@azure/msal-common 16.0.1 → 16.0.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/account/AccountInfo.mjs +1 -1
- package/dist/account/AuthToken.mjs +1 -1
- package/dist/account/CcsCredential.mjs +1 -1
- package/dist/account/ClientInfo.mjs +1 -1
- package/dist/account/TokenClaims.mjs +1 -1
- package/dist/authority/Authority.mjs +1 -1
- package/dist/authority/AuthorityFactory.mjs +1 -1
- package/dist/authority/AuthorityMetadata.mjs +1 -1
- package/dist/authority/AuthorityOptions.mjs +1 -1
- package/dist/authority/AuthorityType.mjs +1 -1
- package/dist/authority/CloudInstanceDiscoveryErrorResponse.mjs +1 -1
- package/dist/authority/CloudInstanceDiscoveryResponse.mjs +1 -1
- package/dist/authority/OpenIdConfigResponse.mjs +1 -1
- package/dist/authority/ProtocolMode.mjs +1 -1
- package/dist/authority/RegionDiscovery.mjs +1 -1
- package/dist/cache/CacheManager.mjs +1 -1
- package/dist/cache/persistence/TokenCacheContext.mjs +1 -1
- package/dist/cache/utils/AccountEntityUtils.mjs +1 -1
- package/dist/cache/utils/CacheHelpers.mjs +1 -1
- package/dist/client/AuthorizationCodeClient.mjs +1 -1
- package/dist/client/RefreshTokenClient.mjs +1 -1
- package/dist/client/SilentFlowClient.mjs +1 -1
- package/dist/config/ClientConfiguration.mjs +1 -1
- package/dist/constants/AADServerParamKeys.mjs +1 -1
- package/dist/crypto/ICrypto.mjs +1 -1
- package/dist/crypto/JoseHeader.mjs +1 -1
- package/dist/crypto/PopTokenGenerator.mjs +1 -1
- package/dist/error/AuthError.mjs +1 -1
- package/dist/error/AuthErrorCodes.mjs +1 -1
- package/dist/error/CacheError.mjs +1 -1
- package/dist/error/CacheErrorCodes.mjs +1 -1
- package/dist/error/ClientAuthError.mjs +1 -1
- package/dist/error/ClientAuthErrorCodes.mjs +1 -1
- package/dist/error/ClientConfigurationError.mjs +1 -1
- package/dist/error/ClientConfigurationErrorCodes.mjs +1 -1
- package/dist/error/InteractionRequiredAuthError.mjs +1 -1
- package/dist/error/InteractionRequiredAuthErrorCodes.mjs +1 -1
- package/dist/error/JoseHeaderError.mjs +1 -1
- package/dist/error/JoseHeaderErrorCodes.mjs +1 -1
- package/dist/error/NetworkError.mjs +1 -1
- package/dist/error/PlatformBrokerError.mjs +1 -1
- package/dist/error/ServerError.mjs +1 -1
- package/dist/index-node.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/logger/Logger.mjs +1 -1
- package/dist/network/INetworkModule.mjs +1 -1
- package/dist/network/RequestThumbprint.mjs +1 -1
- package/dist/network/ThrottlingUtils.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.mjs +1 -1
- package/dist/protocol/Token.mjs +1 -1
- package/dist/request/AuthenticationHeaderParser.mjs +1 -1
- package/dist/request/RequestParameterBuilder.mjs +1 -1
- package/dist/request/ScopeSet.mjs +1 -1
- package/dist/response/ResponseHandler.mjs +1 -1
- package/dist/telemetry/performance/PerformanceClient.mjs +1 -1
- package/dist/telemetry/performance/PerformanceEvent.mjs +1 -1
- package/dist/telemetry/performance/PerformanceEvents.mjs +1 -1
- package/dist/telemetry/performance/StubPerformanceClient.mjs +1 -1
- package/dist/telemetry/server/ServerTelemetryManager.mjs +1 -1
- package/dist/url/UrlString.mjs +1 -1
- package/dist/utils/ClientAssertionUtils.mjs +1 -1
- package/dist/utils/Constants.mjs +1 -1
- package/dist/utils/FunctionWrappers.mjs +1 -1
- package/dist/utils/ProtocolUtils.mjs +1 -1
- package/dist/utils/StringUtils.mjs +1 -1
- package/dist/utils/TimeUtils.mjs +1 -1
- package/dist/utils/UrlUtils.mjs +1 -1
- package/dist-browser/account/AccountInfo.d.ts +71 -0
- package/dist-browser/account/AccountInfo.d.ts.map +1 -0
- package/dist-browser/account/AccountInfo.mjs +85 -0
- package/dist-browser/account/AccountInfo.mjs.map +1 -0
- package/dist-browser/account/AuthToken.d.ts +24 -0
- package/dist-browser/account/AuthToken.d.ts.map +1 -0
- package/dist-browser/account/AuthToken.mjs +85 -0
- package/dist-browser/account/AuthToken.mjs.map +1 -0
- package/dist-browser/account/CcsCredential.d.ts +10 -0
- package/dist-browser/account/CcsCredential.d.ts.map +1 -0
- package/dist-browser/account/CcsCredential.mjs +13 -0
- package/dist-browser/account/CcsCredential.mjs.map +1 -0
- package/dist-browser/account/ClientCredentials.d.ts +20 -0
- package/dist-browser/account/ClientCredentials.d.ts.map +1 -0
- package/dist-browser/account/ClientInfo.d.ts +23 -0
- package/dist-browser/account/ClientInfo.d.ts.map +1 -0
- package/dist-browser/account/ClientInfo.mjs +44 -0
- package/dist-browser/account/ClientInfo.mjs.map +1 -0
- package/dist-browser/account/TokenClaims.d.ts +88 -0
- package/dist-browser/account/TokenClaims.d.ts.map +1 -0
- package/dist-browser/account/TokenClaims.mjs +25 -0
- package/dist-browser/account/TokenClaims.mjs.map +1 -0
- package/dist-browser/authority/Authority.d.ts +255 -0
- package/dist-browser/authority/Authority.d.ts.map +1 -0
- package/dist-browser/authority/Authority.mjs +841 -0
- package/dist-browser/authority/Authority.mjs.map +1 -0
- package/dist-browser/authority/AuthorityFactory.d.ts +23 -0
- package/dist-browser/authority/AuthorityFactory.d.ts.map +1 -0
- package/dist-browser/authority/AuthorityFactory.mjs +42 -0
- package/dist-browser/authority/AuthorityFactory.mjs.map +1 -0
- package/dist-browser/authority/AuthorityMetadata.d.ts +44 -0
- package/dist-browser/authority/AuthorityMetadata.d.ts.map +1 -0
- package/dist-browser/authority/AuthorityMetadata.mjs +146 -0
- package/dist-browser/authority/AuthorityMetadata.mjs.map +1 -0
- package/dist-browser/authority/AuthorityOptions.d.ts +27 -0
- package/dist-browser/authority/AuthorityOptions.d.ts.map +1 -0
- package/dist-browser/authority/AuthorityOptions.mjs +23 -0
- package/dist-browser/authority/AuthorityOptions.mjs.map +1 -0
- package/dist-browser/authority/AuthorityType.d.ts +11 -0
- package/dist-browser/authority/AuthorityType.d.ts.map +1 -0
- package/dist-browser/authority/AuthorityType.mjs +18 -0
- package/dist-browser/authority/AuthorityType.mjs.map +1 -0
- package/dist-browser/authority/AzureRegion.d.ts +2 -0
- package/dist-browser/authority/AzureRegion.d.ts.map +1 -0
- package/dist-browser/authority/AzureRegionConfiguration.d.ts +6 -0
- package/dist-browser/authority/AzureRegionConfiguration.d.ts.map +1 -0
- package/dist-browser/authority/CloudDiscoveryMetadata.d.ts +6 -0
- package/dist-browser/authority/CloudDiscoveryMetadata.d.ts.map +1 -0
- package/dist-browser/authority/CloudInstanceDiscoveryErrorResponse.d.ts +14 -0
- package/dist-browser/authority/CloudInstanceDiscoveryErrorResponse.d.ts.map +1 -0
- package/dist-browser/authority/CloudInstanceDiscoveryErrorResponse.mjs +13 -0
- package/dist-browser/authority/CloudInstanceDiscoveryErrorResponse.mjs.map +1 -0
- package/dist-browser/authority/CloudInstanceDiscoveryResponse.d.ts +10 -0
- package/dist-browser/authority/CloudInstanceDiscoveryResponse.d.ts.map +1 -0
- package/dist-browser/authority/CloudInstanceDiscoveryResponse.mjs +13 -0
- package/dist-browser/authority/CloudInstanceDiscoveryResponse.mjs.map +1 -0
- package/dist-browser/authority/ImdsOptions.d.ts +6 -0
- package/dist-browser/authority/ImdsOptions.d.ts.map +1 -0
- package/dist-browser/authority/OIDCOptions.d.ts +9 -0
- package/dist-browser/authority/OIDCOptions.d.ts.map +1 -0
- package/dist-browser/authority/OpenIdConfigResponse.d.ts +12 -0
- package/dist-browser/authority/OpenIdConfigResponse.d.ts.map +1 -0
- package/dist-browser/authority/OpenIdConfigResponse.mjs +15 -0
- package/dist-browser/authority/OpenIdConfigResponse.mjs.map +1 -0
- package/dist-browser/authority/ProtocolMode.d.ts +20 -0
- package/dist-browser/authority/ProtocolMode.d.ts.map +1 -0
- package/dist-browser/authority/ProtocolMode.mjs +27 -0
- package/dist-browser/authority/ProtocolMode.mjs.map +1 -0
- package/dist-browser/authority/RegionDiscovery.d.ts +33 -0
- package/dist-browser/authority/RegionDiscovery.d.ts.map +1 -0
- package/dist-browser/authority/RegionDiscovery.mjs +111 -0
- package/dist-browser/authority/RegionDiscovery.mjs.map +1 -0
- package/dist-browser/authority/RegionDiscoveryMetadata.d.ts +7 -0
- package/dist-browser/authority/RegionDiscoveryMetadata.d.ts.map +1 -0
- package/dist-browser/broker/nativeBroker/INativeBrokerPlugin.d.ts +17 -0
- package/dist-browser/broker/nativeBroker/INativeBrokerPlugin.d.ts.map +1 -0
- package/dist-browser/cache/CacheManager.d.ts +478 -0
- package/dist-browser/cache/CacheManager.d.ts.map +1 -0
- package/dist-browser/cache/CacheManager.mjs +1111 -0
- package/dist-browser/cache/CacheManager.mjs.map +1 -0
- package/dist-browser/cache/entities/AccessTokenEntity.d.ts +22 -0
- package/dist-browser/cache/entities/AccessTokenEntity.d.ts.map +1 -0
- package/dist-browser/cache/entities/AccountEntity.d.ts +45 -0
- package/dist-browser/cache/entities/AccountEntity.d.ts.map +1 -0
- package/dist-browser/cache/entities/AppMetadataEntity.d.ts +12 -0
- package/dist-browser/cache/entities/AppMetadataEntity.d.ts.map +1 -0
- package/dist-browser/cache/entities/AuthorityMetadataEntity.d.ts +16 -0
- package/dist-browser/cache/entities/AuthorityMetadataEntity.d.ts.map +1 -0
- package/dist-browser/cache/entities/CacheRecord.d.ts +14 -0
- package/dist-browser/cache/entities/CacheRecord.d.ts.map +1 -0
- package/dist-browser/cache/entities/CredentialEntity.d.ts +31 -0
- package/dist-browser/cache/entities/CredentialEntity.d.ts.map +1 -0
- package/dist-browser/cache/entities/IdTokenEntity.d.ts +9 -0
- package/dist-browser/cache/entities/IdTokenEntity.d.ts.map +1 -0
- package/dist-browser/cache/entities/RefreshTokenEntity.d.ts +8 -0
- package/dist-browser/cache/entities/RefreshTokenEntity.d.ts.map +1 -0
- package/dist-browser/cache/entities/ServerTelemetryEntity.d.ts +7 -0
- package/dist-browser/cache/entities/ServerTelemetryEntity.d.ts.map +1 -0
- package/dist-browser/cache/entities/ThrottlingEntity.d.ts +8 -0
- package/dist-browser/cache/entities/ThrottlingEntity.d.ts.map +1 -0
- package/dist-browser/cache/interface/ICacheManager.d.ts +188 -0
- package/dist-browser/cache/interface/ICacheManager.d.ts.map +1 -0
- package/dist-browser/cache/interface/ICachePlugin.d.ts +6 -0
- package/dist-browser/cache/interface/ICachePlugin.d.ts.map +1 -0
- package/dist-browser/cache/interface/ISerializableTokenCache.d.ts +5 -0
- package/dist-browser/cache/interface/ISerializableTokenCache.d.ts.map +1 -0
- package/dist-browser/cache/persistence/TokenCacheContext.d.ts +24 -0
- package/dist-browser/cache/persistence/TokenCacheContext.d.ts.map +1 -0
- package/dist-browser/cache/persistence/TokenCacheContext.mjs +30 -0
- package/dist-browser/cache/persistence/TokenCacheContext.mjs.map +1 -0
- package/dist-browser/cache/utils/AccountEntityUtils.d.ts +53 -0
- package/dist-browser/cache/utils/AccountEntityUtils.d.ts.map +1 -0
- package/dist-browser/cache/utils/AccountEntityUtils.mjs +192 -0
- package/dist-browser/cache/utils/AccountEntityUtils.mjs.map +1 -0
- package/dist-browser/cache/utils/CacheHelpers.d.ts +86 -0
- package/dist-browser/cache/utils/CacheHelpers.d.ts.map +1 -0
- package/dist-browser/cache/utils/CacheHelpers.mjs +267 -0
- package/dist-browser/cache/utils/CacheHelpers.mjs.map +1 -0
- package/dist-browser/cache/utils/CacheTypes.d.ts +69 -0
- package/dist-browser/cache/utils/CacheTypes.d.ts.map +1 -0
- package/dist-browser/client/AuthorizationCodeClient.d.ts +64 -0
- package/dist-browser/client/AuthorizationCodeClient.d.ts.map +1 -0
- package/dist-browser/client/AuthorizationCodeClient.mjs +287 -0
- package/dist-browser/client/AuthorizationCodeClient.mjs.map +1 -0
- package/dist-browser/client/RefreshTokenClient.d.ts +49 -0
- package/dist-browser/client/RefreshTokenClient.d.ts.map +1 -0
- package/dist-browser/client/RefreshTokenClient.mjs +254 -0
- package/dist-browser/client/RefreshTokenClient.mjs.map +1 -0
- package/dist-browser/client/SilentFlowClient.d.ts +35 -0
- package/dist-browser/client/SilentFlowClient.d.ts.map +1 -0
- package/dist-browser/client/SilentFlowClient.mjs +125 -0
- package/dist-browser/client/SilentFlowClient.mjs.map +1 -0
- package/dist-browser/config/AppTokenProvider.d.ts +39 -0
- package/dist-browser/config/AppTokenProvider.d.ts.map +1 -0
- package/dist-browser/config/ClientConfiguration.d.ts +143 -0
- package/dist-browser/config/ClientConfiguration.d.ts.map +1 -0
- package/dist-browser/config/ClientConfiguration.mjs +107 -0
- package/dist-browser/config/ClientConfiguration.mjs.map +1 -0
- package/dist-browser/constants/AADServerParamKeys.d.ts +59 -0
- package/dist-browser/constants/AADServerParamKeys.d.ts.map +1 -0
- package/dist-browser/constants/AADServerParamKeys.mjs +67 -0
- package/dist-browser/constants/AADServerParamKeys.mjs.map +1 -0
- package/dist-browser/crypto/ICrypto.d.ts +71 -0
- package/dist-browser/crypto/ICrypto.d.ts.map +1 -0
- package/dist-browser/crypto/ICrypto.mjs +44 -0
- package/dist-browser/crypto/ICrypto.mjs.map +1 -0
- package/dist-browser/crypto/IGuidGenerator.d.ts +5 -0
- package/dist-browser/crypto/IGuidGenerator.d.ts.map +1 -0
- package/dist-browser/crypto/JoseHeader.d.ts +23 -0
- package/dist-browser/crypto/JoseHeader.d.ts.map +1 -0
- package/dist-browser/crypto/JoseHeader.mjs +46 -0
- package/dist-browser/crypto/JoseHeader.mjs.map +1 -0
- package/dist-browser/crypto/PopTokenGenerator.d.ts +60 -0
- package/dist-browser/crypto/PopTokenGenerator.d.ts.map +1 -0
- package/dist-browser/crypto/PopTokenGenerator.mjs +87 -0
- package/dist-browser/crypto/PopTokenGenerator.mjs.map +1 -0
- package/dist-browser/crypto/SignedHttpRequest.d.ts +16 -0
- package/dist-browser/crypto/SignedHttpRequest.d.ts.map +1 -0
- package/dist-browser/error/AuthError.d.ts +33 -0
- package/dist-browser/error/AuthError.d.ts.map +1 -0
- package/dist-browser/error/AuthError.mjs +34 -0
- package/dist-browser/error/AuthError.mjs.map +1 -0
- package/dist-browser/error/AuthErrorCodes.d.ts +6 -0
- package/dist-browser/error/AuthErrorCodes.d.ts.map +1 -0
- package/dist-browser/error/AuthErrorCodes.mjs +14 -0
- package/dist-browser/error/AuthErrorCodes.mjs.map +1 -0
- package/dist-browser/error/CacheError.d.ts +23 -0
- package/dist-browser/error/CacheError.d.ts.map +1 -0
- package/dist-browser/error/CacheError.mjs +45 -0
- package/dist-browser/error/CacheError.mjs.map +1 -0
- package/dist-browser/error/CacheErrorCodes.d.ts +3 -0
- package/dist-browser/error/CacheErrorCodes.d.ts.map +1 -0
- package/dist-browser/error/CacheErrorCodes.mjs +11 -0
- package/dist-browser/error/CacheErrorCodes.mjs.map +1 -0
- package/dist-browser/error/ClientAuthError.d.ts +14 -0
- package/dist-browser/error/ClientAuthError.d.ts.map +1 -0
- package/dist-browser/error/ClientAuthError.mjs +27 -0
- package/dist-browser/error/ClientAuthError.mjs.map +1 -0
- package/dist-browser/error/ClientAuthErrorCodes.d.ts +38 -0
- package/dist-browser/error/ClientAuthErrorCodes.d.ts.map +1 -0
- package/dist-browser/error/ClientAuthErrorCodes.mjs +46 -0
- package/dist-browser/error/ClientAuthErrorCodes.mjs.map +1 -0
- package/dist-browser/error/ClientConfigurationError.d.ts +11 -0
- package/dist-browser/error/ClientConfigurationError.d.ts.map +1 -0
- package/dist-browser/error/ClientConfigurationError.mjs +24 -0
- package/dist-browser/error/ClientConfigurationError.mjs.map +1 -0
- package/dist-browser/error/ClientConfigurationErrorCodes.d.ts +23 -0
- package/dist-browser/error/ClientConfigurationErrorCodes.d.ts.map +1 -0
- package/dist-browser/error/ClientConfigurationErrorCodes.mjs +31 -0
- package/dist-browser/error/ClientConfigurationErrorCodes.mjs.map +1 -0
- package/dist-browser/error/InteractionRequiredAuthError.d.ts +48 -0
- package/dist-browser/error/InteractionRequiredAuthError.d.ts.map +1 -0
- package/dist-browser/error/InteractionRequiredAuthError.mjs +73 -0
- package/dist-browser/error/InteractionRequiredAuthError.mjs.map +1 -0
- package/dist-browser/error/InteractionRequiredAuthErrorCodes.d.ts +9 -0
- package/dist-browser/error/InteractionRequiredAuthErrorCodes.d.ts.map +1 -0
- package/dist-browser/error/InteractionRequiredAuthErrorCodes.mjs +19 -0
- package/dist-browser/error/InteractionRequiredAuthErrorCodes.mjs.map +1 -0
- package/dist-browser/error/JoseHeaderError.d.ts +12 -0
- package/dist-browser/error/JoseHeaderError.d.ts.map +1 -0
- package/dist-browser/error/JoseHeaderError.mjs +25 -0
- package/dist-browser/error/JoseHeaderError.mjs.map +1 -0
- package/dist-browser/error/JoseHeaderErrorCodes.d.ts +3 -0
- package/dist-browser/error/JoseHeaderErrorCodes.d.ts.map +1 -0
- package/dist-browser/error/JoseHeaderErrorCodes.mjs +11 -0
- package/dist-browser/error/JoseHeaderErrorCodes.mjs.map +1 -0
- package/dist-browser/error/NetworkError.d.ts +19 -0
- package/dist-browser/error/NetworkError.d.ts.map +1 -0
- package/dist-browser/error/NetworkError.mjs +35 -0
- package/dist-browser/error/NetworkError.mjs.map +1 -0
- package/dist-browser/error/PlatformBrokerError.d.ts +16 -0
- package/dist-browser/error/PlatformBrokerError.d.ts.map +1 -0
- package/dist-browser/error/PlatformBrokerError.mjs +49 -0
- package/dist-browser/error/PlatformBrokerError.mjs.map +1 -0
- package/dist-browser/error/ServerError.d.ts +16 -0
- package/dist-browser/error/ServerError.d.ts.map +1 -0
- package/dist-browser/error/ServerError.mjs +23 -0
- package/dist-browser/error/ServerError.mjs.map +1 -0
- package/dist-browser/exports-browser-only.d.ts +11 -0
- package/dist-browser/exports-browser-only.d.ts.map +1 -0
- package/dist-browser/exports-common.d.ts +86 -0
- package/dist-browser/exports-common.d.ts.map +1 -0
- package/dist-browser/exports-node-only.d.ts +16 -0
- package/dist-browser/exports-node-only.d.ts.map +1 -0
- package/dist-browser/index-browser.d.ts +7 -0
- package/dist-browser/index-browser.d.ts.map +1 -0
- package/dist-browser/index-browser.mjs +78 -0
- package/dist-browser/index-browser.mjs.map +1 -0
- package/dist-browser/index-node.d.ts +7 -0
- package/dist-browser/index-node.d.ts.map +1 -0
- package/dist-browser/index.d.ts +12 -0
- package/dist-browser/index.d.ts.map +1 -0
- package/dist-browser/index.mjs +82 -0
- package/dist-browser/index.mjs.map +1 -0
- package/dist-browser/log-strings-mapping.json +383 -0
- package/dist-browser/logger/Logger.d.ts +119 -0
- package/dist-browser/logger/Logger.d.ts.map +1 -0
- package/dist-browser/logger/Logger.mjs +278 -0
- package/dist-browser/logger/Logger.mjs.map +1 -0
- package/dist-browser/network/INetworkModule.d.ts +30 -0
- package/dist-browser/network/INetworkModule.d.ts.map +1 -0
- package/dist-browser/network/INetworkModule.mjs +20 -0
- package/dist-browser/network/INetworkModule.mjs.map +1 -0
- package/dist-browser/network/NetworkResponse.d.ts +6 -0
- package/dist-browser/network/NetworkResponse.d.ts.map +1 -0
- package/dist-browser/network/RequestThumbprint.d.ts +22 -0
- package/dist-browser/network/RequestThumbprint.d.ts.map +1 -0
- package/dist-browser/network/RequestThumbprint.mjs +24 -0
- package/dist-browser/network/RequestThumbprint.mjs.map +1 -0
- package/dist-browser/network/ThrottlingUtils.d.ts +43 -0
- package/dist-browser/network/ThrottlingUtils.d.ts.map +1 -0
- package/dist-browser/network/ThrottlingUtils.mjs +92 -0
- package/dist-browser/network/ThrottlingUtils.mjs.map +1 -0
- package/dist-browser/packageMetadata.d.ts +3 -0
- package/dist-browser/packageMetadata.d.ts.map +1 -0
- package/dist-browser/packageMetadata.mjs +8 -0
- package/dist-browser/packageMetadata.mjs.map +1 -0
- package/dist-browser/protocol/Authorize.d.ts +37 -0
- package/dist-browser/protocol/Authorize.d.ts.map +1 -0
- package/dist-browser/protocol/Authorize.mjs +237 -0
- package/dist-browser/protocol/Authorize.mjs.map +1 -0
- package/dist-browser/protocol/Token.d.ts +40 -0
- package/dist-browser/protocol/Token.d.ts.map +1 -0
- package/dist-browser/protocol/Token.mjs +129 -0
- package/dist-browser/protocol/Token.mjs.map +1 -0
- package/dist-browser/request/AuthenticationHeaderParser.d.ts +20 -0
- package/dist-browser/request/AuthenticationHeaderParser.d.ts.map +1 -0
- package/dist-browser/request/AuthenticationHeaderParser.mjs +64 -0
- package/dist-browser/request/AuthenticationHeaderParser.mjs.map +1 -0
- package/dist-browser/request/BaseAuthRequest.d.ts +95 -0
- package/dist-browser/request/BaseAuthRequest.d.ts.map +1 -0
- package/dist-browser/request/CommonAuthorizationCodeRequest.d.ts +32 -0
- package/dist-browser/request/CommonAuthorizationCodeRequest.d.ts.map +1 -0
- package/dist-browser/request/CommonAuthorizationUrlRequest.d.ts +71 -0
- package/dist-browser/request/CommonAuthorizationUrlRequest.d.ts.map +1 -0
- package/dist-browser/request/CommonEndSessionRequest.d.ts +36 -0
- package/dist-browser/request/CommonEndSessionRequest.d.ts.map +1 -0
- package/dist-browser/request/CommonRefreshTokenRequest.d.ts +24 -0
- package/dist-browser/request/CommonRefreshTokenRequest.d.ts.map +1 -0
- package/dist-browser/request/CommonSilentFlowRequest.d.ts +24 -0
- package/dist-browser/request/CommonSilentFlowRequest.d.ts.map +1 -0
- package/dist-browser/request/NativeRequest.d.ts +20 -0
- package/dist-browser/request/NativeRequest.d.ts.map +1 -0
- package/dist-browser/request/NativeSignOutRequest.d.ts +6 -0
- package/dist-browser/request/NativeSignOutRequest.d.ts.map +1 -0
- package/dist-browser/request/RequestParameterBuilder.d.ts +217 -0
- package/dist-browser/request/RequestParameterBuilder.d.ts.map +1 -0
- package/dist-browser/request/RequestParameterBuilder.mjs +410 -0
- package/dist-browser/request/RequestParameterBuilder.mjs.map +1 -0
- package/dist-browser/request/ScopeSet.d.ts +83 -0
- package/dist-browser/request/ScopeSet.d.ts.map +1 -0
- package/dist-browser/request/ScopeSet.mjs +204 -0
- package/dist-browser/request/ScopeSet.mjs.map +1 -0
- package/dist-browser/request/StoreInCache.d.ts +9 -0
- package/dist-browser/request/StoreInCache.d.ts.map +1 -0
- package/dist-browser/response/AuthenticationResult.d.ts +42 -0
- package/dist-browser/response/AuthenticationResult.d.ts.map +1 -0
- package/dist-browser/response/AuthorizationCodePayload.d.ts +14 -0
- package/dist-browser/response/AuthorizationCodePayload.d.ts.map +1 -0
- package/dist-browser/response/AuthorizeResponse.d.ts +76 -0
- package/dist-browser/response/AuthorizeResponse.d.ts.map +1 -0
- package/dist-browser/response/DeviceCodeResponse.d.ts +26 -0
- package/dist-browser/response/DeviceCodeResponse.d.ts.map +1 -0
- package/dist-browser/response/ExternalTokenResponse.d.ts +16 -0
- package/dist-browser/response/ExternalTokenResponse.d.ts.map +1 -0
- package/dist-browser/response/IMDSBadResponse.d.ts +5 -0
- package/dist-browser/response/IMDSBadResponse.d.ts.map +1 -0
- package/dist-browser/response/ResponseHandler.d.ts +63 -0
- package/dist-browser/response/ResponseHandler.d.ts.map +1 -0
- package/dist-browser/response/ResponseHandler.mjs +349 -0
- package/dist-browser/response/ResponseHandler.mjs.map +1 -0
- package/dist-browser/response/ServerAuthorizationTokenResponse.d.ts +48 -0
- package/dist-browser/response/ServerAuthorizationTokenResponse.d.ts.map +1 -0
- package/dist-browser/telemetry/performance/IPerformanceClient.d.ts +30 -0
- package/dist-browser/telemetry/performance/IPerformanceClient.d.ts.map +1 -0
- package/dist-browser/telemetry/performance/IPerformanceMeasurement.d.ts +6 -0
- package/dist-browser/telemetry/performance/IPerformanceMeasurement.d.ts.map +1 -0
- package/dist-browser/telemetry/performance/PerformanceClient.d.ts +170 -0
- package/dist-browser/telemetry/performance/PerformanceClient.d.ts.map +1 -0
- package/dist-browser/telemetry/performance/PerformanceClient.mjs +490 -0
- package/dist-browser/telemetry/performance/PerformanceClient.mjs.map +1 -0
- package/dist-browser/telemetry/performance/PerformanceEvent.d.ts +286 -0
- package/dist-browser/telemetry/performance/PerformanceEvent.d.ts.map +1 -0
- package/dist-browser/telemetry/performance/PerformanceEvent.mjs +45 -0
- package/dist-browser/telemetry/performance/PerformanceEvent.mjs.map +1 -0
- package/dist-browser/telemetry/performance/PerformanceEvents.d.ts +66 -0
- package/dist-browser/telemetry/performance/PerformanceEvents.d.ts.map +1 -0
- package/dist-browser/telemetry/performance/PerformanceEvents.mjs +74 -0
- package/dist-browser/telemetry/performance/PerformanceEvents.mjs.map +1 -0
- package/dist-browser/telemetry/performance/StubPerformanceClient.d.ts +21 -0
- package/dist-browser/telemetry/performance/StubPerformanceClient.d.ts.map +1 -0
- package/dist-browser/telemetry/performance/StubPerformanceClient.mjs +59 -0
- package/dist-browser/telemetry/performance/StubPerformanceClient.mjs.map +1 -0
- package/dist-browser/telemetry/server/ServerTelemetryManager.d.ts +79 -0
- package/dist-browser/telemetry/server/ServerTelemetryManager.d.ts.map +1 -0
- package/dist-browser/telemetry/server/ServerTelemetryManager.mjs +266 -0
- package/dist-browser/telemetry/server/ServerTelemetryManager.mjs.map +1 -0
- package/dist-browser/telemetry/server/ServerTelemetryRequest.d.ts +9 -0
- package/dist-browser/telemetry/server/ServerTelemetryRequest.d.ts.map +1 -0
- package/dist-browser/url/IUri.d.ts +13 -0
- package/dist-browser/url/IUri.d.ts.map +1 -0
- package/dist-browser/url/UrlString.d.ts +44 -0
- package/dist-browser/url/UrlString.d.ts.map +1 -0
- package/dist-browser/url/UrlString.mjs +164 -0
- package/dist-browser/url/UrlString.mjs.map +1 -0
- package/dist-browser/utils/ClientAssertionUtils.d.ts +3 -0
- package/dist-browser/utils/ClientAssertionUtils.d.ts.map +1 -0
- package/dist-browser/utils/ClientAssertionUtils.mjs +21 -0
- package/dist-browser/utils/ClientAssertionUtils.mjs.map +1 -0
- package/dist-browser/utils/Constants.d.ts +283 -0
- package/dist-browser/utils/Constants.d.ts.map +1 -0
- package/dist-browser/utils/Constants.mjs +298 -0
- package/dist-browser/utils/Constants.mjs.map +1 -0
- package/dist-browser/utils/FunctionWrappers.d.ts +28 -0
- package/dist-browser/utils/FunctionWrappers.d.ts.map +1 -0
- package/dist-browser/utils/FunctionWrappers.mjs +98 -0
- package/dist-browser/utils/FunctionWrappers.mjs.map +1 -0
- package/dist-browser/utils/MsalTypes.d.ts +7 -0
- package/dist-browser/utils/MsalTypes.d.ts.map +1 -0
- package/dist-browser/utils/ProtocolUtils.d.ts +22 -0
- package/dist-browser/utils/ProtocolUtils.d.ts.map +1 -0
- package/dist-browser/utils/ProtocolUtils.mjs +74 -0
- package/dist-browser/utils/ProtocolUtils.mjs.map +1 -0
- package/dist-browser/utils/StateTypes.d.ts +15 -0
- package/dist-browser/utils/StateTypes.d.ts.map +1 -0
- package/dist-browser/utils/StringUtils.d.ts +41 -0
- package/dist-browser/utils/StringUtils.d.ts.map +1 -0
- package/dist-browser/utils/StringUtils.mjs +100 -0
- package/dist-browser/utils/StringUtils.mjs.map +1 -0
- package/dist-browser/utils/TimeUtils.d.ts +43 -0
- package/dist-browser/utils/TimeUtils.d.ts.map +1 -0
- package/dist-browser/utils/TimeUtils.mjs +76 -0
- package/dist-browser/utils/TimeUtils.mjs.map +1 -0
- package/dist-browser/utils/UrlUtils.d.ts +23 -0
- package/dist-browser/utils/UrlUtils.d.ts.map +1 -0
- package/dist-browser/utils/UrlUtils.mjs +115 -0
- package/dist-browser/utils/UrlUtils.mjs.map +1 -0
- package/lib/index-browser.cjs +2 -2
- package/lib/{index-node-Dwr2_mSO.js → index-node-A5mPbLhz.js} +3 -3
- package/lib/{index-node-Dwr2_mSO.js.map → index-node-A5mPbLhz.js.map} +1 -1
- package/lib/index-node.cjs +2 -2
- package/lib/index.cjs +2 -2
- package/lib/types/packageMetadata.d.ts +1 -1
- package/package.json +2 -1
- package/src/packageMetadata.ts +1 -1
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ClientConfiguration.d.ts","sourceRoot":"","sources":["../../src/config/ClientConfiguration.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAC9D,OAAO,EAAiC,OAAO,EAAE,MAAM,sBAAsB,CAAC;AAC9E,OAAO,EAAE,eAAe,EAAU,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAOxE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,2BAA2B,CAAC;AAC3D,OAAO,EAAE,kBAAkB,EAAE,MAAM,kCAAkC,CAAC;AACtE,OAAO,EAAE,YAAY,EAAuB,MAAM,0BAA0B,CAAC;AAC7E,OAAO,EAAE,sBAAsB,EAAE,MAAM,+CAA+C,CAAC;AACvF,OAAO,EAAE,YAAY,EAAE,MAAM,oCAAoC,CAAC;AAClE,OAAO,EAAE,uBAAuB,EAAE,MAAM,+CAA+C,CAAC;AACxF,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AAQpE;;;;;;;;;;;;;;GAcG;AACH,MAAM,MAAM,mBAAmB,GAAG;IAC9B,WAAW,EAAE,WAAW,CAAC;IACzB,aAAa,CAAC,EAAE,aAAa,CAAC;IAC9B,aAAa,CAAC,EAAE,aAAa,CAAC;IAC9B,gBAAgB,CAAC,EAAE,YAAY,CAAC;IAChC,gBAAgB,CAAC,EAAE,cAAc,CAAC;IAClC,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;IACtC,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,sBAAsB,CAAC,EAAE,sBAAsB,GAAG,IAAI,CAAC;IACvD,iBAAiB,CAAC,EAAE,YAAY,GAAG,IAAI,CAAC;IACxC,iBAAiB,CAAC,EAAE,uBAAuB,GAAG,IAAI,CAAC;CACtD,CAAC;AAEF,MAAM,MAAM,yBAAyB,GAAG;IACpC,WAAW,EAAE,QAAQ,CAAC,WAAW,CAAC,CAAC;IACnC,aAAa,EAAE,QAAQ,CAAC,aAAa,CAAC,CAAC;IACvC,aAAa,EAAE,QAAQ,CAAC,aAAa,CAAC,CAAC;IACvC,gBAAgB,EAAE,YAAY,CAAC;IAC/B,gBAAgB,EAAE,cAAc,CAAC;IACjC,eAAe,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;IACnC,WAAW,EAAE,WAAW,CAAC;IACzB,SAAS,EAAE,QAAQ,CAAC,gBAAgB,CAAC,CAAC;IACtC,sBAAsB,EAAE,sBAAsB,GAAG,IAAI,CAAC;IACtD,iBAAiB,EAAE,iBAAiB,CAAC;IACrC,iBAAiB,EAAE,YAAY,GAAG,IAAI,CAAC;IACvC,iBAAiB,EAAE,uBAAuB,GAAG,IAAI,CAAC;CACrD,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,MAAM,MAAM,WAAW,GAAG;IACtB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,SAAS,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,kBAAkB,CAAC,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;IACnC,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;IACtC,aAAa,CAAC,EAAE,OAAO,CAAC;CAC3B,CAAC;AAEF;;;;;GAKG;AACH,MAAM,MAAM,aAAa,GAAG;IACxB,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,oBAAoB,CAAC,EAAE,OAAO,CAAC;CAClC,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,aAAa,GAAG;IACxB,cAAc,CAAC,EAAE,eAAe,CAAC;IACjC,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;CAC1B,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG;IACtB,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,MAAM,CAAC;IACZ,EAAE,EAAE,MAAM,CAAC;CACd,CAAC;AAEF;;;;;GAKG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAC5B,kBAAkB,EAAE,kBAAkB,CAAC;IACvC,MAAM,CAAC,EAAE,MAAM,CAAC;CACnB,CAAC;AAEF,MAAM,MAAM,gBAAgB,GAAG;IAC3B,WAAW,EAAE,oBAAoB,CAAC;CACrC,CAAC;AAEF;;;;GAIG;AACH,MAAM,MAAM,oBAAoB,GAAG;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;CACtB,CAAC;AAEF,eAAO,MAAM,sBAAsB,EAAE,QAAQ,CAAC,aAAa,CAG1D,CAAC;AA4CF;;;;;;GAMG;AACH,wBAAgB,wBAAwB,CAAC,EACrC,WAAW,EAAE,eAAe,EAC5B,aAAa,EAAE,iBAAiB,EAChC,aAAa,EAAE,gBAAgB,EAC/B,gBAAgB,EAAE,qBAAqB,EACvC,gBAAgB,EAAE,qBAAqB,EACvC,eAAe,EAAE,oBAAoB,EACrC,iBAAiB,EAAE,iBAAiB,EACpC,WAAW,EAAE,WAAW,EACxB,SAAS,EAAE,SAAS,EACpB,sBAAsB,EAAE,sBAAsB,EAC9C,iBAAiB,EAAE,iBAAiB,EACpC,iBAAiB,EAAE,iBAAiB,GACvC,EAAE,mBAAmB,GAAG,yBAAyB,CA4BjD;AAeD;;;GAGG;AACH,wBAAgB,kBAAkB,CAAC,MAAM,EAAE,mBAAmB,GAAG,OAAO,CAIvE"}
|
|
@@ -0,0 +1,107 @@
|
|
|
1
|
+
/*! @azure/msal-common v16.0.2 2026-01-17 */
|
|
2
|
+
'use strict';
|
|
3
|
+
import { DEFAULT_CRYPTO_IMPLEMENTATION } from '../crypto/ICrypto.mjs';
|
|
4
|
+
import { LogLevel, Logger } from '../logger/Logger.mjs';
|
|
5
|
+
import { DEFAULT_TOKEN_RENEWAL_OFFSET_SEC, SKU, DEFAULT_COMMON_TENANT } from '../utils/Constants.mjs';
|
|
6
|
+
import { version } from '../packageMetadata.mjs';
|
|
7
|
+
import { AzureCloudInstance } from '../authority/AuthorityOptions.mjs';
|
|
8
|
+
import { DefaultStorageClass } from '../cache/CacheManager.mjs';
|
|
9
|
+
import { ProtocolMode } from '../authority/ProtocolMode.mjs';
|
|
10
|
+
import { createClientAuthError } from '../error/ClientAuthError.mjs';
|
|
11
|
+
import { StubPerformanceClient } from '../telemetry/performance/StubPerformanceClient.mjs';
|
|
12
|
+
import { methodNotImplemented } from '../error/ClientAuthErrorCodes.mjs';
|
|
13
|
+
|
|
14
|
+
/*
|
|
15
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
16
|
+
* Licensed under the MIT License.
|
|
17
|
+
*/
|
|
18
|
+
const DEFAULT_SYSTEM_OPTIONS = {
|
|
19
|
+
tokenRenewalOffsetSeconds: DEFAULT_TOKEN_RENEWAL_OFFSET_SEC,
|
|
20
|
+
preventCorsPreflight: false,
|
|
21
|
+
};
|
|
22
|
+
const DEFAULT_LOGGER_IMPLEMENTATION = {
|
|
23
|
+
loggerCallback: () => {
|
|
24
|
+
// allow users to not set loggerCallback
|
|
25
|
+
},
|
|
26
|
+
piiLoggingEnabled: false,
|
|
27
|
+
logLevel: LogLevel.Info,
|
|
28
|
+
correlationId: "",
|
|
29
|
+
};
|
|
30
|
+
const DEFAULT_NETWORK_IMPLEMENTATION = {
|
|
31
|
+
async sendGetRequestAsync() {
|
|
32
|
+
throw createClientAuthError(methodNotImplemented);
|
|
33
|
+
},
|
|
34
|
+
async sendPostRequestAsync() {
|
|
35
|
+
throw createClientAuthError(methodNotImplemented);
|
|
36
|
+
},
|
|
37
|
+
};
|
|
38
|
+
const DEFAULT_LIBRARY_INFO = {
|
|
39
|
+
sku: SKU,
|
|
40
|
+
version: version,
|
|
41
|
+
cpu: "",
|
|
42
|
+
os: "",
|
|
43
|
+
};
|
|
44
|
+
const DEFAULT_CLIENT_CREDENTIALS = {
|
|
45
|
+
clientSecret: "",
|
|
46
|
+
clientAssertion: undefined,
|
|
47
|
+
};
|
|
48
|
+
const DEFAULT_AZURE_CLOUD_OPTIONS = {
|
|
49
|
+
azureCloudInstance: AzureCloudInstance.None,
|
|
50
|
+
tenant: `${DEFAULT_COMMON_TENANT}`,
|
|
51
|
+
};
|
|
52
|
+
const DEFAULT_TELEMETRY_OPTIONS = {
|
|
53
|
+
application: {
|
|
54
|
+
appName: "",
|
|
55
|
+
appVersion: "",
|
|
56
|
+
},
|
|
57
|
+
};
|
|
58
|
+
/**
|
|
59
|
+
* Function that sets the default options when not explicitly configured from app developer
|
|
60
|
+
*
|
|
61
|
+
* @param Configuration
|
|
62
|
+
*
|
|
63
|
+
* @returns Configuration
|
|
64
|
+
*/
|
|
65
|
+
function buildClientConfiguration({ authOptions: userAuthOptions, systemOptions: userSystemOptions, loggerOptions: userLoggerOption, storageInterface: storageImplementation, networkInterface: networkImplementation, cryptoInterface: cryptoImplementation, clientCredentials: clientCredentials, libraryInfo: libraryInfo, telemetry: telemetry, serverTelemetryManager: serverTelemetryManager, persistencePlugin: persistencePlugin, serializableCache: serializableCache, }) {
|
|
66
|
+
const loggerOptions = {
|
|
67
|
+
...DEFAULT_LOGGER_IMPLEMENTATION,
|
|
68
|
+
...userLoggerOption,
|
|
69
|
+
};
|
|
70
|
+
return {
|
|
71
|
+
authOptions: buildAuthOptions(userAuthOptions),
|
|
72
|
+
systemOptions: { ...DEFAULT_SYSTEM_OPTIONS, ...userSystemOptions },
|
|
73
|
+
loggerOptions: loggerOptions,
|
|
74
|
+
storageInterface: storageImplementation ||
|
|
75
|
+
new DefaultStorageClass(userAuthOptions.clientId, DEFAULT_CRYPTO_IMPLEMENTATION, new Logger(loggerOptions), new StubPerformanceClient()),
|
|
76
|
+
networkInterface: networkImplementation || DEFAULT_NETWORK_IMPLEMENTATION,
|
|
77
|
+
cryptoInterface: cryptoImplementation || DEFAULT_CRYPTO_IMPLEMENTATION,
|
|
78
|
+
clientCredentials: clientCredentials || DEFAULT_CLIENT_CREDENTIALS,
|
|
79
|
+
libraryInfo: { ...DEFAULT_LIBRARY_INFO, ...libraryInfo },
|
|
80
|
+
telemetry: { ...DEFAULT_TELEMETRY_OPTIONS, ...telemetry },
|
|
81
|
+
serverTelemetryManager: serverTelemetryManager || null,
|
|
82
|
+
persistencePlugin: persistencePlugin || null,
|
|
83
|
+
serializableCache: serializableCache || null,
|
|
84
|
+
};
|
|
85
|
+
}
|
|
86
|
+
/**
|
|
87
|
+
* Construct authoptions from the client and platform passed values
|
|
88
|
+
* @param authOptions
|
|
89
|
+
*/
|
|
90
|
+
function buildAuthOptions(authOptions) {
|
|
91
|
+
return {
|
|
92
|
+
clientCapabilities: [],
|
|
93
|
+
azureCloudOptions: DEFAULT_AZURE_CLOUD_OPTIONS,
|
|
94
|
+
instanceAware: false,
|
|
95
|
+
...authOptions,
|
|
96
|
+
};
|
|
97
|
+
}
|
|
98
|
+
/**
|
|
99
|
+
* Returns true if config has protocolMode set to ProtocolMode.OIDC, false otherwise
|
|
100
|
+
* @param ClientConfiguration
|
|
101
|
+
*/
|
|
102
|
+
function isOidcProtocolMode(config) {
|
|
103
|
+
return (config.authOptions.authority.options.protocolMode === ProtocolMode.OIDC);
|
|
104
|
+
}
|
|
105
|
+
|
|
106
|
+
export { DEFAULT_SYSTEM_OPTIONS, buildClientConfiguration, isOidcProtocolMode };
|
|
107
|
+
//# sourceMappingURL=ClientConfiguration.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ClientConfiguration.mjs","sources":["../../src/config/ClientConfiguration.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.methodNotImplemented"],"mappings":";;;;;;;;;;;;;AAAA;;;AAGG;AAwJU,MAAA,sBAAsB,GAA4B;AAC3D,IAAA,yBAAyB,EAAE,gCAAgC;AAC3D,IAAA,oBAAoB,EAAE,KAAK;EAC7B;AAEF,MAAM,6BAA6B,GAA4B;IAC3D,cAAc,EAAE,MAAK;;KAEpB;AACD,IAAA,iBAAiB,EAAE,KAAK;IACxB,QAAQ,EAAE,QAAQ,CAAC,IAAI;AACvB,IAAA,aAAa,EAAE,EAAE;CACpB,CAAC;AAEF,MAAM,8BAA8B,GAAmB;AACnD,IAAA,MAAM,mBAAmB,GAAA;AACrB,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;AACD,IAAA,MAAM,oBAAoB,GAAA;AACtB,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;CACJ,CAAC;AAEF,MAAM,oBAAoB,GAAgB;AACtC,IAAA,GAAG,EAAE,GAAG;AACR,IAAA,OAAO,EAAE,OAAO;AAChB,IAAA,GAAG,EAAE,EAAE;AACP,IAAA,EAAE,EAAE,EAAE;CACT,CAAC;AAEF,MAAM,0BAA0B,GAAsB;AAClD,IAAA,YAAY,EAAE,EAAE;AAChB,IAAA,eAAe,EAAE,SAAS;CAC7B,CAAC;AAEF,MAAM,2BAA2B,GAAsB;IACnD,kBAAkB,EAAE,kBAAkB,CAAC,IAAI;IAC3C,MAAM,EAAE,CAAG,EAAA,qBAAqB,CAAE,CAAA;CACrC,CAAC;AAEF,MAAM,yBAAyB,GAA+B;AAC1D,IAAA,WAAW,EAAE;AACT,QAAA,OAAO,EAAE,EAAE;AACX,QAAA,UAAU,EAAE,EAAE;AACjB,KAAA;CACJ,CAAC;AAEF;;;;;;AAMG;AACG,SAAU,wBAAwB,CAAC,EACrC,WAAW,EAAE,eAAe,EAC5B,aAAa,EAAE,iBAAiB,EAChC,aAAa,EAAE,gBAAgB,EAC/B,gBAAgB,EAAE,qBAAqB,EACvC,gBAAgB,EAAE,qBAAqB,EACvC,eAAe,EAAE,oBAAoB,EACrC,iBAAiB,EAAE,iBAAiB,EACpC,WAAW,EAAE,WAAW,EACxB,SAAS,EAAE,SAAS,EACpB,sBAAsB,EAAE,sBAAsB,EAC9C,iBAAiB,EAAE,iBAAiB,EACpC,iBAAiB,EAAE,iBAAiB,GAClB,EAAA;AAClB,IAAA,MAAM,aAAa,GAAG;AAClB,QAAA,GAAG,6BAA6B;AAChC,QAAA,GAAG,gBAAgB;KACtB,CAAC;IAEF,OAAO;AACH,QAAA,WAAW,EAAE,gBAAgB,CAAC,eAAe,CAAC;AAC9C,QAAA,aAAa,EAAE,EAAE,GAAG,sBAAsB,EAAE,GAAG,iBAAiB,EAAE;AAClE,QAAA,aAAa,EAAE,aAAa;AAC5B,QAAA,gBAAgB,EACZ,qBAAqB;AACrB,YAAA,IAAI,mBAAmB,CACnB,eAAe,CAAC,QAAQ,EACxB,6BAA6B,EAC7B,IAAI,MAAM,CAAC,aAAa,CAAC,EACzB,IAAI,qBAAqB,EAAE,CAC9B;QACL,gBAAgB,EACZ,qBAAqB,IAAI,8BAA8B;QAC3D,eAAe,EAAE,oBAAoB,IAAI,6BAA6B;QACtE,iBAAiB,EAAE,iBAAiB,IAAI,0BAA0B;AAClE,QAAA,WAAW,EAAE,EAAE,GAAG,oBAAoB,EAAE,GAAG,WAAW,EAAE;AACxD,QAAA,SAAS,EAAE,EAAE,GAAG,yBAAyB,EAAE,GAAG,SAAS,EAAE;QACzD,sBAAsB,EAAE,sBAAsB,IAAI,IAAI;QACtD,iBAAiB,EAAE,iBAAiB,IAAI,IAAI;QAC5C,iBAAiB,EAAE,iBAAiB,IAAI,IAAI;KAC/C,CAAC;AACN,CAAC;AAED;;;AAGG;AACH,SAAS,gBAAgB,CAAC,WAAwB,EAAA;IAC9C,OAAO;AACH,QAAA,kBAAkB,EAAE,EAAE;AACtB,QAAA,iBAAiB,EAAE,2BAA2B;AAC9C,QAAA,aAAa,EAAE,KAAK;AACpB,QAAA,GAAG,WAAW;KACjB,CAAC;AACN,CAAC;AAED;;;AAGG;AACG,SAAU,kBAAkB,CAAC,MAA2B,EAAA;AAC1D,IAAA,QACI,MAAM,CAAC,WAAW,CAAC,SAAS,CAAC,OAAO,CAAC,YAAY,KAAK,YAAY,CAAC,IAAI,EACzE;AACN;;;;"}
|
|
@@ -0,0 +1,59 @@
|
|
|
1
|
+
export declare const CLIENT_ID = "client_id";
|
|
2
|
+
export declare const REDIRECT_URI = "redirect_uri";
|
|
3
|
+
export declare const RESPONSE_TYPE = "response_type";
|
|
4
|
+
export declare const RESPONSE_MODE = "response_mode";
|
|
5
|
+
export declare const GRANT_TYPE = "grant_type";
|
|
6
|
+
export declare const CLAIMS = "claims";
|
|
7
|
+
export declare const SCOPE = "scope";
|
|
8
|
+
export declare const ERROR = "error";
|
|
9
|
+
export declare const ERROR_DESCRIPTION = "error_description";
|
|
10
|
+
export declare const ACCESS_TOKEN = "access_token";
|
|
11
|
+
export declare const ID_TOKEN = "id_token";
|
|
12
|
+
export declare const REFRESH_TOKEN = "refresh_token";
|
|
13
|
+
export declare const EXPIRES_IN = "expires_in";
|
|
14
|
+
export declare const REFRESH_TOKEN_EXPIRES_IN = "refresh_token_expires_in";
|
|
15
|
+
export declare const STATE = "state";
|
|
16
|
+
export declare const NONCE = "nonce";
|
|
17
|
+
export declare const PROMPT = "prompt";
|
|
18
|
+
export declare const SESSION_STATE = "session_state";
|
|
19
|
+
export declare const CLIENT_INFO = "client_info";
|
|
20
|
+
export declare const CODE = "code";
|
|
21
|
+
export declare const CODE_CHALLENGE = "code_challenge";
|
|
22
|
+
export declare const CODE_CHALLENGE_METHOD = "code_challenge_method";
|
|
23
|
+
export declare const CODE_VERIFIER = "code_verifier";
|
|
24
|
+
export declare const CLIENT_REQUEST_ID = "client-request-id";
|
|
25
|
+
export declare const X_CLIENT_SKU = "x-client-SKU";
|
|
26
|
+
export declare const X_CLIENT_VER = "x-client-VER";
|
|
27
|
+
export declare const X_CLIENT_OS = "x-client-OS";
|
|
28
|
+
export declare const X_CLIENT_CPU = "x-client-CPU";
|
|
29
|
+
export declare const X_CLIENT_CURR_TELEM = "x-client-current-telemetry";
|
|
30
|
+
export declare const X_CLIENT_LAST_TELEM = "x-client-last-telemetry";
|
|
31
|
+
export declare const X_MS_LIB_CAPABILITY = "x-ms-lib-capability";
|
|
32
|
+
export declare const X_APP_NAME = "x-app-name";
|
|
33
|
+
export declare const X_APP_VER = "x-app-ver";
|
|
34
|
+
export declare const POST_LOGOUT_URI = "post_logout_redirect_uri";
|
|
35
|
+
export declare const ID_TOKEN_HINT = "id_token_hint";
|
|
36
|
+
export declare const DEVICE_CODE = "device_code";
|
|
37
|
+
export declare const CLIENT_SECRET = "client_secret";
|
|
38
|
+
export declare const CLIENT_ASSERTION = "client_assertion";
|
|
39
|
+
export declare const CLIENT_ASSERTION_TYPE = "client_assertion_type";
|
|
40
|
+
export declare const TOKEN_TYPE = "token_type";
|
|
41
|
+
export declare const REQ_CNF = "req_cnf";
|
|
42
|
+
export declare const OBO_ASSERTION = "assertion";
|
|
43
|
+
export declare const REQUESTED_TOKEN_USE = "requested_token_use";
|
|
44
|
+
export declare const ON_BEHALF_OF = "on_behalf_of";
|
|
45
|
+
export declare const FOCI = "foci";
|
|
46
|
+
export declare const CCS_HEADER = "X-AnchorMailbox";
|
|
47
|
+
export declare const RETURN_SPA_CODE = "return_spa_code";
|
|
48
|
+
export declare const NATIVE_BROKER = "nativebroker";
|
|
49
|
+
export declare const LOGOUT_HINT = "logout_hint";
|
|
50
|
+
export declare const SID = "sid";
|
|
51
|
+
export declare const LOGIN_HINT = "login_hint";
|
|
52
|
+
export declare const DOMAIN_HINT = "domain_hint";
|
|
53
|
+
export declare const X_CLIENT_EXTRA_SKU = "x-client-xtra-sku";
|
|
54
|
+
export declare const BROKER_CLIENT_ID = "brk_client_id";
|
|
55
|
+
export declare const BROKER_REDIRECT_URI = "brk_redirect_uri";
|
|
56
|
+
export declare const INSTANCE_AWARE = "instance_aware";
|
|
57
|
+
export declare const EAR_JWK = "ear_jwk";
|
|
58
|
+
export declare const EAR_JWE_CRYPTO = "ear_jwe_crypto";
|
|
59
|
+
//# sourceMappingURL=AADServerParamKeys.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"AADServerParamKeys.d.ts","sourceRoot":"","sources":["../../src/constants/AADServerParamKeys.ts"],"names":[],"mappings":"AAKA,eAAO,MAAM,SAAS,cAAc,CAAC;AACrC,eAAO,MAAM,YAAY,iBAAiB,CAAC;AAC3C,eAAO,MAAM,aAAa,kBAAkB,CAAC;AAC7C,eAAO,MAAM,aAAa,kBAAkB,CAAC;AAC7C,eAAO,MAAM,UAAU,eAAe,CAAC;AACvC,eAAO,MAAM,MAAM,WAAW,CAAC;AAC/B,eAAO,MAAM,KAAK,UAAU,CAAC;AAC7B,eAAO,MAAM,KAAK,UAAU,CAAC;AAC7B,eAAO,MAAM,iBAAiB,sBAAsB,CAAC;AACrD,eAAO,MAAM,YAAY,iBAAiB,CAAC;AAC3C,eAAO,MAAM,QAAQ,aAAa,CAAC;AACnC,eAAO,MAAM,aAAa,kBAAkB,CAAC;AAC7C,eAAO,MAAM,UAAU,eAAe,CAAC;AACvC,eAAO,MAAM,wBAAwB,6BAA6B,CAAC;AACnE,eAAO,MAAM,KAAK,UAAU,CAAC;AAC7B,eAAO,MAAM,KAAK,UAAU,CAAC;AAC7B,eAAO,MAAM,MAAM,WAAW,CAAC;AAC/B,eAAO,MAAM,aAAa,kBAAkB,CAAC;AAC7C,eAAO,MAAM,WAAW,gBAAgB,CAAC;AACzC,eAAO,MAAM,IAAI,SAAS,CAAC;AAC3B,eAAO,MAAM,cAAc,mBAAmB,CAAC;AAC/C,eAAO,MAAM,qBAAqB,0BAA0B,CAAC;AAC7D,eAAO,MAAM,aAAa,kBAAkB,CAAC;AAC7C,eAAO,MAAM,iBAAiB,sBAAsB,CAAC;AACrD,eAAO,MAAM,YAAY,iBAAiB,CAAC;AAC3C,eAAO,MAAM,YAAY,iBAAiB,CAAC;AAC3C,eAAO,MAAM,WAAW,gBAAgB,CAAC;AACzC,eAAO,MAAM,YAAY,iBAAiB,CAAC;AAC3C,eAAO,MAAM,mBAAmB,+BAA+B,CAAC;AAChE,eAAO,MAAM,mBAAmB,4BAA4B,CAAC;AAC7D,eAAO,MAAM,mBAAmB,wBAAwB,CAAC;AACzD,eAAO,MAAM,UAAU,eAAe,CAAC;AACvC,eAAO,MAAM,SAAS,cAAc,CAAC;AACrC,eAAO,MAAM,eAAe,6BAA6B,CAAC;AAC1D,eAAO,MAAM,aAAa,kBAAkB,CAAC;AAC7C,eAAO,MAAM,WAAW,gBAAgB,CAAC;AACzC,eAAO,MAAM,aAAa,kBAAkB,CAAC;AAC7C,eAAO,MAAM,gBAAgB,qBAAqB,CAAC;AACnD,eAAO,MAAM,qBAAqB,0BAA0B,CAAC;AAC7D,eAAO,MAAM,UAAU,eAAe,CAAC;AACvC,eAAO,MAAM,OAAO,YAAY,CAAC;AACjC,eAAO,MAAM,aAAa,cAAc,CAAC;AACzC,eAAO,MAAM,mBAAmB,wBAAwB,CAAC;AACzD,eAAO,MAAM,YAAY,iBAAiB,CAAC;AAC3C,eAAO,MAAM,IAAI,SAAS,CAAC;AAC3B,eAAO,MAAM,UAAU,oBAAoB,CAAC;AAC5C,eAAO,MAAM,eAAe,oBAAoB,CAAC;AACjD,eAAO,MAAM,aAAa,iBAAiB,CAAC;AAC5C,eAAO,MAAM,WAAW,gBAAgB,CAAC;AACzC,eAAO,MAAM,GAAG,QAAQ,CAAC;AACzB,eAAO,MAAM,UAAU,eAAe,CAAC;AACvC,eAAO,MAAM,WAAW,gBAAgB,CAAC;AACzC,eAAO,MAAM,kBAAkB,sBAAsB,CAAC;AACtD,eAAO,MAAM,gBAAgB,kBAAkB,CAAC;AAChD,eAAO,MAAM,mBAAmB,qBAAqB,CAAC;AACtD,eAAO,MAAM,cAAc,mBAAmB,CAAC;AAC/C,eAAO,MAAM,OAAO,YAAY,CAAC;AACjC,eAAO,MAAM,cAAc,mBAAmB,CAAC"}
|
|
@@ -0,0 +1,67 @@
|
|
|
1
|
+
/*! @azure/msal-common v16.0.2 2026-01-17 */
|
|
2
|
+
'use strict';
|
|
3
|
+
/*
|
|
4
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5
|
+
* Licensed under the MIT License.
|
|
6
|
+
*/
|
|
7
|
+
const CLIENT_ID = "client_id";
|
|
8
|
+
const REDIRECT_URI = "redirect_uri";
|
|
9
|
+
const RESPONSE_TYPE = "response_type";
|
|
10
|
+
const RESPONSE_MODE = "response_mode";
|
|
11
|
+
const GRANT_TYPE = "grant_type";
|
|
12
|
+
const CLAIMS = "claims";
|
|
13
|
+
const SCOPE = "scope";
|
|
14
|
+
const ERROR = "error";
|
|
15
|
+
const ERROR_DESCRIPTION = "error_description";
|
|
16
|
+
const ACCESS_TOKEN = "access_token";
|
|
17
|
+
const ID_TOKEN = "id_token";
|
|
18
|
+
const REFRESH_TOKEN = "refresh_token";
|
|
19
|
+
const EXPIRES_IN = "expires_in";
|
|
20
|
+
const REFRESH_TOKEN_EXPIRES_IN = "refresh_token_expires_in";
|
|
21
|
+
const STATE = "state";
|
|
22
|
+
const NONCE = "nonce";
|
|
23
|
+
const PROMPT = "prompt";
|
|
24
|
+
const SESSION_STATE = "session_state";
|
|
25
|
+
const CLIENT_INFO = "client_info";
|
|
26
|
+
const CODE = "code";
|
|
27
|
+
const CODE_CHALLENGE = "code_challenge";
|
|
28
|
+
const CODE_CHALLENGE_METHOD = "code_challenge_method";
|
|
29
|
+
const CODE_VERIFIER = "code_verifier";
|
|
30
|
+
const CLIENT_REQUEST_ID = "client-request-id";
|
|
31
|
+
const X_CLIENT_SKU = "x-client-SKU";
|
|
32
|
+
const X_CLIENT_VER = "x-client-VER";
|
|
33
|
+
const X_CLIENT_OS = "x-client-OS";
|
|
34
|
+
const X_CLIENT_CPU = "x-client-CPU";
|
|
35
|
+
const X_CLIENT_CURR_TELEM = "x-client-current-telemetry";
|
|
36
|
+
const X_CLIENT_LAST_TELEM = "x-client-last-telemetry";
|
|
37
|
+
const X_MS_LIB_CAPABILITY = "x-ms-lib-capability";
|
|
38
|
+
const X_APP_NAME = "x-app-name";
|
|
39
|
+
const X_APP_VER = "x-app-ver";
|
|
40
|
+
const POST_LOGOUT_URI = "post_logout_redirect_uri";
|
|
41
|
+
const ID_TOKEN_HINT = "id_token_hint";
|
|
42
|
+
const DEVICE_CODE = "device_code";
|
|
43
|
+
const CLIENT_SECRET = "client_secret";
|
|
44
|
+
const CLIENT_ASSERTION = "client_assertion";
|
|
45
|
+
const CLIENT_ASSERTION_TYPE = "client_assertion_type";
|
|
46
|
+
const TOKEN_TYPE = "token_type";
|
|
47
|
+
const REQ_CNF = "req_cnf";
|
|
48
|
+
const OBO_ASSERTION = "assertion";
|
|
49
|
+
const REQUESTED_TOKEN_USE = "requested_token_use";
|
|
50
|
+
const ON_BEHALF_OF = "on_behalf_of";
|
|
51
|
+
const FOCI = "foci";
|
|
52
|
+
const CCS_HEADER = "X-AnchorMailbox";
|
|
53
|
+
const RETURN_SPA_CODE = "return_spa_code";
|
|
54
|
+
const NATIVE_BROKER = "nativebroker";
|
|
55
|
+
const LOGOUT_HINT = "logout_hint";
|
|
56
|
+
const SID = "sid";
|
|
57
|
+
const LOGIN_HINT = "login_hint";
|
|
58
|
+
const DOMAIN_HINT = "domain_hint";
|
|
59
|
+
const X_CLIENT_EXTRA_SKU = "x-client-xtra-sku";
|
|
60
|
+
const BROKER_CLIENT_ID = "brk_client_id";
|
|
61
|
+
const BROKER_REDIRECT_URI = "brk_redirect_uri";
|
|
62
|
+
const INSTANCE_AWARE = "instance_aware";
|
|
63
|
+
const EAR_JWK = "ear_jwk";
|
|
64
|
+
const EAR_JWE_CRYPTO = "ear_jwe_crypto";
|
|
65
|
+
|
|
66
|
+
export { ACCESS_TOKEN, BROKER_CLIENT_ID, BROKER_REDIRECT_URI, CCS_HEADER, CLAIMS, CLIENT_ASSERTION, CLIENT_ASSERTION_TYPE, CLIENT_ID, CLIENT_INFO, CLIENT_REQUEST_ID, CLIENT_SECRET, CODE, CODE_CHALLENGE, CODE_CHALLENGE_METHOD, CODE_VERIFIER, DEVICE_CODE, DOMAIN_HINT, EAR_JWE_CRYPTO, EAR_JWK, ERROR, ERROR_DESCRIPTION, EXPIRES_IN, FOCI, GRANT_TYPE, ID_TOKEN, ID_TOKEN_HINT, INSTANCE_AWARE, LOGIN_HINT, LOGOUT_HINT, NATIVE_BROKER, NONCE, OBO_ASSERTION, ON_BEHALF_OF, POST_LOGOUT_URI, PROMPT, REDIRECT_URI, REFRESH_TOKEN, REFRESH_TOKEN_EXPIRES_IN, REQUESTED_TOKEN_USE, REQ_CNF, RESPONSE_MODE, RESPONSE_TYPE, RETURN_SPA_CODE, SCOPE, SESSION_STATE, SID, STATE, TOKEN_TYPE, X_APP_NAME, X_APP_VER, X_CLIENT_CPU, X_CLIENT_CURR_TELEM, X_CLIENT_EXTRA_SKU, X_CLIENT_LAST_TELEM, X_CLIENT_OS, X_CLIENT_SKU, X_CLIENT_VER, X_MS_LIB_CAPABILITY };
|
|
67
|
+
//# sourceMappingURL=AADServerParamKeys.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"AADServerParamKeys.mjs","sources":["../../src/constants/AADServerParamKeys.ts"],"sourcesContent":[null],"names":[],"mappings":";;AAAA;;;AAGG;AAEI,MAAM,SAAS,GAAG,YAAY;AAC9B,MAAM,YAAY,GAAG,eAAe;AACpC,MAAM,aAAa,GAAG,gBAAgB;AACtC,MAAM,aAAa,GAAG,gBAAgB;AACtC,MAAM,UAAU,GAAG,aAAa;AAChC,MAAM,MAAM,GAAG,SAAS;AACxB,MAAM,KAAK,GAAG,QAAQ;AACtB,MAAM,KAAK,GAAG,QAAQ;AACtB,MAAM,iBAAiB,GAAG,oBAAoB;AAC9C,MAAM,YAAY,GAAG,eAAe;AACpC,MAAM,QAAQ,GAAG,WAAW;AAC5B,MAAM,aAAa,GAAG,gBAAgB;AACtC,MAAM,UAAU,GAAG,aAAa;AAChC,MAAM,wBAAwB,GAAG,2BAA2B;AAC5D,MAAM,KAAK,GAAG,QAAQ;AACtB,MAAM,KAAK,GAAG,QAAQ;AACtB,MAAM,MAAM,GAAG,SAAS;AACxB,MAAM,aAAa,GAAG,gBAAgB;AACtC,MAAM,WAAW,GAAG,cAAc;AAClC,MAAM,IAAI,GAAG,OAAO;AACpB,MAAM,cAAc,GAAG,iBAAiB;AACxC,MAAM,qBAAqB,GAAG,wBAAwB;AACtD,MAAM,aAAa,GAAG,gBAAgB;AACtC,MAAM,iBAAiB,GAAG,oBAAoB;AAC9C,MAAM,YAAY,GAAG,eAAe;AACpC,MAAM,YAAY,GAAG,eAAe;AACpC,MAAM,WAAW,GAAG,cAAc;AAClC,MAAM,YAAY,GAAG,eAAe;AACpC,MAAM,mBAAmB,GAAG,6BAA6B;AACzD,MAAM,mBAAmB,GAAG,0BAA0B;AACtD,MAAM,mBAAmB,GAAG,sBAAsB;AAClD,MAAM,UAAU,GAAG,aAAa;AAChC,MAAM,SAAS,GAAG,YAAY;AAC9B,MAAM,eAAe,GAAG,2BAA2B;AACnD,MAAM,aAAa,GAAG,gBAAgB;AACtC,MAAM,WAAW,GAAG,cAAc;AAClC,MAAM,aAAa,GAAG,gBAAgB;AACtC,MAAM,gBAAgB,GAAG,mBAAmB;AAC5C,MAAM,qBAAqB,GAAG,wBAAwB;AACtD,MAAM,UAAU,GAAG,aAAa;AAChC,MAAM,OAAO,GAAG,UAAU;AAC1B,MAAM,aAAa,GAAG,YAAY;AAClC,MAAM,mBAAmB,GAAG,sBAAsB;AAClD,MAAM,YAAY,GAAG,eAAe;AACpC,MAAM,IAAI,GAAG,OAAO;AACpB,MAAM,UAAU,GAAG,kBAAkB;AACrC,MAAM,eAAe,GAAG,kBAAkB;AAC1C,MAAM,aAAa,GAAG,eAAe;AACrC,MAAM,WAAW,GAAG,cAAc;AAClC,MAAM,GAAG,GAAG,MAAM;AAClB,MAAM,UAAU,GAAG,aAAa;AAChC,MAAM,WAAW,GAAG,cAAc;AAClC,MAAM,kBAAkB,GAAG,oBAAoB;AAC/C,MAAM,gBAAgB,GAAG,gBAAgB;AACzC,MAAM,mBAAmB,GAAG,mBAAmB;AAC/C,MAAM,cAAc,GAAG,iBAAiB;AACxC,MAAM,OAAO,GAAG,UAAU;AAC1B,MAAM,cAAc,GAAG;;;;"}
|
|
@@ -0,0 +1,71 @@
|
|
|
1
|
+
import type { BaseAuthRequest } from "../request/BaseAuthRequest.js";
|
|
2
|
+
import type { ShrOptions, SignedHttpRequest } from "./SignedHttpRequest.js";
|
|
3
|
+
/**
|
|
4
|
+
* The PkceCodes type describes the structure
|
|
5
|
+
* of objects that contain PKCE code
|
|
6
|
+
* challenge and verifier pairs
|
|
7
|
+
*/
|
|
8
|
+
export type PkceCodes = {
|
|
9
|
+
verifier: string;
|
|
10
|
+
challenge: string;
|
|
11
|
+
};
|
|
12
|
+
export type SignedHttpRequestParameters = Pick<BaseAuthRequest, "resourceRequestMethod" | "resourceRequestUri" | "shrClaims" | "shrNonce" | "shrOptions"> & {
|
|
13
|
+
correlationId: string;
|
|
14
|
+
};
|
|
15
|
+
/**
|
|
16
|
+
* Interface for crypto functions used by library
|
|
17
|
+
*/
|
|
18
|
+
export interface ICrypto {
|
|
19
|
+
/**
|
|
20
|
+
* Creates a guid randomly.
|
|
21
|
+
*/
|
|
22
|
+
createNewGuid(): string;
|
|
23
|
+
/**
|
|
24
|
+
* base64 Encode string
|
|
25
|
+
* @param input
|
|
26
|
+
*/
|
|
27
|
+
base64Encode(input: string): string;
|
|
28
|
+
/**
|
|
29
|
+
* base64 decode string
|
|
30
|
+
* @param input
|
|
31
|
+
*/
|
|
32
|
+
base64Decode(input: string): string;
|
|
33
|
+
/**
|
|
34
|
+
* base64 URL safe encoded string
|
|
35
|
+
*/
|
|
36
|
+
base64UrlEncode(input: string): string;
|
|
37
|
+
/**
|
|
38
|
+
* Stringifies and base64Url encodes input public key
|
|
39
|
+
* @param inputKid
|
|
40
|
+
* @returns Base64Url encoded public key
|
|
41
|
+
*/
|
|
42
|
+
encodeKid(inputKid: string): string;
|
|
43
|
+
/**
|
|
44
|
+
* Generates an JWK RSA S256 Thumbprint
|
|
45
|
+
* @param request
|
|
46
|
+
*/
|
|
47
|
+
getPublicKeyThumbprint(request: SignedHttpRequestParameters): Promise<string>;
|
|
48
|
+
/**
|
|
49
|
+
* Removes cryptographic keypair from key store matching the keyId passed in
|
|
50
|
+
* @param kid
|
|
51
|
+
* @param correlationId
|
|
52
|
+
*/
|
|
53
|
+
removeTokenBindingKey(kid: string, correlationId: string): Promise<void>;
|
|
54
|
+
/**
|
|
55
|
+
* Removes all cryptographic keys from IndexedDB storage
|
|
56
|
+
* @param correlationId
|
|
57
|
+
*/
|
|
58
|
+
clearKeystore(correlationId: string): Promise<boolean>;
|
|
59
|
+
/**
|
|
60
|
+
* Returns a signed proof-of-possession token with a given acces token that contains a cnf claim with the required kid.
|
|
61
|
+
* @param accessToken
|
|
62
|
+
*/
|
|
63
|
+
signJwt(payload: SignedHttpRequest, kid: string, shrOptions?: ShrOptions, correlationId?: string): Promise<string>;
|
|
64
|
+
/**
|
|
65
|
+
* Returns the SHA-256 hash of an input string
|
|
66
|
+
* @param plainText
|
|
67
|
+
*/
|
|
68
|
+
hashString(plainText: string): Promise<string>;
|
|
69
|
+
}
|
|
70
|
+
export declare const DEFAULT_CRYPTO_IMPLEMENTATION: ICrypto;
|
|
71
|
+
//# sourceMappingURL=ICrypto.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ICrypto.d.ts","sourceRoot":"","sources":["../../src/crypto/ICrypto.ts"],"names":[],"mappings":"AASA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AACrE,OAAO,KAAK,EAAE,UAAU,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAE5E;;;;GAIG;AACH,MAAM,MAAM,SAAS,GAAG;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF,MAAM,MAAM,2BAA2B,GAAG,IAAI,CAC1C,eAAe,EACb,uBAAuB,GACvB,oBAAoB,GACpB,WAAW,GACX,UAAU,GACV,YAAY,CACjB,GAAG;IACA,aAAa,EAAE,MAAM,CAAC;CACzB,CAAC;AAEF;;GAEG;AACH,MAAM,WAAW,OAAO;IACpB;;OAEG;IACH,aAAa,IAAI,MAAM,CAAC;IACxB;;;OAGG;IACH,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAAC;IACpC;;;OAGG;IACH,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAAC;IACpC;;OAEG;IACH,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAAC;IACvC;;;;OAIG;IACH,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAAC;IACpC;;;OAGG;IACH,sBAAsB,CAClB,OAAO,EAAE,2BAA2B,GACrC,OAAO,CAAC,MAAM,CAAC,CAAC;IACnB;;;;OAIG;IACH,qBAAqB,CAAC,GAAG,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACzE;;;OAGG;IACH,aAAa,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IACvD;;;OAGG;IACH,OAAO,CACH,OAAO,EAAE,iBAAiB,EAC1B,GAAG,EAAE,MAAM,EACX,UAAU,CAAC,EAAE,UAAU,EACvB,aAAa,CAAC,EAAE,MAAM,GACvB,OAAO,CAAC,MAAM,CAAC,CAAC;IACnB;;;OAGG;IACH,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CAClD;AAED,eAAO,MAAM,6BAA6B,EAAE,OA+B3C,CAAC"}
|
|
@@ -0,0 +1,44 @@
|
|
|
1
|
+
/*! @azure/msal-common v16.0.2 2026-01-17 */
|
|
2
|
+
'use strict';
|
|
3
|
+
import { createClientAuthError } from '../error/ClientAuthError.mjs';
|
|
4
|
+
import { methodNotImplemented } from '../error/ClientAuthErrorCodes.mjs';
|
|
5
|
+
|
|
6
|
+
/*
|
|
7
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
8
|
+
* Licensed under the MIT License.
|
|
9
|
+
*/
|
|
10
|
+
const DEFAULT_CRYPTO_IMPLEMENTATION = {
|
|
11
|
+
createNewGuid: () => {
|
|
12
|
+
throw createClientAuthError(methodNotImplemented);
|
|
13
|
+
},
|
|
14
|
+
base64Decode: () => {
|
|
15
|
+
throw createClientAuthError(methodNotImplemented);
|
|
16
|
+
},
|
|
17
|
+
base64Encode: () => {
|
|
18
|
+
throw createClientAuthError(methodNotImplemented);
|
|
19
|
+
},
|
|
20
|
+
base64UrlEncode: () => {
|
|
21
|
+
throw createClientAuthError(methodNotImplemented);
|
|
22
|
+
},
|
|
23
|
+
encodeKid: () => {
|
|
24
|
+
throw createClientAuthError(methodNotImplemented);
|
|
25
|
+
},
|
|
26
|
+
async getPublicKeyThumbprint() {
|
|
27
|
+
throw createClientAuthError(methodNotImplemented);
|
|
28
|
+
},
|
|
29
|
+
async removeTokenBindingKey() {
|
|
30
|
+
throw createClientAuthError(methodNotImplemented);
|
|
31
|
+
},
|
|
32
|
+
async clearKeystore() {
|
|
33
|
+
throw createClientAuthError(methodNotImplemented);
|
|
34
|
+
},
|
|
35
|
+
async signJwt() {
|
|
36
|
+
throw createClientAuthError(methodNotImplemented);
|
|
37
|
+
},
|
|
38
|
+
async hashString() {
|
|
39
|
+
throw createClientAuthError(methodNotImplemented);
|
|
40
|
+
},
|
|
41
|
+
};
|
|
42
|
+
|
|
43
|
+
export { DEFAULT_CRYPTO_IMPLEMENTATION };
|
|
44
|
+
//# sourceMappingURL=ICrypto.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ICrypto.mjs","sources":["../../src/crypto/ICrypto.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.methodNotImplemented"],"mappings":";;;;;AAAA;;;AAGG;AA6FU,MAAA,6BAA6B,GAAY;IAClD,aAAa,EAAE,MAAa;AACxB,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;IACD,YAAY,EAAE,MAAa;AACvB,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;IACD,YAAY,EAAE,MAAa;AACvB,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;IACD,eAAe,EAAE,MAAa;AAC1B,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;IACD,SAAS,EAAE,MAAa;AACpB,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;AACD,IAAA,MAAM,sBAAsB,GAAA;AACxB,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;AACD,IAAA,MAAM,qBAAqB,GAAA;AACvB,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;AACD,IAAA,MAAM,aAAa,GAAA;AACf,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;AACD,IAAA,MAAM,OAAO,GAAA;AACT,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;AACD,IAAA,MAAM,UAAU,GAAA;AACZ,QAAA,MAAM,qBAAqB,CAACA,oBAAyC,CAAC,CAAC;KAC1E;;;;;"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"IGuidGenerator.d.ts","sourceRoot":"","sources":["../../src/crypto/IGuidGenerator.ts"],"names":[],"mappings":"AAKA,MAAM,WAAW,cAAc;IAC3B,YAAY,IAAI,MAAM,CAAC;IACvB,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC;CACjC"}
|
|
@@ -0,0 +1,23 @@
|
|
|
1
|
+
import { JsonWebTokenTypes } from "../utils/Constants.js";
|
|
2
|
+
export type JoseHeaderOptions = {
|
|
3
|
+
typ?: JsonWebTokenTypes;
|
|
4
|
+
alg?: string;
|
|
5
|
+
kid?: string;
|
|
6
|
+
};
|
|
7
|
+
/** @internal */
|
|
8
|
+
export declare class JoseHeader {
|
|
9
|
+
typ?: JsonWebTokenTypes;
|
|
10
|
+
alg?: string;
|
|
11
|
+
kid?: string;
|
|
12
|
+
constructor(options: JoseHeaderOptions);
|
|
13
|
+
/**
|
|
14
|
+
* Builds SignedHttpRequest formatted JOSE Header from the
|
|
15
|
+
* JOSE Header options provided or previously set on the object and returns
|
|
16
|
+
* the stringified header object.
|
|
17
|
+
* Throws if keyId or algorithm aren't provided since they are required for Access Token Binding.
|
|
18
|
+
* @param shrHeaderOptions
|
|
19
|
+
* @returns
|
|
20
|
+
*/
|
|
21
|
+
static getShrHeaderString(shrHeaderOptions: JoseHeaderOptions): string;
|
|
22
|
+
}
|
|
23
|
+
//# sourceMappingURL=JoseHeader.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"JoseHeader.d.ts","sourceRoot":"","sources":["../../src/crypto/JoseHeader.ts"],"names":[],"mappings":"AASA,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAE1D,MAAM,MAAM,iBAAiB,GAAG;IAC5B,GAAG,CAAC,EAAE,iBAAiB,CAAC;IACxB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;CAChB,CAAC;AAEF,gBAAgB;AAChB,qBAAa,UAAU;IACZ,GAAG,CAAC,EAAE,iBAAiB,CAAC;IACxB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;gBAER,OAAO,EAAE,iBAAiB;IAMtC;;;;;;;OAOG;IACH,MAAM,CAAC,kBAAkB,CAAC,gBAAgB,EAAE,iBAAiB,GAAG,MAAM;CAoBzE"}
|
|
@@ -0,0 +1,46 @@
|
|
|
1
|
+
/*! @azure/msal-common v16.0.2 2026-01-17 */
|
|
2
|
+
'use strict';
|
|
3
|
+
import { createJoseHeaderError } from '../error/JoseHeaderError.mjs';
|
|
4
|
+
import { JsonWebTokenTypes } from '../utils/Constants.mjs';
|
|
5
|
+
import { missingKidError, missingAlgError } from '../error/JoseHeaderErrorCodes.mjs';
|
|
6
|
+
|
|
7
|
+
/*
|
|
8
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
9
|
+
* Licensed under the MIT License.
|
|
10
|
+
*/
|
|
11
|
+
/** @internal */
|
|
12
|
+
class JoseHeader {
|
|
13
|
+
constructor(options) {
|
|
14
|
+
this.typ = options.typ;
|
|
15
|
+
this.alg = options.alg;
|
|
16
|
+
this.kid = options.kid;
|
|
17
|
+
}
|
|
18
|
+
/**
|
|
19
|
+
* Builds SignedHttpRequest formatted JOSE Header from the
|
|
20
|
+
* JOSE Header options provided or previously set on the object and returns
|
|
21
|
+
* the stringified header object.
|
|
22
|
+
* Throws if keyId or algorithm aren't provided since they are required for Access Token Binding.
|
|
23
|
+
* @param shrHeaderOptions
|
|
24
|
+
* @returns
|
|
25
|
+
*/
|
|
26
|
+
static getShrHeaderString(shrHeaderOptions) {
|
|
27
|
+
// KeyID is required on the SHR header
|
|
28
|
+
if (!shrHeaderOptions.kid) {
|
|
29
|
+
throw createJoseHeaderError(missingKidError);
|
|
30
|
+
}
|
|
31
|
+
// Alg is required on the SHR header
|
|
32
|
+
if (!shrHeaderOptions.alg) {
|
|
33
|
+
throw createJoseHeaderError(missingAlgError);
|
|
34
|
+
}
|
|
35
|
+
const shrHeader = new JoseHeader({
|
|
36
|
+
// Access Token PoP headers must have type pop, but the type header can be overriden for special cases
|
|
37
|
+
typ: shrHeaderOptions.typ || JsonWebTokenTypes.Pop,
|
|
38
|
+
kid: shrHeaderOptions.kid,
|
|
39
|
+
alg: shrHeaderOptions.alg,
|
|
40
|
+
});
|
|
41
|
+
return JSON.stringify(shrHeader);
|
|
42
|
+
}
|
|
43
|
+
}
|
|
44
|
+
|
|
45
|
+
export { JoseHeader };
|
|
46
|
+
//# sourceMappingURL=JoseHeader.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"JoseHeader.mjs","sources":["../../src/crypto/JoseHeader.ts"],"sourcesContent":[null],"names":["JoseHeaderErrorCodes.missingKidError","JoseHeaderErrorCodes.missingAlgError"],"mappings":";;;;;;AAAA;;;AAGG;AAcH;MACa,UAAU,CAAA;AAKnB,IAAA,WAAA,CAAY,OAA0B,EAAA;AAClC,QAAA,IAAI,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;AACvB,QAAA,IAAI,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;AACvB,QAAA,IAAI,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;KAC1B;AAED;;;;;;;AAOG;IACH,OAAO,kBAAkB,CAAC,gBAAmC,EAAA;;AAEzD,QAAA,IAAI,CAAC,gBAAgB,CAAC,GAAG,EAAE;AACvB,YAAA,MAAM,qBAAqB,CAACA,eAAoC,CAAC,CAAC;AACrE,SAAA;;AAGD,QAAA,IAAI,CAAC,gBAAgB,CAAC,GAAG,EAAE;AACvB,YAAA,MAAM,qBAAqB,CAACC,eAAoC,CAAC,CAAC;AACrE,SAAA;AAED,QAAA,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC;;AAE7B,YAAA,GAAG,EAAE,gBAAgB,CAAC,GAAG,IAAI,iBAAiB,CAAC,GAAG;YAClD,GAAG,EAAE,gBAAgB,CAAC,GAAG;YACzB,GAAG,EAAE,gBAAgB,CAAC,GAAG;AAC5B,SAAA,CAAC,CAAC;AAEH,QAAA,OAAO,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;KACpC;AACJ;;;;"}
|
|
@@ -0,0 +1,60 @@
|
|
|
1
|
+
import { ICrypto, SignedHttpRequestParameters } from "./ICrypto.js";
|
|
2
|
+
import { IPerformanceClient } from "../telemetry/performance/IPerformanceClient.js";
|
|
3
|
+
import { Logger } from "../logger/Logger.js";
|
|
4
|
+
/**
|
|
5
|
+
* See eSTS docs for more info.
|
|
6
|
+
* - A kid element, with the value containing an RFC 7638-compliant JWK thumbprint that is base64 encoded.
|
|
7
|
+
* - xms_ksl element, representing the storage location of the key's secret component on the client device. One of two values:
|
|
8
|
+
* - sw: software storage
|
|
9
|
+
* - uhw: hardware storage
|
|
10
|
+
*/
|
|
11
|
+
type ReqCnf = {
|
|
12
|
+
kid: string;
|
|
13
|
+
xms_ksl: KeyLocation;
|
|
14
|
+
};
|
|
15
|
+
export type ReqCnfData = {
|
|
16
|
+
kid: string;
|
|
17
|
+
reqCnfString: string;
|
|
18
|
+
};
|
|
19
|
+
declare const KeyLocation: {
|
|
20
|
+
readonly SW: "sw";
|
|
21
|
+
readonly UHW: "uhw";
|
|
22
|
+
};
|
|
23
|
+
export type KeyLocation = (typeof KeyLocation)[keyof typeof KeyLocation];
|
|
24
|
+
/** @internal */
|
|
25
|
+
export declare class PopTokenGenerator {
|
|
26
|
+
private cryptoUtils;
|
|
27
|
+
private performanceClient;
|
|
28
|
+
constructor(cryptoUtils: ICrypto, performanceClient: IPerformanceClient);
|
|
29
|
+
/**
|
|
30
|
+
* Generates the req_cnf validated at the RP in the POP protocol for SHR parameters
|
|
31
|
+
* and returns an object containing the keyid, the full req_cnf string and the req_cnf string hash
|
|
32
|
+
* @param request
|
|
33
|
+
* @returns
|
|
34
|
+
*/
|
|
35
|
+
generateCnf(request: SignedHttpRequestParameters, logger: Logger): Promise<ReqCnfData>;
|
|
36
|
+
/**
|
|
37
|
+
* Generates key_id for a SHR token request
|
|
38
|
+
* @param request
|
|
39
|
+
* @returns
|
|
40
|
+
*/
|
|
41
|
+
generateKid(request: SignedHttpRequestParameters): Promise<ReqCnf>;
|
|
42
|
+
/**
|
|
43
|
+
* Signs the POP access_token with the local generated key-pair
|
|
44
|
+
* @param accessToken
|
|
45
|
+
* @param request
|
|
46
|
+
* @returns
|
|
47
|
+
*/
|
|
48
|
+
signPopToken(accessToken: string, keyId: string, request: SignedHttpRequestParameters): Promise<string>;
|
|
49
|
+
/**
|
|
50
|
+
* Utility function to generate the signed JWT for an access_token
|
|
51
|
+
* @param payload
|
|
52
|
+
* @param kid
|
|
53
|
+
* @param request
|
|
54
|
+
* @param claims
|
|
55
|
+
* @returns
|
|
56
|
+
*/
|
|
57
|
+
signPayload(payload: string, keyId: string, request: SignedHttpRequestParameters, claims?: object): Promise<string>;
|
|
58
|
+
}
|
|
59
|
+
export {};
|
|
60
|
+
//# sourceMappingURL=PopTokenGenerator.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"PopTokenGenerator.d.ts","sourceRoot":"","sources":["../../src/crypto/PopTokenGenerator.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,OAAO,EAAE,2BAA2B,EAAE,MAAM,cAAc,CAAC;AAGpE,OAAO,EAAE,kBAAkB,EAAE,MAAM,gDAAgD,CAAC;AAGpF,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAE7C;;;;;;GAMG;AACH,KAAK,MAAM,GAAG;IACV,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,WAAW,CAAC;CACxB,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,YAAY,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF,QAAA,MAAM,WAAW;;;CAGP,CAAC;AACX,MAAM,MAAM,WAAW,GAAG,CAAC,OAAO,WAAW,CAAC,CAAC,MAAM,OAAO,WAAW,CAAC,CAAC;AAEzE,gBAAgB;AAChB,qBAAa,iBAAiB;IAC1B,OAAO,CAAC,WAAW,CAAU;IAC7B,OAAO,CAAC,iBAAiB,CAAqB;gBAElC,WAAW,EAAE,OAAO,EAAE,iBAAiB,EAAE,kBAAkB;IAKvE;;;;;OAKG;IACG,WAAW,CACb,OAAO,EAAE,2BAA2B,EACpC,MAAM,EAAE,MAAM,GACf,OAAO,CAAC,UAAU,CAAC;IAkBtB;;;;OAIG;IACG,WAAW,CAAC,OAAO,EAAE,2BAA2B,GAAG,OAAO,CAAC,MAAM,CAAC;IAWxE;;;;;OAKG;IACG,YAAY,CACd,WAAW,EAAE,MAAM,EACnB,KAAK,EAAE,MAAM,EACb,OAAO,EAAE,2BAA2B,GACrC,OAAO,CAAC,MAAM,CAAC;IAIlB;;;;;;;OAOG;IACG,WAAW,CACb,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,MAAM,EACb,OAAO,EAAE,2BAA2B,EACpC,MAAM,CAAC,EAAE,MAAM,GAChB,OAAO,CAAC,MAAM,CAAC;CAiCrB"}
|
|
@@ -0,0 +1,87 @@
|
|
|
1
|
+
/*! @azure/msal-common v16.0.2 2026-01-17 */
|
|
2
|
+
'use strict';
|
|
3
|
+
import { nowSeconds } from '../utils/TimeUtils.mjs';
|
|
4
|
+
import { UrlString } from '../url/UrlString.mjs';
|
|
5
|
+
import { PopTokenGenerateCnf } from '../telemetry/performance/PerformanceEvents.mjs';
|
|
6
|
+
import { invokeAsync } from '../utils/FunctionWrappers.mjs';
|
|
7
|
+
|
|
8
|
+
/*
|
|
9
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
10
|
+
* Licensed under the MIT License.
|
|
11
|
+
*/
|
|
12
|
+
const KeyLocation = {
|
|
13
|
+
SW: "sw"};
|
|
14
|
+
/** @internal */
|
|
15
|
+
class PopTokenGenerator {
|
|
16
|
+
constructor(cryptoUtils, performanceClient) {
|
|
17
|
+
this.cryptoUtils = cryptoUtils;
|
|
18
|
+
this.performanceClient = performanceClient;
|
|
19
|
+
}
|
|
20
|
+
/**
|
|
21
|
+
* Generates the req_cnf validated at the RP in the POP protocol for SHR parameters
|
|
22
|
+
* and returns an object containing the keyid, the full req_cnf string and the req_cnf string hash
|
|
23
|
+
* @param request
|
|
24
|
+
* @returns
|
|
25
|
+
*/
|
|
26
|
+
async generateCnf(request, logger) {
|
|
27
|
+
const reqCnf = await invokeAsync(this.generateKid.bind(this), PopTokenGenerateCnf, logger, this.performanceClient, request.correlationId)(request);
|
|
28
|
+
const reqCnfString = this.cryptoUtils.base64UrlEncode(JSON.stringify(reqCnf));
|
|
29
|
+
return {
|
|
30
|
+
kid: reqCnf.kid,
|
|
31
|
+
reqCnfString,
|
|
32
|
+
};
|
|
33
|
+
}
|
|
34
|
+
/**
|
|
35
|
+
* Generates key_id for a SHR token request
|
|
36
|
+
* @param request
|
|
37
|
+
* @returns
|
|
38
|
+
*/
|
|
39
|
+
async generateKid(request) {
|
|
40
|
+
const kidThumbprint = await this.cryptoUtils.getPublicKeyThumbprint(request);
|
|
41
|
+
return {
|
|
42
|
+
kid: kidThumbprint,
|
|
43
|
+
xms_ksl: KeyLocation.SW,
|
|
44
|
+
};
|
|
45
|
+
}
|
|
46
|
+
/**
|
|
47
|
+
* Signs the POP access_token with the local generated key-pair
|
|
48
|
+
* @param accessToken
|
|
49
|
+
* @param request
|
|
50
|
+
* @returns
|
|
51
|
+
*/
|
|
52
|
+
async signPopToken(accessToken, keyId, request) {
|
|
53
|
+
return this.signPayload(accessToken, keyId, request);
|
|
54
|
+
}
|
|
55
|
+
/**
|
|
56
|
+
* Utility function to generate the signed JWT for an access_token
|
|
57
|
+
* @param payload
|
|
58
|
+
* @param kid
|
|
59
|
+
* @param request
|
|
60
|
+
* @param claims
|
|
61
|
+
* @returns
|
|
62
|
+
*/
|
|
63
|
+
async signPayload(payload, keyId, request, claims) {
|
|
64
|
+
// Deconstruct request to extract SHR parameters
|
|
65
|
+
const { resourceRequestMethod, resourceRequestUri, shrClaims, shrNonce, shrOptions, } = request;
|
|
66
|
+
const resourceUrlString = resourceRequestUri
|
|
67
|
+
? new UrlString(resourceRequestUri)
|
|
68
|
+
: undefined;
|
|
69
|
+
const resourceUrlComponents = resourceUrlString?.getUrlComponents();
|
|
70
|
+
return this.cryptoUtils.signJwt({
|
|
71
|
+
at: payload,
|
|
72
|
+
ts: nowSeconds(),
|
|
73
|
+
m: resourceRequestMethod?.toUpperCase(),
|
|
74
|
+
u: resourceUrlComponents?.HostNameAndPort,
|
|
75
|
+
nonce: shrNonce || this.cryptoUtils.createNewGuid(),
|
|
76
|
+
p: resourceUrlComponents?.AbsolutePath,
|
|
77
|
+
q: resourceUrlComponents?.QueryString
|
|
78
|
+
? [[], resourceUrlComponents.QueryString]
|
|
79
|
+
: undefined,
|
|
80
|
+
client_claims: shrClaims || undefined,
|
|
81
|
+
...claims,
|
|
82
|
+
}, keyId, shrOptions, request.correlationId);
|
|
83
|
+
}
|
|
84
|
+
}
|
|
85
|
+
|
|
86
|
+
export { PopTokenGenerator };
|
|
87
|
+
//# sourceMappingURL=PopTokenGenerator.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"PopTokenGenerator.mjs","sources":["../../src/crypto/PopTokenGenerator.ts"],"sourcesContent":[null],"names":["PerformanceEvents.PopTokenGenerateCnf","TimeUtils.nowSeconds"],"mappings":";;;;;;;AAAA;;;AAGG;AA2BH,MAAM,WAAW,GAAG;AAChB,IAAA,EAAE,EAAE,KAEE,CAAC;AAGX;MACa,iBAAiB,CAAA;IAI1B,WAAY,CAAA,WAAoB,EAAE,iBAAqC,EAAA;AACnE,QAAA,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;AAC/B,QAAA,IAAI,CAAC,iBAAiB,GAAG,iBAAiB,CAAC;KAC9C;AAED;;;;;AAKG;AACH,IAAA,MAAM,WAAW,CACb,OAAoC,EACpC,MAAc,EAAA;AAEd,QAAA,MAAM,MAAM,GAAG,MAAM,WAAW,CAC5B,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAC3BA,mBAAqC,EACrC,MAAM,EACN,IAAI,CAAC,iBAAiB,EACtB,OAAO,CAAC,aAAa,CACxB,CAAC,OAAO,CAAC,CAAC;AACX,QAAA,MAAM,YAAY,GAAW,IAAI,CAAC,WAAW,CAAC,eAAe,CACzD,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CACzB,CAAC;QAEF,OAAO;YACH,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,YAAY;SACf,CAAC;KACL;AAED;;;;AAIG;IACH,MAAM,WAAW,CAAC,OAAoC,EAAA;QAClD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,sBAAsB,CAC/D,OAAO,CACV,CAAC;QAEF,OAAO;AACH,YAAA,GAAG,EAAE,aAAa;YAClB,OAAO,EAAE,WAAW,CAAC,EAAE;SAC1B,CAAC;KACL;AAED;;;;;AAKG;AACH,IAAA,MAAM,YAAY,CACd,WAAmB,EACnB,KAAa,EACb,OAAoC,EAAA;QAEpC,OAAO,IAAI,CAAC,WAAW,CAAC,WAAW,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;KACxD;AAED;;;;;;;AAOG;IACH,MAAM,WAAW,CACb,OAAe,EACf,KAAa,EACb,OAAoC,EACpC,MAAe,EAAA;;AAGf,QAAA,MAAM,EACF,qBAAqB,EACrB,kBAAkB,EAClB,SAAS,EACT,QAAQ,EACR,UAAU,GACb,GAAG,OAAO,CAAC;QAEZ,MAAM,iBAAiB,GAAG,kBAAkB;AACxC,cAAE,IAAI,SAAS,CAAC,kBAAkB,CAAC;cACjC,SAAS,CAAC;AAChB,QAAA,MAAM,qBAAqB,GAAG,iBAAiB,EAAE,gBAAgB,EAAE,CAAC;AACpE,QAAA,OAAO,IAAI,CAAC,WAAW,CAAC,OAAO,CAC3B;AACI,YAAA,EAAE,EAAE,OAAO;AACX,YAAA,EAAE,EAAEC,UAAoB,EAAE;AAC1B,YAAA,CAAC,EAAE,qBAAqB,EAAE,WAAW,EAAE;YACvC,CAAC,EAAE,qBAAqB,EAAE,eAAe;YACzC,KAAK,EAAE,QAAQ,IAAI,IAAI,CAAC,WAAW,CAAC,aAAa,EAAE;YACnD,CAAC,EAAE,qBAAqB,EAAE,YAAY;YACtC,CAAC,EAAE,qBAAqB,EAAE,WAAW;AACjC,kBAAE,CAAC,EAAE,EAAE,qBAAqB,CAAC,WAAW,CAAC;AACzC,kBAAE,SAAS;YACf,aAAa,EAAE,SAAS,IAAI,SAAS;AACrC,YAAA,GAAG,MAAM;SACZ,EACD,KAAK,EACL,UAAU,EACV,OAAO,CAAC,aAAa,CACxB,CAAC;KACL;AACJ;;;;"}
|