@azure/msal-browser 5.6.3 → 5.8.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +0 -1
- package/dist/app/IPublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientApplication.mjs +1 -1
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
- package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
- package/dist/cache/AccountManager.mjs +1 -1
- package/dist/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/cache/BrowserCacheManager.d.ts +2 -4
- package/dist/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/cache/BrowserCacheManager.mjs +6 -6
- package/dist/cache/BrowserCacheManager.mjs.map +1 -1
- package/dist/cache/CacheHelpers.mjs +1 -1
- package/dist/cache/CacheKeys.d.ts +3 -2
- package/dist/cache/CacheKeys.d.ts.map +1 -1
- package/dist/cache/CacheKeys.mjs +5 -4
- package/dist/cache/CacheKeys.mjs.map +1 -1
- package/dist/cache/CookieStorage.mjs +1 -1
- package/dist/cache/DatabaseStorage.mjs +1 -1
- package/dist/cache/EncryptedData.mjs +1 -1
- package/dist/cache/LocalStorage.mjs +1 -1
- package/dist/cache/MemoryStorage.mjs +1 -1
- package/dist/cache/SessionStorage.mjs +1 -1
- package/dist/cache/TokenCache.mjs +1 -1
- package/dist/config/Configuration.d.ts +7 -0
- package/dist/config/Configuration.d.ts.map +1 -1
- package/dist/config/Configuration.mjs +2 -1
- package/dist/config/Configuration.mjs.map +1 -1
- package/dist/controllers/NestedAppAuthController.mjs +1 -1
- package/dist/controllers/StandardController.d.ts +16 -0
- package/dist/controllers/StandardController.d.ts.map +1 -1
- package/dist/controllers/StandardController.mjs +174 -25
- package/dist/controllers/StandardController.mjs.map +1 -1
- package/dist/crypto/BrowserCrypto.mjs +1 -1
- package/dist/crypto/CryptoOps.mjs +1 -1
- package/dist/crypto/PkceGenerator.mjs +1 -1
- package/dist/crypto/SignedHttpRequest.mjs +1 -1
- package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
- package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts +2 -4
- package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +6 -6
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs.map +1 -1
- package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheKeys.d.ts +3 -2
- package/dist/custom-auth-path/cache/CacheKeys.d.ts.map +1 -1
- package/dist/custom-auth-path/cache/CacheKeys.mjs +5 -4
- package/dist/custom-auth-path/cache/CacheKeys.mjs.map +1 -1
- package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
- package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
- package/dist/custom-auth-path/config/Configuration.d.ts +7 -0
- package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
- package/dist/custom-auth-path/config/Configuration.mjs +2 -1
- package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.d.ts +16 -0
- package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.mjs +174 -25
- package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
- package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
- package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
- package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthError.d.ts.map +1 -1
- package/dist/custom-auth-path/error/NativeAuthError.mjs +3 -4
- package/dist/custom-auth-path/error/NativeAuthError.mjs.map +1 -1
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
- package/dist/custom-auth-path/event/EventType.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs +6 -2
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +6 -2
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +14 -0
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +45 -3
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/custom-auth-path/log-strings-mapping.json +49 -17
- package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
- package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
- package/dist/custom-auth-path/packageMetadata.mjs +2 -2
- package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs +5 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
- package/dist/custom-auth-path/redirect_bridge/index.d.ts.map +1 -1
- package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
- package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs +3 -2
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs +8 -3
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
- package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
- package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/dist/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/dist/encode/Base64Decode.mjs +1 -1
- package/dist/encode/Base64Encode.mjs +1 -1
- package/dist/error/BrowserAuthError.mjs +1 -1
- package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/error/NativeAuthError.d.ts.map +1 -1
- package/dist/error/NativeAuthError.mjs +3 -4
- package/dist/error/NativeAuthError.mjs.map +1 -1
- package/dist/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/error/NestedAppAuthError.mjs +1 -1
- package/dist/event/EventHandler.mjs +1 -1
- package/dist/event/EventMessage.mjs +1 -1
- package/dist/event/EventType.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
- package/dist/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/interaction_client/PopupClient.mjs +6 -2
- package/dist/interaction_client/PopupClient.mjs.map +1 -1
- package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/interaction_client/RedirectClient.mjs +6 -2
- package/dist/interaction_client/RedirectClient.mjs.map +1 -1
- package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/interaction_client/SilentIframeClient.d.ts +14 -0
- package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/interaction_client/SilentIframeClient.mjs +45 -3
- package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
- package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/log-strings-mapping.json +49 -17
- package/dist/naa/BridgeError.mjs +1 -1
- package/dist/naa/BridgeProxy.mjs +1 -1
- package/dist/naa/BridgeStatusCode.mjs +1 -1
- package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
- package/dist/navigation/NavigationClient.mjs +1 -1
- package/dist/network/FetchClient.mjs +1 -1
- package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
- package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.d.ts.map +1 -1
- package/dist/protocol/Authorize.mjs +5 -1
- package/dist/protocol/Authorize.mjs.map +1 -1
- package/dist/redirect-bridge/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts +2 -4
- package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/redirect-bridge/cache/CacheKeys.d.ts +3 -2
- package/dist/redirect-bridge/cache/CacheKeys.d.ts.map +1 -1
- package/dist/redirect-bridge/cache/CacheKeys.mjs +1 -1
- package/dist/redirect-bridge/config/Configuration.d.ts +7 -0
- package/dist/redirect-bridge/config/Configuration.d.ts.map +1 -1
- package/dist/redirect-bridge/config/Configuration.mjs +1 -1
- package/dist/redirect-bridge/controllers/StandardController.d.ts +16 -0
- package/dist/redirect-bridge/controllers/StandardController.d.ts.map +1 -1
- package/dist/redirect-bridge/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/dist/redirect-bridge/encode/Base64Decode.mjs +1 -1
- package/dist/redirect-bridge/error/BrowserAuthError.mjs +1 -1
- package/dist/redirect-bridge/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/redirect-bridge/error/NativeAuthError.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts +14 -0
- package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/redirect-bridge/navigation/NavigationClient.mjs +1 -1
- package/dist/redirect-bridge/packageMetadata.d.ts +1 -1
- package/dist/redirect-bridge/protocol/Authorize.d.ts.map +1 -1
- package/dist/redirect-bridge/redirect_bridge/index.d.ts.map +1 -1
- package/dist/redirect-bridge/redirect_bridge/index.mjs +11 -7
- package/dist/redirect-bridge/redirect_bridge/index.mjs.map +1 -1
- package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/dist/redirect-bridge/utils/BrowserConstants.mjs +7 -3
- package/dist/redirect-bridge/utils/BrowserConstants.mjs.map +1 -1
- package/dist/redirect-bridge/utils/BrowserUtils.mjs +1 -1
- package/dist/redirect_bridge/index.d.ts.map +1 -1
- package/dist/request/RequestHelpers.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/dist/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/dist/telemetry/BrowserPerformanceEvents.mjs +3 -2
- package/dist/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
- package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
- package/dist/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/dist/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/dist/telemetry/BrowserRootPerformanceEvents.mjs +10 -3
- package/dist/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
- package/dist/utils/BrowserConstants.mjs +1 -1
- package/dist/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/utils/BrowserUtils.mjs +1 -1
- package/dist/utils/Helpers.mjs +1 -1
- package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
- package/lib/custom-auth-path/log-strings-mapping.json +49 -17
- package/lib/custom-auth-path/msal-custom-auth.cjs +418 -164
- package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts +2 -4
- package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts.map +1 -1
- package/lib/custom-auth-path/types/cache/CacheKeys.d.ts +3 -2
- package/lib/custom-auth-path/types/cache/CacheKeys.d.ts.map +1 -1
- package/lib/custom-auth-path/types/config/Configuration.d.ts +7 -0
- package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts +16 -0
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/lib/custom-auth-path/types/error/NativeAuthError.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +14 -0
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
- package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/custom-auth-path/types/redirect_bridge/index.d.ts.map +1 -1
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/lib/log-strings-mapping.json +49 -17
- package/lib/msal-browser.cjs +427 -169
- package/lib/msal-browser.cjs.map +1 -1
- package/lib/msal-browser.js +427 -169
- package/lib/msal-browser.js.map +1 -1
- package/lib/msal-browser.min.js +2 -2
- package/lib/redirect-bridge/msal-redirect-bridge.cjs +734 -0
- package/lib/redirect-bridge/msal-redirect-bridge.cjs.map +1 -0
- package/lib/redirect-bridge/msal-redirect-bridge.js +24 -16
- package/lib/redirect-bridge/msal-redirect-bridge.js.map +1 -1
- package/lib/redirect-bridge/msal-redirect-bridge.min.js +2 -2
- package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts +48 -0
- package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts.map +1 -0
- package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts +247 -0
- package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts +12 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts +9 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts +30 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts +63 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts +28 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts +79 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts +71 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/AccountManager.d.ts +24 -0
- package/lib/redirect-bridge/types/cache/AccountManager.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts +58 -0
- package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts +364 -0
- package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts +16 -0
- package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/CacheKeys.d.ts +15 -0
- package/lib/redirect-bridge/types/cache/CacheKeys.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/CookieStorage.d.ts +23 -0
- package/lib/redirect-bridge/types/cache/CookieStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts +57 -0
- package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/EncryptedData.d.ts +8 -0
- package/lib/redirect-bridge/types/cache/EncryptedData.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts +33 -0
- package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts +42 -0
- package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/LocalStorage.d.ts +51 -0
- package/lib/redirect-bridge/types/cache/LocalStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts +16 -0
- package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/SessionStorage.d.ts +14 -0
- package/lib/redirect-bridge/types/cache/SessionStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/TokenCache.d.ts +20 -0
- package/lib/redirect-bridge/types/cache/TokenCache.d.ts.map +1 -0
- package/lib/redirect-bridge/types/config/Configuration.d.ts +198 -0
- package/lib/redirect-bridge/types/config/Configuration.d.ts.map +1 -0
- package/lib/redirect-bridge/types/controllers/IController.d.ts +3 -0
- package/lib/redirect-bridge/types/controllers/IController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts +159 -0
- package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/controllers/StandardController.d.ts +398 -0
- package/lib/redirect-bridge/types/controllers/StandardController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts +73 -0
- package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts +96 -0
- package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts.map +1 -0
- package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts +77 -0
- package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts.map +1 -0
- package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts +9 -0
- package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts.map +1 -0
- package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts +32 -0
- package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts +29 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts +35 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
- package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts +14 -0
- package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts +27 -0
- package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
- package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +40 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +31 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts +29 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +47 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +82 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +27 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +40 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +34 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +67 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts +9 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +34 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +15 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +14 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +16 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +34 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +23 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +23 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +86 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +71 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts +25 -0
- package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts +4 -0
- package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts +3 -0
- package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/index.d.ts +84 -0
- package/lib/redirect-bridge/types/custom_auth/index.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +40 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +27 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +16 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +19 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +45 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +72 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +51 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +46 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +33 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +12 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +17 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +21 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +22 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +25 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +49 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +32 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +43 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +62 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +25 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +32 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +16 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +24 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/encode/Base64Decode.d.ts +15 -0
- package/lib/redirect-bridge/types/encode/Base64Decode.d.ts.map +1 -0
- package/lib/redirect-bridge/types/encode/Base64Encode.d.ts +20 -0
- package/lib/redirect-bridge/types/encode/Base64Encode.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts +12 -0
- package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts +53 -0
- package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts +11 -0
- package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts +4 -0
- package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/NativeAuthError.d.ts +27 -0
- package/lib/redirect-bridge/types/error/NativeAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts +5 -0
- package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts +6 -0
- package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/event/EventHandler.d.ts +49 -0
- package/lib/redirect-bridge/types/event/EventHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/event/EventMessage.d.ts +41 -0
- package/lib/redirect-bridge/types/event/EventMessage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/event/EventType.d.ts +24 -0
- package/lib/redirect-bridge/types/event/EventType.d.ts.map +1 -0
- package/lib/redirect-bridge/types/index.d.ts +73 -0
- package/lib/redirect-bridge/types/index.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts +77 -0
- package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts +5 -0
- package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts +151 -0
- package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts +106 -0
- package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts +77 -0
- package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts +24 -0
- package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts +17 -0
- package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts +57 -0
- package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts +32 -0
- package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts +76 -0
- package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts +33 -0
- package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts +17 -0
- package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/AccountInfo.d.ts +13 -0
- package/lib/redirect-bridge/types/naa/AccountInfo.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/AuthBridge.d.ts +9 -0
- package/lib/redirect-bridge/types/naa/AuthBridge.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/AuthResult.d.ts +7 -0
- package/lib/redirect-bridge/types/naa/AuthResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts +13 -0
- package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts +4 -0
- package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeError.d.ts +10 -0
- package/lib/redirect-bridge/types/naa/BridgeError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts +69 -0
- package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts +8 -0
- package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts +13 -0
- package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts +14 -0
- package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts +12 -0
- package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts +11 -0
- package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/InitContext.d.ts +9 -0
- package/lib/redirect-bridge/types/naa/InitContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/TokenRequest.d.ts +21 -0
- package/lib/redirect-bridge/types/naa/TokenRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/TokenResponse.d.ts +14 -0
- package/lib/redirect-bridge/types/naa/TokenResponse.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts +36 -0
- package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -0
- package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts +17 -0
- package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts +23 -0
- package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts +13 -0
- package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts.map +1 -0
- package/lib/redirect-bridge/types/network/FetchClient.d.ts +21 -0
- package/lib/redirect-bridge/types/network/FetchClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts +43 -0
- package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts +41 -0
- package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts +26 -0
- package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts +26 -0
- package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/packageMetadata.d.ts +3 -0
- package/lib/redirect-bridge/types/packageMetadata.d.ts.map +1 -0
- package/lib/redirect-bridge/types/protocol/Authorize.d.ts +102 -0
- package/lib/redirect-bridge/types/protocol/Authorize.d.ts.map +1 -0
- package/lib/redirect-bridge/types/redirect_bridge/index.d.ts +16 -0
- package/lib/redirect-bridge/types/redirect_bridge/index.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts +27 -0
- package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts +15 -0
- package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts +24 -0
- package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts +11 -0
- package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts +5 -0
- package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts +10 -0
- package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/PopupRequest.d.ts +25 -0
- package/lib/redirect-bridge/types/request/PopupRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts +16 -0
- package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/RedirectRequest.d.ts +16 -0
- package/lib/redirect-bridge/types/request/RedirectRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/RequestHelpers.d.ts +28 -0
- package/lib/redirect-bridge/types/request/RequestHelpers.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/SilentRequest.d.ts +52 -0
- package/lib/redirect-bridge/types/request/SilentRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts +6 -0
- package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts +5 -0
- package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/response/ResponseHandler.d.ts +8 -0
- package/lib/redirect-bridge/types/response/ResponseHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts +19 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts +140 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts +22 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts.map +1 -0
- package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts +42 -0
- package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts +182 -0
- package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts +12 -0
- package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts +111 -0
- package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/Helpers.d.ts +7 -0
- package/lib/redirect-bridge/types/utils/Helpers.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts +13 -0
- package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts.map +1 -0
- package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/lib/types/cache/BrowserCacheManager.d.ts +2 -4
- package/lib/types/cache/BrowserCacheManager.d.ts.map +1 -1
- package/lib/types/cache/CacheKeys.d.ts +3 -2
- package/lib/types/cache/CacheKeys.d.ts.map +1 -1
- package/lib/types/config/Configuration.d.ts +7 -0
- package/lib/types/config/Configuration.d.ts.map +1 -1
- package/lib/types/controllers/StandardController.d.ts +16 -0
- package/lib/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/types/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/lib/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/lib/types/error/NativeAuthError.d.ts.map +1 -1
- package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
- package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
- package/lib/types/interaction_client/SilentIframeClient.d.ts +14 -0
- package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/lib/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/types/redirect_bridge/index.d.ts.map +1 -1
- package/lib/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/lib/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/package.json +3 -3
- package/src/broker/nativeBroker/PlatformAuthExtensionHandler.ts +1 -1
- package/src/broker/nativeBroker/PlatformAuthProvider.ts +1 -1
- package/src/cache/BrowserCacheManager.ts +5 -5
- package/src/cache/CacheKeys.ts +3 -2
- package/src/config/Configuration.ts +8 -0
- package/src/controllers/StandardController.ts +290 -39
- package/src/custom_auth/UserAccountAttributes.ts +1 -0
- package/src/error/NativeAuthError.ts +1 -2
- package/src/interaction_client/PlatformAuthInteractionClient.ts +82 -37
- package/src/interaction_client/PopupClient.ts +10 -0
- package/src/interaction_client/RedirectClient.ts +10 -0
- package/src/interaction_client/SilentIframeClient.ts +123 -20
- package/src/packageMetadata.ts +1 -1
- package/src/protocol/Authorize.ts +8 -0
- package/src/redirect_bridge/index.ts +12 -5
- package/src/telemetry/BrowserPerformanceEvents.ts +3 -0
- package/src/telemetry/BrowserRootPerformanceEvents.ts +7 -0
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
/*! @azure/msal-browser v5.
|
|
1
|
+
/*! @azure/msal-browser v5.8.0 2026-04-21 */
|
|
2
2
|
'use strict';
|
|
3
3
|
'use strict';
|
|
4
4
|
|
|
5
|
-
/*! @azure/msal-common v16.
|
|
5
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6
6
|
/*
|
|
7
7
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8
8
|
* Licensed under the MIT License.
|
|
@@ -229,7 +229,7 @@ const JsonWebTokenTypes = {
|
|
|
229
229
|
// Token renewal offset default in seconds
|
|
230
230
|
const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
|
|
231
231
|
|
|
232
|
-
/*! @azure/msal-common v16.
|
|
232
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
233
233
|
/*
|
|
234
234
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
235
235
|
* Licensed under the MIT License.
|
|
@@ -281,7 +281,7 @@ const EAR_JWE_CRYPTO = "ear_jwe_crypto";
|
|
|
281
281
|
const RESOURCE = "resource";
|
|
282
282
|
const CLI_DATA = "clidata";
|
|
283
283
|
|
|
284
|
-
/*! @azure/msal-common v16.
|
|
284
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
285
285
|
/*
|
|
286
286
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
287
287
|
* Licensed under the MIT License.
|
|
@@ -312,7 +312,7 @@ function createAuthError(code, additionalMessage) {
|
|
|
312
312
|
return new AuthError(code, additionalMessage || getDefaultErrorMessage$1(code));
|
|
313
313
|
}
|
|
314
314
|
|
|
315
|
-
/*! @azure/msal-common v16.
|
|
315
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
316
316
|
|
|
317
317
|
/*
|
|
318
318
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -332,7 +332,7 @@ function createClientConfigurationError(errorCode) {
|
|
|
332
332
|
return new ClientConfigurationError(errorCode);
|
|
333
333
|
}
|
|
334
334
|
|
|
335
|
-
/*! @azure/msal-common v16.
|
|
335
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
336
336
|
/*
|
|
337
337
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
338
338
|
* Licensed under the MIT License.
|
|
@@ -412,7 +412,7 @@ class StringUtils {
|
|
|
412
412
|
}
|
|
413
413
|
}
|
|
414
414
|
|
|
415
|
-
/*! @azure/msal-common v16.
|
|
415
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
416
416
|
|
|
417
417
|
/*
|
|
418
418
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -435,7 +435,7 @@ function createClientAuthError(errorCode, additionalMessage) {
|
|
|
435
435
|
return new ClientAuthError(errorCode, additionalMessage);
|
|
436
436
|
}
|
|
437
437
|
|
|
438
|
-
/*! @azure/msal-common v16.
|
|
438
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
439
439
|
/*
|
|
440
440
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
441
441
|
* Licensed under the MIT License.
|
|
@@ -459,7 +459,7 @@ const cannotAllowPlatformBroker = "cannot_allow_platform_broker";
|
|
|
459
459
|
const authorityMismatch = "authority_mismatch";
|
|
460
460
|
const invalidRequestMethodForEAR = "invalid_request_method_for_EAR";
|
|
461
461
|
|
|
462
|
-
/*! @azure/msal-common v16.
|
|
462
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
463
463
|
/*
|
|
464
464
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
465
465
|
* Licensed under the MIT License.
|
|
@@ -498,7 +498,7 @@ const methodNotImplemented = "method_not_implemented";
|
|
|
498
498
|
const resourceParameterRequired = "resource_parameter_required";
|
|
499
499
|
const misplacedResourceParam = "misplaced_resource_parameter";
|
|
500
500
|
|
|
501
|
-
/*! @azure/msal-common v16.
|
|
501
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
502
502
|
|
|
503
503
|
/*
|
|
504
504
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -693,7 +693,7 @@ class ScopeSet {
|
|
|
693
693
|
}
|
|
694
694
|
}
|
|
695
695
|
|
|
696
|
-
/*! @azure/msal-common v16.
|
|
696
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
697
697
|
|
|
698
698
|
/*
|
|
699
699
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -814,18 +814,29 @@ function addSid(parameters, sid) {
|
|
|
814
814
|
parameters.set(SID, sid);
|
|
815
815
|
}
|
|
816
816
|
/**
|
|
817
|
-
*
|
|
818
|
-
*
|
|
819
|
-
|
|
820
|
-
|
|
821
|
-
|
|
822
|
-
|
|
823
|
-
|
|
824
|
-
|
|
825
|
-
|
|
826
|
-
|
|
817
|
+
* Adds claims to request parameters, conditionally excluding clientCapabilities
|
|
818
|
+
* when skipBrokerClaims is true and a brokered flow is in effect.
|
|
819
|
+
* @param parameters - The request parameters map
|
|
820
|
+
* @param claims - The claims string from the request
|
|
821
|
+
* @param clientCapabilities - The client capabilities from configuration
|
|
822
|
+
* @param skipBrokerClaims - When true and BROKER_CLIENT_ID is present, excludes clientCapabilities from claims
|
|
823
|
+
*/
|
|
824
|
+
function addClaims(parameters, claims, clientCapabilities, skipBrokerClaims) {
|
|
825
|
+
// Skip clientCapabilities if skipBrokerClaims is set to true and this is a brokered authentication flow
|
|
826
|
+
const configClaims = skipBrokerClaims && parameters.has(BROKER_CLIENT_ID)
|
|
827
|
+
? undefined
|
|
828
|
+
: clientCapabilities;
|
|
829
|
+
if (!StringUtils.isEmptyObj(claims) ||
|
|
830
|
+
(configClaims && configClaims.length > 0)) {
|
|
831
|
+
const mergedClaims = addClientCapabilitiesToClaims(claims, configClaims);
|
|
832
|
+
try {
|
|
833
|
+
JSON.parse(mergedClaims);
|
|
834
|
+
}
|
|
835
|
+
catch (e) {
|
|
836
|
+
throw createClientConfigurationError(invalidClaims);
|
|
837
|
+
}
|
|
838
|
+
parameters.set(CLAIMS, mergedClaims);
|
|
827
839
|
}
|
|
828
|
-
parameters.set(CLAIMS, mergedClaims);
|
|
829
840
|
}
|
|
830
841
|
/**
|
|
831
842
|
* add correlationId
|
|
@@ -1071,7 +1082,7 @@ function addResource(parameters, resource) {
|
|
|
1071
1082
|
}
|
|
1072
1083
|
}
|
|
1073
1084
|
|
|
1074
|
-
/*! @azure/msal-common v16.
|
|
1085
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1075
1086
|
|
|
1076
1087
|
/*
|
|
1077
1088
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1180,7 +1191,7 @@ function normalizeUrlForComparison(url) {
|
|
|
1180
1191
|
}
|
|
1181
1192
|
}
|
|
1182
1193
|
|
|
1183
|
-
/*! @azure/msal-common v16.
|
|
1194
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1184
1195
|
|
|
1185
1196
|
/*
|
|
1186
1197
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1219,7 +1230,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
|
|
|
1219
1230
|
},
|
|
1220
1231
|
};
|
|
1221
1232
|
|
|
1222
|
-
/*! @azure/msal-common v16.
|
|
1233
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1223
1234
|
/*
|
|
1224
1235
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1225
1236
|
* Licensed under the MIT License.
|
|
@@ -1480,12 +1491,12 @@ class Logger {
|
|
|
1480
1491
|
}
|
|
1481
1492
|
}
|
|
1482
1493
|
|
|
1483
|
-
/*! @azure/msal-common v16.
|
|
1494
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1484
1495
|
/* eslint-disable header/header */
|
|
1485
1496
|
const name$1 = "@azure/msal-common";
|
|
1486
|
-
const version$1 = "16.
|
|
1497
|
+
const version$1 = "16.5.1";
|
|
1487
1498
|
|
|
1488
|
-
/*! @azure/msal-common v16.
|
|
1499
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1489
1500
|
/*
|
|
1490
1501
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1491
1502
|
* Licensed under the MIT License.
|
|
@@ -1494,7 +1505,7 @@ const AzureCloudInstance = {
|
|
|
1494
1505
|
// AzureCloudInstance is not specified.
|
|
1495
1506
|
None: "none"};
|
|
1496
1507
|
|
|
1497
|
-
/*! @azure/msal-common v16.
|
|
1508
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1498
1509
|
/*
|
|
1499
1510
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1500
1511
|
* Licensed under the MIT License.
|
|
@@ -1535,6 +1546,7 @@ function buildTenantProfile(homeAccountId, localAccountId, tenantId, idTokenClai
|
|
|
1535
1546
|
username: preferred_username || upn || "",
|
|
1536
1547
|
loginHint: login_hint,
|
|
1537
1548
|
isHomeTenant: tenantIdMatchesHomeTenant(tenantId, homeAccountId),
|
|
1549
|
+
upn: upn,
|
|
1538
1550
|
};
|
|
1539
1551
|
}
|
|
1540
1552
|
else {
|
|
@@ -1562,7 +1574,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
|
|
|
1562
1574
|
}
|
|
1563
1575
|
// ID token claims override passed in account info and tenant profile
|
|
1564
1576
|
if (idTokenClaims) {
|
|
1565
|
-
// Ignore isHomeTenant
|
|
1577
|
+
// Ignore isHomeTenant which is a utility property of tenant profile but not required in base account info
|
|
1566
1578
|
// eslint-disable-next-line @typescript-eslint/no-unused-vars
|
|
1567
1579
|
const { isHomeTenant, ...claimsSourcedTenantProfile } = buildTenantProfile(baseAccountInfo.homeAccountId, baseAccountInfo.localAccountId, baseAccountInfo.tenantId, idTokenClaims);
|
|
1568
1580
|
updatedAccountInfo = {
|
|
@@ -1576,7 +1588,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
|
|
|
1576
1588
|
return updatedAccountInfo;
|
|
1577
1589
|
}
|
|
1578
1590
|
|
|
1579
|
-
/*! @azure/msal-common v16.
|
|
1591
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1580
1592
|
|
|
1581
1593
|
/*
|
|
1582
1594
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1656,7 +1668,7 @@ function checkMaxAge(authTime, maxAge) {
|
|
|
1656
1668
|
}
|
|
1657
1669
|
}
|
|
1658
1670
|
|
|
1659
|
-
/*! @azure/msal-common v16.
|
|
1671
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1660
1672
|
|
|
1661
1673
|
/*
|
|
1662
1674
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1813,7 +1825,7 @@ class UrlString {
|
|
|
1813
1825
|
}
|
|
1814
1826
|
}
|
|
1815
1827
|
|
|
1816
|
-
/*! @azure/msal-common v16.
|
|
1828
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1817
1829
|
|
|
1818
1830
|
/*
|
|
1819
1831
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1970,7 +1982,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
|
|
|
1970
1982
|
return null;
|
|
1971
1983
|
}
|
|
1972
1984
|
|
|
1973
|
-
/*! @azure/msal-common v16.
|
|
1985
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1974
1986
|
/*
|
|
1975
1987
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1976
1988
|
* Licensed under the MIT License.
|
|
@@ -1978,7 +1990,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
|
|
|
1978
1990
|
const cacheQuotaExceeded = "cache_quota_exceeded";
|
|
1979
1991
|
const cacheErrorUnknown = "cache_error_unknown";
|
|
1980
1992
|
|
|
1981
|
-
/*! @azure/msal-common v16.
|
|
1993
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1982
1994
|
|
|
1983
1995
|
/*
|
|
1984
1996
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2016,7 +2028,7 @@ function createCacheError(e) {
|
|
|
2016
2028
|
}
|
|
2017
2029
|
}
|
|
2018
2030
|
|
|
2019
|
-
/*! @azure/msal-common v16.
|
|
2031
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2020
2032
|
|
|
2021
2033
|
/*
|
|
2022
2034
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2054,7 +2066,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
|
|
|
2054
2066
|
};
|
|
2055
2067
|
}
|
|
2056
2068
|
|
|
2057
|
-
/*! @azure/msal-common v16.
|
|
2069
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2058
2070
|
/*
|
|
2059
2071
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2060
2072
|
* Licensed under the MIT License.
|
|
@@ -2069,7 +2081,7 @@ const AuthorityType = {
|
|
|
2069
2081
|
Ciam: 3,
|
|
2070
2082
|
};
|
|
2071
2083
|
|
|
2072
|
-
/*! @azure/msal-common v16.
|
|
2084
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2073
2085
|
/*
|
|
2074
2086
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2075
2087
|
* Licensed under the MIT License.
|
|
@@ -2091,7 +2103,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
|
|
|
2091
2103
|
return null;
|
|
2092
2104
|
}
|
|
2093
2105
|
|
|
2094
|
-
/*! @azure/msal-common v16.
|
|
2106
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2095
2107
|
/*
|
|
2096
2108
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2097
2109
|
* Licensed under the MIT License.
|
|
@@ -2115,7 +2127,7 @@ const ProtocolMode = {
|
|
|
2115
2127
|
EAR: "EAR",
|
|
2116
2128
|
};
|
|
2117
2129
|
|
|
2118
|
-
/*! @azure/msal-common v16.
|
|
2130
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2119
2131
|
/**
|
|
2120
2132
|
* Returns the AccountInfo interface for this account.
|
|
2121
2133
|
*/
|
|
@@ -2290,7 +2302,7 @@ function isAccountEntity(entity) {
|
|
|
2290
2302
|
entity.hasOwnProperty("authorityType"));
|
|
2291
2303
|
}
|
|
2292
2304
|
|
|
2293
|
-
/*! @azure/msal-common v16.
|
|
2305
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2294
2306
|
|
|
2295
2307
|
/*
|
|
2296
2308
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2427,6 +2439,19 @@ class CacheManager {
|
|
|
2427
2439
|
!(tenantProfile.isHomeTenant === tenantProfileFilter.isHomeTenant)) {
|
|
2428
2440
|
return false;
|
|
2429
2441
|
}
|
|
2442
|
+
if (!!tenantProfileFilter.username &&
|
|
2443
|
+
!(this.matchUsername(tenantProfile.username, tenantProfileFilter.username) ||
|
|
2444
|
+
!this.matchUsername(tenantProfile.upn, tenantProfileFilter.username))) {
|
|
2445
|
+
return false;
|
|
2446
|
+
}
|
|
2447
|
+
if (!!tenantProfileFilter.loginHint &&
|
|
2448
|
+
!this.matchLoginHintWithTenantProfile(tenantProfile, tenantProfileFilter.loginHint)) {
|
|
2449
|
+
return false;
|
|
2450
|
+
}
|
|
2451
|
+
if (!!tenantProfileFilter.upn &&
|
|
2452
|
+
!(tenantProfile.upn === tenantProfileFilter.upn)) {
|
|
2453
|
+
return false;
|
|
2454
|
+
}
|
|
2430
2455
|
return true;
|
|
2431
2456
|
}
|
|
2432
2457
|
idTokenClaimsMatchTenantProfileFilter(idTokenClaims, tenantProfileFilter) {
|
|
@@ -2441,7 +2466,8 @@ class CacheManager {
|
|
|
2441
2466
|
return false;
|
|
2442
2467
|
}
|
|
2443
2468
|
if (!!tenantProfileFilter.username &&
|
|
2444
|
-
!this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username)
|
|
2469
|
+
!this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username) &&
|
|
2470
|
+
!this.matchUsername(idTokenClaims.upn, tenantProfileFilter.username)) {
|
|
2445
2471
|
return false;
|
|
2446
2472
|
}
|
|
2447
2473
|
if (!!tenantProfileFilter.name &&
|
|
@@ -2542,10 +2568,6 @@ class CacheManager {
|
|
|
2542
2568
|
!this.matchHomeAccountId(entity, accountFilter.homeAccountId)) {
|
|
2543
2569
|
return;
|
|
2544
2570
|
}
|
|
2545
|
-
if (!!accountFilter.username &&
|
|
2546
|
-
!this.matchUsername(entity.username, accountFilter.username)) {
|
|
2547
|
-
return;
|
|
2548
|
-
}
|
|
2549
2571
|
if (!!accountFilter.environment &&
|
|
2550
2572
|
!this.matchEnvironment(entity, accountFilter.environment, correlationId)) {
|
|
2551
2573
|
return;
|
|
@@ -2566,6 +2588,9 @@ class CacheManager {
|
|
|
2566
2588
|
const tenantProfileFilter = {
|
|
2567
2589
|
localAccountId: accountFilter?.localAccountId,
|
|
2568
2590
|
name: accountFilter?.name,
|
|
2591
|
+
username: accountFilter?.username,
|
|
2592
|
+
loginHint: accountFilter?.loginHint,
|
|
2593
|
+
upn: accountFilter?.upn,
|
|
2569
2594
|
};
|
|
2570
2595
|
const matchingTenantProfiles = entity.tenantProfiles?.filter((tenantProfile) => {
|
|
2571
2596
|
return this.tenantProfileMatchesFilter(tenantProfile, tenantProfileFilter);
|
|
@@ -2816,11 +2841,11 @@ class CacheManager {
|
|
|
2816
2841
|
const numHomeIdTokens = homeIdTokenMap.size;
|
|
2817
2842
|
if (numHomeIdTokens < 1) {
|
|
2818
2843
|
this.commonLogger.info("0ooalx", correlationId);
|
|
2819
|
-
return idTokenMap.values().next().value;
|
|
2844
|
+
return idTokenMap.values().next().value ?? null;
|
|
2820
2845
|
}
|
|
2821
2846
|
else if (numHomeIdTokens === 1) {
|
|
2822
2847
|
this.commonLogger.info("1eq2vc", correlationId);
|
|
2823
|
-
return homeIdTokenMap.values().next().value;
|
|
2848
|
+
return homeIdTokenMap.values().next().value ?? null;
|
|
2824
2849
|
}
|
|
2825
2850
|
else {
|
|
2826
2851
|
// Multiple ID tokens for home tenant profile, remove all and return null
|
|
@@ -2836,7 +2861,7 @@ class CacheManager {
|
|
|
2836
2861
|
return null;
|
|
2837
2862
|
}
|
|
2838
2863
|
this.commonLogger.info("1sm769", correlationId);
|
|
2839
|
-
return idTokenMap.values().next().value;
|
|
2864
|
+
return idTokenMap.values().next().value ?? null;
|
|
2840
2865
|
}
|
|
2841
2866
|
/**
|
|
2842
2867
|
* Gets all idTokens matching the given filter
|
|
@@ -3148,6 +3173,17 @@ class CacheManager {
|
|
|
3148
3173
|
typeof cachedUsername === "string" &&
|
|
3149
3174
|
filterUsername?.toLowerCase() === cachedUsername.toLowerCase());
|
|
3150
3175
|
}
|
|
3176
|
+
/**
|
|
3177
|
+
* helper to match loginhints
|
|
3178
|
+
* @param entity
|
|
3179
|
+
* @param loginHint
|
|
3180
|
+
* @returns
|
|
3181
|
+
*/
|
|
3182
|
+
matchLoginHintWithTenantProfile(tenantProfile, loginHintFilter) {
|
|
3183
|
+
return (tenantProfile.loginHint === loginHintFilter ||
|
|
3184
|
+
tenantProfile.username === loginHintFilter ||
|
|
3185
|
+
tenantProfile.upn === loginHintFilter);
|
|
3186
|
+
}
|
|
3151
3187
|
/**
|
|
3152
3188
|
* helper to match assertion
|
|
3153
3189
|
* @param value
|
|
@@ -3240,6 +3276,10 @@ class CacheManager {
|
|
|
3240
3276
|
if (tokenClaims.upn === loginHint) {
|
|
3241
3277
|
return true;
|
|
3242
3278
|
}
|
|
3279
|
+
// check login hint against list of emails in token claims
|
|
3280
|
+
if (tokenClaims.emails && tokenClaims.emails.includes(loginHint)) {
|
|
3281
|
+
return true;
|
|
3282
|
+
}
|
|
3243
3283
|
return false;
|
|
3244
3284
|
}
|
|
3245
3285
|
/**
|
|
@@ -3391,7 +3431,7 @@ class DefaultStorageClass extends CacheManager {
|
|
|
3391
3431
|
}
|
|
3392
3432
|
}
|
|
3393
3433
|
|
|
3394
|
-
/*! @azure/msal-common v16.
|
|
3434
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3395
3435
|
/*
|
|
3396
3436
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3397
3437
|
* Licensed under the MIT License.
|
|
@@ -3405,7 +3445,7 @@ class DefaultStorageClass extends CacheManager {
|
|
|
3405
3445
|
const PerformanceEventStatus = {
|
|
3406
3446
|
InProgress: 1};
|
|
3407
3447
|
|
|
3408
|
-
/*! @azure/msal-common v16.
|
|
3448
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3409
3449
|
|
|
3410
3450
|
/*
|
|
3411
3451
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3460,7 +3500,7 @@ class StubPerformanceClient {
|
|
|
3460
3500
|
}
|
|
3461
3501
|
}
|
|
3462
3502
|
|
|
3463
|
-
/*! @azure/msal-common v16.
|
|
3503
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3464
3504
|
|
|
3465
3505
|
/*
|
|
3466
3506
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3555,7 +3595,7 @@ function isOidcProtocolMode(config) {
|
|
|
3555
3595
|
return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
|
|
3556
3596
|
}
|
|
3557
3597
|
|
|
3558
|
-
/*! @azure/msal-common v16.
|
|
3598
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3559
3599
|
/*
|
|
3560
3600
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3561
3601
|
* Licensed under the MIT License.
|
|
@@ -3582,7 +3622,7 @@ function isOidcProtocolMode(config) {
|
|
|
3582
3622
|
}
|
|
3583
3623
|
}
|
|
3584
3624
|
|
|
3585
|
-
/*! @azure/msal-common v16.
|
|
3625
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3586
3626
|
/*
|
|
3587
3627
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3588
3628
|
* Licensed under the MIT License.
|
|
@@ -3647,7 +3687,7 @@ function wasClockTurnedBack(cachedAt) {
|
|
|
3647
3687
|
return cachedAtSec > nowSeconds();
|
|
3648
3688
|
}
|
|
3649
3689
|
|
|
3650
|
-
/*! @azure/msal-common v16.
|
|
3690
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3651
3691
|
|
|
3652
3692
|
/*
|
|
3653
3693
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3906,7 +3946,7 @@ function isAuthorityMetadataExpired(metadata) {
|
|
|
3906
3946
|
return metadata.expiresAt <= nowSeconds();
|
|
3907
3947
|
}
|
|
3908
3948
|
|
|
3909
|
-
/*! @azure/msal-common v16.
|
|
3949
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3910
3950
|
/*
|
|
3911
3951
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3912
3952
|
* Licensed under the MIT License.
|
|
@@ -3977,7 +4017,7 @@ const RegionDiscoveryGetCurrentVersion = "regionDiscoveryGetCurrentVersion";
|
|
|
3977
4017
|
const CacheManagerGetRefreshToken = "cacheManagerGetRefreshToken";
|
|
3978
4018
|
const SetUserData = "setUserData";
|
|
3979
4019
|
|
|
3980
|
-
/*! @azure/msal-common v16.
|
|
4020
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3981
4021
|
/*
|
|
3982
4022
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3983
4023
|
* Licensed under the MIT License.
|
|
@@ -4070,7 +4110,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
|
|
|
4070
4110
|
};
|
|
4071
4111
|
};
|
|
4072
4112
|
|
|
4073
|
-
/*! @azure/msal-common v16.
|
|
4113
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4074
4114
|
|
|
4075
4115
|
/*
|
|
4076
4116
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4150,7 +4190,7 @@ class PopTokenGenerator {
|
|
|
4150
4190
|
}
|
|
4151
4191
|
}
|
|
4152
4192
|
|
|
4153
|
-
/*! @azure/msal-common v16.
|
|
4193
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4154
4194
|
/*
|
|
4155
4195
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4156
4196
|
* Licensed under the MIT License.
|
|
@@ -4201,7 +4241,7 @@ const badToken = "bad_token";
|
|
|
4201
4241
|
*/
|
|
4202
4242
|
const interruptedUser = "interrupted_user";
|
|
4203
4243
|
|
|
4204
|
-
/*! @azure/msal-common v16.
|
|
4244
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4205
4245
|
|
|
4206
4246
|
/*
|
|
4207
4247
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4269,7 +4309,7 @@ function createInteractionRequiredAuthError(errorCode, errorMessage) {
|
|
|
4269
4309
|
return new InteractionRequiredAuthError(errorCode, errorMessage);
|
|
4270
4310
|
}
|
|
4271
4311
|
|
|
4272
|
-
/*! @azure/msal-common v16.
|
|
4312
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4273
4313
|
|
|
4274
4314
|
/*
|
|
4275
4315
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4288,7 +4328,7 @@ class ServerError extends AuthError {
|
|
|
4288
4328
|
}
|
|
4289
4329
|
}
|
|
4290
4330
|
|
|
4291
|
-
/*! @azure/msal-common v16.
|
|
4331
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4292
4332
|
|
|
4293
4333
|
/*
|
|
4294
4334
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4356,7 +4396,7 @@ function parseRequestState(base64Decode, state) {
|
|
|
4356
4396
|
}
|
|
4357
4397
|
}
|
|
4358
4398
|
|
|
4359
|
-
/*! @azure/msal-common v16.
|
|
4399
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4360
4400
|
|
|
4361
4401
|
/*
|
|
4362
4402
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4704,7 +4744,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
|
|
|
4704
4744
|
return baseAccount;
|
|
4705
4745
|
}
|
|
4706
4746
|
|
|
4707
|
-
/*! @azure/msal-common v16.
|
|
4747
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4708
4748
|
/*
|
|
4709
4749
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4710
4750
|
* Licensed under the MIT License.
|
|
@@ -4714,7 +4754,7 @@ const CcsCredentialType = {
|
|
|
4714
4754
|
UPN: "UPN",
|
|
4715
4755
|
};
|
|
4716
4756
|
|
|
4717
|
-
/*! @azure/msal-common v16.
|
|
4757
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4718
4758
|
/*
|
|
4719
4759
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4720
4760
|
* Licensed under the MIT License.
|
|
@@ -4732,7 +4772,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
|
|
|
4732
4772
|
}
|
|
4733
4773
|
}
|
|
4734
4774
|
|
|
4735
|
-
/*! @azure/msal-common v16.
|
|
4775
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4736
4776
|
/*
|
|
4737
4777
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4738
4778
|
* Licensed under the MIT License.
|
|
@@ -4753,7 +4793,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
|
|
|
4753
4793
|
};
|
|
4754
4794
|
}
|
|
4755
4795
|
|
|
4756
|
-
/*! @azure/msal-common v16.
|
|
4796
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4757
4797
|
|
|
4758
4798
|
/*
|
|
4759
4799
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4839,7 +4879,7 @@ class ThrottlingUtils {
|
|
|
4839
4879
|
}
|
|
4840
4880
|
}
|
|
4841
4881
|
|
|
4842
|
-
/*! @azure/msal-common v16.
|
|
4882
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4843
4883
|
|
|
4844
4884
|
/*
|
|
4845
4885
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4870,7 +4910,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
|
|
|
4870
4910
|
return new NetworkError(error, httpStatus, responseHeaders);
|
|
4871
4911
|
}
|
|
4872
4912
|
|
|
4873
|
-
/*! @azure/msal-common v16.
|
|
4913
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4874
4914
|
|
|
4875
4915
|
/*
|
|
4876
4916
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4984,7 +5024,7 @@ async function sendPostRequest(thumbprint, tokenEndpoint, options, correlationId
|
|
|
4984
5024
|
return response;
|
|
4985
5025
|
}
|
|
4986
5026
|
|
|
4987
|
-
/*! @azure/msal-common v16.
|
|
5027
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4988
5028
|
/*
|
|
4989
5029
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4990
5030
|
* Licensed under the MIT License.
|
|
@@ -4996,7 +5036,7 @@ function isOpenIdConfigResponse(response) {
|
|
|
4996
5036
|
response.hasOwnProperty("jwks_uri"));
|
|
4997
5037
|
}
|
|
4998
5038
|
|
|
4999
|
-
/*! @azure/msal-common v16.
|
|
5039
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5000
5040
|
/*
|
|
5001
5041
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5002
5042
|
* Licensed under the MIT License.
|
|
@@ -5006,7 +5046,7 @@ function isCloudInstanceDiscoveryResponse(response) {
|
|
|
5006
5046
|
response.hasOwnProperty("metadata"));
|
|
5007
5047
|
}
|
|
5008
5048
|
|
|
5009
|
-
/*! @azure/msal-common v16.
|
|
5049
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5010
5050
|
/*
|
|
5011
5051
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5012
5052
|
* Licensed under the MIT License.
|
|
@@ -5016,7 +5056,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
|
|
|
5016
5056
|
response.hasOwnProperty("error_description"));
|
|
5017
5057
|
}
|
|
5018
5058
|
|
|
5019
|
-
/*! @azure/msal-common v16.
|
|
5059
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5020
5060
|
|
|
5021
5061
|
/*
|
|
5022
5062
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5121,7 +5161,7 @@ RegionDiscovery.IMDS_OPTIONS = {
|
|
|
5121
5161
|
},
|
|
5122
5162
|
};
|
|
5123
5163
|
|
|
5124
|
-
/*! @azure/msal-common v16.
|
|
5164
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5125
5165
|
|
|
5126
5166
|
/*
|
|
5127
5167
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5941,7 +5981,7 @@ function buildStaticAuthorityOptions(authOptions) {
|
|
|
5941
5981
|
};
|
|
5942
5982
|
}
|
|
5943
5983
|
|
|
5944
|
-
/*! @azure/msal-common v16.
|
|
5984
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5945
5985
|
|
|
5946
5986
|
/*
|
|
5947
5987
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5975,7 +6015,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
|
|
|
5975
6015
|
}
|
|
5976
6016
|
}
|
|
5977
6017
|
|
|
5978
|
-
/*! @azure/msal-common v16.
|
|
6018
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5979
6019
|
|
|
5980
6020
|
/*
|
|
5981
6021
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6140,11 +6180,6 @@ class AuthorizationCodeClient {
|
|
|
6140
6180
|
throw createClientConfigurationError(missingSshJwk);
|
|
6141
6181
|
}
|
|
6142
6182
|
}
|
|
6143
|
-
if (!StringUtils.isEmptyObj(request.claims) ||
|
|
6144
|
-
(this.config.authOptions.clientCapabilities &&
|
|
6145
|
-
this.config.authOptions.clientCapabilities.length > 0)) {
|
|
6146
|
-
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
|
|
6147
|
-
}
|
|
6148
6183
|
let ccsCred = undefined;
|
|
6149
6184
|
if (request.clientInfo) {
|
|
6150
6185
|
try {
|
|
@@ -6193,6 +6228,7 @@ class AuthorizationCodeClient {
|
|
|
6193
6228
|
});
|
|
6194
6229
|
}
|
|
6195
6230
|
instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
|
|
6231
|
+
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
6196
6232
|
return mapToQueryString(parameters);
|
|
6197
6233
|
}
|
|
6198
6234
|
/**
|
|
@@ -6236,7 +6272,7 @@ class AuthorizationCodeClient {
|
|
|
6236
6272
|
}
|
|
6237
6273
|
}
|
|
6238
6274
|
|
|
6239
|
-
/*! @azure/msal-common v16.
|
|
6275
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6240
6276
|
|
|
6241
6277
|
/*
|
|
6242
6278
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6426,11 +6462,6 @@ class RefreshTokenClient {
|
|
|
6426
6462
|
throw createClientConfigurationError(missingSshJwk);
|
|
6427
6463
|
}
|
|
6428
6464
|
}
|
|
6429
|
-
if (!StringUtils.isEmptyObj(request.claims) ||
|
|
6430
|
-
(this.config.authOptions.clientCapabilities &&
|
|
6431
|
-
this.config.authOptions.clientCapabilities.length > 0)) {
|
|
6432
|
-
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
|
|
6433
|
-
}
|
|
6434
6465
|
if (this.config.systemOptions.preventCorsPreflight &&
|
|
6435
6466
|
request.ccsCredential) {
|
|
6436
6467
|
switch (request.ccsCredential.type) {
|
|
@@ -6457,11 +6488,12 @@ class RefreshTokenClient {
|
|
|
6457
6488
|
});
|
|
6458
6489
|
}
|
|
6459
6490
|
instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
|
|
6491
|
+
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
6460
6492
|
return mapToQueryString(parameters);
|
|
6461
6493
|
}
|
|
6462
6494
|
}
|
|
6463
6495
|
|
|
6464
|
-
/*! @azure/msal-common v16.
|
|
6496
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6465
6497
|
|
|
6466
6498
|
/*
|
|
6467
6499
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6577,7 +6609,7 @@ class SilentFlowClient {
|
|
|
6577
6609
|
}
|
|
6578
6610
|
}
|
|
6579
6611
|
|
|
6580
|
-
/*! @azure/msal-common v16.
|
|
6612
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6581
6613
|
|
|
6582
6614
|
/*
|
|
6583
6615
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6592,7 +6624,7 @@ const StubbedNetworkModule = {
|
|
|
6592
6624
|
},
|
|
6593
6625
|
};
|
|
6594
6626
|
|
|
6595
|
-
/*! @azure/msal-common v16.
|
|
6627
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6596
6628
|
|
|
6597
6629
|
/*
|
|
6598
6630
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6716,14 +6748,10 @@ function getStandardAuthorizeRequestParameters(authOptions, request, logger, per
|
|
|
6716
6748
|
if (request.state) {
|
|
6717
6749
|
addState(parameters, request.state);
|
|
6718
6750
|
}
|
|
6719
|
-
if (request.claims ||
|
|
6720
|
-
(authOptions.clientCapabilities &&
|
|
6721
|
-
authOptions.clientCapabilities.length > 0)) {
|
|
6722
|
-
addClaims(parameters, request.claims, authOptions.clientCapabilities);
|
|
6723
|
-
}
|
|
6724
6751
|
if (request.embeddedClientId) {
|
|
6725
6752
|
addBrokerParameters(parameters, authOptions.clientId, authOptions.redirectUri);
|
|
6726
6753
|
}
|
|
6754
|
+
addClaims(parameters, request.claims, authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
6727
6755
|
// If extraQueryParameters includes instance_aware its value will be added when extraQueryParameters are added
|
|
6728
6756
|
if (authOptions.instanceAware &&
|
|
6729
6757
|
(!request.extraQueryParameters ||
|
|
@@ -6819,7 +6847,7 @@ function extractLoginHint(account) {
|
|
|
6819
6847
|
return account.loginHint || account.idTokenClaims?.login_hint || null;
|
|
6820
6848
|
}
|
|
6821
6849
|
|
|
6822
|
-
/*! @azure/msal-common v16.
|
|
6850
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6823
6851
|
|
|
6824
6852
|
/*
|
|
6825
6853
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6852,7 +6880,7 @@ function containsResourceParam(params) {
|
|
|
6852
6880
|
return Object.prototype.hasOwnProperty.call(params, "resource");
|
|
6853
6881
|
}
|
|
6854
6882
|
|
|
6855
|
-
/*! @azure/msal-common v16.
|
|
6883
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6856
6884
|
/*
|
|
6857
6885
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
6858
6886
|
* Licensed under the MIT License.
|
|
@@ -6862,7 +6890,7 @@ function containsResourceParam(params) {
|
|
|
6862
6890
|
*/
|
|
6863
6891
|
const unexpectedError = "unexpected_error";
|
|
6864
6892
|
|
|
6865
|
-
/*! @azure/msal-common v16.
|
|
6893
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6866
6894
|
|
|
6867
6895
|
/*
|
|
6868
6896
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7123,7 +7151,7 @@ class ServerTelemetryManager {
|
|
|
7123
7151
|
}
|
|
7124
7152
|
}
|
|
7125
7153
|
|
|
7126
|
-
/*! @azure/msal-common v16.
|
|
7154
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7127
7155
|
|
|
7128
7156
|
/*
|
|
7129
7157
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7144,7 +7172,7 @@ function createJoseHeaderError(code) {
|
|
|
7144
7172
|
return new JoseHeaderError(code);
|
|
7145
7173
|
}
|
|
7146
7174
|
|
|
7147
|
-
/*! @azure/msal-common v16.
|
|
7175
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7148
7176
|
/*
|
|
7149
7177
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
7150
7178
|
* Licensed under the MIT License.
|
|
@@ -7152,7 +7180,7 @@ function createJoseHeaderError(code) {
|
|
|
7152
7180
|
const missingKidError = "missing_kid_error";
|
|
7153
7181
|
const missingAlgError = "missing_alg_error";
|
|
7154
7182
|
|
|
7155
|
-
/*! @azure/msal-common v16.
|
|
7183
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7156
7184
|
|
|
7157
7185
|
/*
|
|
7158
7186
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7587,7 +7615,7 @@ function ensureArgumentIsJSONString(argName, argValue, correlationId) {
|
|
|
7587
7615
|
|
|
7588
7616
|
/* eslint-disable header/header */
|
|
7589
7617
|
const name = "@azure/msal-browser";
|
|
7590
|
-
const version = "5.
|
|
7618
|
+
const version = "5.8.0";
|
|
7591
7619
|
|
|
7592
7620
|
/*
|
|
7593
7621
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -8143,6 +8171,7 @@ const StandardInteractionClientGetDiscoveredAuthority = "standardInteractionClie
|
|
|
8143
8171
|
* Used to acquire a token from Native component when native brokering is enabled.
|
|
8144
8172
|
*/
|
|
8145
8173
|
const NativeInteractionClientAcquireToken = "nativeInteractionClientAcquireToken";
|
|
8174
|
+
const NativeInteractionClientAcquireTokenRedirect = "nativeInteractionClientAcquireToken";
|
|
8146
8175
|
/**
|
|
8147
8176
|
* acquireTokenByRefreshToken API in RefreshTokenClient (msal-common).
|
|
8148
8177
|
*/
|
|
@@ -14189,7 +14218,12 @@ const SsoSilent = "ssoSilent";
|
|
|
14189
14218
|
// Initialize client application
|
|
14190
14219
|
const InitializeClientApplication = "initializeClientApplication";
|
|
14191
14220
|
// Update cache storage
|
|
14192
|
-
const LocalStorageUpdated = "localStorageUpdated";
|
|
14221
|
+
const LocalStorageUpdated = "localStorageUpdated";
|
|
14222
|
+
/**
|
|
14223
|
+
* SSO capability verification call (msal-browser).
|
|
14224
|
+
* Fire-and-forget SSO verification call made after interactive authentication completes.
|
|
14225
|
+
*/
|
|
14226
|
+
const SsoCapable = "ssoCapable";
|
|
14193
14227
|
|
|
14194
14228
|
/*
|
|
14195
14229
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -14198,14 +14232,15 @@ const LocalStorageUpdated = "localStorageUpdated";
|
|
|
14198
14232
|
const PREFIX = "msal";
|
|
14199
14233
|
const BROWSER_PREFIX = "browser";
|
|
14200
14234
|
const CACHE_KEY_SEPARATOR = "|";
|
|
14201
|
-
const CREDENTIAL_SCHEMA_VERSION =
|
|
14202
|
-
const ACCOUNT_SCHEMA_VERSION =
|
|
14235
|
+
const CREDENTIAL_SCHEMA_VERSION = 3;
|
|
14236
|
+
const ACCOUNT_SCHEMA_VERSION = 3;
|
|
14203
14237
|
const LOG_LEVEL_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.level`;
|
|
14204
14238
|
const LOG_PII_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.pii`;
|
|
14205
14239
|
const PLATFORM_AUTH_DOM_SUPPORT = `${PREFIX}.${BROWSER_PREFIX}.platform.auth.dom`;
|
|
14206
14240
|
const VERSION_CACHE_KEY = `${PREFIX}.version`;
|
|
14207
14241
|
const ACCOUNT_KEYS = "account.keys";
|
|
14208
14242
|
const TOKEN_KEYS = "token.keys";
|
|
14243
|
+
const SSO_CAPABLE = `${PREFIX}.${BROWSER_PREFIX}.sso.capable`;
|
|
14209
14244
|
function getAccountKeysCacheKey(schema = ACCOUNT_SCHEMA_VERSION) {
|
|
14210
14245
|
if (schema < 1) {
|
|
14211
14246
|
return `${PREFIX}.${ACCOUNT_KEYS}`;
|
|
@@ -14983,7 +15018,9 @@ class BrowserCacheManager extends CacheManager {
|
|
|
14983
15018
|
}
|
|
14984
15019
|
await this.setUserData(newIdTokenKey, JSON.stringify(oldSchemaData), correlationId, oldSchemaData.lastUpdatedAt, kmsi);
|
|
14985
15020
|
this.performanceClient.incrementFields({ migratedITCount: 1 }, correlationId);
|
|
14986
|
-
currentCredentialKeys.idToken.
|
|
15021
|
+
if (!currentCredentialKeys.idToken.includes(newIdTokenKey)) {
|
|
15022
|
+
currentCredentialKeys.idToken.push(newIdTokenKey);
|
|
15023
|
+
}
|
|
14987
15024
|
}
|
|
14988
15025
|
}
|
|
14989
15026
|
this.setTokenKeys(credentialKeysToMigrate, correlationId, credentialSchema);
|
|
@@ -15832,10 +15869,8 @@ class BrowserCacheManager extends CacheManager {
|
|
|
15832
15869
|
return `${PREFIX}.${this.clientId}.${key}`;
|
|
15833
15870
|
}
|
|
15834
15871
|
/**
|
|
15835
|
-
*
|
|
15836
|
-
*
|
|
15837
|
-
* AccessToken Example: uid.utid-login.microsoftonline.com-accesstoken-app_client_id-contoso.com-scope1 scope2--pop
|
|
15838
|
-
* RefreshToken Example: uid.utid-login.microsoftonline.com-refreshtoken-1-contoso.com
|
|
15872
|
+
* Generate Credential Key. All changes to the key REQUIRE a schema version update.
|
|
15873
|
+
* Cache Key: msal.<schema_version>|<home_account_id>|<environment>|<credential_type>|<client_id or familyId>|<realm>|<scopes>|<scheme>
|
|
15839
15874
|
* @param credentialEntity
|
|
15840
15875
|
* @returns
|
|
15841
15876
|
*/
|
|
@@ -16391,7 +16426,6 @@ const userSwitch = "user_switch";
|
|
|
16391
16426
|
const USER_INTERACTION_REQUIRED = "USER_INTERACTION_REQUIRED";
|
|
16392
16427
|
const USER_CANCEL = "USER_CANCEL";
|
|
16393
16428
|
const NO_NETWORK = "NO_NETWORK";
|
|
16394
|
-
const PERSISTENT_ERROR = "PERSISTENT_ERROR";
|
|
16395
16429
|
const DISABLED = "DISABLED";
|
|
16396
16430
|
const ACCOUNT_UNAVAILABLE = "ACCOUNT_UNAVAILABLE";
|
|
16397
16431
|
const UX_NOT_ALLOWED = "UX_NOT_ALLOWED";
|
|
@@ -16415,8 +16449,7 @@ class NativeAuthError extends AuthError {
|
|
|
16415
16449
|
function isFatalNativeAuthError(error) {
|
|
16416
16450
|
if (error.ext &&
|
|
16417
16451
|
error.ext.status &&
|
|
16418
|
-
|
|
16419
|
-
error.ext.status === DISABLED)) {
|
|
16452
|
+
error.ext.status === DISABLED) {
|
|
16420
16453
|
return true;
|
|
16421
16454
|
}
|
|
16422
16455
|
if (error.ext &&
|
|
@@ -16542,12 +16575,12 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16542
16575
|
async acquireToken(request, cacheLookupPolicy) {
|
|
16543
16576
|
this.logger.trace("03qeos", this.correlationId);
|
|
16544
16577
|
// start the perf measurement
|
|
16545
|
-
const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken,
|
|
16578
|
+
const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken, this.correlationId);
|
|
16546
16579
|
const reqTimestamp = nowSeconds();
|
|
16547
16580
|
const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
|
|
16548
16581
|
try {
|
|
16549
16582
|
// initialize native request
|
|
16550
|
-
const nativeRequest = await this.
|
|
16583
|
+
const nativeRequest = await this.initializePlatformRequest(request);
|
|
16551
16584
|
// check if the tokens can be retrieved from internal cache
|
|
16552
16585
|
try {
|
|
16553
16586
|
const result = await this.acquireTokensFromCache(this.accountId, nativeRequest);
|
|
@@ -16561,6 +16594,10 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16561
16594
|
catch (e) {
|
|
16562
16595
|
if (cacheLookupPolicy === CacheLookupPolicy.AccessToken) {
|
|
16563
16596
|
this.logger.info("0eitbc", this.correlationId);
|
|
16597
|
+
nativeATMeasurement.end({
|
|
16598
|
+
success: false,
|
|
16599
|
+
brokerErrorCode: "cache_request_failed",
|
|
16600
|
+
});
|
|
16564
16601
|
throw e;
|
|
16565
16602
|
}
|
|
16566
16603
|
// continue with a native call for any and all errors
|
|
@@ -16582,7 +16619,6 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16582
16619
|
success: false,
|
|
16583
16620
|
errorCode: error.errorCode,
|
|
16584
16621
|
subErrorCode: error.subError,
|
|
16585
|
-
isNativeBroker: true,
|
|
16586
16622
|
});
|
|
16587
16623
|
throw error;
|
|
16588
16624
|
});
|
|
@@ -16591,6 +16627,9 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16591
16627
|
if (e instanceof NativeAuthError) {
|
|
16592
16628
|
serverTelemetryManager.setNativeBrokerErrorCode(e.errorCode);
|
|
16593
16629
|
}
|
|
16630
|
+
nativeATMeasurement.end({
|
|
16631
|
+
success: false,
|
|
16632
|
+
});
|
|
16594
16633
|
throw e;
|
|
16595
16634
|
}
|
|
16596
16635
|
}
|
|
@@ -16623,7 +16662,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16623
16662
|
// fetch the account from browser cache
|
|
16624
16663
|
const account = this.browserStorage.getBaseAccountInfo({
|
|
16625
16664
|
nativeAccountId,
|
|
16626
|
-
},
|
|
16665
|
+
}, this.correlationId);
|
|
16627
16666
|
if (!account) {
|
|
16628
16667
|
throw createClientAuthError(noAccountFound);
|
|
16629
16668
|
}
|
|
@@ -16631,13 +16670,14 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16631
16670
|
try {
|
|
16632
16671
|
const silentRequest = this.createSilentCacheRequest(request, account);
|
|
16633
16672
|
const result = await this.silentCacheClient.acquireToken(silentRequest);
|
|
16634
|
-
const
|
|
16635
|
-
|
|
16636
|
-
|
|
16637
|
-
|
|
16638
|
-
};
|
|
16673
|
+
const idToken = this.browserStorage.getIdToken(account, this.correlationId, this.browserStorage.getTokenKeys(), account.tenantId);
|
|
16674
|
+
const idTokenClaims = extractTokenClaims(idToken?.secret || "", base64Decode);
|
|
16675
|
+
const fullAccount = updateAccountTenantProfileData(account, undefined, // tenantProfile optional
|
|
16676
|
+
idTokenClaims, idToken?.secret);
|
|
16639
16677
|
return {
|
|
16640
16678
|
...result,
|
|
16679
|
+
idToken: idToken?.secret || "",
|
|
16680
|
+
idTokenClaims: idTokenClaims,
|
|
16641
16681
|
account: fullAccount,
|
|
16642
16682
|
};
|
|
16643
16683
|
}
|
|
@@ -16653,7 +16693,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16653
16693
|
*/
|
|
16654
16694
|
async acquireTokenRedirect(request, rootMeasurement, options) {
|
|
16655
16695
|
this.logger.trace("0luikq", this.correlationId);
|
|
16656
|
-
const nativeRequest = await this.
|
|
16696
|
+
const nativeRequest = await this.initializePlatformRequest(request);
|
|
16657
16697
|
const navigateToLoginRequestUrl = options?.navigateToLoginRequestUrl ?? true;
|
|
16658
16698
|
try {
|
|
16659
16699
|
await this.platformAuthProvider.sendMessage(nativeRequest);
|
|
@@ -16685,7 +16725,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16685
16725
|
* @param performanceClient {IPerformanceClient?}
|
|
16686
16726
|
* @param correlationId {string?} correlation identifier
|
|
16687
16727
|
*/
|
|
16688
|
-
async handleRedirectPromise(
|
|
16728
|
+
async handleRedirectPromise() {
|
|
16689
16729
|
this.logger.trace("1c5lhw", this.correlationId);
|
|
16690
16730
|
if (!this.browserStorage.isInteractionInProgress(true)) {
|
|
16691
16731
|
this.logger.info("0le6uv", this.correlationId);
|
|
@@ -16695,9 +16735,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16695
16735
|
const cachedRequest = this.browserStorage.getCachedNativeRequest();
|
|
16696
16736
|
if (!cachedRequest) {
|
|
16697
16737
|
this.logger.verbose("0a6zjb", this.correlationId);
|
|
16698
|
-
|
|
16699
|
-
performanceClient?.addFields({ errorCode: "no_cached_request" }, correlationId);
|
|
16700
|
-
}
|
|
16738
|
+
this.performanceClient?.addFields({ errorCode: "no_cached_request" }, this.correlationId);
|
|
16701
16739
|
return null;
|
|
16702
16740
|
}
|
|
16703
16741
|
const { prompt, ...request } = cachedRequest;
|
|
@@ -16712,6 +16750,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16712
16750
|
const authResult = await this.handleNativeResponse(response, request, reqTimestamp);
|
|
16713
16751
|
const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
|
|
16714
16752
|
serverTelemetryManager.clearNativeBrokerErrorCode();
|
|
16753
|
+
this.performanceClient?.addFields({ isNativeBroker: true }, this.correlationId);
|
|
16715
16754
|
return authResult;
|
|
16716
16755
|
}
|
|
16717
16756
|
catch (e) {
|
|
@@ -16761,7 +16800,8 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16761
16800
|
const result = await this.generateAuthenticationResult(response, request, idTokenClaims, baseAccount, authority.canonicalAuthority, reqTimestamp);
|
|
16762
16801
|
// cache accounts and tokens in the appropriate storage
|
|
16763
16802
|
await this.cacheAccount(baseAccount, isKmsi(idTokenClaims));
|
|
16764
|
-
await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims,
|
|
16803
|
+
await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, result.tenantId, reqTimestamp, authority.getPreferredCache() // environment
|
|
16804
|
+
);
|
|
16765
16805
|
return result;
|
|
16766
16806
|
}
|
|
16767
16807
|
/**
|
|
@@ -16900,8 +16940,8 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16900
16940
|
* @param tenantId
|
|
16901
16941
|
* @param reqTimestamp
|
|
16902
16942
|
*/
|
|
16903
|
-
cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims,
|
|
16904
|
-
const cachedIdToken = createIdTokenEntity(homeAccountIdentifier,
|
|
16943
|
+
async cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, tenantId, reqTimestamp, environment) {
|
|
16944
|
+
const cachedIdToken = createIdTokenEntity(homeAccountIdentifier, environment, response.id_token || "", request.clientId, idTokenClaims.tid || "");
|
|
16905
16945
|
// cache accessToken in inmemory storage
|
|
16906
16946
|
const expiresIn = request.tokenType === AuthenticationScheme.POP
|
|
16907
16947
|
? SHR_NONCE_VALIDITY
|
|
@@ -16910,9 +16950,13 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16910
16950
|
: response.expires_in) || 0;
|
|
16911
16951
|
const tokenExpirationSeconds = reqTimestamp + expiresIn;
|
|
16912
16952
|
const responseScopes = this.generateScopes(response.scope, request.scope);
|
|
16913
|
-
const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier,
|
|
16953
|
+
const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier, environment, response.access_token, request.clientId, idTokenClaims.tid || tenantId, responseScopes.printScopes(), tokenExpirationSeconds, 0, base64Decode, undefined, request.tokenType, undefined, request.keyId);
|
|
16954
|
+
// save idtoken credential in configured browser storage
|
|
16955
|
+
if (!!cachedIdToken && request.storeInCache?.idToken !== false) {
|
|
16956
|
+
await this.browserStorage.setIdTokenCredential(cachedIdToken, this.correlationId, isKmsi(idTokenClaims));
|
|
16957
|
+
}
|
|
16958
|
+
// save access token credential in memory storage
|
|
16914
16959
|
const nativeCacheRecord = {
|
|
16915
|
-
idToken: cachedIdToken,
|
|
16916
16960
|
accessToken: cachedAccessToken,
|
|
16917
16961
|
};
|
|
16918
16962
|
return this.nativeStorageManager.saveCacheRecord(nativeCacheRecord, this.correlationId, isKmsi(idTokenClaims), this.apiId, request.storeInCache);
|
|
@@ -16980,15 +17024,23 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
16980
17024
|
* Translates developer provided request object into NativeRequest object
|
|
16981
17025
|
* @param request
|
|
16982
17026
|
*/
|
|
16983
|
-
async
|
|
16984
|
-
this.logger.trace("
|
|
17027
|
+
async initializePlatformRequest(request) {
|
|
17028
|
+
this.logger.trace("1xdm2a", this.correlationId);
|
|
16985
17029
|
const canonicalAuthority = await this.getCanonicalAuthority(request);
|
|
17030
|
+
// ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
|
|
17031
|
+
const configClaims = request.skipBrokerClaims && !!request.embeddedClientId
|
|
17032
|
+
? undefined
|
|
17033
|
+
: this.config.auth.clientCapabilities;
|
|
16986
17034
|
// scopes are expected to be received by the native broker as "scope" and will be added to the request below. Other properties that should be dropped from the request to the native broker can be included in the object destructuring here.
|
|
16987
|
-
const { scopes, ...remainingProperties } = request;
|
|
17035
|
+
const { scopes, claims, ...remainingProperties } = request;
|
|
16988
17036
|
const scopeSet = new ScopeSet(scopes || []);
|
|
16989
17037
|
scopeSet.appendScopes(OIDC_DEFAULT_SCOPES);
|
|
17038
|
+
const mergedClaims = configClaims && configClaims.length
|
|
17039
|
+
? addClientCapabilitiesToClaims(claims, configClaims)
|
|
17040
|
+
: claims;
|
|
16990
17041
|
const validatedRequest = {
|
|
16991
17042
|
...remainingProperties,
|
|
17043
|
+
claims: mergedClaims,
|
|
16992
17044
|
accountId: this.accountId,
|
|
16993
17045
|
clientId: this.config.auth.clientId,
|
|
16994
17046
|
authority: canonicalAuthority.urlString,
|
|
@@ -17058,12 +17110,12 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
17058
17110
|
switch (this.apiId) {
|
|
17059
17111
|
case ApiId.ssoSilent:
|
|
17060
17112
|
case ApiId.acquireTokenSilent_silentFlow:
|
|
17061
|
-
this.logger.trace("
|
|
17113
|
+
this.logger.trace("12n1y2", this.correlationId);
|
|
17062
17114
|
return PromptValue.NONE;
|
|
17063
17115
|
}
|
|
17064
17116
|
// Prompt not provided, request may proceed and native broker decides if it needs to prompt
|
|
17065
17117
|
if (!prompt) {
|
|
17066
|
-
this.logger.trace("
|
|
17118
|
+
this.logger.trace("0uid1p", this.correlationId);
|
|
17067
17119
|
return undefined;
|
|
17068
17120
|
}
|
|
17069
17121
|
// If request is interactive, check if prompt provided is allowed to go directly to native broker
|
|
@@ -17071,10 +17123,10 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
17071
17123
|
case PromptValue.NONE:
|
|
17072
17124
|
case PromptValue.CONSENT:
|
|
17073
17125
|
case PromptValue.LOGIN:
|
|
17074
|
-
this.logger.trace("
|
|
17126
|
+
this.logger.trace("0i0hco", this.correlationId);
|
|
17075
17127
|
return prompt;
|
|
17076
17128
|
default:
|
|
17077
|
-
this.logger.trace("
|
|
17129
|
+
this.logger.trace("0w3tpw", this.correlationId);
|
|
17078
17130
|
throw createBrowserAuthError(nativePromptNotSupported);
|
|
17079
17131
|
}
|
|
17080
17132
|
}
|
|
@@ -17110,7 +17162,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
17110
17162
|
this.performanceClient?.addFields({
|
|
17111
17163
|
embeddedClientId: child_client_id,
|
|
17112
17164
|
embeddedRedirectUri: child_redirect_uri,
|
|
17113
|
-
},
|
|
17165
|
+
}, this.correlationId);
|
|
17114
17166
|
}
|
|
17115
17167
|
}
|
|
17116
17168
|
|
|
@@ -17197,6 +17249,10 @@ async function getStandardParameters(config, authority, request, logger, perform
|
|
|
17197
17249
|
if (request.platformBroker) {
|
|
17198
17250
|
// signal ests that this is a WAM call
|
|
17199
17251
|
addNativeBroker(parameters);
|
|
17252
|
+
// instrument JS-platform bridge specific fields
|
|
17253
|
+
performanceClient.addFields({
|
|
17254
|
+
isPlatformAuthorizeRequest: true,
|
|
17255
|
+
}, request.correlationId);
|
|
17200
17256
|
// pass the req_cnf for POP
|
|
17201
17257
|
if (request.authenticationScheme === AuthenticationScheme.POP) {
|
|
17202
17258
|
const cryptoOps = new CryptoOps(logger, performanceClient);
|
|
@@ -17666,6 +17722,7 @@ function buildConfiguration({ auth: userInputAuth, cache: userInputCache, system
|
|
|
17666
17722
|
},
|
|
17667
17723
|
instanceAware: false,
|
|
17668
17724
|
isMcp: false,
|
|
17725
|
+
verifySSO: false,
|
|
17669
17726
|
};
|
|
17670
17727
|
// Default cache options for browser
|
|
17671
17728
|
const DEFAULT_CACHE_OPTIONS = {
|
|
@@ -17760,7 +17817,7 @@ class PlatformAuthExtensionHandler {
|
|
|
17760
17817
|
this.messageChannel = new MessageChannel();
|
|
17761
17818
|
this.windowListener = this.onWindowMessage.bind(this); // Window event callback doesn't have access to 'this' unless it's bound
|
|
17762
17819
|
this.performanceClient = performanceClient;
|
|
17763
|
-
this.handshakeEvent = performanceClient.startMeasurement(NativeMessageHandlerHandshake);
|
|
17820
|
+
this.handshakeEvent = this.performanceClient.startMeasurement(NativeMessageHandlerHandshake);
|
|
17764
17821
|
this.platformAuthType =
|
|
17765
17822
|
PlatformAuthConstants.PLATFORM_EXTENSION_PROVIDER;
|
|
17766
17823
|
}
|
|
@@ -18200,7 +18257,7 @@ function isDomEnabledForPlatformAuth() {
|
|
|
18200
18257
|
}
|
|
18201
18258
|
}
|
|
18202
18259
|
/**
|
|
18203
|
-
* Returns boolean indicating whether or not the request should attempt to use
|
|
18260
|
+
* Returns boolean indicating whether or not the request should attempt to use platform broker
|
|
18204
18261
|
* @param logger
|
|
18205
18262
|
* @param config
|
|
18206
18263
|
* @param correlationId
|
|
@@ -18482,6 +18539,10 @@ class PopupClient extends StandardInteractionClient {
|
|
|
18482
18539
|
return;
|
|
18483
18540
|
}
|
|
18484
18541
|
}
|
|
18542
|
+
// Redirect bridge requires "state" param to work properly
|
|
18543
|
+
validRequest.state = setRequestState(this.browserCrypto, validRequest.state || "", {
|
|
18544
|
+
interactionType: InteractionType.Popup,
|
|
18545
|
+
});
|
|
18485
18546
|
// Create logout string and navigate user window to logout.
|
|
18486
18547
|
const logoutUri = authClient.getLogoutUri(validRequest);
|
|
18487
18548
|
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, validRequest.correlationId, InteractionType.Popup, validRequest);
|
|
@@ -19022,6 +19083,10 @@ class RedirectClient extends StandardInteractionClient {
|
|
|
19022
19083
|
}
|
|
19023
19084
|
}
|
|
19024
19085
|
}
|
|
19086
|
+
// Redirect bridge requires "state" param to work properly
|
|
19087
|
+
validLogoutRequest.state = setRequestState(this.browserCrypto, validLogoutRequest.state || "", {
|
|
19088
|
+
interactionType: InteractionType.Redirect,
|
|
19089
|
+
});
|
|
19025
19090
|
// Create logout string and navigate user window to logout.
|
|
19026
19091
|
const logoutUri = authClient.getLogoutUri(validLogoutRequest);
|
|
19027
19092
|
if (validLogoutRequest.account?.homeAccountId) {
|
|
@@ -19270,6 +19335,38 @@ class SilentIframeClient extends StandardInteractionClient {
|
|
|
19270
19335
|
return invokeAsync(handleResponseEAR, HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
|
|
19271
19336
|
}
|
|
19272
19337
|
}
|
|
19338
|
+
/**
|
|
19339
|
+
* Verifies SSO capability by making an iframe request to /authorize without exchanging the code for tokens.
|
|
19340
|
+
* This is useful for verifying SSO capability in the background without the overhead of a full token exchange.
|
|
19341
|
+
* @param request - The SSO silent request
|
|
19342
|
+
* @returns true if SSO verification was successful with a valid authorization code, false otherwise
|
|
19343
|
+
*/
|
|
19344
|
+
async verifySso(request) {
|
|
19345
|
+
const inputRequest = { ...request };
|
|
19346
|
+
if (!inputRequest.prompt) {
|
|
19347
|
+
inputRequest.prompt = PromptValue.NONE;
|
|
19348
|
+
}
|
|
19349
|
+
// Create silent request
|
|
19350
|
+
const silentRequest = await invokeAsync(initializeAuthorizationRequest, StandardInteractionClientInitializeAuthorizationRequest, this.logger, this.performanceClient, this.correlationId)(inputRequest, InteractionType.Silent, this.config, this.browserCrypto, this.browserStorage, this.logger, this.performanceClient, this.correlationId);
|
|
19351
|
+
const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, this.correlationId)({
|
|
19352
|
+
serverTelemetryManager: initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger),
|
|
19353
|
+
requestAuthority: silentRequest.authority,
|
|
19354
|
+
requestAzureCloudOptions: silentRequest.azureCloudOptions,
|
|
19355
|
+
requestExtraQueryParameters: silentRequest.extraQueryParameters,
|
|
19356
|
+
account: silentRequest.account,
|
|
19357
|
+
});
|
|
19358
|
+
const { serverParams } = await this.silentAuthorizeHelper(authClient, silentRequest);
|
|
19359
|
+
const correlationId = silentRequest.correlationId;
|
|
19360
|
+
// Validate the response - this checks for errors and validates state
|
|
19361
|
+
validateAuthorizationResponse(serverParams, silentRequest.state);
|
|
19362
|
+
// Verify a valid authorization code is present
|
|
19363
|
+
if (!serverParams.code) {
|
|
19364
|
+
this.logger.warning("0y34ti", correlationId);
|
|
19365
|
+
return false;
|
|
19366
|
+
}
|
|
19367
|
+
this.logger.verbose("0kkkcj", correlationId);
|
|
19368
|
+
return true;
|
|
19369
|
+
}
|
|
19273
19370
|
/**
|
|
19274
19371
|
* Currently Unsupported
|
|
19275
19372
|
*/
|
|
@@ -19284,6 +19381,16 @@ class SilentIframeClient extends StandardInteractionClient {
|
|
|
19284
19381
|
* @param userRequestScopes
|
|
19285
19382
|
*/
|
|
19286
19383
|
async silentTokenHelper(authClient, request) {
|
|
19384
|
+
const { serverParams, pkceCodes } = await this.silentAuthorizeHelper(authClient, request);
|
|
19385
|
+
return invokeAsync(handleResponseCode, HandleResponseCode, this.logger, this.performanceClient, request.correlationId)(request, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
|
|
19386
|
+
}
|
|
19387
|
+
/**
|
|
19388
|
+
* Shared helper that generates PKCE codes, builds the /authorize URL,
|
|
19389
|
+
* loads it in a hidden iframe, waits for the redirect-bridge response,
|
|
19390
|
+
* and returns the deserialized server parameters along with the PKCE codes
|
|
19391
|
+
* and the request that was sent.
|
|
19392
|
+
*/
|
|
19393
|
+
async silentAuthorizeHelper(authClient, request) {
|
|
19287
19394
|
const correlationId = request.correlationId;
|
|
19288
19395
|
const pkceCodes = await invokeAsync(generatePkceCodes, GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
|
|
19289
19396
|
const silentRequest = {
|
|
@@ -19310,7 +19417,7 @@ class SilentIframeClient extends StandardInteractionClient {
|
|
|
19310
19417
|
invoke(removeHiddenIframe, RemoveHiddenIframe, this.logger, this.performanceClient, correlationId)(iframe);
|
|
19311
19418
|
}
|
|
19312
19419
|
const serverParams = invoke(deserializeResponse, DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger, this.correlationId);
|
|
19313
|
-
return
|
|
19420
|
+
return { serverParams, pkceCodes, silentRequest };
|
|
19314
19421
|
}
|
|
19315
19422
|
}
|
|
19316
19423
|
|
|
@@ -19677,22 +19784,25 @@ class StandardController {
|
|
|
19677
19784
|
}
|
|
19678
19785
|
const loggedInAccounts = this.getAllAccounts();
|
|
19679
19786
|
const platformBrokerRequest = this.browserStorage.getCachedNativeRequest();
|
|
19680
|
-
const useNative = platformBrokerRequest &&
|
|
19681
|
-
this.platformAuthProvider &&
|
|
19682
|
-
!options?.hash;
|
|
19787
|
+
const useNative = platformBrokerRequest && !options?.hash;
|
|
19683
19788
|
let rootMeasurement;
|
|
19684
19789
|
let redirectResponse;
|
|
19790
|
+
let cachedRedirectRequest;
|
|
19685
19791
|
try {
|
|
19686
19792
|
if (useNative && this.platformAuthProvider) {
|
|
19687
19793
|
const correlationId = platformBrokerRequest?.correlationId || "";
|
|
19688
19794
|
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, InteractionType.Redirect);
|
|
19689
19795
|
rootMeasurement = this.performanceClient.startMeasurement(AcquireTokenRedirect, correlationId);
|
|
19690
19796
|
this.logger.trace("12v7is", correlationId);
|
|
19797
|
+
rootMeasurement.add({
|
|
19798
|
+
isPlatformBrokerRequest: true,
|
|
19799
|
+
});
|
|
19691
19800
|
const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.handleRedirectPromise, this.performanceClient, this.platformAuthProvider, platformBrokerRequest.accountId, this.nativeInternalStorage, platformBrokerRequest.correlationId);
|
|
19692
|
-
redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)(
|
|
19801
|
+
redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)();
|
|
19693
19802
|
}
|
|
19694
19803
|
else {
|
|
19695
19804
|
const [standardRequest, codeVerifier] = this.browserStorage.getCachedRequest("");
|
|
19805
|
+
cachedRedirectRequest = standardRequest;
|
|
19696
19806
|
const correlationId = standardRequest.correlationId;
|
|
19697
19807
|
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, InteractionType.Redirect);
|
|
19698
19808
|
// Reset rootMeasurement now that we have correlationId
|
|
@@ -19721,6 +19831,8 @@ class StandardController {
|
|
|
19721
19831
|
rootMeasurement.end({
|
|
19722
19832
|
success: true,
|
|
19723
19833
|
}, undefined, result.account);
|
|
19834
|
+
// Fire-and-forget SSO capability verification in background
|
|
19835
|
+
this.verifySsoCapability(cachedRedirectRequest, InteractionType.Redirect);
|
|
19724
19836
|
}
|
|
19725
19837
|
else {
|
|
19726
19838
|
/*
|
|
@@ -19786,12 +19898,14 @@ class StandardController {
|
|
|
19786
19898
|
if (this.platformAuthProvider &&
|
|
19787
19899
|
this.canUsePlatformBroker(request)) {
|
|
19788
19900
|
const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.acquireTokenRedirect, this.performanceClient, this.platformAuthProvider, this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
|
|
19789
|
-
result = nativeClient
|
|
19790
|
-
.
|
|
19791
|
-
|
|
19901
|
+
result = invokeAsync(nativeClient.acquireTokenRedirect.bind(nativeClient), NativeInteractionClientAcquireTokenRedirect, this.logger, this.performanceClient, correlationId)(request, atrMeasurement).catch((e) => {
|
|
19902
|
+
atrMeasurement.add({
|
|
19903
|
+
brokerErrorName: e.name,
|
|
19904
|
+
brokerErrorCode: e.errorCode,
|
|
19905
|
+
});
|
|
19792
19906
|
if (e instanceof NativeAuthError &&
|
|
19793
19907
|
isFatalNativeAuthError(e)) {
|
|
19794
|
-
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
|
|
19908
|
+
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
|
|
19795
19909
|
const redirectClient = this.createRedirectClient(correlationId);
|
|
19796
19910
|
return redirectClient.acquireToken(request);
|
|
19797
19911
|
}
|
|
@@ -19857,6 +19971,9 @@ class StandardController {
|
|
|
19857
19971
|
let result;
|
|
19858
19972
|
const pkce = this.getPreGeneratedPkceCodes(correlationId);
|
|
19859
19973
|
if (this.canUsePlatformBroker(request)) {
|
|
19974
|
+
atPopupMeasurement.add({
|
|
19975
|
+
isPlatformBrokerRequest: true,
|
|
19976
|
+
});
|
|
19860
19977
|
result = this.acquireTokenNative({
|
|
19861
19978
|
...request,
|
|
19862
19979
|
correlationId,
|
|
@@ -19869,9 +19986,13 @@ class StandardController {
|
|
|
19869
19986
|
return response;
|
|
19870
19987
|
})
|
|
19871
19988
|
.catch((e) => {
|
|
19989
|
+
atPopupMeasurement.add({
|
|
19990
|
+
brokerErrorName: e.name,
|
|
19991
|
+
brokerErrorCode: e.errorCode,
|
|
19992
|
+
});
|
|
19872
19993
|
if (e instanceof NativeAuthError &&
|
|
19873
19994
|
isFatalNativeAuthError(e)) {
|
|
19874
|
-
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
|
|
19995
|
+
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
|
|
19875
19996
|
const popupClient = this.createPopupClient(correlationId);
|
|
19876
19997
|
return popupClient.acquireToken(request, pkce);
|
|
19877
19998
|
}
|
|
@@ -19902,6 +20023,8 @@ class StandardController {
|
|
|
19902
20023
|
accessTokenSize: result.accessToken.length,
|
|
19903
20024
|
idTokenSize: result.idToken.length,
|
|
19904
20025
|
}, undefined, result.account);
|
|
20026
|
+
// SSO capability verification in background
|
|
20027
|
+
this.verifySsoCapability(request, InteractionType.Popup);
|
|
19905
20028
|
return result;
|
|
19906
20029
|
})
|
|
19907
20030
|
.catch((e) => {
|
|
@@ -19954,6 +20077,103 @@ class StandardController {
|
|
|
19954
20077
|
window.removeEventListener("online", listener);
|
|
19955
20078
|
window.removeEventListener("offline", listener);
|
|
19956
20079
|
}
|
|
20080
|
+
/**
|
|
20081
|
+
* Reads the cached ssoCapable value from localStorage.
|
|
20082
|
+
* @returns The cached ssoCapable boolean value, or undefined if not cached or expired.
|
|
20083
|
+
*/
|
|
20084
|
+
getCachedSsoCapable() {
|
|
20085
|
+
try {
|
|
20086
|
+
const cachedValue = window.localStorage.getItem(SSO_CAPABLE);
|
|
20087
|
+
if (cachedValue) {
|
|
20088
|
+
const parsed = JSON.parse(cachedValue);
|
|
20089
|
+
if (parsed &&
|
|
20090
|
+
typeof parsed.ssoCapable === "boolean" &&
|
|
20091
|
+
parsed.expiresOn &&
|
|
20092
|
+
Date.now() < parsed.expiresOn) {
|
|
20093
|
+
return parsed.ssoCapable;
|
|
20094
|
+
}
|
|
20095
|
+
}
|
|
20096
|
+
}
|
|
20097
|
+
catch {
|
|
20098
|
+
// If parsing fails, return undefined
|
|
20099
|
+
}
|
|
20100
|
+
return undefined;
|
|
20101
|
+
}
|
|
20102
|
+
/**
|
|
20103
|
+
* SSO capability verification in the background.
|
|
20104
|
+
* This method makes an iframe request to /authorize to verify SSO capability without calling /token.
|
|
20105
|
+
* This method does not block the caller and tracks telemetry for success/failure.
|
|
20106
|
+
* This method only executes if verifySSO is set to true in the auth configuration.
|
|
20107
|
+
* The result is cached in localStorage with a 24-hour TTL; the SSO verification call
|
|
20108
|
+
* is only attempted when the cached value is absent or expired.
|
|
20109
|
+
* @param request - The original request used for the authentication flow
|
|
20110
|
+
* @param interactionType - The interactionType of the AT operation for logging purposes
|
|
20111
|
+
*/
|
|
20112
|
+
verifySsoCapability(request, interactionType) {
|
|
20113
|
+
// Check if SSO capability verification is enabled
|
|
20114
|
+
if (!this.config.auth.verifySSO) {
|
|
20115
|
+
return;
|
|
20116
|
+
}
|
|
20117
|
+
// Check TTL: derive ssoCapable state from localStorage and skip if not expired
|
|
20118
|
+
const ssoCacheKey = SSO_CAPABLE;
|
|
20119
|
+
const SSO_CAPABLE_TTL_MS = 24 * 60 * 60 * 1000; // 24 hours
|
|
20120
|
+
const cachedSsoCapable = this.getCachedSsoCapable();
|
|
20121
|
+
if (cachedSsoCapable !== undefined) {
|
|
20122
|
+
this.logger.verbose("13poou", "");
|
|
20123
|
+
return;
|
|
20124
|
+
}
|
|
20125
|
+
const correlationId = createNewGuid();
|
|
20126
|
+
const ssoCapableMeasurement = this.performanceClient.startMeasurement(SsoCapable, correlationId);
|
|
20127
|
+
ssoCapableMeasurement.add({
|
|
20128
|
+
"ext.interactionType": interactionType,
|
|
20129
|
+
});
|
|
20130
|
+
this.logger.verbose("0pbr0i", correlationId);
|
|
20131
|
+
/*
|
|
20132
|
+
* Use setTimeout to ensure this runs in a separate macrotask after the current call stack completes
|
|
20133
|
+
* This ensures the result is returned to the caller before the SSO verification starts and doesn't affect performance
|
|
20134
|
+
*/
|
|
20135
|
+
setTimeout(() => {
|
|
20136
|
+
const ssoVerificationRequest = {
|
|
20137
|
+
...request,
|
|
20138
|
+
correlationId: correlationId,
|
|
20139
|
+
};
|
|
20140
|
+
const silentIframeClient = this.createSilentIframeClient(correlationId);
|
|
20141
|
+
silentIframeClient
|
|
20142
|
+
.verifySso(ssoVerificationRequest)
|
|
20143
|
+
.then((result) => {
|
|
20144
|
+
this.logger.verbose("1gd1iv", correlationId);
|
|
20145
|
+
// TBD to add profileTelemetry later in localStorage with 24h TTL
|
|
20146
|
+
try {
|
|
20147
|
+
const cacheEntry = JSON.stringify({
|
|
20148
|
+
ssoCapable: result,
|
|
20149
|
+
expiresOn: Date.now() + SSO_CAPABLE_TTL_MS,
|
|
20150
|
+
});
|
|
20151
|
+
window.localStorage.setItem(ssoCacheKey, cacheEntry);
|
|
20152
|
+
}
|
|
20153
|
+
catch {
|
|
20154
|
+
this.logger.warning("18lmoj", correlationId);
|
|
20155
|
+
}
|
|
20156
|
+
ssoCapableMeasurement.end({
|
|
20157
|
+
fromCache: false,
|
|
20158
|
+
success: result,
|
|
20159
|
+
}, undefined);
|
|
20160
|
+
})
|
|
20161
|
+
.catch((error) => {
|
|
20162
|
+
this.logger.warning("05g83w", correlationId);
|
|
20163
|
+
// reset the cache
|
|
20164
|
+
try {
|
|
20165
|
+
window.localStorage.removeItem(ssoCacheKey);
|
|
20166
|
+
}
|
|
20167
|
+
catch {
|
|
20168
|
+
this.logger.warning("0nlf9q", correlationId);
|
|
20169
|
+
}
|
|
20170
|
+
ssoCapableMeasurement.end({
|
|
20171
|
+
fromCache: false,
|
|
20172
|
+
success: false,
|
|
20173
|
+
}, error);
|
|
20174
|
+
});
|
|
20175
|
+
}, 0);
|
|
20176
|
+
}
|
|
19957
20177
|
// #endregion
|
|
19958
20178
|
// #region Silent Flow
|
|
19959
20179
|
/**
|
|
@@ -19975,13 +20195,12 @@ class StandardController {
|
|
|
19975
20195
|
const correlationId = this.getRequestCorrelationId(request);
|
|
19976
20196
|
const validRequest = {
|
|
19977
20197
|
...request,
|
|
19978
|
-
// will be PromptValue.NONE or PromptValue.NO_SESSION
|
|
19979
|
-
prompt: request.prompt,
|
|
19980
20198
|
correlationId: correlationId,
|
|
19981
20199
|
};
|
|
19982
20200
|
this.ssoSilentMeasurement = this.performanceClient.startMeasurement(SsoSilent, correlationId);
|
|
19983
20201
|
this.ssoSilentMeasurement?.add({
|
|
19984
20202
|
scenarioId: request.scenarioId,
|
|
20203
|
+
ssoCapable: this.getCachedSsoCapable(),
|
|
19985
20204
|
});
|
|
19986
20205
|
preflightCheck(this.initialized, this.ssoSilentMeasurement, this.config, validRequest);
|
|
19987
20206
|
this.ssoSilentMeasurement?.increment({
|
|
@@ -19994,10 +20213,17 @@ class StandardController {
|
|
|
19994
20213
|
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, InteractionType.Silent, validRequest);
|
|
19995
20214
|
let result;
|
|
19996
20215
|
if (this.canUsePlatformBroker(validRequest)) {
|
|
20216
|
+
this.ssoSilentMeasurement?.add({
|
|
20217
|
+
isPlatformBrokerRequest: true,
|
|
20218
|
+
});
|
|
19997
20219
|
result = this.acquireTokenNative(validRequest, ApiId.ssoSilent).catch((e) => {
|
|
20220
|
+
this.ssoSilentMeasurement?.add({
|
|
20221
|
+
brokerErrorName: e.name,
|
|
20222
|
+
brokerErrorCode: e.errorCode,
|
|
20223
|
+
});
|
|
19998
20224
|
// If native token acquisition fails for availability reasons fallback to standard flow
|
|
19999
20225
|
if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
|
|
20000
|
-
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
|
|
20226
|
+
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
|
|
20001
20227
|
const silentIframeClient = this.createSilentIframeClient(validRequest.correlationId);
|
|
20002
20228
|
return silentIframeClient.acquireToken(validRequest);
|
|
20003
20229
|
}
|
|
@@ -20070,7 +20296,6 @@ class StandardController {
|
|
|
20070
20296
|
this.hybridAuthCodeResponses.delete(hybridAuthCode);
|
|
20071
20297
|
atbcMeasurement.end({
|
|
20072
20298
|
success: true,
|
|
20073
|
-
isNativeBroker: result.fromPlatformBroker,
|
|
20074
20299
|
accessTokenSize: result.accessToken.length,
|
|
20075
20300
|
idTokenSize: result.idToken.length,
|
|
20076
20301
|
}, undefined, result.account);
|
|
@@ -20094,10 +20319,17 @@ class StandardController {
|
|
|
20094
20319
|
}
|
|
20095
20320
|
else if (request.nativeAccountId) {
|
|
20096
20321
|
if (this.canUsePlatformBroker(request, request.nativeAccountId)) {
|
|
20322
|
+
atbcMeasurement.add({
|
|
20323
|
+
isPlatformBrokerRequest: true,
|
|
20324
|
+
});
|
|
20097
20325
|
const result = await this.acquireTokenNative({
|
|
20098
20326
|
...request,
|
|
20099
20327
|
correlationId,
|
|
20100
20328
|
}, ApiId.acquireTokenByCode, request.nativeAccountId).catch((e) => {
|
|
20329
|
+
atbcMeasurement.add({
|
|
20330
|
+
brokerErrorName: e.name,
|
|
20331
|
+
brokerErrorCode: e.errorCode,
|
|
20332
|
+
});
|
|
20101
20333
|
// If native token acquisition fails for availability reasons fallback to standard flow
|
|
20102
20334
|
if (e instanceof NativeAuthError &&
|
|
20103
20335
|
isFatalNativeAuthError(e)) {
|
|
@@ -20148,7 +20380,6 @@ class StandardController {
|
|
|
20148
20380
|
this.acquireTokenByCodeAsyncMeasurement?.end({
|
|
20149
20381
|
success: true,
|
|
20150
20382
|
fromCache: response.fromCache,
|
|
20151
|
-
isNativeBroker: response.fromPlatformBroker,
|
|
20152
20383
|
});
|
|
20153
20384
|
return response;
|
|
20154
20385
|
})
|
|
@@ -20297,9 +20528,25 @@ class StandardController {
|
|
|
20297
20528
|
const accountEntity = createAccountEntityFromAccountInfo(result.account, result.cloudGraphHostName, result.msGraphHost);
|
|
20298
20529
|
await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims), ApiId.hydrateCache);
|
|
20299
20530
|
if (result.fromPlatformBroker) {
|
|
20300
|
-
this.logger.verbose("
|
|
20301
|
-
//
|
|
20302
|
-
|
|
20531
|
+
this.logger.verbose("1i5atf", result.correlationId);
|
|
20532
|
+
// Create idToken entity and store in browser storage
|
|
20533
|
+
const idTokenEntity = createIdTokenEntity(result.account.homeAccountId, result.account.environment, result.idToken, this.config.auth.clientId, result.tenantId);
|
|
20534
|
+
// Create accessToken entity and store in native internal storage
|
|
20535
|
+
const accessTokenEntity = createAccessTokenEntity(result.account.homeAccountId, result.account.environment, result.accessToken, this.config.auth.clientId, result.tenantId, result.scopes.join(" "), result.expiresOn
|
|
20536
|
+
? toSecondsFromDate(result.expiresOn)
|
|
20537
|
+
: 0, result.extExpiresOn
|
|
20538
|
+
? toSecondsFromDate(result.extExpiresOn)
|
|
20539
|
+
: 0, base64Decode, undefined, // refreshOn
|
|
20540
|
+
result.tokenType, undefined, // userAssertionHash
|
|
20541
|
+
request.sshKid);
|
|
20542
|
+
if (request.resource) {
|
|
20543
|
+
accessTokenEntity.resource = request.resource;
|
|
20544
|
+
}
|
|
20545
|
+
const kmsi = isKmsi(result.idTokenClaims);
|
|
20546
|
+
// Store idToken in browser storage
|
|
20547
|
+
await this.browserStorage.setIdTokenCredential(idTokenEntity, result.correlationId, kmsi);
|
|
20548
|
+
// Store accessToken in native internal storage
|
|
20549
|
+
await this.nativeInternalStorage.setAccessTokenCredential(accessTokenEntity, result.correlationId, kmsi);
|
|
20303
20550
|
}
|
|
20304
20551
|
else {
|
|
20305
20552
|
return this.browserStorage.hydrateCache(result, request);
|
|
@@ -20317,7 +20564,7 @@ class StandardController {
|
|
|
20317
20564
|
throw createBrowserAuthError(nativeConnectionNotEstablished);
|
|
20318
20565
|
}
|
|
20319
20566
|
const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, apiId, this.performanceClient, this.platformAuthProvider, accountId || this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
|
|
20320
|
-
return nativeClient.acquireToken(request, cacheLookupPolicy);
|
|
20567
|
+
return invokeAsync(nativeClient.acquireToken.bind(nativeClient), NativeInteractionClientAcquireToken, this.logger, this.performanceClient, correlationId)(request, cacheLookupPolicy);
|
|
20321
20568
|
}
|
|
20322
20569
|
/**
|
|
20323
20570
|
* Returns boolean indicating if this request can use the platform broker
|
|
@@ -20331,7 +20578,7 @@ class StandardController {
|
|
|
20331
20578
|
return false;
|
|
20332
20579
|
}
|
|
20333
20580
|
if (!isPlatformAuthAllowed(this.config, this.logger, correlationId, this.platformAuthProvider, request.authenticationScheme)) {
|
|
20334
|
-
this.logger.trace("
|
|
20581
|
+
this.logger.trace("0yoy1g", correlationId);
|
|
20335
20582
|
return false;
|
|
20336
20583
|
}
|
|
20337
20584
|
if (request.prompt) {
|
|
@@ -20363,7 +20610,9 @@ class StandardController {
|
|
|
20363
20610
|
loginHint: request.loginHint,
|
|
20364
20611
|
sid: request.sid,
|
|
20365
20612
|
}) ||
|
|
20366
|
-
|
|
20613
|
+
(!request.loginHint && !request.sid
|
|
20614
|
+
? this.getActiveAccount()
|
|
20615
|
+
: null);
|
|
20367
20616
|
return (account && account.nativeAccountId) || "";
|
|
20368
20617
|
}
|
|
20369
20618
|
/**
|
|
@@ -20550,6 +20799,7 @@ class StandardController {
|
|
|
20550
20799
|
atsMeasurement.add({
|
|
20551
20800
|
cacheLookupPolicy: request.cacheLookupPolicy,
|
|
20552
20801
|
scenarioId: request.scenarioId,
|
|
20802
|
+
ssoCapable: this.getCachedSsoCapable(),
|
|
20553
20803
|
});
|
|
20554
20804
|
preflightCheck(this.initialized, atsMeasurement, this.config, request);
|
|
20555
20805
|
this.logger.verbose("0x1c4s", correlationId);
|
|
@@ -20562,7 +20812,6 @@ class StandardController {
|
|
|
20562
20812
|
atsMeasurement.end({
|
|
20563
20813
|
success: true,
|
|
20564
20814
|
fromCache: result.fromCache,
|
|
20565
|
-
isNativeBroker: result.fromPlatformBroker,
|
|
20566
20815
|
accessTokenSize: result.accessToken.length,
|
|
20567
20816
|
idTokenSize: result.idToken.length,
|
|
20568
20817
|
}, undefined, result.account);
|
|
@@ -20722,7 +20971,12 @@ class StandardController {
|
|
|
20722
20971
|
if (isPlatformAuthAllowed(this.config, this.logger, silentRequest.correlationId, this.platformAuthProvider, silentRequest.authenticationScheme) &&
|
|
20723
20972
|
silentRequest.account.nativeAccountId) {
|
|
20724
20973
|
this.logger.verbose("0sczo4", silentRequest.correlationId);
|
|
20974
|
+
this.performanceClient.addFields({ isPlatformBrokerRequest: true }, silentRequest.correlationId);
|
|
20725
20975
|
return this.acquireTokenNative(silentRequest, ApiId.acquireTokenSilent_silentFlow, silentRequest.account.nativeAccountId, cacheLookupPolicy).catch(async (e) => {
|
|
20976
|
+
this.performanceClient.addFields({
|
|
20977
|
+
brokerErrorName: e.name,
|
|
20978
|
+
brokerErrorCode: e.errorCode,
|
|
20979
|
+
}, silentRequest.correlationId);
|
|
20726
20980
|
// If native token acquisition fails for availability reasons fallback to web flow
|
|
20727
20981
|
if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
|
|
20728
20982
|
this.logger.verbose("07rkmb", silentRequest.correlationId);
|