[msal-v5] Add accountSource when caching an account #8215
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
hectormmg
requested review from
a team,
mustafamizrak,
nilo-ms,
shenj,
spetrescu84 and
yongdiw
as code owners
Contributor
There was a problem hiding this comment.
Pull request overview
This pull request introduces comprehensive documentation and structural improvements to support the Native Authentication (Custom Auth) feature in MSAL.js v5, along with significant architectural refactoring to modernize the codebase.
Key Changes:
- Added detailed Copilot instructions and coding guidelines for the new Custom Auth feature
- Implemented complete Custom Auth public API with configuration, constants, and action inputs
- Refactored core controllers and cache management to remove deprecated APIs and improve performance tracking
- Updated cryptography operations to include correlation IDs for better telemetry
- Modernized browser cache management with encryption support and schema versioning
Reviewed changes
Copilot reviewed 22 out of 22 changed files in this pull request and generated 2 comments.
Show a summary per file
| File | Description |
|---|---|
| lib/msal-browser/src/custom_auth/CustomAuthConfiguration.ts | Defines configuration types for Custom Auth feature |
| lib/msal-browser/src/custom_auth/UserAccountAttributes.ts | Defines user account attribute types for Custom Auth |
| lib/msal-browser/src/custom_auth/ICustomAuthPublicClientApplication.ts | Interface defining Custom Auth public API methods |
| lib/msal-browser/src/custom_auth/CustomAuthPublicClientApplication.ts | Main entry point implementation for Custom Auth |
| lib/msal-browser/src/custom_auth/CustomAuthConstants.ts | Constants and enums for Custom Auth feature |
| lib/msal-browser/src/custom_auth/CustomAuthActionInputs.ts | Input type definitions for Custom Auth actions |
| lib/msal-browser/src/crypto/SignedHttpRequest.ts | Updated to include correlation IDs and StubPerformanceClient |
| lib/msal-browser/src/crypto/PkceGenerator.ts | Refactored to use browser-specific performance events |
| lib/msal-browser/src/crypto/CryptoOps.ts | Updated to include correlation IDs throughout |
| lib/msal-browser/src/crypto/BrowserCrypto.ts | Simplified sha256Digest signature |
| lib/msal-browser/src/controllers/StandardController.ts | Major refactor adding accountSource tracking and updating event handling |
| lib/msal-browser/src/controllers/NestedAppAuthController.ts | Updated to add accountSource "naa" when caching accounts |
| lib/msal-browser/src/cache/TokenCache.ts | Refactored from class to standalone functions with accountSource support |
| lib/msal-browser/src/cache/BrowserCacheManager.ts | Extensive updates for cache migration, encryption, and accountSource tracking |
konstantin-msft
approved these changes
Jan 5, 2026
tnorling
reviewed
Jan 5, 2026
| result.account, | ||
| { | ||
| ...result.account, | ||
| accountSource: "pwb", |
Collaborator
There was a problem hiding this comment.
Let's use API names or a number tag, we can't assume this is a PWB call
Collaborator
There was a problem hiding this comment.
I'd suggest using ApiId actually
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This pull request introduces significant documentation and configuration updates to improve clarity, onboarding, and maintainability for the MSAL.js repository, with a particular focus on the new Native Authentication (Custom Auth) feature. The changes include detailed architectural and code structure guides, usage patterns, and contribution instructions, as well as updates to project configuration files.
Documentation Additions and Improvements:
.github/copilot-instructions.md) describing repository structure, package dependencies, review guidelines, and best practices for documentation, testing, telemetry, and changefile management..github/instructions/custom_auth_product.instructions.md)..github/instructions/custom_auth_structure.instructions.md)..github/instructions/changefiles.instructions.md).Configuration Updates:
.beachballrcfromdevtomsal-v5to align with current development practices.Minor Template Update:
storeAuthStateInCookieproperty from the bug report issue template YAML.