@azure/msal-browser 5.6.3 → 5.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (912) hide show
  1. package/README.md +0 -1
  2. package/dist/app/IPublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientApplication.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
  5. package/dist/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
  8. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
  9. package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  10. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
  11. package/dist/cache/AccountManager.mjs +1 -1
  12. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  13. package/dist/cache/BrowserCacheManager.d.ts +2 -4
  14. package/dist/cache/BrowserCacheManager.d.ts.map +1 -1
  15. package/dist/cache/BrowserCacheManager.mjs +6 -6
  16. package/dist/cache/BrowserCacheManager.mjs.map +1 -1
  17. package/dist/cache/CacheHelpers.mjs +1 -1
  18. package/dist/cache/CacheKeys.d.ts +3 -2
  19. package/dist/cache/CacheKeys.d.ts.map +1 -1
  20. package/dist/cache/CacheKeys.mjs +5 -4
  21. package/dist/cache/CacheKeys.mjs.map +1 -1
  22. package/dist/cache/CookieStorage.mjs +1 -1
  23. package/dist/cache/DatabaseStorage.mjs +1 -1
  24. package/dist/cache/EncryptedData.mjs +1 -1
  25. package/dist/cache/LocalStorage.mjs +1 -1
  26. package/dist/cache/MemoryStorage.mjs +1 -1
  27. package/dist/cache/SessionStorage.mjs +1 -1
  28. package/dist/cache/TokenCache.mjs +1 -1
  29. package/dist/config/Configuration.d.ts +7 -0
  30. package/dist/config/Configuration.d.ts.map +1 -1
  31. package/dist/config/Configuration.mjs +2 -1
  32. package/dist/config/Configuration.mjs.map +1 -1
  33. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  34. package/dist/controllers/StandardController.d.ts +16 -0
  35. package/dist/controllers/StandardController.d.ts.map +1 -1
  36. package/dist/controllers/StandardController.mjs +174 -25
  37. package/dist/controllers/StandardController.mjs.map +1 -1
  38. package/dist/crypto/BrowserCrypto.mjs +1 -1
  39. package/dist/crypto/CryptoOps.mjs +1 -1
  40. package/dist/crypto/PkceGenerator.mjs +1 -1
  41. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  42. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  43. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
  44. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
  45. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  46. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
  47. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
  48. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  49. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
  50. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  51. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  52. package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts +2 -4
  53. package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts.map +1 -1
  54. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +6 -6
  55. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs.map +1 -1
  56. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  57. package/dist/custom-auth-path/cache/CacheKeys.d.ts +3 -2
  58. package/dist/custom-auth-path/cache/CacheKeys.d.ts.map +1 -1
  59. package/dist/custom-auth-path/cache/CacheKeys.mjs +5 -4
  60. package/dist/custom-auth-path/cache/CacheKeys.mjs.map +1 -1
  61. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  62. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  63. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  64. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  65. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  66. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  67. package/dist/custom-auth-path/config/Configuration.d.ts +7 -0
  68. package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
  69. package/dist/custom-auth-path/config/Configuration.mjs +2 -1
  70. package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
  71. package/dist/custom-auth-path/controllers/StandardController.d.ts +16 -0
  72. package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
  73. package/dist/custom-auth-path/controllers/StandardController.mjs +174 -25
  74. package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
  75. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  76. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  77. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  79. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  81. package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts +1 -0
  82. package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  83. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  84. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  85. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  87. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  88. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  90. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
  91. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  93. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  96. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
  98. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  100. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  102. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  106. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  108. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  109. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  154. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  155. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  156. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  157. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  159. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  160. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  161. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  162. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
  163. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
  164. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
  165. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  166. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  167. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  168. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  169. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  170. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  171. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  172. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  173. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  174. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  175. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  176. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  177. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  178. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  179. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  180. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  181. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  182. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  183. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  184. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  185. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  186. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  187. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  188. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  189. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  190. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  191. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  192. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  193. package/dist/custom-auth-path/error/NativeAuthError.d.ts.map +1 -1
  194. package/dist/custom-auth-path/error/NativeAuthError.mjs +3 -4
  195. package/dist/custom-auth-path/error/NativeAuthError.mjs.map +1 -1
  196. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  197. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  198. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  199. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  200. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  201. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  202. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  203. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
  204. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  205. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
  206. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +6 -2
  207. package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
  208. package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
  209. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +6 -2
  210. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
  211. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  212. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  213. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +14 -0
  214. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
  215. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +45 -3
  216. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
  217. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  218. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
  219. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  220. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  221. package/dist/custom-auth-path/log-strings-mapping.json +49 -17
  222. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  223. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  224. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  225. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  226. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  227. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  228. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  229. package/dist/custom-auth-path/protocol/Authorize.mjs +5 -1
  230. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  231. package/dist/custom-auth-path/redirect_bridge/index.d.ts.map +1 -1
  232. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  233. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  234. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  235. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  236. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs +3 -2
  237. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
  238. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  239. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  240. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs +8 -3
  241. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
  242. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  243. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  244. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  245. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  246. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  247. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  248. package/dist/custom_auth/UserAccountAttributes.d.ts +1 -0
  249. package/dist/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  250. package/dist/encode/Base64Decode.mjs +1 -1
  251. package/dist/encode/Base64Encode.mjs +1 -1
  252. package/dist/error/BrowserAuthError.mjs +1 -1
  253. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  254. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  255. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  256. package/dist/error/NativeAuthError.d.ts.map +1 -1
  257. package/dist/error/NativeAuthError.mjs +3 -4
  258. package/dist/error/NativeAuthError.mjs.map +1 -1
  259. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  260. package/dist/error/NestedAppAuthError.mjs +1 -1
  261. package/dist/event/EventHandler.mjs +1 -1
  262. package/dist/event/EventMessage.mjs +1 -1
  263. package/dist/event/EventType.mjs +1 -1
  264. package/dist/index.mjs +1 -1
  265. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  266. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  267. package/dist/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  268. package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  269. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
  270. package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  271. package/dist/interaction_client/PopupClient.d.ts.map +1 -1
  272. package/dist/interaction_client/PopupClient.mjs +6 -2
  273. package/dist/interaction_client/PopupClient.mjs.map +1 -1
  274. package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
  275. package/dist/interaction_client/RedirectClient.mjs +6 -2
  276. package/dist/interaction_client/RedirectClient.mjs.map +1 -1
  277. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  278. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  279. package/dist/interaction_client/SilentIframeClient.d.ts +14 -0
  280. package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
  281. package/dist/interaction_client/SilentIframeClient.mjs +45 -3
  282. package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
  283. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  284. package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
  285. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  286. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  287. package/dist/log-strings-mapping.json +49 -17
  288. package/dist/naa/BridgeError.mjs +1 -1
  289. package/dist/naa/BridgeProxy.mjs +1 -1
  290. package/dist/naa/BridgeStatusCode.mjs +1 -1
  291. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  292. package/dist/navigation/NavigationClient.mjs +1 -1
  293. package/dist/network/FetchClient.mjs +1 -1
  294. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  295. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  296. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  297. package/dist/packageMetadata.d.ts +1 -1
  298. package/dist/packageMetadata.mjs +2 -2
  299. package/dist/protocol/Authorize.d.ts.map +1 -1
  300. package/dist/protocol/Authorize.mjs +5 -1
  301. package/dist/protocol/Authorize.mjs.map +1 -1
  302. package/dist/redirect-bridge/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  303. package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts +2 -4
  304. package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts.map +1 -1
  305. package/dist/redirect-bridge/cache/CacheKeys.d.ts +3 -2
  306. package/dist/redirect-bridge/cache/CacheKeys.d.ts.map +1 -1
  307. package/dist/redirect-bridge/cache/CacheKeys.mjs +1 -1
  308. package/dist/redirect-bridge/config/Configuration.d.ts +7 -0
  309. package/dist/redirect-bridge/config/Configuration.d.ts.map +1 -1
  310. package/dist/redirect-bridge/config/Configuration.mjs +1 -1
  311. package/dist/redirect-bridge/controllers/StandardController.d.ts +16 -0
  312. package/dist/redirect-bridge/controllers/StandardController.d.ts.map +1 -1
  313. package/dist/redirect-bridge/custom_auth/CustomAuthConstants.d.ts +1 -1
  314. package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts +1 -0
  315. package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  316. package/dist/redirect-bridge/encode/Base64Decode.mjs +1 -1
  317. package/dist/redirect-bridge/error/BrowserAuthError.mjs +1 -1
  318. package/dist/redirect-bridge/error/BrowserAuthErrorCodes.mjs +1 -1
  319. package/dist/redirect-bridge/error/NativeAuthError.d.ts.map +1 -1
  320. package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  321. package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  322. package/dist/redirect-bridge/interaction_client/PopupClient.d.ts.map +1 -1
  323. package/dist/redirect-bridge/interaction_client/RedirectClient.d.ts.map +1 -1
  324. package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts +14 -0
  325. package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts.map +1 -1
  326. package/dist/redirect-bridge/navigation/NavigationClient.mjs +1 -1
  327. package/dist/redirect-bridge/packageMetadata.d.ts +1 -1
  328. package/dist/redirect-bridge/protocol/Authorize.d.ts.map +1 -1
  329. package/dist/redirect-bridge/redirect_bridge/index.d.ts.map +1 -1
  330. package/dist/redirect-bridge/redirect_bridge/index.mjs +11 -7
  331. package/dist/redirect-bridge/redirect_bridge/index.mjs.map +1 -1
  332. package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  333. package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  334. package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  335. package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  336. package/dist/redirect-bridge/utils/BrowserConstants.mjs +7 -3
  337. package/dist/redirect-bridge/utils/BrowserConstants.mjs.map +1 -1
  338. package/dist/redirect-bridge/utils/BrowserUtils.mjs +1 -1
  339. package/dist/redirect_bridge/index.d.ts.map +1 -1
  340. package/dist/request/RequestHelpers.mjs +1 -1
  341. package/dist/response/ResponseHandler.mjs +1 -1
  342. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  343. package/dist/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  344. package/dist/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  345. package/dist/telemetry/BrowserPerformanceEvents.mjs +3 -2
  346. package/dist/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
  347. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  348. package/dist/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  349. package/dist/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  350. package/dist/telemetry/BrowserRootPerformanceEvents.mjs +10 -3
  351. package/dist/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
  352. package/dist/utils/BrowserConstants.mjs +1 -1
  353. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  354. package/dist/utils/BrowserUtils.mjs +1 -1
  355. package/dist/utils/Helpers.mjs +1 -1
  356. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  357. package/lib/custom-auth-path/log-strings-mapping.json +49 -17
  358. package/lib/custom-auth-path/msal-custom-auth.cjs +418 -164
  359. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  360. package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  361. package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts +2 -4
  362. package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts.map +1 -1
  363. package/lib/custom-auth-path/types/cache/CacheKeys.d.ts +3 -2
  364. package/lib/custom-auth-path/types/cache/CacheKeys.d.ts.map +1 -1
  365. package/lib/custom-auth-path/types/config/Configuration.d.ts +7 -0
  366. package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
  367. package/lib/custom-auth-path/types/controllers/StandardController.d.ts +16 -0
  368. package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
  369. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  370. package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts +1 -0
  371. package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  372. package/lib/custom-auth-path/types/error/NativeAuthError.d.ts.map +1 -1
  373. package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  374. package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  375. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
  376. package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
  377. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +14 -0
  378. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  379. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  380. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  381. package/lib/custom-auth-path/types/redirect_bridge/index.d.ts.map +1 -1
  382. package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  383. package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  384. package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  385. package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  386. package/lib/log-strings-mapping.json +49 -17
  387. package/lib/msal-browser.cjs +427 -169
  388. package/lib/msal-browser.cjs.map +1 -1
  389. package/lib/msal-browser.js +427 -169
  390. package/lib/msal-browser.js.map +1 -1
  391. package/lib/msal-browser.min.js +2 -2
  392. package/lib/redirect-bridge/msal-redirect-bridge.cjs +734 -0
  393. package/lib/redirect-bridge/msal-redirect-bridge.cjs.map +1 -0
  394. package/lib/redirect-bridge/msal-redirect-bridge.js +24 -16
  395. package/lib/redirect-bridge/msal-redirect-bridge.js.map +1 -1
  396. package/lib/redirect-bridge/msal-redirect-bridge.min.js +2 -2
  397. package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts +48 -0
  398. package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts.map +1 -0
  399. package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts +247 -0
  400. package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts.map +1 -0
  401. package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts +12 -0
  402. package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts.map +1 -0
  403. package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts +9 -0
  404. package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts.map +1 -0
  405. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts +30 -0
  406. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts.map +1 -0
  407. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts +63 -0
  408. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts.map +1 -0
  409. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts +28 -0
  410. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -0
  411. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts +79 -0
  412. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts.map +1 -0
  413. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts +71 -0
  414. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts.map +1 -0
  415. package/lib/redirect-bridge/types/cache/AccountManager.d.ts +24 -0
  416. package/lib/redirect-bridge/types/cache/AccountManager.d.ts.map +1 -0
  417. package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts +58 -0
  418. package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts.map +1 -0
  419. package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts +364 -0
  420. package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts.map +1 -0
  421. package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts +16 -0
  422. package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts.map +1 -0
  423. package/lib/redirect-bridge/types/cache/CacheKeys.d.ts +15 -0
  424. package/lib/redirect-bridge/types/cache/CacheKeys.d.ts.map +1 -0
  425. package/lib/redirect-bridge/types/cache/CookieStorage.d.ts +23 -0
  426. package/lib/redirect-bridge/types/cache/CookieStorage.d.ts.map +1 -0
  427. package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts +57 -0
  428. package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts.map +1 -0
  429. package/lib/redirect-bridge/types/cache/EncryptedData.d.ts +8 -0
  430. package/lib/redirect-bridge/types/cache/EncryptedData.d.ts.map +1 -0
  431. package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts +33 -0
  432. package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts.map +1 -0
  433. package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts +42 -0
  434. package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts.map +1 -0
  435. package/lib/redirect-bridge/types/cache/LocalStorage.d.ts +51 -0
  436. package/lib/redirect-bridge/types/cache/LocalStorage.d.ts.map +1 -0
  437. package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts +16 -0
  438. package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts.map +1 -0
  439. package/lib/redirect-bridge/types/cache/SessionStorage.d.ts +14 -0
  440. package/lib/redirect-bridge/types/cache/SessionStorage.d.ts.map +1 -0
  441. package/lib/redirect-bridge/types/cache/TokenCache.d.ts +20 -0
  442. package/lib/redirect-bridge/types/cache/TokenCache.d.ts.map +1 -0
  443. package/lib/redirect-bridge/types/config/Configuration.d.ts +198 -0
  444. package/lib/redirect-bridge/types/config/Configuration.d.ts.map +1 -0
  445. package/lib/redirect-bridge/types/controllers/IController.d.ts +3 -0
  446. package/lib/redirect-bridge/types/controllers/IController.d.ts.map +1 -0
  447. package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts +159 -0
  448. package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts.map +1 -0
  449. package/lib/redirect-bridge/types/controllers/StandardController.d.ts +398 -0
  450. package/lib/redirect-bridge/types/controllers/StandardController.d.ts.map +1 -0
  451. package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts +73 -0
  452. package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts.map +1 -0
  453. package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts +96 -0
  454. package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts.map +1 -0
  455. package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts +77 -0
  456. package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts.map +1 -0
  457. package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts +9 -0
  458. package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts.map +1 -0
  459. package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts +32 -0
  460. package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts.map +1 -0
  461. package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts +29 -0
  462. package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
  463. package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts +35 -0
  464. package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts.map +1 -0
  465. package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
  466. package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
  467. package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
  468. package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
  469. package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts +13 -0
  470. package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts.map +1 -0
  471. package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts +14 -0
  472. package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
  473. package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts +27 -0
  474. package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
  475. package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
  476. package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
  477. package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
  478. package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
  479. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +40 -0
  480. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
  481. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
  482. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
  483. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +31 -0
  484. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
  485. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts +29 -0
  486. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts.map +1 -0
  487. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
  488. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
  489. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
  490. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
  491. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +47 -0
  492. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
  493. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +37 -0
  494. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
  495. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +11 -0
  496. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
  497. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +11 -0
  498. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
  499. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +82 -0
  500. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
  501. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
  502. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
  503. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +27 -0
  504. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
  505. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +40 -0
  506. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
  507. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +34 -0
  508. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
  509. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +11 -0
  510. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
  511. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +11 -0
  512. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
  513. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +67 -0
  514. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
  515. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
  516. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
  517. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts +20 -0
  518. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
  519. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts +9 -0
  520. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
  521. package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts +5 -0
  522. package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts.map +1 -0
  523. package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
  524. package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
  525. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
  526. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
  527. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
  528. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
  529. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
  530. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
  531. package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
  532. package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
  533. package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts +5 -0
  534. package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
  535. package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
  536. package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
  537. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
  538. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
  539. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
  540. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
  541. package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts +5 -0
  542. package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
  543. package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
  544. package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
  545. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
  546. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
  547. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
  548. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
  549. package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
  550. package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
  551. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +34 -0
  552. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
  553. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
  554. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
  555. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
  556. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
  557. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
  558. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
  559. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
  560. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
  561. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
  562. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
  563. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
  564. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
  565. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
  566. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
  567. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +15 -0
  568. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
  569. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +14 -0
  570. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
  571. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +16 -0
  572. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
  573. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +11 -0
  574. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
  575. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
  576. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
  577. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +34 -0
  578. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
  579. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +37 -0
  580. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
  581. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +23 -0
  582. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
  583. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +23 -0
  584. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
  585. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
  586. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
  587. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +86 -0
  588. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
  589. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +71 -0
  590. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
  591. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +13 -0
  592. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
  593. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
  594. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
  595. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
  596. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
  597. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
  598. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
  599. package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts +25 -0
  600. package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
  601. package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts +4 -0
  602. package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
  603. package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts +3 -0
  604. package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
  605. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
  606. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
  607. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
  608. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
  609. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
  610. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
  611. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
  612. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
  613. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
  614. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
  615. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +20 -0
  616. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
  617. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +20 -0
  618. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
  619. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +20 -0
  620. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
  621. package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
  622. package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
  623. package/lib/redirect-bridge/types/custom_auth/index.d.ts +84 -0
  624. package/lib/redirect-bridge/types/custom_auth/index.d.ts.map +1 -0
  625. package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
  626. package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
  627. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +40 -0
  628. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
  629. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
  630. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
  631. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
  632. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
  633. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
  634. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
  635. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
  636. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
  637. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +27 -0
  638. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
  639. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +11 -0
  640. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
  641. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +11 -0
  642. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
  643. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +16 -0
  644. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
  645. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
  646. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
  647. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +19 -0
  648. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
  649. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
  650. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
  651. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
  652. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
  653. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
  654. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
  655. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
  656. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
  657. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +45 -0
  658. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
  659. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
  660. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
  661. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +72 -0
  662. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
  663. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +51 -0
  664. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
  665. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +46 -0
  666. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
  667. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +33 -0
  668. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
  669. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +12 -0
  670. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
  671. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +17 -0
  672. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
  673. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +11 -0
  674. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
  675. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +21 -0
  676. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
  677. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +22 -0
  678. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
  679. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +25 -0
  680. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
  681. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +49 -0
  682. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
  683. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +32 -0
  684. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
  685. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +43 -0
  686. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
  687. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +62 -0
  688. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
  689. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
  690. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
  691. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
  692. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
  693. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
  694. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
  695. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
  696. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
  697. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
  698. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
  699. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +25 -0
  700. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
  701. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +32 -0
  702. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
  703. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +11 -0
  704. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
  705. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +11 -0
  706. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
  707. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +16 -0
  708. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
  709. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
  710. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
  711. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +24 -0
  712. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
  713. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
  714. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
  715. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
  716. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
  717. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
  718. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
  719. package/lib/redirect-bridge/types/encode/Base64Decode.d.ts +15 -0
  720. package/lib/redirect-bridge/types/encode/Base64Decode.d.ts.map +1 -0
  721. package/lib/redirect-bridge/types/encode/Base64Encode.d.ts +20 -0
  722. package/lib/redirect-bridge/types/encode/Base64Encode.d.ts.map +1 -0
  723. package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts +12 -0
  724. package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts.map +1 -0
  725. package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts +53 -0
  726. package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts.map +1 -0
  727. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts +11 -0
  728. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts.map +1 -0
  729. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts +4 -0
  730. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts.map +1 -0
  731. package/lib/redirect-bridge/types/error/NativeAuthError.d.ts +27 -0
  732. package/lib/redirect-bridge/types/error/NativeAuthError.d.ts.map +1 -0
  733. package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts +5 -0
  734. package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts.map +1 -0
  735. package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts +6 -0
  736. package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts.map +1 -0
  737. package/lib/redirect-bridge/types/event/EventHandler.d.ts +49 -0
  738. package/lib/redirect-bridge/types/event/EventHandler.d.ts.map +1 -0
  739. package/lib/redirect-bridge/types/event/EventMessage.d.ts +41 -0
  740. package/lib/redirect-bridge/types/event/EventMessage.d.ts.map +1 -0
  741. package/lib/redirect-bridge/types/event/EventType.d.ts +24 -0
  742. package/lib/redirect-bridge/types/event/EventType.d.ts.map +1 -0
  743. package/lib/redirect-bridge/types/index.d.ts +73 -0
  744. package/lib/redirect-bridge/types/index.d.ts.map +1 -0
  745. package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts +77 -0
  746. package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts.map +1 -0
  747. package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts +5 -0
  748. package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts.map +1 -0
  749. package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts +151 -0
  750. package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -0
  751. package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts +106 -0
  752. package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts.map +1 -0
  753. package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts +77 -0
  754. package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts.map +1 -0
  755. package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts +24 -0
  756. package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts.map +1 -0
  757. package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts +17 -0
  758. package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts.map +1 -0
  759. package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts +57 -0
  760. package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts.map +1 -0
  761. package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts +32 -0
  762. package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts.map +1 -0
  763. package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts +76 -0
  764. package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts.map +1 -0
  765. package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts +33 -0
  766. package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts.map +1 -0
  767. package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts +17 -0
  768. package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts.map +1 -0
  769. package/lib/redirect-bridge/types/naa/AccountInfo.d.ts +13 -0
  770. package/lib/redirect-bridge/types/naa/AccountInfo.d.ts.map +1 -0
  771. package/lib/redirect-bridge/types/naa/AuthBridge.d.ts +9 -0
  772. package/lib/redirect-bridge/types/naa/AuthBridge.d.ts.map +1 -0
  773. package/lib/redirect-bridge/types/naa/AuthResult.d.ts +7 -0
  774. package/lib/redirect-bridge/types/naa/AuthResult.d.ts.map +1 -0
  775. package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts +13 -0
  776. package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts.map +1 -0
  777. package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts +4 -0
  778. package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts.map +1 -0
  779. package/lib/redirect-bridge/types/naa/BridgeError.d.ts +10 -0
  780. package/lib/redirect-bridge/types/naa/BridgeError.d.ts.map +1 -0
  781. package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts +69 -0
  782. package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts.map +1 -0
  783. package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts +8 -0
  784. package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts.map +1 -0
  785. package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts +13 -0
  786. package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts.map +1 -0
  787. package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts +14 -0
  788. package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts.map +1 -0
  789. package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts +12 -0
  790. package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts.map +1 -0
  791. package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts +11 -0
  792. package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts.map +1 -0
  793. package/lib/redirect-bridge/types/naa/InitContext.d.ts +9 -0
  794. package/lib/redirect-bridge/types/naa/InitContext.d.ts.map +1 -0
  795. package/lib/redirect-bridge/types/naa/TokenRequest.d.ts +21 -0
  796. package/lib/redirect-bridge/types/naa/TokenRequest.d.ts.map +1 -0
  797. package/lib/redirect-bridge/types/naa/TokenResponse.d.ts +14 -0
  798. package/lib/redirect-bridge/types/naa/TokenResponse.d.ts.map +1 -0
  799. package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts +36 -0
  800. package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -0
  801. package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts +17 -0
  802. package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts.map +1 -0
  803. package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts +23 -0
  804. package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts.map +1 -0
  805. package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts +13 -0
  806. package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts.map +1 -0
  807. package/lib/redirect-bridge/types/network/FetchClient.d.ts +21 -0
  808. package/lib/redirect-bridge/types/network/FetchClient.d.ts.map +1 -0
  809. package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts +43 -0
  810. package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts.map +1 -0
  811. package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts +41 -0
  812. package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -0
  813. package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts +26 -0
  814. package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts.map +1 -0
  815. package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts +26 -0
  816. package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts.map +1 -0
  817. package/lib/redirect-bridge/types/packageMetadata.d.ts +3 -0
  818. package/lib/redirect-bridge/types/packageMetadata.d.ts.map +1 -0
  819. package/lib/redirect-bridge/types/protocol/Authorize.d.ts +102 -0
  820. package/lib/redirect-bridge/types/protocol/Authorize.d.ts.map +1 -0
  821. package/lib/redirect-bridge/types/redirect_bridge/index.d.ts +16 -0
  822. package/lib/redirect-bridge/types/redirect_bridge/index.d.ts.map +1 -0
  823. package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts +27 -0
  824. package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts.map +1 -0
  825. package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts +15 -0
  826. package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts.map +1 -0
  827. package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts +24 -0
  828. package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts.map +1 -0
  829. package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts +11 -0
  830. package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts.map +1 -0
  831. package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts +5 -0
  832. package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts.map +1 -0
  833. package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts +10 -0
  834. package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts.map +1 -0
  835. package/lib/redirect-bridge/types/request/PopupRequest.d.ts +25 -0
  836. package/lib/redirect-bridge/types/request/PopupRequest.d.ts.map +1 -0
  837. package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts +16 -0
  838. package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts.map +1 -0
  839. package/lib/redirect-bridge/types/request/RedirectRequest.d.ts +16 -0
  840. package/lib/redirect-bridge/types/request/RedirectRequest.d.ts.map +1 -0
  841. package/lib/redirect-bridge/types/request/RequestHelpers.d.ts +28 -0
  842. package/lib/redirect-bridge/types/request/RequestHelpers.d.ts.map +1 -0
  843. package/lib/redirect-bridge/types/request/SilentRequest.d.ts +52 -0
  844. package/lib/redirect-bridge/types/request/SilentRequest.d.ts.map +1 -0
  845. package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts +6 -0
  846. package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts.map +1 -0
  847. package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts +5 -0
  848. package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts.map +1 -0
  849. package/lib/redirect-bridge/types/response/ResponseHandler.d.ts +8 -0
  850. package/lib/redirect-bridge/types/response/ResponseHandler.d.ts.map +1 -0
  851. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts +19 -0
  852. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -0
  853. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts +140 -0
  854. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -0
  855. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts +22 -0
  856. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts.map +1 -0
  857. package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts +42 -0
  858. package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -0
  859. package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts +182 -0
  860. package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts.map +1 -0
  861. package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts +12 -0
  862. package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts.map +1 -0
  863. package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts +111 -0
  864. package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts.map +1 -0
  865. package/lib/redirect-bridge/types/utils/Helpers.d.ts +7 -0
  866. package/lib/redirect-bridge/types/utils/Helpers.d.ts.map +1 -0
  867. package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts +13 -0
  868. package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts.map +1 -0
  869. package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  870. package/lib/types/cache/BrowserCacheManager.d.ts +2 -4
  871. package/lib/types/cache/BrowserCacheManager.d.ts.map +1 -1
  872. package/lib/types/cache/CacheKeys.d.ts +3 -2
  873. package/lib/types/cache/CacheKeys.d.ts.map +1 -1
  874. package/lib/types/config/Configuration.d.ts +7 -0
  875. package/lib/types/config/Configuration.d.ts.map +1 -1
  876. package/lib/types/controllers/StandardController.d.ts +16 -0
  877. package/lib/types/controllers/StandardController.d.ts.map +1 -1
  878. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  879. package/lib/types/custom_auth/UserAccountAttributes.d.ts +1 -0
  880. package/lib/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  881. package/lib/types/error/NativeAuthError.d.ts.map +1 -1
  882. package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  883. package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  884. package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
  885. package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
  886. package/lib/types/interaction_client/SilentIframeClient.d.ts +14 -0
  887. package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  888. package/lib/types/packageMetadata.d.ts +1 -1
  889. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  890. package/lib/types/redirect_bridge/index.d.ts.map +1 -1
  891. package/lib/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  892. package/lib/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  893. package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  894. package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  895. package/package.json +3 -3
  896. package/src/broker/nativeBroker/PlatformAuthExtensionHandler.ts +1 -1
  897. package/src/broker/nativeBroker/PlatformAuthProvider.ts +1 -1
  898. package/src/cache/BrowserCacheManager.ts +5 -5
  899. package/src/cache/CacheKeys.ts +3 -2
  900. package/src/config/Configuration.ts +8 -0
  901. package/src/controllers/StandardController.ts +290 -39
  902. package/src/custom_auth/UserAccountAttributes.ts +1 -0
  903. package/src/error/NativeAuthError.ts +1 -2
  904. package/src/interaction_client/PlatformAuthInteractionClient.ts +82 -37
  905. package/src/interaction_client/PopupClient.ts +10 -0
  906. package/src/interaction_client/RedirectClient.ts +10 -0
  907. package/src/interaction_client/SilentIframeClient.ts +123 -20
  908. package/src/packageMetadata.ts +1 -1
  909. package/src/protocol/Authorize.ts +8 -0
  910. package/src/redirect_bridge/index.ts +12 -5
  911. package/src/telemetry/BrowserPerformanceEvents.ts +3 -0
  912. package/src/telemetry/BrowserRootPerformanceEvents.ts +7 -0
@@ -1,8 +1,8 @@
1
- /*! @azure/msal-browser v5.6.3 2026-04-01 */
1
+ /*! @azure/msal-browser v5.8.0 2026-04-21 */
2
2
  'use strict';
3
3
  'use strict';
4
4
 
5
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6
6
  /*
7
7
  * Copyright (c) Microsoft Corporation. All rights reserved.
8
8
  * Licensed under the MIT License.
@@ -229,7 +229,7 @@ const JsonWebTokenTypes = {
229
229
  // Token renewal offset default in seconds
230
230
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
231
231
 
232
- /*! @azure/msal-common v16.4.1 2026-04-01 */
232
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
233
233
  /*
234
234
  * Copyright (c) Microsoft Corporation. All rights reserved.
235
235
  * Licensed under the MIT License.
@@ -281,7 +281,7 @@ const EAR_JWE_CRYPTO = "ear_jwe_crypto";
281
281
  const RESOURCE = "resource";
282
282
  const CLI_DATA = "clidata";
283
283
 
284
- /*! @azure/msal-common v16.4.1 2026-04-01 */
284
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
285
285
  /*
286
286
  * Copyright (c) Microsoft Corporation. All rights reserved.
287
287
  * Licensed under the MIT License.
@@ -312,7 +312,7 @@ function createAuthError(code, additionalMessage) {
312
312
  return new AuthError(code, additionalMessage || getDefaultErrorMessage$1(code));
313
313
  }
314
314
 
315
- /*! @azure/msal-common v16.4.1 2026-04-01 */
315
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
316
316
 
317
317
  /*
318
318
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -332,7 +332,7 @@ function createClientConfigurationError(errorCode) {
332
332
  return new ClientConfigurationError(errorCode);
333
333
  }
334
334
 
335
- /*! @azure/msal-common v16.4.1 2026-04-01 */
335
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
336
336
  /*
337
337
  * Copyright (c) Microsoft Corporation. All rights reserved.
338
338
  * Licensed under the MIT License.
@@ -412,7 +412,7 @@ class StringUtils {
412
412
  }
413
413
  }
414
414
 
415
- /*! @azure/msal-common v16.4.1 2026-04-01 */
415
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
416
416
 
417
417
  /*
418
418
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -435,7 +435,7 @@ function createClientAuthError(errorCode, additionalMessage) {
435
435
  return new ClientAuthError(errorCode, additionalMessage);
436
436
  }
437
437
 
438
- /*! @azure/msal-common v16.4.1 2026-04-01 */
438
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
439
439
  /*
440
440
  * Copyright (c) Microsoft Corporation. All rights reserved.
441
441
  * Licensed under the MIT License.
@@ -459,7 +459,7 @@ const cannotAllowPlatformBroker = "cannot_allow_platform_broker";
459
459
  const authorityMismatch = "authority_mismatch";
460
460
  const invalidRequestMethodForEAR = "invalid_request_method_for_EAR";
461
461
 
462
- /*! @azure/msal-common v16.4.1 2026-04-01 */
462
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
463
463
  /*
464
464
  * Copyright (c) Microsoft Corporation. All rights reserved.
465
465
  * Licensed under the MIT License.
@@ -498,7 +498,7 @@ const methodNotImplemented = "method_not_implemented";
498
498
  const resourceParameterRequired = "resource_parameter_required";
499
499
  const misplacedResourceParam = "misplaced_resource_parameter";
500
500
 
501
- /*! @azure/msal-common v16.4.1 2026-04-01 */
501
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
502
502
 
503
503
  /*
504
504
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -693,7 +693,7 @@ class ScopeSet {
693
693
  }
694
694
  }
695
695
 
696
- /*! @azure/msal-common v16.4.1 2026-04-01 */
696
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
697
697
 
698
698
  /*
699
699
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -814,18 +814,29 @@ function addSid(parameters, sid) {
814
814
  parameters.set(SID, sid);
815
815
  }
816
816
  /**
817
- * add claims
818
- * @param claims
819
- */
820
- function addClaims(parameters, claims, clientCapabilities) {
821
- const mergedClaims = addClientCapabilitiesToClaims(claims, clientCapabilities);
822
- try {
823
- JSON.parse(mergedClaims);
824
- }
825
- catch (e) {
826
- throw createClientConfigurationError(invalidClaims);
817
+ * Adds claims to request parameters, conditionally excluding clientCapabilities
818
+ * when skipBrokerClaims is true and a brokered flow is in effect.
819
+ * @param parameters - The request parameters map
820
+ * @param claims - The claims string from the request
821
+ * @param clientCapabilities - The client capabilities from configuration
822
+ * @param skipBrokerClaims - When true and BROKER_CLIENT_ID is present, excludes clientCapabilities from claims
823
+ */
824
+ function addClaims(parameters, claims, clientCapabilities, skipBrokerClaims) {
825
+ // Skip clientCapabilities if skipBrokerClaims is set to true and this is a brokered authentication flow
826
+ const configClaims = skipBrokerClaims && parameters.has(BROKER_CLIENT_ID)
827
+ ? undefined
828
+ : clientCapabilities;
829
+ if (!StringUtils.isEmptyObj(claims) ||
830
+ (configClaims && configClaims.length > 0)) {
831
+ const mergedClaims = addClientCapabilitiesToClaims(claims, configClaims);
832
+ try {
833
+ JSON.parse(mergedClaims);
834
+ }
835
+ catch (e) {
836
+ throw createClientConfigurationError(invalidClaims);
837
+ }
838
+ parameters.set(CLAIMS, mergedClaims);
827
839
  }
828
- parameters.set(CLAIMS, mergedClaims);
829
840
  }
830
841
  /**
831
842
  * add correlationId
@@ -1071,7 +1082,7 @@ function addResource(parameters, resource) {
1071
1082
  }
1072
1083
  }
1073
1084
 
1074
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1085
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1075
1086
 
1076
1087
  /*
1077
1088
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1180,7 +1191,7 @@ function normalizeUrlForComparison(url) {
1180
1191
  }
1181
1192
  }
1182
1193
 
1183
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1194
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1184
1195
 
1185
1196
  /*
1186
1197
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1219,7 +1230,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
1219
1230
  },
1220
1231
  };
1221
1232
 
1222
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1233
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1223
1234
  /*
1224
1235
  * Copyright (c) Microsoft Corporation. All rights reserved.
1225
1236
  * Licensed under the MIT License.
@@ -1480,12 +1491,12 @@ class Logger {
1480
1491
  }
1481
1492
  }
1482
1493
 
1483
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1494
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1484
1495
  /* eslint-disable header/header */
1485
1496
  const name$1 = "@azure/msal-common";
1486
- const version$1 = "16.4.1";
1497
+ const version$1 = "16.5.1";
1487
1498
 
1488
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1499
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1489
1500
  /*
1490
1501
  * Copyright (c) Microsoft Corporation. All rights reserved.
1491
1502
  * Licensed under the MIT License.
@@ -1494,7 +1505,7 @@ const AzureCloudInstance = {
1494
1505
  // AzureCloudInstance is not specified.
1495
1506
  None: "none"};
1496
1507
 
1497
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1508
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1498
1509
  /*
1499
1510
  * Copyright (c) Microsoft Corporation. All rights reserved.
1500
1511
  * Licensed under the MIT License.
@@ -1535,6 +1546,7 @@ function buildTenantProfile(homeAccountId, localAccountId, tenantId, idTokenClai
1535
1546
  username: preferred_username || upn || "",
1536
1547
  loginHint: login_hint,
1537
1548
  isHomeTenant: tenantIdMatchesHomeTenant(tenantId, homeAccountId),
1549
+ upn: upn,
1538
1550
  };
1539
1551
  }
1540
1552
  else {
@@ -1562,7 +1574,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1562
1574
  }
1563
1575
  // ID token claims override passed in account info and tenant profile
1564
1576
  if (idTokenClaims) {
1565
- // Ignore isHomeTenant, loginHint, and sid which are part of tenant profile but not base account info
1577
+ // Ignore isHomeTenant which is a utility property of tenant profile but not required in base account info
1566
1578
  // eslint-disable-next-line @typescript-eslint/no-unused-vars
1567
1579
  const { isHomeTenant, ...claimsSourcedTenantProfile } = buildTenantProfile(baseAccountInfo.homeAccountId, baseAccountInfo.localAccountId, baseAccountInfo.tenantId, idTokenClaims);
1568
1580
  updatedAccountInfo = {
@@ -1576,7 +1588,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1576
1588
  return updatedAccountInfo;
1577
1589
  }
1578
1590
 
1579
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1591
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1580
1592
 
1581
1593
  /*
1582
1594
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1656,7 +1668,7 @@ function checkMaxAge(authTime, maxAge) {
1656
1668
  }
1657
1669
  }
1658
1670
 
1659
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1671
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1660
1672
 
1661
1673
  /*
1662
1674
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1813,7 +1825,7 @@ class UrlString {
1813
1825
  }
1814
1826
  }
1815
1827
 
1816
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1828
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1817
1829
 
1818
1830
  /*
1819
1831
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1970,7 +1982,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
1970
1982
  return null;
1971
1983
  }
1972
1984
 
1973
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1985
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1974
1986
  /*
1975
1987
  * Copyright (c) Microsoft Corporation. All rights reserved.
1976
1988
  * Licensed under the MIT License.
@@ -1978,7 +1990,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
1978
1990
  const cacheQuotaExceeded = "cache_quota_exceeded";
1979
1991
  const cacheErrorUnknown = "cache_error_unknown";
1980
1992
 
1981
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1993
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1982
1994
 
1983
1995
  /*
1984
1996
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2016,7 +2028,7 @@ function createCacheError(e) {
2016
2028
  }
2017
2029
  }
2018
2030
 
2019
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2031
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2020
2032
 
2021
2033
  /*
2022
2034
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2054,7 +2066,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
2054
2066
  };
2055
2067
  }
2056
2068
 
2057
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2069
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2058
2070
  /*
2059
2071
  * Copyright (c) Microsoft Corporation. All rights reserved.
2060
2072
  * Licensed under the MIT License.
@@ -2069,7 +2081,7 @@ const AuthorityType = {
2069
2081
  Ciam: 3,
2070
2082
  };
2071
2083
 
2072
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2084
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2073
2085
  /*
2074
2086
  * Copyright (c) Microsoft Corporation. All rights reserved.
2075
2087
  * Licensed under the MIT License.
@@ -2091,7 +2103,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
2091
2103
  return null;
2092
2104
  }
2093
2105
 
2094
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2106
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2095
2107
  /*
2096
2108
  * Copyright (c) Microsoft Corporation. All rights reserved.
2097
2109
  * Licensed under the MIT License.
@@ -2115,7 +2127,7 @@ const ProtocolMode = {
2115
2127
  EAR: "EAR",
2116
2128
  };
2117
2129
 
2118
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2130
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2119
2131
  /**
2120
2132
  * Returns the AccountInfo interface for this account.
2121
2133
  */
@@ -2290,7 +2302,7 @@ function isAccountEntity(entity) {
2290
2302
  entity.hasOwnProperty("authorityType"));
2291
2303
  }
2292
2304
 
2293
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2305
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2294
2306
 
2295
2307
  /*
2296
2308
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2427,6 +2439,19 @@ class CacheManager {
2427
2439
  !(tenantProfile.isHomeTenant === tenantProfileFilter.isHomeTenant)) {
2428
2440
  return false;
2429
2441
  }
2442
+ if (!!tenantProfileFilter.username &&
2443
+ !(this.matchUsername(tenantProfile.username, tenantProfileFilter.username) ||
2444
+ !this.matchUsername(tenantProfile.upn, tenantProfileFilter.username))) {
2445
+ return false;
2446
+ }
2447
+ if (!!tenantProfileFilter.loginHint &&
2448
+ !this.matchLoginHintWithTenantProfile(tenantProfile, tenantProfileFilter.loginHint)) {
2449
+ return false;
2450
+ }
2451
+ if (!!tenantProfileFilter.upn &&
2452
+ !(tenantProfile.upn === tenantProfileFilter.upn)) {
2453
+ return false;
2454
+ }
2430
2455
  return true;
2431
2456
  }
2432
2457
  idTokenClaimsMatchTenantProfileFilter(idTokenClaims, tenantProfileFilter) {
@@ -2441,7 +2466,8 @@ class CacheManager {
2441
2466
  return false;
2442
2467
  }
2443
2468
  if (!!tenantProfileFilter.username &&
2444
- !this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username)) {
2469
+ !this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username) &&
2470
+ !this.matchUsername(idTokenClaims.upn, tenantProfileFilter.username)) {
2445
2471
  return false;
2446
2472
  }
2447
2473
  if (!!tenantProfileFilter.name &&
@@ -2542,10 +2568,6 @@ class CacheManager {
2542
2568
  !this.matchHomeAccountId(entity, accountFilter.homeAccountId)) {
2543
2569
  return;
2544
2570
  }
2545
- if (!!accountFilter.username &&
2546
- !this.matchUsername(entity.username, accountFilter.username)) {
2547
- return;
2548
- }
2549
2571
  if (!!accountFilter.environment &&
2550
2572
  !this.matchEnvironment(entity, accountFilter.environment, correlationId)) {
2551
2573
  return;
@@ -2566,6 +2588,9 @@ class CacheManager {
2566
2588
  const tenantProfileFilter = {
2567
2589
  localAccountId: accountFilter?.localAccountId,
2568
2590
  name: accountFilter?.name,
2591
+ username: accountFilter?.username,
2592
+ loginHint: accountFilter?.loginHint,
2593
+ upn: accountFilter?.upn,
2569
2594
  };
2570
2595
  const matchingTenantProfiles = entity.tenantProfiles?.filter((tenantProfile) => {
2571
2596
  return this.tenantProfileMatchesFilter(tenantProfile, tenantProfileFilter);
@@ -2816,11 +2841,11 @@ class CacheManager {
2816
2841
  const numHomeIdTokens = homeIdTokenMap.size;
2817
2842
  if (numHomeIdTokens < 1) {
2818
2843
  this.commonLogger.info("0ooalx", correlationId);
2819
- return idTokenMap.values().next().value;
2844
+ return idTokenMap.values().next().value ?? null;
2820
2845
  }
2821
2846
  else if (numHomeIdTokens === 1) {
2822
2847
  this.commonLogger.info("1eq2vc", correlationId);
2823
- return homeIdTokenMap.values().next().value;
2848
+ return homeIdTokenMap.values().next().value ?? null;
2824
2849
  }
2825
2850
  else {
2826
2851
  // Multiple ID tokens for home tenant profile, remove all and return null
@@ -2836,7 +2861,7 @@ class CacheManager {
2836
2861
  return null;
2837
2862
  }
2838
2863
  this.commonLogger.info("1sm769", correlationId);
2839
- return idTokenMap.values().next().value;
2864
+ return idTokenMap.values().next().value ?? null;
2840
2865
  }
2841
2866
  /**
2842
2867
  * Gets all idTokens matching the given filter
@@ -3148,6 +3173,17 @@ class CacheManager {
3148
3173
  typeof cachedUsername === "string" &&
3149
3174
  filterUsername?.toLowerCase() === cachedUsername.toLowerCase());
3150
3175
  }
3176
+ /**
3177
+ * helper to match loginhints
3178
+ * @param entity
3179
+ * @param loginHint
3180
+ * @returns
3181
+ */
3182
+ matchLoginHintWithTenantProfile(tenantProfile, loginHintFilter) {
3183
+ return (tenantProfile.loginHint === loginHintFilter ||
3184
+ tenantProfile.username === loginHintFilter ||
3185
+ tenantProfile.upn === loginHintFilter);
3186
+ }
3151
3187
  /**
3152
3188
  * helper to match assertion
3153
3189
  * @param value
@@ -3240,6 +3276,10 @@ class CacheManager {
3240
3276
  if (tokenClaims.upn === loginHint) {
3241
3277
  return true;
3242
3278
  }
3279
+ // check login hint against list of emails in token claims
3280
+ if (tokenClaims.emails && tokenClaims.emails.includes(loginHint)) {
3281
+ return true;
3282
+ }
3243
3283
  return false;
3244
3284
  }
3245
3285
  /**
@@ -3391,7 +3431,7 @@ class DefaultStorageClass extends CacheManager {
3391
3431
  }
3392
3432
  }
3393
3433
 
3394
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3434
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3395
3435
  /*
3396
3436
  * Copyright (c) Microsoft Corporation. All rights reserved.
3397
3437
  * Licensed under the MIT License.
@@ -3405,7 +3445,7 @@ class DefaultStorageClass extends CacheManager {
3405
3445
  const PerformanceEventStatus = {
3406
3446
  InProgress: 1};
3407
3447
 
3408
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3448
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3409
3449
 
3410
3450
  /*
3411
3451
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3460,7 +3500,7 @@ class StubPerformanceClient {
3460
3500
  }
3461
3501
  }
3462
3502
 
3463
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3503
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3464
3504
 
3465
3505
  /*
3466
3506
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3555,7 +3595,7 @@ function isOidcProtocolMode(config) {
3555
3595
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
3556
3596
  }
3557
3597
 
3558
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3598
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3559
3599
  /*
3560
3600
  * Copyright (c) Microsoft Corporation. All rights reserved.
3561
3601
  * Licensed under the MIT License.
@@ -3582,7 +3622,7 @@ function isOidcProtocolMode(config) {
3582
3622
  }
3583
3623
  }
3584
3624
 
3585
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3625
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3586
3626
  /*
3587
3627
  * Copyright (c) Microsoft Corporation. All rights reserved.
3588
3628
  * Licensed under the MIT License.
@@ -3647,7 +3687,7 @@ function wasClockTurnedBack(cachedAt) {
3647
3687
  return cachedAtSec > nowSeconds();
3648
3688
  }
3649
3689
 
3650
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3690
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3651
3691
 
3652
3692
  /*
3653
3693
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3906,7 +3946,7 @@ function isAuthorityMetadataExpired(metadata) {
3906
3946
  return metadata.expiresAt <= nowSeconds();
3907
3947
  }
3908
3948
 
3909
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3949
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3910
3950
  /*
3911
3951
  * Copyright (c) Microsoft Corporation. All rights reserved.
3912
3952
  * Licensed under the MIT License.
@@ -3977,7 +4017,7 @@ const RegionDiscoveryGetCurrentVersion = "regionDiscoveryGetCurrentVersion";
3977
4017
  const CacheManagerGetRefreshToken = "cacheManagerGetRefreshToken";
3978
4018
  const SetUserData = "setUserData";
3979
4019
 
3980
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4020
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3981
4021
  /*
3982
4022
  * Copyright (c) Microsoft Corporation. All rights reserved.
3983
4023
  * Licensed under the MIT License.
@@ -4070,7 +4110,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
4070
4110
  };
4071
4111
  };
4072
4112
 
4073
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4113
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4074
4114
 
4075
4115
  /*
4076
4116
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4150,7 +4190,7 @@ class PopTokenGenerator {
4150
4190
  }
4151
4191
  }
4152
4192
 
4153
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4193
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4154
4194
  /*
4155
4195
  * Copyright (c) Microsoft Corporation. All rights reserved.
4156
4196
  * Licensed under the MIT License.
@@ -4201,7 +4241,7 @@ const badToken = "bad_token";
4201
4241
  */
4202
4242
  const interruptedUser = "interrupted_user";
4203
4243
 
4204
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4244
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4205
4245
 
4206
4246
  /*
4207
4247
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4269,7 +4309,7 @@ function createInteractionRequiredAuthError(errorCode, errorMessage) {
4269
4309
  return new InteractionRequiredAuthError(errorCode, errorMessage);
4270
4310
  }
4271
4311
 
4272
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4312
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4273
4313
 
4274
4314
  /*
4275
4315
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4288,7 +4328,7 @@ class ServerError extends AuthError {
4288
4328
  }
4289
4329
  }
4290
4330
 
4291
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4331
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4292
4332
 
4293
4333
  /*
4294
4334
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4356,7 +4396,7 @@ function parseRequestState(base64Decode, state) {
4356
4396
  }
4357
4397
  }
4358
4398
 
4359
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4399
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4360
4400
 
4361
4401
  /*
4362
4402
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4704,7 +4744,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
4704
4744
  return baseAccount;
4705
4745
  }
4706
4746
 
4707
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4747
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4708
4748
  /*
4709
4749
  * Copyright (c) Microsoft Corporation. All rights reserved.
4710
4750
  * Licensed under the MIT License.
@@ -4714,7 +4754,7 @@ const CcsCredentialType = {
4714
4754
  UPN: "UPN",
4715
4755
  };
4716
4756
 
4717
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4757
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4718
4758
  /*
4719
4759
  * Copyright (c) Microsoft Corporation. All rights reserved.
4720
4760
  * Licensed under the MIT License.
@@ -4732,7 +4772,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
4732
4772
  }
4733
4773
  }
4734
4774
 
4735
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4775
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4736
4776
  /*
4737
4777
  * Copyright (c) Microsoft Corporation. All rights reserved.
4738
4778
  * Licensed under the MIT License.
@@ -4753,7 +4793,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
4753
4793
  };
4754
4794
  }
4755
4795
 
4756
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4796
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4757
4797
 
4758
4798
  /*
4759
4799
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4839,7 +4879,7 @@ class ThrottlingUtils {
4839
4879
  }
4840
4880
  }
4841
4881
 
4842
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4882
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4843
4883
 
4844
4884
  /*
4845
4885
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4870,7 +4910,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
4870
4910
  return new NetworkError(error, httpStatus, responseHeaders);
4871
4911
  }
4872
4912
 
4873
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4913
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4874
4914
 
4875
4915
  /*
4876
4916
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4984,7 +5024,7 @@ async function sendPostRequest(thumbprint, tokenEndpoint, options, correlationId
4984
5024
  return response;
4985
5025
  }
4986
5026
 
4987
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5027
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4988
5028
  /*
4989
5029
  * Copyright (c) Microsoft Corporation. All rights reserved.
4990
5030
  * Licensed under the MIT License.
@@ -4996,7 +5036,7 @@ function isOpenIdConfigResponse(response) {
4996
5036
  response.hasOwnProperty("jwks_uri"));
4997
5037
  }
4998
5038
 
4999
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5039
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5000
5040
  /*
5001
5041
  * Copyright (c) Microsoft Corporation. All rights reserved.
5002
5042
  * Licensed under the MIT License.
@@ -5006,7 +5046,7 @@ function isCloudInstanceDiscoveryResponse(response) {
5006
5046
  response.hasOwnProperty("metadata"));
5007
5047
  }
5008
5048
 
5009
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5049
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5010
5050
  /*
5011
5051
  * Copyright (c) Microsoft Corporation. All rights reserved.
5012
5052
  * Licensed under the MIT License.
@@ -5016,7 +5056,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
5016
5056
  response.hasOwnProperty("error_description"));
5017
5057
  }
5018
5058
 
5019
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5059
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5020
5060
 
5021
5061
  /*
5022
5062
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5121,7 +5161,7 @@ RegionDiscovery.IMDS_OPTIONS = {
5121
5161
  },
5122
5162
  };
5123
5163
 
5124
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5164
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5125
5165
 
5126
5166
  /*
5127
5167
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5941,7 +5981,7 @@ function buildStaticAuthorityOptions(authOptions) {
5941
5981
  };
5942
5982
  }
5943
5983
 
5944
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5984
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5945
5985
 
5946
5986
  /*
5947
5987
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5975,7 +6015,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
5975
6015
  }
5976
6016
  }
5977
6017
 
5978
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6018
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5979
6019
 
5980
6020
  /*
5981
6021
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6140,11 +6180,6 @@ class AuthorizationCodeClient {
6140
6180
  throw createClientConfigurationError(missingSshJwk);
6141
6181
  }
6142
6182
  }
6143
- if (!StringUtils.isEmptyObj(request.claims) ||
6144
- (this.config.authOptions.clientCapabilities &&
6145
- this.config.authOptions.clientCapabilities.length > 0)) {
6146
- addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
6147
- }
6148
6183
  let ccsCred = undefined;
6149
6184
  if (request.clientInfo) {
6150
6185
  try {
@@ -6193,6 +6228,7 @@ class AuthorizationCodeClient {
6193
6228
  });
6194
6229
  }
6195
6230
  instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
6231
+ addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
6196
6232
  return mapToQueryString(parameters);
6197
6233
  }
6198
6234
  /**
@@ -6236,7 +6272,7 @@ class AuthorizationCodeClient {
6236
6272
  }
6237
6273
  }
6238
6274
 
6239
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6275
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6240
6276
 
6241
6277
  /*
6242
6278
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6426,11 +6462,6 @@ class RefreshTokenClient {
6426
6462
  throw createClientConfigurationError(missingSshJwk);
6427
6463
  }
6428
6464
  }
6429
- if (!StringUtils.isEmptyObj(request.claims) ||
6430
- (this.config.authOptions.clientCapabilities &&
6431
- this.config.authOptions.clientCapabilities.length > 0)) {
6432
- addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
6433
- }
6434
6465
  if (this.config.systemOptions.preventCorsPreflight &&
6435
6466
  request.ccsCredential) {
6436
6467
  switch (request.ccsCredential.type) {
@@ -6457,11 +6488,12 @@ class RefreshTokenClient {
6457
6488
  });
6458
6489
  }
6459
6490
  instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
6491
+ addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
6460
6492
  return mapToQueryString(parameters);
6461
6493
  }
6462
6494
  }
6463
6495
 
6464
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6496
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6465
6497
 
6466
6498
  /*
6467
6499
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6577,7 +6609,7 @@ class SilentFlowClient {
6577
6609
  }
6578
6610
  }
6579
6611
 
6580
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6612
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6581
6613
 
6582
6614
  /*
6583
6615
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6592,7 +6624,7 @@ const StubbedNetworkModule = {
6592
6624
  },
6593
6625
  };
6594
6626
 
6595
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6627
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6596
6628
 
6597
6629
  /*
6598
6630
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6716,14 +6748,10 @@ function getStandardAuthorizeRequestParameters(authOptions, request, logger, per
6716
6748
  if (request.state) {
6717
6749
  addState(parameters, request.state);
6718
6750
  }
6719
- if (request.claims ||
6720
- (authOptions.clientCapabilities &&
6721
- authOptions.clientCapabilities.length > 0)) {
6722
- addClaims(parameters, request.claims, authOptions.clientCapabilities);
6723
- }
6724
6751
  if (request.embeddedClientId) {
6725
6752
  addBrokerParameters(parameters, authOptions.clientId, authOptions.redirectUri);
6726
6753
  }
6754
+ addClaims(parameters, request.claims, authOptions.clientCapabilities, request.skipBrokerClaims);
6727
6755
  // If extraQueryParameters includes instance_aware its value will be added when extraQueryParameters are added
6728
6756
  if (authOptions.instanceAware &&
6729
6757
  (!request.extraQueryParameters ||
@@ -6819,7 +6847,7 @@ function extractLoginHint(account) {
6819
6847
  return account.loginHint || account.idTokenClaims?.login_hint || null;
6820
6848
  }
6821
6849
 
6822
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6850
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6823
6851
 
6824
6852
  /*
6825
6853
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6852,7 +6880,7 @@ function containsResourceParam(params) {
6852
6880
  return Object.prototype.hasOwnProperty.call(params, "resource");
6853
6881
  }
6854
6882
 
6855
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6883
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6856
6884
  /*
6857
6885
  * Copyright (c) Microsoft Corporation. All rights reserved.
6858
6886
  * Licensed under the MIT License.
@@ -6862,7 +6890,7 @@ function containsResourceParam(params) {
6862
6890
  */
6863
6891
  const unexpectedError = "unexpected_error";
6864
6892
 
6865
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6893
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6866
6894
 
6867
6895
  /*
6868
6896
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7123,7 +7151,7 @@ class ServerTelemetryManager {
7123
7151
  }
7124
7152
  }
7125
7153
 
7126
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7154
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7127
7155
 
7128
7156
  /*
7129
7157
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7144,7 +7172,7 @@ function createJoseHeaderError(code) {
7144
7172
  return new JoseHeaderError(code);
7145
7173
  }
7146
7174
 
7147
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7175
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7148
7176
  /*
7149
7177
  * Copyright (c) Microsoft Corporation. All rights reserved.
7150
7178
  * Licensed under the MIT License.
@@ -7152,7 +7180,7 @@ function createJoseHeaderError(code) {
7152
7180
  const missingKidError = "missing_kid_error";
7153
7181
  const missingAlgError = "missing_alg_error";
7154
7182
 
7155
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7183
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7156
7184
 
7157
7185
  /*
7158
7186
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7587,7 +7615,7 @@ function ensureArgumentIsJSONString(argName, argValue, correlationId) {
7587
7615
 
7588
7616
  /* eslint-disable header/header */
7589
7617
  const name = "@azure/msal-browser";
7590
- const version = "5.6.3";
7618
+ const version = "5.8.0";
7591
7619
 
7592
7620
  /*
7593
7621
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8143,6 +8171,7 @@ const StandardInteractionClientGetDiscoveredAuthority = "standardInteractionClie
8143
8171
  * Used to acquire a token from Native component when native brokering is enabled.
8144
8172
  */
8145
8173
  const NativeInteractionClientAcquireToken = "nativeInteractionClientAcquireToken";
8174
+ const NativeInteractionClientAcquireTokenRedirect = "nativeInteractionClientAcquireToken";
8146
8175
  /**
8147
8176
  * acquireTokenByRefreshToken API in RefreshTokenClient (msal-common).
8148
8177
  */
@@ -14189,7 +14218,12 @@ const SsoSilent = "ssoSilent";
14189
14218
  // Initialize client application
14190
14219
  const InitializeClientApplication = "initializeClientApplication";
14191
14220
  // Update cache storage
14192
- const LocalStorageUpdated = "localStorageUpdated";
14221
+ const LocalStorageUpdated = "localStorageUpdated";
14222
+ /**
14223
+ * SSO capability verification call (msal-browser).
14224
+ * Fire-and-forget SSO verification call made after interactive authentication completes.
14225
+ */
14226
+ const SsoCapable = "ssoCapable";
14193
14227
 
14194
14228
  /*
14195
14229
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -14198,14 +14232,15 @@ const LocalStorageUpdated = "localStorageUpdated";
14198
14232
  const PREFIX = "msal";
14199
14233
  const BROWSER_PREFIX = "browser";
14200
14234
  const CACHE_KEY_SEPARATOR = "|";
14201
- const CREDENTIAL_SCHEMA_VERSION = 2;
14202
- const ACCOUNT_SCHEMA_VERSION = 2;
14235
+ const CREDENTIAL_SCHEMA_VERSION = 3;
14236
+ const ACCOUNT_SCHEMA_VERSION = 3;
14203
14237
  const LOG_LEVEL_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.level`;
14204
14238
  const LOG_PII_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.pii`;
14205
14239
  const PLATFORM_AUTH_DOM_SUPPORT = `${PREFIX}.${BROWSER_PREFIX}.platform.auth.dom`;
14206
14240
  const VERSION_CACHE_KEY = `${PREFIX}.version`;
14207
14241
  const ACCOUNT_KEYS = "account.keys";
14208
14242
  const TOKEN_KEYS = "token.keys";
14243
+ const SSO_CAPABLE = `${PREFIX}.${BROWSER_PREFIX}.sso.capable`;
14209
14244
  function getAccountKeysCacheKey(schema = ACCOUNT_SCHEMA_VERSION) {
14210
14245
  if (schema < 1) {
14211
14246
  return `${PREFIX}.${ACCOUNT_KEYS}`;
@@ -14983,7 +15018,9 @@ class BrowserCacheManager extends CacheManager {
14983
15018
  }
14984
15019
  await this.setUserData(newIdTokenKey, JSON.stringify(oldSchemaData), correlationId, oldSchemaData.lastUpdatedAt, kmsi);
14985
15020
  this.performanceClient.incrementFields({ migratedITCount: 1 }, correlationId);
14986
- currentCredentialKeys.idToken.push(newIdTokenKey);
15021
+ if (!currentCredentialKeys.idToken.includes(newIdTokenKey)) {
15022
+ currentCredentialKeys.idToken.push(newIdTokenKey);
15023
+ }
14987
15024
  }
14988
15025
  }
14989
15026
  this.setTokenKeys(credentialKeysToMigrate, correlationId, credentialSchema);
@@ -15832,10 +15869,8 @@ class BrowserCacheManager extends CacheManager {
15832
15869
  return `${PREFIX}.${this.clientId}.${key}`;
15833
15870
  }
15834
15871
  /**
15835
- * Cache Key: msal.<schema_version>-<home_account_id>-<environment>-<credential_type>-<client_id or familyId>-<realm>-<scopes>-<claims hash>-<scheme>
15836
- * IdToken Example: uid.utid-login.microsoftonline.com-idtoken-app_client_id-contoso.com
15837
- * AccessToken Example: uid.utid-login.microsoftonline.com-accesstoken-app_client_id-contoso.com-scope1 scope2--pop
15838
- * RefreshToken Example: uid.utid-login.microsoftonline.com-refreshtoken-1-contoso.com
15872
+ * Generate Credential Key. All changes to the key REQUIRE a schema version update.
15873
+ * Cache Key: msal.<schema_version>|<home_account_id>|<environment>|<credential_type>|<client_id or familyId>|<realm>|<scopes>|<scheme>
15839
15874
  * @param credentialEntity
15840
15875
  * @returns
15841
15876
  */
@@ -16391,7 +16426,6 @@ const userSwitch = "user_switch";
16391
16426
  const USER_INTERACTION_REQUIRED = "USER_INTERACTION_REQUIRED";
16392
16427
  const USER_CANCEL = "USER_CANCEL";
16393
16428
  const NO_NETWORK = "NO_NETWORK";
16394
- const PERSISTENT_ERROR = "PERSISTENT_ERROR";
16395
16429
  const DISABLED = "DISABLED";
16396
16430
  const ACCOUNT_UNAVAILABLE = "ACCOUNT_UNAVAILABLE";
16397
16431
  const UX_NOT_ALLOWED = "UX_NOT_ALLOWED";
@@ -16415,8 +16449,7 @@ class NativeAuthError extends AuthError {
16415
16449
  function isFatalNativeAuthError(error) {
16416
16450
  if (error.ext &&
16417
16451
  error.ext.status &&
16418
- (error.ext.status === PERSISTENT_ERROR ||
16419
- error.ext.status === DISABLED)) {
16452
+ error.ext.status === DISABLED) {
16420
16453
  return true;
16421
16454
  }
16422
16455
  if (error.ext &&
@@ -16542,12 +16575,12 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16542
16575
  async acquireToken(request, cacheLookupPolicy) {
16543
16576
  this.logger.trace("03qeos", this.correlationId);
16544
16577
  // start the perf measurement
16545
- const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken, request.correlationId);
16578
+ const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken, this.correlationId);
16546
16579
  const reqTimestamp = nowSeconds();
16547
16580
  const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
16548
16581
  try {
16549
16582
  // initialize native request
16550
- const nativeRequest = await this.initializeNativeRequest(request);
16583
+ const nativeRequest = await this.initializePlatformRequest(request);
16551
16584
  // check if the tokens can be retrieved from internal cache
16552
16585
  try {
16553
16586
  const result = await this.acquireTokensFromCache(this.accountId, nativeRequest);
@@ -16561,6 +16594,10 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16561
16594
  catch (e) {
16562
16595
  if (cacheLookupPolicy === CacheLookupPolicy.AccessToken) {
16563
16596
  this.logger.info("0eitbc", this.correlationId);
16597
+ nativeATMeasurement.end({
16598
+ success: false,
16599
+ brokerErrorCode: "cache_request_failed",
16600
+ });
16564
16601
  throw e;
16565
16602
  }
16566
16603
  // continue with a native call for any and all errors
@@ -16582,7 +16619,6 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16582
16619
  success: false,
16583
16620
  errorCode: error.errorCode,
16584
16621
  subErrorCode: error.subError,
16585
- isNativeBroker: true,
16586
16622
  });
16587
16623
  throw error;
16588
16624
  });
@@ -16591,6 +16627,9 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16591
16627
  if (e instanceof NativeAuthError) {
16592
16628
  serverTelemetryManager.setNativeBrokerErrorCode(e.errorCode);
16593
16629
  }
16630
+ nativeATMeasurement.end({
16631
+ success: false,
16632
+ });
16594
16633
  throw e;
16595
16634
  }
16596
16635
  }
@@ -16623,7 +16662,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16623
16662
  // fetch the account from browser cache
16624
16663
  const account = this.browserStorage.getBaseAccountInfo({
16625
16664
  nativeAccountId,
16626
- }, request.correlationId);
16665
+ }, this.correlationId);
16627
16666
  if (!account) {
16628
16667
  throw createClientAuthError(noAccountFound);
16629
16668
  }
@@ -16631,13 +16670,14 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16631
16670
  try {
16632
16671
  const silentRequest = this.createSilentCacheRequest(request, account);
16633
16672
  const result = await this.silentCacheClient.acquireToken(silentRequest);
16634
- const fullAccount = {
16635
- ...account,
16636
- idTokenClaims: result?.idTokenClaims,
16637
- idToken: result?.idToken,
16638
- };
16673
+ const idToken = this.browserStorage.getIdToken(account, this.correlationId, this.browserStorage.getTokenKeys(), account.tenantId);
16674
+ const idTokenClaims = extractTokenClaims(idToken?.secret || "", base64Decode);
16675
+ const fullAccount = updateAccountTenantProfileData(account, undefined, // tenantProfile optional
16676
+ idTokenClaims, idToken?.secret);
16639
16677
  return {
16640
16678
  ...result,
16679
+ idToken: idToken?.secret || "",
16680
+ idTokenClaims: idTokenClaims,
16641
16681
  account: fullAccount,
16642
16682
  };
16643
16683
  }
@@ -16653,7 +16693,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16653
16693
  */
16654
16694
  async acquireTokenRedirect(request, rootMeasurement, options) {
16655
16695
  this.logger.trace("0luikq", this.correlationId);
16656
- const nativeRequest = await this.initializeNativeRequest(request);
16696
+ const nativeRequest = await this.initializePlatformRequest(request);
16657
16697
  const navigateToLoginRequestUrl = options?.navigateToLoginRequestUrl ?? true;
16658
16698
  try {
16659
16699
  await this.platformAuthProvider.sendMessage(nativeRequest);
@@ -16685,7 +16725,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16685
16725
  * @param performanceClient {IPerformanceClient?}
16686
16726
  * @param correlationId {string?} correlation identifier
16687
16727
  */
16688
- async handleRedirectPromise(performanceClient, correlationId) {
16728
+ async handleRedirectPromise() {
16689
16729
  this.logger.trace("1c5lhw", this.correlationId);
16690
16730
  if (!this.browserStorage.isInteractionInProgress(true)) {
16691
16731
  this.logger.info("0le6uv", this.correlationId);
@@ -16695,9 +16735,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16695
16735
  const cachedRequest = this.browserStorage.getCachedNativeRequest();
16696
16736
  if (!cachedRequest) {
16697
16737
  this.logger.verbose("0a6zjb", this.correlationId);
16698
- if (performanceClient && correlationId) {
16699
- performanceClient?.addFields({ errorCode: "no_cached_request" }, correlationId);
16700
- }
16738
+ this.performanceClient?.addFields({ errorCode: "no_cached_request" }, this.correlationId);
16701
16739
  return null;
16702
16740
  }
16703
16741
  const { prompt, ...request } = cachedRequest;
@@ -16712,6 +16750,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16712
16750
  const authResult = await this.handleNativeResponse(response, request, reqTimestamp);
16713
16751
  const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
16714
16752
  serverTelemetryManager.clearNativeBrokerErrorCode();
16753
+ this.performanceClient?.addFields({ isNativeBroker: true }, this.correlationId);
16715
16754
  return authResult;
16716
16755
  }
16717
16756
  catch (e) {
@@ -16761,7 +16800,8 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16761
16800
  const result = await this.generateAuthenticationResult(response, request, idTokenClaims, baseAccount, authority.canonicalAuthority, reqTimestamp);
16762
16801
  // cache accounts and tokens in the appropriate storage
16763
16802
  await this.cacheAccount(baseAccount, isKmsi(idTokenClaims));
16764
- await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, response.access_token, result.tenantId, reqTimestamp);
16803
+ await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, result.tenantId, reqTimestamp, authority.getPreferredCache() // environment
16804
+ );
16765
16805
  return result;
16766
16806
  }
16767
16807
  /**
@@ -16900,8 +16940,8 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16900
16940
  * @param tenantId
16901
16941
  * @param reqTimestamp
16902
16942
  */
16903
- cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, responseAccessToken, tenantId, reqTimestamp) {
16904
- const cachedIdToken = createIdTokenEntity(homeAccountIdentifier, request.authority, response.id_token || "", request.clientId, idTokenClaims.tid || "");
16943
+ async cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, tenantId, reqTimestamp, environment) {
16944
+ const cachedIdToken = createIdTokenEntity(homeAccountIdentifier, environment, response.id_token || "", request.clientId, idTokenClaims.tid || "");
16905
16945
  // cache accessToken in inmemory storage
16906
16946
  const expiresIn = request.tokenType === AuthenticationScheme.POP
16907
16947
  ? SHR_NONCE_VALIDITY
@@ -16910,9 +16950,13 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16910
16950
  : response.expires_in) || 0;
16911
16951
  const tokenExpirationSeconds = reqTimestamp + expiresIn;
16912
16952
  const responseScopes = this.generateScopes(response.scope, request.scope);
16913
- const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier, request.authority, responseAccessToken, request.clientId, idTokenClaims.tid || tenantId, responseScopes.printScopes(), tokenExpirationSeconds, 0, base64Decode, undefined, request.tokenType, undefined, request.keyId);
16953
+ const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier, environment, response.access_token, request.clientId, idTokenClaims.tid || tenantId, responseScopes.printScopes(), tokenExpirationSeconds, 0, base64Decode, undefined, request.tokenType, undefined, request.keyId);
16954
+ // save idtoken credential in configured browser storage
16955
+ if (!!cachedIdToken && request.storeInCache?.idToken !== false) {
16956
+ await this.browserStorage.setIdTokenCredential(cachedIdToken, this.correlationId, isKmsi(idTokenClaims));
16957
+ }
16958
+ // save access token credential in memory storage
16914
16959
  const nativeCacheRecord = {
16915
- idToken: cachedIdToken,
16916
16960
  accessToken: cachedAccessToken,
16917
16961
  };
16918
16962
  return this.nativeStorageManager.saveCacheRecord(nativeCacheRecord, this.correlationId, isKmsi(idTokenClaims), this.apiId, request.storeInCache);
@@ -16980,15 +17024,23 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
16980
17024
  * Translates developer provided request object into NativeRequest object
16981
17025
  * @param request
16982
17026
  */
16983
- async initializeNativeRequest(request) {
16984
- this.logger.trace("04j6wj", this.correlationId);
17027
+ async initializePlatformRequest(request) {
17028
+ this.logger.trace("1xdm2a", this.correlationId);
16985
17029
  const canonicalAuthority = await this.getCanonicalAuthority(request);
17030
+ // ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
17031
+ const configClaims = request.skipBrokerClaims && !!request.embeddedClientId
17032
+ ? undefined
17033
+ : this.config.auth.clientCapabilities;
16986
17034
  // scopes are expected to be received by the native broker as "scope" and will be added to the request below. Other properties that should be dropped from the request to the native broker can be included in the object destructuring here.
16987
- const { scopes, ...remainingProperties } = request;
17035
+ const { scopes, claims, ...remainingProperties } = request;
16988
17036
  const scopeSet = new ScopeSet(scopes || []);
16989
17037
  scopeSet.appendScopes(OIDC_DEFAULT_SCOPES);
17038
+ const mergedClaims = configClaims && configClaims.length
17039
+ ? addClientCapabilitiesToClaims(claims, configClaims)
17040
+ : claims;
16990
17041
  const validatedRequest = {
16991
17042
  ...remainingProperties,
17043
+ claims: mergedClaims,
16992
17044
  accountId: this.accountId,
16993
17045
  clientId: this.config.auth.clientId,
16994
17046
  authority: canonicalAuthority.urlString,
@@ -17058,12 +17110,12 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
17058
17110
  switch (this.apiId) {
17059
17111
  case ApiId.ssoSilent:
17060
17112
  case ApiId.acquireTokenSilent_silentFlow:
17061
- this.logger.trace("1hiwaz", this.correlationId);
17113
+ this.logger.trace("12n1y2", this.correlationId);
17062
17114
  return PromptValue.NONE;
17063
17115
  }
17064
17116
  // Prompt not provided, request may proceed and native broker decides if it needs to prompt
17065
17117
  if (!prompt) {
17066
- this.logger.trace("1qlu04", this.correlationId);
17118
+ this.logger.trace("0uid1p", this.correlationId);
17067
17119
  return undefined;
17068
17120
  }
17069
17121
  // If request is interactive, check if prompt provided is allowed to go directly to native broker
@@ -17071,10 +17123,10 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
17071
17123
  case PromptValue.NONE:
17072
17124
  case PromptValue.CONSENT:
17073
17125
  case PromptValue.LOGIN:
17074
- this.logger.trace("1ynje4", this.correlationId);
17126
+ this.logger.trace("0i0hco", this.correlationId);
17075
17127
  return prompt;
17076
17128
  default:
17077
- this.logger.trace("0nkr6q", this.correlationId);
17129
+ this.logger.trace("0w3tpw", this.correlationId);
17078
17130
  throw createBrowserAuthError(nativePromptNotSupported);
17079
17131
  }
17080
17132
  }
@@ -17110,7 +17162,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
17110
17162
  this.performanceClient?.addFields({
17111
17163
  embeddedClientId: child_client_id,
17112
17164
  embeddedRedirectUri: child_redirect_uri,
17113
- }, request.correlationId);
17165
+ }, this.correlationId);
17114
17166
  }
17115
17167
  }
17116
17168
 
@@ -17197,6 +17249,10 @@ async function getStandardParameters(config, authority, request, logger, perform
17197
17249
  if (request.platformBroker) {
17198
17250
  // signal ests that this is a WAM call
17199
17251
  addNativeBroker(parameters);
17252
+ // instrument JS-platform bridge specific fields
17253
+ performanceClient.addFields({
17254
+ isPlatformAuthorizeRequest: true,
17255
+ }, request.correlationId);
17200
17256
  // pass the req_cnf for POP
17201
17257
  if (request.authenticationScheme === AuthenticationScheme.POP) {
17202
17258
  const cryptoOps = new CryptoOps(logger, performanceClient);
@@ -17666,6 +17722,7 @@ function buildConfiguration({ auth: userInputAuth, cache: userInputCache, system
17666
17722
  },
17667
17723
  instanceAware: false,
17668
17724
  isMcp: false,
17725
+ verifySSO: false,
17669
17726
  };
17670
17727
  // Default cache options for browser
17671
17728
  const DEFAULT_CACHE_OPTIONS = {
@@ -17760,7 +17817,7 @@ class PlatformAuthExtensionHandler {
17760
17817
  this.messageChannel = new MessageChannel();
17761
17818
  this.windowListener = this.onWindowMessage.bind(this); // Window event callback doesn't have access to 'this' unless it's bound
17762
17819
  this.performanceClient = performanceClient;
17763
- this.handshakeEvent = performanceClient.startMeasurement(NativeMessageHandlerHandshake);
17820
+ this.handshakeEvent = this.performanceClient.startMeasurement(NativeMessageHandlerHandshake);
17764
17821
  this.platformAuthType =
17765
17822
  PlatformAuthConstants.PLATFORM_EXTENSION_PROVIDER;
17766
17823
  }
@@ -18200,7 +18257,7 @@ function isDomEnabledForPlatformAuth() {
18200
18257
  }
18201
18258
  }
18202
18259
  /**
18203
- * Returns boolean indicating whether or not the request should attempt to use native broker
18260
+ * Returns boolean indicating whether or not the request should attempt to use platform broker
18204
18261
  * @param logger
18205
18262
  * @param config
18206
18263
  * @param correlationId
@@ -18482,6 +18539,10 @@ class PopupClient extends StandardInteractionClient {
18482
18539
  return;
18483
18540
  }
18484
18541
  }
18542
+ // Redirect bridge requires "state" param to work properly
18543
+ validRequest.state = setRequestState(this.browserCrypto, validRequest.state || "", {
18544
+ interactionType: InteractionType.Popup,
18545
+ });
18485
18546
  // Create logout string and navigate user window to logout.
18486
18547
  const logoutUri = authClient.getLogoutUri(validRequest);
18487
18548
  this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, validRequest.correlationId, InteractionType.Popup, validRequest);
@@ -19022,6 +19083,10 @@ class RedirectClient extends StandardInteractionClient {
19022
19083
  }
19023
19084
  }
19024
19085
  }
19086
+ // Redirect bridge requires "state" param to work properly
19087
+ validLogoutRequest.state = setRequestState(this.browserCrypto, validLogoutRequest.state || "", {
19088
+ interactionType: InteractionType.Redirect,
19089
+ });
19025
19090
  // Create logout string and navigate user window to logout.
19026
19091
  const logoutUri = authClient.getLogoutUri(validLogoutRequest);
19027
19092
  if (validLogoutRequest.account?.homeAccountId) {
@@ -19270,6 +19335,38 @@ class SilentIframeClient extends StandardInteractionClient {
19270
19335
  return invokeAsync(handleResponseEAR, HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
19271
19336
  }
19272
19337
  }
19338
+ /**
19339
+ * Verifies SSO capability by making an iframe request to /authorize without exchanging the code for tokens.
19340
+ * This is useful for verifying SSO capability in the background without the overhead of a full token exchange.
19341
+ * @param request - The SSO silent request
19342
+ * @returns true if SSO verification was successful with a valid authorization code, false otherwise
19343
+ */
19344
+ async verifySso(request) {
19345
+ const inputRequest = { ...request };
19346
+ if (!inputRequest.prompt) {
19347
+ inputRequest.prompt = PromptValue.NONE;
19348
+ }
19349
+ // Create silent request
19350
+ const silentRequest = await invokeAsync(initializeAuthorizationRequest, StandardInteractionClientInitializeAuthorizationRequest, this.logger, this.performanceClient, this.correlationId)(inputRequest, InteractionType.Silent, this.config, this.browserCrypto, this.browserStorage, this.logger, this.performanceClient, this.correlationId);
19351
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, this.correlationId)({
19352
+ serverTelemetryManager: initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger),
19353
+ requestAuthority: silentRequest.authority,
19354
+ requestAzureCloudOptions: silentRequest.azureCloudOptions,
19355
+ requestExtraQueryParameters: silentRequest.extraQueryParameters,
19356
+ account: silentRequest.account,
19357
+ });
19358
+ const { serverParams } = await this.silentAuthorizeHelper(authClient, silentRequest);
19359
+ const correlationId = silentRequest.correlationId;
19360
+ // Validate the response - this checks for errors and validates state
19361
+ validateAuthorizationResponse(serverParams, silentRequest.state);
19362
+ // Verify a valid authorization code is present
19363
+ if (!serverParams.code) {
19364
+ this.logger.warning("0y34ti", correlationId);
19365
+ return false;
19366
+ }
19367
+ this.logger.verbose("0kkkcj", correlationId);
19368
+ return true;
19369
+ }
19273
19370
  /**
19274
19371
  * Currently Unsupported
19275
19372
  */
@@ -19284,6 +19381,16 @@ class SilentIframeClient extends StandardInteractionClient {
19284
19381
  * @param userRequestScopes
19285
19382
  */
19286
19383
  async silentTokenHelper(authClient, request) {
19384
+ const { serverParams, pkceCodes } = await this.silentAuthorizeHelper(authClient, request);
19385
+ return invokeAsync(handleResponseCode, HandleResponseCode, this.logger, this.performanceClient, request.correlationId)(request, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
19386
+ }
19387
+ /**
19388
+ * Shared helper that generates PKCE codes, builds the /authorize URL,
19389
+ * loads it in a hidden iframe, waits for the redirect-bridge response,
19390
+ * and returns the deserialized server parameters along with the PKCE codes
19391
+ * and the request that was sent.
19392
+ */
19393
+ async silentAuthorizeHelper(authClient, request) {
19287
19394
  const correlationId = request.correlationId;
19288
19395
  const pkceCodes = await invokeAsync(generatePkceCodes, GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
19289
19396
  const silentRequest = {
@@ -19310,7 +19417,7 @@ class SilentIframeClient extends StandardInteractionClient {
19310
19417
  invoke(removeHiddenIframe, RemoveHiddenIframe, this.logger, this.performanceClient, correlationId)(iframe);
19311
19418
  }
19312
19419
  const serverParams = invoke(deserializeResponse, DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger, this.correlationId);
19313
- return invokeAsync(handleResponseCode, HandleResponseCode, this.logger, this.performanceClient, correlationId)(request, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
19420
+ return { serverParams, pkceCodes, silentRequest };
19314
19421
  }
19315
19422
  }
19316
19423
 
@@ -19677,22 +19784,25 @@ class StandardController {
19677
19784
  }
19678
19785
  const loggedInAccounts = this.getAllAccounts();
19679
19786
  const platformBrokerRequest = this.browserStorage.getCachedNativeRequest();
19680
- const useNative = platformBrokerRequest &&
19681
- this.platformAuthProvider &&
19682
- !options?.hash;
19787
+ const useNative = platformBrokerRequest && !options?.hash;
19683
19788
  let rootMeasurement;
19684
19789
  let redirectResponse;
19790
+ let cachedRedirectRequest;
19685
19791
  try {
19686
19792
  if (useNative && this.platformAuthProvider) {
19687
19793
  const correlationId = platformBrokerRequest?.correlationId || "";
19688
19794
  this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, InteractionType.Redirect);
19689
19795
  rootMeasurement = this.performanceClient.startMeasurement(AcquireTokenRedirect, correlationId);
19690
19796
  this.logger.trace("12v7is", correlationId);
19797
+ rootMeasurement.add({
19798
+ isPlatformBrokerRequest: true,
19799
+ });
19691
19800
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.handleRedirectPromise, this.performanceClient, this.platformAuthProvider, platformBrokerRequest.accountId, this.nativeInternalStorage, platformBrokerRequest.correlationId);
19692
- redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)(this.performanceClient, rootMeasurement.event.correlationId);
19801
+ redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)();
19693
19802
  }
19694
19803
  else {
19695
19804
  const [standardRequest, codeVerifier] = this.browserStorage.getCachedRequest("");
19805
+ cachedRedirectRequest = standardRequest;
19696
19806
  const correlationId = standardRequest.correlationId;
19697
19807
  this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, InteractionType.Redirect);
19698
19808
  // Reset rootMeasurement now that we have correlationId
@@ -19721,6 +19831,8 @@ class StandardController {
19721
19831
  rootMeasurement.end({
19722
19832
  success: true,
19723
19833
  }, undefined, result.account);
19834
+ // Fire-and-forget SSO capability verification in background
19835
+ this.verifySsoCapability(cachedRedirectRequest, InteractionType.Redirect);
19724
19836
  }
19725
19837
  else {
19726
19838
  /*
@@ -19786,12 +19898,14 @@ class StandardController {
19786
19898
  if (this.platformAuthProvider &&
19787
19899
  this.canUsePlatformBroker(request)) {
19788
19900
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.acquireTokenRedirect, this.performanceClient, this.platformAuthProvider, this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
19789
- result = nativeClient
19790
- .acquireTokenRedirect(request, atrMeasurement)
19791
- .catch((e) => {
19901
+ result = invokeAsync(nativeClient.acquireTokenRedirect.bind(nativeClient), NativeInteractionClientAcquireTokenRedirect, this.logger, this.performanceClient, correlationId)(request, atrMeasurement).catch((e) => {
19902
+ atrMeasurement.add({
19903
+ brokerErrorName: e.name,
19904
+ brokerErrorCode: e.errorCode,
19905
+ });
19792
19906
  if (e instanceof NativeAuthError &&
19793
19907
  isFatalNativeAuthError(e)) {
19794
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
19908
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
19795
19909
  const redirectClient = this.createRedirectClient(correlationId);
19796
19910
  return redirectClient.acquireToken(request);
19797
19911
  }
@@ -19857,6 +19971,9 @@ class StandardController {
19857
19971
  let result;
19858
19972
  const pkce = this.getPreGeneratedPkceCodes(correlationId);
19859
19973
  if (this.canUsePlatformBroker(request)) {
19974
+ atPopupMeasurement.add({
19975
+ isPlatformBrokerRequest: true,
19976
+ });
19860
19977
  result = this.acquireTokenNative({
19861
19978
  ...request,
19862
19979
  correlationId,
@@ -19869,9 +19986,13 @@ class StandardController {
19869
19986
  return response;
19870
19987
  })
19871
19988
  .catch((e) => {
19989
+ atPopupMeasurement.add({
19990
+ brokerErrorName: e.name,
19991
+ brokerErrorCode: e.errorCode,
19992
+ });
19872
19993
  if (e instanceof NativeAuthError &&
19873
19994
  isFatalNativeAuthError(e)) {
19874
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
19995
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
19875
19996
  const popupClient = this.createPopupClient(correlationId);
19876
19997
  return popupClient.acquireToken(request, pkce);
19877
19998
  }
@@ -19902,6 +20023,8 @@ class StandardController {
19902
20023
  accessTokenSize: result.accessToken.length,
19903
20024
  idTokenSize: result.idToken.length,
19904
20025
  }, undefined, result.account);
20026
+ // SSO capability verification in background
20027
+ this.verifySsoCapability(request, InteractionType.Popup);
19905
20028
  return result;
19906
20029
  })
19907
20030
  .catch((e) => {
@@ -19954,6 +20077,103 @@ class StandardController {
19954
20077
  window.removeEventListener("online", listener);
19955
20078
  window.removeEventListener("offline", listener);
19956
20079
  }
20080
+ /**
20081
+ * Reads the cached ssoCapable value from localStorage.
20082
+ * @returns The cached ssoCapable boolean value, or undefined if not cached or expired.
20083
+ */
20084
+ getCachedSsoCapable() {
20085
+ try {
20086
+ const cachedValue = window.localStorage.getItem(SSO_CAPABLE);
20087
+ if (cachedValue) {
20088
+ const parsed = JSON.parse(cachedValue);
20089
+ if (parsed &&
20090
+ typeof parsed.ssoCapable === "boolean" &&
20091
+ parsed.expiresOn &&
20092
+ Date.now() < parsed.expiresOn) {
20093
+ return parsed.ssoCapable;
20094
+ }
20095
+ }
20096
+ }
20097
+ catch {
20098
+ // If parsing fails, return undefined
20099
+ }
20100
+ return undefined;
20101
+ }
20102
+ /**
20103
+ * SSO capability verification in the background.
20104
+ * This method makes an iframe request to /authorize to verify SSO capability without calling /token.
20105
+ * This method does not block the caller and tracks telemetry for success/failure.
20106
+ * This method only executes if verifySSO is set to true in the auth configuration.
20107
+ * The result is cached in localStorage with a 24-hour TTL; the SSO verification call
20108
+ * is only attempted when the cached value is absent or expired.
20109
+ * @param request - The original request used for the authentication flow
20110
+ * @param interactionType - The interactionType of the AT operation for logging purposes
20111
+ */
20112
+ verifySsoCapability(request, interactionType) {
20113
+ // Check if SSO capability verification is enabled
20114
+ if (!this.config.auth.verifySSO) {
20115
+ return;
20116
+ }
20117
+ // Check TTL: derive ssoCapable state from localStorage and skip if not expired
20118
+ const ssoCacheKey = SSO_CAPABLE;
20119
+ const SSO_CAPABLE_TTL_MS = 24 * 60 * 60 * 1000; // 24 hours
20120
+ const cachedSsoCapable = this.getCachedSsoCapable();
20121
+ if (cachedSsoCapable !== undefined) {
20122
+ this.logger.verbose("13poou", "");
20123
+ return;
20124
+ }
20125
+ const correlationId = createNewGuid();
20126
+ const ssoCapableMeasurement = this.performanceClient.startMeasurement(SsoCapable, correlationId);
20127
+ ssoCapableMeasurement.add({
20128
+ "ext.interactionType": interactionType,
20129
+ });
20130
+ this.logger.verbose("0pbr0i", correlationId);
20131
+ /*
20132
+ * Use setTimeout to ensure this runs in a separate macrotask after the current call stack completes
20133
+ * This ensures the result is returned to the caller before the SSO verification starts and doesn't affect performance
20134
+ */
20135
+ setTimeout(() => {
20136
+ const ssoVerificationRequest = {
20137
+ ...request,
20138
+ correlationId: correlationId,
20139
+ };
20140
+ const silentIframeClient = this.createSilentIframeClient(correlationId);
20141
+ silentIframeClient
20142
+ .verifySso(ssoVerificationRequest)
20143
+ .then((result) => {
20144
+ this.logger.verbose("1gd1iv", correlationId);
20145
+ // TBD to add profileTelemetry later in localStorage with 24h TTL
20146
+ try {
20147
+ const cacheEntry = JSON.stringify({
20148
+ ssoCapable: result,
20149
+ expiresOn: Date.now() + SSO_CAPABLE_TTL_MS,
20150
+ });
20151
+ window.localStorage.setItem(ssoCacheKey, cacheEntry);
20152
+ }
20153
+ catch {
20154
+ this.logger.warning("18lmoj", correlationId);
20155
+ }
20156
+ ssoCapableMeasurement.end({
20157
+ fromCache: false,
20158
+ success: result,
20159
+ }, undefined);
20160
+ })
20161
+ .catch((error) => {
20162
+ this.logger.warning("05g83w", correlationId);
20163
+ // reset the cache
20164
+ try {
20165
+ window.localStorage.removeItem(ssoCacheKey);
20166
+ }
20167
+ catch {
20168
+ this.logger.warning("0nlf9q", correlationId);
20169
+ }
20170
+ ssoCapableMeasurement.end({
20171
+ fromCache: false,
20172
+ success: false,
20173
+ }, error);
20174
+ });
20175
+ }, 0);
20176
+ }
19957
20177
  // #endregion
19958
20178
  // #region Silent Flow
19959
20179
  /**
@@ -19975,13 +20195,12 @@ class StandardController {
19975
20195
  const correlationId = this.getRequestCorrelationId(request);
19976
20196
  const validRequest = {
19977
20197
  ...request,
19978
- // will be PromptValue.NONE or PromptValue.NO_SESSION
19979
- prompt: request.prompt,
19980
20198
  correlationId: correlationId,
19981
20199
  };
19982
20200
  this.ssoSilentMeasurement = this.performanceClient.startMeasurement(SsoSilent, correlationId);
19983
20201
  this.ssoSilentMeasurement?.add({
19984
20202
  scenarioId: request.scenarioId,
20203
+ ssoCapable: this.getCachedSsoCapable(),
19985
20204
  });
19986
20205
  preflightCheck(this.initialized, this.ssoSilentMeasurement, this.config, validRequest);
19987
20206
  this.ssoSilentMeasurement?.increment({
@@ -19994,10 +20213,17 @@ class StandardController {
19994
20213
  this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, InteractionType.Silent, validRequest);
19995
20214
  let result;
19996
20215
  if (this.canUsePlatformBroker(validRequest)) {
20216
+ this.ssoSilentMeasurement?.add({
20217
+ isPlatformBrokerRequest: true,
20218
+ });
19997
20219
  result = this.acquireTokenNative(validRequest, ApiId.ssoSilent).catch((e) => {
20220
+ this.ssoSilentMeasurement?.add({
20221
+ brokerErrorName: e.name,
20222
+ brokerErrorCode: e.errorCode,
20223
+ });
19998
20224
  // If native token acquisition fails for availability reasons fallback to standard flow
19999
20225
  if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
20000
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
20226
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
20001
20227
  const silentIframeClient = this.createSilentIframeClient(validRequest.correlationId);
20002
20228
  return silentIframeClient.acquireToken(validRequest);
20003
20229
  }
@@ -20070,7 +20296,6 @@ class StandardController {
20070
20296
  this.hybridAuthCodeResponses.delete(hybridAuthCode);
20071
20297
  atbcMeasurement.end({
20072
20298
  success: true,
20073
- isNativeBroker: result.fromPlatformBroker,
20074
20299
  accessTokenSize: result.accessToken.length,
20075
20300
  idTokenSize: result.idToken.length,
20076
20301
  }, undefined, result.account);
@@ -20094,10 +20319,17 @@ class StandardController {
20094
20319
  }
20095
20320
  else if (request.nativeAccountId) {
20096
20321
  if (this.canUsePlatformBroker(request, request.nativeAccountId)) {
20322
+ atbcMeasurement.add({
20323
+ isPlatformBrokerRequest: true,
20324
+ });
20097
20325
  const result = await this.acquireTokenNative({
20098
20326
  ...request,
20099
20327
  correlationId,
20100
20328
  }, ApiId.acquireTokenByCode, request.nativeAccountId).catch((e) => {
20329
+ atbcMeasurement.add({
20330
+ brokerErrorName: e.name,
20331
+ brokerErrorCode: e.errorCode,
20332
+ });
20101
20333
  // If native token acquisition fails for availability reasons fallback to standard flow
20102
20334
  if (e instanceof NativeAuthError &&
20103
20335
  isFatalNativeAuthError(e)) {
@@ -20148,7 +20380,6 @@ class StandardController {
20148
20380
  this.acquireTokenByCodeAsyncMeasurement?.end({
20149
20381
  success: true,
20150
20382
  fromCache: response.fromCache,
20151
- isNativeBroker: response.fromPlatformBroker,
20152
20383
  });
20153
20384
  return response;
20154
20385
  })
@@ -20297,9 +20528,25 @@ class StandardController {
20297
20528
  const accountEntity = createAccountEntityFromAccountInfo(result.account, result.cloudGraphHostName, result.msGraphHost);
20298
20529
  await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims), ApiId.hydrateCache);
20299
20530
  if (result.fromPlatformBroker) {
20300
- this.logger.verbose("1fxyu8", result.correlationId);
20301
- // Tokens from native broker are stored in-memory
20302
- return this.nativeInternalStorage.hydrateCache(result, request);
20531
+ this.logger.verbose("1i5atf", result.correlationId);
20532
+ // Create idToken entity and store in browser storage
20533
+ const idTokenEntity = createIdTokenEntity(result.account.homeAccountId, result.account.environment, result.idToken, this.config.auth.clientId, result.tenantId);
20534
+ // Create accessToken entity and store in native internal storage
20535
+ const accessTokenEntity = createAccessTokenEntity(result.account.homeAccountId, result.account.environment, result.accessToken, this.config.auth.clientId, result.tenantId, result.scopes.join(" "), result.expiresOn
20536
+ ? toSecondsFromDate(result.expiresOn)
20537
+ : 0, result.extExpiresOn
20538
+ ? toSecondsFromDate(result.extExpiresOn)
20539
+ : 0, base64Decode, undefined, // refreshOn
20540
+ result.tokenType, undefined, // userAssertionHash
20541
+ request.sshKid);
20542
+ if (request.resource) {
20543
+ accessTokenEntity.resource = request.resource;
20544
+ }
20545
+ const kmsi = isKmsi(result.idTokenClaims);
20546
+ // Store idToken in browser storage
20547
+ await this.browserStorage.setIdTokenCredential(idTokenEntity, result.correlationId, kmsi);
20548
+ // Store accessToken in native internal storage
20549
+ await this.nativeInternalStorage.setAccessTokenCredential(accessTokenEntity, result.correlationId, kmsi);
20303
20550
  }
20304
20551
  else {
20305
20552
  return this.browserStorage.hydrateCache(result, request);
@@ -20317,7 +20564,7 @@ class StandardController {
20317
20564
  throw createBrowserAuthError(nativeConnectionNotEstablished);
20318
20565
  }
20319
20566
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, apiId, this.performanceClient, this.platformAuthProvider, accountId || this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
20320
- return nativeClient.acquireToken(request, cacheLookupPolicy);
20567
+ return invokeAsync(nativeClient.acquireToken.bind(nativeClient), NativeInteractionClientAcquireToken, this.logger, this.performanceClient, correlationId)(request, cacheLookupPolicy);
20321
20568
  }
20322
20569
  /**
20323
20570
  * Returns boolean indicating if this request can use the platform broker
@@ -20331,7 +20578,7 @@ class StandardController {
20331
20578
  return false;
20332
20579
  }
20333
20580
  if (!isPlatformAuthAllowed(this.config, this.logger, correlationId, this.platformAuthProvider, request.authenticationScheme)) {
20334
- this.logger.trace("1m4bzf", correlationId);
20581
+ this.logger.trace("0yoy1g", correlationId);
20335
20582
  return false;
20336
20583
  }
20337
20584
  if (request.prompt) {
@@ -20363,7 +20610,9 @@ class StandardController {
20363
20610
  loginHint: request.loginHint,
20364
20611
  sid: request.sid,
20365
20612
  }) ||
20366
- this.getActiveAccount();
20613
+ (!request.loginHint && !request.sid
20614
+ ? this.getActiveAccount()
20615
+ : null);
20367
20616
  return (account && account.nativeAccountId) || "";
20368
20617
  }
20369
20618
  /**
@@ -20550,6 +20799,7 @@ class StandardController {
20550
20799
  atsMeasurement.add({
20551
20800
  cacheLookupPolicy: request.cacheLookupPolicy,
20552
20801
  scenarioId: request.scenarioId,
20802
+ ssoCapable: this.getCachedSsoCapable(),
20553
20803
  });
20554
20804
  preflightCheck(this.initialized, atsMeasurement, this.config, request);
20555
20805
  this.logger.verbose("0x1c4s", correlationId);
@@ -20562,7 +20812,6 @@ class StandardController {
20562
20812
  atsMeasurement.end({
20563
20813
  success: true,
20564
20814
  fromCache: result.fromCache,
20565
- isNativeBroker: result.fromPlatformBroker,
20566
20815
  accessTokenSize: result.accessToken.length,
20567
20816
  idTokenSize: result.idToken.length,
20568
20817
  }, undefined, result.account);
@@ -20722,7 +20971,12 @@ class StandardController {
20722
20971
  if (isPlatformAuthAllowed(this.config, this.logger, silentRequest.correlationId, this.platformAuthProvider, silentRequest.authenticationScheme) &&
20723
20972
  silentRequest.account.nativeAccountId) {
20724
20973
  this.logger.verbose("0sczo4", silentRequest.correlationId);
20974
+ this.performanceClient.addFields({ isPlatformBrokerRequest: true }, silentRequest.correlationId);
20725
20975
  return this.acquireTokenNative(silentRequest, ApiId.acquireTokenSilent_silentFlow, silentRequest.account.nativeAccountId, cacheLookupPolicy).catch(async (e) => {
20976
+ this.performanceClient.addFields({
20977
+ brokerErrorName: e.name,
20978
+ brokerErrorCode: e.errorCode,
20979
+ }, silentRequest.correlationId);
20726
20980
  // If native token acquisition fails for availability reasons fallback to web flow
20727
20981
  if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
20728
20982
  this.logger.verbose("07rkmb", silentRequest.correlationId);