@azure/msal-browser 4.28.1 → 4.29.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/app/IPublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientNext.mjs +1 -1
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/cache/AccountManager.mjs +1 -1
- package/dist/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/cache/BrowserCacheManager.mjs +1 -1
- package/dist/cache/CacheHelpers.mjs +1 -1
- package/dist/cache/CacheKeys.mjs +1 -1
- package/dist/cache/CookieStorage.mjs +1 -1
- package/dist/cache/DatabaseStorage.mjs +1 -1
- package/dist/cache/EncryptedData.mjs +1 -1
- package/dist/cache/LocalStorage.mjs +1 -1
- package/dist/cache/MemoryStorage.mjs +1 -1
- package/dist/cache/SessionStorage.mjs +1 -1
- package/dist/cache/TokenCache.mjs +1 -1
- package/dist/config/Configuration.d.ts +7 -0
- package/dist/config/Configuration.d.ts.map +1 -1
- package/dist/config/Configuration.mjs +2 -1
- package/dist/config/Configuration.mjs.map +1 -1
- package/dist/controllers/ControllerFactory.mjs +1 -1
- package/dist/controllers/NestedAppAuthController.mjs +1 -1
- package/dist/controllers/StandardController.d.ts +9 -0
- package/dist/controllers/StandardController.d.ts.map +1 -1
- package/dist/controllers/StandardController.mjs +56 -1
- package/dist/controllers/StandardController.mjs.map +1 -1
- package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
- package/dist/crypto/BrowserCrypto.mjs +1 -1
- package/dist/crypto/CryptoOps.mjs +1 -1
- package/dist/crypto/PkceGenerator.mjs +1 -1
- package/dist/crypto/SignedHttpRequest.mjs +1 -1
- package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
- package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
- package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
- package/dist/custom-auth-path/config/Configuration.d.ts +7 -0
- package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
- package/dist/custom-auth-path/config/Configuration.mjs +2 -1
- package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
- package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
- package/dist/custom-auth-path/controllers/StandardController.d.ts +9 -0
- package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.mjs +56 -1
- package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
- package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
- package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
- package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
- package/dist/custom-auth-path/event/EventType.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +7 -0
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +49 -3
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
- package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
- package/dist/custom-auth-path/packageMetadata.mjs +2 -2
- package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs +5 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
- package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
- package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
- package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/encode/Base64Decode.mjs +1 -1
- package/dist/encode/Base64Encode.mjs +1 -1
- package/dist/error/BrowserAuthError.mjs +1 -1
- package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/error/NativeAuthError.mjs +1 -1
- package/dist/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/error/NestedAppAuthError.mjs +1 -1
- package/dist/event/EventHandler.mjs +1 -1
- package/dist/event/EventMessage.mjs +1 -1
- package/dist/event/EventType.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
- package/dist/interaction_client/PopupClient.mjs +1 -1
- package/dist/interaction_client/RedirectClient.mjs +1 -1
- package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/interaction_client/SilentIframeClient.d.ts +7 -0
- package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/interaction_client/SilentIframeClient.mjs +49 -3
- package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
- package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/naa/BridgeError.mjs +1 -1
- package/dist/naa/BridgeProxy.mjs +1 -1
- package/dist/naa/BridgeStatusCode.mjs +1 -1
- package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
- package/dist/navigation/NavigationClient.mjs +1 -1
- package/dist/network/FetchClient.mjs +1 -1
- package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
- package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.d.ts.map +1 -1
- package/dist/protocol/Authorize.mjs +5 -1
- package/dist/protocol/Authorize.mjs.map +1 -1
- package/dist/request/RequestHelpers.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
- package/dist/utils/BrowserConstants.mjs +1 -1
- package/dist/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/utils/BrowserUtils.mjs +1 -1
- package/dist/utils/Helpers.mjs +1 -1
- package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
- package/lib/custom-auth-path/msal-custom-auth.cjs +253 -68
- package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
- package/lib/custom-auth-path/msal-custom-auth.js +253 -68
- package/lib/custom-auth-path/msal-custom-auth.js.map +1 -1
- package/lib/custom-auth-path/types/config/Configuration.d.ts +7 -0
- package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts +9 -0
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +7 -0
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
- package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/msal-browser.cjs +261 -70
- package/lib/msal-browser.cjs.map +1 -1
- package/lib/msal-browser.js +261 -70
- package/lib/msal-browser.js.map +1 -1
- package/lib/msal-browser.min.js +64 -64
- package/lib/types/config/Configuration.d.ts +7 -0
- package/lib/types/config/Configuration.d.ts.map +1 -1
- package/lib/types/controllers/StandardController.d.ts +9 -0
- package/lib/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/types/interaction_client/SilentIframeClient.d.ts +7 -0
- package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/lib/types/protocol/Authorize.d.ts.map +1 -1
- package/package.json +2 -2
- package/src/config/Configuration.ts +8 -0
- package/src/controllers/StandardController.ts +92 -0
- package/src/interaction_client/SilentIframeClient.ts +136 -0
- package/src/packageMetadata.ts +1 -1
- package/src/protocol/Authorize.ts +14 -0
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/*! @azure/msal-browser v4.
|
|
1
|
+
/*! @azure/msal-browser v4.29.0 2026-02-23 */
|
|
2
2
|
'use strict';
|
|
3
3
|
(function (global, factory) {
|
|
4
4
|
typeof exports === 'object' && typeof module !== 'undefined' ? factory(exports) :
|
|
@@ -6,7 +6,7 @@
|
|
|
6
6
|
(global = typeof globalThis !== 'undefined' ? globalThis : global || self, factory(global.msalCustomAuth = {}));
|
|
7
7
|
})(this, (function (exports) { 'use strict';
|
|
8
8
|
|
|
9
|
-
/*! @azure/msal-common v15.
|
|
9
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
10
10
|
/*
|
|
11
11
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
12
12
|
* Licensed under the MIT License.
|
|
@@ -280,7 +280,7 @@
|
|
|
280
280
|
// Token renewal offset default in seconds
|
|
281
281
|
const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
|
|
282
282
|
|
|
283
|
-
/*! @azure/msal-common v15.
|
|
283
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
284
284
|
/*
|
|
285
285
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
286
286
|
* Licensed under the MIT License.
|
|
@@ -291,7 +291,7 @@
|
|
|
291
291
|
const unexpectedError = "unexpected_error";
|
|
292
292
|
const postRequestFailed$1 = "post_request_failed";
|
|
293
293
|
|
|
294
|
-
/*! @azure/msal-common v15.
|
|
294
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
295
295
|
|
|
296
296
|
/*
|
|
297
297
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -326,7 +326,7 @@
|
|
|
326
326
|
: AuthErrorMessages[code]);
|
|
327
327
|
}
|
|
328
328
|
|
|
329
|
-
/*! @azure/msal-common v15.
|
|
329
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
330
330
|
/*
|
|
331
331
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
332
332
|
* Licensed under the MIT License.
|
|
@@ -377,7 +377,7 @@
|
|
|
377
377
|
const nestedAppAuthBridgeDisabled = "nested_app_auth_bridge_disabled";
|
|
378
378
|
const platformBrokerError = "platform_broker_error";
|
|
379
379
|
|
|
380
|
-
/*! @azure/msal-common v15.
|
|
380
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
381
381
|
|
|
382
382
|
/*
|
|
383
383
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -452,7 +452,7 @@
|
|
|
452
452
|
return new ClientAuthError(errorCode, additionalMessage);
|
|
453
453
|
}
|
|
454
454
|
|
|
455
|
-
/*! @azure/msal-common v15.
|
|
455
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
456
456
|
|
|
457
457
|
/*
|
|
458
458
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -491,7 +491,7 @@
|
|
|
491
491
|
},
|
|
492
492
|
};
|
|
493
493
|
|
|
494
|
-
/*! @azure/msal-common v15.
|
|
494
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
495
495
|
|
|
496
496
|
/*
|
|
497
497
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -682,12 +682,12 @@
|
|
|
682
682
|
}
|
|
683
683
|
}
|
|
684
684
|
|
|
685
|
-
/*! @azure/msal-common v15.
|
|
685
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
686
686
|
/* eslint-disable header/header */
|
|
687
687
|
const name$1 = "@azure/msal-common";
|
|
688
|
-
const version$1 = "15.
|
|
688
|
+
const version$1 = "15.15.0";
|
|
689
689
|
|
|
690
|
-
/*! @azure/msal-common v15.
|
|
690
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
691
691
|
/*
|
|
692
692
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
693
693
|
* Licensed under the MIT License.
|
|
@@ -696,7 +696,7 @@
|
|
|
696
696
|
// AzureCloudInstance is not specified.
|
|
697
697
|
None: "none"};
|
|
698
698
|
|
|
699
|
-
/*! @azure/msal-common v15.
|
|
699
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
700
700
|
/*
|
|
701
701
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
702
702
|
* Licensed under the MIT License.
|
|
@@ -726,7 +726,7 @@
|
|
|
726
726
|
const invalidAuthorizePostBodyParameters = "invalid_authorize_post_body_parameters";
|
|
727
727
|
const invalidPlatformBrokerConfiguration = "invalid_platform_broker_configuration";
|
|
728
728
|
|
|
729
|
-
/*! @azure/msal-common v15.
|
|
729
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
730
730
|
|
|
731
731
|
/*
|
|
732
732
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -772,7 +772,7 @@
|
|
|
772
772
|
return new ClientConfigurationError(errorCode);
|
|
773
773
|
}
|
|
774
774
|
|
|
775
|
-
/*! @azure/msal-common v15.
|
|
775
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
776
776
|
/*
|
|
777
777
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
778
778
|
* Licensed under the MIT License.
|
|
@@ -869,7 +869,7 @@
|
|
|
869
869
|
}
|
|
870
870
|
}
|
|
871
871
|
|
|
872
|
-
/*! @azure/msal-common v15.
|
|
872
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
873
873
|
|
|
874
874
|
/*
|
|
875
875
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1064,7 +1064,7 @@
|
|
|
1064
1064
|
}
|
|
1065
1065
|
}
|
|
1066
1066
|
|
|
1067
|
-
/*! @azure/msal-common v15.
|
|
1067
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1068
1068
|
|
|
1069
1069
|
/*
|
|
1070
1070
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1104,7 +1104,7 @@
|
|
|
1104
1104
|
};
|
|
1105
1105
|
}
|
|
1106
1106
|
|
|
1107
|
-
/*! @azure/msal-common v15.
|
|
1107
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1108
1108
|
/*
|
|
1109
1109
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1110
1110
|
* Licensed under the MIT License.
|
|
@@ -1186,7 +1186,7 @@
|
|
|
1186
1186
|
return updatedAccountInfo;
|
|
1187
1187
|
}
|
|
1188
1188
|
|
|
1189
|
-
/*! @azure/msal-common v15.
|
|
1189
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1190
1190
|
/*
|
|
1191
1191
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1192
1192
|
* Licensed under the MIT License.
|
|
@@ -1201,7 +1201,7 @@
|
|
|
1201
1201
|
Ciam: 3,
|
|
1202
1202
|
};
|
|
1203
1203
|
|
|
1204
|
-
/*! @azure/msal-common v15.
|
|
1204
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1205
1205
|
/*
|
|
1206
1206
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1207
1207
|
* Licensed under the MIT License.
|
|
@@ -1223,7 +1223,7 @@
|
|
|
1223
1223
|
return null;
|
|
1224
1224
|
}
|
|
1225
1225
|
|
|
1226
|
-
/*! @azure/msal-common v15.
|
|
1226
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1227
1227
|
/*
|
|
1228
1228
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1229
1229
|
* Licensed under the MIT License.
|
|
@@ -1247,7 +1247,7 @@
|
|
|
1247
1247
|
EAR: "EAR",
|
|
1248
1248
|
};
|
|
1249
1249
|
|
|
1250
|
-
/*! @azure/msal-common v15.
|
|
1250
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1251
1251
|
|
|
1252
1252
|
/*
|
|
1253
1253
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1482,7 +1482,7 @@
|
|
|
1482
1482
|
}
|
|
1483
1483
|
}
|
|
1484
1484
|
|
|
1485
|
-
/*! @azure/msal-common v15.
|
|
1485
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1486
1486
|
|
|
1487
1487
|
/*
|
|
1488
1488
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1563,7 +1563,7 @@
|
|
|
1563
1563
|
}
|
|
1564
1564
|
}
|
|
1565
1565
|
|
|
1566
|
-
/*! @azure/msal-common v15.
|
|
1566
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1567
1567
|
|
|
1568
1568
|
/*
|
|
1569
1569
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1679,7 +1679,7 @@
|
|
|
1679
1679
|
}
|
|
1680
1680
|
}
|
|
1681
1681
|
|
|
1682
|
-
/*! @azure/msal-common v15.
|
|
1682
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1683
1683
|
|
|
1684
1684
|
/*
|
|
1685
1685
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1843,7 +1843,7 @@
|
|
|
1843
1843
|
}
|
|
1844
1844
|
}
|
|
1845
1845
|
|
|
1846
|
-
/*! @azure/msal-common v15.
|
|
1846
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1847
1847
|
|
|
1848
1848
|
/*
|
|
1849
1849
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1872,6 +1872,27 @@
|
|
|
1872
1872
|
authorization_endpoint: "https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/authorize",
|
|
1873
1873
|
end_session_endpoint: "https://login.microsoftonline.us/{tenantid}/oauth2/v2.0/logout",
|
|
1874
1874
|
},
|
|
1875
|
+
"login.sovcloud-identity.fr": {
|
|
1876
|
+
token_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/token",
|
|
1877
|
+
jwks_uri: "https://login.sovcloud-identity.fr/{tenantid}/discovery/v2.0/keys",
|
|
1878
|
+
issuer: "https://login.sovcloud-identity.fr/{tenantid}/v2.0",
|
|
1879
|
+
authorization_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/authorize",
|
|
1880
|
+
end_session_endpoint: "https://login.sovcloud-identity.fr/{tenantid}/oauth2/v2.0/logout",
|
|
1881
|
+
},
|
|
1882
|
+
"login.sovcloud-identity.de": {
|
|
1883
|
+
token_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/token",
|
|
1884
|
+
jwks_uri: "https://login.sovcloud-identity.de/{tenantid}/discovery/v2.0/keys",
|
|
1885
|
+
issuer: "https://login.sovcloud-identity.de/{tenantid}/v2.0",
|
|
1886
|
+
authorization_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/authorize",
|
|
1887
|
+
end_session_endpoint: "https://login.sovcloud-identity.de/{tenantid}/oauth2/v2.0/logout",
|
|
1888
|
+
},
|
|
1889
|
+
"login.sovcloud-identity.sg": {
|
|
1890
|
+
token_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/token",
|
|
1891
|
+
jwks_uri: "https://login.sovcloud-identity.sg/common/discovery/v2.0/keys",
|
|
1892
|
+
issuer: "https://login.sovcloud-identity.sg/{tenantid}/v2.0",
|
|
1893
|
+
authorization_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/authorize",
|
|
1894
|
+
end_session_endpoint: "https://login.sovcloud-identity.sg/common/oauth2/v2.0/logout",
|
|
1895
|
+
},
|
|
1875
1896
|
},
|
|
1876
1897
|
instanceDiscoveryMetadata: {
|
|
1877
1898
|
metadata: [
|
|
@@ -1911,6 +1932,21 @@
|
|
|
1911
1932
|
preferred_cache: "login-us.microsoftonline.com",
|
|
1912
1933
|
aliases: ["login-us.microsoftonline.com"],
|
|
1913
1934
|
},
|
|
1935
|
+
{
|
|
1936
|
+
preferred_network: "login.sovcloud-identity.fr",
|
|
1937
|
+
preferred_cache: "login.sovcloud-identity.fr",
|
|
1938
|
+
aliases: ["login.sovcloud-identity.fr"],
|
|
1939
|
+
},
|
|
1940
|
+
{
|
|
1941
|
+
preferred_network: "login.sovcloud-identity.de",
|
|
1942
|
+
preferred_cache: "login.sovcloud-identity.de",
|
|
1943
|
+
aliases: ["login.sovcloud-identity.de"],
|
|
1944
|
+
},
|
|
1945
|
+
{
|
|
1946
|
+
preferred_network: "login.sovcloud-identity.sg",
|
|
1947
|
+
preferred_cache: "login.sovcloud-identity.sg",
|
|
1948
|
+
aliases: ["login.sovcloud-identity.sg"],
|
|
1949
|
+
},
|
|
1914
1950
|
],
|
|
1915
1951
|
},
|
|
1916
1952
|
};
|
|
@@ -1982,7 +2018,7 @@
|
|
|
1982
2018
|
return null;
|
|
1983
2019
|
}
|
|
1984
2020
|
|
|
1985
|
-
/*! @azure/msal-common v15.
|
|
2021
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1986
2022
|
/*
|
|
1987
2023
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1988
2024
|
* Licensed under the MIT License.
|
|
@@ -1990,7 +2026,7 @@
|
|
|
1990
2026
|
const cacheQuotaExceeded = "cache_quota_exceeded";
|
|
1991
2027
|
const cacheErrorUnknown = "cache_error_unknown";
|
|
1992
2028
|
|
|
1993
|
-
/*! @azure/msal-common v15.
|
|
2029
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
1994
2030
|
|
|
1995
2031
|
/*
|
|
1996
2032
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2035,7 +2071,7 @@
|
|
|
2035
2071
|
}
|
|
2036
2072
|
}
|
|
2037
2073
|
|
|
2038
|
-
/*! @azure/msal-common v15.
|
|
2074
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
2039
2075
|
|
|
2040
2076
|
/*
|
|
2041
2077
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3145,7 +3181,7 @@
|
|
|
3145
3181
|
}
|
|
3146
3182
|
}
|
|
3147
3183
|
|
|
3148
|
-
/*! @azure/msal-common v15.
|
|
3184
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
3149
3185
|
/*
|
|
3150
3186
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3151
3187
|
* Licensed under the MIT License.
|
|
@@ -3407,6 +3443,11 @@
|
|
|
3407
3443
|
LoadIdToken: "loadIdToken",
|
|
3408
3444
|
LoadAccessToken: "loadAccessToken",
|
|
3409
3445
|
LoadRefreshToken: "loadRefreshToken",
|
|
3446
|
+
/**
|
|
3447
|
+
* SSO capability verification call (msal-browser).
|
|
3448
|
+
* Fire-and-forget SSO verification call made after interactive authentication completes.
|
|
3449
|
+
*/
|
|
3450
|
+
SsoCapable: "ssoCapable",
|
|
3410
3451
|
};
|
|
3411
3452
|
/**
|
|
3412
3453
|
* State of the performance event.
|
|
@@ -3417,7 +3458,7 @@
|
|
|
3417
3458
|
const PerformanceEventStatus = {
|
|
3418
3459
|
InProgress: 1};
|
|
3419
3460
|
|
|
3420
|
-
/*! @azure/msal-common v15.
|
|
3461
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
3421
3462
|
|
|
3422
3463
|
/*
|
|
3423
3464
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3496,7 +3537,7 @@
|
|
|
3496
3537
|
}
|
|
3497
3538
|
}
|
|
3498
3539
|
|
|
3499
|
-
/*! @azure/msal-common v15.
|
|
3540
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
3500
3541
|
|
|
3501
3542
|
/*
|
|
3502
3543
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3596,7 +3637,7 @@
|
|
|
3596
3637
|
return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
|
|
3597
3638
|
}
|
|
3598
3639
|
|
|
3599
|
-
/*! @azure/msal-common v15.
|
|
3640
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
3600
3641
|
/*
|
|
3601
3642
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3602
3643
|
* Licensed under the MIT License.
|
|
@@ -3606,7 +3647,7 @@
|
|
|
3606
3647
|
UPN: "UPN",
|
|
3607
3648
|
};
|
|
3608
3649
|
|
|
3609
|
-
/*! @azure/msal-common v15.
|
|
3650
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
3610
3651
|
/*
|
|
3611
3652
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3612
3653
|
* Licensed under the MIT License.
|
|
@@ -3656,7 +3697,7 @@
|
|
|
3656
3697
|
const EAR_JWK = "ear_jwk";
|
|
3657
3698
|
const EAR_JWE_CRYPTO = "ear_jwe_crypto";
|
|
3658
3699
|
|
|
3659
|
-
/*! @azure/msal-common v15.
|
|
3700
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
3660
3701
|
|
|
3661
3702
|
/*
|
|
3662
3703
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4036,7 +4077,7 @@
|
|
|
4036
4077
|
});
|
|
4037
4078
|
}
|
|
4038
4079
|
|
|
4039
|
-
/*! @azure/msal-common v15.
|
|
4080
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4040
4081
|
/*
|
|
4041
4082
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4042
4083
|
* Licensed under the MIT License.
|
|
@@ -4048,7 +4089,7 @@
|
|
|
4048
4089
|
response.hasOwnProperty("jwks_uri"));
|
|
4049
4090
|
}
|
|
4050
4091
|
|
|
4051
|
-
/*! @azure/msal-common v15.
|
|
4092
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4052
4093
|
/*
|
|
4053
4094
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4054
4095
|
* Licensed under the MIT License.
|
|
@@ -4058,7 +4099,7 @@
|
|
|
4058
4099
|
response.hasOwnProperty("metadata"));
|
|
4059
4100
|
}
|
|
4060
4101
|
|
|
4061
|
-
/*! @azure/msal-common v15.
|
|
4102
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4062
4103
|
/*
|
|
4063
4104
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4064
4105
|
* Licensed under the MIT License.
|
|
@@ -4068,7 +4109,7 @@
|
|
|
4068
4109
|
response.hasOwnProperty("error_description"));
|
|
4069
4110
|
}
|
|
4070
4111
|
|
|
4071
|
-
/*! @azure/msal-common v15.
|
|
4112
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4072
4113
|
/*
|
|
4073
4114
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4074
4115
|
* Licensed under the MIT License.
|
|
@@ -4164,7 +4205,7 @@
|
|
|
4164
4205
|
};
|
|
4165
4206
|
};
|
|
4166
4207
|
|
|
4167
|
-
/*! @azure/msal-common v15.
|
|
4208
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4168
4209
|
|
|
4169
4210
|
/*
|
|
4170
4211
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4270,7 +4311,7 @@
|
|
|
4270
4311
|
},
|
|
4271
4312
|
};
|
|
4272
4313
|
|
|
4273
|
-
/*! @azure/msal-common v15.
|
|
4314
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4274
4315
|
/*
|
|
4275
4316
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4276
4317
|
* Licensed under the MIT License.
|
|
@@ -4335,7 +4376,7 @@
|
|
|
4335
4376
|
return cachedAtSec > nowSeconds();
|
|
4336
4377
|
}
|
|
4337
4378
|
|
|
4338
|
-
/*! @azure/msal-common v15.
|
|
4379
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4339
4380
|
|
|
4340
4381
|
/*
|
|
4341
4382
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4597,7 +4638,7 @@
|
|
|
4597
4638
|
return metadata.expiresAt <= nowSeconds();
|
|
4598
4639
|
}
|
|
4599
4640
|
|
|
4600
|
-
/*! @azure/msal-common v15.
|
|
4641
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
4601
4642
|
|
|
4602
4643
|
/*
|
|
4603
4644
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5436,7 +5477,7 @@
|
|
|
5436
5477
|
};
|
|
5437
5478
|
}
|
|
5438
5479
|
|
|
5439
|
-
/*! @azure/msal-common v15.
|
|
5480
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5440
5481
|
|
|
5441
5482
|
/*
|
|
5442
5483
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5467,7 +5508,7 @@
|
|
|
5467
5508
|
}
|
|
5468
5509
|
}
|
|
5469
5510
|
|
|
5470
|
-
/*! @azure/msal-common v15.
|
|
5511
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5471
5512
|
|
|
5472
5513
|
/*
|
|
5473
5514
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5486,7 +5527,7 @@
|
|
|
5486
5527
|
}
|
|
5487
5528
|
}
|
|
5488
5529
|
|
|
5489
|
-
/*! @azure/msal-common v15.
|
|
5530
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5490
5531
|
/*
|
|
5491
5532
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5492
5533
|
* Licensed under the MIT License.
|
|
@@ -5507,7 +5548,7 @@
|
|
|
5507
5548
|
};
|
|
5508
5549
|
}
|
|
5509
5550
|
|
|
5510
|
-
/*! @azure/msal-common v15.
|
|
5551
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5511
5552
|
|
|
5512
5553
|
/*
|
|
5513
5554
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5594,7 +5635,7 @@
|
|
|
5594
5635
|
}
|
|
5595
5636
|
}
|
|
5596
5637
|
|
|
5597
|
-
/*! @azure/msal-common v15.
|
|
5638
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5598
5639
|
|
|
5599
5640
|
/*
|
|
5600
5641
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5625,7 +5666,7 @@
|
|
|
5625
5666
|
return new NetworkError(error, httpStatus, responseHeaders);
|
|
5626
5667
|
}
|
|
5627
5668
|
|
|
5628
|
-
/*! @azure/msal-common v15.
|
|
5669
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5629
5670
|
|
|
5630
5671
|
/*
|
|
5631
5672
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5773,23 +5814,58 @@
|
|
|
5773
5814
|
}
|
|
5774
5815
|
}
|
|
5775
5816
|
|
|
5776
|
-
/*! @azure/msal-common v15.
|
|
5817
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5777
5818
|
/*
|
|
5778
5819
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5779
5820
|
* Licensed under the MIT License.
|
|
5780
5821
|
*/
|
|
5781
|
-
|
|
5822
|
+
/**
|
|
5823
|
+
* MSAL-defined interaction required error code indicating no tokens are found in cache.
|
|
5824
|
+
* @public
|
|
5825
|
+
*/
|
|
5782
5826
|
const noTokensFound = "no_tokens_found";
|
|
5827
|
+
/**
|
|
5828
|
+
* MSAL-defined error code indicating a native account is unavailable on the platform.
|
|
5829
|
+
* @public
|
|
5830
|
+
*/
|
|
5783
5831
|
const nativeAccountUnavailable = "native_account_unavailable";
|
|
5832
|
+
/**
|
|
5833
|
+
* MSAL-defined error code indicating the refresh token has expired and user interaction is needed.
|
|
5834
|
+
* @public
|
|
5835
|
+
*/
|
|
5784
5836
|
const refreshTokenExpired = "refresh_token_expired";
|
|
5837
|
+
/**
|
|
5838
|
+
* MSAL-defined error code indicating UI/UX is not allowed (e.g., blocked by policy), requiring alternate interaction.
|
|
5839
|
+
* @public
|
|
5840
|
+
*/
|
|
5785
5841
|
const uxNotAllowed = "ux_not_allowed";
|
|
5786
|
-
|
|
5842
|
+
/**
|
|
5843
|
+
* Server-originated error code indicating interaction is required to complete the request.
|
|
5844
|
+
* @public
|
|
5845
|
+
*/
|
|
5787
5846
|
const interactionRequired = "interaction_required";
|
|
5847
|
+
/**
|
|
5848
|
+
* Server-originated error code indicating user consent is required.
|
|
5849
|
+
* @public
|
|
5850
|
+
*/
|
|
5788
5851
|
const consentRequired = "consent_required";
|
|
5852
|
+
/**
|
|
5853
|
+
* Server-originated error code indicating user login is required.
|
|
5854
|
+
* @public
|
|
5855
|
+
*/
|
|
5789
5856
|
const loginRequired = "login_required";
|
|
5790
|
-
|
|
5857
|
+
/**
|
|
5858
|
+
* Server-originated error code indicating the token is invalid or corrupted.
|
|
5859
|
+
* @public
|
|
5860
|
+
*/
|
|
5861
|
+
const badToken = "bad_token";
|
|
5862
|
+
/**
|
|
5863
|
+
* Server-originated error code indicating the user was interrupted and must reattempt the flow.
|
|
5864
|
+
* @public
|
|
5865
|
+
*/
|
|
5866
|
+
const interruptedUser = "interrupted_user";
|
|
5791
5867
|
|
|
5792
|
-
/*! @azure/msal-common v15.
|
|
5868
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5793
5869
|
|
|
5794
5870
|
/*
|
|
5795
5871
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5804,6 +5880,7 @@
|
|
|
5804
5880
|
loginRequired,
|
|
5805
5881
|
badToken,
|
|
5806
5882
|
uxNotAllowed,
|
|
5883
|
+
interruptedUser,
|
|
5807
5884
|
];
|
|
5808
5885
|
const InteractionRequiredAuthSubErrorMessage = [
|
|
5809
5886
|
"message_only",
|
|
@@ -5812,6 +5889,7 @@
|
|
|
5812
5889
|
"user_password_expired",
|
|
5813
5890
|
"consent_required",
|
|
5814
5891
|
"bad_token",
|
|
5892
|
+
"interrupted_user",
|
|
5815
5893
|
];
|
|
5816
5894
|
const InteractionRequiredAuthErrorMessages = {
|
|
5817
5895
|
[noTokensFound]: "No refresh token found in the cache. Please sign-in.",
|
|
@@ -5819,6 +5897,7 @@
|
|
|
5819
5897
|
[refreshTokenExpired]: "Refresh token has expired.",
|
|
5820
5898
|
[badToken]: "Identity provider returned bad_token due to an expired or invalid refresh token. Please invoke an interactive API to resolve.",
|
|
5821
5899
|
[uxNotAllowed]: "`canShowUI` flag in Edge was set to false. User interaction required on web page. Please invoke an interactive API to resolve.",
|
|
5900
|
+
[interruptedUser]: "The user could not be authenticated due to an interrupted state. Please invoke an interactive API to resolve.",
|
|
5822
5901
|
};
|
|
5823
5902
|
/**
|
|
5824
5903
|
* Error thrown when user interaction is required.
|
|
@@ -5861,7 +5940,7 @@
|
|
|
5861
5940
|
return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
|
|
5862
5941
|
}
|
|
5863
5942
|
|
|
5864
|
-
/*! @azure/msal-common v15.
|
|
5943
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5865
5944
|
|
|
5866
5945
|
/*
|
|
5867
5946
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5933,7 +6012,7 @@
|
|
|
5933
6012
|
}
|
|
5934
6013
|
}
|
|
5935
6014
|
|
|
5936
|
-
/*! @azure/msal-common v15.
|
|
6015
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
5937
6016
|
|
|
5938
6017
|
/*
|
|
5939
6018
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6015,7 +6094,7 @@
|
|
|
6015
6094
|
}
|
|
6016
6095
|
}
|
|
6017
6096
|
|
|
6018
|
-
/*! @azure/msal-common v15.
|
|
6097
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6019
6098
|
/*
|
|
6020
6099
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
6021
6100
|
* Licensed under the MIT License.
|
|
@@ -6042,7 +6121,7 @@
|
|
|
6042
6121
|
}
|
|
6043
6122
|
}
|
|
6044
6123
|
|
|
6045
|
-
/*! @azure/msal-common v15.
|
|
6124
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6046
6125
|
|
|
6047
6126
|
/*
|
|
6048
6127
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6381,7 +6460,7 @@
|
|
|
6381
6460
|
return baseAccount;
|
|
6382
6461
|
}
|
|
6383
6462
|
|
|
6384
|
-
/*! @azure/msal-common v15.
|
|
6463
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6385
6464
|
/*
|
|
6386
6465
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
6387
6466
|
* Licensed under the MIT License.
|
|
@@ -6399,7 +6478,7 @@
|
|
|
6399
6478
|
}
|
|
6400
6479
|
}
|
|
6401
6480
|
|
|
6402
|
-
/*! @azure/msal-common v15.
|
|
6481
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6403
6482
|
|
|
6404
6483
|
/*
|
|
6405
6484
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6635,7 +6714,7 @@
|
|
|
6635
6714
|
}
|
|
6636
6715
|
}
|
|
6637
6716
|
|
|
6638
|
-
/*! @azure/msal-common v15.
|
|
6717
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6639
6718
|
|
|
6640
6719
|
/*
|
|
6641
6720
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6847,7 +6926,7 @@
|
|
|
6847
6926
|
}
|
|
6848
6927
|
}
|
|
6849
6928
|
|
|
6850
|
-
/*! @azure/msal-common v15.
|
|
6929
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6851
6930
|
|
|
6852
6931
|
/*
|
|
6853
6932
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6945,7 +7024,7 @@
|
|
|
6945
7024
|
}
|
|
6946
7025
|
}
|
|
6947
7026
|
|
|
6948
|
-
/*! @azure/msal-common v15.
|
|
7027
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6949
7028
|
|
|
6950
7029
|
/*
|
|
6951
7030
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6960,7 +7039,7 @@
|
|
|
6960
7039
|
},
|
|
6961
7040
|
};
|
|
6962
7041
|
|
|
6963
|
-
/*! @azure/msal-common v15.
|
|
7042
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
6964
7043
|
|
|
6965
7044
|
/*
|
|
6966
7045
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7184,7 +7263,7 @@
|
|
|
7184
7263
|
return account.loginHint || account.idTokenClaims?.login_hint || null;
|
|
7185
7264
|
}
|
|
7186
7265
|
|
|
7187
|
-
/*! @azure/msal-common v15.
|
|
7266
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7188
7267
|
|
|
7189
7268
|
/*
|
|
7190
7269
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7447,7 +7526,7 @@
|
|
|
7447
7526
|
}
|
|
7448
7527
|
}
|
|
7449
7528
|
|
|
7450
|
-
/*! @azure/msal-common v15.
|
|
7529
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7451
7530
|
/*
|
|
7452
7531
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
7453
7532
|
* Licensed under the MIT License.
|
|
@@ -7455,7 +7534,7 @@
|
|
|
7455
7534
|
const missingKidError = "missing_kid_error";
|
|
7456
7535
|
const missingAlgError = "missing_alg_error";
|
|
7457
7536
|
|
|
7458
|
-
/*! @azure/msal-common v15.
|
|
7537
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7459
7538
|
|
|
7460
7539
|
/*
|
|
7461
7540
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7480,7 +7559,7 @@
|
|
|
7480
7559
|
return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
|
|
7481
7560
|
}
|
|
7482
7561
|
|
|
7483
|
-
/*! @azure/msal-common v15.
|
|
7562
|
+
/*! @azure/msal-common v15.15.0 2026-02-23 */
|
|
7484
7563
|
|
|
7485
7564
|
/*
|
|
7486
7565
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7915,7 +7994,7 @@
|
|
|
7915
7994
|
|
|
7916
7995
|
/* eslint-disable header/header */
|
|
7917
7996
|
const name = "@azure/msal-browser";
|
|
7918
|
-
const version = "4.
|
|
7997
|
+
const version = "4.29.0";
|
|
7919
7998
|
|
|
7920
7999
|
/*
|
|
7921
8000
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -17364,6 +17443,8 @@
|
|
|
17364
17443
|
addCodeChallengeParams(parameters, request.codeChallenge, Constants.S256_CODE_CHALLENGE_METHOD);
|
|
17365
17444
|
const queryParams = new Map();
|
|
17366
17445
|
addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
|
|
17446
|
+
// Add correlationId to query params so gateway can propagate it to IDPs
|
|
17447
|
+
addCorrelationId(queryParams, request.correlationId);
|
|
17367
17448
|
const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
|
|
17368
17449
|
return createForm(frame, url, parameters);
|
|
17369
17450
|
}
|
|
@@ -17377,6 +17458,8 @@
|
|
|
17377
17458
|
addPostBodyParameters(parameters, request.authorizePostBodyParameters || {});
|
|
17378
17459
|
const queryParams = new Map();
|
|
17379
17460
|
addExtraQueryParameters(queryParams, request.extraQueryParameters || {});
|
|
17461
|
+
// Add correlationId to query params so gateway can propagate it to IDPs
|
|
17462
|
+
addCorrelationId(queryParams, request.correlationId);
|
|
17380
17463
|
const url = getAuthorizeUrl(authority, queryParams, config.auth.encodeExtraQueryParams, request.extraQueryParameters);
|
|
17381
17464
|
return createForm(frame, url, parameters);
|
|
17382
17465
|
}
|
|
@@ -17766,6 +17849,7 @@
|
|
|
17766
17849
|
supportsNestedAppAuth: false,
|
|
17767
17850
|
instanceAware: false,
|
|
17768
17851
|
encodeExtraQueryParams: false,
|
|
17852
|
+
verifySSO: false,
|
|
17769
17853
|
};
|
|
17770
17854
|
// Default cache options for browser
|
|
17771
17855
|
const DEFAULT_CACHE_OPTIONS = {
|
|
@@ -19525,6 +19609,52 @@
|
|
|
19525
19609
|
return invokeAsync(handleResponseEAR, PerformanceEvents.HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
|
|
19526
19610
|
}
|
|
19527
19611
|
}
|
|
19612
|
+
/**
|
|
19613
|
+
* Verifies SSO capability by making an iframe request to /authorize without exchanging the code for tokens.
|
|
19614
|
+
* This is useful for verifying SSO capability in the background without the overhead of a full token exchange.
|
|
19615
|
+
* @param request - The SSO silent request
|
|
19616
|
+
* @returns true if SSO verification was successful with a valid authorization code, false otherwise
|
|
19617
|
+
*/
|
|
19618
|
+
async verifySso(request) {
|
|
19619
|
+
this.performanceClient.addQueueMeasurement(PerformanceEvents.SilentIframeClientAcquireToken, request.correlationId);
|
|
19620
|
+
const inputRequest = { ...request };
|
|
19621
|
+
if (!inputRequest.prompt) {
|
|
19622
|
+
inputRequest.prompt = PromptValue.NONE;
|
|
19623
|
+
}
|
|
19624
|
+
// Create silent request
|
|
19625
|
+
const silentRequest = await invokeAsync(this.initializeAuthorizationRequest.bind(this), PerformanceEvents.StandardInteractionClientInitializeAuthorizationRequest, this.logger, this.performanceClient, request.correlationId)(inputRequest, InteractionType.Silent);
|
|
19626
|
+
const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), PerformanceEvents.StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, request.correlationId)({
|
|
19627
|
+
serverTelemetryManager: this.initializeServerTelemetryManager(this.apiId),
|
|
19628
|
+
requestAuthority: silentRequest.authority,
|
|
19629
|
+
requestAzureCloudOptions: silentRequest.azureCloudOptions,
|
|
19630
|
+
requestExtraQueryParameters: silentRequest.extraQueryParameters,
|
|
19631
|
+
account: silentRequest.account,
|
|
19632
|
+
});
|
|
19633
|
+
const correlationId = silentRequest.correlationId;
|
|
19634
|
+
const pkceCodes = await invokeAsync(generatePkceCodes, PerformanceEvents.GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
|
|
19635
|
+
const requestWithPkce = {
|
|
19636
|
+
...silentRequest,
|
|
19637
|
+
codeChallenge: pkceCodes.challenge,
|
|
19638
|
+
};
|
|
19639
|
+
// Create authorize request url
|
|
19640
|
+
const navigateUrl = await invokeAsync(getAuthCodeRequestUrl, PerformanceEvents.GetAuthCodeUrl, this.logger, this.performanceClient, correlationId)(this.config, authClient.authority, requestWithPkce, this.logger, this.performanceClient);
|
|
19641
|
+
// Get the frame handle for the silent request - this triggers the SSO verification
|
|
19642
|
+
const msalFrame = await invokeAsync(initiateCodeRequest, PerformanceEvents.SilentHandlerInitiateAuthRequest, this.logger, this.performanceClient, correlationId)(navigateUrl, this.performanceClient, this.logger, correlationId, this.config.system.navigateFrameWait);
|
|
19643
|
+
const responseType = this.config.auth.OIDCOptions.serverResponseType;
|
|
19644
|
+
// Monitor the iframe for the response
|
|
19645
|
+
const responseString = await invokeAsync(monitorIframeForHash, PerformanceEvents.SilentHandlerMonitorIframeForHash, this.logger, this.performanceClient, correlationId)(msalFrame, this.config.system.iframeHashTimeout, this.config.system.pollIntervalMilliseconds, this.performanceClient, this.logger, correlationId, responseType);
|
|
19646
|
+
// Deserialize the response
|
|
19647
|
+
const serverParams = invoke(deserializeResponse, PerformanceEvents.DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger);
|
|
19648
|
+
// Validate the response - this checks for errors and validates state
|
|
19649
|
+
validateAuthorizationResponse(serverParams, silentRequest.state);
|
|
19650
|
+
// Verify a valid authorization code is present
|
|
19651
|
+
if (!serverParams.code) {
|
|
19652
|
+
this.logger.warning("SSO verification response did not contain an authorization code", correlationId);
|
|
19653
|
+
return false;
|
|
19654
|
+
}
|
|
19655
|
+
this.logger.verbose("SSO verification completed successfully with valid authorization code - skipped token exchange", correlationId);
|
|
19656
|
+
return true;
|
|
19657
|
+
}
|
|
19528
19658
|
/**
|
|
19529
19659
|
* Currently Unsupported
|
|
19530
19660
|
*/
|
|
@@ -20175,6 +20305,8 @@
|
|
|
20175
20305
|
rootMeasurement.end({
|
|
20176
20306
|
success: true,
|
|
20177
20307
|
}, undefined, result.account);
|
|
20308
|
+
// Fire-and-forget SSO capability verification in background
|
|
20309
|
+
this.verifySsoCapability(result.account, InteractionType.Redirect);
|
|
20178
20310
|
}
|
|
20179
20311
|
else {
|
|
20180
20312
|
/*
|
|
@@ -20407,6 +20539,8 @@
|
|
|
20407
20539
|
accessTokenSize: result.accessToken.length,
|
|
20408
20540
|
idTokenSize: result.idToken.length,
|
|
20409
20541
|
}, undefined, result.account);
|
|
20542
|
+
// SSO capability verification in background
|
|
20543
|
+
this.verifySsoCapability(result.account, InteractionType.Popup);
|
|
20410
20544
|
return result;
|
|
20411
20545
|
})
|
|
20412
20546
|
.catch((e) => {
|
|
@@ -20440,6 +20574,53 @@
|
|
|
20440
20574
|
visibilityChangeCount: 1,
|
|
20441
20575
|
});
|
|
20442
20576
|
}
|
|
20577
|
+
/**
|
|
20578
|
+
* SSO capability verification in the background.
|
|
20579
|
+
* This method makes an iframe request to /authorize to verify SSO capability without calling /token.
|
|
20580
|
+
* This method does not block the caller and tracks telemetry for success/failure.
|
|
20581
|
+
* This method only executes if verifySSO is set to true in the auth configuration.
|
|
20582
|
+
* @param account - The account to use for the SSO verification
|
|
20583
|
+
* @param parentApi - The API ID of the parent operation for logging purposes
|
|
20584
|
+
*/
|
|
20585
|
+
verifySsoCapability(account, parentApi) {
|
|
20586
|
+
// Check if SSO capability verification is enabled
|
|
20587
|
+
if (!this.config.auth.verifySSO) {
|
|
20588
|
+
return;
|
|
20589
|
+
}
|
|
20590
|
+
const correlationId = this.browserCrypto.createNewGuid();
|
|
20591
|
+
const ssoCapableMeasurement = this.performanceClient.startMeasurement(PerformanceEvents.SsoCapable, correlationId);
|
|
20592
|
+
ssoCapableMeasurement.add({
|
|
20593
|
+
parentApi: parentApi,
|
|
20594
|
+
});
|
|
20595
|
+
this.logger.verbose(`SSO capability verification initiated after ${parentApi}`, correlationId);
|
|
20596
|
+
/*
|
|
20597
|
+
* Use setTimeout to ensure this runs in a separate macrotask after the current call stack completes
|
|
20598
|
+
* This ensures the result is returned to the caller before the SSO verification starts and doesn't affect performance
|
|
20599
|
+
*/
|
|
20600
|
+
setTimeout(() => {
|
|
20601
|
+
const ssoVerificationRequest = {
|
|
20602
|
+
account: account,
|
|
20603
|
+
correlationId: correlationId,
|
|
20604
|
+
};
|
|
20605
|
+
const silentIframeClient = this.createSilentIframeClient(correlationId);
|
|
20606
|
+
silentIframeClient
|
|
20607
|
+
.verifySso(ssoVerificationRequest)
|
|
20608
|
+
.then((success) => {
|
|
20609
|
+
this.logger.verbose(`SSO capability verification completed after ${parentApi}, success: ${success}`, correlationId);
|
|
20610
|
+
ssoCapableMeasurement.end({
|
|
20611
|
+
fromCache: false,
|
|
20612
|
+
success: success,
|
|
20613
|
+
}, undefined, account);
|
|
20614
|
+
})
|
|
20615
|
+
.catch((error) => {
|
|
20616
|
+
this.logger.warning(`SSO capability verification failed after ${parentApi}: ${error.message}`, correlationId);
|
|
20617
|
+
ssoCapableMeasurement.end({
|
|
20618
|
+
fromCache: false,
|
|
20619
|
+
success: false,
|
|
20620
|
+
}, error, account);
|
|
20621
|
+
});
|
|
20622
|
+
}, 0);
|
|
20623
|
+
}
|
|
20443
20624
|
// #endregion
|
|
20444
20625
|
// #region Silent Flow
|
|
20445
20626
|
/**
|
|
@@ -21205,6 +21386,10 @@
|
|
|
21205
21386
|
const result = this.acquireTokenSilentNoIframe(silentRequest, cacheLookupPolicy).catch(async (refreshTokenError) => {
|
|
21206
21387
|
const shouldTryToResolveSilently = checkIfRefreshTokenErrorCanBeResolvedSilently(refreshTokenError, cacheLookupPolicy);
|
|
21207
21388
|
if (shouldTryToResolveSilently) {
|
|
21389
|
+
const silentRefreshReason = `${refreshTokenError.errorCode}${refreshTokenError.subError
|
|
21390
|
+
? `|${refreshTokenError.subError}`
|
|
21391
|
+
: ""}`;
|
|
21392
|
+
this.performanceClient.addFields({ silentRefreshReason }, silentRequest.correlationId);
|
|
21208
21393
|
if (!this.activeIframeRequest) {
|
|
21209
21394
|
let _resolve;
|
|
21210
21395
|
// Always set the active request tracker immediately after checking it to prevent races
|