@azure/msal-browser 5.0.2 → 5.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/app/IPublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientApplication.mjs +1 -1
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/cache/AccountManager.mjs +1 -1
- package/dist/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/cache/BrowserCacheManager.d.ts +2 -2
- package/dist/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/cache/BrowserCacheManager.mjs +15 -10
- package/dist/cache/BrowserCacheManager.mjs.map +1 -1
- package/dist/cache/CacheHelpers.mjs +1 -1
- package/dist/cache/CacheKeys.mjs +1 -1
- package/dist/cache/CookieStorage.mjs +1 -1
- package/dist/cache/DatabaseStorage.mjs +1 -1
- package/dist/cache/EncryptedData.mjs +1 -1
- package/dist/cache/LocalStorage.mjs +1 -1
- package/dist/cache/MemoryStorage.mjs +1 -1
- package/dist/cache/SessionStorage.mjs +1 -1
- package/dist/cache/TokenCache.d.ts.map +1 -1
- package/dist/cache/TokenCache.mjs +24 -18
- package/dist/cache/TokenCache.mjs.map +1 -1
- package/dist/config/Configuration.mjs +1 -1
- package/dist/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/dist/controllers/NestedAppAuthController.mjs +12 -12
- package/dist/controllers/NestedAppAuthController.mjs.map +1 -1
- package/dist/controllers/StandardController.d.ts.map +1 -1
- package/dist/controllers/StandardController.mjs +36 -36
- package/dist/controllers/StandardController.mjs.map +1 -1
- package/dist/crypto/BrowserCrypto.mjs +1 -1
- package/dist/crypto/CryptoOps.mjs +1 -1
- package/dist/crypto/PkceGenerator.mjs +1 -1
- package/dist/crypto/SignedHttpRequest.mjs +1 -1
- package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
- package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts +2 -2
- package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +15 -10
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs.map +1 -1
- package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
- package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
- package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/TokenCache.d.ts.map +1 -1
- package/dist/custom-auth-path/config/Configuration.mjs +1 -1
- package/dist/custom-auth-path/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.mjs +36 -36
- package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
- package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
- package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
- package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +3 -3
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +3 -3
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +3 -3
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +2 -2
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +7 -7
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs.map +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/event/EventHandler.d.ts +1 -1
- package/dist/custom-auth-path/event/EventHandler.d.ts.map +1 -1
- package/dist/custom-auth-path/event/EventHandler.mjs +3 -2
- package/dist/custom-auth-path/event/EventHandler.mjs.map +1 -1
- package/dist/custom-auth-path/event/EventMessage.d.ts +1 -0
- package/dist/custom-auth-path/event/EventMessage.d.ts.map +1 -1
- package/dist/custom-auth-path/event/EventType.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +3 -3
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs +9 -9
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +8 -8
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +2 -2
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +2 -2
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.d.ts +3 -2
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +5 -5
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/custom-auth-path/log-strings-mapping.json +2 -2
- package/dist/custom-auth-path/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -1
- package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
- package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
- package/dist/custom-auth-path/packageMetadata.mjs +2 -2
- package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs +7 -3
- package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
- package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
- package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs +1 -1
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserConstants.d.ts +20 -0
- package/dist/custom-auth-path/utils/BrowserConstants.d.ts.map +1 -1
- package/dist/custom-auth-path/utils/BrowserConstants.mjs +27 -2
- package/dist/custom-auth-path/utils/BrowserConstants.mjs.map +1 -1
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
- package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +1 -1
- package/dist/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/dist/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
- package/dist/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -1
- package/dist/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -1
- package/dist/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/dist/encode/Base64Decode.mjs +1 -1
- package/dist/encode/Base64Encode.mjs +1 -1
- package/dist/error/BrowserAuthError.mjs +1 -1
- package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/error/NativeAuthError.mjs +1 -1
- package/dist/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/error/NestedAppAuthError.mjs +1 -1
- package/dist/event/EventHandler.d.ts +1 -1
- package/dist/event/EventHandler.d.ts.map +1 -1
- package/dist/event/EventHandler.mjs +3 -2
- package/dist/event/EventHandler.mjs.map +1 -1
- package/dist/event/EventMessage.d.ts +1 -0
- package/dist/event/EventMessage.d.ts.map +1 -1
- package/dist/event/EventMessage.mjs +1 -1
- package/dist/event/EventMessage.mjs.map +1 -1
- package/dist/event/EventType.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs +3 -3
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
- package/dist/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/interaction_client/PopupClient.mjs +9 -9
- package/dist/interaction_client/PopupClient.mjs.map +1 -1
- package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/interaction_client/RedirectClient.mjs +8 -8
- package/dist/interaction_client/RedirectClient.mjs.map +1 -1
- package/dist/interaction_client/SilentAuthCodeClient.d.ts.map +1 -1
- package/dist/interaction_client/SilentAuthCodeClient.mjs +2 -2
- package/dist/interaction_client/SilentAuthCodeClient.mjs.map +1 -1
- package/dist/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/interaction_client/SilentIframeClient.mjs +1 -1
- package/dist/interaction_client/SilentRefreshClient.d.ts.map +1 -1
- package/dist/interaction_client/SilentRefreshClient.mjs +2 -2
- package/dist/interaction_client/SilentRefreshClient.mjs.map +1 -1
- package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/interaction_handler/InteractionHandler.d.ts +3 -2
- package/dist/interaction_handler/InteractionHandler.d.ts.map +1 -1
- package/dist/interaction_handler/InteractionHandler.mjs +5 -5
- package/dist/interaction_handler/InteractionHandler.mjs.map +1 -1
- package/dist/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/log-strings-mapping.json +4 -4
- package/dist/naa/BridgeError.mjs +1 -1
- package/dist/naa/BridgeProxy.mjs +1 -1
- package/dist/naa/BridgeStatusCode.mjs +1 -1
- package/dist/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -1
- package/dist/naa/mapping/NestedAppAuthAdapter.mjs +25 -8
- package/dist/naa/mapping/NestedAppAuthAdapter.mjs.map +1 -1
- package/dist/navigation/NavigationClient.mjs +1 -1
- package/dist/network/FetchClient.mjs +1 -1
- package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
- package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.d.ts.map +1 -1
- package/dist/protocol/Authorize.mjs +7 -3
- package/dist/protocol/Authorize.mjs.map +1 -1
- package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts +2 -2
- package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/redirect-bridge/cache/CacheKeys.mjs +1 -1
- package/dist/redirect-bridge/cache/TokenCache.d.ts.map +1 -1
- package/dist/redirect-bridge/config/Configuration.mjs +1 -1
- package/dist/redirect-bridge/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/dist/redirect-bridge/controllers/StandardController.d.ts.map +1 -1
- package/dist/redirect-bridge/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/redirect-bridge/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +1 -1
- package/dist/redirect-bridge/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/dist/redirect-bridge/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
- package/dist/redirect-bridge/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -1
- package/dist/redirect-bridge/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -1
- package/dist/redirect-bridge/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/dist/redirect-bridge/encode/Base64Decode.mjs +1 -1
- package/dist/redirect-bridge/error/BrowserAuthError.mjs +1 -1
- package/dist/redirect-bridge/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/redirect-bridge/event/EventHandler.d.ts +1 -1
- package/dist/redirect-bridge/event/EventHandler.d.ts.map +1 -1
- package/dist/redirect-bridge/event/EventMessage.d.ts +1 -0
- package/dist/redirect-bridge/event/EventMessage.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/SilentAuthCodeClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/SilentRefreshClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_handler/InteractionHandler.d.ts +3 -2
- package/dist/redirect-bridge/interaction_handler/InteractionHandler.d.ts.map +1 -1
- package/dist/redirect-bridge/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -1
- package/dist/redirect-bridge/navigation/NavigationClient.mjs +1 -1
- package/dist/redirect-bridge/packageMetadata.d.ts +1 -1
- package/dist/redirect-bridge/protocol/Authorize.d.ts.map +1 -1
- package/dist/redirect-bridge/redirect_bridge/index.mjs +1 -1
- package/dist/redirect-bridge/utils/BrowserConstants.d.ts +20 -0
- package/dist/redirect-bridge/utils/BrowserConstants.d.ts.map +1 -1
- package/dist/redirect-bridge/utils/BrowserConstants.mjs +2 -1
- package/dist/redirect-bridge/utils/BrowserConstants.mjs.map +1 -1
- package/dist/redirect-bridge/utils/BrowserUtils.mjs +1 -1
- package/dist/request/RequestHelpers.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceEvents.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
- package/dist/telemetry/BrowserRootPerformanceEvents.mjs +1 -1
- package/dist/utils/BrowserConstants.d.ts +20 -0
- package/dist/utils/BrowserConstants.d.ts.map +1 -1
- package/dist/utils/BrowserConstants.mjs +27 -2
- package/dist/utils/BrowserConstants.mjs.map +1 -1
- package/dist/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/utils/BrowserUtils.mjs +1 -1
- package/dist/utils/Helpers.mjs +1 -1
- package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
- package/lib/custom-auth-path/log-strings-mapping.json +2 -2
- package/lib/custom-auth-path/msal-custom-auth.cjs +234 -164
- package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
- package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts +2 -2
- package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts.map +1 -1
- package/lib/custom-auth-path/types/cache/TokenCache.d.ts.map +1 -1
- package/lib/custom-auth-path/types/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/event/EventHandler.d.ts +1 -1
- package/lib/custom-auth-path/types/event/EventHandler.d.ts.map +1 -1
- package/lib/custom-auth-path/types/event/EventMessage.d.ts +1 -0
- package/lib/custom-auth-path/types/event/EventMessage.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/SilentAuthCodeClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/SilentRefreshClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_handler/InteractionHandler.d.ts +3 -2
- package/lib/custom-auth-path/types/interaction_handler/InteractionHandler.d.ts.map +1 -1
- package/lib/custom-auth-path/types/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -1
- package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
- package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/custom-auth-path/types/utils/BrowserConstants.d.ts +20 -0
- package/lib/custom-auth-path/types/utils/BrowserConstants.d.ts.map +1 -1
- package/lib/log-strings-mapping.json +4 -4
- package/lib/msal-browser.cjs +280 -188
- package/lib/msal-browser.cjs.map +1 -1
- package/lib/msal-browser.js +280 -188
- package/lib/msal-browser.js.map +1 -1
- package/lib/msal-browser.min.js +2 -2
- package/lib/redirect-bridge/msal-redirect-bridge.js +11 -10
- package/lib/redirect-bridge/msal-redirect-bridge.js.map +1 -1
- package/lib/redirect-bridge/msal-redirect-bridge.min.js +1 -1
- package/lib/types/cache/BrowserCacheManager.d.ts +2 -2
- package/lib/types/cache/BrowserCacheManager.d.ts.map +1 -1
- package/lib/types/cache/TokenCache.d.ts.map +1 -1
- package/lib/types/controllers/NestedAppAuthController.d.ts.map +1 -1
- package/lib/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +1 -1
- package/lib/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -1
- package/lib/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -1
- package/lib/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -1
- package/lib/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -1
- package/lib/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -1
- package/lib/types/event/EventHandler.d.ts +1 -1
- package/lib/types/event/EventHandler.d.ts.map +1 -1
- package/lib/types/event/EventMessage.d.ts +1 -0
- package/lib/types/event/EventMessage.d.ts.map +1 -1
- package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
- package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
- package/lib/types/interaction_client/SilentAuthCodeClient.d.ts.map +1 -1
- package/lib/types/interaction_client/SilentRefreshClient.d.ts.map +1 -1
- package/lib/types/interaction_handler/InteractionHandler.d.ts +3 -2
- package/lib/types/interaction_handler/InteractionHandler.d.ts.map +1 -1
- package/lib/types/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/lib/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/types/utils/BrowserConstants.d.ts +20 -0
- package/lib/types/utils/BrowserConstants.d.ts.map +1 -1
- package/package.json +5 -3
- package/src/cache/BrowserCacheManager.ts +26 -7
- package/src/cache/TokenCache.ts +47 -31
- package/src/controllers/NestedAppAuthController.ts +12 -1
- package/src/controllers/StandardController.ts +48 -18
- package/src/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.ts +4 -2
- package/src/custom_auth/core/interaction_client/jit/JitClient.ts +2 -1
- package/src/custom_auth/core/interaction_client/mfa/MfaClient.ts +2 -1
- package/src/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.ts +2 -1
- package/src/custom_auth/sign_in/interaction_client/SignInClient.ts +10 -5
- package/src/event/EventHandler.ts +2 -0
- package/src/event/EventMessage.ts +1 -0
- package/src/interaction_client/PlatformAuthInteractionClient.ts +3 -1
- package/src/interaction_client/PopupClient.ts +8 -0
- package/src/interaction_client/RedirectClient.ts +7 -0
- package/src/interaction_client/SilentAuthCodeClient.ts +1 -0
- package/src/interaction_client/SilentRefreshClient.ts +7 -5
- package/src/interaction_handler/InteractionHandler.ts +10 -3
- package/src/naa/mapping/NestedAppAuthAdapter.ts +30 -6
- package/src/packageMetadata.ts +1 -1
- package/src/protocol/Authorize.ts +15 -1
- package/src/utils/BrowserConstants.ts +27 -0
package/lib/msal-browser.cjs
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
/*! @azure/msal-browser v5.0
|
|
1
|
+
/*! @azure/msal-browser v5.2.0 2026-02-10 */
|
|
2
2
|
'use strict';
|
|
3
3
|
'use strict';
|
|
4
4
|
|
|
5
|
-
/*! @azure/msal-common v16.0.
|
|
5
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6
6
|
/*
|
|
7
7
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8
8
|
* Licensed under the MIT License.
|
|
@@ -234,7 +234,7 @@ const JsonWebTokenTypes$1 = {
|
|
|
234
234
|
// Token renewal offset default in seconds
|
|
235
235
|
const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
|
|
236
236
|
|
|
237
|
-
/*! @azure/msal-common v16.0.
|
|
237
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
238
238
|
/*
|
|
239
239
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
240
240
|
* Licensed under the MIT License.
|
|
@@ -284,7 +284,7 @@ const INSTANCE_AWARE = "instance_aware";
|
|
|
284
284
|
const EAR_JWK = "ear_jwk";
|
|
285
285
|
const EAR_JWE_CRYPTO = "ear_jwe_crypto";
|
|
286
286
|
|
|
287
|
-
/*! @azure/msal-common v16.0.
|
|
287
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
288
288
|
/*
|
|
289
289
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
290
290
|
* Licensed under the MIT License.
|
|
@@ -315,7 +315,7 @@ function createAuthError(code, additionalMessage) {
|
|
|
315
315
|
return new AuthError(code, additionalMessage || getDefaultErrorMessage$1(code));
|
|
316
316
|
}
|
|
317
317
|
|
|
318
|
-
/*! @azure/msal-common v16.0.
|
|
318
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
319
319
|
|
|
320
320
|
/*
|
|
321
321
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -335,7 +335,7 @@ function createClientConfigurationError(errorCode) {
|
|
|
335
335
|
return new ClientConfigurationError(errorCode);
|
|
336
336
|
}
|
|
337
337
|
|
|
338
|
-
/*! @azure/msal-common v16.0.
|
|
338
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
339
339
|
/*
|
|
340
340
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
341
341
|
* Licensed under the MIT License.
|
|
@@ -432,7 +432,7 @@ class StringUtils {
|
|
|
432
432
|
}
|
|
433
433
|
}
|
|
434
434
|
|
|
435
|
-
/*! @azure/msal-common v16.0.
|
|
435
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
436
436
|
|
|
437
437
|
/*
|
|
438
438
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -455,7 +455,7 @@ function createClientAuthError(errorCode, additionalMessage) {
|
|
|
455
455
|
return new ClientAuthError(errorCode, additionalMessage);
|
|
456
456
|
}
|
|
457
457
|
|
|
458
|
-
/*! @azure/msal-common v16.0.
|
|
458
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
459
459
|
/*
|
|
460
460
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
461
461
|
* Licensed under the MIT License.
|
|
@@ -509,7 +509,7 @@ var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
|
|
|
509
509
|
urlParseError: urlParseError
|
|
510
510
|
});
|
|
511
511
|
|
|
512
|
-
/*! @azure/msal-common v16.0.
|
|
512
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
513
513
|
/*
|
|
514
514
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
515
515
|
* Licensed under the MIT License.
|
|
@@ -593,7 +593,7 @@ var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
|
|
|
593
593
|
userCanceled: userCanceled
|
|
594
594
|
});
|
|
595
595
|
|
|
596
|
-
/*! @azure/msal-common v16.0.
|
|
596
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
597
597
|
|
|
598
598
|
/*
|
|
599
599
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -788,7 +788,7 @@ class ScopeSet {
|
|
|
788
788
|
}
|
|
789
789
|
}
|
|
790
790
|
|
|
791
|
-
/*! @azure/msal-common v16.0.
|
|
791
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
792
792
|
|
|
793
793
|
/*
|
|
794
794
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1155,7 +1155,7 @@ function addEARParameters(parameters, jwk) {
|
|
|
1155
1155
|
parameters.set(EAR_JWE_CRYPTO, jweCryptoB64Encoded);
|
|
1156
1156
|
}
|
|
1157
1157
|
|
|
1158
|
-
/*! @azure/msal-common v16.0.
|
|
1158
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1159
1159
|
|
|
1160
1160
|
/*
|
|
1161
1161
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1264,7 +1264,7 @@ function normalizeUrlForComparison(url) {
|
|
|
1264
1264
|
}
|
|
1265
1265
|
}
|
|
1266
1266
|
|
|
1267
|
-
/*! @azure/msal-common v16.0.
|
|
1267
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1268
1268
|
|
|
1269
1269
|
/*
|
|
1270
1270
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1303,7 +1303,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
|
|
|
1303
1303
|
},
|
|
1304
1304
|
};
|
|
1305
1305
|
|
|
1306
|
-
/*! @azure/msal-common v16.0.
|
|
1306
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1307
1307
|
/*
|
|
1308
1308
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1309
1309
|
* Licensed under the MIT License.
|
|
@@ -1578,12 +1578,12 @@ class Logger {
|
|
|
1578
1578
|
}
|
|
1579
1579
|
}
|
|
1580
1580
|
|
|
1581
|
-
/*! @azure/msal-common v16.0.
|
|
1581
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1582
1582
|
/* eslint-disable header/header */
|
|
1583
1583
|
const name$1 = "@azure/msal-common";
|
|
1584
|
-
const version$1 = "16.0.
|
|
1584
|
+
const version$1 = "16.0.4";
|
|
1585
1585
|
|
|
1586
|
-
/*! @azure/msal-common v16.0.
|
|
1586
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1587
1587
|
/*
|
|
1588
1588
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1589
1589
|
* Licensed under the MIT License.
|
|
@@ -1603,7 +1603,7 @@ const AzureCloudInstance = {
|
|
|
1603
1603
|
AzureUsGovernment: "https://login.microsoftonline.us",
|
|
1604
1604
|
};
|
|
1605
1605
|
|
|
1606
|
-
/*! @azure/msal-common v16.0.
|
|
1606
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1607
1607
|
/*
|
|
1608
1608
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1609
1609
|
* Licensed under the MIT License.
|
|
@@ -1685,7 +1685,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
|
|
|
1685
1685
|
return updatedAccountInfo;
|
|
1686
1686
|
}
|
|
1687
1687
|
|
|
1688
|
-
/*! @azure/msal-common v16.0.
|
|
1688
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1689
1689
|
|
|
1690
1690
|
/*
|
|
1691
1691
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1765,7 +1765,7 @@ function checkMaxAge(authTime, maxAge) {
|
|
|
1765
1765
|
}
|
|
1766
1766
|
}
|
|
1767
1767
|
|
|
1768
|
-
/*! @azure/msal-common v16.0.
|
|
1768
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1769
1769
|
|
|
1770
1770
|
/*
|
|
1771
1771
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1922,7 +1922,7 @@ class UrlString {
|
|
|
1922
1922
|
}
|
|
1923
1923
|
}
|
|
1924
1924
|
|
|
1925
|
-
/*! @azure/msal-common v16.0.
|
|
1925
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
1926
1926
|
|
|
1927
1927
|
/*
|
|
1928
1928
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1993,6 +1993,21 @@ const rawMetdataJSON = {
|
|
|
1993
1993
|
preferred_cache: "login-us.microsoftonline.com",
|
|
1994
1994
|
aliases: ["login-us.microsoftonline.com"],
|
|
1995
1995
|
},
|
|
1996
|
+
{
|
|
1997
|
+
preferred_network: "login.sovcloud-identity.fr",
|
|
1998
|
+
preferred_cache: "login.sovcloud-identity.fr",
|
|
1999
|
+
aliases: ["login.sovcloud-identity.fr"],
|
|
2000
|
+
},
|
|
2001
|
+
{
|
|
2002
|
+
preferred_network: "login.sovcloud-identity.de",
|
|
2003
|
+
preferred_cache: "login.sovcloud-identity.de",
|
|
2004
|
+
aliases: ["login.sovcloud-identity.de"],
|
|
2005
|
+
},
|
|
2006
|
+
{
|
|
2007
|
+
preferred_network: "login.sovcloud-identity.sg",
|
|
2008
|
+
preferred_cache: "login.sovcloud-identity.sg",
|
|
2009
|
+
aliases: ["login.sovcloud-identity.sg"],
|
|
2010
|
+
},
|
|
1996
2011
|
],
|
|
1997
2012
|
},
|
|
1998
2013
|
};
|
|
@@ -2064,7 +2079,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
|
|
|
2064
2079
|
return null;
|
|
2065
2080
|
}
|
|
2066
2081
|
|
|
2067
|
-
/*! @azure/msal-common v16.0.
|
|
2082
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
2068
2083
|
/*
|
|
2069
2084
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2070
2085
|
* Licensed under the MIT License.
|
|
@@ -2072,7 +2087,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
|
|
|
2072
2087
|
const cacheQuotaExceeded = "cache_quota_exceeded";
|
|
2073
2088
|
const cacheErrorUnknown = "cache_error_unknown";
|
|
2074
2089
|
|
|
2075
|
-
/*! @azure/msal-common v16.0.
|
|
2090
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
2076
2091
|
|
|
2077
2092
|
/*
|
|
2078
2093
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2110,7 +2125,7 @@ function createCacheError(e) {
|
|
|
2110
2125
|
}
|
|
2111
2126
|
}
|
|
2112
2127
|
|
|
2113
|
-
/*! @azure/msal-common v16.0.
|
|
2128
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
2114
2129
|
|
|
2115
2130
|
/*
|
|
2116
2131
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2148,7 +2163,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
|
|
|
2148
2163
|
};
|
|
2149
2164
|
}
|
|
2150
2165
|
|
|
2151
|
-
/*! @azure/msal-common v16.0.
|
|
2166
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
2152
2167
|
/*
|
|
2153
2168
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2154
2169
|
* Licensed under the MIT License.
|
|
@@ -2163,7 +2178,7 @@ const AuthorityType = {
|
|
|
2163
2178
|
Ciam: 3,
|
|
2164
2179
|
};
|
|
2165
2180
|
|
|
2166
|
-
/*! @azure/msal-common v16.0.
|
|
2181
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
2167
2182
|
/*
|
|
2168
2183
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2169
2184
|
* Licensed under the MIT License.
|
|
@@ -2185,7 +2200,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
|
|
|
2185
2200
|
return null;
|
|
2186
2201
|
}
|
|
2187
2202
|
|
|
2188
|
-
/*! @azure/msal-common v16.0.
|
|
2203
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
2189
2204
|
/*
|
|
2190
2205
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2191
2206
|
* Licensed under the MIT License.
|
|
@@ -2209,11 +2224,18 @@ const ProtocolMode = {
|
|
|
2209
2224
|
EAR: "EAR",
|
|
2210
2225
|
};
|
|
2211
2226
|
|
|
2212
|
-
/*! @azure/msal-common v16.0.
|
|
2227
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
2213
2228
|
/**
|
|
2214
2229
|
* Returns the AccountInfo interface for this account.
|
|
2215
2230
|
*/
|
|
2216
2231
|
function getAccountInfo(accountEntity) {
|
|
2232
|
+
const tenantProfiles = accountEntity.tenantProfiles || [];
|
|
2233
|
+
// Ensure at least the home tenant profile exists
|
|
2234
|
+
if (tenantProfiles.length === 0 &&
|
|
2235
|
+
accountEntity.realm &&
|
|
2236
|
+
accountEntity.localAccountId) {
|
|
2237
|
+
tenantProfiles.push(buildTenantProfile(accountEntity.homeAccountId, accountEntity.localAccountId, accountEntity.realm));
|
|
2238
|
+
}
|
|
2217
2239
|
return {
|
|
2218
2240
|
homeAccountId: accountEntity.homeAccountId,
|
|
2219
2241
|
environment: accountEntity.environment,
|
|
@@ -2225,7 +2247,7 @@ function getAccountInfo(accountEntity) {
|
|
|
2225
2247
|
nativeAccountId: accountEntity.nativeAccountId,
|
|
2226
2248
|
authorityType: accountEntity.authorityType,
|
|
2227
2249
|
// Deserialize tenant profiles array into a Map
|
|
2228
|
-
tenantProfiles: new Map(
|
|
2250
|
+
tenantProfiles: new Map(tenantProfiles.map((tenantProfile) => {
|
|
2229
2251
|
return [tenantProfile.tenantId, tenantProfile];
|
|
2230
2252
|
})),
|
|
2231
2253
|
dataBoundary: accountEntity.dataBoundary,
|
|
@@ -2314,6 +2336,14 @@ function createAccountEntity(accountDetails, authority, base64Decode) {
|
|
|
2314
2336
|
* @returns
|
|
2315
2337
|
*/
|
|
2316
2338
|
function createAccountEntityFromAccountInfo(accountInfo, cloudGraphHostName, msGraphHost) {
|
|
2339
|
+
// Serialize tenant profiles map into an array
|
|
2340
|
+
const tenantProfiles = Array.from(accountInfo.tenantProfiles?.values() || []);
|
|
2341
|
+
// Ensure at least the home tenant profile exists
|
|
2342
|
+
if (tenantProfiles.length === 0 &&
|
|
2343
|
+
accountInfo.tenantId &&
|
|
2344
|
+
accountInfo.localAccountId) {
|
|
2345
|
+
tenantProfiles.push(buildTenantProfile(accountInfo.homeAccountId, accountInfo.localAccountId, accountInfo.tenantId, accountInfo.idTokenClaims));
|
|
2346
|
+
}
|
|
2317
2347
|
return {
|
|
2318
2348
|
authorityType: accountInfo.authorityType || CACHE_ACCOUNT_TYPE_GENERIC,
|
|
2319
2349
|
homeAccountId: accountInfo.homeAccountId,
|
|
@@ -2326,7 +2356,7 @@ function createAccountEntityFromAccountInfo(accountInfo, cloudGraphHostName, msG
|
|
|
2326
2356
|
name: accountInfo.name,
|
|
2327
2357
|
cloudGraphHostName: cloudGraphHostName,
|
|
2328
2358
|
msGraphHost: msGraphHost,
|
|
2329
|
-
tenantProfiles:
|
|
2359
|
+
tenantProfiles: tenantProfiles,
|
|
2330
2360
|
dataBoundary: accountInfo.dataBoundary,
|
|
2331
2361
|
};
|
|
2332
2362
|
}
|
|
@@ -2369,7 +2399,7 @@ function isAccountEntity(entity) {
|
|
|
2369
2399
|
entity.hasOwnProperty("authorityType"));
|
|
2370
2400
|
}
|
|
2371
2401
|
|
|
2372
|
-
/*! @azure/msal-common v16.0.
|
|
2402
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
2373
2403
|
|
|
2374
2404
|
/*
|
|
2375
2405
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2535,13 +2565,13 @@ class CacheManager {
|
|
|
2535
2565
|
* @param storeInCache {?StoreInCache}
|
|
2536
2566
|
* @param correlationId {?string} correlation id
|
|
2537
2567
|
*/
|
|
2538
|
-
async saveCacheRecord(cacheRecord, correlationId, kmsi, storeInCache) {
|
|
2568
|
+
async saveCacheRecord(cacheRecord, correlationId, kmsi, apiId, storeInCache) {
|
|
2539
2569
|
if (!cacheRecord) {
|
|
2540
2570
|
throw createClientAuthError(invalidCacheRecord);
|
|
2541
2571
|
}
|
|
2542
2572
|
try {
|
|
2543
2573
|
if (!!cacheRecord.account) {
|
|
2544
|
-
await this.setAccount(cacheRecord.account, correlationId, kmsi);
|
|
2574
|
+
await this.setAccount(cacheRecord.account, correlationId, kmsi, apiId);
|
|
2545
2575
|
}
|
|
2546
2576
|
if (!!cacheRecord.idToken && storeInCache?.idToken !== false) {
|
|
2547
2577
|
await this.setIdTokenCredential(cacheRecord.idToken, correlationId, kmsi);
|
|
@@ -3466,7 +3496,7 @@ class DefaultStorageClass extends CacheManager {
|
|
|
3466
3496
|
}
|
|
3467
3497
|
}
|
|
3468
3498
|
|
|
3469
|
-
/*! @azure/msal-common v16.0.
|
|
3499
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3470
3500
|
/*
|
|
3471
3501
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3472
3502
|
* Licensed under the MIT License.
|
|
@@ -3507,7 +3537,7 @@ const IntFields = new Set([
|
|
|
3507
3537
|
"upgradedCacheCount",
|
|
3508
3538
|
]);
|
|
3509
3539
|
|
|
3510
|
-
/*! @azure/msal-common v16.0.
|
|
3540
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3511
3541
|
|
|
3512
3542
|
/*
|
|
3513
3543
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3562,7 +3592,7 @@ class StubPerformanceClient {
|
|
|
3562
3592
|
}
|
|
3563
3593
|
}
|
|
3564
3594
|
|
|
3565
|
-
/*! @azure/msal-common v16.0.
|
|
3595
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3566
3596
|
|
|
3567
3597
|
/*
|
|
3568
3598
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3656,7 +3686,7 @@ function isOidcProtocolMode(config) {
|
|
|
3656
3686
|
return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
|
|
3657
3687
|
}
|
|
3658
3688
|
|
|
3659
|
-
/*! @azure/msal-common v16.0.
|
|
3689
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3660
3690
|
|
|
3661
3691
|
/*
|
|
3662
3692
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3675,7 +3705,7 @@ class ServerError extends AuthError {
|
|
|
3675
3705
|
}
|
|
3676
3706
|
}
|
|
3677
3707
|
|
|
3678
|
-
/*! @azure/msal-common v16.0.
|
|
3708
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3679
3709
|
/*
|
|
3680
3710
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3681
3711
|
* Licensed under the MIT License.
|
|
@@ -3703,7 +3733,7 @@ var InteractionRequiredAuthErrorCodes = /*#__PURE__*/Object.freeze({
|
|
|
3703
3733
|
uxNotAllowed: uxNotAllowed
|
|
3704
3734
|
});
|
|
3705
3735
|
|
|
3706
|
-
/*! @azure/msal-common v16.0.
|
|
3736
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3707
3737
|
|
|
3708
3738
|
/*
|
|
3709
3739
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3769,7 +3799,7 @@ function createInteractionRequiredAuthError(errorCode, errorMessage) {
|
|
|
3769
3799
|
return new InteractionRequiredAuthError(errorCode, errorMessage);
|
|
3770
3800
|
}
|
|
3771
3801
|
|
|
3772
|
-
/*! @azure/msal-common v16.0.
|
|
3802
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3773
3803
|
|
|
3774
3804
|
/*
|
|
3775
3805
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3837,7 +3867,7 @@ function parseRequestState(base64Decode, state) {
|
|
|
3837
3867
|
}
|
|
3838
3868
|
}
|
|
3839
3869
|
|
|
3840
|
-
/*! @azure/msal-common v16.0.
|
|
3870
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3841
3871
|
/*
|
|
3842
3872
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3843
3873
|
* Licensed under the MIT License.
|
|
@@ -3902,7 +3932,7 @@ function wasClockTurnedBack(cachedAt) {
|
|
|
3902
3932
|
return cachedAtSec > nowSeconds();
|
|
3903
3933
|
}
|
|
3904
3934
|
|
|
3905
|
-
/*! @azure/msal-common v16.0.
|
|
3935
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3906
3936
|
/*
|
|
3907
3937
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3908
3938
|
* Licensed under the MIT License.
|
|
@@ -3973,7 +4003,7 @@ const RegionDiscoveryGetCurrentVersion = "regionDiscoveryGetCurrentVersion";
|
|
|
3973
4003
|
const CacheManagerGetRefreshToken = "cacheManagerGetRefreshToken";
|
|
3974
4004
|
const SetUserData = "setUserData";
|
|
3975
4005
|
|
|
3976
|
-
/*! @azure/msal-common v16.0.
|
|
4006
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
3977
4007
|
/*
|
|
3978
4008
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3979
4009
|
* Licensed under the MIT License.
|
|
@@ -4068,7 +4098,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
|
|
|
4068
4098
|
};
|
|
4069
4099
|
};
|
|
4070
4100
|
|
|
4071
|
-
/*! @azure/msal-common v16.0.
|
|
4101
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4072
4102
|
|
|
4073
4103
|
/*
|
|
4074
4104
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4148,7 +4178,7 @@ class PopTokenGenerator {
|
|
|
4148
4178
|
}
|
|
4149
4179
|
}
|
|
4150
4180
|
|
|
4151
|
-
/*! @azure/msal-common v16.0.
|
|
4181
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4152
4182
|
/*
|
|
4153
4183
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4154
4184
|
* Licensed under the MIT License.
|
|
@@ -4175,7 +4205,7 @@ class PopTokenGenerator {
|
|
|
4175
4205
|
}
|
|
4176
4206
|
}
|
|
4177
4207
|
|
|
4178
|
-
/*! @azure/msal-common v16.0.
|
|
4208
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4179
4209
|
|
|
4180
4210
|
/*
|
|
4181
4211
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4434,7 +4464,7 @@ function isAuthorityMetadataExpired(metadata) {
|
|
|
4434
4464
|
return metadata.expiresAt <= nowSeconds();
|
|
4435
4465
|
}
|
|
4436
4466
|
|
|
4437
|
-
/*! @azure/msal-common v16.0.
|
|
4467
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4438
4468
|
|
|
4439
4469
|
/*
|
|
4440
4470
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4501,7 +4531,7 @@ class ResponseHandler {
|
|
|
4501
4531
|
* @param serverTokenResponse
|
|
4502
4532
|
* @param authority
|
|
4503
4533
|
*/
|
|
4504
|
-
async handleServerTokenResponse(serverTokenResponse, authority, reqTimestamp, request, authCodePayload, userAssertionHash, handlingRefreshTokenResponse, forceCacheRefreshTokenResponse, serverRequestId) {
|
|
4534
|
+
async handleServerTokenResponse(serverTokenResponse, authority, reqTimestamp, request, apiId, authCodePayload, userAssertionHash, handlingRefreshTokenResponse, forceCacheRefreshTokenResponse, serverRequestId) {
|
|
4505
4535
|
// create an idToken object (not entity)
|
|
4506
4536
|
let idTokenClaims;
|
|
4507
4537
|
if (serverTokenResponse.id_token) {
|
|
@@ -4548,14 +4578,19 @@ class ResponseHandler {
|
|
|
4548
4578
|
if (handlingRefreshTokenResponse &&
|
|
4549
4579
|
!forceCacheRefreshTokenResponse &&
|
|
4550
4580
|
cacheRecord.account) {
|
|
4551
|
-
const
|
|
4552
|
-
|
|
4553
|
-
|
|
4581
|
+
const cachedAccounts = this.cacheStorage.getAllAccounts({
|
|
4582
|
+
homeAccountId: cacheRecord.account.homeAccountId,
|
|
4583
|
+
environment: cacheRecord.account.environment,
|
|
4584
|
+
}, request.correlationId);
|
|
4585
|
+
if (cachedAccounts.length < 1) {
|
|
4554
4586
|
this.logger.warning("1gmt66", request.correlationId);
|
|
4587
|
+
this.performanceClient?.addFields({
|
|
4588
|
+
acntLoggedOut: true,
|
|
4589
|
+
}, request.correlationId);
|
|
4555
4590
|
return await ResponseHandler.generateAuthenticationResult(this.cryptoObj, authority, cacheRecord, false, request, this.performanceClient, idTokenClaims, requestStateObj, undefined, serverRequestId);
|
|
4556
4591
|
}
|
|
4557
4592
|
}
|
|
4558
|
-
await this.cacheStorage.saveCacheRecord(cacheRecord, request.correlationId, isKmsi(idTokenClaims || {}), request.storeInCache);
|
|
4593
|
+
await this.cacheStorage.saveCacheRecord(cacheRecord, request.correlationId, isKmsi(idTokenClaims || {}), apiId, request.storeInCache);
|
|
4559
4594
|
}
|
|
4560
4595
|
finally {
|
|
4561
4596
|
if (this.persistencePlugin &&
|
|
@@ -4765,7 +4800,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
|
|
|
4765
4800
|
return baseAccount;
|
|
4766
4801
|
}
|
|
4767
4802
|
|
|
4768
|
-
/*! @azure/msal-common v16.0.
|
|
4803
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4769
4804
|
/*
|
|
4770
4805
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4771
4806
|
* Licensed under the MIT License.
|
|
@@ -4775,7 +4810,7 @@ const CcsCredentialType = {
|
|
|
4775
4810
|
UPN: "UPN",
|
|
4776
4811
|
};
|
|
4777
4812
|
|
|
4778
|
-
/*! @azure/msal-common v16.0.
|
|
4813
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4779
4814
|
/*
|
|
4780
4815
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4781
4816
|
* Licensed under the MIT License.
|
|
@@ -4793,7 +4828,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
|
|
|
4793
4828
|
}
|
|
4794
4829
|
}
|
|
4795
4830
|
|
|
4796
|
-
/*! @azure/msal-common v16.0.
|
|
4831
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4797
4832
|
/*
|
|
4798
4833
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4799
4834
|
* Licensed under the MIT License.
|
|
@@ -4814,7 +4849,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
|
|
|
4814
4849
|
};
|
|
4815
4850
|
}
|
|
4816
4851
|
|
|
4817
|
-
/*! @azure/msal-common v16.0.
|
|
4852
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4818
4853
|
|
|
4819
4854
|
/*
|
|
4820
4855
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4900,7 +4935,7 @@ class ThrottlingUtils {
|
|
|
4900
4935
|
}
|
|
4901
4936
|
}
|
|
4902
4937
|
|
|
4903
|
-
/*! @azure/msal-common v16.0.
|
|
4938
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4904
4939
|
|
|
4905
4940
|
/*
|
|
4906
4941
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4931,7 +4966,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
|
|
|
4931
4966
|
return new NetworkError(error, httpStatus, responseHeaders);
|
|
4932
4967
|
}
|
|
4933
4968
|
|
|
4934
|
-
/*! @azure/msal-common v16.0.
|
|
4969
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
4935
4970
|
|
|
4936
4971
|
/*
|
|
4937
4972
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5045,7 +5080,7 @@ async function sendPostRequest(thumbprint, tokenEndpoint, options, correlationId
|
|
|
5045
5080
|
return response;
|
|
5046
5081
|
}
|
|
5047
5082
|
|
|
5048
|
-
/*! @azure/msal-common v16.0.
|
|
5083
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
5049
5084
|
/*
|
|
5050
5085
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5051
5086
|
* Licensed under the MIT License.
|
|
@@ -5057,7 +5092,7 @@ function isOpenIdConfigResponse(response) {
|
|
|
5057
5092
|
response.hasOwnProperty("jwks_uri"));
|
|
5058
5093
|
}
|
|
5059
5094
|
|
|
5060
|
-
/*! @azure/msal-common v16.0.
|
|
5095
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
5061
5096
|
/*
|
|
5062
5097
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5063
5098
|
* Licensed under the MIT License.
|
|
@@ -5067,7 +5102,7 @@ function isCloudInstanceDiscoveryResponse(response) {
|
|
|
5067
5102
|
response.hasOwnProperty("metadata"));
|
|
5068
5103
|
}
|
|
5069
5104
|
|
|
5070
|
-
/*! @azure/msal-common v16.0.
|
|
5105
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
5071
5106
|
/*
|
|
5072
5107
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5073
5108
|
* Licensed under the MIT License.
|
|
@@ -5077,7 +5112,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
|
|
|
5077
5112
|
response.hasOwnProperty("error_description"));
|
|
5078
5113
|
}
|
|
5079
5114
|
|
|
5080
|
-
/*! @azure/msal-common v16.0.
|
|
5115
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
5081
5116
|
|
|
5082
5117
|
/*
|
|
5083
5118
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5182,7 +5217,7 @@ RegionDiscovery.IMDS_OPTIONS = {
|
|
|
5182
5217
|
},
|
|
5183
5218
|
};
|
|
5184
5219
|
|
|
5185
|
-
/*! @azure/msal-common v16.0.
|
|
5220
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
5186
5221
|
|
|
5187
5222
|
/*
|
|
5188
5223
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6002,7 +6037,7 @@ function buildStaticAuthorityOptions(authOptions) {
|
|
|
6002
6037
|
};
|
|
6003
6038
|
}
|
|
6004
6039
|
|
|
6005
|
-
/*! @azure/msal-common v16.0.
|
|
6040
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6006
6041
|
|
|
6007
6042
|
/*
|
|
6008
6043
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6036,7 +6071,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
|
|
|
6036
6071
|
}
|
|
6037
6072
|
}
|
|
6038
6073
|
|
|
6039
|
-
/*! @azure/msal-common v16.0.
|
|
6074
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6040
6075
|
|
|
6041
6076
|
/*
|
|
6042
6077
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6074,7 +6109,7 @@ class AuthorizationCodeClient {
|
|
|
6074
6109
|
* authorization_code_grant
|
|
6075
6110
|
* @param request
|
|
6076
6111
|
*/
|
|
6077
|
-
async acquireToken(request, authCodePayload) {
|
|
6112
|
+
async acquireToken(request, apiId, authCodePayload) {
|
|
6078
6113
|
if (!request.code) {
|
|
6079
6114
|
throw createClientAuthError(requestCannotBeMade);
|
|
6080
6115
|
}
|
|
@@ -6089,7 +6124,7 @@ class AuthorizationCodeClient {
|
|
|
6089
6124
|
const responseHandler = new ResponseHandler(this.config.authOptions.clientId, this.cacheManager, this.cryptoUtils, this.logger, this.performanceClient, this.config.serializableCache, this.config.persistencePlugin);
|
|
6090
6125
|
// Validate response. This function throws a server error if an error is returned by the server.
|
|
6091
6126
|
responseHandler.validateTokenResponse(response.body, request.correlationId);
|
|
6092
|
-
return invokeAsync(responseHandler.handleServerTokenResponse.bind(responseHandler), HandleServerTokenResponse, this.logger, this.performanceClient, request.correlationId)(response.body, this.authority, reqTimestamp, request, authCodePayload, undefined, undefined, undefined, requestId);
|
|
6127
|
+
return invokeAsync(responseHandler.handleServerTokenResponse.bind(responseHandler), HandleServerTokenResponse, this.logger, this.performanceClient, request.correlationId)(response.body, this.authority, reqTimestamp, request, apiId, authCodePayload, undefined, undefined, undefined, requestId);
|
|
6093
6128
|
}
|
|
6094
6129
|
/**
|
|
6095
6130
|
* Used to log out the current user, and redirect the user to the postLogoutRedirectUri.
|
|
@@ -6296,7 +6331,7 @@ class AuthorizationCodeClient {
|
|
|
6296
6331
|
}
|
|
6297
6332
|
}
|
|
6298
6333
|
|
|
6299
|
-
/*! @azure/msal-common v16.0.
|
|
6334
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6300
6335
|
|
|
6301
6336
|
/*
|
|
6302
6337
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6326,20 +6361,20 @@ class RefreshTokenClient {
|
|
|
6326
6361
|
// set performance telemetry client
|
|
6327
6362
|
this.performanceClient = performanceClient;
|
|
6328
6363
|
}
|
|
6329
|
-
async acquireToken(request) {
|
|
6364
|
+
async acquireToken(request, apiId) {
|
|
6330
6365
|
const reqTimestamp = nowSeconds();
|
|
6331
6366
|
const response = await invokeAsync(this.executeTokenRequest.bind(this), RefreshTokenClientExecuteTokenRequest, this.logger, this.performanceClient, request.correlationId)(request, this.authority);
|
|
6332
6367
|
// Retrieve requestId from response headers
|
|
6333
6368
|
const requestId = response.headers?.[HeaderNames.X_MS_REQUEST_ID];
|
|
6334
6369
|
const responseHandler = new ResponseHandler(this.config.authOptions.clientId, this.cacheManager, this.cryptoUtils, this.logger, this.performanceClient, this.config.serializableCache, this.config.persistencePlugin);
|
|
6335
6370
|
responseHandler.validateTokenResponse(response.body, request.correlationId);
|
|
6336
|
-
return invokeAsync(responseHandler.handleServerTokenResponse.bind(responseHandler), HandleServerTokenResponse, this.logger, this.performanceClient, request.correlationId)(response.body, this.authority, reqTimestamp, request, undefined, undefined, true, request.forceCache, requestId);
|
|
6371
|
+
return invokeAsync(responseHandler.handleServerTokenResponse.bind(responseHandler), HandleServerTokenResponse, this.logger, this.performanceClient, request.correlationId)(response.body, this.authority, reqTimestamp, request, apiId, undefined, undefined, true, request.forceCache, requestId);
|
|
6337
6372
|
}
|
|
6338
6373
|
/**
|
|
6339
6374
|
* Gets cached refresh token and attaches to request, then calls acquireToken API
|
|
6340
6375
|
* @param request
|
|
6341
6376
|
*/
|
|
6342
|
-
async acquireTokenByRefreshToken(request) {
|
|
6377
|
+
async acquireTokenByRefreshToken(request, apiId) {
|
|
6343
6378
|
// Cannot renew token if no request object is given.
|
|
6344
6379
|
if (!request) {
|
|
6345
6380
|
throw createClientConfigurationError(tokenRequestEmpty);
|
|
@@ -6353,7 +6388,7 @@ class RefreshTokenClient {
|
|
|
6353
6388
|
// if the app is part of the family, retrive a Family refresh token if present and make a refreshTokenRequest
|
|
6354
6389
|
if (isFOCI) {
|
|
6355
6390
|
try {
|
|
6356
|
-
return await invokeAsync(this.acquireTokenWithCachedRefreshToken.bind(this), RefreshTokenClientAcquireTokenWithCachedRefreshToken, this.logger, this.performanceClient, request.correlationId)(request, true);
|
|
6391
|
+
return await invokeAsync(this.acquireTokenWithCachedRefreshToken.bind(this), RefreshTokenClientAcquireTokenWithCachedRefreshToken, this.logger, this.performanceClient, request.correlationId)(request, true, apiId);
|
|
6357
6392
|
}
|
|
6358
6393
|
catch (e) {
|
|
6359
6394
|
const noFamilyRTInCache = e instanceof InteractionRequiredAuthError &&
|
|
@@ -6364,7 +6399,7 @@ class RefreshTokenClient {
|
|
|
6364
6399
|
e.subError === CLIENT_MISMATCH_ERROR;
|
|
6365
6400
|
// if family Refresh Token (FRT) cache acquisition fails or if client_mismatch error is seen with FRT, reattempt with application Refresh Token (ART)
|
|
6366
6401
|
if (noFamilyRTInCache || clientMismatchErrorWithFamilyRT) {
|
|
6367
|
-
return invokeAsync(this.acquireTokenWithCachedRefreshToken.bind(this), RefreshTokenClientAcquireTokenWithCachedRefreshToken, this.logger, this.performanceClient, request.correlationId)(request, false);
|
|
6402
|
+
return invokeAsync(this.acquireTokenWithCachedRefreshToken.bind(this), RefreshTokenClientAcquireTokenWithCachedRefreshToken, this.logger, this.performanceClient, request.correlationId)(request, false, apiId);
|
|
6368
6403
|
// throw in all other cases
|
|
6369
6404
|
}
|
|
6370
6405
|
else {
|
|
@@ -6373,13 +6408,13 @@ class RefreshTokenClient {
|
|
|
6373
6408
|
}
|
|
6374
6409
|
}
|
|
6375
6410
|
// fall back to application refresh token acquisition
|
|
6376
|
-
return invokeAsync(this.acquireTokenWithCachedRefreshToken.bind(this), RefreshTokenClientAcquireTokenWithCachedRefreshToken, this.logger, this.performanceClient, request.correlationId)(request, false);
|
|
6411
|
+
return invokeAsync(this.acquireTokenWithCachedRefreshToken.bind(this), RefreshTokenClientAcquireTokenWithCachedRefreshToken, this.logger, this.performanceClient, request.correlationId)(request, false, apiId);
|
|
6377
6412
|
}
|
|
6378
6413
|
/**
|
|
6379
6414
|
* makes a network call to acquire tokens by exchanging RefreshToken available in userCache; throws if refresh token is not cached
|
|
6380
6415
|
* @param request
|
|
6381
6416
|
*/
|
|
6382
|
-
async acquireTokenWithCachedRefreshToken(request, foci) {
|
|
6417
|
+
async acquireTokenWithCachedRefreshToken(request, foci, apiId) {
|
|
6383
6418
|
// fetches family RT or application RT based on FOCI value
|
|
6384
6419
|
const refreshToken = invoke(this.cacheManager.getRefreshToken.bind(this.cacheManager), CacheManagerGetRefreshToken, this.logger, this.performanceClient, request.correlationId)(request.account, foci, request.correlationId, undefined);
|
|
6385
6420
|
if (!refreshToken) {
|
|
@@ -6408,7 +6443,7 @@ class RefreshTokenClient {
|
|
|
6408
6443
|
},
|
|
6409
6444
|
};
|
|
6410
6445
|
try {
|
|
6411
|
-
return await invokeAsync(this.acquireToken.bind(this), RefreshTokenClientAcquireToken, this.logger, this.performanceClient, request.correlationId)(refreshTokenRequest);
|
|
6446
|
+
return await invokeAsync(this.acquireToken.bind(this), RefreshTokenClientAcquireToken, this.logger, this.performanceClient, request.correlationId)(refreshTokenRequest, apiId);
|
|
6412
6447
|
}
|
|
6413
6448
|
catch (e) {
|
|
6414
6449
|
if (e instanceof InteractionRequiredAuthError) {
|
|
@@ -6521,7 +6556,7 @@ class RefreshTokenClient {
|
|
|
6521
6556
|
}
|
|
6522
6557
|
}
|
|
6523
6558
|
|
|
6524
|
-
/*! @azure/msal-common v16.0.
|
|
6559
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6525
6560
|
|
|
6526
6561
|
/*
|
|
6527
6562
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6630,7 +6665,7 @@ class SilentFlowClient {
|
|
|
6630
6665
|
}
|
|
6631
6666
|
}
|
|
6632
6667
|
|
|
6633
|
-
/*! @azure/msal-common v16.0.
|
|
6668
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6634
6669
|
|
|
6635
6670
|
/*
|
|
6636
6671
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6645,7 +6680,7 @@ const StubbedNetworkModule = {
|
|
|
6645
6680
|
},
|
|
6646
6681
|
};
|
|
6647
6682
|
|
|
6648
|
-
/*! @azure/msal-common v16.0.
|
|
6683
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6649
6684
|
|
|
6650
6685
|
/*
|
|
6651
6686
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6869,7 +6904,7 @@ function extractLoginHint(account) {
|
|
|
6869
6904
|
return account.loginHint || account.idTokenClaims?.login_hint || null;
|
|
6870
6905
|
}
|
|
6871
6906
|
|
|
6872
|
-
/*! @azure/msal-common v16.0.
|
|
6907
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6873
6908
|
|
|
6874
6909
|
/*
|
|
6875
6910
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6927,7 +6962,7 @@ class AuthenticationHeaderParser {
|
|
|
6927
6962
|
}
|
|
6928
6963
|
}
|
|
6929
6964
|
|
|
6930
|
-
/*! @azure/msal-common v16.0.
|
|
6965
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6931
6966
|
/*
|
|
6932
6967
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
6933
6968
|
* Licensed under the MIT License.
|
|
@@ -6944,7 +6979,7 @@ var AuthErrorCodes = /*#__PURE__*/Object.freeze({
|
|
|
6944
6979
|
unexpectedError: unexpectedError
|
|
6945
6980
|
});
|
|
6946
6981
|
|
|
6947
|
-
/*! @azure/msal-common v16.0.
|
|
6982
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
6948
6983
|
|
|
6949
6984
|
/*
|
|
6950
6985
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7205,7 +7240,7 @@ class ServerTelemetryManager {
|
|
|
7205
7240
|
}
|
|
7206
7241
|
}
|
|
7207
7242
|
|
|
7208
|
-
/*! @azure/msal-common v16.0.
|
|
7243
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
7209
7244
|
|
|
7210
7245
|
/*
|
|
7211
7246
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7226,7 +7261,7 @@ function createJoseHeaderError(code) {
|
|
|
7226
7261
|
return new JoseHeaderError(code);
|
|
7227
7262
|
}
|
|
7228
7263
|
|
|
7229
|
-
/*! @azure/msal-common v16.0.
|
|
7264
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
7230
7265
|
/*
|
|
7231
7266
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
7232
7267
|
* Licensed under the MIT License.
|
|
@@ -7234,7 +7269,7 @@ function createJoseHeaderError(code) {
|
|
|
7234
7269
|
const missingKidError = "missing_kid_error";
|
|
7235
7270
|
const missingAlgError = "missing_alg_error";
|
|
7236
7271
|
|
|
7237
|
-
/*! @azure/msal-common v16.0.
|
|
7272
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
7238
7273
|
|
|
7239
7274
|
/*
|
|
7240
7275
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7274,7 +7309,7 @@ class JoseHeader {
|
|
|
7274
7309
|
}
|
|
7275
7310
|
}
|
|
7276
7311
|
|
|
7277
|
-
/*! @azure/msal-common v16.0.
|
|
7312
|
+
/*! @azure/msal-common v16.0.4 2026-02-10 */
|
|
7278
7313
|
|
|
7279
7314
|
/*
|
|
7280
7315
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7973,6 +8008,7 @@ const InMemoryCacheKeys = {
|
|
|
7973
8008
|
* Before adding a new code you must claim it in the MSAL Telemetry tracker as these number spaces are shared across all MSALs
|
|
7974
8009
|
* 0-99 Silent Flow
|
|
7975
8010
|
* 800-899 Auth Code Flow
|
|
8011
|
+
* 900-999 Misc
|
|
7976
8012
|
*/
|
|
7977
8013
|
const ApiId = {
|
|
7978
8014
|
acquireTokenRedirect: 861,
|
|
@@ -7984,6 +8020,30 @@ const ApiId = {
|
|
|
7984
8020
|
acquireTokenSilent_silentFlow: 61,
|
|
7985
8021
|
logout: 961,
|
|
7986
8022
|
logoutPopup: 962,
|
|
8023
|
+
hydrateCache: 963,
|
|
8024
|
+
loadExternalTokens: 964,
|
|
8025
|
+
};
|
|
8026
|
+
/**
|
|
8027
|
+
* API Names for Telemetry purposes.
|
|
8028
|
+
*/
|
|
8029
|
+
const ApiName = {
|
|
8030
|
+
861: "acquireTokenRedirect",
|
|
8031
|
+
862: "acquireTokenPopup",
|
|
8032
|
+
863: "ssoSilent",
|
|
8033
|
+
864: "acquireTokenSilent_authCode",
|
|
8034
|
+
865: "handleRedirectPromise",
|
|
8035
|
+
866: "acquireTokenByCode",
|
|
8036
|
+
61: "acquireTokenSilent_silentFlow",
|
|
8037
|
+
961: "logout",
|
|
8038
|
+
962: "logoutPopup",
|
|
8039
|
+
963: "hydrateCache",
|
|
8040
|
+
964: "loadExternalTokens",
|
|
8041
|
+
};
|
|
8042
|
+
const apiIdToName = (id) => {
|
|
8043
|
+
if (typeof id === "number" && id in ApiName) {
|
|
8044
|
+
return ApiName[id];
|
|
8045
|
+
}
|
|
8046
|
+
return "unknown";
|
|
7987
8047
|
};
|
|
7988
8048
|
/*
|
|
7989
8049
|
* Interaction type of the API - used for state and telemetry
|
|
@@ -10075,7 +10135,7 @@ const EventType = {
|
|
|
10075
10135
|
|
|
10076
10136
|
/* eslint-disable header/header */
|
|
10077
10137
|
const name = "@azure/msal-browser";
|
|
10078
|
-
const version = "5.0
|
|
10138
|
+
const version = "5.2.0";
|
|
10079
10139
|
|
|
10080
10140
|
/*
|
|
10081
10141
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -10647,17 +10707,22 @@ class BrowserCacheManager extends CacheManager {
|
|
|
10647
10707
|
!isAccountEntity(parsedAccount)) {
|
|
10648
10708
|
return null;
|
|
10649
10709
|
}
|
|
10650
|
-
|
|
10710
|
+
const account = CacheManager.toObject({}, parsedAccount);
|
|
10711
|
+
this.performanceClient.addFields({
|
|
10712
|
+
accountCachedBy: apiIdToName(account.cachedByApiId),
|
|
10713
|
+
}, correlationId);
|
|
10714
|
+
return account;
|
|
10651
10715
|
}
|
|
10652
10716
|
/**
|
|
10653
10717
|
* set account entity in the platform cache
|
|
10654
10718
|
* @param account
|
|
10655
10719
|
*/
|
|
10656
|
-
async setAccount(account, correlationId, kmsi) {
|
|
10720
|
+
async setAccount(account, correlationId, kmsi, apiId) {
|
|
10657
10721
|
this.logger.trace("1bz3wr", correlationId);
|
|
10658
10722
|
const key = this.generateAccountKey(getAccountInfo(account));
|
|
10659
10723
|
const timestamp = Date.now().toString();
|
|
10660
10724
|
account.lastUpdatedAt = timestamp;
|
|
10725
|
+
account.cachedByApiId = apiId;
|
|
10661
10726
|
await this.setUserData(key, JSON.stringify(account), correlationId, timestamp, kmsi);
|
|
10662
10727
|
this.addAccountKeyToMap(key, correlationId);
|
|
10663
10728
|
this.performanceClient.addFields({ kmsi: kmsi }, correlationId);
|
|
@@ -11083,7 +11148,7 @@ class BrowserCacheManager extends CacheManager {
|
|
|
11083
11148
|
this.logger.verbose("1bp5z5", correlationId);
|
|
11084
11149
|
this.browserStorage.removeItem(activeAccountKey);
|
|
11085
11150
|
}
|
|
11086
|
-
this.eventHandler.emitEvent(EventType.ACTIVE_ACCOUNT_CHANGED);
|
|
11151
|
+
this.eventHandler.emitEvent(EventType.ACTIVE_ACCOUNT_CHANGED, correlationId);
|
|
11087
11152
|
}
|
|
11088
11153
|
/**
|
|
11089
11154
|
* fetch throttling entity from the platform cache
|
|
@@ -11368,7 +11433,7 @@ class BrowserCacheManager extends CacheManager {
|
|
|
11368
11433
|
* @param request
|
|
11369
11434
|
*/
|
|
11370
11435
|
async hydrateCache(result, request) {
|
|
11371
|
-
const idTokenEntity = createIdTokenEntity(result.account
|
|
11436
|
+
const idTokenEntity = createIdTokenEntity(result.account.homeAccountId, result.account.environment, result.idToken, this.clientId, result.tenantId);
|
|
11372
11437
|
/**
|
|
11373
11438
|
* meta data for cache stores time in seconds from epoch
|
|
11374
11439
|
* AuthenticationResult returns expiresOn and extExpiresOn in milliseconds (as a Date object which is in ms)
|
|
@@ -11376,7 +11441,7 @@ class BrowserCacheManager extends CacheManager {
|
|
|
11376
11441
|
*
|
|
11377
11442
|
* The next MSAL VFuture should map these both to same value if possible
|
|
11378
11443
|
*/
|
|
11379
|
-
const accessTokenEntity = createAccessTokenEntity(result.account
|
|
11444
|
+
const accessTokenEntity = createAccessTokenEntity(result.account.homeAccountId, result.account.environment, result.accessToken, this.clientId, result.tenantId, result.scopes.join(" "),
|
|
11380
11445
|
// Access token expiresOn stored in seconds, converting from AuthenticationResult expiresOn stored as Date
|
|
11381
11446
|
result.expiresOn
|
|
11382
11447
|
? toSecondsFromDate(result.expiresOn)
|
|
@@ -11389,7 +11454,7 @@ class BrowserCacheManager extends CacheManager {
|
|
|
11389
11454
|
idToken: idTokenEntity,
|
|
11390
11455
|
accessToken: accessTokenEntity,
|
|
11391
11456
|
};
|
|
11392
|
-
return this.saveCacheRecord(cacheRecord, result.correlationId, isKmsi(extractTokenClaims(result.idToken, base64Decode)));
|
|
11457
|
+
return this.saveCacheRecord(cacheRecord, result.correlationId, isKmsi(extractTokenClaims(result.idToken, base64Decode)), ApiId.hydrateCache);
|
|
11393
11458
|
}
|
|
11394
11459
|
/**
|
|
11395
11460
|
* saves a cache record
|
|
@@ -11397,9 +11462,9 @@ class BrowserCacheManager extends CacheManager {
|
|
|
11397
11462
|
* @param storeInCache {?StoreInCache}
|
|
11398
11463
|
* @param correlationId {?string} correlation id
|
|
11399
11464
|
*/
|
|
11400
|
-
async saveCacheRecord(cacheRecord, correlationId, kmsi, storeInCache) {
|
|
11465
|
+
async saveCacheRecord(cacheRecord, correlationId, kmsi, apiId, storeInCache) {
|
|
11401
11466
|
try {
|
|
11402
|
-
await super.saveCacheRecord(cacheRecord, correlationId, kmsi, storeInCache);
|
|
11467
|
+
await super.saveCacheRecord(cacheRecord, correlationId, kmsi, apiId, storeInCache);
|
|
11403
11468
|
}
|
|
11404
11469
|
catch (e) {
|
|
11405
11470
|
if (e instanceof CacheError &&
|
|
@@ -11546,12 +11611,13 @@ class EventHandler {
|
|
|
11546
11611
|
* @param payload
|
|
11547
11612
|
* @param error
|
|
11548
11613
|
*/
|
|
11549
|
-
emitEvent(eventType, interactionType, payload, error) {
|
|
11614
|
+
emitEvent(eventType, correlationId, interactionType, payload, error) {
|
|
11550
11615
|
const message = {
|
|
11551
11616
|
eventType: eventType,
|
|
11552
11617
|
interactionType: interactionType || null,
|
|
11553
11618
|
payload: payload || null,
|
|
11554
11619
|
error: error || null,
|
|
11620
|
+
correlationId: correlationId,
|
|
11555
11621
|
timestamp: Date.now(),
|
|
11556
11622
|
};
|
|
11557
11623
|
switch (eventType) {
|
|
@@ -12083,7 +12149,7 @@ class InteractionHandler {
|
|
|
12083
12149
|
* Function to handle response parameters from hash.
|
|
12084
12150
|
* @param locationHash
|
|
12085
12151
|
*/
|
|
12086
|
-
async handleCodeResponse(response, request) {
|
|
12152
|
+
async handleCodeResponse(response, request, apiId) {
|
|
12087
12153
|
let authCodeResponse;
|
|
12088
12154
|
try {
|
|
12089
12155
|
authCodeResponse = getAuthorizationCodePayload(response, request.state);
|
|
@@ -12098,7 +12164,7 @@ class InteractionHandler {
|
|
|
12098
12164
|
throw e;
|
|
12099
12165
|
}
|
|
12100
12166
|
}
|
|
12101
|
-
return invokeAsync(this.handleCodeResponseFromServer.bind(this), HandleCodeResponseFromServer, this.logger, this.performanceClient, request.correlationId)(authCodeResponse, request);
|
|
12167
|
+
return invokeAsync(this.handleCodeResponseFromServer.bind(this), HandleCodeResponseFromServer, this.logger, this.performanceClient, request.correlationId)(authCodeResponse, request, apiId);
|
|
12102
12168
|
}
|
|
12103
12169
|
/**
|
|
12104
12170
|
* Process auth code response from AAD
|
|
@@ -12107,7 +12173,7 @@ class InteractionHandler {
|
|
|
12107
12173
|
* @param validateNonce
|
|
12108
12174
|
* @returns
|
|
12109
12175
|
*/
|
|
12110
|
-
async handleCodeResponseFromServer(authCodeResponse, request, validateNonce = true) {
|
|
12176
|
+
async handleCodeResponseFromServer(authCodeResponse, request, apiId, validateNonce = true) {
|
|
12111
12177
|
this.logger.trace("0mf2hb", request.correlationId);
|
|
12112
12178
|
// Assign code to request
|
|
12113
12179
|
this.authCodeRequest.code = authCodeResponse.code;
|
|
@@ -12128,7 +12194,7 @@ class InteractionHandler {
|
|
|
12128
12194
|
}
|
|
12129
12195
|
}
|
|
12130
12196
|
// Acquire token with retrieved code.
|
|
12131
|
-
const tokenResponse = (await invokeAsync(this.authModule.acquireToken.bind(this.authModule), AuthClientAcquireToken, this.logger, this.performanceClient, request.correlationId)(this.authCodeRequest, authCodeResponse));
|
|
12197
|
+
const tokenResponse = (await invokeAsync(this.authModule.acquireToken.bind(this.authModule), AuthClientAcquireToken, this.logger, this.performanceClient, request.correlationId)(this.authCodeRequest, apiId, authCodeResponse));
|
|
12132
12198
|
return tokenResponse;
|
|
12133
12199
|
}
|
|
12134
12200
|
/**
|
|
@@ -12662,7 +12728,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12662
12728
|
*/
|
|
12663
12729
|
async cacheAccount(accountEntity, kmsi) {
|
|
12664
12730
|
// Store the account info and hence `nativeAccountId` in browser cache
|
|
12665
|
-
await this.browserStorage.setAccount(accountEntity, this.correlationId, kmsi);
|
|
12731
|
+
await this.browserStorage.setAccount(accountEntity, this.correlationId, kmsi, this.apiId);
|
|
12666
12732
|
// Remove any existing cached tokens for this account in browser storage
|
|
12667
12733
|
this.browserStorage.removeAccountContext(getAccountInfo(accountEntity), this.correlationId);
|
|
12668
12734
|
}
|
|
@@ -12691,7 +12757,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12691
12757
|
idToken: cachedIdToken,
|
|
12692
12758
|
accessToken: cachedAccessToken,
|
|
12693
12759
|
};
|
|
12694
|
-
return this.nativeStorageManager.saveCacheRecord(nativeCacheRecord, this.correlationId, isKmsi(idTokenClaims), request.storeInCache);
|
|
12760
|
+
return this.nativeStorageManager.saveCacheRecord(nativeCacheRecord, this.correlationId, isKmsi(idTokenClaims), this.apiId, request.storeInCache);
|
|
12695
12761
|
}
|
|
12696
12762
|
getExpiresInValue(tokenType, expiresIn) {
|
|
12697
12763
|
return tokenType === AuthenticationScheme$1.POP
|
|
@@ -12976,6 +13042,8 @@ async function getEARForm(frame, config, authority, request, logger, performance
|
|
|
12976
13042
|
});
|
|
12977
13043
|
const queryParams = new Map();
|
|
12978
13044
|
addExtraParameters(queryParams, request.extraQueryParameters || {});
|
|
13045
|
+
// Add correlationId to query params so gateway can propagate it to IDPs
|
|
13046
|
+
addCorrelationId(queryParams, request.correlationId);
|
|
12979
13047
|
const url = getAuthorizeUrl(authority, queryParams);
|
|
12980
13048
|
return createForm(frame, url, parameters);
|
|
12981
13049
|
}
|
|
@@ -12993,6 +13061,8 @@ async function getCodeForm(frame, config, authority, request, logger, performanc
|
|
|
12993
13061
|
// Add extraQueryParameters to be appended to request URL
|
|
12994
13062
|
const queryParams = new Map();
|
|
12995
13063
|
addExtraParameters(queryParams, request.extraQueryParameters || {});
|
|
13064
|
+
// Add correlationId to query params so gateway can propagate it to IDPs
|
|
13065
|
+
addCorrelationId(queryParams, request.correlationId);
|
|
12996
13066
|
const url = getAuthorizeUrl(authority, queryParams);
|
|
12997
13067
|
return createForm(frame, url, parameters);
|
|
12998
13068
|
}
|
|
@@ -13070,7 +13140,7 @@ async function handleResponseCode(request, response, codeVerifier, apiId, config
|
|
|
13070
13140
|
// Create popup interaction handler.
|
|
13071
13141
|
const interactionHandler = new InteractionHandler(authClient, browserStorage, authCodeRequest, logger, performanceClient);
|
|
13072
13142
|
// Handle response from hash string.
|
|
13073
|
-
const result = await invokeAsync(interactionHandler.handleCodeResponse.bind(interactionHandler), HandleCodeResponse, logger, performanceClient, request.correlationId)(response, request);
|
|
13143
|
+
const result = await invokeAsync(interactionHandler.handleCodeResponse.bind(interactionHandler), HandleCodeResponse, logger, performanceClient, request.correlationId)(response, request, apiId);
|
|
13074
13144
|
return result;
|
|
13075
13145
|
}
|
|
13076
13146
|
/**
|
|
@@ -13117,7 +13187,7 @@ async function handleResponseEAR(request, response, apiId, config, authority, br
|
|
|
13117
13187
|
cloud_instance_name: decryptedData.cloud_instance_name,
|
|
13118
13188
|
msgraph_host: decryptedData.msgraph_host,
|
|
13119
13189
|
};
|
|
13120
|
-
return (await invokeAsync(responseHandler.handleServerTokenResponse.bind(responseHandler), HandleServerTokenResponse, logger, performanceClient, request.correlationId)(decryptedData, authority, nowSeconds(), request, additionalData, undefined, undefined, undefined, undefined));
|
|
13190
|
+
return (await invokeAsync(responseHandler.handleServerTokenResponse.bind(responseHandler), HandleServerTokenResponse, logger, performanceClient, request.correlationId)(decryptedData, authority, nowSeconds(), request, apiId, additionalData, undefined, undefined, undefined, undefined));
|
|
13121
13191
|
}
|
|
13122
13192
|
|
|
13123
13193
|
/*
|
|
@@ -14080,7 +14150,7 @@ class PopupClient extends StandardInteractionClient {
|
|
|
14080
14150
|
const navigateUrl = await invokeAsync(getAuthCodeRequestUrl, GetAuthCodeUrl, this.logger, this.performanceClient, correlationId)(this.config, authClient.authority, popupRequest, this.logger, this.performanceClient);
|
|
14081
14151
|
// Show the UI once the url has been created. Get the window handle for the popup.
|
|
14082
14152
|
const popupWindow = this.initiateAuthRequest(navigateUrl, popupParams);
|
|
14083
|
-
this.eventHandler.emitEvent(EventType.POPUP_OPENED, exports.InteractionType.Popup, { popupWindow }, null);
|
|
14153
|
+
this.eventHandler.emitEvent(EventType.POPUP_OPENED, correlationId, exports.InteractionType.Popup, { popupWindow }, null);
|
|
14084
14154
|
// Wait for the redirect bridge response
|
|
14085
14155
|
const responseString = await waitForBridgeResponse(this.config.system.popupBridgeTimeout, this.logger, this.browserCrypto, request);
|
|
14086
14156
|
const serverParams = invoke(deserializeResponse, DeserializeResponse, this.logger, this.performanceClient, this.correlationId)(responseString, this.config.auth.OIDCOptions.responseMode, this.logger, this.correlationId);
|
|
@@ -14157,7 +14227,7 @@ class PopupClient extends StandardInteractionClient {
|
|
|
14157
14227
|
*/
|
|
14158
14228
|
async logoutPopupAsync(validRequest, popupParams, requestAuthority, mainWindowRedirectUri) {
|
|
14159
14229
|
this.logger.verbose("0b7yrk", this.correlationId);
|
|
14160
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_START, exports.InteractionType.Popup, validRequest);
|
|
14230
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_START, this.correlationId, exports.InteractionType.Popup, validRequest);
|
|
14161
14231
|
const serverTelemetryManager = initializeServerTelemetryManager(ApiId.logoutPopup, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
|
|
14162
14232
|
try {
|
|
14163
14233
|
// Clear cache on logout
|
|
@@ -14175,7 +14245,7 @@ class PopupClient extends StandardInteractionClient {
|
|
|
14175
14245
|
if (validRequest.account?.homeAccountId &&
|
|
14176
14246
|
validRequest.postLogoutRedirectUri &&
|
|
14177
14247
|
authClient.authority.protocolMode === ProtocolMode.OIDC) {
|
|
14178
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, exports.InteractionType.Popup, validRequest);
|
|
14248
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, validRequest.correlationId, exports.InteractionType.Popup, validRequest);
|
|
14179
14249
|
if (mainWindowRedirectUri) {
|
|
14180
14250
|
const navigationOptions = {
|
|
14181
14251
|
apiId: ApiId.logoutPopup,
|
|
@@ -14191,10 +14261,10 @@ class PopupClient extends StandardInteractionClient {
|
|
|
14191
14261
|
}
|
|
14192
14262
|
// Create logout string and navigate user window to logout.
|
|
14193
14263
|
const logoutUri = authClient.getLogoutUri(validRequest);
|
|
14194
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, exports.InteractionType.Popup, validRequest);
|
|
14264
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, validRequest.correlationId, exports.InteractionType.Popup, validRequest);
|
|
14195
14265
|
// Open the popup window to requestUrl.
|
|
14196
14266
|
const popupWindow = this.openPopup(logoutUri, popupParams);
|
|
14197
|
-
this.eventHandler.emitEvent(EventType.POPUP_OPENED, exports.InteractionType.Popup, { popupWindow }, null);
|
|
14267
|
+
this.eventHandler.emitEvent(EventType.POPUP_OPENED, validRequest.correlationId, exports.InteractionType.Popup, { popupWindow }, null);
|
|
14198
14268
|
await waitForBridgeResponse(this.config.system.popupBridgeTimeout, this.logger, this.browserCrypto, validRequest).catch(() => {
|
|
14199
14269
|
// Swallow any errors related to monitoring the window. Server logout is best effort
|
|
14200
14270
|
});
|
|
@@ -14220,11 +14290,11 @@ class PopupClient extends StandardInteractionClient {
|
|
|
14220
14290
|
e.setCorrelationId(this.correlationId);
|
|
14221
14291
|
serverTelemetryManager.cacheFailedRequest(e);
|
|
14222
14292
|
}
|
|
14223
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_FAILURE, exports.InteractionType.Popup, null, e);
|
|
14224
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_END, exports.InteractionType.Popup);
|
|
14293
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_FAILURE, this.correlationId, exports.InteractionType.Popup, null, e);
|
|
14294
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_END, this.correlationId, exports.InteractionType.Popup);
|
|
14225
14295
|
throw e;
|
|
14226
14296
|
}
|
|
14227
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_END, exports.InteractionType.Popup);
|
|
14297
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_END, this.correlationId, exports.InteractionType.Popup);
|
|
14228
14298
|
}
|
|
14229
14299
|
/**
|
|
14230
14300
|
* Opens a popup window with given request Url.
|
|
@@ -14387,7 +14457,7 @@ class RedirectClient extends StandardInteractionClient {
|
|
|
14387
14457
|
if (event.persisted) {
|
|
14388
14458
|
this.logger.verbose("0udvtt", this.correlationId);
|
|
14389
14459
|
this.browserStorage.resetRequestCache(this.correlationId);
|
|
14390
|
-
this.eventHandler.emitEvent(EventType.RESTORE_FROM_BFCACHE, exports.InteractionType.Redirect);
|
|
14460
|
+
this.eventHandler.emitEvent(EventType.RESTORE_FROM_BFCACHE, this.correlationId, exports.InteractionType.Redirect);
|
|
14391
14461
|
}
|
|
14392
14462
|
};
|
|
14393
14463
|
const redirectStartPage = this.getRedirectStartPage(request.redirectStartPage);
|
|
@@ -14704,7 +14774,7 @@ class RedirectClient extends StandardInteractionClient {
|
|
|
14704
14774
|
const validLogoutRequest = this.initializeLogoutRequest(logoutRequest);
|
|
14705
14775
|
const serverTelemetryManager = initializeServerTelemetryManager(ApiId.logout, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
|
|
14706
14776
|
try {
|
|
14707
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_START, exports.InteractionType.Redirect, logoutRequest);
|
|
14777
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_START, this.correlationId, exports.InteractionType.Redirect, logoutRequest);
|
|
14708
14778
|
// Clear cache on logout
|
|
14709
14779
|
await clearCacheOnLogout(this.browserStorage, this.browserCrypto, this.logger, this.correlationId, validLogoutRequest.account);
|
|
14710
14780
|
const navigationOptions = {
|
|
@@ -14724,7 +14794,7 @@ class RedirectClient extends StandardInteractionClient {
|
|
|
14724
14794
|
}
|
|
14725
14795
|
catch {
|
|
14726
14796
|
if (validLogoutRequest.account?.homeAccountId) {
|
|
14727
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, exports.InteractionType.Redirect, validLogoutRequest);
|
|
14797
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, this.correlationId, exports.InteractionType.Redirect, validLogoutRequest);
|
|
14728
14798
|
return;
|
|
14729
14799
|
}
|
|
14730
14800
|
}
|
|
@@ -14732,7 +14802,7 @@ class RedirectClient extends StandardInteractionClient {
|
|
|
14732
14802
|
// Create logout string and navigate user window to logout.
|
|
14733
14803
|
const logoutUri = authClient.getLogoutUri(validLogoutRequest);
|
|
14734
14804
|
if (validLogoutRequest.account?.homeAccountId) {
|
|
14735
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, exports.InteractionType.Redirect, validLogoutRequest);
|
|
14805
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, this.correlationId, exports.InteractionType.Redirect, validLogoutRequest);
|
|
14736
14806
|
}
|
|
14737
14807
|
// Check if onRedirectNavigate is implemented, and invoke it if so
|
|
14738
14808
|
const onRedirectNavigate = this.config.auth.onRedirectNavigate;
|
|
@@ -14767,11 +14837,11 @@ class RedirectClient extends StandardInteractionClient {
|
|
|
14767
14837
|
e.setCorrelationId(this.correlationId);
|
|
14768
14838
|
serverTelemetryManager.cacheFailedRequest(e);
|
|
14769
14839
|
}
|
|
14770
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_FAILURE, exports.InteractionType.Redirect, null, e);
|
|
14771
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_END, exports.InteractionType.Redirect);
|
|
14840
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_FAILURE, this.correlationId, exports.InteractionType.Redirect, null, e);
|
|
14841
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_END, this.correlationId, exports.InteractionType.Redirect);
|
|
14772
14842
|
throw e;
|
|
14773
14843
|
}
|
|
14774
|
-
this.eventHandler.emitEvent(EventType.LOGOUT_END, exports.InteractionType.Redirect);
|
|
14844
|
+
this.eventHandler.emitEvent(EventType.LOGOUT_END, this.correlationId, exports.InteractionType.Redirect);
|
|
14775
14845
|
}
|
|
14776
14846
|
/**
|
|
14777
14847
|
* Use to get the redirectStartPage either from request or use current window
|
|
@@ -15025,7 +15095,7 @@ class SilentRefreshClient extends StandardInteractionClient {
|
|
|
15025
15095
|
account: silentRequest.account,
|
|
15026
15096
|
});
|
|
15027
15097
|
// Send request to renew token. Auth module will throw errors if token cannot be renewed.
|
|
15028
|
-
return invokeAsync(refreshTokenClient.acquireTokenByRefreshToken.bind(refreshTokenClient), RefreshTokenClientAcquireTokenByRefreshToken, this.logger, this.performanceClient, request.correlationId)(silentRequest).catch((e) => {
|
|
15098
|
+
return invokeAsync(refreshTokenClient.acquireTokenByRefreshToken.bind(refreshTokenClient), RefreshTokenClientAcquireTokenByRefreshToken, this.logger, this.performanceClient, request.correlationId)(silentRequest, ApiId.acquireTokenSilent_silentFlow).catch((e) => {
|
|
15029
15099
|
e.setCorrelationId(this.correlationId);
|
|
15030
15100
|
serverTelemetryManager.cacheFailedRequest(e);
|
|
15031
15101
|
throw e;
|
|
@@ -15122,7 +15192,7 @@ class SilentAuthCodeClient extends StandardInteractionClient {
|
|
|
15122
15192
|
msgraph_host: request.msGraphHost,
|
|
15123
15193
|
cloud_graph_host_name: request.cloudGraphHostName,
|
|
15124
15194
|
cloud_instance_host_name: request.cloudInstanceHostName,
|
|
15125
|
-
}, silentRequest, false);
|
|
15195
|
+
}, silentRequest, this.apiId, false);
|
|
15126
15196
|
}
|
|
15127
15197
|
catch (e) {
|
|
15128
15198
|
if (e instanceof AuthError) {
|
|
@@ -15262,23 +15332,22 @@ class StandardController {
|
|
|
15262
15332
|
if (!this.isBrowserEnvironment) {
|
|
15263
15333
|
this.logger.info("19fvpi", correlationId);
|
|
15264
15334
|
this.initialized = true;
|
|
15265
|
-
this.eventHandler.emitEvent(EventType.INITIALIZE_END);
|
|
15335
|
+
this.eventHandler.emitEvent(EventType.INITIALIZE_END, correlationId);
|
|
15266
15336
|
return;
|
|
15267
15337
|
}
|
|
15268
|
-
const initCorrelationId = request?.correlationId || this.getRequestCorrelationId();
|
|
15269
15338
|
const allowPlatformBroker = this.config.system.allowPlatformBroker;
|
|
15270
|
-
const initMeasurement = this.performanceClient.startMeasurement(InitializeClientApplication,
|
|
15271
|
-
this.eventHandler.emitEvent(EventType.INITIALIZE_START);
|
|
15339
|
+
const initMeasurement = this.performanceClient.startMeasurement(InitializeClientApplication, correlationId);
|
|
15340
|
+
this.eventHandler.emitEvent(EventType.INITIALIZE_START, correlationId);
|
|
15272
15341
|
// Broker applications are initialized twice, so we avoid double-counting it
|
|
15273
|
-
this.logMultipleInstances(initMeasurement,
|
|
15274
|
-
await invokeAsync(this.browserStorage.initialize.bind(this.browserStorage), InitializeCache, this.logger, this.performanceClient,
|
|
15342
|
+
this.logMultipleInstances(initMeasurement, correlationId);
|
|
15343
|
+
await invokeAsync(this.browserStorage.initialize.bind(this.browserStorage), InitializeCache, this.logger, this.performanceClient, correlationId)(correlationId);
|
|
15275
15344
|
if (allowPlatformBroker) {
|
|
15276
15345
|
try {
|
|
15277
15346
|
// check if platform authentication is available via DOM or browser extension and create relevant handlers
|
|
15278
|
-
this.platformAuthProvider = await getPlatformAuthProvider(this.logger, this.performanceClient,
|
|
15347
|
+
this.platformAuthProvider = await getPlatformAuthProvider(this.logger, this.performanceClient, correlationId, this.config.system.nativeBrokerHandshakeTimeout);
|
|
15279
15348
|
}
|
|
15280
15349
|
catch (e) {
|
|
15281
|
-
this.logger.verbose(e,
|
|
15350
|
+
this.logger.verbose(e, correlationId);
|
|
15282
15351
|
}
|
|
15283
15352
|
}
|
|
15284
15353
|
if (this.config.cache.cacheLocation ===
|
|
@@ -15286,9 +15355,9 @@ class StandardController {
|
|
|
15286
15355
|
this.eventHandler.subscribeCrossTab();
|
|
15287
15356
|
}
|
|
15288
15357
|
!this.config.system.navigatePopups &&
|
|
15289
|
-
(await this.preGeneratePkceCodes(
|
|
15358
|
+
(await this.preGeneratePkceCodes(correlationId));
|
|
15290
15359
|
this.initialized = true;
|
|
15291
|
-
this.eventHandler.emitEvent(EventType.INITIALIZE_END);
|
|
15360
|
+
this.eventHandler.emitEvent(EventType.INITIALIZE_END, correlationId);
|
|
15292
15361
|
initMeasurement.end({
|
|
15293
15362
|
allowPlatformBroker: allowPlatformBroker,
|
|
15294
15363
|
success: true,
|
|
@@ -15350,11 +15419,11 @@ class StandardController {
|
|
|
15350
15419
|
this.platformAuthProvider &&
|
|
15351
15420
|
!options?.hash;
|
|
15352
15421
|
let rootMeasurement;
|
|
15353
|
-
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, exports.InteractionType.Redirect);
|
|
15354
15422
|
let redirectResponse;
|
|
15355
15423
|
try {
|
|
15356
15424
|
if (useNative && this.platformAuthProvider) {
|
|
15357
15425
|
const correlationId = platformBrokerRequest?.correlationId || "";
|
|
15426
|
+
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, exports.InteractionType.Redirect);
|
|
15358
15427
|
rootMeasurement = this.performanceClient.startMeasurement(AcquireTokenRedirect, correlationId);
|
|
15359
15428
|
this.logger.trace("12v7is", correlationId);
|
|
15360
15429
|
const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.handleRedirectPromise, this.performanceClient, this.platformAuthProvider, platformBrokerRequest.accountId, this.nativeInternalStorage, platformBrokerRequest.correlationId);
|
|
@@ -15363,6 +15432,7 @@ class StandardController {
|
|
|
15363
15432
|
else {
|
|
15364
15433
|
const [standardRequest, codeVerifier] = this.browserStorage.getCachedRequest("");
|
|
15365
15434
|
const correlationId = standardRequest.correlationId;
|
|
15435
|
+
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, exports.InteractionType.Redirect);
|
|
15366
15436
|
// Reset rootMeasurement now that we have correlationId
|
|
15367
15437
|
rootMeasurement = this.performanceClient.startMeasurement(AcquireTokenRedirect, correlationId);
|
|
15368
15438
|
this.logger.trace("0znzs5", correlationId);
|
|
@@ -15378,12 +15448,12 @@ class StandardController {
|
|
|
15378
15448
|
.then((result) => {
|
|
15379
15449
|
if (result) {
|
|
15380
15450
|
this.browserStorage.resetRequestCache(result.correlationId);
|
|
15381
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Redirect, result);
|
|
15451
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, result.correlationId, exports.InteractionType.Redirect, result);
|
|
15382
15452
|
this.logger.verbose("0ui8f5", result.correlationId);
|
|
15383
15453
|
// Emit login event if number of accounts change
|
|
15384
15454
|
const isLoggingIn = loggedInAccounts.length < this.getAllAccounts().length;
|
|
15385
15455
|
if (isLoggingIn) {
|
|
15386
|
-
this.eventHandler.emitEvent(EventType.LOGIN_SUCCESS, exports.InteractionType.Redirect, result.account);
|
|
15456
|
+
this.eventHandler.emitEvent(EventType.LOGIN_SUCCESS, result.correlationId, exports.InteractionType.Redirect, result.account);
|
|
15387
15457
|
this.logger.verbose("16im3l", result.correlationId);
|
|
15388
15458
|
}
|
|
15389
15459
|
rootMeasurement.end({
|
|
@@ -15402,14 +15472,14 @@ class StandardController {
|
|
|
15402
15472
|
rootMeasurement.discard();
|
|
15403
15473
|
}
|
|
15404
15474
|
}
|
|
15405
|
-
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_END, exports.InteractionType.Redirect);
|
|
15475
|
+
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_END, rootMeasurement.event.correlationId, exports.InteractionType.Redirect);
|
|
15406
15476
|
return result;
|
|
15407
15477
|
})
|
|
15408
15478
|
.catch((e) => {
|
|
15409
15479
|
this.browserStorage.resetRequestCache(rootMeasurement.event.correlationId);
|
|
15410
15480
|
const eventError = e;
|
|
15411
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Redirect, null, eventError);
|
|
15412
|
-
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_END, exports.InteractionType.Redirect);
|
|
15481
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, rootMeasurement.event.correlationId, exports.InteractionType.Redirect, null, eventError);
|
|
15482
|
+
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_END, rootMeasurement.event.correlationId, exports.InteractionType.Redirect);
|
|
15413
15483
|
rootMeasurement.end({
|
|
15414
15484
|
success: false,
|
|
15415
15485
|
}, eventError);
|
|
@@ -15448,7 +15518,7 @@ class StandardController {
|
|
|
15448
15518
|
try {
|
|
15449
15519
|
redirectPreflightCheck(this.initialized, this.config);
|
|
15450
15520
|
this.browserStorage.setInteractionInProgress(true, INTERACTION_TYPE.SIGNIN);
|
|
15451
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, exports.InteractionType.Redirect, request);
|
|
15521
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Redirect, request);
|
|
15452
15522
|
let result;
|
|
15453
15523
|
if (this.platformAuthProvider &&
|
|
15454
15524
|
this.canUsePlatformBroker(request)) {
|
|
@@ -15490,7 +15560,7 @@ class StandardController {
|
|
|
15490
15560
|
else {
|
|
15491
15561
|
atrMeasurement.end({ success: false }, e, request.account);
|
|
15492
15562
|
}
|
|
15493
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Redirect, null, e);
|
|
15563
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, correlationId, exports.InteractionType.Redirect, null, e);
|
|
15494
15564
|
throw e;
|
|
15495
15565
|
}
|
|
15496
15566
|
}
|
|
@@ -15520,7 +15590,7 @@ class StandardController {
|
|
|
15520
15590
|
}
|
|
15521
15591
|
// If logged in, emit acquire token events
|
|
15522
15592
|
const loggedInAccounts = this.getAllAccounts();
|
|
15523
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, exports.InteractionType.Popup, request);
|
|
15593
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Popup, request);
|
|
15524
15594
|
let result;
|
|
15525
15595
|
const pkce = this.getPreGeneratedPkceCodes(correlationId);
|
|
15526
15596
|
if (this.canUsePlatformBroker(request)) {
|
|
@@ -15560,9 +15630,9 @@ class StandardController {
|
|
|
15560
15630
|
* If logged in, emit acquire token events
|
|
15561
15631
|
*/
|
|
15562
15632
|
const isLoggingIn = loggedInAccounts.length < this.getAllAccounts().length;
|
|
15563
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Popup, result);
|
|
15633
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, correlationId, exports.InteractionType.Popup, result);
|
|
15564
15634
|
if (isLoggingIn) {
|
|
15565
|
-
this.eventHandler.emitEvent(EventType.LOGIN_SUCCESS, exports.InteractionType.Popup, result.account);
|
|
15635
|
+
this.eventHandler.emitEvent(EventType.LOGIN_SUCCESS, correlationId, exports.InteractionType.Popup, result.account);
|
|
15566
15636
|
}
|
|
15567
15637
|
atPopupMeasurement.end({
|
|
15568
15638
|
success: true,
|
|
@@ -15572,7 +15642,7 @@ class StandardController {
|
|
|
15572
15642
|
return result;
|
|
15573
15643
|
})
|
|
15574
15644
|
.catch((e) => {
|
|
15575
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Popup, null, e);
|
|
15645
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, correlationId, exports.InteractionType.Popup, null, e);
|
|
15576
15646
|
atPopupMeasurement.end({
|
|
15577
15647
|
success: false,
|
|
15578
15648
|
}, e, request.account);
|
|
@@ -15632,7 +15702,7 @@ class StandardController {
|
|
|
15632
15702
|
document.addEventListener("visibilitychange", this.trackPageVisibilityWithMeasurement);
|
|
15633
15703
|
const loggedInAccounts = this.getAllAccounts();
|
|
15634
15704
|
this.logger.verbose("0w1b45", correlationId);
|
|
15635
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, exports.InteractionType.Silent, validRequest);
|
|
15705
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Silent, validRequest);
|
|
15636
15706
|
let result;
|
|
15637
15707
|
if (this.canUsePlatformBroker(validRequest)) {
|
|
15638
15708
|
result = this.acquireTokenNative(validRequest, ApiId.ssoSilent).catch((e) => {
|
|
@@ -15652,9 +15722,9 @@ class StandardController {
|
|
|
15652
15722
|
return result
|
|
15653
15723
|
.then((response) => {
|
|
15654
15724
|
const isLoggingIn = loggedInAccounts.length < this.getAllAccounts().length;
|
|
15655
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Silent, response);
|
|
15725
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, correlationId, exports.InteractionType.Silent, response);
|
|
15656
15726
|
if (isLoggingIn) {
|
|
15657
|
-
this.eventHandler.emitEvent(EventType.LOGIN_SUCCESS, exports.InteractionType.Silent, response.account);
|
|
15727
|
+
this.eventHandler.emitEvent(EventType.LOGIN_SUCCESS, correlationId, exports.InteractionType.Silent, response.account);
|
|
15658
15728
|
}
|
|
15659
15729
|
this.ssoSilentMeasurement?.end({
|
|
15660
15730
|
success: true,
|
|
@@ -15665,7 +15735,7 @@ class StandardController {
|
|
|
15665
15735
|
return response;
|
|
15666
15736
|
})
|
|
15667
15737
|
.catch((e) => {
|
|
15668
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Silent, null, e);
|
|
15738
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, correlationId, exports.InteractionType.Silent, null, e);
|
|
15669
15739
|
this.ssoSilentMeasurement?.end({
|
|
15670
15740
|
success: false,
|
|
15671
15741
|
}, e, request.account);
|
|
@@ -15690,7 +15760,7 @@ class StandardController {
|
|
|
15690
15760
|
this.logger.trace("0ch6ga", correlationId);
|
|
15691
15761
|
const atbcMeasurement = this.performanceClient.startMeasurement(AcquireTokenByCode, correlationId);
|
|
15692
15762
|
preflightCheck(this.initialized, atbcMeasurement);
|
|
15693
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, exports.InteractionType.Silent, request);
|
|
15763
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Silent, request);
|
|
15694
15764
|
atbcMeasurement.add({ scenarioId: request.scenarioId });
|
|
15695
15765
|
try {
|
|
15696
15766
|
if (request.code && request.nativeAccountId) {
|
|
@@ -15707,7 +15777,7 @@ class StandardController {
|
|
|
15707
15777
|
correlationId,
|
|
15708
15778
|
})
|
|
15709
15779
|
.then((result) => {
|
|
15710
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Silent, result);
|
|
15780
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, correlationId, exports.InteractionType.Silent, result);
|
|
15711
15781
|
this.hybridAuthCodeResponses.delete(hybridAuthCode);
|
|
15712
15782
|
atbcMeasurement.end({
|
|
15713
15783
|
success: true,
|
|
@@ -15719,7 +15789,7 @@ class StandardController {
|
|
|
15719
15789
|
})
|
|
15720
15790
|
.catch((error) => {
|
|
15721
15791
|
this.hybridAuthCodeResponses.delete(hybridAuthCode);
|
|
15722
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Silent, null, error);
|
|
15792
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, correlationId, exports.InteractionType.Silent, null, error);
|
|
15723
15793
|
atbcMeasurement.end({
|
|
15724
15794
|
success: false,
|
|
15725
15795
|
}, error);
|
|
@@ -15760,7 +15830,7 @@ class StandardController {
|
|
|
15760
15830
|
}
|
|
15761
15831
|
}
|
|
15762
15832
|
catch (e) {
|
|
15763
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Silent, null, e);
|
|
15833
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, correlationId, exports.InteractionType.Silent, null, e);
|
|
15764
15834
|
atbcMeasurement.end({
|
|
15765
15835
|
success: false,
|
|
15766
15836
|
}, e);
|
|
@@ -15935,7 +16005,7 @@ class StandardController {
|
|
|
15935
16005
|
this.logger.verbose("16jycr", result.correlationId);
|
|
15936
16006
|
// Account gets saved to browser storage regardless of native or not
|
|
15937
16007
|
const accountEntity = createAccountEntityFromAccountInfo(result.account, result.cloudGraphHostName, result.msGraphHost);
|
|
15938
|
-
await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims));
|
|
16008
|
+
await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims), ApiId.hydrateCache);
|
|
15939
16009
|
if (result.fromPlatformBroker) {
|
|
15940
16010
|
this.logger.verbose("1fxyu8", result.correlationId);
|
|
15941
16011
|
// Tokens from native broker are stored in-memory
|
|
@@ -16262,7 +16332,7 @@ class StandardController {
|
|
|
16262
16332
|
*/
|
|
16263
16333
|
async acquireTokenSilentAsync(request, account) {
|
|
16264
16334
|
const trackPageVisibility = () => this.trackPageVisibility(request.correlationId);
|
|
16265
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, exports.InteractionType.Silent, request);
|
|
16335
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, request.correlationId, exports.InteractionType.Silent, request);
|
|
16266
16336
|
if (request.correlationId) {
|
|
16267
16337
|
this.performanceClient.incrementFields({ visibilityChangeCount: 0 }, request.correlationId);
|
|
16268
16338
|
}
|
|
@@ -16330,7 +16400,7 @@ class StandardController {
|
|
|
16330
16400
|
});
|
|
16331
16401
|
return result
|
|
16332
16402
|
.then((response) => {
|
|
16333
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Silent, response);
|
|
16403
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, request.correlationId, exports.InteractionType.Silent, response);
|
|
16334
16404
|
if (request.correlationId) {
|
|
16335
16405
|
this.performanceClient.addFields({
|
|
16336
16406
|
fromCache: response.fromCache,
|
|
@@ -16340,7 +16410,7 @@ class StandardController {
|
|
|
16340
16410
|
return response;
|
|
16341
16411
|
})
|
|
16342
16412
|
.catch((tokenRenewalError) => {
|
|
16343
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Silent, null, tokenRenewalError);
|
|
16413
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, request.correlationId, exports.InteractionType.Silent, null, tokenRenewalError);
|
|
16344
16414
|
throw tokenRenewalError;
|
|
16345
16415
|
})
|
|
16346
16416
|
.finally(() => {
|
|
@@ -16379,7 +16449,7 @@ class StandardController {
|
|
|
16379
16449
|
if (cacheLookupPolicy === CacheLookupPolicy.AccessToken) {
|
|
16380
16450
|
throw cacheError;
|
|
16381
16451
|
}
|
|
16382
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_NETWORK_START, exports.InteractionType.Silent, silentRequest);
|
|
16452
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_NETWORK_START, silentRequest.correlationId, exports.InteractionType.Silent, silentRequest);
|
|
16383
16453
|
return invokeAsync(this.acquireTokenByRefreshToken.bind(this), AcquireTokenByRefreshToken, this.logger, this.performanceClient, silentRequest.correlationId)(silentRequest, cacheLookupPolicy);
|
|
16384
16454
|
});
|
|
16385
16455
|
}
|
|
@@ -16709,19 +16779,36 @@ class NestedAppAuthAdapter {
|
|
|
16709
16779
|
effectiveIdTokenClaims?.oid ||
|
|
16710
16780
|
effectiveIdTokenClaims?.sub ||
|
|
16711
16781
|
"";
|
|
16712
|
-
|
|
16713
|
-
|
|
16714
|
-
|
|
16715
|
-
|
|
16782
|
+
/*
|
|
16783
|
+
* In B2C scenarios tid may not be present, use getTenantIdFromIdTokenClaims
|
|
16784
|
+
* which handles tid, tfp (modern B2C), and acr (legacy B2C) claims
|
|
16785
|
+
*/
|
|
16786
|
+
const tenantId = fromAccount.tenantId ||
|
|
16787
|
+
getTenantIdFromIdTokenClaims(effectiveIdTokenClaims) ||
|
|
16716
16788
|
"";
|
|
16717
|
-
const
|
|
16789
|
+
const homeAccountId = fromAccount.homeAccountId || `${localAccountId}.${tenantId}`;
|
|
16790
|
+
// Validate environment - required field
|
|
16791
|
+
const environment = fromAccount.environment;
|
|
16792
|
+
if (!environment) {
|
|
16793
|
+
throw createClientAuthError(invalidCacheEnvironment);
|
|
16794
|
+
}
|
|
16795
|
+
/*
|
|
16796
|
+
* In B2C scenarios the emails claim is used instead of preferred_username and it is an array.
|
|
16797
|
+
* In most cases it will contain a single email. This field should not be relied upon if a custom
|
|
16798
|
+
* policy is configured to return more than 1 email.
|
|
16799
|
+
*/
|
|
16800
|
+
const preferredUsername = effectiveIdTokenClaims?.preferred_username ||
|
|
16801
|
+
effectiveIdTokenClaims?.upn;
|
|
16802
|
+
const email = effectiveIdTokenClaims?.emails?.[0] || null;
|
|
16803
|
+
const username = fromAccount.username || preferredUsername || email || "";
|
|
16804
|
+
const name = fromAccount.name || effectiveIdTokenClaims?.name || "";
|
|
16718
16805
|
const loginHint = fromAccount.loginHint || effectiveIdTokenClaims?.login_hint;
|
|
16719
16806
|
const tenantProfiles = new Map();
|
|
16720
16807
|
const tenantProfile = buildTenantProfile(homeAccountId, localAccountId, tenantId, effectiveIdTokenClaims);
|
|
16721
16808
|
tenantProfiles.set(tenantId, tenantProfile);
|
|
16722
16809
|
const account = {
|
|
16723
16810
|
homeAccountId,
|
|
16724
|
-
environment
|
|
16811
|
+
environment,
|
|
16725
16812
|
tenantId,
|
|
16726
16813
|
username,
|
|
16727
16814
|
localAccountId,
|
|
@@ -16892,7 +16979,7 @@ class NestedAppAuthController {
|
|
|
16892
16979
|
async acquireTokenInteractive(request) {
|
|
16893
16980
|
const validRequest = this.ensureValidRequest(request);
|
|
16894
16981
|
const correlationId = validRequest.correlationId || createNewGuid();
|
|
16895
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, exports.InteractionType.Popup, validRequest);
|
|
16982
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Popup, validRequest);
|
|
16896
16983
|
const atPopupMeasurement = this.performanceClient.startMeasurement(AcquireTokenPopup, correlationId);
|
|
16897
16984
|
atPopupMeasurement.add({ nestedAppAuthRequest: true });
|
|
16898
16985
|
try {
|
|
@@ -16916,7 +17003,7 @@ class NestedAppAuthController {
|
|
|
16916
17003
|
environment: result.account.environment,
|
|
16917
17004
|
tenantId: result.account.tenantId,
|
|
16918
17005
|
};
|
|
16919
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Popup, result);
|
|
17006
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, correlationId, exports.InteractionType.Popup, result);
|
|
16920
17007
|
atPopupMeasurement.add({
|
|
16921
17008
|
accessTokenSize: result.accessToken.length,
|
|
16922
17009
|
idTokenSize: result.idToken.length,
|
|
@@ -16931,7 +17018,7 @@ class NestedAppAuthController {
|
|
|
16931
17018
|
const error = e instanceof AuthError
|
|
16932
17019
|
? e
|
|
16933
17020
|
: this.nestedAppAuthAdapter.fromBridgeError(e);
|
|
16934
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Popup, null, e);
|
|
17021
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, correlationId, exports.InteractionType.Popup, null, e);
|
|
16935
17022
|
atPopupMeasurement.end({
|
|
16936
17023
|
success: false,
|
|
16937
17024
|
}, e, request.account);
|
|
@@ -16946,11 +17033,11 @@ class NestedAppAuthController {
|
|
|
16946
17033
|
async acquireTokenSilentInternal(request) {
|
|
16947
17034
|
const validRequest = this.ensureValidRequest(request);
|
|
16948
17035
|
const correlationId = validRequest.correlationId || createNewGuid();
|
|
16949
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, exports.InteractionType.Silent, validRequest);
|
|
17036
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Silent, validRequest);
|
|
16950
17037
|
// Look for tokens in the cache first
|
|
16951
17038
|
const result = await this.acquireTokenFromCache(validRequest);
|
|
16952
17039
|
if (result) {
|
|
16953
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Silent, result);
|
|
17040
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, correlationId, exports.InteractionType.Silent, result);
|
|
16954
17041
|
return result;
|
|
16955
17042
|
}
|
|
16956
17043
|
// proceed with acquiring tokens via the host
|
|
@@ -16981,7 +17068,7 @@ class NestedAppAuthController {
|
|
|
16981
17068
|
environment: result.account.environment,
|
|
16982
17069
|
tenantId: result.account.tenantId,
|
|
16983
17070
|
};
|
|
16984
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Silent, result);
|
|
17071
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, correlationId, exports.InteractionType.Silent, result);
|
|
16985
17072
|
ssoSilentMeasurement?.add({
|
|
16986
17073
|
accessTokenSize: result.accessToken.length,
|
|
16987
17074
|
idTokenSize: result.idToken.length,
|
|
@@ -16996,7 +17083,7 @@ class NestedAppAuthController {
|
|
|
16996
17083
|
const error = e instanceof AuthError
|
|
16997
17084
|
? e
|
|
16998
17085
|
: this.nestedAppAuthAdapter.fromBridgeError(e);
|
|
16999
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Silent, null, e);
|
|
17086
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, correlationId, exports.InteractionType.Silent, null, e);
|
|
17000
17087
|
ssoSilentMeasurement?.end({
|
|
17001
17088
|
success: false,
|
|
17002
17089
|
}, e, request.account);
|
|
@@ -17039,7 +17126,7 @@ class NestedAppAuthController {
|
|
|
17039
17126
|
return null;
|
|
17040
17127
|
}
|
|
17041
17128
|
if (result) {
|
|
17042
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, exports.InteractionType.Silent, result);
|
|
17129
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_SUCCESS, correlationId, exports.InteractionType.Silent, result);
|
|
17043
17130
|
atsMeasurement.add({
|
|
17044
17131
|
accessTokenSize: result.accessToken.length,
|
|
17045
17132
|
idTokenSize: result.idToken.length,
|
|
@@ -17050,7 +17137,7 @@ class NestedAppAuthController {
|
|
|
17050
17137
|
return result;
|
|
17051
17138
|
}
|
|
17052
17139
|
this.logger.warning("1yb4fi", correlationId);
|
|
17053
|
-
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, exports.InteractionType.Silent, null);
|
|
17140
|
+
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_FAILURE, correlationId, exports.InteractionType.Silent, null);
|
|
17054
17141
|
atsMeasurement.end({
|
|
17055
17142
|
success: false,
|
|
17056
17143
|
}, undefined, request.account);
|
|
@@ -17266,7 +17353,7 @@ class NestedAppAuthController {
|
|
|
17266
17353
|
async hydrateCache(result, request) {
|
|
17267
17354
|
this.logger.verbose("16jycr", result.correlationId);
|
|
17268
17355
|
const accountEntity = createAccountEntityFromAccountInfo(result.account, result.cloudGraphHostName, result.msGraphHost);
|
|
17269
|
-
await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims));
|
|
17356
|
+
await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims), ApiId.hydrateCache);
|
|
17270
17357
|
return this.browserStorage.hydrateCache(result, request);
|
|
17271
17358
|
}
|
|
17272
17359
|
}
|
|
@@ -17913,20 +18000,19 @@ async function loadExternalTokens(config, request, response, options, performanc
|
|
|
17913
18000
|
const logger = new Logger(browserConfig.system.loggerOptions || {});
|
|
17914
18001
|
const cryptoOps = new CryptoOps(logger, browserConfig.telemetry.client);
|
|
17915
18002
|
const storage = new BrowserCacheManager(browserConfig.auth.clientId, browserConfig.cache, cryptoOps, logger, browserConfig.telemetry.client, new EventHandler(logger), buildStaticAuthorityOptions(browserConfig.auth));
|
|
17916
|
-
const
|
|
17917
|
-
|
|
17918
|
-
|
|
17919
|
-
const cacheRecordAccount = await invokeAsync(loadAccount, LoadAccount, logger, performanceClient, correlationId)(request, options.clientInfo || response.client_info || "", correlationId, storage, logger, cryptoOps, idTokenClaims, authority);
|
|
18003
|
+
const authorityString = request.authority || browserConfig.auth.authority;
|
|
18004
|
+
const authority = await createDiscoveredInstance(Authority.generateAuthority(authorityString, request.azureCloudOptions), browserConfig.system.networkClient, storage, authorityOptions, logger, correlationId, performanceClient);
|
|
18005
|
+
const cacheRecordAccount = await invokeAsync(loadAccount, LoadAccount, logger, performanceClient, correlationId)(request, options.clientInfo || response.client_info || "", correlationId, storage, logger, cryptoOps, authority, idTokenClaims);
|
|
17920
18006
|
const idToken = await invokeAsync(loadIdToken, LoadIdToken, logger, performanceClient, correlationId)(response, cacheRecordAccount.homeAccountId, cacheRecordAccount.environment, cacheRecordAccount.realm, kmsi, correlationId, storage, logger, config.auth.clientId);
|
|
17921
18007
|
const accessToken = await invokeAsync(loadAccessToken, LoadAccessToken, logger, performanceClient, correlationId)(request, response, cacheRecordAccount.homeAccountId, cacheRecordAccount.environment, cacheRecordAccount.realm, kmsi, options, correlationId, storage, logger, config.auth.clientId);
|
|
17922
|
-
const refreshToken = await invokeAsync(loadRefreshToken, LoadRefreshToken, logger, performanceClient, correlationId)(response, cacheRecordAccount.homeAccountId, cacheRecordAccount.environment, kmsi, correlationId, storage, logger, config.auth.clientId);
|
|
18008
|
+
const refreshToken = await invokeAsync(loadRefreshToken, LoadRefreshToken, logger, performanceClient, correlationId)(response, cacheRecordAccount.homeAccountId, cacheRecordAccount.environment, kmsi, correlationId, storage, logger, config.auth.clientId, performanceClient);
|
|
17923
18009
|
rootMeasurement.end({ success: true }, undefined, getAccountInfo(cacheRecordAccount));
|
|
17924
18010
|
return generateAuthenticationResult(request, {
|
|
17925
18011
|
account: cacheRecordAccount,
|
|
17926
18012
|
idToken,
|
|
17927
18013
|
accessToken,
|
|
17928
18014
|
refreshToken,
|
|
17929
|
-
},
|
|
18015
|
+
}, authority, idTokenClaims);
|
|
17930
18016
|
}
|
|
17931
18017
|
catch (error) {
|
|
17932
18018
|
rootMeasurement.end({ success: false }, error);
|
|
@@ -17942,23 +18028,23 @@ async function loadExternalTokens(config, request, response, options, performanc
|
|
|
17942
18028
|
* @param requestHomeAccountId
|
|
17943
18029
|
* @returns `AccountEntity`
|
|
17944
18030
|
*/
|
|
17945
|
-
async function loadAccount(request, clientInfo, correlationId, storage, logger, cryptoObj,
|
|
18031
|
+
async function loadAccount(request, clientInfo, correlationId, storage, logger, cryptoObj, authority, idTokenClaims) {
|
|
17946
18032
|
logger.verbose("0ke46k", correlationId);
|
|
17947
18033
|
if (request.account) {
|
|
17948
18034
|
const accountEntity = createAccountEntityFromAccountInfo(request.account);
|
|
17949
|
-
await storage.setAccount(accountEntity, correlationId, isKmsi(idTokenClaims || {}));
|
|
18035
|
+
await storage.setAccount(accountEntity, correlationId, isKmsi(idTokenClaims || {}), ApiId.loadExternalTokens);
|
|
17950
18036
|
return accountEntity;
|
|
17951
18037
|
}
|
|
17952
|
-
else if (!
|
|
17953
|
-
logger.error("
|
|
18038
|
+
else if (!clientInfo && !idTokenClaims) {
|
|
18039
|
+
logger.error("0hzcn4", correlationId);
|
|
17954
18040
|
throw createBrowserAuthError(unableToLoadToken);
|
|
17955
18041
|
}
|
|
17956
18042
|
const homeAccountId = generateHomeAccountId(clientInfo, authority.authorityType, logger, cryptoObj, correlationId, idTokenClaims);
|
|
17957
18043
|
const claimsTenantId = idTokenClaims?.tid;
|
|
17958
|
-
const cachedAccount = buildAccountToCache(storage, authority, homeAccountId, base64Decode, correlationId, idTokenClaims, clientInfo, authority.
|
|
18044
|
+
const cachedAccount = buildAccountToCache(storage, authority, homeAccountId, base64Decode, correlationId, idTokenClaims, clientInfo, authority.getPreferredCache(), claimsTenantId, undefined, // authCodePayload
|
|
17959
18045
|
undefined, // nativeAccountId
|
|
17960
18046
|
logger);
|
|
17961
|
-
await storage.setAccount(cachedAccount, correlationId, isKmsi(idTokenClaims || {}));
|
|
18047
|
+
await storage.setAccount(cachedAccount, correlationId, isKmsi(idTokenClaims || {}), ApiId.loadExternalTokens);
|
|
17962
18048
|
return cachedAccount;
|
|
17963
18049
|
}
|
|
17964
18050
|
/**
|
|
@@ -18021,14 +18107,20 @@ async function loadAccessToken(request, response, homeAccountId, environment, te
|
|
|
18021
18107
|
* @param environment
|
|
18022
18108
|
* @returns `RefreshTokenEntity`
|
|
18023
18109
|
*/
|
|
18024
|
-
async function loadRefreshToken(response, homeAccountId, environment, kmsi, correlationId, storage, logger, clientId) {
|
|
18110
|
+
async function loadRefreshToken(response, homeAccountId, environment, kmsi, correlationId, storage, logger, clientId, performanceClient) {
|
|
18025
18111
|
if (!response.refresh_token) {
|
|
18026
18112
|
logger.verbose("1l7um5", correlationId);
|
|
18027
18113
|
return null;
|
|
18028
18114
|
}
|
|
18115
|
+
const expiresOn = response.refresh_token_expires_in
|
|
18116
|
+
? response.refresh_token_expires_in + nowSeconds()
|
|
18117
|
+
: undefined;
|
|
18118
|
+
performanceClient.addFields({
|
|
18119
|
+
extRtExpiresOnSeconds: expiresOn,
|
|
18120
|
+
}, correlationId);
|
|
18029
18121
|
logger.verbose("0qy8ev", correlationId);
|
|
18030
18122
|
const refreshTokenEntity = createRefreshTokenEntity(homeAccountId, environment, response.refresh_token, clientId, response.foci, undefined, // userAssertionHash
|
|
18031
|
-
|
|
18123
|
+
expiresOn);
|
|
18032
18124
|
await storage.setRefreshTokenCredential(refreshTokenEntity, correlationId, kmsi);
|
|
18033
18125
|
return refreshTokenEntity;
|
|
18034
18126
|
}
|
|
@@ -18040,7 +18132,7 @@ async function loadRefreshToken(response, homeAccountId, environment, kmsi, corr
|
|
|
18040
18132
|
* @param authority
|
|
18041
18133
|
* @returns `AuthenticationResult`
|
|
18042
18134
|
*/
|
|
18043
|
-
function generateAuthenticationResult(request, cacheRecord,
|
|
18135
|
+
function generateAuthenticationResult(request, cacheRecord, authority, idTokenClaims) {
|
|
18044
18136
|
let accessToken = "";
|
|
18045
18137
|
let responseScopes = [];
|
|
18046
18138
|
let expiresOn = null;
|
|
@@ -18054,7 +18146,7 @@ function generateAuthenticationResult(request, cacheRecord, idTokenClaims, autho
|
|
|
18054
18146
|
}
|
|
18055
18147
|
const accountEntity = cacheRecord.account;
|
|
18056
18148
|
return {
|
|
18057
|
-
authority: authority
|
|
18149
|
+
authority: authority.canonicalAuthority,
|
|
18058
18150
|
uniqueId: cacheRecord.account.localAccountId,
|
|
18059
18151
|
tenantId: cacheRecord.account.realm,
|
|
18060
18152
|
scopes: responseScopes,
|