npm - @microsoft/teamsfx - Versions diffs - 3.0.0-alpha.e84e1682b.0 → 3.0.0-alpha.eb9d0eaa6.0 - Mend

@microsoft/teamsfx 3.0.0-alpha.e84e1682b.0 → 3.0.0-alpha.eb9d0eaa6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/dist/index.esm2017.js +1 -1734
package/dist/index.esm2017.js.map +1 -1
package/dist/index.esm2017.mjs +16 -3577
package/dist/index.esm2017.mjs.map +1 -1
package/dist/index.esm5.js +15 -1778
package/dist/index.esm5.js.map +1 -1
package/dist/index.node.cjs.js +15 -3735
package/dist/index.node.cjs.js.map +1 -1
package/package.json +8 -8
package/types/teamsfx.d.ts +0 -2181

package/dist/index.esm2017.js CHANGED Viewed

@@ -1,1735 +1,2 @@
-import { jwtDecode } from 'jwt-decode';
-import { app, authentication } from '@microsoft/teams-js';
-import { PublicClientApplication } from '@azure/msal-browser';
-import axios from 'axios';
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT license.
-/**
- * Error code to trace the error types.
- */
-var ErrorCode;
-(function (ErrorCode) {
-    /**
-     * Invalid parameter error.
-     */
-    ErrorCode["InvalidParameter"] = "InvalidParameter";
-    /**
-     * Invalid configuration error.
-     */
-    ErrorCode["InvalidConfiguration"] = "InvalidConfiguration";
-    /**
-     * Invalid certificate error.
-     */
-    ErrorCode["InvalidCertificate"] = "InvalidCertificate";
-    /**
-     * Internal error.
-     */
-    ErrorCode["InternalError"] = "InternalError";
-    /**
-     * Channel is not supported error.
-     */
-    ErrorCode["ChannelNotSupported"] = "ChannelNotSupported";
-    /**
-     * Failed to retrieve sso token
-     */
-    ErrorCode["FailedToRetrieveSsoToken"] = "FailedToRetrieveSsoToken";
-    /**
-     * Failed to process sso handler
-     */
-    ErrorCode["FailedToProcessSsoHandler"] = "FailedToProcessSsoHandler";
-    /**
-     * Cannot find command
-     */
-    ErrorCode["CannotFindCommand"] = "CannotFindCommand";
-    /**
-     * Failed to run sso step
-     */
-    ErrorCode["FailedToRunSsoStep"] = "FailedToRunSsoStep";
-    /**
-     * Failed to run dedup step
-     */
-    ErrorCode["FailedToRunDedupStep"] = "FailedToRunDedupStep";
-    /**
-     * Sso activity handler is undefined
-     */
-    ErrorCode["SsoActivityHandlerIsUndefined"] = "SsoActivityHandlerIsUndefined";
-    /**
-     * Runtime is not supported error.
-     */
-    ErrorCode["RuntimeNotSupported"] = "RuntimeNotSupported";
-    /**
-     * User failed to finish the AAD consent flow failed.
-     */
-    ErrorCode["ConsentFailed"] = "ConsentFailed";
-    /**
-     * The user or administrator has not consented to use the application error.
-     */
-    ErrorCode["UiRequiredError"] = "UiRequiredError";
-    /**
-     * Token is not within its valid time range error.
-     */
-    ErrorCode["TokenExpiredError"] = "TokenExpiredError";
-    /**
-     * Call service (AAD or simple authentication server) failed.
-     */
-    ErrorCode["ServiceError"] = "ServiceError";
-    /**
-     * Operation failed.
-     */
-    ErrorCode["FailedOperation"] = "FailedOperation";
-    /**
-     * Invalid response error.
-     */
-    ErrorCode["InvalidResponse"] = "InvalidResponse";
-    /**
-     * Authentication info already exists error.
-     */
-    ErrorCode["AuthorizationInfoAlreadyExists"] = "AuthorizationInfoAlreadyExists";
-})(ErrorCode || (ErrorCode = {}));
-/**
- * @internal
- */
-class ErrorMessage {
-}
-// InvalidConfiguration Error
-ErrorMessage.InvalidConfiguration = "{0} in configuration is invalid: {1}.";
-ErrorMessage.ConfigurationNotExists = "Configuration does not exist. {0}";
-ErrorMessage.ResourceConfigurationNotExists = "{0} resource configuration does not exist.";
-ErrorMessage.MissingResourceConfiguration = "Missing resource configuration with type: {0}, name: {1}.";
-ErrorMessage.AuthenticationConfigurationNotExists = "Authentication configuration does not exist.";
-// RuntimeNotSupported Error
-ErrorMessage.BrowserRuntimeNotSupported = "{0} is not supported in browser.";
-ErrorMessage.NodejsRuntimeNotSupported = "{0} is not supported in Node.";
-// Internal Error
-ErrorMessage.FailToAcquireTokenOnBehalfOfUser = "Failed to acquire access token on behalf of user: {0}";
-// ChannelNotSupported Error
-ErrorMessage.OnlyMSTeamsChannelSupported = "{0} is only supported in MS Teams Channel";
-ErrorMessage.FailedToProcessSsoHandler = "Failed to process sso handler: {0}";
-// FailedToRetrieveSsoToken Error
-ErrorMessage.FailedToRetrieveSsoToken = "Failed to retrieve sso token, user failed to finish the AAD consent flow.";
-// CannotFindCommand Error
-ErrorMessage.CannotFindCommand = "Cannot find command: {0}";
-ErrorMessage.FailedToRunSsoStep = "Failed to run dialog to retrieve sso token: {0}";
-ErrorMessage.FailedToRunDedupStep = "Failed to run dialog to remove duplicated messages: {0}";
-// SsoActivityHandlerIsUndefined Error
-ErrorMessage.SsoActivityHandlerIsNull = "Sso command can only be used or added when sso activity handler is not undefined";
-// AuthorizationInfoError
-ErrorMessage.AuthorizationHeaderAlreadyExists = "Authorization header already exists!";
-ErrorMessage.BasicCredentialAlreadyExists = "Basic credential already exists!";
-// InvalidParameter Error
-ErrorMessage.EmptyParameter = "Parameter {0} is empty";
-ErrorMessage.DuplicateHttpsOptionProperty = "Axios HTTPS agent already defined value for property {0}";
-ErrorMessage.DuplicateApiKeyInHeader = "The request already defined api key in request header with name {0}.";
-ErrorMessage.DuplicateApiKeyInQueryParam = "The request already defined api key in query parameter with name {0}.";
-ErrorMessage.OnlySupportInQueryActivity = "The handleMessageExtensionQueryWithToken only support in handleTeamsMessagingExtensionQuery with composeExtension/query type.";
-ErrorMessage.OnlySupportInLinkQueryActivity = "The handleMessageExtensionLinkQueryWithSSO only support in handleTeamsAppBasedLinkQuery with composeExtension/queryLink type.";
-/**
- * Error class with code and message thrown by the SDK.
- */
-class ErrorWithCode extends Error {
-    /**
-     * Constructor of ErrorWithCode.
-     *
-     * @param {string} message - error message.
-     * @param {ErrorCode} code - error code.
-     */
-    constructor(message, code) {
-        if (!code) {
-            super(message);
-            return this;
-        }
-        super(message);
-        Object.setPrototypeOf(this, ErrorWithCode.prototype);
-        this.name = `${new.target.name}.${code}`;
-        this.code = code;
-    }
-}
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT license.
-/**
- * Log level.
- */
-var LogLevel;
-(function (LogLevel) {
-    /**
-     * Show verbose, information, warning and error message.
-     */
-    LogLevel[LogLevel["Verbose"] = 0] = "Verbose";
-    /**
-     * Show information, warning and error message.
-     */
-    LogLevel[LogLevel["Info"] = 1] = "Info";
-    /**
-     * Show warning and error message.
-     */
-    LogLevel[LogLevel["Warn"] = 2] = "Warn";
-    /**
-     * Show error message.
-     */
-    LogLevel[LogLevel["Error"] = 3] = "Error";
-})(LogLevel || (LogLevel = {}));
-/**
- * Update log level helper.
- *
- * @param { LogLevel } level - log level in configuration
- */
-function setLogLevel(level) {
-    internalLogger.level = level;
-}
-/**
- * Get log level.
- *
- * @returns Log level
- */
-function getLogLevel() {
-    return internalLogger.level;
-}
-class InternalLogger {
-    constructor(name, logLevel) {
-        this.level = undefined;
-        this.defaultLogger = {
-            verbose: console.debug,
-            info: console.info,
-            warn: console.warn,
-            error: console.error,
-        };
-        this.name = name;
-        this.level = logLevel;
-    }
-    error(message) {
-        this.log(LogLevel.Error, (x) => x.error, message);
-    }
-    warn(message) {
-        this.log(LogLevel.Warn, (x) => x.warn, message);
-    }
-    info(message) {
-        this.log(LogLevel.Info, (x) => x.info, message);
-    }
-    verbose(message) {
-        this.log(LogLevel.Verbose, (x) => x.verbose, message);
-    }
-    log(logLevel, logFunction, message) {
-        if (message.trim() === "") {
-            return;
-        }
-        const timestamp = new Date().toUTCString();
-        let logHeader;
-        if (this.name) {
-            logHeader = `[${timestamp}] : @microsoft/teamsfx - ${this.name} : ${LogLevel[logLevel]} - `;
-        }
-        else {
-            logHeader = `[${timestamp}] : @microsoft/teamsfx : ${LogLevel[logLevel]} - `;
-        }
-        const logMessage = `${logHeader}${message}`;
-        if (this.level !== undefined && this.level <= logLevel) {
-            if (this.customLogger) {
-                logFunction(this.customLogger)(logMessage);
-            }
-            else if (this.customLogFunction) {
-                this.customLogFunction(logLevel, logMessage);
-            }
-            else {
-                logFunction(this.defaultLogger)(logMessage);
-            }
-        }
-    }
-}
-/**
- * Logger instance used internally
- *
- * @internal
- */
-const internalLogger = new InternalLogger();
-/**
- * Set custom logger. Use the output functions if it's set. Priority is higher than setLogFunction.
- *
- * @param {Logger} logger - custom logger. If it's undefined, custom logger will be cleared.
- *
- * @example
- * ```typescript
- * setLogger({
- *   verbose: console.debug,
- *   info: console.info,
- *   warn: console.warn,
- *   error: console.error,
- * });
- * ```
- */
-function setLogger(logger) {
-    internalLogger.customLogger = logger;
-}
-/**
- * Set custom log function. Use the function if it's set. Priority is lower than setLogger.
- *
- * @param {LogFunction} logFunction - custom log function. If it's undefined, custom log function will be cleared.
- *
- * @example
- * ```typescript
- * setLogFunction((level: LogLevel, message: string) => {
- *   if (level === LogLevel.Error) {
- *     console.log(message);
- *   }
- * });
- * ```
- */
-function setLogFunction(logFunction) {
-    internalLogger.customLogFunction = logFunction;
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Parse jwt token payload
- *
- * @param token
- *
- * @returns Payload object
- *
- * @internal
- */
-function parseJwt(token) {
-    try {
-        const tokenObj = jwtDecode(token);
-        if (!tokenObj || !tokenObj.exp) {
-            throw new ErrorWithCode("Decoded token is null or exp claim does not exists.", ErrorCode.InternalError);
-        }
-        return tokenObj;
-    }
-    catch (err) {
-        const errorMsg = "Parse jwt token failed in node env with error: " + err.message;
-        internalLogger.error(errorMsg);
-        throw new ErrorWithCode(errorMsg, ErrorCode.InternalError);
-    }
-}
-/**
- * @internal
- */
-function getUserInfoFromSsoToken(ssoToken) {
-    if (!ssoToken) {
-        const errorMsg = "SSO token is undefined.";
-        internalLogger.error(errorMsg);
-        throw new ErrorWithCode(errorMsg, ErrorCode.InvalidParameter);
-    }
-    const tokenObject = parseJwt(ssoToken);
-    const userInfo = {
-        displayName: tokenObject.name,
-        objectId: tokenObject.oid,
-        tenantId: tokenObject.tid,
-        preferredUserName: "",
-    };
-    if (tokenObject.ver === "2.0") {
-        userInfo.preferredUserName = tokenObject.preferred_username;
-    }
-    else if (tokenObject.ver === "1.0") {
-        userInfo.preferredUserName = tokenObject.upn;
-    }
-    return userInfo;
-}
-/**
- * @internal
- */
-function getTenantIdAndLoginHintFromSsoToken(ssoToken) {
-    if (!ssoToken) {
-        const errorMsg = "SSO token is undefined.";
-        internalLogger.error(errorMsg);
-        throw new ErrorWithCode(errorMsg, ErrorCode.InvalidParameter);
-    }
-    const tokenObject = parseJwt(ssoToken);
-    const userInfo = {
-        tid: tokenObject.tid,
-        loginHint: tokenObject.ver === "2.0"
-            ? tokenObject.preferred_username
-            : tokenObject.upn,
-    };
-    return userInfo;
-}
-/**
- * @internal
- */
-function parseAccessTokenFromAuthCodeTokenResponse(tokenResponse) {
-    try {
-        const tokenResponseObject = typeof tokenResponse == "string"
-            ? JSON.parse(tokenResponse)
-            : tokenResponse;
-        if (!tokenResponseObject || !tokenResponseObject.accessToken) {
-            const errorMsg = "Get empty access token from Auth Code token response.";
-            internalLogger.error(errorMsg);
-            throw new Error(errorMsg);
-        }
-        const token = tokenResponseObject.accessToken;
-        const tokenObject = parseJwt(token);
-        if (tokenObject.ver !== "1.0" && tokenObject.ver !== "2.0") {
-            const errorMsg = "SSO token is not valid with an unknown version: " + tokenObject.ver;
-            internalLogger.error(errorMsg);
-            throw new Error(errorMsg);
-        }
-        const accessToken = {
-            token: token,
-            expiresOnTimestamp: tokenObject.exp * 1000,
-        };
-        return accessToken;
-    }
-    catch (error) {
-        const errorMsg = "Parse access token failed from Auth Code token response in node env with error: " +
-            error.message;
-        internalLogger.error(errorMsg);
-        throw new ErrorWithCode(errorMsg, ErrorCode.InternalError);
-    }
-}
-/**
- * Format string template with replacements
- *
- * ```typescript
- * const template = "{0} and {1} are fruit. {0} is my favorite one."
- * const formattedStr = formatString(template, "apple", "pear"); // formattedStr: "apple and pear are fruit. apple is my favorite one."
- * ```
- *
- * @param str string template
- * @param replacements replacement string array
- * @returns Formatted string
- *
- * @internal
- */
-function formatString(str, ...replacements) {
-    const args = replacements;
-    return str.replace(/{(\d+)}/g, function (match, number) {
-        return typeof args[number] != "undefined" ? args[number] : match;
-    });
-}
-/**
- * @internal
- */
-function validateScopesType(value) {
-    // string
-    if (typeof value === "string" || value instanceof String) {
-        return;
-    }
-    // empty array
-    if (Array.isArray(value) && value.length === 0) {
-        return;
-    }
-    // string array
-    if (Array.isArray(value) && value.length > 0 && value.every((item) => typeof item === "string")) {
-        return;
-    }
-    const errorMsg = "The type of scopes is not valid, it must be string or string array";
-    internalLogger.error(errorMsg);
-    throw new ErrorWithCode(errorMsg, ErrorCode.InvalidParameter);
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Represent Microsoft 365 tenant identity, and it is usually used when user is not involved.
- *
- * @remarks
- * Only works in in server side.
- */
-class AppCredential {
-    /**
-     * Constructor of AppCredential.
-     *
-     * @remarks
-     * Only works in in server side.
-     */
-    constructor(authConfig) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "AppCredential"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Get access token for credential.
-     *
-     * @remarks
-     * Only works in in server side.
-     */
-    getToken(scopes, options) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "AppCredential"), ErrorCode.RuntimeNotSupported));
-    }
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Represent on-behalf-of flow to get user identity, and it is designed to be used in Azure Function or Bot scenarios.
- *
- * @remarks
- * Can only be used in server side.
- */
-class OnBehalfOfUserCredential {
-    /**
-     * Constructor of OnBehalfOfUserCredential
-     *
-     * @remarks
-     * Can Only works in in server side.
-     */
-    constructor(ssoToken, config) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "OnBehalfOfUserCredential"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Get access token from credential.
-     * @remarks
-     * Can only be used in server side.
-     */
-    getToken(scopes, options) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "OnBehalfOfUserCredential"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Get basic user info from SSO token.
-     * @remarks
-     * Can only be used in server side.
-     */
-    getUserInfo() {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "OnBehalfOfUserCredential"), ErrorCode.RuntimeNotSupported));
-    }
-}
-// Copyright (c) Microsoft Corporation.
-const tokenRefreshTimeSpanInMillisecond = 5 * 60 * 1000;
-const loginPageWidth = 600;
-const loginPageHeight = 535;
-/**
- * Represent Teams current user's identity, and it is used within Teams tab application.
- *
- * @remarks
- * Can only be used within Teams.
- */
-class TeamsUserCredential {
-    // eslint-disable-next-line no-secrets/no-secrets
-    /**
-     * Constructor of TeamsUserCredential.
-     *
-     * @example
-     * ```typescript
-     * const config: TeamsUserCredentialAuthConfig = {
-     *    initiateLoginEndpoint: "https://localhost:3000/auth-start.html",
-     *    clientId: "xxx"
-     * }
-     * const credential = new TeamsUserCredential(config);
-     * ```
-     *
-     * @param {TeamsUserCredentialAuthConfig} authConfig - The authentication configuration.
-     *
-     * @throws {@link ErrorCode|InvalidConfiguration} when client id, initiate login endpoint or simple auth endpoint is not found in config.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is nodeJS.
-     */
-    constructor(authConfig) {
-        internalLogger.info("Create teams user credential");
-        this.config = this.loadAndValidateConfig(authConfig);
-        this.ssoToken = null;
-        this.initialized = false;
-    }
-    /**
-     * Popup login page to get user's access token with specific scopes.
-     *
-     * @remarks
-     * Only works in Teams client APP. User will be redirected to the authorization page to login and consent.
-     *
-     * @example
-     * ```typescript
-     * await credential.login(["https://graph.microsoft.com/User.Read"]); // single scope using string array
-     * await credential.login("https://graph.microsoft.com/User.Read"); // single scopes using string
-     * await credential.login(["https://graph.microsoft.com/User.Read", "Calendars.Read"]); // multiple scopes using string array
-     * await credential.login("https://graph.microsoft.com/User.Read Calendars.Read"); // multiple scopes using string
-     * ```
-     * @param scopes - The list of scopes for which the token will have access, before that, we will request user to consent.
-     * @param { string[] } resources - The optional list of resources for full trust Teams apps.
-     *
-     * @throws {@link ErrorCode|InternalError} when failed to login with unknown error.
-     * @throws {@link ErrorCode|ConsentFailed} when user canceled or failed to consent.
-     * @throws {@link ErrorCode|InvalidParameter} when scopes is not a valid string or string array.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is nodeJS.
-     */
-    async login(scopes, resources) {
-        validateScopesType(scopes);
-        const scopesStr = typeof scopes === "string" ? scopes : scopes.join(" ");
-        internalLogger.info(`Popup login page to get user's access token with scopes: ${scopesStr}`);
-        if (!this.initialized) {
-            await this.init(resources);
-        }
-        await app.initialize();
-        let result;
-        try {
-            const params = {
-                url: `${this.config.initiateLoginEndpoint ? this.config.initiateLoginEndpoint : ""}?clientId=${this.config.clientId ? this.config.clientId : ""}&scope=${encodeURI(scopesStr)}&loginHint=${this.loginHint ? this.loginHint : ""}`,
-                width: loginPageWidth,
-                height: loginPageHeight,
-            };
-            result = await authentication.authenticate(params);
-            if (!result) {
-                const errorMsg = "Get empty authentication result from MSAL";
-                internalLogger.error(errorMsg);
-                throw new ErrorWithCode(errorMsg, ErrorCode.InternalError);
-            }
-        }
-        catch (err) {
-            const errorMsg = `Consent failed for the scope ${scopesStr} with error: ${err.message}`;
-            internalLogger.error(errorMsg);
-            throw new ErrorWithCode(errorMsg, ErrorCode.ConsentFailed);
-        }
-        let resultJson = {};
-        try {
-            resultJson = typeof result == "string" ? JSON.parse(result) : result;
-        }
-        catch (error) {
-            // If can not parse result as Json, will throw error.
-            const failedToParseResult = "Failed to parse response to Json.";
-            internalLogger.error(failedToParseResult);
-            throw new ErrorWithCode(failedToParseResult, ErrorCode.InvalidResponse);
-        }
-        // If code exists in result, user may using previous auth-start and auth-end page.
-        if (resultJson.code) {
-            const helpLink = "https://aka.ms/teamsfx-auth-code-flow";
-            const usingPreviousAuthPage = "Found auth code in response. Auth code is not support for current version of SDK. " +
-                `Please refer to the help link for how to fix the issue: ${helpLink}.`;
-            internalLogger.error(usingPreviousAuthPage);
-            throw new ErrorWithCode(usingPreviousAuthPage, ErrorCode.InvalidResponse);
-        }
-        // If sessionStorage exists in result, set the values in current session storage.
-        if (resultJson.sessionStorage) {
-            this.setSessionStorage(resultJson.sessionStorage);
-        }
-    }
-    /**
-     * Get access token from credential.
-     *
-     * Important: Access tokens are stored in sessionStorage, read more here: https://aka.ms/teamsfx-session-storage-notice
-     * Important: Full trust applications do not read the resource information from the webApplicationInfo section of the app
-     * manifest. Instead, this resource (along with any additional resources from which to request tokens) must be provided
-     * as a list of resources to the getToken() method through a GetTeamsUserTokenOptions object.
-     *
-     * @example
-     * ```typescript
-     * await credential.getToken([]) // Get SSO token using empty string array
-     * await credential.getToken("") // Get SSO token using empty string
-     * await credential.getToken([".default"]) // Get Graph access token with default scope using string array
-     * await credential.getToken(".default") // Get Graph access token with default scope using string
-     * await credential.getToken(["User.Read"]) // Get Graph access token for single scope using string array
-     * await credential.getToken("User.Read") // Get Graph access token for single scope using string
-     * await credential.getToken(["User.Read", "Application.Read.All"]) // Get Graph access token for multiple scopes using string array
-     * await credential.getToken("User.Read Application.Read.All") // Get Graph access token for multiple scopes using space-separated string
-     * await credential.getToken("https://graph.microsoft.com/User.Read") // Get Graph access token with full resource URI
-     * await credential.getToken(["https://outlook.office.com/Mail.Read"]) // Get Outlook access token
-     *
-     * const options: GetTeamsUserTokenOptions = { resources: ["https://domain.example.com"] }; // set up resources for full trust apps.
-     * await credential.getToken([], options) // Get sso token from teams client - only use this approach for full trust apps.
-     * ```
-     *
-     * @param {string | string[]} scopes - The list of scopes for which the token will have access.
-     * @param {GetTokenOptions} options - The options used to configure any requests this TokenCredential implementation might make.
-     *
-     * @throws {@link ErrorCode|InternalError} when failed to get access token with unknown error.
-     * @throws {@link ErrorCode|UiRequiredError} when need user consent to get access token.
-     * @throws {@link ErrorCode|InvalidParameter} when scopes is not a valid string or string array.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is nodeJS.
-     *
-     * @returns User access token of defined scopes.
-     * If scopes is empty string or array, it returns SSO token.
-     * If scopes is non-empty, it returns access token for target scope.
-     * Throw error if get access token failed.
-     */
-    async getToken(scopes, options) {
-        validateScopesType(scopes);
-        const resources = options === null || options === void 0 ? void 0 : options.resources;
-        const ssoToken = await this.getSSOToken(resources);
-        const scopeStr = typeof scopes === "string" ? scopes : scopes.join(" ");
-        if (scopeStr === "") {
-            internalLogger.info("Get SSO token");
-            return ssoToken;
-        }
-        else {
-            internalLogger.info("Get access token with scopes: " + scopeStr);
-            if (!this.initialized) {
-                await this.init(resources);
-            }
-            let tokenResponse;
-            const scopesArray = typeof scopes === "string" ? scopes.split(" ") : scopes;
-            const domain = window.location.origin;
-            // First try to get Access Token from cache.
-            try {
-                const account = this.msalInstance.getAccountByUsername(this.loginHint);
-                const scopesRequestForAcquireTokenSilent = {
-                    scopes: scopesArray,
-                    account: account !== null && account !== void 0 ? account : undefined,
-                    redirectUri: `${domain}/blank-auth-end.html`,
-                };
-                tokenResponse = await this.msalInstance.acquireTokenSilent(scopesRequestForAcquireTokenSilent);
-            }
-            catch (error) {
-                const acquireTokenSilentFailedMessage = `Failed to call acquireTokenSilent. Reason: ${error === null || error === void 0 ? void 0 : error.message}. `;
-                internalLogger.verbose(acquireTokenSilentFailedMessage);
-            }
-            if (!tokenResponse) {
-                // If fail to get Access Token from cache, try to get Access token by silent login.
-                try {
-                    const scopesRequestForSsoSilent = {
-                        scopes: scopesArray,
-                        loginHint: this.loginHint,
-                        redirectUri: `${domain}/blank-auth-end.html`,
-                    };
-                    tokenResponse = await this.msalInstance.ssoSilent(scopesRequestForSsoSilent);
-                }
-                catch (error) {
-                    const ssoSilentFailedMessage = `Failed to call ssoSilent. Reason: ${error === null || error === void 0 ? void 0 : error.message}. `;
-                    internalLogger.verbose(ssoSilentFailedMessage);
-                }
-            }
-            if (!tokenResponse) {
-                const errorMsg = `Failed to get access token cache silently, please login first: you need login first before get access token.`;
-                internalLogger.error(errorMsg);
-                throw new ErrorWithCode(errorMsg, ErrorCode.UiRequiredError);
-            }
-            const accessToken = parseAccessTokenFromAuthCodeTokenResponse(tokenResponse);
-            return accessToken;
-        }
-    }
-    /**
-     * Get basic user info from SSO token
-     *
-     * @param {string[]} resources - The optional list of resources for full trust Teams apps.
-     *
-     * @example
-     * ```typescript
-     * const currentUser = await credential.getUserInfo();
-     * ```
-     *
-     * @throws {@link ErrorCode|InternalError} when SSO token from Teams client is not valid.
-     * @throws {@link ErrorCode|InvalidParameter} when SSO token from Teams client is empty.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is nodeJS.
-     *
-     * @returns Basic user info with user displayName, objectId and preferredUserName.
-     */
-    async getUserInfo(resources) {
-        internalLogger.info("Get basic user info from SSO token");
-        const ssoToken = await this.getSSOToken(resources);
-        return getUserInfoFromSsoToken(ssoToken.token);
-    }
-    async init(resources) {
-        const ssoToken = await this.getSSOToken(resources);
-        const info = getTenantIdAndLoginHintFromSsoToken(ssoToken.token);
-        this.loginHint = info.loginHint;
-        this.tid = info.tid;
-        const msalConfig = {
-            auth: {
-                clientId: this.config.clientId,
-                authority: `https://login.microsoftonline.com/${this.tid}`,
-            },
-            cache: {
-                cacheLocation: "sessionStorage",
-            },
-        };
-        this.msalInstance = new PublicClientApplication(msalConfig);
-        await this.msalInstance.initialize();
-        this.initialized = true;
-    }
-    /**
-     * Get SSO token using teams SDK
-     * It will try to get SSO token from memory first, if SSO token doesn't exist or about to expired, then it will using teams SDK to get SSO token
-     *
-     * @param {string[]} resources - The optional list of resources for full trust Teams apps.
-     *
-     * @returns SSO token
-     */
-    async getSSOToken(resources) {
-        if (this.ssoToken) {
-            if (this.ssoToken.expiresOnTimestamp - Date.now() > tokenRefreshTimeSpanInMillisecond) {
-                internalLogger.verbose("Get SSO token from memory cache");
-                return this.ssoToken;
-            }
-        }
-        const params = { resources: resources !== null && resources !== void 0 ? resources : [] };
-        let token;
-        try {
-            await app.initialize();
-        }
-        catch (err) {
-            const errorMsg = "Initialize teams sdk failed due to not running inside Teams environment";
-            internalLogger.error(errorMsg);
-            throw new ErrorWithCode(errorMsg, ErrorCode.InternalError);
-        }
-        try {
-            token = await authentication.getAuthToken(params);
-        }
-        catch (err) {
-            const errorMsg = "Get SSO token failed with error: " + err.message;
-            internalLogger.error(errorMsg);
-            throw new ErrorWithCode(errorMsg, ErrorCode.InternalError);
-        }
-        if (!token) {
-            const errorMsg = "Get empty SSO token from Teams";
-            internalLogger.error(errorMsg);
-            throw new ErrorWithCode(errorMsg, ErrorCode.InternalError);
-        }
-        const tokenObject = parseJwt(token);
-        if (tokenObject.ver !== "1.0" && tokenObject.ver !== "2.0") {
-            const errorMsg = "SSO token is not valid with an unknown version: " + tokenObject.ver;
-            internalLogger.error(errorMsg);
-            throw new ErrorWithCode(errorMsg, ErrorCode.InternalError);
-        }
-        const ssoToken = {
-            token,
-            expiresOnTimestamp: tokenObject.exp * 1000,
-        };
-        this.ssoToken = ssoToken;
-        return ssoToken;
-    }
-    /**
-     * Load and validate authentication configuration
-     *
-     * @param {AuthenticationConfiguration?} config - The authentication configuration. Use environment variables if not provided.
-     *
-     * @returns Authentication configuration
-     */
-    loadAndValidateConfig(config) {
-        internalLogger.verbose("Validate authentication configuration");
-        if (config.initiateLoginEndpoint && config.clientId) {
-            return config;
-        }
-        const missingValues = [];
-        if (!config.initiateLoginEndpoint) {
-            missingValues.push("initiateLoginEndpoint");
-        }
-        if (!config.clientId) {
-            missingValues.push("clientId");
-        }
-        const errorMsg = formatString(ErrorMessage.InvalidConfiguration, missingValues.join(", "), "undefined");
-        internalLogger.error(errorMsg);
-        throw new ErrorWithCode(errorMsg, ErrorCode.InvalidConfiguration);
-    }
-    setSessionStorage(sessionStorageValues) {
-        try {
-            const sessionStorageKeys = Object.keys(sessionStorageValues);
-            sessionStorageKeys.forEach((key) => {
-                sessionStorage.setItem(key, sessionStorageValues[key]);
-            });
-        }
-        catch (error) {
-            // Values in result.sessionStorage can not be set into session storage.
-            // Throw error since this may block user.
-            const errorMessage = `Failed to set values in session storage. Error: ${error.message}`;
-            internalLogger.error(errorMessage);
-            throw new ErrorWithCode(errorMessage, ErrorCode.InternalError);
-        }
-    }
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Creates a new prompt that leverage Teams Single Sign On (SSO) support for bot to automatically sign in user and
- * help receive oauth token, asks the user to consent if needed.
- *
- * @remarks
- * The prompt will attempt to retrieve the users current token of the desired scopes and store it in
- * the token store.
- *
- * User will be automatically signed in leveraging Teams support of Bot Single Sign On(SSO):
- * https://docs.microsoft.com/en-us/microsoftteams/platform/bots/how-to/authentication/auth-aad-sso-bots
- *
- * @example
- * When used with your bots `DialogSet` you can simply add a new instance of the prompt as a named
- * dialog using `DialogSet.add()`. You can then start the prompt from a waterfall step using either
- * `DialogContext.beginDialog()` or `DialogContext.prompt()`. The user will be prompted to sign in as
- * needed and their access token will be passed as an argument to the callers next waterfall step:
- *
- * ```JavaScript
- * const { ConversationState, MemoryStorage } = require('botbuilder');
- * const { DialogSet, WaterfallDialog } = require('botbuilder-dialogs');
- * const { TeamsBotSsoPrompt } = require('@microsoft/teamsfx');
- *
- * const convoState = new ConversationState(new MemoryStorage());
- * const dialogState = convoState.createProperty('dialogState');
- * const dialogs = new DialogSet(dialogState);
- *
- * dialogs.add(new TeamsBotSsoPrompt('TeamsBotSsoPrompt', {
- *    scopes: ["User.Read"],
- * }));
- *
- * dialogs.add(new WaterfallDialog('taskNeedingLogin', [
- *      async (step) => {
- *          return await step.beginDialog('TeamsBotSsoPrompt');
- *      },
- *      async (step) => {
- *          const token = step.result;
- *          if (token) {
- *
- *              // ... continue with task needing access token ...
- *
- *          } else {
- *              await step.context.sendActivity(`Sorry... We couldn't log you in. Try again later.`);
- *              return await step.endDialog();
- *          }
- *      }
- * ]));
- * ```
- */
-class TeamsBotSsoPrompt {
-    /**
-     * Constructor of TeamsBotSsoPrompt.
-     *
-     * @param dialogId Unique ID of the dialog within its parent `DialogSet` or `ComponentDialog`.
-     * @param settings Settings used to configure the prompt.
-     *
-     * @throws {@link ErrorCode|InvalidParameter} when scopes is not a valid string or string array.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
-     */
-    constructor(authConfig, initiateLoginEndpoint, dialogId, settings) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotSsoPrompt"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Called when a prompt dialog is pushed onto the dialog stack and is being activated.
-     * @remarks
-     * If the task is successful, the result indicates whether the prompt is still
-     * active after the turn has been processed by the prompt.
-     *
-     * @param dc The DialogContext for the current turn of the conversation.
-     *
-     * @throws {@link ErrorCode|InvalidParameter} when timeout property in teams bot sso prompt settings is not number or is not positive.
-     * @throws {@link ErrorCode|ChannelNotSupported} when bot channel is not MS Teams.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
-     *
-     * @returns A `Promise` representing the asynchronous operation.
-     */
-    beginDialog(dc) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotSsoPrompt"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Called when a prompt dialog is the active dialog and the user replied with a new activity.
-     *
-     * @remarks
-     * If the task is successful, the result indicates whether the dialog is still
-     * active after the turn has been processed by the dialog.
-     * The prompt generally continues to receive the user's replies until it accepts the
-     * user's reply as valid input for the prompt.
-     *
-     * @param dc The DialogContext for the current turn of the conversation.
-     *
-     * @returns A `Promise` representing the asynchronous operation.
-     *
-     * @throws {@link ErrorCode|ChannelNotSupported} when bot channel is not MS Teams.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
-     */
-    continueDialog(dc) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotSsoPrompt"), ErrorCode.RuntimeNotSupported));
-    }
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Initializes new Axios instance with specific auth provider
- *
- * @param apiEndpoint - Base url of the API
- * @param authProvider - Auth provider that injects authentication info to each request
- * @returns axios instance configured with specfic auth provider
- *
- * @example
- * ```typescript
- * const client = createApiClient("https://my-api-endpoint-base-url", new BasicAuthProvider("xxx","xxx"));
- * ```
- */
-function createApiClient(apiEndpoint, authProvider) {
-    // Add a request interceptor
-    const instance = axios.create({
-        baseURL: apiEndpoint,
-    });
-    instance.interceptors.request.use(async function (config) {
-        return (await authProvider.AddAuthenticationInfo(config));
-    });
-    return instance;
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Provider that handles Bearer Token authentication
- */
-class BearerTokenAuthProvider {
-    /**
-     * @param { () => Promise<string> } getToken - Function that returns the content of bearer token used in http request
-     */
-    constructor(getToken) {
-        this.getToken = getToken;
-    }
-    /**
-     * Adds authentication info to http requests
-     *
-     * @param { AxiosRequestConfig } config - Contains all the request information and can be updated to include extra authentication info.
-     * Refer https://axios-http.com/docs/req_config for detailed document.
-     *
-     * @returns Updated axios request config.
-     *
-     * @throws {@link ErrorCode|AuthorizationInfoAlreadyExists} - when Authorization header already exists in request configuration.
-     */
-    async AddAuthenticationInfo(config) {
-        const token = await this.getToken();
-        if (!config.headers) {
-            config.headers = {};
-        }
-        if (config.headers["Authorization"]) {
-            throw new ErrorWithCode(ErrorMessage.AuthorizationHeaderAlreadyExists, ErrorCode.AuthorizationInfoAlreadyExists);
-        }
-        config.headers["Authorization"] = `Bearer ${token}`;
-        return config;
-    }
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Provider that handles Basic authentication
- */
-class BasicAuthProvider {
-    /**
-     *
-     * @param { string } userName - Username used in basic auth
-     * @param { string } password - Password used in basic auth
-     *
-     * @throws {@link ErrorCode|InvalidParameter} - when username or password is empty.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
-     */
-    constructor(userName, password) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "BasicAuthProvider"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Adds authentication info to http requests
-     *
-     * @param { AxiosRequestConfig } config - Contains all the request information and can be updated to include extra authentication info.
-     * Refer https://axios-http.com/docs/req_config for detailed document.
-     *
-     * @returns Updated axios request config.
-     *
-     * @throws {@link ErrorCode|AuthorizationInfoAlreadyExists} - when Authorization header or auth property already exists in request configuration.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
-     */
-    AddAuthenticationInfo(config) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "BasicAuthProvider"), ErrorCode.RuntimeNotSupported));
-    }
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Provider that handles API Key authentication
- */
-class ApiKeyProvider {
-    /**
-     *
-     * @param { string } keyName - The name of request header or query parameter that specifies API Key
-     * @param { string } keyValue - The value of API Key
-     * @param { ApiKeyLocation } keyLocation - The location of API Key: request header or query parameter.
-     *
-     * @throws {@link ErrorCode|InvalidParameter} - when key name or key value is empty.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
-     */
-    constructor(keyName, keyValue, keyLocation) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "ApiKeyProvider"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Adds authentication info to http requests
-     *
-     * @param { AxiosRequestConfig } config - Contains all the request information and can be updated to include extra authentication info.
-     * Refer https://axios-http.com/docs/req_config for detailed document.
-     *
-     * @returns Updated axios request config.
-     *
-     * @throws {@link ErrorCode|AuthorizationInfoAlreadyExists} - when API key already exists in request header or url query parameter.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
-     */
-    AddAuthenticationInfo(config) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "ApiKeyProvider"), ErrorCode.RuntimeNotSupported));
-    }
-}
-/**
- * Define available location for API Key location
- */
-var ApiKeyLocation;
-(function (ApiKeyLocation) {
-    /**
-     * The API Key is placed in request header
-     */
-    ApiKeyLocation[ApiKeyLocation["Header"] = 0] = "Header";
-    /**
-     * The API Key is placed in query parameter
-     */
-    ApiKeyLocation[ApiKeyLocation["QueryParams"] = 1] = "QueryParams";
-})(ApiKeyLocation || (ApiKeyLocation = {}));
-// Copyright (c) Microsoft Corporation.
-/**
- * Provider that handles Certificate authentication
- */
-class CertificateAuthProvider {
-    /**
-     *
-     * @param { SecureContextOptions } certOption - information about the cert used in http requests
-     */
-    constructor(certOption) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CertificateAuthProvider"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Adds authentication info to http requests.
-     *
-     * @param { AxiosRequestConfig } config - Contains all the request information and can be updated to include extra authentication info.
-     * Refer https://axios-http.com/docs/req_config for detailed document.
-     *
-     * @returns Updated axios request config.
-     *
-     * @throws {@link ErrorCode|InvalidParameter} - when custom httpsAgent in the request has duplicate properties with certOption provided in constructor.
-     * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
-     */
-    AddAuthenticationInfo(config) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CertificateAuthProvider"), ErrorCode.RuntimeNotSupported));
-    }
-}
-/**
- * Helper to create SecureContextOptions from PEM format cert
- *
- * @param { string | Buffer } cert - The cert chain in PEM format
- * @param { string | Buffer } key - The private key for the cert chain
- * @param { {passphrase?: string; ca?: string | Buffer} } options - Optional settings when create the cert options.
- *
- * @returns Instance of SecureContextOptions
- *
- * @throws {@link ErrorCode|InvalidParameter} - when any parameter is empty
- * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
- *
- */
-function createPemCertOption(cert, key, options) {
-    throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "createPemCertOption"), ErrorCode.RuntimeNotSupported);
-}
-/**
- * Helper to create SecureContextOptions from PFX format cert
- *
- * @param { string | Buffer } pfx - The content of .pfx file
- * @param { {passphrase?: string} } options - Optional settings when create the cert options.
- *
- * @returns Instance of SecureContextOptions
- *
- * @throws {@link ErrorCode|InvalidParameter} - when any parameter is empty
- * @throws {@link ErrorCode|RuntimeNotSupported} when runtime is browser.
- *
- */
-function createPfxCertOption(pfx, options) {
-    throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "createPfxCertOption"), ErrorCode.RuntimeNotSupported);
-}
-// Copyright (c) Microsoft Corporation.
-// Licensed under the MIT license.
-/**
- * The target type where the notification will be sent to.
- *
- * @remarks
- * - "Channel" means to a team channel. (By default, notification to a team will be sent to its "General" channel.)
- * - "Group" means to a group chat.
- * - "Person" means to a personal chat.
- */
-var NotificationTargetType;
-(function (NotificationTargetType) {
-    /**
-     * The notification will be sent to a team channel.
-     * (By default, notification to a team will be sent to its "General" channel.)
-     */
-    NotificationTargetType["Channel"] = "Channel";
-    /**
-     * The notification will be sent to a group chat.
-     */
-    NotificationTargetType["Group"] = "Group";
-    /**
-     * The notification will be sent to a personal chat.
-     */
-    NotificationTargetType["Person"] = "Person";
-})(NotificationTargetType || (NotificationTargetType = {}));
-/**
- * Options used to control how the response card will be sent to users.
- */
-var AdaptiveCardResponse;
-(function (AdaptiveCardResponse) {
-    /**
-     * The response card will be replaced the current one for the interactor who trigger the action.
-     */
-    AdaptiveCardResponse[AdaptiveCardResponse["ReplaceForInteractor"] = 0] = "ReplaceForInteractor";
-    /**
-     * The response card will be replaced the current one for all users in the chat.
-     */
-    AdaptiveCardResponse[AdaptiveCardResponse["ReplaceForAll"] = 1] = "ReplaceForAll";
-    /**
-     * The response card will be sent as a new message for all users in the chat.
-     */
-    AdaptiveCardResponse[AdaptiveCardResponse["NewForAll"] = 2] = "NewForAll";
-})(AdaptiveCardResponse || (AdaptiveCardResponse = {}));
-/**
- * Status code for an `application/vnd.microsoft.error` invoke response.
- */
-var InvokeResponseErrorCode;
-(function (InvokeResponseErrorCode) {
-    /**
-     * Invalid request.
-     */
-    InvokeResponseErrorCode[InvokeResponseErrorCode["BadRequest"] = 400] = "BadRequest";
-    /**
-     * Internal server error.
-     */
-    InvokeResponseErrorCode[InvokeResponseErrorCode["InternalServerError"] = 500] = "InternalServerError";
-})(InvokeResponseErrorCode || (InvokeResponseErrorCode = {}));
-// Copyright (c) Microsoft Corporation.
-/*
- * Sso execution dialog, use to handle sso command
- */
-class BotSsoExecutionDialog {
-    constructor(dedupStorage, ssoPromptSettings, authConfig, ...args) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "BotSsoExecutionDialog"), ErrorCode.RuntimeNotSupported);
-    }
-    // eslint-disable-next-line no-secrets/no-secrets
-    /**
-     * Add TeamsFxBotSsoCommandHandler instance
-     * @param handler {@link BotSsoExecutionDialogHandler} callback function
-     * @param triggerPatterns The trigger pattern
-     */
-    addCommand(handler, triggerPatterns) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "BotSsoExecutionDialog"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * The run method handles the incoming activity (in the form of a DialogContext) and passes it through the dialog system.
-     *
-     * @param context The context object for the current turn.
-     * @param accessor The instance of StatePropertyAccessor for dialog system.
-     */
-    run(context, accessor) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "BotSsoExecutionDialog"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Called when the component is ending.
-     *
-     * @param context Context for the current turn of conversation.
-     */
-    onEndDialog(context) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "BotSsoExecutionDialog"), ErrorCode.RuntimeNotSupported);
-    }
-}
-/**
- * Users execute query with SSO or Access Token.
- * @remarks
- * Only works in in server side.
- */
-function handleMessageExtensionQueryWithSSO(context, config, initiateLoginEndpoint, scopes, logic) {
-    throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "queryWithToken in message extension"), ErrorCode.RuntimeNotSupported);
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Provide utilities for bot conversation, including:
- *   - handle command and response.
- *   - send notification to varies targets (e.g., member, group, channel).
- *
- * @remarks
- * Only work on server side.
- */
-class ConversationBot {
-    /**
-     * Create new instance of the `ConversationBot`.
-     *
-     * @param options - The initialize options.
-     *
-     * @remarks
-     * Only work on server side.
-     */
-    constructor(options) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "ConversationBot"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * The request handler to integrate with web request.
-     *
-     * @param req - An incoming HTTP [Request](xref:botbuilder.Request).
-     * @param res - The corresponding HTTP [Response](xref:botbuilder.Response).
-     * @param logic - The additional function to handle bot context.
-     *
-     * @remarks
-     * Only work on server side.
-     */
-    requestHandler(req, res, logic) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "ConversationBot"), ErrorCode.RuntimeNotSupported));
-    }
-}
-// Copyright (c) Microsoft Corporation.
-/**
- * Send a plain text message to a notification target.
- *
- * @remarks
- * Only work on server side.
- *
- * @param target - The notification target.
- * @param text - The plain text message.
- * @param onError - An optional error handler that can catch exceptions during message sending.
- *
- * @returns A `Promise` representing the asynchronous operation.
- */
-function sendMessage(target, text, onError) {
-    return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "sendMessage"), ErrorCode.RuntimeNotSupported));
-}
-/**
- * Send an adaptive card message to a notification target.
- *
- * @remarks
- * Only work on server side.
- *
- * @param target - The notification target.
- * @param card - The adaptive card raw JSON.
- * @param onError - An optional error handler that can catch exceptions during adaptive card sending.
- *
- * @returns A `Promise` representing the asynchronous operation.
- */
-function sendAdaptiveCard(target, card, onError) {
-    return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "sendAdaptiveCard"), ErrorCode.RuntimeNotSupported));
-}
-/**
- * A {@link NotificationTarget} that represents a team channel.
- *
- * @remarks
- * Only work on server side.
- *
- * It's recommended to get channels from {@link TeamsBotInstallation.channels()}.
- */
-class Channel {
-    /**
-     * Constructor.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * It's recommended to get channels from {@link TeamsBotInstallation.channels()}, instead of using this constructor.
-     *
-     * @param parent - The parent {@link TeamsBotInstallation} where this channel is created from.
-     * @param info - Detailed channel information.
-     */
-    constructor(parent, info) {
-        /**
-         * Notification target type. For channel it's always "Channel".
-         *
-         * @remarks
-         * Only work on server side.
-         */
-        this.type = NotificationTargetType.Channel;
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "Channel"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Send a plain text message.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param text - The plain text message.
-     * @param onError - An optional error handler that can catch exceptions during message sending.
-     *
-     * @returns The response of sending message.
-     */
-    sendMessage(text, onError) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "Channel"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Send an adaptive card message.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param card - The adaptive card raw JSON.
-     * @param onError - An optional error handler that can catch exceptions during adaptive card sending.
-     *
-     * @returns The response of sending adaptive card message.
-     */
-    sendAdaptiveCard(card, onError) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "Channel"), ErrorCode.RuntimeNotSupported));
-    }
-}
-/**
- * A {@link NotificationTarget} that represents a team member.
- *
- * @remarks
- * Only work on server side.
- *
- * It's recommended to get members from {@link TeamsBotInstallation.members()}.
- */
-class Member {
-    /**
-     * Constructor.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * It's recommended to get members from {@link TeamsBotInstallation.members()}, instead of using this constructor.
-     *
-     * @param parent - The parent {@link TeamsBotInstallation} where this member is created from.
-     * @param account - Detailed member account information.
-     */
-    constructor(parent, account) {
-        /**
-         * Notification target type. For member it's always "Person".
-         *
-         * @remarks
-         * Only work on server side.
-         */
-        this.type = NotificationTargetType.Person;
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "Member"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Send a plain text message.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param text - The plain text message.
-     * @param onError - An optional error handler that can catch exceptions during message sending.
-     *
-     * @returns The response of sending message.
-     */
-    sendMessage(text, onError) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "Member"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Send an adaptive card message.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param card - The adaptive card raw JSON.
-     * @param onError - An optional error handler that can catch exceptions during adaptive card sending.
-     *
-     * @returns The response of sending adaptive card message.
-     */
-    sendAdaptiveCard(card, onError) {
-        return Promise.reject(Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "Member"), ErrorCode.RuntimeNotSupported)));
-    }
-}
-/**
- * A {@link NotificationTarget} that represents a bot installation. Teams Bot could be installed into
- * - Personal chat
- * - Group chat
- * - Team (by default the `General` channel)
- *
- * @remarks
- * Only work on server side.
- *
- * It's recommended to get bot installations from {@link ConversationBot.installations()}.
- */
-class TeamsBotInstallation {
-    /**
-     * Constructor
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * It's recommended to get bot installations from {@link ConversationBot.installations()}, instead of using this constructor.
-     *
-     * @param adapter - The bound `CloudAdapter`.
-     * @param conversationReference - The bound `ConversationReference`.
-     */
-    constructor(adapter, conversationReference) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotInstallation"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Send a plain text message.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param text - The plain text message.
-     * @param onError - An optional error handler that can catch exceptions during message sending.
-     *
-     * @returns The response of sending message.
-     */
-    sendMessage(text, onError) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotInstallation"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Send an adaptive card message.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param card - The adaptive card raw JSON.
-     * @param onError - An optional error handler that can catch exceptions during adaptive card sending.
-     *
-     * @returns The response of sending adaptive card message.
-     */
-    sendAdaptiveCard(card, onError) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotInstallation"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Get channels from this bot installation.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @returns An array of channels if bot is installed into a team, otherwise returns an empty array.
-     */
-    channels() {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotInstallation"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Get members from this bot installation.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @returns An array of members from where the bot is installed.
-     */
-    members() {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotInstallation"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Get team details from this bot installation
-     *
-     * @returns The team details if bot is installed into a team, otherwise returns undefined.
-     */
-    getTeamDetails() {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "TeamsBotInstallation"), ErrorCode.RuntimeNotSupported));
-    }
-}
-/**
- * Provide static utilities for bot notification.
- *
- * @remarks
- * Only work on server side.
- *
- * @example
- * Here's an example on how to send notification via Teams Bot.
- * ```typescript
- * // initialize (it's recommended to be called before handling any bot message)
- * const notificationBot = new NotificationBot(adapter);
- *
- * // get all bot installations and send message
- * for (const target of await notificationBot.installations()) {
- *   await target.sendMessage("Hello Notification");
- * }
- *
- * // alternative - send message to all members
- * for (const target of await notificationBot.installations()) {
- *   for (const member of await target.members()) {
- *     await member.sendMessage("Hello Notification");
- *   }
- * }
- * ```
- */
-class NotificationBot {
-    /**
-     * Constructor of the notification bot.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * To ensure accuracy, it's recommended to initialize before handling any message.
-     *
-     * @param adapter - The bound `CloudAdapter`
-     * @param options - The initialize options
-     */
-    constructor(adapter, options) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "NotificationBot"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Get all targets where the bot is installed.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * The result is retrieving from the persisted storage.
-     *
-     * @returns An array of {@link TeamsBotInstallation}.
-     */
-    static installations() {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "NotificationBot"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Return the first {@link Member} where predicate is true, and undefined otherwise.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param predicate find calls predicate once for each member of the installation,
-     * until it finds one where predicate returns true. If such a member is found,
-     * find immediately returns that member. Otherwise, find returns undefined.
-     * @param scope the scope to find members from the installations (personal chat, group chat, Teams channel).
-     *
-     * @returns The first {@link Member} where predicate is true, and undefined otherwise.
-     */
-    findMember(predicate, scope) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "NotificationBot"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Return the first {@link Channel} where predicate is true, and undefined otherwise.
-     * (Ensure the bot app is installed into the `General` channel, otherwise undefined will be returned.)
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param predicate - Find calls predicate once for each channel of the installation,
-     * until it finds one where predicate returns true. If such a channel is found, find
-     * immediately returns that channel. Otherwise, find returns undefined.
-     *
-     * @returns The first {@link Channel} where predicate is true, and `undefined` otherwise.
-     */
-    findChannel(predicate) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "NotificationBot"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Return all {@link Member} where predicate is true, and empty array otherwise.
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param predicate - Find calls predicate for each member of the installation.
-     * @param scope - The scope to find members from the installations.
-     * (personal chat, group chat, Teams channel).
-     *
-     * @returns An array of {@link Member} where predicate is true, and empty array otherwise.
-     */
-    findAllMembers(predicate, scope) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "NotificationBot"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Return all {@link Channel} where predicate is true, and empty array otherwise.
-     * (Ensure the bot app is installed into the `General` channel, otherwise empty array will be returned.)
-     *
-     * @remarks
-     * Only work on server side.
-     *
-     * @param predicate - Find calls predicate for each channel of the installation.
-     *
-     * @returns An array of {@link Channel} where predicate is true, and empty array otherwise.
-     */
-    findAllChannels(predicate) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "NotificationBot"), ErrorCode.RuntimeNotSupported));
-    }
-}
-/**
- * The search scope when calling {@link NotificationBot.findMember} and {@link NotificationBot.findAllMembers}.
- * The search scope is a flagged enum and it can be combined with `|`.
- * For example, to search from personal chat and group chat, use `SearchScope.Person | SearchScope.Group`.
- */
-var SearchScope;
-(function (SearchScope) {
-    /**
-     * Search members from the installations in personal chat only.
-     */
-    SearchScope[SearchScope["Person"] = 1] = "Person";
-    /**
-     * Search members from the installations in group chat only.
-     */
-    SearchScope[SearchScope["Group"] = 2] = "Group";
-    /**
-     * Search members from the installations in Teams channel only.
-     */
-    SearchScope[SearchScope["Channel"] = 4] = "Channel";
-    /**
-     * Search members from all installations including personal chat, group chat and Teams channel.
-     */
-    SearchScope[SearchScope["All"] = 7] = "All";
-})(SearchScope || (SearchScope = {}));
-// Copyright (c) Microsoft Corporation.
-/**
- * A command bot for receiving commands and sending responses in Teams.
- *
- * @remarks
- * Only work on server side.
- */
-class CommandBot {
-    /**
-     * Create a new instance of the `CommandBot`.
-     *
-     * @param adapter - The bound `CloudAdapter`.
-     * @param commands - The commands to be registered with the command bot. Each command should implement the interface {@link TeamsFxBotCommandHandler} so that it can be correctly handled by this command bot.
-     */
-    constructor(adapter, commands) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CommandBot"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Register a command into the command bot.
-     *
-     * @param command - The command to be registered.
-     *
-     * @remarks
-     * Only work on server side.
-     */
-    registerCommand(command) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CommandBot"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Register commands into the command bot.
-     *
-     * @param commands - The commands to be registered.
-     *
-     * @remarks
-     * Only work on server side.
-     */
-    registerCommands(commands) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CommandBot"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Register a sso command into the command bot.
-     *
-     * @param ssoCommand - The sso command to be registered.
-     */
-    registerSsoCommand(ssoCommand) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CommandBot"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Register sso commands into the command bot.
-     *
-     * @param ssoCommands - The sso commands to be registered.
-     */
-    registerSsoCommands(ssoCommands) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CommandBot"), ErrorCode.RuntimeNotSupported);
-    }
-}
-/**
- * A card action bot to respond to adaptive card universal actions.
- *
- * @remarks
- * Only work on server side.
- */
-class CardActionBot {
-    /**
-     * Create a new instance of the `CardActionBot`.
-     *
-     * @param adapter - The bound `CloudAdapter`.
-     * @param options - The initialize options.
-     */
-    constructor(adapter, options) {
-        throw new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CardActionBot"), ErrorCode.RuntimeNotSupported);
-    }
-    /**
-     * Register a card action handler to the bot.
-     *
-     * @param actionHandler - A card action handler to be registered.
-     *
-     * @remarks
-     * Only work on server side.
-     */
-    registerHandler(actionHandler) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CardActionBot"), ErrorCode.RuntimeNotSupported));
-    }
-    /**
-     * Register card action handlers to the bot.
-     *
-     * @param actionHandlers - A set of card action handlers to be registered.
-     *
-     * @remarks
-     * Only work on server side.
-     */
-    registerHandlers(actionHandlers) {
-        return Promise.reject(new ErrorWithCode(formatString(ErrorMessage.BrowserRuntimeNotSupported, "CardActionBot"), ErrorCode.RuntimeNotSupported));
-    }
-}
-var conversationWithCloudAdapter_browser = /*#__PURE__*/Object.freeze({
-  __proto__: null,
-  ConversationBot: ConversationBot,
-  BotSsoExecutionDialog: BotSsoExecutionDialog,
-  Channel: Channel,
-  Member: Member,
-  NotificationBot: NotificationBot,
-  sendAdaptiveCard: sendAdaptiveCard,
-  sendMessage: sendMessage,
-  TeamsBotInstallation: TeamsBotInstallation,
-  CommandBot: CommandBot,
-  CardActionBot: CardActionBot
-});
-export { AdaptiveCardResponse, ApiKeyLocation, ApiKeyProvider, AppCredential, BasicAuthProvider, BearerTokenAuthProvider, conversationWithCloudAdapter_browser as BotBuilderCloudAdapter, BotSsoExecutionDialog, CertificateAuthProvider, ErrorCode, ErrorWithCode, InvokeResponseErrorCode, LogLevel, NotificationTargetType, OnBehalfOfUserCredential, TeamsBotSsoPrompt, TeamsUserCredential, createApiClient, createPemCertOption, createPfxCertOption, getLogLevel, handleMessageExtensionQueryWithSSO, setLogFunction, setLogLevel, setLogger };
+import{jwtDecode as e}from"jwt-decode";import{app as t,authentication as o}from"@microsoft/teams-js";import{PublicClientApplication as r}from"@azure/msal-browser";import n from"axios";var i,s;!function(e){e.InvalidParameter="InvalidParameter",e.InvalidConfiguration="InvalidConfiguration",e.InvalidCertificate="InvalidCertificate",e.InternalError="InternalError",e.ChannelNotSupported="ChannelNotSupported",e.FailedToRetrieveSsoToken="FailedToRetrieveSsoToken",e.FailedToProcessSsoHandler="FailedToProcessSsoHandler",e.CannotFindCommand="CannotFindCommand",e.FailedToRunSsoStep="FailedToRunSsoStep",e.FailedToRunDedupStep="FailedToRunDedupStep",e.SsoActivityHandlerIsUndefined="SsoActivityHandlerIsUndefined",e.RuntimeNotSupported="RuntimeNotSupported",e.ConsentFailed="ConsentFailed",e.UiRequiredError="UiRequiredError",e.TokenExpiredError="TokenExpiredError",e.ServiceError="ServiceError",e.FailedOperation="FailedOperation",e.InvalidResponse="InvalidResponse",e.AuthorizationInfoAlreadyExists="AuthorizationInfoAlreadyExists"}(i||(i={}));class a{}a.InvalidConfiguration="{0} in configuration is invalid: {1}.",a.ConfigurationNotExists="Configuration does not exist. {0}",a.ResourceConfigurationNotExists="{0} resource configuration does not exist.",a.MissingResourceConfiguration="Missing resource configuration with type: {0}, name: {1}.",a.AuthenticationConfigurationNotExists="Authentication configuration does not exist.",a.BrowserRuntimeNotSupported="{0} is not supported in browser.",a.NodejsRuntimeNotSupported="{0} is not supported in Node.",a.FailToAcquireTokenOnBehalfOfUser="Failed to acquire access token on behalf of user: {0}",a.OnlyMSTeamsChannelSupported="{0} is only supported in MS Teams Channel",a.FailedToProcessSsoHandler="Failed to process sso handler: {0}",a.FailedToRetrieveSsoToken="Failed to retrieve sso token, user failed to finish the AAD consent flow.",a.CannotFindCommand="Cannot find command: {0}",a.FailedToRunSsoStep="Failed to run dialog to retrieve sso token: {0}",a.FailedToRunDedupStep="Failed to run dialog to remove duplicated messages: {0}",a.SsoActivityHandlerIsNull="Sso command can only be used or added when sso activity handler is not undefined",a.AuthorizationHeaderAlreadyExists="Authorization header already exists!",a.BasicCredentialAlreadyExists="Basic credential already exists!",a.EmptyParameter="Parameter {0} is empty",a.DuplicateHttpsOptionProperty="Axios HTTPS agent already defined value for property {0}",a.DuplicateApiKeyInHeader="The request already defined api key in request header with name {0}.",a.DuplicateApiKeyInQueryParam="The request already defined api key in query parameter with name {0}.",a.OnlySupportInQueryActivity="The handleMessageExtensionQueryWithToken only support in handleTeamsMessagingExtensionQuery with composeExtension/query type.",a.OnlySupportInLinkQueryActivity="The handleMessageExtensionLinkQueryWithSSO only support in handleTeamsAppBasedLinkQuery with composeExtension/queryLink type.";class u extends Error{constructor(e,t){if(!t)return super(e),this;super(e),Object.setPrototypeOf(this,u.prototype),this.name=`${new.target.name}.${t}`,this.code=t}}function d(e){c.level=e}function p(){return c.level}!function(e){e[e.Verbose=0]="Verbose",e[e.Info=1]="Info",e[e.Warn=2]="Warn",e[e.Error=3]="Error"}(s||(s={}));const c=new class{constructor(e,t){this.level=void 0,this.defaultLogger={verbose:console.debug,info:console.info,warn:console.warn,error:console.error},this.name=e,this.level=t}error(e){this.log(s.Error,(e=>e.error),e)}warn(e){this.log(s.Warn,(e=>e.warn),e)}info(e){this.log(s.Info,(e=>e.info),e)}verbose(e){this.log(s.Verbose,(e=>e.verbose),e)}log(e,t,o){if(""===o.trim())return;const r=(new Date).toUTCString();let n;n=this.name?`[${r}] : @microsoft/teamsfx - ${this.name} : ${s[e]} - `:`[${r}] : @microsoft/teamsfx : ${s[e]} - `;const i=`${n}${o}`;void 0!==this.level&&this.level<=e&&(this.customLogger?t(this.customLogger)(i):this.customLogFunction?this.customLogFunction(e,i):t(this.defaultLogger)(i))}};function l(e){c.customLogger=e}function m(e){c.customLogFunction=e}function h(t){try{const o=e(t);if(!o||!o.exp)throw new u("Decoded token is null or exp claim does not exists.",i.InternalError);return o}catch(e){const t="Parse jwt token failed in node env with error: "+e.message;throw c.error(t),new u(t,i.InternalError)}}function w(e,...t){const o=t;return e.replace(/{(\d+)}/g,(function(e,t){return void 0!==o[t]?o[t]:e}))}function S(e){if("string"==typeof e||e instanceof String)return;if(Array.isArray(e)&&0===e.length)return;if(Array.isArray(e)&&e.length>0&&e.every((e=>"string"==typeof e)))return;const t="The type of scopes is not valid, it must be string or string array";throw c.error(t),new u(t,i.InvalidParameter)}class f{constructor(e){throw new u(w(a.BrowserRuntimeNotSupported,"AppCredential"),i.RuntimeNotSupported)}getToken(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"AppCredential"),i.RuntimeNotSupported))}}class g{constructor(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"OnBehalfOfUserCredential"),i.RuntimeNotSupported)}getToken(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"OnBehalfOfUserCredential"),i.RuntimeNotSupported))}getUserInfo(){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"OnBehalfOfUserCredential"),i.RuntimeNotSupported))}}class R{constructor(e){c.info("Create teams user credential"),this.config=this.loadAndValidateConfig(e),this.ssoToken=null,this.initialized=!1}async login(e,r){S(e);const n="string"==typeof e?e:e.join(" ");let s;c.info(`Popup login page to get user's access token with scopes: ${n}`),this.initialized||await this.init(r),await t.initialize();try{const e={url:`${this.config.initiateLoginEndpoint?this.config.initiateLoginEndpoint:""}?clientId=${this.config.clientId?this.config.clientId:""}&scope=${encodeURI(n)}&loginHint=${this.loginHint?this.loginHint:""}`,width:600,height:535};if(s=await o.authenticate(e),!s){const e="Get empty authentication result from MSAL";throw c.error(e),new u(e,i.InternalError)}}catch(e){const t=`Consent failed for the scope ${n} with error: ${e.message}`;throw c.error(t),new u(t,i.ConsentFailed)}let a={};try{a="string"==typeof s?JSON.parse(s):s}catch(e){const t="Failed to parse response to Json.";throw c.error(t),new u(t,i.InvalidResponse)}if(a.code){const e=`Found auth code in response. Auth code is not support for current version of SDK. Please refer to the help link for how to fix the issue: ${"https://aka.ms/teamsfx-auth-code-flow"}.`;throw c.error(e),new u(e,i.InvalidResponse)}a.sessionStorage&&this.setSessionStorage(a.sessionStorage)}async getToken(e,t){S(e);const o=null==t?void 0:t.resources,r=await this.getSSOToken(o),n="string"==typeof e?e:e.join(" ");if(""===n)return c.info("Get SSO token"),r;{let t;c.info("Get access token with scopes: "+n),this.initialized||await this.init(o);const r="string"==typeof e?e.split(" "):e,s=window.location.origin;try{const e=this.msalInstance.getAccountByUsername(this.loginHint),o={scopes:r,account:null!=e?e:void 0,redirectUri:`${s}/blank-auth-end.html`};t=await this.msalInstance.acquireTokenSilent(o)}catch(e){const t=`Failed to call acquireTokenSilent. Reason: ${null==e?void 0:e.message}. `;c.verbose(t)}if(!t)try{const e={scopes:r,loginHint:this.loginHint,redirectUri:`${s}/blank-auth-end.html`};t=await this.msalInstance.ssoSilent(e)}catch(e){const t=`Failed to call ssoSilent. Reason: ${null==e?void 0:e.message}. `;c.verbose(t)}if(!t){const e="Failed to get access token cache silently, please login first: you need login first before get access token.";throw c.error(e),new u(e,i.UiRequiredError)}const a=function(e){try{const t="string"==typeof e?JSON.parse(e):e;if(!t||!t.accessToken){const e="Get empty access token from Auth Code token response.";throw c.error(e),new Error(e)}const o=t.accessToken,r=h(o);if("1.0"!==r.ver&&"2.0"!==r.ver){const e="SSO token is not valid with an unknown version: "+r.ver;throw c.error(e),new Error(e)}return{token:o,expiresOnTimestamp:1e3*r.exp}}catch(e){const t="Parse access token failed from Auth Code token response in node env with error: "+e.message;throw c.error(t),new u(t,i.InternalError)}}(t);return a}}async getUserInfo(e){c.info("Get basic user info from SSO token");return function(e){if(!e){const e="SSO token is undefined.";throw c.error(e),new u(e,i.InvalidParameter)}const t=h(e),o={displayName:t.name,objectId:t.oid,tenantId:t.tid,preferredUserName:""};return"2.0"===t.ver?o.preferredUserName=t.preferred_username:"1.0"===t.ver&&(o.preferredUserName=t.upn),o}((await this.getSSOToken(e)).token)}async init(e){const t=function(e){if(!e){const e="SSO token is undefined.";throw c.error(e),new u(e,i.InvalidParameter)}const t=h(e);return{tid:t.tid,loginHint:"2.0"===t.ver?t.preferred_username:t.upn}}((await this.getSSOToken(e)).token);this.loginHint=t.loginHint,this.tid=t.tid;const o={auth:{clientId:this.config.clientId,authority:`https://login.microsoftonline.com/${this.tid}`},cache:{cacheLocation:"sessionStorage"}};this.msalInstance=new r(o),await this.msalInstance.initialize(),this.initialized=!0}async getSSOToken(e){if(this.ssoToken&&this.ssoToken.expiresOnTimestamp-Date.now()>3e5)return c.verbose("Get SSO token from memory cache"),this.ssoToken;const r={resources:null!=e?e:[]};let n;try{await t.initialize()}catch(e){const t="Initialize teams sdk failed due to not running inside Teams environment";throw c.error(t),new u(t,i.InternalError)}try{n=await o.getAuthToken(r)}catch(e){const t="Get SSO token failed with error: "+e.message;throw c.error(t),new u(t,i.InternalError)}if(!n){const e="Get empty SSO token from Teams";throw c.error(e),new u(e,i.InternalError)}const s=h(n);if("1.0"!==s.ver&&"2.0"!==s.ver){const e="SSO token is not valid with an unknown version: "+s.ver;throw c.error(e),new u(e,i.InternalError)}const a={token:n,expiresOnTimestamp:1e3*s.exp};return this.ssoToken=a,a}loadAndValidateConfig(e){if(c.verbose("Validate authentication configuration"),e.initiateLoginEndpoint&&e.clientId)return e;const t=[];e.initiateLoginEndpoint||t.push("initiateLoginEndpoint"),e.clientId||t.push("clientId");const o=w(a.InvalidConfiguration,t.join(", "),"undefined");throw c.error(o),new u(o,i.InvalidConfiguration)}setSessionStorage(e){try{Object.keys(e).forEach((t=>{sessionStorage.setItem(t,e[t])}))}catch(e){const t=`Failed to set values in session storage. Error: ${e.message}`;throw c.error(t),new u(t,i.InternalError)}}}class N{constructor(e,t,o,r){throw new u(w(a.BrowserRuntimeNotSupported,"TeamsBotSsoPrompt"),i.RuntimeNotSupported)}beginDialog(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"TeamsBotSsoPrompt"),i.RuntimeNotSupported))}continueDialog(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"TeamsBotSsoPrompt"),i.RuntimeNotSupported))}}function B(e,t){const o=n.create({baseURL:e});return o.interceptors.request.use((async function(e){return await t.AddAuthenticationInfo(e)})),o}class y{constructor(e){this.getToken=e}async AddAuthenticationInfo(e){const t=await this.getToken();if(e.headers||(e.headers={}),e.headers.Authorization)throw new u(a.AuthorizationHeaderAlreadyExists,i.AuthorizationInfoAlreadyExists);return e.headers.Authorization=`Bearer ${t}`,e}}class v{constructor(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"BasicAuthProvider"),i.RuntimeNotSupported)}AddAuthenticationInfo(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"BasicAuthProvider"),i.RuntimeNotSupported))}}class C{constructor(e,t,o){throw new u(w(a.BrowserRuntimeNotSupported,"ApiKeyProvider"),i.RuntimeNotSupported)}AddAuthenticationInfo(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"ApiKeyProvider"),i.RuntimeNotSupported))}}var A,I,T,k,P;!function(e){e[e.Header=0]="Header",e[e.QueryParams=1]="QueryParams"}(A||(A={}));class E{constructor(e){throw new u(w(a.BrowserRuntimeNotSupported,"CertificateAuthProvider"),i.RuntimeNotSupported)}AddAuthenticationInfo(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"CertificateAuthProvider"),i.RuntimeNotSupported))}}function x(e,t,o){throw new u(w(a.BrowserRuntimeNotSupported,"createPemCertOption"),i.RuntimeNotSupported)}function F(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"createPfxCertOption"),i.RuntimeNotSupported)}!function(e){e.Channel="Channel",e.Group="Group",e.Person="Person"}(I||(I={})),function(e){e[e.ReplaceForInteractor=0]="ReplaceForInteractor",e[e.ReplaceForAll=1]="ReplaceForAll",e[e.NewForAll=2]="NewForAll"}(T||(T={})),function(e){e[e.BadRequest=400]="BadRequest",e[e.InternalServerError=500]="InternalServerError"}(k||(k={}));class j{constructor(e,t,o,...r){throw new u(w(a.BrowserRuntimeNotSupported,"BotSsoExecutionDialog"),i.RuntimeNotSupported)}addCommand(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"BotSsoExecutionDialog"),i.RuntimeNotSupported)}run(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"BotSsoExecutionDialog"),i.RuntimeNotSupported)}onEndDialog(e){throw new u(w(a.BrowserRuntimeNotSupported,"BotSsoExecutionDialog"),i.RuntimeNotSupported)}}function O(e,t,o,r,n){throw new u(w(a.BrowserRuntimeNotSupported,"queryWithToken in message extension"),i.RuntimeNotSupported)}!function(e){e[e.Person=1]="Person",e[e.Group=2]="Group",e[e.Channel=4]="Channel",e[e.All=7]="All"}(P||(P={}));var b=Object.freeze({__proto__:null,BotSsoExecutionDialog:j,CardActionBot:class{constructor(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"CardActionBot"),i.RuntimeNotSupported)}registerHandler(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"CardActionBot"),i.RuntimeNotSupported))}registerHandlers(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"CardActionBot"),i.RuntimeNotSupported))}},Channel:class{constructor(e,t){throw this.type=I.Channel,new u(w(a.BrowserRuntimeNotSupported,"Channel"),i.RuntimeNotSupported)}sendMessage(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"Channel"),i.RuntimeNotSupported))}sendAdaptiveCard(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"Channel"),i.RuntimeNotSupported))}},CommandBot:class{constructor(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"CommandBot"),i.RuntimeNotSupported)}registerCommand(e){throw new u(w(a.BrowserRuntimeNotSupported,"CommandBot"),i.RuntimeNotSupported)}registerCommands(e){throw new u(w(a.BrowserRuntimeNotSupported,"CommandBot"),i.RuntimeNotSupported)}registerSsoCommand(e){throw new u(w(a.BrowserRuntimeNotSupported,"CommandBot"),i.RuntimeNotSupported)}registerSsoCommands(e){throw new u(w(a.BrowserRuntimeNotSupported,"CommandBot"),i.RuntimeNotSupported)}},ConversationBot:class{constructor(e){throw new u(w(a.BrowserRuntimeNotSupported,"ConversationBot"),i.RuntimeNotSupported)}requestHandler(e,t,o){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"ConversationBot"),i.RuntimeNotSupported))}},Member:class{constructor(e,t){throw this.type=I.Person,new u(w(a.BrowserRuntimeNotSupported,"Member"),i.RuntimeNotSupported)}sendMessage(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"Member"),i.RuntimeNotSupported))}sendAdaptiveCard(e,t){return Promise.reject(Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"Member"),i.RuntimeNotSupported)))}},NotificationBot:class{constructor(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"NotificationBot"),i.RuntimeNotSupported)}static installations(){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"NotificationBot"),i.RuntimeNotSupported))}findMember(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"NotificationBot"),i.RuntimeNotSupported))}findChannel(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"NotificationBot"),i.RuntimeNotSupported))}findAllMembers(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"NotificationBot"),i.RuntimeNotSupported))}findAllChannels(e){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"NotificationBot"),i.RuntimeNotSupported))}},TeamsBotInstallation:class{constructor(e,t){throw new u(w(a.BrowserRuntimeNotSupported,"TeamsBotInstallation"),i.RuntimeNotSupported)}sendMessage(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"TeamsBotInstallation"),i.RuntimeNotSupported))}sendAdaptiveCard(e,t){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"TeamsBotInstallation"),i.RuntimeNotSupported))}channels(){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"TeamsBotInstallation"),i.RuntimeNotSupported))}members(){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"TeamsBotInstallation"),i.RuntimeNotSupported))}getTeamDetails(){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"TeamsBotInstallation"),i.RuntimeNotSupported))}},sendAdaptiveCard:function(e,t,o){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"sendAdaptiveCard"),i.RuntimeNotSupported))},sendMessage:function(e,t,o){return Promise.reject(new u(w(a.BrowserRuntimeNotSupported,"sendMessage"),i.RuntimeNotSupported))}});export{T as AdaptiveCardResponse,A as ApiKeyLocation,C as ApiKeyProvider,f as AppCredential,v as BasicAuthProvider,y as BearerTokenAuthProvider,b as BotBuilderCloudAdapter,j as BotSsoExecutionDialog,E as CertificateAuthProvider,i as ErrorCode,u as ErrorWithCode,k as InvokeResponseErrorCode,s as LogLevel,I as NotificationTargetType,g as OnBehalfOfUserCredential,N as TeamsBotSsoPrompt,R as TeamsUserCredential,B as createApiClient,x as createPemCertOption,F as createPfxCertOption,p as getLogLevel,O as handleMessageExtensionQueryWithSSO,m as setLogFunction,d as setLogLevel,l as setLogger};
 //# sourceMappingURL=index.esm2017.js.map