@azure/msal-node package
類別
| AuthError |
MSAL.js 函式庫拋出的一般錯誤類別。 |
| ClientApplication |
所有 ClientApplications 的基礎抽象類別 - 公開與機密 |
| ClientAssertion |
機密客戶端流程中使用的 jwt 承載型別的客戶斷言 |
| ClientAuthError |
當瀏覽器執行的客戶端程式碼出現錯誤時,會跳出錯誤。 |
| ClientConfigurationError |
當 MSAL.js 函式庫設定錯誤時會拋出錯誤。 |
| ClientCredentialClient |
OAuth2.0 client credential grant |
| ConfidentialClientApplication |
此類別用於取得機密用戶端應用程式(webApp、webAPI)的權杖。 機密客戶端應用程式會依適用配置應用程式秘密、客戶端憑證/斷言 |
| CryptoProvider |
此類別實作 MSAL 節點的加密介面,允許執行 base64 編碼與解碼,產生密碼學上隨機的 GUID,並利用 PKCE 實作 Proof Key for Code Exchange 規範以實現 OAuth 授權碼流程的規範(rfc 見此:https://tools.ietf.org/html/rfc7636)。 |
| DeviceCodeClient |
OAuth2.0 裝置代碼客戶端 |
| DistributedCachePlugin |
快取外掛,可將資料序列化到快取,並反序列化快取資料 |
| InteractionRequiredAuthError |
當需要使用者互動時會拋出錯誤。 |
| Logger |
類別協助將訊息記錄到特定位置。 |
| ManagedIdentityApplication |
類別以初始化受管理身份並識別服務 |
| OnBehalfOfClient |
在Behalf-Of 客戶端 |
| PublicClientApplication |
此類別用於取得公共客戶端應用程式(桌面、行動裝置)的令牌。 公開用戶端應用程式不被信任能安全儲存應用程式秘密,因此只能以使用者名義請求權杖。 |
| ServerError |
當伺服器程式碼出現錯誤時會拋出錯誤,例如無法使用。 |
| TokenCache |
記憶體內令牌快取管理器 |
| TokenCacheContext |
此類別實例有助於追蹤記憶體變更,方便決策從持久快取讀取與寫入 |
| UsernamePasswordClient |
Oauth2.0 密碼授權客戶端注意:我們僅支援公開客戶端用於密碼授權及純粹測試目的 |
介面
| IAppTokenProvider | |
| ICacheClient |
定義 getter 與 setter 的快取介面 |
| ICachePlugin | |
| IConfidentialClientApplication |
ConfidentialClientApplication 類別的介面,定義公開 API 簽章 |
| ILoopbackClient |
LoopbackClient 介面,允許以自訂實作取代預設的迴圈伺服器。 |
| INativeBrokerPlugin | |
| INetworkModule |
用戶端網路介面用來發送後端請求。 |
| IPartitionManager |
定義擷取器方法以取得用於識別快取資料的金鑰的介面 |
| IPublicClientApplication |
PublicClientApplication 類別的介面,定義公開 API 簽章 |
| ISerializableTokenCache | |
| ITokenCache |
用戶端的 Token 快取介面,提供快取 API 存取 |
類型別名
| AccountInfo |
帳號物件,簽名如下:
|
| AppTokenProviderParameters |
IAppTokenProvider 擴充性輸入物件。 MSAL 會建立這個物件,可用來協助建立 AppTokenProviderResult。
|
| AppTokenProviderResult |
IAppTokenProvider 擴展性輸出物件。
|
| AuthenticationResult |
結果是從權威機構的代幣端點回傳的。
|
| AuthorizationCodePayload |
回應在處理程式碼回應查詢字串或片段後回傳。 |
| AuthorizationCodeRequest |
使用者傳遞的請求物件,用於從伺服器取得一個憑證,交換有效的授權碼(OAuth2.0 授權碼流程的第二段)
|
| AuthorizationUrlRequest |
使用者傳遞的請求物件用來從伺服器取回代碼(授權碼授權流程的第一段)
|
| AuthorizeResponse |
/authorize 端點可能回傳的回應屬性 |
| AzureCloudOptions |
AzureCloudInstance 專屬選項
|
| BrokerOptions |
請使用此資料來配置以下券商選項:
注意:這些選項僅適用於使用 Authorization Code 流程的 PublicClientApplications。 |
| CacheKVStore |
記憶體內快取的鍵值儲存 |
| CacheOptions |
請使用此方法設定以下快取設定選項:
|
| ClientAssertionCallback | |
| ClientCredentialRequest |
CommonClientCredentialRequest
|
| Configuration |
使用設定物件來設定 MSAL 並初始化用戶端應用程式物件
|
| DeviceCodeRequest |
Oauth2 裝置程式碼流程的參數。
|
| IdTokenClaims |
類型描述 MSAL 已知的 Id Token 聲明。 |
| InMemoryCache |
間歇型別用來處理具有定義型別的記憶體資料物件 |
| InteractiveRequest |
使用者傳遞的請求物件以設定 acquireTokenInteractive API
|
| JsonCache |
快取格式從應用程式實例化時提供的快取 blob 讀取 |
| ManagedIdentityConfiguration | |
| ManagedIdentityIdParams | |
| ManagedIdentityRequestParams |
管理身份請求
|
| NetworkRequestOptions |
網路請求 API 允許的選項。 |
| NetworkResponse | |
| NodeAuthOptions |
|
| NodeSystemOptions |
用於設定記錄器與 HTTP 用戶端選項的類型
|
| NodeTelemetryOptions | |
| OnBehalfOfRequest |
|
| RefreshTokenRequest |
CommonRefreshTokenRequest
|
| SerializedAccessTokenEntity |
存取權杖憑證類型 |
| SerializedAccountEntity |
帳戶類型 |
| SerializedAppMetadataEntity |
AppMetadata 類型 |
| SerializedIdTokenEntity |
Idtoken 憑證類型 |
| SerializedRefreshTokenEntity |
刷新令牌憑證類型 |
| SignOutRequest | |
| SilentFlowRequest |
使用者傳遞的 SilentFlow 參數用來靜默取得憑證
|
| UsernamePasswordRequest |
使用者傳遞的密碼參數 用於取得憑證 注意:最新的 OAuth 2.0 安全最佳實務完全不允許密碼授權。 此流程是為了內部測試而新增。
|
列舉
| LogLevel |
日誌訊息層級。 |
變數
| Azure |
|
| Managed |
受管理身份來源名稱 |
| Protocol |
MSAL 支援的協定模式。 |
| Response |
允許的值為response_mode |
| Auth |
AuthErrorMessage 類別包含錯誤碼與訊息所使用的字串常數。 |
| Client |
錯誤碼與訊息所用的字串常數。 |
| Client |
ClientConfigurationErrorMessage 類別,包含錯誤碼與訊息所使用的字串常數。 |
| Interaction |
互動需要依 SDK 定義的錯誤進行 |
| Prompt |
我們曾考慮在請求中將「列舉」取代字串,但看起來允許的提示值清單在過去幾年一直在變動。 有些內部合作夥伴的提示值也未被記錄,因此選擇了通用的「字串」類型而非「列舉」 |
| version |
變數詳細資料
AzureCloudInstance
AzureCloudInstance: { AzureChina: "https://login.chinacloudapi.cn", AzureGermany: "https://login.microsoftonline.de", AzurePpe: "https://login.windows-ppe.net", AzurePublic: "https://login.microsoftonline.com", AzureUsGovernment: "https://login.microsoftonline.us", None: "none" }
類型
{ AzureChina: "https://login.chinacloudapi.cn", AzureGermany: "https://login.microsoftonline.de", AzurePpe: "https://login.windows-ppe.net", AzurePublic: "https://login.microsoftonline.com", AzureUsGovernment: "https://login.microsoftonline.us", None: "none" }
ManagedIdentitySourceNames
受管理身份來源名稱
ManagedIdentitySourceNames: { APP_SERVICE: "AppService", AZURE_ARC: "AzureArc", CLOUD_SHELL: "CloudShell", DEFAULT_TO_IMDS: "DefaultToImds", IMDS: "Imds", MACHINE_LEARNING: "MachineLearning", SERVICE_FABRIC: "ServiceFabric" }
類型
{ APP_SERVICE: "AppService", AZURE_ARC: "AzureArc", CLOUD_SHELL: "CloudShell", DEFAULT_TO_IMDS: "DefaultToImds", IMDS: "Imds", MACHINE_LEARNING: "MachineLearning", SERVICE_FABRIC: "ServiceFabric" }
ProtocolMode
MSAL 支援的協定模式。
ProtocolMode: { AAD: "AAD", EAR: "EAR", OIDC: "OIDC" }
類型
{ AAD: "AAD", EAR: "EAR", OIDC: "OIDC" }
ResponseMode
允許的值為response_mode
ResponseMode: { FORM_POST: "form_post", FRAGMENT: "fragment", QUERY: "query" }
類型
{ FORM_POST: "form_post", FRAGMENT: "fragment", QUERY: "query" }
AuthErrorMessage
警告
此 API 現已淘汰。
Use AuthErrorCodes instead
AuthErrorMessage 類別包含錯誤碼與訊息所使用的字串常數。
AuthErrorMessage: { postRequestFailed: { code: string, desc: string }, unexpectedError: { code: string, desc: string } }
類型
{ postRequestFailed: { code: string, desc: string }, unexpectedError: { code: string, desc: string } }
ClientAuthErrorMessage
警告
此 API 現已淘汰。
Use ClientAuthErrorCodes instead
錯誤碼與訊息所用的字串常數。
ClientAuthErrorMessage: { DeviceCodeExpired: { code: string, desc: string }, DeviceCodePollingCancelled: { code: string, desc: string }, DeviceCodeUnknownError: { code: string, desc: string }, NoAccountInSilentRequest: { code: string, desc: string }, appendScopeSetError: { code: string, desc: string }, authTimeNotFoundError: { code: string, desc: string }, bindingKeyNotRemovedError: { code: string, desc: string }, clientInfoDecodingError: { code: string, desc: string }, clientInfoEmptyError: { code: string, desc: string }, emptyInputScopeSetError: { code: string, desc: string }, endpointResolutionError: { code: string, desc: string }, hashNotDeserialized: { code: string, desc: string }, invalidAssertion: { code: string, desc: string }, invalidCacheEnvironment: { code: string, desc: string }, invalidCacheRecord: { code: string, desc: string }, invalidClientCredential: { code: string, desc: string }, invalidStateError: { code: string, desc: string }, keyIdMissing: { code: string, desc: string }, logoutNotSupported: { code: string, desc: string }, maxAgeTranspired: { code: string, desc: string }, missingTenantIdError: { code: string, desc: string }, multipleMatchingAccounts: { code: string, desc: string }, multipleMatchingAppMetadata: { code: string, desc: string }, multipleMatchingTokens: { code: string, desc: string }, nestedAppAuthBridgeDisabled: { code: string, desc: string }, networkError: { code: string, desc: string }, noAccountFound: { code: string, desc: string }, noAuthorizationCodeFromServer: { code: string, desc: string }, noCryptoObj: { code: string, desc: string }, noNetworkConnectivity: { code: string, desc: string }, nonceMismatchError: { code: string, desc: string }, nullOrEmptyToken: { code: string, desc: string }, platformBrokerError: { code: string, desc: string }, removeEmptyScopeError: { code: string, desc: string }, stateMismatchError: { code: string, desc: string }, stateNotFoundError: { code: string, desc: string }, tokenClaimsRequired: { code: string, desc: string }, tokenParsingError: { code: string, desc: string }, tokenRefreshRequired: { code: string, desc: string }, tokenRequestCannotBeMade: { code: string, desc: string }, unableToGetOpenidConfigError: { code: string, desc: string }, unexpectedCredentialType: { code: string, desc: string }, userCanceledError: { code: string, desc: string }, userTimeoutReached: { code: string, desc: string } }
類型
{ DeviceCodeExpired: { code: string, desc: string }, DeviceCodePollingCancelled: { code: string, desc: string }, DeviceCodeUnknownError: { code: string, desc: string }, NoAccountInSilentRequest: { code: string, desc: string }, appendScopeSetError: { code: string, desc: string }, authTimeNotFoundError: { code: string, desc: string }, bindingKeyNotRemovedError: { code: string, desc: string }, clientInfoDecodingError: { code: string, desc: string }, clientInfoEmptyError: { code: string, desc: string }, emptyInputScopeSetError: { code: string, desc: string }, endpointResolutionError: { code: string, desc: string }, hashNotDeserialized: { code: string, desc: string }, invalidAssertion: { code: string, desc: string }, invalidCacheEnvironment: { code: string, desc: string }, invalidCacheRecord: { code: string, desc: string }, invalidClientCredential: { code: string, desc: string }, invalidStateError: { code: string, desc: string }, keyIdMissing: { code: string, desc: string }, logoutNotSupported: { code: string, desc: string }, maxAgeTranspired: { code: string, desc: string }, missingTenantIdError: { code: string, desc: string }, multipleMatchingAccounts: { code: string, desc: string }, multipleMatchingAppMetadata: { code: string, desc: string }, multipleMatchingTokens: { code: string, desc: string }, nestedAppAuthBridgeDisabled: { code: string, desc: string }, networkError: { code: string, desc: string }, noAccountFound: { code: string, desc: string }, noAuthorizationCodeFromServer: { code: string, desc: string }, noCryptoObj: { code: string, desc: string }, noNetworkConnectivity: { code: string, desc: string }, nonceMismatchError: { code: string, desc: string }, nullOrEmptyToken: { code: string, desc: string }, platformBrokerError: { code: string, desc: string }, removeEmptyScopeError: { code: string, desc: string }, stateMismatchError: { code: string, desc: string }, stateNotFoundError: { code: string, desc: string }, tokenClaimsRequired: { code: string, desc: string }, tokenParsingError: { code: string, desc: string }, tokenRefreshRequired: { code: string, desc: string }, tokenRequestCannotBeMade: { code: string, desc: string }, unableToGetOpenidConfigError: { code: string, desc: string }, unexpectedCredentialType: { code: string, desc: string }, userCanceledError: { code: string, desc: string }, userTimeoutReached: { code: string, desc: string } }
ClientConfigurationErrorMessage
警告
此 API 現已淘汰。
Use ClientConfigurationErrorCodes instead
ClientConfigurationErrorMessage 類別,包含錯誤碼與訊息所使用的字串常數。
ClientConfigurationErrorMessage: { authorityMismatch: { code: string, desc: string }, authorityUriInsecure: { code: string, desc: string }, cannotAllowPlatformBroker: { code: string, desc: string }, cannotSetOIDCOptions: { code: string, desc: string }, claimsRequestParsingError: { code: string, desc: string }, emptyScopesError: { code: string, desc: string }, invalidAuthenticationHeader: { code: string, desc: string }, invalidAuthorityMetadata: { code: string, desc: string }, invalidAuthorizePostBodyParameters: { code: string, desc: string }, invalidClaimsRequest: { code: string, desc: string }, invalidCloudDiscoveryMetadata: { code: string, desc: string }, invalidCodeChallengeMethod: { code: string, desc: string }, invalidCodeChallengeParams: { code: string, desc: string }, invalidPlatformBrokerConfiguration: { code: string, desc: string }, invalidRequestMethodForEAR: { code: string, desc: string }, logoutRequestEmptyError: { code: string, desc: string }, missingNonceAuthenticationHeader: { code: string, desc: string }, missingSshJwk: { code: string, desc: string }, missingSshKid: { code: string, desc: string }, redirectUriNotSet: { code: string, desc: string }, tokenRequestEmptyError: { code: string, desc: string }, untrustedAuthority: { code: string, desc: string }, urlEmptyError: { code: string, desc: string }, urlParseError: { code: string, desc: string } }
類型
{ authorityMismatch: { code: string, desc: string }, authorityUriInsecure: { code: string, desc: string }, cannotAllowPlatformBroker: { code: string, desc: string }, cannotSetOIDCOptions: { code: string, desc: string }, claimsRequestParsingError: { code: string, desc: string }, emptyScopesError: { code: string, desc: string }, invalidAuthenticationHeader: { code: string, desc: string }, invalidAuthorityMetadata: { code: string, desc: string }, invalidAuthorizePostBodyParameters: { code: string, desc: string }, invalidClaimsRequest: { code: string, desc: string }, invalidCloudDiscoveryMetadata: { code: string, desc: string }, invalidCodeChallengeMethod: { code: string, desc: string }, invalidCodeChallengeParams: { code: string, desc: string }, invalidPlatformBrokerConfiguration: { code: string, desc: string }, invalidRequestMethodForEAR: { code: string, desc: string }, logoutRequestEmptyError: { code: string, desc: string }, missingNonceAuthenticationHeader: { code: string, desc: string }, missingSshJwk: { code: string, desc: string }, missingSshKid: { code: string, desc: string }, redirectUriNotSet: { code: string, desc: string }, tokenRequestEmptyError: { code: string, desc: string }, untrustedAuthority: { code: string, desc: string }, urlEmptyError: { code: string, desc: string }, urlParseError: { code: string, desc: string } }
InteractionRequiredAuthErrorMessage
警告
此 API 現已淘汰。
Use InteractionRequiredAuthErrorCodes instead
互動需要依 SDK 定義的錯誤進行
InteractionRequiredAuthErrorMessage: { bad_token: { code: string, desc: string }, interrupted_user: { code: string, desc: string }, native_account_unavailable: { code: string, desc: string }, noTokensFoundError: { code: string, desc: string } }
類型
{ bad_token: { code: string, desc: string }, interrupted_user: { code: string, desc: string }, native_account_unavailable: { code: string, desc: string }, noTokensFoundError: { code: string, desc: string } }
PromptValue
我們曾考慮在請求中將「列舉」取代字串,但看起來允許的提示值清單在過去幾年一直在變動。 有些內部合作夥伴的提示值也未被記錄,因此選擇了通用的「字串」類型而非「列舉」
PromptValue: { CONSENT: string, CREATE: string, LOGIN: string, NONE: string, NO_SESSION: string, SELECT_ACCOUNT: string }
類型
{ CONSENT: string, CREATE: string, LOGIN: string, NONE: string, NO_SESSION: string, SELECT_ACCOUNT: string }
version
version: "3.8.10"
類型
"3.8.10"