nnanh3-msal-browser
Version:
Thư viện đã custom của azure masl có common kèm trong
363 lines (360 loc) • 14.8 kB
JavaScript
/*! @azure/msal-common v4.5.1 2021-08-02 */
;
import { __spreadArrays } from '../_virtual/_tslib.js';
/*
* Copyright (c) Microsoft Corporation. All rights reserved.
* Licensed under the MIT License.
*/
var Constants = {
LIBRARY_NAME: "MSAL.JS",
SKU: "msal.js.common",
// Prefix for all library cache entries
CACHE_PREFIX: "msal",
// default authority
DEFAULT_AUTHORITY: "https://login.microsoftonline.com/common/",
DEFAULT_AUTHORITY_HOST: "login.microsoftonline.com",
// ADFS String
ADFS: "adfs",
// Default AAD Instance Discovery Endpoint
AAD_INSTANCE_DISCOVERY_ENDPT: "https://login.microsoftonline.com/common/discovery/instance?api-version=1.1&authorization_endpoint=",
// Resource delimiter - used for certain cache entries
RESOURCE_DELIM: "|",
// Placeholder for non-existent account ids/objects
NO_ACCOUNT: "NO_ACCOUNT",
// Claims
CLAIMS: "claims",
// Consumer UTID
CONSUMER_UTID: "9188040d-6c67-4c5b-b112-36a304b66dad",
// Default scopes
OPENID_SCOPE: "openid",
PROFILE_SCOPE: "profile",
OFFLINE_ACCESS_SCOPE: "offline_access",
EMAIL_SCOPE: "email",
// Default response type for authorization code flow
CODE_RESPONSE_TYPE: "code",
CODE_GRANT_TYPE: "authorization_code",
RT_GRANT_TYPE: "refresh_token",
FRAGMENT_RESPONSE_MODE: "fragment",
S256_CODE_CHALLENGE_METHOD: "S256",
URL_FORM_CONTENT_TYPE: "application/x-www-form-urlencoded;charset=utf-8",
AUTHORIZATION_PENDING: "authorization_pending",
NOT_DEFINED: "not_defined",
EMPTY_STRING: "",
FORWARD_SLASH: "/",
IMDS_ENDPOINT: "http://169.254.169.254/metadata/instance/compute/location",
IMDS_VERSION: "2020-06-01",
IMDS_TIMEOUT: 2000,
AZURE_REGION_AUTO_DISCOVER_FLAG: "TryAutoDetect",
REGIONAL_AUTH_PUBLIC_CLOUD_SUFFIX: "login.microsoft.com",
KNOWN_PUBLIC_CLOUDS: ["login.microsoftonline.com", "login.windows.net", "login.microsoft.com", "sts.windows.net"]
};
var OIDC_DEFAULT_SCOPES = [
Constants.OPENID_SCOPE,
Constants.PROFILE_SCOPE,
Constants.OFFLINE_ACCESS_SCOPE
];
var OIDC_SCOPES = __spreadArrays(OIDC_DEFAULT_SCOPES, [
Constants.EMAIL_SCOPE
]);
/**
* Request header names
*/
var HeaderNames;
(function (HeaderNames) {
HeaderNames["CONTENT_TYPE"] = "Content-Type";
HeaderNames["RETRY_AFTER"] = "Retry-After";
HeaderNames["CCS_HEADER"] = "X-AnchorMailbox";
})(HeaderNames || (HeaderNames = {}));
/**
* Persistent cache keys MSAL which stay while user is logged in.
*/
var PersistentCacheKeys;
(function (PersistentCacheKeys) {
PersistentCacheKeys["ID_TOKEN"] = "idtoken";
PersistentCacheKeys["CLIENT_INFO"] = "client.info";
PersistentCacheKeys["ADAL_ID_TOKEN"] = "adal.idtoken";
PersistentCacheKeys["ERROR"] = "error";
PersistentCacheKeys["ERROR_DESC"] = "error.description";
PersistentCacheKeys["ACTIVE_ACCOUNT"] = "active-account";
})(PersistentCacheKeys || (PersistentCacheKeys = {}));
/**
* String constants related to AAD Authority
*/
var AADAuthorityConstants;
(function (AADAuthorityConstants) {
AADAuthorityConstants["COMMON"] = "common";
AADAuthorityConstants["ORGANIZATIONS"] = "organizations";
AADAuthorityConstants["CONSUMERS"] = "consumers";
})(AADAuthorityConstants || (AADAuthorityConstants = {}));
/**
* Keys in the hashParams sent by AAD Server
*/
var AADServerParamKeys;
(function (AADServerParamKeys) {
AADServerParamKeys["CLIENT_ID"] = "client_id";
AADServerParamKeys["REDIRECT_URI"] = "redirect_uri";
AADServerParamKeys["RESPONSE_TYPE"] = "response_type";
AADServerParamKeys["RESPONSE_MODE"] = "response_mode";
AADServerParamKeys["GRANT_TYPE"] = "grant_type";
AADServerParamKeys["CLAIMS"] = "claims";
AADServerParamKeys["SCOPE"] = "scope";
AADServerParamKeys["ERROR"] = "error";
AADServerParamKeys["ERROR_DESCRIPTION"] = "error_description";
AADServerParamKeys["ACCESS_TOKEN"] = "access_token";
AADServerParamKeys["ID_TOKEN"] = "id_token";
AADServerParamKeys["REFRESH_TOKEN"] = "refresh_token";
AADServerParamKeys["EXPIRES_IN"] = "expires_in";
AADServerParamKeys["STATE"] = "state";
AADServerParamKeys["NONCE"] = "nonce";
AADServerParamKeys["PROMPT"] = "prompt";
AADServerParamKeys["SESSION_STATE"] = "session_state";
AADServerParamKeys["CLIENT_INFO"] = "client_info";
AADServerParamKeys["CODE"] = "code";
AADServerParamKeys["CODE_CHALLENGE"] = "code_challenge";
AADServerParamKeys["CODE_CHALLENGE_METHOD"] = "code_challenge_method";
AADServerParamKeys["CODE_VERIFIER"] = "code_verifier";
AADServerParamKeys["CLIENT_REQUEST_ID"] = "client-request-id";
AADServerParamKeys["X_CLIENT_SKU"] = "x-client-SKU";
AADServerParamKeys["X_CLIENT_VER"] = "x-client-VER";
AADServerParamKeys["X_CLIENT_OS"] = "x-client-OS";
AADServerParamKeys["X_CLIENT_CPU"] = "x-client-CPU";
AADServerParamKeys["X_CLIENT_CURR_TELEM"] = "x-client-current-telemetry";
AADServerParamKeys["X_CLIENT_LAST_TELEM"] = "x-client-last-telemetry";
AADServerParamKeys["X_MS_LIB_CAPABILITY"] = "x-ms-lib-capability";
AADServerParamKeys["POST_LOGOUT_URI"] = "post_logout_redirect_uri";
AADServerParamKeys["ID_TOKEN_HINT"] = "id_token_hint";
AADServerParamKeys["DEVICE_CODE"] = "device_code";
AADServerParamKeys["CLIENT_SECRET"] = "client_secret";
AADServerParamKeys["CLIENT_ASSERTION"] = "client_assertion";
AADServerParamKeys["CLIENT_ASSERTION_TYPE"] = "client_assertion_type";
AADServerParamKeys["TOKEN_TYPE"] = "token_type";
AADServerParamKeys["REQ_CNF"] = "req_cnf";
AADServerParamKeys["OBO_ASSERTION"] = "assertion";
AADServerParamKeys["REQUESTED_TOKEN_USE"] = "requested_token_use";
AADServerParamKeys["ON_BEHALF_OF"] = "on_behalf_of";
AADServerParamKeys["FOCI"] = "foci";
AADServerParamKeys["CCS_HEADER"] = "X-AnchorMailbox";
})(AADServerParamKeys || (AADServerParamKeys = {}));
/**
* Claims request keys
*/
var ClaimsRequestKeys;
(function (ClaimsRequestKeys) {
ClaimsRequestKeys["ACCESS_TOKEN"] = "access_token";
ClaimsRequestKeys["XMS_CC"] = "xms_cc";
})(ClaimsRequestKeys || (ClaimsRequestKeys = {}));
/**
* we considered making this "enum" in the request instead of string, however it looks like the allowed list of
* prompt values kept changing over past couple of years. There are some undocumented prompt values for some
* internal partners too, hence the choice of generic "string" type instead of the "enum"
*/
var PromptValue = {
LOGIN: "login",
SELECT_ACCOUNT: "select_account",
CONSENT: "consent",
NONE: "none",
CREATE: "create"
};
/**
* SSO Types - generated to populate hints
*/
var SSOTypes;
(function (SSOTypes) {
SSOTypes["ACCOUNT"] = "account";
SSOTypes["SID"] = "sid";
SSOTypes["LOGIN_HINT"] = "login_hint";
SSOTypes["ID_TOKEN"] = "id_token";
SSOTypes["DOMAIN_HINT"] = "domain_hint";
SSOTypes["ORGANIZATIONS"] = "organizations";
SSOTypes["CONSUMERS"] = "consumers";
SSOTypes["ACCOUNT_ID"] = "accountIdentifier";
SSOTypes["HOMEACCOUNT_ID"] = "homeAccountIdentifier";
})(SSOTypes || (SSOTypes = {}));
/**
* allowed values for codeVerifier
*/
var CodeChallengeMethodValues = {
PLAIN: "plain",
S256: "S256"
};
/**
* allowed values for response_mode
*/
var ResponseMode;
(function (ResponseMode) {
ResponseMode["QUERY"] = "query";
ResponseMode["FRAGMENT"] = "fragment";
ResponseMode["FORM_POST"] = "form_post";
})(ResponseMode || (ResponseMode = {}));
/**
* allowed grant_type
*/
var GrantType;
(function (GrantType) {
GrantType["IMPLICIT_GRANT"] = "implicit";
GrantType["AUTHORIZATION_CODE_GRANT"] = "authorization_code";
GrantType["CLIENT_CREDENTIALS_GRANT"] = "client_credentials";
GrantType["RESOURCE_OWNER_PASSWORD_GRANT"] = "password";
GrantType["REFRESH_TOKEN_GRANT"] = "refresh_token";
GrantType["DEVICE_CODE_GRANT"] = "device_code";
GrantType["JWT_BEARER"] = "urn:ietf:params:oauth:grant-type:jwt-bearer";
})(GrantType || (GrantType = {}));
/**
* Account types in Cache
*/
var CacheAccountType;
(function (CacheAccountType) {
CacheAccountType["MSSTS_ACCOUNT_TYPE"] = "MSSTS";
CacheAccountType["ADFS_ACCOUNT_TYPE"] = "ADFS";
CacheAccountType["MSAV1_ACCOUNT_TYPE"] = "MSA";
CacheAccountType["GENERIC_ACCOUNT_TYPE"] = "Generic"; // NTLM, Kerberos, FBA, Basic etc
})(CacheAccountType || (CacheAccountType = {}));
/**
* Separators used in cache
*/
var Separators;
(function (Separators) {
Separators["CACHE_KEY_SEPARATOR"] = "-";
Separators["CLIENT_INFO_SEPARATOR"] = ".";
})(Separators || (Separators = {}));
/**
* Credential Type stored in the cache
*/
var CredentialType;
(function (CredentialType) {
CredentialType["ID_TOKEN"] = "IdToken";
CredentialType["ACCESS_TOKEN"] = "AccessToken";
CredentialType["ACCESS_TOKEN_WITH_AUTH_SCHEME"] = "AccessToken_With_AuthScheme";
CredentialType["REFRESH_TOKEN"] = "RefreshToken";
})(CredentialType || (CredentialType = {}));
/**
* Credential Type stored in the cache
*/
var CacheSchemaType;
(function (CacheSchemaType) {
CacheSchemaType["ACCOUNT"] = "Account";
CacheSchemaType["CREDENTIAL"] = "Credential";
CacheSchemaType["ID_TOKEN"] = "IdToken";
CacheSchemaType["ACCESS_TOKEN"] = "AccessToken";
CacheSchemaType["REFRESH_TOKEN"] = "RefreshToken";
CacheSchemaType["APP_METADATA"] = "AppMetadata";
CacheSchemaType["TEMPORARY"] = "TempCache";
CacheSchemaType["TELEMETRY"] = "Telemetry";
CacheSchemaType["UNDEFINED"] = "Undefined";
CacheSchemaType["THROTTLING"] = "Throttling";
})(CacheSchemaType || (CacheSchemaType = {}));
/**
* Combine all cache types
*/
var CacheType;
(function (CacheType) {
CacheType[CacheType["ADFS"] = 1001] = "ADFS";
CacheType[CacheType["MSA"] = 1002] = "MSA";
CacheType[CacheType["MSSTS"] = 1003] = "MSSTS";
CacheType[CacheType["GENERIC"] = 1004] = "GENERIC";
CacheType[CacheType["ACCESS_TOKEN"] = 2001] = "ACCESS_TOKEN";
CacheType[CacheType["REFRESH_TOKEN"] = 2002] = "REFRESH_TOKEN";
CacheType[CacheType["ID_TOKEN"] = 2003] = "ID_TOKEN";
CacheType[CacheType["APP_METADATA"] = 3001] = "APP_METADATA";
CacheType[CacheType["UNDEFINED"] = 9999] = "UNDEFINED";
})(CacheType || (CacheType = {}));
/**
* More Cache related constants
*/
var APP_METADATA = "appmetadata";
var CLIENT_INFO = "client_info";
var THE_FAMILY_ID = "1";
var AUTHORITY_METADATA_CONSTANTS = {
CACHE_KEY: "authority-metadata",
REFRESH_TIME_SECONDS: 3600 * 24 // 24 Hours
};
var AuthorityMetadataSource;
(function (AuthorityMetadataSource) {
AuthorityMetadataSource["CONFIG"] = "config";
AuthorityMetadataSource["CACHE"] = "cache";
AuthorityMetadataSource["NETWORK"] = "network";
})(AuthorityMetadataSource || (AuthorityMetadataSource = {}));
var SERVER_TELEM_CONSTANTS = {
SCHEMA_VERSION: 5,
MAX_CUR_HEADER_BYTES: 80,
MAX_LAST_HEADER_BYTES: 330,
MAX_CACHED_ERRORS: 50,
CACHE_KEY: "server-telemetry",
CATEGORY_SEPARATOR: "|",
VALUE_SEPARATOR: ",",
OVERFLOW_TRUE: "1",
OVERFLOW_FALSE: "0",
UNKNOWN_ERROR: "unknown_error"
};
/**
* Type of the authentication request
*/
var AuthenticationScheme;
(function (AuthenticationScheme) {
AuthenticationScheme["POP"] = "pop";
AuthenticationScheme["BEARER"] = "Bearer";
})(AuthenticationScheme || (AuthenticationScheme = {}));
/**
* Constants related to throttling
*/
var ThrottlingConstants = {
// Default time to throttle RequestThumbprint in seconds
DEFAULT_THROTTLE_TIME_SECONDS: 60,
// Default maximum time to throttle in seconds, overrides what the server sends back
DEFAULT_MAX_THROTTLE_TIME_SECONDS: 3600,
// Prefix for storing throttling entries
THROTTLING_PREFIX: "throttling",
// Value assigned to the x-ms-lib-capability header to indicate to the server the library supports throttling
X_MS_LIB_CAPABILITY_VALUE: "retry-after, h429"
};
var Errors = {
INVALID_GRANT_ERROR: "invalid_grant",
CLIENT_MISMATCH_ERROR: "client_mismatch",
};
/**
* Password grant parameters
*/
var PasswordGrantConstants;
(function (PasswordGrantConstants) {
PasswordGrantConstants["username"] = "username";
PasswordGrantConstants["password"] = "password";
})(PasswordGrantConstants || (PasswordGrantConstants = {}));
/**
* Response codes
*/
var ResponseCodes;
(function (ResponseCodes) {
ResponseCodes[ResponseCodes["httpSuccess"] = 200] = "httpSuccess";
ResponseCodes[ResponseCodes["httpBadRequest"] = 400] = "httpBadRequest";
})(ResponseCodes || (ResponseCodes = {}));
/**
* Region Discovery Sources
*/
var RegionDiscoverySources;
(function (RegionDiscoverySources) {
RegionDiscoverySources["FAILED_AUTO_DETECTION"] = "1";
RegionDiscoverySources["INTERNAL_CACHE"] = "2";
RegionDiscoverySources["ENVIRONMENT_VARIABLE"] = "3";
RegionDiscoverySources["IMDS"] = "4";
})(RegionDiscoverySources || (RegionDiscoverySources = {}));
/**
* Region Discovery Outcomes
*/
var RegionDiscoveryOutcomes;
(function (RegionDiscoveryOutcomes) {
RegionDiscoveryOutcomes["CONFIGURED_MATCHES_DETECTED"] = "1";
RegionDiscoveryOutcomes["CONFIGURED_NO_AUTO_DETECTION"] = "2";
RegionDiscoveryOutcomes["CONFIGURED_NOT_DETECTED"] = "3";
RegionDiscoveryOutcomes["AUTO_DETECTION_REQUESTED_SUCCESSFUL"] = "4";
RegionDiscoveryOutcomes["AUTO_DETECTION_REQUESTED_FAILED"] = "5";
})(RegionDiscoveryOutcomes || (RegionDiscoveryOutcomes = {}));
var CacheOutcome;
(function (CacheOutcome) {
CacheOutcome["NO_CACHE_HIT"] = "0";
CacheOutcome["FORCE_REFRESH"] = "1";
CacheOutcome["NO_CACHED_ACCESS_TOKEN"] = "2";
CacheOutcome["CACHED_ACCESS_TOKEN_EXPIRED"] = "3";
CacheOutcome["REFRESH_CACHED_ACCESS_TOKEN"] = "4";
})(CacheOutcome || (CacheOutcome = {}));
export { AADAuthorityConstants, AADServerParamKeys, APP_METADATA, AUTHORITY_METADATA_CONSTANTS, AuthenticationScheme, AuthorityMetadataSource, CLIENT_INFO, CacheAccountType, CacheOutcome, CacheSchemaType, CacheType, ClaimsRequestKeys, CodeChallengeMethodValues, Constants, CredentialType, Errors, GrantType, HeaderNames, OIDC_DEFAULT_SCOPES, OIDC_SCOPES, PasswordGrantConstants, PersistentCacheKeys, PromptValue, RegionDiscoveryOutcomes, RegionDiscoverySources, ResponseCodes, ResponseMode, SERVER_TELEM_CONSTANTS, SSOTypes, Separators, THE_FAMILY_ID, ThrottlingConstants };
//# sourceMappingURL=Constants.js.map