@azure/msal-common 15.15.0 → 15.16.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +5 -5
- package/dist/account/AccountInfo.mjs +1 -1
- package/dist/account/AuthToken.mjs +1 -1
- package/dist/account/CcsCredential.mjs +1 -1
- package/dist/account/ClientInfo.mjs +1 -1
- package/dist/account/TokenClaims.mjs +1 -1
- package/dist/authority/Authority.mjs +1 -1
- package/dist/authority/AuthorityFactory.mjs +1 -1
- package/dist/authority/AuthorityMetadata.mjs +1 -1
- package/dist/authority/AuthorityOptions.mjs +1 -1
- package/dist/authority/AuthorityType.mjs +1 -1
- package/dist/authority/CloudInstanceDiscoveryErrorResponse.mjs +1 -1
- package/dist/authority/CloudInstanceDiscoveryResponse.mjs +1 -1
- package/dist/authority/OpenIdConfigResponse.mjs +1 -1
- package/dist/authority/ProtocolMode.mjs +1 -1
- package/dist/authority/RegionDiscovery.mjs +1 -1
- package/dist/cache/CacheManager.mjs +1 -1
- package/dist/cache/entities/AccountEntity.mjs +1 -1
- package/dist/cache/persistence/TokenCacheContext.mjs +1 -1
- package/dist/cache/utils/CacheHelpers.mjs +1 -1
- package/dist/client/AuthorizationCodeClient.d.ts.map +1 -1
- package/dist/client/AuthorizationCodeClient.mjs +12 -8
- package/dist/client/AuthorizationCodeClient.mjs.map +1 -1
- package/dist/client/BaseClient.mjs +1 -1
- package/dist/client/RefreshTokenClient.d.ts.map +1 -1
- package/dist/client/RefreshTokenClient.mjs +12 -8
- package/dist/client/RefreshTokenClient.mjs.map +1 -1
- package/dist/client/SilentFlowClient.mjs +1 -1
- package/dist/config/ClientConfiguration.mjs +1 -1
- package/dist/constants/AADServerParamKeys.mjs +1 -1
- package/dist/crypto/ICrypto.mjs +1 -1
- package/dist/crypto/JoseHeader.mjs +1 -1
- package/dist/crypto/PopTokenGenerator.mjs +1 -1
- package/dist/error/AuthError.mjs +1 -1
- package/dist/error/AuthErrorCodes.mjs +1 -1
- package/dist/error/CacheError.mjs +1 -1
- package/dist/error/CacheErrorCodes.mjs +1 -1
- package/dist/error/ClientAuthError.mjs +1 -1
- package/dist/error/ClientAuthErrorCodes.mjs +1 -1
- package/dist/error/ClientConfigurationError.mjs +1 -1
- package/dist/error/ClientConfigurationErrorCodes.mjs +1 -1
- package/dist/error/InteractionRequiredAuthError.d.ts +1 -1
- package/dist/error/InteractionRequiredAuthError.mjs +1 -1
- package/dist/error/InteractionRequiredAuthErrorCodes.mjs +1 -1
- package/dist/error/JoseHeaderError.mjs +1 -1
- package/dist/error/JoseHeaderErrorCodes.mjs +1 -1
- package/dist/error/NetworkError.mjs +1 -1
- package/dist/error/PlatformBrokerError.mjs +1 -1
- package/dist/error/ServerError.mjs +1 -1
- package/dist/index-browser.mjs +1 -1
- package/dist/index-node.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/logger/Logger.mjs +1 -1
- package/dist/network/INetworkModule.mjs +1 -1
- package/dist/network/RequestThumbprint.mjs +1 -1
- package/dist/network/ThrottlingUtils.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.d.ts.map +1 -1
- package/dist/protocol/Authorize.mjs +11 -8
- package/dist/protocol/Authorize.mjs.map +1 -1
- package/dist/request/AuthenticationHeaderParser.mjs +1 -1
- package/dist/request/BaseAuthRequest.d.ts +2 -0
- package/dist/request/BaseAuthRequest.d.ts.map +1 -1
- package/dist/request/RequestParameterBuilder.mjs +1 -1
- package/dist/request/ScopeSet.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/performance/PerformanceClient.mjs +1 -1
- package/dist/telemetry/performance/PerformanceEvent.d.ts +20 -0
- package/dist/telemetry/performance/PerformanceEvent.d.ts.map +1 -1
- package/dist/telemetry/performance/PerformanceEvent.mjs +6 -1
- package/dist/telemetry/performance/PerformanceEvent.mjs.map +1 -1
- package/dist/telemetry/performance/StubPerformanceClient.mjs +1 -1
- package/dist/telemetry/server/ServerTelemetryManager.mjs +1 -1
- package/dist/url/UrlString.mjs +1 -1
- package/dist/utils/ClientAssertionUtils.mjs +1 -1
- package/dist/utils/Constants.mjs +1 -1
- package/dist/utils/FunctionWrappers.mjs +1 -1
- package/dist/utils/ProtocolUtils.mjs +1 -1
- package/dist/utils/StringUtils.d.ts +25 -0
- package/dist/utils/StringUtils.d.ts.map +1 -1
- package/dist/utils/StringUtils.mjs +40 -1
- package/dist/utils/StringUtils.mjs.map +1 -1
- package/dist/utils/TimeUtils.mjs +1 -1
- package/dist/utils/UrlUtils.mjs +1 -1
- package/lib/index-browser.cjs +2 -2
- package/lib/{index-node-BtzY9XyU.js → index-node-DcRBQUZQ.js} +73 -18
- package/lib/index-node-DcRBQUZQ.js.map +1 -0
- package/lib/index-node.cjs +2 -2
- package/lib/index.cjs +2 -2
- package/lib/types/client/AuthorizationCodeClient.d.ts.map +1 -1
- package/lib/types/client/RefreshTokenClient.d.ts.map +1 -1
- package/lib/types/error/InteractionRequiredAuthError.d.ts +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/lib/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/types/request/BaseAuthRequest.d.ts +2 -0
- package/lib/types/request/BaseAuthRequest.d.ts.map +1 -1
- package/lib/types/telemetry/performance/PerformanceEvent.d.ts +20 -0
- package/lib/types/telemetry/performance/PerformanceEvent.d.ts.map +1 -1
- package/lib/types/utils/StringUtils.d.ts +25 -0
- package/lib/types/utils/StringUtils.d.ts.map +1 -1
- package/package.json +1 -1
- package/src/client/AuthorizationCodeClient.ts +19 -12
- package/src/client/RefreshTokenClient.ts +19 -12
- package/src/error/InteractionRequiredAuthError.ts +1 -1
- package/src/packageMetadata.ts +1 -1
- package/src/protocol/Authorize.ts +15 -12
- package/src/request/BaseAuthRequest.ts +2 -0
- package/src/telemetry/performance/PerformanceEvent.ts +27 -0
- package/src/utils/StringUtils.ts +48 -0
- package/lib/index-node-BtzY9XyU.js.map +0 -1
|
@@ -27,6 +27,7 @@ import { ShrOptions } from "../crypto/SignedHttpRequest.js";
|
|
|
27
27
|
* - embeddedClientId - Embedded client id. When specified, broker client id (brk_client_id) and redirect uri (brk_redirect_uri) params are set with values from the config, overriding the corresponding extra parameters, if present.
|
|
28
28
|
* - httpMethod - HTTP method to use for the /authorize request. Defaults to GET, but can be set to POST if the request requires body parameters
|
|
29
29
|
* - authorizePostBodyParameters - String to string map of custom parameters added to the body of the /authorize call when httpMethod is set to POST
|
|
30
|
+
* - skipBrokerClaims - When true and a brokered flow is used (for example, when broker params or an embeddedClientId are present), clientCapabilities from configuration will be excluded from claims; ignored for non-brokered flows.
|
|
30
31
|
*/
|
|
31
32
|
export type BaseAuthRequest = {
|
|
32
33
|
authority: string;
|
|
@@ -52,5 +53,6 @@ export type BaseAuthRequest = {
|
|
|
52
53
|
embeddedClientId?: string;
|
|
53
54
|
httpMethod?: HttpMethod;
|
|
54
55
|
authorizePostBodyParameters?: StringDict;
|
|
56
|
+
skipBrokerClaims?: boolean;
|
|
55
57
|
};
|
|
56
58
|
//# sourceMappingURL=BaseAuthRequest.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"BaseAuthRequest.d.ts","sourceRoot":"","sources":["../../../src/request/BaseAuthRequest.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,oBAAoB,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AACzE,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AAC1E,OAAO,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,gCAAgC,CAAC;AAE5D
|
|
1
|
+
{"version":3,"file":"BaseAuthRequest.d.ts","sourceRoot":"","sources":["../../../src/request/BaseAuthRequest.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,oBAAoB,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AACzE,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AAC1E,OAAO,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,gCAAgC,CAAC;AAE5D;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,MAAM,MAAM,eAAe,GAAG;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;IACtB,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;IACtB,oBAAoB,CAAC,EAAE,oBAAoB,CAAC;IAC5C,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;IACtC,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,mBAAmB,CAAC,EAAE,UAAU,CAAC;IACjC,oBAAoB,CAAC,EAAE,UAAU,CAAC;IAClC,YAAY,CAAC,EAAE,YAAY,CAAC;IAC5B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,2BAA2B,CAAC,EAAE,UAAU,CAAC;IACzC,gBAAgB,CAAC,EAAE,OAAO,CAAC;CAC9B,CAAC"}
|
|
@@ -350,6 +350,11 @@ export type PerformanceEvent = {
|
|
|
350
350
|
* @type {?(string | null)}
|
|
351
351
|
*/
|
|
352
352
|
startPageVisibility?: string | null;
|
|
353
|
+
/**
|
|
354
|
+
* Online status when the event started.
|
|
355
|
+
* Read from: https://developer.mozilla.org/docs/Web/API/NavigatorOnLine/onLine
|
|
356
|
+
*/
|
|
357
|
+
startOnlineStatus?: boolean | null;
|
|
353
358
|
/**
|
|
354
359
|
* Unix millisecond timestamp when the event was initiated.
|
|
355
360
|
*
|
|
@@ -442,11 +447,26 @@ export type PerformanceEvent = {
|
|
|
442
447
|
*/
|
|
443
448
|
incompleteSubMeasurements?: Map<string, SubMeasurement>;
|
|
444
449
|
visibilityChangeCount?: number;
|
|
450
|
+
onlineStatusChangeCount?: number;
|
|
445
451
|
incompleteSubsCount?: number;
|
|
452
|
+
/**
|
|
453
|
+
* Network connection info from the Network Information API (Chromium only).
|
|
454
|
+
* Read from: https://developer.mozilla.org/docs/Web/API/NetworkInformation
|
|
455
|
+
*/
|
|
456
|
+
networkEffectiveType?: string;
|
|
457
|
+
networkRtt?: number;
|
|
446
458
|
/**
|
|
447
459
|
* CorrelationId of the in progress iframe request that was awaited
|
|
448
460
|
*/
|
|
449
461
|
awaitIframeCorrelationId?: string;
|
|
462
|
+
/**
|
|
463
|
+
* Monitor_window_timeout debugging telemetry
|
|
464
|
+
*/
|
|
465
|
+
iframePollIntervalMs?: number;
|
|
466
|
+
iframeTimeoutMs?: number;
|
|
467
|
+
iframeTickCount?: number;
|
|
468
|
+
crossOriginTickCount?: number;
|
|
469
|
+
isRedirectUriCrossOrigin?: boolean;
|
|
450
470
|
/**
|
|
451
471
|
* Amount of times queued in the JS event queue.
|
|
452
472
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PerformanceEvent.d.ts","sourceRoot":"","sources":["../../../../src/telemetry/performance/PerformanceEvent.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAC;AAE5D;;;;;GAKG;AACH,eAAO,MAAM,iBAAiB;IAC1B;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;;OAIG;;IAGH;;;;OAIG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;;IAIH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAIH;;;OAGG;;IAGH;;;OAGG;;IAEH;;OAEG;;IAEH;;OAEG;;;;IAMH;;OAEG;;IAEH;;OAEG;;IAEH;;OAEG;;IAGH;;OAEG;;IAIH;;OAEG;;IAGH;;OAEG;;IAIH;;OAEG;;IAIH;;OAEG;;IAIH;;;OAGG;;;;IAMH;;;OAGG;;IAGH;;OAEG;;IAGH;;OAEG;;;;IAOH;;OAEG;;IAGH;;OAEG;;;;;IAMH;;OAEG;;;;IAQH;;OAEG;;;IAIH;;OAEG;;;;;;;IAQH;;OAEG;;;;IAKH;;OAEG;;;IAIH;;OAEG;;;IAIH;;OAEG;;;;;;;;;IAgBH;;OAEG;;;;;;;;;;;;;;IAyBH;;OAEG;;;;;;IAOH;;OAEG;;;;;;;;;;;;;;;;;;;IAqBH;;;OAGG;;CAEG,CAAC;AACX,MAAM,MAAM,iBAAiB,GACzB,CAAC,OAAO,iBAAiB,CAAC,CAAC,MAAM,OAAO,iBAAiB,CAAC,CAAC;AAE/D,eAAO,MAAM,6BAA6B,EAAE,WAAW,CAAC,MAAM,EAAE,MAAM,CAwOhE,CAAC;AAEP;;;;;GAKG;AACH,eAAO,MAAM,sBAAsB;;;;CAIzB,CAAC;AACX,MAAM,MAAM,sBAAsB,GAC9B,CAAC,OAAO,sBAAsB,CAAC,CAAC,MAAM,OAAO,sBAAsB,CAAC,CAAC;AAEzE,MAAM,MAAM,cAAc,GAAG;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;GAKG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC3B;;;;OAIG;IACH,OAAO,EAAE,MAAM,CAAC;IAEhB;;;;OAIG;IACH,MAAM,EAAE,sBAAsB,CAAC;IAE/B;;;;OAIG;IACH,SAAS,EAAE,MAAM,CAAC;IAElB;;;;OAIG;IACH,QAAQ,EAAE,MAAM,CAAC;IAEjB;;;;OAIG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;;;;OAKG;IACH,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAElC;;;;OAIG;IACH,SAAS,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAE3B;;;;OAIG;IACH,IAAI,EAAE,MAAM,CAAC;IAEb;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAEpC;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;;OAIG;IACH,OAAO,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAEzB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;;OAIG;IACH,cAAc,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAEhC;;;;OAIG;IACH,cAAc,CAAC,EAAE,OAAO,CAAC;IAEzB;;OAEG;IACH,0BAA0B,CAAC,EAAE,OAAO,CAAC;IACrC,uBAAuB,CAAC,EAAE,OAAO,CAAC;IAClC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,iBAAiB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEvC;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,yBAAyB,CAAC,EAAE,GAAG,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;IAExD,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;OAEG;IACH,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB;;;;OAIG;IACH,4BAA4B,CAAC,EAAE,MAAM,CAAC;IAEtC;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;;;;OAKG;IAEH,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB;;;;;OAKG;IAEH,gBAAgB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEtC;;;;OAIG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB;;;;OAIG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAE5B;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;OAEG;IACH,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,2BAA2B,CAAC,EAAE,MAAM,CAAC;IACrC,0BAA0B,CAAC,EAAE,OAAO,CAAC;IAErC;;OAEG;IACH,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAE/B;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IAGtB,OAAO,CAAC,EAAE,MAAM,CAAC;IAGjB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,aAAa,CAAC,EAAE,OAAO,CAAC;IAGxB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IAGtB,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,WAAW,CAAC,EAAE,KAAK,GAAG,KAAK,GAAG,KAAK,CAAC;IAEpC;;;;OAIG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B,YAAY,CAAC,EAAE,OAAO,CAAC;IAEvB,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAEhC,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAG9B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B,yBAAyB,CAAC,EAAE,MAAM,CAAC;IAEnC,sBAAsB,CAAC,EAAE,OAAO,CAAC;IAEjC,YAAY,CAAC,EAAE,YAAY,CAAC;CAC/B,CAAC;AAEF,MAAM,MAAM,uBAAuB,GAAG;IAClC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,8BAA8B,GAAG,uBAAuB,GAAG;IACnE,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF,eAAO,MAAM,SAAS,EAAE,WAAW,CAAC,MAAM,
|
|
1
|
+
{"version":3,"file":"PerformanceEvent.d.ts","sourceRoot":"","sources":["../../../../src/telemetry/performance/PerformanceEvent.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAC;AAE5D;;;;;GAKG;AACH,eAAO,MAAM,iBAAiB;IAC1B;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;;OAIG;;IAGH;;;;OAIG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;;IAIH;;;OAGG;;IAGH;;;OAGG;;IAGH;;;OAGG;;IAIH;;;OAGG;;IAGH;;;OAGG;;IAEH;;OAEG;;IAEH;;OAEG;;;;IAMH;;OAEG;;IAEH;;OAEG;;IAEH;;OAEG;;IAGH;;OAEG;;IAIH;;OAEG;;IAGH;;OAEG;;IAIH;;OAEG;;IAIH;;OAEG;;IAIH;;;OAGG;;;;IAMH;;;OAGG;;IAGH;;OAEG;;IAGH;;OAEG;;;;IAOH;;OAEG;;IAGH;;OAEG;;;;;IAMH;;OAEG;;;;IAQH;;OAEG;;;IAIH;;OAEG;;;;;;;IAQH;;OAEG;;;;IAKH;;OAEG;;;IAIH;;OAEG;;;IAIH;;OAEG;;;;;;;;;IAgBH;;OAEG;;;;;;;;;;;;;;IAyBH;;OAEG;;;;;;IAOH;;OAEG;;;;;;;;;;;;;;;;;;;IAqBH;;;OAGG;;CAEG,CAAC;AACX,MAAM,MAAM,iBAAiB,GACzB,CAAC,OAAO,iBAAiB,CAAC,CAAC,MAAM,OAAO,iBAAiB,CAAC,CAAC;AAE/D,eAAO,MAAM,6BAA6B,EAAE,WAAW,CAAC,MAAM,EAAE,MAAM,CAwOhE,CAAC;AAEP;;;;;GAKG;AACH,eAAO,MAAM,sBAAsB;;;;CAIzB,CAAC;AACX,MAAM,MAAM,sBAAsB,GAC9B,CAAC,OAAO,sBAAsB,CAAC,CAAC,MAAM,OAAO,sBAAsB,CAAC,CAAC;AAEzE,MAAM,MAAM,cAAc,GAAG;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;GAKG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC3B;;;;OAIG;IACH,OAAO,EAAE,MAAM,CAAC;IAEhB;;;;OAIG;IACH,MAAM,EAAE,sBAAsB,CAAC;IAE/B;;;;OAIG;IACH,SAAS,EAAE,MAAM,CAAC;IAElB;;;;OAIG;IACH,QAAQ,EAAE,MAAM,CAAC;IAEjB;;;;OAIG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;;;;OAKG;IACH,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAElC;;;;OAIG;IACH,SAAS,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAE3B;;;;OAIG;IACH,IAAI,EAAE,MAAM,CAAC;IAEb;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAEpC;;;OAGG;IACH,iBAAiB,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAEnC;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;;OAIG;IACH,OAAO,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAEzB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;;OAIG;IACH,cAAc,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAEhC;;;;OAIG;IACH,cAAc,CAAC,EAAE,OAAO,CAAC;IAEzB;;OAEG;IACH,0BAA0B,CAAC,EAAE,OAAO,CAAC;IACrC,uBAAuB,CAAC,EAAE,OAAO,CAAC;IAClC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,iBAAiB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEvC;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,yBAAyB,CAAC,EAAE,GAAG,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;IAExD,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC;;OAEG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,wBAAwB,CAAC,EAAE,OAAO,CAAC;IACnC;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB;;;;OAIG;IACH,4BAA4B,CAAC,EAAE,MAAM,CAAC;IAEtC;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;;;;OAKG;IAEH,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB;;;;;OAKG;IAEH,gBAAgB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEtC;;;;OAIG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB;;;;OAIG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAE5B;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;OAEG;IACH,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,2BAA2B,CAAC,EAAE,MAAM,CAAC;IACrC,0BAA0B,CAAC,EAAE,OAAO,CAAC;IAErC;;OAEG;IACH,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAE/B;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IAGtB,OAAO,CAAC,EAAE,MAAM,CAAC;IAGjB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,aAAa,CAAC,EAAE,OAAO,CAAC;IAGxB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IAGtB,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,WAAW,CAAC,EAAE,KAAK,GAAG,KAAK,GAAG,KAAK,CAAC;IAEpC;;;;OAIG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B,YAAY,CAAC,EAAE,OAAO,CAAC;IAEvB,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAEhC,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAG9B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B,yBAAyB,CAAC,EAAE,MAAM,CAAC;IAEnC,sBAAsB,CAAC,EAAE,OAAO,CAAC;IAEjC,YAAY,CAAC,EAAE,YAAY,CAAC;CAC/B,CAAC;AAEF,MAAM,MAAM,uBAAuB,GAAG;IAClC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,8BAA8B,GAAG,uBAAuB,GAAG;IACnE,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF,eAAO,MAAM,SAAS,EAAE,WAAW,CAAC,MAAM,CA8BxC,CAAC"}
|
|
@@ -37,5 +37,30 @@ export declare class StringUtils {
|
|
|
37
37
|
* @param input String to match against
|
|
38
38
|
*/
|
|
39
39
|
static matchPattern(pattern: string, input: string): boolean;
|
|
40
|
+
/**
|
|
41
|
+
* Tests if a given string matches a given pattern using stricter, anchored matching semantics.
|
|
42
|
+
*
|
|
43
|
+
* Differences from `matchPattern` (legacy):
|
|
44
|
+
* - All regex metacharacters (including `.`) in the pattern are treated as literals,
|
|
45
|
+
* so `example.com` matches only `example.com` and not `exampleXcom`.
|
|
46
|
+
* - The generated regex is anchored with `^` and `$` so partial/substring matches
|
|
47
|
+
* are not allowed.
|
|
48
|
+
* - `*` is the only supported wildcard. Its behaviour depends on the URL component:
|
|
49
|
+
* - `host` component: `*` matches any sequence of characters that does NOT include
|
|
50
|
+
* a dot (`.`), keeping wildcards within a single DNS label boundary.
|
|
51
|
+
* - All other components: `*` matches any sequence of characters (including `/`).
|
|
52
|
+
*
|
|
53
|
+
* @param pattern - The `protectedResourceMap` key pattern to match against. `*` is a
|
|
54
|
+
* multi-character wildcard; all other characters are treated as literals.
|
|
55
|
+
* @param input - The URL component value (e.g. host, pathname) extracted from the
|
|
56
|
+
* outgoing request URL to test against the pattern.
|
|
57
|
+
* @param options - Optional. Provide `component` to enable component-aware wildcard
|
|
58
|
+
* semantics. Accepted values: `"host"`, `"path"`, `"protocol"`, `"search"`,
|
|
59
|
+
* `"hash"`. Defaults to path-style (permissive) matching when omitted.
|
|
60
|
+
* @returns `true` if the full input string matches the pattern; `false` otherwise.
|
|
61
|
+
*/
|
|
62
|
+
static matchPatternStrict(pattern: string, input: string, options?: {
|
|
63
|
+
component?: "host" | "path" | "protocol" | "search" | "hash";
|
|
64
|
+
}): boolean;
|
|
40
65
|
}
|
|
41
66
|
//# sourceMappingURL=StringUtils.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"StringUtils.d.ts","sourceRoot":"","sources":["../../../src/utils/StringUtils.ts"],"names":[],"mappings":"AAKA;;GAEG;AACH,qBAAa,WAAW;IACpB;;;OAGG;IACH,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO;IAU3C,MAAM,CAAC,UAAU,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAIvD,MAAM,CAAC,QAAQ,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAOrD;;;;OAIG;IACH,MAAM,CAAC,mBAAmB,CAAC,CAAC,EAAE,KAAK,EAAE,MAAM,GAAG,CAAC;IAe/C;;;;OAIG;IACH,MAAM,CAAC,gBAAgB,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC;IAI1D;;;OAGG;IACH,MAAM,CAAC,2BAA2B,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC;IAMrE;;;OAGG;IACH,MAAM,CAAC,eAAe,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,GAAG,CAAC,GAAG,IAAI;IAQhD;;;;OAIG;IACH,MAAM,CAAC,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO;
|
|
1
|
+
{"version":3,"file":"StringUtils.d.ts","sourceRoot":"","sources":["../../../src/utils/StringUtils.ts"],"names":[],"mappings":"AAKA;;GAEG;AACH,qBAAa,WAAW;IACpB;;;OAGG;IACH,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO;IAU3C,MAAM,CAAC,UAAU,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAIvD,MAAM,CAAC,QAAQ,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAOrD;;;;OAIG;IACH,MAAM,CAAC,mBAAmB,CAAC,CAAC,EAAE,KAAK,EAAE,MAAM,GAAG,CAAC;IAe/C;;;;OAIG;IACH,MAAM,CAAC,gBAAgB,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC;IAI1D;;;OAGG;IACH,MAAM,CAAC,2BAA2B,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC;IAMrE;;;OAGG;IACH,MAAM,CAAC,eAAe,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,GAAG,CAAC,GAAG,IAAI;IAQhD;;;;OAIG;IACH,MAAM,CAAC,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO;IAgB5D;;;;;;;;;;;;;;;;;;;;;OAqBG;IACH,MAAM,CAAC,kBAAkB,CACrB,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,MAAM,EACb,OAAO,CAAC,EAAE;QACN,SAAS,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,UAAU,GAAG,QAAQ,GAAG,MAAM,CAAC;KAChE,GACF,OAAO;CAmBb"}
|
package/package.json
CHANGED
|
@@ -365,18 +365,6 @@ export class AuthorizationCodeClient extends BaseClient {
|
|
|
365
365
|
}
|
|
366
366
|
}
|
|
367
367
|
|
|
368
|
-
if (
|
|
369
|
-
!StringUtils.isEmptyObj(request.claims) ||
|
|
370
|
-
(this.config.authOptions.clientCapabilities &&
|
|
371
|
-
this.config.authOptions.clientCapabilities.length > 0)
|
|
372
|
-
) {
|
|
373
|
-
RequestParameterBuilder.addClaims(
|
|
374
|
-
parameters,
|
|
375
|
-
request.claims,
|
|
376
|
-
this.config.authOptions.clientCapabilities
|
|
377
|
-
);
|
|
378
|
-
}
|
|
379
|
-
|
|
380
368
|
let ccsCred: CcsCredential | undefined = undefined;
|
|
381
369
|
if (request.clientInfo) {
|
|
382
370
|
try {
|
|
@@ -458,6 +446,25 @@ export class AuthorizationCodeClient extends BaseClient {
|
|
|
458
446
|
request.correlationId,
|
|
459
447
|
this.performanceClient
|
|
460
448
|
);
|
|
449
|
+
|
|
450
|
+
// ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
|
|
451
|
+
const configClaims =
|
|
452
|
+
request.skipBrokerClaims &&
|
|
453
|
+
parameters.has(AADServerParamKeys.BROKER_CLIENT_ID)
|
|
454
|
+
? undefined
|
|
455
|
+
: this.config.authOptions.clientCapabilities;
|
|
456
|
+
|
|
457
|
+
if (
|
|
458
|
+
!StringUtils.isEmptyObj(request.claims) ||
|
|
459
|
+
(configClaims && configClaims.length > 0)
|
|
460
|
+
) {
|
|
461
|
+
RequestParameterBuilder.addClaims(
|
|
462
|
+
parameters,
|
|
463
|
+
request.claims,
|
|
464
|
+
configClaims
|
|
465
|
+
);
|
|
466
|
+
}
|
|
467
|
+
|
|
461
468
|
return UrlUtils.mapToQueryString(parameters);
|
|
462
469
|
}
|
|
463
470
|
|
|
@@ -458,18 +458,6 @@ export class RefreshTokenClient extends BaseClient {
|
|
|
458
458
|
}
|
|
459
459
|
}
|
|
460
460
|
|
|
461
|
-
if (
|
|
462
|
-
!StringUtils.isEmptyObj(request.claims) ||
|
|
463
|
-
(this.config.authOptions.clientCapabilities &&
|
|
464
|
-
this.config.authOptions.clientCapabilities.length > 0)
|
|
465
|
-
) {
|
|
466
|
-
RequestParameterBuilder.addClaims(
|
|
467
|
-
parameters,
|
|
468
|
-
request.claims,
|
|
469
|
-
this.config.authOptions.clientCapabilities
|
|
470
|
-
);
|
|
471
|
-
}
|
|
472
|
-
|
|
473
461
|
if (
|
|
474
462
|
this.config.systemOptions.preventCorsPreflight &&
|
|
475
463
|
request.ccsCredential
|
|
@@ -520,6 +508,25 @@ export class RefreshTokenClient extends BaseClient {
|
|
|
520
508
|
request.correlationId,
|
|
521
509
|
this.performanceClient
|
|
522
510
|
);
|
|
511
|
+
|
|
512
|
+
// ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
|
|
513
|
+
const configClaims =
|
|
514
|
+
request.skipBrokerClaims &&
|
|
515
|
+
parameters.has(AADServerParamKeys.BROKER_CLIENT_ID)
|
|
516
|
+
? undefined
|
|
517
|
+
: this.config.authOptions.clientCapabilities;
|
|
518
|
+
|
|
519
|
+
if (
|
|
520
|
+
!StringUtils.isEmptyObj(request.claims) ||
|
|
521
|
+
(configClaims && configClaims.length > 0)
|
|
522
|
+
) {
|
|
523
|
+
RequestParameterBuilder.addClaims(
|
|
524
|
+
parameters,
|
|
525
|
+
request.claims,
|
|
526
|
+
configClaims
|
|
527
|
+
);
|
|
528
|
+
}
|
|
529
|
+
|
|
523
530
|
return UrlUtils.mapToQueryString(parameters);
|
|
524
531
|
}
|
|
525
532
|
}
|
|
@@ -91,7 +91,7 @@ export class InteractionRequiredAuthError extends AuthError {
|
|
|
91
91
|
traceId: string;
|
|
92
92
|
|
|
93
93
|
/**
|
|
94
|
-
* https://github.com/AzureAD/microsoft-authentication-library-for-js/blob/
|
|
94
|
+
* https://github.com/AzureAD/microsoft-authentication-library-for-js/blob/v4-lts/lib/msal-common/docs/claims-challenge.md
|
|
95
95
|
*
|
|
96
96
|
* A string with extra claims needed for the token request to succeed
|
|
97
97
|
* web site: redirect the user to the authorization page and set the extra claims
|
package/src/packageMetadata.ts
CHANGED
|
@@ -223,18 +223,6 @@ export function getStandardAuthorizeRequestParameters(
|
|
|
223
223
|
RequestParameterBuilder.addState(parameters, request.state);
|
|
224
224
|
}
|
|
225
225
|
|
|
226
|
-
if (
|
|
227
|
-
request.claims ||
|
|
228
|
-
(authOptions.clientCapabilities &&
|
|
229
|
-
authOptions.clientCapabilities.length > 0)
|
|
230
|
-
) {
|
|
231
|
-
RequestParameterBuilder.addClaims(
|
|
232
|
-
parameters,
|
|
233
|
-
request.claims,
|
|
234
|
-
authOptions.clientCapabilities
|
|
235
|
-
);
|
|
236
|
-
}
|
|
237
|
-
|
|
238
226
|
if (request.embeddedClientId) {
|
|
239
227
|
RequestParameterBuilder.addBrokerParameters(
|
|
240
228
|
parameters,
|
|
@@ -243,6 +231,21 @@ export function getStandardAuthorizeRequestParameters(
|
|
|
243
231
|
);
|
|
244
232
|
}
|
|
245
233
|
|
|
234
|
+
// ignore config claims if skipBrokerClaims is set to true and this is a brokered authentication flow
|
|
235
|
+
const configClaims =
|
|
236
|
+
request.skipBrokerClaims &&
|
|
237
|
+
parameters.has(AADServerParamKeys.BROKER_CLIENT_ID)
|
|
238
|
+
? undefined
|
|
239
|
+
: authOptions.clientCapabilities;
|
|
240
|
+
|
|
241
|
+
if (request.claims || (configClaims && configClaims.length > 0)) {
|
|
242
|
+
RequestParameterBuilder.addClaims(
|
|
243
|
+
parameters,
|
|
244
|
+
request.claims,
|
|
245
|
+
configClaims
|
|
246
|
+
);
|
|
247
|
+
}
|
|
248
|
+
|
|
246
249
|
// If extraQueryParameters includes instance_aware its value will be added when extraQueryParameters are added
|
|
247
250
|
if (
|
|
248
251
|
authOptions.instanceAware &&
|
|
@@ -33,6 +33,7 @@ import { ShrOptions } from "../crypto/SignedHttpRequest.js";
|
|
|
33
33
|
* - embeddedClientId - Embedded client id. When specified, broker client id (brk_client_id) and redirect uri (brk_redirect_uri) params are set with values from the config, overriding the corresponding extra parameters, if present.
|
|
34
34
|
* - httpMethod - HTTP method to use for the /authorize request. Defaults to GET, but can be set to POST if the request requires body parameters
|
|
35
35
|
* - authorizePostBodyParameters - String to string map of custom parameters added to the body of the /authorize call when httpMethod is set to POST
|
|
36
|
+
* - skipBrokerClaims - When true and a brokered flow is used (for example, when broker params or an embeddedClientId are present), clientCapabilities from configuration will be excluded from claims; ignored for non-brokered flows.
|
|
36
37
|
*/
|
|
37
38
|
export type BaseAuthRequest = {
|
|
38
39
|
authority: string;
|
|
@@ -58,4 +59,5 @@ export type BaseAuthRequest = {
|
|
|
58
59
|
embeddedClientId?: string;
|
|
59
60
|
httpMethod?: HttpMethod;
|
|
60
61
|
authorizePostBodyParameters?: StringDict;
|
|
62
|
+
skipBrokerClaims?: boolean;
|
|
61
63
|
};
|
|
@@ -671,6 +671,12 @@ export type PerformanceEvent = {
|
|
|
671
671
|
*/
|
|
672
672
|
startPageVisibility?: string | null;
|
|
673
673
|
|
|
674
|
+
/**
|
|
675
|
+
* Online status when the event started.
|
|
676
|
+
* Read from: https://developer.mozilla.org/docs/Web/API/NavigatorOnLine/onLine
|
|
677
|
+
*/
|
|
678
|
+
startOnlineStatus?: boolean | null;
|
|
679
|
+
|
|
674
680
|
/**
|
|
675
681
|
* Unix millisecond timestamp when the event was initiated.
|
|
676
682
|
*
|
|
@@ -779,12 +785,28 @@ export type PerformanceEvent = {
|
|
|
779
785
|
incompleteSubMeasurements?: Map<string, SubMeasurement>;
|
|
780
786
|
|
|
781
787
|
visibilityChangeCount?: number;
|
|
788
|
+
onlineStatusChangeCount?: number;
|
|
782
789
|
incompleteSubsCount?: number;
|
|
783
790
|
|
|
791
|
+
/**
|
|
792
|
+
* Network connection info from the Network Information API (Chromium only).
|
|
793
|
+
* Read from: https://developer.mozilla.org/docs/Web/API/NetworkInformation
|
|
794
|
+
*/
|
|
795
|
+
networkEffectiveType?: string;
|
|
796
|
+
networkRtt?: number;
|
|
797
|
+
|
|
784
798
|
/**
|
|
785
799
|
* CorrelationId of the in progress iframe request that was awaited
|
|
786
800
|
*/
|
|
787
801
|
awaitIframeCorrelationId?: string;
|
|
802
|
+
/**
|
|
803
|
+
* Monitor_window_timeout debugging telemetry
|
|
804
|
+
*/
|
|
805
|
+
iframePollIntervalMs?: number;
|
|
806
|
+
iframeTimeoutMs?: number;
|
|
807
|
+
iframeTickCount?: number;
|
|
808
|
+
crossOriginTickCount?: number;
|
|
809
|
+
isRedirectUriCrossOrigin?: boolean;
|
|
788
810
|
/**
|
|
789
811
|
* Amount of times queued in the JS event queue.
|
|
790
812
|
*
|
|
@@ -981,4 +1003,9 @@ export const IntFields: ReadonlySet<string> = new Set([
|
|
|
981
1003
|
"currRefreshCount",
|
|
982
1004
|
"expiredCacheRemovedCount",
|
|
983
1005
|
"upgradedCacheCount",
|
|
1006
|
+
"networkRtt",
|
|
1007
|
+
"iframePollIntervalMs",
|
|
1008
|
+
"iframeTimeoutMs",
|
|
1009
|
+
"iframeTickCount",
|
|
1010
|
+
"crossOriginTickCount",
|
|
984
1011
|
]);
|
package/src/utils/StringUtils.ts
CHANGED
|
@@ -103,4 +103,52 @@ export class StringUtils {
|
|
|
103
103
|
|
|
104
104
|
return regex.test(input);
|
|
105
105
|
}
|
|
106
|
+
|
|
107
|
+
/**
|
|
108
|
+
* Tests if a given string matches a given pattern using stricter, anchored matching semantics.
|
|
109
|
+
*
|
|
110
|
+
* Differences from `matchPattern` (legacy):
|
|
111
|
+
* - All regex metacharacters (including `.`) in the pattern are treated as literals,
|
|
112
|
+
* so `example.com` matches only `example.com` and not `exampleXcom`.
|
|
113
|
+
* - The generated regex is anchored with `^` and `$` so partial/substring matches
|
|
114
|
+
* are not allowed.
|
|
115
|
+
* - `*` is the only supported wildcard. Its behaviour depends on the URL component:
|
|
116
|
+
* - `host` component: `*` matches any sequence of characters that does NOT include
|
|
117
|
+
* a dot (`.`), keeping wildcards within a single DNS label boundary.
|
|
118
|
+
* - All other components: `*` matches any sequence of characters (including `/`).
|
|
119
|
+
*
|
|
120
|
+
* @param pattern - The `protectedResourceMap` key pattern to match against. `*` is a
|
|
121
|
+
* multi-character wildcard; all other characters are treated as literals.
|
|
122
|
+
* @param input - The URL component value (e.g. host, pathname) extracted from the
|
|
123
|
+
* outgoing request URL to test against the pattern.
|
|
124
|
+
* @param options - Optional. Provide `component` to enable component-aware wildcard
|
|
125
|
+
* semantics. Accepted values: `"host"`, `"path"`, `"protocol"`, `"search"`,
|
|
126
|
+
* `"hash"`. Defaults to path-style (permissive) matching when omitted.
|
|
127
|
+
* @returns `true` if the full input string matches the pattern; `false` otherwise.
|
|
128
|
+
*/
|
|
129
|
+
static matchPatternStrict(
|
|
130
|
+
pattern: string,
|
|
131
|
+
input: string,
|
|
132
|
+
options?: {
|
|
133
|
+
component?: "host" | "path" | "protocol" | "search" | "hash";
|
|
134
|
+
}
|
|
135
|
+
): boolean {
|
|
136
|
+
const component = options?.component;
|
|
137
|
+
|
|
138
|
+
// Step 1: Escape all regex special characters so literals are matched literally.
|
|
139
|
+
let regexBody = pattern.replace(/[.+^${}()|[\]\\*?]/g, "\\$&");
|
|
140
|
+
|
|
141
|
+
// Step 2: Replace the escaped '*' with its component-aware regex equivalent.
|
|
142
|
+
if (component === "host") {
|
|
143
|
+
regexBody = regexBody.replace(/\\\*/g, "[^.]*");
|
|
144
|
+
} else {
|
|
145
|
+
// PATH, PROTOCOL, SEARCH, HASH, or unspecified: '*' matches any characters.
|
|
146
|
+
regexBody = regexBody.replace(/\\\*/g, ".*");
|
|
147
|
+
}
|
|
148
|
+
|
|
149
|
+
// Step 3: Anchor for full-string matching.
|
|
150
|
+
// eslint-disable-next-line security/detect-non-literal-regexp
|
|
151
|
+
const regex = new RegExp(`^${regexBody}$`);
|
|
152
|
+
return regex.test(input);
|
|
153
|
+
}
|
|
106
154
|
}
|