@azure/msal-browser 4.26.1 → 4.27.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (419) hide show
  1. package/dist/app/IPublicClientApplication.mjs +1 -1
  2. package/dist/app/PublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientNext.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  5. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts +2 -8
  8. package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -1
  9. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +11 -25
  10. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs.map +1 -1
  11. package/dist/cache/AccountManager.mjs +1 -1
  12. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  13. package/dist/cache/BrowserCacheManager.mjs +1 -1
  14. package/dist/cache/CacheHelpers.mjs +1 -1
  15. package/dist/cache/CacheKeys.mjs +2 -3
  16. package/dist/cache/CacheKeys.mjs.map +1 -1
  17. package/dist/cache/CookieStorage.mjs +1 -1
  18. package/dist/cache/DatabaseStorage.mjs +1 -1
  19. package/dist/cache/EncryptedData.mjs +1 -1
  20. package/dist/cache/LocalStorage.mjs +1 -1
  21. package/dist/cache/MemoryStorage.mjs +1 -1
  22. package/dist/cache/SessionStorage.mjs +1 -1
  23. package/dist/cache/TokenCache.mjs +1 -1
  24. package/dist/config/Configuration.d.ts +4 -0
  25. package/dist/config/Configuration.d.ts.map +1 -1
  26. package/dist/config/Configuration.mjs +2 -1
  27. package/dist/config/Configuration.mjs.map +1 -1
  28. package/dist/controllers/ControllerFactory.mjs +1 -1
  29. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  30. package/dist/controllers/StandardController.d.ts.map +1 -1
  31. package/dist/controllers/StandardController.mjs +2 -2
  32. package/dist/controllers/StandardController.mjs.map +1 -1
  33. package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
  34. package/dist/crypto/BrowserCrypto.mjs +1 -1
  35. package/dist/crypto/CryptoOps.mjs +1 -1
  36. package/dist/crypto/PkceGenerator.mjs +1 -1
  37. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  38. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  39. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  40. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  41. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  42. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts +2 -8
  43. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -1
  44. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +9 -23
  45. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs.map +1 -1
  46. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  47. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  48. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
  49. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  50. package/dist/custom-auth-path/cache/CacheKeys.mjs +2 -3
  51. package/dist/custom-auth-path/cache/CacheKeys.mjs.map +1 -1
  52. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  53. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  54. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  55. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  56. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  57. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  58. package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
  59. package/dist/custom-auth-path/config/Configuration.d.ts +4 -0
  60. package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
  61. package/dist/custom-auth-path/config/Configuration.mjs +2 -1
  62. package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
  63. package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
  64. package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
  65. package/dist/custom-auth-path/controllers/StandardController.mjs +2 -2
  66. package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
  67. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  68. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  69. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  70. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  71. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  72. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  73. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  74. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  75. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  76. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  77. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  79. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  81. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  82. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -4
  83. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs.map +1 -1
  84. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  85. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -3
  87. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs.map +1 -1
  88. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  90. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  91. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +3 -10
  93. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs.map +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  96. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -3
  98. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs.map +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  100. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -3
  102. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs.map +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  106. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -7
  108. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs.map +1 -1
  109. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  154. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  155. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  156. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  157. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  159. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  160. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  161. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  162. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  163. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  164. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  165. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  166. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  167. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  168. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  169. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  170. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  171. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  172. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -3
  173. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs.map +1 -1
  174. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  175. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  176. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -3
  177. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs.map +1 -1
  178. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  179. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  180. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -3
  181. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs.map +1 -1
  182. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  183. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  184. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  185. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  186. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  187. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  188. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  189. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  190. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  191. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  192. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  193. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  194. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  195. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  196. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  197. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  198. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  199. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  200. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  201. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  202. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  203. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  204. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  205. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  206. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  207. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  208. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  209. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  210. package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
  211. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  212. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  213. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  214. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  215. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  216. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  217. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts +1 -1
  218. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
  219. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +20 -4
  220. package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
  221. package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
  222. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +4 -2
  223. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
  224. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  225. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  226. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
  227. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +19 -3
  228. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
  229. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  230. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.d.ts +3 -1
  231. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  232. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +8 -7
  233. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs.map +1 -1
  234. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  235. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  236. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  237. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  238. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  239. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  240. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  241. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  242. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  243. package/dist/custom-auth-path/protocol/Authorize.mjs +3 -1
  244. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  245. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  246. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  247. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  248. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  249. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  250. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  251. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  252. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  253. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  254. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  255. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  256. package/dist/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  257. package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  258. package/dist/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  259. package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  260. package/dist/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  261. package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  262. package/dist/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  263. package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  264. package/dist/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  265. package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  266. package/dist/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  267. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  268. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  269. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  270. package/dist/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  271. package/dist/encode/Base64Decode.mjs +1 -1
  272. package/dist/encode/Base64Encode.mjs +1 -1
  273. package/dist/error/BrowserAuthError.mjs +1 -1
  274. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  275. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  276. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  277. package/dist/error/NativeAuthError.mjs +1 -1
  278. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  279. package/dist/error/NestedAppAuthError.mjs +1 -1
  280. package/dist/event/EventHandler.mjs +1 -1
  281. package/dist/event/EventMessage.mjs +1 -1
  282. package/dist/event/EventType.mjs +1 -1
  283. package/dist/index.mjs +1 -1
  284. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  285. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  286. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  287. package/dist/interaction_client/PopupClient.d.ts +1 -1
  288. package/dist/interaction_client/PopupClient.d.ts.map +1 -1
  289. package/dist/interaction_client/PopupClient.mjs +20 -4
  290. package/dist/interaction_client/PopupClient.mjs.map +1 -1
  291. package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
  292. package/dist/interaction_client/RedirectClient.mjs +4 -2
  293. package/dist/interaction_client/RedirectClient.mjs.map +1 -1
  294. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  295. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  296. package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
  297. package/dist/interaction_client/SilentIframeClient.mjs +19 -3
  298. package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
  299. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  300. package/dist/interaction_client/StandardInteractionClient.d.ts +3 -1
  301. package/dist/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  302. package/dist/interaction_client/StandardInteractionClient.mjs +8 -7
  303. package/dist/interaction_client/StandardInteractionClient.mjs.map +1 -1
  304. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  305. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  306. package/dist/naa/BridgeError.mjs +1 -1
  307. package/dist/naa/BridgeProxy.mjs +1 -1
  308. package/dist/naa/BridgeStatusCode.mjs +1 -1
  309. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  310. package/dist/navigation/NavigationClient.mjs +1 -1
  311. package/dist/network/FetchClient.mjs +1 -1
  312. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  313. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  314. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  315. package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
  316. package/dist/packageMetadata.d.ts +1 -1
  317. package/dist/packageMetadata.mjs +2 -2
  318. package/dist/protocol/Authorize.d.ts.map +1 -1
  319. package/dist/protocol/Authorize.mjs +3 -1
  320. package/dist/protocol/Authorize.mjs.map +1 -1
  321. package/dist/request/RequestHelpers.mjs +1 -1
  322. package/dist/response/ResponseHandler.mjs +1 -1
  323. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  324. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  325. package/dist/utils/BrowserConstants.mjs +1 -1
  326. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  327. package/dist/utils/BrowserUtils.mjs +1 -1
  328. package/dist/utils/Helpers.mjs +1 -1
  329. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  330. package/lib/custom-auth-path/msal-custom-auth.cjs +129 -128
  331. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  332. package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts +2 -8
  333. package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -1
  334. package/lib/custom-auth-path/types/config/Configuration.d.ts +4 -0
  335. package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
  336. package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
  337. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  338. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  339. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  340. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  341. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  342. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  343. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  344. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  345. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  346. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  347. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  348. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  349. package/lib/custom-auth-path/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  350. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  351. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  352. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  353. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  354. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  355. package/lib/custom-auth-path/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  356. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts +1 -1
  357. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
  358. package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
  359. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  360. package/lib/custom-auth-path/types/interaction_client/StandardInteractionClient.d.ts +3 -1
  361. package/lib/custom-auth-path/types/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  362. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  363. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  364. package/lib/msal-browser.cjs +141 -102
  365. package/lib/msal-browser.cjs.map +1 -1
  366. package/lib/msal-browser.js +141 -102
  367. package/lib/msal-browser.js.map +1 -1
  368. package/lib/msal-browser.min.js +66 -66
  369. package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts +2 -8
  370. package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -1
  371. package/lib/types/config/Configuration.d.ts +4 -0
  372. package/lib/types/config/Configuration.d.ts.map +1 -1
  373. package/lib/types/controllers/StandardController.d.ts.map +1 -1
  374. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  375. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +0 -3
  376. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -1
  377. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +0 -2
  378. package/lib/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -1
  379. package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +0 -7
  380. package/lib/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -1
  381. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +0 -2
  382. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -1
  383. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +0 -2
  384. package/lib/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -1
  385. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +0 -6
  386. package/lib/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -1
  387. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +0 -2
  388. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -1
  389. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +0 -2
  390. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -1
  391. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +0 -2
  392. package/lib/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -1
  393. package/lib/types/interaction_client/PopupClient.d.ts +1 -1
  394. package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
  395. package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
  396. package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  397. package/lib/types/interaction_client/StandardInteractionClient.d.ts +3 -1
  398. package/lib/types/interaction_client/StandardInteractionClient.d.ts.map +1 -1
  399. package/lib/types/packageMetadata.d.ts +1 -1
  400. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  401. package/package.json +2 -2
  402. package/src/broker/nativeBroker/PlatformAuthProvider.ts +21 -23
  403. package/src/config/Configuration.ts +5 -0
  404. package/src/controllers/StandardController.ts +2 -1
  405. package/src/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.ts +0 -3
  406. package/src/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.ts +0 -2
  407. package/src/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.ts +4 -11
  408. package/src/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.ts +0 -2
  409. package/src/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.ts +0 -2
  410. package/src/custom_auth/core/auth_flow/mfa/state/MfaState.ts +0 -6
  411. package/src/custom_auth/sign_in/auth_flow/result/SignInResult.ts +0 -2
  412. package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.ts +0 -2
  413. package/src/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.ts +0 -2
  414. package/src/interaction_client/PopupClient.ts +73 -21
  415. package/src/interaction_client/RedirectClient.ts +14 -1
  416. package/src/interaction_client/SilentIframeClient.ts +68 -19
  417. package/src/interaction_client/StandardInteractionClient.ts +17 -12
  418. package/src/packageMetadata.ts +1 -1
  419. package/src/protocol/Authorize.ts +7 -0
@@ -1,4 +1,4 @@
1
- /*! @azure/msal-browser v4.26.1 2025-11-06 */
1
+ /*! @azure/msal-browser v4.27.0 2025-12-04 */
2
2
  'use strict';
3
3
  (function (global, factory) {
4
4
  typeof exports === 'object' && typeof module !== 'undefined' ? factory(exports) :
@@ -6,7 +6,7 @@
6
6
  (global = typeof globalThis !== 'undefined' ? globalThis : global || self, factory(global.msal = {}));
7
7
  })(this, (function (exports) { 'use strict';
8
8
 
9
- /*! @azure/msal-common v15.13.1 2025-11-06 */
9
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
10
10
  /*
11
11
  * Copyright (c) Microsoft Corporation. All rights reserved.
12
12
  * Licensed under the MIT License.
@@ -283,7 +283,7 @@
283
283
  // Token renewal offset default in seconds
284
284
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
285
285
 
286
- /*! @azure/msal-common v15.13.1 2025-11-06 */
286
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
287
287
  /*
288
288
  * Copyright (c) Microsoft Corporation. All rights reserved.
289
289
  * Licensed under the MIT License.
@@ -300,7 +300,7 @@
300
300
  unexpectedError: unexpectedError
301
301
  });
302
302
 
303
- /*! @azure/msal-common v15.13.1 2025-11-06 */
303
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
304
304
 
305
305
  /*
306
306
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -349,7 +349,7 @@
349
349
  : AuthErrorMessages[code]);
350
350
  }
351
351
 
352
- /*! @azure/msal-common v15.13.1 2025-11-06 */
352
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
353
353
  /*
354
354
  * Copyright (c) Microsoft Corporation. All rights reserved.
355
355
  * Licensed under the MIT License.
@@ -397,7 +397,8 @@
397
397
  const userCanceled = "user_canceled";
398
398
  const missingTenantIdError = "missing_tenant_id_error";
399
399
  const methodNotImplemented = "method_not_implemented";
400
- const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
400
+ const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
401
+ const platformBrokerError = "platform_broker_error";
401
402
 
402
403
  var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
403
404
  __proto__: null,
@@ -436,6 +437,7 @@
436
437
  nonceMismatch: nonceMismatch,
437
438
  nullOrEmptyToken: nullOrEmptyToken,
438
439
  openIdConfigError: openIdConfigError,
440
+ platformBrokerError: platformBrokerError,
439
441
  requestCannotBeMade: requestCannotBeMade,
440
442
  stateMismatch: stateMismatch,
441
443
  stateNotFound: stateNotFound,
@@ -447,7 +449,7 @@
447
449
  userTimeoutReached: userTimeoutReached
448
450
  });
449
451
 
450
- /*! @azure/msal-common v15.13.1 2025-11-06 */
452
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
451
453
 
452
454
  /*
453
455
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -504,6 +506,7 @@
504
506
  [missingTenantIdError]: "A tenant id - not common, organizations, or consumers - must be specified when using the client_credentials flow.",
505
507
  [methodNotImplemented]: "This method has not been implemented",
506
508
  [nestedAppAuthBridgeDisabled]: "The nested app auth bridge is disabled",
509
+ [platformBrokerError]: "An error occurred in the native broker. See the platformBrokerError property for details.",
507
510
  };
508
511
  /**
509
512
  * String constants used by error codes and messages.
@@ -682,6 +685,10 @@
682
685
  code: nestedAppAuthBridgeDisabled,
683
686
  desc: ClientAuthErrorMessages[nestedAppAuthBridgeDisabled],
684
687
  },
688
+ platformBrokerError: {
689
+ code: platformBrokerError,
690
+ desc: ClientAuthErrorMessages[platformBrokerError],
691
+ },
685
692
  };
686
693
  /**
687
694
  * Error thrown when there is an error in the client code running on the browser.
@@ -699,7 +706,7 @@
699
706
  return new ClientAuthError(errorCode, additionalMessage);
700
707
  }
701
708
 
702
- /*! @azure/msal-common v15.13.1 2025-11-06 */
709
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
703
710
 
704
711
  /*
705
712
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -738,7 +745,7 @@
738
745
  },
739
746
  };
740
747
 
741
- /*! @azure/msal-common v15.13.1 2025-11-06 */
748
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
742
749
 
743
750
  /*
744
751
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -929,12 +936,12 @@
929
936
  }
930
937
  }
931
938
 
932
- /*! @azure/msal-common v15.13.1 2025-11-06 */
939
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
933
940
  /* eslint-disable header/header */
934
941
  const name$1 = "@azure/msal-common";
935
- const version$1 = "15.13.1";
942
+ const version$1 = "15.13.3";
936
943
 
937
- /*! @azure/msal-common v15.13.1 2025-11-06 */
944
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
938
945
  /*
939
946
  * Copyright (c) Microsoft Corporation. All rights reserved.
940
947
  * Licensed under the MIT License.
@@ -954,7 +961,7 @@
954
961
  AzureUsGovernment: "https://login.microsoftonline.us",
955
962
  };
956
963
 
957
- /*! @azure/msal-common v15.13.1 2025-11-06 */
964
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
958
965
  /*
959
966
  * Copyright (c) Microsoft Corporation. All rights reserved.
960
967
  * Licensed under the MIT License.
@@ -981,7 +988,8 @@
981
988
  const cannotAllowPlatformBroker = "cannot_allow_platform_broker";
982
989
  const authorityMismatch = "authority_mismatch";
983
990
  const invalidRequestMethodForEAR = "invalid_request_method_for_EAR";
984
- const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
991
+ const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
992
+ const invalidPlatformBrokerConfiguration = "invalid_platform_broker_configuration";
985
993
 
986
994
  var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
987
995
  __proto__: null,
@@ -997,6 +1005,7 @@
997
1005
  invalidClaims: invalidClaims,
998
1006
  invalidCloudDiscoveryMetadata: invalidCloudDiscoveryMetadata,
999
1007
  invalidCodeChallengeMethod: invalidCodeChallengeMethod,
1008
+ invalidPlatformBrokerConfiguration: invalidPlatformBrokerConfiguration,
1000
1009
  invalidRequestMethodForEAR: invalidRequestMethodForEAR,
1001
1010
  logoutRequestEmpty: logoutRequestEmpty,
1002
1011
  missingNonceAuthenticationHeader: missingNonceAuthenticationHeader,
@@ -1010,7 +1019,7 @@
1010
1019
  urlParseError: urlParseError
1011
1020
  });
1012
1021
 
1013
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1022
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1014
1023
 
1015
1024
  /*
1016
1025
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1040,6 +1049,7 @@
1040
1049
  [authorityMismatch]: "Authority mismatch error. Authority provided in login request or PublicClientApplication config does not match the environment of the provided account. Please use a matching account or make an interactive request to login to this authority.",
1041
1050
  [invalidAuthorizePostBodyParameters]: "Invalid authorize post body parameters provided. If you are using authorizePostBodyParameters, the request method must be POST. Please check the request method and parameters.",
1042
1051
  [invalidRequestMethodForEAR]: "Invalid request method for EAR protocol mode. The request method cannot be GET when using EAR protocol mode. Please change the request method to POST.",
1052
+ [invalidPlatformBrokerConfiguration]: "Invalid platform broker configuration. `allowPlatformBrokerWithDOM` can only be enabled when `allowPlatformBroker` is enabled.",
1043
1053
  };
1044
1054
  /**
1045
1055
  * ClientConfigurationErrorMessage class containing string constants used by error codes and messages.
@@ -1138,6 +1148,10 @@
1138
1148
  code: invalidRequestMethodForEAR,
1139
1149
  desc: ClientConfigurationErrorMessages[invalidRequestMethodForEAR],
1140
1150
  },
1151
+ invalidPlatformBrokerConfiguration: {
1152
+ code: invalidPlatformBrokerConfiguration,
1153
+ desc: ClientConfigurationErrorMessages[invalidPlatformBrokerConfiguration],
1154
+ },
1141
1155
  };
1142
1156
  /**
1143
1157
  * Error thrown when there is an error in configuration of the MSAL.js library.
@@ -1153,7 +1167,7 @@
1153
1167
  return new ClientConfigurationError(errorCode);
1154
1168
  }
1155
1169
 
1156
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1170
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1157
1171
  /*
1158
1172
  * Copyright (c) Microsoft Corporation. All rights reserved.
1159
1173
  * Licensed under the MIT License.
@@ -1250,7 +1264,7 @@
1250
1264
  }
1251
1265
  }
1252
1266
 
1253
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1267
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1254
1268
 
1255
1269
  /*
1256
1270
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1445,7 +1459,7 @@
1445
1459
  }
1446
1460
  }
1447
1461
 
1448
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1462
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1449
1463
 
1450
1464
  /*
1451
1465
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1485,7 +1499,7 @@
1485
1499
  };
1486
1500
  }
1487
1501
 
1488
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1502
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1489
1503
  /*
1490
1504
  * Copyright (c) Microsoft Corporation. All rights reserved.
1491
1505
  * Licensed under the MIT License.
@@ -1567,7 +1581,7 @@
1567
1581
  return updatedAccountInfo;
1568
1582
  }
1569
1583
 
1570
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1584
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1571
1585
  /*
1572
1586
  * Copyright (c) Microsoft Corporation. All rights reserved.
1573
1587
  * Licensed under the MIT License.
@@ -1582,7 +1596,7 @@
1582
1596
  Ciam: 3,
1583
1597
  };
1584
1598
 
1585
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1599
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1586
1600
  /*
1587
1601
  * Copyright (c) Microsoft Corporation. All rights reserved.
1588
1602
  * Licensed under the MIT License.
@@ -1604,7 +1618,7 @@
1604
1618
  return null;
1605
1619
  }
1606
1620
 
1607
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1621
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1608
1622
  /*
1609
1623
  * Copyright (c) Microsoft Corporation. All rights reserved.
1610
1624
  * Licensed under the MIT License.
@@ -1628,7 +1642,7 @@
1628
1642
  EAR: "EAR",
1629
1643
  };
1630
1644
 
1631
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1645
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1632
1646
 
1633
1647
  /*
1634
1648
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1849,7 +1863,7 @@
1849
1863
  }
1850
1864
  }
1851
1865
 
1852
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1866
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1853
1867
 
1854
1868
  /*
1855
1869
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1930,7 +1944,7 @@
1930
1944
  }
1931
1945
  }
1932
1946
 
1933
- /*! @azure/msal-common v15.13.1 2025-11-06 */
1947
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
1934
1948
 
1935
1949
  /*
1936
1950
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2046,7 +2060,7 @@
2046
2060
  }
2047
2061
  }
2048
2062
 
2049
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2063
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2050
2064
 
2051
2065
  /*
2052
2066
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2210,7 +2224,7 @@
2210
2224
  }
2211
2225
  }
2212
2226
 
2213
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2227
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2214
2228
 
2215
2229
  /*
2216
2230
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2349,7 +2363,7 @@
2349
2363
  return null;
2350
2364
  }
2351
2365
 
2352
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2366
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2353
2367
  /*
2354
2368
  * Copyright (c) Microsoft Corporation. All rights reserved.
2355
2369
  * Licensed under the MIT License.
@@ -2357,7 +2371,7 @@
2357
2371
  const cacheQuotaExceeded = "cache_quota_exceeded";
2358
2372
  const cacheErrorUnknown = "cache_error_unknown";
2359
2373
 
2360
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2374
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2361
2375
 
2362
2376
  /*
2363
2377
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2402,7 +2416,7 @@
2402
2416
  }
2403
2417
  }
2404
2418
 
2405
- /*! @azure/msal-common v15.13.1 2025-11-06 */
2419
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
2406
2420
 
2407
2421
  /*
2408
2422
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3512,7 +3526,7 @@
3512
3526
  }
3513
3527
  }
3514
3528
 
3515
- /*! @azure/msal-common v15.13.1 2025-11-06 */
3529
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
3516
3530
  /*
3517
3531
  * Copyright (c) Microsoft Corporation. All rights reserved.
3518
3532
  * Licensed under the MIT License.
@@ -4034,7 +4048,7 @@
4034
4048
  "upgradedCacheCount",
4035
4049
  ]);
4036
4050
 
4037
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4051
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4038
4052
 
4039
4053
  /*
4040
4054
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4113,7 +4127,7 @@
4113
4127
  }
4114
4128
  }
4115
4129
 
4116
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4130
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4117
4131
 
4118
4132
  /*
4119
4133
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4213,7 +4227,7 @@
4213
4227
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
4214
4228
  }
4215
4229
 
4216
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4230
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4217
4231
  /*
4218
4232
  * Copyright (c) Microsoft Corporation. All rights reserved.
4219
4233
  * Licensed under the MIT License.
@@ -4223,7 +4237,7 @@
4223
4237
  UPN: "UPN",
4224
4238
  };
4225
4239
 
4226
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4240
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4227
4241
  /*
4228
4242
  * Copyright (c) Microsoft Corporation. All rights reserved.
4229
4243
  * Licensed under the MIT License.
@@ -4273,7 +4287,7 @@
4273
4287
  const EAR_JWK = "ear_jwk";
4274
4288
  const EAR_JWE_CRYPTO = "ear_jwe_crypto";
4275
4289
 
4276
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4290
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4277
4291
 
4278
4292
  /*
4279
4293
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4653,7 +4667,7 @@
4653
4667
  });
4654
4668
  }
4655
4669
 
4656
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4670
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4657
4671
  /*
4658
4672
  * Copyright (c) Microsoft Corporation. All rights reserved.
4659
4673
  * Licensed under the MIT License.
@@ -4665,7 +4679,7 @@
4665
4679
  response.hasOwnProperty("jwks_uri"));
4666
4680
  }
4667
4681
 
4668
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4682
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4669
4683
  /*
4670
4684
  * Copyright (c) Microsoft Corporation. All rights reserved.
4671
4685
  * Licensed under the MIT License.
@@ -4675,7 +4689,7 @@
4675
4689
  response.hasOwnProperty("metadata"));
4676
4690
  }
4677
4691
 
4678
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4692
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4679
4693
  /*
4680
4694
  * Copyright (c) Microsoft Corporation. All rights reserved.
4681
4695
  * Licensed under the MIT License.
@@ -4685,7 +4699,7 @@
4685
4699
  response.hasOwnProperty("error_description"));
4686
4700
  }
4687
4701
 
4688
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4702
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4689
4703
  /*
4690
4704
  * Copyright (c) Microsoft Corporation. All rights reserved.
4691
4705
  * Licensed under the MIT License.
@@ -4781,7 +4795,7 @@
4781
4795
  };
4782
4796
  };
4783
4797
 
4784
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4798
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4785
4799
 
4786
4800
  /*
4787
4801
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4887,7 +4901,7 @@
4887
4901
  },
4888
4902
  };
4889
4903
 
4890
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4904
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4891
4905
  /*
4892
4906
  * Copyright (c) Microsoft Corporation. All rights reserved.
4893
4907
  * Licensed under the MIT License.
@@ -4952,7 +4966,7 @@
4952
4966
  return cachedAtSec > nowSeconds();
4953
4967
  }
4954
4968
 
4955
- /*! @azure/msal-common v15.13.1 2025-11-06 */
4969
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
4956
4970
 
4957
4971
  /*
4958
4972
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5214,7 +5228,7 @@
5214
5228
  return metadata.expiresAt <= nowSeconds();
5215
5229
  }
5216
5230
 
5217
- /*! @azure/msal-common v15.13.1 2025-11-06 */
5231
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
5218
5232
 
5219
5233
  /*
5220
5234
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6053,7 +6067,7 @@
6053
6067
  };
6054
6068
  }
6055
6069
 
6056
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6070
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6057
6071
 
6058
6072
  /*
6059
6073
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6084,7 +6098,7 @@
6084
6098
  }
6085
6099
  }
6086
6100
 
6087
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6101
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6088
6102
 
6089
6103
  /*
6090
6104
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6103,7 +6117,7 @@
6103
6117
  }
6104
6118
  }
6105
6119
 
6106
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6120
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6107
6121
  /*
6108
6122
  * Copyright (c) Microsoft Corporation. All rights reserved.
6109
6123
  * Licensed under the MIT License.
@@ -6124,7 +6138,7 @@
6124
6138
  };
6125
6139
  }
6126
6140
 
6127
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6141
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6128
6142
 
6129
6143
  /*
6130
6144
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6211,7 +6225,7 @@
6211
6225
  }
6212
6226
  }
6213
6227
 
6214
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6228
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6215
6229
 
6216
6230
  /*
6217
6231
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6242,7 +6256,7 @@
6242
6256
  return new NetworkError(error, httpStatus, responseHeaders);
6243
6257
  }
6244
6258
 
6245
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6259
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6246
6260
 
6247
6261
  /*
6248
6262
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6390,7 +6404,7 @@
6390
6404
  }
6391
6405
  }
6392
6406
 
6393
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6407
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6394
6408
  /*
6395
6409
  * Copyright (c) Microsoft Corporation. All rights reserved.
6396
6410
  * Licensed under the MIT License.
@@ -6418,7 +6432,7 @@
6418
6432
  uxNotAllowed: uxNotAllowed
6419
6433
  });
6420
6434
 
6421
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6435
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6422
6436
 
6423
6437
  /*
6424
6438
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6508,7 +6522,7 @@
6508
6522
  return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
6509
6523
  }
6510
6524
 
6511
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6525
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6512
6526
 
6513
6527
  /*
6514
6528
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6580,7 +6594,7 @@
6580
6594
  }
6581
6595
  }
6582
6596
 
6583
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6597
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6584
6598
 
6585
6599
  /*
6586
6600
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6662,7 +6676,7 @@
6662
6676
  }
6663
6677
  }
6664
6678
 
6665
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6679
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6666
6680
  /*
6667
6681
  * Copyright (c) Microsoft Corporation. All rights reserved.
6668
6682
  * Licensed under the MIT License.
@@ -6689,7 +6703,7 @@
6689
6703
  }
6690
6704
  }
6691
6705
 
6692
- /*! @azure/msal-common v15.13.1 2025-11-06 */
6706
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
6693
6707
 
6694
6708
  /*
6695
6709
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7020,7 +7034,7 @@
7020
7034
  return baseAccount;
7021
7035
  }
7022
7036
 
7023
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7037
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7024
7038
  /*
7025
7039
  * Copyright (c) Microsoft Corporation. All rights reserved.
7026
7040
  * Licensed under the MIT License.
@@ -7038,7 +7052,7 @@
7038
7052
  }
7039
7053
  }
7040
7054
 
7041
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7055
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7042
7056
 
7043
7057
  /*
7044
7058
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7273,7 +7287,7 @@
7273
7287
  }
7274
7288
  }
7275
7289
 
7276
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7290
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7277
7291
 
7278
7292
  /*
7279
7293
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7482,7 +7496,7 @@
7482
7496
  }
7483
7497
  }
7484
7498
 
7485
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7499
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7486
7500
 
7487
7501
  /*
7488
7502
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7580,7 +7594,7 @@
7580
7594
  }
7581
7595
  }
7582
7596
 
7583
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7597
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7584
7598
 
7585
7599
  /*
7586
7600
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7595,7 +7609,7 @@
7595
7609
  },
7596
7610
  };
7597
7611
 
7598
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7612
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7599
7613
 
7600
7614
  /*
7601
7615
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7819,7 +7833,7 @@
7819
7833
  return account.loginHint || account.idTokenClaims?.login_hint || null;
7820
7834
  }
7821
7835
 
7822
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7836
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7823
7837
 
7824
7838
  /*
7825
7839
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7877,7 +7891,7 @@
7877
7891
  }
7878
7892
  }
7879
7893
 
7880
- /*! @azure/msal-common v15.13.1 2025-11-06 */
7894
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
7881
7895
 
7882
7896
  /*
7883
7897
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8140,7 +8154,7 @@
8140
8154
  }
8141
8155
  }
8142
8156
 
8143
- /*! @azure/msal-common v15.13.1 2025-11-06 */
8157
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
8144
8158
  /*
8145
8159
  * Copyright (c) Microsoft Corporation. All rights reserved.
8146
8160
  * Licensed under the MIT License.
@@ -8148,7 +8162,7 @@
8148
8162
  const missingKidError = "missing_kid_error";
8149
8163
  const missingAlgError = "missing_alg_error";
8150
8164
 
8151
- /*! @azure/msal-common v15.13.1 2025-11-06 */
8165
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
8152
8166
 
8153
8167
  /*
8154
8168
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8173,7 +8187,7 @@
8173
8187
  return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
8174
8188
  }
8175
8189
 
8176
- /*! @azure/msal-common v15.13.1 2025-11-06 */
8190
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
8177
8191
 
8178
8192
  /*
8179
8193
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8213,7 +8227,7 @@
8213
8227
  }
8214
8228
  }
8215
8229
 
8216
- /*! @azure/msal-common v15.13.1 2025-11-06 */
8230
+ /*! @azure/msal-common v15.13.3 2025-12-04 */
8217
8231
 
8218
8232
  /*
8219
8233
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -10283,6 +10297,7 @@
10283
10297
  asyncPopups: false,
10284
10298
  allowRedirectInIframe: false,
10285
10299
  allowPlatformBroker: false,
10300
+ allowPlatformBrokerWithDOM: false,
10286
10301
  nativeBrokerHandshakeTimeout: userInputSystem?.nativeBrokerHandshakeTimeout ||
10287
10302
  DEFAULT_NATIVE_BROKER_HANDSHAKE_TIMEOUT_MS,
10288
10303
  pollIntervalMilliseconds: BrowserConstants.DEFAULT_POLL_INTERVAL_MS,
@@ -10329,7 +10344,7 @@
10329
10344
 
10330
10345
  /* eslint-disable header/header */
10331
10346
  const name = "@azure/msal-browser";
10332
- const version = "4.26.1";
10347
+ const version = "4.27.0";
10333
10348
 
10334
10349
  /*
10335
10350
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -10343,7 +10358,6 @@
10343
10358
  const LOG_LEVEL_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.level`;
10344
10359
  const LOG_PII_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.pii`;
10345
10360
  const BROWSER_PERF_ENABLED_KEY = `${PREFIX}.${BROWSER_PREFIX}.performance.enabled`;
10346
- const PLATFORM_AUTH_DOM_SUPPORT = `${PREFIX}.${BROWSER_PREFIX}.platform.auth.dom`;
10347
10361
  const VERSION_CACHE_KEY = `${PREFIX}.version`;
10348
10362
  const ACCOUNT_KEYS = "account.keys";
10349
10363
  const TOKEN_KEYS = "token.keys";
@@ -13750,12 +13764,13 @@
13750
13764
  async getClientConfiguration(params) {
13751
13765
  const { serverTelemetryManager, requestAuthority, requestAzureCloudOptions, requestExtraQueryParameters, account, } = params;
13752
13766
  this.performanceClient.addQueueMeasurement(PerformanceEvents.StandardInteractionClientGetClientConfiguration, this.correlationId);
13753
- const discoveredAuthority = await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, this.correlationId)({
13754
- requestAuthority,
13755
- requestAzureCloudOptions,
13756
- requestExtraQueryParameters,
13757
- account,
13758
- });
13767
+ const discoveredAuthority = params.authority ||
13768
+ (await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, this.correlationId)({
13769
+ requestAuthority,
13770
+ requestAzureCloudOptions,
13771
+ requestExtraQueryParameters,
13772
+ account,
13773
+ }));
13759
13774
  const logger = this.config.system.loggerOptions;
13760
13775
  return {
13761
13776
  authOptions: {
@@ -14818,6 +14833,8 @@
14818
14833
  const parameters = await getStandardParameters(config, authority, request, logger, performanceClient);
14819
14834
  addResponseType(parameters, OAuthResponseType.IDTOKEN_TOKEN_REFRESHTOKEN);
14820
14835
  addEARParameters(parameters, request.earJwk);
14836
+ // Also add codeChallenge as backup in case EAR is not supported
14837
+ addCodeChallengeParams(parameters, request.codeChallenge, Constants.S256_CODE_CHALLENGE_METHOD);
14821
14838
  const queryParams = new Map();
14822
14839
  addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
14823
14840
  const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
@@ -15423,7 +15440,7 @@
15423
15440
  * @param perfClient
15424
15441
  * @returns
15425
15442
  */
15426
- async function isPlatformBrokerAvailable(loggerOptions, perfClient, correlationId) {
15443
+ async function isPlatformBrokerAvailable(loggerOptions, perfClient, correlationId, domConfig) {
15427
15444
  const logger = new Logger(loggerOptions || {}, name, version);
15428
15445
  logger.trace("isPlatformBrokerAvailable called");
15429
15446
  const performanceClient = perfClient || new StubPerformanceClient();
@@ -15431,11 +15448,10 @@
15431
15448
  logger.trace("Non-browser environment detected, returning false");
15432
15449
  return false;
15433
15450
  }
15434
- return !!(await getPlatformAuthProvider(logger, performanceClient, correlationId || createNewGuid()));
15451
+ return !!(await getPlatformAuthProvider(logger, performanceClient, correlationId || createNewGuid(), undefined, domConfig));
15435
15452
  }
15436
- async function getPlatformAuthProvider(logger, performanceClient, correlationId, nativeBrokerHandshakeTimeout) {
15453
+ async function getPlatformAuthProvider(logger, performanceClient, correlationId, nativeBrokerHandshakeTimeout, enablePlatformBrokerDOMSupport) {
15437
15454
  logger.trace("getPlatformAuthProvider called", correlationId);
15438
- const enablePlatformBrokerDOMSupport = isDomEnabledForPlatformAuth();
15439
15455
  logger.trace("Has client allowed platform auth via DOM API: " +
15440
15456
  enablePlatformBrokerDOMSupport);
15441
15457
  let platformAuthProvider;
@@ -15460,22 +15476,6 @@
15460
15476
  }
15461
15477
  return platformAuthProvider;
15462
15478
  }
15463
- /**
15464
- * Returns true if the DOM API support for platform auth is enabled in session storage
15465
- * @returns boolean
15466
- * @deprecated
15467
- */
15468
- function isDomEnabledForPlatformAuth() {
15469
- let sessionStorage;
15470
- try {
15471
- sessionStorage = window[BrowserCacheLocation.SessionStorage];
15472
- // Mute errors if it's a non-browser environment or cookies are blocked.
15473
- return sessionStorage?.getItem(PLATFORM_AUTH_DOM_SUPPORT) === "true";
15474
- }
15475
- catch (e) {
15476
- return false;
15477
- }
15478
- }
15479
15479
  /**
15480
15480
  * Returns boolean indicating whether or not the request should attempt to use native broker
15481
15481
  * @param logger
@@ -15485,6 +15485,11 @@
15485
15485
  */
15486
15486
  function isPlatformAuthAllowed(config, logger, platformAuthProvider, authenticationScheme) {
15487
15487
  logger.trace("isPlatformAuthAllowed called");
15488
+ // throw an error if allowPlatformBroker is not enabled and allowPlatformBrokerWithDOM is enabled
15489
+ if (!config.system.allowPlatformBroker &&
15490
+ config.system.allowPlatformBrokerWithDOM) {
15491
+ throw createClientConfigurationError(invalidPlatformBrokerConfiguration);
15492
+ }
15488
15493
  if (!config.system.allowPlatformBroker) {
15489
15494
  logger.trace("isPlatformAuthAllowed: allowPlatformBroker is not enabled, returning false");
15490
15495
  // Developer disabled WAM
@@ -15612,7 +15617,7 @@
15612
15617
  const isPlatformBroker = isPlatformAuthAllowed(this.config, this.logger, this.platformAuthProvider, request.authenticationScheme);
15613
15618
  validRequest.platformBroker = isPlatformBroker;
15614
15619
  if (this.config.auth.protocolMode === ProtocolMode.EAR) {
15615
- return this.executeEarFlow(validRequest, popupParams);
15620
+ return this.executeEarFlow(validRequest, popupParams, pkceCodes);
15616
15621
  }
15617
15622
  else {
15618
15623
  return this.executeCodeFlow(validRequest, popupParams, pkceCodes);
@@ -15672,7 +15677,7 @@
15672
15677
  * Executes EAR flow
15673
15678
  * @param request
15674
15679
  */
15675
- async executeEarFlow(request, popupParams) {
15680
+ async executeEarFlow(request, popupParams, pkceCodes) {
15676
15681
  const correlationId = request.correlationId;
15677
15682
  // Get the frame handle for the silent request
15678
15683
  const discoveredAuthority = await invokeAsync(this.getDiscoveredAuthority.bind(this), PerformanceEvents.StandardInteractionClientGetDiscoveredAuthority, this.logger, this.performanceClient, correlationId)({
@@ -15682,9 +15687,12 @@
15682
15687
  account: request.account,
15683
15688
  });
15684
15689
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
15690
+ const pkce = pkceCodes ||
15691
+ (await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId));
15685
15692
  const popupRequest = {
15686
15693
  ...request,
15687
15694
  earJwk: earJwk,
15695
+ codeChallenge: pkce.challenge,
15688
15696
  };
15689
15697
  const popupWindow = popupParams.popup || this.openPopup("about:blank", popupParams);
15690
15698
  const form = await getEARForm(popupWindow.document, this.config, discoveredAuthority, popupRequest, this.logger, this.performanceClient);
@@ -15692,7 +15700,20 @@
15692
15700
  // Monitor the popup for the hash. Return the string value and close the popup when the hash is received. Default timeout is 60 seconds.
15693
15701
  const responseString = await invokeAsync(this.monitorPopupForHash.bind(this), PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(popupWindow, popupParams.popupWindowParent);
15694
15702
  const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, this.correlationId)(responseString, this.config.auth.OIDCOptions.serverResponseType, this.logger);
15695
- return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, ApiId.acquireTokenPopup, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15703
+ if (!serverParams.ear_jwe && serverParams.code) {
15704
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, correlationId)({
15705
+ serverTelemetryManager: this.initializeServerTelemetryManager(ApiId.acquireTokenPopup),
15706
+ requestAuthority: request.authority,
15707
+ requestAzureCloudOptions: request.azureCloudOptions,
15708
+ requestExtraQueryParameters: request.extraQueryParameters,
15709
+ account: request.account,
15710
+ authority: discoveredAuthority,
15711
+ });
15712
+ return invokeAsync(handleResponseCode, PerformanceEvents.HandleResponseCode, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, pkce.verifier, ApiId.acquireTokenPopup, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15713
+ }
15714
+ else {
15715
+ return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(popupRequest, serverParams, ApiId.acquireTokenPopup, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15716
+ }
15696
15717
  }
15697
15718
  async executeCodeFlowWithPost(request, popupParams, authClient, pkceVerifier) {
15698
15719
  const correlationId = request.correlationId;
@@ -16101,11 +16122,13 @@
16101
16122
  account: request.account,
16102
16123
  });
16103
16124
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
16125
+ const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
16104
16126
  const redirectRequest = {
16105
16127
  ...request,
16106
16128
  earJwk: earJwk,
16129
+ codeChallenge: pkceCodes.challenge,
16107
16130
  };
16108
- this.browserStorage.cacheAuthorizeRequest(redirectRequest);
16131
+ this.browserStorage.cacheAuthorizeRequest(redirectRequest, pkceCodes.verifier);
16109
16132
  const form = await getEARForm(document, this.config, discoveredAuthority, redirectRequest, this.logger, this.performanceClient);
16110
16133
  form.submit();
16111
16134
  return new Promise((resolve, reject) => {
@@ -16671,16 +16694,32 @@
16671
16694
  account: request.account,
16672
16695
  });
16673
16696
  const earJwk = await invokeAsync(generateEarKey, PerformanceEvents.GenerateEarKey, this.logger, this.performanceClient, correlationId)();
16697
+ const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
16674
16698
  const silentRequest = {
16675
16699
  ...request,
16676
16700
  earJwk: earJwk,
16701
+ codeChallenge: pkceCodes.challenge,
16677
16702
  };
16678
16703
  const msalFrame = await invokeAsync(initiateEarRequest, PerformanceEvents.SilentHandlerInitiateAuthRequest, this.logger, this.performanceClient, correlationId)(this.config, discoveredAuthority, silentRequest, this.logger, this.performanceClient);
16679
16704
  const responseType = this.config.auth.OIDCOptions.serverResponseType;
16680
16705
  // Monitor the window for the hash. Return the string value and close the popup when the hash is received. Default timeout is 60 seconds.
16681
16706
  const responseString = await invokeAsync(monitorIframeForHash, PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(msalFrame, this.config.system.iframeHashTimeout, this.config.system.pollIntervalMilliseconds, this.performanceClient, this.logger, correlationId, responseType);
16682
16707
  const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger);
16683
- return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
16708
+ if (!serverParams.ear_jwe && serverParams.code) {
16709
+ // If server doesn't support EAR, they may fallback to auth code flow instead
16710
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, correlationId)({
16711
+ serverTelemetryManager: this.initializeServerTelemetryManager(this.apiId),
16712
+ requestAuthority: request.authority,
16713
+ requestAzureCloudOptions: request.azureCloudOptions,
16714
+ requestExtraQueryParameters: request.extraQueryParameters,
16715
+ account: request.account,
16716
+ authority: discoveredAuthority,
16717
+ });
16718
+ return invokeAsync(handleResponseCode, PerformanceEvents.HandleResponseCode, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
16719
+ }
16720
+ else {
16721
+ return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
16722
+ }
16684
16723
  }
16685
16724
  /**
16686
16725
  * Currently Unsupported
@@ -17203,7 +17242,7 @@
17203
17242
  if (allowPlatformBroker) {
17204
17243
  try {
17205
17244
  // check if platform authentication is available via DOM or browser extension and create relevant handlers
17206
- this.platformAuthProvider = await getPlatformAuthProvider(this.logger, this.performanceClient, initCorrelationId, this.config.system.nativeBrokerHandshakeTimeout);
17245
+ this.platformAuthProvider = await getPlatformAuthProvider(this.logger, this.performanceClient, initCorrelationId, this.config.system.nativeBrokerHandshakeTimeout, this.config.system.allowPlatformBrokerWithDOM);
17207
17246
  }
17208
17247
  catch (e) {
17209
17248
  this.logger.verbose(e);