@azure/msal-browser 5.6.3 → 5.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (912) hide show
  1. package/README.md +0 -1
  2. package/dist/app/IPublicClientApplication.mjs +1 -1
  3. package/dist/app/PublicClientApplication.mjs +1 -1
  4. package/dist/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
  5. package/dist/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
  6. package/dist/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  7. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
  8. package/dist/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
  9. package/dist/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  10. package/dist/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
  11. package/dist/cache/AccountManager.mjs +1 -1
  12. package/dist/cache/AsyncMemoryStorage.mjs +1 -1
  13. package/dist/cache/BrowserCacheManager.d.ts +2 -4
  14. package/dist/cache/BrowserCacheManager.d.ts.map +1 -1
  15. package/dist/cache/BrowserCacheManager.mjs +6 -6
  16. package/dist/cache/BrowserCacheManager.mjs.map +1 -1
  17. package/dist/cache/CacheHelpers.mjs +1 -1
  18. package/dist/cache/CacheKeys.d.ts +3 -2
  19. package/dist/cache/CacheKeys.d.ts.map +1 -1
  20. package/dist/cache/CacheKeys.mjs +5 -4
  21. package/dist/cache/CacheKeys.mjs.map +1 -1
  22. package/dist/cache/CookieStorage.mjs +1 -1
  23. package/dist/cache/DatabaseStorage.mjs +1 -1
  24. package/dist/cache/EncryptedData.mjs +1 -1
  25. package/dist/cache/LocalStorage.mjs +1 -1
  26. package/dist/cache/MemoryStorage.mjs +1 -1
  27. package/dist/cache/SessionStorage.mjs +1 -1
  28. package/dist/cache/TokenCache.mjs +1 -1
  29. package/dist/config/Configuration.d.ts +7 -0
  30. package/dist/config/Configuration.d.ts.map +1 -1
  31. package/dist/config/Configuration.mjs +2 -1
  32. package/dist/config/Configuration.mjs.map +1 -1
  33. package/dist/controllers/NestedAppAuthController.mjs +1 -1
  34. package/dist/controllers/StandardController.d.ts +16 -0
  35. package/dist/controllers/StandardController.d.ts.map +1 -1
  36. package/dist/controllers/StandardController.mjs +174 -25
  37. package/dist/controllers/StandardController.mjs.map +1 -1
  38. package/dist/crypto/BrowserCrypto.mjs +1 -1
  39. package/dist/crypto/CryptoOps.mjs +1 -1
  40. package/dist/crypto/PkceGenerator.mjs +1 -1
  41. package/dist/crypto/SignedHttpRequest.mjs +1 -1
  42. package/dist/custom-auth-path/app/PublicClientApplication.mjs +1 -1
  43. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs +2 -3
  44. package/dist/custom-auth-path/broker/nativeBroker/NativeStatusCodes.mjs.map +1 -1
  45. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthDOMHandler.mjs +1 -1
  46. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs +2 -2
  47. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthExtensionHandler.mjs.map +1 -1
  48. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  49. package/dist/custom-auth-path/broker/nativeBroker/PlatformAuthProvider.mjs +2 -2
  50. package/dist/custom-auth-path/cache/AccountManager.mjs +1 -1
  51. package/dist/custom-auth-path/cache/AsyncMemoryStorage.mjs +1 -1
  52. package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts +2 -4
  53. package/dist/custom-auth-path/cache/BrowserCacheManager.d.ts.map +1 -1
  54. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs +6 -6
  55. package/dist/custom-auth-path/cache/BrowserCacheManager.mjs.map +1 -1
  56. package/dist/custom-auth-path/cache/CacheHelpers.mjs +1 -1
  57. package/dist/custom-auth-path/cache/CacheKeys.d.ts +3 -2
  58. package/dist/custom-auth-path/cache/CacheKeys.d.ts.map +1 -1
  59. package/dist/custom-auth-path/cache/CacheKeys.mjs +5 -4
  60. package/dist/custom-auth-path/cache/CacheKeys.mjs.map +1 -1
  61. package/dist/custom-auth-path/cache/CookieStorage.mjs +1 -1
  62. package/dist/custom-auth-path/cache/DatabaseStorage.mjs +1 -1
  63. package/dist/custom-auth-path/cache/EncryptedData.mjs +1 -1
  64. package/dist/custom-auth-path/cache/LocalStorage.mjs +1 -1
  65. package/dist/custom-auth-path/cache/MemoryStorage.mjs +1 -1
  66. package/dist/custom-auth-path/cache/SessionStorage.mjs +1 -1
  67. package/dist/custom-auth-path/config/Configuration.d.ts +7 -0
  68. package/dist/custom-auth-path/config/Configuration.d.ts.map +1 -1
  69. package/dist/custom-auth-path/config/Configuration.mjs +2 -1
  70. package/dist/custom-auth-path/config/Configuration.mjs.map +1 -1
  71. package/dist/custom-auth-path/controllers/StandardController.d.ts +16 -0
  72. package/dist/custom-auth-path/controllers/StandardController.d.ts.map +1 -1
  73. package/dist/custom-auth-path/controllers/StandardController.mjs +174 -25
  74. package/dist/custom-auth-path/controllers/StandardController.mjs.map +1 -1
  75. package/dist/custom-auth-path/crypto/BrowserCrypto.mjs +1 -1
  76. package/dist/custom-auth-path/crypto/CryptoOps.mjs +1 -1
  77. package/dist/custom-auth-path/crypto/PkceGenerator.mjs +1 -1
  78. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.d.ts +1 -1
  79. package/dist/custom-auth-path/custom_auth/CustomAuthConstants.mjs +1 -1
  80. package/dist/custom-auth-path/custom_auth/CustomAuthPublicClientApplication.mjs +1 -1
  81. package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts +1 -0
  82. package/dist/custom-auth-path/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  83. package/dist/custom-auth-path/custom_auth/controller/CustomAuthStandardController.mjs +1 -1
  84. package/dist/custom-auth-path/custom_auth/core/CustomAuthAuthority.mjs +1 -1
  85. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowErrorBase.mjs +1 -1
  86. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowResultBase.mjs +1 -1
  87. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowState.mjs +1 -1
  88. package/dist/custom-auth-path/custom_auth/core/auth_flow/AuthFlowStateTypes.mjs +1 -1
  89. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.mjs +1 -1
  90. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.mjs +1 -1
  91. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.mjs +1 -1
  92. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.mjs +1 -1
  93. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.mjs +1 -1
  94. package/dist/custom-auth-path/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.mjs +1 -1
  95. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/error_type/MfaError.mjs +1 -1
  96. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.mjs +1 -1
  97. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.mjs +1 -1
  98. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.mjs +1 -1
  99. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaFailedState.mjs +1 -1
  100. package/dist/custom-auth-path/custom_auth/core/auth_flow/mfa/state/MfaState.mjs +1 -1
  101. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthApiError.mjs +1 -1
  102. package/dist/custom-auth-path/custom_auth/core/error/CustomAuthError.mjs +1 -1
  103. package/dist/custom-auth-path/custom_auth/core/error/HttpError.mjs +1 -1
  104. package/dist/custom-auth-path/custom_auth/core/error/HttpErrorCodes.mjs +1 -1
  105. package/dist/custom-auth-path/custom_auth/core/error/InvalidArgumentError.mjs +1 -1
  106. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationError.mjs +1 -1
  107. package/dist/custom-auth-path/custom_auth/core/error/InvalidConfigurationErrorCodes.mjs +1 -1
  108. package/dist/custom-auth-path/custom_auth/core/error/MethodNotImplementedError.mjs +1 -1
  109. package/dist/custom-auth-path/custom_auth/core/error/MsalCustomAuthError.mjs +1 -1
  110. package/dist/custom-auth-path/custom_auth/core/error/NoCachedAccountFoundError.mjs +1 -1
  111. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlError.mjs +1 -1
  112. package/dist/custom-auth-path/custom_auth/core/error/ParsedUrlErrorCodes.mjs +1 -1
  113. package/dist/custom-auth-path/custom_auth/core/error/UnexpectedError.mjs +1 -1
  114. package/dist/custom-auth-path/custom_auth/core/error/UnsupportedEnvironmentError.mjs +1 -1
  115. package/dist/custom-auth-path/custom_auth/core/error/UserAccountAttributeError.mjs +1 -1
  116. package/dist/custom-auth-path/custom_auth/core/error/UserAlreadySignedInError.mjs +1 -1
  117. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.mjs +1 -1
  118. package/dist/custom-auth-path/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.mjs +1 -1
  119. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/JitClient.mjs +1 -1
  120. package/dist/custom-auth-path/custom_auth/core/interaction_client/jit/result/JitActionResult.mjs +1 -1
  121. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/MfaClient.mjs +1 -1
  122. package/dist/custom-auth-path/custom_auth/core/interaction_client/mfa/result/MfaActionResult.mjs +1 -1
  123. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/BaseApiClient.mjs +1 -1
  124. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.mjs +1 -1
  125. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.mjs +1 -1
  126. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.mjs +1 -1
  127. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.mjs +1 -1
  128. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignInApiClient.mjs +1 -1
  129. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/SignupApiClient.mjs +1 -1
  130. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.mjs +1 -1
  131. package/dist/custom-auth-path/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.mjs +1 -1
  132. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/FetchHttpClient.mjs +1 -1
  133. package/dist/custom-auth-path/custom_auth/core/network_client/http_client/IHttpClient.mjs +1 -1
  134. package/dist/custom-auth-path/custom_auth/core/telemetry/PublicApiId.mjs +1 -1
  135. package/dist/custom-auth-path/custom_auth/core/utils/ArgumentValidator.mjs +1 -1
  136. package/dist/custom-auth-path/custom_auth/core/utils/UrlUtils.mjs +1 -1
  137. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/CustomAuthAccountData.mjs +1 -1
  138. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/error_type/GetAccountError.mjs +1 -1
  139. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.mjs +1 -1
  140. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/GetAccountResult.mjs +1 -1
  141. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/result/SignOutResult.mjs +1 -1
  142. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccessTokenState.mjs +1 -1
  143. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/GetAccountState.mjs +1 -1
  144. package/dist/custom-auth-path/custom_auth/get_account/auth_flow/state/SignOutState.mjs +1 -1
  145. package/dist/custom-auth-path/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.mjs +1 -1
  146. package/dist/custom-auth-path/custom_auth/index.mjs +1 -1
  147. package/dist/custom-auth-path/custom_auth/operating_context/CustomAuthOperatingContext.mjs +1 -1
  148. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.mjs +1 -1
  149. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.mjs +1 -1
  150. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.mjs +1 -1
  151. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.mjs +1 -1
  152. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.mjs +1 -1
  153. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.mjs +1 -1
  154. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.mjs +1 -1
  155. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.mjs +1 -1
  156. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.mjs +1 -1
  157. package/dist/custom-auth-path/custom_auth/reset_password/auth_flow/state/ResetPasswordState.mjs +1 -1
  158. package/dist/custom-auth-path/custom_auth/reset_password/interaction_client/ResetPasswordClient.mjs +1 -1
  159. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/SignInScenario.mjs +1 -1
  160. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/error_type/SignInError.mjs +1 -1
  161. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.mjs +1 -1
  162. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInResult.mjs +1 -1
  163. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.mjs +1 -1
  164. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.mjs +1 -1
  165. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.mjs +1 -1
  166. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInCompletedState.mjs +1 -1
  167. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInContinuationState.mjs +1 -1
  168. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInFailedState.mjs +1 -1
  169. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.mjs +1 -1
  170. package/dist/custom-auth-path/custom_auth/sign_in/auth_flow/state/SignInState.mjs +1 -1
  171. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/SignInClient.mjs +1 -1
  172. package/dist/custom-auth-path/custom_auth/sign_in/interaction_client/result/SignInActionResult.mjs +1 -1
  173. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/error_type/SignUpError.mjs +1 -1
  174. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.mjs +1 -1
  175. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpResult.mjs +1 -1
  176. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.mjs +1 -1
  177. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.mjs +1 -1
  178. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.mjs +1 -1
  179. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.mjs +1 -1
  180. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.mjs +1 -1
  181. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.mjs +1 -1
  182. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpFailedState.mjs +1 -1
  183. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.mjs +1 -1
  184. package/dist/custom-auth-path/custom_auth/sign_up/auth_flow/state/SignUpState.mjs +1 -1
  185. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/SignUpClient.mjs +1 -1
  186. package/dist/custom-auth-path/custom_auth/sign_up/interaction_client/result/SignUpActionResult.mjs +1 -1
  187. package/dist/custom-auth-path/encode/Base64Decode.mjs +1 -1
  188. package/dist/custom-auth-path/encode/Base64Encode.mjs +1 -1
  189. package/dist/custom-auth-path/error/BrowserAuthError.mjs +1 -1
  190. package/dist/custom-auth-path/error/BrowserAuthErrorCodes.mjs +1 -1
  191. package/dist/custom-auth-path/error/BrowserConfigurationAuthError.mjs +1 -1
  192. package/dist/custom-auth-path/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  193. package/dist/custom-auth-path/error/NativeAuthError.d.ts.map +1 -1
  194. package/dist/custom-auth-path/error/NativeAuthError.mjs +3 -4
  195. package/dist/custom-auth-path/error/NativeAuthError.mjs.map +1 -1
  196. package/dist/custom-auth-path/error/NativeAuthErrorCodes.mjs +1 -1
  197. package/dist/custom-auth-path/event/EventHandler.mjs +1 -1
  198. package/dist/custom-auth-path/event/EventType.mjs +1 -1
  199. package/dist/custom-auth-path/interaction_client/BaseInteractionClient.mjs +1 -1
  200. package/dist/custom-auth-path/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  201. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  202. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  203. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
  204. package/dist/custom-auth-path/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  205. package/dist/custom-auth-path/interaction_client/PopupClient.d.ts.map +1 -1
  206. package/dist/custom-auth-path/interaction_client/PopupClient.mjs +6 -2
  207. package/dist/custom-auth-path/interaction_client/PopupClient.mjs.map +1 -1
  208. package/dist/custom-auth-path/interaction_client/RedirectClient.d.ts.map +1 -1
  209. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs +6 -2
  210. package/dist/custom-auth-path/interaction_client/RedirectClient.mjs.map +1 -1
  211. package/dist/custom-auth-path/interaction_client/SilentAuthCodeClient.mjs +1 -1
  212. package/dist/custom-auth-path/interaction_client/SilentCacheClient.mjs +1 -1
  213. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts +14 -0
  214. package/dist/custom-auth-path/interaction_client/SilentIframeClient.d.ts.map +1 -1
  215. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs +45 -3
  216. package/dist/custom-auth-path/interaction_client/SilentIframeClient.mjs.map +1 -1
  217. package/dist/custom-auth-path/interaction_client/SilentRefreshClient.mjs +1 -1
  218. package/dist/custom-auth-path/interaction_client/StandardInteractionClient.mjs +1 -1
  219. package/dist/custom-auth-path/interaction_handler/InteractionHandler.mjs +1 -1
  220. package/dist/custom-auth-path/interaction_handler/SilentHandler.mjs +1 -1
  221. package/dist/custom-auth-path/log-strings-mapping.json +49 -17
  222. package/dist/custom-auth-path/navigation/NavigationClient.mjs +1 -1
  223. package/dist/custom-auth-path/network/FetchClient.mjs +1 -1
  224. package/dist/custom-auth-path/operatingcontext/BaseOperatingContext.mjs +1 -1
  225. package/dist/custom-auth-path/operatingcontext/StandardOperatingContext.mjs +1 -1
  226. package/dist/custom-auth-path/packageMetadata.d.ts +1 -1
  227. package/dist/custom-auth-path/packageMetadata.mjs +2 -2
  228. package/dist/custom-auth-path/protocol/Authorize.d.ts.map +1 -1
  229. package/dist/custom-auth-path/protocol/Authorize.mjs +5 -1
  230. package/dist/custom-auth-path/protocol/Authorize.mjs.map +1 -1
  231. package/dist/custom-auth-path/redirect_bridge/index.d.ts.map +1 -1
  232. package/dist/custom-auth-path/request/RequestHelpers.mjs +1 -1
  233. package/dist/custom-auth-path/response/ResponseHandler.mjs +1 -1
  234. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  235. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  236. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs +3 -2
  237. package/dist/custom-auth-path/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
  238. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  239. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  240. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs +8 -3
  241. package/dist/custom-auth-path/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
  242. package/dist/custom-auth-path/utils/BrowserConstants.mjs +1 -1
  243. package/dist/custom-auth-path/utils/BrowserProtocolUtils.mjs +1 -1
  244. package/dist/custom-auth-path/utils/BrowserUtils.mjs +1 -1
  245. package/dist/custom-auth-path/utils/Helpers.mjs +1 -1
  246. package/dist/custom-auth-path/utils/MsalFrameStatsUtils.mjs +1 -1
  247. package/dist/custom_auth/CustomAuthConstants.d.ts +1 -1
  248. package/dist/custom_auth/UserAccountAttributes.d.ts +1 -0
  249. package/dist/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  250. package/dist/encode/Base64Decode.mjs +1 -1
  251. package/dist/encode/Base64Encode.mjs +1 -1
  252. package/dist/error/BrowserAuthError.mjs +1 -1
  253. package/dist/error/BrowserAuthErrorCodes.mjs +1 -1
  254. package/dist/error/BrowserConfigurationAuthError.mjs +1 -1
  255. package/dist/error/BrowserConfigurationAuthErrorCodes.mjs +1 -1
  256. package/dist/error/NativeAuthError.d.ts.map +1 -1
  257. package/dist/error/NativeAuthError.mjs +3 -4
  258. package/dist/error/NativeAuthError.mjs.map +1 -1
  259. package/dist/error/NativeAuthErrorCodes.mjs +1 -1
  260. package/dist/error/NestedAppAuthError.mjs +1 -1
  261. package/dist/event/EventHandler.mjs +1 -1
  262. package/dist/event/EventMessage.mjs +1 -1
  263. package/dist/event/EventType.mjs +1 -1
  264. package/dist/index.mjs +1 -1
  265. package/dist/interaction_client/BaseInteractionClient.mjs +1 -1
  266. package/dist/interaction_client/HybridSpaAuthorizationCodeClient.mjs +1 -1
  267. package/dist/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  268. package/dist/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  269. package/dist/interaction_client/PlatformAuthInteractionClient.mjs +48 -29
  270. package/dist/interaction_client/PlatformAuthInteractionClient.mjs.map +1 -1
  271. package/dist/interaction_client/PopupClient.d.ts.map +1 -1
  272. package/dist/interaction_client/PopupClient.mjs +6 -2
  273. package/dist/interaction_client/PopupClient.mjs.map +1 -1
  274. package/dist/interaction_client/RedirectClient.d.ts.map +1 -1
  275. package/dist/interaction_client/RedirectClient.mjs +6 -2
  276. package/dist/interaction_client/RedirectClient.mjs.map +1 -1
  277. package/dist/interaction_client/SilentAuthCodeClient.mjs +1 -1
  278. package/dist/interaction_client/SilentCacheClient.mjs +1 -1
  279. package/dist/interaction_client/SilentIframeClient.d.ts +14 -0
  280. package/dist/interaction_client/SilentIframeClient.d.ts.map +1 -1
  281. package/dist/interaction_client/SilentIframeClient.mjs +45 -3
  282. package/dist/interaction_client/SilentIframeClient.mjs.map +1 -1
  283. package/dist/interaction_client/SilentRefreshClient.mjs +1 -1
  284. package/dist/interaction_client/StandardInteractionClient.mjs +1 -1
  285. package/dist/interaction_handler/InteractionHandler.mjs +1 -1
  286. package/dist/interaction_handler/SilentHandler.mjs +1 -1
  287. package/dist/log-strings-mapping.json +49 -17
  288. package/dist/naa/BridgeError.mjs +1 -1
  289. package/dist/naa/BridgeProxy.mjs +1 -1
  290. package/dist/naa/BridgeStatusCode.mjs +1 -1
  291. package/dist/naa/mapping/NestedAppAuthAdapter.mjs +1 -1
  292. package/dist/navigation/NavigationClient.mjs +1 -1
  293. package/dist/network/FetchClient.mjs +1 -1
  294. package/dist/operatingcontext/BaseOperatingContext.mjs +1 -1
  295. package/dist/operatingcontext/NestedAppOperatingContext.mjs +1 -1
  296. package/dist/operatingcontext/StandardOperatingContext.mjs +1 -1
  297. package/dist/packageMetadata.d.ts +1 -1
  298. package/dist/packageMetadata.mjs +2 -2
  299. package/dist/protocol/Authorize.d.ts.map +1 -1
  300. package/dist/protocol/Authorize.mjs +5 -1
  301. package/dist/protocol/Authorize.mjs.map +1 -1
  302. package/dist/redirect-bridge/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  303. package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts +2 -4
  304. package/dist/redirect-bridge/cache/BrowserCacheManager.d.ts.map +1 -1
  305. package/dist/redirect-bridge/cache/CacheKeys.d.ts +3 -2
  306. package/dist/redirect-bridge/cache/CacheKeys.d.ts.map +1 -1
  307. package/dist/redirect-bridge/cache/CacheKeys.mjs +1 -1
  308. package/dist/redirect-bridge/config/Configuration.d.ts +7 -0
  309. package/dist/redirect-bridge/config/Configuration.d.ts.map +1 -1
  310. package/dist/redirect-bridge/config/Configuration.mjs +1 -1
  311. package/dist/redirect-bridge/controllers/StandardController.d.ts +16 -0
  312. package/dist/redirect-bridge/controllers/StandardController.d.ts.map +1 -1
  313. package/dist/redirect-bridge/custom_auth/CustomAuthConstants.d.ts +1 -1
  314. package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts +1 -0
  315. package/dist/redirect-bridge/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  316. package/dist/redirect-bridge/encode/Base64Decode.mjs +1 -1
  317. package/dist/redirect-bridge/error/BrowserAuthError.mjs +1 -1
  318. package/dist/redirect-bridge/error/BrowserAuthErrorCodes.mjs +1 -1
  319. package/dist/redirect-bridge/error/NativeAuthError.d.ts.map +1 -1
  320. package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  321. package/dist/redirect-bridge/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  322. package/dist/redirect-bridge/interaction_client/PopupClient.d.ts.map +1 -1
  323. package/dist/redirect-bridge/interaction_client/RedirectClient.d.ts.map +1 -1
  324. package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts +14 -0
  325. package/dist/redirect-bridge/interaction_client/SilentIframeClient.d.ts.map +1 -1
  326. package/dist/redirect-bridge/navigation/NavigationClient.mjs +1 -1
  327. package/dist/redirect-bridge/packageMetadata.d.ts +1 -1
  328. package/dist/redirect-bridge/protocol/Authorize.d.ts.map +1 -1
  329. package/dist/redirect-bridge/redirect_bridge/index.d.ts.map +1 -1
  330. package/dist/redirect-bridge/redirect_bridge/index.mjs +11 -7
  331. package/dist/redirect-bridge/redirect_bridge/index.mjs.map +1 -1
  332. package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  333. package/dist/redirect-bridge/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  334. package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  335. package/dist/redirect-bridge/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  336. package/dist/redirect-bridge/utils/BrowserConstants.mjs +7 -3
  337. package/dist/redirect-bridge/utils/BrowserConstants.mjs.map +1 -1
  338. package/dist/redirect-bridge/utils/BrowserUtils.mjs +1 -1
  339. package/dist/redirect_bridge/index.d.ts.map +1 -1
  340. package/dist/request/RequestHelpers.mjs +1 -1
  341. package/dist/response/ResponseHandler.mjs +1 -1
  342. package/dist/telemetry/BrowserPerformanceClient.mjs +1 -1
  343. package/dist/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  344. package/dist/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  345. package/dist/telemetry/BrowserPerformanceEvents.mjs +3 -2
  346. package/dist/telemetry/BrowserPerformanceEvents.mjs.map +1 -1
  347. package/dist/telemetry/BrowserPerformanceMeasurement.mjs +1 -1
  348. package/dist/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  349. package/dist/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  350. package/dist/telemetry/BrowserRootPerformanceEvents.mjs +10 -3
  351. package/dist/telemetry/BrowserRootPerformanceEvents.mjs.map +1 -1
  352. package/dist/utils/BrowserConstants.mjs +1 -1
  353. package/dist/utils/BrowserProtocolUtils.mjs +1 -1
  354. package/dist/utils/BrowserUtils.mjs +1 -1
  355. package/dist/utils/Helpers.mjs +1 -1
  356. package/dist/utils/MsalFrameStatsUtils.mjs +1 -1
  357. package/lib/custom-auth-path/log-strings-mapping.json +49 -17
  358. package/lib/custom-auth-path/msal-custom-auth.cjs +418 -164
  359. package/lib/custom-auth-path/msal-custom-auth.cjs.map +1 -1
  360. package/lib/custom-auth-path/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  361. package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts +2 -4
  362. package/lib/custom-auth-path/types/cache/BrowserCacheManager.d.ts.map +1 -1
  363. package/lib/custom-auth-path/types/cache/CacheKeys.d.ts +3 -2
  364. package/lib/custom-auth-path/types/cache/CacheKeys.d.ts.map +1 -1
  365. package/lib/custom-auth-path/types/config/Configuration.d.ts +7 -0
  366. package/lib/custom-auth-path/types/config/Configuration.d.ts.map +1 -1
  367. package/lib/custom-auth-path/types/controllers/StandardController.d.ts +16 -0
  368. package/lib/custom-auth-path/types/controllers/StandardController.d.ts.map +1 -1
  369. package/lib/custom-auth-path/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  370. package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts +1 -0
  371. package/lib/custom-auth-path/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  372. package/lib/custom-auth-path/types/error/NativeAuthError.d.ts.map +1 -1
  373. package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  374. package/lib/custom-auth-path/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  375. package/lib/custom-auth-path/types/interaction_client/PopupClient.d.ts.map +1 -1
  376. package/lib/custom-auth-path/types/interaction_client/RedirectClient.d.ts.map +1 -1
  377. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts +14 -0
  378. package/lib/custom-auth-path/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  379. package/lib/custom-auth-path/types/packageMetadata.d.ts +1 -1
  380. package/lib/custom-auth-path/types/protocol/Authorize.d.ts.map +1 -1
  381. package/lib/custom-auth-path/types/redirect_bridge/index.d.ts.map +1 -1
  382. package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  383. package/lib/custom-auth-path/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  384. package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  385. package/lib/custom-auth-path/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  386. package/lib/log-strings-mapping.json +49 -17
  387. package/lib/msal-browser.cjs +427 -169
  388. package/lib/msal-browser.cjs.map +1 -1
  389. package/lib/msal-browser.js +427 -169
  390. package/lib/msal-browser.js.map +1 -1
  391. package/lib/msal-browser.min.js +2 -2
  392. package/lib/redirect-bridge/msal-redirect-bridge.cjs +734 -0
  393. package/lib/redirect-bridge/msal-redirect-bridge.cjs.map +1 -0
  394. package/lib/redirect-bridge/msal-redirect-bridge.js +24 -16
  395. package/lib/redirect-bridge/msal-redirect-bridge.js.map +1 -1
  396. package/lib/redirect-bridge/msal-redirect-bridge.min.js +2 -2
  397. package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts +48 -0
  398. package/lib/redirect-bridge/types/app/IPublicClientApplication.d.ts.map +1 -0
  399. package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts +247 -0
  400. package/lib/redirect-bridge/types/app/PublicClientApplication.d.ts.map +1 -0
  401. package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts +12 -0
  402. package/lib/redirect-bridge/types/broker/nativeBroker/IPlatformAuthHandler.d.ts.map +1 -0
  403. package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts +9 -0
  404. package/lib/redirect-bridge/types/broker/nativeBroker/NativeStatusCodes.d.ts.map +1 -0
  405. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts +30 -0
  406. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthDOMHandler.d.ts.map +1 -0
  407. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts +63 -0
  408. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthExtensionHandler.d.ts.map +1 -0
  409. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts +28 -0
  410. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthProvider.d.ts.map +1 -0
  411. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts +79 -0
  412. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthRequest.d.ts.map +1 -0
  413. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts +71 -0
  414. package/lib/redirect-bridge/types/broker/nativeBroker/PlatformAuthResponse.d.ts.map +1 -0
  415. package/lib/redirect-bridge/types/cache/AccountManager.d.ts +24 -0
  416. package/lib/redirect-bridge/types/cache/AccountManager.d.ts.map +1 -0
  417. package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts +58 -0
  418. package/lib/redirect-bridge/types/cache/AsyncMemoryStorage.d.ts.map +1 -0
  419. package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts +364 -0
  420. package/lib/redirect-bridge/types/cache/BrowserCacheManager.d.ts.map +1 -0
  421. package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts +16 -0
  422. package/lib/redirect-bridge/types/cache/CacheHelpers.d.ts.map +1 -0
  423. package/lib/redirect-bridge/types/cache/CacheKeys.d.ts +15 -0
  424. package/lib/redirect-bridge/types/cache/CacheKeys.d.ts.map +1 -0
  425. package/lib/redirect-bridge/types/cache/CookieStorage.d.ts +23 -0
  426. package/lib/redirect-bridge/types/cache/CookieStorage.d.ts.map +1 -0
  427. package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts +57 -0
  428. package/lib/redirect-bridge/types/cache/DatabaseStorage.d.ts.map +1 -0
  429. package/lib/redirect-bridge/types/cache/EncryptedData.d.ts +8 -0
  430. package/lib/redirect-bridge/types/cache/EncryptedData.d.ts.map +1 -0
  431. package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts +33 -0
  432. package/lib/redirect-bridge/types/cache/IAsyncStorage.d.ts.map +1 -0
  433. package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts +42 -0
  434. package/lib/redirect-bridge/types/cache/IWindowStorage.d.ts.map +1 -0
  435. package/lib/redirect-bridge/types/cache/LocalStorage.d.ts +51 -0
  436. package/lib/redirect-bridge/types/cache/LocalStorage.d.ts.map +1 -0
  437. package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts +16 -0
  438. package/lib/redirect-bridge/types/cache/MemoryStorage.d.ts.map +1 -0
  439. package/lib/redirect-bridge/types/cache/SessionStorage.d.ts +14 -0
  440. package/lib/redirect-bridge/types/cache/SessionStorage.d.ts.map +1 -0
  441. package/lib/redirect-bridge/types/cache/TokenCache.d.ts +20 -0
  442. package/lib/redirect-bridge/types/cache/TokenCache.d.ts.map +1 -0
  443. package/lib/redirect-bridge/types/config/Configuration.d.ts +198 -0
  444. package/lib/redirect-bridge/types/config/Configuration.d.ts.map +1 -0
  445. package/lib/redirect-bridge/types/controllers/IController.d.ts +3 -0
  446. package/lib/redirect-bridge/types/controllers/IController.d.ts.map +1 -0
  447. package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts +159 -0
  448. package/lib/redirect-bridge/types/controllers/NestedAppAuthController.d.ts.map +1 -0
  449. package/lib/redirect-bridge/types/controllers/StandardController.d.ts +398 -0
  450. package/lib/redirect-bridge/types/controllers/StandardController.d.ts.map +1 -0
  451. package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts +73 -0
  452. package/lib/redirect-bridge/types/controllers/UnknownOperatingContextController.d.ts.map +1 -0
  453. package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts +96 -0
  454. package/lib/redirect-bridge/types/crypto/BrowserCrypto.d.ts.map +1 -0
  455. package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts +77 -0
  456. package/lib/redirect-bridge/types/crypto/CryptoOps.d.ts.map +1 -0
  457. package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts +9 -0
  458. package/lib/redirect-bridge/types/crypto/PkceGenerator.d.ts.map +1 -0
  459. package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts +32 -0
  460. package/lib/redirect-bridge/types/crypto/SignedHttpRequest.d.ts.map +1 -0
  461. package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts +29 -0
  462. package/lib/redirect-bridge/types/custom_auth/CustomAuthActionInputs.d.ts.map +1 -0
  463. package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts +35 -0
  464. package/lib/redirect-bridge/types/custom_auth/CustomAuthConstants.d.ts.map +1 -0
  465. package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts +55 -0
  466. package/lib/redirect-bridge/types/custom_auth/CustomAuthPublicClientApplication.d.ts.map +1 -0
  467. package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts +33 -0
  468. package/lib/redirect-bridge/types/custom_auth/ICustomAuthPublicClientApplication.d.ts.map +1 -0
  469. package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts +13 -0
  470. package/lib/redirect-bridge/types/custom_auth/UserAccountAttributes.d.ts.map +1 -0
  471. package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts +14 -0
  472. package/lib/redirect-bridge/types/custom_auth/configuration/CustomAuthConfiguration.d.ts.map +1 -0
  473. package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts +27 -0
  474. package/lib/redirect-bridge/types/custom_auth/controller/CustomAuthStandardController.d.ts.map +1 -0
  475. package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts +13 -0
  476. package/lib/redirect-bridge/types/custom_auth/controller/ICustomAuthStandardController.d.ts.map +1 -0
  477. package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts +29 -0
  478. package/lib/redirect-bridge/types/custom_auth/core/CustomAuthAuthority.d.ts.map +1 -0
  479. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts +40 -0
  480. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowErrorBase.d.ts.map +1 -0
  481. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts +11 -0
  482. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowResultBase.d.ts.map +1 -0
  483. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts +31 -0
  484. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowState.d.ts.map +1 -0
  485. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts +29 -0
  486. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/AuthFlowStateTypes.d.ts.map +1 -0
  487. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts +15 -0
  488. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/AuthMethodDetails.d.ts.map +1 -0
  489. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts +27 -0
  490. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/error_type/AuthMethodRegistrationError.d.ts.map +1 -0
  491. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts +47 -0
  492. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationChallengeMethodResult.d.ts.map +1 -0
  493. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts +37 -0
  494. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/result/AuthMethodRegistrationSubmitChallengeResult.d.ts.map +1 -0
  495. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts +11 -0
  496. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationCompletedState.d.ts.map +1 -0
  497. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts +11 -0
  498. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationFailedState.d.ts.map +1 -0
  499. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts +82 -0
  500. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationState.d.ts.map +1 -0
  501. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts +20 -0
  502. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/jit/state/AuthMethodRegistrationStateParameters.d.ts.map +1 -0
  503. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts +27 -0
  504. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/error_type/MfaError.d.ts.map +1 -0
  505. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts +40 -0
  506. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaRequestChallengeResult.d.ts.map +1 -0
  507. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts +34 -0
  508. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/result/MfaSubmitChallengeResult.d.ts.map +1 -0
  509. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts +11 -0
  510. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaCompletedState.d.ts.map +1 -0
  511. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts +11 -0
  512. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaFailedState.d.ts.map +1 -0
  513. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts +67 -0
  514. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaState.d.ts.map +1 -0
  515. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts +19 -0
  516. package/lib/redirect-bridge/types/custom_auth/core/auth_flow/mfa/state/MfaStateParameters.d.ts.map +1 -0
  517. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts +20 -0
  518. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthApiError.d.ts.map +1 -0
  519. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts +9 -0
  520. package/lib/redirect-bridge/types/custom_auth/core/error/CustomAuthError.d.ts.map +1 -0
  521. package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts +5 -0
  522. package/lib/redirect-bridge/types/custom_auth/core/error/HttpError.d.ts.map +1 -0
  523. package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts +3 -0
  524. package/lib/redirect-bridge/types/custom_auth/core/error/HttpErrorCodes.d.ts.map +1 -0
  525. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts +5 -0
  526. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidArgumentError.d.ts.map +1 -0
  527. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts +5 -0
  528. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationError.d.ts.map +1 -0
  529. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts +4 -0
  530. package/lib/redirect-bridge/types/custom_auth/core/error/InvalidConfigurationErrorCodes.d.ts.map +1 -0
  531. package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts +5 -0
  532. package/lib/redirect-bridge/types/custom_auth/core/error/MethodNotImplementedError.d.ts.map +1 -0
  533. package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts +5 -0
  534. package/lib/redirect-bridge/types/custom_auth/core/error/MsalCustomAuthError.d.ts.map +1 -0
  535. package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts +5 -0
  536. package/lib/redirect-bridge/types/custom_auth/core/error/NoCachedAccountFoundError.d.ts.map +1 -0
  537. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts +5 -0
  538. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlError.d.ts.map +1 -0
  539. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts +2 -0
  540. package/lib/redirect-bridge/types/custom_auth/core/error/ParsedUrlErrorCodes.d.ts.map +1 -0
  541. package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts +5 -0
  542. package/lib/redirect-bridge/types/custom_auth/core/error/UnexpectedError.d.ts.map +1 -0
  543. package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts +5 -0
  544. package/lib/redirect-bridge/types/custom_auth/core/error/UnsupportedEnvironmentError.d.ts.map +1 -0
  545. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts +5 -0
  546. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeError.d.ts.map +1 -0
  547. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts +2 -0
  548. package/lib/redirect-bridge/types/custom_auth/core/error/UserAccountAttributeErrorCodes.d.ts.map +1 -0
  549. package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts +5 -0
  550. package/lib/redirect-bridge/types/custom_auth/core/error/UserAlreadySignedInError.d.ts.map +1 -0
  551. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts +34 -0
  552. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInteractionClientBase.d.ts.map +1 -0
  553. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts +22 -0
  554. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/CustomAuthInterationClientFactory.d.ts.map +1 -0
  555. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts +21 -0
  556. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/JitClient.d.ts.map +1 -0
  557. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts +20 -0
  558. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/parameter/JitParams.d.ts.map +1 -0
  559. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts +22 -0
  560. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/jit/result/JitActionResult.d.ts.map +1 -0
  561. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts +21 -0
  562. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/MfaClient.d.ts.map +1 -0
  563. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts +14 -0
  564. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/parameter/MfaClientParameters.d.ts.map +1 -0
  565. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts +23 -0
  566. package/lib/redirect-bridge/types/custom_auth/core/interaction_client/mfa/result/MfaActionResult.d.ts.map +1 -0
  567. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts +15 -0
  568. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/BaseApiClient.d.ts.map +1 -0
  569. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts +14 -0
  570. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiClient.d.ts.map +1 -0
  571. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts +16 -0
  572. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/CustomAuthApiEndpoint.d.ts.map +1 -0
  573. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts +11 -0
  574. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ICustomAuthApiClient.d.ts.map +1 -0
  575. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts +18 -0
  576. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/RegisterApiClient.d.ts.map +1 -0
  577. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts +34 -0
  578. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/ResetPasswordApiClient.d.ts.map +1 -0
  579. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts +37 -0
  580. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignInApiClient.d.ts.map +1 -0
  581. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts +23 -0
  582. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/SignupApiClient.d.ts.map +1 -0
  583. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts +23 -0
  584. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorCodes.d.ts.map +1 -0
  585. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts +29 -0
  586. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiErrorResponseTypes.d.ts.map +1 -0
  587. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts +86 -0
  588. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiRequestTypes.d.ts.map +1 -0
  589. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts +71 -0
  590. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiResponseTypes.d.ts.map +1 -0
  591. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts +13 -0
  592. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiSuberrors.d.ts.map +1 -0
  593. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts +9 -0
  594. package/lib/redirect-bridge/types/custom_auth/core/network_client/custom_auth_api/types/ApiTypesBase.d.ts.map +1 -0
  595. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts +13 -0
  596. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/FetchHttpClient.d.ts.map +1 -0
  597. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts +35 -0
  598. package/lib/redirect-bridge/types/custom_auth/core/network_client/http_client/IHttpClient.d.ts.map +1 -0
  599. package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts +25 -0
  600. package/lib/redirect-bridge/types/custom_auth/core/telemetry/PublicApiId.d.ts.map +1 -0
  601. package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts +4 -0
  602. package/lib/redirect-bridge/types/custom_auth/core/utils/ArgumentValidator.d.ts.map +1 -0
  603. package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts +3 -0
  604. package/lib/redirect-bridge/types/custom_auth/core/utils/UrlUtils.d.ts.map +1 -0
  605. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts +47 -0
  606. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/CustomAuthAccountData.d.ts.map +1 -0
  607. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts +32 -0
  608. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/error_type/GetAccountError.d.ts.map +1 -0
  609. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts +37 -0
  610. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccessTokenResult.d.ts.map +1 -0
  611. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts +36 -0
  612. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/GetAccountResult.d.ts.map +1 -0
  613. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts +35 -0
  614. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/result/SignOutResult.d.ts.map +1 -0
  615. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts +20 -0
  616. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccessTokenState.d.ts.map +1 -0
  617. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts +20 -0
  618. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/GetAccountState.d.ts.map +1 -0
  619. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts +20 -0
  620. package/lib/redirect-bridge/types/custom_auth/get_account/auth_flow/state/SignOutState.d.ts.map +1 -0
  621. package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts +21 -0
  622. package/lib/redirect-bridge/types/custom_auth/get_account/interaction_client/CustomAuthSilentCacheClient.d.ts.map +1 -0
  623. package/lib/redirect-bridge/types/custom_auth/index.d.ts +84 -0
  624. package/lib/redirect-bridge/types/custom_auth/index.d.ts.map +1 -0
  625. package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts +13 -0
  626. package/lib/redirect-bridge/types/custom_auth/operating_context/CustomAuthOperatingContext.d.ts.map +1 -0
  627. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts +40 -0
  628. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/error_type/ResetPasswordError.d.ts.map +1 -0
  629. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts +37 -0
  630. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordResendCodeResult.d.ts.map +1 -0
  631. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts +37 -0
  632. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordStartResult.d.ts.map +1 -0
  633. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts +37 -0
  634. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitCodeResult.d.ts.map +1 -0
  635. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts +32 -0
  636. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/result/ResetPasswordSubmitPasswordResult.d.ts.map +1 -0
  637. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts +27 -0
  638. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCodeRequiredState.d.ts.map +1 -0
  639. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts +11 -0
  640. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordCompletedState.d.ts.map +1 -0
  641. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts +11 -0
  642. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordFailedState.d.ts.map +1 -0
  643. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts +16 -0
  644. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordPasswordRequiredState.d.ts.map +1 -0
  645. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts +6 -0
  646. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordState.d.ts.map +1 -0
  647. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts +19 -0
  648. package/lib/redirect-bridge/types/custom_auth/reset_password/auth_flow/state/ResetPasswordStateParameters.d.ts.map +1 -0
  649. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts +33 -0
  650. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/ResetPasswordClient.d.ts.map +1 -0
  651. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts +19 -0
  652. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/parameter/ResetPasswordParams.d.ts.map +1 -0
  653. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts +14 -0
  654. package/lib/redirect-bridge/types/custom_auth/reset_password/interaction_client/result/ResetPasswordActionResult.d.ts.map +1 -0
  655. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts +6 -0
  656. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/SignInScenario.d.ts.map +1 -0
  657. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts +45 -0
  658. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/error_type/SignInError.d.ts.map +1 -0
  659. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts +37 -0
  660. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResendCodeResult.d.ts.map +1 -0
  661. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts +72 -0
  662. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInResult.d.ts.map +1 -0
  663. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts +51 -0
  664. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitCodeResult.d.ts.map +1 -0
  665. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts +46 -0
  666. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/result/SignInSubmitPasswordResult.d.ts.map +1 -0
  667. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts +33 -0
  668. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCodeRequiredState.d.ts.map +1 -0
  669. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts +12 -0
  670. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInCompletedState.d.ts.map +1 -0
  671. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts +17 -0
  672. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInContinuationState.d.ts.map +1 -0
  673. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts +11 -0
  674. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInFailedState.d.ts.map +1 -0
  675. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts +21 -0
  676. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInPasswordRequiredState.d.ts.map +1 -0
  677. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts +22 -0
  678. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInState.d.ts.map +1 -0
  679. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts +25 -0
  680. package/lib/redirect-bridge/types/custom_auth/sign_in/auth_flow/state/SignInStateParameters.d.ts.map +1 -0
  681. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts +49 -0
  682. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/SignInClient.d.ts.map +1 -0
  683. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts +32 -0
  684. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/parameter/SignInParams.d.ts.map +1 -0
  685. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts +43 -0
  686. package/lib/redirect-bridge/types/custom_auth/sign_in/interaction_client/result/SignInActionResult.d.ts.map +1 -0
  687. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts +62 -0
  688. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/error_type/SignUpError.d.ts.map +1 -0
  689. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts +37 -0
  690. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResendCodeResult.d.ts.map +1 -0
  691. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts +53 -0
  692. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpResult.d.ts.map +1 -0
  693. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts +37 -0
  694. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitAttributesResult.d.ts.map +1 -0
  695. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts +53 -0
  696. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitCodeResult.d.ts.map +1 -0
  697. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts +45 -0
  698. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/result/SignUpSubmitPasswordResult.d.ts.map +1 -0
  699. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts +25 -0
  700. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpAttributesRequiredState.d.ts.map +1 -0
  701. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts +32 -0
  702. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCodeRequiredState.d.ts.map +1 -0
  703. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts +11 -0
  704. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpCompletedState.d.ts.map +1 -0
  705. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts +11 -0
  706. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpFailedState.d.ts.map +1 -0
  707. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts +16 -0
  708. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpPasswordRequiredState.d.ts.map +1 -0
  709. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts +6 -0
  710. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpState.d.ts.map +1 -0
  711. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts +24 -0
  712. package/lib/redirect-bridge/types/custom_auth/sign_up/auth_flow/state/SignUpStateParameters.d.ts.map +1 -0
  713. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts +41 -0
  714. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/SignUpClient.d.ts.map +1 -0
  715. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts +26 -0
  716. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/parameter/SignUpParams.d.ts.map +1 -0
  717. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts +34 -0
  718. package/lib/redirect-bridge/types/custom_auth/sign_up/interaction_client/result/SignUpActionResult.d.ts.map +1 -0
  719. package/lib/redirect-bridge/types/encode/Base64Decode.d.ts +15 -0
  720. package/lib/redirect-bridge/types/encode/Base64Decode.d.ts.map +1 -0
  721. package/lib/redirect-bridge/types/encode/Base64Encode.d.ts +20 -0
  722. package/lib/redirect-bridge/types/encode/Base64Encode.d.ts.map +1 -0
  723. package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts +12 -0
  724. package/lib/redirect-bridge/types/error/BrowserAuthError.d.ts.map +1 -0
  725. package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts +53 -0
  726. package/lib/redirect-bridge/types/error/BrowserAuthErrorCodes.d.ts.map +1 -0
  727. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts +11 -0
  728. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthError.d.ts.map +1 -0
  729. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts +4 -0
  730. package/lib/redirect-bridge/types/error/BrowserConfigurationAuthErrorCodes.d.ts.map +1 -0
  731. package/lib/redirect-bridge/types/error/NativeAuthError.d.ts +27 -0
  732. package/lib/redirect-bridge/types/error/NativeAuthError.d.ts.map +1 -0
  733. package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts +5 -0
  734. package/lib/redirect-bridge/types/error/NativeAuthErrorCodes.d.ts.map +1 -0
  735. package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts +6 -0
  736. package/lib/redirect-bridge/types/error/NestedAppAuthError.d.ts.map +1 -0
  737. package/lib/redirect-bridge/types/event/EventHandler.d.ts +49 -0
  738. package/lib/redirect-bridge/types/event/EventHandler.d.ts.map +1 -0
  739. package/lib/redirect-bridge/types/event/EventMessage.d.ts +41 -0
  740. package/lib/redirect-bridge/types/event/EventMessage.d.ts.map +1 -0
  741. package/lib/redirect-bridge/types/event/EventType.d.ts +24 -0
  742. package/lib/redirect-bridge/types/event/EventType.d.ts.map +1 -0
  743. package/lib/redirect-bridge/types/index.d.ts +73 -0
  744. package/lib/redirect-bridge/types/index.d.ts.map +1 -0
  745. package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts +77 -0
  746. package/lib/redirect-bridge/types/interaction_client/BaseInteractionClient.d.ts.map +1 -0
  747. package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts +5 -0
  748. package/lib/redirect-bridge/types/interaction_client/HybridSpaAuthorizationCodeClient.d.ts.map +1 -0
  749. package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts +151 -0
  750. package/lib/redirect-bridge/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -0
  751. package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts +106 -0
  752. package/lib/redirect-bridge/types/interaction_client/PopupClient.d.ts.map +1 -0
  753. package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts +77 -0
  754. package/lib/redirect-bridge/types/interaction_client/RedirectClient.d.ts.map +1 -0
  755. package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts +24 -0
  756. package/lib/redirect-bridge/types/interaction_client/SilentAuthCodeClient.d.ts.map +1 -0
  757. package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts +17 -0
  758. package/lib/redirect-bridge/types/interaction_client/SilentCacheClient.d.ts.map +1 -0
  759. package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts +57 -0
  760. package/lib/redirect-bridge/types/interaction_client/SilentIframeClient.d.ts.map +1 -0
  761. package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts +32 -0
  762. package/lib/redirect-bridge/types/interaction_client/SilentRefreshClient.d.ts.map +1 -0
  763. package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts +76 -0
  764. package/lib/redirect-bridge/types/interaction_client/StandardInteractionClient.d.ts.map +1 -0
  765. package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts +33 -0
  766. package/lib/redirect-bridge/types/interaction_handler/InteractionHandler.d.ts.map +1 -0
  767. package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts +17 -0
  768. package/lib/redirect-bridge/types/interaction_handler/SilentHandler.d.ts.map +1 -0
  769. package/lib/redirect-bridge/types/naa/AccountInfo.d.ts +13 -0
  770. package/lib/redirect-bridge/types/naa/AccountInfo.d.ts.map +1 -0
  771. package/lib/redirect-bridge/types/naa/AuthBridge.d.ts +9 -0
  772. package/lib/redirect-bridge/types/naa/AuthBridge.d.ts.map +1 -0
  773. package/lib/redirect-bridge/types/naa/AuthResult.d.ts +7 -0
  774. package/lib/redirect-bridge/types/naa/AuthResult.d.ts.map +1 -0
  775. package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts +13 -0
  776. package/lib/redirect-bridge/types/naa/BridgeAccountContext.d.ts.map +1 -0
  777. package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts +4 -0
  778. package/lib/redirect-bridge/types/naa/BridgeCapabilities.d.ts.map +1 -0
  779. package/lib/redirect-bridge/types/naa/BridgeError.d.ts +10 -0
  780. package/lib/redirect-bridge/types/naa/BridgeError.d.ts.map +1 -0
  781. package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts +69 -0
  782. package/lib/redirect-bridge/types/naa/BridgeProxy.d.ts.map +1 -0
  783. package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts +8 -0
  784. package/lib/redirect-bridge/types/naa/BridgeRequest.d.ts.map +1 -0
  785. package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts +13 -0
  786. package/lib/redirect-bridge/types/naa/BridgeRequestEnvelope.d.ts.map +1 -0
  787. package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts +14 -0
  788. package/lib/redirect-bridge/types/naa/BridgeResponseEnvelope.d.ts.map +1 -0
  789. package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts +12 -0
  790. package/lib/redirect-bridge/types/naa/BridgeStatusCode.d.ts.map +1 -0
  791. package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts +11 -0
  792. package/lib/redirect-bridge/types/naa/IBridgeProxy.d.ts.map +1 -0
  793. package/lib/redirect-bridge/types/naa/InitContext.d.ts +9 -0
  794. package/lib/redirect-bridge/types/naa/InitContext.d.ts.map +1 -0
  795. package/lib/redirect-bridge/types/naa/TokenRequest.d.ts +21 -0
  796. package/lib/redirect-bridge/types/naa/TokenRequest.d.ts.map +1 -0
  797. package/lib/redirect-bridge/types/naa/TokenResponse.d.ts +14 -0
  798. package/lib/redirect-bridge/types/naa/TokenResponse.d.ts.map +1 -0
  799. package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts +36 -0
  800. package/lib/redirect-bridge/types/naa/mapping/NestedAppAuthAdapter.d.ts.map +1 -0
  801. package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts +17 -0
  802. package/lib/redirect-bridge/types/navigation/INavigationClient.d.ts.map +1 -0
  803. package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts +23 -0
  804. package/lib/redirect-bridge/types/navigation/NavigationClient.d.ts.map +1 -0
  805. package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts +13 -0
  806. package/lib/redirect-bridge/types/navigation/NavigationOptions.d.ts.map +1 -0
  807. package/lib/redirect-bridge/types/network/FetchClient.d.ts +21 -0
  808. package/lib/redirect-bridge/types/network/FetchClient.d.ts.map +1 -0
  809. package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts +43 -0
  810. package/lib/redirect-bridge/types/operatingcontext/BaseOperatingContext.d.ts.map +1 -0
  811. package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts +41 -0
  812. package/lib/redirect-bridge/types/operatingcontext/NestedAppOperatingContext.d.ts.map +1 -0
  813. package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts +26 -0
  814. package/lib/redirect-bridge/types/operatingcontext/StandardOperatingContext.d.ts.map +1 -0
  815. package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts +26 -0
  816. package/lib/redirect-bridge/types/operatingcontext/UnknownOperatingContext.d.ts.map +1 -0
  817. package/lib/redirect-bridge/types/packageMetadata.d.ts +3 -0
  818. package/lib/redirect-bridge/types/packageMetadata.d.ts.map +1 -0
  819. package/lib/redirect-bridge/types/protocol/Authorize.d.ts +102 -0
  820. package/lib/redirect-bridge/types/protocol/Authorize.d.ts.map +1 -0
  821. package/lib/redirect-bridge/types/redirect_bridge/index.d.ts +16 -0
  822. package/lib/redirect-bridge/types/redirect_bridge/index.d.ts.map +1 -0
  823. package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts +27 -0
  824. package/lib/redirect-bridge/types/request/AuthorizationCodeRequest.d.ts.map +1 -0
  825. package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts +15 -0
  826. package/lib/redirect-bridge/types/request/ClearCacheRequest.d.ts.map +1 -0
  827. package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts +24 -0
  828. package/lib/redirect-bridge/types/request/EndSessionPopupRequest.d.ts.map +1 -0
  829. package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts +11 -0
  830. package/lib/redirect-bridge/types/request/EndSessionRequest.d.ts.map +1 -0
  831. package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts +5 -0
  832. package/lib/redirect-bridge/types/request/HandleRedirectPromiseOptions.d.ts.map +1 -0
  833. package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts +10 -0
  834. package/lib/redirect-bridge/types/request/InitializeApplicationRequest.d.ts.map +1 -0
  835. package/lib/redirect-bridge/types/request/PopupRequest.d.ts +25 -0
  836. package/lib/redirect-bridge/types/request/PopupRequest.d.ts.map +1 -0
  837. package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts +16 -0
  838. package/lib/redirect-bridge/types/request/PopupWindowAttributes.d.ts.map +1 -0
  839. package/lib/redirect-bridge/types/request/RedirectRequest.d.ts +16 -0
  840. package/lib/redirect-bridge/types/request/RedirectRequest.d.ts.map +1 -0
  841. package/lib/redirect-bridge/types/request/RequestHelpers.d.ts +28 -0
  842. package/lib/redirect-bridge/types/request/RequestHelpers.d.ts.map +1 -0
  843. package/lib/redirect-bridge/types/request/SilentRequest.d.ts +52 -0
  844. package/lib/redirect-bridge/types/request/SilentRequest.d.ts.map +1 -0
  845. package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts +6 -0
  846. package/lib/redirect-bridge/types/request/SsoSilentRequest.d.ts.map +1 -0
  847. package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts +5 -0
  848. package/lib/redirect-bridge/types/response/AuthenticationResult.d.ts.map +1 -0
  849. package/lib/redirect-bridge/types/response/ResponseHandler.d.ts +8 -0
  850. package/lib/redirect-bridge/types/response/ResponseHandler.d.ts.map +1 -0
  851. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts +19 -0
  852. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceClient.d.ts.map +1 -0
  853. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts +140 -0
  854. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -0
  855. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts +22 -0
  856. package/lib/redirect-bridge/types/telemetry/BrowserPerformanceMeasurement.d.ts.map +1 -0
  857. package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts +42 -0
  858. package/lib/redirect-bridge/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -0
  859. package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts +182 -0
  860. package/lib/redirect-bridge/types/utils/BrowserConstants.d.ts.map +1 -0
  861. package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts +12 -0
  862. package/lib/redirect-bridge/types/utils/BrowserProtocolUtils.d.ts.map +1 -0
  863. package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts +111 -0
  864. package/lib/redirect-bridge/types/utils/BrowserUtils.d.ts.map +1 -0
  865. package/lib/redirect-bridge/types/utils/Helpers.d.ts +7 -0
  866. package/lib/redirect-bridge/types/utils/Helpers.d.ts.map +1 -0
  867. package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts +13 -0
  868. package/lib/redirect-bridge/types/utils/MsalFrameStatsUtils.d.ts.map +1 -0
  869. package/lib/types/broker/nativeBroker/PlatformAuthProvider.d.ts +1 -1
  870. package/lib/types/cache/BrowserCacheManager.d.ts +2 -4
  871. package/lib/types/cache/BrowserCacheManager.d.ts.map +1 -1
  872. package/lib/types/cache/CacheKeys.d.ts +3 -2
  873. package/lib/types/cache/CacheKeys.d.ts.map +1 -1
  874. package/lib/types/config/Configuration.d.ts +7 -0
  875. package/lib/types/config/Configuration.d.ts.map +1 -1
  876. package/lib/types/controllers/StandardController.d.ts +16 -0
  877. package/lib/types/controllers/StandardController.d.ts.map +1 -1
  878. package/lib/types/custom_auth/CustomAuthConstants.d.ts +1 -1
  879. package/lib/types/custom_auth/UserAccountAttributes.d.ts +1 -0
  880. package/lib/types/custom_auth/UserAccountAttributes.d.ts.map +1 -1
  881. package/lib/types/error/NativeAuthError.d.ts.map +1 -1
  882. package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts +3 -3
  883. package/lib/types/interaction_client/PlatformAuthInteractionClient.d.ts.map +1 -1
  884. package/lib/types/interaction_client/PopupClient.d.ts.map +1 -1
  885. package/lib/types/interaction_client/RedirectClient.d.ts.map +1 -1
  886. package/lib/types/interaction_client/SilentIframeClient.d.ts +14 -0
  887. package/lib/types/interaction_client/SilentIframeClient.d.ts.map +1 -1
  888. package/lib/types/packageMetadata.d.ts +1 -1
  889. package/lib/types/protocol/Authorize.d.ts.map +1 -1
  890. package/lib/types/redirect_bridge/index.d.ts.map +1 -1
  891. package/lib/types/telemetry/BrowserPerformanceEvents.d.ts +1 -0
  892. package/lib/types/telemetry/BrowserPerformanceEvents.d.ts.map +1 -1
  893. package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts +6 -0
  894. package/lib/types/telemetry/BrowserRootPerformanceEvents.d.ts.map +1 -1
  895. package/package.json +3 -3
  896. package/src/broker/nativeBroker/PlatformAuthExtensionHandler.ts +1 -1
  897. package/src/broker/nativeBroker/PlatformAuthProvider.ts +1 -1
  898. package/src/cache/BrowserCacheManager.ts +5 -5
  899. package/src/cache/CacheKeys.ts +3 -2
  900. package/src/config/Configuration.ts +8 -0
  901. package/src/controllers/StandardController.ts +290 -39
  902. package/src/custom_auth/UserAccountAttributes.ts +1 -0
  903. package/src/error/NativeAuthError.ts +1 -2
  904. package/src/interaction_client/PlatformAuthInteractionClient.ts +82 -37
  905. package/src/interaction_client/PopupClient.ts +10 -0
  906. package/src/interaction_client/RedirectClient.ts +10 -0
  907. package/src/interaction_client/SilentIframeClient.ts +123 -20
  908. package/src/packageMetadata.ts +1 -1
  909. package/src/protocol/Authorize.ts +8 -0
  910. package/src/redirect_bridge/index.ts +12 -5
  911. package/src/telemetry/BrowserPerformanceEvents.ts +3 -0
  912. package/src/telemetry/BrowserRootPerformanceEvents.ts +7 -0
@@ -1,4 +1,4 @@
1
- /*! @azure/msal-browser v5.6.3 2026-04-01 */
1
+ /*! @azure/msal-browser v5.8.0 2026-04-21 */
2
2
  'use strict';
3
3
  (function (global, factory) {
4
4
  typeof exports === 'object' && typeof module !== 'undefined' ? factory(exports) :
@@ -6,7 +6,7 @@
6
6
  (global = typeof globalThis !== 'undefined' ? globalThis : global || self, factory(global.msal = {}));
7
7
  })(this, (function (exports) { 'use strict';
8
8
 
9
- /*! @azure/msal-common v16.4.1 2026-04-01 */
9
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
10
10
  /*
11
11
  * Copyright (c) Microsoft Corporation. All rights reserved.
12
12
  * Licensed under the MIT License.
@@ -238,7 +238,7 @@
238
238
  // Token renewal offset default in seconds
239
239
  const DEFAULT_TOKEN_RENEWAL_OFFSET_SEC = 300;
240
240
 
241
- /*! @azure/msal-common v16.4.1 2026-04-01 */
241
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
242
242
  /*
243
243
  * Copyright (c) Microsoft Corporation. All rights reserved.
244
244
  * Licensed under the MIT License.
@@ -290,7 +290,7 @@
290
290
  const RESOURCE = "resource";
291
291
  const CLI_DATA = "clidata";
292
292
 
293
- /*! @azure/msal-common v16.4.1 2026-04-01 */
293
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
294
294
  /*
295
295
  * Copyright (c) Microsoft Corporation. All rights reserved.
296
296
  * Licensed under the MIT License.
@@ -321,7 +321,7 @@
321
321
  return new AuthError(code, additionalMessage || getDefaultErrorMessage$1(code));
322
322
  }
323
323
 
324
- /*! @azure/msal-common v16.4.1 2026-04-01 */
324
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
325
325
 
326
326
  /*
327
327
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -341,7 +341,7 @@
341
341
  return new ClientConfigurationError(errorCode);
342
342
  }
343
343
 
344
- /*! @azure/msal-common v16.4.1 2026-04-01 */
344
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
345
345
  /*
346
346
  * Copyright (c) Microsoft Corporation. All rights reserved.
347
347
  * Licensed under the MIT License.
@@ -421,7 +421,7 @@
421
421
  }
422
422
  }
423
423
 
424
- /*! @azure/msal-common v16.4.1 2026-04-01 */
424
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
425
425
 
426
426
  /*
427
427
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -444,7 +444,7 @@
444
444
  return new ClientAuthError(errorCode, additionalMessage);
445
445
  }
446
446
 
447
- /*! @azure/msal-common v16.4.1 2026-04-01 */
447
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
448
448
  /*
449
449
  * Copyright (c) Microsoft Corporation. All rights reserved.
450
450
  * Licensed under the MIT License.
@@ -498,7 +498,7 @@
498
498
  urlParseError: urlParseError
499
499
  });
500
500
 
501
- /*! @azure/msal-common v16.4.1 2026-04-01 */
501
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
502
502
  /*
503
503
  * Copyright (c) Microsoft Corporation. All rights reserved.
504
504
  * Licensed under the MIT License.
@@ -586,7 +586,7 @@
586
586
  userCanceled: userCanceled
587
587
  });
588
588
 
589
- /*! @azure/msal-common v16.4.1 2026-04-01 */
589
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
590
590
 
591
591
  /*
592
592
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -781,7 +781,7 @@
781
781
  }
782
782
  }
783
783
 
784
- /*! @azure/msal-common v16.4.1 2026-04-01 */
784
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
785
785
 
786
786
  /*
787
787
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -902,18 +902,29 @@
902
902
  parameters.set(SID, sid);
903
903
  }
904
904
  /**
905
- * add claims
906
- * @param claims
907
- */
908
- function addClaims(parameters, claims, clientCapabilities) {
909
- const mergedClaims = addClientCapabilitiesToClaims$1(claims, clientCapabilities);
910
- try {
911
- JSON.parse(mergedClaims);
912
- }
913
- catch (e) {
914
- throw createClientConfigurationError(invalidClaims);
905
+ * Adds claims to request parameters, conditionally excluding clientCapabilities
906
+ * when skipBrokerClaims is true and a brokered flow is in effect.
907
+ * @param parameters - The request parameters map
908
+ * @param claims - The claims string from the request
909
+ * @param clientCapabilities - The client capabilities from configuration
910
+ * @param skipBrokerClaims - When true and BROKER_CLIENT_ID is present, excludes clientCapabilities from claims
911
+ */
912
+ function addClaims(parameters, claims, clientCapabilities, skipBrokerClaims) {
913
+ // Skip clientCapabilities if skipBrokerClaims is set to true and this is a brokered authentication flow
914
+ const configClaims = skipBrokerClaims && parameters.has(BROKER_CLIENT_ID)
915
+ ? undefined
916
+ : clientCapabilities;
917
+ if (!StringUtils.isEmptyObj(claims) ||
918
+ (configClaims && configClaims.length > 0)) {
919
+ const mergedClaims = addClientCapabilitiesToClaims$1(claims, configClaims);
920
+ try {
921
+ JSON.parse(mergedClaims);
922
+ }
923
+ catch (e) {
924
+ throw createClientConfigurationError(invalidClaims);
925
+ }
926
+ parameters.set(CLAIMS, mergedClaims);
915
927
  }
916
- parameters.set(CLAIMS, mergedClaims);
917
928
  }
918
929
  /**
919
930
  * add correlationId
@@ -1159,7 +1170,7 @@
1159
1170
  }
1160
1171
  }
1161
1172
 
1162
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1173
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1163
1174
 
1164
1175
  /*
1165
1176
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1268,7 +1279,7 @@
1268
1279
  }
1269
1280
  }
1270
1281
 
1271
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1282
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1272
1283
 
1273
1284
  /*
1274
1285
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1307,7 +1318,7 @@
1307
1318
  },
1308
1319
  };
1309
1320
 
1310
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1321
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1311
1322
  /*
1312
1323
  * Copyright (c) Microsoft Corporation. All rights reserved.
1313
1324
  * Licensed under the MIT License.
@@ -1582,12 +1593,12 @@
1582
1593
  }
1583
1594
  }
1584
1595
 
1585
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1596
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1586
1597
  /* eslint-disable header/header */
1587
1598
  const name$1 = "@azure/msal-common";
1588
- const version$1 = "16.4.1";
1599
+ const version$1 = "16.5.1";
1589
1600
 
1590
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1601
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1591
1602
  /*
1592
1603
  * Copyright (c) Microsoft Corporation. All rights reserved.
1593
1604
  * Licensed under the MIT License.
@@ -1607,7 +1618,7 @@
1607
1618
  AzureUsGovernment: "https://login.microsoftonline.us",
1608
1619
  };
1609
1620
 
1610
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1621
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1611
1622
  /*
1612
1623
  * Copyright (c) Microsoft Corporation. All rights reserved.
1613
1624
  * Licensed under the MIT License.
@@ -1648,6 +1659,7 @@
1648
1659
  username: preferred_username || upn || "",
1649
1660
  loginHint: login_hint,
1650
1661
  isHomeTenant: tenantIdMatchesHomeTenant(tenantId, homeAccountId),
1662
+ upn: upn,
1651
1663
  };
1652
1664
  }
1653
1665
  else {
@@ -1675,7 +1687,7 @@
1675
1687
  }
1676
1688
  // ID token claims override passed in account info and tenant profile
1677
1689
  if (idTokenClaims) {
1678
- // Ignore isHomeTenant, loginHint, and sid which are part of tenant profile but not base account info
1690
+ // Ignore isHomeTenant which is a utility property of tenant profile but not required in base account info
1679
1691
  // eslint-disable-next-line @typescript-eslint/no-unused-vars
1680
1692
  const { isHomeTenant, ...claimsSourcedTenantProfile } = buildTenantProfile(baseAccountInfo.homeAccountId, baseAccountInfo.localAccountId, baseAccountInfo.tenantId, idTokenClaims);
1681
1693
  updatedAccountInfo = {
@@ -1689,7 +1701,7 @@
1689
1701
  return updatedAccountInfo;
1690
1702
  }
1691
1703
 
1692
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1704
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1693
1705
 
1694
1706
  /*
1695
1707
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1769,7 +1781,7 @@
1769
1781
  }
1770
1782
  }
1771
1783
 
1772
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1784
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1773
1785
 
1774
1786
  /*
1775
1787
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -1926,7 +1938,7 @@
1926
1938
  }
1927
1939
  }
1928
1940
 
1929
- /*! @azure/msal-common v16.4.1 2026-04-01 */
1941
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
1930
1942
 
1931
1943
  /*
1932
1944
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2083,7 +2095,7 @@
2083
2095
  return null;
2084
2096
  }
2085
2097
 
2086
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2098
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2087
2099
  /*
2088
2100
  * Copyright (c) Microsoft Corporation. All rights reserved.
2089
2101
  * Licensed under the MIT License.
@@ -2091,7 +2103,7 @@
2091
2103
  const cacheQuotaExceeded = "cache_quota_exceeded";
2092
2104
  const cacheErrorUnknown = "cache_error_unknown";
2093
2105
 
2094
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2106
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2095
2107
 
2096
2108
  /*
2097
2109
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2129,7 +2141,7 @@
2129
2141
  }
2130
2142
  }
2131
2143
 
2132
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2144
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2133
2145
 
2134
2146
  /*
2135
2147
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2167,7 +2179,7 @@
2167
2179
  };
2168
2180
  }
2169
2181
 
2170
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2182
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2171
2183
  /*
2172
2184
  * Copyright (c) Microsoft Corporation. All rights reserved.
2173
2185
  * Licensed under the MIT License.
@@ -2182,7 +2194,7 @@
2182
2194
  Ciam: 3,
2183
2195
  };
2184
2196
 
2185
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2197
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2186
2198
  /*
2187
2199
  * Copyright (c) Microsoft Corporation. All rights reserved.
2188
2200
  * Licensed under the MIT License.
@@ -2204,7 +2216,7 @@
2204
2216
  return null;
2205
2217
  }
2206
2218
 
2207
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2219
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2208
2220
  /*
2209
2221
  * Copyright (c) Microsoft Corporation. All rights reserved.
2210
2222
  * Licensed under the MIT License.
@@ -2228,7 +2240,7 @@
2228
2240
  EAR: "EAR",
2229
2241
  };
2230
2242
 
2231
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2243
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2232
2244
  /**
2233
2245
  * Returns the AccountInfo interface for this account.
2234
2246
  */
@@ -2403,7 +2415,7 @@
2403
2415
  entity.hasOwnProperty("authorityType"));
2404
2416
  }
2405
2417
 
2406
- /*! @azure/msal-common v16.4.1 2026-04-01 */
2418
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
2407
2419
 
2408
2420
  /*
2409
2421
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -2540,6 +2552,19 @@
2540
2552
  !(tenantProfile.isHomeTenant === tenantProfileFilter.isHomeTenant)) {
2541
2553
  return false;
2542
2554
  }
2555
+ if (!!tenantProfileFilter.username &&
2556
+ !(this.matchUsername(tenantProfile.username, tenantProfileFilter.username) ||
2557
+ !this.matchUsername(tenantProfile.upn, tenantProfileFilter.username))) {
2558
+ return false;
2559
+ }
2560
+ if (!!tenantProfileFilter.loginHint &&
2561
+ !this.matchLoginHintWithTenantProfile(tenantProfile, tenantProfileFilter.loginHint)) {
2562
+ return false;
2563
+ }
2564
+ if (!!tenantProfileFilter.upn &&
2565
+ !(tenantProfile.upn === tenantProfileFilter.upn)) {
2566
+ return false;
2567
+ }
2543
2568
  return true;
2544
2569
  }
2545
2570
  idTokenClaimsMatchTenantProfileFilter(idTokenClaims, tenantProfileFilter) {
@@ -2554,7 +2579,8 @@
2554
2579
  return false;
2555
2580
  }
2556
2581
  if (!!tenantProfileFilter.username &&
2557
- !this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username)) {
2582
+ !this.matchUsername(idTokenClaims.preferred_username, tenantProfileFilter.username) &&
2583
+ !this.matchUsername(idTokenClaims.upn, tenantProfileFilter.username)) {
2558
2584
  return false;
2559
2585
  }
2560
2586
  if (!!tenantProfileFilter.name &&
@@ -2655,10 +2681,6 @@
2655
2681
  !this.matchHomeAccountId(entity, accountFilter.homeAccountId)) {
2656
2682
  return;
2657
2683
  }
2658
- if (!!accountFilter.username &&
2659
- !this.matchUsername(entity.username, accountFilter.username)) {
2660
- return;
2661
- }
2662
2684
  if (!!accountFilter.environment &&
2663
2685
  !this.matchEnvironment(entity, accountFilter.environment, correlationId)) {
2664
2686
  return;
@@ -2679,6 +2701,9 @@
2679
2701
  const tenantProfileFilter = {
2680
2702
  localAccountId: accountFilter?.localAccountId,
2681
2703
  name: accountFilter?.name,
2704
+ username: accountFilter?.username,
2705
+ loginHint: accountFilter?.loginHint,
2706
+ upn: accountFilter?.upn,
2682
2707
  };
2683
2708
  const matchingTenantProfiles = entity.tenantProfiles?.filter((tenantProfile) => {
2684
2709
  return this.tenantProfileMatchesFilter(tenantProfile, tenantProfileFilter);
@@ -2929,11 +2954,11 @@
2929
2954
  const numHomeIdTokens = homeIdTokenMap.size;
2930
2955
  if (numHomeIdTokens < 1) {
2931
2956
  this.commonLogger.info("0ooalx", correlationId);
2932
- return idTokenMap.values().next().value;
2957
+ return idTokenMap.values().next().value ?? null;
2933
2958
  }
2934
2959
  else if (numHomeIdTokens === 1) {
2935
2960
  this.commonLogger.info("1eq2vc", correlationId);
2936
- return homeIdTokenMap.values().next().value;
2961
+ return homeIdTokenMap.values().next().value ?? null;
2937
2962
  }
2938
2963
  else {
2939
2964
  // Multiple ID tokens for home tenant profile, remove all and return null
@@ -2949,7 +2974,7 @@
2949
2974
  return null;
2950
2975
  }
2951
2976
  this.commonLogger.info("1sm769", correlationId);
2952
- return idTokenMap.values().next().value;
2977
+ return idTokenMap.values().next().value ?? null;
2953
2978
  }
2954
2979
  /**
2955
2980
  * Gets all idTokens matching the given filter
@@ -3262,6 +3287,17 @@
3262
3287
  typeof cachedUsername === "string" &&
3263
3288
  filterUsername?.toLowerCase() === cachedUsername.toLowerCase());
3264
3289
  }
3290
+ /**
3291
+ * helper to match loginhints
3292
+ * @param entity
3293
+ * @param loginHint
3294
+ * @returns
3295
+ */
3296
+ matchLoginHintWithTenantProfile(tenantProfile, loginHintFilter) {
3297
+ return (tenantProfile.loginHint === loginHintFilter ||
3298
+ tenantProfile.username === loginHintFilter ||
3299
+ tenantProfile.upn === loginHintFilter);
3300
+ }
3265
3301
  /**
3266
3302
  * helper to match assertion
3267
3303
  * @param value
@@ -3354,6 +3390,10 @@
3354
3390
  if (tokenClaims.upn === loginHint) {
3355
3391
  return true;
3356
3392
  }
3393
+ // check login hint against list of emails in token claims
3394
+ if (tokenClaims.emails && tokenClaims.emails.includes(loginHint)) {
3395
+ return true;
3396
+ }
3357
3397
  return false;
3358
3398
  }
3359
3399
  /**
@@ -3505,7 +3545,7 @@
3505
3545
  }
3506
3546
  }
3507
3547
 
3508
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3548
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3509
3549
  /*
3510
3550
  * Copyright (c) Microsoft Corporation. All rights reserved.
3511
3551
  * Licensed under the MIT License.
@@ -3556,7 +3596,7 @@
3556
3596
  "redirectBridgeMessageVersion",
3557
3597
  ]);
3558
3598
 
3559
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3599
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3560
3600
 
3561
3601
  /*
3562
3602
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3611,7 +3651,7 @@
3611
3651
  }
3612
3652
  }
3613
3653
 
3614
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3654
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3615
3655
 
3616
3656
  /*
3617
3657
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -3706,7 +3746,7 @@
3706
3746
  return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
3707
3747
  }
3708
3748
 
3709
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3749
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3710
3750
  /*
3711
3751
  * Copyright (c) Microsoft Corporation. All rights reserved.
3712
3752
  * Licensed under the MIT License.
@@ -3733,7 +3773,7 @@
3733
3773
  }
3734
3774
  }
3735
3775
 
3736
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3776
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3737
3777
  /*
3738
3778
  * Copyright (c) Microsoft Corporation. All rights reserved.
3739
3779
  * Licensed under the MIT License.
@@ -3798,7 +3838,7 @@
3798
3838
  return cachedAtSec > nowSeconds();
3799
3839
  }
3800
3840
 
3801
- /*! @azure/msal-common v16.4.1 2026-04-01 */
3841
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
3802
3842
 
3803
3843
  /*
3804
3844
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4057,7 +4097,7 @@
4057
4097
  return metadata.expiresAt <= nowSeconds();
4058
4098
  }
4059
4099
 
4060
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4100
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4061
4101
  /*
4062
4102
  * Copyright (c) Microsoft Corporation. All rights reserved.
4063
4103
  * Licensed under the MIT License.
@@ -4128,7 +4168,7 @@
4128
4168
  const CacheManagerGetRefreshToken = "cacheManagerGetRefreshToken";
4129
4169
  const SetUserData = "setUserData";
4130
4170
 
4131
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4171
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4132
4172
  /*
4133
4173
  * Copyright (c) Microsoft Corporation. All rights reserved.
4134
4174
  * Licensed under the MIT License.
@@ -4221,7 +4261,7 @@
4221
4261
  };
4222
4262
  };
4223
4263
 
4224
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4264
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4225
4265
 
4226
4266
  /*
4227
4267
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4301,7 +4341,7 @@
4301
4341
  }
4302
4342
  }
4303
4343
 
4304
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4344
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4305
4345
  /*
4306
4346
  * Copyright (c) Microsoft Corporation. All rights reserved.
4307
4347
  * Licensed under the MIT License.
@@ -4365,7 +4405,7 @@
4365
4405
  uxNotAllowed: uxNotAllowed
4366
4406
  });
4367
4407
 
4368
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4408
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4369
4409
 
4370
4410
  /*
4371
4411
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4433,7 +4473,7 @@
4433
4473
  return new InteractionRequiredAuthError(errorCode, errorMessage);
4434
4474
  }
4435
4475
 
4436
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4476
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4437
4477
 
4438
4478
  /*
4439
4479
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4452,7 +4492,7 @@
4452
4492
  }
4453
4493
  }
4454
4494
 
4455
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4495
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4456
4496
 
4457
4497
  /*
4458
4498
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4520,7 +4560,7 @@
4520
4560
  }
4521
4561
  }
4522
4562
 
4523
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4563
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4524
4564
 
4525
4565
  /*
4526
4566
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -4868,7 +4908,7 @@
4868
4908
  return baseAccount;
4869
4909
  }
4870
4910
 
4871
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4911
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4872
4912
  /*
4873
4913
  * Copyright (c) Microsoft Corporation. All rights reserved.
4874
4914
  * Licensed under the MIT License.
@@ -4878,7 +4918,7 @@
4878
4918
  UPN: "UPN",
4879
4919
  };
4880
4920
 
4881
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4921
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4882
4922
  /*
4883
4923
  * Copyright (c) Microsoft Corporation. All rights reserved.
4884
4924
  * Licensed under the MIT License.
@@ -4896,7 +4936,7 @@
4896
4936
  }
4897
4937
  }
4898
4938
 
4899
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4939
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4900
4940
  /*
4901
4941
  * Copyright (c) Microsoft Corporation. All rights reserved.
4902
4942
  * Licensed under the MIT License.
@@ -4917,7 +4957,7 @@
4917
4957
  };
4918
4958
  }
4919
4959
 
4920
- /*! @azure/msal-common v16.4.1 2026-04-01 */
4960
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
4921
4961
 
4922
4962
  /*
4923
4963
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5003,7 +5043,7 @@
5003
5043
  }
5004
5044
  }
5005
5045
 
5006
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5046
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5007
5047
 
5008
5048
  /*
5009
5049
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5034,7 +5074,7 @@
5034
5074
  return new NetworkError(error, httpStatus, responseHeaders);
5035
5075
  }
5036
5076
 
5037
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5077
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5038
5078
 
5039
5079
  /*
5040
5080
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5148,7 +5188,7 @@
5148
5188
  return response;
5149
5189
  }
5150
5190
 
5151
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5191
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5152
5192
  /*
5153
5193
  * Copyright (c) Microsoft Corporation. All rights reserved.
5154
5194
  * Licensed under the MIT License.
@@ -5160,7 +5200,7 @@
5160
5200
  response.hasOwnProperty("jwks_uri"));
5161
5201
  }
5162
5202
 
5163
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5203
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5164
5204
  /*
5165
5205
  * Copyright (c) Microsoft Corporation. All rights reserved.
5166
5206
  * Licensed under the MIT License.
@@ -5170,7 +5210,7 @@
5170
5210
  response.hasOwnProperty("metadata"));
5171
5211
  }
5172
5212
 
5173
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5213
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5174
5214
  /*
5175
5215
  * Copyright (c) Microsoft Corporation. All rights reserved.
5176
5216
  * Licensed under the MIT License.
@@ -5180,7 +5220,7 @@
5180
5220
  response.hasOwnProperty("error_description"));
5181
5221
  }
5182
5222
 
5183
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5223
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5184
5224
 
5185
5225
  /*
5186
5226
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -5285,7 +5325,7 @@
5285
5325
  },
5286
5326
  };
5287
5327
 
5288
- /*! @azure/msal-common v16.4.1 2026-04-01 */
5328
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
5289
5329
 
5290
5330
  /*
5291
5331
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6105,7 +6145,7 @@
6105
6145
  };
6106
6146
  }
6107
6147
 
6108
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6148
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6109
6149
 
6110
6150
  /*
6111
6151
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6139,7 +6179,7 @@
6139
6179
  }
6140
6180
  }
6141
6181
 
6142
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6182
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6143
6183
 
6144
6184
  /*
6145
6185
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6304,11 +6344,6 @@
6304
6344
  throw createClientConfigurationError(missingSshJwk);
6305
6345
  }
6306
6346
  }
6307
- if (!StringUtils.isEmptyObj(request.claims) ||
6308
- (this.config.authOptions.clientCapabilities &&
6309
- this.config.authOptions.clientCapabilities.length > 0)) {
6310
- addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
6311
- }
6312
6347
  let ccsCred = undefined;
6313
6348
  if (request.clientInfo) {
6314
6349
  try {
@@ -6357,6 +6392,7 @@
6357
6392
  });
6358
6393
  }
6359
6394
  instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
6395
+ addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
6360
6396
  return mapToQueryString(parameters);
6361
6397
  }
6362
6398
  /**
@@ -6400,7 +6436,7 @@
6400
6436
  }
6401
6437
  }
6402
6438
 
6403
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6439
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6404
6440
 
6405
6441
  /*
6406
6442
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6590,11 +6626,6 @@
6590
6626
  throw createClientConfigurationError(missingSshJwk);
6591
6627
  }
6592
6628
  }
6593
- if (!StringUtils.isEmptyObj(request.claims) ||
6594
- (this.config.authOptions.clientCapabilities &&
6595
- this.config.authOptions.clientCapabilities.length > 0)) {
6596
- addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
6597
- }
6598
6629
  if (this.config.systemOptions.preventCorsPreflight &&
6599
6630
  request.ccsCredential) {
6600
6631
  switch (request.ccsCredential.type) {
@@ -6621,11 +6652,12 @@
6621
6652
  });
6622
6653
  }
6623
6654
  instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
6655
+ addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
6624
6656
  return mapToQueryString(parameters);
6625
6657
  }
6626
6658
  }
6627
6659
 
6628
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6660
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6629
6661
 
6630
6662
  /*
6631
6663
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6741,7 +6773,7 @@
6741
6773
  }
6742
6774
  }
6743
6775
 
6744
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6776
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6745
6777
 
6746
6778
  /*
6747
6779
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6756,7 +6788,7 @@
6756
6788
  },
6757
6789
  };
6758
6790
 
6759
- /*! @azure/msal-common v16.4.1 2026-04-01 */
6791
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6760
6792
 
6761
6793
  /*
6762
6794
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -6880,14 +6912,10 @@
6880
6912
  if (request.state) {
6881
6913
  addState(parameters, request.state);
6882
6914
  }
6883
- if (request.claims ||
6884
- (authOptions.clientCapabilities &&
6885
- authOptions.clientCapabilities.length > 0)) {
6886
- addClaims(parameters, request.claims, authOptions.clientCapabilities);
6887
- }
6888
6915
  if (request.embeddedClientId) {
6889
6916
  addBrokerParameters(parameters, authOptions.clientId, authOptions.redirectUri);
6890
6917
  }
6918
+ addClaims(parameters, request.claims, authOptions.clientCapabilities, request.skipBrokerClaims);
6891
6919
  // If extraQueryParameters includes instance_aware its value will be added when extraQueryParameters are added
6892
6920
  if (authOptions.instanceAware &&
6893
6921
  (!request.extraQueryParameters ||
@@ -6983,7 +7011,7 @@
6983
7011
  return account.loginHint || account.idTokenClaims?.login_hint || null;
6984
7012
  }
6985
7013
 
6986
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7014
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
6987
7015
 
6988
7016
  /*
6989
7017
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7016,7 +7044,7 @@
7016
7044
  return Object.prototype.hasOwnProperty.call(params, "resource");
7017
7045
  }
7018
7046
 
7019
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7047
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7020
7048
 
7021
7049
  /*
7022
7050
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7074,7 +7102,7 @@
7074
7102
  }
7075
7103
  }
7076
7104
 
7077
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7105
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7078
7106
  /*
7079
7107
  * Copyright (c) Microsoft Corporation. All rights reserved.
7080
7108
  * Licensed under the MIT License.
@@ -7091,7 +7119,7 @@
7091
7119
  unexpectedError: unexpectedError
7092
7120
  });
7093
7121
 
7094
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7122
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7095
7123
 
7096
7124
  /*
7097
7125
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7352,7 +7380,7 @@
7352
7380
  }
7353
7381
  }
7354
7382
 
7355
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7383
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7356
7384
 
7357
7385
  /*
7358
7386
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7373,7 +7401,7 @@
7373
7401
  return new JoseHeaderError(code);
7374
7402
  }
7375
7403
 
7376
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7404
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7377
7405
  /*
7378
7406
  * Copyright (c) Microsoft Corporation. All rights reserved.
7379
7407
  * Licensed under the MIT License.
@@ -7381,7 +7409,7 @@
7381
7409
  const missingKidError = "missing_kid_error";
7382
7410
  const missingAlgError = "missing_alg_error";
7383
7411
 
7384
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7412
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7385
7413
 
7386
7414
  /*
7387
7415
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -7421,7 +7449,7 @@
7421
7449
  }
7422
7450
  }
7423
7451
 
7424
- /*! @azure/msal-common v16.4.1 2026-04-01 */
7452
+ /*! @azure/msal-common v16.5.1 2026-04-21 */
7425
7453
 
7426
7454
  /*
7427
7455
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -8006,6 +8034,7 @@
8006
8034
  * Used to acquire a token from Native component when native brokering is enabled.
8007
8035
  */
8008
8036
  const NativeInteractionClientAcquireToken = "nativeInteractionClientAcquireToken";
8037
+ const NativeInteractionClientAcquireTokenRedirect = "nativeInteractionClientAcquireToken";
8009
8038
  /**
8010
8039
  * acquireTokenByRefreshToken API in RefreshTokenClient (msal-common).
8011
8040
  */
@@ -8079,7 +8108,7 @@
8079
8108
  * Background telemetry measurement that tracks whether a late bridge response
8080
8109
  * arrives after the iframe timeout has already fired.
8081
8110
  */
8082
- const WaitForBridgeLateResponse = "waitForBridgeLateResponse";
8111
+ const WaitForBridgeLateResponse$1 = "waitForBridgeLateResponse";
8083
8112
 
8084
8113
  /*
8085
8114
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -9005,7 +9034,7 @@
9005
9034
  // Clear the active monitor
9006
9035
  activeBridgeMonitor = null;
9007
9036
  if (experimentalConfig?.iframeTimeoutTelemetry) {
9008
- lateMeasurement = performanceClient.startMeasurement(WaitForBridgeLateResponse, correlationId);
9037
+ lateMeasurement = performanceClient.startMeasurement(WaitForBridgeLateResponse$1, correlationId);
9009
9038
  timedOut$1 = true;
9010
9039
  lateTimeoutId = window.setTimeout(() => {
9011
9040
  lateMeasurement?.end({ success: false });
@@ -9806,7 +9835,14 @@
9806
9835
  // Update cache storage
9807
9836
  const LocalStorageUpdated = "localStorageUpdated";
9808
9837
  // Load external tokens
9809
- const LoadExternalTokens = "loadExternalTokens";
9838
+ const LoadExternalTokens = "loadExternalTokens";
9839
+ /**
9840
+ * SSO capability verification call (msal-browser).
9841
+ * Fire-and-forget SSO verification call made after interactive authentication completes.
9842
+ */
9843
+ const SsoCapable = "ssoCapable";
9844
+ // Wait for late response from bridge after timeout has already occurred
9845
+ const WaitForBridgeLateResponse = "waitForBridgeLateResponse";
9810
9846
 
9811
9847
  var BrowserRootPerformanceEvents = /*#__PURE__*/Object.freeze({
9812
9848
  __proto__: null,
@@ -9818,7 +9854,9 @@
9818
9854
  InitializeClientApplication: InitializeClientApplication,
9819
9855
  LoadExternalTokens: LoadExternalTokens,
9820
9856
  LocalStorageUpdated: LocalStorageUpdated,
9821
- SsoSilent: SsoSilent
9857
+ SsoCapable: SsoCapable,
9858
+ SsoSilent: SsoSilent,
9859
+ WaitForBridgeLateResponse: WaitForBridgeLateResponse
9822
9860
  });
9823
9861
 
9824
9862
  /*
@@ -9828,8 +9866,8 @@
9828
9866
  const PREFIX = "msal";
9829
9867
  const BROWSER_PREFIX = "browser";
9830
9868
  const CACHE_KEY_SEPARATOR = "|";
9831
- const CREDENTIAL_SCHEMA_VERSION = 2;
9832
- const ACCOUNT_SCHEMA_VERSION = 2;
9869
+ const CREDENTIAL_SCHEMA_VERSION = 3;
9870
+ const ACCOUNT_SCHEMA_VERSION = 3;
9833
9871
  const LOG_LEVEL_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.level`;
9834
9872
  const LOG_PII_CACHE_KEY = `${PREFIX}.${BROWSER_PREFIX}.log.pii`;
9835
9873
  const BROWSER_PERF_ENABLED_KEY = `${PREFIX}.${BROWSER_PREFIX}.performance.enabled`;
@@ -9837,6 +9875,7 @@
9837
9875
  const VERSION_CACHE_KEY = `${PREFIX}.version`;
9838
9876
  const ACCOUNT_KEYS = "account.keys";
9839
9877
  const TOKEN_KEYS = "token.keys";
9878
+ const SSO_CAPABLE = `${PREFIX}.${BROWSER_PREFIX}.sso.capable`;
9840
9879
  function getAccountKeysCacheKey(schema = ACCOUNT_SCHEMA_VERSION) {
9841
9880
  if (schema < 1) {
9842
9881
  return `${PREFIX}.${ACCOUNT_KEYS}`;
@@ -10335,7 +10374,7 @@
10335
10374
 
10336
10375
  /* eslint-disable header/header */
10337
10376
  const name = "@azure/msal-browser";
10338
- const version = "5.6.3";
10377
+ const version = "5.8.0";
10339
10378
 
10340
10379
  /*
10341
10380
  * Copyright (c) Microsoft Corporation. All rights reserved.
@@ -10618,7 +10657,9 @@
10618
10657
  }
10619
10658
  await this.setUserData(newIdTokenKey, JSON.stringify(oldSchemaData), correlationId, oldSchemaData.lastUpdatedAt, kmsi);
10620
10659
  this.performanceClient.incrementFields({ migratedITCount: 1 }, correlationId);
10621
- currentCredentialKeys.idToken.push(newIdTokenKey);
10660
+ if (!currentCredentialKeys.idToken.includes(newIdTokenKey)) {
10661
+ currentCredentialKeys.idToken.push(newIdTokenKey);
10662
+ }
10622
10663
  }
10623
10664
  }
10624
10665
  this.setTokenKeys(credentialKeysToMigrate, correlationId, credentialSchema);
@@ -11467,10 +11508,8 @@
11467
11508
  return `${PREFIX}.${this.clientId}.${key}`;
11468
11509
  }
11469
11510
  /**
11470
- * Cache Key: msal.<schema_version>-<home_account_id>-<environment>-<credential_type>-<client_id or familyId>-<realm>-<scopes>-<claims hash>-<scheme>
11471
- * IdToken Example: uid.utid-login.microsoftonline.com-idtoken-app_client_id-contoso.com
11472
- * AccessToken Example: uid.utid-login.microsoftonline.com-accesstoken-app_client_id-contoso.com-scope1 scope2--pop
11473
- * RefreshToken Example: uid.utid-login.microsoftonline.com-refreshtoken-1-contoso.com
11511
+ * Generate Credential Key. All changes to the key REQUIRE a schema version update.
11512
+ * Cache Key: msal.<schema_version>|<home_account_id>|<environment>|<credential_type>|<client_id or familyId>|<realm>|<scopes>|<scheme>
11474
11513
  * @param credentialEntity
11475
11514
  * @returns
11476
11515
  */
@@ -12438,7 +12477,6 @@
12438
12477
  const USER_INTERACTION_REQUIRED = "USER_INTERACTION_REQUIRED";
12439
12478
  const USER_CANCEL = "USER_CANCEL";
12440
12479
  const NO_NETWORK = "NO_NETWORK";
12441
- const PERSISTENT_ERROR = "PERSISTENT_ERROR";
12442
12480
  const DISABLED = "DISABLED";
12443
12481
  const ACCOUNT_UNAVAILABLE = "ACCOUNT_UNAVAILABLE";
12444
12482
  const UX_NOT_ALLOWED = "UX_NOT_ALLOWED";
@@ -12462,8 +12500,7 @@
12462
12500
  function isFatalNativeAuthError(error) {
12463
12501
  if (error.ext &&
12464
12502
  error.ext.status &&
12465
- (error.ext.status === PERSISTENT_ERROR ||
12466
- error.ext.status === DISABLED)) {
12503
+ error.ext.status === DISABLED) {
12467
12504
  return true;
12468
12505
  }
12469
12506
  if (error.ext &&
@@ -12589,12 +12626,12 @@
12589
12626
  async acquireToken(request, cacheLookupPolicy) {
12590
12627
  this.logger.trace("03qeos", this.correlationId);
12591
12628
  // start the perf measurement
12592
- const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken, request.correlationId);
12629
+ const nativeATMeasurement = this.performanceClient.startMeasurement(NativeInteractionClientAcquireToken, this.correlationId);
12593
12630
  const reqTimestamp = nowSeconds();
12594
12631
  const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
12595
12632
  try {
12596
12633
  // initialize native request
12597
- const nativeRequest = await this.initializeNativeRequest(request);
12634
+ const nativeRequest = await this.initializePlatformRequest(request);
12598
12635
  // check if the tokens can be retrieved from internal cache
12599
12636
  try {
12600
12637
  const result = await this.acquireTokensFromCache(this.accountId, nativeRequest);
@@ -12608,6 +12645,10 @@
12608
12645
  catch (e) {
12609
12646
  if (cacheLookupPolicy === CacheLookupPolicy.AccessToken) {
12610
12647
  this.logger.info("0eitbc", this.correlationId);
12648
+ nativeATMeasurement.end({
12649
+ success: false,
12650
+ brokerErrorCode: "cache_request_failed",
12651
+ });
12611
12652
  throw e;
12612
12653
  }
12613
12654
  // continue with a native call for any and all errors
@@ -12629,7 +12670,6 @@
12629
12670
  success: false,
12630
12671
  errorCode: error.errorCode,
12631
12672
  subErrorCode: error.subError,
12632
- isNativeBroker: true,
12633
12673
  });
12634
12674
  throw error;
12635
12675
  });
@@ -12638,6 +12678,9 @@
12638
12678
  if (e instanceof NativeAuthError) {
12639
12679
  serverTelemetryManager.setNativeBrokerErrorCode(e.errorCode);
12640
12680
  }
12681
+ nativeATMeasurement.end({
12682
+ success: false,
12683
+ });
12641
12684
  throw e;
12642
12685
  }
12643
12686
  }
@@ -12670,7 +12713,7 @@
12670
12713
  // fetch the account from browser cache
12671
12714
  const account = this.browserStorage.getBaseAccountInfo({
12672
12715
  nativeAccountId,
12673
- }, request.correlationId);
12716
+ }, this.correlationId);
12674
12717
  if (!account) {
12675
12718
  throw createClientAuthError(noAccountFound);
12676
12719
  }
@@ -12678,13 +12721,14 @@
12678
12721
  try {
12679
12722
  const silentRequest = this.createSilentCacheRequest(request, account);
12680
12723
  const result = await this.silentCacheClient.acquireToken(silentRequest);
12681
- const fullAccount = {
12682
- ...account,
12683
- idTokenClaims: result?.idTokenClaims,
12684
- idToken: result?.idToken,
12685
- };
12724
+ const idToken = this.browserStorage.getIdToken(account, this.correlationId, this.browserStorage.getTokenKeys(), account.tenantId);
12725
+ const idTokenClaims = extractTokenClaims(idToken?.secret || "", base64Decode);
12726
+ const fullAccount = updateAccountTenantProfileData(account, undefined, // tenantProfile optional
12727
+ idTokenClaims, idToken?.secret);
12686
12728
  return {
12687
12729
  ...result,
12730
+ idToken: idToken?.secret || "",
12731
+ idTokenClaims: idTokenClaims,
12688
12732
  account: fullAccount,
12689
12733
  };
12690
12734
  }
@@ -12700,7 +12744,7 @@
12700
12744
  */
12701
12745
  async acquireTokenRedirect(request, rootMeasurement, options) {
12702
12746
  this.logger.trace("0luikq", this.correlationId);
12703
- const nativeRequest = await this.initializeNativeRequest(request);
12747
+ const nativeRequest = await this.initializePlatformRequest(request);
12704
12748
  const navigateToLoginRequestUrl = options?.navigateToLoginRequestUrl ?? true;
12705
12749
  try {
12706
12750
  await this.platformAuthProvider.sendMessage(nativeRequest);
@@ -12732,7 +12776,7 @@
12732
12776
  * @param performanceClient {IPerformanceClient?}
12733
12777
  * @param correlationId {string?} correlation identifier
12734
12778
  */
12735
- async handleRedirectPromise(performanceClient, correlationId) {
12779
+ async handleRedirectPromise() {
12736
12780
  this.logger.trace("1c5lhw", this.correlationId);
12737
12781
  if (!this.browserStorage.isInteractionInProgress(true)) {
12738
12782
  this.logger.info("0le6uv", this.correlationId);
@@ -12742,9 +12786,7 @@
12742
12786
  const cachedRequest = this.browserStorage.getCachedNativeRequest();
12743
12787
  if (!cachedRequest) {
12744
12788
  this.logger.verbose("0a6zjb", this.correlationId);
12745
- if (performanceClient && correlationId) {
12746
- performanceClient?.addFields({ errorCode: "no_cached_request" }, correlationId);
12747
- }
12789
+ this.performanceClient?.addFields({ errorCode: "no_cached_request" }, this.correlationId);
12748
12790
  return null;
12749
12791
  }
12750
12792
  const { prompt, ...request } = cachedRequest;
@@ -12759,6 +12801,7 @@
12759
12801
  const authResult = await this.handleNativeResponse(response, request, reqTimestamp);
12760
12802
  const serverTelemetryManager = initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger);
12761
12803
  serverTelemetryManager.clearNativeBrokerErrorCode();
12804
+ this.performanceClient?.addFields({ isNativeBroker: true }, this.correlationId);
12762
12805
  return authResult;
12763
12806
  }
12764
12807
  catch (e) {
@@ -12808,7 +12851,8 @@
12808
12851
  const result = await this.generateAuthenticationResult(response, request, idTokenClaims, baseAccount, authority.canonicalAuthority, reqTimestamp);
12809
12852
  // cache accounts and tokens in the appropriate storage
12810
12853
  await this.cacheAccount(baseAccount, isKmsi(idTokenClaims));
12811
- await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, response.access_token, result.tenantId, reqTimestamp);
12854
+ await this.cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, result.tenantId, reqTimestamp, authority.getPreferredCache() // environment
12855
+ );
12812
12856
  return result;
12813
12857
  }
12814
12858
  /**
@@ -12947,8 +12991,8 @@
12947
12991
  * @param tenantId
12948
12992
  * @param reqTimestamp
12949
12993
  */
12950
- cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, responseAccessToken, tenantId, reqTimestamp) {
12951
- const cachedIdToken = createIdTokenEntity(homeAccountIdentifier, request.authority, response.id_token || "", request.clientId, idTokenClaims.tid || "");
12994
+ async cacheNativeTokens(response, request, homeAccountIdentifier, idTokenClaims, tenantId, reqTimestamp, environment) {
12995
+ const cachedIdToken = createIdTokenEntity(homeAccountIdentifier, environment, response.id_token || "", request.clientId, idTokenClaims.tid || "");
12952
12996
  // cache accessToken in inmemory storage
12953
12997
  const expiresIn = request.tokenType === AuthenticationScheme$1.POP
12954
12998
  ? SHR_NONCE_VALIDITY
@@ -12957,9 +13001,13 @@
12957
13001
  : response.expires_in) || 0;
12958
13002
  const tokenExpirationSeconds = reqTimestamp + expiresIn;
12959
13003
  const responseScopes = this.generateScopes(response.scope, request.scope);
12960
- const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier, request.authority, responseAccessToken, request.clientId, idTokenClaims.tid || tenantId, responseScopes.printScopes(), tokenExpirationSeconds, 0, base64Decode, undefined, request.tokenType, undefined, request.keyId);
13004
+ const cachedAccessToken = createAccessTokenEntity(homeAccountIdentifier, environment, response.access_token, request.clientId, idTokenClaims.tid || tenantId, responseScopes.printScopes(), tokenExpirationSeconds, 0, base64Decode, undefined, request.tokenType, undefined, request.keyId);
13005
+ // save idtoken credential in configured browser storage
13006
+ if (!!cachedIdToken && request.storeInCache?.idToken !== false) {
13007
+ await this.browserStorage.setIdTokenCredential(cachedIdToken, this.correlationId, isKmsi(idTokenClaims));
13008
+ }
13009
+ // save access token credential in memory storage
12961
13010
  const nativeCacheRecord = {
12962
- idToken: cachedIdToken,
12963
13011
  accessToken: cachedAccessToken,
12964
13012
  };
12965
13013
  return this.nativeStorageManager.saveCacheRecord(nativeCacheRecord, this.correlationId, isKmsi(idTokenClaims), this.apiId, request.storeInCache);
@@ -13027,15 +13075,23 @@
13027
13075
  * Translates developer provided request object into NativeRequest object
13028
13076
  * @param request
13029
13077
  */
13030
- async initializeNativeRequest(request) {
13031
- this.logger.trace("04j6wj", this.correlationId);
13078
+ async initializePlatformRequest(request) {
13079
+ this.logger.trace("1xdm2a", this.correlationId);
13032
13080
  const canonicalAuthority = await this.getCanonicalAuthority(request);
13081
+ // ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
13082
+ const configClaims = request.skipBrokerClaims && !!request.embeddedClientId
13083
+ ? undefined
13084
+ : this.config.auth.clientCapabilities;
13033
13085
  // scopes are expected to be received by the native broker as "scope" and will be added to the request below. Other properties that should be dropped from the request to the native broker can be included in the object destructuring here.
13034
- const { scopes, ...remainingProperties } = request;
13086
+ const { scopes, claims, ...remainingProperties } = request;
13035
13087
  const scopeSet = new ScopeSet(scopes || []);
13036
13088
  scopeSet.appendScopes(OIDC_DEFAULT_SCOPES$1);
13089
+ const mergedClaims = configClaims && configClaims.length
13090
+ ? addClientCapabilitiesToClaims$1(claims, configClaims)
13091
+ : claims;
13037
13092
  const validatedRequest = {
13038
13093
  ...remainingProperties,
13094
+ claims: mergedClaims,
13039
13095
  accountId: this.accountId,
13040
13096
  clientId: this.config.auth.clientId,
13041
13097
  authority: canonicalAuthority.urlString,
@@ -13105,12 +13161,12 @@
13105
13161
  switch (this.apiId) {
13106
13162
  case ApiId.ssoSilent:
13107
13163
  case ApiId.acquireTokenSilent_silentFlow:
13108
- this.logger.trace("1hiwaz", this.correlationId);
13164
+ this.logger.trace("12n1y2", this.correlationId);
13109
13165
  return PromptValue$1.NONE;
13110
13166
  }
13111
13167
  // Prompt not provided, request may proceed and native broker decides if it needs to prompt
13112
13168
  if (!prompt) {
13113
- this.logger.trace("1qlu04", this.correlationId);
13169
+ this.logger.trace("0uid1p", this.correlationId);
13114
13170
  return undefined;
13115
13171
  }
13116
13172
  // If request is interactive, check if prompt provided is allowed to go directly to native broker
@@ -13118,10 +13174,10 @@
13118
13174
  case PromptValue$1.NONE:
13119
13175
  case PromptValue$1.CONSENT:
13120
13176
  case PromptValue$1.LOGIN:
13121
- this.logger.trace("1ynje4", this.correlationId);
13177
+ this.logger.trace("0i0hco", this.correlationId);
13122
13178
  return prompt;
13123
13179
  default:
13124
- this.logger.trace("0nkr6q", this.correlationId);
13180
+ this.logger.trace("0w3tpw", this.correlationId);
13125
13181
  throw createBrowserAuthError(nativePromptNotSupported);
13126
13182
  }
13127
13183
  }
@@ -13157,7 +13213,7 @@
13157
13213
  this.performanceClient?.addFields({
13158
13214
  embeddedClientId: child_client_id,
13159
13215
  embeddedRedirectUri: child_redirect_uri,
13160
- }, request.correlationId);
13216
+ }, this.correlationId);
13161
13217
  }
13162
13218
  }
13163
13219
 
@@ -13244,6 +13300,10 @@
13244
13300
  if (request.platformBroker) {
13245
13301
  // signal ests that this is a WAM call
13246
13302
  addNativeBroker(parameters);
13303
+ // instrument JS-platform bridge specific fields
13304
+ performanceClient.addFields({
13305
+ isPlatformAuthorizeRequest: true,
13306
+ }, request.correlationId);
13247
13307
  // pass the req_cnf for POP
13248
13308
  if (request.authenticationScheme === AuthenticationScheme$1.POP) {
13249
13309
  const cryptoOps = new CryptoOps(logger, performanceClient);
@@ -13713,6 +13773,7 @@
13713
13773
  },
13714
13774
  instanceAware: false,
13715
13775
  isMcp: false,
13776
+ verifySSO: false,
13716
13777
  };
13717
13778
  // Default cache options for browser
13718
13779
  const DEFAULT_CACHE_OPTIONS = {
@@ -13807,7 +13868,7 @@
13807
13868
  this.messageChannel = new MessageChannel();
13808
13869
  this.windowListener = this.onWindowMessage.bind(this); // Window event callback doesn't have access to 'this' unless it's bound
13809
13870
  this.performanceClient = performanceClient;
13810
- this.handshakeEvent = performanceClient.startMeasurement(NativeMessageHandlerHandshake);
13871
+ this.handshakeEvent = this.performanceClient.startMeasurement(NativeMessageHandlerHandshake);
13811
13872
  this.platformAuthType =
13812
13873
  PlatformAuthConstants.PLATFORM_EXTENSION_PROVIDER;
13813
13874
  }
@@ -14265,7 +14326,7 @@
14265
14326
  }
14266
14327
  }
14267
14328
  /**
14268
- * Returns boolean indicating whether or not the request should attempt to use native broker
14329
+ * Returns boolean indicating whether or not the request should attempt to use platform broker
14269
14330
  * @param logger
14270
14331
  * @param config
14271
14332
  * @param correlationId
@@ -14547,6 +14608,10 @@
14547
14608
  return;
14548
14609
  }
14549
14610
  }
14611
+ // Redirect bridge requires "state" param to work properly
14612
+ validRequest.state = setRequestState(this.browserCrypto, validRequest.state || "", {
14613
+ interactionType: exports.InteractionType.Popup,
14614
+ });
14550
14615
  // Create logout string and navigate user window to logout.
14551
14616
  const logoutUri = authClient.getLogoutUri(validRequest);
14552
14617
  this.eventHandler.emitEvent(EventType.LOGOUT_SUCCESS, validRequest.correlationId, exports.InteractionType.Popup, validRequest);
@@ -15087,6 +15152,10 @@
15087
15152
  }
15088
15153
  }
15089
15154
  }
15155
+ // Redirect bridge requires "state" param to work properly
15156
+ validLogoutRequest.state = setRequestState(this.browserCrypto, validLogoutRequest.state || "", {
15157
+ interactionType: exports.InteractionType.Redirect,
15158
+ });
15090
15159
  // Create logout string and navigate user window to logout.
15091
15160
  const logoutUri = authClient.getLogoutUri(validLogoutRequest);
15092
15161
  if (validLogoutRequest.account?.homeAccountId) {
@@ -15335,6 +15404,38 @@
15335
15404
  return invokeAsync(handleResponseEAR, HandleResponseEar, this.logger, this.performanceClient, correlationId)(silentRequest, serverParams, this.apiId, this.config, discoveredAuthority, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15336
15405
  }
15337
15406
  }
15407
+ /**
15408
+ * Verifies SSO capability by making an iframe request to /authorize without exchanging the code for tokens.
15409
+ * This is useful for verifying SSO capability in the background without the overhead of a full token exchange.
15410
+ * @param request - The SSO silent request
15411
+ * @returns true if SSO verification was successful with a valid authorization code, false otherwise
15412
+ */
15413
+ async verifySso(request) {
15414
+ const inputRequest = { ...request };
15415
+ if (!inputRequest.prompt) {
15416
+ inputRequest.prompt = PromptValue$1.NONE;
15417
+ }
15418
+ // Create silent request
15419
+ const silentRequest = await invokeAsync(initializeAuthorizationRequest, StandardInteractionClientInitializeAuthorizationRequest, this.logger, this.performanceClient, this.correlationId)(inputRequest, exports.InteractionType.Silent, this.config, this.browserCrypto, this.browserStorage, this.logger, this.performanceClient, this.correlationId);
15420
+ const authClient = await invokeAsync(this.createAuthCodeClient.bind(this), StandardInteractionClientCreateAuthCodeClient, this.logger, this.performanceClient, this.correlationId)({
15421
+ serverTelemetryManager: initializeServerTelemetryManager(this.apiId, this.config.auth.clientId, this.correlationId, this.browserStorage, this.logger),
15422
+ requestAuthority: silentRequest.authority,
15423
+ requestAzureCloudOptions: silentRequest.azureCloudOptions,
15424
+ requestExtraQueryParameters: silentRequest.extraQueryParameters,
15425
+ account: silentRequest.account,
15426
+ });
15427
+ const { serverParams } = await this.silentAuthorizeHelper(authClient, silentRequest);
15428
+ const correlationId = silentRequest.correlationId;
15429
+ // Validate the response - this checks for errors and validates state
15430
+ validateAuthorizationResponse(serverParams, silentRequest.state);
15431
+ // Verify a valid authorization code is present
15432
+ if (!serverParams.code) {
15433
+ this.logger.warning("0y34ti", correlationId);
15434
+ return false;
15435
+ }
15436
+ this.logger.verbose("0kkkcj", correlationId);
15437
+ return true;
15438
+ }
15338
15439
  /**
15339
15440
  * Currently Unsupported
15340
15441
  */
@@ -15349,6 +15450,16 @@
15349
15450
  * @param userRequestScopes
15350
15451
  */
15351
15452
  async silentTokenHelper(authClient, request) {
15453
+ const { serverParams, pkceCodes } = await this.silentAuthorizeHelper(authClient, request);
15454
+ return invokeAsync(handleResponseCode, HandleResponseCode, this.logger, this.performanceClient, request.correlationId)(request, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15455
+ }
15456
+ /**
15457
+ * Shared helper that generates PKCE codes, builds the /authorize URL,
15458
+ * loads it in a hidden iframe, waits for the redirect-bridge response,
15459
+ * and returns the deserialized server parameters along with the PKCE codes
15460
+ * and the request that was sent.
15461
+ */
15462
+ async silentAuthorizeHelper(authClient, request) {
15352
15463
  const correlationId = request.correlationId;
15353
15464
  const pkceCodes = await invokeAsync(generatePkceCodes, GeneratePkceCodes, this.logger, this.performanceClient, correlationId)(this.performanceClient, this.logger, correlationId);
15354
15465
  const silentRequest = {
@@ -15375,7 +15486,7 @@
15375
15486
  invoke(removeHiddenIframe, RemoveHiddenIframe, this.logger, this.performanceClient, correlationId)(iframe);
15376
15487
  }
15377
15488
  const serverParams = invoke(deserializeResponse, DeserializeResponse, this.logger, this.performanceClient, correlationId)(responseString, responseType, this.logger, this.correlationId);
15378
- return invokeAsync(handleResponseCode, HandleResponseCode, this.logger, this.performanceClient, correlationId)(request, serverParams, pkceCodes.verifier, this.apiId, this.config, authClient, this.browserStorage, this.nativeStorage, this.eventHandler, this.logger, this.performanceClient, this.platformAuthProvider);
15489
+ return { serverParams, pkceCodes, silentRequest };
15379
15490
  }
15380
15491
  }
15381
15492
 
@@ -15754,22 +15865,25 @@
15754
15865
  }
15755
15866
  const loggedInAccounts = this.getAllAccounts();
15756
15867
  const platformBrokerRequest = this.browserStorage.getCachedNativeRequest();
15757
- const useNative = platformBrokerRequest &&
15758
- this.platformAuthProvider &&
15759
- !options?.hash;
15868
+ const useNative = platformBrokerRequest && !options?.hash;
15760
15869
  let rootMeasurement;
15761
15870
  let redirectResponse;
15871
+ let cachedRedirectRequest;
15762
15872
  try {
15763
15873
  if (useNative && this.platformAuthProvider) {
15764
15874
  const correlationId = platformBrokerRequest?.correlationId || "";
15765
15875
  this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, exports.InteractionType.Redirect);
15766
15876
  rootMeasurement = this.performanceClient.startMeasurement(AcquireTokenRedirect, correlationId);
15767
15877
  this.logger.trace("12v7is", correlationId);
15878
+ rootMeasurement.add({
15879
+ isPlatformBrokerRequest: true,
15880
+ });
15768
15881
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.handleRedirectPromise, this.performanceClient, this.platformAuthProvider, platformBrokerRequest.accountId, this.nativeInternalStorage, platformBrokerRequest.correlationId);
15769
- redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)(this.performanceClient, rootMeasurement.event.correlationId);
15882
+ redirectResponse = invokeAsync(nativeClient.handleRedirectPromise.bind(nativeClient), HandleNativeRedirectPromiseMeasurement, this.logger, this.performanceClient, rootMeasurement.event.correlationId)();
15770
15883
  }
15771
15884
  else {
15772
15885
  const [standardRequest, codeVerifier] = this.browserStorage.getCachedRequest("");
15886
+ cachedRedirectRequest = standardRequest;
15773
15887
  const correlationId = standardRequest.correlationId;
15774
15888
  this.eventHandler.emitEvent(EventType.HANDLE_REDIRECT_START, correlationId, exports.InteractionType.Redirect);
15775
15889
  // Reset rootMeasurement now that we have correlationId
@@ -15798,6 +15912,8 @@
15798
15912
  rootMeasurement.end({
15799
15913
  success: true,
15800
15914
  }, undefined, result.account);
15915
+ // Fire-and-forget SSO capability verification in background
15916
+ this.verifySsoCapability(cachedRedirectRequest, exports.InteractionType.Redirect);
15801
15917
  }
15802
15918
  else {
15803
15919
  /*
@@ -15863,12 +15979,14 @@
15863
15979
  if (this.platformAuthProvider &&
15864
15980
  this.canUsePlatformBroker(request)) {
15865
15981
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, ApiId.acquireTokenRedirect, this.performanceClient, this.platformAuthProvider, this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
15866
- result = nativeClient
15867
- .acquireTokenRedirect(request, atrMeasurement)
15868
- .catch((e) => {
15982
+ result = invokeAsync(nativeClient.acquireTokenRedirect.bind(nativeClient), NativeInteractionClientAcquireTokenRedirect, this.logger, this.performanceClient, correlationId)(request, atrMeasurement).catch((e) => {
15983
+ atrMeasurement.add({
15984
+ brokerErrorName: e.name,
15985
+ brokerErrorCode: e.errorCode,
15986
+ });
15869
15987
  if (e instanceof NativeAuthError &&
15870
15988
  isFatalNativeAuthError(e)) {
15871
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
15989
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
15872
15990
  const redirectClient = this.createRedirectClient(correlationId);
15873
15991
  return redirectClient.acquireToken(request);
15874
15992
  }
@@ -15934,6 +16052,9 @@
15934
16052
  let result;
15935
16053
  const pkce = this.getPreGeneratedPkceCodes(correlationId);
15936
16054
  if (this.canUsePlatformBroker(request)) {
16055
+ atPopupMeasurement.add({
16056
+ isPlatformBrokerRequest: true,
16057
+ });
15937
16058
  result = this.acquireTokenNative({
15938
16059
  ...request,
15939
16060
  correlationId,
@@ -15946,9 +16067,13 @@
15946
16067
  return response;
15947
16068
  })
15948
16069
  .catch((e) => {
16070
+ atPopupMeasurement.add({
16071
+ brokerErrorName: e.name,
16072
+ brokerErrorCode: e.errorCode,
16073
+ });
15949
16074
  if (e instanceof NativeAuthError &&
15950
16075
  isFatalNativeAuthError(e)) {
15951
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
16076
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
15952
16077
  const popupClient = this.createPopupClient(correlationId);
15953
16078
  return popupClient.acquireToken(request, pkce);
15954
16079
  }
@@ -15979,6 +16104,8 @@
15979
16104
  accessTokenSize: result.accessToken.length,
15980
16105
  idTokenSize: result.idToken.length,
15981
16106
  }, undefined, result.account);
16107
+ // SSO capability verification in background
16108
+ this.verifySsoCapability(request, exports.InteractionType.Popup);
15982
16109
  return result;
15983
16110
  })
15984
16111
  .catch((e) => {
@@ -16031,6 +16158,103 @@
16031
16158
  window.removeEventListener("online", listener);
16032
16159
  window.removeEventListener("offline", listener);
16033
16160
  }
16161
+ /**
16162
+ * Reads the cached ssoCapable value from localStorage.
16163
+ * @returns The cached ssoCapable boolean value, or undefined if not cached or expired.
16164
+ */
16165
+ getCachedSsoCapable() {
16166
+ try {
16167
+ const cachedValue = window.localStorage.getItem(SSO_CAPABLE);
16168
+ if (cachedValue) {
16169
+ const parsed = JSON.parse(cachedValue);
16170
+ if (parsed &&
16171
+ typeof parsed.ssoCapable === "boolean" &&
16172
+ parsed.expiresOn &&
16173
+ Date.now() < parsed.expiresOn) {
16174
+ return parsed.ssoCapable;
16175
+ }
16176
+ }
16177
+ }
16178
+ catch {
16179
+ // If parsing fails, return undefined
16180
+ }
16181
+ return undefined;
16182
+ }
16183
+ /**
16184
+ * SSO capability verification in the background.
16185
+ * This method makes an iframe request to /authorize to verify SSO capability without calling /token.
16186
+ * This method does not block the caller and tracks telemetry for success/failure.
16187
+ * This method only executes if verifySSO is set to true in the auth configuration.
16188
+ * The result is cached in localStorage with a 24-hour TTL; the SSO verification call
16189
+ * is only attempted when the cached value is absent or expired.
16190
+ * @param request - The original request used for the authentication flow
16191
+ * @param interactionType - The interactionType of the AT operation for logging purposes
16192
+ */
16193
+ verifySsoCapability(request, interactionType) {
16194
+ // Check if SSO capability verification is enabled
16195
+ if (!this.config.auth.verifySSO) {
16196
+ return;
16197
+ }
16198
+ // Check TTL: derive ssoCapable state from localStorage and skip if not expired
16199
+ const ssoCacheKey = SSO_CAPABLE;
16200
+ const SSO_CAPABLE_TTL_MS = 24 * 60 * 60 * 1000; // 24 hours
16201
+ const cachedSsoCapable = this.getCachedSsoCapable();
16202
+ if (cachedSsoCapable !== undefined) {
16203
+ this.logger.verbose("13poou", "");
16204
+ return;
16205
+ }
16206
+ const correlationId = createNewGuid();
16207
+ const ssoCapableMeasurement = this.performanceClient.startMeasurement(SsoCapable, correlationId);
16208
+ ssoCapableMeasurement.add({
16209
+ "ext.interactionType": interactionType,
16210
+ });
16211
+ this.logger.verbose("0pbr0i", correlationId);
16212
+ /*
16213
+ * Use setTimeout to ensure this runs in a separate macrotask after the current call stack completes
16214
+ * This ensures the result is returned to the caller before the SSO verification starts and doesn't affect performance
16215
+ */
16216
+ setTimeout(() => {
16217
+ const ssoVerificationRequest = {
16218
+ ...request,
16219
+ correlationId: correlationId,
16220
+ };
16221
+ const silentIframeClient = this.createSilentIframeClient(correlationId);
16222
+ silentIframeClient
16223
+ .verifySso(ssoVerificationRequest)
16224
+ .then((result) => {
16225
+ this.logger.verbose("1gd1iv", correlationId);
16226
+ // TBD to add profileTelemetry later in localStorage with 24h TTL
16227
+ try {
16228
+ const cacheEntry = JSON.stringify({
16229
+ ssoCapable: result,
16230
+ expiresOn: Date.now() + SSO_CAPABLE_TTL_MS,
16231
+ });
16232
+ window.localStorage.setItem(ssoCacheKey, cacheEntry);
16233
+ }
16234
+ catch {
16235
+ this.logger.warning("18lmoj", correlationId);
16236
+ }
16237
+ ssoCapableMeasurement.end({
16238
+ fromCache: false,
16239
+ success: result,
16240
+ }, undefined);
16241
+ })
16242
+ .catch((error) => {
16243
+ this.logger.warning("05g83w", correlationId);
16244
+ // reset the cache
16245
+ try {
16246
+ window.localStorage.removeItem(ssoCacheKey);
16247
+ }
16248
+ catch {
16249
+ this.logger.warning("0nlf9q", correlationId);
16250
+ }
16251
+ ssoCapableMeasurement.end({
16252
+ fromCache: false,
16253
+ success: false,
16254
+ }, error);
16255
+ });
16256
+ }, 0);
16257
+ }
16034
16258
  // #endregion
16035
16259
  // #region Silent Flow
16036
16260
  /**
@@ -16052,13 +16276,12 @@
16052
16276
  const correlationId = this.getRequestCorrelationId(request);
16053
16277
  const validRequest = {
16054
16278
  ...request,
16055
- // will be PromptValue.NONE or PromptValue.NO_SESSION
16056
- prompt: request.prompt,
16057
16279
  correlationId: correlationId,
16058
16280
  };
16059
16281
  this.ssoSilentMeasurement = this.performanceClient.startMeasurement(SsoSilent, correlationId);
16060
16282
  this.ssoSilentMeasurement?.add({
16061
16283
  scenarioId: request.scenarioId,
16284
+ ssoCapable: this.getCachedSsoCapable(),
16062
16285
  });
16063
16286
  preflightCheck(this.initialized, this.ssoSilentMeasurement, this.config, validRequest);
16064
16287
  this.ssoSilentMeasurement?.increment({
@@ -16071,10 +16294,17 @@
16071
16294
  this.eventHandler.emitEvent(EventType.ACQUIRE_TOKEN_START, correlationId, exports.InteractionType.Silent, validRequest);
16072
16295
  let result;
16073
16296
  if (this.canUsePlatformBroker(validRequest)) {
16297
+ this.ssoSilentMeasurement?.add({
16298
+ isPlatformBrokerRequest: true,
16299
+ });
16074
16300
  result = this.acquireTokenNative(validRequest, ApiId.ssoSilent).catch((e) => {
16301
+ this.ssoSilentMeasurement?.add({
16302
+ brokerErrorName: e.name,
16303
+ brokerErrorCode: e.errorCode,
16304
+ });
16075
16305
  // If native token acquisition fails for availability reasons fallback to standard flow
16076
16306
  if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
16077
- this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt
16307
+ this.platformAuthProvider = undefined; // If extension gets uninstalled during session prevent future requests from continuing to attempt platform broker calls
16078
16308
  const silentIframeClient = this.createSilentIframeClient(validRequest.correlationId);
16079
16309
  return silentIframeClient.acquireToken(validRequest);
16080
16310
  }
@@ -16147,7 +16377,6 @@
16147
16377
  this.hybridAuthCodeResponses.delete(hybridAuthCode);
16148
16378
  atbcMeasurement.end({
16149
16379
  success: true,
16150
- isNativeBroker: result.fromPlatformBroker,
16151
16380
  accessTokenSize: result.accessToken.length,
16152
16381
  idTokenSize: result.idToken.length,
16153
16382
  }, undefined, result.account);
@@ -16171,10 +16400,17 @@
16171
16400
  }
16172
16401
  else if (request.nativeAccountId) {
16173
16402
  if (this.canUsePlatformBroker(request, request.nativeAccountId)) {
16403
+ atbcMeasurement.add({
16404
+ isPlatformBrokerRequest: true,
16405
+ });
16174
16406
  const result = await this.acquireTokenNative({
16175
16407
  ...request,
16176
16408
  correlationId,
16177
16409
  }, ApiId.acquireTokenByCode, request.nativeAccountId).catch((e) => {
16410
+ atbcMeasurement.add({
16411
+ brokerErrorName: e.name,
16412
+ brokerErrorCode: e.errorCode,
16413
+ });
16178
16414
  // If native token acquisition fails for availability reasons fallback to standard flow
16179
16415
  if (e instanceof NativeAuthError &&
16180
16416
  isFatalNativeAuthError(e)) {
@@ -16225,7 +16461,6 @@
16225
16461
  this.acquireTokenByCodeAsyncMeasurement?.end({
16226
16462
  success: true,
16227
16463
  fromCache: response.fromCache,
16228
- isNativeBroker: response.fromPlatformBroker,
16229
16464
  });
16230
16465
  return response;
16231
16466
  })
@@ -16374,9 +16609,25 @@
16374
16609
  const accountEntity = createAccountEntityFromAccountInfo(result.account, result.cloudGraphHostName, result.msGraphHost);
16375
16610
  await this.browserStorage.setAccount(accountEntity, result.correlationId, isKmsi(result.idTokenClaims), ApiId.hydrateCache);
16376
16611
  if (result.fromPlatformBroker) {
16377
- this.logger.verbose("1fxyu8", result.correlationId);
16378
- // Tokens from native broker are stored in-memory
16379
- return this.nativeInternalStorage.hydrateCache(result, request);
16612
+ this.logger.verbose("1i5atf", result.correlationId);
16613
+ // Create idToken entity and store in browser storage
16614
+ const idTokenEntity = createIdTokenEntity(result.account.homeAccountId, result.account.environment, result.idToken, this.config.auth.clientId, result.tenantId);
16615
+ // Create accessToken entity and store in native internal storage
16616
+ const accessTokenEntity = createAccessTokenEntity(result.account.homeAccountId, result.account.environment, result.accessToken, this.config.auth.clientId, result.tenantId, result.scopes.join(" "), result.expiresOn
16617
+ ? toSecondsFromDate(result.expiresOn)
16618
+ : 0, result.extExpiresOn
16619
+ ? toSecondsFromDate(result.extExpiresOn)
16620
+ : 0, base64Decode, undefined, // refreshOn
16621
+ result.tokenType, undefined, // userAssertionHash
16622
+ request.sshKid);
16623
+ if (request.resource) {
16624
+ accessTokenEntity.resource = request.resource;
16625
+ }
16626
+ const kmsi = isKmsi(result.idTokenClaims);
16627
+ // Store idToken in browser storage
16628
+ await this.browserStorage.setIdTokenCredential(idTokenEntity, result.correlationId, kmsi);
16629
+ // Store accessToken in native internal storage
16630
+ await this.nativeInternalStorage.setAccessTokenCredential(accessTokenEntity, result.correlationId, kmsi);
16380
16631
  }
16381
16632
  else {
16382
16633
  return this.browserStorage.hydrateCache(result, request);
@@ -16394,7 +16645,7 @@
16394
16645
  throw createBrowserAuthError(nativeConnectionNotEstablished);
16395
16646
  }
16396
16647
  const nativeClient = new PlatformAuthInteractionClient(this.config, this.browserStorage, this.browserCrypto, this.logger, this.eventHandler, this.navigationClient, apiId, this.performanceClient, this.platformAuthProvider, accountId || this.getNativeAccountId(request), this.nativeInternalStorage, correlationId);
16397
- return nativeClient.acquireToken(request, cacheLookupPolicy);
16648
+ return invokeAsync(nativeClient.acquireToken.bind(nativeClient), NativeInteractionClientAcquireToken, this.logger, this.performanceClient, correlationId)(request, cacheLookupPolicy);
16398
16649
  }
16399
16650
  /**
16400
16651
  * Returns boolean indicating if this request can use the platform broker
@@ -16408,7 +16659,7 @@
16408
16659
  return false;
16409
16660
  }
16410
16661
  if (!isPlatformAuthAllowed(this.config, this.logger, correlationId, this.platformAuthProvider, request.authenticationScheme)) {
16411
- this.logger.trace("1m4bzf", correlationId);
16662
+ this.logger.trace("0yoy1g", correlationId);
16412
16663
  return false;
16413
16664
  }
16414
16665
  if (request.prompt) {
@@ -16440,7 +16691,9 @@
16440
16691
  loginHint: request.loginHint,
16441
16692
  sid: request.sid,
16442
16693
  }) ||
16443
- this.getActiveAccount();
16694
+ (!request.loginHint && !request.sid
16695
+ ? this.getActiveAccount()
16696
+ : null);
16444
16697
  return (account && account.nativeAccountId) || "";
16445
16698
  }
16446
16699
  /**
@@ -16627,6 +16880,7 @@
16627
16880
  atsMeasurement.add({
16628
16881
  cacheLookupPolicy: request.cacheLookupPolicy,
16629
16882
  scenarioId: request.scenarioId,
16883
+ ssoCapable: this.getCachedSsoCapable(),
16630
16884
  });
16631
16885
  preflightCheck(this.initialized, atsMeasurement, this.config, request);
16632
16886
  this.logger.verbose("0x1c4s", correlationId);
@@ -16639,7 +16893,6 @@
16639
16893
  atsMeasurement.end({
16640
16894
  success: true,
16641
16895
  fromCache: result.fromCache,
16642
- isNativeBroker: result.fromPlatformBroker,
16643
16896
  accessTokenSize: result.accessToken.length,
16644
16897
  idTokenSize: result.idToken.length,
16645
16898
  }, undefined, result.account);
@@ -16799,7 +17052,12 @@
16799
17052
  if (isPlatformAuthAllowed(this.config, this.logger, silentRequest.correlationId, this.platformAuthProvider, silentRequest.authenticationScheme) &&
16800
17053
  silentRequest.account.nativeAccountId) {
16801
17054
  this.logger.verbose("0sczo4", silentRequest.correlationId);
17055
+ this.performanceClient.addFields({ isPlatformBrokerRequest: true }, silentRequest.correlationId);
16802
17056
  return this.acquireTokenNative(silentRequest, ApiId.acquireTokenSilent_silentFlow, silentRequest.account.nativeAccountId, cacheLookupPolicy).catch(async (e) => {
17057
+ this.performanceClient.addFields({
17058
+ brokerErrorName: e.name,
17059
+ brokerErrorCode: e.errorCode,
17060
+ }, silentRequest.correlationId);
16803
17061
  // If native token acquisition fails for availability reasons fallback to web flow
16804
17062
  if (e instanceof NativeAuthError && isFatalNativeAuthError(e)) {
16805
17063
  this.logger.verbose("07rkmb", silentRequest.correlationId);