@azure/msal-browser 4.29.1 → 4.30.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (275) hide show
  1. package/dist/app/IPublicClientApplication.mjs +1 -1
  2. package/dist/app/PublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientNext.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  5. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  8. package/dist/cache/AccountManager.mjs +1 -1
  9. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  10. package/dist/cache/BrowserCacheManager.mjs +1 -1
  11. package/dist/cache/CacheHelpers.mjs +1 -1
  12. package/dist/cache/CacheKeys.mjs +1 -1
  13. package/dist/cache/CookieStorage.mjs +1 -1
  14. package/dist/cache/DatabaseStorage.mjs +1 -1
  15. package/dist/cache/EncryptedData.mjs +1 -1
  16. package/dist/cache/LocalStorage.mjs +1 -1
  17. package/dist/cache/MemoryStorage.mjs +1 -1
  18. package/dist/cache/SessionStorage.mjs +1 -1
  19. package/dist/cache/TokenCache.mjs +1 -1
  20. package/dist/config/Configuration.mjs +1 -1
  21. package/dist/controllers/ControllerFactory.mjs +1 -1
  22. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  23. package/dist/controllers/StandardController.mjs +1 -1
  24. package/dist/controllers/UnknownOperatingContextController.mjs +1 -1
  25. package/dist/crypto/BrowserCrypto.mjs +1 -1
  26. package/dist/crypto/CryptoOps.mjs +1 -1
  27. package/dist/crypto/PkceGenerator.mjs +1 -1
  28. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  29. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  30. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  31. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  32. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  33. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  34. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  35. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  36. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
  37. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  38. package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
  39. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  40. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  41. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  42. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  43. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  44. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  45. package/dist/custom-auth-path/cache/TokenCache.mjs +1 -1
  46. package/dist/custom-auth-path/config/Configuration.mjs +1 -1
  47. package/dist/custom-auth-path/controllers/ControllerFactory.mjs +1 -1
  48. package/dist/custom-auth-path/controllers/StandardController.mjs +1 -1
  49. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  50. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  51. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  52. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  53. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  54. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  55. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  56. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  57. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  58. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  59. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  60. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  61. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  62. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
  63. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
  64. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  65. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  66. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
  67. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  68. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
  69. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
  70. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  71. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  72. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
  73. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  74. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  75. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  76. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  77. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  79. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  81. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  82. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  83. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  84. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  85. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  87. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  88. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  90. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  91. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  93. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  96. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  98. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  100. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  102. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  106. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  108. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  109. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  154. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  155. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  156. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  157. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  159. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  160. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  161. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  162. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  163. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  164. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  165. package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
  166. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  167. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  168. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  169. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  170. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  171. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  172. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +11 -3
  173. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  174. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +1 -1
  175. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +1 -1
  176. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  177. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  178. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +1 -1
  179. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  180. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
  181. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  182. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  183. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  184. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  185. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  186. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  187. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  188. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  189. package/dist/custom-auth-path/protocol/Authorize.d.ts +28 -0
  190. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  191. package/dist/custom-auth-path/protocol/Authorize.mjs +53 -2
  192. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  193. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  194. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  195. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  196. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  197. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  198. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  199. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  200. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  201. package/dist/encode/Base64Decode.mjs +1 -1
  202. package/dist/encode/Base64Encode.mjs +1 -1
  203. package/dist/error/BrowserAuthError.mjs +1 -1
  204. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  205. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  206. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  207. package/dist/error/NativeAuthError.mjs +1 -1
  208. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  209. package/dist/error/NestedAppAuthError.mjs +1 -1
  210. package/dist/event/EventHandler.mjs +1 -1
  211. package/dist/event/EventMessage.mjs +1 -1
  212. package/dist/event/EventType.mjs +1 -1
  213. package/dist/index.mjs +1 -1
  214. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  215. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  216. package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  217. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +11 -3
  218. package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  219. package/dist/interaction_client/PopupClient.mjs +1 -1
  220. package/dist/interaction_client/RedirectClient.mjs +1 -1
  221. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  222. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  223. package/dist/interaction_client/SilentIframeClient.mjs +1 -1
  224. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  225. package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
  226. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  227. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  228. package/dist/naa/BridgeError.mjs +1 -1
  229. package/dist/naa/BridgeProxy.mjs +1 -1
  230. package/dist/naa/BridgeStatusCode.mjs +1 -1
  231. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  232. package/dist/navigation/NavigationClient.mjs +1 -1
  233. package/dist/network/FetchClient.mjs +1 -1
  234. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  235. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  236. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  237. package/dist/operatingcontext/UnknownOperatingContext.mjs +1 -1
  238. package/dist/packageMetadata.d.ts +1 -1
  239. package/dist/packageMetadata.mjs +2 -2
  240. package/dist/protocol/Authorize.d.ts +28 -0
  241. package/dist/protocol/Authorize.d.ts.map +1 -1
  242. package/dist/protocol/Authorize.mjs +53 -2
  243. package/dist/protocol/Authorize.mjs.map +1 -1
  244. package/dist/request/RequestHelpers.mjs +1 -1
  245. package/dist/response/ResponseHandler.mjs +1 -1
  246. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  247. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  248. package/dist/utils/BrowserConstants.mjs +1 -1
  249. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  250. package/dist/utils/BrowserUtils.mjs +1 -1
  251. package/dist/utils/Helpers.mjs +1 -1
  252. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  253. package/lib/custom-auth-path/msal-custom-auth.cjs +135 -67
  254. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  255. package/lib/custom-auth-path/msal-custom-auth.js +135 -67
  256. package/lib/custom-auth-path/msal-custom-auth.js.map +1 -1
  257. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  258. package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  259. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  260. package/lib/custom-auth-path/types/protocol/Authorize.d.ts +28 -0
  261. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  262. package/lib/msal-browser.cjs +141 -71
  263. package/lib/msal-browser.cjs.map +1 -1
  264. package/lib/msal-browser.js +141 -71
  265. package/lib/msal-browser.js.map +1 -1
  266. package/lib/msal-browser.min.js +64 -64
  267. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  268. package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  269. package/lib/types/packageMetadata.d.ts +1 -1
  270. package/lib/types/protocol/Authorize.d.ts +28 -0
  271. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  272. package/package.json +2 -2
  273. package/src/interaction_client/PlatformAuthInteractionClient.ts +17 -1
  274. package/src/packageMetadata.ts +1 -1
  275. package/src/protocol/Authorize.ts +91 -0
@@ -1,8 +1,8 @@
1
- /*! @azure/msal-browser v4.29.1 2026-03-13 */
1
+ /*! @azure/msal-browser v4.30.0 2026-03-18 */
2
2
  'use strict';
3
3
  'use strict';
4
4
 
5
- /*! @azure/msal-common v15.16.1 2026-03-13 */
5
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6
6
  /*
7
7
  * Copyright (c) Microsoft Corporation. All rights reserved.
8
8
  * Licensed under the MIT License.
@@ -279,7 +279,7 @@ const JsonWebTokenTypes = {
279
279
  // Token renewal offset default in seconds
280
280
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
281
281
 
282
- /*! @azure/msal-common v15.16.1 2026-03-13 */
282
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
283
283
  /*
284
284
  * Copyright (c) Microsoft Corporation. All rights reserved.
285
285
  * Licensed under the MIT License.
@@ -296,7 +296,7 @@ var AuthErrorCodes = /*#__PURE__*/Object.freeze({
296
296
  unexpectedError: unexpectedError
297
297
  });
298
298
 
299
- /*! @azure/msal-common v15.16.1 2026-03-13 */
299
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
300
300
 
301
301
  /*
302
302
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -345,7 +345,7 @@ function createAuthError(code, additionalMessage) {
345
345
  : AuthErrorMessages[code]);
346
346
  }
347
347
 
348
- /*! @azure/msal-common v15.16.1 2026-03-13 */
348
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
349
349
  /*
350
350
  * Copyright (c) Microsoft Corporation. All rights reserved.
351
351
  * Licensed under the MIT License.
@@ -445,7 +445,7 @@ var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
445
445
  userTimeoutReached: userTimeoutReached
446
446
  });
447
447
 
448
- /*! @azure/msal-common v15.16.1 2026-03-13 */
448
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
449
449
 
450
450
  /*
451
451
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -702,7 +702,7 @@ function createClientAuthError(errorCode, additionalMessage) {
702
702
  return new ClientAuthError(errorCode, additionalMessage);
703
703
  }
704
704
 
705
- /*! @azure/msal-common v15.16.1 2026-03-13 */
705
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
706
706
 
707
707
  /*
708
708
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -741,7 +741,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
741
741
  },
742
742
  };
743
743
 
744
- /*! @azure/msal-common v15.16.1 2026-03-13 */
744
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
745
745
 
746
746
  /*
747
747
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -932,12 +932,12 @@ class Logger {
932
932
  }
933
933
  }
934
934
 
935
- /*! @azure/msal-common v15.16.1 2026-03-13 */
935
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
936
936
  /* eslint-disable header/header */
937
937
  const name$1 = "@azure/msal-common";
938
- const version$1 = "15.16.1";
938
+ const version$1 = "15.17.0";
939
939
 
940
- /*! @azure/msal-common v15.16.1 2026-03-13 */
940
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
941
941
  /*
942
942
  * Copyright (c) Microsoft Corporation. All rights reserved.
943
943
  * Licensed under the MIT License.
@@ -957,7 +957,7 @@ const AzureCloudInstance = {
957
957
  AzureUsGovernment: "https://login.microsoftonline.us",
958
958
  };
959
959
 
960
- /*! @azure/msal-common v15.16.1 2026-03-13 */
960
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
961
961
  /*
962
962
  * Copyright (c) Microsoft Corporation. All rights reserved.
963
963
  * Licensed under the MIT License.
@@ -1015,7 +1015,7 @@ var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
1015
1015
  urlParseError: urlParseError
1016
1016
  });
1017
1017
 
1018
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1018
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1019
1019
 
1020
1020
  /*
1021
1021
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1163,7 +1163,7 @@ function createClientConfigurationError(errorCode) {
1163
1163
  return new ClientConfigurationError(errorCode);
1164
1164
  }
1165
1165
 
1166
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1166
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1167
1167
  /*
1168
1168
  * Copyright (c) Microsoft Corporation. All rights reserved.
1169
1169
  * Licensed under the MIT License.
@@ -1299,7 +1299,7 @@ class StringUtils {
1299
1299
  }
1300
1300
  }
1301
1301
 
1302
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1302
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1303
1303
 
1304
1304
  /*
1305
1305
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1494,7 +1494,7 @@ class ScopeSet {
1494
1494
  }
1495
1495
  }
1496
1496
 
1497
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1497
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1498
1498
 
1499
1499
  /*
1500
1500
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1534,7 +1534,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
1534
1534
  };
1535
1535
  }
1536
1536
 
1537
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1537
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1538
1538
  /*
1539
1539
  * Copyright (c) Microsoft Corporation. All rights reserved.
1540
1540
  * Licensed under the MIT License.
@@ -1616,7 +1616,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1616
1616
  return updatedAccountInfo;
1617
1617
  }
1618
1618
 
1619
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1619
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1620
1620
  /*
1621
1621
  * Copyright (c) Microsoft Corporation. All rights reserved.
1622
1622
  * Licensed under the MIT License.
@@ -1631,7 +1631,7 @@ const AuthorityType = {
1631
1631
  Ciam: 3,
1632
1632
  };
1633
1633
 
1634
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1634
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1635
1635
  /*
1636
1636
  * Copyright (c) Microsoft Corporation. All rights reserved.
1637
1637
  * Licensed under the MIT License.
@@ -1653,7 +1653,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
1653
1653
  return null;
1654
1654
  }
1655
1655
 
1656
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1656
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1657
1657
  /*
1658
1658
  * Copyright (c) Microsoft Corporation. All rights reserved.
1659
1659
  * Licensed under the MIT License.
@@ -1677,7 +1677,7 @@ const ProtocolMode = {
1677
1677
  EAR: "EAR",
1678
1678
  };
1679
1679
 
1680
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1680
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1681
1681
 
1682
1682
  /*
1683
1683
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1912,7 +1912,7 @@ class AccountEntity {
1912
1912
  }
1913
1913
  }
1914
1914
 
1915
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1915
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1916
1916
 
1917
1917
  /*
1918
1918
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1993,7 +1993,7 @@ function checkMaxAge(authTime, maxAge) {
1993
1993
  }
1994
1994
  }
1995
1995
 
1996
- /*! @azure/msal-common v15.16.1 2026-03-13 */
1996
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
1997
1997
 
1998
1998
  /*
1999
1999
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2109,7 +2109,7 @@ function normalizeUrlForComparison(url) {
2109
2109
  }
2110
2110
  }
2111
2111
 
2112
- /*! @azure/msal-common v15.16.1 2026-03-13 */
2112
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
2113
2113
 
2114
2114
  /*
2115
2115
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2273,7 +2273,7 @@ class UrlString {
2273
2273
  }
2274
2274
  }
2275
2275
 
2276
- /*! @azure/msal-common v15.16.1 2026-03-13 */
2276
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
2277
2277
 
2278
2278
  /*
2279
2279
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2448,7 +2448,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
2448
2448
  return null;
2449
2449
  }
2450
2450
 
2451
- /*! @azure/msal-common v15.16.1 2026-03-13 */
2451
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
2452
2452
  /*
2453
2453
  * Copyright (c) Microsoft Corporation. All rights reserved.
2454
2454
  * Licensed under the MIT License.
@@ -2456,7 +2456,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
2456
2456
  const cacheQuotaExceeded = "cache_quota_exceeded";
2457
2457
  const cacheErrorUnknown = "cache_error_unknown";
2458
2458
 
2459
- /*! @azure/msal-common v15.16.1 2026-03-13 */
2459
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
2460
2460
 
2461
2461
  /*
2462
2462
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2501,7 +2501,7 @@ function createCacheError(e) {
2501
2501
  }
2502
2502
  }
2503
2503
 
2504
- /*! @azure/msal-common v15.16.1 2026-03-13 */
2504
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
2505
2505
 
2506
2506
  /*
2507
2507
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3612,7 +3612,7 @@ class DefaultStorageClass extends CacheManager {
3612
3612
  }
3613
3613
  }
3614
3614
 
3615
- /*! @azure/msal-common v15.16.1 2026-03-13 */
3615
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
3616
3616
  /*
3617
3617
  * Copyright (c) Microsoft Corporation. All rights reserved.
3618
3618
  * Licensed under the MIT License.
@@ -4150,7 +4150,7 @@ const IntFields = new Set([
4150
4150
  "crossOriginTickCount",
4151
4151
  ]);
4152
4152
 
4153
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4153
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4154
4154
 
4155
4155
  /*
4156
4156
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4229,7 +4229,7 @@ class StubPerformanceClient {
4229
4229
  }
4230
4230
  }
4231
4231
 
4232
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4232
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4233
4233
 
4234
4234
  /*
4235
4235
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4329,7 +4329,7 @@ function isOidcProtocolMode(config) {
4329
4329
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
4330
4330
  }
4331
4331
 
4332
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4332
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4333
4333
  /*
4334
4334
  * Copyright (c) Microsoft Corporation. All rights reserved.
4335
4335
  * Licensed under the MIT License.
@@ -4339,7 +4339,7 @@ const CcsCredentialType = {
4339
4339
  UPN: "UPN",
4340
4340
  };
4341
4341
 
4342
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4342
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4343
4343
  /*
4344
4344
  * Copyright (c) Microsoft Corporation. All rights reserved.
4345
4345
  * Licensed under the MIT License.
@@ -4387,9 +4387,10 @@ const BROKER_CLIENT_ID = "brk_client_id";
4387
4387
  const BROKER_REDIRECT_URI = "brk_redirect_uri";
4388
4388
  const INSTANCE_AWARE = "instance_aware";
4389
4389
  const EAR_JWK = "ear_jwk";
4390
- const EAR_JWE_CRYPTO = "ear_jwe_crypto";
4390
+ const EAR_JWE_CRYPTO = "ear_jwe_crypto";
4391
+ const CLI_DATA = "clidata";
4391
4392
 
4392
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4393
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4393
4394
 
4394
4395
  /*
4395
4396
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4655,6 +4656,12 @@ function addGrantType(parameters, grantType) {
4655
4656
  function addClientInfo(parameters) {
4656
4657
  parameters.set(CLIENT_INFO, "1");
4657
4658
  }
4659
+ /**
4660
+ * add clidata=1 to request to indicate client data support
4661
+ */
4662
+ function addCliData(parameters) {
4663
+ parameters.set(CLI_DATA, "1");
4664
+ }
4658
4665
  function addInstanceAware(parameters) {
4659
4666
  if (!parameters.has(INSTANCE_AWARE)) {
4660
4667
  parameters.set(INSTANCE_AWARE, "true");
@@ -4769,7 +4776,7 @@ function addPostBodyParameters(parameters, bodyParameters) {
4769
4776
  });
4770
4777
  }
4771
4778
 
4772
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4779
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4773
4780
  /*
4774
4781
  * Copyright (c) Microsoft Corporation. All rights reserved.
4775
4782
  * Licensed under the MIT License.
@@ -4781,7 +4788,7 @@ function isOpenIdConfigResponse(response) {
4781
4788
  response.hasOwnProperty("jwks_uri"));
4782
4789
  }
4783
4790
 
4784
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4791
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4785
4792
  /*
4786
4793
  * Copyright (c) Microsoft Corporation. All rights reserved.
4787
4794
  * Licensed under the MIT License.
@@ -4791,7 +4798,7 @@ function isCloudInstanceDiscoveryResponse(response) {
4791
4798
  response.hasOwnProperty("metadata"));
4792
4799
  }
4793
4800
 
4794
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4801
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4795
4802
  /*
4796
4803
  * Copyright (c) Microsoft Corporation. All rights reserved.
4797
4804
  * Licensed under the MIT License.
@@ -4801,7 +4808,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
4801
4808
  response.hasOwnProperty("error_description"));
4802
4809
  }
4803
4810
 
4804
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4811
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4805
4812
  /*
4806
4813
  * Copyright (c) Microsoft Corporation. All rights reserved.
4807
4814
  * Licensed under the MIT License.
@@ -4897,7 +4904,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
4897
4904
  };
4898
4905
  };
4899
4906
 
4900
- /*! @azure/msal-common v15.16.1 2026-03-13 */
4907
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
4901
4908
 
4902
4909
  /*
4903
4910
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5003,7 +5010,7 @@ RegionDiscovery.IMDS_OPTIONS = {
5003
5010
  },
5004
5011
  };
5005
5012
 
5006
- /*! @azure/msal-common v15.16.1 2026-03-13 */
5013
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
5007
5014
  /*
5008
5015
  * Copyright (c) Microsoft Corporation. All rights reserved.
5009
5016
  * Licensed under the MIT License.
@@ -5068,7 +5075,7 @@ function wasClockTurnedBack(cachedAt) {
5068
5075
  return cachedAtSec > nowSeconds();
5069
5076
  }
5070
5077
 
5071
- /*! @azure/msal-common v15.16.1 2026-03-13 */
5078
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
5072
5079
 
5073
5080
  /*
5074
5081
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5330,7 +5337,7 @@ function isAuthorityMetadataExpired(metadata) {
5330
5337
  return metadata.expiresAt <= nowSeconds();
5331
5338
  }
5332
5339
 
5333
- /*! @azure/msal-common v15.16.1 2026-03-13 */
5340
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
5334
5341
 
5335
5342
  /*
5336
5343
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6169,7 +6176,7 @@ function buildStaticAuthorityOptions(authOptions) {
6169
6176
  };
6170
6177
  }
6171
6178
 
6172
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6179
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6173
6180
 
6174
6181
  /*
6175
6182
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6200,7 +6207,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
6200
6207
  }
6201
6208
  }
6202
6209
 
6203
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6210
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6204
6211
 
6205
6212
  /*
6206
6213
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6219,7 +6226,7 @@ class ServerError extends AuthError {
6219
6226
  }
6220
6227
  }
6221
6228
 
6222
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6229
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6223
6230
  /*
6224
6231
  * Copyright (c) Microsoft Corporation. All rights reserved.
6225
6232
  * Licensed under the MIT License.
@@ -6240,7 +6247,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
6240
6247
  };
6241
6248
  }
6242
6249
 
6243
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6250
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6244
6251
 
6245
6252
  /*
6246
6253
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6327,7 +6334,7 @@ class ThrottlingUtils {
6327
6334
  }
6328
6335
  }
6329
6336
 
6330
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6337
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6331
6338
 
6332
6339
  /*
6333
6340
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6358,7 +6365,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
6358
6365
  return new NetworkError(error, httpStatus, responseHeaders);
6359
6366
  }
6360
6367
 
6361
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6368
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6362
6369
 
6363
6370
  /*
6364
6371
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6506,7 +6513,7 @@ class BaseClient {
6506
6513
  }
6507
6514
  }
6508
6515
 
6509
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6516
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6510
6517
  /*
6511
6518
  * Copyright (c) Microsoft Corporation. All rights reserved.
6512
6519
  * Licensed under the MIT License.
@@ -6570,7 +6577,7 @@ var InteractionRequiredAuthErrorCodes = /*#__PURE__*/Object.freeze({
6570
6577
  uxNotAllowed: uxNotAllowed
6571
6578
  });
6572
6579
 
6573
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6580
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6574
6581
 
6575
6582
  /*
6576
6583
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6667,7 +6674,7 @@ function createInteractionRequiredAuthError(errorCode) {
6667
6674
  return new InteractionRequiredAuthError(errorCode, InteractionRequiredAuthErrorMessages[errorCode]);
6668
6675
  }
6669
6676
 
6670
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6677
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6671
6678
 
6672
6679
  /*
6673
6680
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6739,7 +6746,7 @@ class ProtocolUtils {
6739
6746
  }
6740
6747
  }
6741
6748
 
6742
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6749
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6743
6750
 
6744
6751
  /*
6745
6752
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6821,7 +6828,7 @@ class PopTokenGenerator {
6821
6828
  }
6822
6829
  }
6823
6830
 
6824
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6831
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6825
6832
  /*
6826
6833
  * Copyright (c) Microsoft Corporation. All rights reserved.
6827
6834
  * Licensed under the MIT License.
@@ -6848,7 +6855,7 @@ class PopTokenGenerator {
6848
6855
  }
6849
6856
  }
6850
6857
 
6851
- /*! @azure/msal-common v15.16.1 2026-03-13 */
6858
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
6852
6859
 
6853
6860
  /*
6854
6861
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7187,7 +7194,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
7187
7194
  return baseAccount;
7188
7195
  }
7189
7196
 
7190
- /*! @azure/msal-common v15.16.1 2026-03-13 */
7197
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
7191
7198
  /*
7192
7199
  * Copyright (c) Microsoft Corporation. All rights reserved.
7193
7200
  * Licensed under the MIT License.
@@ -7205,7 +7212,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
7205
7212
  }
7206
7213
  }
7207
7214
 
7208
- /*! @azure/msal-common v15.16.1 2026-03-13 */
7215
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
7209
7216
 
7210
7217
  /*
7211
7218
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7445,7 +7452,7 @@ class AuthorizationCodeClient extends BaseClient {
7445
7452
  }
7446
7453
  }
7447
7454
 
7448
- /*! @azure/msal-common v15.16.1 2026-03-13 */
7455
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
7449
7456
 
7450
7457
  /*
7451
7458
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7661,7 +7668,7 @@ class RefreshTokenClient extends BaseClient {
7661
7668
  }
7662
7669
  }
7663
7670
 
7664
- /*! @azure/msal-common v15.16.1 2026-03-13 */
7671
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
7665
7672
 
7666
7673
  /*
7667
7674
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7759,7 +7766,7 @@ class SilentFlowClient extends BaseClient {
7759
7766
  }
7760
7767
  }
7761
7768
 
7762
- /*! @azure/msal-common v15.16.1 2026-03-13 */
7769
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
7763
7770
 
7764
7771
  /*
7765
7772
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7774,7 +7781,7 @@ const StubbedNetworkModule = {
7774
7781
  },
7775
7782
  };
7776
7783
 
7777
- /*! @azure/msal-common v15.16.1 2026-03-13 */
7784
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
7778
7785
 
7779
7786
  /*
7780
7787
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7806,6 +7813,8 @@ function getStandardAuthorizeRequestParameters(authOptions, request, logger, per
7806
7813
  addResponseMode(parameters, request.responseMode);
7807
7814
  // add client_info=1
7808
7815
  addClientInfo(parameters);
7816
+ // add clidata=1
7817
+ addCliData(parameters);
7809
7818
  if (request.prompt) {
7810
7819
  addPrompt(parameters, request.prompt);
7811
7820
  performanceClient?.addFields({ prompt: request.prompt }, correlationId);
@@ -8001,7 +8010,7 @@ function extractLoginHint(account) {
8001
8010
  return account.loginHint || account.idTokenClaims?.login_hint || null;
8002
8011
  }
8003
8012
 
8004
- /*! @azure/msal-common v15.16.1 2026-03-13 */
8013
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
8005
8014
 
8006
8015
  /*
8007
8016
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8059,7 +8068,7 @@ class AuthenticationHeaderParser {
8059
8068
  }
8060
8069
  }
8061
8070
 
8062
- /*! @azure/msal-common v15.16.1 2026-03-13 */
8071
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
8063
8072
 
8064
8073
  /*
8065
8074
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8322,7 +8331,7 @@ class ServerTelemetryManager {
8322
8331
  }
8323
8332
  }
8324
8333
 
8325
- /*! @azure/msal-common v15.16.1 2026-03-13 */
8334
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
8326
8335
  /*
8327
8336
  * Copyright (c) Microsoft Corporation. All rights reserved.
8328
8337
  * Licensed under the MIT License.
@@ -8330,7 +8339,7 @@ class ServerTelemetryManager {
8330
8339
  const missingKidError = "missing_kid_error";
8331
8340
  const missingAlgError = "missing_alg_error";
8332
8341
 
8333
- /*! @azure/msal-common v15.16.1 2026-03-13 */
8342
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
8334
8343
 
8335
8344
  /*
8336
8345
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8355,7 +8364,7 @@ function createJoseHeaderError(code) {
8355
8364
  return new JoseHeaderError(code, JoseHeaderErrorMessages[code]);
8356
8365
  }
8357
8366
 
8358
- /*! @azure/msal-common v15.16.1 2026-03-13 */
8367
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
8359
8368
 
8360
8369
  /*
8361
8370
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8395,7 +8404,7 @@ class JoseHeader {
8395
8404
  }
8396
8405
  }
8397
8406
 
8398
- /*! @azure/msal-common v15.16.1 2026-03-13 */
8407
+ /*! @azure/msal-common v15.17.0 2026-03-18 */
8399
8408
 
8400
8409
  /*
8401
8410
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8493,8 +8502,10 @@ function addError(error, logger, event, stackMaxSize = 5) {
8493
8502
  else if (error instanceof AuthError) {
8494
8503
  event.errorCode = error.errorCode;
8495
8504
  event.subErrorCode = error.subError;
8496
- if (error instanceof ServerError ||
8497
- error instanceof InteractionRequiredAuthError) {
8505
+ if (!event.serverErrorNo &&
8506
+ (error instanceof ServerError ||
8507
+ error instanceof InteractionRequiredAuthError) &&
8508
+ error.errorNo) {
8498
8509
  event.serverErrorNo = error.errorNo;
8499
8510
  }
8500
8511
  return;
@@ -10537,7 +10548,7 @@ function buildConfiguration({ auth: userInputAuth, cache: userInputCache, system
10537
10548
 
10538
10549
  /* eslint-disable header/header */
10539
10550
  const name = "@azure/msal-browser";
10540
- const version = "4.29.1";
10551
+ const version = "4.30.0";
10541
10552
 
10542
10553
  /*
10543
10554
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -14822,11 +14833,19 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
14822
14833
  this.logger.trace("NativeInteractionClient - initializeNativeRequest called");
14823
14834
  const canonicalAuthority = await this.getCanonicalAuthority(request);
14824
14835
  // scopes are expected to be received by the native broker as "scope" and will be added to the request below. Other properties that should be dropped from the request to the native broker can be included in the object destructuring here.
14825
- const { scopes, ...remainingProperties } = request;
14836
+ const { scopes, claims, ...remainingProperties } = request;
14826
14837
  const scopeSet = new ScopeSet(scopes || []);
14827
14838
  scopeSet.appendScopes(OIDC_DEFAULT_SCOPES);
14839
+ // ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
14840
+ const configClaims = request.skipBrokerClaims && !!request.embeddedClientId
14841
+ ? undefined
14842
+ : this.config.auth.clientCapabilities;
14843
+ const mergedClaims = configClaims && configClaims.length
14844
+ ? addClientCapabilitiesToClaims$1(claims, configClaims)
14845
+ : claims;
14828
14846
  const validatedRequest = {
14829
14847
  ...remainingProperties,
14848
+ claims: mergedClaims,
14830
14849
  accountId: this.accountId,
14831
14850
  clientId: this.config.auth.clientId,
14832
14851
  authority: canonicalAuthority.urlString,
@@ -14959,6 +14978,53 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
14959
14978
  * Copyright (c) Microsoft Corporation. All rights reserved.
14960
14979
  * Licensed under the MIT License.
14961
14980
  */
14981
+ const clientDataAccountTypeMapping = new Map([
14982
+ ["e", "AAD"],
14983
+ ["m", "MSA"],
14984
+ ]);
14985
+ /**
14986
+ * Parses the clientdata response parameter from the /authorize endpoint.
14987
+ *
14988
+ * The clientdata value is URL-encoded and pipe-delimited:
14989
+ * urlencoded(account_type | error | sub_error | cloud_instance | caller_data_boundary)
14990
+ *
14991
+ * @param clientdata - The raw clientdata string from the authorize response
14992
+ * @returns Parsed ClientData object, or null if the input is empty/invalid
14993
+ */
14994
+ function parseClientData(clientdata) {
14995
+ if (!clientdata) {
14996
+ return null;
14997
+ }
14998
+ try {
14999
+ const decoded = decodeURIComponent(clientdata);
15000
+ const parts = decoded.split("|");
15001
+ if (parts.length < 5) {
15002
+ return null;
15003
+ }
15004
+ return {
15005
+ accountType: clientDataAccountTypeMapping.get(parts[0]?.trim() || "") || "",
15006
+ error: parts[1]?.trim() || "",
15007
+ subError: parts[2]?.trim() || "",
15008
+ cloudInstance: parts[3]?.trim() || "",
15009
+ callerDataBoundary: parts[4]?.trim() || "",
15010
+ };
15011
+ }
15012
+ catch {
15013
+ return null;
15014
+ }
15015
+ }
15016
+ /**
15017
+ * Instruments account type, error, and suberror from clientdata
15018
+ */
15019
+ function instrumentClientData(response, correlationId, performanceClient) {
15020
+ const parsed = parseClientData(response.clientdata);
15021
+ parsed?.accountType &&
15022
+ performanceClient.addFields({ accountType: parsed.accountType }, correlationId);
15023
+ parsed?.error &&
15024
+ performanceClient.addFields({ serverErrorNo: parsed.error }, correlationId);
15025
+ parsed?.subError &&
15026
+ performanceClient.addFields({ serverSubErrorNo: parsed.subError }, correlationId);
15027
+ }
14962
15028
  /**
14963
15029
  * Returns map of parameters that are applicable to all calls to /authorize whether using PKCE or EAR
14964
15030
  * @param config
@@ -15121,6 +15187,8 @@ async function handleResponsePlatformBroker(request, accountId, apiId, config, b
15121
15187
  async function handleResponseCode(request, response, codeVerifier, apiId, config, authClient, browserStorage, nativeStorage, eventHandler, logger, performanceClient, platformAuthProvider) {
15122
15188
  // Remove throttle if it exists
15123
15189
  ThrottlingUtils.removeThrottle(browserStorage, config.auth.clientId, request);
15190
+ // Instrument clientdata telemetry fields from the authorize response
15191
+ instrumentClientData(response, request.correlationId, performanceClient);
15124
15192
  if (response.accountId) {
15125
15193
  return invokeAsync(handleResponsePlatformBroker, PerformanceEvents.HandleResponsePlatformBroker, logger, performanceClient, request.correlationId)(request, response.accountId, apiId, config, browserStorage, nativeStorage, eventHandler, logger, performanceClient, platformAuthProvider);
15126
15194
  }
@@ -15153,6 +15221,8 @@ async function handleResponseCode(request, response, codeVerifier, apiId, config
15153
15221
  async function handleResponseEAR(request, response, apiId, config, authority, browserStorage, nativeStorage, eventHandler, logger, performanceClient, platformAuthProvider) {
15154
15222
  // Remove throttle if it exists
15155
15223
  ThrottlingUtils.removeThrottle(browserStorage, config.auth.clientId, request);
15224
+ // Instrument clientdata telemetry fields from the authorize response
15225
+ instrumentClientData(response, request.correlationId, performanceClient);
15156
15226
  // Validate state & check response for errors
15157
15227
  validateAuthorizationResponse(response, request.state);
15158
15228
  if (!response.ear_jwe) {