o ǯhm@sddlZddlmZddlmZddlmZddlmZm Z m Z ddl Z ddl m Zddl mZmZmZmZdd lmZmZdd lmZdd lmZz dd l mZmZd ZWn eyadZYnwhdejZ GdddZ!dS)N)Iterable) timedelta)cached_property)AnyOptionalUnion) gettext_lazy)ExpiredSignatureErrorInvalidAlgorithmErrorInvalidTokenError algorithms)TokenBackendErrorTokenBackendExpiredToken)Token) format_lazy) PyJWKClientPyJWKClientErrorTF> ES256ES384ES512HS256HS384HS512RS256RS384RS512c@seZdZ       d#dedeededeeedfdeedeed eeee dfd ee e j d dfd d Z ed efddZed efddZdeed efddZded dfddZd e fddZded efddZdeeefd efddZd$ded ed eeeffd!d"ZdS)% TokenBackendN algorithm signing_key verifying_keyaudienceissuerjwk_urlleeway json_encoderreturnc CsV||||_||_||_||_||_tr |rt|nd|_nd|_||_ ||_ dSN) _validate_algorithmrr r!r"r#JWK_CLIENT_AVAILABLEr jwks_clientr%r&) selfrr r!r"r#r$r%r&r-^/var/www/Befach/backend/venv/lib/python3.10/site-packages/rest_framework_simplejwt/backends.py__init__)s  zTokenBackend.__init__cC ||jSr() _prepare_keyr r,r-r-r.prepared_signing_keyD z!TokenBackend.prepared_signing_keycCr0r()r1r!r2r-r-r.prepared_verifying_keyHr4z#TokenBackend.prepared_verifying_keykeycCs4|dus ttjdds |St|j}||S)Nget_algorithm_by_name)getattrjwtPyJWSr7r prepare_key)r,r6jws_algr-r-r.r1Ls zTokenBackend._prepare_keycCsD|tvr tttd||tjvrtjs tttd|dSdS)z Ensure that the nominated algorithm is recognized, and that cryptography is installed for those algorithms that require it z Unrecognized algorithm type '{}'z/You must have cryptography installed to use {}.N)ALLOWED_ALGORITHMSrr_r requires_cryptography has_crypto)r,rr-r-r.r)Ss z TokenBackend._validate_algorithmcCsZ|jdur tddSt|jttfrt|jdSt|jtr!|jStttdt|j)Nr)secondszIUnrecognized type '{}', 'leeway' must be of type int, float or timedelta.) r%r isinstanceintfloatrrr>typer2r-r-r. get_leewayds    zTokenBackend.get_leewaytokenc CsV|jdr |jS|jr(z|j|jWSty'}zttd|d}~ww|j S)NHSToken is invalid) r startswithr3r+get_signing_key_from_jwtr6rrr>r5)r,rGexr-r-r.get_verifying_keyus zTokenBackend.get_verifying_keypayloadcCs`|}|jdur|j|d<|jdur|j|d<tj||j|j|jd}t|t r.| dS|S)zL Returns an encoded token for the given payload dictionary. Naudiss)rr&zutf-8) copyr"r#r9encoder3rr&rBbytesdecode)r,rN jwt_payloadrGr-r-r.rRs      zTokenBackend.encodeTverifyc Csztj||||jg|j|j||jdu|ddWSty/}ztt d|d}~wt yA}zt t d|d}~wt yS}ztt d|d}~ww)z Performs a validation of the given token and returns its payload dictionary. Raises a `TokenBackendError` if the token is malformed, if its signature check fails, or if its 'exp' claim indicates it has expired. N) verify_audverify_signature)r r"r#r%optionszInvalid algorithm specifiedzToken is expiredrI) r9rTrMrr"r#rFr rr>r rr )r,rGrVrLr-r-r.rTs, zTokenBackend.decode)NrNNNNN)T)__name__ __module__ __qualname__strrrrrDrCrrEjson JSONEncoderr/rrr3r5r1r)rFrrMdictrRboolrTr-r-r-r.r(sJ    $r)"r^collections.abcrdatetimer functoolsrtypingrrrr9django.utils.translationrr>r r r r exceptionsrrtokensrutilsrrrr* ImportErrorunionr?r=rr-r-r-r.s*