@azure/msal-browser v4.25.1

4.25.1

Fri, 17 Oct 2025 17:09:06 GMT

Patches

• Introduce the stateType property in state classes for the type detection #8090 (shen.jian@live.com)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump msal-test-utils to v0.0.1 (beachball)
• Bump rollup-msal to v0.0.0 (beachball)

@azure/msal-browser v4.25.0

4.25.0

Thu, 09 Oct 2025 00:57:39 GMT

Minor changes

• [Native Auth] Enable the MFA and JIT (SMS) in the public interfaces #8069 (shen.jian@live.com)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump msal-test-utils to v0.0.1 (beachball)
• Bump rollup-msal to v0.0.0 (beachball)

Patches

• Update the logic for detecting phone blocked error #8087 (shen.jian@live.com)

@azure/msal-node-extensions v5.0.0-alpha.0

5.0.0-alpha.0

Thu, 02 Oct 2025 21:58:37 GMT

Major changes

• Remove support for old versions of Node and React #8014 (shylasummers@microsoft.com)
• Bump @azure/msal-common to v16.0.0-alpha.0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump msal-test-utils to v0.0.1 (beachball)
• Bump rollup-msal to v0.0.0 (beachball)

Minor changes

• Make correlation id mandatory for Logger calls #8071 (kshabelko@microsoft.com)
• Decompose nested constants #7782 (kshabelko@microsoft.com)

Patches

• Rename fromNativeBroker to fromPlatformBroker #7940 (shylasummers@microsoft.com)
• Add handling for redirect URI based on platform #7939 (shylasummers@microsoft.com)

@azure/msal-react v5.0.0-alpha.0

5.0.0-alpha.0

Thu, 02 Oct 2025 21:58:36 GMT

Major changes

• Refactor event types and InteractionStatus to be more concise #8009 (shylasummers@microsoft.com)
• Remove support for old versions of Node and React #8014 (shylasummers@microsoft.com)
• Bump @azure/msal-browser to v5.0.0-alpha.0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump msal-test-utils to v0.0.1 (beachball)

Minor changes

• Make correlation id mandatory for Logger calls #8071 (kshabelko@microsoft.com)
• Format logging strings for future minification #7999 (kshabelko@microsoft.com)

Patches

• Refactor AccountEntity into type #7674 (shylasummers@microsoft.com)

@azure/msal-node v5.0.0-alpha.0

5.0.0-alpha.0

Thu, 02 Oct 2025 21:58:37 GMT

Major changes

• Move requests from MSAL Common to MSAL Node #7790 (joarroyo@microsoft.com)
• Drop support for Node 18 and below, add support for Node 24 (thomas.norling@microsoft.com)
• Remove all requested claims references (hemoral@microsoft.com)
• Remove encodeExtraQueryParams from config #7701 (shylasummers@microsoft.com)
• Remove support for old versions of Node and React #8014 (shylasummers@microsoft.com)
• Configuration changes to NodeAuthOptions #7695 (joarroyo@microsoft.com)
• Remove deprecated functions and parameters (shylasummers@microsoft.com)
• Refactor event types and InteractionStatus to be more concise #8009 (shylasummers@microsoft.com)
• Bump @azure/msal-common to v0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump rollup-msal to v0.0.0 (beachball)

Minor changes

• Add correlationIds to cache APIs #7865 (thomas.norling@microsoft.com)
• Decompose nested constants #7782 (kshabelko@microsoft.com)
• Update AccountInfo construction to include tenant-specific claims #7978 (hemoral@microsoft.com)
• Move auth error messages out of the bundle #7744 (kshabelko@microsoft.com)
• Create eslint rule to check all error codes are documented #7860 (kshabelko@microsoft.com)
• Make correlation id mandatory for Logger calls #8071 (kshabelko@microsoft.com)
• Update internal cache key generation (thomas.norling@microsoft.com)

Patches

• Refactor AccountEntity into type #7674 (shylasummers@microsoft.com)
• Added support for DEFAULT_IDENTITY_CLIENT_ID environment variable in Machine Learning Managed Identity #7616 (rginsburg@microsoft.com)
• remove access tokens synchronously (thomas.norling@microsoft.com)
• Rename fromNativeBroker to fromPlatformBroker #7940 (shylasummers@microsoft.com)

@azure/msal-common v16.0.0-alpha.0

16.0.0-alpha.0

Thu, 02 Oct 2025 21:58:40 GMT

Major changes

• Remove encodeExtraQueryParams from config #7701 (shylasummers@microsoft.com)
• Configuration changes to AuthOptions #7695 (joarroyo@microsoft.com)
• Move requests from MSAL Common to MSAL Node #7790 (joarroyo@microsoft.com)
• Remove deprecated functions and parameters (shylasummers@microsoft.com)
• Refactor AccountEntity into type #7674 (shylasummers@microsoft.com)
• Remove all requested claims references (hemoral@microsoft.com)
• Refactor event types and InteractionStatus to be more concise #8009 (shylasummers@microsoft.com)
• Rename fromNativeBroker to fromPlatformBroker #7940 (shylasummers@microsoft.com)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump msal-test-utils to v0.0.1 (beachball)
• Bump rollup-msal to v0.0.0 (beachball)

Minor changes

• Cache upgrade & rollback support (thomas.norling@microsoft.com)
• Decompose nested telemetry events #7818 (kshabelko@microsoft.com)
• Decompose nested constants #7782 (kshabelko@microsoft.com)
• Create eslint rule to check all error codes are documented #7860 (kshabelko@microsoft.com)
• Make correlation id mandatory for Logger calls #8071 (kshabelko@microsoft.com)
• Deprecate claimsBasedCachingEnabled as part of Configuration change #7697 (joarroyo@microsoft.com)
• Remove queue time instrumentation #7747 (kshabelko@microsoft.com)
• Add correlationIds to cache APIs #7865 (thomas.norling@microsoft.com)
• Update AccountInfo construction to include tenant-specific claims #7978 (hemoral@microsoft.com)
• Instrument timed out and cancelled redirects #7989 (kshabelko@microsoft.com)
• Move auth error messages out of the bundle #7744 (kshabelko@microsoft.com)
• Format logging strings for future minification #7999 (kshabelko@microsoft.com)

Patches

• Remove RequestValidator class (thomas.norling@microsoft.com)
• Adding new UX_NOT_ALLOWED suberror under InteractionRequired error type #7844 (lalimasharda@microsoft.com)
• Add normalizeUrlForComparison utility function to handle URL encoding consistently (#7636) (copilot@github.com)
• Upgrade/rollback telemetry #7738 (thomas.norling@microsoft.com)
• Fix cache not used for getting token if scopes are empty (PR #7121) (198982749+Copilot@users.noreply.github.com)
• Fix v4 merge errors #7726 (joarroyo@microsoft.com)
• remove access tokens synchronously (thomas.norling@microsoft.com)

@azure/msal-browser v5.0.0-alpha.0

5.0.0-alpha.0

Thu, 02 Oct 2025 21:58:42 GMT

Major changes

• Refactor event types and InteractionStatus to be more concise #8009 (shylasummers@microsoft.com)
• Changes asyncPopups to navigatePopups in Configuration #7812 (joarroyo@microsoft.com)
• Move navigateToLoginRequestUrl to request config (hemoral@microsoft.com)
• Remove encodeExtraQueryParams from config #7701 (shylasummers@microsoft.com)
• Remove claims-based caching cleanup code (hemoral@microsoft.com)
• Move loadExternalTokens out of PCA. #7828 (shylasummers@microsoft.com)
• Configuration changes to CacheOptions #7697 (joarroyo@microsoft.com)
• Configuration changes to BrowserAuthOptions #7695 (joarroyo@microsoft.com)
• Remove deprecated functions and parameters (shylasummers@microsoft.com)
• Bump @azure/msal-common to v16.0.0-alpha.0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump msal-test-utils to v0.0.1 (beachball)
• Bump rollup-msal to v0.0.0 (beachball)

Minor changes

• Add extraQueryParams for api calls #7974 (yongdiwang@microsoft.com)
• Move auth error messages out of the bundle #7744 (kshabelko@microsoft.com)
• Pass forceRefresh param to NAA bridge #8052 (kshabelko@microsoft.com)
• Instrument timed out and cancelled redirects #7989 (kshabelko@microsoft.com)
• Cache upgrade & rollback support (thomas.norling@microsoft.com)
• Remove queue time instrumentation #7747 (kshabelko@microsoft.com)
• Update AccountInfo construction to include tenant-specific claims #7978 (hemoral@microsoft.com)
• Format logging strings for future minification #7999 (kshabelko@microsoft.com)
• Add support for custom claims and password change required error, #7955 (yongdiwang@microsoft.com)
• Decompose nested telemetry events #7818 (kshabelko@microsoft.com)
• Remove access tokens when cache quota is exceeded #7865 (thomas.norling@microsoft.com)
• Support authentication method registration during Sign-In, #8007 (shen.jian@live.com)
• Decompose nested constants #7782 (kshabelko@microsoft.com)
• Refactor AccountEntity into type #7674 (shylasummers@microsoft.com)
• Add native authentication feaetures for the external ID (shen.jian@live.com)
• Make correlation id mandatory for Logger calls #8071 (kshabelko@microsoft.com)

Patches

• Export client capabilities helper (thomas.norling@microsoft.com)
• Upgrade/rollback telemetry #7738 (thomas.norling@microsoft.com)
• remove access tokens synchronously (thomas.norling@microsoft.com)
• Adding new UX_NOT_ALLOWED suberror under InteractionRequired error type #7844 (lalimasharda@microsoft.com)
• Clean up BroadcastChannel resources to fix hanging tests #8045 (kshabelko@microsoft.com)
• Add BrokerConnectionEvent to exports (thomas.norling@microsoft.com)
• Throw timeout error in acquireTokenRedirect if the redirect doesnt happen #7867 (thomas.norling@microsoft.com)
• add brokered_request_success event type (shylasummers@microsoft.com)
• Fix exception when using claims with Nested App Auth in JS Runtime environment (#8053) (dasau@microsoft.com)
• Fix redirect loop when URLs contain encoded apostrophes in MSAL Angular standalone components (#7636) (copilot@github.com)
• Rename fromNativeBroker to fromPlatformBroker #7940 (shylasummers@microsoft.com)
• Logger statements updated #7825 (lalimasharda@microsoft.com)
• Backward compatibility support #7962 (yongdiwang@microsoft.com)
• Standalone functions in PCA #7810 (hemoral@microsoft.com)
• Fix v4 merge errors #7726 (joarroyo@microsoft.com)
• Address standalone function refactoring feedback #7992 (hemoral@microsoft.com)

@azure/msal-angular v5.0.0-alpha.0

5.0.0-alpha.0

Thu, 02 Oct 2025 21:58:46 GMT

Major changes

• dx: Fix InjectionToken types to allow new Angular 14+ inject(TOKEN) syntax. (bradkovach@gmail.com)
• Drop support for Angular 17 and below, add support for Angular 20 (thomas.norling@microsoft.com)
• Remove deprecated functions and parameters (shylasummers@microsoft.com)
• Upgrade MSAL Angular to Angular 19 (shylasummers@microsoft.com)
• Update handleRedirectPromise signature to consolidate hash into options type (hemoral@microsoft.com)
• Bump @azure/msal-browser to v5.0.0-alpha.0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)

Minor changes

• Make correlation id mandatory for Logger calls #8071 (kshabelko@microsoft.com)
• Update rxjs dependency #7726 (joarroyo@microsoft.com)

Patches

• Remove legacy APIs (shylasummers@microsoft.com)

@azure/msal-browser v4.24.1

4.24.1

Tue, 30 Sep 2025 22:02:06 GMT

Patches

• Add prompt=select_account for native flows (#8062) (sameera.gajjarapu@microsoft.com)
• Add support for pageException error to fallback to web (#8064) (sameera.gajjarapu@microsoft.com)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump msal-test-utils to v0.0.1 (beachball)
• Bump rollup-msal to v0.0.0 (beachball)

@azure/msal-react v3.0.20

3.0.20

Wed, 24 Sep 2025 21:54:45 GMT

Patches

• Bump @azure/msal-browser to v4.24.0 (beachball)
• Bump eslint-config-msal to v0.0.0 (beachball)
• Bump msal-test-utils to v0.0.1 (beachball)