Vwgm ddlZddlmZddlmZddlmZmZmZm Z m Z ddl Z ddl m Zddl mZmZmZddlmZdd lmZdd lmZ dd l mZmZd Zhdj9ej:ZGddZy#e$rd ZY1wxYw)N)Iterable) timedelta)AnyDictOptionalTypeUnion) gettext_lazy)InvalidAlgorithmErrorInvalidTokenError algorithms)TokenBackendError)Token) format_lazy) PyJWKClientPyJWKClientErrorTF> ES256ES384ES512HS256HS384HS512RS256RS384RS512ceZdZ ddedeededeeedfdeedeedeeee dfd ee e jd dfd Z ded dfd Zd e fd Zded eefdZdeeefd efdZddeded eeeffdZy) TokenBackendN algorithm signing_key verifying_keyaudienceissuerjwk_urlleeway json_encoderreturnc |j|||_||_||_||_||_t r|r t|nd|_nd|_||_ ||_ y)N) _validate_algorithmrr r!r"r#JWK_CLIENT_AVAILABLEr jwks_clientr%r&) selfrr r!r"r#r$r%r&s X/var/www/horilla/myenv/lib/python3.12/site-packages/rest_framework_simplejwt/backends.py__init__zTokenBackend.__init__#sb   +"&*   7>{73DD #D  (c|tvrtttd||tj vr/tj stttd|yy)z Ensure that the nominated algorithm is recognized, and that cryptography is installed for those algorithms that require it z Unrecognized algorithm type '{}'z/You must have cryptography installed to use {}.N)ALLOWED_ALGORITHMSrr_r requires_cryptography has_crypto)r,rs r-r)z TokenBackend._validate_algorithm>sl . .#A@A9M   88 8AVAV#GH) BW 8r/cL|j tdSt|jttfrt|jSt|jtr |jSt t tdt|j)Nr)secondszIUnrecognized type '{}', 'leeway' must be of type int, float or timedelta.) r%r isinstanceintfloatrrr2type)r,s r- get_leewayzTokenBackend.get_leewayOs~ ;; Q' '  c5\ 2T[[1 1  Y /;; #c%  r/tokenc|jjdr |jS|jr& |jj |j S|jS#t $r}ttd|d}~wwxYw)NHSToken is invalid or expired) r startswithr r+get_signing_key_from_jwtkeyrrr2r!)r,r<exs r-get_verifying_keyzTokenBackend.get_verifying_key`s >> $ $T *## #    R''@@GKKK!!!$ R'*G(HIrQ Rs$A&& B /BB payloadcB|j}|j|j|d<|j|j|d<tj||j |j |j}t|tr|jdS|S)zL Returns an encoded token for the given payload dictionary. audiss)rr&zutf-8) copyr"r#jwtencoder rr&r7bytesdecode)r,rE jwt_payloadr<s r-rKzTokenBackend.encodelslln == $!%K  ;; "!%K     nn**   eU #<<( ( r/verifyc ` tj||j||jg|j|j |j |jdu|dS#t$r}ttd|d}~wt$r}ttd|d}~wwxYw)z Performs a validation of the given token and returns its payload dictionary. Raises a `TokenBackendError` if the token is malformed, if its signature check fails, or if its 'exp' claim indicates it has expired. N) verify_audverify_signature)r r"r#r%optionszInvalid algorithm specifiedr?) rJrMrDrr"r#r;r rr2r )r,r<rOrCs r-rMzTokenBackend.decodes N::&&u- NN+{{("&--t";(.  % N#A&C$DE2 M  N#A&C$DE2 M Ns$A&A)) B-2B B-B((B-)NNNNNN)T)__name__ __module__ __qualname__strrr rr9r8rrjson JSONEncoderr.r)r;rrDrrrKboolrMr/r-rr"s#&*/3 $!%599=))c]) ) Xt+, )  )#)eS)T12)tD$4$456) )6ST"I" "u "# "d38n,NEN4N4S>Nr/r) rYcollections.abcrdatetimertypingrrrrr rJdjango.utils.translationr r2r r r exceptionsrtokensrutilsrrrr* ImportErrorunionr3r1rr\r/r-rfsx $33 6DD)!1 % (()xNxN!! !s A88BB