@azure/msal-browser 5.6.3 → 5.8.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +0 -1
- package/dist/app/IPublicClientApplication.mjs +1 -1
- package/dist/app/PublicClientApplication.mjs +1 -1
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
- package/dist/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
- package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
- package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
- package/dist/cache/AccountManager.mjs +1 -1
- package/dist/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/cache/BrowserCacheManager.d.ts +2 -4
- package/dist/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/cache/BrowserCacheManager.mjs +6 -6
- package/dist/cache/BrowserCacheManager.mjs.map +1 -1
- package/dist/cache/CacheHelpers.mjs +1 -1
- package/dist/cache/CacheKeys.d.ts +3 -2
- package/dist/cache/CacheKeys.d.ts.map +1 -1
- package/dist/cache/CacheKeys.mjs +5 -4
- package/dist/cache/CacheKeys.mjs.map +1 -1
- package/dist/cache/CookieStorage.mjs +1 -1
- package/dist/cache/DatabaseStorage.mjs +1 -1
- package/dist/cache/EncryptedData.mjs +1 -1
- package/dist/cache/LocalStorage.mjs +1 -1
- package/dist/cache/MemoryStorage.mjs +1 -1
- package/dist/cache/SessionStorage.mjs +1 -1
- package/dist/cache/TokenCache.mjs +1 -1
- package/dist/config/Configuration.d.ts +7 -0
- package/dist/config/Configuration.d.ts.map +1 -1
- package/dist/config/Configuration.mjs +2 -1
- package/dist/config/Configuration.mjs.map +1 -1
- package/dist/controllers/NestedAppAuthController.mjs +1 -1
- package/dist/controllers/StandardController.d.ts +16 -0
- package/dist/controllers/StandardController.d.ts.map +1 -1
- package/dist/controllers/StandardController.mjs +174 -25
- package/dist/controllers/StandardController.mjs.map +1 -1
- package/dist/crypto/BrowserCrypto.mjs +1 -1
- package/dist/crypto/CryptoOps.mjs +1 -1
- package/dist/crypto/PkceGenerator.mjs +1 -1
- package/dist/crypto/SignedHttpRequest.mjs +1 -1
- package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
- package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
- package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
- package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts +2 -4
- package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +6 -6
- package/dist/custom-auth-path/cache/BrowserCacheManager.mjs.map +1 -1
- package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
- package/dist/custom-auth-path/cache/CacheKeys.d.ts +3 -2
- package/dist/custom-auth-path/cache/CacheKeys.d.ts.map +1 -1
- package/dist/custom-auth-path/cache/CacheKeys.mjs +5 -4
- package/dist/custom-auth-path/cache/CacheKeys.mjs.map +1 -1
- package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
- package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
- package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
- package/dist/custom-auth-path/config/Configuration.d.ts +7 -0
- package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
- package/dist/custom-auth-path/config/Configuration.mjs +2 -1
- package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.d.ts +16 -0
- package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
- package/dist/custom-auth-path/controllers/StandardController.mjs +174 -25
- package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
- package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
- package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
- package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
- package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
- package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/error/NativeAuthError.d.ts.map +1 -1
- package/dist/custom-auth-path/error/NativeAuthError.mjs +3 -4
- package/dist/custom-auth-path/error/NativeAuthError.mjs.map +1 -1
- package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
- package/dist/custom-auth-path/event/EventType.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
- package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs +6 -2
- package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +6 -2
- package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +14 -0
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +45 -3
- package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
- package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/custom-auth-path/log-strings-mapping.json +49 -17
- package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
- package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
- package/dist/custom-auth-path/packageMetadata.mjs +2 -2
- package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs +5 -1
- package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
- package/dist/custom-auth-path/redirect_bridge/index.d.ts.map +1 -1
- package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
- package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs +3 -2
- package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs +8 -3
- package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
- package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
- package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
- package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
- package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/dist/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/dist/encode/Base64Decode.mjs +1 -1
- package/dist/encode/Base64Encode.mjs +1 -1
- package/dist/error/BrowserAuthError.mjs +1 -1
- package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
- package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
- package/dist/error/NativeAuthError.d.ts.map +1 -1
- package/dist/error/NativeAuthError.mjs +3 -4
- package/dist/error/NativeAuthError.mjs.map +1 -1
- package/dist/error/NativeAuthErrorCodes.mjs +1 -1
- package/dist/error/NestedAppAuthError.mjs +1 -1
- package/dist/event/EventHandler.mjs +1 -1
- package/dist/event/EventMessage.mjs +1 -1
- package/dist/event/EventType.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
- package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
- package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
- package/dist/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/interaction_client/PopupClient.mjs +6 -2
- package/dist/interaction_client/PopupClient.mjs.map +1 -1
- package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/interaction_client/RedirectClient.mjs +6 -2
- package/dist/interaction_client/RedirectClient.mjs.map +1 -1
- package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
- package/dist/interaction_client/SilentCacheClient.mjs +1 -1
- package/dist/interaction_client/SilentIframeClient.d.ts +14 -0
- package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/interaction_client/SilentIframeClient.mjs +45 -3
- package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
- package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
- package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
- package/dist/interaction_handler/InteractionHandler.mjs +1 -1
- package/dist/interaction_handler/SilentHandler.mjs +1 -1
- package/dist/log-strings-mapping.json +49 -17
- package/dist/naa/BridgeError.mjs +1 -1
- package/dist/naa/BridgeProxy.mjs +1 -1
- package/dist/naa/BridgeStatusCode.mjs +1 -1
- package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
- package/dist/navigation/NavigationClient.mjs +1 -1
- package/dist/network/FetchClient.mjs +1 -1
- package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
- package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
- package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.d.ts.map +1 -1
- package/dist/protocol/Authorize.mjs +5 -1
- package/dist/protocol/Authorize.mjs.map +1 -1
- package/dist/redirect-bridge/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts +2 -4
- package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts.map +1 -1
- package/dist/redirect-bridge/cache/CacheKeys.d.ts +3 -2
- package/dist/redirect-bridge/cache/CacheKeys.d.ts.map +1 -1
- package/dist/redirect-bridge/cache/CacheKeys.mjs +1 -1
- package/dist/redirect-bridge/config/Configuration.d.ts +7 -0
- package/dist/redirect-bridge/config/Configuration.d.ts.map +1 -1
- package/dist/redirect-bridge/config/Configuration.mjs +1 -1
- package/dist/redirect-bridge/controllers/StandardController.d.ts +16 -0
- package/dist/redirect-bridge/controllers/StandardController.d.ts.map +1 -1
- package/dist/redirect-bridge/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/dist/redirect-bridge/encode/Base64Decode.mjs +1 -1
- package/dist/redirect-bridge/error/BrowserAuthError.mjs +1 -1
- package/dist/redirect-bridge/error/BrowserAuthErrorCodes.mjs +1 -1
- package/dist/redirect-bridge/error/NativeAuthError.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/PopupClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/RedirectClient.d.ts.map +1 -1
- package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts +14 -0
- package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/dist/redirect-bridge/navigation/NavigationClient.mjs +1 -1
- package/dist/redirect-bridge/packageMetadata.d.ts +1 -1
- package/dist/redirect-bridge/protocol/Authorize.d.ts.map +1 -1
- package/dist/redirect-bridge/redirect_bridge/index.d.ts.map +1 -1
- package/dist/redirect-bridge/redirect_bridge/index.mjs +11 -7
- package/dist/redirect-bridge/redirect_bridge/index.mjs.map +1 -1
- package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/dist/redirect-bridge/utils/BrowserConstants.mjs +7 -3
- package/dist/redirect-bridge/utils/BrowserConstants.mjs.map +1 -1
- package/dist/redirect-bridge/utils/BrowserUtils.mjs +1 -1
- package/dist/redirect_bridge/index.d.ts.map +1 -1
- package/dist/request/RequestHelpers.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
- package/dist/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/dist/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/dist/telemetry/BrowserPerformanceEvents.mjs +3 -2
- package/dist/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
- package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
- package/dist/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/dist/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/dist/telemetry/BrowserRootPerformanceEvents.mjs +10 -3
- package/dist/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
- package/dist/utils/BrowserConstants.mjs +1 -1
- package/dist/utils/BrowserProtocolUtils.mjs +1 -1
- package/dist/utils/BrowserUtils.mjs +1 -1
- package/dist/utils/Helpers.mjs +1 -1
- package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
- package/lib/custom-auth-path/log-strings-mapping.json +49 -17
- package/lib/custom-auth-path/msal-custom-auth.cjs +418 -164
- package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
- package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts +2 -4
- package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts.map +1 -1
- package/lib/custom-auth-path/types/cache/CacheKeys.d.ts +3 -2
- package/lib/custom-auth-path/types/cache/CacheKeys.d.ts.map +1 -1
- package/lib/custom-auth-path/types/config/Configuration.d.ts +7 -0
- package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts +16 -0
- package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/lib/custom-auth-path/types/error/NativeAuthError.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +14 -0
- package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
- package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/custom-auth-path/types/redirect_bridge/index.d.ts.map +1 -1
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/lib/log-strings-mapping.json +49 -17
- package/lib/msal-browser.cjs +427 -169
- package/lib/msal-browser.cjs.map +1 -1
- package/lib/msal-browser.js +427 -169
- package/lib/msal-browser.js.map +1 -1
- package/lib/msal-browser.min.js +2 -2
- package/lib/redirect-bridge/msal-redirect-bridge.cjs +734 -0
- package/lib/redirect-bridge/msal-redirect-bridge.cjs.map +1 -0
- package/lib/redirect-bridge/msal-redirect-bridge.js +24 -16
- package/lib/redirect-bridge/msal-redirect-bridge.js.map +1 -1
- package/lib/redirect-bridge/msal-redirect-bridge.min.js +2 -2
- package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts +48 -0
- package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts.map +1 -0
- package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts +247 -0
- package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts +12 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts +9 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts +30 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts +63 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts +28 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts +79 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts +71 -0
- package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/AccountManager.d.ts +24 -0
- package/lib/redirect-bridge/types/cache/AccountManager.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts +58 -0
- package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts +364 -0
- package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts +16 -0
- package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/CacheKeys.d.ts +15 -0
- package/lib/redirect-bridge/types/cache/CacheKeys.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/CookieStorage.d.ts +23 -0
- package/lib/redirect-bridge/types/cache/CookieStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts +57 -0
- package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/EncryptedData.d.ts +8 -0
- package/lib/redirect-bridge/types/cache/EncryptedData.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts +33 -0
- package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts +42 -0
- package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/LocalStorage.d.ts +51 -0
- package/lib/redirect-bridge/types/cache/LocalStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts +16 -0
- package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/SessionStorage.d.ts +14 -0
- package/lib/redirect-bridge/types/cache/SessionStorage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/cache/TokenCache.d.ts +20 -0
- package/lib/redirect-bridge/types/cache/TokenCache.d.ts.map +1 -0
- package/lib/redirect-bridge/types/config/Configuration.d.ts +198 -0
- package/lib/redirect-bridge/types/config/Configuration.d.ts.map +1 -0
- package/lib/redirect-bridge/types/controllers/IController.d.ts +3 -0
- package/lib/redirect-bridge/types/controllers/IController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts +159 -0
- package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/controllers/StandardController.d.ts +398 -0
- package/lib/redirect-bridge/types/controllers/StandardController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts +73 -0
- package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts +96 -0
- package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts.map +1 -0
- package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts +77 -0
- package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts.map +1 -0
- package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts +9 -0
- package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts.map +1 -0
- package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts +32 -0
- package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts +29 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts +35 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
- package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
- package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts +14 -0
- package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts +27 -0
- package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
- package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +40 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +31 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts +29 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +47 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +82 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +27 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +40 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +34 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +67 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
- package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts +9 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
- package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +34 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
- package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +15 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +14 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +16 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +34 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +23 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +23 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +86 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +71 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
- package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts +25 -0
- package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts +4 -0
- package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts +3 -0
- package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +20 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
- package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/index.d.ts +84 -0
- package/lib/redirect-bridge/types/custom_auth/index.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
- package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +40 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +27 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +16 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +19 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
- package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +45 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +72 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +51 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +46 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +33 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +12 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +17 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +21 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +22 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +25 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +49 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +32 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +43 -0
- package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +62 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +25 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +32 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +11 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +16 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +24 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
- package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/encode/Base64Decode.d.ts +15 -0
- package/lib/redirect-bridge/types/encode/Base64Decode.d.ts.map +1 -0
- package/lib/redirect-bridge/types/encode/Base64Encode.d.ts +20 -0
- package/lib/redirect-bridge/types/encode/Base64Encode.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts +12 -0
- package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts +53 -0
- package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts +11 -0
- package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts +4 -0
- package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/NativeAuthError.d.ts +27 -0
- package/lib/redirect-bridge/types/error/NativeAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts +5 -0
- package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts +6 -0
- package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/event/EventHandler.d.ts +49 -0
- package/lib/redirect-bridge/types/event/EventHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/event/EventMessage.d.ts +41 -0
- package/lib/redirect-bridge/types/event/EventMessage.d.ts.map +1 -0
- package/lib/redirect-bridge/types/event/EventType.d.ts +24 -0
- package/lib/redirect-bridge/types/event/EventType.d.ts.map +1 -0
- package/lib/redirect-bridge/types/index.d.ts +73 -0
- package/lib/redirect-bridge/types/index.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts +77 -0
- package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts +5 -0
- package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts +151 -0
- package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts +106 -0
- package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts +77 -0
- package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts +24 -0
- package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts +17 -0
- package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts +57 -0
- package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts +32 -0
- package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts +76 -0
- package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts +33 -0
- package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts +17 -0
- package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/AccountInfo.d.ts +13 -0
- package/lib/redirect-bridge/types/naa/AccountInfo.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/AuthBridge.d.ts +9 -0
- package/lib/redirect-bridge/types/naa/AuthBridge.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/AuthResult.d.ts +7 -0
- package/lib/redirect-bridge/types/naa/AuthResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts +13 -0
- package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts +4 -0
- package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeError.d.ts +10 -0
- package/lib/redirect-bridge/types/naa/BridgeError.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts +69 -0
- package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts +8 -0
- package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts +13 -0
- package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts +14 -0
- package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts +12 -0
- package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts +11 -0
- package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/InitContext.d.ts +9 -0
- package/lib/redirect-bridge/types/naa/InitContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/TokenRequest.d.ts +21 -0
- package/lib/redirect-bridge/types/naa/TokenRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/TokenResponse.d.ts +14 -0
- package/lib/redirect-bridge/types/naa/TokenResponse.d.ts.map +1 -0
- package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts +36 -0
- package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -0
- package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts +17 -0
- package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts +23 -0
- package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts +13 -0
- package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts.map +1 -0
- package/lib/redirect-bridge/types/network/FetchClient.d.ts +21 -0
- package/lib/redirect-bridge/types/network/FetchClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts +43 -0
- package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts +41 -0
- package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts +26 -0
- package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts +26 -0
- package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts.map +1 -0
- package/lib/redirect-bridge/types/packageMetadata.d.ts +3 -0
- package/lib/redirect-bridge/types/packageMetadata.d.ts.map +1 -0
- package/lib/redirect-bridge/types/protocol/Authorize.d.ts +102 -0
- package/lib/redirect-bridge/types/protocol/Authorize.d.ts.map +1 -0
- package/lib/redirect-bridge/types/redirect_bridge/index.d.ts +16 -0
- package/lib/redirect-bridge/types/redirect_bridge/index.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts +27 -0
- package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts +15 -0
- package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts +24 -0
- package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts +11 -0
- package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts +5 -0
- package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts +10 -0
- package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/PopupRequest.d.ts +25 -0
- package/lib/redirect-bridge/types/request/PopupRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts +16 -0
- package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/RedirectRequest.d.ts +16 -0
- package/lib/redirect-bridge/types/request/RedirectRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/RequestHelpers.d.ts +28 -0
- package/lib/redirect-bridge/types/request/RequestHelpers.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/SilentRequest.d.ts +52 -0
- package/lib/redirect-bridge/types/request/SilentRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts +6 -0
- package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts.map +1 -0
- package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts +5 -0
- package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts.map +1 -0
- package/lib/redirect-bridge/types/response/ResponseHandler.d.ts +8 -0
- package/lib/redirect-bridge/types/response/ResponseHandler.d.ts.map +1 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts +19 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts +140 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts +22 -0
- package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts.map +1 -0
- package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts +42 -0
- package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts +182 -0
- package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts +12 -0
- package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts +111 -0
- package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/Helpers.d.ts +7 -0
- package/lib/redirect-bridge/types/utils/Helpers.d.ts.map +1 -0
- package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts +13 -0
- package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts.map +1 -0
- package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
- package/lib/types/cache/BrowserCacheManager.d.ts +2 -4
- package/lib/types/cache/BrowserCacheManager.d.ts.map +1 -1
- package/lib/types/cache/CacheKeys.d.ts +3 -2
- package/lib/types/cache/CacheKeys.d.ts.map +1 -1
- package/lib/types/config/Configuration.d.ts +7 -0
- package/lib/types/config/Configuration.d.ts.map +1 -1
- package/lib/types/controllers/StandardController.d.ts +16 -0
- package/lib/types/controllers/StandardController.d.ts.map +1 -1
- package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
- package/lib/types/custom_auth/UserAccountAttributes.d.ts +1 -0
- package/lib/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
- package/lib/types/error/NativeAuthError.d.ts.map +1 -1
- package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
- package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
- package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
- package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
- package/lib/types/interaction_client/SilentIframeClient.d.ts +14 -0
- package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/lib/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/types/redirect_bridge/index.d.ts.map +1 -1
- package/lib/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
- package/lib/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
- package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
- package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
- package/package.json +3 -3
- package/src/broker/nativeBroker/PlatformAuthExtensionHandler.ts +1 -1
- package/src/broker/nativeBroker/PlatformAuthProvider.ts +1 -1
- package/src/cache/BrowserCacheManager.ts +5 -5
- package/src/cache/CacheKeys.ts +3 -2
- package/src/config/Configuration.ts +8 -0
- package/src/controllers/StandardController.ts +290 -39
- package/src/custom_auth/UserAccountAttributes.ts +1 -0
- package/src/error/NativeAuthError.ts +1 -2
- package/src/interaction_client/PlatformAuthInteractionClient.ts +82 -37
- package/src/interaction_client/PopupClient.ts +10 -0
- package/src/interaction_client/RedirectClient.ts +10 -0
- package/src/interaction_client/SilentIframeClient.ts +123 -20
- package/src/packageMetadata.ts +1 -1
- package/src/protocol/Authorize.ts +8 -0
- package/src/redirect_bridge/index.ts +12 -5
- package/src/telemetry/BrowserPerformanceEvents.ts +3 -0
- package/src/telemetry/BrowserRootPerformanceEvents.ts +7 -0
package/lib/msal-browser.cjs
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
/*! @azure/msal-browser v5.
|
|
1
|
+
/*! @azure/msal-browser v5.8.0 2026-04-21 */
|
|
2
2
|
'use strict';
|
|
3
3
|
'use strict';
|
|
4
4
|
|
|
5
|
-
/*! @azure/msal-common v16.
|
|
5
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6
6
|
/*
|
|
7
7
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8
8
|
* Licensed under the MIT License.
|
|
@@ -234,7 +234,7 @@ const JsonWebTokenTypes$1 = {
|
|
|
234
234
|
// Token renewal offset default in seconds
|
|
235
235
|
const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
|
|
236
236
|
|
|
237
|
-
/*! @azure/msal-common v16.
|
|
237
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
238
238
|
/*
|
|
239
239
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
240
240
|
* Licensed under the MIT License.
|
|
@@ -286,7 +286,7 @@ const EAR_JWE_CRYPTO = "ear_jwe_crypto";
|
|
|
286
286
|
const RESOURCE = "resource";
|
|
287
287
|
const CLI_DATA = "clidata";
|
|
288
288
|
|
|
289
|
-
/*! @azure/msal-common v16.
|
|
289
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
290
290
|
/*
|
|
291
291
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
292
292
|
* Licensed under the MIT License.
|
|
@@ -317,7 +317,7 @@ function createAuthError(code, additionalMessage) {
|
|
|
317
317
|
return new AuthError(code, additionalMessage || getDefaultErrorMessage$1(code));
|
|
318
318
|
}
|
|
319
319
|
|
|
320
|
-
/*! @azure/msal-common v16.
|
|
320
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
321
321
|
|
|
322
322
|
/*
|
|
323
323
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -337,7 +337,7 @@ function createClientConfigurationError(errorCode) {
|
|
|
337
337
|
return new ClientConfigurationError(errorCode);
|
|
338
338
|
}
|
|
339
339
|
|
|
340
|
-
/*! @azure/msal-common v16.
|
|
340
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
341
341
|
/*
|
|
342
342
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
343
343
|
* Licensed under the MIT License.
|
|
@@ -417,7 +417,7 @@ class StringUtils {
|
|
|
417
417
|
}
|
|
418
418
|
}
|
|
419
419
|
|
|
420
|
-
/*! @azure/msal-common v16.
|
|
420
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
421
421
|
|
|
422
422
|
/*
|
|
423
423
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -440,7 +440,7 @@ function createClientAuthError(errorCode, additionalMessage) {
|
|
|
440
440
|
return new ClientAuthError(errorCode, additionalMessage);
|
|
441
441
|
}
|
|
442
442
|
|
|
443
|
-
/*! @azure/msal-common v16.
|
|
443
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
444
444
|
/*
|
|
445
445
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
446
446
|
* Licensed under the MIT License.
|
|
@@ -494,7 +494,7 @@ var ClientConfigurationErrorCodes = /*#__PURE__*/Object.freeze({
|
|
|
494
494
|
urlParseError: urlParseError
|
|
495
495
|
});
|
|
496
496
|
|
|
497
|
-
/*! @azure/msal-common v16.
|
|
497
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
498
498
|
/*
|
|
499
499
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
500
500
|
* Licensed under the MIT License.
|
|
@@ -582,7 +582,7 @@ var ClientAuthErrorCodes = /*#__PURE__*/Object.freeze({
|
|
|
582
582
|
userCanceled: userCanceled
|
|
583
583
|
});
|
|
584
584
|
|
|
585
|
-
/*! @azure/msal-common v16.
|
|
585
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
586
586
|
|
|
587
587
|
/*
|
|
588
588
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -777,7 +777,7 @@ class ScopeSet {
|
|
|
777
777
|
}
|
|
778
778
|
}
|
|
779
779
|
|
|
780
|
-
/*! @azure/msal-common v16.
|
|
780
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
781
781
|
|
|
782
782
|
/*
|
|
783
783
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -898,18 +898,29 @@ function addSid(parameters, sid) {
|
|
|
898
898
|
parameters.set(SID, sid);
|
|
899
899
|
}
|
|
900
900
|
/**
|
|
901
|
-
*
|
|
902
|
-
*
|
|
903
|
-
|
|
904
|
-
|
|
905
|
-
|
|
906
|
-
|
|
907
|
-
|
|
908
|
-
|
|
909
|
-
|
|
910
|
-
|
|
901
|
+
* Adds claims to request parameters, conditionally excluding clientCapabilities
|
|
902
|
+
* when skipBrokerClaims is true and a brokered flow is in effect.
|
|
903
|
+
* @param parameters - The request parameters map
|
|
904
|
+
* @param claims - The claims string from the request
|
|
905
|
+
* @param clientCapabilities - The client capabilities from configuration
|
|
906
|
+
* @param skipBrokerClaims - When true and BROKER_CLIENT_ID is present, excludes clientCapabilities from claims
|
|
907
|
+
*/
|
|
908
|
+
function addClaims(parameters, claims, clientCapabilities, skipBrokerClaims) {
|
|
909
|
+
// Skip clientCapabilities if skipBrokerClaims is set to true and this is a brokered authentication flow
|
|
910
|
+
const configClaims = skipBrokerClaims && parameters.has(BROKER_CLIENT_ID)
|
|
911
|
+
? undefined
|
|
912
|
+
: clientCapabilities;
|
|
913
|
+
if (!StringUtils.isEmptyObj(claims) ||
|
|
914
|
+
(configClaims && configClaims.length > 0)) {
|
|
915
|
+
const mergedClaims = addClientCapabilitiesToClaims$1(claims, configClaims);
|
|
916
|
+
try {
|
|
917
|
+
JSON.parse(mergedClaims);
|
|
918
|
+
}
|
|
919
|
+
catch (e) {
|
|
920
|
+
throw createClientConfigurationError(invalidClaims);
|
|
921
|
+
}
|
|
922
|
+
parameters.set(CLAIMS, mergedClaims);
|
|
911
923
|
}
|
|
912
|
-
parameters.set(CLAIMS, mergedClaims);
|
|
913
924
|
}
|
|
914
925
|
/**
|
|
915
926
|
* add correlationId
|
|
@@ -1155,7 +1166,7 @@ function addResource(parameters, resource) {
|
|
|
1155
1166
|
}
|
|
1156
1167
|
}
|
|
1157
1168
|
|
|
1158
|
-
/*! @azure/msal-common v16.
|
|
1169
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1159
1170
|
|
|
1160
1171
|
/*
|
|
1161
1172
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1264,7 +1275,7 @@ function normalizeUrlForComparison(url) {
|
|
|
1264
1275
|
}
|
|
1265
1276
|
}
|
|
1266
1277
|
|
|
1267
|
-
/*! @azure/msal-common v16.
|
|
1278
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1268
1279
|
|
|
1269
1280
|
/*
|
|
1270
1281
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1303,7 +1314,7 @@ const DEFAULT_CRYPTO_IMPLEMENTATION = {
|
|
|
1303
1314
|
},
|
|
1304
1315
|
};
|
|
1305
1316
|
|
|
1306
|
-
/*! @azure/msal-common v16.
|
|
1317
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1307
1318
|
/*
|
|
1308
1319
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1309
1320
|
* Licensed under the MIT License.
|
|
@@ -1578,12 +1589,12 @@ class Logger {
|
|
|
1578
1589
|
}
|
|
1579
1590
|
}
|
|
1580
1591
|
|
|
1581
|
-
/*! @azure/msal-common v16.
|
|
1592
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1582
1593
|
/* eslint-disable header/header */
|
|
1583
1594
|
const name$1 = "@azure/msal-common";
|
|
1584
|
-
const version$1 = "16.
|
|
1595
|
+
const version$1 = "16.5.1";
|
|
1585
1596
|
|
|
1586
|
-
/*! @azure/msal-common v16.
|
|
1597
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1587
1598
|
/*
|
|
1588
1599
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1589
1600
|
* Licensed under the MIT License.
|
|
@@ -1603,7 +1614,7 @@ const AzureCloudInstance = {
|
|
|
1603
1614
|
AzureUsGovernment: "https://login.microsoftonline.us",
|
|
1604
1615
|
};
|
|
1605
1616
|
|
|
1606
|
-
/*! @azure/msal-common v16.
|
|
1617
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1607
1618
|
/*
|
|
1608
1619
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
1609
1620
|
* Licensed under the MIT License.
|
|
@@ -1644,6 +1655,7 @@ function buildTenantProfile(homeAccountId, localAccountId, tenantId, idTokenClai
|
|
|
1644
1655
|
username: preferred_username || upn || "",
|
|
1645
1656
|
loginHint: login_hint,
|
|
1646
1657
|
isHomeTenant: tenantIdMatchesHomeTenant(tenantId, homeAccountId),
|
|
1658
|
+
upn: upn,
|
|
1647
1659
|
};
|
|
1648
1660
|
}
|
|
1649
1661
|
else {
|
|
@@ -1671,7 +1683,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
|
|
|
1671
1683
|
}
|
|
1672
1684
|
// ID token claims override passed in account info and tenant profile
|
|
1673
1685
|
if (idTokenClaims) {
|
|
1674
|
-
// Ignore isHomeTenant
|
|
1686
|
+
// Ignore isHomeTenant which is a utility property of tenant profile but not required in base account info
|
|
1675
1687
|
// eslint-disable-next-line @typescript-eslint/no-unused-vars
|
|
1676
1688
|
const { isHomeTenant, ...claimsSourcedTenantProfile } = buildTenantProfile(baseAccountInfo.homeAccountId, baseAccountInfo.localAccountId, baseAccountInfo.tenantId, idTokenClaims);
|
|
1677
1689
|
updatedAccountInfo = {
|
|
@@ -1685,7 +1697,7 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
|
|
|
1685
1697
|
return updatedAccountInfo;
|
|
1686
1698
|
}
|
|
1687
1699
|
|
|
1688
|
-
/*! @azure/msal-common v16.
|
|
1700
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1689
1701
|
|
|
1690
1702
|
/*
|
|
1691
1703
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1765,7 +1777,7 @@ function checkMaxAge(authTime, maxAge) {
|
|
|
1765
1777
|
}
|
|
1766
1778
|
}
|
|
1767
1779
|
|
|
1768
|
-
/*! @azure/msal-common v16.
|
|
1780
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1769
1781
|
|
|
1770
1782
|
/*
|
|
1771
1783
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1922,7 +1934,7 @@ class UrlString {
|
|
|
1922
1934
|
}
|
|
1923
1935
|
}
|
|
1924
1936
|
|
|
1925
|
-
/*! @azure/msal-common v16.
|
|
1937
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
1926
1938
|
|
|
1927
1939
|
/*
|
|
1928
1940
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2079,7 +2091,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
|
|
|
2079
2091
|
return null;
|
|
2080
2092
|
}
|
|
2081
2093
|
|
|
2082
|
-
/*! @azure/msal-common v16.
|
|
2094
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2083
2095
|
/*
|
|
2084
2096
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2085
2097
|
* Licensed under the MIT License.
|
|
@@ -2087,7 +2099,7 @@ function getCloudDiscoveryMetadataFromNetworkResponse(response, authorityHost) {
|
|
|
2087
2099
|
const cacheQuotaExceeded = "cache_quota_exceeded";
|
|
2088
2100
|
const cacheErrorUnknown = "cache_error_unknown";
|
|
2089
2101
|
|
|
2090
|
-
/*! @azure/msal-common v16.
|
|
2102
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2091
2103
|
|
|
2092
2104
|
/*
|
|
2093
2105
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2125,7 +2137,7 @@ function createCacheError(e) {
|
|
|
2125
2137
|
}
|
|
2126
2138
|
}
|
|
2127
2139
|
|
|
2128
|
-
/*! @azure/msal-common v16.
|
|
2140
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2129
2141
|
|
|
2130
2142
|
/*
|
|
2131
2143
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2163,7 +2175,7 @@ function buildClientInfoFromHomeAccountId(homeAccountId) {
|
|
|
2163
2175
|
};
|
|
2164
2176
|
}
|
|
2165
2177
|
|
|
2166
|
-
/*! @azure/msal-common v16.
|
|
2178
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2167
2179
|
/*
|
|
2168
2180
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2169
2181
|
* Licensed under the MIT License.
|
|
@@ -2178,7 +2190,7 @@ const AuthorityType = {
|
|
|
2178
2190
|
Ciam: 3,
|
|
2179
2191
|
};
|
|
2180
2192
|
|
|
2181
|
-
/*! @azure/msal-common v16.
|
|
2193
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2182
2194
|
/*
|
|
2183
2195
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2184
2196
|
* Licensed under the MIT License.
|
|
@@ -2200,7 +2212,7 @@ function getTenantIdFromIdTokenClaims(idTokenClaims) {
|
|
|
2200
2212
|
return null;
|
|
2201
2213
|
}
|
|
2202
2214
|
|
|
2203
|
-
/*! @azure/msal-common v16.
|
|
2215
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2204
2216
|
/*
|
|
2205
2217
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
2206
2218
|
* Licensed under the MIT License.
|
|
@@ -2224,7 +2236,7 @@ const ProtocolMode = {
|
|
|
2224
2236
|
EAR: "EAR",
|
|
2225
2237
|
};
|
|
2226
2238
|
|
|
2227
|
-
/*! @azure/msal-common v16.
|
|
2239
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2228
2240
|
/**
|
|
2229
2241
|
* Returns the AccountInfo interface for this account.
|
|
2230
2242
|
*/
|
|
@@ -2399,7 +2411,7 @@ function isAccountEntity(entity) {
|
|
|
2399
2411
|
entity.hasOwnProperty("authorityType"));
|
|
2400
2412
|
}
|
|
2401
2413
|
|
|
2402
|
-
/*! @azure/msal-common v16.
|
|
2414
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
2403
2415
|
|
|
2404
2416
|
/*
|
|
2405
2417
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -2536,6 +2548,19 @@ class CacheManager {
|
|
|
2536
2548
|
!(tenantProfile.isHomeTenant === tenantProfileFilter.isHomeTenant)) {
|
|
2537
2549
|
return false;
|
|
2538
2550
|
}
|
|
2551
|
+
if (!!tenantProfileFilter.username &&
|
|
2552
|
+
!(this.matchUsername(tenantProfile.username, tenantProfileFilter.username) ||
|
|
2553
|
+
!this.matchUsername(tenantProfile.upn, tenantProfileFilter.username))) {
|
|
2554
|
+
return false;
|
|
2555
|
+
}
|
|
2556
|
+
if (!!tenantProfileFilter.loginHint &&
|
|
2557
|
+
!this.matchLoginHintWithTenantProfile(tenantProfile, tenantProfileFilter.loginHint)) {
|
|
2558
|
+
return false;
|
|
2559
|
+
}
|
|
2560
|
+
if (!!tenantProfileFilter.upn &&
|
|
2561
|
+
!(tenantProfile.upn === tenantProfileFilter.upn)) {
|
|
2562
|
+
return false;
|
|
2563
|
+
}
|
|
2539
2564
|
return true;
|
|
2540
2565
|
}
|
|
2541
2566
|
idTokenClaimsMatchTenantProfileFilter(idTokenClaims, tenantProfileFilter) {
|
|
@@ -2550,7 +2575,8 @@ class CacheManager {
|
|
|
2550
2575
|
return false;
|
|
2551
2576
|
}
|
|
2552
2577
|
if (!!tenantProfileFilter.username &&
|
|
2553
|
-
!this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username)
|
|
2578
|
+
!this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username) &&
|
|
2579
|
+
!this.matchUsername(idTokenClaims.upn, tenantProfileFilter.username)) {
|
|
2554
2580
|
return false;
|
|
2555
2581
|
}
|
|
2556
2582
|
if (!!tenantProfileFilter.name &&
|
|
@@ -2651,10 +2677,6 @@ class CacheManager {
|
|
|
2651
2677
|
!this.matchHomeAccountId(entity, accountFilter.homeAccountId)) {
|
|
2652
2678
|
return;
|
|
2653
2679
|
}
|
|
2654
|
-
if (!!accountFilter.username &&
|
|
2655
|
-
!this.matchUsername(entity.username, accountFilter.username)) {
|
|
2656
|
-
return;
|
|
2657
|
-
}
|
|
2658
2680
|
if (!!accountFilter.environment &&
|
|
2659
2681
|
!this.matchEnvironment(entity, accountFilter.environment, correlationId)) {
|
|
2660
2682
|
return;
|
|
@@ -2675,6 +2697,9 @@ class CacheManager {
|
|
|
2675
2697
|
const tenantProfileFilter = {
|
|
2676
2698
|
localAccountId: accountFilter?.localAccountId,
|
|
2677
2699
|
name: accountFilter?.name,
|
|
2700
|
+
username: accountFilter?.username,
|
|
2701
|
+
loginHint: accountFilter?.loginHint,
|
|
2702
|
+
upn: accountFilter?.upn,
|
|
2678
2703
|
};
|
|
2679
2704
|
const matchingTenantProfiles = entity.tenantProfiles?.filter((tenantProfile) => {
|
|
2680
2705
|
return this.tenantProfileMatchesFilter(tenantProfile, tenantProfileFilter);
|
|
@@ -2925,11 +2950,11 @@ class CacheManager {
|
|
|
2925
2950
|
const numHomeIdTokens = homeIdTokenMap.size;
|
|
2926
2951
|
if (numHomeIdTokens < 1) {
|
|
2927
2952
|
this.commonLogger.info("0ooalx", correlationId);
|
|
2928
|
-
return idTokenMap.values().next().value;
|
|
2953
|
+
return idTokenMap.values().next().value ?? null;
|
|
2929
2954
|
}
|
|
2930
2955
|
else if (numHomeIdTokens === 1) {
|
|
2931
2956
|
this.commonLogger.info("1eq2vc", correlationId);
|
|
2932
|
-
return homeIdTokenMap.values().next().value;
|
|
2957
|
+
return homeIdTokenMap.values().next().value ?? null;
|
|
2933
2958
|
}
|
|
2934
2959
|
else {
|
|
2935
2960
|
// Multiple ID tokens for home tenant profile, remove all and return null
|
|
@@ -2945,7 +2970,7 @@ class CacheManager {
|
|
|
2945
2970
|
return null;
|
|
2946
2971
|
}
|
|
2947
2972
|
this.commonLogger.info("1sm769", correlationId);
|
|
2948
|
-
return idTokenMap.values().next().value;
|
|
2973
|
+
return idTokenMap.values().next().value ?? null;
|
|
2949
2974
|
}
|
|
2950
2975
|
/**
|
|
2951
2976
|
* Gets all idTokens matching the given filter
|
|
@@ -3258,6 +3283,17 @@ class CacheManager {
|
|
|
3258
3283
|
typeof cachedUsername === "string" &&
|
|
3259
3284
|
filterUsername?.toLowerCase() === cachedUsername.toLowerCase());
|
|
3260
3285
|
}
|
|
3286
|
+
/**
|
|
3287
|
+
* helper to match loginhints
|
|
3288
|
+
* @param entity
|
|
3289
|
+
* @param loginHint
|
|
3290
|
+
* @returns
|
|
3291
|
+
*/
|
|
3292
|
+
matchLoginHintWithTenantProfile(tenantProfile, loginHintFilter) {
|
|
3293
|
+
return (tenantProfile.loginHint === loginHintFilter ||
|
|
3294
|
+
tenantProfile.username === loginHintFilter ||
|
|
3295
|
+
tenantProfile.upn === loginHintFilter);
|
|
3296
|
+
}
|
|
3261
3297
|
/**
|
|
3262
3298
|
* helper to match assertion
|
|
3263
3299
|
* @param value
|
|
@@ -3350,6 +3386,10 @@ class CacheManager {
|
|
|
3350
3386
|
if (tokenClaims.upn === loginHint) {
|
|
3351
3387
|
return true;
|
|
3352
3388
|
}
|
|
3389
|
+
// check login hint against list of emails in token claims
|
|
3390
|
+
if (tokenClaims.emails && tokenClaims.emails.includes(loginHint)) {
|
|
3391
|
+
return true;
|
|
3392
|
+
}
|
|
3353
3393
|
return false;
|
|
3354
3394
|
}
|
|
3355
3395
|
/**
|
|
@@ -3501,7 +3541,7 @@ class DefaultStorageClass extends CacheManager {
|
|
|
3501
3541
|
}
|
|
3502
3542
|
}
|
|
3503
3543
|
|
|
3504
|
-
/*! @azure/msal-common v16.
|
|
3544
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3505
3545
|
/*
|
|
3506
3546
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3507
3547
|
* Licensed under the MIT License.
|
|
@@ -3552,7 +3592,7 @@ const IntFields = new Set([
|
|
|
3552
3592
|
"redirectBridgeMessageVersion",
|
|
3553
3593
|
]);
|
|
3554
3594
|
|
|
3555
|
-
/*! @azure/msal-common v16.
|
|
3595
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3556
3596
|
|
|
3557
3597
|
/*
|
|
3558
3598
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3607,7 +3647,7 @@ class StubPerformanceClient {
|
|
|
3607
3647
|
}
|
|
3608
3648
|
}
|
|
3609
3649
|
|
|
3610
|
-
/*! @azure/msal-common v16.
|
|
3650
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3611
3651
|
|
|
3612
3652
|
/*
|
|
3613
3653
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -3702,7 +3742,7 @@ function isOidcProtocolMode(config) {
|
|
|
3702
3742
|
return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
|
|
3703
3743
|
}
|
|
3704
3744
|
|
|
3705
|
-
/*! @azure/msal-common v16.
|
|
3745
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3706
3746
|
/*
|
|
3707
3747
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3708
3748
|
* Licensed under the MIT License.
|
|
@@ -3729,7 +3769,7 @@ function isOidcProtocolMode(config) {
|
|
|
3729
3769
|
}
|
|
3730
3770
|
}
|
|
3731
3771
|
|
|
3732
|
-
/*! @azure/msal-common v16.
|
|
3772
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3733
3773
|
/*
|
|
3734
3774
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
3735
3775
|
* Licensed under the MIT License.
|
|
@@ -3794,7 +3834,7 @@ function wasClockTurnedBack(cachedAt) {
|
|
|
3794
3834
|
return cachedAtSec > nowSeconds();
|
|
3795
3835
|
}
|
|
3796
3836
|
|
|
3797
|
-
/*! @azure/msal-common v16.
|
|
3837
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
3798
3838
|
|
|
3799
3839
|
/*
|
|
3800
3840
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4053,7 +4093,7 @@ function isAuthorityMetadataExpired(metadata) {
|
|
|
4053
4093
|
return metadata.expiresAt <= nowSeconds();
|
|
4054
4094
|
}
|
|
4055
4095
|
|
|
4056
|
-
/*! @azure/msal-common v16.
|
|
4096
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4057
4097
|
/*
|
|
4058
4098
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4059
4099
|
* Licensed under the MIT License.
|
|
@@ -4124,7 +4164,7 @@ const RegionDiscoveryGetCurrentVersion = "regionDiscoveryGetCurrentVersion";
|
|
|
4124
4164
|
const CacheManagerGetRefreshToken = "cacheManagerGetRefreshToken";
|
|
4125
4165
|
const SetUserData = "setUserData";
|
|
4126
4166
|
|
|
4127
|
-
/*! @azure/msal-common v16.
|
|
4167
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4128
4168
|
/*
|
|
4129
4169
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4130
4170
|
* Licensed under the MIT License.
|
|
@@ -4217,7 +4257,7 @@ const invokeAsync = (callback, eventName, logger, telemetryClient, correlationId
|
|
|
4217
4257
|
};
|
|
4218
4258
|
};
|
|
4219
4259
|
|
|
4220
|
-
/*! @azure/msal-common v16.
|
|
4260
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4221
4261
|
|
|
4222
4262
|
/*
|
|
4223
4263
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4297,7 +4337,7 @@ class PopTokenGenerator {
|
|
|
4297
4337
|
}
|
|
4298
4338
|
}
|
|
4299
4339
|
|
|
4300
|
-
/*! @azure/msal-common v16.
|
|
4340
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4301
4341
|
/*
|
|
4302
4342
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4303
4343
|
* Licensed under the MIT License.
|
|
@@ -4361,7 +4401,7 @@ var InteractionRequiredAuthErrorCodes = /*#__PURE__*/Object.freeze({
|
|
|
4361
4401
|
uxNotAllowed: uxNotAllowed
|
|
4362
4402
|
});
|
|
4363
4403
|
|
|
4364
|
-
/*! @azure/msal-common v16.
|
|
4404
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4365
4405
|
|
|
4366
4406
|
/*
|
|
4367
4407
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4429,7 +4469,7 @@ function createInteractionRequiredAuthError(errorCode, errorMessage) {
|
|
|
4429
4469
|
return new InteractionRequiredAuthError(errorCode, errorMessage);
|
|
4430
4470
|
}
|
|
4431
4471
|
|
|
4432
|
-
/*! @azure/msal-common v16.
|
|
4472
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4433
4473
|
|
|
4434
4474
|
/*
|
|
4435
4475
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4448,7 +4488,7 @@ class ServerError extends AuthError {
|
|
|
4448
4488
|
}
|
|
4449
4489
|
}
|
|
4450
4490
|
|
|
4451
|
-
/*! @azure/msal-common v16.
|
|
4491
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4452
4492
|
|
|
4453
4493
|
/*
|
|
4454
4494
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4516,7 +4556,7 @@ function parseRequestState(base64Decode, state) {
|
|
|
4516
4556
|
}
|
|
4517
4557
|
}
|
|
4518
4558
|
|
|
4519
|
-
/*! @azure/msal-common v16.
|
|
4559
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4520
4560
|
|
|
4521
4561
|
/*
|
|
4522
4562
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4864,7 +4904,7 @@ function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decod
|
|
|
4864
4904
|
return baseAccount;
|
|
4865
4905
|
}
|
|
4866
4906
|
|
|
4867
|
-
/*! @azure/msal-common v16.
|
|
4907
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4868
4908
|
/*
|
|
4869
4909
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4870
4910
|
* Licensed under the MIT License.
|
|
@@ -4874,7 +4914,7 @@ const CcsCredentialType = {
|
|
|
4874
4914
|
UPN: "UPN",
|
|
4875
4915
|
};
|
|
4876
4916
|
|
|
4877
|
-
/*! @azure/msal-common v16.
|
|
4917
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4878
4918
|
/*
|
|
4879
4919
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4880
4920
|
* Licensed under the MIT License.
|
|
@@ -4892,7 +4932,7 @@ async function getClientAssertion(clientAssertion, clientId, tokenEndpoint) {
|
|
|
4892
4932
|
}
|
|
4893
4933
|
}
|
|
4894
4934
|
|
|
4895
|
-
/*! @azure/msal-common v16.
|
|
4935
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4896
4936
|
/*
|
|
4897
4937
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
4898
4938
|
* Licensed under the MIT License.
|
|
@@ -4913,7 +4953,7 @@ function getRequestThumbprint(clientId, request, homeAccountId) {
|
|
|
4913
4953
|
};
|
|
4914
4954
|
}
|
|
4915
4955
|
|
|
4916
|
-
/*! @azure/msal-common v16.
|
|
4956
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
4917
4957
|
|
|
4918
4958
|
/*
|
|
4919
4959
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -4999,7 +5039,7 @@ class ThrottlingUtils {
|
|
|
4999
5039
|
}
|
|
5000
5040
|
}
|
|
5001
5041
|
|
|
5002
|
-
/*! @azure/msal-common v16.
|
|
5042
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5003
5043
|
|
|
5004
5044
|
/*
|
|
5005
5045
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5030,7 +5070,7 @@ function createNetworkError(error, httpStatus, responseHeaders, additionalError)
|
|
|
5030
5070
|
return new NetworkError(error, httpStatus, responseHeaders);
|
|
5031
5071
|
}
|
|
5032
5072
|
|
|
5033
|
-
/*! @azure/msal-common v16.
|
|
5073
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5034
5074
|
|
|
5035
5075
|
/*
|
|
5036
5076
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5144,7 +5184,7 @@ async function sendPostRequest(thumbprint, tokenEndpoint, options, correlationId
|
|
|
5144
5184
|
return response;
|
|
5145
5185
|
}
|
|
5146
5186
|
|
|
5147
|
-
/*! @azure/msal-common v16.
|
|
5187
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5148
5188
|
/*
|
|
5149
5189
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5150
5190
|
* Licensed under the MIT License.
|
|
@@ -5156,7 +5196,7 @@ function isOpenIdConfigResponse(response) {
|
|
|
5156
5196
|
response.hasOwnProperty("jwks_uri"));
|
|
5157
5197
|
}
|
|
5158
5198
|
|
|
5159
|
-
/*! @azure/msal-common v16.
|
|
5199
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5160
5200
|
/*
|
|
5161
5201
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5162
5202
|
* Licensed under the MIT License.
|
|
@@ -5166,7 +5206,7 @@ function isCloudInstanceDiscoveryResponse(response) {
|
|
|
5166
5206
|
response.hasOwnProperty("metadata"));
|
|
5167
5207
|
}
|
|
5168
5208
|
|
|
5169
|
-
/*! @azure/msal-common v16.
|
|
5209
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5170
5210
|
/*
|
|
5171
5211
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5172
5212
|
* Licensed under the MIT License.
|
|
@@ -5176,7 +5216,7 @@ function isCloudInstanceDiscoveryErrorResponse(response) {
|
|
|
5176
5216
|
response.hasOwnProperty("error_description"));
|
|
5177
5217
|
}
|
|
5178
5218
|
|
|
5179
|
-
/*! @azure/msal-common v16.
|
|
5219
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5180
5220
|
|
|
5181
5221
|
/*
|
|
5182
5222
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5281,7 +5321,7 @@ RegionDiscovery.IMDS_OPTIONS = {
|
|
|
5281
5321
|
},
|
|
5282
5322
|
};
|
|
5283
5323
|
|
|
5284
|
-
/*! @azure/msal-common v16.
|
|
5324
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
5285
5325
|
|
|
5286
5326
|
/*
|
|
5287
5327
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6101,7 +6141,7 @@ function buildStaticAuthorityOptions(authOptions) {
|
|
|
6101
6141
|
};
|
|
6102
6142
|
}
|
|
6103
6143
|
|
|
6104
|
-
/*! @azure/msal-common v16.
|
|
6144
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6105
6145
|
|
|
6106
6146
|
/*
|
|
6107
6147
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6135,7 +6175,7 @@ async function createDiscoveredInstance(authorityUri, networkClient, cacheManage
|
|
|
6135
6175
|
}
|
|
6136
6176
|
}
|
|
6137
6177
|
|
|
6138
|
-
/*! @azure/msal-common v16.
|
|
6178
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6139
6179
|
|
|
6140
6180
|
/*
|
|
6141
6181
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6300,11 +6340,6 @@ class AuthorizationCodeClient {
|
|
|
6300
6340
|
throw createClientConfigurationError(missingSshJwk);
|
|
6301
6341
|
}
|
|
6302
6342
|
}
|
|
6303
|
-
if (!StringUtils.isEmptyObj(request.claims) ||
|
|
6304
|
-
(this.config.authOptions.clientCapabilities &&
|
|
6305
|
-
this.config.authOptions.clientCapabilities.length > 0)) {
|
|
6306
|
-
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
|
|
6307
|
-
}
|
|
6308
6343
|
let ccsCred = undefined;
|
|
6309
6344
|
if (request.clientInfo) {
|
|
6310
6345
|
try {
|
|
@@ -6353,6 +6388,7 @@ class AuthorizationCodeClient {
|
|
|
6353
6388
|
});
|
|
6354
6389
|
}
|
|
6355
6390
|
instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
|
|
6391
|
+
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
6356
6392
|
return mapToQueryString(parameters);
|
|
6357
6393
|
}
|
|
6358
6394
|
/**
|
|
@@ -6396,7 +6432,7 @@ class AuthorizationCodeClient {
|
|
|
6396
6432
|
}
|
|
6397
6433
|
}
|
|
6398
6434
|
|
|
6399
|
-
/*! @azure/msal-common v16.
|
|
6435
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6400
6436
|
|
|
6401
6437
|
/*
|
|
6402
6438
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6586,11 +6622,6 @@ class RefreshTokenClient {
|
|
|
6586
6622
|
throw createClientConfigurationError(missingSshJwk);
|
|
6587
6623
|
}
|
|
6588
6624
|
}
|
|
6589
|
-
if (!StringUtils.isEmptyObj(request.claims) ||
|
|
6590
|
-
(this.config.authOptions.clientCapabilities &&
|
|
6591
|
-
this.config.authOptions.clientCapabilities.length > 0)) {
|
|
6592
|
-
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
|
|
6593
|
-
}
|
|
6594
6625
|
if (this.config.systemOptions.preventCorsPreflight &&
|
|
6595
6626
|
request.ccsCredential) {
|
|
6596
6627
|
switch (request.ccsCredential.type) {
|
|
@@ -6617,11 +6648,12 @@ class RefreshTokenClient {
|
|
|
6617
6648
|
});
|
|
6618
6649
|
}
|
|
6619
6650
|
instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
|
|
6651
|
+
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
6620
6652
|
return mapToQueryString(parameters);
|
|
6621
6653
|
}
|
|
6622
6654
|
}
|
|
6623
6655
|
|
|
6624
|
-
/*! @azure/msal-common v16.
|
|
6656
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6625
6657
|
|
|
6626
6658
|
/*
|
|
6627
6659
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6737,7 +6769,7 @@ class SilentFlowClient {
|
|
|
6737
6769
|
}
|
|
6738
6770
|
}
|
|
6739
6771
|
|
|
6740
|
-
/*! @azure/msal-common v16.
|
|
6772
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6741
6773
|
|
|
6742
6774
|
/*
|
|
6743
6775
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6752,7 +6784,7 @@ const StubbedNetworkModule = {
|
|
|
6752
6784
|
},
|
|
6753
6785
|
};
|
|
6754
6786
|
|
|
6755
|
-
/*! @azure/msal-common v16.
|
|
6787
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6756
6788
|
|
|
6757
6789
|
/*
|
|
6758
6790
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -6876,14 +6908,10 @@ function getStandardAuthorizeRequestParameters(authOptions, request, logger, per
|
|
|
6876
6908
|
if (request.state) {
|
|
6877
6909
|
addState(parameters, request.state);
|
|
6878
6910
|
}
|
|
6879
|
-
if (request.claims ||
|
|
6880
|
-
(authOptions.clientCapabilities &&
|
|
6881
|
-
authOptions.clientCapabilities.length > 0)) {
|
|
6882
|
-
addClaims(parameters, request.claims, authOptions.clientCapabilities);
|
|
6883
|
-
}
|
|
6884
6911
|
if (request.embeddedClientId) {
|
|
6885
6912
|
addBrokerParameters(parameters, authOptions.clientId, authOptions.redirectUri);
|
|
6886
6913
|
}
|
|
6914
|
+
addClaims(parameters, request.claims, authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
6887
6915
|
// If extraQueryParameters includes instance_aware its value will be added when extraQueryParameters are added
|
|
6888
6916
|
if (authOptions.instanceAware &&
|
|
6889
6917
|
(!request.extraQueryParameters ||
|
|
@@ -6979,7 +7007,7 @@ function extractLoginHint(account) {
|
|
|
6979
7007
|
return account.loginHint || account.idTokenClaims?.login_hint || null;
|
|
6980
7008
|
}
|
|
6981
7009
|
|
|
6982
|
-
/*! @azure/msal-common v16.
|
|
7010
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
6983
7011
|
|
|
6984
7012
|
/*
|
|
6985
7013
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7012,7 +7040,7 @@ function containsResourceParam(params) {
|
|
|
7012
7040
|
return Object.prototype.hasOwnProperty.call(params, "resource");
|
|
7013
7041
|
}
|
|
7014
7042
|
|
|
7015
|
-
/*! @azure/msal-common v16.
|
|
7043
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7016
7044
|
|
|
7017
7045
|
/*
|
|
7018
7046
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7070,7 +7098,7 @@ class AuthenticationHeaderParser {
|
|
|
7070
7098
|
}
|
|
7071
7099
|
}
|
|
7072
7100
|
|
|
7073
|
-
/*! @azure/msal-common v16.
|
|
7101
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7074
7102
|
/*
|
|
7075
7103
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
7076
7104
|
* Licensed under the MIT License.
|
|
@@ -7087,7 +7115,7 @@ var AuthErrorCodes = /*#__PURE__*/Object.freeze({
|
|
|
7087
7115
|
unexpectedError: unexpectedError
|
|
7088
7116
|
});
|
|
7089
7117
|
|
|
7090
|
-
/*! @azure/msal-common v16.
|
|
7118
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7091
7119
|
|
|
7092
7120
|
/*
|
|
7093
7121
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7348,7 +7376,7 @@ class ServerTelemetryManager {
|
|
|
7348
7376
|
}
|
|
7349
7377
|
}
|
|
7350
7378
|
|
|
7351
|
-
/*! @azure/msal-common v16.
|
|
7379
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7352
7380
|
|
|
7353
7381
|
/*
|
|
7354
7382
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7369,7 +7397,7 @@ function createJoseHeaderError(code) {
|
|
|
7369
7397
|
return new JoseHeaderError(code);
|
|
7370
7398
|
}
|
|
7371
7399
|
|
|
7372
|
-
/*! @azure/msal-common v16.
|
|
7400
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7373
7401
|
/*
|
|
7374
7402
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
7375
7403
|
* Licensed under the MIT License.
|
|
@@ -7377,7 +7405,7 @@ function createJoseHeaderError(code) {
|
|
|
7377
7405
|
const missingKidError = "missing_kid_error";
|
|
7378
7406
|
const missingAlgError = "missing_alg_error";
|
|
7379
7407
|
|
|
7380
|
-
/*! @azure/msal-common v16.
|
|
7408
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7381
7409
|
|
|
7382
7410
|
/*
|
|
7383
7411
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -7417,7 +7445,7 @@ class JoseHeader {
|
|
|
7417
7445
|
}
|
|
7418
7446
|
}
|
|
7419
7447
|
|
|
7420
|
-
/*! @azure/msal-common v16.
|
|
7448
|
+
/*! @azure/msal-common v16.5.1 2026-04-21 */
|
|
7421
7449
|
|
|
7422
7450
|
/*
|
|
7423
7451
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -8002,6 +8030,7 @@ const StandardInteractionClientGetDiscoveredAuthority = "standardInteractionClie
|
|
|
8002
8030
|
* Used to acquire a token from Native component when native brokering is enabled.
|
|
8003
8031
|
*/
|
|
8004
8032
|
const NativeInteractionClientAcquireToken = "nativeInteractionClientAcquireToken";
|
|
8033
|
+
const NativeInteractionClientAcquireTokenRedirect = "nativeInteractionClientAcquireToken";
|
|
8005
8034
|
/**
|
|
8006
8035
|
* acquireTokenByRefreshToken API in RefreshTokenClient (msal-common).
|
|
8007
8036
|
*/
|
|
@@ -8075,7 +8104,7 @@ const LoadRefreshToken = "loadRefreshToken";
|
|
|
8075
8104
|
* Background telemetry measurement that tracks whether a late bridge response
|
|
8076
8105
|
* arrives after the iframe timeout has already fired.
|
|
8077
8106
|
*/
|
|
8078
|
-
const WaitForBridgeLateResponse = "waitForBridgeLateResponse";
|
|
8107
|
+
const WaitForBridgeLateResponse$1 = "waitForBridgeLateResponse";
|
|
8079
8108
|
|
|
8080
8109
|
/*
|
|
8081
8110
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -9001,7 +9030,7 @@ async function waitForBridgeResponse(timeoutMs, logger, browserCrypto, request,
|
|
|
9001
9030
|
// Clear the active monitor
|
|
9002
9031
|
activeBridgeMonitor = null;
|
|
9003
9032
|
if (experimentalConfig?.iframeTimeoutTelemetry) {
|
|
9004
|
-
lateMeasurement = performanceClient.startMeasurement(WaitForBridgeLateResponse, correlationId);
|
|
9033
|
+
lateMeasurement = performanceClient.startMeasurement(WaitForBridgeLateResponse$1, correlationId);
|
|
9005
9034
|
timedOut$1 = true;
|
|
9006
9035
|
lateTimeoutId = window.setTimeout(() => {
|
|
9007
9036
|
lateMeasurement?.end({ success: false });
|
|
@@ -9802,7 +9831,14 @@ const InitializeClientApplication = "initializeClientApplication";
|
|
|
9802
9831
|
// Update cache storage
|
|
9803
9832
|
const LocalStorageUpdated = "localStorageUpdated";
|
|
9804
9833
|
// Load external tokens
|
|
9805
|
-
const LoadExternalTokens = "loadExternalTokens";
|
|
9834
|
+
const LoadExternalTokens = "loadExternalTokens";
|
|
9835
|
+
/**
|
|
9836
|
+
* SSO capability verification call (msal-browser).
|
|
9837
|
+
* Fire-and-forget SSO verification call made after interactive authentication completes.
|
|
9838
|
+
*/
|
|
9839
|
+
const SsoCapable = "ssoCapable";
|
|
9840
|
+
// Wait for late response from bridge after timeout has already occurred
|
|
9841
|
+
const WaitForBridgeLateResponse = "waitForBridgeLateResponse";
|
|
9806
9842
|
|
|
9807
9843
|
var BrowserRootPerformanceEvents = /*#__PURE__*/Object.freeze({
|
|
9808
9844
|
__proto__: null,
|
|
@@ -9814,7 +9850,9 @@ var BrowserRootPerformanceEvents = /*#__PURE__*/Object.freeze({
|
|
|
9814
9850
|
InitializeClientApplication: InitializeClientApplication,
|
|
9815
9851
|
LoadExternalTokens: LoadExternalTokens,
|
|
9816
9852
|
LocalStorageUpdated: LocalStorageUpdated,
|
|
9817
|
-
|
|
9853
|
+
SsoCapable: SsoCapable,
|
|
9854
|
+
SsoSilent: SsoSilent,
|
|
9855
|
+
WaitForBridgeLateResponse: WaitForBridgeLateResponse
|
|
9818
9856
|
});
|
|
9819
9857
|
|
|
9820
9858
|
/*
|
|
@@ -9824,8 +9862,8 @@ var BrowserRootPerformanceEvents = /*#__PURE__*/Object.freeze({
|
|
|
9824
9862
|
const PREFIX = "msal";
|
|
9825
9863
|
const BROWSER_PREFIX = "browser";
|
|
9826
9864
|
const CACHE_KEY_SEPARATOR = "|";
|
|
9827
|
-
const CREDENTIAL_SCHEMA_VERSION =
|
|
9828
|
-
const ACCOUNT_SCHEMA_VERSION =
|
|
9865
|
+
const CREDENTIAL_SCHEMA_VERSION = 3;
|
|
9866
|
+
const ACCOUNT_SCHEMA_VERSION = 3;
|
|
9829
9867
|
const LOG_LEVEL_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.level`;
|
|
9830
9868
|
const LOG_PII_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.pii`;
|
|
9831
9869
|
const BROWSER_PERF_ENABLED_KEY = `${PREFIX}.${BROWSER_PREFIX}.performance.enabled`;
|
|
@@ -9833,6 +9871,7 @@ const PLATFORM_AUTH_DOM_SUPPORT = `${PREFIX}.${BROWSER_PREFIX}.platform.auth.dom
|
|
|
9833
9871
|
const VERSION_CACHE_KEY = `${PREFIX}.version`;
|
|
9834
9872
|
const ACCOUNT_KEYS = "account.keys";
|
|
9835
9873
|
const TOKEN_KEYS = "token.keys";
|
|
9874
|
+
const SSO_CAPABLE = `${PREFIX}.${BROWSER_PREFIX}.sso.capable`;
|
|
9836
9875
|
function getAccountKeysCacheKey(schema = ACCOUNT_SCHEMA_VERSION) {
|
|
9837
9876
|
if (schema < 1) {
|
|
9838
9877
|
return `${PREFIX}.${ACCOUNT_KEYS}`;
|
|
@@ -10331,7 +10370,7 @@ const EventType = {
|
|
|
10331
10370
|
|
|
10332
10371
|
/* eslint-disable header/header */
|
|
10333
10372
|
const name = "@azure/msal-browser";
|
|
10334
|
-
const version = "5.
|
|
10373
|
+
const version = "5.8.0";
|
|
10335
10374
|
|
|
10336
10375
|
/*
|
|
10337
10376
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -10614,7 +10653,9 @@ class BrowserCacheManager extends CacheManager {
|
|
|
10614
10653
|
}
|
|
10615
10654
|
await this.setUserData(newIdTokenKey, JSON.stringify(oldSchemaData), correlationId, oldSchemaData.lastUpdatedAt, kmsi);
|
|
10616
10655
|
this.performanceClient.incrementFields({ migratedITCount: 1 }, correlationId);
|
|
10617
|
-
currentCredentialKeys.idToken.
|
|
10656
|
+
if (!currentCredentialKeys.idToken.includes(newIdTokenKey)) {
|
|
10657
|
+
currentCredentialKeys.idToken.push(newIdTokenKey);
|
|
10658
|
+
}
|
|
10618
10659
|
}
|
|
10619
10660
|
}
|
|
10620
10661
|
this.setTokenKeys(credentialKeysToMigrate, correlationId, credentialSchema);
|
|
@@ -11463,10 +11504,8 @@ class BrowserCacheManager extends CacheManager {
|
|
|
11463
11504
|
return `${PREFIX}.${this.clientId}.${key}`;
|
|
11464
11505
|
}
|
|
11465
11506
|
/**
|
|
11466
|
-
*
|
|
11467
|
-
*
|
|
11468
|
-
* AccessToken Example: uid.utid-login.microsoftonline.com-accesstoken-app_client_id-contoso.com-scope1 scope2--pop
|
|
11469
|
-
* RefreshToken Example: uid.utid-login.microsoftonline.com-refreshtoken-1-contoso.com
|
|
11507
|
+
* Generate Credential Key. All changes to the key REQUIRE a schema version update.
|
|
11508
|
+
* Cache Key: msal.<schema_version>|<home_account_id>|<environment>|<credential_type>|<client_id or familyId>|<realm>|<scopes>|<scheme>
|
|
11470
11509
|
* @param credentialEntity
|
|
11471
11510
|
* @returns
|
|
11472
11511
|
*/
|
|
@@ -12434,7 +12473,6 @@ const unsupportedMethod = "unsupported_method";
|
|
|
12434
12473
|
const USER_INTERACTION_REQUIRED = "USER_INTERACTION_REQUIRED";
|
|
12435
12474
|
const USER_CANCEL = "USER_CANCEL";
|
|
12436
12475
|
const NO_NETWORK = "NO_NETWORK";
|
|
12437
|
-
const PERSISTENT_ERROR = "PERSISTENT_ERROR";
|
|
12438
12476
|
const DISABLED = "DISABLED";
|
|
12439
12477
|
const ACCOUNT_UNAVAILABLE = "ACCOUNT_UNAVAILABLE";
|
|
12440
12478
|
const UX_NOT_ALLOWED = "UX_NOT_ALLOWED";
|
|
@@ -12458,8 +12496,7 @@ class NativeAuthError extends AuthError {
|
|
|
12458
12496
|
function isFatalNativeAuthError(error) {
|
|
12459
12497
|
if (error.ext &&
|
|
12460
12498
|
error.ext.status &&
|
|
12461
|
-
|
|
12462
|
-
error.ext.status === DISABLED)) {
|
|
12499
|
+
error.ext.status === DISABLED) {
|
|
12463
12500
|
return true;
|
|
12464
12501
|
}
|
|
12465
12502
|
if (error.ext &&
|
|
@@ -12585,12 +12622,12 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12585
12622
|
async acquireToken(request, cacheLookupPolicy) {
|
|
12586
12623
|
this.logger.trace("03qeos", this.correlationId);
|
|
12587
12624
|
// start the perf measurement
|
|
12588
|
-
const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken,
|
|
12625
|
+
const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken, this.correlationId);
|
|
12589
12626
|
const reqTimestamp = nowSeconds();
|
|
12590
12627
|
const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
|
|
12591
12628
|
try {
|
|
12592
12629
|
// initialize native request
|
|
12593
|
-
const nativeRequest = await this.
|
|
12630
|
+
const nativeRequest = await this.initializePlatformRequest(request);
|
|
12594
12631
|
// check if the tokens can be retrieved from internal cache
|
|
12595
12632
|
try {
|
|
12596
12633
|
const result = await this.acquireTokensFromCache(this.accountId, nativeRequest);
|
|
@@ -12604,6 +12641,10 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12604
12641
|
catch (e) {
|
|
12605
12642
|
if (cacheLookupPolicy === CacheLookupPolicy.AccessToken) {
|
|
12606
12643
|
this.logger.info("0eitbc", this.correlationId);
|
|
12644
|
+
nativeATMeasurement.end({
|
|
12645
|
+
success: false,
|
|
12646
|
+
brokerErrorCode: "cache_request_failed",
|
|
12647
|
+
});
|
|
12607
12648
|
throw e;
|
|
12608
12649
|
}
|
|
12609
12650
|
// continue with a native call for any and all errors
|
|
@@ -12625,7 +12666,6 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12625
12666
|
success: false,
|
|
12626
12667
|
errorCode: error.errorCode,
|
|
12627
12668
|
subErrorCode: error.subError,
|
|
12628
|
-
isNativeBroker: true,
|
|
12629
12669
|
});
|
|
12630
12670
|
throw error;
|
|
12631
12671
|
});
|
|
@@ -12634,6 +12674,9 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12634
12674
|
if (e instanceof NativeAuthError) {
|
|
12635
12675
|
serverTelemetryManager.setNativeBrokerErrorCode(e.errorCode);
|
|
12636
12676
|
}
|
|
12677
|
+
nativeATMeasurement.end({
|
|
12678
|
+
success: false,
|
|
12679
|
+
});
|
|
12637
12680
|
throw e;
|
|
12638
12681
|
}
|
|
12639
12682
|
}
|
|
@@ -12666,7 +12709,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12666
12709
|
// fetch the account from browser cache
|
|
12667
12710
|
const account = this.browserStorage.getBaseAccountInfo({
|
|
12668
12711
|
nativeAccountId,
|
|
12669
|
-
},
|
|
12712
|
+
}, this.correlationId);
|
|
12670
12713
|
if (!account) {
|
|
12671
12714
|
throw createClientAuthError(noAccountFound);
|
|
12672
12715
|
}
|
|
@@ -12674,13 +12717,14 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12674
12717
|
try {
|
|
12675
12718
|
const silentRequest = this.createSilentCacheRequest(request, account);
|
|
12676
12719
|
const result = await this.silentCacheClient.acquireToken(silentRequest);
|
|
12677
|
-
const
|
|
12678
|
-
|
|
12679
|
-
|
|
12680
|
-
|
|
12681
|
-
};
|
|
12720
|
+
const idToken = this.browserStorage.getIdToken(account, this.correlationId, this.browserStorage.getTokenKeys(), account.tenantId);
|
|
12721
|
+
const idTokenClaims = extractTokenClaims(idToken?.secret || "", base64Decode);
|
|
12722
|
+
const fullAccount = updateAccountTenantProfileData(account, undefined, // tenantProfile optional
|
|
12723
|
+
idTokenClaims, idToken?.secret);
|
|
12682
12724
|
return {
|
|
12683
12725
|
...result,
|
|
12726
|
+
idToken: idToken?.secret || "",
|
|
12727
|
+
idTokenClaims: idTokenClaims,
|
|
12684
12728
|
account: fullAccount,
|
|
12685
12729
|
};
|
|
12686
12730
|
}
|
|
@@ -12696,7 +12740,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12696
12740
|
*/
|
|
12697
12741
|
async acquireTokenRedirect(request, rootMeasurement, options) {
|
|
12698
12742
|
this.logger.trace("0luikq", this.correlationId);
|
|
12699
|
-
const nativeRequest = await this.
|
|
12743
|
+
const nativeRequest = await this.initializePlatformRequest(request);
|
|
12700
12744
|
const navigateToLoginRequestUrl = options?.navigateToLoginRequestUrl ?? true;
|
|
12701
12745
|
try {
|
|
12702
12746
|
await this.platformAuthProvider.sendMessage(nativeRequest);
|
|
@@ -12728,7 +12772,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12728
12772
|
* @param performanceClient {IPerformanceClient?}
|
|
12729
12773
|
* @param correlationId {string?} correlation identifier
|
|
12730
12774
|
*/
|
|
12731
|
-
async handleRedirectPromise(
|
|
12775
|
+
async handleRedirectPromise() {
|
|
12732
12776
|
this.logger.trace("1c5lhw", this.correlationId);
|
|
12733
12777
|
if (!this.browserStorage.isInteractionInProgress(true)) {
|
|
12734
12778
|
this.logger.info("0le6uv", this.correlationId);
|
|
@@ -12738,9 +12782,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12738
12782
|
const cachedRequest = this.browserStorage.getCachedNativeRequest();
|
|
12739
12783
|
if (!cachedRequest) {
|
|
12740
12784
|
this.logger.verbose("0a6zjb", this.correlationId);
|
|
12741
|
-
|
|
12742
|
-
performanceClient?.addFields({ errorCode: "no_cached_request" }, correlationId);
|
|
12743
|
-
}
|
|
12785
|
+
this.performanceClient?.addFields({ errorCode: "no_cached_request" }, this.correlationId);
|
|
12744
12786
|
return null;
|
|
12745
12787
|
}
|
|
12746
12788
|
const { prompt, ...request } = cachedRequest;
|
|
@@ -12755,6 +12797,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12755
12797
|
const authResult = await this.handleNativeResponse(response, request, reqTimestamp);
|
|
12756
12798
|
const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
|
|
12757
12799
|
serverTelemetryManager.clearNativeBrokerErrorCode();
|
|
12800
|
+
this.performanceClient?.addFields({ isNativeBroker: true }, this.correlationId);
|
|
12758
12801
|
return authResult;
|
|
12759
12802
|
}
|
|
12760
12803
|
catch (e) {
|
|
@@ -12804,7 +12847,8 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12804
12847
|
const result = await this.generateAuthenticationResult(response, request, idTokenClaims, baseAccount, authority.canonicalAuthority, reqTimestamp);
|
|
12805
12848
|
// cache accounts and tokens in the appropriate storage
|
|
12806
12849
|
await this.cacheAccount(baseAccount, isKmsi(idTokenClaims));
|
|
12807
|
-
await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims,
|
|
12850
|
+
await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, result.tenantId, reqTimestamp, authority.getPreferredCache() // environment
|
|
12851
|
+
);
|
|
12808
12852
|
return result;
|
|
12809
12853
|
}
|
|
12810
12854
|
/**
|
|
@@ -12943,8 +12987,8 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12943
12987
|
* @param tenantId
|
|
12944
12988
|
* @param reqTimestamp
|
|
12945
12989
|
*/
|
|
12946
|
-
cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims,
|
|
12947
|
-
const cachedIdToken = createIdTokenEntity(homeAccountIdentifier,
|
|
12990
|
+
async cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, tenantId, reqTimestamp, environment) {
|
|
12991
|
+
const cachedIdToken = createIdTokenEntity(homeAccountIdentifier, environment, response.id_token || "", request.clientId, idTokenClaims.tid || "");
|
|
12948
12992
|
// cache accessToken in inmemory storage
|
|
12949
12993
|
const expiresIn = request.tokenType === AuthenticationScheme$1.POP
|
|
12950
12994
|
? SHR_NONCE_VALIDITY
|
|
@@ -12953,9 +12997,13 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
12953
12997
|
: response.expires_in) || 0;
|
|
12954
12998
|
const tokenExpirationSeconds = reqTimestamp + expiresIn;
|
|
12955
12999
|
const responseScopes = this.generateScopes(response.scope, request.scope);
|
|
12956
|
-
const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier,
|
|
13000
|
+
const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier, environment, response.access_token, request.clientId, idTokenClaims.tid || tenantId, responseScopes.printScopes(), tokenExpirationSeconds, 0, base64Decode, undefined, request.tokenType, undefined, request.keyId);
|
|
13001
|
+
// save idtoken credential in configured browser storage
|
|
13002
|
+
if (!!cachedIdToken && request.storeInCache?.idToken !== false) {
|
|
13003
|
+
await this.browserStorage.setIdTokenCredential(cachedIdToken, this.correlationId, isKmsi(idTokenClaims));
|
|
13004
|
+
}
|
|
13005
|
+
// save access token credential in memory storage
|
|
12957
13006
|
const nativeCacheRecord = {
|
|
12958
|
-
idToken: cachedIdToken,
|
|
12959
13007
|
accessToken: cachedAccessToken,
|
|
12960
13008
|
};
|
|
12961
13009
|
return this.nativeStorageManager.saveCacheRecord(nativeCacheRecord, this.correlationId, isKmsi(idTokenClaims), this.apiId, request.storeInCache);
|
|
@@ -13023,15 +13071,23 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
13023
13071
|
* Translates developer provided request object into NativeRequest object
|
|
13024
13072
|
* @param request
|
|
13025
13073
|
*/
|
|
13026
|
-
async
|
|
13027
|
-
this.logger.trace("
|
|
13074
|
+
async initializePlatformRequest(request) {
|
|
13075
|
+
this.logger.trace("1xdm2a", this.correlationId);
|
|
13028
13076
|
const canonicalAuthority = await this.getCanonicalAuthority(request);
|
|
13077
|
+
// ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
|
|
13078
|
+
const configClaims = request.skipBrokerClaims && !!request.embeddedClientId
|
|
13079
|
+
? undefined
|
|
13080
|
+
: this.config.auth.clientCapabilities;
|
|
13029
13081
|
// scopes are expected to be received by the native broker as "scope" and will be added to the request below. Other properties that should be dropped from the request to the native broker can be included in the object destructuring here.
|
|
13030
|
-
const { scopes, ...remainingProperties } = request;
|
|
13082
|
+
const { scopes, claims, ...remainingProperties } = request;
|
|
13031
13083
|
const scopeSet = new ScopeSet(scopes || []);
|
|
13032
13084
|
scopeSet.appendScopes(OIDC_DEFAULT_SCOPES$1);
|
|
13085
|
+
const mergedClaims = configClaims && configClaims.length
|
|
13086
|
+
? addClientCapabilitiesToClaims$1(claims, configClaims)
|
|
13087
|
+
: claims;
|
|
13033
13088
|
const validatedRequest = {
|
|
13034
13089
|
...remainingProperties,
|
|
13090
|
+
claims: mergedClaims,
|
|
13035
13091
|
accountId: this.accountId,
|
|
13036
13092
|
clientId: this.config.auth.clientId,
|
|
13037
13093
|
authority: canonicalAuthority.urlString,
|
|
@@ -13101,12 +13157,12 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
13101
13157
|
switch (this.apiId) {
|
|
13102
13158
|
case ApiId.ssoSilent:
|
|
13103
13159
|
case ApiId.acquireTokenSilent_silentFlow:
|
|
13104
|
-
this.logger.trace("
|
|
13160
|
+
this.logger.trace("12n1y2", this.correlationId);
|
|
13105
13161
|
return PromptValue$1.NONE;
|
|
13106
13162
|
}
|
|
13107
13163
|
// Prompt not provided, request may proceed and native broker decides if it needs to prompt
|
|
13108
13164
|
if (!prompt) {
|
|
13109
|
-
this.logger.trace("
|
|
13165
|
+
this.logger.trace("0uid1p", this.correlationId);
|
|
13110
13166
|
return undefined;
|
|
13111
13167
|
}
|
|
13112
13168
|
// If request is interactive, check if prompt provided is allowed to go directly to native broker
|
|
@@ -13114,10 +13170,10 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
13114
13170
|
case PromptValue$1.NONE:
|
|
13115
13171
|
case PromptValue$1.CONSENT:
|
|
13116
13172
|
case PromptValue$1.LOGIN:
|
|
13117
|
-
this.logger.trace("
|
|
13173
|
+
this.logger.trace("0i0hco", this.correlationId);
|
|
13118
13174
|
return prompt;
|
|
13119
13175
|
default:
|
|
13120
|
-
this.logger.trace("
|
|
13176
|
+
this.logger.trace("0w3tpw", this.correlationId);
|
|
13121
13177
|
throw createBrowserAuthError(nativePromptNotSupported);
|
|
13122
13178
|
}
|
|
13123
13179
|
}
|
|
@@ -13153,7 +13209,7 @@ class PlatformAuthInteractionClient extends BaseInteractionClient {
|
|
|
13153
13209
|
this.performanceClient?.addFields({
|
|
13154
13210
|
embeddedClientId: child_client_id,
|
|
13155
13211
|
embeddedRedirectUri: child_redirect_uri,
|
|
13156
|
-
},
|
|
13212
|
+
}, this.correlationId);
|
|
13157
13213
|
}
|
|
13158
13214
|
}
|
|
13159
13215
|
|
|
@@ -13240,6 +13296,10 @@ async function getStandardParameters(config, authority, request, logger, perform
|
|
|
13240
13296
|
if (request.platformBroker) {
|
|
13241
13297
|
// signal ests that this is a WAM call
|
|
13242
13298
|
addNativeBroker(parameters);
|
|
13299
|
+
// instrument JS-platform bridge specific fields
|
|
13300
|
+
performanceClient.addFields({
|
|
13301
|
+
isPlatformAuthorizeRequest: true,
|
|
13302
|
+
}, request.correlationId);
|
|
13243
13303
|
// pass the req_cnf for POP
|
|
13244
13304
|
if (request.authenticationScheme === AuthenticationScheme$1.POP) {
|
|
13245
13305
|
const cryptoOps = new CryptoOps(logger, performanceClient);
|
|
@@ -13709,6 +13769,7 @@ function buildConfiguration({ auth: userInputAuth, cache: userInputCache, system
|
|
|
13709
13769
|
},
|
|
13710
13770
|
instanceAware: false,
|
|
13711
13771
|
isMcp: false,
|
|
13772
|
+
verifySSO: false,
|
|
13712
13773
|
};
|
|
13713
13774
|
// Default cache options for browser
|
|
13714
13775
|
const DEFAULT_CACHE_OPTIONS = {
|
|
@@ -13803,7 +13864,7 @@ class PlatformAuthExtensionHandler {
|
|
|
13803
13864
|
this.messageChannel = new MessageChannel();
|
|
13804
13865
|
this.windowListener = this.onWindowMessage.bind(this); // Window event callback doesn't have access to 'this' unless it's bound
|
|
13805
13866
|
this.performanceClient = performanceClient;
|
|
13806
|
-
this.handshakeEvent = performanceClient.startMeasurement(NativeMessageHandlerHandshake);
|
|
13867
|
+
this.handshakeEvent = this.performanceClient.startMeasurement(NativeMessageHandlerHandshake);
|
|
13807
13868
|
this.platformAuthType =
|
|
13808
13869
|
PlatformAuthConstants.PLATFORM_EXTENSION_PROVIDER;
|
|
13809
13870
|
}
|
|
@@ -14261,7 +14322,7 @@ function isDomEnabledForPlatformAuth() {
|
|
|
14261
14322
|
}
|
|
14262
14323
|
}
|
|
14263
14324
|
/**
|
|
14264
|
-
* Returns boolean indicating whether or not the request should attempt to use
|
|
14325
|
+
* Returns boolean indicating whether or not the request should attempt to use platform broker
|
|
14265
14326
|
* @param logger
|
|
14266
14327
|
* @param config
|
|
14267
14328
|
* @param correlationId
|
|
@@ -14543,6 +14604,10 @@ class PopupClient extends StandardInteractionClient {
|
|
|
14543
14604
|
return;
|
|
14544
14605
|
}
|
|
14545
14606
|
}
|
|
14607
|
+
// Redirect bridge requires "state" param to work properly
|
|
14608
|
+
validRequest.state = setRequestState(this.browserCrypto, validRequest.state || "", {
|
|
14609
|
+
interactionType: exports.InteractionType.Popup,
|
|
14610
|
+
});
|
|
14546
14611
|
// Create logout string and navigate user window to logout.
|
|
14547
14612
|
const logoutUri = authClient.getLogoutUri(validRequest);
|
|
14548
14613
|
this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, validRequest.correlationId, exports.InteractionType.Popup, validRequest);
|
|
@@ -15083,6 +15148,10 @@ class RedirectClient extends StandardInteractionClient {
|
|
|
15083
15148
|
}
|
|
15084
15149
|
}
|
|
15085
15150
|
}
|
|
15151
|
+
// Redirect bridge requires "state" param to work properly
|
|
15152
|
+
validLogoutRequest.state = setRequestState(this.browserCrypto, validLogoutRequest.state || "", {
|
|
15153
|
+
interactionType: exports.InteractionType.Redirect,
|
|
15154
|
+
});
|
|
15086
15155
|
// Create logout string and navigate user window to logout.
|
|
15087
15156
|
const logoutUri = authClient.getLogoutUri(validLogoutRequest);
|
|
15088
15157
|
if (validLogoutRequest.account?.homeAccountId) {
|
|
@@ -15331,6 +15400,38 @@ class SilentIframeClient extends StandardInteractionClient {
|
|
|
15331
15400
|
return invokeAsync(handleResponseEAR, HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
|
|
15332
15401
|
}
|
|
15333
15402
|
}
|
|
15403
|
+
/**
|
|
15404
|
+
* Verifies SSO capability by making an iframe request to /authorize without exchanging the code for tokens.
|
|
15405
|
+
* This is useful for verifying SSO capability in the background without the overhead of a full token exchange.
|
|
15406
|
+
* @param request - The SSO silent request
|
|
15407
|
+
* @returns true if SSO verification was successful with a valid authorization code, false otherwise
|
|
15408
|
+
*/
|
|
15409
|
+
async verifySso(request) {
|
|
15410
|
+
const inputRequest = { ...request };
|
|
15411
|
+
if (!inputRequest.prompt) {
|
|
15412
|
+
inputRequest.prompt = PromptValue$1.NONE;
|
|
15413
|
+
}
|
|
15414
|
+
// Create silent request
|
|
15415
|
+
const silentRequest = await invokeAsync(initializeAuthorizationRequest, StandardInteractionClientInitializeAuthorizationRequest, this.logger, this.performanceClient, this.correlationId)(inputRequest, exports.InteractionType.Silent, this.config, this.browserCrypto, this.browserStorage, this.logger, this.performanceClient, this.correlationId);
|
|
15416
|
+
const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, this.correlationId)({
|
|
15417
|
+
serverTelemetryManager: initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger),
|
|
15418
|
+
requestAuthority: silentRequest.authority,
|
|
15419
|
+
requestAzureCloudOptions: silentRequest.azureCloudOptions,
|
|
15420
|
+
requestExtraQueryParameters: silentRequest.extraQueryParameters,
|
|
15421
|
+
account: silentRequest.account,
|
|
15422
|
+
});
|
|
15423
|
+
const { serverParams } = await this.silentAuthorizeHelper(authClient, silentRequest);
|
|
15424
|
+
const correlationId = silentRequest.correlationId;
|
|
15425
|
+
// Validate the response - this checks for errors and validates state
|
|
15426
|
+
validateAuthorizationResponse(serverParams, silentRequest.state);
|
|
15427
|
+
// Verify a valid authorization code is present
|
|
15428
|
+
if (!serverParams.code) {
|
|
15429
|
+
this.logger.warning("0y34ti", correlationId);
|
|
15430
|
+
return false;
|
|
15431
|
+
}
|
|
15432
|
+
this.logger.verbose("0kkkcj", correlationId);
|
|
15433
|
+
return true;
|
|
15434
|
+
}
|
|
15334
15435
|
/**
|
|
15335
15436
|
* Currently Unsupported
|
|
15336
15437
|
*/
|
|
@@ -15345,6 +15446,16 @@ class SilentIframeClient extends StandardInteractionClient {
|
|
|
15345
15446
|
* @param userRequestScopes
|
|
15346
15447
|
*/
|
|
15347
15448
|
async silentTokenHelper(authClient, request) {
|
|
15449
|
+
const { serverParams, pkceCodes } = await this.silentAuthorizeHelper(authClient, request);
|
|
15450
|
+
return invokeAsync(handleResponseCode, HandleResponseCode, this.logger, this.performanceClient, request.correlationId)(request, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
|
|
15451
|
+
}
|
|
15452
|
+
/**
|
|
15453
|
+
* Shared helper that generates PKCE codes, builds the /authorize URL,
|
|
15454
|
+
* loads it in a hidden iframe, waits for the redirect-bridge response,
|
|
15455
|
+
* and returns the deserialized server parameters along with the PKCE codes
|
|
15456
|
+
* and the request that was sent.
|
|
15457
|
+
*/
|
|
15458
|
+
async silentAuthorizeHelper(authClient, request) {
|
|
15348
15459
|
const correlationId = request.correlationId;
|
|
15349
15460
|
const pkceCodes = await invokeAsync(generatePkceCodes, GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
|
|
15350
15461
|
const silentRequest = {
|
|
@@ -15371,7 +15482,7 @@ class SilentIframeClient extends StandardInteractionClient {
|
|
|
15371
15482
|
invoke(removeHiddenIframe, RemoveHiddenIframe, this.logger, this.performanceClient, correlationId)(iframe);
|
|
15372
15483
|
}
|
|
15373
15484
|
const serverParams = invoke(deserializeResponse, DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger, this.correlationId);
|
|
15374
|
-
return
|
|
15485
|
+
return { serverParams, pkceCodes, silentRequest };
|
|
15375
15486
|
}
|
|
15376
15487
|
}
|
|
15377
15488
|
|
|
@@ -15750,22 +15861,25 @@ class StandardController {
|
|
|
15750
15861
|
}
|
|
15751
15862
|
const loggedInAccounts = this.getAllAccounts();
|
|
15752
15863
|
const platformBrokerRequest = this.browserStorage.getCachedNativeRequest();
|
|
15753
|
-
const useNative = platformBrokerRequest &&
|
|
15754
|
-
this.platformAuthProvider &&
|
|
15755
|
-
!options?.hash;
|
|
15864
|
+
const useNative = platformBrokerRequest && !options?.hash;
|
|
15756
15865
|
let rootMeasurement;
|
|
15757
15866
|
let redirectResponse;
|
|
15867
|
+
let cachedRedirectRequest;
|
|
15758
15868
|
try {
|
|
15759
15869
|
if (useNative && this.platformAuthProvider) {
|
|
15760
15870
|
const correlationId = platformBrokerRequest?.correlationId || "";
|
|
15761
15871
|
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, exports.InteractionType.Redirect);
|
|
15762
15872
|
rootMeasurement = this.performanceClient.startMeasurement(AcquireTokenRedirect, correlationId);
|
|
15763
15873
|
this.logger.trace("12v7is", correlationId);
|
|
15874
|
+
rootMeasurement.add({
|
|
15875
|
+
isPlatformBrokerRequest: true,
|
|
15876
|
+
});
|
|
15764
15877
|
const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.handleRedirectPromise, this.performanceClient, this.platformAuthProvider, platformBrokerRequest.accountId, this.nativeInternalStorage, platformBrokerRequest.correlationId);
|
|
15765
|
-
redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)(
|
|
15878
|
+
redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)();
|
|
15766
15879
|
}
|
|
15767
15880
|
else {
|
|
15768
15881
|
const [standardRequest, codeVerifier] = this.browserStorage.getCachedRequest("");
|
|
15882
|
+
cachedRedirectRequest = standardRequest;
|
|
15769
15883
|
const correlationId = standardRequest.correlationId;
|
|
15770
15884
|
this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, exports.InteractionType.Redirect);
|
|
15771
15885
|
// Reset rootMeasurement now that we have correlationId
|
|
@@ -15794,6 +15908,8 @@ class StandardController {
|
|
|
15794
15908
|
rootMeasurement.end({
|
|
15795
15909
|
success: true,
|
|
15796
15910
|
}, undefined, result.account);
|
|
15911
|
+
// Fire-and-forget SSO capability verification in background
|
|
15912
|
+
this.verifySsoCapability(cachedRedirectRequest, exports.InteractionType.Redirect);
|
|
15797
15913
|
}
|
|
15798
15914
|
else {
|
|
15799
15915
|
/*
|
|
@@ -15859,12 +15975,14 @@ class StandardController {
|
|
|
15859
15975
|
if (this.platformAuthProvider &&
|
|
15860
15976
|
this.canUsePlatformBroker(request)) {
|
|
15861
15977
|
const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.acquireTokenRedirect, this.performanceClient, this.platformAuthProvider, this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
|
|
15862
|
-
result = nativeClient
|
|
15863
|
-
.
|
|
15864
|
-
|
|
15978
|
+
result = invokeAsync(nativeClient.acquireTokenRedirect.bind(nativeClient), NativeInteractionClientAcquireTokenRedirect, this.logger, this.performanceClient, correlationId)(request, atrMeasurement).catch((e) => {
|
|
15979
|
+
atrMeasurement.add({
|
|
15980
|
+
brokerErrorName: e.name,
|
|
15981
|
+
brokerErrorCode: e.errorCode,
|
|
15982
|
+
});
|
|
15865
15983
|
if (e instanceof NativeAuthError &&
|
|
15866
15984
|
isFatalNativeAuthError(e)) {
|
|
15867
|
-
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
|
|
15985
|
+
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
|
|
15868
15986
|
const redirectClient = this.createRedirectClient(correlationId);
|
|
15869
15987
|
return redirectClient.acquireToken(request);
|
|
15870
15988
|
}
|
|
@@ -15930,6 +16048,9 @@ class StandardController {
|
|
|
15930
16048
|
let result;
|
|
15931
16049
|
const pkce = this.getPreGeneratedPkceCodes(correlationId);
|
|
15932
16050
|
if (this.canUsePlatformBroker(request)) {
|
|
16051
|
+
atPopupMeasurement.add({
|
|
16052
|
+
isPlatformBrokerRequest: true,
|
|
16053
|
+
});
|
|
15933
16054
|
result = this.acquireTokenNative({
|
|
15934
16055
|
...request,
|
|
15935
16056
|
correlationId,
|
|
@@ -15942,9 +16063,13 @@ class StandardController {
|
|
|
15942
16063
|
return response;
|
|
15943
16064
|
})
|
|
15944
16065
|
.catch((e) => {
|
|
16066
|
+
atPopupMeasurement.add({
|
|
16067
|
+
brokerErrorName: e.name,
|
|
16068
|
+
brokerErrorCode: e.errorCode,
|
|
16069
|
+
});
|
|
15945
16070
|
if (e instanceof NativeAuthError &&
|
|
15946
16071
|
isFatalNativeAuthError(e)) {
|
|
15947
|
-
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
|
|
16072
|
+
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
|
|
15948
16073
|
const popupClient = this.createPopupClient(correlationId);
|
|
15949
16074
|
return popupClient.acquireToken(request, pkce);
|
|
15950
16075
|
}
|
|
@@ -15975,6 +16100,8 @@ class StandardController {
|
|
|
15975
16100
|
accessTokenSize: result.accessToken.length,
|
|
15976
16101
|
idTokenSize: result.idToken.length,
|
|
15977
16102
|
}, undefined, result.account);
|
|
16103
|
+
// SSO capability verification in background
|
|
16104
|
+
this.verifySsoCapability(request, exports.InteractionType.Popup);
|
|
15978
16105
|
return result;
|
|
15979
16106
|
})
|
|
15980
16107
|
.catch((e) => {
|
|
@@ -16027,6 +16154,103 @@ class StandardController {
|
|
|
16027
16154
|
window.removeEventListener("online", listener);
|
|
16028
16155
|
window.removeEventListener("offline", listener);
|
|
16029
16156
|
}
|
|
16157
|
+
/**
|
|
16158
|
+
* Reads the cached ssoCapable value from localStorage.
|
|
16159
|
+
* @returns The cached ssoCapable boolean value, or undefined if not cached or expired.
|
|
16160
|
+
*/
|
|
16161
|
+
getCachedSsoCapable() {
|
|
16162
|
+
try {
|
|
16163
|
+
const cachedValue = window.localStorage.getItem(SSO_CAPABLE);
|
|
16164
|
+
if (cachedValue) {
|
|
16165
|
+
const parsed = JSON.parse(cachedValue);
|
|
16166
|
+
if (parsed &&
|
|
16167
|
+
typeof parsed.ssoCapable === "boolean" &&
|
|
16168
|
+
parsed.expiresOn &&
|
|
16169
|
+
Date.now() < parsed.expiresOn) {
|
|
16170
|
+
return parsed.ssoCapable;
|
|
16171
|
+
}
|
|
16172
|
+
}
|
|
16173
|
+
}
|
|
16174
|
+
catch {
|
|
16175
|
+
// If parsing fails, return undefined
|
|
16176
|
+
}
|
|
16177
|
+
return undefined;
|
|
16178
|
+
}
|
|
16179
|
+
/**
|
|
16180
|
+
* SSO capability verification in the background.
|
|
16181
|
+
* This method makes an iframe request to /authorize to verify SSO capability without calling /token.
|
|
16182
|
+
* This method does not block the caller and tracks telemetry for success/failure.
|
|
16183
|
+
* This method only executes if verifySSO is set to true in the auth configuration.
|
|
16184
|
+
* The result is cached in localStorage with a 24-hour TTL; the SSO verification call
|
|
16185
|
+
* is only attempted when the cached value is absent or expired.
|
|
16186
|
+
* @param request - The original request used for the authentication flow
|
|
16187
|
+
* @param interactionType - The interactionType of the AT operation for logging purposes
|
|
16188
|
+
*/
|
|
16189
|
+
verifySsoCapability(request, interactionType) {
|
|
16190
|
+
// Check if SSO capability verification is enabled
|
|
16191
|
+
if (!this.config.auth.verifySSO) {
|
|
16192
|
+
return;
|
|
16193
|
+
}
|
|
16194
|
+
// Check TTL: derive ssoCapable state from localStorage and skip if not expired
|
|
16195
|
+
const ssoCacheKey = SSO_CAPABLE;
|
|
16196
|
+
const SSO_CAPABLE_TTL_MS = 24 * 60 * 60 * 1000; // 24 hours
|
|
16197
|
+
const cachedSsoCapable = this.getCachedSsoCapable();
|
|
16198
|
+
if (cachedSsoCapable !== undefined) {
|
|
16199
|
+
this.logger.verbose("13poou", "");
|
|
16200
|
+
return;
|
|
16201
|
+
}
|
|
16202
|
+
const correlationId = createNewGuid();
|
|
16203
|
+
const ssoCapableMeasurement = this.performanceClient.startMeasurement(SsoCapable, correlationId);
|
|
16204
|
+
ssoCapableMeasurement.add({
|
|
16205
|
+
"ext.interactionType": interactionType,
|
|
16206
|
+
});
|
|
16207
|
+
this.logger.verbose("0pbr0i", correlationId);
|
|
16208
|
+
/*
|
|
16209
|
+
* Use setTimeout to ensure this runs in a separate macrotask after the current call stack completes
|
|
16210
|
+
* This ensures the result is returned to the caller before the SSO verification starts and doesn't affect performance
|
|
16211
|
+
*/
|
|
16212
|
+
setTimeout(() => {
|
|
16213
|
+
const ssoVerificationRequest = {
|
|
16214
|
+
...request,
|
|
16215
|
+
correlationId: correlationId,
|
|
16216
|
+
};
|
|
16217
|
+
const silentIframeClient = this.createSilentIframeClient(correlationId);
|
|
16218
|
+
silentIframeClient
|
|
16219
|
+
.verifySso(ssoVerificationRequest)
|
|
16220
|
+
.then((result) => {
|
|
16221
|
+
this.logger.verbose("1gd1iv", correlationId);
|
|
16222
|
+
// TBD to add profileTelemetry later in localStorage with 24h TTL
|
|
16223
|
+
try {
|
|
16224
|
+
const cacheEntry = JSON.stringify({
|
|
16225
|
+
ssoCapable: result,
|
|
16226
|
+
expiresOn: Date.now() + SSO_CAPABLE_TTL_MS,
|
|
16227
|
+
});
|
|
16228
|
+
window.localStorage.setItem(ssoCacheKey, cacheEntry);
|
|
16229
|
+
}
|
|
16230
|
+
catch {
|
|
16231
|
+
this.logger.warning("18lmoj", correlationId);
|
|
16232
|
+
}
|
|
16233
|
+
ssoCapableMeasurement.end({
|
|
16234
|
+
fromCache: false,
|
|
16235
|
+
success: result,
|
|
16236
|
+
}, undefined);
|
|
16237
|
+
})
|
|
16238
|
+
.catch((error) => {
|
|
16239
|
+
this.logger.warning("05g83w", correlationId);
|
|
16240
|
+
// reset the cache
|
|
16241
|
+
try {
|
|
16242
|
+
window.localStorage.removeItem(ssoCacheKey);
|
|
16243
|
+
}
|
|
16244
|
+
catch {
|
|
16245
|
+
this.logger.warning("0nlf9q", correlationId);
|
|
16246
|
+
}
|
|
16247
|
+
ssoCapableMeasurement.end({
|
|
16248
|
+
fromCache: false,
|
|
16249
|
+
success: false,
|
|
16250
|
+
}, error);
|
|
16251
|
+
});
|
|
16252
|
+
}, 0);
|
|
16253
|
+
}
|
|
16030
16254
|
// #endregion
|
|
16031
16255
|
// #region Silent Flow
|
|
16032
16256
|
/**
|
|
@@ -16048,13 +16272,12 @@ class StandardController {
|
|
|
16048
16272
|
const correlationId = this.getRequestCorrelationId(request);
|
|
16049
16273
|
const validRequest = {
|
|
16050
16274
|
...request,
|
|
16051
|
-
// will be PromptValue.NONE or PromptValue.NO_SESSION
|
|
16052
|
-
prompt: request.prompt,
|
|
16053
16275
|
correlationId: correlationId,
|
|
16054
16276
|
};
|
|
16055
16277
|
this.ssoSilentMeasurement = this.performanceClient.startMeasurement(SsoSilent, correlationId);
|
|
16056
16278
|
this.ssoSilentMeasurement?.add({
|
|
16057
16279
|
scenarioId: request.scenarioId,
|
|
16280
|
+
ssoCapable: this.getCachedSsoCapable(),
|
|
16058
16281
|
});
|
|
16059
16282
|
preflightCheck(this.initialized, this.ssoSilentMeasurement, this.config, validRequest);
|
|
16060
16283
|
this.ssoSilentMeasurement?.increment({
|
|
@@ -16067,10 +16290,17 @@ class StandardController {
|
|
|
16067
16290
|
this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Silent, validRequest);
|
|
16068
16291
|
let result;
|
|
16069
16292
|
if (this.canUsePlatformBroker(validRequest)) {
|
|
16293
|
+
this.ssoSilentMeasurement?.add({
|
|
16294
|
+
isPlatformBrokerRequest: true,
|
|
16295
|
+
});
|
|
16070
16296
|
result = this.acquireTokenNative(validRequest, ApiId.ssoSilent).catch((e) => {
|
|
16297
|
+
this.ssoSilentMeasurement?.add({
|
|
16298
|
+
brokerErrorName: e.name,
|
|
16299
|
+
brokerErrorCode: e.errorCode,
|
|
16300
|
+
});
|
|
16071
16301
|
// If native token acquisition fails for availability reasons fallback to standard flow
|
|
16072
16302
|
if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
|
|
16073
|
-
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
|
|
16303
|
+
this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
|
|
16074
16304
|
const silentIframeClient = this.createSilentIframeClient(validRequest.correlationId);
|
|
16075
16305
|
return silentIframeClient.acquireToken(validRequest);
|
|
16076
16306
|
}
|
|
@@ -16143,7 +16373,6 @@ class StandardController {
|
|
|
16143
16373
|
this.hybridAuthCodeResponses.delete(hybridAuthCode);
|
|
16144
16374
|
atbcMeasurement.end({
|
|
16145
16375
|
success: true,
|
|
16146
|
-
isNativeBroker: result.fromPlatformBroker,
|
|
16147
16376
|
accessTokenSize: result.accessToken.length,
|
|
16148
16377
|
idTokenSize: result.idToken.length,
|
|
16149
16378
|
}, undefined, result.account);
|
|
@@ -16167,10 +16396,17 @@ class StandardController {
|
|
|
16167
16396
|
}
|
|
16168
16397
|
else if (request.nativeAccountId) {
|
|
16169
16398
|
if (this.canUsePlatformBroker(request, request.nativeAccountId)) {
|
|
16399
|
+
atbcMeasurement.add({
|
|
16400
|
+
isPlatformBrokerRequest: true,
|
|
16401
|
+
});
|
|
16170
16402
|
const result = await this.acquireTokenNative({
|
|
16171
16403
|
...request,
|
|
16172
16404
|
correlationId,
|
|
16173
16405
|
}, ApiId.acquireTokenByCode, request.nativeAccountId).catch((e) => {
|
|
16406
|
+
atbcMeasurement.add({
|
|
16407
|
+
brokerErrorName: e.name,
|
|
16408
|
+
brokerErrorCode: e.errorCode,
|
|
16409
|
+
});
|
|
16174
16410
|
// If native token acquisition fails for availability reasons fallback to standard flow
|
|
16175
16411
|
if (e instanceof NativeAuthError &&
|
|
16176
16412
|
isFatalNativeAuthError(e)) {
|
|
@@ -16221,7 +16457,6 @@ class StandardController {
|
|
|
16221
16457
|
this.acquireTokenByCodeAsyncMeasurement?.end({
|
|
16222
16458
|
success: true,
|
|
16223
16459
|
fromCache: response.fromCache,
|
|
16224
|
-
isNativeBroker: response.fromPlatformBroker,
|
|
16225
16460
|
});
|
|
16226
16461
|
return response;
|
|
16227
16462
|
})
|
|
@@ -16370,9 +16605,25 @@ class StandardController {
|
|
|
16370
16605
|
const accountEntity = createAccountEntityFromAccountInfo(result.account, result.cloudGraphHostName, result.msGraphHost);
|
|
16371
16606
|
await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims), ApiId.hydrateCache);
|
|
16372
16607
|
if (result.fromPlatformBroker) {
|
|
16373
|
-
this.logger.verbose("
|
|
16374
|
-
//
|
|
16375
|
-
|
|
16608
|
+
this.logger.verbose("1i5atf", result.correlationId);
|
|
16609
|
+
// Create idToken entity and store in browser storage
|
|
16610
|
+
const idTokenEntity = createIdTokenEntity(result.account.homeAccountId, result.account.environment, result.idToken, this.config.auth.clientId, result.tenantId);
|
|
16611
|
+
// Create accessToken entity and store in native internal storage
|
|
16612
|
+
const accessTokenEntity = createAccessTokenEntity(result.account.homeAccountId, result.account.environment, result.accessToken, this.config.auth.clientId, result.tenantId, result.scopes.join(" "), result.expiresOn
|
|
16613
|
+
? toSecondsFromDate(result.expiresOn)
|
|
16614
|
+
: 0, result.extExpiresOn
|
|
16615
|
+
? toSecondsFromDate(result.extExpiresOn)
|
|
16616
|
+
: 0, base64Decode, undefined, // refreshOn
|
|
16617
|
+
result.tokenType, undefined, // userAssertionHash
|
|
16618
|
+
request.sshKid);
|
|
16619
|
+
if (request.resource) {
|
|
16620
|
+
accessTokenEntity.resource = request.resource;
|
|
16621
|
+
}
|
|
16622
|
+
const kmsi = isKmsi(result.idTokenClaims);
|
|
16623
|
+
// Store idToken in browser storage
|
|
16624
|
+
await this.browserStorage.setIdTokenCredential(idTokenEntity, result.correlationId, kmsi);
|
|
16625
|
+
// Store accessToken in native internal storage
|
|
16626
|
+
await this.nativeInternalStorage.setAccessTokenCredential(accessTokenEntity, result.correlationId, kmsi);
|
|
16376
16627
|
}
|
|
16377
16628
|
else {
|
|
16378
16629
|
return this.browserStorage.hydrateCache(result, request);
|
|
@@ -16390,7 +16641,7 @@ class StandardController {
|
|
|
16390
16641
|
throw createBrowserAuthError(nativeConnectionNotEstablished);
|
|
16391
16642
|
}
|
|
16392
16643
|
const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, apiId, this.performanceClient, this.platformAuthProvider, accountId || this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
|
|
16393
|
-
return nativeClient.acquireToken(request, cacheLookupPolicy);
|
|
16644
|
+
return invokeAsync(nativeClient.acquireToken.bind(nativeClient), NativeInteractionClientAcquireToken, this.logger, this.performanceClient, correlationId)(request, cacheLookupPolicy);
|
|
16394
16645
|
}
|
|
16395
16646
|
/**
|
|
16396
16647
|
* Returns boolean indicating if this request can use the platform broker
|
|
@@ -16404,7 +16655,7 @@ class StandardController {
|
|
|
16404
16655
|
return false;
|
|
16405
16656
|
}
|
|
16406
16657
|
if (!isPlatformAuthAllowed(this.config, this.logger, correlationId, this.platformAuthProvider, request.authenticationScheme)) {
|
|
16407
|
-
this.logger.trace("
|
|
16658
|
+
this.logger.trace("0yoy1g", correlationId);
|
|
16408
16659
|
return false;
|
|
16409
16660
|
}
|
|
16410
16661
|
if (request.prompt) {
|
|
@@ -16436,7 +16687,9 @@ class StandardController {
|
|
|
16436
16687
|
loginHint: request.loginHint,
|
|
16437
16688
|
sid: request.sid,
|
|
16438
16689
|
}) ||
|
|
16439
|
-
|
|
16690
|
+
(!request.loginHint && !request.sid
|
|
16691
|
+
? this.getActiveAccount()
|
|
16692
|
+
: null);
|
|
16440
16693
|
return (account && account.nativeAccountId) || "";
|
|
16441
16694
|
}
|
|
16442
16695
|
/**
|
|
@@ -16623,6 +16876,7 @@ class StandardController {
|
|
|
16623
16876
|
atsMeasurement.add({
|
|
16624
16877
|
cacheLookupPolicy: request.cacheLookupPolicy,
|
|
16625
16878
|
scenarioId: request.scenarioId,
|
|
16879
|
+
ssoCapable: this.getCachedSsoCapable(),
|
|
16626
16880
|
});
|
|
16627
16881
|
preflightCheck(this.initialized, atsMeasurement, this.config, request);
|
|
16628
16882
|
this.logger.verbose("0x1c4s", correlationId);
|
|
@@ -16635,7 +16889,6 @@ class StandardController {
|
|
|
16635
16889
|
atsMeasurement.end({
|
|
16636
16890
|
success: true,
|
|
16637
16891
|
fromCache: result.fromCache,
|
|
16638
|
-
isNativeBroker: result.fromPlatformBroker,
|
|
16639
16892
|
accessTokenSize: result.accessToken.length,
|
|
16640
16893
|
idTokenSize: result.idToken.length,
|
|
16641
16894
|
}, undefined, result.account);
|
|
@@ -16795,7 +17048,12 @@ class StandardController {
|
|
|
16795
17048
|
if (isPlatformAuthAllowed(this.config, this.logger, silentRequest.correlationId, this.platformAuthProvider, silentRequest.authenticationScheme) &&
|
|
16796
17049
|
silentRequest.account.nativeAccountId) {
|
|
16797
17050
|
this.logger.verbose("0sczo4", silentRequest.correlationId);
|
|
17051
|
+
this.performanceClient.addFields({ isPlatformBrokerRequest: true }, silentRequest.correlationId);
|
|
16798
17052
|
return this.acquireTokenNative(silentRequest, ApiId.acquireTokenSilent_silentFlow, silentRequest.account.nativeAccountId, cacheLookupPolicy).catch(async (e) => {
|
|
17053
|
+
this.performanceClient.addFields({
|
|
17054
|
+
brokerErrorName: e.name,
|
|
17055
|
+
brokerErrorCode: e.errorCode,
|
|
17056
|
+
}, silentRequest.correlationId);
|
|
16799
17057
|
// If native token acquisition fails for availability reasons fallback to web flow
|
|
16800
17058
|
if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
|
|
16801
17059
|
this.logger.verbose("07rkmb", silentRequest.correlationId);
|