@azure/msal-browser 4.28.1 → 4.29.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/app/IPublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientNext.mjs +1 -1
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/cache/AccountManager.mjs +1 -1
- package/dist/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/cache/BrowserCacheManager.mjs +1 -1
- package/dist/cache/CacheHelpers.mjs +1 -1
- package/dist/cache/CacheKeys.mjs +1 -1
- package/dist/cache/CookieStorage.mjs +1 -1
- package/dist/cache/DatabaseStorage.mjs +1 -1
- package/dist/cache/EncryptedData.mjs +1 -1
- package/dist/cache/LocalStorage.mjs +1 -1
- package/dist/cache/MemoryStorage.mjs +1 -1
- package/dist/cache/SessionStorage.mjs +1 -1
- package/dist/cache/TokenCache.mjs +1 -1
- package/dist/config/Configuration.d.ts +7 -0
- package/dist/config/Configuration.d.ts.map +1 -1
- package/dist/config/Configuration.mjs +2 -1
- package/dist/config/Configuration.mjs.map +1 -1
- package/dist/controllers/ControllerFactory.mjs +1 -1
- package/dist/controllers/NestedAppAuthController.mjs +1 -1
- package/dist/controllers/StandardController.d.ts +9 -0
- package/dist/controllers/StandardController.d.ts.map +1 -1
- package/dist/controllers/StandardController.mjs +56 -1
- package/dist/controllers/StandardController.mjs.map +1 -1
- package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
- package/dist/crypto/BrowserCrypto.mjs +1 -1
- package/dist/crypto/CryptoOps.mjs +1 -1
- package/dist/crypto/PkceGenerator.mjs +1 -1
- package/dist/crypto/SignedHttpRequest.mjs +1 -1
- package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
- package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
- package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
- package/dist/custom-auth-path/config/Configuration.d.ts +7 -0
- package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
- package/dist/custom-auth-path/config/Configuration.mjs +2 -1
- package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
- package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
- package/dist/custom-auth-path/controllers/StandardController.d.ts +9 -0
- package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.mjs +56 -1
- package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
- package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
- package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
- package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
- package/dist/custom-auth-path/event/EventType.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +7 -0
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +49 -3
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
- package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
- package/dist/custom-auth-path/packageMetadata.mjs +2 -2
- package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs +5 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
- package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
- package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
- package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/encode/Base64Decode.mjs +1 -1
- package/dist/encode/Base64Encode.mjs +1 -1
- package/dist/error/BrowserAuthError.mjs +1 -1
- package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/error/NativeAuthError.mjs +1 -1
- package/dist/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/error/NestedAppAuthError.mjs +1 -1
- package/dist/event/EventHandler.mjs +1 -1
- package/dist/event/EventMessage.mjs +1 -1
- package/dist/event/EventType.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
- package/dist/interaction_client/PopupClient.mjs +1 -1
- package/dist/interaction_client/RedirectClient.mjs +1 -1
- package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/interaction_client/SilentIframeClient.d.ts +7 -0
- package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/interaction_client/SilentIframeClient.mjs +49 -3
- package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
- package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/naa/BridgeError.mjs +1 -1
- package/dist/naa/BridgeProxy.mjs +1 -1
- package/dist/naa/BridgeStatusCode.mjs +1 -1
- package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
- package/dist/navigation/NavigationClient.mjs +1 -1
- package/dist/network/FetchClient.mjs +1 -1
- package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
- package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.d.ts.map +1 -1
- package/dist/protocol/Authorize.mjs +5 -1
- package/dist/protocol/Authorize.mjs.map +1 -1
- package/dist/request/RequestHelpers.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
- package/dist/utils/BrowserConstants.mjs +1 -1
- package/dist/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/utils/BrowserUtils.mjs +1 -1
- package/dist/utils/Helpers.mjs +1 -1
- package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
- package/lib/custom-auth-path/msal-custom-auth.cjs +253 -68
- package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
- package/lib/custom-auth-path/msal-custom-auth.js +253 -68
- package/lib/custom-auth-path/msal-custom-auth.js.map +1 -1
- package/lib/custom-auth-path/types/config/Configuration.d.ts +7 -0
- package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts +9 -0
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +7 -0
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
- package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/msal-browser.cjs +261 -70
- package/lib/msal-browser.cjs.map +1 -1
- package/lib/msal-browser.js +261 -70
- package/lib/msal-browser.js.map +1 -1
- package/lib/msal-browser.min.js +64 -64
- package/lib/types/config/Configuration.d.ts +7 -0
- package/lib/types/config/Configuration.d.ts.map +1 -1
- package/lib/types/controllers/StandardController.d.ts +9 -0
- package/lib/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/types/interaction_client/SilentIframeClient.d.ts +7 -0
- package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/lib/types/protocol/Authorize.d.ts.map +1 -1
- package/package.json +2 -2
- package/src/config/Configuration.ts +8 -0
- package/src/controllers/StandardController.ts +92 -0
- package/src/interaction_client/SilentIframeClient.ts +136 -0
- package/src/packageMetadata.ts +1 -1
- package/src/protocol/Authorize.ts +14 -0
package/lib/msal-browser.js
CHANGED
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/*! @azure/msal-browser v4.
|
|
1
|
+
/*! @azure/msal-browser v4.29.0 2026-02-23 */
|
|
2
2
|
'use strict';
|
|
3
3
|
(function (global, factory) {
|
|
4
4
|
typeof exports === 'object' && typeof module !== 'undefined' ? factory(exports) :
|
|
@@ -6,7 +6,7 @@
|
|
|
6
6
|
(global = typeof globalThis !== 'undefined' ? globalThis : global || self, factory(global.msal = {}));
|
|
7
7
|
})(this, (function (exports) { 'use strict';
|
|
8
8
|
|
|
9
|
-
/*! @azure/msal-common v15.
|
|
9
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
10
10
|
/*
|
|
11
11
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
12
12
|
* Licensed under the MIT License.
|
|
@@ -283,7 +283,7 @@
|
|
|
283
283
|
// Token renewal offset default in seconds
|
|
284
284
|
const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
|
|
285
285
|
|
|
286
|
-
/*! @azure/msal-common v15.
|
|
286
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
287
287
|
/*
|
|
288
288
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
289
289
|
* Licensed under the MIT License.
|
|
@@ -300,7 +300,7 @@
|
|
|
300
300
|
unexpectedError: unexpectedError
|
|
301
301
|
});
|
|
302
302
|
|
|
303
|
-
/*! @azure/msal-common v15.
|
|
303
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
304
304
|
|
|
305
305
|
/*
|
|
306
306
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -349,7 +349,7 @@
|
|
|
349
349
|
: AuthErrorMessages[code]);
|
|
350
350
|
}
|
|
351
351
|
|
|
352
|
-
/*! @azure/msal-common v15.
|
|
352
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
353
353
|
/*
|
|
354
354
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
355
355
|
* Licensed under the MIT License.
|
|
@@ -449,7 +449,7 @@
|
|
|
449
449
|
userTimeoutReached: userTimeoutReached
|
|
450
450
|
});
|
|
451
451
|
|
|
452
|
-
/*! @azure/msal-common v15.
|
|
452
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
453
453
|
|
|
454
454
|
/*
|
|
455
455
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -706,7 +706,7 @@
|
|
|
706
706
|
return new ClientAuthError(errorCode, additionalMessage);
|
|
707
707
|
}
|
|
708
708
|
|
|
709
|
-
/*! @azure/msal-common v15.
|
|
709
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
710
710
|
|
|
711
711
|
/*
|
|
712
712
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -745,7 +745,7 @@
|
|
|
745
745
|
},
|
|
746
746
|
};
|
|
747
747
|
|
|
748
|
-
/*! @azure/msal-common v15.
|
|
748
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
749
749
|
|
|
750
750
|
/*
|
|
751
751
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -936,12 +936,12 @@
|
|
|
936
936
|
}
|
|
937
937
|
}
|
|
938
938
|
|
|
939
|
-
/*! @azure/msal-common v15.
|
|
939
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
940
940
|
/* eslint-disable header/header */
|
|
941
941
|
const name$1 = "@azure/msal-common";
|
|
942
|
-
const version$1 = "15.
|
|
942
|
+
const version$1 = "15.15.0";
|
|
943
943
|
|
|
944
|
-
/*! @azure/msal-common v15.
|
|
944
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
945
945
|
/*
|
|
946
946
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
947
947
|
* Licensed under the MIT License.
|
|
@@ -961,7 +961,7 @@
|
|
|
961
961
|
AzureUsGovernment: "https://login.microsoftonline.us",
|
|
962
962
|
};
|
|
963
963
|
|
|
964
|
-
/*! @azure/msal-common v15.
|
|
964
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
965
965
|
/*
|
|
966
966
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
967
967
|
* Licensed under the MIT License.
|
|
@@ -1019,7 +1019,7 @@
|
|
|
1019
1019
|
urlParseError: urlParseError
|
|
1020
1020
|
});
|
|
1021
1021
|
|
|
1022
|
-
/*! @azure/msal-common v15.
|
|
1022
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1023
1023
|
|
|
1024
1024
|
/*
|
|
1025
1025
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1167,7 +1167,7 @@
|
|
|
1167
1167
|
return new ClientConfigurationError(errorCode);
|
|
1168
1168
|
}
|
|
1169
1169
|
|
|
1170
|
-
/*! @azure/msal-common v15.
|
|
1170
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1171
1171
|
/*
|
|
1172
1172
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1173
1173
|
* Licensed under the MIT License.
|
|
@@ -1264,7 +1264,7 @@
|
|
|
1264
1264
|
}
|
|
1265
1265
|
}
|
|
1266
1266
|
|
|
1267
|
-
/*! @azure/msal-common v15.
|
|
1267
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1268
1268
|
|
|
1269
1269
|
/*
|
|
1270
1270
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1459,7 +1459,7 @@
|
|
|
1459
1459
|
}
|
|
1460
1460
|
}
|
|
1461
1461
|
|
|
1462
|
-
/*! @azure/msal-common v15.
|
|
1462
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1463
1463
|
|
|
1464
1464
|
/*
|
|
1465
1465
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1499,7 +1499,7 @@
|
|
|
1499
1499
|
};
|
|
1500
1500
|
}
|
|
1501
1501
|
|
|
1502
|
-
/*! @azure/msal-common v15.
|
|
1502
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1503
1503
|
/*
|
|
1504
1504
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1505
1505
|
* Licensed under the MIT License.
|
|
@@ -1581,7 +1581,7 @@
|
|
|
1581
1581
|
return updatedAccountInfo;
|
|
1582
1582
|
}
|
|
1583
1583
|
|
|
1584
|
-
/*! @azure/msal-common v15.
|
|
1584
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1585
1585
|
/*
|
|
1586
1586
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1587
1587
|
* Licensed under the MIT License.
|
|
@@ -1596,7 +1596,7 @@
|
|
|
1596
1596
|
Ciam: 3,
|
|
1597
1597
|
};
|
|
1598
1598
|
|
|
1599
|
-
/*! @azure/msal-common v15.
|
|
1599
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1600
1600
|
/*
|
|
1601
1601
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1602
1602
|
* Licensed under the MIT License.
|
|
@@ -1618,7 +1618,7 @@
|
|
|
1618
1618
|
return null;
|
|
1619
1619
|
}
|
|
1620
1620
|
|
|
1621
|
-
/*! @azure/msal-common v15.
|
|
1621
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1622
1622
|
/*
|
|
1623
1623
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1624
1624
|
* Licensed under the MIT License.
|
|
@@ -1642,7 +1642,7 @@
|
|
|
1642
1642
|
EAR: "EAR",
|
|
1643
1643
|
};
|
|
1644
1644
|
|
|
1645
|
-
/*! @azure/msal-common v15.
|
|
1645
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1646
1646
|
|
|
1647
1647
|
/*
|
|
1648
1648
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1877,7 +1877,7 @@
|
|
|
1877
1877
|
}
|
|
1878
1878
|
}
|
|
1879
1879
|
|
|
1880
|
-
/*! @azure/msal-common v15.
|
|
1880
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1881
1881
|
|
|
1882
1882
|
/*
|
|
1883
1883
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1958,7 +1958,7 @@
|
|
|
1958
1958
|
}
|
|
1959
1959
|
}
|
|
1960
1960
|
|
|
1961
|
-
/*! @azure/msal-common v15.
|
|
1961
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1962
1962
|
|
|
1963
1963
|
/*
|
|
1964
1964
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2074,7 +2074,7 @@
|
|
|
2074
2074
|
}
|
|
2075
2075
|
}
|
|
2076
2076
|
|
|
2077
|
-
/*! @azure/msal-common v15.
|
|
2077
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
2078
2078
|
|
|
2079
2079
|
/*
|
|
2080
2080
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2238,7 +2238,7 @@
|
|
|
2238
2238
|
}
|
|
2239
2239
|
}
|
|
2240
2240
|
|
|
2241
|
-
/*! @azure/msal-common v15.
|
|
2241
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
2242
2242
|
|
|
2243
2243
|
/*
|
|
2244
2244
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2267,6 +2267,27 @@
|
|
|
2267
2267
|
authorization_endpoint: "https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/authorize",
|
|
2268
2268
|
end_session_endpoint: "https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/logout",
|
|
2269
2269
|
},
|
|
2270
|
+
"login.sovcloud-identity.fr": {
|
|
2271
|
+
token_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/token",
|
|
2272
|
+
jwks_uri: "https://login.sovcloud-identity.fr/{tenantid}/discovery/v2.0/keys",
|
|
2273
|
+
issuer: "https://login.sovcloud-identity.fr/{tenantid}/v2.0",
|
|
2274
|
+
authorization_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/authorize",
|
|
2275
|
+
end_session_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/logout",
|
|
2276
|
+
},
|
|
2277
|
+
"login.sovcloud-identity.de": {
|
|
2278
|
+
token_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/token",
|
|
2279
|
+
jwks_uri: "https://login.sovcloud-identity.de/{tenantid}/discovery/v2.0/keys",
|
|
2280
|
+
issuer: "https://login.sovcloud-identity.de/{tenantid}/v2.0",
|
|
2281
|
+
authorization_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/authorize",
|
|
2282
|
+
end_session_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/logout",
|
|
2283
|
+
},
|
|
2284
|
+
"login.sovcloud-identity.sg": {
|
|
2285
|
+
token_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/token",
|
|
2286
|
+
jwks_uri: "https://login.sovcloud-identity.sg/common/discovery/v2.0/keys",
|
|
2287
|
+
issuer: "https://login.sovcloud-identity.sg/{tenantid}/v2.0",
|
|
2288
|
+
authorization_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/authorize",
|
|
2289
|
+
end_session_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/logout",
|
|
2290
|
+
},
|
|
2270
2291
|
},
|
|
2271
2292
|
instanceDiscoveryMetadata: {
|
|
2272
2293
|
metadata: [
|
|
@@ -2306,6 +2327,21 @@
|
|
|
2306
2327
|
preferred_cache: "login-us.microsoftonline.com",
|
|
2307
2328
|
aliases: ["login-us.microsoftonline.com"],
|
|
2308
2329
|
},
|
|
2330
|
+
{
|
|
2331
|
+
preferred_network: "login.sovcloud-identity.fr",
|
|
2332
|
+
preferred_cache: "login.sovcloud-identity.fr",
|
|
2333
|
+
aliases: ["login.sovcloud-identity.fr"],
|
|
2334
|
+
},
|
|
2335
|
+
{
|
|
2336
|
+
preferred_network: "login.sovcloud-identity.de",
|
|
2337
|
+
preferred_cache: "login.sovcloud-identity.de",
|
|
2338
|
+
aliases: ["login.sovcloud-identity.de"],
|
|
2339
|
+
},
|
|
2340
|
+
{
|
|
2341
|
+
preferred_network: "login.sovcloud-identity.sg",
|
|
2342
|
+
preferred_cache: "login.sovcloud-identity.sg",
|
|
2343
|
+
aliases: ["login.sovcloud-identity.sg"],
|
|
2344
|
+
},
|
|
2309
2345
|
],
|
|
2310
2346
|
},
|
|
2311
2347
|
};
|
|
@@ -2377,7 +2413,7 @@
|
|
|
2377
2413
|
return null;
|
|
2378
2414
|
}
|
|
2379
2415
|
|
|
2380
|
-
/*! @azure/msal-common v15.
|
|
2416
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
2381
2417
|
/*
|
|
2382
2418
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2383
2419
|
* Licensed under the MIT License.
|
|
@@ -2385,7 +2421,7 @@
|
|
|
2385
2421
|
const cacheQuotaExceeded = "cache_quota_exceeded";
|
|
2386
2422
|
const cacheErrorUnknown = "cache_error_unknown";
|
|
2387
2423
|
|
|
2388
|
-
/*! @azure/msal-common v15.
|
|
2424
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
2389
2425
|
|
|
2390
2426
|
/*
|
|
2391
2427
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2430,7 +2466,7 @@
|
|
|
2430
2466
|
}
|
|
2431
2467
|
}
|
|
2432
2468
|
|
|
2433
|
-
/*! @azure/msal-common v15.
|
|
2469
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
2434
2470
|
|
|
2435
2471
|
/*
|
|
2436
2472
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3541,7 +3577,7 @@
|
|
|
3541
3577
|
}
|
|
3542
3578
|
}
|
|
3543
3579
|
|
|
3544
|
-
/*! @azure/msal-common v15.
|
|
3580
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
3545
3581
|
/*
|
|
3546
3582
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3547
3583
|
* Licensed under the MIT License.
|
|
@@ -3803,6 +3839,11 @@
|
|
|
3803
3839
|
LoadIdToken: "loadIdToken",
|
|
3804
3840
|
LoadAccessToken: "loadAccessToken",
|
|
3805
3841
|
LoadRefreshToken: "loadRefreshToken",
|
|
3842
|
+
/**
|
|
3843
|
+
* SSO capability verification call (msal-browser).
|
|
3844
|
+
* Fire-and-forget SSO verification call made after interactive authentication completes.
|
|
3845
|
+
*/
|
|
3846
|
+
SsoCapable: "ssoCapable",
|
|
3806
3847
|
};
|
|
3807
3848
|
const PerformanceEventAbbreviations = new Map([
|
|
3808
3849
|
[PerformanceEvents.AcquireTokenByCode, "ATByCode"],
|
|
@@ -4030,6 +4071,7 @@
|
|
|
4030
4071
|
[PerformanceEvents.Decrypt, "decrypt"],
|
|
4031
4072
|
[PerformanceEvents.GenerateEarKey, "genEarKey"],
|
|
4032
4073
|
[PerformanceEvents.DecryptEarResponse, "decryptEarResp"],
|
|
4074
|
+
[PerformanceEvents.SsoCapable, "SsoCapable"],
|
|
4033
4075
|
]);
|
|
4034
4076
|
/**
|
|
4035
4077
|
* State of the performance event.
|
|
@@ -4068,7 +4110,7 @@
|
|
|
4068
4110
|
"upgradedCacheCount",
|
|
4069
4111
|
]);
|
|
4070
4112
|
|
|
4071
|
-
/*! @azure/msal-common v15.
|
|
4113
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4072
4114
|
|
|
4073
4115
|
/*
|
|
4074
4116
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4147,7 +4189,7 @@
|
|
|
4147
4189
|
}
|
|
4148
4190
|
}
|
|
4149
4191
|
|
|
4150
|
-
/*! @azure/msal-common v15.
|
|
4192
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4151
4193
|
|
|
4152
4194
|
/*
|
|
4153
4195
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4247,7 +4289,7 @@
|
|
|
4247
4289
|
return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
|
|
4248
4290
|
}
|
|
4249
4291
|
|
|
4250
|
-
/*! @azure/msal-common v15.
|
|
4292
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4251
4293
|
/*
|
|
4252
4294
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4253
4295
|
* Licensed under the MIT License.
|
|
@@ -4257,7 +4299,7 @@
|
|
|
4257
4299
|
UPN: "UPN",
|
|
4258
4300
|
};
|
|
4259
4301
|
|
|
4260
|
-
/*! @azure/msal-common v15.
|
|
4302
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4261
4303
|
/*
|
|
4262
4304
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4263
4305
|
* Licensed under the MIT License.
|
|
@@ -4307,7 +4349,7 @@
|
|
|
4307
4349
|
const EAR_JWK = "ear_jwk";
|
|
4308
4350
|
const EAR_JWE_CRYPTO = "ear_jwe_crypto";
|
|
4309
4351
|
|
|
4310
|
-
/*! @azure/msal-common v15.
|
|
4352
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4311
4353
|
|
|
4312
4354
|
/*
|
|
4313
4355
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4687,7 +4729,7 @@
|
|
|
4687
4729
|
});
|
|
4688
4730
|
}
|
|
4689
4731
|
|
|
4690
|
-
/*! @azure/msal-common v15.
|
|
4732
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4691
4733
|
/*
|
|
4692
4734
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4693
4735
|
* Licensed under the MIT License.
|
|
@@ -4699,7 +4741,7 @@
|
|
|
4699
4741
|
response.hasOwnProperty("jwks_uri"));
|
|
4700
4742
|
}
|
|
4701
4743
|
|
|
4702
|
-
/*! @azure/msal-common v15.
|
|
4744
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4703
4745
|
/*
|
|
4704
4746
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4705
4747
|
* Licensed under the MIT License.
|
|
@@ -4709,7 +4751,7 @@
|
|
|
4709
4751
|
response.hasOwnProperty("metadata"));
|
|
4710
4752
|
}
|
|
4711
4753
|
|
|
4712
|
-
/*! @azure/msal-common v15.
|
|
4754
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4713
4755
|
/*
|
|
4714
4756
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4715
4757
|
* Licensed under the MIT License.
|
|
@@ -4719,7 +4761,7 @@
|
|
|
4719
4761
|
response.hasOwnProperty("error_description"));
|
|
4720
4762
|
}
|
|
4721
4763
|
|
|
4722
|
-
/*! @azure/msal-common v15.
|
|
4764
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4723
4765
|
/*
|
|
4724
4766
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4725
4767
|
* Licensed under the MIT License.
|
|
@@ -4815,7 +4857,7 @@
|
|
|
4815
4857
|
};
|
|
4816
4858
|
};
|
|
4817
4859
|
|
|
4818
|
-
/*! @azure/msal-common v15.
|
|
4860
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4819
4861
|
|
|
4820
4862
|
/*
|
|
4821
4863
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4921,7 +4963,7 @@
|
|
|
4921
4963
|
},
|
|
4922
4964
|
};
|
|
4923
4965
|
|
|
4924
|
-
/*! @azure/msal-common v15.
|
|
4966
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4925
4967
|
/*
|
|
4926
4968
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4927
4969
|
* Licensed under the MIT License.
|
|
@@ -4986,7 +5028,7 @@
|
|
|
4986
5028
|
return cachedAtSec > nowSeconds();
|
|
4987
5029
|
}
|
|
4988
5030
|
|
|
4989
|
-
/*! @azure/msal-common v15.
|
|
5031
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4990
5032
|
|
|
4991
5033
|
/*
|
|
4992
5034
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5248,7 +5290,7 @@
|
|
|
5248
5290
|
return metadata.expiresAt <= nowSeconds();
|
|
5249
5291
|
}
|
|
5250
5292
|
|
|
5251
|
-
/*! @azure/msal-common v15.
|
|
5293
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5252
5294
|
|
|
5253
5295
|
/*
|
|
5254
5296
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6087,7 +6129,7 @@
|
|
|
6087
6129
|
};
|
|
6088
6130
|
}
|
|
6089
6131
|
|
|
6090
|
-
/*! @azure/msal-common v15.
|
|
6132
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6091
6133
|
|
|
6092
6134
|
/*
|
|
6093
6135
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6118,7 +6160,7 @@
|
|
|
6118
6160
|
}
|
|
6119
6161
|
}
|
|
6120
6162
|
|
|
6121
|
-
/*! @azure/msal-common v15.
|
|
6163
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6122
6164
|
|
|
6123
6165
|
/*
|
|
6124
6166
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6137,7 +6179,7 @@
|
|
|
6137
6179
|
}
|
|
6138
6180
|
}
|
|
6139
6181
|
|
|
6140
|
-
/*! @azure/msal-common v15.
|
|
6182
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6141
6183
|
/*
|
|
6142
6184
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
6143
6185
|
* Licensed under the MIT License.
|
|
@@ -6158,7 +6200,7 @@
|
|
|
6158
6200
|
};
|
|
6159
6201
|
}
|
|
6160
6202
|
|
|
6161
|
-
/*! @azure/msal-common v15.
|
|
6203
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6162
6204
|
|
|
6163
6205
|
/*
|
|
6164
6206
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6245,7 +6287,7 @@
|
|
|
6245
6287
|
}
|
|
6246
6288
|
}
|
|
6247
6289
|
|
|
6248
|
-
/*! @azure/msal-common v15.
|
|
6290
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6249
6291
|
|
|
6250
6292
|
/*
|
|
6251
6293
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6276,7 +6318,7 @@
|
|
|
6276
6318
|
return new NetworkError(error, httpStatus, responseHeaders);
|
|
6277
6319
|
}
|
|
6278
6320
|
|
|
6279
|
-
/*! @azure/msal-common v15.
|
|
6321
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6280
6322
|
|
|
6281
6323
|
/*
|
|
6282
6324
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6424,27 +6466,63 @@
|
|
|
6424
6466
|
}
|
|
6425
6467
|
}
|
|
6426
6468
|
|
|
6427
|
-
/*! @azure/msal-common v15.
|
|
6469
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6428
6470
|
/*
|
|
6429
6471
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
6430
6472
|
* Licensed under the MIT License.
|
|
6431
6473
|
*/
|
|
6432
|
-
|
|
6474
|
+
/**
|
|
6475
|
+
* MSAL-defined interaction required error code indicating no tokens are found in cache.
|
|
6476
|
+
* @public
|
|
6477
|
+
*/
|
|
6433
6478
|
const noTokensFound = "no_tokens_found";
|
|
6479
|
+
/**
|
|
6480
|
+
* MSAL-defined error code indicating a native account is unavailable on the platform.
|
|
6481
|
+
* @public
|
|
6482
|
+
*/
|
|
6434
6483
|
const nativeAccountUnavailable = "native_account_unavailable";
|
|
6484
|
+
/**
|
|
6485
|
+
* MSAL-defined error code indicating the refresh token has expired and user interaction is needed.
|
|
6486
|
+
* @public
|
|
6487
|
+
*/
|
|
6435
6488
|
const refreshTokenExpired = "refresh_token_expired";
|
|
6489
|
+
/**
|
|
6490
|
+
* MSAL-defined error code indicating UI/UX is not allowed (e.g., blocked by policy), requiring alternate interaction.
|
|
6491
|
+
* @public
|
|
6492
|
+
*/
|
|
6436
6493
|
const uxNotAllowed = "ux_not_allowed";
|
|
6437
|
-
|
|
6494
|
+
/**
|
|
6495
|
+
* Server-originated error code indicating interaction is required to complete the request.
|
|
6496
|
+
* @public
|
|
6497
|
+
*/
|
|
6438
6498
|
const interactionRequired = "interaction_required";
|
|
6499
|
+
/**
|
|
6500
|
+
* Server-originated error code indicating user consent is required.
|
|
6501
|
+
* @public
|
|
6502
|
+
*/
|
|
6439
6503
|
const consentRequired = "consent_required";
|
|
6504
|
+
/**
|
|
6505
|
+
* Server-originated error code indicating user login is required.
|
|
6506
|
+
* @public
|
|
6507
|
+
*/
|
|
6440
6508
|
const loginRequired = "login_required";
|
|
6441
|
-
|
|
6509
|
+
/**
|
|
6510
|
+
* Server-originated error code indicating the token is invalid or corrupted.
|
|
6511
|
+
* @public
|
|
6512
|
+
*/
|
|
6513
|
+
const badToken = "bad_token";
|
|
6514
|
+
/**
|
|
6515
|
+
* Server-originated error code indicating the user was interrupted and must reattempt the flow.
|
|
6516
|
+
* @public
|
|
6517
|
+
*/
|
|
6518
|
+
const interruptedUser = "interrupted_user";
|
|
6442
6519
|
|
|
6443
6520
|
var InteractionRequiredAuthErrorCodes = /*#__PURE__*/Object.freeze({
|
|
6444
6521
|
__proto__: null,
|
|
6445
6522
|
badToken: badToken,
|
|
6446
6523
|
consentRequired: consentRequired,
|
|
6447
6524
|
interactionRequired: interactionRequired,
|
|
6525
|
+
interruptedUser: interruptedUser,
|
|
6448
6526
|
loginRequired: loginRequired,
|
|
6449
6527
|
nativeAccountUnavailable: nativeAccountUnavailable,
|
|
6450
6528
|
noTokensFound: noTokensFound,
|
|
@@ -6452,7 +6530,7 @@
|
|
|
6452
6530
|
uxNotAllowed: uxNotAllowed
|
|
6453
6531
|
});
|
|
6454
6532
|
|
|
6455
|
-
/*! @azure/msal-common v15.
|
|
6533
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6456
6534
|
|
|
6457
6535
|
/*
|
|
6458
6536
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6467,6 +6545,7 @@
|
|
|
6467
6545
|
loginRequired,
|
|
6468
6546
|
badToken,
|
|
6469
6547
|
uxNotAllowed,
|
|
6548
|
+
interruptedUser,
|
|
6470
6549
|
];
|
|
6471
6550
|
const InteractionRequiredAuthSubErrorMessage = [
|
|
6472
6551
|
"message_only",
|
|
@@ -6475,6 +6554,7 @@
|
|
|
6475
6554
|
"user_password_expired",
|
|
6476
6555
|
"consent_required",
|
|
6477
6556
|
"bad_token",
|
|
6557
|
+
"interrupted_user",
|
|
6478
6558
|
];
|
|
6479
6559
|
const InteractionRequiredAuthErrorMessages = {
|
|
6480
6560
|
[noTokensFound]: "No refresh token found in the cache. Please sign-in.",
|
|
@@ -6482,6 +6562,7 @@
|
|
|
6482
6562
|
[refreshTokenExpired]: "Refresh token has expired.",
|
|
6483
6563
|
[badToken]: "Identity provider returned bad_token due to an expired or invalid refresh token. Please invoke an interactive API to resolve.",
|
|
6484
6564
|
[uxNotAllowed]: "`canShowUI` flag in Edge was set to false. User interaction required on web page. Please invoke an interactive API to resolve.",
|
|
6565
|
+
[interruptedUser]: "The user could not be authenticated due to an interrupted state. Please invoke an interactive API to resolve.",
|
|
6485
6566
|
};
|
|
6486
6567
|
/**
|
|
6487
6568
|
* Interaction required errors defined by the SDK
|
|
@@ -6500,6 +6581,10 @@
|
|
|
6500
6581
|
code: badToken,
|
|
6501
6582
|
desc: InteractionRequiredAuthErrorMessages[badToken],
|
|
6502
6583
|
},
|
|
6584
|
+
interrupted_user: {
|
|
6585
|
+
code: interruptedUser,
|
|
6586
|
+
desc: InteractionRequiredAuthErrorMessages[interruptedUser],
|
|
6587
|
+
},
|
|
6503
6588
|
};
|
|
6504
6589
|
/**
|
|
6505
6590
|
* Error thrown when user interaction is required.
|
|
@@ -6542,7 +6627,7 @@
|
|
|
6542
6627
|
return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
|
|
6543
6628
|
}
|
|
6544
6629
|
|
|
6545
|
-
/*! @azure/msal-common v15.
|
|
6630
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6546
6631
|
|
|
6547
6632
|
/*
|
|
6548
6633
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6614,7 +6699,7 @@
|
|
|
6614
6699
|
}
|
|
6615
6700
|
}
|
|
6616
6701
|
|
|
6617
|
-
/*! @azure/msal-common v15.
|
|
6702
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6618
6703
|
|
|
6619
6704
|
/*
|
|
6620
6705
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6696,7 +6781,7 @@
|
|
|
6696
6781
|
}
|
|
6697
6782
|
}
|
|
6698
6783
|
|
|
6699
|
-
/*! @azure/msal-common v15.
|
|
6784
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6700
6785
|
/*
|
|
6701
6786
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
6702
6787
|
* Licensed under the MIT License.
|
|
@@ -6723,7 +6808,7 @@
|
|
|
6723
6808
|
}
|
|
6724
6809
|
}
|
|
6725
6810
|
|
|
6726
|
-
/*! @azure/msal-common v15.
|
|
6811
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6727
6812
|
|
|
6728
6813
|
/*
|
|
6729
6814
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7062,7 +7147,7 @@
|
|
|
7062
7147
|
return baseAccount;
|
|
7063
7148
|
}
|
|
7064
7149
|
|
|
7065
|
-
/*! @azure/msal-common v15.
|
|
7150
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7066
7151
|
/*
|
|
7067
7152
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
7068
7153
|
* Licensed under the MIT License.
|
|
@@ -7080,7 +7165,7 @@
|
|
|
7080
7165
|
}
|
|
7081
7166
|
}
|
|
7082
7167
|
|
|
7083
|
-
/*! @azure/msal-common v15.
|
|
7168
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7084
7169
|
|
|
7085
7170
|
/*
|
|
7086
7171
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7316,7 +7401,7 @@
|
|
|
7316
7401
|
}
|
|
7317
7402
|
}
|
|
7318
7403
|
|
|
7319
|
-
/*! @azure/msal-common v15.
|
|
7404
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7320
7405
|
|
|
7321
7406
|
/*
|
|
7322
7407
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7528,7 +7613,7 @@
|
|
|
7528
7613
|
}
|
|
7529
7614
|
}
|
|
7530
7615
|
|
|
7531
|
-
/*! @azure/msal-common v15.
|
|
7616
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7532
7617
|
|
|
7533
7618
|
/*
|
|
7534
7619
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7626,7 +7711,7 @@
|
|
|
7626
7711
|
}
|
|
7627
7712
|
}
|
|
7628
7713
|
|
|
7629
|
-
/*! @azure/msal-common v15.
|
|
7714
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7630
7715
|
|
|
7631
7716
|
/*
|
|
7632
7717
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7641,7 +7726,7 @@
|
|
|
7641
7726
|
},
|
|
7642
7727
|
};
|
|
7643
7728
|
|
|
7644
|
-
/*! @azure/msal-common v15.
|
|
7729
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7645
7730
|
|
|
7646
7731
|
/*
|
|
7647
7732
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7865,7 +7950,7 @@
|
|
|
7865
7950
|
return account.loginHint || account.idTokenClaims?.login_hint || null;
|
|
7866
7951
|
}
|
|
7867
7952
|
|
|
7868
|
-
/*! @azure/msal-common v15.
|
|
7953
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7869
7954
|
|
|
7870
7955
|
/*
|
|
7871
7956
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7923,7 +8008,7 @@
|
|
|
7923
8008
|
}
|
|
7924
8009
|
}
|
|
7925
8010
|
|
|
7926
|
-
/*! @azure/msal-common v15.
|
|
8011
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7927
8012
|
|
|
7928
8013
|
/*
|
|
7929
8014
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -8186,7 +8271,7 @@
|
|
|
8186
8271
|
}
|
|
8187
8272
|
}
|
|
8188
8273
|
|
|
8189
|
-
/*! @azure/msal-common v15.
|
|
8274
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
8190
8275
|
/*
|
|
8191
8276
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8192
8277
|
* Licensed under the MIT License.
|
|
@@ -8194,7 +8279,7 @@
|
|
|
8194
8279
|
const missingKidError = "missing_kid_error";
|
|
8195
8280
|
const missingAlgError = "missing_alg_error";
|
|
8196
8281
|
|
|
8197
|
-
/*! @azure/msal-common v15.
|
|
8282
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
8198
8283
|
|
|
8199
8284
|
/*
|
|
8200
8285
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -8219,7 +8304,7 @@
|
|
|
8219
8304
|
return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
|
|
8220
8305
|
}
|
|
8221
8306
|
|
|
8222
|
-
/*! @azure/msal-common v15.
|
|
8307
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
8223
8308
|
|
|
8224
8309
|
/*
|
|
8225
8310
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -8259,7 +8344,7 @@
|
|
|
8259
8344
|
}
|
|
8260
8345
|
}
|
|
8261
8346
|
|
|
8262
|
-
/*! @azure/msal-common v15.
|
|
8347
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
8263
8348
|
|
|
8264
8349
|
/*
|
|
8265
8350
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -10312,6 +10397,7 @@
|
|
|
10312
10397
|
supportsNestedAppAuth: false,
|
|
10313
10398
|
instanceAware: false,
|
|
10314
10399
|
encodeExtraQueryParams: false,
|
|
10400
|
+
verifySSO: false,
|
|
10315
10401
|
};
|
|
10316
10402
|
// Default cache options for browser
|
|
10317
10403
|
const DEFAULT_CACHE_OPTIONS = {
|
|
@@ -10400,7 +10486,7 @@
|
|
|
10400
10486
|
|
|
10401
10487
|
/* eslint-disable header/header */
|
|
10402
10488
|
const name = "@azure/msal-browser";
|
|
10403
|
-
const version = "4.
|
|
10489
|
+
const version = "4.29.0";
|
|
10404
10490
|
|
|
10405
10491
|
/*
|
|
10406
10492
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -14897,6 +14983,8 @@
|
|
|
14897
14983
|
addCodeChallengeParams(parameters, request.codeChallenge, Constants.S256_CODE_CHALLENGE_METHOD);
|
|
14898
14984
|
const queryParams = new Map();
|
|
14899
14985
|
addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
|
|
14986
|
+
// Add correlationId to query params so gateway can propagate it to IDPs
|
|
14987
|
+
addCorrelationId(queryParams, request.correlationId);
|
|
14900
14988
|
const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
|
|
14901
14989
|
return createForm(frame, url, parameters);
|
|
14902
14990
|
}
|
|
@@ -14910,6 +14998,8 @@
|
|
|
14910
14998
|
addPostBodyParameters(parameters, request.authorizePostBodyParameters || {});
|
|
14911
14999
|
const queryParams = new Map();
|
|
14912
15000
|
addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
|
|
15001
|
+
// Add correlationId to query params so gateway can propagate it to IDPs
|
|
15002
|
+
addCorrelationId(queryParams, request.correlationId);
|
|
14913
15003
|
const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
|
|
14914
15004
|
return createForm(frame, url, parameters);
|
|
14915
15005
|
}
|
|
@@ -16781,6 +16871,52 @@
|
|
|
16781
16871
|
return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
|
|
16782
16872
|
}
|
|
16783
16873
|
}
|
|
16874
|
+
/**
|
|
16875
|
+
* Verifies SSO capability by making an iframe request to /authorize without exchanging the code for tokens.
|
|
16876
|
+
* This is useful for verifying SSO capability in the background without the overhead of a full token exchange.
|
|
16877
|
+
* @param request - The SSO silent request
|
|
16878
|
+
* @returns true if SSO verification was successful with a valid authorization code, false otherwise
|
|
16879
|
+
*/
|
|
16880
|
+
async verifySso(request) {
|
|
16881
|
+
this.performanceClient.addQueueMeasurement(PerformanceEvents.SilentIframeClientAcquireToken, request.correlationId);
|
|
16882
|
+
const inputRequest = { ...request };
|
|
16883
|
+
if (!inputRequest.prompt) {
|
|
16884
|
+
inputRequest.prompt = PromptValue.NONE;
|
|
16885
|
+
}
|
|
16886
|
+
// Create silent request
|
|
16887
|
+
const silentRequest = await invokeAsync(this.initializeAuthorizationRequest.bind(this), PerformanceEvents.StandardInteractionClientInitializeAuthorizationRequest, this.logger, this.performanceClient, request.correlationId)(inputRequest, exports.InteractionType.Silent);
|
|
16888
|
+
const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, request.correlationId)({
|
|
16889
|
+
serverTelemetryManager: this.initializeServerTelemetryManager(this.apiId),
|
|
16890
|
+
requestAuthority: silentRequest.authority,
|
|
16891
|
+
requestAzureCloudOptions: silentRequest.azureCloudOptions,
|
|
16892
|
+
requestExtraQueryParameters: silentRequest.extraQueryParameters,
|
|
16893
|
+
account: silentRequest.account,
|
|
16894
|
+
});
|
|
16895
|
+
const correlationId = silentRequest.correlationId;
|
|
16896
|
+
const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
|
|
16897
|
+
const requestWithPkce = {
|
|
16898
|
+
...silentRequest,
|
|
16899
|
+
codeChallenge: pkceCodes.challenge,
|
|
16900
|
+
};
|
|
16901
|
+
// Create authorize request url
|
|
16902
|
+
const navigateUrl = await invokeAsync(getAuthCodeRequestUrl, PerformanceEvents.GetAuthCodeUrl, this.logger, this.performanceClient, correlationId)(this.config, authClient.authority, requestWithPkce, this.logger, this.performanceClient);
|
|
16903
|
+
// Get the frame handle for the silent request - this triggers the SSO verification
|
|
16904
|
+
const msalFrame = await invokeAsync(initiateCodeRequest, PerformanceEvents.SilentHandlerInitiateAuthRequest, this.logger, this.performanceClient, correlationId)(navigateUrl, this.performanceClient, this.logger, correlationId, this.config.system.navigateFrameWait);
|
|
16905
|
+
const responseType = this.config.auth.OIDCOptions.serverResponseType;
|
|
16906
|
+
// Monitor the iframe for the response
|
|
16907
|
+
const responseString = await invokeAsync(monitorIframeForHash, PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(msalFrame, this.config.system.iframeHashTimeout, this.config.system.pollIntervalMilliseconds, this.performanceClient, this.logger, correlationId, responseType);
|
|
16908
|
+
// Deserialize the response
|
|
16909
|
+
const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger);
|
|
16910
|
+
// Validate the response - this checks for errors and validates state
|
|
16911
|
+
validateAuthorizationResponse(serverParams, silentRequest.state);
|
|
16912
|
+
// Verify a valid authorization code is present
|
|
16913
|
+
if (!serverParams.code) {
|
|
16914
|
+
this.logger.warning("SSO verification response did not contain an authorization code", correlationId);
|
|
16915
|
+
return false;
|
|
16916
|
+
}
|
|
16917
|
+
this.logger.verbose("SSO verification completed successfully with valid authorization code - skipped token exchange", correlationId);
|
|
16918
|
+
return true;
|
|
16919
|
+
}
|
|
16784
16920
|
/**
|
|
16785
16921
|
* Currently Unsupported
|
|
16786
16922
|
*/
|
|
@@ -17431,6 +17567,8 @@
|
|
|
17431
17567
|
rootMeasurement.end({
|
|
17432
17568
|
success: true,
|
|
17433
17569
|
}, undefined, result.account);
|
|
17570
|
+
// Fire-and-forget SSO capability verification in background
|
|
17571
|
+
this.verifySsoCapability(result.account, exports.InteractionType.Redirect);
|
|
17434
17572
|
}
|
|
17435
17573
|
else {
|
|
17436
17574
|
/*
|
|
@@ -17663,6 +17801,8 @@
|
|
|
17663
17801
|
accessTokenSize: result.accessToken.length,
|
|
17664
17802
|
idTokenSize: result.idToken.length,
|
|
17665
17803
|
}, undefined, result.account);
|
|
17804
|
+
// SSO capability verification in background
|
|
17805
|
+
this.verifySsoCapability(result.account, exports.InteractionType.Popup);
|
|
17666
17806
|
return result;
|
|
17667
17807
|
})
|
|
17668
17808
|
.catch((e) => {
|
|
@@ -17696,6 +17836,53 @@
|
|
|
17696
17836
|
visibilityChangeCount: 1,
|
|
17697
17837
|
});
|
|
17698
17838
|
}
|
|
17839
|
+
/**
|
|
17840
|
+
* SSO capability verification in the background.
|
|
17841
|
+
* This method makes an iframe request to /authorize to verify SSO capability without calling /token.
|
|
17842
|
+
* This method does not block the caller and tracks telemetry for success/failure.
|
|
17843
|
+
* This method only executes if verifySSO is set to true in the auth configuration.
|
|
17844
|
+
* @param account - The account to use for the SSO verification
|
|
17845
|
+
* @param parentApi - The API ID of the parent operation for logging purposes
|
|
17846
|
+
*/
|
|
17847
|
+
verifySsoCapability(account, parentApi) {
|
|
17848
|
+
// Check if SSO capability verification is enabled
|
|
17849
|
+
if (!this.config.auth.verifySSO) {
|
|
17850
|
+
return;
|
|
17851
|
+
}
|
|
17852
|
+
const correlationId = this.browserCrypto.createNewGuid();
|
|
17853
|
+
const ssoCapableMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.SsoCapable, correlationId);
|
|
17854
|
+
ssoCapableMeasurement.add({
|
|
17855
|
+
parentApi: parentApi,
|
|
17856
|
+
});
|
|
17857
|
+
this.logger.verbose(`SSO capability verification initiated after ${parentApi}`, correlationId);
|
|
17858
|
+
/*
|
|
17859
|
+
* Use setTimeout to ensure this runs in a separate macrotask after the current call stack completes
|
|
17860
|
+
* This ensures the result is returned to the caller before the SSO verification starts and doesn't affect performance
|
|
17861
|
+
*/
|
|
17862
|
+
setTimeout(() => {
|
|
17863
|
+
const ssoVerificationRequest = {
|
|
17864
|
+
account: account,
|
|
17865
|
+
correlationId: correlationId,
|
|
17866
|
+
};
|
|
17867
|
+
const silentIframeClient = this.createSilentIframeClient(correlationId);
|
|
17868
|
+
silentIframeClient
|
|
17869
|
+
.verifySso(ssoVerificationRequest)
|
|
17870
|
+
.then((success) => {
|
|
17871
|
+
this.logger.verbose(`SSO capability verification completed after ${parentApi}, success: ${success}`, correlationId);
|
|
17872
|
+
ssoCapableMeasurement.end({
|
|
17873
|
+
fromCache: false,
|
|
17874
|
+
success: success,
|
|
17875
|
+
}, undefined, account);
|
|
17876
|
+
})
|
|
17877
|
+
.catch((error) => {
|
|
17878
|
+
this.logger.warning(`SSO capability verification failed after ${parentApi}: ${error.message}`, correlationId);
|
|
17879
|
+
ssoCapableMeasurement.end({
|
|
17880
|
+
fromCache: false,
|
|
17881
|
+
success: false,
|
|
17882
|
+
}, error, account);
|
|
17883
|
+
});
|
|
17884
|
+
}, 0);
|
|
17885
|
+
}
|
|
17699
17886
|
// #endregion
|
|
17700
17887
|
// #region Silent Flow
|
|
17701
17888
|
/**
|
|
@@ -18461,6 +18648,10 @@
|
|
|
18461
18648
|
const result = this.acquireTokenSilentNoIframe(silentRequest, cacheLookupPolicy).catch(async (refreshTokenError) => {
|
|
18462
18649
|
const shouldTryToResolveSilently = checkIfRefreshTokenErrorCanBeResolvedSilently(refreshTokenError, cacheLookupPolicy);
|
|
18463
18650
|
if (shouldTryToResolveSilently) {
|
|
18651
|
+
const silentRefreshReason = `${refreshTokenError.errorCode}${refreshTokenError.subError
|
|
18652
|
+
? `|${refreshTokenError.subError}`
|
|
18653
|
+
: ""}`;
|
|
18654
|
+
this.performanceClient.addFields({ silentRefreshReason }, silentRequest.correlationId);
|
|
18464
18655
|
if (!this.activeIframeRequest) {
|
|
18465
18656
|
let _resolve;
|
|
18466
18657
|
// Always set the active request tracker immediately after checking it to prevent races
|