o ~j6h@srdZddlZddlZddlZddlZddlmZGdddejZGddde Z Gdd d ej d Z d d Z dS) a'OAuth 2.0 Utilities. This module provides implementations for various OAuth 2.0 utilities. This includes `OAuth error handling`_ and `Client authentication for OAuth flows`_. OAuth error handling -------------------- This will define interfaces for handling OAuth related error responses as stated in `RFC 6749 section 5.2`_. This will include a common function to convert these HTTP error responses to a :class:`google.auth.exceptions.OAuthError` exception. Client authentication for OAuth flows ------------------------------------- We introduce an interface for defining client authentication credentials based on `RFC 6749 section 2.3.1`_. This will expose the following capabilities: * Ability to support basic authentication via request header. * Ability to support bearer token authentication via request header. * Ability to support client ID / secret authentication via request body. .. _RFC 6749 section 2.3.1: https://tools.ietf.org/html/rfc6749#section-2.3.1 .. _RFC 6749 section 5.2: https://tools.ietf.org/html/rfc6749#section-5.2 N) exceptionsc@seZdZdZdZdS)ClientAuthTypeN)__name__ __module__ __qualname__basic request_bodyr r b/var/www/html/chefvision.cloud.itp360.com/venv/lib/python3.10/site-packages/google/oauth2/utils.pyr5src@seZdZdZdddZdS)ClientAuthenticationzDefines the client authentication credentials for basic and request-body types based on https://tools.ietf.org/html/rfc6749#section-2.3.1. NcCs||_||_||_dS)aInstantiates a client authentication object containing the client ID and secret credentials for basic and response-body auth. Args: client_auth_type (google.oauth2.oauth_utils.ClientAuthType): The client authentication type. client_id (str): The client ID. client_secret (Optional[str]): The client secret. N)client_auth_type client_id client_secret)selfrrrr r r __init__?s  zClientAuthentication.__init__N)rrr__doc__rr r r r r :sr cs@eZdZdZd fdd Z d ddZd ddZd d ZZS) OAuthClientAuthHandlerzUAbstract class for handling client authentication in OAuth-based operations. Ncstt|||_dS)zInstantiates an OAuth client authentication handler. Args: client_authentication (Optional[google.oauth2.utils.ClientAuthentication]): The OAuth client authentication credentials if available. N)superrr_client_authentication)rclient_authentication __class__r r rSs zOAuthClientAuthHandler.__init__cCs&||||dur||dSdS)aApplies client authentication on the OAuth request's headers or POST body. Args: headers (Mapping[str, str]): The HTTP request header. request_body (Optional[Mapping[str, str]]): The HTTP request body dictionary. For requests that do not support request body, this is None and will be ignored. bearer_token (Optional[str]): The optional bearer token. N)_inject_authenticated_headers"_inject_authenticated_request_body)rheadersr bearer_tokenr r r #apply_client_authentication_options]s z:OAuthClientAuthHandler.apply_client_authentication_optionscCsv|dur d||d<dS|jdur7|jjtjur9|jj}|jjp!d}td||f }d||d<dSdSdS)Nz Bearer %s Authorizationz%s:%szBasic %s) rrrr rrbase64 b64encodeencodedecode)rrrusernamepassword credentialsr r r rps  z4OAuthClientAuthHandler._inject_authenticated_headerscCsR|jdur%|jjtjur'|durtd|jj|d<|jjp d|d<dSdSdS)Nz*HTTP request does not support request-bodyrr!r)rrrr r OAuthErrorrr)rr r r r rs    z9OAuthClientAuthHandler._inject_authenticated_request_bodyr)NN) rrrrrrrr __classcell__r r rr rNs r) metaclassc Csz4g}t|}|d|dd|vr |d|dd|vr.|d|dd|}Wn ttfyA|}Ynwt||)zTranslates an error response from an OAuth operation into an OAuthError exception. Args: response_body (str): The decoded response data. Raises: google.auth.exceptions.OAuthError z Error code {}errorerror_descriptionz: {} error_uriz - {}r!) jsonloadsappendformatjoinKeyError ValueErrorrr)) response_bodyerror_components error_data error_detailsr r r handle_error_responses   r:)rabcr"enumr/ google.authrEnumrobjectr ABCMetarr:r r r r s  B