UNPKG

@azure/msal-browser

Version:

Microsoft Authentication Library for js

github.com/AzureAD/microsoft-authentication-library-for-js

AzureAD/microsoft-authentication-library-for-js

55 lines (52 loc) 2.32 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
/* * Copyright (c) Microsoft Corporation. All rights reserved. * Licensed under the MIT License. */ /** * Result type returned by {@link CustomAuthRequestInterceptor.addAdditionalHeaderFields}. * * Implementations may return either a synchronous value or a `Promise` resolving to one of * the following: * - A `Record<string, string>` of additional headers to add to the outgoing request. * - `null` (or `undefined`) when no additional headers should be added for the request. */ export type CustomAuthAdditionalHeaderFieldsResult = | Record<string, string> | null | undefined; /** * Interface for intercepting custom auth network requests in order to attach additional * headers to outgoing requests. * * Implementations are invoked by MSAL before each backend request used by custom auth * (sign-in, sign-up, reset-password, and register endpoints). Use this hook to integrate * with third-party fraud and bot-detection SDKs that require custom `x-*` headers. * * MSAL applies the following rules when evaluating the headers you provide: * - Headers must start with `x-` (case-insensitive). Headers that don't start with `x-` * are ignored. * - Headers that start with any of the following reserved prefixes are ignored: * `x-client-`, `x-ms-`, `x-broker-`, `x-app-`. * - Headers that pass both rules are added to the network request. If a header you * provide has the same name as one of MSAL's own internal headers, your value takes * precedence. */ export interface CustomAuthRequestInterceptor { /** * Returns additional headers to add to a custom-auth network request. * * Scope your headers to specific endpoints by inspecting `requestUrl`. Sending * headers to unrelated endpoints can degrade signal quality and increase false * positives for fraud/bot-detection vendors. * * @param requestUrl - The full URL of the outgoing custom-auth request. * @returns A record of headers to add (or `null`/`undefined` if no extra headers * are needed for the request). May be returned synchronously or as a * `Promise`. */ addAdditionalHeaderFields( requestUrl: URL ): | CustomAuthAdditionalHeaderFieldsResult | Promise<CustomAuthAdditionalHeaderFieldsResult>; }