@azure/msal-common 16.4.0 → 16.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/account/AccountInfo.mjs +1 -1
- package/dist/account/AuthToken.mjs +1 -1
- package/dist/account/CcsCredential.mjs +1 -1
- package/dist/account/ClientInfo.mjs +1 -1
- package/dist/account/TokenClaims.mjs +1 -1
- package/dist/authority/Authority.mjs +1 -1
- package/dist/authority/AuthorityFactory.mjs +1 -1
- package/dist/authority/AuthorityMetadata.mjs +1 -1
- package/dist/authority/AuthorityOptions.mjs +1 -1
- package/dist/authority/AuthorityType.mjs +1 -1
- package/dist/authority/CloudInstanceDiscoveryErrorResponse.mjs +1 -1
- package/dist/authority/CloudInstanceDiscoveryResponse.mjs +1 -1
- package/dist/authority/OpenIdConfigResponse.mjs +1 -1
- package/dist/authority/ProtocolMode.mjs +1 -1
- package/dist/authority/RegionDiscovery.mjs +1 -1
- package/dist/cache/CacheManager.mjs +1 -1
- package/dist/cache/persistence/TokenCacheContext.mjs +1 -1
- package/dist/cache/utils/AccountEntityUtils.mjs +1 -1
- package/dist/cache/utils/CacheHelpers.mjs +1 -1
- package/dist/client/AuthorizationCodeClient.d.ts.map +1 -1
- package/dist/client/AuthorizationCodeClient.mjs +3 -8
- package/dist/client/AuthorizationCodeClient.mjs.map +1 -1
- package/dist/client/RefreshTokenClient.d.ts.map +1 -1
- package/dist/client/RefreshTokenClient.mjs +3 -8
- package/dist/client/RefreshTokenClient.mjs.map +1 -1
- package/dist/client/SilentFlowClient.mjs +1 -1
- package/dist/config/ClientConfiguration.mjs +1 -1
- package/dist/constants/AADServerParamKeys.mjs +1 -1
- package/dist/crypto/ICrypto.mjs +1 -1
- package/dist/crypto/JoseHeader.mjs +1 -1
- package/dist/crypto/PopTokenGenerator.mjs +1 -1
- package/dist/error/AuthError.mjs +1 -1
- package/dist/error/AuthErrorCodes.mjs +1 -1
- package/dist/error/CacheError.mjs +1 -1
- package/dist/error/CacheErrorCodes.mjs +1 -1
- package/dist/error/ClientAuthError.mjs +1 -1
- package/dist/error/ClientAuthErrorCodes.mjs +1 -1
- package/dist/error/ClientConfigurationError.mjs +1 -1
- package/dist/error/ClientConfigurationErrorCodes.mjs +1 -1
- package/dist/error/InteractionRequiredAuthError.mjs +1 -1
- package/dist/error/InteractionRequiredAuthErrorCodes.mjs +1 -1
- package/dist/error/JoseHeaderError.mjs +1 -1
- package/dist/error/JoseHeaderErrorCodes.mjs +1 -1
- package/dist/error/NetworkError.mjs +1 -1
- package/dist/error/PlatformBrokerError.mjs +1 -1
- package/dist/error/ServerError.mjs +1 -1
- package/dist/index-node.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/logger/Logger.mjs +1 -1
- package/dist/network/INetworkModule.mjs +1 -1
- package/dist/network/RequestThumbprint.mjs +1 -1
- package/dist/network/ThrottlingUtils.mjs +1 -1
- package/dist/packageMetadata.d.ts +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.d.ts.map +1 -1
- package/dist/protocol/Authorize.mjs +3 -7
- package/dist/protocol/Authorize.mjs.map +1 -1
- package/dist/protocol/Token.mjs +1 -1
- package/dist/request/AuthenticationHeaderParser.mjs +1 -1
- package/dist/request/BaseAuthRequest.d.ts +4 -0
- package/dist/request/BaseAuthRequest.d.ts.map +1 -1
- package/dist/request/BaseAuthRequest.mjs +1 -1
- package/dist/request/BaseAuthRequest.mjs.map +1 -1
- package/dist/request/RequestParameterBuilder.d.ts +8 -4
- package/dist/request/RequestParameterBuilder.d.ts.map +1 -1
- package/dist/request/RequestParameterBuilder.mjs +24 -12
- package/dist/request/RequestParameterBuilder.mjs.map +1 -1
- package/dist/request/ScopeSet.mjs +1 -1
- package/dist/response/ResponseHandler.d.ts +9 -9
- package/dist/response/ResponseHandler.d.ts.map +1 -1
- package/dist/response/ResponseHandler.mjs +27 -20
- package/dist/response/ResponseHandler.mjs.map +1 -1
- package/dist/telemetry/performance/PerformanceClient.mjs +1 -1
- package/dist/telemetry/performance/PerformanceEvent.d.ts +19 -0
- package/dist/telemetry/performance/PerformanceEvent.d.ts.map +1 -1
- package/dist/telemetry/performance/PerformanceEvent.mjs +2 -1
- package/dist/telemetry/performance/PerformanceEvent.mjs.map +1 -1
- package/dist/telemetry/performance/PerformanceEvents.mjs +1 -1
- package/dist/telemetry/performance/StubPerformanceClient.mjs +1 -1
- package/dist/telemetry/server/ServerTelemetryManager.mjs +1 -1
- package/dist/url/UrlString.mjs +1 -1
- package/dist/utils/ClientAssertionUtils.mjs +1 -1
- package/dist/utils/Constants.mjs +1 -1
- package/dist/utils/FunctionWrappers.mjs +1 -1
- package/dist/utils/ProtocolUtils.mjs +1 -1
- package/dist/utils/StringUtils.mjs +1 -1
- package/dist/utils/TimeUtils.mjs +1 -1
- package/dist/utils/UrlUtils.mjs +1 -1
- package/dist-browser/account/AccountInfo.mjs +1 -1
- package/dist-browser/account/AuthToken.mjs +1 -1
- package/dist-browser/account/CcsCredential.mjs +1 -1
- package/dist-browser/account/ClientInfo.mjs +1 -1
- package/dist-browser/account/TokenClaims.mjs +1 -1
- package/dist-browser/authority/Authority.mjs +1 -1
- package/dist-browser/authority/AuthorityFactory.mjs +1 -1
- package/dist-browser/authority/AuthorityMetadata.mjs +1 -1
- package/dist-browser/authority/AuthorityOptions.mjs +1 -1
- package/dist-browser/authority/AuthorityType.mjs +1 -1
- package/dist-browser/authority/CloudInstanceDiscoveryErrorResponse.mjs +1 -1
- package/dist-browser/authority/CloudInstanceDiscoveryResponse.mjs +1 -1
- package/dist-browser/authority/OpenIdConfigResponse.mjs +1 -1
- package/dist-browser/authority/ProtocolMode.mjs +1 -1
- package/dist-browser/authority/RegionDiscovery.mjs +1 -1
- package/dist-browser/cache/CacheManager.mjs +1 -1
- package/dist-browser/cache/persistence/TokenCacheContext.mjs +1 -1
- package/dist-browser/cache/utils/AccountEntityUtils.mjs +1 -1
- package/dist-browser/cache/utils/CacheHelpers.mjs +1 -1
- package/dist-browser/client/AuthorizationCodeClient.d.ts.map +1 -1
- package/dist-browser/client/AuthorizationCodeClient.mjs +3 -8
- package/dist-browser/client/AuthorizationCodeClient.mjs.map +1 -1
- package/dist-browser/client/RefreshTokenClient.d.ts.map +1 -1
- package/dist-browser/client/RefreshTokenClient.mjs +3 -8
- package/dist-browser/client/RefreshTokenClient.mjs.map +1 -1
- package/dist-browser/client/SilentFlowClient.mjs +1 -1
- package/dist-browser/config/ClientConfiguration.mjs +1 -1
- package/dist-browser/constants/AADServerParamKeys.mjs +1 -1
- package/dist-browser/crypto/ICrypto.mjs +1 -1
- package/dist-browser/crypto/JoseHeader.mjs +1 -1
- package/dist-browser/crypto/PopTokenGenerator.mjs +1 -1
- package/dist-browser/error/AuthError.mjs +1 -1
- package/dist-browser/error/AuthErrorCodes.mjs +1 -1
- package/dist-browser/error/CacheError.mjs +1 -1
- package/dist-browser/error/CacheErrorCodes.mjs +1 -1
- package/dist-browser/error/ClientAuthError.mjs +1 -1
- package/dist-browser/error/ClientAuthErrorCodes.mjs +1 -1
- package/dist-browser/error/ClientConfigurationError.mjs +1 -1
- package/dist-browser/error/ClientConfigurationErrorCodes.mjs +1 -1
- package/dist-browser/error/InteractionRequiredAuthError.mjs +1 -1
- package/dist-browser/error/InteractionRequiredAuthErrorCodes.mjs +1 -1
- package/dist-browser/error/JoseHeaderError.mjs +1 -1
- package/dist-browser/error/JoseHeaderErrorCodes.mjs +1 -1
- package/dist-browser/error/NetworkError.mjs +1 -1
- package/dist-browser/error/PlatformBrokerError.mjs +1 -1
- package/dist-browser/error/ServerError.mjs +1 -1
- package/dist-browser/index-browser.mjs +1 -1
- package/dist-browser/index.mjs +1 -1
- package/dist-browser/log-strings-mapping.json +7 -3
- package/dist-browser/logger/Logger.mjs +1 -1
- package/dist-browser/network/INetworkModule.mjs +1 -1
- package/dist-browser/network/RequestThumbprint.mjs +1 -1
- package/dist-browser/network/ThrottlingUtils.mjs +1 -1
- package/dist-browser/packageMetadata.d.ts +1 -1
- package/dist-browser/packageMetadata.mjs +2 -2
- package/dist-browser/protocol/Authorize.d.ts.map +1 -1
- package/dist-browser/protocol/Authorize.mjs +3 -7
- package/dist-browser/protocol/Authorize.mjs.map +1 -1
- package/dist-browser/protocol/Token.mjs +1 -1
- package/dist-browser/request/AuthenticationHeaderParser.mjs +1 -1
- package/dist-browser/request/BaseAuthRequest.d.ts +4 -0
- package/dist-browser/request/BaseAuthRequest.d.ts.map +1 -1
- package/dist-browser/request/BaseAuthRequest.mjs +1 -1
- package/dist-browser/request/BaseAuthRequest.mjs.map +1 -1
- package/dist-browser/request/RequestParameterBuilder.d.ts +8 -4
- package/dist-browser/request/RequestParameterBuilder.d.ts.map +1 -1
- package/dist-browser/request/RequestParameterBuilder.mjs +24 -12
- package/dist-browser/request/RequestParameterBuilder.mjs.map +1 -1
- package/dist-browser/request/ScopeSet.mjs +1 -1
- package/dist-browser/response/ResponseHandler.d.ts +9 -9
- package/dist-browser/response/ResponseHandler.d.ts.map +1 -1
- package/dist-browser/response/ResponseHandler.mjs +27 -20
- package/dist-browser/response/ResponseHandler.mjs.map +1 -1
- package/dist-browser/telemetry/performance/PerformanceClient.mjs +1 -1
- package/dist-browser/telemetry/performance/PerformanceEvent.d.ts +19 -0
- package/dist-browser/telemetry/performance/PerformanceEvent.d.ts.map +1 -1
- package/dist-browser/telemetry/performance/PerformanceEvent.mjs +2 -1
- package/dist-browser/telemetry/performance/PerformanceEvent.mjs.map +1 -1
- package/dist-browser/telemetry/performance/PerformanceEvents.mjs +1 -1
- package/dist-browser/telemetry/performance/StubPerformanceClient.mjs +1 -1
- package/dist-browser/telemetry/server/ServerTelemetryManager.mjs +1 -1
- package/dist-browser/url/UrlString.mjs +1 -1
- package/dist-browser/utils/ClientAssertionUtils.mjs +1 -1
- package/dist-browser/utils/Constants.mjs +1 -1
- package/dist-browser/utils/FunctionWrappers.mjs +1 -1
- package/dist-browser/utils/ProtocolUtils.mjs +1 -1
- package/dist-browser/utils/StringUtils.mjs +1 -1
- package/dist-browser/utils/TimeUtils.mjs +1 -1
- package/dist-browser/utils/UrlUtils.mjs +1 -1
- package/lib/index-browser.cjs +2 -2
- package/lib/{index-node-5qBGS-xm.js → index-node-Du5Fgpah.js} +158 -151
- package/lib/index-node-Du5Fgpah.js.map +1 -0
- package/lib/index-node.cjs +2 -2
- package/lib/index.cjs +2 -2
- package/lib/types/client/AuthorizationCodeClient.d.ts.map +1 -1
- package/lib/types/client/RefreshTokenClient.d.ts.map +1 -1
- package/lib/types/packageMetadata.d.ts +1 -1
- package/lib/types/protocol/Authorize.d.ts.map +1 -1
- package/lib/types/request/BaseAuthRequest.d.ts +4 -0
- package/lib/types/request/BaseAuthRequest.d.ts.map +1 -1
- package/lib/types/request/RequestParameterBuilder.d.ts +8 -4
- package/lib/types/request/RequestParameterBuilder.d.ts.map +1 -1
- package/lib/types/response/ResponseHandler.d.ts +9 -9
- package/lib/types/response/ResponseHandler.d.ts.map +1 -1
- package/lib/types/telemetry/performance/PerformanceEvent.d.ts +19 -0
- package/lib/types/telemetry/performance/PerformanceEvent.d.ts.map +1 -1
- package/package.json +1 -1
- package/src/client/AuthorizationCodeClient.ts +8 -13
- package/src/client/RefreshTokenClient.ts +8 -13
- package/src/packageMetadata.ts +1 -1
- package/src/protocol/Authorize.ts +7 -12
- package/src/request/BaseAuthRequest.ts +4 -0
- package/src/request/RequestParameterBuilder.ts +30 -13
- package/src/response/ResponseHandler.ts +67 -47
- package/src/telemetry/performance/PerformanceEvent.ts +25 -0
- package/lib/index-node-5qBGS-xm.js.map +0 -1
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PerformanceEvent.d.ts","sourceRoot":"","sources":["../../../src/telemetry/performance/PerformanceEvent.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAC;AAE5D;;;;;GAKG;AACH,eAAO,MAAM,sBAAsB;;;;CAIzB,CAAC;AACX,MAAM,MAAM,sBAAsB,GAC9B,CAAC,OAAO,sBAAsB,CAAC,CAAC,MAAM,OAAO,sBAAsB,CAAC,CAAC;AAEzE,MAAM,MAAM,cAAc,GAAG;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;GAKG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC3B;;;;OAIG;IACH,OAAO,EAAE,MAAM,CAAC;IAEhB;;;;OAIG;IACH,MAAM,EAAE,sBAAsB,CAAC;IAE/B;;;;OAIG;IACH,SAAS,EAAE,MAAM,CAAC;IAElB;;;;OAIG;IACH,QAAQ,EAAE,MAAM,CAAC;IAEjB;;;;OAIG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;;;;OAKG;IACH,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAElC;;;;OAIG;IACH,SAAS,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAE3B;;;;OAIG;IACH,IAAI,EAAE,MAAM,CAAC;IAEb;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAEpC;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;;OAIG;IACH,OAAO,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAEzB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAE1B;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;;OAIG;IACH,cAAc,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAEhC;;;;OAIG;IACH,cAAc,CAAC,EAAE,OAAO,CAAC;IAEzB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,iBAAiB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEvC;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,yBAAyB,CAAC,EAAE,GAAG,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;IAExD,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,wBAAwB,CAAC,EAAE,OAAO,CAAC;IACnC,4BAA4B,CAAC,EAAE,MAAM,CAAC;
|
|
1
|
+
{"version":3,"file":"PerformanceEvent.d.ts","sourceRoot":"","sources":["../../../src/telemetry/performance/PerformanceEvent.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAC;AAE5D;;;;;GAKG;AACH,eAAO,MAAM,sBAAsB;;;;CAIzB,CAAC;AACX,MAAM,MAAM,sBAAsB,GAC9B,CAAC,OAAO,sBAAsB,CAAC,CAAC,MAAM,OAAO,sBAAsB,CAAC,CAAC;AAEzE,MAAM,MAAM,cAAc,GAAG;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;GAKG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC3B;;;;OAIG;IACH,OAAO,EAAE,MAAM,CAAC;IAEhB;;;;OAIG;IACH,MAAM,EAAE,sBAAsB,CAAC;IAE/B;;;;OAIG;IACH,SAAS,EAAE,MAAM,CAAC;IAElB;;;;OAIG;IACH,QAAQ,EAAE,MAAM,CAAC;IAEjB;;;;OAIG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;;;;OAKG;IACH,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAElC;;;;OAIG;IACH,SAAS,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAE3B;;;;OAIG;IACH,IAAI,EAAE,MAAM,CAAC;IAEb;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAEpC;;;OAGG;IACH,iBAAiB,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAEnC;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;;OAIG;IACH,OAAO,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IAEzB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAE1B;;;;OAIG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;;;OAIG;IACH,cAAc,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAEhC;;;;OAIG;IACH,cAAc,CAAC,EAAE,OAAO,CAAC;IAEzB;;OAEG;IACH,0BAA0B,CAAC,EAAE,OAAO,CAAC;IACrC,uBAAuB,CAAC,EAAE,OAAO,CAAC;IAClC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,iBAAiB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEvC;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,yBAAyB,CAAC,EAAE,GAAG,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;IAExD,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,wBAAwB,CAAC,EAAE,OAAO,CAAC;IACnC,4BAA4B,CAAC,EAAE,MAAM,CAAC;IACtC,6BAA6B,CAAC,EAAE,OAAO,CAAC;IAExC;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;;;;OAKG;IAEH,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB;;;;;OAKG;IAEH,gBAAgB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IAEtC;;;;OAIG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB;;;;OAIG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAE5B;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;OAEG;IACH,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,2BAA2B,CAAC,EAAE,MAAM,CAAC;IACrC,0BAA0B,CAAC,EAAE,OAAO,CAAC;IAErC;;OAEG;IACH,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAE/B;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IAGtB,OAAO,CAAC,EAAE,MAAM,CAAC;IAGjB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,aAAa,CAAC,EAAE,OAAO,CAAC;IAGxB,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAG9B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IAGtB,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,WAAW,CAAC,EAAE,KAAK,GAAG,KAAK,GAAG,KAAK,CAAC;IAEpC;;;;OAIG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B,YAAY,CAAC,EAAE,OAAO,CAAC;IAEvB,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB,YAAY,CAAC,EAAE,OAAO,CAAC;IAEvB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAEhC,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAG9B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B,yBAAyB,CAAC,EAAE,MAAM,CAAC;IAEnC,sBAAsB,CAAC,EAAE,OAAO,CAAC;IAEjC,YAAY,CAAC,EAAE,YAAY,CAAC;IAG5B,IAAI,CAAC,EAAE,MAAM,CAAC;IAGd,KAAK,CAAC,EAAE,OAAO,CAAC;IAEhB;;OAEG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAE9B;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC;IAEjC;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB;;OAEG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;OAEG;IACH,4BAA4B,CAAC,EAAE,MAAM,CAAC;IAEtC;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;OAEG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;IAElB;;OAEG;IACH,IAAI,CAAC,EAAE,OAAO,CAAC;IAEf;;OAEG;IACH,UAAU,CAAC,EAAE,OAAO,CAAC;IAErB;;OAEG;IACH,YAAY,CAAC,EAAE,OAAO,CAAC;IAEvB;;OAEG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B;;OAEG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAE5B;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB;;OAEG;IACH,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B;;OAEG;IACH,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,6BAA6B,CAAC,EAAE,MAAM,CAAC;IAEvC;;;;;;;;;OASG;IACH,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC,CAAC;CACzC,CAAC;AAEF,MAAM,MAAM,uBAAuB,GAAG;IAClC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,8BAA8B,GAAG,uBAAuB,GAAG;IACnE,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,gBAAgB,SAAS,CAAC;AAEvC,eAAO,MAAM,SAAS,EAAE,WAAW,CAAC,MAAM,CA4BxC,CAAC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.5.0 2026-04-16 */
|
|
2
2
|
'use strict';
|
|
3
3
|
/*
|
|
4
4
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -45,6 +45,7 @@ const IntFields = new Set([
|
|
|
45
45
|
"currRefreshCount",
|
|
46
46
|
"expiredCacheRemovedCount",
|
|
47
47
|
"upgradedCacheCount",
|
|
48
|
+
"cacheMatchedAccounts",
|
|
48
49
|
"networkRtt",
|
|
49
50
|
"redirectBridgeTimeoutMs",
|
|
50
51
|
"redirectBridgeMessageVersion",
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PerformanceEvent.mjs","sources":["../../../src/telemetry/performance/PerformanceEvent.ts"],"sourcesContent":[null],"names":[],"mappings":";;AAAA;;;AAGG;AAIH;;;;;AAKG;AACU,MAAA,sBAAsB,GAAG;AAClC,IAAA,UAAU,EAAE,CAAC;AACb,IAAA,UAAU,EAAE,CAAC;AACb,IAAA,SAAS,EAAE,CAAC;EACL;
|
|
1
|
+
{"version":3,"file":"PerformanceEvent.mjs","sources":["../../../src/telemetry/performance/PerformanceEvent.ts"],"sourcesContent":[null],"names":[],"mappings":";;AAAA;;;AAGG;AAIH;;;;;AAKG;AACU,MAAA,sBAAsB,GAAG;AAClC,IAAA,UAAU,EAAE,CAAC;AACb,IAAA,UAAU,EAAE,CAAC;AACb,IAAA,SAAS,EAAE,CAAC;EACL;AAkfX;;;;AAIG;AACI,MAAM,gBAAgB,GAAG,OAAO;AAE1B,MAAA,SAAS,GAAwB,IAAI,GAAG,CAAC;IAClD,iBAAiB;IACjB,YAAY;IACZ,aAAa;IACb,kBAAkB;IAClB,gBAAgB;IAChB,kBAAkB;IAClB,aAAa;IACb,QAAQ;IACR,gBAAgB;IAChB,gBAAgB;IAChB,gBAAgB;IAChB,uBAAuB;IACvB,4BAA4B;IAC5B,iBAAiB;IACjB,gBAAgB;IAChB,YAAY;IACZ,iBAAiB;IACjB,kBAAkB;IAClB,iBAAiB;IACjB,aAAa;IACb,kBAAkB;IAClB,0BAA0B;IAC1B,oBAAoB;IACpB,sBAAsB;IACtB,YAAY;IACZ,yBAAyB;IACzB,8BAA8B;AACjC,CAAA;;;;"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.5.0 2026-04-16 */
|
|
2
2
|
'use strict';
|
|
3
3
|
import { CacheOutcome, SERVER_TELEM_CACHE_KEY, CACHE_KEY_SEPARATOR, SERVER_TELEM_SCHEMA_VERSION, SERVER_TELEM_VALUE_SEPARATOR, SERVER_TELEM_CATEGORY_SEPARATOR, SERVER_TELEM_OVERFLOW_TRUE, SERVER_TELEM_OVERFLOW_FALSE, SERVER_TELEM_MAX_CACHED_ERRORS, SERVER_TELEM_UNKNOWN_ERROR, SERVER_TELEM_MAX_LAST_HEADER_BYTES } from '../../utils/Constants.mjs';
|
|
4
4
|
import { AuthError } from '../../error/AuthError.mjs';
|
package/lib/index-browser.cjs
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.5.0 2026-04-16 */
|
|
2
2
|
'use strict';
|
|
3
3
|
'use strict';
|
|
4
4
|
|
|
5
|
-
var indexNode = require('./index-node-
|
|
5
|
+
var indexNode = require('./index-node-Du5Fgpah.js');
|
|
6
6
|
|
|
7
7
|
/*
|
|
8
8
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.5.0 2026-04-16 */
|
|
2
2
|
'use strict';
|
|
3
3
|
'use strict';
|
|
4
4
|
|
|
@@ -3597,18 +3597,29 @@ function addSid(parameters, sid) {
|
|
|
3597
3597
|
parameters.set(SID, sid);
|
|
3598
3598
|
}
|
|
3599
3599
|
/**
|
|
3600
|
-
*
|
|
3601
|
-
*
|
|
3602
|
-
|
|
3603
|
-
|
|
3604
|
-
|
|
3605
|
-
|
|
3606
|
-
|
|
3607
|
-
|
|
3608
|
-
|
|
3609
|
-
|
|
3600
|
+
* Adds claims to request parameters, conditionally excluding clientCapabilities
|
|
3601
|
+
* when skipBrokerClaims is true and a brokered flow is in effect.
|
|
3602
|
+
* @param parameters - The request parameters map
|
|
3603
|
+
* @param claims - The claims string from the request
|
|
3604
|
+
* @param clientCapabilities - The client capabilities from configuration
|
|
3605
|
+
* @param skipBrokerClaims - When true and BROKER_CLIENT_ID is present, excludes clientCapabilities from claims
|
|
3606
|
+
*/
|
|
3607
|
+
function addClaims(parameters, claims, clientCapabilities, skipBrokerClaims) {
|
|
3608
|
+
// Skip clientCapabilities if skipBrokerClaims is set to true and this is a brokered authentication flow
|
|
3609
|
+
const configClaims = skipBrokerClaims && parameters.has(BROKER_CLIENT_ID)
|
|
3610
|
+
? undefined
|
|
3611
|
+
: clientCapabilities;
|
|
3612
|
+
if (!StringUtils.isEmptyObj(claims) ||
|
|
3613
|
+
(configClaims && configClaims.length > 0)) {
|
|
3614
|
+
const mergedClaims = addClientCapabilitiesToClaims(claims, configClaims);
|
|
3615
|
+
try {
|
|
3616
|
+
JSON.parse(mergedClaims);
|
|
3617
|
+
}
|
|
3618
|
+
catch (e) {
|
|
3619
|
+
throw createClientConfigurationError(invalidClaims);
|
|
3620
|
+
}
|
|
3621
|
+
parameters.set(CLAIMS, mergedClaims);
|
|
3610
3622
|
}
|
|
3611
|
-
parameters.set(CLAIMS, mergedClaims);
|
|
3612
3623
|
}
|
|
3613
3624
|
/**
|
|
3614
3625
|
* add correlationId
|
|
@@ -4253,7 +4264,7 @@ class Logger {
|
|
|
4253
4264
|
|
|
4254
4265
|
/* eslint-disable header/header */
|
|
4255
4266
|
const name = "@azure/msal-common";
|
|
4256
|
-
const version = "16.
|
|
4267
|
+
const version = "16.5.0";
|
|
4257
4268
|
|
|
4258
4269
|
/*
|
|
4259
4270
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -5449,6 +5460,7 @@ const IntFields = new Set([
|
|
|
5449
5460
|
"currRefreshCount",
|
|
5450
5461
|
"expiredCacheRemovedCount",
|
|
5451
5462
|
"upgradedCacheCount",
|
|
5463
|
+
"cacheMatchedAccounts",
|
|
5452
5464
|
"networkRtt",
|
|
5453
5465
|
"redirectBridgeTimeoutMs",
|
|
5454
5466
|
"redirectBridgeMessageVersion",
|
|
@@ -5605,15 +5617,102 @@ function isOidcProtocolMode(config) {
|
|
|
5605
5617
|
* Licensed under the MIT License.
|
|
5606
5618
|
*/
|
|
5607
5619
|
/**
|
|
5608
|
-
*
|
|
5620
|
+
* This class instance helps track the memory changes facilitating
|
|
5621
|
+
* decisions to read from and write to the persistent cache
|
|
5622
|
+
*/ class TokenCacheContext {
|
|
5623
|
+
constructor(tokenCache, hasChanged) {
|
|
5624
|
+
this.cache = tokenCache;
|
|
5625
|
+
this.hasChanged = hasChanged;
|
|
5626
|
+
}
|
|
5627
|
+
/**
|
|
5628
|
+
* boolean which indicates the changes in cache
|
|
5629
|
+
*/
|
|
5630
|
+
get cacheHasChanged() {
|
|
5631
|
+
return this.hasChanged;
|
|
5632
|
+
}
|
|
5633
|
+
/**
|
|
5634
|
+
* function to retrieve the token cache
|
|
5635
|
+
*/
|
|
5636
|
+
get tokenCache() {
|
|
5637
|
+
return this.cache;
|
|
5638
|
+
}
|
|
5639
|
+
}
|
|
5640
|
+
|
|
5641
|
+
/*
|
|
5642
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5643
|
+
* Licensed under the MIT License.
|
|
5609
5644
|
*/
|
|
5610
|
-
|
|
5611
|
-
|
|
5612
|
-
|
|
5613
|
-
|
|
5614
|
-
|
|
5615
|
-
this.
|
|
5616
|
-
|
|
5645
|
+
const KeyLocation = {
|
|
5646
|
+
SW: "sw"};
|
|
5647
|
+
/** @internal */
|
|
5648
|
+
class PopTokenGenerator {
|
|
5649
|
+
constructor(cryptoUtils, performanceClient) {
|
|
5650
|
+
this.cryptoUtils = cryptoUtils;
|
|
5651
|
+
this.performanceClient = performanceClient;
|
|
5652
|
+
}
|
|
5653
|
+
/**
|
|
5654
|
+
* Generates the req_cnf validated at the RP in the POP protocol for SHR parameters
|
|
5655
|
+
* and returns an object containing the keyid, the full req_cnf string and the req_cnf string hash
|
|
5656
|
+
* @param request
|
|
5657
|
+
* @returns
|
|
5658
|
+
*/
|
|
5659
|
+
async generateCnf(request, logger) {
|
|
5660
|
+
const reqCnf = await invokeAsync(this.generateKid.bind(this), PopTokenGenerateCnf, logger, this.performanceClient, request.correlationId)(request);
|
|
5661
|
+
const reqCnfString = this.cryptoUtils.base64UrlEncode(JSON.stringify(reqCnf));
|
|
5662
|
+
return {
|
|
5663
|
+
kid: reqCnf.kid,
|
|
5664
|
+
reqCnfString,
|
|
5665
|
+
};
|
|
5666
|
+
}
|
|
5667
|
+
/**
|
|
5668
|
+
* Generates key_id for a SHR token request
|
|
5669
|
+
* @param request
|
|
5670
|
+
* @returns
|
|
5671
|
+
*/
|
|
5672
|
+
async generateKid(request) {
|
|
5673
|
+
const kidThumbprint = await this.cryptoUtils.getPublicKeyThumbprint(request);
|
|
5674
|
+
return {
|
|
5675
|
+
kid: kidThumbprint,
|
|
5676
|
+
xms_ksl: KeyLocation.SW,
|
|
5677
|
+
};
|
|
5678
|
+
}
|
|
5679
|
+
/**
|
|
5680
|
+
* Signs the POP access_token with the local generated key-pair
|
|
5681
|
+
* @param accessToken
|
|
5682
|
+
* @param request
|
|
5683
|
+
* @returns
|
|
5684
|
+
*/
|
|
5685
|
+
async signPopToken(accessToken, keyId, request) {
|
|
5686
|
+
return this.signPayload(accessToken, keyId, request);
|
|
5687
|
+
}
|
|
5688
|
+
/**
|
|
5689
|
+
* Utility function to generate the signed JWT for an access_token
|
|
5690
|
+
* @param payload
|
|
5691
|
+
* @param kid
|
|
5692
|
+
* @param request
|
|
5693
|
+
* @param claims
|
|
5694
|
+
* @returns
|
|
5695
|
+
*/
|
|
5696
|
+
async signPayload(payload, keyId, request, claims) {
|
|
5697
|
+
// Deconstruct request to extract SHR parameters
|
|
5698
|
+
const { resourceRequestMethod, resourceRequestUri, shrClaims, shrNonce, shrOptions, } = request;
|
|
5699
|
+
const resourceUrlString = resourceRequestUri
|
|
5700
|
+
? new UrlString(resourceRequestUri)
|
|
5701
|
+
: undefined;
|
|
5702
|
+
const resourceUrlComponents = resourceUrlString?.getUrlComponents();
|
|
5703
|
+
return this.cryptoUtils.signJwt({
|
|
5704
|
+
at: payload,
|
|
5705
|
+
ts: nowSeconds(),
|
|
5706
|
+
m: resourceRequestMethod?.toUpperCase(),
|
|
5707
|
+
u: resourceUrlComponents?.HostNameAndPort,
|
|
5708
|
+
nonce: shrNonce || this.cryptoUtils.createNewGuid(),
|
|
5709
|
+
p: resourceUrlComponents?.AbsolutePath,
|
|
5710
|
+
q: resourceUrlComponents?.QueryString
|
|
5711
|
+
? [[], resourceUrlComponents.QueryString]
|
|
5712
|
+
: undefined,
|
|
5713
|
+
client_claims: shrClaims || undefined,
|
|
5714
|
+
...claims,
|
|
5715
|
+
}, keyId, shrOptions, request.correlationId);
|
|
5617
5716
|
}
|
|
5618
5717
|
}
|
|
5619
5718
|
|
|
@@ -5746,6 +5845,23 @@ function createInteractionRequiredAuthError(errorCode, errorMessage) {
|
|
|
5746
5845
|
return new InteractionRequiredAuthError(errorCode, errorMessage);
|
|
5747
5846
|
}
|
|
5748
5847
|
|
|
5848
|
+
/*
|
|
5849
|
+
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5850
|
+
* Licensed under the MIT License.
|
|
5851
|
+
*/
|
|
5852
|
+
/**
|
|
5853
|
+
* Error thrown when there is an error with the server code, for example, unavailability.
|
|
5854
|
+
*/
|
|
5855
|
+
class ServerError extends AuthError {
|
|
5856
|
+
constructor(errorCode, errorMessage, subError, errorNo, status) {
|
|
5857
|
+
super(errorCode, errorMessage, subError);
|
|
5858
|
+
this.name = "ServerError";
|
|
5859
|
+
this.errorNo = errorNo;
|
|
5860
|
+
this.status = status;
|
|
5861
|
+
Object.setPrototypeOf(this, ServerError.prototype);
|
|
5862
|
+
}
|
|
5863
|
+
}
|
|
5864
|
+
|
|
5749
5865
|
/*
|
|
5750
5866
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5751
5867
|
* Licensed under the MIT License.
|
|
@@ -5819,110 +5935,6 @@ var ProtocolUtils = /*#__PURE__*/Object.freeze({
|
|
|
5819
5935
|
setRequestState: setRequestState
|
|
5820
5936
|
});
|
|
5821
5937
|
|
|
5822
|
-
/*
|
|
5823
|
-
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5824
|
-
* Licensed under the MIT License.
|
|
5825
|
-
*/
|
|
5826
|
-
const KeyLocation = {
|
|
5827
|
-
SW: "sw"};
|
|
5828
|
-
/** @internal */
|
|
5829
|
-
class PopTokenGenerator {
|
|
5830
|
-
constructor(cryptoUtils, performanceClient) {
|
|
5831
|
-
this.cryptoUtils = cryptoUtils;
|
|
5832
|
-
this.performanceClient = performanceClient;
|
|
5833
|
-
}
|
|
5834
|
-
/**
|
|
5835
|
-
* Generates the req_cnf validated at the RP in the POP protocol for SHR parameters
|
|
5836
|
-
* and returns an object containing the keyid, the full req_cnf string and the req_cnf string hash
|
|
5837
|
-
* @param request
|
|
5838
|
-
* @returns
|
|
5839
|
-
*/
|
|
5840
|
-
async generateCnf(request, logger) {
|
|
5841
|
-
const reqCnf = await invokeAsync(this.generateKid.bind(this), PopTokenGenerateCnf, logger, this.performanceClient, request.correlationId)(request);
|
|
5842
|
-
const reqCnfString = this.cryptoUtils.base64UrlEncode(JSON.stringify(reqCnf));
|
|
5843
|
-
return {
|
|
5844
|
-
kid: reqCnf.kid,
|
|
5845
|
-
reqCnfString,
|
|
5846
|
-
};
|
|
5847
|
-
}
|
|
5848
|
-
/**
|
|
5849
|
-
* Generates key_id for a SHR token request
|
|
5850
|
-
* @param request
|
|
5851
|
-
* @returns
|
|
5852
|
-
*/
|
|
5853
|
-
async generateKid(request) {
|
|
5854
|
-
const kidThumbprint = await this.cryptoUtils.getPublicKeyThumbprint(request);
|
|
5855
|
-
return {
|
|
5856
|
-
kid: kidThumbprint,
|
|
5857
|
-
xms_ksl: KeyLocation.SW,
|
|
5858
|
-
};
|
|
5859
|
-
}
|
|
5860
|
-
/**
|
|
5861
|
-
* Signs the POP access_token with the local generated key-pair
|
|
5862
|
-
* @param accessToken
|
|
5863
|
-
* @param request
|
|
5864
|
-
* @returns
|
|
5865
|
-
*/
|
|
5866
|
-
async signPopToken(accessToken, keyId, request) {
|
|
5867
|
-
return this.signPayload(accessToken, keyId, request);
|
|
5868
|
-
}
|
|
5869
|
-
/**
|
|
5870
|
-
* Utility function to generate the signed JWT for an access_token
|
|
5871
|
-
* @param payload
|
|
5872
|
-
* @param kid
|
|
5873
|
-
* @param request
|
|
5874
|
-
* @param claims
|
|
5875
|
-
* @returns
|
|
5876
|
-
*/
|
|
5877
|
-
async signPayload(payload, keyId, request, claims) {
|
|
5878
|
-
// Deconstruct request to extract SHR parameters
|
|
5879
|
-
const { resourceRequestMethod, resourceRequestUri, shrClaims, shrNonce, shrOptions, } = request;
|
|
5880
|
-
const resourceUrlString = resourceRequestUri
|
|
5881
|
-
? new UrlString(resourceRequestUri)
|
|
5882
|
-
: undefined;
|
|
5883
|
-
const resourceUrlComponents = resourceUrlString?.getUrlComponents();
|
|
5884
|
-
return this.cryptoUtils.signJwt({
|
|
5885
|
-
at: payload,
|
|
5886
|
-
ts: nowSeconds(),
|
|
5887
|
-
m: resourceRequestMethod?.toUpperCase(),
|
|
5888
|
-
u: resourceUrlComponents?.HostNameAndPort,
|
|
5889
|
-
nonce: shrNonce || this.cryptoUtils.createNewGuid(),
|
|
5890
|
-
p: resourceUrlComponents?.AbsolutePath,
|
|
5891
|
-
q: resourceUrlComponents?.QueryString
|
|
5892
|
-
? [[], resourceUrlComponents.QueryString]
|
|
5893
|
-
: undefined,
|
|
5894
|
-
client_claims: shrClaims || undefined,
|
|
5895
|
-
...claims,
|
|
5896
|
-
}, keyId, shrOptions, request.correlationId);
|
|
5897
|
-
}
|
|
5898
|
-
}
|
|
5899
|
-
|
|
5900
|
-
/*
|
|
5901
|
-
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5902
|
-
* Licensed under the MIT License.
|
|
5903
|
-
*/
|
|
5904
|
-
/**
|
|
5905
|
-
* This class instance helps track the memory changes facilitating
|
|
5906
|
-
* decisions to read from and write to the persistent cache
|
|
5907
|
-
*/ class TokenCacheContext {
|
|
5908
|
-
constructor(tokenCache, hasChanged) {
|
|
5909
|
-
this.cache = tokenCache;
|
|
5910
|
-
this.hasChanged = hasChanged;
|
|
5911
|
-
}
|
|
5912
|
-
/**
|
|
5913
|
-
* boolean which indicates the changes in cache
|
|
5914
|
-
*/
|
|
5915
|
-
get cacheHasChanged() {
|
|
5916
|
-
return this.hasChanged;
|
|
5917
|
-
}
|
|
5918
|
-
/**
|
|
5919
|
-
* function to retrieve the token cache
|
|
5920
|
-
*/
|
|
5921
|
-
get tokenCache() {
|
|
5922
|
-
return this.cache;
|
|
5923
|
-
}
|
|
5924
|
-
}
|
|
5925
|
-
|
|
5926
5938
|
/*
|
|
5927
5939
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5928
5940
|
* Licensed under the MIT License.
|
|
@@ -6077,7 +6089,7 @@ class ResponseHandler {
|
|
|
6077
6089
|
if (serverTokenResponse.id_token && !!idTokenClaims) {
|
|
6078
6090
|
cachedIdToken = createIdTokenEntity(this.homeAccountIdentifier, env, serverTokenResponse.id_token, this.clientId, claimsTenantId || "");
|
|
6079
6091
|
cachedAccount = buildAccountToCache(this.cacheStorage, authority, this.homeAccountIdentifier, this.cryptoObj.base64Decode, request.correlationId, idTokenClaims, serverTokenResponse.client_info, env, claimsTenantId, authCodePayload, undefined, // nativeAccountId
|
|
6080
|
-
this.logger);
|
|
6092
|
+
this.logger, this.performanceClient);
|
|
6081
6093
|
}
|
|
6082
6094
|
// AccessToken
|
|
6083
6095
|
let cachedAccessToken = null;
|
|
@@ -6228,17 +6240,24 @@ class ResponseHandler {
|
|
|
6228
6240
|
};
|
|
6229
6241
|
}
|
|
6230
6242
|
}
|
|
6231
|
-
function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decode, correlationId, idTokenClaims, clientInfo, environment, claimsTenantId, authCodePayload, nativeAccountId, logger) {
|
|
6243
|
+
function buildAccountToCache(cacheStorage, authority, homeAccountId, base64Decode, correlationId, idTokenClaims, clientInfo, environment, claimsTenantId, authCodePayload, nativeAccountId, logger, performanceClient) {
|
|
6232
6244
|
logger?.verbose("setCachedAccount called", correlationId);
|
|
6233
|
-
|
|
6234
|
-
|
|
6235
|
-
|
|
6236
|
-
|
|
6237
|
-
|
|
6238
|
-
|
|
6239
|
-
|
|
6240
|
-
|
|
6245
|
+
/*
|
|
6246
|
+
* Check if base account is already cached. Filter by homeAccountId (identifies
|
|
6247
|
+
* the user's home identity) and environment (identifies the cloud) — the two
|
|
6248
|
+
* tenant-agnostic properties that uniquely locate a base AccountEntity.
|
|
6249
|
+
*/
|
|
6250
|
+
const accountEnvironment = environment || authority.getPreferredCache();
|
|
6251
|
+
const matchedAccounts = cacheStorage.getAccountsFilteredBy({ homeAccountId, environment: accountEnvironment }, correlationId);
|
|
6252
|
+
performanceClient?.addFields({ cacheMatchedAccounts: matchedAccounts.length }, correlationId);
|
|
6253
|
+
if (matchedAccounts.length > 1) {
|
|
6254
|
+
/*
|
|
6255
|
+
* Base accounts are expected to be unique for a given homeAccountId in normal cache usage.
|
|
6256
|
+
* If multiple matches exist, ignore the cache hit rather than arbitrarily choosing one.
|
|
6257
|
+
*/
|
|
6258
|
+
logger?.warning("Multiple base accounts matched homeAccountId. Ignoring cached account and creating a new base account.", correlationId);
|
|
6241
6259
|
}
|
|
6260
|
+
const cachedAccount = matchedAccounts.length === 1 ? matchedAccounts[0] : null;
|
|
6242
6261
|
const baseAccount = cachedAccount ||
|
|
6243
6262
|
createAccountEntity({
|
|
6244
6263
|
homeAccountId,
|
|
@@ -6709,11 +6728,6 @@ class AuthorizationCodeClient {
|
|
|
6709
6728
|
throw createClientConfigurationError(missingSshJwk);
|
|
6710
6729
|
}
|
|
6711
6730
|
}
|
|
6712
|
-
if (!StringUtils.isEmptyObj(request.claims) ||
|
|
6713
|
-
(this.config.authOptions.clientCapabilities &&
|
|
6714
|
-
this.config.authOptions.clientCapabilities.length > 0)) {
|
|
6715
|
-
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
|
|
6716
|
-
}
|
|
6717
6731
|
let ccsCred = undefined;
|
|
6718
6732
|
if (request.clientInfo) {
|
|
6719
6733
|
try {
|
|
@@ -6762,6 +6776,7 @@ class AuthorizationCodeClient {
|
|
|
6762
6776
|
});
|
|
6763
6777
|
}
|
|
6764
6778
|
instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
|
|
6779
|
+
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
6765
6780
|
return mapToQueryString(parameters);
|
|
6766
6781
|
}
|
|
6767
6782
|
/**
|
|
@@ -6993,11 +7008,6 @@ class RefreshTokenClient {
|
|
|
6993
7008
|
throw createClientConfigurationError(missingSshJwk);
|
|
6994
7009
|
}
|
|
6995
7010
|
}
|
|
6996
|
-
if (!StringUtils.isEmptyObj(request.claims) ||
|
|
6997
|
-
(this.config.authOptions.clientCapabilities &&
|
|
6998
|
-
this.config.authOptions.clientCapabilities.length > 0)) {
|
|
6999
|
-
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities);
|
|
7000
|
-
}
|
|
7001
7011
|
if (this.config.systemOptions.preventCorsPreflight &&
|
|
7002
7012
|
request.ccsCredential) {
|
|
7003
7013
|
switch (request.ccsCredential.type) {
|
|
@@ -7024,6 +7034,7 @@ class RefreshTokenClient {
|
|
|
7024
7034
|
});
|
|
7025
7035
|
}
|
|
7026
7036
|
instrumentBrokerParams(parameters, request.correlationId, this.performanceClient);
|
|
7037
|
+
addClaims(parameters, request.claims, this.config.authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
7027
7038
|
return mapToQueryString(parameters);
|
|
7028
7039
|
}
|
|
7029
7040
|
}
|
|
@@ -7277,14 +7288,10 @@ function getStandardAuthorizeRequestParameters(authOptions, request, logger, per
|
|
|
7277
7288
|
if (request.state) {
|
|
7278
7289
|
addState(parameters, request.state);
|
|
7279
7290
|
}
|
|
7280
|
-
if (request.claims ||
|
|
7281
|
-
(authOptions.clientCapabilities &&
|
|
7282
|
-
authOptions.clientCapabilities.length > 0)) {
|
|
7283
|
-
addClaims(parameters, request.claims, authOptions.clientCapabilities);
|
|
7284
|
-
}
|
|
7285
7291
|
if (request.embeddedClientId) {
|
|
7286
7292
|
addBrokerParameters(parameters, authOptions.clientId, authOptions.redirectUri);
|
|
7287
7293
|
}
|
|
7294
|
+
addClaims(parameters, request.claims, authOptions.clientCapabilities, request.skipBrokerClaims);
|
|
7288
7295
|
// If extraQueryParameters includes instance_aware its value will be added when extraQueryParameters are added
|
|
7289
7296
|
if (authOptions.instanceAware &&
|
|
7290
7297
|
(!request.extraQueryParameters ||
|
|
@@ -7855,4 +7862,4 @@ exports.invokeAsync = invokeAsync;
|
|
|
7855
7862
|
exports.tenantIdMatchesHomeTenant = tenantIdMatchesHomeTenant;
|
|
7856
7863
|
exports.updateAccountTenantProfileData = updateAccountTenantProfileData;
|
|
7857
7864
|
exports.version = version;
|
|
7858
|
-
//# sourceMappingURL=index-node-
|
|
7865
|
+
//# sourceMappingURL=index-node-Du5Fgpah.js.map
|