UNPKG

@azure/msal-common

Version:

Microsoft Authentication Library for js

github.com/AzureAD/microsoft-authentication-library-for-js

AzureAD/microsoft-authentication-library-for-js

130 lines (127 loc) 5.93 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
/*! @azure/msal-common v16.6.2 2026-05-19 */ 'use strict'; import { CcsCredentialType } from '../account/CcsCredential.mjs'; import { buildClientInfoFromHomeAccountId } from '../account/ClientInfo.mjs'; import { URL_FORM_CONTENT_TYPE, HeaderNames } from '../utils/Constants.mjs'; import { addBrokerParameters, addExtraParameters, addCorrelationId, instrumentBrokerParams } from '../request/RequestParameterBuilder.mjs'; import { mapToQueryString } from '../utils/UrlUtils.mjs'; import { ThrottlingUtils } from '../network/ThrottlingUtils.mjs'; import { NetworkError } from '../error/NetworkError.mjs'; import { AuthError } from '../error/AuthError.mjs'; import { createClientAuthError } from '../error/ClientAuthError.mjs'; import { invokeAsync } from '../utils/FunctionWrappers.mjs'; import { NetworkClientSendPostRequestAsync } from '../telemetry/performance/PerformanceEvents.mjs'; import { networkError } from '../error/ClientAuthErrorCodes.mjs'; /* * Copyright (c) Microsoft Corporation. All rights reserved. * Licensed under the MIT License. */ /** * Creates default headers for requests to token endpoint */ function createTokenRequestHeaders(logger, preventCorsPreflight, ccsCred) { const headers = {}; headers[HeaderNames.CONTENT_TYPE] = URL_FORM_CONTENT_TYPE; if (!preventCorsPreflight && ccsCred) { switch (ccsCred.type) { case CcsCredentialType.HOME_ACCOUNT_ID: try { const clientInfo = buildClientInfoFromHomeAccountId(ccsCred.credential); headers[HeaderNames.CCS_HEADER] = `Oid:${clientInfo.uid}@${clientInfo.utid}`; } catch (e) { logger.verbose(`Could not parse home account ID for CCS Header: '${e}'`, ""); } break; case CcsCredentialType.UPN: headers[HeaderNames.CCS_HEADER] = `UPN: ${ccsCred.credential}`; break; } } return headers; } /** * Creates query string for the /token request * @param request */ function createTokenQueryParameters(request, clientId, redirectUri, performanceClient) { const parameters = new Map(); if (request.embeddedClientId) { addBrokerParameters(parameters, clientId, redirectUri); } if (request.extraQueryParameters) { addExtraParameters(parameters, request.extraQueryParameters); } addCorrelationId(parameters, request.correlationId); instrumentBrokerParams(parameters, request.correlationId, performanceClient); return mapToQueryString(parameters); } /** * Http post to token endpoint * @param tokenEndpoint * @param queryString * @param headers * @param thumbprint */ async function executePostToTokenEndpoint(tokenEndpoint, queryString, headers, thumbprint, correlationId, cacheManager, networkClient, logger, performanceClient, serverTelemetryManager) { const response = await sendPostRequest(thumbprint, tokenEndpoint, { body: queryString, headers: headers }, correlationId, cacheManager, networkClient, logger, performanceClient); if (serverTelemetryManager && response.status < 500 && response.status !== 429) { // Telemetry data successfully logged by server, clear Telemetry cache serverTelemetryManager.clearTelemetryCache(); } return response; } /** * Wraps sendPostRequestAsync with necessary preflight and postflight logic * @param thumbprint - Request thumbprint for throttling * @param tokenEndpoint - Endpoint to make the POST to * @param options - Body and Headers to include on the POST request * @param correlationId - CorrelationId for telemetry * @param cacheManager - Cache manager instance * @param networkClient - Network module instance * @param logger - Logger instance * @param performanceClient - Performance client instance */ async function sendPostRequest(thumbprint, tokenEndpoint, options, correlationId, cacheManager, networkClient, logger, performanceClient) { ThrottlingUtils.preProcess(cacheManager, thumbprint, correlationId); let response; try { response = await invokeAsync((networkClient.sendPostRequestAsync.bind(networkClient)), NetworkClientSendPostRequestAsync, logger, performanceClient, correlationId)(tokenEndpoint, options); const responseHeaders = response.headers || {}; performanceClient?.addFields({ refreshTokenSize: response.body.refresh_token?.length || 0, httpVerToken: responseHeaders[HeaderNames.X_MS_HTTP_VERSION] || "", requestId: responseHeaders[HeaderNames.X_MS_REQUEST_ID] || "", }, correlationId); } catch (e) { if (e instanceof NetworkError) { const responseHeaders = e.responseHeaders; if (responseHeaders) { performanceClient?.addFields({ httpVerToken: responseHeaders[HeaderNames.X_MS_HTTP_VERSION] || "", requestId: responseHeaders[HeaderNames.X_MS_REQUEST_ID] || "", contentTypeHeader: responseHeaders[HeaderNames.CONTENT_TYPE] || undefined, contentLengthHeader: responseHeaders[HeaderNames.CONTENT_LENGTH] || undefined, httpStatus: e.httpStatus, }, correlationId); } throw e.error; } if (e instanceof AuthError) { throw e; } else { throw createClientAuthError(networkError); } } ThrottlingUtils.postProcess(cacheManager, thumbprint, response, correlationId); return response; } export { createTokenQueryParameters, createTokenRequestHeaders, executePostToTokenEndpoint, sendPostRequest }; //# sourceMappingURL=Token.mjs.map