@azure/msal-browser 5.5.0 → 5.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (330) hide show
  1. package/dist/app/IPublicClientApplication.mjs +1 -1
  2. package/dist/app/PublicClientApplication.mjs +3 -3
  3. package/dist/app/PublicClientApplication.mjs.map +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  5. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  8. package/dist/cache/AccountManager.d.ts.map +1 -1
  9. package/dist/cache/AccountManager.mjs +1 -5
  10. package/dist/cache/AccountManager.mjs.map +1 -1
  11. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  12. package/dist/cache/BrowserCacheManager.mjs +1 -1
  13. package/dist/cache/CacheHelpers.mjs +1 -1
  14. package/dist/cache/CacheKeys.mjs +1 -1
  15. package/dist/cache/CookieStorage.mjs +1 -1
  16. package/dist/cache/DatabaseStorage.mjs +1 -1
  17. package/dist/cache/EncryptedData.mjs +1 -1
  18. package/dist/cache/LocalStorage.mjs +1 -1
  19. package/dist/cache/MemoryStorage.mjs +1 -1
  20. package/dist/cache/SessionStorage.mjs +1 -1
  21. package/dist/cache/TokenCache.mjs +1 -1
  22. package/dist/config/Configuration.mjs +1 -1
  23. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  24. package/dist/controllers/StandardController.mjs +1 -1
  25. package/dist/crypto/BrowserCrypto.mjs +1 -1
  26. package/dist/crypto/CryptoOps.mjs +1 -1
  27. package/dist/crypto/PkceGenerator.mjs +1 -1
  28. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  29. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  30. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +1 -1
  31. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  32. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +1 -1
  33. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +1 -1
  34. package/dist/custom-auth-path/cache/AccountManager.d.ts.map +1 -1
  35. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -5
  36. package/dist/custom-auth-path/cache/AccountManager.mjs.map +1 -1
  37. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  38. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +1 -1
  39. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  40. package/dist/custom-auth-path/cache/CacheKeys.mjs +1 -1
  41. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  42. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  43. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  44. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  45. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  46. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  47. package/dist/custom-auth-path/config/Configuration.mjs +1 -1
  48. package/dist/custom-auth-path/controllers/StandardController.mjs +1 -1
  49. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  50. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  51. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  52. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  53. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  54. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  55. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  56. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  57. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  58. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  59. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  60. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  61. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  62. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
  63. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
  64. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  65. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  66. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
  67. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  68. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
  69. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
  70. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  71. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  72. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
  73. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  74. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  75. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  76. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  77. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  79. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  81. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  82. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  83. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  84. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  85. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  87. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  88. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  90. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  91. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  93. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  96. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  98. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  100. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  102. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  106. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  108. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  109. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  154. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  155. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  156. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  157. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  159. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  160. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  161. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  162. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  163. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  164. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  165. package/dist/custom-auth-path/error/NativeAuthError.mjs +1 -1
  166. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  167. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  168. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  169. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  170. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  171. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  172. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +1 -1
  173. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +1 -1
  174. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  175. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  176. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +1 -1
  177. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  178. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
  179. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  180. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  181. package/dist/custom-auth-path/log-strings-mapping.json +3 -7
  182. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  183. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  184. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.d.ts +1 -1
  185. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.d.ts.map +1 -1
  186. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  187. package/dist/custom-auth-path/operatingcontext/NestedAppOperatingContext.d.ts +1 -1
  188. package/dist/custom-auth-path/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -1
  189. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.d.ts +1 -1
  190. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.d.ts.map +1 -1
  191. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  192. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs.map +1 -1
  193. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  194. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  195. package/dist/custom-auth-path/protocol/Authorize.d.ts +33 -0
  196. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  197. package/dist/custom-auth-path/protocol/Authorize.mjs +62 -2
  198. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  199. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  200. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  201. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs +1 -1
  202. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs +1 -1
  203. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  204. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  205. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  206. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  207. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  208. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  209. package/dist/encode/Base64Decode.mjs +1 -1
  210. package/dist/encode/Base64Encode.mjs +1 -1
  211. package/dist/error/BrowserAuthError.mjs +1 -1
  212. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  213. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  214. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  215. package/dist/error/NativeAuthError.mjs +1 -1
  216. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  217. package/dist/error/NestedAppAuthError.mjs +1 -1
  218. package/dist/event/EventHandler.mjs +1 -1
  219. package/dist/event/EventMessage.mjs +1 -1
  220. package/dist/event/EventType.mjs +1 -1
  221. package/dist/index.mjs +1 -1
  222. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  223. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  224. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +1 -1
  225. package/dist/interaction_client/PopupClient.mjs +1 -1
  226. package/dist/interaction_client/RedirectClient.mjs +1 -1
  227. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  228. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  229. package/dist/interaction_client/SilentIframeClient.mjs +1 -1
  230. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  231. package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
  232. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  233. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  234. package/dist/log-strings-mapping.json +3 -7
  235. package/dist/naa/BridgeError.mjs +1 -1
  236. package/dist/naa/BridgeProxy.mjs +1 -1
  237. package/dist/naa/BridgeStatusCode.mjs +1 -1
  238. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  239. package/dist/navigation/NavigationClient.mjs +1 -1
  240. package/dist/network/FetchClient.mjs +1 -1
  241. package/dist/operatingcontext/BaseOperatingContext.d.ts +1 -1
  242. package/dist/operatingcontext/BaseOperatingContext.d.ts.map +1 -1
  243. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  244. package/dist/operatingcontext/NestedAppOperatingContext.d.ts +1 -1
  245. package/dist/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -1
  246. package/dist/operatingcontext/NestedAppOperatingContext.mjs +4 -3
  247. package/dist/operatingcontext/NestedAppOperatingContext.mjs.map +1 -1
  248. package/dist/operatingcontext/StandardOperatingContext.d.ts +1 -1
  249. package/dist/operatingcontext/StandardOperatingContext.d.ts.map +1 -1
  250. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  251. package/dist/operatingcontext/StandardOperatingContext.mjs.map +1 -1
  252. package/dist/packageMetadata.d.ts +1 -1
  253. package/dist/packageMetadata.mjs +2 -2
  254. package/dist/protocol/Authorize.d.ts +33 -0
  255. package/dist/protocol/Authorize.d.ts.map +1 -1
  256. package/dist/protocol/Authorize.mjs +62 -2
  257. package/dist/protocol/Authorize.mjs.map +1 -1
  258. package/dist/redirect-bridge/cache/AccountManager.d.ts.map +1 -1
  259. package/dist/redirect-bridge/cache/CacheKeys.mjs +1 -1
  260. package/dist/redirect-bridge/config/Configuration.mjs +1 -1
  261. package/dist/redirect-bridge/custom_auth/CustomAuthConstants.d.ts +1 -1
  262. package/dist/redirect-bridge/encode/Base64Decode.mjs +1 -1
  263. package/dist/redirect-bridge/error/BrowserAuthError.mjs +1 -1
  264. package/dist/redirect-bridge/error/BrowserAuthErrorCodes.mjs +1 -1
  265. package/dist/redirect-bridge/navigation/NavigationClient.mjs +1 -1
  266. package/dist/redirect-bridge/operatingcontext/BaseOperatingContext.d.ts +1 -1
  267. package/dist/redirect-bridge/operatingcontext/BaseOperatingContext.d.ts.map +1 -1
  268. package/dist/redirect-bridge/operatingcontext/NestedAppOperatingContext.d.ts +1 -1
  269. package/dist/redirect-bridge/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -1
  270. package/dist/redirect-bridge/operatingcontext/StandardOperatingContext.d.ts +1 -1
  271. package/dist/redirect-bridge/operatingcontext/StandardOperatingContext.d.ts.map +1 -1
  272. package/dist/redirect-bridge/packageMetadata.d.ts +1 -1
  273. package/dist/redirect-bridge/protocol/Authorize.d.ts +33 -0
  274. package/dist/redirect-bridge/protocol/Authorize.d.ts.map +1 -1
  275. package/dist/redirect-bridge/redirect_bridge/index.mjs +1 -1
  276. package/dist/redirect-bridge/utils/BrowserConstants.mjs +1 -1
  277. package/dist/redirect-bridge/utils/BrowserUtils.mjs +1 -1
  278. package/dist/request/RequestHelpers.mjs +1 -1
  279. package/dist/response/ResponseHandler.mjs +1 -1
  280. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  281. package/dist/telemetry/BrowserPerformanceEvents.mjs +1 -1
  282. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  283. package/dist/telemetry/BrowserRootPerformanceEvents.mjs +1 -1
  284. package/dist/utils/BrowserConstants.mjs +1 -1
  285. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  286. package/dist/utils/BrowserUtils.mjs +1 -1
  287. package/dist/utils/Helpers.mjs +1 -1
  288. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  289. package/lib/custom-auth-path/log-strings-mapping.json +3 -7
  290. package/lib/custom-auth-path/msal-custom-auth.cjs +145 -74
  291. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  292. package/lib/custom-auth-path/types/cache/AccountManager.d.ts.map +1 -1
  293. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  294. package/lib/custom-auth-path/types/operatingcontext/BaseOperatingContext.d.ts +1 -1
  295. package/lib/custom-auth-path/types/operatingcontext/BaseOperatingContext.d.ts.map +1 -1
  296. package/lib/custom-auth-path/types/operatingcontext/NestedAppOperatingContext.d.ts +1 -1
  297. package/lib/custom-auth-path/types/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -1
  298. package/lib/custom-auth-path/types/operatingcontext/StandardOperatingContext.d.ts +1 -1
  299. package/lib/custom-auth-path/types/operatingcontext/StandardOperatingContext.d.ts.map +1 -1
  300. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  301. package/lib/custom-auth-path/types/protocol/Authorize.d.ts +33 -0
  302. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  303. package/lib/log-strings-mapping.json +3 -7
  304. package/lib/msal-browser.cjs +153 -80
  305. package/lib/msal-browser.cjs.map +1 -1
  306. package/lib/msal-browser.js +153 -80
  307. package/lib/msal-browser.js.map +1 -1
  308. package/lib/msal-browser.min.js +2 -2
  309. package/lib/redirect-bridge/msal-redirect-bridge.js +10 -10
  310. package/lib/redirect-bridge/msal-redirect-bridge.js.map +1 -1
  311. package/lib/redirect-bridge/msal-redirect-bridge.min.js +1 -1
  312. package/lib/types/cache/AccountManager.d.ts.map +1 -1
  313. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  314. package/lib/types/operatingcontext/BaseOperatingContext.d.ts +1 -1
  315. package/lib/types/operatingcontext/BaseOperatingContext.d.ts.map +1 -1
  316. package/lib/types/operatingcontext/NestedAppOperatingContext.d.ts +1 -1
  317. package/lib/types/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -1
  318. package/lib/types/operatingcontext/StandardOperatingContext.d.ts +1 -1
  319. package/lib/types/operatingcontext/StandardOperatingContext.d.ts.map +1 -1
  320. package/lib/types/packageMetadata.d.ts +1 -1
  321. package/lib/types/protocol/Authorize.d.ts +33 -0
  322. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  323. package/package.json +2 -2
  324. package/src/app/PublicClientApplication.ts +2 -2
  325. package/src/cache/AccountManager.ts +0 -5
  326. package/src/operatingcontext/BaseOperatingContext.ts +1 -1
  327. package/src/operatingcontext/NestedAppOperatingContext.ts +4 -3
  328. package/src/operatingcontext/StandardOperatingContext.ts +1 -1
  329. package/src/packageMetadata.ts +1 -1
  330. package/src/protocol/Authorize.ts +100 -0
@@ -1,8 +1,8 @@
1
- /*! @azure/msal-browser v5.5.0 2026-03-13 */
1
+ /*! @azure/msal-browser v5.6.1 2026-03-19 */
2
2
  'use strict';
3
3
  'use strict';
4
4
 
5
- /*! @azure/msal-common v16.3.0 2026-03-13 */
5
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6
6
  /*
7
7
  * Copyright (c) Microsoft Corporation. All rights reserved.
8
8
  * Licensed under the MIT License.
@@ -234,7 +234,7 @@ const JsonWebTokenTypes$1 = {
234
234
  // Token renewal offset default in seconds
235
235
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
236
236
 
237
- /*! @azure/msal-common v16.3.0 2026-03-13 */
237
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
238
238
  /*
239
239
  * Copyright (c) Microsoft Corporation. All rights reserved.
240
240
  * Licensed under the MIT License.
@@ -283,9 +283,10 @@ const BROKER_REDIRECT_URI = "brk_redirect_uri";
283
283
  const INSTANCE_AWARE = "instance_aware";
284
284
  const EAR_JWK = "ear_jwk";
285
285
  const EAR_JWE_CRYPTO = "ear_jwe_crypto";
286
- const RESOURCE = "resource";
286
+ const RESOURCE = "resource";
287
+ const CLI_DATA = "clidata";
287
288
 
288
- /*! @azure/msal-common v16.3.0 2026-03-13 */
289
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
289
290
  /*
290
291
  * Copyright (c) Microsoft Corporation. All rights reserved.
291
292
  * Licensed under the MIT License.
@@ -316,7 +317,7 @@ function createAuthError(code, additionalMessage) {
316
317
  return new AuthError(code, additionalMessage || getDefaultErrorMessage$1(code));
317
318
  }
318
319
 
319
- /*! @azure/msal-common v16.3.0 2026-03-13 */
320
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
320
321
 
321
322
  /*
322
323
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -336,7 +337,7 @@ function createClientConfigurationError(errorCode) {
336
337
  return new ClientConfigurationError(errorCode);
337
338
  }
338
339
 
339
- /*! @azure/msal-common v16.3.0 2026-03-13 */
340
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
340
341
  /*
341
342
  * Copyright (c) Microsoft Corporation. All rights reserved.
342
343
  * Licensed under the MIT License.
@@ -416,7 +417,7 @@ class StringUtils {
416
417
  }
417
418
  }
418
419
 
419
- /*! @azure/msal-common v16.3.0 2026-03-13 */
420
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
420
421
 
421
422
  /*
422
423
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -439,7 +440,7 @@ function createClientAuthError(errorCode, additionalMessage) {
439
440
  return new ClientAuthError(errorCode, additionalMessage);
440
441
  }
441
442
 
442
- /*! @azure/msal-common v16.3.0 2026-03-13 */
443
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
443
444
  /*
444
445
  * Copyright (c) Microsoft Corporation. All rights reserved.
445
446
  * Licensed under the MIT License.
@@ -493,7 +494,7 @@ var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
493
494
  urlParseError: urlParseError
494
495
  });
495
496
 
496
- /*! @azure/msal-common v16.3.0 2026-03-13 */
497
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
497
498
  /*
498
499
  * Copyright (c) Microsoft Corporation. All rights reserved.
499
500
  * Licensed under the MIT License.
@@ -581,7 +582,7 @@ var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
581
582
  userCanceled: userCanceled
582
583
  });
583
584
 
584
- /*! @azure/msal-common v16.3.0 2026-03-13 */
585
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
585
586
 
586
587
  /*
587
588
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -776,7 +777,7 @@ class ScopeSet {
776
777
  }
777
778
  }
778
779
 
779
- /*! @azure/msal-common v16.3.0 2026-03-13 */
780
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
780
781
 
781
782
  /*
782
783
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1042,6 +1043,12 @@ function addGrantType(parameters, grantType) {
1042
1043
  function addClientInfo(parameters) {
1043
1044
  parameters.set(CLIENT_INFO, "1");
1044
1045
  }
1046
+ /**
1047
+ * add clidata=1 to request to indicate client data support
1048
+ */
1049
+ function addCliData(parameters) {
1050
+ parameters.set(CLI_DATA, "1");
1051
+ }
1045
1052
  function addInstanceAware(parameters) {
1046
1053
  if (!parameters.has(INSTANCE_AWARE)) {
1047
1054
  parameters.set(INSTANCE_AWARE, "true");
@@ -1148,7 +1155,7 @@ function addResource(parameters, resource) {
1148
1155
  }
1149
1156
  }
1150
1157
 
1151
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1158
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1152
1159
 
1153
1160
  /*
1154
1161
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1257,7 +1264,7 @@ function normalizeUrlForComparison(url) {
1257
1264
  }
1258
1265
  }
1259
1266
 
1260
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1267
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1261
1268
 
1262
1269
  /*
1263
1270
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1296,7 +1303,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
1296
1303
  },
1297
1304
  };
1298
1305
 
1299
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1306
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1300
1307
  /*
1301
1308
  * Copyright (c) Microsoft Corporation. All rights reserved.
1302
1309
  * Licensed under the MIT License.
@@ -1571,12 +1578,12 @@ class Logger {
1571
1578
  }
1572
1579
  }
1573
1580
 
1574
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1581
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1575
1582
  /* eslint-disable header/header */
1576
1583
  const name$1 = "@azure/msal-common";
1577
- const version$1 = "16.3.0";
1584
+ const version$1 = "16.4.0";
1578
1585
 
1579
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1586
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1580
1587
  /*
1581
1588
  * Copyright (c) Microsoft Corporation. All rights reserved.
1582
1589
  * Licensed under the MIT License.
@@ -1596,7 +1603,7 @@ const AzureCloudInstance = {
1596
1603
  AzureUsGovernment: "https://login.microsoftonline.us",
1597
1604
  };
1598
1605
 
1599
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1606
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1600
1607
  /*
1601
1608
  * Copyright (c) Microsoft Corporation. All rights reserved.
1602
1609
  * Licensed under the MIT License.
@@ -1678,7 +1685,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1678
1685
  return updatedAccountInfo;
1679
1686
  }
1680
1687
 
1681
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1688
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1682
1689
 
1683
1690
  /*
1684
1691
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1758,7 +1765,7 @@ function checkMaxAge(authTime, maxAge) {
1758
1765
  }
1759
1766
  }
1760
1767
 
1761
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1768
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1762
1769
 
1763
1770
  /*
1764
1771
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1915,7 +1922,7 @@ class UrlString {
1915
1922
  }
1916
1923
  }
1917
1924
 
1918
- /*! @azure/msal-common v16.3.0 2026-03-13 */
1925
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
1919
1926
 
1920
1927
  /*
1921
1928
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2072,7 +2079,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
2072
2079
  return null;
2073
2080
  }
2074
2081
 
2075
- /*! @azure/msal-common v16.3.0 2026-03-13 */
2082
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
2076
2083
  /*
2077
2084
  * Copyright (c) Microsoft Corporation. All rights reserved.
2078
2085
  * Licensed under the MIT License.
@@ -2080,7 +2087,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
2080
2087
  const cacheQuotaExceeded = "cache_quota_exceeded";
2081
2088
  const cacheErrorUnknown = "cache_error_unknown";
2082
2089
 
2083
- /*! @azure/msal-common v16.3.0 2026-03-13 */
2090
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
2084
2091
 
2085
2092
  /*
2086
2093
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2118,7 +2125,7 @@ function createCacheError(e) {
2118
2125
  }
2119
2126
  }
2120
2127
 
2121
- /*! @azure/msal-common v16.3.0 2026-03-13 */
2128
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
2122
2129
 
2123
2130
  /*
2124
2131
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2156,7 +2163,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
2156
2163
  };
2157
2164
  }
2158
2165
 
2159
- /*! @azure/msal-common v16.3.0 2026-03-13 */
2166
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
2160
2167
  /*
2161
2168
  * Copyright (c) Microsoft Corporation. All rights reserved.
2162
2169
  * Licensed under the MIT License.
@@ -2171,7 +2178,7 @@ const AuthorityType = {
2171
2178
  Ciam: 3,
2172
2179
  };
2173
2180
 
2174
- /*! @azure/msal-common v16.3.0 2026-03-13 */
2181
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
2175
2182
  /*
2176
2183
  * Copyright (c) Microsoft Corporation. All rights reserved.
2177
2184
  * Licensed under the MIT License.
@@ -2193,7 +2200,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
2193
2200
  return null;
2194
2201
  }
2195
2202
 
2196
- /*! @azure/msal-common v16.3.0 2026-03-13 */
2203
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
2197
2204
  /*
2198
2205
  * Copyright (c) Microsoft Corporation. All rights reserved.
2199
2206
  * Licensed under the MIT License.
@@ -2217,7 +2224,7 @@ const ProtocolMode = {
2217
2224
  EAR: "EAR",
2218
2225
  };
2219
2226
 
2220
- /*! @azure/msal-common v16.3.0 2026-03-13 */
2227
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
2221
2228
  /**
2222
2229
  * Returns the AccountInfo interface for this account.
2223
2230
  */
@@ -2392,7 +2399,7 @@ function isAccountEntity(entity) {
2392
2399
  entity.hasOwnProperty("authorityType"));
2393
2400
  }
2394
2401
 
2395
- /*! @azure/msal-common v16.3.0 2026-03-13 */
2402
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
2396
2403
 
2397
2404
  /*
2398
2405
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2422,6 +2429,11 @@ class CacheManager {
2422
2429
  * Gets first tenanted AccountInfo object found based on provided filters
2423
2430
  */
2424
2431
  getAccountInfoFilteredBy(accountFilter, correlationId) {
2432
+ if (Object.keys(accountFilter).length === 0 ||
2433
+ Object.values(accountFilter).every((value) => value === null || value === undefined || value === "")) {
2434
+ this.commonLogger.warning("1skb02", correlationId);
2435
+ return null;
2436
+ }
2425
2437
  const allAccounts = this.getAllAccounts(accountFilter, correlationId);
2426
2438
  if (allAccounts.length > 1) {
2427
2439
  // If one or more accounts are found, prioritize accounts that have an ID token
@@ -3489,7 +3501,7 @@ class DefaultStorageClass extends CacheManager {
3489
3501
  }
3490
3502
  }
3491
3503
 
3492
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3504
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3493
3505
  /*
3494
3506
  * Copyright (c) Microsoft Corporation. All rights reserved.
3495
3507
  * Licensed under the MIT License.
@@ -3539,7 +3551,7 @@ const IntFields = new Set([
3539
3551
  "redirectBridgeMessageVersion",
3540
3552
  ]);
3541
3553
 
3542
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3554
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3543
3555
 
3544
3556
  /*
3545
3557
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3594,7 +3606,7 @@ class StubPerformanceClient {
3594
3606
  }
3595
3607
  }
3596
3608
 
3597
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3609
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3598
3610
 
3599
3611
  /*
3600
3612
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3689,7 +3701,7 @@ function isOidcProtocolMode(config) {
3689
3701
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
3690
3702
  }
3691
3703
 
3692
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3704
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3693
3705
 
3694
3706
  /*
3695
3707
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3708,7 +3720,7 @@ class ServerError extends AuthError {
3708
3720
  }
3709
3721
  }
3710
3722
 
3711
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3723
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3712
3724
  /*
3713
3725
  * Copyright (c) Microsoft Corporation. All rights reserved.
3714
3726
  * Licensed under the MIT License.
@@ -3772,7 +3784,7 @@ var InteractionRequiredAuthErrorCodes = /*#__PURE__*/Object.freeze({
3772
3784
  uxNotAllowed: uxNotAllowed
3773
3785
  });
3774
3786
 
3775
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3787
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3776
3788
 
3777
3789
  /*
3778
3790
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3840,7 +3852,7 @@ function createInteractionRequiredAuthError(errorCode, errorMessage) {
3840
3852
  return new InteractionRequiredAuthError(errorCode, errorMessage);
3841
3853
  }
3842
3854
 
3843
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3855
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3844
3856
 
3845
3857
  /*
3846
3858
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3908,7 +3920,7 @@ function parseRequestState(base64Decode, state) {
3908
3920
  }
3909
3921
  }
3910
3922
 
3911
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3923
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3912
3924
  /*
3913
3925
  * Copyright (c) Microsoft Corporation. All rights reserved.
3914
3926
  * Licensed under the MIT License.
@@ -3973,7 +3985,7 @@ function wasClockTurnedBack(cachedAt) {
3973
3985
  return cachedAtSec > nowSeconds();
3974
3986
  }
3975
3987
 
3976
- /*! @azure/msal-common v16.3.0 2026-03-13 */
3988
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
3977
3989
  /*
3978
3990
  * Copyright (c) Microsoft Corporation. All rights reserved.
3979
3991
  * Licensed under the MIT License.
@@ -4044,7 +4056,7 @@ const RegionDiscoveryGetCurrentVersion = "regionDiscoveryGetCurrentVersion";
4044
4056
  const CacheManagerGetRefreshToken = "cacheManagerGetRefreshToken";
4045
4057
  const SetUserData = "setUserData";
4046
4058
 
4047
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4059
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4048
4060
  /*
4049
4061
  * Copyright (c) Microsoft Corporation. All rights reserved.
4050
4062
  * Licensed under the MIT License.
@@ -4137,7 +4149,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
4137
4149
  };
4138
4150
  };
4139
4151
 
4140
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4152
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4141
4153
 
4142
4154
  /*
4143
4155
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4217,7 +4229,7 @@ class PopTokenGenerator {
4217
4229
  }
4218
4230
  }
4219
4231
 
4220
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4232
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4221
4233
  /*
4222
4234
  * Copyright (c) Microsoft Corporation. All rights reserved.
4223
4235
  * Licensed under the MIT License.
@@ -4244,7 +4256,7 @@ class PopTokenGenerator {
4244
4256
  }
4245
4257
  }
4246
4258
 
4247
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4259
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4248
4260
 
4249
4261
  /*
4250
4262
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4503,7 +4515,7 @@ function isAuthorityMetadataExpired(metadata) {
4503
4515
  return metadata.expiresAt <= nowSeconds();
4504
4516
  }
4505
4517
 
4506
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4518
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4507
4519
 
4508
4520
  /*
4509
4521
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4844,7 +4856,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
4844
4856
  return baseAccount;
4845
4857
  }
4846
4858
 
4847
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4859
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4848
4860
  /*
4849
4861
  * Copyright (c) Microsoft Corporation. All rights reserved.
4850
4862
  * Licensed under the MIT License.
@@ -4854,7 +4866,7 @@ const CcsCredentialType = {
4854
4866
  UPN: "UPN",
4855
4867
  };
4856
4868
 
4857
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4869
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4858
4870
  /*
4859
4871
  * Copyright (c) Microsoft Corporation. All rights reserved.
4860
4872
  * Licensed under the MIT License.
@@ -4872,7 +4884,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
4872
4884
  }
4873
4885
  }
4874
4886
 
4875
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4887
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4876
4888
  /*
4877
4889
  * Copyright (c) Microsoft Corporation. All rights reserved.
4878
4890
  * Licensed under the MIT License.
@@ -4893,7 +4905,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
4893
4905
  };
4894
4906
  }
4895
4907
 
4896
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4908
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4897
4909
 
4898
4910
  /*
4899
4911
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4979,7 +4991,7 @@ class ThrottlingUtils {
4979
4991
  }
4980
4992
  }
4981
4993
 
4982
- /*! @azure/msal-common v16.3.0 2026-03-13 */
4994
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
4983
4995
 
4984
4996
  /*
4985
4997
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5010,7 +5022,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
5010
5022
  return new NetworkError(error, httpStatus, responseHeaders);
5011
5023
  }
5012
5024
 
5013
- /*! @azure/msal-common v16.3.0 2026-03-13 */
5025
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
5014
5026
 
5015
5027
  /*
5016
5028
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5124,7 +5136,7 @@ async function sendPostRequest(thumbprint, tokenEndpoint, options, correlationId
5124
5136
  return response;
5125
5137
  }
5126
5138
 
5127
- /*! @azure/msal-common v16.3.0 2026-03-13 */
5139
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
5128
5140
  /*
5129
5141
  * Copyright (c) Microsoft Corporation. All rights reserved.
5130
5142
  * Licensed under the MIT License.
@@ -5136,7 +5148,7 @@ function isOpenIdConfigResponse(response) {
5136
5148
  response.hasOwnProperty("jwks_uri"));
5137
5149
  }
5138
5150
 
5139
- /*! @azure/msal-common v16.3.0 2026-03-13 */
5151
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
5140
5152
  /*
5141
5153
  * Copyright (c) Microsoft Corporation. All rights reserved.
5142
5154
  * Licensed under the MIT License.
@@ -5146,7 +5158,7 @@ function isCloudInstanceDiscoveryResponse(response) {
5146
5158
  response.hasOwnProperty("metadata"));
5147
5159
  }
5148
5160
 
5149
- /*! @azure/msal-common v16.3.0 2026-03-13 */
5161
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
5150
5162
  /*
5151
5163
  * Copyright (c) Microsoft Corporation. All rights reserved.
5152
5164
  * Licensed under the MIT License.
@@ -5156,7 +5168,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
5156
5168
  response.hasOwnProperty("error_description"));
5157
5169
  }
5158
5170
 
5159
- /*! @azure/msal-common v16.3.0 2026-03-13 */
5171
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
5160
5172
 
5161
5173
  /*
5162
5174
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5261,7 +5273,7 @@ RegionDiscovery.IMDS_OPTIONS = {
5261
5273
  },
5262
5274
  };
5263
5275
 
5264
- /*! @azure/msal-common v16.3.0 2026-03-13 */
5276
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
5265
5277
 
5266
5278
  /*
5267
5279
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6081,7 +6093,7 @@ function buildStaticAuthorityOptions(authOptions) {
6081
6093
  };
6082
6094
  }
6083
6095
 
6084
- /*! @azure/msal-common v16.3.0 2026-03-13 */
6096
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6085
6097
 
6086
6098
  /*
6087
6099
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6115,7 +6127,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
6115
6127
  }
6116
6128
  }
6117
6129
 
6118
- /*! @azure/msal-common v16.3.0 2026-03-13 */
6130
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6119
6131
 
6120
6132
  /*
6121
6133
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6376,7 +6388,7 @@ class AuthorizationCodeClient {
6376
6388
  }
6377
6389
  }
6378
6390
 
6379
- /*! @azure/msal-common v16.3.0 2026-03-13 */
6391
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6380
6392
 
6381
6393
  /*
6382
6394
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6601,7 +6613,7 @@ class RefreshTokenClient {
6601
6613
  }
6602
6614
  }
6603
6615
 
6604
- /*! @azure/msal-common v16.3.0 2026-03-13 */
6616
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6605
6617
 
6606
6618
  /*
6607
6619
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6717,7 +6729,7 @@ class SilentFlowClient {
6717
6729
  }
6718
6730
  }
6719
6731
 
6720
- /*! @azure/msal-common v16.3.0 2026-03-13 */
6732
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6721
6733
 
6722
6734
  /*
6723
6735
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6732,7 +6744,7 @@ const StubbedNetworkModule = {
6732
6744
  },
6733
6745
  };
6734
6746
 
6735
- /*! @azure/msal-common v16.3.0 2026-03-13 */
6747
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6736
6748
 
6737
6749
  /*
6738
6750
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6765,6 +6777,8 @@ function getStandardAuthorizeRequestParameters(authOptions, request, logger, per
6765
6777
  addResponseMode(parameters, request.responseMode);
6766
6778
  // add client_info=1
6767
6779
  addClientInfo(parameters);
6780
+ // add clidata=1
6781
+ addCliData(parameters);
6768
6782
  if (request.prompt) {
6769
6783
  addPrompt(parameters, request.prompt);
6770
6784
  performanceClient?.addFields({ prompt: request.prompt }, correlationId);
@@ -6957,7 +6971,7 @@ function extractLoginHint(account) {
6957
6971
  return account.loginHint || account.idTokenClaims?.login_hint || null;
6958
6972
  }
6959
6973
 
6960
- /*! @azure/msal-common v16.3.0 2026-03-13 */
6974
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6961
6975
 
6962
6976
  /*
6963
6977
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6990,7 +7004,7 @@ function containsResourceParam(params) {
6990
7004
  return Object.prototype.hasOwnProperty.call(params, "resource");
6991
7005
  }
6992
7006
 
6993
- /*! @azure/msal-common v16.3.0 2026-03-13 */
7007
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
6994
7008
 
6995
7009
  /*
6996
7010
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7048,7 +7062,7 @@ class AuthenticationHeaderParser {
7048
7062
  }
7049
7063
  }
7050
7064
 
7051
- /*! @azure/msal-common v16.3.0 2026-03-13 */
7065
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
7052
7066
  /*
7053
7067
  * Copyright (c) Microsoft Corporation. All rights reserved.
7054
7068
  * Licensed under the MIT License.
@@ -7065,7 +7079,7 @@ var AuthErrorCodes = /*#__PURE__*/Object.freeze({
7065
7079
  unexpectedError: unexpectedError
7066
7080
  });
7067
7081
 
7068
- /*! @azure/msal-common v16.3.0 2026-03-13 */
7082
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
7069
7083
 
7070
7084
  /*
7071
7085
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7326,7 +7340,7 @@ class ServerTelemetryManager {
7326
7340
  }
7327
7341
  }
7328
7342
 
7329
- /*! @azure/msal-common v16.3.0 2026-03-13 */
7343
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
7330
7344
 
7331
7345
  /*
7332
7346
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7347,7 +7361,7 @@ function createJoseHeaderError(code) {
7347
7361
  return new JoseHeaderError(code);
7348
7362
  }
7349
7363
 
7350
- /*! @azure/msal-common v16.3.0 2026-03-13 */
7364
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
7351
7365
  /*
7352
7366
  * Copyright (c) Microsoft Corporation. All rights reserved.
7353
7367
  * Licensed under the MIT License.
@@ -7355,7 +7369,7 @@ function createJoseHeaderError(code) {
7355
7369
  const missingKidError = "missing_kid_error";
7356
7370
  const missingAlgError = "missing_alg_error";
7357
7371
 
7358
- /*! @azure/msal-common v16.3.0 2026-03-13 */
7372
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
7359
7373
 
7360
7374
  /*
7361
7375
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7395,7 +7409,7 @@ class JoseHeader {
7395
7409
  }
7396
7410
  }
7397
7411
 
7398
- /*! @azure/msal-common v16.3.0 2026-03-13 */
7412
+ /*! @azure/msal-common v16.4.0 2026-03-19 */
7399
7413
 
7400
7414
  /*
7401
7415
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7491,8 +7505,10 @@ function addError(error, logger, event, stackMaxSize = 5) {
7491
7505
  else if (error instanceof AuthError) {
7492
7506
  event.errorCode = error.errorCode;
7493
7507
  event.subErrorCode = error.subError;
7494
- if (error instanceof ServerError ||
7495
- error instanceof InteractionRequiredAuthError) {
7508
+ if (!event.serverErrorNo &&
7509
+ (error instanceof ServerError ||
7510
+ error instanceof InteractionRequiredAuthError) &&
7511
+ error.errorNo) {
7496
7512
  event.serverErrorNo = error.errorNo;
7497
7513
  }
7498
7514
  return;
@@ -10278,7 +10294,7 @@ const EventType = {
10278
10294
 
10279
10295
  /* eslint-disable header/header */
10280
10296
  const name = "@azure/msal-browser";
10281
- const version = "5.5.0";
10297
+ const version = "5.6.1";
10282
10298
 
10283
10299
  /*
10284
10300
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -11681,10 +11697,6 @@ function getAllAccounts(logger, browserStorage, isInBrowser, correlationId, acco
11681
11697
  */
11682
11698
  function getAccount(accountFilter, logger, browserStorage, correlationId) {
11683
11699
  logger.trace("0u7b90", correlationId);
11684
- if (Object.keys(accountFilter).length === 0) {
11685
- logger.warning("1kz0cu", correlationId);
11686
- return null;
11687
- }
11688
11700
  const account = browserStorage.getAccountInfoFilteredBy(accountFilter, correlationId);
11689
11701
  if (account) {
11690
11702
  logger.verbose("0btgll", correlationId);
@@ -13112,6 +13124,62 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
13112
13124
  * Copyright (c) Microsoft Corporation. All rights reserved.
13113
13125
  * Licensed under the MIT License.
13114
13126
  */
13127
+ const clientDataAccountTypeMapping = new Map([
13128
+ ["e", "AAD"],
13129
+ ["m", "MSA"],
13130
+ ]);
13131
+ /**
13132
+ * Parses the clientdata response parameter from the /authorize endpoint.
13133
+ *
13134
+ * Logically, the clientdata value is URL-encoded and pipe-delimited:
13135
+ * urlencoded(account_type | error | sub_error | cloud_instance | caller_data_boundary)
13136
+ *
13137
+ * In normal browser flows, this value may already have been URL-decoded
13138
+ * (e.g. by URLSearchParams). This function will only apply decodeURIComponent
13139
+ * when the string appears to contain percent-encoded sequences to avoid
13140
+ * double-decoding.
13141
+ *
13142
+ * @param clientdata - The raw clientdata string from the authorize response
13143
+ * @returns Parsed ClientData object, or null if the input is empty/invalid
13144
+ */
13145
+ function parseClientData(clientdata) {
13146
+ if (!clientdata) {
13147
+ return null;
13148
+ }
13149
+ try {
13150
+ // Only decode when the string appears to contain percent-encoded sequences
13151
+ const shouldDecode = /%(?:[0-9A-Fa-f]{2})/.test(clientdata);
13152
+ const decoded = shouldDecode
13153
+ ? decodeURIComponent(clientdata)
13154
+ : clientdata;
13155
+ const parts = decoded.split("|");
13156
+ if (parts.length < 5) {
13157
+ return null;
13158
+ }
13159
+ return {
13160
+ accountType: clientDataAccountTypeMapping.get(parts[0]?.trim() || "") || "",
13161
+ error: parts[1]?.trim() || "",
13162
+ subError: parts[2]?.trim() || "",
13163
+ cloudInstance: parts[3]?.trim() || "",
13164
+ callerDataBoundary: parts[4]?.trim() || "",
13165
+ };
13166
+ }
13167
+ catch {
13168
+ return null;
13169
+ }
13170
+ }
13171
+ /**
13172
+ * Instruments account type, error, and suberror from clientdata
13173
+ */
13174
+ function instrumentClientData(response, correlationId, performanceClient) {
13175
+ const parsed = parseClientData(response.clientdata);
13176
+ parsed?.accountType &&
13177
+ performanceClient.addFields({ accountType: parsed.accountType }, correlationId);
13178
+ parsed?.error &&
13179
+ performanceClient.addFields({ serverErrorNo: parsed.error }, correlationId);
13180
+ parsed?.subError &&
13181
+ performanceClient.addFields({ serverSubErrorNo: parsed.subError }, correlationId);
13182
+ }
13115
13183
  /**
13116
13184
  * Returns map of parameters that are applicable to all calls to /authorize whether using PKCE or EAR
13117
13185
  * @param config
@@ -13281,6 +13349,8 @@ async function handleResponsePlatformBroker(request, accountId, apiId, config, b
13281
13349
  async function handleResponseCode(request, response, codeVerifier, apiId, config, authClient, browserStorage, nativeStorage, eventHandler, logger, performanceClient, platformAuthProvider) {
13282
13350
  // Remove throttle if it exists
13283
13351
  ThrottlingUtils.removeThrottle(browserStorage, config.auth.clientId, request);
13352
+ // Instrument clientdata telemetry fields from the authorize response
13353
+ instrumentClientData(response, request.correlationId, performanceClient);
13284
13354
  if (response.accountId) {
13285
13355
  return invokeAsync(handleResponsePlatformBroker, HandleResponsePlatformBroker, logger, performanceClient, request.correlationId)(request, response.accountId, apiId, config, browserStorage, nativeStorage, eventHandler, logger, performanceClient, platformAuthProvider);
13286
13356
  }
@@ -13313,6 +13383,8 @@ async function handleResponseCode(request, response, codeVerifier, apiId, config
13313
13383
  async function handleResponseEAR(request, response, apiId, config, authority, browserStorage, nativeStorage, eventHandler, logger, performanceClient, platformAuthProvider) {
13314
13384
  // Remove throttle if it exists
13315
13385
  ThrottlingUtils.removeThrottle(browserStorage, config.auth.clientId, request);
13386
+ // Instrument clientdata telemetry fields from the authorize response
13387
+ instrumentClientData(response, request.correlationId, performanceClient);
13316
13388
  // Validate state & check response for errors
13317
13389
  validateAuthorizationResponse(response, request.state);
13318
13390
  if (!response.ear_jwe) {
@@ -17748,6 +17820,7 @@ class NestedAppOperatingContext extends BaseOperatingContext {
17748
17820
  * @returns Promise<boolean> indicating whether this operating context is currently available.
17749
17821
  */
17750
17822
  async initialize(correlationId) {
17823
+ const cid = correlationId || "";
17751
17824
  try {
17752
17825
  if (typeof window !== "undefined") {
17753
17826
  if (typeof window.__initializeNestedAppAuth === "function") {
@@ -17765,9 +17838,9 @@ class NestedAppOperatingContext extends BaseOperatingContext {
17765
17838
  }
17766
17839
  }
17767
17840
  catch (ex) {
17768
- this.logger.infoPii("1mdxyj", correlationId);
17841
+ this.logger.infoPii("1mdxyj", cid);
17769
17842
  }
17770
- this.logger.info("12jy9a", correlationId);
17843
+ this.logger.info("12jy9a", cid);
17771
17844
  return this.available;
17772
17845
  }
17773
17846
  }
@@ -18059,10 +18132,10 @@ class PublicClientApplication {
18059
18132
  *
18060
18133
  */
18061
18134
  async function createNestablePublicClientApplication(configuration, correlationId, pcaFactory) {
18062
- const cid = correlationId || createNewGuid();
18063
18135
  const nestedAppAuth = new NestedAppOperatingContext(configuration);
18064
- await nestedAppAuth.initialize(cid);
18136
+ await nestedAppAuth.initialize(correlationId);
18065
18137
  if (nestedAppAuth.isAvailable()) {
18138
+ const cid = correlationId || createNewGuid();
18066
18139
  const controller = new NestedAppAuthController(nestedAppAuth);
18067
18140
  const nestablePCA = pcaFactory
18068
18141
  ? pcaFactory(configuration, controller)