
3981
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
3982
3982
  /*
3983
3983
  * Copyright (c) Microsoft Corporation. All rights reserved.
3984
3984
  * Licensed under the MIT License.
@@ -4043,7 +4043,7 @@ function wasClockTurnedBack(cachedAt) {
4043
4043
  return cachedAtSec > nowSeconds();
4044
4044
  }
4045
4045
 
4046
- /*! @azure/msal-common v15.12.0 2025-09-17 */
4046
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
4047
4047
 
4048
4048
  /*
4049
4049
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4305,7 +4305,7 @@ function isAuthorityMetadataExpired(metadata) {
4305
4305
  return metadata.expiresAt <= nowSeconds();
4306
4306
  }
4307
4307
 
4308
- /*! @azure/msal-common v15.12.0 2025-09-17 */
4308
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
4309
4309
 
4310
4310
  /*
4311
4311
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5144,7 +5144,7 @@ function buildStaticAuthorityOptions(authOptions) {
5144
5144
  };
5145
5145
  }
5146
5146
 
5147
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5147
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5148
5148
 
5149
5149
  /*
5150
5150
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5175,7 +5175,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
5175
5175
  }
5176
5176
  }
5177
5177
 
5178
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5178
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5179
5179
 
5180
5180
  /*
5181
5181
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5194,7 +5194,7 @@ class ServerError extends AuthError {
5194
5194
  }
5195
5195
  }
5196
5196
 
5197
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5197
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5198
5198
  /*
5199
5199
  * Copyright (c) Microsoft Corporation. All rights reserved.
5200
5200
  * Licensed under the MIT License.
@@ -5215,7 +5215,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
5215
5215
  };
5216
5216
  }
5217
5217
 
5218
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5218
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5219
5219
 
5220
5220
  /*
5221
5221
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5302,7 +5302,7 @@ class ThrottlingUtils {
5302
5302
  }
5303
5303
  }
5304
5304
 
5305
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5305
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5306
5306
 
5307
5307
  /*
5308
5308
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5333,7 +5333,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
5333
5333
  return new NetworkError(error, httpStatus, responseHeaders);
5334
5334
  }
5335
5335
 
5336
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5336
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5337
5337
 
5338
5338
  /*
5339
5339
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5481,7 +5481,7 @@ class BaseClient {
5481
5481
  }
5482
5482
  }
5483
5483
 
5484
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5484
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5485
5485
  /*
5486
5486
  * Copyright (c) Microsoft Corporation. All rights reserved.
5487
5487
  * Licensed under the MIT License.
@@ -5503,7 +5503,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
5503
5503
  return null;
5504
5504
  }
5505
5505
 
5506
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5506
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5507
5507
 
5508
5508
  /*
5509
5509
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5551,6 +5551,7 @@ class AccountEntity {
5551
5551
  tenantProfiles: new Map((this.tenantProfiles || []).map((tenantProfile) => {
5552
5552
  return [tenantProfile.tenantId, tenantProfile];
5553
5553
  })),
5554
+ dataBoundary: this.dataBoundary,
5554
5555
  };
5555
5556
  }
5556
5557
  /**
@@ -5577,6 +5578,10 @@ class AccountEntity {
5577
5578
  let clientInfo;
5578
5579
  if (accountDetails.clientInfo && base64Decode) {
5579
5580
  clientInfo = buildClientInfo(accountDetails.clientInfo, base64Decode);
5581
+ if (clientInfo.xms_tdbr) {
5582
+ account.dataBoundary =
5583
+ clientInfo.xms_tdbr === "EU" ? "EU" : "None";
5584
+ }
5580
5585
  }
5581
5586
  account.clientInfo = accountDetails.clientInfo;
5582
5587
  account.homeAccountId = accountDetails.homeAccountId;
@@ -5645,6 +5650,7 @@ class AccountEntity {
5645
5650
  account.msGraphHost = msGraphHost;
5646
5651
  // Serialize tenant profiles map into an array
5647
5652
  account.tenantProfiles = Array.from(accountInfo.tenantProfiles?.values() || []);
5653
+ account.dataBoundary = accountInfo.dataBoundary;
5648
5654
  return account;
5649
5655
  }
5650
5656
  /**
@@ -5718,7 +5724,7 @@ class AccountEntity {
5718
5724
  }
5719
5725
  }
5720
5726
 
5721
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5727
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5722
5728
  /*
5723
5729
  * Copyright (c) Microsoft Corporation. All rights reserved.
5724
5730
  * Licensed under the MIT License.
@@ -5734,7 +5740,7 @@ const consentRequired = "consent_required";
5734
5740
  const loginRequired = "login_required";
5735
5741
  const badToken = "bad_token";
5736
5742
 
5737
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5743
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5738
5744
 
5739
5745
  /*
5740
5746
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5806,7 +5812,7 @@ function createInteractionRequiredAuthError(errorCode) {
5806
5812
  return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
5807
5813
  }
5808
5814
 
5809
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5815
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5810
5816
 
5811
5817
  /*
5812
5818
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5878,7 +5884,7 @@ class ProtocolUtils {
5878
5884
  }
5879
5885
  }
5880
5886
 
5881
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5887
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5882
5888
 
5883
5889
  /*
5884
5890
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5960,7 +5966,7 @@ class PopTokenGenerator {
5960
5966
  }
5961
5967
  }
5962
5968
 
5963
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5969
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5964
5970
  /*
5965
5971
  * Copyright (c) Microsoft Corporation. All rights reserved.
5966
5972
  * Licensed under the MIT License.
@@ -5987,7 +5993,7 @@ class PopTokenGenerator {
5987
5993
  }
5988
5994
  }
5989
5995
 
5990
- /*! @azure/msal-common v15.12.0 2025-09-17 */
5996
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
5991
5997
 
5992
5998
  /*
5993
5999
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6318,7 +6324,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
6318
6324
  return baseAccount;
6319
6325
  }
6320
6326
 
6321
- /*! @azure/msal-common v15.12.0 2025-09-17 */
6327
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
6322
6328
  /*
6323
6329
  * Copyright (c) Microsoft Corporation. All rights reserved.
6324
6330
  * Licensed under the MIT License.
@@ -6336,7 +6342,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
6336
6342
  }
6337
6343
  }
6338
6344
 
6339
- /*! @azure/msal-common v15.12.0 2025-09-17 */
6345
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
6340
6346
 
6341
6347
  /*
6342
6348
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6571,7 +6577,7 @@ class AuthorizationCodeClient extends BaseClient {
6571
6577
  }
6572
6578
  }
6573
6579
 
6574
- /*! @azure/msal-common v15.12.0 2025-09-17 */
6580
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
6575
6581
 
6576
6582
  /*
6577
6583
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6780,7 +6786,7 @@ class RefreshTokenClient extends BaseClient {
6780
6786
  }
6781
6787
  }
6782
6788
 
6783
- /*! @azure/msal-common v15.12.0 2025-09-17 */
6789
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
6784
6790
 
6785
6791
  /*
6786
6792
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6878,7 +6884,7 @@ class SilentFlowClient extends BaseClient {
6878
6884
  }
6879
6885
  }
6880
6886
 
6881
- /*! @azure/msal-common v15.12.0 2025-09-17 */
6887
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
6882
6888
 
6883
6889
  /*
6884
6890
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6893,7 +6899,7 @@ const StubbedNetworkModule = {
6893
6899
  },
6894
6900
  };
6895
6901
 
6896
- /*! @azure/msal-common v15.12.0 2025-09-17 */
6902
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
6897
6903
 
6898
6904
  /*
6899
6905
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7117,7 +7123,7 @@ function extractLoginHint(account) {
7117
7123
  return account.loginHint || account.idTokenClaims?.login_hint || null;
7118
7124
  }
7119
7125
 
7120
- /*! @azure/msal-common v15.12.0 2025-09-17 */
7126
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
7121
7127
 
7122
7128
  /*
7123
7129
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7380,7 +7386,7 @@ class ServerTelemetryManager {
7380
7386
  }
7381
7387
  }
7382
7388
 
7383
- /*! @azure/msal-common v15.12.0 2025-09-17 */
7389
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
7384
7390
  /*
7385
7391
  * Copyright (c) Microsoft Corporation. All rights reserved.
7386
7392
  * Licensed under the MIT License.
@@ -7388,7 +7394,7 @@ class ServerTelemetryManager {
7388
7394
  const missingKidError = "missing_kid_error";
7389
7395
  const missingAlgError = "missing_alg_error";
7390
7396
 
7391
- /*! @azure/msal-common v15.12.0 2025-09-17 */
7397
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
7392
7398
 
7393
7399
  /*
7394
7400
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7413,7 +7419,7 @@ function createJoseHeaderError(code) {
7413
7419
  return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
7414
7420
  }
7415
7421
 
7416
- /*! @azure/msal-common v15.12.0 2025-09-17 */
7422
+ /*! @azure/msal-common v15.13.0 2025-09-30 */
7417
7423
 
7418
7424
  /*
7419
7425
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7645,7 +7651,8 @@ const PASSWORD_BANNED = "password_banned";
7645
7651
  const PASSWORD_IS_INVALID = "password_is_invalid";
7646
7652
  const INVALID_OOB_VALUE = "invalid_oob_value";
7647
7653
  const ATTRIBUTE_VALIATION_FAILED = "attribute_validation_failed";
7648
- const REGISTRATION_REQUIRED = "registration_required";
7654
+ const REGISTRATION_REQUIRED = "registration_required";
7655
+ const MFA_REQUIRED = "mfa_required";
7649
7656
 
7650
7657
  /*
7651
7658
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7689,7 +7696,9 @@ class AuthFlowErrorBase {
7689
7696
  this.errorData.subError ===
7690
7697
  INVALID_OOB_VALUE) ||
7691
7698
  (this.errorData instanceof InvalidArgumentError &&
7692
- this.errorData.errorDescription?.includes("code") === true));
7699
+ (this.errorData.errorDescription?.includes("code") ||
7700
+ this.errorData.errorDescription?.includes("challenge")) ===
7701
+ true));
7693
7702
  }
7694
7703
  isRedirectError() {
7695
7704
  return this.errorData instanceof RedirectError;
@@ -7740,11 +7749,17 @@ class AuthFlowErrorBase {
7740
7749
  this.errorData.error === INVALID_REQUEST &&
7741
7750
  this.errorData.errorCodes?.includes(50142) === true);
7742
7751
  }
7743
- isInvalidAuthMethodRegistrationInputError() {
7752
+ isInvalidInputError() {
7744
7753
  return (this.errorData instanceof CustomAuthApiError &&
7745
7754
  this.errorData.error === INVALID_REQUEST &&
7746
7755
  this.errorData.errorCodes?.includes(901001) === true);
7747
7756
  }
7757
+ isVerificationContactBlockedError() {
7758
+ return (this.errorData instanceof CustomAuthApiError &&
7759
+ this.errorData.error === INVALID_REQUEST &&
7760
+ this.errorData.errorCodes?.includes(550024) === true &&
7761
+ this.errorData.errorDescription?.includes("multi-factor authentication method is blocked") === true);
7762
+ }
7748
7763
  }
7749
7764
  class AuthActionErrorBase extends AuthFlowErrorBase {
7750
7765
  /**
@@ -7837,7 +7852,7 @@ function ensureArgumentIsJSONString(argName, argValue, correlationId) {
7837
7852
 
7838
7853
  /* eslint-disable header/header */
7839
7854
  const name = "@azure/msal-browser";
7840
- const version = "4.23.0";
7855
+ const version = "4.24.1";
7841
7856
 
7842
7857
  /*
7843
7858
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7849,6 +7864,7 @@ const GrantType = {
7849
7864
  CONTINUATION_TOKEN: "continuation_token",
7850
7865
  REDIRECT: "redirect",
7851
7866
  ATTRIBUTES: "attributes",
7867
+ MFA_OOB: "mfa_oob",
7852
7868
  };
7853
7869
  const ChallengeType = {
7854
7870
  PASSWORD: "password",
@@ -8370,6 +8386,46 @@ class SignInState extends AuthFlowActionRequiredStateBase {
8370
8386
  }
8371
8387
  }
8372
8388
 
8389
+ /*
8390
+ * Copyright (c) Microsoft Corporation. All rights reserved.
8391
+ * Licensed under the MIT License.
8392
+ */
8393
+ const SIGN_IN_CODE_SEND_RESULT_TYPE = "SignInCodeSendResult";
8394
+ const SIGN_IN_PASSWORD_REQUIRED_RESULT_TYPE = "SignInPasswordRequiredResult";
8395
+ const SIGN_IN_COMPLETED_RESULT_TYPE = "SignInCompletedResult";
8396
+ const SIGN_IN_JIT_REQUIRED_RESULT_TYPE = "SignInJitRequiredResult";
8397
+ const SIGN_IN_MFA_REQUIRED_RESULT_TYPE = "SignInMfaRequiredResult";
8398
+ function createSignInCompleteResult(input) {
8399
+ return {
8400
+ type: SIGN_IN_COMPLETED_RESULT_TYPE,
8401
+ ...input,
8402
+ };
8403
+ }
8404
+ function createSignInPasswordRequiredResult(input) {
8405
+ return {
8406
+ type: SIGN_IN_PASSWORD_REQUIRED_RESULT_TYPE,
8407
+ ...input,
8408
+ };
8409
+ }
8410
+ function createSignInCodeSendResult(input) {
8411
+ return {
8412
+ type: SIGN_IN_CODE_SEND_RESULT_TYPE,
8413
+ ...input,
8414
+ };
8415
+ }
8416
+ function createSignInJitRequiredResult(input) {
8417
+ return {
8418
+ type: SIGN_IN_JIT_REQUIRED_RESULT_TYPE,
8419
+ ...input,
8420
+ };
8421
+ }
8422
+ function createSignInMfaRequiredResult(input) {
8423
+ return {
8424
+ type: SIGN_IN_MFA_REQUIRED_RESULT_TYPE,
8425
+ ...input,
8426
+ };
8427
+ }
8428
+
8373
8429
  /*
8374
8430
  * Copyright (c) Microsoft Corporation. All rights reserved.
8375
8431
  * Licensed under the MIT License.
@@ -8398,10 +8454,18 @@ class SignInCodeRequiredState extends SignInState {
8398
8454
  claims: this.stateParameters.claims,
8399
8455
  };
8400
8456
  this.stateParameters.logger.verbose("Submitting code for sign-in.", this.stateParameters.correlationId);
8401
- const completedResult = await this.stateParameters.signInClient.submitCode(submitCodeParams);
8457
+ const submitCodeResult = await this.stateParameters.signInClient.submitCode(submitCodeParams);
8402
8458
  this.stateParameters.logger.verbose("Code submitted for sign-in.", this.stateParameters.correlationId);
8403
- const accountInfo = new CustomAuthAccountData(completedResult.authenticationResult.account, this.stateParameters.config, this.stateParameters.cacheClient, this.stateParameters.logger, this.stateParameters.correlationId);
8404
- return new SignInSubmitCodeResult(new SignInCompletedState(), accountInfo);
8459
+ if (submitCodeResult.type === SIGN_IN_COMPLETED_RESULT_TYPE) {
8460
+ const accountInfo = new CustomAuthAccountData(submitCodeResult.authenticationResult.account, this.stateParameters.config, this.stateParameters.cacheClient, this.stateParameters.logger, this.stateParameters.correlationId);
8461
+ return new SignInSubmitCodeResult(new SignInCompletedState(), accountInfo);
8462
+ }
8463
+ else {
8464
+ // Unexpected result type
8465
+ const result = submitCodeResult;
8466
+ const error = new Error(`Unexpected result type: ${result.type}`);
8467
+ return SignInSubmitCodeResult.createWithError(error);
8468
+ }
8405
8469
  }
8406
8470
  catch (error) {
8407
8471
  this.stateParameters.logger.errorPii(`Failed to submit code for sign-in. Error: ${error}.`, this.stateParameters.correlationId);
@@ -8462,15 +8526,8 @@ class SignInCodeRequiredState extends SignInState {
8462
8526
  * Licensed under the MIT License.
8463
8527
  */
8464
8528
  // Result type constants
8465
- const JIT_GET_AUTH_METHODS_RESULT_TYPE = "JitGetAuthMethodsResult";
8466
8529
  const JIT_VERIFICATION_REQUIRED_RESULT_TYPE = "JitVerificationRequiredResult";
8467
8530
  const JIT_COMPLETED_RESULT_TYPE = "JitCompletedResult";
8468
- function createJitGetAuthMethodsResult(input) {
8469
- return {
8470
- type: JIT_GET_AUTH_METHODS_RESULT_TYPE,
8471
- ...input,
8472
- };
8473
- }
8474
8531
  function createJitVerificationRequiredResult(input) {
8475
8532
  return {
8476
8533
  type: JIT_VERIFICATION_REQUIRED_RESULT_TYPE,
@@ -8497,7 +8554,14 @@ class AuthMethodRegistrationChallengeMethodError extends AuthActionErrorBase {
8497
8554
  * @returns true if the input is incorrect, false otherwise.
8498
8555
  */
8499
8556
  isInvalidInput() {
8500
- return this.isInvalidAuthMethodRegistrationInputError();
8557
+ return this.isInvalidInputError();
8558
+ }
8559
+ /**
8560
+ * Checks if the error is due to the verification contact (e.g., phone number or email) being blocked. Consider using a different email/phone number or a different authentication method.
8561
+ * @returns true if the error is due to the verification contact being blocked, false otherwise.
8562
+ */
8563
+ isVerificationContactBlocked() {
8564
+ return this.isVerificationContactBlockedError();
8501
8565
  }
8502
8566
  }
8503
8567
  /**
@@ -8798,39 +8862,6 @@ class SignInSubmitPasswordResult extends AuthFlowResultBase {
8798
8862
  }
8799
8863
  }
8800
8864
 
8801
- /*
8802
- * Copyright (c) Microsoft Corporation. All rights reserved.
8803
- * Licensed under the MIT License.
8804
- */
8805
- const SIGN_IN_CODE_SEND_RESULT_TYPE = "SignInCodeSendResult";
8806
- const SIGN_IN_PASSWORD_REQUIRED_RESULT_TYPE = "SignInPasswordRequiredResult";
8807
- const SIGN_IN_COMPLETED_RESULT_TYPE = "SignInCompletedResult";
8808
- const SIGN_IN_JIT_REQUIRED_RESULT_TYPE = "SignInJitRequiredResult";
8809
- function createSignInCompleteResult(input) {
8810
- return {
8811
- type: SIGN_IN_COMPLETED_RESULT_TYPE,
8812
- ...input,
8813
- };
8814
- }
8815
- function createSignInPasswordRequiredResult(input) {
8816
- return {
8817
- type: SIGN_IN_PASSWORD_REQUIRED_RESULT_TYPE,
8818
- ...input,
8819
- };
8820
- }
8821
- function createSignInCodeSendResult(input) {
8822
- return {
8823
- type: SIGN_IN_CODE_SEND_RESULT_TYPE,
8824
- ...input,
8825
- };
8826
- }
8827
- function createSignInJitRequiredResult(input) {
8828
- return {
8829
- type: SIGN_IN_JIT_REQUIRED_RESULT_TYPE,
8830
- ...input,
8831
- };
8832
- }
8833
-
8834
8865
  /*
8835
8866
  * Copyright (c) Microsoft Corporation. All rights reserved.
8836
8867
  * Licensed under the MIT License.
@@ -11007,7 +11038,7 @@ class CustomAuthInteractionClientBase extends StandardInteractionClient {
11007
11038
  async handleTokenResponse(tokenResponse, requestScopes, correlationId) {
11008
11039
  this.logger.verbose("Processing token response.", correlationId);
11009
11040
  const requestTimestamp = Math.round(new Date().getTime() / 1000.0);
11010
- // Save tokens and create authentication result 44s
11041
+ // Save tokens and create authentication result
11011
11042
  const result = await this.tokenResponseHandler.handleServerTokenResponse(tokenResponse, this.customAuthAuthority, requestTimestamp, {
11012
11043
  authority: this.customAuthAuthority.canonicalAuthority,
11013
11044
  correlationId: tokenResponse.correlation_id ?? correlationId,
@@ -11059,9 +11090,8 @@ const PASSWORD_RESET_SUBMIT_PASSWORD = 100043;
11059
11090
  const PASSWORD_RESET_RESEND_CODE = 100044;
11060
11091
  const ACCOUNT_GET_ACCESS_TOKEN = 100063;
11061
11092
  // JIT (Just-In-Time) Auth Method Registration
11062
- const JIT_GET_AUTH_METHODS = 100081;
11063
- const JIT_CHALLENGE_AUTH_METHOD = 100082;
11064
- const JIT_SUBMIT_CHALLENGE = 100083;
11093
+ const JIT_CHALLENGE_AUTH_METHOD = 100081;
11094
+ const JIT_SUBMIT_CHALLENGE = 100082;
11065
11095
 
11066
11096
  /*
11067
11097
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -11129,6 +11159,7 @@ class SignInClient extends CustomAuthInteractionClientBase {
11129
11159
  const request = {
11130
11160
  continuation_token: parameters.continuationToken,
11131
11161
  oob: parameters.code,
11162
+ grant_type: GrantType.OOB,
11132
11163
  scope: scopes.join(" "),
11133
11164
  correlationId: parameters.correlationId,
11134
11165
  telemetryManager: telemetryManager,
@@ -11136,9 +11167,7 @@ class SignInClient extends CustomAuthInteractionClientBase {
11136
11167
  claims: parameters.claims,
11137
11168
  }),
11138
11169
  };
11139
- const result = this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokensWithOob(request), scopes, parameters.correlationId, telemetryManager, false // Don't handle JIT for code submission
11140
- );
11141
- return result;
11170
+ return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokensWithOob(request), scopes, parameters.correlationId, telemetryManager);
11142
11171
  }
11143
11172
  /**
11144
11173
  * Submits the password for sign-in flow.
@@ -11160,8 +11189,7 @@ class SignInClient extends CustomAuthInteractionClientBase {
11160
11189
  claims: parameters.claims,
11161
11190
  }),
11162
11191
  };
11163
- return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokensWithPassword(request), scopes, parameters.correlationId, telemetryManager, true // Handle JIT for password submission
11164
- );
11192
+ return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokensWithPassword(request), scopes, parameters.correlationId, telemetryManager);
11165
11193
  }
11166
11194
  /**
11167
11195
  * Signs in with continuation token.
@@ -11184,18 +11212,17 @@ class SignInClient extends CustomAuthInteractionClientBase {
11184
11212
  }),
11185
11213
  };
11186
11214
  // Call token endpoint.
11187
- return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokenWithContinuationToken(request), scopes, parameters.correlationId, telemetryManager, true // Handle JIT for continuation token sign-in (e.g., after sign-up or SSPR)
11188
- );
11215
+ return this.performTokenRequest(() => this.customAuthApiClient.signInApi.requestTokenWithContinuationToken(request), scopes, parameters.correlationId, telemetryManager);
11189
11216
  }
11190
11217
  /**
11191
11218
  * Common method to handle token endpoint calls and create sign-in results.
11192
11219
  * @param tokenEndpointCaller Function that calls the specific token endpoint
11193
11220
  * @param scopes Scopes for the token request
11194
11221
  * @param correlationId Correlation ID for logging and result
11195
- * @param handleJit Whether to handle JIT required errors or throw them
11196
- * @returns SignInCompletedResult with authentication result
11222
+ * @param telemetryManager Telemetry manager for telemetry logging
11223
+ * @returns SignInCompletedResult | SignInJitRequiredResult | SignInMfaRequiredResult with authentication result
11197
11224
  */
11198
- async performTokenRequest(tokenEndpointCaller, scopes, correlationId, telemetryManager, handleJit) {
11225
+ async performTokenRequest(tokenEndpointCaller, scopes, correlationId, telemetryManager) {
11199
11226
  this.logger.verbose("Calling token endpoint for sign in.", correlationId);
11200
11227
  try {
11201
11228
  const tokenResponse = await tokenEndpointCaller();
@@ -11207,22 +11234,13 @@ class SignInClient extends CustomAuthInteractionClientBase {
11207
11234
  });
11208
11235
  }
11209
11236
  catch (error) {
11210
- if (handleJit &&
11211
- error instanceof CustomAuthApiError &&
11237
+ if (error instanceof CustomAuthApiError &&
11212
11238
  error.subError === REGISTRATION_REQUIRED) {
11213
- this.logger.verbose("Auth method registration required for sign in.", correlationId);
11214
- // Call register introspect endpoint to get available authentication methods
11215
- const introspectRequest = {
11216
- continuation_token: error.continuationToken ?? "",
11217
- correlationId: error.correlationId ?? correlationId,
11218
- telemetryManager,
11219
- };
11220
- const introspectResponse = await this.customAuthApiClient.registerApi.introspect(introspectRequest);
11221
- return createSignInJitRequiredResult({
11222
- correlationId: introspectResponse.correlation_id ?? correlationId,
11223
- continuationToken: introspectResponse.continuation_token ?? "",
11224
- authMethods: introspectResponse.methods,
11225
- });
11239
+ return this.handleJitRequiredError(error, telemetryManager, correlationId);
11240
+ }
11241
+ else if (error instanceof CustomAuthApiError &&
11242
+ error.subError === MFA_REQUIRED) {
11243
+ return this.handleMfaRequiredError(error, telemetryManager, correlationId);
11226
11244
  }
11227
11245
  // Re-throw any other errors or JIT errors when handleJit is false
11228
11246
  throw error;
@@ -11266,6 +11284,40 @@ class SignInClient extends CustomAuthInteractionClientBase {
11266
11284
  throw new UnexpectedError(`Unsupported sign-in scenario '${scenario}'.`, correlationId);
11267
11285
  }
11268
11286
  }
11287
+ async handleJitRequiredError(error, telemetryManager, correlationId) {
11288
+ this.logger.verbose("Auth method registration required for sign in.", correlationId);
11289
+ // Call register introspect endpoint to get available authentication methods
11290
+ const introspectRequest = {
11291
+ continuation_token: error.continuationToken ?? "",
11292
+ correlationId: error.correlationId ?? correlationId,
11293
+ telemetryManager,
11294
+ };
11295
+ this.logger.verbose("Calling introspect endpoint for getting auth methods.", correlationId);
11296
+ const introspectResponse = await this.customAuthApiClient.registerApi.introspect(introspectRequest);
11297
+ this.logger.verbose("Introspect endpoint called for getting auth methods.", introspectResponse.correlation_id ?? correlationId);
11298
+ return createSignInJitRequiredResult({
11299
+ correlationId: introspectResponse.correlation_id ?? correlationId,
11300
+ continuationToken: introspectResponse.continuation_token ?? "",
11301
+ authMethods: introspectResponse.methods,
11302
+ });
11303
+ }
11304
+ async handleMfaRequiredError(error, telemetryManager, correlationId) {
11305
+ this.logger.verbose("MFA required for sign in.", correlationId);
11306
+ // Call sign-in introspect endpoint to get available MFA methods
11307
+ const introspectRequest = {
11308
+ continuation_token: error.continuationToken ?? "",
11309
+ correlationId: error.correlationId ?? correlationId,
11310
+ telemetryManager,
11311
+ };
11312
+ this.logger.verbose("Calling introspect endpoint for MFA auth methods.", correlationId);
11313
+ const introspectResponse = await this.customAuthApiClient.signInApi.requestAuthMethods(introspectRequest);
11314
+ this.logger.verbose("Introspect endpoint called for MFA auth methods.", introspectResponse.correlation_id ?? correlationId);
11315
+ return createSignInMfaRequiredResult({
11316
+ correlationId: introspectResponse.correlation_id ?? correlationId,
11317
+ continuationToken: introspectResponse.continuation_token ?? "",
11318
+ authMethods: introspectResponse.methods,
11319
+ });
11320
+ }
11269
11321
  }
11270
11322
 
11271
11323
  /*
@@ -11660,6 +11712,7 @@ class ResetPasswordStartResult extends AuthFlowResultBase {
11660
11712
  const SIGNIN_INITIATE = "/oauth2/v2.0/initiate";
11661
11713
  const SIGNIN_CHALLENGE = "/oauth2/v2.0/challenge";
11662
11714
  const SIGNIN_TOKEN = "/oauth2/v2.0/token";
11715
+ const SIGNIN_INTROSPECT = "/oauth2/v2.0/introspect";
11663
11716
  const SIGNUP_START = "/signup/v1.0/start";
11664
11717
  const SIGNUP_CHALLENGE = "/signup/v1.0/challenge";
11665
11718
  const SIGNUP_CONTINUE = "/signup/v1.0/continue";
@@ -12331,7 +12384,7 @@ class SignInApiClient extends BaseApiClient {
12331
12384
  continuation_token: params.continuation_token,
12332
12385
  scope: params.scope,
12333
12386
  oob: params.oob,
12334
- grant_type: GrantType.OOB,
12387
+ grant_type: params.grant_type,
12335
12388
  ...(params.claims && { claims: params.claims }),
12336
12389
  }, params.telemetryManager, params.correlationId);
12337
12390
  }
@@ -12345,6 +12398,17 @@ class SignInApiClient extends BaseApiClient {
12345
12398
  ...(params.username && { username: params.username }),
12346
12399
  }, params.telemetryManager, params.correlationId);
12347
12400
  }
12401
+ /**
12402
+ * Requests available authentication methods for MFA
12403
+ * @param continuationToken Token from previous response
12404
+ */
12405
+ async requestAuthMethods(params) {
12406
+ const result = await this.request(SIGNIN_INTROSPECT, {
12407
+ continuation_token: params.continuation_token,
12408
+ }, params.telemetryManager, params.correlationId);
12409
+ this.ensureContinuationTokenIsValid(result.continuation_token, params.correlationId);
12410
+ return result;
12411
+ }
12348
12412
  async requestTokens(requestData, telemetryManager, correlationId) {
12349
12413
  // The client_info parameter is required for MSAL to return the uid and utid in the response.
12350
12414
  requestData.client_info = true;
@@ -12669,28 +12733,6 @@ class ResetPasswordClient extends CustomAuthInteractionClientBase {
12669
12733
  * JIT client for handling just-in-time authentication method registration flows.
12670
12734
  */
12671
12735
  class JitClient extends CustomAuthInteractionClientBase {
12672
- /**
12673
- * Gets available authentication methods for JIT registration.
12674
- * @param parameters The parameters for getting auth methods.
12675
- * @returns Promise that resolves to JitGetAuthMethodsResult.
12676
- */
12677
- async getAuthMethods(parameters) {
12678
- const apiId = JIT_GET_AUTH_METHODS;
12679
- const telemetryManager = this.initializeServerTelemetryManager(apiId);
12680
- this.logger.verbose("Calling introspect endpoint for getting auth methods.", parameters.correlationId);
12681
- const request = {
12682
- continuation_token: parameters.continuationToken,
12683
- correlationId: parameters.correlationId,
12684
- telemetryManager: telemetryManager,
12685
- };
12686
- const introspectResponse = await this.customAuthApiClient.registerApi.introspect(request);
12687
- this.logger.verbose("Introspect endpoint called for getting auth methods.", parameters.correlationId);
12688
- return createJitGetAuthMethodsResult({
12689
- correlationId: introspectResponse.correlation_id,
12690
- continuationToken: introspectResponse.continuation_token,
12691
- authMethods: introspectResponse.methods,
12692
- });
12693
- }
12694
12736
  /**
12695
12737
  * Challenges an authentication method for JIT registration.
12696
12738
  * @param parameters The parameters for challenging the auth method.
@@ -12771,7 +12813,7 @@ class JitClient extends CustomAuthInteractionClientBase {
12771
12813
  }),
12772
12814
  };
12773
12815
  const tokenResponse = await this.customAuthApiClient.signInApi.requestTokenWithContinuationToken(tokenRequest);
12774
- const authResult = await this.handleTokenResponse(tokenResponse, scopes, continueResponse.correlation_id);
12816
+ const authResult = await this.handleTokenResponse(tokenResponse, scopes, tokenResponse.correlation_id || continueResponse.correlation_id);
12775
12817
  return createJitCompletedResult({
12776
12818
  correlationId: continueResponse.correlation_id,
12777
12819
  authenticationResult: authResult,
@@ -15528,6 +15570,7 @@ class InteractionHandler {
15528
15570
  * Licensed under the MIT License.
15529
15571
  */
15530
15572
  const contentError = "ContentError";
15573
+ const pageException = "PageException";
15531
15574
  const userSwitch = "user_switch";
15532
15575
 
15533
15576
  /*
@@ -15574,6 +15617,7 @@ function isFatalNativeAuthError(error) {
15574
15617
  }
15575
15618
  switch (error.errorCode) {
15576
15619
  case contentError:
15620
+ case pageException:
15577
15621
  return true;
15578
15622
  default:
15579
15623
  return false;
@@ -16233,6 +16277,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16233
16277
  case PromptValue.NONE:
16234
16278
  case PromptValue.CONSENT:
16235
16279
  case PromptValue.LOGIN:
16280
+ case PromptValue.SELECT_ACCOUNT:
16236
16281
  this.logger.trace("initializeNativeRequest: prompt is compatible with native flow");
16237
16282
  return prompt;
16238
16283
  default:
@@ -18892,25 +18937,12 @@ function collectInstanceStats(currentClientId, performanceEvent, logger) {
18892
18937
  * Copyright (c) Microsoft Corporation. All rights reserved.
18893
18938
  * Licensed under the MIT License.
18894
18939
  */
18895
- function getAccountType(account) {
18896
- const idTokenClaims = account?.idTokenClaims;
18897
- if (idTokenClaims?.tfp || idTokenClaims?.acr) {
18898
- return "B2C";
18899
- }
18900
- if (!idTokenClaims?.tid) {
18901
- return undefined;
18902
- }
18903
- else if (idTokenClaims?.tid === "9188040d-6c67-4c5b-b112-36a304b66dad") {
18904
- return "MSA";
18905
- }
18906
- return "AAD";
18907
- }
18908
- function preflightCheck(initialized, performanceEvent) {
18940
+ function preflightCheck(initialized, performanceEvent, account) {
18909
18941
  try {
18910
18942
  preflightCheck$1(initialized);
18911
18943
  }
18912
18944
  catch (e) {
18913
- performanceEvent.end({ success: false }, e);
18945
+ performanceEvent.end({ success: false }, e, account);
18914
18946
  throw e;
18915
18947
  }
18916
18948
  }
@@ -19141,8 +19173,7 @@ class StandardController {
19141
19173
  }
19142
19174
  rootMeasurement.end({
19143
19175
  success: true,
19144
- accountType: getAccountType(result.account),
19145
- });
19176
+ }, undefined, result.account);
19146
19177
  }
19147
19178
  else {
19148
19179
  /*
@@ -19150,7 +19181,7 @@ class StandardController {
19150
19181
  * is empty and the error code is missing.
19151
19182
  */
19152
19183
  if (rootMeasurement.event.errorCode) {
19153
- rootMeasurement.end({ success: false });
19184
+ rootMeasurement.end({ success: false }, undefined);
19154
19185
  }
19155
19186
  else {
19156
19187
  rootMeasurement.discard();
@@ -19191,7 +19222,6 @@ class StandardController {
19191
19222
  this.logger.verbose("acquireTokenRedirect called", correlationId);
19192
19223
  const atrMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.AcquireTokenPreRedirect, correlationId);
19193
19224
  atrMeasurement.add({
19194
- accountType: getAccountType(request.account),
19195
19225
  scenarioId: request.scenarioId,
19196
19226
  });
19197
19227
  // Override on request only if set, as onRedirectNavigate field is deprecated
@@ -19205,8 +19235,7 @@ class StandardController {
19205
19235
  navigateCallbackResult: navigate !== false,
19206
19236
  });
19207
19237
  atrMeasurement.event =
19208
- atrMeasurement.end({ success: true }) ||
19209
- atrMeasurement.event;
19238
+ atrMeasurement.end({ success: true }, undefined, request.account) || atrMeasurement.event;
19210
19239
  return navigate;
19211
19240
  };
19212
19241
  }
@@ -19220,8 +19249,7 @@ class StandardController {
19220
19249
  navigateCallbackResult: navigate !== false,
19221
19250
  });
19222
19251
  atrMeasurement.event =
19223
- atrMeasurement.end({ success: true }) ||
19224
- atrMeasurement.event;
19252
+ atrMeasurement.end({ success: true }, undefined, request.account) || atrMeasurement.event;
19225
19253
  return navigate;
19226
19254
  };
19227
19255
  }
@@ -19276,10 +19304,10 @@ class StandardController {
19276
19304
  if (atrMeasurement.event.status === 2) {
19277
19305
  this.performanceClient
19278
19306
  .startMeasurement(PerformanceEvents.AcquireTokenRedirect, correlationId)
19279
- .end({ success: false }, e);
19307
+ .end({ success: false }, e, request.account);
19280
19308
  }
19281
19309
  else {
19282
- atrMeasurement.end({ success: false }, e);
19310
+ atrMeasurement.end({ success: false }, e, request.account);
19283
19311
  }
19284
19312
  if (isLoggedIn) {
19285
19313
  this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, InteractionType.Redirect, null, e);
@@ -19304,11 +19332,10 @@ class StandardController {
19304
19332
  const atPopupMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.AcquireTokenPopup, correlationId);
19305
19333
  atPopupMeasurement.add({
19306
19334
  scenarioId: request.scenarioId,
19307
- accountType: getAccountType(request.account),
19308
19335
  });
19309
19336
  try {
19310
19337
  this.logger.verbose("acquireTokenPopup called", correlationId);
19311
- preflightCheck(this.initialized, atPopupMeasurement);
19338
+ preflightCheck(this.initialized, atPopupMeasurement, request.account);
19312
19339
  this.browserStorage.setInteractionInProgress(true, INTERACTION_TYPE.SIGNIN);
19313
19340
  }
19314
19341
  catch (e) {
@@ -19336,8 +19363,7 @@ class StandardController {
19336
19363
  .then((response) => {
19337
19364
  atPopupMeasurement.end({
19338
19365
  success: true,
19339
- accountType: getAccountType(response.account),
19340
- });
19366
+ }, undefined, response.account);
19341
19367
  return response;
19342
19368
  })
19343
19369
  .catch((e) => {
@@ -19379,8 +19405,7 @@ class StandardController {
19379
19405
  success: true,
19380
19406
  accessTokenSize: result.accessToken.length,
19381
19407
  idTokenSize: result.idToken.length,
19382
- accountType: getAccountType(result.account),
19383
- });
19408
+ }, undefined, result.account);
19384
19409
  return result;
19385
19410
  })
19386
19411
  .catch((e) => {
@@ -19392,7 +19417,7 @@ class StandardController {
19392
19417
  }
19393
19418
  atPopupMeasurement.end({
19394
19419
  success: false,
19395
- }, e);
19420
+ }, e, request.account);
19396
19421
  // Since this function is syncronous we need to reject
19397
19422
  return Promise.reject(e);
19398
19423
  })
@@ -19442,9 +19467,8 @@ class StandardController {
19442
19467
  this.ssoSilentMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.SsoSilent, correlationId);
19443
19468
  this.ssoSilentMeasurement?.add({
19444
19469
  scenarioId: request.scenarioId,
19445
- accountType: getAccountType(request.account),
19446
19470
  });
19447
- preflightCheck(this.initialized, this.ssoSilentMeasurement);
19471
+ preflightCheck(this.initialized, this.ssoSilentMeasurement, request.account);
19448
19472
  this.ssoSilentMeasurement?.increment({
19449
19473
  visibilityChangeCount: 0,
19450
19474
  });
@@ -19481,15 +19505,14 @@ class StandardController {
19481
19505
  success: true,
19482
19506
  accessTokenSize: response.accessToken.length,
19483
19507
  idTokenSize: response.idToken.length,
19484
- accountType: getAccountType(response.account),
19485
- });
19508
+ }, undefined, response.account);
19486
19509
  return response;
19487
19510
  })
19488
19511
  .catch((e) => {
19489
19512
  this.eventHandler.emitEvent(EventType.SSO_SILENT_FAILURE, InteractionType.Silent, null, e);
19490
19513
  this.ssoSilentMeasurement?.end({
19491
19514
  success: false,
19492
- }, e);
19515
+ }, e, request.account);
19493
19516
  throw e;
19494
19517
  })
19495
19518
  .finally(() => {
@@ -19534,8 +19557,7 @@ class StandardController {
19534
19557
  success: true,
19535
19558
  accessTokenSize: result.accessToken.length,
19536
19559
  idTokenSize: result.idToken.length,
19537
- accountType: getAccountType(result.account),
19538
- });
19560
+ }, undefined, result.account);
19539
19561
  return result;
19540
19562
  })
19541
19563
  .catch((error) => {
@@ -19575,9 +19597,8 @@ class StandardController {
19575
19597
  throw e;
19576
19598
  });
19577
19599
  atbcMeasurement.end({
19578
- accountType: getAccountType(result.account),
19579
19600
  success: true,
19580
- });
19601
+ }, undefined, result.account);
19581
19602
  return result;
19582
19603
  }
19583
19604
  else {
@@ -19859,6 +19880,7 @@ class StandardController {
19859
19880
  case PromptValue.NONE:
19860
19881
  case PromptValue.CONSENT:
19861
19882
  case PromptValue.LOGIN:
19883
+ case PromptValue.SELECT_ACCOUNT:
19862
19884
  this.logger.trace("canUsePlatformBroker: prompt is compatible with platform broker flow");
19863
19885
  break;
19864
19886
  default:
@@ -20101,13 +20123,12 @@ class StandardController {
20101
20123
  cacheLookupPolicy: request.cacheLookupPolicy,
20102
20124
  scenarioId: request.scenarioId,
20103
20125
  });
20104
- preflightCheck(this.initialized, atsMeasurement);
20126
+ preflightCheck(this.initialized, atsMeasurement, request.account);
20105
20127
  this.logger.verbose("acquireTokenSilent called", correlationId);
20106
20128
  const account = request.account || this.getActiveAccount();
20107
20129
  if (!account) {
20108
20130
  throw createBrowserAuthError(noAccountError);
20109
20131
  }
20110
- atsMeasurement.add({ accountType: getAccountType(account) });
20111
20132
  return this.acquireTokenSilentDeduped(request, account, correlationId)
20112
20133
  .then((result) => {
20113
20134
  atsMeasurement.end({
@@ -20115,7 +20136,7 @@ class StandardController {
20115
20136
  fromCache: result.fromCache,
20116
20137
  accessTokenSize: result.accessToken.length,
20117
20138
  idTokenSize: result.idToken.length,
20118
- });
20139
+ }, undefined, result.account);
20119
20140
  return {
20120
20141
  ...result,
20121
20142
  state: request.state,
@@ -20129,7 +20150,7 @@ class StandardController {
20129
20150
  }
20130
20151
  atsMeasurement.end({
20131
20152
  success: false,
20132
- }, error);
20153
+ }, error, account);
20133
20154
  throw error;
20134
20155
  });
20135
20156
  }
@@ -20242,11 +20263,9 @@ class StandardController {
20242
20263
  return result
20243
20264
  .then((response) => {
20244
20265
  this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, InteractionType.Silent, response);
20245
- if (request.correlationId) {
20246
- this.performanceClient.addFields({
20247
- fromCache: response.fromCache,
20248
- }, request.correlationId);
20249
- }
20266
+ this.performanceClient.addFields({
20267
+ fromCache: response.fromCache,
20268
+ }, request.correlationId);
20250
20269
  return response;
20251
20270
  })
20252
20271
  .catch((tokenRenewalError) => {