@azure/msal-browser 4.26.1 → 4.27.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (419) hide show
  1. package/dist/app/IPublicClientApplication.mjs +1 -1
  2. package/dist/app/PublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientNext.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  5. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts +2 -8
  8. package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -1
  9. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +11 -25
  10. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs.map +1 -1
  11. package/dist/cache/AccountManager.mjs +1 -1
  12. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  13. package/dist/cache/BrowserCacheManager.mjs +1 -1
  14. package/dist/cache/CacheHelpers.mjs +1 -1
  15. package/dist/cache/CacheKeys.mjs +2 -3
  16. package/dist/cache/CacheKeys.mjs.map +1 -1
  17. package/dist/cache/CookieStorage.mjs +1 -1
  18. package/dist/cache/DatabaseStorage.mjs +1 -1
  19. package/dist/cache/EncryptedData.mjs +1 -1
  20. package/dist/cache/LocalStorage.mjs +1 -1
  21. package/dist/cache/MemoryStorage.mjs +1 -1
  22. package/dist/cache/SessionStorage.mjs +1 -1
  23. package/dist/cache/TokenCache.mjs +1 -1
  24. package/dist/config/Configuration.d.ts +4 -0
  25. package/dist/config/Configuration.d.ts.map +1 -1
  26. package/dist/config/Configuration.mjs +2 -1
  27. package/dist/config/Configuration.mjs.map +1 -1
  28. package/dist/controllers/ControllerFactory.mjs +1 -1
  29. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  30. package/dist/controllers/StandardController.d.ts.map +1 -1
  31. package/dist/controllers/StandardController.mjs +2 -2
  32. package/dist/controllers/StandardController.mjs.map +1 -1
  33. package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
  34. package/dist/crypto/BrowserCrypto.mjs +1 -1
  35. package/dist/crypto/CryptoOps.mjs +1 -1
  36. package/dist/crypto/PkceGenerator.mjs +1 -1
  37. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  38. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  39. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  40. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  41. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  42. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts +2 -8
  43. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -1
  44. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +9 -23
  45. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs.map +1 -1
  46. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  47. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  48. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
  49. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  50. package/dist/custom-auth-path/cache/CacheKeys.mjs +2 -3
  51. package/dist/custom-auth-path/cache/CacheKeys.mjs.map +1 -1
  52. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  53. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  54. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  55. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  56. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  57. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  58. package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
  59. package/dist/custom-auth-path/config/Configuration.d.ts +4 -0
  60. package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
  61. package/dist/custom-auth-path/config/Configuration.mjs +2 -1
  62. package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
  63. package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
  64. package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
  65. package/dist/custom-auth-path/controllers/StandardController.mjs +2 -2
  66. package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
  67. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  68. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  69. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  70. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  71. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  72. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  73. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  74. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  75. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  76. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  77. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  79. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  81. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  82. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -4
  83. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs.map +1 -1
  84. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  85. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -3
  87. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs.map +1 -1
  88. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  90. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  91. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +3 -10
  93. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs.map +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  96. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -3
  98. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs.map +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  100. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -3
  102. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs.map +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  106. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -7
  108. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs.map +1 -1
  109. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  154. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  155. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  156. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  157. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  159. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  160. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  161. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  162. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  163. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  164. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  165. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  166. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  167. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  168. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  169. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  170. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  171. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  172. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -3
  173. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs.map +1 -1
  174. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  175. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  176. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -3
  177. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs.map +1 -1
  178. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  179. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  180. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -3
  181. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs.map +1 -1
  182. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  183. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  184. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  185. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  186. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  187. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  188. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  189. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  190. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  191. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  192. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  193. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  194. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  195. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  196. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  197. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  198. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  199. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  200. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  201. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  202. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  203. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  204. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  205. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  206. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  207. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  208. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  209. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  210. package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
  211. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  212. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  213. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  214. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  215. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  216. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  217. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts +1 -1
  218. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
  219. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +20 -4
  220. package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
  221. package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
  222. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +4 -2
  223. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
  224. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  225. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  226. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
  227. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +19 -3
  228. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
  229. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  230. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.d.ts +3 -1
  231. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  232. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +8 -7
  233. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs.map +1 -1
  234. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  235. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  236. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  237. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  238. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  239. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  240. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  241. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  242. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  243. package/dist/custom-auth-path/protocol/Authorize.mjs +3 -1
  244. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  245. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  246. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  247. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  248. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  249. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  250. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  251. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  252. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  253. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  254. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  255. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  256. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  257. package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  258. package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  259. package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  260. package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  261. package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  262. package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  263. package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  264. package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  265. package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  266. package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  267. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  268. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  269. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  270. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  271. package/dist/encode/Base64Decode.mjs +1 -1
  272. package/dist/encode/Base64Encode.mjs +1 -1
  273. package/dist/error/BrowserAuthError.mjs +1 -1
  274. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  275. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  276. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  277. package/dist/error/NativeAuthError.mjs +1 -1
  278. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  279. package/dist/error/NestedAppAuthError.mjs +1 -1
  280. package/dist/event/EventHandler.mjs +1 -1
  281. package/dist/event/EventMessage.mjs +1 -1
  282. package/dist/event/EventType.mjs +1 -1
  283. package/dist/index.mjs +1 -1
  284. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  285. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  286. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  287. package/dist/interaction_client/PopupClient.d.ts +1 -1
  288. package/dist/interaction_client/PopupClient.d.ts.map +1 -1
  289. package/dist/interaction_client/PopupClient.mjs +20 -4
  290. package/dist/interaction_client/PopupClient.mjs.map +1 -1
  291. package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
  292. package/dist/interaction_client/RedirectClient.mjs +4 -2
  293. package/dist/interaction_client/RedirectClient.mjs.map +1 -1
  294. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  295. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  296. package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
  297. package/dist/interaction_client/SilentIframeClient.mjs +19 -3
  298. package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
  299. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  300. package/dist/interaction_client/StandardInteractionClient.d.ts +3 -1
  301. package/dist/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  302. package/dist/interaction_client/StandardInteractionClient.mjs +8 -7
  303. package/dist/interaction_client/StandardInteractionClient.mjs.map +1 -1
  304. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  305. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  306. package/dist/naa/BridgeError.mjs +1 -1
  307. package/dist/naa/BridgeProxy.mjs +1 -1
  308. package/dist/naa/BridgeStatusCode.mjs +1 -1
  309. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  310. package/dist/navigation/NavigationClient.mjs +1 -1
  311. package/dist/network/FetchClient.mjs +1 -1
  312. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  313. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  314. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  315. package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
  316. package/dist/packageMetadata.d.ts +1 -1
  317. package/dist/packageMetadata.mjs +2 -2
  318. package/dist/protocol/Authorize.d.ts.map +1 -1
  319. package/dist/protocol/Authorize.mjs +3 -1
  320. package/dist/protocol/Authorize.mjs.map +1 -1
  321. package/dist/request/RequestHelpers.mjs +1 -1
  322. package/dist/response/ResponseHandler.mjs +1 -1
  323. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  324. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  325. package/dist/utils/BrowserConstants.mjs +1 -1
  326. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  327. package/dist/utils/BrowserUtils.mjs +1 -1
  328. package/dist/utils/Helpers.mjs +1 -1
  329. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  330. package/lib/custom-auth-path/msal-custom-auth.cjs +129 -128
  331. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  332. package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts +2 -8
  333. package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -1
  334. package/lib/custom-auth-path/types/config/Configuration.d.ts +4 -0
  335. package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
  336. package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
  337. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  338. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  339. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  340. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  341. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  342. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  343. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  344. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  345. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  346. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  347. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  348. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  349. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  350. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  351. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  352. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  353. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  354. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  355. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  356. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts +1 -1
  357. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
  358. package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
  359. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  360. package/lib/custom-auth-path/types/interaction_client/StandardInteractionClient.d.ts +3 -1
  361. package/lib/custom-auth-path/types/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  362. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  363. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  364. package/lib/msal-browser.cjs +141 -102
  365. package/lib/msal-browser.cjs.map +1 -1
  366. package/lib/msal-browser.js +141 -102
  367. package/lib/msal-browser.js.map +1 -1
  368. package/lib/msal-browser.min.js +66 -66
  369. package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts +2 -8
  370. package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -1
  371. package/lib/types/config/Configuration.d.ts +4 -0
  372. package/lib/types/config/Configuration.d.ts.map +1 -1
  373. package/lib/types/controllers/StandardController.d.ts.map +1 -1
  374. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  375. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  376. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  377. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  378. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  379. package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  380. package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  381. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  382. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  383. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  384. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  385. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  386. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  387. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  388. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  389. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  390. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  391. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  392. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  393. package/lib/types/interaction_client/PopupClient.d.ts +1 -1
  394. package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
  395. package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
  396. package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  397. package/lib/types/interaction_client/StandardInteractionClient.d.ts +3 -1
  398. package/lib/types/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  399. package/lib/types/packageMetadata.d.ts +1 -1
  400. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  401. package/package.json +2 -2
  402. package/src/broker/nativeBroker/PlatformAuthProvider.ts +21 -23
  403. package/src/config/Configuration.ts +5 -0
  404. package/src/controllers/StandardController.ts +2 -1
  405. package/src/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.ts +0 -3
  406. package/src/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.ts +0 -2
  407. package/src/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.ts +4 -11
  408. package/src/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.ts +0 -2
  409. package/src/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.ts +0 -2
  410. package/src/custom_auth/core/auth_flow/mfa/state/MfaState.ts +0 -6
  411. package/src/custom_auth/sign_in/auth_flow/result/SignInResult.ts +0 -2
  412. package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.ts +0 -2
  413. package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.ts +0 -2
  414. package/src/interaction_client/PopupClient.ts +73 -21
  415. package/src/interaction_client/RedirectClient.ts +14 -1
  416. package/src/interaction_client/SilentIframeClient.ts +68 -19
  417. package/src/interaction_client/StandardInteractionClient.ts +17 -12
  418. package/src/packageMetadata.ts +1 -1
  419. package/src/protocol/Authorize.ts +7 -0
@@ -1,8 +1,8 @@
1
- /*! @azure/msal-browser v4.26.1 2025-11-06 */
1
+ /*! @azure/msal-browser v4.27.0 2025-12-04 */
2
2
  'use strict';
3
3
  'use strict';
4
4
 
5
- /*! @azure/msal-common v15.13.1 2025-11-06 */
5
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6
6
  /*
7
7
  * Copyright (c) Microsoft Corporation. All rights reserved.
8
8
  * Licensed under the MIT License.
@@ -279,7 +279,7 @@ const JsonWebTokenTypes = {
279
279
  // Token renewal offset default in seconds
280
280
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
281
281
 
282
- /*! @azure/msal-common v15.13.1 2025-11-06 */
282
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
283
283
  /*
284
284
  * Copyright (c) Microsoft Corporation. All rights reserved.
285
285
  * Licensed under the MIT License.
@@ -296,7 +296,7 @@ var AuthErrorCodes = /*#__PURE__*/Object.freeze({
296
296
  unexpectedError: unexpectedError
297
297
  });
298
298
 
299
- /*! @azure/msal-common v15.13.1 2025-11-06 */
299
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
300
300
 
301
301
  /*
302
302
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -345,7 +345,7 @@ function createAuthError(code, additionalMessage) {
345
345
  : AuthErrorMessages[code]);
346
346
  }
347
347
 
348
- /*! @azure/msal-common v15.13.1 2025-11-06 */
348
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
349
349
  /*
350
350
  * Copyright (c) Microsoft Corporation. All rights reserved.
351
351
  * Licensed under the MIT License.
@@ -393,7 +393,8 @@ const noNetworkConnectivity$1 = "no_network_connectivity";
393
393
  const userCanceled = "user_canceled";
394
394
  const missingTenantIdError = "missing_tenant_id_error";
395
395
  const methodNotImplemented = "method_not_implemented";
396
- const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
396
+ const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
397
+ const platformBrokerError = "platform_broker_error";
397
398
 
398
399
  var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
399
400
  __proto__: null,
@@ -432,6 +433,7 @@ var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
432
433
  nonceMismatch: nonceMismatch,
433
434
  nullOrEmptyToken: nullOrEmptyToken,
434
435
  openIdConfigError: openIdConfigError,
436
+ platformBrokerError: platformBrokerError,
435
437
  requestCannotBeMade: requestCannotBeMade,
436
438
  stateMismatch: stateMismatch,
437
439
  stateNotFound: stateNotFound,
@@ -443,7 +445,7 @@ var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
443
445
  userTimeoutReached: userTimeoutReached
444
446
  });
445
447
 
446
- /*! @azure/msal-common v15.13.1 2025-11-06 */
448
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
447
449
 
448
450
  /*
449
451
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -500,6 +502,7 @@ const ClientAuthErrorMessages = {
500
502
  [missingTenantIdError]: "A tenant id - not common, organizations, or consumers - must be specified when using the client_credentials flow.",
501
503
  [methodNotImplemented]: "This method has not been implemented",
502
504
  [nestedAppAuthBridgeDisabled]: "The nested app auth bridge is disabled",
505
+ [platformBrokerError]: "An error occurred in the native broker. See the platformBrokerError property for details.",
503
506
  };
504
507
  /**
505
508
  * String constants used by error codes and messages.
@@ -678,6 +681,10 @@ const ClientAuthErrorMessage = {
678
681
  code: nestedAppAuthBridgeDisabled,
679
682
  desc: ClientAuthErrorMessages[nestedAppAuthBridgeDisabled],
680
683
  },
684
+ platformBrokerError: {
685
+ code: platformBrokerError,
686
+ desc: ClientAuthErrorMessages[platformBrokerError],
687
+ },
681
688
  };
682
689
  /**
683
690
  * Error thrown when there is an error in the client code running on the browser.
@@ -695,7 +702,7 @@ function createClientAuthError(errorCode, additionalMessage) {
695
702
  return new ClientAuthError(errorCode, additionalMessage);
696
703
  }
697
704
 
698
- /*! @azure/msal-common v15.13.1 2025-11-06 */
705
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
699
706
 
700
707
  /*
701
708
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -734,7 +741,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
734
741
  },
735
742
  };
736
743
 
737
- /*! @azure/msal-common v15.13.1 2025-11-06 */
744
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
738
745
 
739
746
  /*
740
747
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -925,12 +932,12 @@ class Logger {
925
932
  }
926
933
  }
927
934
 
928
- /*! @azure/msal-common v15.13.1 2025-11-06 */
935
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
929
936
  /* eslint-disable header/header */
930
937
  const name$1 = "@azure/msal-common";
931
- const version$1 = "15.13.1";
938
+ const version$1 = "15.13.3";
932
939
 
933
- /*! @azure/msal-common v15.13.1 2025-11-06 */
940
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
934
941
  /*
935
942
  * Copyright (c) Microsoft Corporation. All rights reserved.
936
943
  * Licensed under the MIT License.
@@ -950,7 +957,7 @@ const AzureCloudInstance = {
950
957
  AzureUsGovernment: "https://login.microsoftonline.us",
951
958
  };
952
959
 
953
- /*! @azure/msal-common v15.13.1 2025-11-06 */
960
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
954
961
  /*
955
962
  * Copyright (c) Microsoft Corporation. All rights reserved.
956
963
  * Licensed under the MIT License.
@@ -977,7 +984,8 @@ const cannotSetOIDCOptions = "cannot_set_OIDCOptions";
977
984
  const cannotAllowPlatformBroker = "cannot_allow_platform_broker";
978
985
  const authorityMismatch = "authority_mismatch";
979
986
  const invalidRequestMethodForEAR = "invalid_request_method_for_EAR";
980
- const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
987
+ const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
988
+ const invalidPlatformBrokerConfiguration = "invalid_platform_broker_configuration";
981
989
 
982
990
  var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
983
991
  __proto__: null,
@@ -993,6 +1001,7 @@ var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
993
1001
  invalidClaims: invalidClaims,
994
1002
  invalidCloudDiscoveryMetadata: invalidCloudDiscoveryMetadata,
995
1003
  invalidCodeChallengeMethod: invalidCodeChallengeMethod,
1004
+ invalidPlatformBrokerConfiguration: invalidPlatformBrokerConfiguration,
996
1005
  invalidRequestMethodForEAR: invalidRequestMethodForEAR,
997
1006
  logoutRequestEmpty: logoutRequestEmpty,
998
1007
  missingNonceAuthenticationHeader: missingNonceAuthenticationHeader,
@@ -1006,7 +1015,7 @@ var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
1006
1015
  urlParseError: urlParseError
1007
1016
  });
1008
1017
 
1009
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1018
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1010
1019
 
1011
1020
  /*
1012
1021
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1036,6 +1045,7 @@ const ClientConfigurationErrorMessages = {
1036
1045
  [authorityMismatch]: "Authority mismatch error. Authority provided in login request or PublicClientApplication config does not match the environment of the provided account. Please use a matching account or make an interactive request to login to this authority.",
1037
1046
  [invalidAuthorizePostBodyParameters]: "Invalid authorize post body parameters provided. If you are using authorizePostBodyParameters, the request method must be POST. Please check the request method and parameters.",
1038
1047
  [invalidRequestMethodForEAR]: "Invalid request method for EAR protocol mode. The request method cannot be GET when using EAR protocol mode. Please change the request method to POST.",
1048
+ [invalidPlatformBrokerConfiguration]: "Invalid platform broker configuration. `allowPlatformBrokerWithDOM` can only be enabled when `allowPlatformBroker` is enabled.",
1039
1049
  };
1040
1050
  /**
1041
1051
  * ClientConfigurationErrorMessage class containing string constants used by error codes and messages.
@@ -1134,6 +1144,10 @@ const ClientConfigurationErrorMessage = {
1134
1144
  code: invalidRequestMethodForEAR,
1135
1145
  desc: ClientConfigurationErrorMessages[invalidRequestMethodForEAR],
1136
1146
  },
1147
+ invalidPlatformBrokerConfiguration: {
1148
+ code: invalidPlatformBrokerConfiguration,
1149
+ desc: ClientConfigurationErrorMessages[invalidPlatformBrokerConfiguration],
1150
+ },
1137
1151
  };
1138
1152
  /**
1139
1153
  * Error thrown when there is an error in configuration of the MSAL.js library.
@@ -1149,7 +1163,7 @@ function createClientConfigurationError(errorCode) {
1149
1163
  return new ClientConfigurationError(errorCode);
1150
1164
  }
1151
1165
 
1152
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1166
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1153
1167
  /*
1154
1168
  * Copyright (c) Microsoft Corporation. All rights reserved.
1155
1169
  * Licensed under the MIT License.
@@ -1246,7 +1260,7 @@ class StringUtils {
1246
1260
  }
1247
1261
  }
1248
1262
 
1249
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1263
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1250
1264
 
1251
1265
  /*
1252
1266
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1441,7 +1455,7 @@ class ScopeSet {
1441
1455
  }
1442
1456
  }
1443
1457
 
1444
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1458
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1445
1459
 
1446
1460
  /*
1447
1461
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1481,7 +1495,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
1481
1495
  };
1482
1496
  }
1483
1497
 
1484
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1498
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1485
1499
  /*
1486
1500
  * Copyright (c) Microsoft Corporation. All rights reserved.
1487
1501
  * Licensed under the MIT License.
@@ -1563,7 +1577,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1563
1577
  return updatedAccountInfo;
1564
1578
  }
1565
1579
 
1566
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1580
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1567
1581
  /*
1568
1582
  * Copyright (c) Microsoft Corporation. All rights reserved.
1569
1583
  * Licensed under the MIT License.
@@ -1578,7 +1592,7 @@ const AuthorityType = {
1578
1592
  Ciam: 3,
1579
1593
  };
1580
1594
 
1581
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1595
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1582
1596
  /*
1583
1597
  * Copyright (c) Microsoft Corporation. All rights reserved.
1584
1598
  * Licensed under the MIT License.
@@ -1600,7 +1614,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
1600
1614
  return null;
1601
1615
  }
1602
1616
 
1603
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1617
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1604
1618
  /*
1605
1619
  * Copyright (c) Microsoft Corporation. All rights reserved.
1606
1620
  * Licensed under the MIT License.
@@ -1624,7 +1638,7 @@ const ProtocolMode = {
1624
1638
  EAR: "EAR",
1625
1639
  };
1626
1640
 
1627
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1641
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1628
1642
 
1629
1643
  /*
1630
1644
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1845,7 +1859,7 @@ class AccountEntity {
1845
1859
  }
1846
1860
  }
1847
1861
 
1848
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1862
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1849
1863
 
1850
1864
  /*
1851
1865
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1926,7 +1940,7 @@ function checkMaxAge(authTime, maxAge) {
1926
1940
  }
1927
1941
  }
1928
1942
 
1929
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1943
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1930
1944
 
1931
1945
  /*
1932
1946
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2042,7 +2056,7 @@ function normalizeUrlForComparison(url) {
2042
2056
  }
2043
2057
  }
2044
2058
 
2045
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2059
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2046
2060
 
2047
2061
  /*
2048
2062
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2206,7 +2220,7 @@ class UrlString {
2206
2220
  }
2207
2221
  }
2208
2222
 
2209
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2223
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2210
2224
 
2211
2225
  /*
2212
2226
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2345,7 +2359,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
2345
2359
  return null;
2346
2360
  }
2347
2361
 
2348
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2362
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2349
2363
  /*
2350
2364
  * Copyright (c) Microsoft Corporation. All rights reserved.
2351
2365
  * Licensed under the MIT License.
@@ -2353,7 +2367,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
2353
2367
  const cacheQuotaExceeded = "cache_quota_exceeded";
2354
2368
  const cacheErrorUnknown = "cache_error_unknown";
2355
2369
 
2356
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2370
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2357
2371
 
2358
2372
  /*
2359
2373
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2398,7 +2412,7 @@ function createCacheError(e) {
2398
2412
  }
2399
2413
  }
2400
2414
 
2401
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2415
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2402
2416
 
2403
2417
  /*
2404
2418
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3508,7 +3522,7 @@ class DefaultStorageClass extends CacheManager {
3508
3522
  }
3509
3523
  }
3510
3524
 
3511
- /*! @azure/msal-common v15.13.1 2025-11-06 */
3525
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
3512
3526
  /*
3513
3527
  * Copyright (c) Microsoft Corporation. All rights reserved.
3514
3528
  * Licensed under the MIT License.
@@ -4030,7 +4044,7 @@ const IntFields = new Set([
4030
4044
  "upgradedCacheCount",
4031
4045
  ]);
4032
4046
 
4033
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4047
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4034
4048
 
4035
4049
  /*
4036
4050
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4109,7 +4123,7 @@ class StubPerformanceClient {
4109
4123
  }
4110
4124
  }
4111
4125
 
4112
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4126
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4113
4127
 
4114
4128
  /*
4115
4129
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4209,7 +4223,7 @@ function isOidcProtocolMode(config) {
4209
4223
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
4210
4224
  }
4211
4225
 
4212
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4226
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4213
4227
  /*
4214
4228
  * Copyright (c) Microsoft Corporation. All rights reserved.
4215
4229
  * Licensed under the MIT License.
@@ -4219,7 +4233,7 @@ const CcsCredentialType = {
4219
4233
  UPN: "UPN",
4220
4234
  };
4221
4235
 
4222
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4236
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4223
4237
  /*
4224
4238
  * Copyright (c) Microsoft Corporation. All rights reserved.
4225
4239
  * Licensed under the MIT License.
@@ -4269,7 +4283,7 @@ const INSTANCE_AWARE = "instance_aware";
4269
4283
  const EAR_JWK = "ear_jwk";
4270
4284
  const EAR_JWE_CRYPTO = "ear_jwe_crypto";
4271
4285
 
4272
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4286
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4273
4287
 
4274
4288
  /*
4275
4289
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4649,7 +4663,7 @@ function addPostBodyParameters(parameters, bodyParameters) {
4649
4663
  });
4650
4664
  }
4651
4665
 
4652
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4666
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4653
4667
  /*
4654
4668
  * Copyright (c) Microsoft Corporation. All rights reserved.
4655
4669
  * Licensed under the MIT License.
@@ -4661,7 +4675,7 @@ function isOpenIdConfigResponse(response) {
4661
4675
  response.hasOwnProperty("jwks_uri"));
4662
4676
  }
4663
4677
 
4664
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4678
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4665
4679
  /*
4666
4680
  * Copyright (c) Microsoft Corporation. All rights reserved.
4667
4681
  * Licensed under the MIT License.
@@ -4671,7 +4685,7 @@ function isCloudInstanceDiscoveryResponse(response) {
4671
4685
  response.hasOwnProperty("metadata"));
4672
4686
  }
4673
4687
 
4674
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4688
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4675
4689
  /*
4676
4690
  * Copyright (c) Microsoft Corporation. All rights reserved.
4677
4691
  * Licensed under the MIT License.
@@ -4681,7 +4695,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
4681
4695
  response.hasOwnProperty("error_description"));
4682
4696
  }
4683
4697
 
4684
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4698
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4685
4699
  /*
4686
4700
  * Copyright (c) Microsoft Corporation. All rights reserved.
4687
4701
  * Licensed under the MIT License.
@@ -4777,7 +4791,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
4777
4791
  };
4778
4792
  };
4779
4793
 
4780
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4794
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4781
4795
 
4782
4796
  /*
4783
4797
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4883,7 +4897,7 @@ RegionDiscovery.IMDS_OPTIONS = {
4883
4897
  },
4884
4898
  };
4885
4899
 
4886
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4900
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4887
4901
  /*
4888
4902
  * Copyright (c) Microsoft Corporation. All rights reserved.
4889
4903
  * Licensed under the MIT License.
@@ -4948,7 +4962,7 @@ function wasClockTurnedBack(cachedAt) {
4948
4962
  return cachedAtSec > nowSeconds();
4949
4963
  }
4950
4964
 
4951
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4965
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4952
4966
 
4953
4967
  /*
4954
4968
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5210,7 +5224,7 @@ function isAuthorityMetadataExpired(metadata) {
5210
5224
  return metadata.expiresAt <= nowSeconds();
5211
5225
  }
5212
5226
 
5213
- /*! @azure/msal-common v15.13.1 2025-11-06 */
5227
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
5214
5228
 
5215
5229
  /*
5216
5230
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6049,7 +6063,7 @@ function buildStaticAuthorityOptions(authOptions) {
6049
6063
  };
6050
6064
  }
6051
6065
 
6052
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6066
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6053
6067
 
6054
6068
  /*
6055
6069
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6080,7 +6094,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
6080
6094
  }
6081
6095
  }
6082
6096
 
6083
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6097
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6084
6098
 
6085
6099
  /*
6086
6100
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6099,7 +6113,7 @@ class ServerError extends AuthError {
6099
6113
  }
6100
6114
  }
6101
6115
 
6102
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6116
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6103
6117
  /*
6104
6118
  * Copyright (c) Microsoft Corporation. All rights reserved.
6105
6119
  * Licensed under the MIT License.
@@ -6120,7 +6134,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
6120
6134
  };
6121
6135
  }
6122
6136
 
6123
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6137
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6124
6138
 
6125
6139
  /*
6126
6140
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6207,7 +6221,7 @@ class ThrottlingUtils {
6207
6221
  }
6208
6222
  }
6209
6223
 
6210
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6224
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6211
6225
 
6212
6226
  /*
6213
6227
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6238,7 +6252,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
6238
6252
  return new NetworkError(error, httpStatus, responseHeaders);
6239
6253
  }
6240
6254
 
6241
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6255
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6242
6256
 
6243
6257
  /*
6244
6258
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6386,7 +6400,7 @@ class BaseClient {
6386
6400
  }
6387
6401
  }
6388
6402
 
6389
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6403
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6390
6404
  /*
6391
6405
  * Copyright (c) Microsoft Corporation. All rights reserved.
6392
6406
  * Licensed under the MIT License.
@@ -6414,7 +6428,7 @@ var InteractionRequiredAuthErrorCodes = /*#__PURE__*/Object.freeze({
6414
6428
  uxNotAllowed: uxNotAllowed
6415
6429
  });
6416
6430
 
6417
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6431
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6418
6432
 
6419
6433
  /*
6420
6434
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6504,7 +6518,7 @@ function createInteractionRequiredAuthError(errorCode) {
6504
6518
  return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
6505
6519
  }
6506
6520
 
6507
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6521
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6508
6522
 
6509
6523
  /*
6510
6524
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6576,7 +6590,7 @@ class ProtocolUtils {
6576
6590
  }
6577
6591
  }
6578
6592
 
6579
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6593
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6580
6594
 
6581
6595
  /*
6582
6596
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6658,7 +6672,7 @@ class PopTokenGenerator {
6658
6672
  }
6659
6673
  }
6660
6674
 
6661
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6675
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6662
6676
  /*
6663
6677
  * Copyright (c) Microsoft Corporation. All rights reserved.
6664
6678
  * Licensed under the MIT License.
@@ -6685,7 +6699,7 @@ class PopTokenGenerator {
6685
6699
  }
6686
6700
  }
6687
6701
 
6688
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6702
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6689
6703
 
6690
6704
  /*
6691
6705
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7016,7 +7030,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
7016
7030
  return baseAccount;
7017
7031
  }
7018
7032
 
7019
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7033
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7020
7034
  /*
7021
7035
  * Copyright (c) Microsoft Corporation. All rights reserved.
7022
7036
  * Licensed under the MIT License.
@@ -7034,7 +7048,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
7034
7048
  }
7035
7049
  }
7036
7050
 
7037
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7051
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7038
7052
 
7039
7053
  /*
7040
7054
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7269,7 +7283,7 @@ class AuthorizationCodeClient extends BaseClient {
7269
7283
  }
7270
7284
  }
7271
7285
 
7272
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7286
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7273
7287
 
7274
7288
  /*
7275
7289
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7478,7 +7492,7 @@ class RefreshTokenClient extends BaseClient {
7478
7492
  }
7479
7493
  }
7480
7494
 
7481
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7495
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7482
7496
 
7483
7497
  /*
7484
7498
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7576,7 +7590,7 @@ class SilentFlowClient extends BaseClient {
7576
7590
  }
7577
7591
  }
7578
7592
 
7579
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7593
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7580
7594
 
7581
7595
  /*
7582
7596
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7591,7 +7605,7 @@ const StubbedNetworkModule = {
7591
7605
  },
7592
7606
  };
7593
7607
 
7594
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7608
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7595
7609
 
7596
7610
  /*
7597
7611
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7815,7 +7829,7 @@ function extractLoginHint(account) {
7815
7829
  return account.loginHint || account.idTokenClaims?.login_hint || null;
7816
7830
  }
7817
7831
 
7818
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7832
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7819
7833
 
7820
7834
  /*
7821
7835
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7873,7 +7887,7 @@ class AuthenticationHeaderParser {
7873
7887
  }
7874
7888
  }
7875
7889
 
7876
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7890
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7877
7891
 
7878
7892
  /*
7879
7893
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8136,7 +8150,7 @@ class ServerTelemetryManager {
8136
8150
  }
8137
8151
  }
8138
8152
 
8139
- /*! @azure/msal-common v15.13.1 2025-11-06 */
8153
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
8140
8154
  /*
8141
8155
  * Copyright (c) Microsoft Corporation. All rights reserved.
8142
8156
  * Licensed under the MIT License.
@@ -8144,7 +8158,7 @@ class ServerTelemetryManager {
8144
8158
  const missingKidError = "missing_kid_error";
8145
8159
  const missingAlgError = "missing_alg_error";
8146
8160
 
8147
- /*! @azure/msal-common v15.13.1 2025-11-06 */
8161
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
8148
8162
 
8149
8163
  /*
8150
8164
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8169,7 +8183,7 @@ function createJoseHeaderError(code) {
8169
8183
  return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
8170
8184
  }
8171
8185
 
8172
- /*! @azure/msal-common v15.13.1 2025-11-06 */
8186
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
8173
8187
 
8174
8188
  /*
8175
8189
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8209,7 +8223,7 @@ class JoseHeader {
8209
8223
  }
8210
8224
  }
8211
8225
 
8212
- /*! @azure/msal-common v15.13.1 2025-11-06 */
8226
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
8213
8227
 
8214
8228
  /*
8215
8229
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -10279,6 +10293,7 @@ function buildConfiguration({ auth: userInputAuth, cache: userInputCache, system
10279
10293
  asyncPopups: false,
10280
10294
  allowRedirectInIframe: false,
10281
10295
  allowPlatformBroker: false,
10296
+ allowPlatformBrokerWithDOM: false,
10282
10297
  nativeBrokerHandshakeTimeout: userInputSystem?.nativeBrokerHandshakeTimeout ||
10283
10298
  DEFAULT_NATIVE_BROKER_HANDSHAKE_TIMEOUT_MS,
10284
10299
  pollIntervalMilliseconds: BrowserConstants.DEFAULT_POLL_INTERVAL_MS,
@@ -10325,7 +10340,7 @@ function buildConfiguration({ auth: userInputAuth, cache: userInputCache, system
10325
10340
 
10326
10341
  /* eslint-disable header/header */
10327
10342
  const name = "@azure/msal-browser";
10328
- const version = "4.26.1";
10343
+ const version = "4.27.0";
10329
10344
 
10330
10345
  /*
10331
10346
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -10339,7 +10354,6 @@ const ACCOUNT_SCHEMA_VERSION = 2;
10339
10354
  const LOG_LEVEL_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.level`;
10340
10355
  const LOG_PII_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.pii`;
10341
10356
  const BROWSER_PERF_ENABLED_KEY = `${PREFIX}.${BROWSER_PREFIX}.performance.enabled`;
10342
- const PLATFORM_AUTH_DOM_SUPPORT = `${PREFIX}.${BROWSER_PREFIX}.platform.auth.dom`;
10343
10357
  const VERSION_CACHE_KEY = `${PREFIX}.version`;
10344
10358
  const ACCOUNT_KEYS = "account.keys";
10345
10359
  const TOKEN_KEYS = "token.keys";
@@ -13746,12 +13760,13 @@ class StandardInteractionClient extends BaseInteractionClient {
13746
13760
  async getClientConfiguration(params) {
13747
13761
  const { serverTelemetryManager, requestAuthority, requestAzureCloudOptions, requestExtraQueryParameters, account, } = params;
13748
13762
  this.performanceClient.addQueueMeasurement(PerformanceEvents.StandardInteractionClientGetClientConfiguration, this.correlationId);
13749
- const discoveredAuthority = await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, this.correlationId)({
13750
- requestAuthority,
13751
- requestAzureCloudOptions,
13752
- requestExtraQueryParameters,
13753
- account,
13754
- });
13763
+ const discoveredAuthority = params.authority ||
13764
+ (await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, this.correlationId)({
13765
+ requestAuthority,
13766
+ requestAzureCloudOptions,
13767
+ requestExtraQueryParameters,
13768
+ account,
13769
+ }));
13755
13770
  const logger = this.config.system.loggerOptions;
13756
13771
  return {
13757
13772
  authOptions: {
@@ -14814,6 +14829,8 @@ async function getEARForm(frame, config, authority, request, logger, performance
14814
14829
  const parameters = await getStandardParameters(config, authority, request, logger, performanceClient);
14815
14830
  addResponseType(parameters, OAuthResponseType.IDTOKEN_TOKEN_REFRESHTOKEN);
14816
14831
  addEARParameters(parameters, request.earJwk);
14832
+ // Also add codeChallenge as backup in case EAR is not supported
14833
+ addCodeChallengeParams(parameters, request.codeChallenge, Constants.S256_CODE_CHALLENGE_METHOD);
14817
14834
  const queryParams = new Map();
14818
14835
  addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
14819
14836
  const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
@@ -15419,7 +15436,7 @@ class PlatformAuthDOMHandler {
15419
15436
  * @param perfClient
15420
15437
  * @returns
15421
15438
  */
15422
- async function isPlatformBrokerAvailable(loggerOptions, perfClient, correlationId) {
15439
+ async function isPlatformBrokerAvailable(loggerOptions, perfClient, correlationId, domConfig) {
15423
15440
  const logger = new Logger(loggerOptions || {}, name, version);
15424
15441
  logger.trace("isPlatformBrokerAvailable called");
15425
15442
  const performanceClient = perfClient || new StubPerformanceClient();
@@ -15427,11 +15444,10 @@ async function isPlatformBrokerAvailable(loggerOptions, perfClient, correlationI
15427
15444
  logger.trace("Non-browser environment detected, returning false");
15428
15445
  return false;
15429
15446
  }
15430
- return !!(await getPlatformAuthProvider(logger, performanceClient, correlationId || createNewGuid()));
15447
+ return !!(await getPlatformAuthProvider(logger, performanceClient, correlationId || createNewGuid(), undefined, domConfig));
15431
15448
  }
15432
- async function getPlatformAuthProvider(logger, performanceClient, correlationId, nativeBrokerHandshakeTimeout) {
15449
+ async function getPlatformAuthProvider(logger, performanceClient, correlationId, nativeBrokerHandshakeTimeout, enablePlatformBrokerDOMSupport) {
15433
15450
  logger.trace("getPlatformAuthProvider called", correlationId);
15434
- const enablePlatformBrokerDOMSupport = isDomEnabledForPlatformAuth();
15435
15451
  logger.trace("Has client allowed platform auth via DOM API: " +
15436
15452
  enablePlatformBrokerDOMSupport);
15437
15453
  let platformAuthProvider;
@@ -15456,22 +15472,6 @@ async function getPlatformAuthProvider(logger, performanceClient, correlationId,
15456
15472
  }
15457
15473
  return platformAuthProvider;
15458
15474
  }
15459
- /**
15460
- * Returns true if the DOM API support for platform auth is enabled in session storage
15461
- * @returns boolean
15462
- * @deprecated
15463
- */
15464
- function isDomEnabledForPlatformAuth() {
15465
- let sessionStorage;
15466
- try {
15467
- sessionStorage = window[BrowserCacheLocation.SessionStorage];
15468
- // Mute errors if it's a non-browser environment or cookies are blocked.
15469
- return sessionStorage?.getItem(PLATFORM_AUTH_DOM_SUPPORT) === "true";
15470
- }
15471
- catch (e) {
15472
- return false;
15473
- }
15474
- }
15475
15475
  /**
15476
15476
  * Returns boolean indicating whether or not the request should attempt to use native broker
15477
15477
  * @param logger
@@ -15481,6 +15481,11 @@ function isDomEnabledForPlatformAuth() {
15481
15481
  */
15482
15482
  function isPlatformAuthAllowed(config, logger, platformAuthProvider, authenticationScheme) {
15483
15483
  logger.trace("isPlatformAuthAllowed called");
15484
+ // throw an error if allowPlatformBroker is not enabled and allowPlatformBrokerWithDOM is enabled
15485
+ if (!config.system.allowPlatformBroker &&
15486
+ config.system.allowPlatformBrokerWithDOM) {
15487
+ throw createClientConfigurationError(invalidPlatformBrokerConfiguration);
15488
+ }
15484
15489
  if (!config.system.allowPlatformBroker) {
15485
15490
  logger.trace("isPlatformAuthAllowed: allowPlatformBroker is not enabled, returning false");
15486
15491
  // Developer disabled WAM
@@ -15608,7 +15613,7 @@ class PopupClient extends StandardInteractionClient {
15608
15613
  const isPlatformBroker = isPlatformAuthAllowed(this.config, this.logger, this.platformAuthProvider, request.authenticationScheme);
15609
15614
  validRequest.platformBroker = isPlatformBroker;
15610
15615
  if (this.config.auth.protocolMode === ProtocolMode.EAR) {
15611
- return this.executeEarFlow(validRequest, popupParams);
15616
+ return this.executeEarFlow(validRequest, popupParams, pkceCodes);
15612
15617
  }
15613
15618
  else {
15614
15619
  return this.executeCodeFlow(validRequest, popupParams, pkceCodes);
@@ -15668,7 +15673,7 @@ class PopupClient extends StandardInteractionClient {
15668
15673
  * Executes EAR flow
15669
15674
  * @param request
15670
15675
  */
15671
- async executeEarFlow(request, popupParams) {
15676
+ async executeEarFlow(request, popupParams, pkceCodes) {
15672
15677
  const correlationId = request.correlationId;
15673
15678
  // Get the frame handle for the silent request
15674
15679
  const discoveredAuthority = await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, correlationId)({
@@ -15678,9 +15683,12 @@ class PopupClient extends StandardInteractionClient {
15678
15683
  account: request.account,
15679
15684
  });
15680
15685
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
15686
+ const pkce = pkceCodes ||
15687
+ (await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId));
15681
15688
  const popupRequest = {
15682
15689
  ...request,
15683
15690
  earJwk: earJwk,
15691
+ codeChallenge: pkce.challenge,
15684
15692
  };
15685
15693
  const popupWindow = popupParams.popup || this.openPopup("about:blank", popupParams);
15686
15694
  const form = await getEARForm(popupWindow.document, this.config, discoveredAuthority, popupRequest, this.logger, this.performanceClient);
@@ -15688,7 +15696,20 @@ class PopupClient extends StandardInteractionClient {
15688
15696
  // Monitor the popup for the hash. Return the string value and close the popup when the hash is received. Default timeout is 60 seconds.
15689
15697
  const responseString = await invokeAsync(this.monitorPopupForHash.bind(this), PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(popupWindow, popupParams.popupWindowParent);
15690
15698
  const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, this.correlationId)(responseString, this.config.auth.OIDCOptions.serverResponseType, this.logger);
15691
- return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, ApiId.acquireTokenPopup, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15699
+ if (!serverParams.ear_jwe && serverParams.code) {
15700
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, correlationId)({
15701
+ serverTelemetryManager: this.initializeServerTelemetryManager(ApiId.acquireTokenPopup),
15702
+ requestAuthority: request.authority,
15703
+ requestAzureCloudOptions: request.azureCloudOptions,
15704
+ requestExtraQueryParameters: request.extraQueryParameters,
15705
+ account: request.account,
15706
+ authority: discoveredAuthority,
15707
+ });
15708
+ return invokeAsync(handleResponseCode, PerformanceEvents.HandleResponseCode, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, pkce.verifier, ApiId.acquireTokenPopup, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15709
+ }
15710
+ else {
15711
+ return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, ApiId.acquireTokenPopup, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15712
+ }
15692
15713
  }
15693
15714
  async executeCodeFlowWithPost(request, popupParams, authClient, pkceVerifier) {
15694
15715
  const correlationId = request.correlationId;
@@ -16097,11 +16118,13 @@ class RedirectClient extends StandardInteractionClient {
16097
16118
  account: request.account,
16098
16119
  });
16099
16120
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
16121
+ const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
16100
16122
  const redirectRequest = {
16101
16123
  ...request,
16102
16124
  earJwk: earJwk,
16125
+ codeChallenge: pkceCodes.challenge,
16103
16126
  };
16104
- this.browserStorage.cacheAuthorizeRequest(redirectRequest);
16127
+ this.browserStorage.cacheAuthorizeRequest(redirectRequest, pkceCodes.verifier);
16105
16128
  const form = await getEARForm(document, this.config, discoveredAuthority, redirectRequest, this.logger, this.performanceClient);
16106
16129
  form.submit();
16107
16130
  return new Promise((resolve, reject) => {
@@ -16667,16 +16690,32 @@ class SilentIframeClient extends StandardInteractionClient {
16667
16690
  account: request.account,
16668
16691
  });
16669
16692
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
16693
+ const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
16670
16694
  const silentRequest = {
16671
16695
  ...request,
16672
16696
  earJwk: earJwk,
16697
+ codeChallenge: pkceCodes.challenge,
16673
16698
  };
16674
16699
  const msalFrame = await invokeAsync(initiateEarRequest, PerformanceEvents.SilentHandlerInitiateAuthRequest, this.logger, this.performanceClient, correlationId)(this.config, discoveredAuthority, silentRequest, this.logger, this.performanceClient);
16675
16700
  const responseType = this.config.auth.OIDCOptions.serverResponseType;
16676
16701
  // Monitor the window for the hash. Return the string value and close the popup when the hash is received. Default timeout is 60 seconds.
16677
16702
  const responseString = await invokeAsync(monitorIframeForHash, PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(msalFrame, this.config.system.iframeHashTimeout, this.config.system.pollIntervalMilliseconds, this.performanceClient, this.logger, correlationId, responseType);
16678
16703
  const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger);
16679
- return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
16704
+ if (!serverParams.ear_jwe && serverParams.code) {
16705
+ // If server doesn't support EAR, they may fallback to auth code flow instead
16706
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, correlationId)({
16707
+ serverTelemetryManager: this.initializeServerTelemetryManager(this.apiId),
16708
+ requestAuthority: request.authority,
16709
+ requestAzureCloudOptions: request.azureCloudOptions,
16710
+ requestExtraQueryParameters: request.extraQueryParameters,
16711
+ account: request.account,
16712
+ authority: discoveredAuthority,
16713
+ });
16714
+ return invokeAsync(handleResponseCode, PerformanceEvents.HandleResponseCode, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
16715
+ }
16716
+ else {
16717
+ return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
16718
+ }
16680
16719
  }
16681
16720
  /**
16682
16721
  * Currently Unsupported
@@ -17199,7 +17238,7 @@ class StandardController {
17199
17238
  if (allowPlatformBroker) {
17200
17239
  try {
17201
17240
  // check if platform authentication is available via DOM or browser extension and create relevant handlers
17202
- this.platformAuthProvider = await getPlatformAuthProvider(this.logger, this.performanceClient, initCorrelationId, this.config.system.nativeBrokerHandshakeTimeout);
17241
+ this.platformAuthProvider = await getPlatformAuthProvider(this.logger, this.performanceClient, initCorrelationId, this.config.system.nativeBrokerHandshakeTimeout, this.config.system.allowPlatformBrokerWithDOM);
17203
17242
  }
17204
17243
  catch (e) {
17205
17244
  this.logger.verbose(e);