@azure/msal-common 16.8.0 → 16.10.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/account/AccountInfo.mjs +9 -3
- package/dist/account/AccountInfo.mjs.map +1 -1
- package/dist/account/AuthToken.mjs +9 -23
- package/dist/account/AuthToken.mjs.map +1 -1
- package/dist/account/CcsCredential.mjs +1 -1
- package/dist/account/ClientInfo.mjs +4 -4
- package/dist/account/ClientInfo.mjs.map +1 -1
- package/dist/account/TokenClaims.mjs +1 -1
- package/dist/authority/Authority.mjs +36 -37
- package/dist/authority/Authority.mjs.map +1 -1
- package/dist/authority/AuthorityFactory.mjs +3 -3
- package/dist/authority/AuthorityFactory.mjs.map +1 -1
- package/dist/authority/AuthorityMetadata.mjs +2 -2
- package/dist/authority/AuthorityMetadata.mjs.map +1 -1
- package/dist/authority/AuthorityOptions.mjs +1 -1
- package/dist/authority/AuthorityType.mjs +1 -1
- package/dist/authority/CloudInstanceDiscoveryErrorResponse.mjs +1 -1
- package/dist/authority/CloudInstanceDiscoveryResponse.mjs +1 -1
- package/dist/authority/OpenIdConfigResponse.mjs +1 -1
- package/dist/authority/ProtocolMode.mjs +1 -1
- package/dist/authority/RegionDiscovery.mjs +16 -10
- package/dist/authority/RegionDiscovery.mjs.map +1 -1
- package/dist/cache/CacheManager.mjs +62 -46
- package/dist/cache/CacheManager.mjs.map +1 -1
- package/dist/cache/persistence/TokenCacheContext.mjs +1 -1
- package/dist/cache/utils/AccountEntityUtils.mjs +23 -7
- package/dist/cache/utils/AccountEntityUtils.mjs.map +1 -1
- package/dist/cache/utils/CacheHelpers.mjs +12 -4
- package/dist/cache/utils/CacheHelpers.mjs.map +1 -1
- package/dist/client/AuthorizationCodeClient.mjs +7 -7
- package/dist/client/AuthorizationCodeClient.mjs.map +1 -1
- package/dist/client/RefreshTokenClient.mjs +8 -8
- package/dist/client/RefreshTokenClient.mjs.map +1 -1
- package/dist/client/SilentFlowClient.mjs +10 -18
- package/dist/client/SilentFlowClient.mjs.map +1 -1
- package/dist/config/ClientConfiguration.mjs +6 -5
- package/dist/config/ClientConfiguration.mjs.map +1 -1
- package/dist/constants/AADServerParamKeys.mjs +7 -3
- package/dist/constants/AADServerParamKeys.mjs.map +1 -1
- package/dist/crypto/ICrypto.mjs +11 -11
- package/dist/crypto/ICrypto.mjs.map +1 -1
- package/dist/crypto/JoseHeader.mjs +3 -3
- package/dist/crypto/JoseHeader.mjs.map +1 -1
- package/dist/crypto/PopTokenGenerator.mjs +2 -2
- package/dist/crypto/PopTokenGenerator.mjs.map +1 -1
- package/dist/error/AuthError.mjs +5 -7
- package/dist/error/AuthError.mjs.map +1 -1
- package/dist/error/AuthErrorCodes.mjs +1 -1
- package/dist/error/CacheError.mjs +1 -1
- package/dist/error/CacheErrorCodes.mjs +1 -1
- package/dist/error/ClientAuthError.mjs +5 -5
- package/dist/error/ClientAuthError.mjs.map +1 -1
- package/dist/error/ClientAuthErrorCodes.mjs +2 -4
- package/dist/error/ClientAuthErrorCodes.mjs.map +1 -1
- package/dist/error/ClientConfigurationError.mjs +5 -5
- package/dist/error/ClientConfigurationError.mjs.map +1 -1
- package/dist/error/ClientConfigurationErrorCodes.mjs +1 -1
- package/dist/error/InteractionRequiredAuthError.mjs +5 -6
- package/dist/error/InteractionRequiredAuthError.mjs.map +1 -1
- package/dist/error/InteractionRequiredAuthErrorCodes.mjs +1 -1
- package/dist/error/JoseHeaderError.mjs +5 -5
- package/dist/error/JoseHeaderError.mjs.map +1 -1
- package/dist/error/JoseHeaderErrorCodes.mjs +1 -1
- package/dist/error/NetworkError.mjs +2 -2
- package/dist/error/NetworkError.mjs.map +1 -1
- package/dist/error/PlatformBrokerError.mjs +3 -3
- package/dist/error/PlatformBrokerError.mjs.map +1 -1
- package/dist/error/ServerError.mjs +3 -3
- package/dist/error/ServerError.mjs.map +1 -1
- package/dist/index-node.mjs +1 -1
- package/dist/index.mjs +1 -1
- package/dist/logger/Logger.mjs +25 -11
- package/dist/logger/Logger.mjs.map +1 -1
- package/dist/network/INetworkModule.mjs +4 -3
- package/dist/network/INetworkModule.mjs.map +1 -1
- package/dist/network/RequestThumbprint.mjs +1 -1
- package/dist/network/ThrottlingUtils.mjs +2 -2
- package/dist/network/ThrottlingUtils.mjs.map +1 -1
- package/dist/packageMetadata.mjs +2 -2
- package/dist/protocol/Authorize.mjs +18 -14
- package/dist/protocol/Authorize.mjs.map +1 -1
- package/dist/protocol/Token.mjs +4 -2
- package/dist/protocol/Token.mjs.map +1 -1
- package/dist/request/AuthenticationHeaderParser.mjs +4 -4
- package/dist/request/AuthenticationHeaderParser.mjs.map +1 -1
- package/dist/request/BaseAuthRequest.mjs +3 -3
- package/dist/request/BaseAuthRequest.mjs.map +1 -1
- package/dist/request/RequestParameterBuilder.mjs +50 -31
- package/dist/request/RequestParameterBuilder.mjs.map +1 -1
- package/dist/request/ScopeSet.mjs +13 -12
- package/dist/request/ScopeSet.mjs.map +1 -1
- package/dist/response/ResponseHandler.mjs +30 -27
- package/dist/response/ResponseHandler.mjs.map +1 -1
- package/dist/telemetry/performance/PerformanceClient.mjs +1 -1
- package/dist/telemetry/performance/PerformanceEvent.mjs +1 -1
- package/dist/telemetry/performance/PerformanceEvents.mjs +1 -1
- package/dist/telemetry/performance/StubPerformanceClient.mjs +1 -1
- package/dist/telemetry/server/ServerTelemetryManager.mjs +1 -1
- package/dist/url/UrlString.mjs +15 -14
- package/dist/url/UrlString.mjs.map +1 -1
- package/dist/utils/ClientAssertionUtils.mjs +3 -2
- package/dist/utils/ClientAssertionUtils.mjs.map +1 -1
- package/dist/utils/Constants.mjs +7 -3
- package/dist/utils/Constants.mjs.map +1 -1
- package/dist/utils/FunctionWrappers.mjs +1 -1
- package/dist/utils/ProtocolUtils.mjs +12 -9
- package/dist/utils/ProtocolUtils.mjs.map +1 -1
- package/dist/utils/StringUtils.mjs +1 -1
- package/dist/utils/TimeUtils.mjs +1 -1
- package/dist/utils/UrlUtils.mjs +4 -4
- package/dist/utils/UrlUtils.mjs.map +1 -1
- package/dist-browser/account/AccountInfo.mjs +9 -3
- package/dist-browser/account/AccountInfo.mjs.map +1 -1
- package/dist-browser/account/AuthToken.mjs +9 -23
- package/dist-browser/account/AuthToken.mjs.map +1 -1
- package/dist-browser/account/CcsCredential.mjs +1 -1
- package/dist-browser/account/ClientInfo.mjs +4 -4
- package/dist-browser/account/ClientInfo.mjs.map +1 -1
- package/dist-browser/account/TokenClaims.mjs +1 -1
- package/dist-browser/authority/Authority.mjs +52 -50
- package/dist-browser/authority/Authority.mjs.map +1 -1
- package/dist-browser/authority/AuthorityFactory.mjs +3 -3
- package/dist-browser/authority/AuthorityFactory.mjs.map +1 -1
- package/dist-browser/authority/AuthorityMetadata.mjs +8 -7
- package/dist-browser/authority/AuthorityMetadata.mjs.map +1 -1
- package/dist-browser/authority/AuthorityOptions.mjs +1 -1
- package/dist-browser/authority/AuthorityType.mjs +1 -1
- package/dist-browser/authority/CloudInstanceDiscoveryErrorResponse.mjs +1 -1
- package/dist-browser/authority/CloudInstanceDiscoveryResponse.mjs +1 -1
- package/dist-browser/authority/OpenIdConfigResponse.mjs +1 -1
- package/dist-browser/authority/ProtocolMode.mjs +1 -1
- package/dist-browser/authority/RegionDiscovery.mjs +16 -10
- package/dist-browser/authority/RegionDiscovery.mjs.map +1 -1
- package/dist-browser/cache/CacheManager.mjs +63 -47
- package/dist-browser/cache/CacheManager.mjs.map +1 -1
- package/dist-browser/cache/persistence/TokenCacheContext.mjs +1 -1
- package/dist-browser/cache/utils/AccountEntityUtils.mjs +23 -7
- package/dist-browser/cache/utils/AccountEntityUtils.mjs.map +1 -1
- package/dist-browser/cache/utils/CacheHelpers.mjs +12 -4
- package/dist-browser/cache/utils/CacheHelpers.mjs.map +1 -1
- package/dist-browser/client/AuthorizationCodeClient.mjs +10 -10
- package/dist-browser/client/AuthorizationCodeClient.mjs.map +1 -1
- package/dist-browser/client/RefreshTokenClient.mjs +9 -9
- package/dist-browser/client/RefreshTokenClient.mjs.map +1 -1
- package/dist-browser/client/SilentFlowClient.mjs +11 -19
- package/dist-browser/client/SilentFlowClient.mjs.map +1 -1
- package/dist-browser/config/ClientConfiguration.mjs +6 -5
- package/dist-browser/config/ClientConfiguration.mjs.map +1 -1
- package/dist-browser/constants/AADServerParamKeys.mjs +7 -3
- package/dist-browser/constants/AADServerParamKeys.mjs.map +1 -1
- package/dist-browser/crypto/ICrypto.mjs +11 -11
- package/dist-browser/crypto/ICrypto.mjs.map +1 -1
- package/dist-browser/crypto/JoseHeader.mjs +3 -3
- package/dist-browser/crypto/JoseHeader.mjs.map +1 -1
- package/dist-browser/crypto/PopTokenGenerator.mjs +2 -2
- package/dist-browser/crypto/PopTokenGenerator.mjs.map +1 -1
- package/dist-browser/error/AuthError.mjs +5 -7
- package/dist-browser/error/AuthError.mjs.map +1 -1
- package/dist-browser/error/AuthErrorCodes.mjs +1 -1
- package/dist-browser/error/CacheError.mjs +1 -1
- package/dist-browser/error/CacheErrorCodes.mjs +1 -1
- package/dist-browser/error/ClientAuthError.mjs +5 -5
- package/dist-browser/error/ClientAuthError.mjs.map +1 -1
- package/dist-browser/error/ClientAuthErrorCodes.mjs +2 -4
- package/dist-browser/error/ClientAuthErrorCodes.mjs.map +1 -1
- package/dist-browser/error/ClientConfigurationError.mjs +5 -5
- package/dist-browser/error/ClientConfigurationError.mjs.map +1 -1
- package/dist-browser/error/ClientConfigurationErrorCodes.mjs +1 -1
- package/dist-browser/error/InteractionRequiredAuthError.mjs +5 -6
- package/dist-browser/error/InteractionRequiredAuthError.mjs.map +1 -1
- package/dist-browser/error/InteractionRequiredAuthErrorCodes.mjs +1 -1
- package/dist-browser/error/JoseHeaderError.mjs +5 -5
- package/dist-browser/error/JoseHeaderError.mjs.map +1 -1
- package/dist-browser/error/JoseHeaderErrorCodes.mjs +1 -1
- package/dist-browser/error/NetworkError.mjs +2 -2
- package/dist-browser/error/NetworkError.mjs.map +1 -1
- package/dist-browser/error/PlatformBrokerError.mjs +3 -3
- package/dist-browser/error/PlatformBrokerError.mjs.map +1 -1
- package/dist-browser/error/ServerError.mjs +3 -3
- package/dist-browser/error/ServerError.mjs.map +1 -1
- package/dist-browser/index-browser.mjs +1 -1
- package/dist-browser/index.mjs +1 -1
- package/dist-browser/log-strings-mapping.json +2 -2
- package/dist-browser/logger/Logger.mjs +25 -11
- package/dist-browser/logger/Logger.mjs.map +1 -1
- package/dist-browser/network/INetworkModule.mjs +4 -3
- package/dist-browser/network/INetworkModule.mjs.map +1 -1
- package/dist-browser/network/RequestThumbprint.mjs +1 -1
- package/dist-browser/network/ThrottlingUtils.mjs +2 -2
- package/dist-browser/network/ThrottlingUtils.mjs.map +1 -1
- package/dist-browser/packageMetadata.mjs +2 -2
- package/dist-browser/protocol/Authorize.mjs +18 -14
- package/dist-browser/protocol/Authorize.mjs.map +1 -1
- package/dist-browser/protocol/Token.mjs +5 -3
- package/dist-browser/protocol/Token.mjs.map +1 -1
- package/dist-browser/request/AuthenticationHeaderParser.mjs +4 -4
- package/dist-browser/request/AuthenticationHeaderParser.mjs.map +1 -1
- package/dist-browser/request/BaseAuthRequest.mjs +3 -3
- package/dist-browser/request/BaseAuthRequest.mjs.map +1 -1
- package/dist-browser/request/RequestParameterBuilder.mjs +50 -31
- package/dist-browser/request/RequestParameterBuilder.mjs.map +1 -1
- package/dist-browser/request/ScopeSet.mjs +13 -12
- package/dist-browser/request/ScopeSet.mjs.map +1 -1
- package/dist-browser/response/ResponseHandler.mjs +32 -29
- package/dist-browser/response/ResponseHandler.mjs.map +1 -1
- package/dist-browser/telemetry/performance/PerformanceClient.mjs +9 -9
- package/dist-browser/telemetry/performance/PerformanceClient.mjs.map +1 -1
- package/dist-browser/telemetry/performance/PerformanceEvent.mjs +1 -1
- package/dist-browser/telemetry/performance/PerformanceEvents.mjs +1 -1
- package/dist-browser/telemetry/performance/StubPerformanceClient.mjs +1 -1
- package/dist-browser/telemetry/server/ServerTelemetryManager.mjs +1 -1
- package/dist-browser/url/UrlString.mjs +15 -14
- package/dist-browser/url/UrlString.mjs.map +1 -1
- package/dist-browser/utils/ClientAssertionUtils.mjs +3 -2
- package/dist-browser/utils/ClientAssertionUtils.mjs.map +1 -1
- package/dist-browser/utils/Constants.mjs +7 -3
- package/dist-browser/utils/Constants.mjs.map +1 -1
- package/dist-browser/utils/FunctionWrappers.mjs +7 -7
- package/dist-browser/utils/FunctionWrappers.mjs.map +1 -1
- package/dist-browser/utils/ProtocolUtils.mjs +12 -9
- package/dist-browser/utils/ProtocolUtils.mjs.map +1 -1
- package/dist-browser/utils/StringUtils.mjs +1 -1
- package/dist-browser/utils/TimeUtils.mjs +1 -1
- package/dist-browser/utils/UrlUtils.mjs +6 -6
- package/dist-browser/utils/UrlUtils.mjs.map +1 -1
- package/lib/index-browser.cjs +8 -8
- package/lib/index-browser.cjs.map +1 -1
- package/lib/{index-node-7wFgJ2eB.js → index-node-BSFEsmmC.js} +407 -325
- package/lib/index-node-BSFEsmmC.js.map +1 -0
- package/lib/index-node.cjs +2 -2
- package/lib/index.cjs +2 -2
- package/package.json +3 -5
- package/src/account/AccountInfo.ts +19 -1
- package/src/account/AuthToken.ts +19 -21
- package/src/account/ClientCredentials.ts +1 -0
- package/src/account/ClientInfo.ts +8 -3
- package/src/authority/Authority.ts +73 -38
- package/src/authority/AuthorityFactory.ts +4 -2
- package/src/authority/AuthorityMetadata.ts +2 -1
- package/src/authority/RegionDiscovery.ts +18 -11
- package/src/cache/CacheManager.ts +160 -57
- package/src/cache/entities/AccountEntity.ts +4 -0
- package/src/cache/entities/CredentialEntity.ts +2 -0
- package/src/cache/interface/ICacheManager.ts +1 -0
- package/src/cache/utils/AccountEntityUtils.ts +29 -3
- package/src/cache/utils/CacheHelpers.ts +18 -3
- package/src/cache/utils/CacheTypes.ts +2 -0
- package/src/client/AuthorizationCodeClient.ts +10 -4
- package/src/client/RefreshTokenClient.ts +12 -5
- package/src/client/SilentFlowClient.ts +17 -20
- package/src/config/ClientConfiguration.ts +14 -4
- package/src/constants/AADServerParamKeys.ts +5 -0
- package/src/crypto/ICrypto.ts +40 -10
- package/src/crypto/JoseHeader.ts +8 -2
- package/src/crypto/PopTokenGenerator.ts +1 -1
- package/src/error/AuthError.ts +9 -5
- package/src/error/ClientAuthError.ts +8 -3
- package/src/error/ClientAuthErrorCodes.ts +0 -2
- package/src/error/ClientConfigurationError.ts +5 -4
- package/src/error/InteractionRequiredAuthError.ts +9 -5
- package/src/error/JoseHeaderError.ts +11 -4
- package/src/error/NetworkError.ts +6 -1
- package/src/error/PlatformBrokerError.ts +2 -1
- package/src/error/ServerError.ts +3 -2
- package/src/logger/Logger.ts +25 -10
- package/src/network/INetworkModule.ts +3 -2
- package/src/network/ThrottlingUtils.ts +1 -0
- package/src/packageMetadata.ts +1 -1
- package/src/protocol/Authorize.ts +23 -6
- package/src/protocol/Token.ts +6 -1
- package/src/request/AuthenticationHeaderParser.ts +6 -3
- package/src/request/BaseAuthRequest.ts +8 -2
- package/src/request/RequestParameterBuilder.ts +67 -43
- package/src/request/ScopeSet.ts +27 -11
- package/src/response/ImdsComputeResponse.ts +14 -0
- package/src/response/ResponseHandler.ts +46 -32
- package/src/url/UrlString.ts +32 -13
- package/src/utils/ClientAssertionUtils.ts +3 -1
- package/src/utils/Constants.ts +6 -3
- package/src/utils/ProtocolUtils.ts +26 -8
- package/src/utils/UrlUtils.ts +8 -3
- package/types/account/AccountInfo.d.ts +8 -2
- package/types/account/AccountInfo.d.ts.map +1 -1
- package/types/account/AuthToken.d.ts +2 -6
- package/types/account/AuthToken.d.ts.map +1 -1
- package/types/account/ClientCredentials.d.ts +1 -0
- package/types/account/ClientCredentials.d.ts.map +1 -1
- package/types/account/ClientInfo.d.ts.map +1 -1
- package/types/authority/Authority.d.ts +5 -5
- package/types/authority/Authority.d.ts.map +1 -1
- package/types/authority/AuthorityFactory.d.ts.map +1 -1
- package/types/authority/AuthorityMetadata.d.ts.map +1 -1
- package/types/authority/RegionDiscovery.d.ts +3 -2
- package/types/authority/RegionDiscovery.d.ts.map +1 -1
- package/types/cache/CacheManager.d.ts +0 -7
- package/types/cache/CacheManager.d.ts.map +1 -1
- package/types/cache/entities/AccountEntity.d.ts +4 -0
- package/types/cache/entities/AccountEntity.d.ts.map +1 -1
- package/types/cache/entities/CredentialEntity.d.ts +2 -0
- package/types/cache/entities/CredentialEntity.d.ts.map +1 -1
- package/types/cache/interface/ICacheManager.d.ts +1 -0
- package/types/cache/interface/ICacheManager.d.ts.map +1 -1
- package/types/cache/utils/AccountEntityUtils.d.ts +7 -1
- package/types/cache/utils/AccountEntityUtils.d.ts.map +1 -1
- package/types/cache/utils/CacheHelpers.d.ts +4 -1
- package/types/cache/utils/CacheHelpers.d.ts.map +1 -1
- package/types/cache/utils/CacheTypes.d.ts +2 -1
- package/types/cache/utils/CacheTypes.d.ts.map +1 -1
- package/types/client/AuthorizationCodeClient.d.ts.map +1 -1
- package/types/client/RefreshTokenClient.d.ts.map +1 -1
- package/types/client/SilentFlowClient.d.ts.map +1 -1
- package/types/config/ClientConfiguration.d.ts +4 -0
- package/types/config/ClientConfiguration.d.ts.map +1 -1
- package/types/constants/AADServerParamKeys.d.ts +4 -0
- package/types/constants/AADServerParamKeys.d.ts.map +1 -1
- package/types/crypto/ICrypto.d.ts.map +1 -1
- package/types/crypto/JoseHeader.d.ts.map +1 -1
- package/types/error/AuthError.d.ts +2 -3
- package/types/error/AuthError.d.ts.map +1 -1
- package/types/error/ClientAuthError.d.ts +2 -2
- package/types/error/ClientAuthError.d.ts.map +1 -1
- package/types/error/ClientAuthErrorCodes.d.ts +0 -2
- package/types/error/ClientAuthErrorCodes.d.ts.map +1 -1
- package/types/error/ClientConfigurationError.d.ts +2 -2
- package/types/error/ClientConfigurationError.d.ts.map +1 -1
- package/types/error/InteractionRequiredAuthError.d.ts +2 -2
- package/types/error/InteractionRequiredAuthError.d.ts.map +1 -1
- package/types/error/JoseHeaderError.d.ts +2 -2
- package/types/error/JoseHeaderError.d.ts.map +1 -1
- package/types/error/NetworkError.d.ts.map +1 -1
- package/types/error/PlatformBrokerError.d.ts +1 -1
- package/types/error/PlatformBrokerError.d.ts.map +1 -1
- package/types/error/ServerError.d.ts +1 -1
- package/types/error/ServerError.d.ts.map +1 -1
- package/types/logger/Logger.d.ts.map +1 -1
- package/types/network/INetworkModule.d.ts.map +1 -1
- package/types/network/ThrottlingUtils.d.ts.map +1 -1
- package/types/packageMetadata.d.ts +1 -1
- package/types/packageMetadata.d.ts.map +1 -1
- package/types/protocol/Authorize.d.ts +6 -2
- package/types/protocol/Authorize.d.ts.map +1 -1
- package/types/protocol/Token.d.ts +2 -0
- package/types/protocol/Token.d.ts.map +1 -1
- package/types/request/AuthenticationHeaderParser.d.ts.map +1 -1
- package/types/request/BaseAuthRequest.d.ts +4 -0
- package/types/request/BaseAuthRequest.d.ts.map +1 -1
- package/types/request/RequestParameterBuilder.d.ts +13 -3
- package/types/request/RequestParameterBuilder.d.ts.map +1 -1
- package/types/request/ScopeSet.d.ts +4 -3
- package/types/request/ScopeSet.d.ts.map +1 -1
- package/types/response/ImdsComputeResponse.d.ts +10 -0
- package/types/response/ImdsComputeResponse.d.ts.map +1 -0
- package/types/response/ResponseHandler.d.ts +2 -1
- package/types/response/ResponseHandler.d.ts.map +1 -1
- package/types/url/UrlString.d.ts +5 -4
- package/types/url/UrlString.d.ts.map +1 -1
- package/types/utils/ClientAssertionUtils.d.ts +1 -1
- package/types/utils/ClientAssertionUtils.d.ts.map +1 -1
- package/types/utils/Constants.d.ts +6 -2
- package/types/utils/Constants.d.ts.map +1 -1
- package/types/utils/ProtocolUtils.d.ts +6 -3
- package/types/utils/ProtocolUtils.d.ts.map +1 -1
- package/types/utils/UrlUtils.d.ts.map +1 -1
- package/lib/index-node-7wFgJ2eB.js.map +0 -1
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.10.0 2026-06-23 */
|
|
2
2
|
'use strict';
|
|
3
3
|
import { RESOURCE_DELIM } from './Constants.mjs';
|
|
4
4
|
import { createClientAuthError } from '../error/ClientAuthError.mjs';
|
|
@@ -13,9 +13,10 @@ import { noCryptoObject, invalidState } from '../error/ClientAuthErrorCodes.mjs'
|
|
|
13
13
|
* @param cryptoObj
|
|
14
14
|
* @param userState
|
|
15
15
|
* @param meta
|
|
16
|
+
* @param correlationId
|
|
16
17
|
*/
|
|
17
|
-
function setRequestState(cryptoObj, userState, meta) {
|
|
18
|
-
const libraryState = generateLibraryState(cryptoObj, meta);
|
|
18
|
+
function setRequestState(cryptoObj, userState, meta, correlationId) {
|
|
19
|
+
const libraryState = generateLibraryState(cryptoObj, correlationId, meta);
|
|
19
20
|
return userState
|
|
20
21
|
? `${libraryState}${RESOURCE_DELIM}${userState}`
|
|
21
22
|
: libraryState;
|
|
@@ -23,11 +24,12 @@ function setRequestState(cryptoObj, userState, meta) {
|
|
|
23
24
|
/**
|
|
24
25
|
* Generates the state value used by the common library.
|
|
25
26
|
* @param cryptoObj
|
|
27
|
+
* @param correlationId
|
|
26
28
|
* @param meta
|
|
27
29
|
*/
|
|
28
|
-
function generateLibraryState(cryptoObj, meta) {
|
|
30
|
+
function generateLibraryState(cryptoObj, correlationId, meta) {
|
|
29
31
|
if (!cryptoObj) {
|
|
30
|
-
throw createClientAuthError(noCryptoObject);
|
|
32
|
+
throw createClientAuthError(noCryptoObject, correlationId);
|
|
31
33
|
}
|
|
32
34
|
// Create a state object containing a unique id and the timestamp of the request creation
|
|
33
35
|
const stateObj = {
|
|
@@ -43,13 +45,14 @@ function generateLibraryState(cryptoObj, meta) {
|
|
|
43
45
|
* Parses the state into the RequestStateObject, which contains the LibraryState info and the state passed by the user.
|
|
44
46
|
* @param base64Decode
|
|
45
47
|
* @param state
|
|
48
|
+
* @param correlationId
|
|
46
49
|
*/
|
|
47
|
-
function parseRequestState(base64Decode, state) {
|
|
50
|
+
function parseRequestState(base64Decode, state, correlationId) {
|
|
48
51
|
if (!base64Decode) {
|
|
49
|
-
throw createClientAuthError(noCryptoObject);
|
|
52
|
+
throw createClientAuthError(noCryptoObject, correlationId);
|
|
50
53
|
}
|
|
51
54
|
if (!state) {
|
|
52
|
-
throw createClientAuthError(invalidState);
|
|
55
|
+
throw createClientAuthError(invalidState, correlationId);
|
|
53
56
|
}
|
|
54
57
|
try {
|
|
55
58
|
// Split the state between library state and user passed state and decode them separately
|
|
@@ -66,7 +69,7 @@ function parseRequestState(base64Decode, state) {
|
|
|
66
69
|
};
|
|
67
70
|
}
|
|
68
71
|
catch (e) {
|
|
69
|
-
throw createClientAuthError(invalidState);
|
|
72
|
+
throw createClientAuthError(invalidState, correlationId);
|
|
70
73
|
}
|
|
71
74
|
}
|
|
72
75
|
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ProtocolUtils.mjs","sources":["../../src/utils/ProtocolUtils.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.noCryptoObject","ClientAuthErrorCodes.invalidState"],"mappings":";;;;;;AAAA;;;AAGG;AAUH
|
|
1
|
+
{"version":3,"file":"ProtocolUtils.mjs","sources":["../../src/utils/ProtocolUtils.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.noCryptoObject","ClientAuthErrorCodes.invalidState"],"mappings":";;;;;;AAAA;;;AAGG;AAUH;;;;;;AAMG;AACG,SAAU,eAAe,CAC3B,SAAkB,EAClB,SAA6B,EAC7B,IAAwC,EACxC,aAAqB,EAAA;IAErB,MAAM,YAAY,GAAG,oBAAoB,CAAC,SAAS,EAAE,aAAa,EAAE,IAAI,CAAC,CAAC;AAC1E,IAAA,OAAO,SAAS;AACZ,UAAE,CAAG,EAAA,YAAY,GAAG,cAAc,CAAA,EAAG,SAAS,CAAE,CAAA;UAC9C,YAAY,CAAC;AACvB,CAAC;AAED;;;;;AAKG;SACa,oBAAoB,CAChC,SAAkB,EAClB,aAAqB,EACrB,IAA6B,EAAA;IAE7B,IAAI,CAAC,SAAS,EAAE;QACZ,MAAM,qBAAqB,CACvBA,cAAmC,EACnC,aAAa,CAChB,CAAC;AACL,KAAA;;AAGD,IAAA,MAAM,QAAQ,GAAuB;AACjC,QAAA,EAAE,EAAE,SAAS,CAAC,aAAa,EAAE;KAChC,CAAC;AAEF,IAAA,IAAI,IAAI,EAAE;AACN,QAAA,QAAQ,CAAC,IAAI,GAAG,IAAI,CAAC;AACxB,KAAA;IAED,MAAM,WAAW,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;AAE7C,IAAA,OAAO,SAAS,CAAC,YAAY,CAAC,WAAW,CAAC,CAAC;AAC/C,CAAC;AAED;;;;;AAKG;SACa,iBAAiB,CAC7B,YAAuC,EACvC,KAAa,EACb,aAAqB,EAAA;IAErB,IAAI,CAAC,YAAY,EAAE;QACf,MAAM,qBAAqB,CACvBA,cAAmC,EACnC,aAAa,CAChB,CAAC;AACL,KAAA;IAED,IAAI,CAAC,KAAK,EAAE;QACR,MAAM,qBAAqB,CACvBC,YAAiC,EACjC,aAAa,CAChB,CAAC;AACL,KAAA;IAED,IAAI;;QAEA,MAAM,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;AAC/C,QAAA,MAAM,YAAY,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;AACnC,QAAA,MAAM,SAAS,GACX,UAAU,CAAC,MAAM,GAAG,CAAC;cACf,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC;cACxC,EAAE,CAAC;AACb,QAAA,MAAM,kBAAkB,GAAG,YAAY,CAAC,YAAY,CAAC,CAAC;QACtD,MAAM,eAAe,GAAG,IAAI,CAAC,KAAK,CAC9B,kBAAkB,CACC,CAAC;QACxB,OAAO;YACH,gBAAgB,EAAE,SAAS,IAAI,EAAE;AACjC,YAAA,YAAY,EAAE,eAAe;SAChC,CAAC;AACL,KAAA;AAAC,IAAA,OAAO,CAAC,EAAE;QACR,MAAM,qBAAqB,CACvBA,YAAiC,EACjC,aAAa,CAChB,CAAC;AACL,KAAA;AACL;;;;"}
|
package/dist/utils/TimeUtils.mjs
CHANGED
package/dist/utils/UrlUtils.mjs
CHANGED
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.10.0 2026-06-23 */
|
|
2
2
|
'use strict';
|
|
3
3
|
import { createClientAuthError } from '../error/ClientAuthError.mjs';
|
|
4
4
|
import { createClientConfigurationError } from '../error/ClientConfigurationError.mjs';
|
|
@@ -46,7 +46,7 @@ function getDeserializedResponse(responseString) {
|
|
|
46
46
|
}
|
|
47
47
|
}
|
|
48
48
|
catch (e) {
|
|
49
|
-
throw createClientAuthError(hashNotDeserialized);
|
|
49
|
+
throw createClientAuthError(hashNotDeserialized, "");
|
|
50
50
|
}
|
|
51
51
|
return null;
|
|
52
52
|
}
|
|
@@ -103,7 +103,7 @@ function normalizeUrlForComparison(url, logger, correlationId) {
|
|
|
103
103
|
}
|
|
104
104
|
catch (e) {
|
|
105
105
|
logger?.error(`Failed to normalize URL for comparison: '${e}'`, correlationId || "");
|
|
106
|
-
throw createClientConfigurationError(urlParseError);
|
|
106
|
+
throw createClientConfigurationError(urlParseError, correlationId || "");
|
|
107
107
|
}
|
|
108
108
|
}
|
|
109
109
|
/**
|
|
@@ -121,7 +121,7 @@ function validateUrl(url, logger, correlationId) {
|
|
|
121
121
|
}
|
|
122
122
|
catch (e) {
|
|
123
123
|
logger?.error(`Failed to validate URL: '${e}'`, correlationId || "");
|
|
124
|
-
throw createClientConfigurationError(urlParseError);
|
|
124
|
+
throw createClientConfigurationError(urlParseError, correlationId || "");
|
|
125
125
|
}
|
|
126
126
|
}
|
|
127
127
|
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"UrlUtils.mjs","sources":["../../src/utils/UrlUtils.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.hashNotDeserialized","ClientConfigurationErrorCodes.urlParseError"],"mappings":";;;;;;;AAAA;;;AAGG;AAaH;;;AAGG;AACG,SAAU,uBAAuB,CAAC,cAAsB,EAAA;AAC1D,IAAA,IAAI,cAAc,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE;AACjC,QAAA,OAAO,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;AACtC,KAAA;AAAM,SAAA,IACH,cAAc,CAAC,UAAU,CAAC,GAAG,CAAC;AAC9B,QAAA,cAAc,CAAC,UAAU,CAAC,GAAG,CAAC,EAChC;AACE,QAAA,OAAO,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;AACtC,KAAA;AAED,IAAA,OAAO,cAAc,CAAC;AAC1B,CAAC;AAED;;AAEG;AACG,SAAU,uBAAuB,CACnC,cAAsB,EAAA;;IAGtB,IAAI,CAAC,cAAc,IAAI,cAAc,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE;AACpD,QAAA,OAAO,IAAI,CAAC;AACf,KAAA;IACD,IAAI;;AAEA,QAAA,MAAM,kBAAkB,GAAG,uBAAuB,CAAC,cAAc,CAAC,CAAC;;AAEnE,QAAA,MAAM,gBAAgB,GAAsB,MAAM,CAAC,WAAW,CAC1D,IAAI,eAAe,CAAC,kBAAkB,CAAC,CAC1C,CAAC;;QAGF,IACI,gBAAgB,CAAC,IAAI;AACrB,YAAA,gBAAgB,CAAC,OAAO;AACxB,YAAA,gBAAgB,CAAC,KAAK;AACtB,YAAA,gBAAgB,CAAC,iBAAiB;YAClC,gBAAgB,CAAC,KAAK,EACxB;AACE,YAAA,OAAO,gBAAgB,CAAC;AAC3B,SAAA;AACJ,KAAA;AAAC,IAAA,OAAO,CAAC,EAAE;
|
|
1
|
+
{"version":3,"file":"UrlUtils.mjs","sources":["../../src/utils/UrlUtils.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.hashNotDeserialized","ClientConfigurationErrorCodes.urlParseError"],"mappings":";;;;;;;AAAA;;;AAGG;AAaH;;;AAGG;AACG,SAAU,uBAAuB,CAAC,cAAsB,EAAA;AAC1D,IAAA,IAAI,cAAc,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE;AACjC,QAAA,OAAO,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;AACtC,KAAA;AAAM,SAAA,IACH,cAAc,CAAC,UAAU,CAAC,GAAG,CAAC;AAC9B,QAAA,cAAc,CAAC,UAAU,CAAC,GAAG,CAAC,EAChC;AACE,QAAA,OAAO,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;AACtC,KAAA;AAED,IAAA,OAAO,cAAc,CAAC;AAC1B,CAAC;AAED;;AAEG;AACG,SAAU,uBAAuB,CACnC,cAAsB,EAAA;;IAGtB,IAAI,CAAC,cAAc,IAAI,cAAc,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE;AACpD,QAAA,OAAO,IAAI,CAAC;AACf,KAAA;IACD,IAAI;;AAEA,QAAA,MAAM,kBAAkB,GAAG,uBAAuB,CAAC,cAAc,CAAC,CAAC;;AAEnE,QAAA,MAAM,gBAAgB,GAAsB,MAAM,CAAC,WAAW,CAC1D,IAAI,eAAe,CAAC,kBAAkB,CAAC,CAC1C,CAAC;;QAGF,IACI,gBAAgB,CAAC,IAAI;AACrB,YAAA,gBAAgB,CAAC,OAAO;AACxB,YAAA,gBAAgB,CAAC,KAAK;AACtB,YAAA,gBAAgB,CAAC,iBAAiB;YAClC,gBAAgB,CAAC,KAAK,EACxB;AACE,YAAA,OAAO,gBAAgB,CAAC;AAC3B,SAAA;AACJ,KAAA;AAAC,IAAA,OAAO,CAAC,EAAE;QACR,MAAM,qBAAqB,CACvBA,mBAAwC,EACxC,EAAE,CACL,CAAC;AACL,KAAA;AAED,IAAA,OAAO,IAAI,CAAC;AAChB,CAAC;AAED;;AAEG;AACG,SAAU,gBAAgB,CAAC,UAA+B,EAAA;AAC5D,IAAA,MAAM,mBAAmB,GAAkB,IAAI,KAAK,EAAU,CAAC;IAE/D,UAAU,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,KAAI;AAC9B,QAAA,mBAAmB,CAAC,IAAI,CAAC,CAAA,EAAG,GAAG,CAAA,CAAA,EAAI,kBAAkB,CAAC,KAAK,CAAC,CAAE,CAAA,CAAC,CAAC;AACpE,KAAC,CAAC,CAAC;AAEH,IAAA,OAAO,mBAAmB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACzC,CAAC;AAED;;;;;;;;;;;;AAYG;SACa,yBAAyB,CACrC,GAAW,EACX,MAAe,EACf,aAAsB,EAAA;IAEtB,IAAI,CAAC,GAAG,EAAE;AACN,QAAA,OAAO,GAAG,CAAC;AACd,KAAA;IAED,MAAM,cAAc,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACzC,IAAI,CAAC,cAAc,EAAE;AACjB,QAAA,OAAO,cAAc,CAAC;AACzB,KAAA;IAED,IAAI;AACA,QAAA,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,cAAc,CAAC,CAAC;;AAGvC,QAAA,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE;AAChB,YAAA,MAAM,CAAC,MAAM,GAAG,EAAE,CAAC;AACtB,SAAA;;AAGD,QAAA,IAAI,QAAQ,CAAC;QACb,IAAI;AACA,YAAA,QAAQ,GAAG,kBAAkB,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;AAClD,SAAA;AAAC,QAAA,OAAO,CAAC,EAAE;AACR,YAAA,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;AAC9B,SAAA;AAED,QAAA,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE;YACzB,QAAQ,IAAI,GAAG,CAAC;AACnB,SAAA;AACD,QAAA,MAAM,CAAC,QAAQ,GAAG,QAAQ,CAAC;QAE3B,OAAO,MAAM,CAAC,IAAI,CAAC;AACtB,KAAA;AAAC,IAAA,OAAO,CAAC,EAAE;QACR,MAAM,EAAE,KAAK,CACT,CAA4C,yCAAA,EAAA,CAAC,CAAG,CAAA,CAAA,EAChD,aAAa,IAAI,EAAE,CACtB,CAAC;QACF,MAAM,8BAA8B,CAChCC,aAA2C,EAC3C,aAAa,IAAI,EAAE,CACtB,CAAC;AACL,KAAA;AACL,CAAC;AAED;;;;;;;;AAQG;SACa,WAAW,CACvB,GAAW,EACX,MAAe,EACf,aAAsB,EAAA;IAEtB,IAAI;AACA,QAAA,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;AAChB,KAAA;AAAC,IAAA,OAAO,CAAC,EAAE;QACR,MAAM,EAAE,KAAK,CAAC,CAA4B,yBAAA,EAAA,CAAC,CAAG,CAAA,CAAA,EAAE,aAAa,IAAI,EAAE,CAAC,CAAC;QACrE,MAAM,8BAA8B,CAChCA,aAA2C,EAC3C,aAAa,IAAI,EAAE,CACtB,CAAC;AACL,KAAA;AACL;;;;"}
|
|
@@ -1,5 +1,7 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.10.0 2026-06-23 */
|
|
2
2
|
'use strict';
|
|
3
|
+
import { isKmsi } from './AuthToken.mjs';
|
|
4
|
+
|
|
3
5
|
/*
|
|
4
6
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
5
7
|
* Licensed under the MIT License.
|
|
@@ -20,10 +22,11 @@ function tenantIdMatchesHomeTenant(tenantId, homeAccountId) {
|
|
|
20
22
|
* @param homeAccountId - Home account identifier for this account object
|
|
21
23
|
* @param localAccountId - Local account identifer for this account object
|
|
22
24
|
* @param tenantId - Full tenant or organizational id that this account belongs to
|
|
25
|
+
* @param nativeAccountId - Native account identifier for this tenant
|
|
23
26
|
* @param idTokenClaims - Claims from the ID token
|
|
24
27
|
* @returns
|
|
25
28
|
*/
|
|
26
|
-
function buildTenantProfile(homeAccountId, localAccountId, tenantId, idTokenClaims) {
|
|
29
|
+
function buildTenantProfile(homeAccountId, localAccountId, tenantId, nativeAccountId, idTokenClaims) {
|
|
27
30
|
if (idTokenClaims) {
|
|
28
31
|
const { oid, sub, tid, name, tfp, acr, preferred_username, upn, login_hint, } = idTokenClaims;
|
|
29
32
|
/**
|
|
@@ -41,6 +44,7 @@ function buildTenantProfile(homeAccountId, localAccountId, tenantId, idTokenClai
|
|
|
41
44
|
loginHint: login_hint,
|
|
42
45
|
isHomeTenant: tenantIdMatchesHomeTenant(tenantId, homeAccountId),
|
|
43
46
|
upn: upn,
|
|
47
|
+
...(nativeAccountId && { nativeAccountId }),
|
|
44
48
|
};
|
|
45
49
|
}
|
|
46
50
|
else {
|
|
@@ -49,6 +53,7 @@ function buildTenantProfile(homeAccountId, localAccountId, tenantId, idTokenClai
|
|
|
49
53
|
localAccountId,
|
|
50
54
|
username: "",
|
|
51
55
|
isHomeTenant: tenantIdMatchesHomeTenant(tenantId, homeAccountId),
|
|
56
|
+
...(nativeAccountId && { nativeAccountId }),
|
|
52
57
|
};
|
|
53
58
|
}
|
|
54
59
|
}
|
|
@@ -70,12 +75,13 @@ function updateAccountTenantProfileData(baseAccountInfo, tenantProfile, idTokenC
|
|
|
70
75
|
if (idTokenClaims) {
|
|
71
76
|
// Ignore isHomeTenant which is a utility property of tenant profile but not required in base account info
|
|
72
77
|
// eslint-disable-next-line @typescript-eslint/no-unused-vars
|
|
73
|
-
const { isHomeTenant, ...claimsSourcedTenantProfile } = buildTenantProfile(baseAccountInfo.homeAccountId, baseAccountInfo.localAccountId, baseAccountInfo.tenantId, idTokenClaims);
|
|
78
|
+
const { isHomeTenant, ...claimsSourcedTenantProfile } = buildTenantProfile(baseAccountInfo.homeAccountId, baseAccountInfo.localAccountId, baseAccountInfo.tenantId, updatedAccountInfo.nativeAccountId, idTokenClaims);
|
|
74
79
|
updatedAccountInfo = {
|
|
75
80
|
...updatedAccountInfo,
|
|
76
81
|
...claimsSourcedTenantProfile,
|
|
77
82
|
idTokenClaims: idTokenClaims,
|
|
78
83
|
idToken: idTokenSecret,
|
|
84
|
+
kmsi: isKmsi(idTokenClaims),
|
|
79
85
|
};
|
|
80
86
|
return updatedAccountInfo;
|
|
81
87
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"AccountInfo.mjs","sources":["../../src/account/AccountInfo.ts"],"sourcesContent":[null],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"AccountInfo.mjs","sources":["../../src/account/AccountInfo.ts"],"sourcesContent":[null],"names":[],"mappings":";;;;AAAA;;;AAGG;AA6EH;;;;;AAKG;AACa,SAAA,yBAAyB,CACrC,QAAiB,EACjB,aAAsB,EAAA;IAEtB,QACI,CAAC,CAAC,QAAQ;AACV,QAAA,CAAC,CAAC,aAAa;QACf,QAAQ,KAAK,aAAa,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAC1C;AACN,CAAC;AAED;;;;;;;;AAQG;AACG,SAAU,kBAAkB,CAC9B,aAAqB,EACrB,cAAsB,EACtB,QAAgB,EAChB,eAAwB,EACxB,aAA2B,EAAA;AAE3B,IAAA,IAAI,aAAa,EAAE;QACf,MAAM,EACF,GAAG,EACH,GAAG,EACH,GAAG,EACH,IAAI,EACJ,GAAG,EACH,GAAG,EACH,kBAAkB,EAClB,GAAG,EACH,UAAU,GACb,GAAG,aAAa,CAAC;AAElB;;;;;AAKG;QACH,MAAM,QAAQ,GAAG,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI,EAAE,CAAC;QAEzC,OAAO;AACH,YAAA,QAAQ,EAAE,QAAQ;AAClB,YAAA,cAAc,EAAE,GAAG,IAAI,GAAG,IAAI,EAAE;AAChC,YAAA,IAAI,EAAE,IAAI;AACV,YAAA,QAAQ,EAAE,kBAAkB,IAAI,GAAG,IAAI,EAAE;AACzC,YAAA,SAAS,EAAE,UAAU;AACrB,YAAA,YAAY,EAAE,yBAAyB,CAAC,QAAQ,EAAE,aAAa,CAAC;AAChE,YAAA,GAAG,EAAE,GAAG;AACR,YAAA,IAAI,eAAe,IAAI,EAAE,eAAe,EAAE,CAAC;SAC9C,CAAC;AACL,KAAA;AAAM,SAAA;QACH,OAAO;YACH,QAAQ;YACR,cAAc;AACd,YAAA,QAAQ,EAAE,EAAE;AACZ,YAAA,YAAY,EAAE,yBAAyB,CAAC,QAAQ,EAAE,aAAa,CAAC;AAChE,YAAA,IAAI,eAAe,IAAI,EAAE,eAAe,EAAE,CAAC;SAC9C,CAAC;AACL,KAAA;AACL,CAAC;AAED;;;;;AAKG;AACG,SAAU,8BAA8B,CAC1C,eAA4B,EAC5B,aAA6B,EAC7B,aAA2B,EAC3B,aAAsB,EAAA;IAEtB,IAAI,kBAAkB,GAAG,eAAe,CAAC;;AAEzC,IAAA,IAAI,aAAa,EAAE;;QAEf,MAAM,EAAE,YAAY,EAAE,GAAG,qBAAqB,EAAE,GAAG,aAAa,CAAC;QACjE,kBAAkB,GAAG,EAAE,GAAG,eAAe,EAAE,GAAG,qBAAqB,EAAE,CAAC;AACzE,KAAA;;AAGD,IAAA,IAAI,aAAa,EAAE;;;QAGf,MAAM,EAAE,YAAY,EAAE,GAAG,0BAA0B,EAAE,GACjD,kBAAkB,CACd,eAAe,CAAC,aAAa,EAC7B,eAAe,CAAC,cAAc,EAC9B,eAAe,CAAC,QAAQ,EACxB,kBAAkB,CAAC,eAAe,EAClC,aAAa,CAChB,CAAC;AAEN,QAAA,kBAAkB,GAAG;AACjB,YAAA,GAAG,kBAAkB;AACrB,YAAA,GAAG,0BAA0B;AAC7B,YAAA,aAAa,EAAE,aAAa;AAC5B,YAAA,OAAO,EAAE,aAAa;AACtB,YAAA,IAAI,EAAE,MAAM,CAAC,aAAa,CAAC;SAC9B,CAAC;AAEF,QAAA,OAAO,kBAAkB,CAAC;AAC7B,KAAA;AAED,IAAA,OAAO,kBAAkB,CAAC;AAC9B;;;;"}
|
|
@@ -1,7 +1,7 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.10.0 2026-06-23 */
|
|
2
2
|
'use strict';
|
|
3
3
|
import { createClientAuthError } from '../error/ClientAuthError.mjs';
|
|
4
|
-
import { tokenParsingError, nullOrEmptyToken
|
|
4
|
+
import { tokenParsingError, nullOrEmptyToken } from '../error/ClientAuthErrorCodes.mjs';
|
|
5
5
|
|
|
6
6
|
/*
|
|
7
7
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
@@ -12,8 +12,8 @@ import { tokenParsingError, nullOrEmptyToken, maxAgeTranspired } from '../error/
|
|
|
12
12
|
*
|
|
13
13
|
* @param encodedToken
|
|
14
14
|
*/
|
|
15
|
-
function extractTokenClaims(encodedToken, base64Decode) {
|
|
16
|
-
const jswPayload = getJWSPayload(encodedToken);
|
|
15
|
+
function extractTokenClaims(encodedToken, base64Decode, correlationId) {
|
|
16
|
+
const jswPayload = getJWSPayload(encodedToken, correlationId);
|
|
17
17
|
// token will be decoded to get the username
|
|
18
18
|
try {
|
|
19
19
|
// base64Decode() should throw an error if there is an issue
|
|
@@ -21,7 +21,7 @@ function extractTokenClaims(encodedToken, base64Decode) {
|
|
|
21
21
|
return JSON.parse(base64Decoded);
|
|
22
22
|
}
|
|
23
23
|
catch (err) {
|
|
24
|
-
throw createClientAuthError(tokenParsingError);
|
|
24
|
+
throw createClientAuthError(tokenParsingError, correlationId);
|
|
25
25
|
}
|
|
26
26
|
}
|
|
27
27
|
/**
|
|
@@ -48,14 +48,14 @@ function isKmsi(idTokenClaims) {
|
|
|
48
48
|
*
|
|
49
49
|
* @param authToken
|
|
50
50
|
*/
|
|
51
|
-
function getJWSPayload(authToken) {
|
|
51
|
+
function getJWSPayload(authToken, correlationId) {
|
|
52
52
|
if (!authToken) {
|
|
53
|
-
throw createClientAuthError(nullOrEmptyToken);
|
|
53
|
+
throw createClientAuthError(nullOrEmptyToken, correlationId);
|
|
54
54
|
}
|
|
55
55
|
const tokenPartsRegex = /^([^\.\s]*)\.([^\.\s]+)\.([^\.\s]*)$/;
|
|
56
56
|
const matches = tokenPartsRegex.exec(authToken);
|
|
57
57
|
if (!matches || matches.length < 4) {
|
|
58
|
-
throw createClientAuthError(tokenParsingError);
|
|
58
|
+
throw createClientAuthError(tokenParsingError, correlationId);
|
|
59
59
|
}
|
|
60
60
|
/**
|
|
61
61
|
* const crackedToken = {
|
|
@@ -65,21 +65,7 @@ function getJWSPayload(authToken) {
|
|
|
65
65
|
* };
|
|
66
66
|
*/
|
|
67
67
|
return matches[2];
|
|
68
|
-
}
|
|
69
|
-
/**
|
|
70
|
-
* Determine if the token's max_age has transpired
|
|
71
|
-
*/
|
|
72
|
-
function checkMaxAge(authTime, maxAge) {
|
|
73
|
-
/*
|
|
74
|
-
* per https://openid.net/specs/openid-connect-core-1_0.html#AuthRequest
|
|
75
|
-
* To force an immediate re-authentication: If an app requires that a user re-authenticate prior to access,
|
|
76
|
-
* provide a value of 0 for the max_age parameter and the AS will force a fresh login.
|
|
77
|
-
*/
|
|
78
|
-
const fiveMinuteSkew = 300000; // five minutes in milliseconds
|
|
79
|
-
if (maxAge === 0 || Date.now() - fiveMinuteSkew > authTime + maxAge) {
|
|
80
|
-
throw createClientAuthError(maxAgeTranspired);
|
|
81
|
-
}
|
|
82
68
|
}
|
|
83
69
|
|
|
84
|
-
export {
|
|
70
|
+
export { extractTokenClaims, getJWSPayload, isKmsi };
|
|
85
71
|
//# sourceMappingURL=AuthToken.mjs.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"AuthToken.mjs","sources":["../../src/account/AuthToken.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.tokenParsingError","ClientAuthErrorCodes.nullOrEmptyToken"
|
|
1
|
+
{"version":3,"file":"AuthToken.mjs","sources":["../../src/account/AuthToken.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.tokenParsingError","ClientAuthErrorCodes.nullOrEmptyToken"],"mappings":";;;;;AAAA;;;AAGG;AAQH;;;;AAIG;SACa,kBAAkB,CAC9B,YAAoB,EACpB,YAAuC,EACvC,aAAqB,EAAA;IAErB,MAAM,UAAU,GAAG,aAAa,CAAC,YAAY,EAAE,aAAa,CAAC,CAAC;;IAG9D,IAAI;;AAEA,QAAA,MAAM,aAAa,GAAG,YAAY,CAAC,UAAU,CAAC,CAAC;AAC/C,QAAA,OAAO,IAAI,CAAC,KAAK,CAAC,aAAa,CAAgB,CAAC;AACnD,KAAA;AAAC,IAAA,OAAO,GAAG,EAAE;QACV,MAAM,qBAAqB,CACvBA,iBAAsC,EACtC,aAAa,CAChB,CAAC;AACL,KAAA;AACL,CAAC;AAED;;;;AAIG;AACG,SAAU,MAAM,CAAC,aAA0B,EAAA;AAC7C,IAAA,IAAI,CAAC,aAAa,CAAC,YAAY,EAAE;AAC7B,QAAA,OAAO,KAAK,CAAC;AAChB,KAAA;AACD;;;;;;AAMG;IACH,MAAM,UAAU,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IACxC,OAAO,aAAa,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,KAAK,KACzC,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,CAClD,CAAC;AACN,CAAC;AAED;;;;AAIG;AACa,SAAA,aAAa,CACzB,SAAiB,EACjB,aAAqB,EAAA;IAErB,IAAI,CAAC,SAAS,EAAE;QACZ,MAAM,qBAAqB,CACvBC,gBAAqC,EACrC,aAAa,CAChB,CAAC;AACL,KAAA;IACD,MAAM,eAAe,GAAG,sCAAsC,CAAC;IAC/D,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAChD,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE;QAChC,MAAM,qBAAqB,CACvBD,iBAAsC,EACtC,aAAa,CAChB,CAAC;AACL,KAAA;AACD;;;;;;AAMG;AAEH,IAAA,OAAO,OAAO,CAAC,CAAC,CAAC,CAAC;AACtB;;;;"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
/*! @azure/msal-common v16.
|
|
1
|
+
/*! @azure/msal-common v16.10.0 2026-06-23 */
|
|
2
2
|
'use strict';
|
|
3
3
|
import { createClientAuthError } from '../error/ClientAuthError.mjs';
|
|
4
4
|
import { CLIENT_INFO_SEPARATOR } from '../utils/Constants.mjs';
|
|
@@ -15,14 +15,14 @@ import { clientInfoEmptyError, clientInfoDecodingError } from '../error/ClientAu
|
|
|
15
15
|
*/
|
|
16
16
|
function buildClientInfo(rawClientInfo, base64Decode) {
|
|
17
17
|
if (!rawClientInfo) {
|
|
18
|
-
throw createClientAuthError(clientInfoEmptyError);
|
|
18
|
+
throw createClientAuthError(clientInfoEmptyError, "");
|
|
19
19
|
}
|
|
20
20
|
try {
|
|
21
21
|
const decodedClientInfo = base64Decode(rawClientInfo);
|
|
22
22
|
return JSON.parse(decodedClientInfo);
|
|
23
23
|
}
|
|
24
24
|
catch (e) {
|
|
25
|
-
throw createClientAuthError(clientInfoDecodingError);
|
|
25
|
+
throw createClientAuthError(clientInfoDecodingError, "");
|
|
26
26
|
}
|
|
27
27
|
}
|
|
28
28
|
/**
|
|
@@ -31,7 +31,7 @@ function buildClientInfo(rawClientInfo, base64Decode) {
|
|
|
31
31
|
*/
|
|
32
32
|
function buildClientInfoFromHomeAccountId(homeAccountId) {
|
|
33
33
|
if (!homeAccountId) {
|
|
34
|
-
throw createClientAuthError(clientInfoDecodingError);
|
|
34
|
+
throw createClientAuthError(clientInfoDecodingError, "");
|
|
35
35
|
}
|
|
36
36
|
const clientInfoParts = homeAccountId.split(CLIENT_INFO_SEPARATOR, 2);
|
|
37
37
|
return {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ClientInfo.mjs","sources":["../../src/account/ClientInfo.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.clientInfoEmptyError","ClientAuthErrorCodes.clientInfoDecodingError","Constants.CLIENT_INFO_SEPARATOR"],"mappings":";;;;;;AAAA;;;AAGG;AAoBH;;;;AAIG;AACa,SAAA,eAAe,CAC3B,aAAqB,EACrB,YAAuC,EAAA;IAEvC,IAAI,CAAC,aAAa,EAAE;
|
|
1
|
+
{"version":3,"file":"ClientInfo.mjs","sources":["../../src/account/ClientInfo.ts"],"sourcesContent":[null],"names":["ClientAuthErrorCodes.clientInfoEmptyError","ClientAuthErrorCodes.clientInfoDecodingError","Constants.CLIENT_INFO_SEPARATOR"],"mappings":";;;;;;AAAA;;;AAGG;AAoBH;;;;AAIG;AACa,SAAA,eAAe,CAC3B,aAAqB,EACrB,YAAuC,EAAA;IAEvC,IAAI,CAAC,aAAa,EAAE;QAChB,MAAM,qBAAqB,CACvBA,oBAAyC,EACzC,EAAE,CACL,CAAC;AACL,KAAA;IAED,IAAI;AACA,QAAA,MAAM,iBAAiB,GAAW,YAAY,CAAC,aAAa,CAAC,CAAC;AAC9D,QAAA,OAAO,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAe,CAAC;AACtD,KAAA;AAAC,IAAA,OAAO,CAAC,EAAE;QACR,MAAM,qBAAqB,CACvBC,uBAA4C,EAC5C,EAAE,CACL,CAAC;AACL,KAAA;AACL,CAAC;AAED;;;AAGG;AACG,SAAU,gCAAgC,CAC5C,aAAqB,EAAA;IAErB,IAAI,CAAC,aAAa,EAAE;QAChB,MAAM,qBAAqB,CACvBA,uBAA4C,EAC5C,EAAE,CACL,CAAC;AACL,KAAA;AACD,IAAA,MAAM,eAAe,GAAa,aAAa,CAAC,KAAK,CACjDC,qBAA+B,EAC/B,CAAC,CACJ,CAAC;IACF,OAAO;AACH,QAAA,GAAG,EAAE,eAAe,CAAC,CAAC,CAAC;AACvB,QAAA,IAAI,EAAE,eAAe,CAAC,MAAM,GAAG,CAAC,GAAG,EAAE,GAAG,eAAe,CAAC,CAAC,CAAC;KAC7D,CAAC;AACN;;;;"}
|