@azure/msal-browser 4.26.0 → 4.26.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (391) hide show
  1. package/dist/app/IPublicClientApplication.mjs +1 -1
  2. package/dist/app/PublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientNext.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  5. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  8. package/dist/cache/AccountManager.mjs +1 -1
  9. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  10. package/dist/cache/BrowserCacheManager.mjs +1 -1
  11. package/dist/cache/CacheHelpers.mjs +1 -1
  12. package/dist/cache/CacheKeys.mjs +1 -1
  13. package/dist/cache/CookieStorage.mjs +1 -1
  14. package/dist/cache/DatabaseStorage.mjs +1 -1
  15. package/dist/cache/EncryptedData.mjs +1 -1
  16. package/dist/cache/LocalStorage.mjs +1 -1
  17. package/dist/cache/MemoryStorage.mjs +1 -1
  18. package/dist/cache/SessionStorage.mjs +1 -1
  19. package/dist/cache/TokenCache.mjs +1 -1
  20. package/dist/config/Configuration.mjs +1 -1
  21. package/dist/controllers/ControllerFactory.mjs +1 -1
  22. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  23. package/dist/controllers/StandardController.mjs +1 -1
  24. package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
  25. package/dist/crypto/BrowserCrypto.mjs +1 -1
  26. package/dist/crypto/CryptoOps.mjs +1 -1
  27. package/dist/crypto/PkceGenerator.mjs +1 -1
  28. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  29. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  30. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  31. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  32. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  33. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  34. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  35. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  36. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
  37. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  38. package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
  39. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  40. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  41. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  42. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  43. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  44. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  45. package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
  46. package/dist/custom-auth-path/config/Configuration.mjs +1 -1
  47. package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
  48. package/dist/custom-auth-path/controllers/StandardController.mjs +1 -1
  49. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  50. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  51. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  52. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  53. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  54. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  55. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  56. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  57. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  58. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  59. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  60. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  61. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  62. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  63. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  64. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -4
  65. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs.map +1 -1
  66. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  67. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  68. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -3
  69. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs.map +1 -1
  70. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  71. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  72. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  73. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  74. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +3 -10
  75. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs.map +1 -1
  76. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  77. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  78. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  79. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -3
  80. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs.map +1 -1
  81. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  82. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  83. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -3
  84. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs.map +1 -1
  85. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  87. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  88. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -7
  90. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs.map +1 -1
  91. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  93. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  96. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  98. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  100. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  102. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  106. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  108. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  109. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  153. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  154. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -3
  155. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs.map +1 -1
  156. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  157. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  158. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -3
  159. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs.map +1 -1
  160. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  161. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  162. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -3
  163. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs.map +1 -1
  164. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  165. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  166. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  167. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  168. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  169. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  170. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  171. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  172. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  173. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  174. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  175. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  176. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  177. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  178. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  179. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  180. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  181. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  182. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  183. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  184. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  185. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  186. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  187. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  188. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  189. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  190. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  191. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  192. package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
  193. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  194. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  195. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  196. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  197. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  198. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  199. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts +1 -1
  200. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
  201. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +20 -4
  202. package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
  203. package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
  204. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +4 -2
  205. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
  206. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  207. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  208. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
  209. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +19 -3
  210. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
  211. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  212. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.d.ts +3 -1
  213. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  214. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +8 -7
  215. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs.map +1 -1
  216. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  217. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +2 -1
  218. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs.map +1 -1
  219. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  220. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  221. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  222. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  223. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  224. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  225. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  226. package/dist/custom-auth-path/protocol/Authorize.mjs +3 -1
  227. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  228. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  229. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  230. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  231. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  232. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  233. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  234. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  235. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  236. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  237. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  238. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  239. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  240. package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  241. package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  242. package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  243. package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  244. package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  245. package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  246. package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  247. package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  248. package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  249. package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  250. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  251. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  252. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  253. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  254. package/dist/encode/Base64Decode.mjs +1 -1
  255. package/dist/encode/Base64Encode.mjs +1 -1
  256. package/dist/error/BrowserAuthError.mjs +1 -1
  257. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  258. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  259. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  260. package/dist/error/NativeAuthError.mjs +1 -1
  261. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  262. package/dist/error/NestedAppAuthError.mjs +1 -1
  263. package/dist/event/EventHandler.mjs +1 -1
  264. package/dist/event/EventMessage.mjs +1 -1
  265. package/dist/event/EventType.mjs +1 -1
  266. package/dist/index.mjs +1 -1
  267. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  268. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  269. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  270. package/dist/interaction_client/PopupClient.d.ts +1 -1
  271. package/dist/interaction_client/PopupClient.d.ts.map +1 -1
  272. package/dist/interaction_client/PopupClient.mjs +20 -4
  273. package/dist/interaction_client/PopupClient.mjs.map +1 -1
  274. package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
  275. package/dist/interaction_client/RedirectClient.mjs +4 -2
  276. package/dist/interaction_client/RedirectClient.mjs.map +1 -1
  277. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  278. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  279. package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
  280. package/dist/interaction_client/SilentIframeClient.mjs +19 -3
  281. package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
  282. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  283. package/dist/interaction_client/StandardInteractionClient.d.ts +3 -1
  284. package/dist/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  285. package/dist/interaction_client/StandardInteractionClient.mjs +8 -7
  286. package/dist/interaction_client/StandardInteractionClient.mjs.map +1 -1
  287. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  288. package/dist/interaction_handler/SilentHandler.mjs +2 -1
  289. package/dist/interaction_handler/SilentHandler.mjs.map +1 -1
  290. package/dist/naa/BridgeError.mjs +1 -1
  291. package/dist/naa/BridgeProxy.mjs +1 -1
  292. package/dist/naa/BridgeStatusCode.mjs +1 -1
  293. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  294. package/dist/navigation/NavigationClient.mjs +1 -1
  295. package/dist/network/FetchClient.mjs +1 -1
  296. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  297. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  298. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  299. package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
  300. package/dist/packageMetadata.d.ts +1 -1
  301. package/dist/packageMetadata.mjs +2 -2
  302. package/dist/protocol/Authorize.d.ts.map +1 -1
  303. package/dist/protocol/Authorize.mjs +3 -1
  304. package/dist/protocol/Authorize.mjs.map +1 -1
  305. package/dist/request/RequestHelpers.mjs +1 -1
  306. package/dist/response/ResponseHandler.mjs +1 -1
  307. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  308. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  309. package/dist/utils/BrowserConstants.mjs +1 -1
  310. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  311. package/dist/utils/BrowserUtils.mjs +1 -1
  312. package/dist/utils/Helpers.mjs +1 -1
  313. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  314. package/lib/custom-auth-path/msal-custom-auth.cjs +119 -107
  315. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  316. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  317. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  318. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  319. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  320. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  321. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  322. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  323. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  324. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  325. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  326. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  327. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  328. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  329. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  330. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  331. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  332. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  333. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  334. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  335. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts +1 -1
  336. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
  337. package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
  338. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  339. package/lib/custom-auth-path/types/interaction_client/StandardInteractionClient.d.ts +3 -1
  340. package/lib/custom-auth-path/types/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  341. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  342. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  343. package/lib/msal-browser.cjs +124 -79
  344. package/lib/msal-browser.cjs.map +1 -1
  345. package/lib/msal-browser.js +124 -79
  346. package/lib/msal-browser.js.map +1 -1
  347. package/lib/msal-browser.min.js +66 -66
  348. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  349. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  350. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  351. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  352. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  353. package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  354. package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  355. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  356. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  357. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  358. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  359. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  360. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  361. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  362. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  363. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  364. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  365. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  366. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  367. package/lib/types/interaction_client/PopupClient.d.ts +1 -1
  368. package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
  369. package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
  370. package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  371. package/lib/types/interaction_client/StandardInteractionClient.d.ts +3 -1
  372. package/lib/types/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  373. package/lib/types/packageMetadata.d.ts +1 -1
  374. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  375. package/package.json +2 -2
  376. package/src/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.ts +0 -3
  377. package/src/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.ts +0 -2
  378. package/src/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.ts +4 -11
  379. package/src/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.ts +0 -2
  380. package/src/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.ts +0 -2
  381. package/src/custom_auth/core/auth_flow/mfa/state/MfaState.ts +0 -6
  382. package/src/custom_auth/sign_in/auth_flow/result/SignInResult.ts +0 -2
  383. package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.ts +0 -2
  384. package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.ts +0 -2
  385. package/src/interaction_client/PopupClient.ts +73 -21
  386. package/src/interaction_client/RedirectClient.ts +14 -1
  387. package/src/interaction_client/SilentIframeClient.ts +68 -19
  388. package/src/interaction_client/StandardInteractionClient.ts +17 -12
  389. package/src/interaction_handler/SilentHandler.ts +1 -0
  390. package/src/packageMetadata.ts +1 -1
  391. package/src/protocol/Authorize.ts +7 -0
@@ -1,8 +1,8 @@
1
- /*! @azure/msal-browser v4.26.0 2025-10-29 */
1
+ /*! @azure/msal-browser v4.26.2 2025-11-19 */
2
2
  'use strict';
3
3
  'use strict';
4
4
 
5
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
6
6
  /*
7
7
  * Copyright (c) Microsoft Corporation. All rights reserved.
8
8
  * Licensed under the MIT License.
@@ -276,7 +276,7 @@ const JsonWebTokenTypes = {
276
276
  // Token renewal offset default in seconds
277
277
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
278
278
 
279
- /*! @azure/msal-common v15.13.1 2025-10-29 */
279
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
280
280
  /*
281
281
  * Copyright (c) Microsoft Corporation. All rights reserved.
282
282
  * Licensed under the MIT License.
@@ -287,7 +287,7 @@ const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
287
287
  const unexpectedError = "unexpected_error";
288
288
  const postRequestFailed$1 = "post_request_failed";
289
289
 
290
- /*! @azure/msal-common v15.13.1 2025-10-29 */
290
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
291
291
 
292
292
  /*
293
293
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -322,7 +322,7 @@ function createAuthError(code, additionalMessage) {
322
322
  : AuthErrorMessages[code]);
323
323
  }
324
324
 
325
- /*! @azure/msal-common v15.13.1 2025-10-29 */
325
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
326
326
  /*
327
327
  * Copyright (c) Microsoft Corporation. All rights reserved.
328
328
  * Licensed under the MIT License.
@@ -370,9 +370,10 @@ const noNetworkConnectivity$1 = "no_network_connectivity";
370
370
  const userCanceled = "user_canceled";
371
371
  const missingTenantIdError = "missing_tenant_id_error";
372
372
  const methodNotImplemented = "method_not_implemented";
373
- const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
373
+ const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
374
+ const platformBrokerError = "platform_broker_error";
374
375
 
375
- /*! @azure/msal-common v15.13.1 2025-10-29 */
376
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
376
377
 
377
378
  /*
378
379
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -429,6 +430,7 @@ const ClientAuthErrorMessages = {
429
430
  [missingTenantIdError]: "A tenant id - not common, organizations, or consumers - must be specified when using the client_credentials flow.",
430
431
  [methodNotImplemented]: "This method has not been implemented",
431
432
  [nestedAppAuthBridgeDisabled]: "The nested app auth bridge is disabled",
433
+ [platformBrokerError]: "An error occurred in the native broker. See the platformBrokerError property for details.",
432
434
  };
433
435
  /**
434
436
  * Error thrown when there is an error in the client code running on the browser.
@@ -446,7 +448,7 @@ function createClientAuthError(errorCode, additionalMessage) {
446
448
  return new ClientAuthError(errorCode, additionalMessage);
447
449
  }
448
450
 
449
- /*! @azure/msal-common v15.13.1 2025-10-29 */
451
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
450
452
 
451
453
  /*
452
454
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -485,7 +487,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
485
487
  },
486
488
  };
487
489
 
488
- /*! @azure/msal-common v15.13.1 2025-10-29 */
490
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
489
491
 
490
492
  /*
491
493
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -676,12 +678,12 @@ class Logger {
676
678
  }
677
679
  }
678
680
 
679
- /*! @azure/msal-common v15.13.1 2025-10-29 */
681
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
680
682
  /* eslint-disable header/header */
681
683
  const name$1 = "@azure/msal-common";
682
- const version$1 = "15.13.1";
684
+ const version$1 = "15.13.2";
683
685
 
684
- /*! @azure/msal-common v15.13.1 2025-10-29 */
686
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
685
687
  /*
686
688
  * Copyright (c) Microsoft Corporation. All rights reserved.
687
689
  * Licensed under the MIT License.
@@ -690,7 +692,7 @@ const AzureCloudInstance = {
690
692
  // AzureCloudInstance is not specified.
691
693
  None: "none"};
692
694
 
693
- /*! @azure/msal-common v15.13.1 2025-10-29 */
695
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
694
696
  /*
695
697
  * Copyright (c) Microsoft Corporation. All rights reserved.
696
698
  * Licensed under the MIT License.
@@ -719,7 +721,7 @@ const authorityMismatch = "authority_mismatch";
719
721
  const invalidRequestMethodForEAR = "invalid_request_method_for_EAR";
720
722
  const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
721
723
 
722
- /*! @azure/msal-common v15.13.1 2025-10-29 */
724
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
723
725
 
724
726
  /*
725
727
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -764,7 +766,7 @@ function createClientConfigurationError(errorCode) {
764
766
  return new ClientConfigurationError(errorCode);
765
767
  }
766
768
 
767
- /*! @azure/msal-common v15.13.1 2025-10-29 */
769
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
768
770
  /*
769
771
  * Copyright (c) Microsoft Corporation. All rights reserved.
770
772
  * Licensed under the MIT License.
@@ -861,7 +863,7 @@ class StringUtils {
861
863
  }
862
864
  }
863
865
 
864
- /*! @azure/msal-common v15.13.1 2025-10-29 */
866
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
865
867
 
866
868
  /*
867
869
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1056,7 +1058,7 @@ class ScopeSet {
1056
1058
  }
1057
1059
  }
1058
1060
 
1059
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1061
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1060
1062
 
1061
1063
  /*
1062
1064
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1096,7 +1098,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
1096
1098
  };
1097
1099
  }
1098
1100
 
1099
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1101
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1100
1102
  /*
1101
1103
  * Copyright (c) Microsoft Corporation. All rights reserved.
1102
1104
  * Licensed under the MIT License.
@@ -1178,7 +1180,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1178
1180
  return updatedAccountInfo;
1179
1181
  }
1180
1182
 
1181
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1183
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1182
1184
  /*
1183
1185
  * Copyright (c) Microsoft Corporation. All rights reserved.
1184
1186
  * Licensed under the MIT License.
@@ -1193,7 +1195,7 @@ const AuthorityType = {
1193
1195
  Ciam: 3,
1194
1196
  };
1195
1197
 
1196
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1198
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1197
1199
  /*
1198
1200
  * Copyright (c) Microsoft Corporation. All rights reserved.
1199
1201
  * Licensed under the MIT License.
@@ -1215,7 +1217,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
1215
1217
  return null;
1216
1218
  }
1217
1219
 
1218
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1220
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1219
1221
  /*
1220
1222
  * Copyright (c) Microsoft Corporation. All rights reserved.
1221
1223
  * Licensed under the MIT License.
@@ -1239,7 +1241,7 @@ const ProtocolMode = {
1239
1241
  EAR: "EAR",
1240
1242
  };
1241
1243
 
1242
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1244
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1243
1245
 
1244
1246
  /*
1245
1247
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1460,7 +1462,7 @@ class AccountEntity {
1460
1462
  }
1461
1463
  }
1462
1464
 
1463
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1465
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1464
1466
 
1465
1467
  /*
1466
1468
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1541,7 +1543,7 @@ function checkMaxAge(authTime, maxAge) {
1541
1543
  }
1542
1544
  }
1543
1545
 
1544
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1546
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1545
1547
 
1546
1548
  /*
1547
1549
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1657,7 +1659,7 @@ function normalizeUrlForComparison(url) {
1657
1659
  }
1658
1660
  }
1659
1661
 
1660
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1662
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1661
1663
 
1662
1664
  /*
1663
1665
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1821,7 +1823,7 @@ class UrlString {
1821
1823
  }
1822
1824
  }
1823
1825
 
1824
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1826
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1825
1827
 
1826
1828
  /*
1827
1829
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1960,7 +1962,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
1960
1962
  return null;
1961
1963
  }
1962
1964
 
1963
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1965
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1964
1966
  /*
1965
1967
  * Copyright (c) Microsoft Corporation. All rights reserved.
1966
1968
  * Licensed under the MIT License.
@@ -1968,7 +1970,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
1968
1970
  const cacheQuotaExceeded = "cache_quota_exceeded";
1969
1971
  const cacheErrorUnknown = "cache_error_unknown";
1970
1972
 
1971
- /*! @azure/msal-common v15.13.1 2025-10-29 */
1973
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
1972
1974
 
1973
1975
  /*
1974
1976
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2013,7 +2015,7 @@ function createCacheError(e) {
2013
2015
  }
2014
2016
  }
2015
2017
 
2016
- /*! @azure/msal-common v15.13.1 2025-10-29 */
2018
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
2017
2019
 
2018
2020
  /*
2019
2021
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3122,7 +3124,7 @@ class DefaultStorageClass extends CacheManager {
3122
3124
  }
3123
3125
  }
3124
3126
 
3125
- /*! @azure/msal-common v15.13.1 2025-10-29 */
3127
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
3126
3128
  /*
3127
3129
  * Copyright (c) Microsoft Corporation. All rights reserved.
3128
3130
  * Licensed under the MIT License.
@@ -3389,7 +3391,7 @@ const PerformanceEvents = {
3389
3391
  const PerformanceEventStatus = {
3390
3392
  InProgress: 1};
3391
3393
 
3392
- /*! @azure/msal-common v15.13.1 2025-10-29 */
3394
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
3393
3395
 
3394
3396
  /*
3395
3397
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3468,7 +3470,7 @@ class StubPerformanceClient {
3468
3470
  }
3469
3471
  }
3470
3472
 
3471
- /*! @azure/msal-common v15.13.1 2025-10-29 */
3473
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
3472
3474
 
3473
3475
  /*
3474
3476
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3568,7 +3570,7 @@ function isOidcProtocolMode(config) {
3568
3570
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
3569
3571
  }
3570
3572
 
3571
- /*! @azure/msal-common v15.13.1 2025-10-29 */
3573
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
3572
3574
  /*
3573
3575
  * Copyright (c) Microsoft Corporation. All rights reserved.
3574
3576
  * Licensed under the MIT License.
@@ -3578,7 +3580,7 @@ const CcsCredentialType = {
3578
3580
  UPN: "UPN",
3579
3581
  };
3580
3582
 
3581
- /*! @azure/msal-common v15.13.1 2025-10-29 */
3583
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
3582
3584
  /*
3583
3585
  * Copyright (c) Microsoft Corporation. All rights reserved.
3584
3586
  * Licensed under the MIT License.
@@ -3628,7 +3630,7 @@ const INSTANCE_AWARE = "instance_aware";
3628
3630
  const EAR_JWK = "ear_jwk";
3629
3631
  const EAR_JWE_CRYPTO = "ear_jwe_crypto";
3630
3632
 
3631
- /*! @azure/msal-common v15.13.1 2025-10-29 */
3633
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
3632
3634
 
3633
3635
  /*
3634
3636
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4008,7 +4010,7 @@ function addPostBodyParameters(parameters, bodyParameters) {
4008
4010
  });
4009
4011
  }
4010
4012
 
4011
- /*! @azure/msal-common v15.13.1 2025-10-29 */
4013
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
4012
4014
  /*
4013
4015
  * Copyright (c) Microsoft Corporation. All rights reserved.
4014
4016
  * Licensed under the MIT License.
@@ -4020,7 +4022,7 @@ function isOpenIdConfigResponse(response) {
4020
4022
  response.hasOwnProperty("jwks_uri"));
4021
4023
  }
4022
4024
 
4023
- /*! @azure/msal-common v15.13.1 2025-10-29 */
4025
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
4024
4026
  /*
4025
4027
  * Copyright (c) Microsoft Corporation. All rights reserved.
4026
4028
  * Licensed under the MIT License.
@@ -4030,7 +4032,7 @@ function isCloudInstanceDiscoveryResponse(response) {
4030
4032
  response.hasOwnProperty("metadata"));
4031
4033
  }
4032
4034
 
4033
- /*! @azure/msal-common v15.13.1 2025-10-29 */
4035
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
4034
4036
  /*
4035
4037
  * Copyright (c) Microsoft Corporation. All rights reserved.
4036
4038
  * Licensed under the MIT License.
@@ -4040,7 +4042,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
4040
4042
  response.hasOwnProperty("error_description"));
4041
4043
  }
4042
4044
 
4043
- /*! @azure/msal-common v15.13.1 2025-10-29 */
4045
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
4044
4046
  /*
4045
4047
  * Copyright (c) Microsoft Corporation. All rights reserved.
4046
4048
  * Licensed under the MIT License.
@@ -4136,7 +4138,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
4136
4138
  };
4137
4139
  };
4138
4140
 
4139
- /*! @azure/msal-common v15.13.1 2025-10-29 */
4141
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
4140
4142
 
4141
4143
  /*
4142
4144
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4242,7 +4244,7 @@ RegionDiscovery.IMDS_OPTIONS = {
4242
4244
  },
4243
4245
  };
4244
4246
 
4245
- /*! @azure/msal-common v15.13.1 2025-10-29 */
4247
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
4246
4248
  /*
4247
4249
  * Copyright (c) Microsoft Corporation. All rights reserved.
4248
4250
  * Licensed under the MIT License.
@@ -4307,7 +4309,7 @@ function wasClockTurnedBack(cachedAt) {
4307
4309
  return cachedAtSec > nowSeconds();
4308
4310
  }
4309
4311
 
4310
- /*! @azure/msal-common v15.13.1 2025-10-29 */
4312
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
4311
4313
 
4312
4314
  /*
4313
4315
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4569,7 +4571,7 @@ function isAuthorityMetadataExpired(metadata) {
4569
4571
  return metadata.expiresAt <= nowSeconds();
4570
4572
  }
4571
4573
 
4572
- /*! @azure/msal-common v15.13.1 2025-10-29 */
4574
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
4573
4575
 
4574
4576
  /*
4575
4577
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5408,7 +5410,7 @@ function buildStaticAuthorityOptions(authOptions) {
5408
5410
  };
5409
5411
  }
5410
5412
 
5411
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5413
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5412
5414
 
5413
5415
  /*
5414
5416
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5439,7 +5441,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
5439
5441
  }
5440
5442
  }
5441
5443
 
5442
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5444
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5443
5445
 
5444
5446
  /*
5445
5447
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5458,7 +5460,7 @@ class ServerError extends AuthError {
5458
5460
  }
5459
5461
  }
5460
5462
 
5461
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5463
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5462
5464
  /*
5463
5465
  * Copyright (c) Microsoft Corporation. All rights reserved.
5464
5466
  * Licensed under the MIT License.
@@ -5479,7 +5481,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
5479
5481
  };
5480
5482
  }
5481
5483
 
5482
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5484
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5483
5485
 
5484
5486
  /*
5485
5487
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5566,7 +5568,7 @@ class ThrottlingUtils {
5566
5568
  }
5567
5569
  }
5568
5570
 
5569
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5571
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5570
5572
 
5571
5573
  /*
5572
5574
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5597,7 +5599,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
5597
5599
  return new NetworkError(error, httpStatus, responseHeaders);
5598
5600
  }
5599
5601
 
5600
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5602
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5601
5603
 
5602
5604
  /*
5603
5605
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5745,7 +5747,7 @@ class BaseClient {
5745
5747
  }
5746
5748
  }
5747
5749
 
5748
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5750
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5749
5751
  /*
5750
5752
  * Copyright (c) Microsoft Corporation. All rights reserved.
5751
5753
  * Licensed under the MIT License.
@@ -5761,7 +5763,7 @@ const consentRequired = "consent_required";
5761
5763
  const loginRequired = "login_required";
5762
5764
  const badToken = "bad_token";
5763
5765
 
5764
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5766
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5765
5767
 
5766
5768
  /*
5767
5769
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5833,7 +5835,7 @@ function createInteractionRequiredAuthError(errorCode) {
5833
5835
  return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
5834
5836
  }
5835
5837
 
5836
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5838
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5837
5839
 
5838
5840
  /*
5839
5841
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5905,7 +5907,7 @@ class ProtocolUtils {
5905
5907
  }
5906
5908
  }
5907
5909
 
5908
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5910
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5909
5911
 
5910
5912
  /*
5911
5913
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5987,7 +5989,7 @@ class PopTokenGenerator {
5987
5989
  }
5988
5990
  }
5989
5991
 
5990
- /*! @azure/msal-common v15.13.1 2025-10-29 */
5992
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
5991
5993
  /*
5992
5994
  * Copyright (c) Microsoft Corporation. All rights reserved.
5993
5995
  * Licensed under the MIT License.
@@ -6014,7 +6016,7 @@ class PopTokenGenerator {
6014
6016
  }
6015
6017
  }
6016
6018
 
6017
- /*! @azure/msal-common v15.13.1 2025-10-29 */
6019
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
6018
6020
 
6019
6021
  /*
6020
6022
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6345,7 +6347,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
6345
6347
  return baseAccount;
6346
6348
  }
6347
6349
 
6348
- /*! @azure/msal-common v15.13.1 2025-10-29 */
6350
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
6349
6351
  /*
6350
6352
  * Copyright (c) Microsoft Corporation. All rights reserved.
6351
6353
  * Licensed under the MIT License.
@@ -6363,7 +6365,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
6363
6365
  }
6364
6366
  }
6365
6367
 
6366
- /*! @azure/msal-common v15.13.1 2025-10-29 */
6368
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
6367
6369
 
6368
6370
  /*
6369
6371
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6598,7 +6600,7 @@ class AuthorizationCodeClient extends BaseClient {
6598
6600
  }
6599
6601
  }
6600
6602
 
6601
- /*! @azure/msal-common v15.13.1 2025-10-29 */
6603
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
6602
6604
 
6603
6605
  /*
6604
6606
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6807,7 +6809,7 @@ class RefreshTokenClient extends BaseClient {
6807
6809
  }
6808
6810
  }
6809
6811
 
6810
- /*! @azure/msal-common v15.13.1 2025-10-29 */
6812
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
6811
6813
 
6812
6814
  /*
6813
6815
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6905,7 +6907,7 @@ class SilentFlowClient extends BaseClient {
6905
6907
  }
6906
6908
  }
6907
6909
 
6908
- /*! @azure/msal-common v15.13.1 2025-10-29 */
6910
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
6909
6911
 
6910
6912
  /*
6911
6913
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6920,7 +6922,7 @@ const StubbedNetworkModule = {
6920
6922
  },
6921
6923
  };
6922
6924
 
6923
- /*! @azure/msal-common v15.13.1 2025-10-29 */
6925
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
6924
6926
 
6925
6927
  /*
6926
6928
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7144,7 +7146,7 @@ function extractLoginHint(account) {
7144
7146
  return account.loginHint || account.idTokenClaims?.login_hint || null;
7145
7147
  }
7146
7148
 
7147
- /*! @azure/msal-common v15.13.1 2025-10-29 */
7149
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
7148
7150
 
7149
7151
  /*
7150
7152
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7407,7 +7409,7 @@ class ServerTelemetryManager {
7407
7409
  }
7408
7410
  }
7409
7411
 
7410
- /*! @azure/msal-common v15.13.1 2025-10-29 */
7412
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
7411
7413
  /*
7412
7414
  * Copyright (c) Microsoft Corporation. All rights reserved.
7413
7415
  * Licensed under the MIT License.
@@ -7415,7 +7417,7 @@ class ServerTelemetryManager {
7415
7417
  const missingKidError = "missing_kid_error";
7416
7418
  const missingAlgError = "missing_alg_error";
7417
7419
 
7418
- /*! @azure/msal-common v15.13.1 2025-10-29 */
7420
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
7419
7421
 
7420
7422
  /*
7421
7423
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7440,7 +7442,7 @@ function createJoseHeaderError(code) {
7440
7442
  return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
7441
7443
  }
7442
7444
 
7443
- /*! @azure/msal-common v15.13.1 2025-10-29 */
7445
+ /*! @azure/msal-common v15.13.2 2025-11-19 */
7444
7446
 
7445
7447
  /*
7446
7448
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7875,7 +7877,7 @@ function ensureArgumentIsJSONString(argName, argValue, correlationId) {
7875
7877
 
7876
7878
  /* eslint-disable header/header */
7877
7879
  const name = "@azure/msal-browser";
7878
- const version = "4.26.0";
7880
+ const version = "4.26.2";
7879
7881
 
7880
7882
  /*
7881
7883
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8196,7 +8198,6 @@ class SignInResult extends AuthFlowResultBase {
8196
8198
  }
8197
8199
  /**
8198
8200
  * Checks if the result requires authentication method registration.
8199
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
8200
8201
  */
8201
8202
  isAuthMethodRegistrationRequired() {
8202
8203
  return (this.state.stateType ===
@@ -8204,7 +8205,6 @@ class SignInResult extends AuthFlowResultBase {
8204
8205
  }
8205
8206
  /**
8206
8207
  * Checks if the result requires MFA.
8207
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
8208
8208
  */
8209
8209
  isMfaRequired() {
8210
8210
  return this.state.stateType === MFA_AWAITING_STATE_TYPE;
@@ -9572,12 +9572,13 @@ class StandardInteractionClient extends BaseInteractionClient {
9572
9572
  async getClientConfiguration(params) {
9573
9573
  const { serverTelemetryManager, requestAuthority, requestAzureCloudOptions, requestExtraQueryParameters, account, } = params;
9574
9574
  this.performanceClient.addQueueMeasurement(PerformanceEvents.StandardInteractionClientGetClientConfiguration, this.correlationId);
9575
- const discoveredAuthority = await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, this.correlationId)({
9576
- requestAuthority,
9577
- requestAzureCloudOptions,
9578
- requestExtraQueryParameters,
9579
- account,
9580
- });
9575
+ const discoveredAuthority = params.authority ||
9576
+ (await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, this.correlationId)({
9577
+ requestAuthority,
9578
+ requestAzureCloudOptions,
9579
+ requestExtraQueryParameters,
9580
+ account,
9581
+ }));
9581
9582
  const logger = this.config.system.loggerOptions;
9582
9583
  return {
9583
9584
  authOptions: {
@@ -11860,7 +11861,6 @@ class SignInSubmitCodeResult extends AuthFlowResultBase {
11860
11861
  }
11861
11862
  /**
11862
11863
  * Checks if the result requires authentication method registration.
11863
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
11864
11864
  */
11865
11865
  isAuthMethodRegistrationRequired() {
11866
11866
  return (this.state.stateType ===
@@ -11868,7 +11868,6 @@ class SignInSubmitCodeResult extends AuthFlowResultBase {
11868
11868
  }
11869
11869
  /**
11870
11870
  * Checks if the result requires MFA.
11871
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
11872
11871
  */
11873
11872
  isMfaRequired() {
11874
11873
  return this.state.stateType === MFA_AWAITING_STATE_TYPE;
@@ -11950,7 +11949,6 @@ class AuthMethodRegistrationChallengeMethodResult extends AuthFlowResultBase {
11950
11949
  /**
11951
11950
  * Checks if the result indicates that verification is required.
11952
11951
  * @returns true if verification is required, false otherwise.
11953
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
11954
11952
  */
11955
11953
  isVerificationRequired() {
11956
11954
  return (this.state.stateType ===
@@ -11959,7 +11957,6 @@ class AuthMethodRegistrationChallengeMethodResult extends AuthFlowResultBase {
11959
11957
  /**
11960
11958
  * Checks if the result indicates that registration is completed (fast-pass scenario).
11961
11959
  * @returns true if registration is completed, false otherwise.
11962
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
11963
11960
  */
11964
11961
  isCompleted() {
11965
11962
  return (this.state.stateType ===
@@ -11968,7 +11965,6 @@ class AuthMethodRegistrationChallengeMethodResult extends AuthFlowResultBase {
11968
11965
  /**
11969
11966
  * Checks if the result is in a failed state.
11970
11967
  * @returns true if the result is failed, false otherwise.
11971
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
11972
11968
  */
11973
11969
  isFailed() {
11974
11970
  return (this.state.stateType === AUTH_METHOD_REGISTRATION_FAILED_STATE_TYPE);
@@ -11996,7 +11992,6 @@ class AuthMethodRegistrationSubmitChallengeResult extends AuthFlowResultBase {
11996
11992
  /**
11997
11993
  * Checks if the result indicates that registration is completed.
11998
11994
  * @returns true if registration is completed, false otherwise.
11999
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12000
11995
  */
12001
11996
  isCompleted() {
12002
11997
  return (this.state.stateType ===
@@ -12005,7 +12000,6 @@ class AuthMethodRegistrationSubmitChallengeResult extends AuthFlowResultBase {
12005
12000
  /**
12006
12001
  * Checks if the result is in a failed state.
12007
12002
  * @returns true if the result is failed, false otherwise.
12008
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12009
12003
  */
12010
12004
  isFailed() {
12011
12005
  return (this.state.stateType === AUTH_METHOD_REGISTRATION_FAILED_STATE_TYPE);
@@ -12087,7 +12081,7 @@ class AuthMethodRegistrationState extends AuthFlowActionRequiredStateBase {
12087
12081
  }
12088
12082
  }
12089
12083
  catch (error) {
12090
- this.stateParameters.logger.error("Failed to challenge authentication method for auth method registration.", this.stateParameters.correlationId);
12084
+ this.stateParameters.logger.errorPii(`Failed to challenge authentication method for auth method registration. Error: ${error}.`, this.stateParameters.correlationId);
12091
12085
  return AuthMethodRegistrationChallengeMethodResult.createWithError(error);
12092
12086
  }
12093
12087
  }
@@ -12106,7 +12100,6 @@ class AuthMethodRegistrationRequiredState extends AuthMethodRegistrationState {
12106
12100
  /**
12107
12101
  * Gets the available authentication methods for registration.
12108
12102
  * @returns Array of available authentication methods.
12109
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12110
12103
  */
12111
12104
  getAuthMethods() {
12112
12105
  return this.stateParameters.authMethods;
@@ -12115,7 +12108,6 @@ class AuthMethodRegistrationRequiredState extends AuthMethodRegistrationState {
12115
12108
  * Challenges an authentication method for registration.
12116
12109
  * @param authMethodDetails The authentication method details to challenge.
12117
12110
  * @returns Promise that resolves to AuthMethodRegistrationChallengeMethodResult.
12118
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12119
12111
  */
12120
12112
  async challengeAuthMethod(authMethodDetails) {
12121
12113
  return this.challengeAuthMethodInternal(authMethodDetails);
@@ -12135,7 +12127,6 @@ class AuthMethodVerificationRequiredState extends AuthMethodRegistrationState {
12135
12127
  /**
12136
12128
  * Gets the length of the expected verification code.
12137
12129
  * @returns The code length.
12138
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12139
12130
  */
12140
12131
  getCodeLength() {
12141
12132
  return this.stateParameters.codeLength;
@@ -12143,7 +12134,6 @@ class AuthMethodVerificationRequiredState extends AuthMethodRegistrationState {
12143
12134
  /**
12144
12135
  * Gets the channel through which the challenge was sent.
12145
12136
  * @returns The challenge channel (e.g., "email").
12146
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12147
12137
  */
12148
12138
  getChannel() {
12149
12139
  return this.stateParameters.challengeChannel;
@@ -12151,7 +12141,6 @@ class AuthMethodVerificationRequiredState extends AuthMethodRegistrationState {
12151
12141
  /**
12152
12142
  * Gets the target label indicating where the challenge was sent.
12153
12143
  * @returns The challenge target label (e.g., masked email address).
12154
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12155
12144
  */
12156
12145
  getSentTo() {
12157
12146
  return this.stateParameters.challengeTargetLabel;
@@ -12160,7 +12149,6 @@ class AuthMethodVerificationRequiredState extends AuthMethodRegistrationState {
12160
12149
  * Submits the verification challenge to complete the authentication method registration.
12161
12150
  * @param code The verification code entered by the user.
12162
12151
  * @returns Promise that resolves to AuthMethodRegistrationSubmitChallengeResult.
12163
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12164
12152
  */
12165
12153
  async submitChallenge(code) {
12166
12154
  try {
@@ -12181,7 +12169,7 @@ class AuthMethodVerificationRequiredState extends AuthMethodRegistrationState {
12181
12169
  return new AuthMethodRegistrationSubmitChallengeResult(new AuthMethodRegistrationCompletedState(), accountInfo);
12182
12170
  }
12183
12171
  catch (error) {
12184
- this.stateParameters.logger.error("Failed to submit auth method challenge.", this.stateParameters.correlationId);
12172
+ this.stateParameters.logger.errorPii(`Failed to submit auth method challenge. Error: ${error}.`, this.stateParameters.correlationId);
12185
12173
  return AuthMethodRegistrationSubmitChallengeResult.createWithError(error);
12186
12174
  }
12187
12175
  }
@@ -12189,7 +12177,6 @@ class AuthMethodVerificationRequiredState extends AuthMethodRegistrationState {
12189
12177
  * Challenges a different authentication method for registration.
12190
12178
  * @param authMethodDetails The authentication method details to challenge.
12191
12179
  * @returns Promise that resolves to AuthMethodRegistrationChallengeMethodResult.
12192
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12193
12180
  */
12194
12181
  async challengeAuthMethod(authMethodDetails) {
12195
12182
  return this.challengeAuthMethodInternal(authMethodDetails);
@@ -12270,7 +12257,6 @@ class MfaSubmitChallengeResult extends AuthFlowResultBase {
12270
12257
  /**
12271
12258
  * Checks if the MFA flow is completed successfully.
12272
12259
  * @returns true if completed, false otherwise.
12273
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12274
12260
  */
12275
12261
  isCompleted() {
12276
12262
  return this.state.stateType === MFA_COMPLETED_STATE_TYPE;
@@ -12278,7 +12264,6 @@ class MfaSubmitChallengeResult extends AuthFlowResultBase {
12278
12264
  /**
12279
12265
  * Checks if the result is in a failed state.
12280
12266
  * @returns true if the result is failed, false otherwise.
12281
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12282
12267
  */
12283
12268
  isFailed() {
12284
12269
  return this.state.stateType === MFA_FAILED_STATE_TYPE;
@@ -12307,7 +12292,6 @@ class MfaRequestChallengeResult extends AuthFlowResultBase {
12307
12292
  /**
12308
12293
  * Checks if the result indicates that verification is required.
12309
12294
  * @returns true if verification is required, false otherwise.
12310
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12311
12295
  */
12312
12296
  isVerificationRequired() {
12313
12297
  return this.state.stateType === MFA_VERIFICATION_REQUIRED_STATE_TYPE;
@@ -12315,7 +12299,6 @@ class MfaRequestChallengeResult extends AuthFlowResultBase {
12315
12299
  /**
12316
12300
  * Checks if the result is in a failed state.
12317
12301
  * @returns true if the result is failed, false otherwise.
12318
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12319
12302
  */
12320
12303
  isFailed() {
12321
12304
  return this.state.stateType === MFA_FAILED_STATE_TYPE;
@@ -12348,7 +12331,6 @@ class MfaState extends AuthFlowActionRequiredStateBase {
12348
12331
  * Requests an MFA challenge for a specific authentication method.
12349
12332
  * @param authMethodId The authentication method ID to use for the challenge.
12350
12333
  * @returns Promise that resolves to MfaRequestChallengeResult.
12351
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12352
12334
  */
12353
12335
  async requestChallenge(authMethodId) {
12354
12336
  try {
@@ -12397,7 +12379,6 @@ class MfaAwaitingState extends MfaState {
12397
12379
  /**
12398
12380
  * Gets the available authentication methods for MFA.
12399
12381
  * @returns Array of available authentication methods.
12400
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12401
12382
  */
12402
12383
  getAuthMethods() {
12403
12384
  return this.stateParameters.authMethods;
@@ -12418,7 +12399,6 @@ class MfaVerificationRequiredState extends MfaState {
12418
12399
  /**
12419
12400
  * Gets the length of the code that the user needs to provide.
12420
12401
  * @returns The expected code length.
12421
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12422
12402
  */
12423
12403
  getCodeLength() {
12424
12404
  return this.stateParameters.codeLength;
@@ -12426,7 +12406,6 @@ class MfaVerificationRequiredState extends MfaState {
12426
12406
  /**
12427
12407
  * Gets the channel through which the challenge was sent.
12428
12408
  * @returns The challenge channel (e.g., "email").
12429
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12430
12409
  */
12431
12410
  getChannel() {
12432
12411
  return this.stateParameters.challengeChannel;
@@ -12434,7 +12413,6 @@ class MfaVerificationRequiredState extends MfaState {
12434
12413
  /**
12435
12414
  * Gets the target label indicating where the challenge was sent.
12436
12415
  * @returns The challenge target label (e.g., masked email address).
12437
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12438
12416
  */
12439
12417
  getSentTo() {
12440
12418
  return this.stateParameters.challengeTargetLabel;
@@ -12443,7 +12421,6 @@ class MfaVerificationRequiredState extends MfaState {
12443
12421
  * Submits the MFA challenge (e.g., OTP code) to complete the authentication.
12444
12422
  * @param challenge The challenge code (e.g., OTP code) entered by the user.
12445
12423
  * @returns Promise that resolves to MfaSubmitChallengeResult.
12446
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12447
12424
  */
12448
12425
  async submitChallenge(challenge) {
12449
12426
  try {
@@ -12690,7 +12667,6 @@ class SignInSubmitPasswordResult extends AuthFlowResultBase {
12690
12667
  }
12691
12668
  /**
12692
12669
  * Checks if the result requires authentication method registration.
12693
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12694
12670
  */
12695
12671
  isAuthMethodRegistrationRequired() {
12696
12672
  return (this.state.stateType ===
@@ -12698,7 +12674,6 @@ class SignInSubmitPasswordResult extends AuthFlowResultBase {
12698
12674
  }
12699
12675
  /**
12700
12676
  * Checks if the result requires MFA.
12701
- * @warning This API is experimental. It may be changed in the future without notice. Do not use in production applications.
12702
12677
  */
12703
12678
  isMfaRequired() {
12704
12679
  return this.state.stateType === MFA_AWAITING_STATE_TYPE;
@@ -17320,6 +17295,8 @@ async function getEARForm(frame, config, authority, request, logger, performance
17320
17295
  const parameters = await getStandardParameters(config, authority, request, logger, performanceClient);
17321
17296
  addResponseType(parameters, OAuthResponseType.IDTOKEN_TOKEN_REFRESHTOKEN);
17322
17297
  addEARParameters(parameters, request.earJwk);
17298
+ // Also add codeChallenge as backup in case EAR is not supported
17299
+ addCodeChallengeParams(parameters, request.codeChallenge, Constants.S256_CODE_CHALLENGE_METHOD);
17323
17300
  const queryParams = new Map();
17324
17301
  addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
17325
17302
  const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
@@ -18390,7 +18367,7 @@ class PopupClient extends StandardInteractionClient {
18390
18367
  const isPlatformBroker = isPlatformAuthAllowed(this.config, this.logger, this.platformAuthProvider, request.authenticationScheme);
18391
18368
  validRequest.platformBroker = isPlatformBroker;
18392
18369
  if (this.config.auth.protocolMode === ProtocolMode.EAR) {
18393
- return this.executeEarFlow(validRequest, popupParams);
18370
+ return this.executeEarFlow(validRequest, popupParams, pkceCodes);
18394
18371
  }
18395
18372
  else {
18396
18373
  return this.executeCodeFlow(validRequest, popupParams, pkceCodes);
@@ -18450,7 +18427,7 @@ class PopupClient extends StandardInteractionClient {
18450
18427
  * Executes EAR flow
18451
18428
  * @param request
18452
18429
  */
18453
- async executeEarFlow(request, popupParams) {
18430
+ async executeEarFlow(request, popupParams, pkceCodes) {
18454
18431
  const correlationId = request.correlationId;
18455
18432
  // Get the frame handle for the silent request
18456
18433
  const discoveredAuthority = await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, correlationId)({
@@ -18460,9 +18437,12 @@ class PopupClient extends StandardInteractionClient {
18460
18437
  account: request.account,
18461
18438
  });
18462
18439
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
18440
+ const pkce = pkceCodes ||
18441
+ (await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId));
18463
18442
  const popupRequest = {
18464
18443
  ...request,
18465
18444
  earJwk: earJwk,
18445
+ codeChallenge: pkce.challenge,
18466
18446
  };
18467
18447
  const popupWindow = popupParams.popup || this.openPopup("about:blank", popupParams);
18468
18448
  const form = await getEARForm(popupWindow.document, this.config, discoveredAuthority, popupRequest, this.logger, this.performanceClient);
@@ -18470,7 +18450,20 @@ class PopupClient extends StandardInteractionClient {
18470
18450
  // Monitor the popup for the hash. Return the string value and close the popup when the hash is received. Default timeout is 60 seconds.
18471
18451
  const responseString = await invokeAsync(this.monitorPopupForHash.bind(this), PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(popupWindow, popupParams.popupWindowParent);
18472
18452
  const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, this.correlationId)(responseString, this.config.auth.OIDCOptions.serverResponseType, this.logger);
18473
- return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, ApiId.acquireTokenPopup, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
18453
+ if (!serverParams.ear_jwe && serverParams.code) {
18454
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, correlationId)({
18455
+ serverTelemetryManager: this.initializeServerTelemetryManager(ApiId.acquireTokenPopup),
18456
+ requestAuthority: request.authority,
18457
+ requestAzureCloudOptions: request.azureCloudOptions,
18458
+ requestExtraQueryParameters: request.extraQueryParameters,
18459
+ account: request.account,
18460
+ authority: discoveredAuthority,
18461
+ });
18462
+ return invokeAsync(handleResponseCode, PerformanceEvents.HandleResponseCode, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, pkce.verifier, ApiId.acquireTokenPopup, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
18463
+ }
18464
+ else {
18465
+ return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, ApiId.acquireTokenPopup, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
18466
+ }
18474
18467
  }
18475
18468
  async executeCodeFlowWithPost(request, popupParams, authClient, pkceVerifier) {
18476
18469
  const correlationId = request.correlationId;
@@ -18879,11 +18872,13 @@ class RedirectClient extends StandardInteractionClient {
18879
18872
  account: request.account,
18880
18873
  });
18881
18874
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
18875
+ const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
18882
18876
  const redirectRequest = {
18883
18877
  ...request,
18884
18878
  earJwk: earJwk,
18879
+ codeChallenge: pkceCodes.challenge,
18885
18880
  };
18886
- this.browserStorage.cacheAuthorizeRequest(redirectRequest);
18881
+ this.browserStorage.cacheAuthorizeRequest(redirectRequest, pkceCodes.verifier);
18887
18882
  const form = await getEARForm(document, this.config, discoveredAuthority, redirectRequest, this.logger, this.performanceClient);
18888
18883
  form.submit();
18889
18884
  return new Promise((resolve, reject) => {
@@ -19341,6 +19336,7 @@ function createHiddenIframe() {
19341
19336
  authFrame.style.width = authFrame.style.height = "0";
19342
19337
  authFrame.style.border = "0";
19343
19338
  authFrame.setAttribute("sandbox", "allow-scripts allow-same-origin allow-forms");
19339
+ authFrame.setAttribute("allow", "local-network-access *");
19344
19340
  document.body.appendChild(authFrame);
19345
19341
  return authFrame;
19346
19342
  }
@@ -19448,16 +19444,32 @@ class SilentIframeClient extends StandardInteractionClient {
19448
19444
  account: request.account,
19449
19445
  });
19450
19446
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
19447
+ const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
19451
19448
  const silentRequest = {
19452
19449
  ...request,
19453
19450
  earJwk: earJwk,
19451
+ codeChallenge: pkceCodes.challenge,
19454
19452
  };
19455
19453
  const msalFrame = await invokeAsync(initiateEarRequest, PerformanceEvents.SilentHandlerInitiateAuthRequest, this.logger, this.performanceClient, correlationId)(this.config, discoveredAuthority, silentRequest, this.logger, this.performanceClient);
19456
19454
  const responseType = this.config.auth.OIDCOptions.serverResponseType;
19457
19455
  // Monitor the window for the hash. Return the string value and close the popup when the hash is received. Default timeout is 60 seconds.
19458
19456
  const responseString = await invokeAsync(monitorIframeForHash, PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(msalFrame, this.config.system.iframeHashTimeout, this.config.system.pollIntervalMilliseconds, this.performanceClient, this.logger, correlationId, responseType);
19459
19457
  const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger);
19460
- return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
19458
+ if (!serverParams.ear_jwe && serverParams.code) {
19459
+ // If server doesn't support EAR, they may fallback to auth code flow instead
19460
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, correlationId)({
19461
+ serverTelemetryManager: this.initializeServerTelemetryManager(this.apiId),
19462
+ requestAuthority: request.authority,
19463
+ requestAzureCloudOptions: request.azureCloudOptions,
19464
+ requestExtraQueryParameters: request.extraQueryParameters,
19465
+ account: request.account,
19466
+ authority: discoveredAuthority,
19467
+ });
19468
+ return invokeAsync(handleResponseCode, PerformanceEvents.HandleResponseCode, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
19469
+ }
19470
+ else {
19471
+ return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
19472
+ }
19461
19473
  }
19462
19474
  /**
19463
19475
  * Currently Unsupported