From b1bc59095bdf3608947819f73dc053bff3b83100 Mon Sep 17 00:00:00 2001 From: Cheena Malhotra <13396919+cheenamalhotra@users.noreply.github.com> Date: Thu, 14 Sep 2023 12:18:45 -0700 Subject: [PATCH] Prompt to refresh account on error AADSTS700082 (#24423) --- .../azurecore/src/account-provider/auths/azureAuth.ts | 1 + extensions/azurecore/src/constants.ts | 6 ++++++ 2 files changed, 7 insertions(+) diff --git a/extensions/azurecore/src/account-provider/auths/azureAuth.ts b/extensions/azurecore/src/account-provider/auths/azureAuth.ts index ab422726a6..8cc77238c2 100644 --- a/extensions/azurecore/src/account-provider/auths/azureAuth.ts +++ b/extensions/azurecore/src/account-provider/auths/azureAuth.ts @@ -310,6 +310,7 @@ export abstract class AzureAuth implements vscode.Disposable { || error.errorMessage.includes(Constants.AADSTS50078) || error.errorMessage.includes(Constants.AADSTS50085) || error.errorMessage.includes(Constants.AADSTS50089) + || error.errorMessage.includes(Constants.AADSTS700082) || error.errorMessage.includes(Constants.AADSTS700084); } diff --git a/extensions/azurecore/src/constants.ts b/extensions/azurecore/src/constants.ts index f2ba4356d4..ad6c700a22 100644 --- a/extensions/azurecore/src/constants.ts +++ b/extensions/azurecore/src/constants.ts @@ -112,6 +112,12 @@ export const AADSTS50085 = 'AADSTS50085'; * or are revoked by the user or an admin. The app will request a new login from the user. */ export const AADSTS50089 = 'AADSTS50089'; +/** + * ExpiredOrRevokedGrantInactiveToken - The refresh token has expired due to inactivity. + * The token was issued on {issueDate} and was inactive for {time}. Expected part of the token lifecycle - + * the user went an extended period of time without using the application, so the token was expired when the app attempted to refresh it. + */ +export const AADSTS700082 = 'AADSTS700082'; /** * The refresh token was issued to a single page app (SPA), and therefore has a fixed, limited lifetime of {time}, which can't be extended. * It is now expired and a new sign in request must be sent by the SPA to the sign in page. The token was issued on {issueDate}.