@azure/msal-browser 4.28.1 → 4.29.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (297) hide show
  1. package/dist/app/IPublicClientApplication.mjs +1 -1
  2. package/dist/app/PublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientNext.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  5. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  8. package/dist/cache/AccountManager.mjs +1 -1
  9. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  10. package/dist/cache/BrowserCacheManager.mjs +1 -1
  11. package/dist/cache/CacheHelpers.mjs +1 -1
  12. package/dist/cache/CacheKeys.mjs +1 -1
  13. package/dist/cache/CookieStorage.mjs +1 -1
  14. package/dist/cache/DatabaseStorage.mjs +1 -1
  15. package/dist/cache/EncryptedData.mjs +1 -1
  16. package/dist/cache/LocalStorage.mjs +1 -1
  17. package/dist/cache/MemoryStorage.mjs +1 -1
  18. package/dist/cache/SessionStorage.mjs +1 -1
  19. package/dist/cache/TokenCache.mjs +1 -1
  20. package/dist/config/Configuration.d.ts +7 -0
  21. package/dist/config/Configuration.d.ts.map +1 -1
  22. package/dist/config/Configuration.mjs +2 -1
  23. package/dist/config/Configuration.mjs.map +1 -1
  24. package/dist/controllers/ControllerFactory.mjs +1 -1
  25. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  26. package/dist/controllers/StandardController.d.ts +9 -0
  27. package/dist/controllers/StandardController.d.ts.map +1 -1
  28. package/dist/controllers/StandardController.mjs +56 -1
  29. package/dist/controllers/StandardController.mjs.map +1 -1
  30. package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
  31. package/dist/crypto/BrowserCrypto.mjs +1 -1
  32. package/dist/crypto/CryptoOps.mjs +1 -1
  33. package/dist/crypto/PkceGenerator.mjs +1 -1
  34. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  35. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  36. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  37. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  38. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  39. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  40. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  41. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  42. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
  43. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  44. package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
  45. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  46. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  47. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  48. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  49. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  50. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  51. package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
  52. package/dist/custom-auth-path/config/Configuration.d.ts +7 -0
  53. package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
  54. package/dist/custom-auth-path/config/Configuration.mjs +2 -1
  55. package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
  56. package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
  57. package/dist/custom-auth-path/controllers/StandardController.d.ts +9 -0
  58. package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
  59. package/dist/custom-auth-path/controllers/StandardController.mjs +56 -1
  60. package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
  61. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  62. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  63. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  64. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  65. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  66. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  67. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  68. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  69. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  70. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  71. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  72. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  73. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  74. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
  75. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
  76. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  77. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
  79. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
  81. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
  82. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  83. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  84. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
  85. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  87. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  88. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  90. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  91. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  93. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  96. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  98. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  100. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  102. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  106. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  108. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  109. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  154. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  155. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  156. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  157. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  159. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  160. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  161. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  162. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  163. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  164. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  165. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  166. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  167. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  168. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  169. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  170. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  171. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  172. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  173. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  174. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  175. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  176. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  177. package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
  178. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  179. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  180. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  181. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  182. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  183. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  184. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +1 -1
  185. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +1 -1
  186. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  187. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  188. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +7 -0
  189. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
  190. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +49 -3
  191. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
  192. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  193. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
  194. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  195. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  196. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  197. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  198. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  199. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  200. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  201. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  202. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  203. package/dist/custom-auth-path/protocol/Authorize.mjs +5 -1
  204. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  205. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  206. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  207. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  208. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  209. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  210. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  211. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  212. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  213. package/dist/encode/Base64Decode.mjs +1 -1
  214. package/dist/encode/Base64Encode.mjs +1 -1
  215. package/dist/error/BrowserAuthError.mjs +1 -1
  216. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  217. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  218. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  219. package/dist/error/NativeAuthError.mjs +1 -1
  220. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  221. package/dist/error/NestedAppAuthError.mjs +1 -1
  222. package/dist/event/EventHandler.mjs +1 -1
  223. package/dist/event/EventMessage.mjs +1 -1
  224. package/dist/event/EventType.mjs +1 -1
  225. package/dist/index.mjs +1 -1
  226. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  227. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  228. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  229. package/dist/interaction_client/PopupClient.mjs +1 -1
  230. package/dist/interaction_client/RedirectClient.mjs +1 -1
  231. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  232. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  233. package/dist/interaction_client/SilentIframeClient.d.ts +7 -0
  234. package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
  235. package/dist/interaction_client/SilentIframeClient.mjs +49 -3
  236. package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
  237. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  238. package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
  239. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  240. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  241. package/dist/naa/BridgeError.mjs +1 -1
  242. package/dist/naa/BridgeProxy.mjs +1 -1
  243. package/dist/naa/BridgeStatusCode.mjs +1 -1
  244. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  245. package/dist/navigation/NavigationClient.mjs +1 -1
  246. package/dist/network/FetchClient.mjs +1 -1
  247. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  248. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  249. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  250. package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
  251. package/dist/packageMetadata.d.ts +1 -1
  252. package/dist/packageMetadata.mjs +2 -2
  253. package/dist/protocol/Authorize.d.ts.map +1 -1
  254. package/dist/protocol/Authorize.mjs +5 -1
  255. package/dist/protocol/Authorize.mjs.map +1 -1
  256. package/dist/request/RequestHelpers.mjs +1 -1
  257. package/dist/response/ResponseHandler.mjs +1 -1
  258. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  259. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  260. package/dist/utils/BrowserConstants.mjs +1 -1
  261. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  262. package/dist/utils/BrowserUtils.mjs +1 -1
  263. package/dist/utils/Helpers.mjs +1 -1
  264. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  265. package/lib/custom-auth-path/msal-custom-auth.cjs +253 -68
  266. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  267. package/lib/custom-auth-path/msal-custom-auth.js +253 -68
  268. package/lib/custom-auth-path/msal-custom-auth.js.map +1 -1
  269. package/lib/custom-auth-path/types/config/Configuration.d.ts +7 -0
  270. package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
  271. package/lib/custom-auth-path/types/controllers/StandardController.d.ts +9 -0
  272. package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
  273. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  274. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +7 -0
  275. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  276. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  277. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  278. package/lib/msal-browser.cjs +261 -70
  279. package/lib/msal-browser.cjs.map +1 -1
  280. package/lib/msal-browser.js +261 -70
  281. package/lib/msal-browser.js.map +1 -1
  282. package/lib/msal-browser.min.js +64 -64
  283. package/lib/types/config/Configuration.d.ts +7 -0
  284. package/lib/types/config/Configuration.d.ts.map +1 -1
  285. package/lib/types/controllers/StandardController.d.ts +9 -0
  286. package/lib/types/controllers/StandardController.d.ts.map +1 -1
  287. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  288. package/lib/types/interaction_client/SilentIframeClient.d.ts +7 -0
  289. package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  290. package/lib/types/packageMetadata.d.ts +1 -1
  291. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  292. package/package.json +2 -2
  293. package/src/config/Configuration.ts +8 -0
  294. package/src/controllers/StandardController.ts +92 -0
  295. package/src/interaction_client/SilentIframeClient.ts +136 -0
  296. package/src/packageMetadata.ts +1 -1
  297. package/src/protocol/Authorize.ts +14 -0
@@ -1,4 +1,4 @@
1
- /*! @azure/msal-browser v4.28.1 2026-01-17 */
1
+ /*! @azure/msal-browser v4.29.0 2026-02-23 */
2
2
  'use strict';
3
3
  (function (global, factory) {
4
4
  typeof exports === 'object' && typeof module !== 'undefined' ? factory(exports) :
@@ -6,7 +6,7 @@
6
6
  (global = typeof globalThis !== 'undefined' ? globalThis : global || self, factory(global.msalCustomAuth = {}));
7
7
  })(this, (function (exports) { 'use strict';
8
8
 
9
- /*! @azure/msal-common v15.14.1 2026-01-17 */
9
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
10
10
  /*
11
11
  * Copyright (c) Microsoft Corporation. All rights reserved.
12
12
  * Licensed under the MIT License.
@@ -280,7 +280,7 @@
280
280
  // Token renewal offset default in seconds
281
281
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
282
282
 
283
- /*! @azure/msal-common v15.14.1 2026-01-17 */
283
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
284
284
  /*
285
285
  * Copyright (c) Microsoft Corporation. All rights reserved.
286
286
  * Licensed under the MIT License.
@@ -291,7 +291,7 @@
291
291
  const unexpectedError = "unexpected_error";
292
292
  const postRequestFailed$1 = "post_request_failed";
293
293
 
294
- /*! @azure/msal-common v15.14.1 2026-01-17 */
294
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
295
295
 
296
296
  /*
297
297
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -326,7 +326,7 @@
326
326
  : AuthErrorMessages[code]);
327
327
  }
328
328
 
329
- /*! @azure/msal-common v15.14.1 2026-01-17 */
329
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
330
330
  /*
331
331
  * Copyright (c) Microsoft Corporation. All rights reserved.
332
332
  * Licensed under the MIT License.
@@ -377,7 +377,7 @@
377
377
  const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
378
378
  const platformBrokerError = "platform_broker_error";
379
379
 
380
- /*! @azure/msal-common v15.14.1 2026-01-17 */
380
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
381
381
 
382
382
  /*
383
383
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -452,7 +452,7 @@
452
452
  return new ClientAuthError(errorCode, additionalMessage);
453
453
  }
454
454
 
455
- /*! @azure/msal-common v15.14.1 2026-01-17 */
455
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
456
456
 
457
457
  /*
458
458
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -491,7 +491,7 @@
491
491
  },
492
492
  };
493
493
 
494
- /*! @azure/msal-common v15.14.1 2026-01-17 */
494
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
495
495
 
496
496
  /*
497
497
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -682,12 +682,12 @@
682
682
  }
683
683
  }
684
684
 
685
- /*! @azure/msal-common v15.14.1 2026-01-17 */
685
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
686
686
  /* eslint-disable header/header */
687
687
  const name$1 = "@azure/msal-common";
688
- const version$1 = "15.14.1";
688
+ const version$1 = "15.15.0";
689
689
 
690
- /*! @azure/msal-common v15.14.1 2026-01-17 */
690
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
691
691
  /*
692
692
  * Copyright (c) Microsoft Corporation. All rights reserved.
693
693
  * Licensed under the MIT License.
@@ -696,7 +696,7 @@
696
696
  // AzureCloudInstance is not specified.
697
697
  None: "none"};
698
698
 
699
- /*! @azure/msal-common v15.14.1 2026-01-17 */
699
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
700
700
  /*
701
701
  * Copyright (c) Microsoft Corporation. All rights reserved.
702
702
  * Licensed under the MIT License.
@@ -726,7 +726,7 @@
726
726
  const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
727
727
  const invalidPlatformBrokerConfiguration = "invalid_platform_broker_configuration";
728
728
 
729
- /*! @azure/msal-common v15.14.1 2026-01-17 */
729
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
730
730
 
731
731
  /*
732
732
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -772,7 +772,7 @@
772
772
  return new ClientConfigurationError(errorCode);
773
773
  }
774
774
 
775
- /*! @azure/msal-common v15.14.1 2026-01-17 */
775
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
776
776
  /*
777
777
  * Copyright (c) Microsoft Corporation. All rights reserved.
778
778
  * Licensed under the MIT License.
@@ -869,7 +869,7 @@
869
869
  }
870
870
  }
871
871
 
872
- /*! @azure/msal-common v15.14.1 2026-01-17 */
872
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
873
873
 
874
874
  /*
875
875
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1064,7 +1064,7 @@
1064
1064
  }
1065
1065
  }
1066
1066
 
1067
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1067
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1068
1068
 
1069
1069
  /*
1070
1070
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1104,7 +1104,7 @@
1104
1104
  };
1105
1105
  }
1106
1106
 
1107
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1107
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1108
1108
  /*
1109
1109
  * Copyright (c) Microsoft Corporation. All rights reserved.
1110
1110
  * Licensed under the MIT License.
@@ -1186,7 +1186,7 @@
1186
1186
  return updatedAccountInfo;
1187
1187
  }
1188
1188
 
1189
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1189
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1190
1190
  /*
1191
1191
  * Copyright (c) Microsoft Corporation. All rights reserved.
1192
1192
  * Licensed under the MIT License.
@@ -1201,7 +1201,7 @@
1201
1201
  Ciam: 3,
1202
1202
  };
1203
1203
 
1204
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1204
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1205
1205
  /*
1206
1206
  * Copyright (c) Microsoft Corporation. All rights reserved.
1207
1207
  * Licensed under the MIT License.
@@ -1223,7 +1223,7 @@
1223
1223
  return null;
1224
1224
  }
1225
1225
 
1226
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1226
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1227
1227
  /*
1228
1228
  * Copyright (c) Microsoft Corporation. All rights reserved.
1229
1229
  * Licensed under the MIT License.
@@ -1247,7 +1247,7 @@
1247
1247
  EAR: "EAR",
1248
1248
  };
1249
1249
 
1250
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1250
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1251
1251
 
1252
1252
  /*
1253
1253
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1482,7 +1482,7 @@
1482
1482
  }
1483
1483
  }
1484
1484
 
1485
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1485
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1486
1486
 
1487
1487
  /*
1488
1488
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1563,7 +1563,7 @@
1563
1563
  }
1564
1564
  }
1565
1565
 
1566
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1566
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1567
1567
 
1568
1568
  /*
1569
1569
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1679,7 +1679,7 @@
1679
1679
  }
1680
1680
  }
1681
1681
 
1682
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1682
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1683
1683
 
1684
1684
  /*
1685
1685
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1843,7 +1843,7 @@
1843
1843
  }
1844
1844
  }
1845
1845
 
1846
- /*! @azure/msal-common v15.14.1 2026-01-17 */
1846
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1847
1847
 
1848
1848
  /*
1849
1849
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1872,6 +1872,27 @@
1872
1872
  authorization_endpoint: "https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/authorize",
1873
1873
  end_session_endpoint: "https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/logout",
1874
1874
  },
1875
+ "login.sovcloud-identity.fr": {
1876
+ token_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/token",
1877
+ jwks_uri: "https://login.sovcloud-identity.fr/{tenantid}/discovery/v2.0/keys",
1878
+ issuer: "https://login.sovcloud-identity.fr/{tenantid}/v2.0",
1879
+ authorization_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/authorize",
1880
+ end_session_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/logout",
1881
+ },
1882
+ "login.sovcloud-identity.de": {
1883
+ token_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/token",
1884
+ jwks_uri: "https://login.sovcloud-identity.de/{tenantid}/discovery/v2.0/keys",
1885
+ issuer: "https://login.sovcloud-identity.de/{tenantid}/v2.0",
1886
+ authorization_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/authorize",
1887
+ end_session_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/logout",
1888
+ },
1889
+ "login.sovcloud-identity.sg": {
1890
+ token_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/token",
1891
+ jwks_uri: "https://login.sovcloud-identity.sg/common/discovery/v2.0/keys",
1892
+ issuer: "https://login.sovcloud-identity.sg/{tenantid}/v2.0",
1893
+ authorization_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/authorize",
1894
+ end_session_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/logout",
1895
+ },
1875
1896
  },
1876
1897
  instanceDiscoveryMetadata: {
1877
1898
  metadata: [
@@ -1911,6 +1932,21 @@
1911
1932
  preferred_cache: "login-us.microsoftonline.com",
1912
1933
  aliases: ["login-us.microsoftonline.com"],
1913
1934
  },
1935
+ {
1936
+ preferred_network: "login.sovcloud-identity.fr",
1937
+ preferred_cache: "login.sovcloud-identity.fr",
1938
+ aliases: ["login.sovcloud-identity.fr"],
1939
+ },
1940
+ {
1941
+ preferred_network: "login.sovcloud-identity.de",
1942
+ preferred_cache: "login.sovcloud-identity.de",
1943
+ aliases: ["login.sovcloud-identity.de"],
1944
+ },
1945
+ {
1946
+ preferred_network: "login.sovcloud-identity.sg",
1947
+ preferred_cache: "login.sovcloud-identity.sg",
1948
+ aliases: ["login.sovcloud-identity.sg"],
1949
+ },
1914
1950
  ],
1915
1951
  },
1916
1952
  };
@@ -1982,7 +2018,7 @@
1982
2018
  return null;
1983
2019
  }
1984
2020
 
1985
- /*! @azure/msal-common v15.14.1 2026-01-17 */
2021
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1986
2022
  /*
1987
2023
  * Copyright (c) Microsoft Corporation. All rights reserved.
1988
2024
  * Licensed under the MIT License.
@@ -1990,7 +2026,7 @@
1990
2026
  const cacheQuotaExceeded = "cache_quota_exceeded";
1991
2027
  const cacheErrorUnknown = "cache_error_unknown";
1992
2028
 
1993
- /*! @azure/msal-common v15.14.1 2026-01-17 */
2029
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
1994
2030
 
1995
2031
  /*
1996
2032
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2035,7 +2071,7 @@
2035
2071
  }
2036
2072
  }
2037
2073
 
2038
- /*! @azure/msal-common v15.14.1 2026-01-17 */
2074
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
2039
2075
 
2040
2076
  /*
2041
2077
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3145,7 +3181,7 @@
3145
3181
  }
3146
3182
  }
3147
3183
 
3148
- /*! @azure/msal-common v15.14.1 2026-01-17 */
3184
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
3149
3185
  /*
3150
3186
  * Copyright (c) Microsoft Corporation. All rights reserved.
3151
3187
  * Licensed under the MIT License.
@@ -3407,6 +3443,11 @@
3407
3443
  LoadIdToken: "loadIdToken",
3408
3444
  LoadAccessToken: "loadAccessToken",
3409
3445
  LoadRefreshToken: "loadRefreshToken",
3446
+ /**
3447
+ * SSO capability verification call (msal-browser).
3448
+ * Fire-and-forget SSO verification call made after interactive authentication completes.
3449
+ */
3450
+ SsoCapable: "ssoCapable",
3410
3451
  };
3411
3452
  /**
3412
3453
  * State of the performance event.
@@ -3417,7 +3458,7 @@
3417
3458
  const PerformanceEventStatus = {
3418
3459
  InProgress: 1};
3419
3460
 
3420
- /*! @azure/msal-common v15.14.1 2026-01-17 */
3461
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
3421
3462
 
3422
3463
  /*
3423
3464
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3496,7 +3537,7 @@
3496
3537
  }
3497
3538
  }
3498
3539
 
3499
- /*! @azure/msal-common v15.14.1 2026-01-17 */
3540
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
3500
3541
 
3501
3542
  /*
3502
3543
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3596,7 +3637,7 @@
3596
3637
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
3597
3638
  }
3598
3639
 
3599
- /*! @azure/msal-common v15.14.1 2026-01-17 */
3640
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
3600
3641
  /*
3601
3642
  * Copyright (c) Microsoft Corporation. All rights reserved.
3602
3643
  * Licensed under the MIT License.
@@ -3606,7 +3647,7 @@
3606
3647
  UPN: "UPN",
3607
3648
  };
3608
3649
 
3609
- /*! @azure/msal-common v15.14.1 2026-01-17 */
3650
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
3610
3651
  /*
3611
3652
  * Copyright (c) Microsoft Corporation. All rights reserved.
3612
3653
  * Licensed under the MIT License.
@@ -3656,7 +3697,7 @@
3656
3697
  const EAR_JWK = "ear_jwk";
3657
3698
  const EAR_JWE_CRYPTO = "ear_jwe_crypto";
3658
3699
 
3659
- /*! @azure/msal-common v15.14.1 2026-01-17 */
3700
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
3660
3701
 
3661
3702
  /*
3662
3703
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4036,7 +4077,7 @@
4036
4077
  });
4037
4078
  }
4038
4079
 
4039
- /*! @azure/msal-common v15.14.1 2026-01-17 */
4080
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
4040
4081
  /*
4041
4082
  * Copyright (c) Microsoft Corporation. All rights reserved.
4042
4083
  * Licensed under the MIT License.
@@ -4048,7 +4089,7 @@
4048
4089
  response.hasOwnProperty("jwks_uri"));
4049
4090
  }
4050
4091
 
4051
- /*! @azure/msal-common v15.14.1 2026-01-17 */
4092
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
4052
4093
  /*
4053
4094
  * Copyright (c) Microsoft Corporation. All rights reserved.
4054
4095
  * Licensed under the MIT License.
@@ -4058,7 +4099,7 @@
4058
4099
  response.hasOwnProperty("metadata"));
4059
4100
  }
4060
4101
 
4061
- /*! @azure/msal-common v15.14.1 2026-01-17 */
4102
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
4062
4103
  /*
4063
4104
  * Copyright (c) Microsoft Corporation. All rights reserved.
4064
4105
  * Licensed under the MIT License.
@@ -4068,7 +4109,7 @@
4068
4109
  response.hasOwnProperty("error_description"));
4069
4110
  }
4070
4111
 
4071
- /*! @azure/msal-common v15.14.1 2026-01-17 */
4112
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
4072
4113
  /*
4073
4114
  * Copyright (c) Microsoft Corporation. All rights reserved.
4074
4115
  * Licensed under the MIT License.
@@ -4164,7 +4205,7 @@
4164
4205
  };
4165
4206
  };
4166
4207
 
4167
- /*! @azure/msal-common v15.14.1 2026-01-17 */
4208
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
4168
4209
 
4169
4210
  /*
4170
4211
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4270,7 +4311,7 @@
4270
4311
  },
4271
4312
  };
4272
4313
 
4273
- /*! @azure/msal-common v15.14.1 2026-01-17 */
4314
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
4274
4315
  /*
4275
4316
  * Copyright (c) Microsoft Corporation. All rights reserved.
4276
4317
  * Licensed under the MIT License.
@@ -4335,7 +4376,7 @@
4335
4376
  return cachedAtSec > nowSeconds();
4336
4377
  }
4337
4378
 
4338
- /*! @azure/msal-common v15.14.1 2026-01-17 */
4379
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
4339
4380
 
4340
4381
  /*
4341
4382
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4597,7 +4638,7 @@
4597
4638
  return metadata.expiresAt <= nowSeconds();
4598
4639
  }
4599
4640
 
4600
- /*! @azure/msal-common v15.14.1 2026-01-17 */
4641
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
4601
4642
 
4602
4643
  /*
4603
4644
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5436,7 +5477,7 @@
5436
5477
  };
5437
5478
  }
5438
5479
 
5439
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5480
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5440
5481
 
5441
5482
  /*
5442
5483
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5467,7 +5508,7 @@
5467
5508
  }
5468
5509
  }
5469
5510
 
5470
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5511
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5471
5512
 
5472
5513
  /*
5473
5514
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5486,7 +5527,7 @@
5486
5527
  }
5487
5528
  }
5488
5529
 
5489
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5530
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5490
5531
  /*
5491
5532
  * Copyright (c) Microsoft Corporation. All rights reserved.
5492
5533
  * Licensed under the MIT License.
@@ -5507,7 +5548,7 @@
5507
5548
  };
5508
5549
  }
5509
5550
 
5510
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5551
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5511
5552
 
5512
5553
  /*
5513
5554
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5594,7 +5635,7 @@
5594
5635
  }
5595
5636
  }
5596
5637
 
5597
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5638
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5598
5639
 
5599
5640
  /*
5600
5641
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5625,7 +5666,7 @@
5625
5666
  return new NetworkError(error, httpStatus, responseHeaders);
5626
5667
  }
5627
5668
 
5628
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5669
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5629
5670
 
5630
5671
  /*
5631
5672
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5773,23 +5814,58 @@
5773
5814
  }
5774
5815
  }
5775
5816
 
5776
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5817
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5777
5818
  /*
5778
5819
  * Copyright (c) Microsoft Corporation. All rights reserved.
5779
5820
  * Licensed under the MIT License.
5780
5821
  */
5781
- // Codes defined by MSAL
5822
+ /**
5823
+ * MSAL-defined interaction required error code indicating no tokens are found in cache.
5824
+ * @public
5825
+ */
5782
5826
  const noTokensFound = "no_tokens_found";
5827
+ /**
5828
+ * MSAL-defined error code indicating a native account is unavailable on the platform.
5829
+ * @public
5830
+ */
5783
5831
  const nativeAccountUnavailable = "native_account_unavailable";
5832
+ /**
5833
+ * MSAL-defined error code indicating the refresh token has expired and user interaction is needed.
5834
+ * @public
5835
+ */
5784
5836
  const refreshTokenExpired = "refresh_token_expired";
5837
+ /**
5838
+ * MSAL-defined error code indicating UI/UX is not allowed (e.g., blocked by policy), requiring alternate interaction.
5839
+ * @public
5840
+ */
5785
5841
  const uxNotAllowed = "ux_not_allowed";
5786
- // Codes potentially returned by server
5842
+ /**
5843
+ * Server-originated error code indicating interaction is required to complete the request.
5844
+ * @public
5845
+ */
5787
5846
  const interactionRequired = "interaction_required";
5847
+ /**
5848
+ * Server-originated error code indicating user consent is required.
5849
+ * @public
5850
+ */
5788
5851
  const consentRequired = "consent_required";
5852
+ /**
5853
+ * Server-originated error code indicating user login is required.
5854
+ * @public
5855
+ */
5789
5856
  const loginRequired = "login_required";
5790
- const badToken = "bad_token";
5857
+ /**
5858
+ * Server-originated error code indicating the token is invalid or corrupted.
5859
+ * @public
5860
+ */
5861
+ const badToken = "bad_token";
5862
+ /**
5863
+ * Server-originated error code indicating the user was interrupted and must reattempt the flow.
5864
+ * @public
5865
+ */
5866
+ const interruptedUser = "interrupted_user";
5791
5867
 
5792
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5868
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5793
5869
 
5794
5870
  /*
5795
5871
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5804,6 +5880,7 @@
5804
5880
  loginRequired,
5805
5881
  badToken,
5806
5882
  uxNotAllowed,
5883
+ interruptedUser,
5807
5884
  ];
5808
5885
  const InteractionRequiredAuthSubErrorMessage = [
5809
5886
  "message_only",
@@ -5812,6 +5889,7 @@
5812
5889
  "user_password_expired",
5813
5890
  "consent_required",
5814
5891
  "bad_token",
5892
+ "interrupted_user",
5815
5893
  ];
5816
5894
  const InteractionRequiredAuthErrorMessages = {
5817
5895
  [noTokensFound]: "No refresh token found in the cache. Please sign-in.",
@@ -5819,6 +5897,7 @@
5819
5897
  [refreshTokenExpired]: "Refresh token has expired.",
5820
5898
  [badToken]: "Identity provider returned bad_token due to an expired or invalid refresh token. Please invoke an interactive API to resolve.",
5821
5899
  [uxNotAllowed]: "`canShowUI` flag in Edge was set to false. User interaction required on web page. Please invoke an interactive API to resolve.",
5900
+ [interruptedUser]: "The user could not be authenticated due to an interrupted state. Please invoke an interactive API to resolve.",
5822
5901
  };
5823
5902
  /**
5824
5903
  * Error thrown when user interaction is required.
@@ -5861,7 +5940,7 @@
5861
5940
  return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
5862
5941
  }
5863
5942
 
5864
- /*! @azure/msal-common v15.14.1 2026-01-17 */
5943
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5865
5944
 
5866
5945
  /*
5867
5946
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5933,7 +6012,7 @@
5933
6012
  }
5934
6013
  }
5935
6014
 
5936
- /*! @azure/msal-common v15.14.1 2026-01-17 */
6015
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
5937
6016
 
5938
6017
  /*
5939
6018
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6015,7 +6094,7 @@
6015
6094
  }
6016
6095
  }
6017
6096
 
6018
- /*! @azure/msal-common v15.14.1 2026-01-17 */
6097
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
6019
6098
  /*
6020
6099
  * Copyright (c) Microsoft Corporation. All rights reserved.
6021
6100
  * Licensed under the MIT License.
@@ -6042,7 +6121,7 @@
6042
6121
  }
6043
6122
  }
6044
6123
 
6045
- /*! @azure/msal-common v15.14.1 2026-01-17 */
6124
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
6046
6125
 
6047
6126
  /*
6048
6127
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6381,7 +6460,7 @@
6381
6460
  return baseAccount;
6382
6461
  }
6383
6462
 
6384
- /*! @azure/msal-common v15.14.1 2026-01-17 */
6463
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
6385
6464
  /*
6386
6465
  * Copyright (c) Microsoft Corporation. All rights reserved.
6387
6466
  * Licensed under the MIT License.
@@ -6399,7 +6478,7 @@
6399
6478
  }
6400
6479
  }
6401
6480
 
6402
- /*! @azure/msal-common v15.14.1 2026-01-17 */
6481
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
6403
6482
 
6404
6483
  /*
6405
6484
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6635,7 +6714,7 @@
6635
6714
  }
6636
6715
  }
6637
6716
 
6638
- /*! @azure/msal-common v15.14.1 2026-01-17 */
6717
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
6639
6718
 
6640
6719
  /*
6641
6720
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6847,7 +6926,7 @@
6847
6926
  }
6848
6927
  }
6849
6928
 
6850
- /*! @azure/msal-common v15.14.1 2026-01-17 */
6929
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
6851
6930
 
6852
6931
  /*
6853
6932
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6945,7 +7024,7 @@
6945
7024
  }
6946
7025
  }
6947
7026
 
6948
- /*! @azure/msal-common v15.14.1 2026-01-17 */
7027
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
6949
7028
 
6950
7029
  /*
6951
7030
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6960,7 +7039,7 @@
6960
7039
  },
6961
7040
  };
6962
7041
 
6963
- /*! @azure/msal-common v15.14.1 2026-01-17 */
7042
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
6964
7043
 
6965
7044
  /*
6966
7045
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7184,7 +7263,7 @@
7184
7263
  return account.loginHint || account.idTokenClaims?.login_hint || null;
7185
7264
  }
7186
7265
 
7187
- /*! @azure/msal-common v15.14.1 2026-01-17 */
7266
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
7188
7267
 
7189
7268
  /*
7190
7269
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7447,7 +7526,7 @@
7447
7526
  }
7448
7527
  }
7449
7528
 
7450
- /*! @azure/msal-common v15.14.1 2026-01-17 */
7529
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
7451
7530
  /*
7452
7531
  * Copyright (c) Microsoft Corporation. All rights reserved.
7453
7532
  * Licensed under the MIT License.
@@ -7455,7 +7534,7 @@
7455
7534
  const missingKidError = "missing_kid_error";
7456
7535
  const missingAlgError = "missing_alg_error";
7457
7536
 
7458
- /*! @azure/msal-common v15.14.1 2026-01-17 */
7537
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
7459
7538
 
7460
7539
  /*
7461
7540
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7480,7 +7559,7 @@
7480
7559
  return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
7481
7560
  }
7482
7561
 
7483
- /*! @azure/msal-common v15.14.1 2026-01-17 */
7562
+ /*! @azure/msal-common v15.15.0 2026-02-23 */
7484
7563
 
7485
7564
  /*
7486
7565
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7915,7 +7994,7 @@
7915
7994
 
7916
7995
  /* eslint-disable header/header */
7917
7996
  const name = "@azure/msal-browser";
7918
- const version = "4.28.1";
7997
+ const version = "4.29.0";
7919
7998
 
7920
7999
  /*
7921
8000
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -17364,6 +17443,8 @@
17364
17443
  addCodeChallengeParams(parameters, request.codeChallenge, Constants.S256_CODE_CHALLENGE_METHOD);
17365
17444
  const queryParams = new Map();
17366
17445
  addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
17446
+ // Add correlationId to query params so gateway can propagate it to IDPs
17447
+ addCorrelationId(queryParams, request.correlationId);
17367
17448
  const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
17368
17449
  return createForm(frame, url, parameters);
17369
17450
  }
@@ -17377,6 +17458,8 @@
17377
17458
  addPostBodyParameters(parameters, request.authorizePostBodyParameters || {});
17378
17459
  const queryParams = new Map();
17379
17460
  addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
17461
+ // Add correlationId to query params so gateway can propagate it to IDPs
17462
+ addCorrelationId(queryParams, request.correlationId);
17380
17463
  const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
17381
17464
  return createForm(frame, url, parameters);
17382
17465
  }
@@ -17766,6 +17849,7 @@
17766
17849
  supportsNestedAppAuth: false,
17767
17850
  instanceAware: false,
17768
17851
  encodeExtraQueryParams: false,
17852
+ verifySSO: false,
17769
17853
  };
17770
17854
  // Default cache options for browser
17771
17855
  const DEFAULT_CACHE_OPTIONS = {
@@ -19525,6 +19609,52 @@
19525
19609
  return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
19526
19610
  }
19527
19611
  }
19612
+ /**
19613
+ * Verifies SSO capability by making an iframe request to /authorize without exchanging the code for tokens.
19614
+ * This is useful for verifying SSO capability in the background without the overhead of a full token exchange.
19615
+ * @param request - The SSO silent request
19616
+ * @returns true if SSO verification was successful with a valid authorization code, false otherwise
19617
+ */
19618
+ async verifySso(request) {
19619
+ this.performanceClient.addQueueMeasurement(PerformanceEvents.SilentIframeClientAcquireToken, request.correlationId);
19620
+ const inputRequest = { ...request };
19621
+ if (!inputRequest.prompt) {
19622
+ inputRequest.prompt = PromptValue.NONE;
19623
+ }
19624
+ // Create silent request
19625
+ const silentRequest = await invokeAsync(this.initializeAuthorizationRequest.bind(this), PerformanceEvents.StandardInteractionClientInitializeAuthorizationRequest, this.logger, this.performanceClient, request.correlationId)(inputRequest, InteractionType.Silent);
19626
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, request.correlationId)({
19627
+ serverTelemetryManager: this.initializeServerTelemetryManager(this.apiId),
19628
+ requestAuthority: silentRequest.authority,
19629
+ requestAzureCloudOptions: silentRequest.azureCloudOptions,
19630
+ requestExtraQueryParameters: silentRequest.extraQueryParameters,
19631
+ account: silentRequest.account,
19632
+ });
19633
+ const correlationId = silentRequest.correlationId;
19634
+ const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
19635
+ const requestWithPkce = {
19636
+ ...silentRequest,
19637
+ codeChallenge: pkceCodes.challenge,
19638
+ };
19639
+ // Create authorize request url
19640
+ const navigateUrl = await invokeAsync(getAuthCodeRequestUrl, PerformanceEvents.GetAuthCodeUrl, this.logger, this.performanceClient, correlationId)(this.config, authClient.authority, requestWithPkce, this.logger, this.performanceClient);
19641
+ // Get the frame handle for the silent request - this triggers the SSO verification
19642
+ const msalFrame = await invokeAsync(initiateCodeRequest, PerformanceEvents.SilentHandlerInitiateAuthRequest, this.logger, this.performanceClient, correlationId)(navigateUrl, this.performanceClient, this.logger, correlationId, this.config.system.navigateFrameWait);
19643
+ const responseType = this.config.auth.OIDCOptions.serverResponseType;
19644
+ // Monitor the iframe for the response
19645
+ const responseString = await invokeAsync(monitorIframeForHash, PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(msalFrame, this.config.system.iframeHashTimeout, this.config.system.pollIntervalMilliseconds, this.performanceClient, this.logger, correlationId, responseType);
19646
+ // Deserialize the response
19647
+ const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger);
19648
+ // Validate the response - this checks for errors and validates state
19649
+ validateAuthorizationResponse(serverParams, silentRequest.state);
19650
+ // Verify a valid authorization code is present
19651
+ if (!serverParams.code) {
19652
+ this.logger.warning("SSO verification response did not contain an authorization code", correlationId);
19653
+ return false;
19654
+ }
19655
+ this.logger.verbose("SSO verification completed successfully with valid authorization code - skipped token exchange", correlationId);
19656
+ return true;
19657
+ }
19528
19658
  /**
19529
19659
  * Currently Unsupported
19530
19660
  */
@@ -20175,6 +20305,8 @@
20175
20305
  rootMeasurement.end({
20176
20306
  success: true,
20177
20307
  }, undefined, result.account);
20308
+ // Fire-and-forget SSO capability verification in background
20309
+ this.verifySsoCapability(result.account, InteractionType.Redirect);
20178
20310
  }
20179
20311
  else {
20180
20312
  /*
@@ -20407,6 +20539,8 @@
20407
20539
  accessTokenSize: result.accessToken.length,
20408
20540
  idTokenSize: result.idToken.length,
20409
20541
  }, undefined, result.account);
20542
+ // SSO capability verification in background
20543
+ this.verifySsoCapability(result.account, InteractionType.Popup);
20410
20544
  return result;
20411
20545
  })
20412
20546
  .catch((e) => {
@@ -20440,6 +20574,53 @@
20440
20574
  visibilityChangeCount: 1,
20441
20575
  });
20442
20576
  }
20577
+ /**
20578
+ * SSO capability verification in the background.
20579
+ * This method makes an iframe request to /authorize to verify SSO capability without calling /token.
20580
+ * This method does not block the caller and tracks telemetry for success/failure.
20581
+ * This method only executes if verifySSO is set to true in the auth configuration.
20582
+ * @param account - The account to use for the SSO verification
20583
+ * @param parentApi - The API ID of the parent operation for logging purposes
20584
+ */
20585
+ verifySsoCapability(account, parentApi) {
20586
+ // Check if SSO capability verification is enabled
20587
+ if (!this.config.auth.verifySSO) {
20588
+ return;
20589
+ }
20590
+ const correlationId = this.browserCrypto.createNewGuid();
20591
+ const ssoCapableMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.SsoCapable, correlationId);
20592
+ ssoCapableMeasurement.add({
20593
+ parentApi: parentApi,
20594
+ });
20595
+ this.logger.verbose(`SSO capability verification initiated after ${parentApi}`, correlationId);
20596
+ /*
20597
+ * Use setTimeout to ensure this runs in a separate macrotask after the current call stack completes
20598
+ * This ensures the result is returned to the caller before the SSO verification starts and doesn't affect performance
20599
+ */
20600
+ setTimeout(() => {
20601
+ const ssoVerificationRequest = {
20602
+ account: account,
20603
+ correlationId: correlationId,
20604
+ };
20605
+ const silentIframeClient = this.createSilentIframeClient(correlationId);
20606
+ silentIframeClient
20607
+ .verifySso(ssoVerificationRequest)
20608
+ .then((success) => {
20609
+ this.logger.verbose(`SSO capability verification completed after ${parentApi}, success: ${success}`, correlationId);
20610
+ ssoCapableMeasurement.end({
20611
+ fromCache: false,
20612
+ success: success,
20613
+ }, undefined, account);
20614
+ })
20615
+ .catch((error) => {
20616
+ this.logger.warning(`SSO capability verification failed after ${parentApi}: ${error.message}`, correlationId);
20617
+ ssoCapableMeasurement.end({
20618
+ fromCache: false,
20619
+ success: false,
20620
+ }, error, account);
20621
+ });
20622
+ }, 0);
20623
+ }
20443
20624
  // #endregion
20444
20625
  // #region Silent Flow
20445
20626
  /**
@@ -21205,6 +21386,10 @@
21205
21386
  const result = this.acquireTokenSilentNoIframe(silentRequest, cacheLookupPolicy).catch(async (refreshTokenError) => {
21206
21387
  const shouldTryToResolveSilently = checkIfRefreshTokenErrorCanBeResolvedSilently(refreshTokenError, cacheLookupPolicy);
21207
21388
  if (shouldTryToResolveSilently) {
21389
+ const silentRefreshReason = `${refreshTokenError.errorCode}${refreshTokenError.subError
21390
+ ? `|${refreshTokenError.subError}`
21391
+ : ""}`;
21392
+ this.performanceClient.addFields({ silentRefreshReason }, silentRequest.correlationId);
21208
21393
  if (!this.activeIframeRequest) {
21209
21394
  let _resolve;
21210
21395
  // Always set the active request tracker immediately after checking it to prevent races