@azure/msal-browser 5.6.3 → 5.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (912) hide show
  1. package/README.md +0 -1
  2. package/dist/app/IPublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientApplication.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
  5. package/dist/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
  8. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
  9. package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  10. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
  11. package/dist/cache/AccountManager.mjs +1 -1
  12. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  13. package/dist/cache/BrowserCacheManager.d.ts +2 -4
  14. package/dist/cache/BrowserCacheManager.d.ts.map +1 -1
  15. package/dist/cache/BrowserCacheManager.mjs +6 -6
  16. package/dist/cache/BrowserCacheManager.mjs.map +1 -1
  17. package/dist/cache/CacheHelpers.mjs +1 -1
  18. package/dist/cache/CacheKeys.d.ts +3 -2
  19. package/dist/cache/CacheKeys.d.ts.map +1 -1
  20. package/dist/cache/CacheKeys.mjs +5 -4
  21. package/dist/cache/CacheKeys.mjs.map +1 -1
  22. package/dist/cache/CookieStorage.mjs +1 -1
  23. package/dist/cache/DatabaseStorage.mjs +1 -1
  24. package/dist/cache/EncryptedData.mjs +1 -1
  25. package/dist/cache/LocalStorage.mjs +1 -1
  26. package/dist/cache/MemoryStorage.mjs +1 -1
  27. package/dist/cache/SessionStorage.mjs +1 -1
  28. package/dist/cache/TokenCache.mjs +1 -1
  29. package/dist/config/Configuration.d.ts +7 -0
  30. package/dist/config/Configuration.d.ts.map +1 -1
  31. package/dist/config/Configuration.mjs +2 -1
  32. package/dist/config/Configuration.mjs.map +1 -1
  33. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  34. package/dist/controllers/StandardController.d.ts +16 -0
  35. package/dist/controllers/StandardController.d.ts.map +1 -1
  36. package/dist/controllers/StandardController.mjs +174 -25
  37. package/dist/controllers/StandardController.mjs.map +1 -1
  38. package/dist/crypto/BrowserCrypto.mjs +1 -1
  39. package/dist/crypto/CryptoOps.mjs +1 -1
  40. package/dist/crypto/PkceGenerator.mjs +1 -1
  41. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  42. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  43. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
  44. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
  45. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  46. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
  47. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
  48. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  49. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
  50. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  51. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  52. package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts +2 -4
  53. package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts.map +1 -1
  54. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +6 -6
  55. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs.map +1 -1
  56. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  57. package/dist/custom-auth-path/cache/CacheKeys.d.ts +3 -2
  58. package/dist/custom-auth-path/cache/CacheKeys.d.ts.map +1 -1
  59. package/dist/custom-auth-path/cache/CacheKeys.mjs +5 -4
  60. package/dist/custom-auth-path/cache/CacheKeys.mjs.map +1 -1
  61. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  62. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  63. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  64. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  65. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  66. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  67. package/dist/custom-auth-path/config/Configuration.d.ts +7 -0
  68. package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
  69. package/dist/custom-auth-path/config/Configuration.mjs +2 -1
  70. package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
  71. package/dist/custom-auth-path/controllers/StandardController.d.ts +16 -0
  72. package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
  73. package/dist/custom-auth-path/controllers/StandardController.mjs +174 -25
  74. package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
  75. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  76. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  77. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  79. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  81. package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts +1 -0
  82. package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  83. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  84. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  85. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  87. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  88. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  90. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
  91. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  93. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  96. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
  98. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  100. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  102. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  106. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  108. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  109. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  154. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  155. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  156. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  157. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  159. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  160. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  161. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  162. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
  163. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
  164. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
  165. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  166. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  167. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  168. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  169. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  170. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  171. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  172. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  173. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  174. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  175. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  176. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  177. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  178. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  179. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  180. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  181. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  182. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  183. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  184. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  185. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  186. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  187. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  188. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  189. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  190. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  191. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  192. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  193. package/dist/custom-auth-path/error/NativeAuthError.d.ts.map +1 -1
  194. package/dist/custom-auth-path/error/NativeAuthError.mjs +3 -4
  195. package/dist/custom-auth-path/error/NativeAuthError.mjs.map +1 -1
  196. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  197. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  198. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  199. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  200. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  201. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  202. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  203. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
  204. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  205. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
  206. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +6 -2
  207. package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
  208. package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
  209. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +6 -2
  210. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
  211. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  212. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  213. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +14 -0
  214. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
  215. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +45 -3
  216. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
  217. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  218. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
  219. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  220. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  221. package/dist/custom-auth-path/log-strings-mapping.json +49 -17
  222. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  223. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  224. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  225. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  226. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  227. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  228. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  229. package/dist/custom-auth-path/protocol/Authorize.mjs +5 -1
  230. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  231. package/dist/custom-auth-path/redirect_bridge/index.d.ts.map +1 -1
  232. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  233. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  234. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  235. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  236. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs +3 -2
  237. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
  238. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  239. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  240. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs +8 -3
  241. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
  242. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  243. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  244. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  245. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  246. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  247. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  248. package/dist/custom_auth/UserAccountAttributes.d.ts +1 -0
  249. package/dist/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  250. package/dist/encode/Base64Decode.mjs +1 -1
  251. package/dist/encode/Base64Encode.mjs +1 -1
  252. package/dist/error/BrowserAuthError.mjs +1 -1
  253. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  254. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  255. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  256. package/dist/error/NativeAuthError.d.ts.map +1 -1
  257. package/dist/error/NativeAuthError.mjs +3 -4
  258. package/dist/error/NativeAuthError.mjs.map +1 -1
  259. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  260. package/dist/error/NestedAppAuthError.mjs +1 -1
  261. package/dist/event/EventHandler.mjs +1 -1
  262. package/dist/event/EventMessage.mjs +1 -1
  263. package/dist/event/EventType.mjs +1 -1
  264. package/dist/index.mjs +1 -1
  265. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  266. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  267. package/dist/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  268. package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  269. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
  270. package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  271. package/dist/interaction_client/PopupClient.d.ts.map +1 -1
  272. package/dist/interaction_client/PopupClient.mjs +6 -2
  273. package/dist/interaction_client/PopupClient.mjs.map +1 -1
  274. package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
  275. package/dist/interaction_client/RedirectClient.mjs +6 -2
  276. package/dist/interaction_client/RedirectClient.mjs.map +1 -1
  277. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  278. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  279. package/dist/interaction_client/SilentIframeClient.d.ts +14 -0
  280. package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
  281. package/dist/interaction_client/SilentIframeClient.mjs +45 -3
  282. package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
  283. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  284. package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
  285. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  286. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  287. package/dist/log-strings-mapping.json +49 -17
  288. package/dist/naa/BridgeError.mjs +1 -1
  289. package/dist/naa/BridgeProxy.mjs +1 -1
  290. package/dist/naa/BridgeStatusCode.mjs +1 -1
  291. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  292. package/dist/navigation/NavigationClient.mjs +1 -1
  293. package/dist/network/FetchClient.mjs +1 -1
  294. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  295. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  296. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  297. package/dist/packageMetadata.d.ts +1 -1
  298. package/dist/packageMetadata.mjs +2 -2
  299. package/dist/protocol/Authorize.d.ts.map +1 -1
  300. package/dist/protocol/Authorize.mjs +5 -1
  301. package/dist/protocol/Authorize.mjs.map +1 -1
  302. package/dist/redirect-bridge/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  303. package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts +2 -4
  304. package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts.map +1 -1
  305. package/dist/redirect-bridge/cache/CacheKeys.d.ts +3 -2
  306. package/dist/redirect-bridge/cache/CacheKeys.d.ts.map +1 -1
  307. package/dist/redirect-bridge/cache/CacheKeys.mjs +1 -1
  308. package/dist/redirect-bridge/config/Configuration.d.ts +7 -0
  309. package/dist/redirect-bridge/config/Configuration.d.ts.map +1 -1
  310. package/dist/redirect-bridge/config/Configuration.mjs +1 -1
  311. package/dist/redirect-bridge/controllers/StandardController.d.ts +16 -0
  312. package/dist/redirect-bridge/controllers/StandardController.d.ts.map +1 -1
  313. package/dist/redirect-bridge/custom_auth/CustomAuthConstants.d.ts +1 -1
  314. package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts +1 -0
  315. package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  316. package/dist/redirect-bridge/encode/Base64Decode.mjs +1 -1
  317. package/dist/redirect-bridge/error/BrowserAuthError.mjs +1 -1
  318. package/dist/redirect-bridge/error/BrowserAuthErrorCodes.mjs +1 -1
  319. package/dist/redirect-bridge/error/NativeAuthError.d.ts.map +1 -1
  320. package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  321. package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  322. package/dist/redirect-bridge/interaction_client/PopupClient.d.ts.map +1 -1
  323. package/dist/redirect-bridge/interaction_client/RedirectClient.d.ts.map +1 -1
  324. package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts +14 -0
  325. package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts.map +1 -1
  326. package/dist/redirect-bridge/navigation/NavigationClient.mjs +1 -1
  327. package/dist/redirect-bridge/packageMetadata.d.ts +1 -1
  328. package/dist/redirect-bridge/protocol/Authorize.d.ts.map +1 -1
  329. package/dist/redirect-bridge/redirect_bridge/index.d.ts.map +1 -1
  330. package/dist/redirect-bridge/redirect_bridge/index.mjs +11 -7
  331. package/dist/redirect-bridge/redirect_bridge/index.mjs.map +1 -1
  332. package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  333. package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  334. package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  335. package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  336. package/dist/redirect-bridge/utils/BrowserConstants.mjs +7 -3
  337. package/dist/redirect-bridge/utils/BrowserConstants.mjs.map +1 -1
  338. package/dist/redirect-bridge/utils/BrowserUtils.mjs +1 -1
  339. package/dist/redirect_bridge/index.d.ts.map +1 -1
  340. package/dist/request/RequestHelpers.mjs +1 -1
  341. package/dist/response/ResponseHandler.mjs +1 -1
  342. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  343. package/dist/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  344. package/dist/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  345. package/dist/telemetry/BrowserPerformanceEvents.mjs +3 -2
  346. package/dist/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
  347. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  348. package/dist/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  349. package/dist/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  350. package/dist/telemetry/BrowserRootPerformanceEvents.mjs +10 -3
  351. package/dist/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
  352. package/dist/utils/BrowserConstants.mjs +1 -1
  353. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  354. package/dist/utils/BrowserUtils.mjs +1 -1
  355. package/dist/utils/Helpers.mjs +1 -1
  356. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  357. package/lib/custom-auth-path/log-strings-mapping.json +49 -17
  358. package/lib/custom-auth-path/msal-custom-auth.cjs +418 -164
  359. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  360. package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  361. package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts +2 -4
  362. package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts.map +1 -1
  363. package/lib/custom-auth-path/types/cache/CacheKeys.d.ts +3 -2
  364. package/lib/custom-auth-path/types/cache/CacheKeys.d.ts.map +1 -1
  365. package/lib/custom-auth-path/types/config/Configuration.d.ts +7 -0
  366. package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
  367. package/lib/custom-auth-path/types/controllers/StandardController.d.ts +16 -0
  368. package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
  369. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  370. package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts +1 -0
  371. package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  372. package/lib/custom-auth-path/types/error/NativeAuthError.d.ts.map +1 -1
  373. package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  374. package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  375. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
  376. package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
  377. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +14 -0
  378. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  379. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  380. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  381. package/lib/custom-auth-path/types/redirect_bridge/index.d.ts.map +1 -1
  382. package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  383. package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  384. package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  385. package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  386. package/lib/log-strings-mapping.json +49 -17
  387. package/lib/msal-browser.cjs +427 -169
  388. package/lib/msal-browser.cjs.map +1 -1
  389. package/lib/msal-browser.js +427 -169
  390. package/lib/msal-browser.js.map +1 -1
  391. package/lib/msal-browser.min.js +2 -2
  392. package/lib/redirect-bridge/msal-redirect-bridge.cjs +734 -0
  393. package/lib/redirect-bridge/msal-redirect-bridge.cjs.map +1 -0
  394. package/lib/redirect-bridge/msal-redirect-bridge.js +24 -16
  395. package/lib/redirect-bridge/msal-redirect-bridge.js.map +1 -1
  396. package/lib/redirect-bridge/msal-redirect-bridge.min.js +2 -2
  397. package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts +48 -0
  398. package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts.map +1 -0
  399. package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts +247 -0
  400. package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts.map +1 -0
  401. package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts +12 -0
  402. package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts.map +1 -0
  403. package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts +9 -0
  404. package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts.map +1 -0
  405. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts +30 -0
  406. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts.map +1 -0
  407. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts +63 -0
  408. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts.map +1 -0
  409. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts +28 -0
  410. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -0
  411. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts +79 -0
  412. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts.map +1 -0
  413. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts +71 -0
  414. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts.map +1 -0
  415. package/lib/redirect-bridge/types/cache/AccountManager.d.ts +24 -0
  416. package/lib/redirect-bridge/types/cache/AccountManager.d.ts.map +1 -0
  417. package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts +58 -0
  418. package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts.map +1 -0
  419. package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts +364 -0
  420. package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts.map +1 -0
  421. package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts +16 -0
  422. package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts.map +1 -0
  423. package/lib/redirect-bridge/types/cache/CacheKeys.d.ts +15 -0
  424. package/lib/redirect-bridge/types/cache/CacheKeys.d.ts.map +1 -0
  425. package/lib/redirect-bridge/types/cache/CookieStorage.d.ts +23 -0
  426. package/lib/redirect-bridge/types/cache/CookieStorage.d.ts.map +1 -0
  427. package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts +57 -0
  428. package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts.map +1 -0
  429. package/lib/redirect-bridge/types/cache/EncryptedData.d.ts +8 -0
  430. package/lib/redirect-bridge/types/cache/EncryptedData.d.ts.map +1 -0
  431. package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts +33 -0
  432. package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts.map +1 -0
  433. package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts +42 -0
  434. package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts.map +1 -0
  435. package/lib/redirect-bridge/types/cache/LocalStorage.d.ts +51 -0
  436. package/lib/redirect-bridge/types/cache/LocalStorage.d.ts.map +1 -0
  437. package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts +16 -0
  438. package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts.map +1 -0
  439. package/lib/redirect-bridge/types/cache/SessionStorage.d.ts +14 -0
  440. package/lib/redirect-bridge/types/cache/SessionStorage.d.ts.map +1 -0
  441. package/lib/redirect-bridge/types/cache/TokenCache.d.ts +20 -0
  442. package/lib/redirect-bridge/types/cache/TokenCache.d.ts.map +1 -0
  443. package/lib/redirect-bridge/types/config/Configuration.d.ts +198 -0
  444. package/lib/redirect-bridge/types/config/Configuration.d.ts.map +1 -0
  445. package/lib/redirect-bridge/types/controllers/IController.d.ts +3 -0
  446. package/lib/redirect-bridge/types/controllers/IController.d.ts.map +1 -0
  447. package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts +159 -0
  448. package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts.map +1 -0
  449. package/lib/redirect-bridge/types/controllers/StandardController.d.ts +398 -0
  450. package/lib/redirect-bridge/types/controllers/StandardController.d.ts.map +1 -0
  451. package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts +73 -0
  452. package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts.map +1 -0
  453. package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts +96 -0
  454. package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts.map +1 -0
  455. package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts +77 -0
  456. package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts.map +1 -0
  457. package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts +9 -0
  458. package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts.map +1 -0
  459. package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts +32 -0
  460. package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts.map +1 -0
  461. package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts +29 -0
  462. package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
  463. package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts +35 -0
  464. package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts.map +1 -0
  465. package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
  466. package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
  467. package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
  468. package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
  469. package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts +13 -0
  470. package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts.map +1 -0
  471. package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts +14 -0
  472. package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
  473. package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts +27 -0
  474. package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
  475. package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
  476. package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
  477. package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
  478. package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
  479. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +40 -0
  480. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
  481. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
  482. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
  483. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +31 -0
  484. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
  485. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts +29 -0
  486. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts.map +1 -0
  487. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
  488. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
  489. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
  490. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
  491. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +47 -0
  492. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
  493. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +37 -0
  494. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
  495. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +11 -0
  496. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
  497. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +11 -0
  498. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
  499. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +82 -0
  500. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
  501. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
  502. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
  503. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +27 -0
  504. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
  505. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +40 -0
  506. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
  507. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +34 -0
  508. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
  509. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +11 -0
  510. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
  511. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +11 -0
  512. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
  513. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +67 -0
  514. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
  515. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
  516. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
  517. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts +20 -0
  518. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
  519. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts +9 -0
  520. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
  521. package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts +5 -0
  522. package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts.map +1 -0
  523. package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
  524. package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
  525. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
  526. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
  527. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
  528. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
  529. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
  530. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
  531. package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
  532. package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
  533. package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts +5 -0
  534. package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
  535. package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
  536. package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
  537. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
  538. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
  539. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
  540. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
  541. package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts +5 -0
  542. package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
  543. package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
  544. package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
  545. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
  546. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
  547. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
  548. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
  549. package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
  550. package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
  551. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +34 -0
  552. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
  553. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
  554. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
  555. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
  556. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
  557. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
  558. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
  559. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
  560. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
  561. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
  562. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
  563. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
  564. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
  565. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
  566. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
  567. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +15 -0
  568. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
  569. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +14 -0
  570. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
  571. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +16 -0
  572. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
  573. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +11 -0
  574. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
  575. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
  576. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
  577. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +34 -0
  578. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
  579. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +37 -0
  580. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
  581. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +23 -0
  582. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
  583. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +23 -0
  584. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
  585. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
  586. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
  587. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +86 -0
  588. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
  589. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +71 -0
  590. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
  591. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +13 -0
  592. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
  593. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
  594. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
  595. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
  596. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
  597. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
  598. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
  599. package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts +25 -0
  600. package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
  601. package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts +4 -0
  602. package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
  603. package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts +3 -0
  604. package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
  605. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
  606. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
  607. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
  608. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
  609. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
  610. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
  611. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
  612. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
  613. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
  614. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
  615. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +20 -0
  616. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
  617. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +20 -0
  618. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
  619. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +20 -0
  620. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
  621. package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
  622. package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
  623. package/lib/redirect-bridge/types/custom_auth/index.d.ts +84 -0
  624. package/lib/redirect-bridge/types/custom_auth/index.d.ts.map +1 -0
  625. package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
  626. package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
  627. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +40 -0
  628. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
  629. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
  630. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
  631. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
  632. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
  633. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
  634. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
  635. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
  636. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
  637. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +27 -0
  638. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
  639. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +11 -0
  640. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
  641. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +11 -0
  642. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
  643. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +16 -0
  644. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
  645. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
  646. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
  647. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +19 -0
  648. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
  649. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
  650. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
  651. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
  652. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
  653. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
  654. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
  655. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
  656. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
  657. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +45 -0
  658. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
  659. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
  660. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
  661. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +72 -0
  662. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
  663. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +51 -0
  664. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
  665. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +46 -0
  666. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
  667. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +33 -0
  668. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
  669. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +12 -0
  670. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
  671. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +17 -0
  672. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
  673. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +11 -0
  674. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
  675. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +21 -0
  676. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
  677. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +22 -0
  678. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
  679. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +25 -0
  680. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
  681. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +49 -0
  682. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
  683. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +32 -0
  684. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
  685. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +43 -0
  686. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
  687. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +62 -0
  688. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
  689. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
  690. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
  691. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
  692. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
  693. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
  694. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
  695. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
  696. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
  697. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
  698. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
  699. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +25 -0
  700. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
  701. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +32 -0
  702. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
  703. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +11 -0
  704. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
  705. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +11 -0
  706. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
  707. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +16 -0
  708. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
  709. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
  710. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
  711. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +24 -0
  712. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
  713. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
  714. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
  715. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
  716. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
  717. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
  718. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
  719. package/lib/redirect-bridge/types/encode/Base64Decode.d.ts +15 -0
  720. package/lib/redirect-bridge/types/encode/Base64Decode.d.ts.map +1 -0
  721. package/lib/redirect-bridge/types/encode/Base64Encode.d.ts +20 -0
  722. package/lib/redirect-bridge/types/encode/Base64Encode.d.ts.map +1 -0
  723. package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts +12 -0
  724. package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts.map +1 -0
  725. package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts +53 -0
  726. package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts.map +1 -0
  727. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts +11 -0
  728. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts.map +1 -0
  729. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts +4 -0
  730. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts.map +1 -0
  731. package/lib/redirect-bridge/types/error/NativeAuthError.d.ts +27 -0
  732. package/lib/redirect-bridge/types/error/NativeAuthError.d.ts.map +1 -0
  733. package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts +5 -0
  734. package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts.map +1 -0
  735. package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts +6 -0
  736. package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts.map +1 -0
  737. package/lib/redirect-bridge/types/event/EventHandler.d.ts +49 -0
  738. package/lib/redirect-bridge/types/event/EventHandler.d.ts.map +1 -0
  739. package/lib/redirect-bridge/types/event/EventMessage.d.ts +41 -0
  740. package/lib/redirect-bridge/types/event/EventMessage.d.ts.map +1 -0
  741. package/lib/redirect-bridge/types/event/EventType.d.ts +24 -0
  742. package/lib/redirect-bridge/types/event/EventType.d.ts.map +1 -0
  743. package/lib/redirect-bridge/types/index.d.ts +73 -0
  744. package/lib/redirect-bridge/types/index.d.ts.map +1 -0
  745. package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts +77 -0
  746. package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts.map +1 -0
  747. package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts +5 -0
  748. package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts.map +1 -0
  749. package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts +151 -0
  750. package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -0
  751. package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts +106 -0
  752. package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts.map +1 -0
  753. package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts +77 -0
  754. package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts.map +1 -0
  755. package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts +24 -0
  756. package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts.map +1 -0
  757. package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts +17 -0
  758. package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts.map +1 -0
  759. package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts +57 -0
  760. package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts.map +1 -0
  761. package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts +32 -0
  762. package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts.map +1 -0
  763. package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts +76 -0
  764. package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts.map +1 -0
  765. package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts +33 -0
  766. package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts.map +1 -0
  767. package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts +17 -0
  768. package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts.map +1 -0
  769. package/lib/redirect-bridge/types/naa/AccountInfo.d.ts +13 -0
  770. package/lib/redirect-bridge/types/naa/AccountInfo.d.ts.map +1 -0
  771. package/lib/redirect-bridge/types/naa/AuthBridge.d.ts +9 -0
  772. package/lib/redirect-bridge/types/naa/AuthBridge.d.ts.map +1 -0
  773. package/lib/redirect-bridge/types/naa/AuthResult.d.ts +7 -0
  774. package/lib/redirect-bridge/types/naa/AuthResult.d.ts.map +1 -0
  775. package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts +13 -0
  776. package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts.map +1 -0
  777. package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts +4 -0
  778. package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts.map +1 -0
  779. package/lib/redirect-bridge/types/naa/BridgeError.d.ts +10 -0
  780. package/lib/redirect-bridge/types/naa/BridgeError.d.ts.map +1 -0
  781. package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts +69 -0
  782. package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts.map +1 -0
  783. package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts +8 -0
  784. package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts.map +1 -0
  785. package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts +13 -0
  786. package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts.map +1 -0
  787. package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts +14 -0
  788. package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts.map +1 -0
  789. package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts +12 -0
  790. package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts.map +1 -0
  791. package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts +11 -0
  792. package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts.map +1 -0
  793. package/lib/redirect-bridge/types/naa/InitContext.d.ts +9 -0
  794. package/lib/redirect-bridge/types/naa/InitContext.d.ts.map +1 -0
  795. package/lib/redirect-bridge/types/naa/TokenRequest.d.ts +21 -0
  796. package/lib/redirect-bridge/types/naa/TokenRequest.d.ts.map +1 -0
  797. package/lib/redirect-bridge/types/naa/TokenResponse.d.ts +14 -0
  798. package/lib/redirect-bridge/types/naa/TokenResponse.d.ts.map +1 -0
  799. package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts +36 -0
  800. package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -0
  801. package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts +17 -0
  802. package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts.map +1 -0
  803. package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts +23 -0
  804. package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts.map +1 -0
  805. package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts +13 -0
  806. package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts.map +1 -0
  807. package/lib/redirect-bridge/types/network/FetchClient.d.ts +21 -0
  808. package/lib/redirect-bridge/types/network/FetchClient.d.ts.map +1 -0
  809. package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts +43 -0
  810. package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts.map +1 -0
  811. package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts +41 -0
  812. package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -0
  813. package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts +26 -0
  814. package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts.map +1 -0
  815. package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts +26 -0
  816. package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts.map +1 -0
  817. package/lib/redirect-bridge/types/packageMetadata.d.ts +3 -0
  818. package/lib/redirect-bridge/types/packageMetadata.d.ts.map +1 -0
  819. package/lib/redirect-bridge/types/protocol/Authorize.d.ts +102 -0
  820. package/lib/redirect-bridge/types/protocol/Authorize.d.ts.map +1 -0
  821. package/lib/redirect-bridge/types/redirect_bridge/index.d.ts +16 -0
  822. package/lib/redirect-bridge/types/redirect_bridge/index.d.ts.map +1 -0
  823. package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts +27 -0
  824. package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts.map +1 -0
  825. package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts +15 -0
  826. package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts.map +1 -0
  827. package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts +24 -0
  828. package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts.map +1 -0
  829. package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts +11 -0
  830. package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts.map +1 -0
  831. package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts +5 -0
  832. package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts.map +1 -0
  833. package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts +10 -0
  834. package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts.map +1 -0
  835. package/lib/redirect-bridge/types/request/PopupRequest.d.ts +25 -0
  836. package/lib/redirect-bridge/types/request/PopupRequest.d.ts.map +1 -0
  837. package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts +16 -0
  838. package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts.map +1 -0
  839. package/lib/redirect-bridge/types/request/RedirectRequest.d.ts +16 -0
  840. package/lib/redirect-bridge/types/request/RedirectRequest.d.ts.map +1 -0
  841. package/lib/redirect-bridge/types/request/RequestHelpers.d.ts +28 -0
  842. package/lib/redirect-bridge/types/request/RequestHelpers.d.ts.map +1 -0
  843. package/lib/redirect-bridge/types/request/SilentRequest.d.ts +52 -0
  844. package/lib/redirect-bridge/types/request/SilentRequest.d.ts.map +1 -0
  845. package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts +6 -0
  846. package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts.map +1 -0
  847. package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts +5 -0
  848. package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts.map +1 -0
  849. package/lib/redirect-bridge/types/response/ResponseHandler.d.ts +8 -0
  850. package/lib/redirect-bridge/types/response/ResponseHandler.d.ts.map +1 -0
  851. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts +19 -0
  852. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -0
  853. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts +140 -0
  854. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -0
  855. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts +22 -0
  856. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts.map +1 -0
  857. package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts +42 -0
  858. package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -0
  859. package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts +182 -0
  860. package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts.map +1 -0
  861. package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts +12 -0
  862. package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts.map +1 -0
  863. package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts +111 -0
  864. package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts.map +1 -0
  865. package/lib/redirect-bridge/types/utils/Helpers.d.ts +7 -0
  866. package/lib/redirect-bridge/types/utils/Helpers.d.ts.map +1 -0
  867. package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts +13 -0
  868. package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts.map +1 -0
  869. package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  870. package/lib/types/cache/BrowserCacheManager.d.ts +2 -4
  871. package/lib/types/cache/BrowserCacheManager.d.ts.map +1 -1
  872. package/lib/types/cache/CacheKeys.d.ts +3 -2
  873. package/lib/types/cache/CacheKeys.d.ts.map +1 -1
  874. package/lib/types/config/Configuration.d.ts +7 -0
  875. package/lib/types/config/Configuration.d.ts.map +1 -1
  876. package/lib/types/controllers/StandardController.d.ts +16 -0
  877. package/lib/types/controllers/StandardController.d.ts.map +1 -1
  878. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  879. package/lib/types/custom_auth/UserAccountAttributes.d.ts +1 -0
  880. package/lib/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  881. package/lib/types/error/NativeAuthError.d.ts.map +1 -1
  882. package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  883. package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  884. package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
  885. package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
  886. package/lib/types/interaction_client/SilentIframeClient.d.ts +14 -0
  887. package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  888. package/lib/types/packageMetadata.d.ts +1 -1
  889. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  890. package/lib/types/redirect_bridge/index.d.ts.map +1 -1
  891. package/lib/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  892. package/lib/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  893. package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  894. package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  895. package/package.json +3 -3
  896. package/src/broker/nativeBroker/PlatformAuthExtensionHandler.ts +1 -1
  897. package/src/broker/nativeBroker/PlatformAuthProvider.ts +1 -1
  898. package/src/cache/BrowserCacheManager.ts +5 -5
  899. package/src/cache/CacheKeys.ts +3 -2
  900. package/src/config/Configuration.ts +8 -0
  901. package/src/controllers/StandardController.ts +290 -39
  902. package/src/custom_auth/UserAccountAttributes.ts +1 -0
  903. package/src/error/NativeAuthError.ts +1 -2
  904. package/src/interaction_client/PlatformAuthInteractionClient.ts +82 -37
  905. package/src/interaction_client/PopupClient.ts +10 -0
  906. package/src/interaction_client/RedirectClient.ts +10 -0
  907. package/src/interaction_client/SilentIframeClient.ts +123 -20
  908. package/src/packageMetadata.ts +1 -1
  909. package/src/protocol/Authorize.ts +8 -0
  910. package/src/redirect_bridge/index.ts +12 -5
  911. package/src/telemetry/BrowserPerformanceEvents.ts +3 -0
  912. package/src/telemetry/BrowserRootPerformanceEvents.ts +7 -0
@@ -1,8 +1,8 @@
1
- /*! @azure/msal-browser v5.6.3 2026-04-01 */
1
+ /*! @azure/msal-browser v5.8.0 2026-04-21 */
2
2
  'use strict';
3
3
  'use strict';
4
4
 
5
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6
6
  /*
7
7
  * Copyright (c) Microsoft Corporation. All rights reserved.
8
8
  * Licensed under the MIT License.
@@ -234,7 +234,7 @@ const JsonWebTokenTypes$1 = {
234
234
  // Token renewal offset default in seconds
235
235
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
236
236
 
237
- /*! @azure/msal-common v16.4.1 2026-04-01 */
237
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
238
238
  /*
239
239
  * Copyright (c) Microsoft Corporation. All rights reserved.
240
240
  * Licensed under the MIT License.
@@ -286,7 +286,7 @@ const EAR_JWE_CRYPTO = "ear_jwe_crypto";
286
286
  const RESOURCE = "resource";
287
287
  const CLI_DATA = "clidata";
288
288
 
289
- /*! @azure/msal-common v16.4.1 2026-04-01 */
289
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
290
290
  /*
291
291
  * Copyright (c) Microsoft Corporation. All rights reserved.
292
292
  * Licensed under the MIT License.
@@ -317,7 +317,7 @@ function createAuthError(code, additionalMessage) {
317
317
  return new AuthError(code, additionalMessage || getDefaultErrorMessage$1(code));
318
318
  }
319
319
 
320
- /*! @azure/msal-common v16.4.1 2026-04-01 */
320
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
321
321
 
322
322
  /*
323
323
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -337,7 +337,7 @@ function createClientConfigurationError(errorCode) {
337
337
  return new ClientConfigurationError(errorCode);
338
338
  }
339
339
 
340
- /*! @azure/msal-common v16.4.1 2026-04-01 */
340
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
341
341
  /*
342
342
  * Copyright (c) Microsoft Corporation. All rights reserved.
343
343
  * Licensed under the MIT License.
@@ -417,7 +417,7 @@ class StringUtils {
417
417
  }
418
418
  }
419
419
 
420
- /*! @azure/msal-common v16.4.1 2026-04-01 */
420
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
421
421
 
422
422
  /*
423
423
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -440,7 +440,7 @@ function createClientAuthError(errorCode, additionalMessage) {
440
440
  return new ClientAuthError(errorCode, additionalMessage);
441
441
  }
442
442
 
443
- /*! @azure/msal-common v16.4.1 2026-04-01 */
443
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
444
444
  /*
445
445
  * Copyright (c) Microsoft Corporation. All rights reserved.
446
446
  * Licensed under the MIT License.
@@ -494,7 +494,7 @@ var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
494
494
  urlParseError: urlParseError
495
495
  });
496
496
 
497
- /*! @azure/msal-common v16.4.1 2026-04-01 */
497
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
498
498
  /*
499
499
  * Copyright (c) Microsoft Corporation. All rights reserved.
500
500
  * Licensed under the MIT License.
@@ -582,7 +582,7 @@ var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
582
582
  userCanceled: userCanceled
583
583
  });
584
584
 
585
- /*! @azure/msal-common v16.4.1 2026-04-01 */
585
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
586
586
 
587
587
  /*
588
588
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -777,7 +777,7 @@ class ScopeSet {
777
777
  }
778
778
  }
779
779
 
780
- /*! @azure/msal-common v16.4.1 2026-04-01 */
780
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
781
781
 
782
782
  /*
783
783
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -898,18 +898,29 @@ function addSid(parameters, sid) {
898
898
  parameters.set(SID, sid);
899
899
  }
900
900
  /**
901
- * add claims
902
- * @param claims
903
- */
904
- function addClaims(parameters, claims, clientCapabilities) {
905
- const mergedClaims = addClientCapabilitiesToClaims$1(claims, clientCapabilities);
906
- try {
907
- JSON.parse(mergedClaims);
908
- }
909
- catch (e) {
910
- throw createClientConfigurationError(invalidClaims);
901
+ * Adds claims to request parameters, conditionally excluding clientCapabilities
902
+ * when skipBrokerClaims is true and a brokered flow is in effect.
903
+ * @param parameters - The request parameters map
904
+ * @param claims - The claims string from the request
905
+ * @param clientCapabilities - The client capabilities from configuration
906
+ * @param skipBrokerClaims - When true and BROKER_CLIENT_ID is present, excludes clientCapabilities from claims
907
+ */
908
+ function addClaims(parameters, claims, clientCapabilities, skipBrokerClaims) {
909
+ // Skip clientCapabilities if skipBrokerClaims is set to true and this is a brokered authentication flow
910
+ const configClaims = skipBrokerClaims && parameters.has(BROKER_CLIENT_ID)
911
+ ? undefined
912
+ : clientCapabilities;
913
+ if (!StringUtils.isEmptyObj(claims) ||
914
+ (configClaims && configClaims.length > 0)) {
915
+ const mergedClaims = addClientCapabilitiesToClaims$1(claims, configClaims);
916
+ try {
917
+ JSON.parse(mergedClaims);
918
+ }
919
+ catch (e) {
920
+ throw createClientConfigurationError(invalidClaims);
921
+ }
922
+ parameters.set(CLAIMS, mergedClaims);
911
923
  }
912
- parameters.set(CLAIMS, mergedClaims);
913
924
  }
914
925
  /**
915
926
  * add correlationId
@@ -1155,7 +1166,7 @@ function addResource(parameters, resource) {
1155
1166
  }
1156
1167
  }
1157
1168
 
1158
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1169
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1159
1170
 
1160
1171
  /*
1161
1172
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1264,7 +1275,7 @@ function normalizeUrlForComparison(url) {
1264
1275
  }
1265
1276
  }
1266
1277
 
1267
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1278
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1268
1279
 
1269
1280
  /*
1270
1281
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1303,7 +1314,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
1303
1314
  },
1304
1315
  };
1305
1316
 
1306
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1317
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1307
1318
  /*
1308
1319
  * Copyright (c) Microsoft Corporation. All rights reserved.
1309
1320
  * Licensed under the MIT License.
@@ -1578,12 +1589,12 @@ class Logger {
1578
1589
  }
1579
1590
  }
1580
1591
 
1581
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1592
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1582
1593
  /* eslint-disable header/header */
1583
1594
  const name$1 = "@azure/msal-common";
1584
- const version$1 = "16.4.1";
1595
+ const version$1 = "16.5.1";
1585
1596
 
1586
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1597
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1587
1598
  /*
1588
1599
  * Copyright (c) Microsoft Corporation. All rights reserved.
1589
1600
  * Licensed under the MIT License.
@@ -1603,7 +1614,7 @@ const AzureCloudInstance = {
1603
1614
  AzureUsGovernment: "https://login.microsoftonline.us",
1604
1615
  };
1605
1616
 
1606
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1617
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1607
1618
  /*
1608
1619
  * Copyright (c) Microsoft Corporation. All rights reserved.
1609
1620
  * Licensed under the MIT License.
@@ -1644,6 +1655,7 @@ function buildTenantProfile(homeAccountId, localAccountId, tenantId, idTokenClai
1644
1655
  username: preferred_username || upn || "",
1645
1656
  loginHint: login_hint,
1646
1657
  isHomeTenant: tenantIdMatchesHomeTenant(tenantId, homeAccountId),
1658
+ upn: upn,
1647
1659
  };
1648
1660
  }
1649
1661
  else {
@@ -1671,7 +1683,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1671
1683
  }
1672
1684
  // ID token claims override passed in account info and tenant profile
1673
1685
  if (idTokenClaims) {
1674
- // Ignore isHomeTenant, loginHint, and sid which are part of tenant profile but not base account info
1686
+ // Ignore isHomeTenant which is a utility property of tenant profile but not required in base account info
1675
1687
  // eslint-disable-next-line @typescript-eslint/no-unused-vars
1676
1688
  const { isHomeTenant, ...claimsSourcedTenantProfile } = buildTenantProfile(baseAccountInfo.homeAccountId, baseAccountInfo.localAccountId, baseAccountInfo.tenantId, idTokenClaims);
1677
1689
  updatedAccountInfo = {
@@ -1685,7 +1697,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
1685
1697
  return updatedAccountInfo;
1686
1698
  }
1687
1699
 
1688
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1700
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1689
1701
 
1690
1702
  /*
1691
1703
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1765,7 +1777,7 @@ function checkMaxAge(authTime, maxAge) {
1765
1777
  }
1766
1778
  }
1767
1779
 
1768
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1780
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1769
1781
 
1770
1782
  /*
1771
1783
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1922,7 +1934,7 @@ class UrlString {
1922
1934
  }
1923
1935
  }
1924
1936
 
1925
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1937
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1926
1938
 
1927
1939
  /*
1928
1940
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2079,7 +2091,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
2079
2091
  return null;
2080
2092
  }
2081
2093
 
2082
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2094
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2083
2095
  /*
2084
2096
  * Copyright (c) Microsoft Corporation. All rights reserved.
2085
2097
  * Licensed under the MIT License.
@@ -2087,7 +2099,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
2087
2099
  const cacheQuotaExceeded = "cache_quota_exceeded";
2088
2100
  const cacheErrorUnknown = "cache_error_unknown";
2089
2101
 
2090
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2102
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2091
2103
 
2092
2104
  /*
2093
2105
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2125,7 +2137,7 @@ function createCacheError(e) {
2125
2137
  }
2126
2138
  }
2127
2139
 
2128
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2140
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2129
2141
 
2130
2142
  /*
2131
2143
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2163,7 +2175,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
2163
2175
  };
2164
2176
  }
2165
2177
 
2166
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2178
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2167
2179
  /*
2168
2180
  * Copyright (c) Microsoft Corporation. All rights reserved.
2169
2181
  * Licensed under the MIT License.
@@ -2178,7 +2190,7 @@ const AuthorityType = {
2178
2190
  Ciam: 3,
2179
2191
  };
2180
2192
 
2181
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2193
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2182
2194
  /*
2183
2195
  * Copyright (c) Microsoft Corporation. All rights reserved.
2184
2196
  * Licensed under the MIT License.
@@ -2200,7 +2212,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
2200
2212
  return null;
2201
2213
  }
2202
2214
 
2203
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2215
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2204
2216
  /*
2205
2217
  * Copyright (c) Microsoft Corporation. All rights reserved.
2206
2218
  * Licensed under the MIT License.
@@ -2224,7 +2236,7 @@ const ProtocolMode = {
2224
2236
  EAR: "EAR",
2225
2237
  };
2226
2238
 
2227
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2239
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2228
2240
  /**
2229
2241
  * Returns the AccountInfo interface for this account.
2230
2242
  */
@@ -2399,7 +2411,7 @@ function isAccountEntity(entity) {
2399
2411
  entity.hasOwnProperty("authorityType"));
2400
2412
  }
2401
2413
 
2402
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2414
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2403
2415
 
2404
2416
  /*
2405
2417
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2536,6 +2548,19 @@ class CacheManager {
2536
2548
  !(tenantProfile.isHomeTenant === tenantProfileFilter.isHomeTenant)) {
2537
2549
  return false;
2538
2550
  }
2551
+ if (!!tenantProfileFilter.username &&
2552
+ !(this.matchUsername(tenantProfile.username, tenantProfileFilter.username) ||
2553
+ !this.matchUsername(tenantProfile.upn, tenantProfileFilter.username))) {
2554
+ return false;
2555
+ }
2556
+ if (!!tenantProfileFilter.loginHint &&
2557
+ !this.matchLoginHintWithTenantProfile(tenantProfile, tenantProfileFilter.loginHint)) {
2558
+ return false;
2559
+ }
2560
+ if (!!tenantProfileFilter.upn &&
2561
+ !(tenantProfile.upn === tenantProfileFilter.upn)) {
2562
+ return false;
2563
+ }
2539
2564
  return true;
2540
2565
  }
2541
2566
  idTokenClaimsMatchTenantProfileFilter(idTokenClaims, tenantProfileFilter) {
@@ -2550,7 +2575,8 @@ class CacheManager {
2550
2575
  return false;
2551
2576
  }
2552
2577
  if (!!tenantProfileFilter.username &&
2553
- !this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username)) {
2578
+ !this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username) &&
2579
+ !this.matchUsername(idTokenClaims.upn, tenantProfileFilter.username)) {
2554
2580
  return false;
2555
2581
  }
2556
2582
  if (!!tenantProfileFilter.name &&
@@ -2651,10 +2677,6 @@ class CacheManager {
2651
2677
  !this.matchHomeAccountId(entity, accountFilter.homeAccountId)) {
2652
2678
  return;
2653
2679
  }
2654
- if (!!accountFilter.username &&
2655
- !this.matchUsername(entity.username, accountFilter.username)) {
2656
- return;
2657
- }
2658
2680
  if (!!accountFilter.environment &&
2659
2681
  !this.matchEnvironment(entity, accountFilter.environment, correlationId)) {
2660
2682
  return;
@@ -2675,6 +2697,9 @@ class CacheManager {
2675
2697
  const tenantProfileFilter = {
2676
2698
  localAccountId: accountFilter?.localAccountId,
2677
2699
  name: accountFilter?.name,
2700
+ username: accountFilter?.username,
2701
+ loginHint: accountFilter?.loginHint,
2702
+ upn: accountFilter?.upn,
2678
2703
  };
2679
2704
  const matchingTenantProfiles = entity.tenantProfiles?.filter((tenantProfile) => {
2680
2705
  return this.tenantProfileMatchesFilter(tenantProfile, tenantProfileFilter);
@@ -2925,11 +2950,11 @@ class CacheManager {
2925
2950
  const numHomeIdTokens = homeIdTokenMap.size;
2926
2951
  if (numHomeIdTokens < 1) {
2927
2952
  this.commonLogger.info("0ooalx", correlationId);
2928
- return idTokenMap.values().next().value;
2953
+ return idTokenMap.values().next().value ?? null;
2929
2954
  }
2930
2955
  else if (numHomeIdTokens === 1) {
2931
2956
  this.commonLogger.info("1eq2vc", correlationId);
2932
- return homeIdTokenMap.values().next().value;
2957
+ return homeIdTokenMap.values().next().value ?? null;
2933
2958
  }
2934
2959
  else {
2935
2960
  // Multiple ID tokens for home tenant profile, remove all and return null
@@ -2945,7 +2970,7 @@ class CacheManager {
2945
2970
  return null;
2946
2971
  }
2947
2972
  this.commonLogger.info("1sm769", correlationId);
2948
- return idTokenMap.values().next().value;
2973
+ return idTokenMap.values().next().value ?? null;
2949
2974
  }
2950
2975
  /**
2951
2976
  * Gets all idTokens matching the given filter
@@ -3258,6 +3283,17 @@ class CacheManager {
3258
3283
  typeof cachedUsername === "string" &&
3259
3284
  filterUsername?.toLowerCase() === cachedUsername.toLowerCase());
3260
3285
  }
3286
+ /**
3287
+ * helper to match loginhints
3288
+ * @param entity
3289
+ * @param loginHint
3290
+ * @returns
3291
+ */
3292
+ matchLoginHintWithTenantProfile(tenantProfile, loginHintFilter) {
3293
+ return (tenantProfile.loginHint === loginHintFilter ||
3294
+ tenantProfile.username === loginHintFilter ||
3295
+ tenantProfile.upn === loginHintFilter);
3296
+ }
3261
3297
  /**
3262
3298
  * helper to match assertion
3263
3299
  * @param value
@@ -3350,6 +3386,10 @@ class CacheManager {
3350
3386
  if (tokenClaims.upn === loginHint) {
3351
3387
  return true;
3352
3388
  }
3389
+ // check login hint against list of emails in token claims
3390
+ if (tokenClaims.emails && tokenClaims.emails.includes(loginHint)) {
3391
+ return true;
3392
+ }
3353
3393
  return false;
3354
3394
  }
3355
3395
  /**
@@ -3501,7 +3541,7 @@ class DefaultStorageClass extends CacheManager {
3501
3541
  }
3502
3542
  }
3503
3543
 
3504
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3544
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3505
3545
  /*
3506
3546
  * Copyright (c) Microsoft Corporation. All rights reserved.
3507
3547
  * Licensed under the MIT License.
@@ -3552,7 +3592,7 @@ const IntFields = new Set([
3552
3592
  "redirectBridgeMessageVersion",
3553
3593
  ]);
3554
3594
 
3555
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3595
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3556
3596
 
3557
3597
  /*
3558
3598
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3607,7 +3647,7 @@ class StubPerformanceClient {
3607
3647
  }
3608
3648
  }
3609
3649
 
3610
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3650
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3611
3651
 
3612
3652
  /*
3613
3653
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3702,7 +3742,7 @@ function isOidcProtocolMode(config) {
3702
3742
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
3703
3743
  }
3704
3744
 
3705
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3745
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3706
3746
  /*
3707
3747
  * Copyright (c) Microsoft Corporation. All rights reserved.
3708
3748
  * Licensed under the MIT License.
@@ -3729,7 +3769,7 @@ function isOidcProtocolMode(config) {
3729
3769
  }
3730
3770
  }
3731
3771
 
3732
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3772
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3733
3773
  /*
3734
3774
  * Copyright (c) Microsoft Corporation. All rights reserved.
3735
3775
  * Licensed under the MIT License.
@@ -3794,7 +3834,7 @@ function wasClockTurnedBack(cachedAt) {
3794
3834
  return cachedAtSec > nowSeconds();
3795
3835
  }
3796
3836
 
3797
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3837
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3798
3838
 
3799
3839
  /*
3800
3840
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4053,7 +4093,7 @@ function isAuthorityMetadataExpired(metadata) {
4053
4093
  return metadata.expiresAt <= nowSeconds();
4054
4094
  }
4055
4095
 
4056
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4096
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4057
4097
  /*
4058
4098
  * Copyright (c) Microsoft Corporation. All rights reserved.
4059
4099
  * Licensed under the MIT License.
@@ -4124,7 +4164,7 @@ const RegionDiscoveryGetCurrentVersion = "regionDiscoveryGetCurrentVersion";
4124
4164
  const CacheManagerGetRefreshToken = "cacheManagerGetRefreshToken";
4125
4165
  const SetUserData = "setUserData";
4126
4166
 
4127
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4167
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4128
4168
  /*
4129
4169
  * Copyright (c) Microsoft Corporation. All rights reserved.
4130
4170
  * Licensed under the MIT License.
@@ -4217,7 +4257,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
4217
4257
  };
4218
4258
  };
4219
4259
 
4220
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4260
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4221
4261
 
4222
4262
  /*
4223
4263
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4297,7 +4337,7 @@ class PopTokenGenerator {
4297
4337
  }
4298
4338
  }
4299
4339
 
4300
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4340
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4301
4341
  /*
4302
4342
  * Copyright (c) Microsoft Corporation. All rights reserved.
4303
4343
  * Licensed under the MIT License.
@@ -4361,7 +4401,7 @@ var InteractionRequiredAuthErrorCodes = /*#__PURE__*/Object.freeze({
4361
4401
  uxNotAllowed: uxNotAllowed
4362
4402
  });
4363
4403
 
4364
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4404
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4365
4405
 
4366
4406
  /*
4367
4407
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4429,7 +4469,7 @@ function createInteractionRequiredAuthError(errorCode, errorMessage) {
4429
4469
  return new InteractionRequiredAuthError(errorCode, errorMessage);
4430
4470
  }
4431
4471
 
4432
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4472
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4433
4473
 
4434
4474
  /*
4435
4475
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4448,7 +4488,7 @@ class ServerError extends AuthError {
4448
4488
  }
4449
4489
  }
4450
4490
 
4451
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4491
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4452
4492
 
4453
4493
  /*
4454
4494
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4516,7 +4556,7 @@ function parseRequestState(base64Decode, state) {
4516
4556
  }
4517
4557
  }
4518
4558
 
4519
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4559
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4520
4560
 
4521
4561
  /*
4522
4562
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4864,7 +4904,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
4864
4904
  return baseAccount;
4865
4905
  }
4866
4906
 
4867
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4907
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4868
4908
  /*
4869
4909
  * Copyright (c) Microsoft Corporation. All rights reserved.
4870
4910
  * Licensed under the MIT License.
@@ -4874,7 +4914,7 @@ const CcsCredentialType = {
4874
4914
  UPN: "UPN",
4875
4915
  };
4876
4916
 
4877
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4917
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4878
4918
  /*
4879
4919
  * Copyright (c) Microsoft Corporation. All rights reserved.
4880
4920
  * Licensed under the MIT License.
@@ -4892,7 +4932,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
4892
4932
  }
4893
4933
  }
4894
4934
 
4895
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4935
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4896
4936
  /*
4897
4937
  * Copyright (c) Microsoft Corporation. All rights reserved.
4898
4938
  * Licensed under the MIT License.
@@ -4913,7 +4953,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
4913
4953
  };
4914
4954
  }
4915
4955
 
4916
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4956
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4917
4957
 
4918
4958
  /*
4919
4959
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4999,7 +5039,7 @@ class ThrottlingUtils {
4999
5039
  }
5000
5040
  }
5001
5041
 
5002
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5042
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5003
5043
 
5004
5044
  /*
5005
5045
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5030,7 +5070,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
5030
5070
  return new NetworkError(error, httpStatus, responseHeaders);
5031
5071
  }
5032
5072
 
5033
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5073
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5034
5074
 
5035
5075
  /*
5036
5076
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5144,7 +5184,7 @@ async function sendPostRequest(thumbprint, tokenEndpoint, options, correlationId
5144
5184
  return response;
5145
5185
  }
5146
5186
 
5147
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5187
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5148
5188
  /*
5149
5189
  * Copyright (c) Microsoft Corporation. All rights reserved.
5150
5190
  * Licensed under the MIT License.
@@ -5156,7 +5196,7 @@ function isOpenIdConfigResponse(response) {
5156
5196
  response.hasOwnProperty("jwks_uri"));
5157
5197
  }
5158
5198
 
5159
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5199
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5160
5200
  /*
5161
5201
  * Copyright (c) Microsoft Corporation. All rights reserved.
5162
5202
  * Licensed under the MIT License.
@@ -5166,7 +5206,7 @@ function isCloudInstanceDiscoveryResponse(response) {
5166
5206
  response.hasOwnProperty("metadata"));
5167
5207
  }
5168
5208
 
5169
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5209
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5170
5210
  /*
5171
5211
  * Copyright (c) Microsoft Corporation. All rights reserved.
5172
5212
  * Licensed under the MIT License.
@@ -5176,7 +5216,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
5176
5216
  response.hasOwnProperty("error_description"));
5177
5217
  }
5178
5218
 
5179
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5219
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5180
5220
 
5181
5221
  /*
5182
5222
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5281,7 +5321,7 @@ RegionDiscovery.IMDS_OPTIONS = {
5281
5321
  },
5282
5322
  };
5283
5323
 
5284
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5324
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5285
5325
 
5286
5326
  /*
5287
5327
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6101,7 +6141,7 @@ function buildStaticAuthorityOptions(authOptions) {
6101
6141
  };
6102
6142
  }
6103
6143
 
6104
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6144
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6105
6145
 
6106
6146
  /*
6107
6147
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6135,7 +6175,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
6135
6175
  }
6136
6176
  }
6137
6177
 
6138
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6178
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6139
6179
 
6140
6180
  /*
6141
6181
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6300,11 +6340,6 @@ class AuthorizationCodeClient {
6300
6340
  throw createClientConfigurationError(missingSshJwk);
6301
6341
  }
6302
6342
  }
6303
- if (!StringUtils.isEmptyObj(request.claims) ||
6304
- (this.config.authOptions.clientCapabilities &&
6305
- this.config.authOptions.clientCapabilities.length > 0)) {
6306
- addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
6307
- }
6308
6343
  let ccsCred = undefined;
6309
6344
  if (request.clientInfo) {
6310
6345
  try {
@@ -6353,6 +6388,7 @@ class AuthorizationCodeClient {
6353
6388
  });
6354
6389
  }
6355
6390
  instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
6391
+ addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
6356
6392
  return mapToQueryString(parameters);
6357
6393
  }
6358
6394
  /**
@@ -6396,7 +6432,7 @@ class AuthorizationCodeClient {
6396
6432
  }
6397
6433
  }
6398
6434
 
6399
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6435
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6400
6436
 
6401
6437
  /*
6402
6438
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6586,11 +6622,6 @@ class RefreshTokenClient {
6586
6622
  throw createClientConfigurationError(missingSshJwk);
6587
6623
  }
6588
6624
  }
6589
- if (!StringUtils.isEmptyObj(request.claims) ||
6590
- (this.config.authOptions.clientCapabilities &&
6591
- this.config.authOptions.clientCapabilities.length > 0)) {
6592
- addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
6593
- }
6594
6625
  if (this.config.systemOptions.preventCorsPreflight &&
6595
6626
  request.ccsCredential) {
6596
6627
  switch (request.ccsCredential.type) {
@@ -6617,11 +6648,12 @@ class RefreshTokenClient {
6617
6648
  });
6618
6649
  }
6619
6650
  instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
6651
+ addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
6620
6652
  return mapToQueryString(parameters);
6621
6653
  }
6622
6654
  }
6623
6655
 
6624
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6656
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6625
6657
 
6626
6658
  /*
6627
6659
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6737,7 +6769,7 @@ class SilentFlowClient {
6737
6769
  }
6738
6770
  }
6739
6771
 
6740
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6772
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6741
6773
 
6742
6774
  /*
6743
6775
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6752,7 +6784,7 @@ const StubbedNetworkModule = {
6752
6784
  },
6753
6785
  };
6754
6786
 
6755
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6787
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6756
6788
 
6757
6789
  /*
6758
6790
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6876,14 +6908,10 @@ function getStandardAuthorizeRequestParameters(authOptions, request, logger, per
6876
6908
  if (request.state) {
6877
6909
  addState(parameters, request.state);
6878
6910
  }
6879
- if (request.claims ||
6880
- (authOptions.clientCapabilities &&
6881
- authOptions.clientCapabilities.length > 0)) {
6882
- addClaims(parameters, request.claims, authOptions.clientCapabilities);
6883
- }
6884
6911
  if (request.embeddedClientId) {
6885
6912
  addBrokerParameters(parameters, authOptions.clientId, authOptions.redirectUri);
6886
6913
  }
6914
+ addClaims(parameters, request.claims, authOptions.clientCapabilities, request.skipBrokerClaims);
6887
6915
  // If extraQueryParameters includes instance_aware its value will be added when extraQueryParameters are added
6888
6916
  if (authOptions.instanceAware &&
6889
6917
  (!request.extraQueryParameters ||
@@ -6979,7 +7007,7 @@ function extractLoginHint(account) {
6979
7007
  return account.loginHint || account.idTokenClaims?.login_hint || null;
6980
7008
  }
6981
7009
 
6982
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7010
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6983
7011
 
6984
7012
  /*
6985
7013
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7012,7 +7040,7 @@ function containsResourceParam(params) {
7012
7040
  return Object.prototype.hasOwnProperty.call(params, "resource");
7013
7041
  }
7014
7042
 
7015
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7043
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7016
7044
 
7017
7045
  /*
7018
7046
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7070,7 +7098,7 @@ class AuthenticationHeaderParser {
7070
7098
  }
7071
7099
  }
7072
7100
 
7073
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7101
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7074
7102
  /*
7075
7103
  * Copyright (c) Microsoft Corporation. All rights reserved.
7076
7104
  * Licensed under the MIT License.
@@ -7087,7 +7115,7 @@ var AuthErrorCodes = /*#__PURE__*/Object.freeze({
7087
7115
  unexpectedError: unexpectedError
7088
7116
  });
7089
7117
 
7090
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7118
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7091
7119
 
7092
7120
  /*
7093
7121
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7348,7 +7376,7 @@ class ServerTelemetryManager {
7348
7376
  }
7349
7377
  }
7350
7378
 
7351
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7379
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7352
7380
 
7353
7381
  /*
7354
7382
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7369,7 +7397,7 @@ function createJoseHeaderError(code) {
7369
7397
  return new JoseHeaderError(code);
7370
7398
  }
7371
7399
 
7372
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7400
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7373
7401
  /*
7374
7402
  * Copyright (c) Microsoft Corporation. All rights reserved.
7375
7403
  * Licensed under the MIT License.
@@ -7377,7 +7405,7 @@ function createJoseHeaderError(code) {
7377
7405
  const missingKidError = "missing_kid_error";
7378
7406
  const missingAlgError = "missing_alg_error";
7379
7407
 
7380
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7408
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7381
7409
 
7382
7410
  /*
7383
7411
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7417,7 +7445,7 @@ class JoseHeader {
7417
7445
  }
7418
7446
  }
7419
7447
 
7420
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7448
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7421
7449
 
7422
7450
  /*
7423
7451
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8002,6 +8030,7 @@ const StandardInteractionClientGetDiscoveredAuthority = "standardInteractionClie
8002
8030
  * Used to acquire a token from Native component when native brokering is enabled.
8003
8031
  */
8004
8032
  const NativeInteractionClientAcquireToken = "nativeInteractionClientAcquireToken";
8033
+ const NativeInteractionClientAcquireTokenRedirect = "nativeInteractionClientAcquireToken";
8005
8034
  /**
8006
8035
  * acquireTokenByRefreshToken API in RefreshTokenClient (msal-common).
8007
8036
  */
@@ -8075,7 +8104,7 @@ const LoadRefreshToken = "loadRefreshToken";
8075
8104
  * Background telemetry measurement that tracks whether a late bridge response
8076
8105
  * arrives after the iframe timeout has already fired.
8077
8106
  */
8078
- const WaitForBridgeLateResponse = "waitForBridgeLateResponse";
8107
+ const WaitForBridgeLateResponse$1 = "waitForBridgeLateResponse";
8079
8108
 
8080
8109
  /*
8081
8110
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -9001,7 +9030,7 @@ async function waitForBridgeResponse(timeoutMs, logger, browserCrypto, request,
9001
9030
  // Clear the active monitor
9002
9031
  activeBridgeMonitor = null;
9003
9032
  if (experimentalConfig?.iframeTimeoutTelemetry) {
9004
- lateMeasurement = performanceClient.startMeasurement(WaitForBridgeLateResponse, correlationId);
9033
+ lateMeasurement = performanceClient.startMeasurement(WaitForBridgeLateResponse$1, correlationId);
9005
9034
  timedOut$1 = true;
9006
9035
  lateTimeoutId = window.setTimeout(() => {
9007
9036
  lateMeasurement?.end({ success: false });
@@ -9802,7 +9831,14 @@ const InitializeClientApplication = "initializeClientApplication";
9802
9831
  // Update cache storage
9803
9832
  const LocalStorageUpdated = "localStorageUpdated";
9804
9833
  // Load external tokens
9805
- const LoadExternalTokens = "loadExternalTokens";
9834
+ const LoadExternalTokens = "loadExternalTokens";
9835
+ /**
9836
+ * SSO capability verification call (msal-browser).
9837
+ * Fire-and-forget SSO verification call made after interactive authentication completes.
9838
+ */
9839
+ const SsoCapable = "ssoCapable";
9840
+ // Wait for late response from bridge after timeout has already occurred
9841
+ const WaitForBridgeLateResponse = "waitForBridgeLateResponse";
9806
9842
 
9807
9843
  var BrowserRootPerformanceEvents = /*#__PURE__*/Object.freeze({
9808
9844
  __proto__: null,
@@ -9814,7 +9850,9 @@ var BrowserRootPerformanceEvents = /*#__PURE__*/Object.freeze({
9814
9850
  InitializeClientApplication: InitializeClientApplication,
9815
9851
  LoadExternalTokens: LoadExternalTokens,
9816
9852
  LocalStorageUpdated: LocalStorageUpdated,
9817
- SsoSilent: SsoSilent
9853
+ SsoCapable: SsoCapable,
9854
+ SsoSilent: SsoSilent,
9855
+ WaitForBridgeLateResponse: WaitForBridgeLateResponse
9818
9856
  });
9819
9857
 
9820
9858
  /*
@@ -9824,8 +9862,8 @@ var BrowserRootPerformanceEvents = /*#__PURE__*/Object.freeze({
9824
9862
  const PREFIX = "msal";
9825
9863
  const BROWSER_PREFIX = "browser";
9826
9864
  const CACHE_KEY_SEPARATOR = "|";
9827
- const CREDENTIAL_SCHEMA_VERSION = 2;
9828
- const ACCOUNT_SCHEMA_VERSION = 2;
9865
+ const CREDENTIAL_SCHEMA_VERSION = 3;
9866
+ const ACCOUNT_SCHEMA_VERSION = 3;
9829
9867
  const LOG_LEVEL_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.level`;
9830
9868
  const LOG_PII_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.pii`;
9831
9869
  const BROWSER_PERF_ENABLED_KEY = `${PREFIX}.${BROWSER_PREFIX}.performance.enabled`;
@@ -9833,6 +9871,7 @@ const PLATFORM_AUTH_DOM_SUPPORT = `${PREFIX}.${BROWSER_PREFIX}.platform.auth.dom
9833
9871
  const VERSION_CACHE_KEY = `${PREFIX}.version`;
9834
9872
  const ACCOUNT_KEYS = "account.keys";
9835
9873
  const TOKEN_KEYS = "token.keys";
9874
+ const SSO_CAPABLE = `${PREFIX}.${BROWSER_PREFIX}.sso.capable`;
9836
9875
  function getAccountKeysCacheKey(schema = ACCOUNT_SCHEMA_VERSION) {
9837
9876
  if (schema < 1) {
9838
9877
  return `${PREFIX}.${ACCOUNT_KEYS}`;
@@ -10331,7 +10370,7 @@ const EventType = {
10331
10370
 
10332
10371
  /* eslint-disable header/header */
10333
10372
  const name = "@azure/msal-browser";
10334
- const version = "5.6.3";
10373
+ const version = "5.8.0";
10335
10374
 
10336
10375
  /*
10337
10376
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -10614,7 +10653,9 @@ class BrowserCacheManager extends CacheManager {
10614
10653
  }
10615
10654
  await this.setUserData(newIdTokenKey, JSON.stringify(oldSchemaData), correlationId, oldSchemaData.lastUpdatedAt, kmsi);
10616
10655
  this.performanceClient.incrementFields({ migratedITCount: 1 }, correlationId);
10617
- currentCredentialKeys.idToken.push(newIdTokenKey);
10656
+ if (!currentCredentialKeys.idToken.includes(newIdTokenKey)) {
10657
+ currentCredentialKeys.idToken.push(newIdTokenKey);
10658
+ }
10618
10659
  }
10619
10660
  }
10620
10661
  this.setTokenKeys(credentialKeysToMigrate, correlationId, credentialSchema);
@@ -11463,10 +11504,8 @@ class BrowserCacheManager extends CacheManager {
11463
11504
  return `${PREFIX}.${this.clientId}.${key}`;
11464
11505
  }
11465
11506
  /**
11466
- * Cache Key: msal.<schema_version>-<home_account_id>-<environment>-<credential_type>-<client_id or familyId>-<realm>-<scopes>-<claims hash>-<scheme>
11467
- * IdToken Example: uid.utid-login.microsoftonline.com-idtoken-app_client_id-contoso.com
11468
- * AccessToken Example: uid.utid-login.microsoftonline.com-accesstoken-app_client_id-contoso.com-scope1 scope2--pop
11469
- * RefreshToken Example: uid.utid-login.microsoftonline.com-refreshtoken-1-contoso.com
11507
+ * Generate Credential Key. All changes to the key REQUIRE a schema version update.
11508
+ * Cache Key: msal.<schema_version>|<home_account_id>|<environment>|<credential_type>|<client_id or familyId>|<realm>|<scopes>|<scheme>
11470
11509
  * @param credentialEntity
11471
11510
  * @returns
11472
11511
  */
@@ -12434,7 +12473,6 @@ const unsupportedMethod = "unsupported_method";
12434
12473
  const USER_INTERACTION_REQUIRED = "USER_INTERACTION_REQUIRED";
12435
12474
  const USER_CANCEL = "USER_CANCEL";
12436
12475
  const NO_NETWORK = "NO_NETWORK";
12437
- const PERSISTENT_ERROR = "PERSISTENT_ERROR";
12438
12476
  const DISABLED = "DISABLED";
12439
12477
  const ACCOUNT_UNAVAILABLE = "ACCOUNT_UNAVAILABLE";
12440
12478
  const UX_NOT_ALLOWED = "UX_NOT_ALLOWED";
@@ -12458,8 +12496,7 @@ class NativeAuthError extends AuthError {
12458
12496
  function isFatalNativeAuthError(error) {
12459
12497
  if (error.ext &&
12460
12498
  error.ext.status &&
12461
- (error.ext.status === PERSISTENT_ERROR ||
12462
- error.ext.status === DISABLED)) {
12499
+ error.ext.status === DISABLED) {
12463
12500
  return true;
12464
12501
  }
12465
12502
  if (error.ext &&
@@ -12585,12 +12622,12 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12585
12622
  async acquireToken(request, cacheLookupPolicy) {
12586
12623
  this.logger.trace("03qeos", this.correlationId);
12587
12624
  // start the perf measurement
12588
- const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken, request.correlationId);
12625
+ const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken, this.correlationId);
12589
12626
  const reqTimestamp = nowSeconds();
12590
12627
  const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
12591
12628
  try {
12592
12629
  // initialize native request
12593
- const nativeRequest = await this.initializeNativeRequest(request);
12630
+ const nativeRequest = await this.initializePlatformRequest(request);
12594
12631
  // check if the tokens can be retrieved from internal cache
12595
12632
  try {
12596
12633
  const result = await this.acquireTokensFromCache(this.accountId, nativeRequest);
@@ -12604,6 +12641,10 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12604
12641
  catch (e) {
12605
12642
  if (cacheLookupPolicy === CacheLookupPolicy.AccessToken) {
12606
12643
  this.logger.info("0eitbc", this.correlationId);
12644
+ nativeATMeasurement.end({
12645
+ success: false,
12646
+ brokerErrorCode: "cache_request_failed",
12647
+ });
12607
12648
  throw e;
12608
12649
  }
12609
12650
  // continue with a native call for any and all errors
@@ -12625,7 +12666,6 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12625
12666
  success: false,
12626
12667
  errorCode: error.errorCode,
12627
12668
  subErrorCode: error.subError,
12628
- isNativeBroker: true,
12629
12669
  });
12630
12670
  throw error;
12631
12671
  });
@@ -12634,6 +12674,9 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12634
12674
  if (e instanceof NativeAuthError) {
12635
12675
  serverTelemetryManager.setNativeBrokerErrorCode(e.errorCode);
12636
12676
  }
12677
+ nativeATMeasurement.end({
12678
+ success: false,
12679
+ });
12637
12680
  throw e;
12638
12681
  }
12639
12682
  }
@@ -12666,7 +12709,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12666
12709
  // fetch the account from browser cache
12667
12710
  const account = this.browserStorage.getBaseAccountInfo({
12668
12711
  nativeAccountId,
12669
- }, request.correlationId);
12712
+ }, this.correlationId);
12670
12713
  if (!account) {
12671
12714
  throw createClientAuthError(noAccountFound);
12672
12715
  }
@@ -12674,13 +12717,14 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12674
12717
  try {
12675
12718
  const silentRequest = this.createSilentCacheRequest(request, account);
12676
12719
  const result = await this.silentCacheClient.acquireToken(silentRequest);
12677
- const fullAccount = {
12678
- ...account,
12679
- idTokenClaims: result?.idTokenClaims,
12680
- idToken: result?.idToken,
12681
- };
12720
+ const idToken = this.browserStorage.getIdToken(account, this.correlationId, this.browserStorage.getTokenKeys(), account.tenantId);
12721
+ const idTokenClaims = extractTokenClaims(idToken?.secret || "", base64Decode);
12722
+ const fullAccount = updateAccountTenantProfileData(account, undefined, // tenantProfile optional
12723
+ idTokenClaims, idToken?.secret);
12682
12724
  return {
12683
12725
  ...result,
12726
+ idToken: idToken?.secret || "",
12727
+ idTokenClaims: idTokenClaims,
12684
12728
  account: fullAccount,
12685
12729
  };
12686
12730
  }
@@ -12696,7 +12740,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12696
12740
  */
12697
12741
  async acquireTokenRedirect(request, rootMeasurement, options) {
12698
12742
  this.logger.trace("0luikq", this.correlationId);
12699
- const nativeRequest = await this.initializeNativeRequest(request);
12743
+ const nativeRequest = await this.initializePlatformRequest(request);
12700
12744
  const navigateToLoginRequestUrl = options?.navigateToLoginRequestUrl ?? true;
12701
12745
  try {
12702
12746
  await this.platformAuthProvider.sendMessage(nativeRequest);
@@ -12728,7 +12772,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12728
12772
  * @param performanceClient {IPerformanceClient?}
12729
12773
  * @param correlationId {string?} correlation identifier
12730
12774
  */
12731
- async handleRedirectPromise(performanceClient, correlationId) {
12775
+ async handleRedirectPromise() {
12732
12776
  this.logger.trace("1c5lhw", this.correlationId);
12733
12777
  if (!this.browserStorage.isInteractionInProgress(true)) {
12734
12778
  this.logger.info("0le6uv", this.correlationId);
@@ -12738,9 +12782,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12738
12782
  const cachedRequest = this.browserStorage.getCachedNativeRequest();
12739
12783
  if (!cachedRequest) {
12740
12784
  this.logger.verbose("0a6zjb", this.correlationId);
12741
- if (performanceClient && correlationId) {
12742
- performanceClient?.addFields({ errorCode: "no_cached_request" }, correlationId);
12743
- }
12785
+ this.performanceClient?.addFields({ errorCode: "no_cached_request" }, this.correlationId);
12744
12786
  return null;
12745
12787
  }
12746
12788
  const { prompt, ...request } = cachedRequest;
@@ -12755,6 +12797,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12755
12797
  const authResult = await this.handleNativeResponse(response, request, reqTimestamp);
12756
12798
  const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
12757
12799
  serverTelemetryManager.clearNativeBrokerErrorCode();
12800
+ this.performanceClient?.addFields({ isNativeBroker: true }, this.correlationId);
12758
12801
  return authResult;
12759
12802
  }
12760
12803
  catch (e) {
@@ -12804,7 +12847,8 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12804
12847
  const result = await this.generateAuthenticationResult(response, request, idTokenClaims, baseAccount, authority.canonicalAuthority, reqTimestamp);
12805
12848
  // cache accounts and tokens in the appropriate storage
12806
12849
  await this.cacheAccount(baseAccount, isKmsi(idTokenClaims));
12807
- await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, response.access_token, result.tenantId, reqTimestamp);
12850
+ await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, result.tenantId, reqTimestamp, authority.getPreferredCache() // environment
12851
+ );
12808
12852
  return result;
12809
12853
  }
12810
12854
  /**
@@ -12943,8 +12987,8 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12943
12987
  * @param tenantId
12944
12988
  * @param reqTimestamp
12945
12989
  */
12946
- cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, responseAccessToken, tenantId, reqTimestamp) {
12947
- const cachedIdToken = createIdTokenEntity(homeAccountIdentifier, request.authority, response.id_token || "", request.clientId, idTokenClaims.tid || "");
12990
+ async cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, tenantId, reqTimestamp, environment) {
12991
+ const cachedIdToken = createIdTokenEntity(homeAccountIdentifier, environment, response.id_token || "", request.clientId, idTokenClaims.tid || "");
12948
12992
  // cache accessToken in inmemory storage
12949
12993
  const expiresIn = request.tokenType === AuthenticationScheme$1.POP
12950
12994
  ? SHR_NONCE_VALIDITY
@@ -12953,9 +12997,13 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
12953
12997
  : response.expires_in) || 0;
12954
12998
  const tokenExpirationSeconds = reqTimestamp + expiresIn;
12955
12999
  const responseScopes = this.generateScopes(response.scope, request.scope);
12956
- const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier, request.authority, responseAccessToken, request.clientId, idTokenClaims.tid || tenantId, responseScopes.printScopes(), tokenExpirationSeconds, 0, base64Decode, undefined, request.tokenType, undefined, request.keyId);
13000
+ const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier, environment, response.access_token, request.clientId, idTokenClaims.tid || tenantId, responseScopes.printScopes(), tokenExpirationSeconds, 0, base64Decode, undefined, request.tokenType, undefined, request.keyId);
13001
+ // save idtoken credential in configured browser storage
13002
+ if (!!cachedIdToken && request.storeInCache?.idToken !== false) {
13003
+ await this.browserStorage.setIdTokenCredential(cachedIdToken, this.correlationId, isKmsi(idTokenClaims));
13004
+ }
13005
+ // save access token credential in memory storage
12957
13006
  const nativeCacheRecord = {
12958
- idToken: cachedIdToken,
12959
13007
  accessToken: cachedAccessToken,
12960
13008
  };
12961
13009
  return this.nativeStorageManager.saveCacheRecord(nativeCacheRecord, this.correlationId, isKmsi(idTokenClaims), this.apiId, request.storeInCache);
@@ -13023,15 +13071,23 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
13023
13071
  * Translates developer provided request object into NativeRequest object
13024
13072
  * @param request
13025
13073
  */
13026
- async initializeNativeRequest(request) {
13027
- this.logger.trace("04j6wj", this.correlationId);
13074
+ async initializePlatformRequest(request) {
13075
+ this.logger.trace("1xdm2a", this.correlationId);
13028
13076
  const canonicalAuthority = await this.getCanonicalAuthority(request);
13077
+ // ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
13078
+ const configClaims = request.skipBrokerClaims && !!request.embeddedClientId
13079
+ ? undefined
13080
+ : this.config.auth.clientCapabilities;
13029
13081
  // scopes are expected to be received by the native broker as "scope" and will be added to the request below. Other properties that should be dropped from the request to the native broker can be included in the object destructuring here.
13030
- const { scopes, ...remainingProperties } = request;
13082
+ const { scopes, claims, ...remainingProperties } = request;
13031
13083
  const scopeSet = new ScopeSet(scopes || []);
13032
13084
  scopeSet.appendScopes(OIDC_DEFAULT_SCOPES$1);
13085
+ const mergedClaims = configClaims && configClaims.length
13086
+ ? addClientCapabilitiesToClaims$1(claims, configClaims)
13087
+ : claims;
13033
13088
  const validatedRequest = {
13034
13089
  ...remainingProperties,
13090
+ claims: mergedClaims,
13035
13091
  accountId: this.accountId,
13036
13092
  clientId: this.config.auth.clientId,
13037
13093
  authority: canonicalAuthority.urlString,
@@ -13101,12 +13157,12 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
13101
13157
  switch (this.apiId) {
13102
13158
  case ApiId.ssoSilent:
13103
13159
  case ApiId.acquireTokenSilent_silentFlow:
13104
- this.logger.trace("1hiwaz", this.correlationId);
13160
+ this.logger.trace("12n1y2", this.correlationId);
13105
13161
  return PromptValue$1.NONE;
13106
13162
  }
13107
13163
  // Prompt not provided, request may proceed and native broker decides if it needs to prompt
13108
13164
  if (!prompt) {
13109
- this.logger.trace("1qlu04", this.correlationId);
13165
+ this.logger.trace("0uid1p", this.correlationId);
13110
13166
  return undefined;
13111
13167
  }
13112
13168
  // If request is interactive, check if prompt provided is allowed to go directly to native broker
@@ -13114,10 +13170,10 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
13114
13170
  case PromptValue$1.NONE:
13115
13171
  case PromptValue$1.CONSENT:
13116
13172
  case PromptValue$1.LOGIN:
13117
- this.logger.trace("1ynje4", this.correlationId);
13173
+ this.logger.trace("0i0hco", this.correlationId);
13118
13174
  return prompt;
13119
13175
  default:
13120
- this.logger.trace("0nkr6q", this.correlationId);
13176
+ this.logger.trace("0w3tpw", this.correlationId);
13121
13177
  throw createBrowserAuthError(nativePromptNotSupported);
13122
13178
  }
13123
13179
  }
@@ -13153,7 +13209,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
13153
13209
  this.performanceClient?.addFields({
13154
13210
  embeddedClientId: child_client_id,
13155
13211
  embeddedRedirectUri: child_redirect_uri,
13156
- }, request.correlationId);
13212
+ }, this.correlationId);
13157
13213
  }
13158
13214
  }
13159
13215
 
@@ -13240,6 +13296,10 @@ async function getStandardParameters(config, authority, request, logger, perform
13240
13296
  if (request.platformBroker) {
13241
13297
  // signal ests that this is a WAM call
13242
13298
  addNativeBroker(parameters);
13299
+ // instrument JS-platform bridge specific fields
13300
+ performanceClient.addFields({
13301
+ isPlatformAuthorizeRequest: true,
13302
+ }, request.correlationId);
13243
13303
  // pass the req_cnf for POP
13244
13304
  if (request.authenticationScheme === AuthenticationScheme$1.POP) {
13245
13305
  const cryptoOps = new CryptoOps(logger, performanceClient);
@@ -13709,6 +13769,7 @@ function buildConfiguration({ auth: userInputAuth, cache: userInputCache, system
13709
13769
  },
13710
13770
  instanceAware: false,
13711
13771
  isMcp: false,
13772
+ verifySSO: false,
13712
13773
  };
13713
13774
  // Default cache options for browser
13714
13775
  const DEFAULT_CACHE_OPTIONS = {
@@ -13803,7 +13864,7 @@ class PlatformAuthExtensionHandler {
13803
13864
  this.messageChannel = new MessageChannel();
13804
13865
  this.windowListener = this.onWindowMessage.bind(this); // Window event callback doesn't have access to 'this' unless it's bound
13805
13866
  this.performanceClient = performanceClient;
13806
- this.handshakeEvent = performanceClient.startMeasurement(NativeMessageHandlerHandshake);
13867
+ this.handshakeEvent = this.performanceClient.startMeasurement(NativeMessageHandlerHandshake);
13807
13868
  this.platformAuthType =
13808
13869
  PlatformAuthConstants.PLATFORM_EXTENSION_PROVIDER;
13809
13870
  }
@@ -14261,7 +14322,7 @@ function isDomEnabledForPlatformAuth() {
14261
14322
  }
14262
14323
  }
14263
14324
  /**
14264
- * Returns boolean indicating whether or not the request should attempt to use native broker
14325
+ * Returns boolean indicating whether or not the request should attempt to use platform broker
14265
14326
  * @param logger
14266
14327
  * @param config
14267
14328
  * @param correlationId
@@ -14543,6 +14604,10 @@ class PopupClient extends StandardInteractionClient {
14543
14604
  return;
14544
14605
  }
14545
14606
  }
14607
+ // Redirect bridge requires "state" param to work properly
14608
+ validRequest.state = setRequestState(this.browserCrypto, validRequest.state || "", {
14609
+ interactionType: exports.InteractionType.Popup,
14610
+ });
14546
14611
  // Create logout string and navigate user window to logout.
14547
14612
  const logoutUri = authClient.getLogoutUri(validRequest);
14548
14613
  this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, validRequest.correlationId, exports.InteractionType.Popup, validRequest);
@@ -15083,6 +15148,10 @@ class RedirectClient extends StandardInteractionClient {
15083
15148
  }
15084
15149
  }
15085
15150
  }
15151
+ // Redirect bridge requires "state" param to work properly
15152
+ validLogoutRequest.state = setRequestState(this.browserCrypto, validLogoutRequest.state || "", {
15153
+ interactionType: exports.InteractionType.Redirect,
15154
+ });
15086
15155
  // Create logout string and navigate user window to logout.
15087
15156
  const logoutUri = authClient.getLogoutUri(validLogoutRequest);
15088
15157
  if (validLogoutRequest.account?.homeAccountId) {
@@ -15331,6 +15400,38 @@ class SilentIframeClient extends StandardInteractionClient {
15331
15400
  return invokeAsync(handleResponseEAR, HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15332
15401
  }
15333
15402
  }
15403
+ /**
15404
+ * Verifies SSO capability by making an iframe request to /authorize without exchanging the code for tokens.
15405
+ * This is useful for verifying SSO capability in the background without the overhead of a full token exchange.
15406
+ * @param request - The SSO silent request
15407
+ * @returns true if SSO verification was successful with a valid authorization code, false otherwise
15408
+ */
15409
+ async verifySso(request) {
15410
+ const inputRequest = { ...request };
15411
+ if (!inputRequest.prompt) {
15412
+ inputRequest.prompt = PromptValue$1.NONE;
15413
+ }
15414
+ // Create silent request
15415
+ const silentRequest = await invokeAsync(initializeAuthorizationRequest, StandardInteractionClientInitializeAuthorizationRequest, this.logger, this.performanceClient, this.correlationId)(inputRequest, exports.InteractionType.Silent, this.config, this.browserCrypto, this.browserStorage, this.logger, this.performanceClient, this.correlationId);
15416
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, this.correlationId)({
15417
+ serverTelemetryManager: initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger),
15418
+ requestAuthority: silentRequest.authority,
15419
+ requestAzureCloudOptions: silentRequest.azureCloudOptions,
15420
+ requestExtraQueryParameters: silentRequest.extraQueryParameters,
15421
+ account: silentRequest.account,
15422
+ });
15423
+ const { serverParams } = await this.silentAuthorizeHelper(authClient, silentRequest);
15424
+ const correlationId = silentRequest.correlationId;
15425
+ // Validate the response - this checks for errors and validates state
15426
+ validateAuthorizationResponse(serverParams, silentRequest.state);
15427
+ // Verify a valid authorization code is present
15428
+ if (!serverParams.code) {
15429
+ this.logger.warning("0y34ti", correlationId);
15430
+ return false;
15431
+ }
15432
+ this.logger.verbose("0kkkcj", correlationId);
15433
+ return true;
15434
+ }
15334
15435
  /**
15335
15436
  * Currently Unsupported
15336
15437
  */
@@ -15345,6 +15446,16 @@ class SilentIframeClient extends StandardInteractionClient {
15345
15446
  * @param userRequestScopes
15346
15447
  */
15347
15448
  async silentTokenHelper(authClient, request) {
15449
+ const { serverParams, pkceCodes } = await this.silentAuthorizeHelper(authClient, request);
15450
+ return invokeAsync(handleResponseCode, HandleResponseCode, this.logger, this.performanceClient, request.correlationId)(request, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15451
+ }
15452
+ /**
15453
+ * Shared helper that generates PKCE codes, builds the /authorize URL,
15454
+ * loads it in a hidden iframe, waits for the redirect-bridge response,
15455
+ * and returns the deserialized server parameters along with the PKCE codes
15456
+ * and the request that was sent.
15457
+ */
15458
+ async silentAuthorizeHelper(authClient, request) {
15348
15459
  const correlationId = request.correlationId;
15349
15460
  const pkceCodes = await invokeAsync(generatePkceCodes, GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
15350
15461
  const silentRequest = {
@@ -15371,7 +15482,7 @@ class SilentIframeClient extends StandardInteractionClient {
15371
15482
  invoke(removeHiddenIframe, RemoveHiddenIframe, this.logger, this.performanceClient, correlationId)(iframe);
15372
15483
  }
15373
15484
  const serverParams = invoke(deserializeResponse, DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger, this.correlationId);
15374
- return invokeAsync(handleResponseCode, HandleResponseCode, this.logger, this.performanceClient, correlationId)(request, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15485
+ return { serverParams, pkceCodes, silentRequest };
15375
15486
  }
15376
15487
  }
15377
15488
 
@@ -15750,22 +15861,25 @@ class StandardController {
15750
15861
  }
15751
15862
  const loggedInAccounts = this.getAllAccounts();
15752
15863
  const platformBrokerRequest = this.browserStorage.getCachedNativeRequest();
15753
- const useNative = platformBrokerRequest &&
15754
- this.platformAuthProvider &&
15755
- !options?.hash;
15864
+ const useNative = platformBrokerRequest && !options?.hash;
15756
15865
  let rootMeasurement;
15757
15866
  let redirectResponse;
15867
+ let cachedRedirectRequest;
15758
15868
  try {
15759
15869
  if (useNative && this.platformAuthProvider) {
15760
15870
  const correlationId = platformBrokerRequest?.correlationId || "";
15761
15871
  this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, exports.InteractionType.Redirect);
15762
15872
  rootMeasurement = this.performanceClient.startMeasurement(AcquireTokenRedirect, correlationId);
15763
15873
  this.logger.trace("12v7is", correlationId);
15874
+ rootMeasurement.add({
15875
+ isPlatformBrokerRequest: true,
15876
+ });
15764
15877
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.handleRedirectPromise, this.performanceClient, this.platformAuthProvider, platformBrokerRequest.accountId, this.nativeInternalStorage, platformBrokerRequest.correlationId);
15765
- redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)(this.performanceClient, rootMeasurement.event.correlationId);
15878
+ redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)();
15766
15879
  }
15767
15880
  else {
15768
15881
  const [standardRequest, codeVerifier] = this.browserStorage.getCachedRequest("");
15882
+ cachedRedirectRequest = standardRequest;
15769
15883
  const correlationId = standardRequest.correlationId;
15770
15884
  this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, exports.InteractionType.Redirect);
15771
15885
  // Reset rootMeasurement now that we have correlationId
@@ -15794,6 +15908,8 @@ class StandardController {
15794
15908
  rootMeasurement.end({
15795
15909
  success: true,
15796
15910
  }, undefined, result.account);
15911
+ // Fire-and-forget SSO capability verification in background
15912
+ this.verifySsoCapability(cachedRedirectRequest, exports.InteractionType.Redirect);
15797
15913
  }
15798
15914
  else {
15799
15915
  /*
@@ -15859,12 +15975,14 @@ class StandardController {
15859
15975
  if (this.platformAuthProvider &&
15860
15976
  this.canUsePlatformBroker(request)) {
15861
15977
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.acquireTokenRedirect, this.performanceClient, this.platformAuthProvider, this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
15862
- result = nativeClient
15863
- .acquireTokenRedirect(request, atrMeasurement)
15864
- .catch((e) => {
15978
+ result = invokeAsync(nativeClient.acquireTokenRedirect.bind(nativeClient), NativeInteractionClientAcquireTokenRedirect, this.logger, this.performanceClient, correlationId)(request, atrMeasurement).catch((e) => {
15979
+ atrMeasurement.add({
15980
+ brokerErrorName: e.name,
15981
+ brokerErrorCode: e.errorCode,
15982
+ });
15865
15983
  if (e instanceof NativeAuthError &&
15866
15984
  isFatalNativeAuthError(e)) {
15867
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
15985
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
15868
15986
  const redirectClient = this.createRedirectClient(correlationId);
15869
15987
  return redirectClient.acquireToken(request);
15870
15988
  }
@@ -15930,6 +16048,9 @@ class StandardController {
15930
16048
  let result;
15931
16049
  const pkce = this.getPreGeneratedPkceCodes(correlationId);
15932
16050
  if (this.canUsePlatformBroker(request)) {
16051
+ atPopupMeasurement.add({
16052
+ isPlatformBrokerRequest: true,
16053
+ });
15933
16054
  result = this.acquireTokenNative({
15934
16055
  ...request,
15935
16056
  correlationId,
@@ -15942,9 +16063,13 @@ class StandardController {
15942
16063
  return response;
15943
16064
  })
15944
16065
  .catch((e) => {
16066
+ atPopupMeasurement.add({
16067
+ brokerErrorName: e.name,
16068
+ brokerErrorCode: e.errorCode,
16069
+ });
15945
16070
  if (e instanceof NativeAuthError &&
15946
16071
  isFatalNativeAuthError(e)) {
15947
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
16072
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
15948
16073
  const popupClient = this.createPopupClient(correlationId);
15949
16074
  return popupClient.acquireToken(request, pkce);
15950
16075
  }
@@ -15975,6 +16100,8 @@ class StandardController {
15975
16100
  accessTokenSize: result.accessToken.length,
15976
16101
  idTokenSize: result.idToken.length,
15977
16102
  }, undefined, result.account);
16103
+ // SSO capability verification in background
16104
+ this.verifySsoCapability(request, exports.InteractionType.Popup);
15978
16105
  return result;
15979
16106
  })
15980
16107
  .catch((e) => {
@@ -16027,6 +16154,103 @@ class StandardController {
16027
16154
  window.removeEventListener("online", listener);
16028
16155
  window.removeEventListener("offline", listener);
16029
16156
  }
16157
+ /**
16158
+ * Reads the cached ssoCapable value from localStorage.
16159
+ * @returns The cached ssoCapable boolean value, or undefined if not cached or expired.
16160
+ */
16161
+ getCachedSsoCapable() {
16162
+ try {
16163
+ const cachedValue = window.localStorage.getItem(SSO_CAPABLE);
16164
+ if (cachedValue) {
16165
+ const parsed = JSON.parse(cachedValue);
16166
+ if (parsed &&
16167
+ typeof parsed.ssoCapable === "boolean" &&
16168
+ parsed.expiresOn &&
16169
+ Date.now() < parsed.expiresOn) {
16170
+ return parsed.ssoCapable;
16171
+ }
16172
+ }
16173
+ }
16174
+ catch {
16175
+ // If parsing fails, return undefined
16176
+ }
16177
+ return undefined;
16178
+ }
16179
+ /**
16180
+ * SSO capability verification in the background.
16181
+ * This method makes an iframe request to /authorize to verify SSO capability without calling /token.
16182
+ * This method does not block the caller and tracks telemetry for success/failure.
16183
+ * This method only executes if verifySSO is set to true in the auth configuration.
16184
+ * The result is cached in localStorage with a 24-hour TTL; the SSO verification call
16185
+ * is only attempted when the cached value is absent or expired.
16186
+ * @param request - The original request used for the authentication flow
16187
+ * @param interactionType - The interactionType of the AT operation for logging purposes
16188
+ */
16189
+ verifySsoCapability(request, interactionType) {
16190
+ // Check if SSO capability verification is enabled
16191
+ if (!this.config.auth.verifySSO) {
16192
+ return;
16193
+ }
16194
+ // Check TTL: derive ssoCapable state from localStorage and skip if not expired
16195
+ const ssoCacheKey = SSO_CAPABLE;
16196
+ const SSO_CAPABLE_TTL_MS = 24 * 60 * 60 * 1000; // 24 hours
16197
+ const cachedSsoCapable = this.getCachedSsoCapable();
16198
+ if (cachedSsoCapable !== undefined) {
16199
+ this.logger.verbose("13poou", "");
16200
+ return;
16201
+ }
16202
+ const correlationId = createNewGuid();
16203
+ const ssoCapableMeasurement = this.performanceClient.startMeasurement(SsoCapable, correlationId);
16204
+ ssoCapableMeasurement.add({
16205
+ "ext.interactionType": interactionType,
16206
+ });
16207
+ this.logger.verbose("0pbr0i", correlationId);
16208
+ /*
16209
+ * Use setTimeout to ensure this runs in a separate macrotask after the current call stack completes
16210
+ * This ensures the result is returned to the caller before the SSO verification starts and doesn't affect performance
16211
+ */
16212
+ setTimeout(() => {
16213
+ const ssoVerificationRequest = {
16214
+ ...request,
16215
+ correlationId: correlationId,
16216
+ };
16217
+ const silentIframeClient = this.createSilentIframeClient(correlationId);
16218
+ silentIframeClient
16219
+ .verifySso(ssoVerificationRequest)
16220
+ .then((result) => {
16221
+ this.logger.verbose("1gd1iv", correlationId);
16222
+ // TBD to add profileTelemetry later in localStorage with 24h TTL
16223
+ try {
16224
+ const cacheEntry = JSON.stringify({
16225
+ ssoCapable: result,
16226
+ expiresOn: Date.now() + SSO_CAPABLE_TTL_MS,
16227
+ });
16228
+ window.localStorage.setItem(ssoCacheKey, cacheEntry);
16229
+ }
16230
+ catch {
16231
+ this.logger.warning("18lmoj", correlationId);
16232
+ }
16233
+ ssoCapableMeasurement.end({
16234
+ fromCache: false,
16235
+ success: result,
16236
+ }, undefined);
16237
+ })
16238
+ .catch((error) => {
16239
+ this.logger.warning("05g83w", correlationId);
16240
+ // reset the cache
16241
+ try {
16242
+ window.localStorage.removeItem(ssoCacheKey);
16243
+ }
16244
+ catch {
16245
+ this.logger.warning("0nlf9q", correlationId);
16246
+ }
16247
+ ssoCapableMeasurement.end({
16248
+ fromCache: false,
16249
+ success: false,
16250
+ }, error);
16251
+ });
16252
+ }, 0);
16253
+ }
16030
16254
  // #endregion
16031
16255
  // #region Silent Flow
16032
16256
  /**
@@ -16048,13 +16272,12 @@ class StandardController {
16048
16272
  const correlationId = this.getRequestCorrelationId(request);
16049
16273
  const validRequest = {
16050
16274
  ...request,
16051
- // will be PromptValue.NONE or PromptValue.NO_SESSION
16052
- prompt: request.prompt,
16053
16275
  correlationId: correlationId,
16054
16276
  };
16055
16277
  this.ssoSilentMeasurement = this.performanceClient.startMeasurement(SsoSilent, correlationId);
16056
16278
  this.ssoSilentMeasurement?.add({
16057
16279
  scenarioId: request.scenarioId,
16280
+ ssoCapable: this.getCachedSsoCapable(),
16058
16281
  });
16059
16282
  preflightCheck(this.initialized, this.ssoSilentMeasurement, this.config, validRequest);
16060
16283
  this.ssoSilentMeasurement?.increment({
@@ -16067,10 +16290,17 @@ class StandardController {
16067
16290
  this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Silent, validRequest);
16068
16291
  let result;
16069
16292
  if (this.canUsePlatformBroker(validRequest)) {
16293
+ this.ssoSilentMeasurement?.add({
16294
+ isPlatformBrokerRequest: true,
16295
+ });
16070
16296
  result = this.acquireTokenNative(validRequest, ApiId.ssoSilent).catch((e) => {
16297
+ this.ssoSilentMeasurement?.add({
16298
+ brokerErrorName: e.name,
16299
+ brokerErrorCode: e.errorCode,
16300
+ });
16071
16301
  // If native token acquisition fails for availability reasons fallback to standard flow
16072
16302
  if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
16073
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
16303
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
16074
16304
  const silentIframeClient = this.createSilentIframeClient(validRequest.correlationId);
16075
16305
  return silentIframeClient.acquireToken(validRequest);
16076
16306
  }
@@ -16143,7 +16373,6 @@ class StandardController {
16143
16373
  this.hybridAuthCodeResponses.delete(hybridAuthCode);
16144
16374
  atbcMeasurement.end({
16145
16375
  success: true,
16146
- isNativeBroker: result.fromPlatformBroker,
16147
16376
  accessTokenSize: result.accessToken.length,
16148
16377
  idTokenSize: result.idToken.length,
16149
16378
  }, undefined, result.account);
@@ -16167,10 +16396,17 @@ class StandardController {
16167
16396
  }
16168
16397
  else if (request.nativeAccountId) {
16169
16398
  if (this.canUsePlatformBroker(request, request.nativeAccountId)) {
16399
+ atbcMeasurement.add({
16400
+ isPlatformBrokerRequest: true,
16401
+ });
16170
16402
  const result = await this.acquireTokenNative({
16171
16403
  ...request,
16172
16404
  correlationId,
16173
16405
  }, ApiId.acquireTokenByCode, request.nativeAccountId).catch((e) => {
16406
+ atbcMeasurement.add({
16407
+ brokerErrorName: e.name,
16408
+ brokerErrorCode: e.errorCode,
16409
+ });
16174
16410
  // If native token acquisition fails for availability reasons fallback to standard flow
16175
16411
  if (e instanceof NativeAuthError &&
16176
16412
  isFatalNativeAuthError(e)) {
@@ -16221,7 +16457,6 @@ class StandardController {
16221
16457
  this.acquireTokenByCodeAsyncMeasurement?.end({
16222
16458
  success: true,
16223
16459
  fromCache: response.fromCache,
16224
- isNativeBroker: response.fromPlatformBroker,
16225
16460
  });
16226
16461
  return response;
16227
16462
  })
@@ -16370,9 +16605,25 @@ class StandardController {
16370
16605
  const accountEntity = createAccountEntityFromAccountInfo(result.account, result.cloudGraphHostName, result.msGraphHost);
16371
16606
  await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims), ApiId.hydrateCache);
16372
16607
  if (result.fromPlatformBroker) {
16373
- this.logger.verbose("1fxyu8", result.correlationId);
16374
- // Tokens from native broker are stored in-memory
16375
- return this.nativeInternalStorage.hydrateCache(result, request);
16608
+ this.logger.verbose("1i5atf", result.correlationId);
16609
+ // Create idToken entity and store in browser storage
16610
+ const idTokenEntity = createIdTokenEntity(result.account.homeAccountId, result.account.environment, result.idToken, this.config.auth.clientId, result.tenantId);
16611
+ // Create accessToken entity and store in native internal storage
16612
+ const accessTokenEntity = createAccessTokenEntity(result.account.homeAccountId, result.account.environment, result.accessToken, this.config.auth.clientId, result.tenantId, result.scopes.join(" "), result.expiresOn
16613
+ ? toSecondsFromDate(result.expiresOn)
16614
+ : 0, result.extExpiresOn
16615
+ ? toSecondsFromDate(result.extExpiresOn)
16616
+ : 0, base64Decode, undefined, // refreshOn
16617
+ result.tokenType, undefined, // userAssertionHash
16618
+ request.sshKid);
16619
+ if (request.resource) {
16620
+ accessTokenEntity.resource = request.resource;
16621
+ }
16622
+ const kmsi = isKmsi(result.idTokenClaims);
16623
+ // Store idToken in browser storage
16624
+ await this.browserStorage.setIdTokenCredential(idTokenEntity, result.correlationId, kmsi);
16625
+ // Store accessToken in native internal storage
16626
+ await this.nativeInternalStorage.setAccessTokenCredential(accessTokenEntity, result.correlationId, kmsi);
16376
16627
  }
16377
16628
  else {
16378
16629
  return this.browserStorage.hydrateCache(result, request);
@@ -16390,7 +16641,7 @@ class StandardController {
16390
16641
  throw createBrowserAuthError(nativeConnectionNotEstablished);
16391
16642
  }
16392
16643
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, apiId, this.performanceClient, this.platformAuthProvider, accountId || this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
16393
- return nativeClient.acquireToken(request, cacheLookupPolicy);
16644
+ return invokeAsync(nativeClient.acquireToken.bind(nativeClient), NativeInteractionClientAcquireToken, this.logger, this.performanceClient, correlationId)(request, cacheLookupPolicy);
16394
16645
  }
16395
16646
  /**
16396
16647
  * Returns boolean indicating if this request can use the platform broker
@@ -16404,7 +16655,7 @@ class StandardController {
16404
16655
  return false;
16405
16656
  }
16406
16657
  if (!isPlatformAuthAllowed(this.config, this.logger, correlationId, this.platformAuthProvider, request.authenticationScheme)) {
16407
- this.logger.trace("1m4bzf", correlationId);
16658
+ this.logger.trace("0yoy1g", correlationId);
16408
16659
  return false;
16409
16660
  }
16410
16661
  if (request.prompt) {
@@ -16436,7 +16687,9 @@ class StandardController {
16436
16687
  loginHint: request.loginHint,
16437
16688
  sid: request.sid,
16438
16689
  }) ||
16439
- this.getActiveAccount();
16690
+ (!request.loginHint && !request.sid
16691
+ ? this.getActiveAccount()
16692
+ : null);
16440
16693
  return (account && account.nativeAccountId) || "";
16441
16694
  }
16442
16695
  /**
@@ -16623,6 +16876,7 @@ class StandardController {
16623
16876
  atsMeasurement.add({
16624
16877
  cacheLookupPolicy: request.cacheLookupPolicy,
16625
16878
  scenarioId: request.scenarioId,
16879
+ ssoCapable: this.getCachedSsoCapable(),
16626
16880
  });
16627
16881
  preflightCheck(this.initialized, atsMeasurement, this.config, request);
16628
16882
  this.logger.verbose("0x1c4s", correlationId);
@@ -16635,7 +16889,6 @@ class StandardController {
16635
16889
  atsMeasurement.end({
16636
16890
  success: true,
16637
16891
  fromCache: result.fromCache,
16638
- isNativeBroker: result.fromPlatformBroker,
16639
16892
  accessTokenSize: result.accessToken.length,
16640
16893
  idTokenSize: result.idToken.length,
16641
16894
  }, undefined, result.account);
@@ -16795,7 +17048,12 @@ class StandardController {
16795
17048
  if (isPlatformAuthAllowed(this.config, this.logger, silentRequest.correlationId, this.platformAuthProvider, silentRequest.authenticationScheme) &&
16796
17049
  silentRequest.account.nativeAccountId) {
16797
17050
  this.logger.verbose("0sczo4", silentRequest.correlationId);
17051
+ this.performanceClient.addFields({ isPlatformBrokerRequest: true }, silentRequest.correlationId);
16798
17052
  return this.acquireTokenNative(silentRequest, ApiId.acquireTokenSilent_silentFlow, silentRequest.account.nativeAccountId, cacheLookupPolicy).catch(async (e) => {
17053
+ this.performanceClient.addFields({
17054
+ brokerErrorName: e.name,
17055
+ brokerErrorCode: e.errorCode,
17056
+ }, silentRequest.correlationId);
16799
17057
  // If native token acquisition fails for availability reasons fallback to web flow
16800
17058
  if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
16801
17059
  this.logger.verbose("07rkmb", silentRequest.correlationId);