Skip to content

Handle MsalRuntime Error Surfacing #8120

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 17 commits into
base: dev
Choose a base branch
from
+274 −147
Open

Handle MsalRuntime Error Surfacing #8120

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
8816254
error surfacing changes
Ugonnaak1 Oct 29, 2025
700cc10
Change files
Ugonnaak1 Oct 30, 2025
6c4ccd0
Merge branch 'dev' into errorSurfacing
Ugonnaak1 Oct 30, 2025
dd76def
api changes
Ugonnaak1 Oct 30, 2025
3b53bff
move nativeautherror and strilutils to msal/common
Ugonnaak1 Oct 30, 2025
1e4998e
api changes
Ugonnaak1 Oct 30, 2025
fabe8d4
Merge branch 'dev' into errorSurfacing
Ugonnaak1 Oct 31, 2025
b8e45fc
create clone
Ugonnaak1 Oct 31, 2025
3ab0162
rename NativeAuthError
Ugonnaak1 Nov 5, 2025
f52b105
move tagtoStirng under PlatformBrokerError
Ugonnaak1 Nov 6, 2025
9eb03bd
Merge branch 'dev' into errorSurfacing
Ugonnaak1 Nov 6, 2025
f679480
api changes
Ugonnaak1 Nov 6, 2025
d9aa857
Merge branch 'dev' into errorSurfacing
Ugonnaak1 Nov 7, 2025
38f4a2e
fix format
Ugonnaak1 Nov 7, 2025
57373dd
Merge branch 'dev' into errorSurfacing
Ugonnaak1 Nov 11, 2025
827ac7e
address comments
Ugonnaak1 Nov 11, 2025
2d93ac4
api doc changes
Ugonnaak1 Nov 11, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 7 additions & 0 deletions change/@azure-msal-common-fa718400-1f30-4ec0-a922-9ab96a7fe335.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
{
"type": "patch",
"comment": "error surfacing changes",
"packageName": "@azure/msal-common",
"email": "[email protected]",
"dependentChangeType": "patch"
}
7 changes: 7 additions & 0 deletions change/@azure-msal-node-extensions-05784d6a-75fa-4bbf-adf4-543636d3ae42.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
{
"type": "patch",
"comment": "error surfacing changes",
"packageName": "@azure/msal-node-extensions",
"email": "[email protected]",
"dependentChangeType": "patch"
}
39 changes: 27 additions & 12 deletions extensions/msal-node-extensions/src/broker/NativeBrokerPlugin.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -660,46 +660,61 @@ export class NativeBrokerPlugin implements INativeBrokerPlugin {
const enhancedErrorContext = errorContext
? `${errorContext} (Error Code: ${errorCode}, Tag: ${tagString})`
: `(Error Code: ${errorCode}, Tag: ${tagString})`;

const nativeAuthError = new NativeAuthError(
ErrorStatus[errorStatus],
enhancedErrorContext,
errorCode,
errorTag
);

let wrappedError;

switch (errorStatus) {
case ErrorStatus.InteractionRequired:
case ErrorStatus.AccountUnusable:
return new InteractionRequiredAuthError(
wrappedError = new InteractionRequiredAuthError(
ErrorCodes.INTERATION_REQUIRED_ERROR_CODE,
enhancedErrorContext
);
break;
case ErrorStatus.NoNetwork:
case ErrorStatus.NetworkTemporarilyUnavailable:
return createClientAuthError(
wrappedError = createClientAuthError(
ClientAuthErrorCodes.noNetworkConnectivity
);
break;
case ErrorStatus.ServerTemporarilyUnavailable:
return new ServerError(
wrappedError = new ServerError(
ErrorCodes.SERVER_UNAVAILABLE,
errorContext
);
break;
case ErrorStatus.UserCanceled:
return createClientAuthError(
wrappedError = createClientAuthError(
ClientAuthErrorCodes.userCanceled
);
break;
case ErrorStatus.AuthorityUntrusted:
return createClientConfigurationError(
wrappedError = createClientConfigurationError(
ClientConfigurationErrorCodes.untrustedAuthority
);
break;
case ErrorStatus.UserSwitched:
// Not an error case, if there's customer demand we can surface this as a response property
return null;
case ErrorStatus.AccountNotFound:
return createClientAuthError(
wrappedError = createClientAuthError(
ClientAuthErrorCodes.noAccountFound
);
break;
default:
return new NativeAuthError(
ErrorStatus[errorStatus],
enhancedErrorContext,
errorCode,
errorTag
);
wrappedError = nativeAuthError;
break;
}

wrappedError.msalNodeRuntimeError = nativeAuthError;
return wrappedError;
}
throw error;
}
Expand Down
63 changes: 63 additions & 0 deletions extensions/msal-node-extensions/test/broker/NativeBrokerPlugin.spec.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2257,6 +2257,69 @@ if (process.platform === "win32") {
done();
});
});

it("Attaches msalNodeRuntimeError with runtime details to wrapped MSAL.js errors", (done) => {
const testCorrelationId = generateCorrelationId();

jest.spyOn(
msalNodeRuntime,
"SignInSilentlyAsync"
).mockImplementation(
(
authParams: AuthParameters,
correlationId: string,
callback: (result: AuthResult) => void
) => {
const result: AuthResult = {
idToken: "",
accessToken: "",
authorizationHeader: "",
rawIdToken: "",
grantedScopes: "",
expiresOn: 0,
isPopAuthorization: false,
account: testMsalRuntimeAccount,
CheckError: () => {
const testError: MsalRuntimeError = {
errorCode: 0,
errorStatus:
ErrorStatus.InteractionRequired,
errorContext: "",
errorTag: 0,
};
throw testError;
},
telemetryData: "",
};
expect(correlationId).toEqual(testCorrelationId);
callback(result);

return asyncHandle;
}
);

const nativeBrokerPlugin = new NativeBrokerPlugin();
const request: NativeRequest = {
clientId: TEST_CLIENT_ID,
scopes: [],
correlationId: testCorrelationId,
authority: "",
redirectUri: TEST_REDIRECTURI,
};

nativeBrokerPlugin
.acquireTokenSilent(request)
.catch((error) => {
expect(error).toBeInstanceOf(
InteractionRequiredAuthError
);
expect(error.msalNodeRuntimeError).toBeDefined();
expect(error.msalNodeRuntimeError).toBeInstanceOf(
NativeAuthError
);
done();
});
});
});
});
} else if (process.platform === "darwin") {
Expand Down
6 changes: 6 additions & 0 deletions lib/msal-common/src/error/AuthError.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@

import { Constants } from "../utils/Constants.js";
import * as AuthErrorCodes from "./AuthErrorCodes.js";
import type { NativeAuthError } from "./NativeAuthError.js";
export { AuthErrorCodes };

export const AuthErrorMessages = {
Expand Down Expand Up @@ -52,6 +53,11 @@ export class AuthError extends Error {
*/
correlationId: string;

/**
* Default NativeAuthError from MsalNodeRuntime when broker is enabled
*/
msalNodeRuntimeError?: NativeAuthError;

constructor(errorCode?: string, errorMessage?: string, suberror?: string) {
const errorString = errorMessage
? `${errorCode}: ${errorMessage}`
Expand Down
34 changes: 34 additions & 0 deletions lib/msal-common/src/error/NativeAuthError.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@
/*
* Copyright (c) Microsoft Corporation. All rights reserved.
* Licensed under the MIT License.
*/

import { AuthError } from "./AuthError.js";

/**
* Error class for MSAL Runtime errors that preserves detailed broker information
*/
export class NativeAuthError extends AuthError {
/**
* Numeric error code from MSAL Runtime
*/
public statusCode: number;

/**
* Error tag from MSAL Runtime
*/
public tag: string;

constructor(
errorStatus: string,
errorContext: string,
errorCode: number,
errorTag: number
) {
super(errorStatus, errorContext);
this.name = "NativeAuthError";
this.statusCode = errorCode;
this.tag = errorTag.toString();
Object.setPrototypeOf(this, NativeAuthError.prototype);
}
}
1 change: 1 addition & 0 deletions lib/msal-common/src/exports-common.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -140,6 +140,7 @@ export {
AuthErrorCodes,
createAuthError,
} from "./error/AuthError.js";
export { NativeAuthError } from "./error/NativeAuthError.js";
export { ServerError } from "./error/ServerError.js";
export { NetworkError, createNetworkError } from "./error/NetworkError.js";
export {
Expand Down