qh fSrSSKrSSKJr SSKJrJr \R"\5r "SS\5r g)z oauthlib.oauth2.rfc6749 ~~~~~~~~~~~~~~~~~~~~~~~ This module is an implementation of various logic needed for consuming and providing OAuth 2.0 RFC6749. N)Request) BaseEndpointcatch_errors_and_unavailabilitycl\rSrSrSrSr\S5r\S5r\S5r \ S Sj5r S r S r g) ResourceEndpointabAuthorizes access to protected resources. The client accesses protected resources by presenting the access token to the resource server. The resource server MUST validate the access token and ensure that it has not expired and that its scope covers the requested resource. The methods used by the resource server to validate the access token (as well as any error responses) are beyond the scope of this specification but generally involve an interaction or coordination between the resource server and the authorization server:: # For most cases, returning a 403 should suffice. The method in which the client utilizes the access token to authenticate with the resource server depends on the type of access token issued by the authorization server. Typically, it involves using the HTTP "Authorization" request header field [RFC2617] with an authentication scheme defined by the specification of the access token type used, such as [RFC6750]:: # Access tokens may also be provided in query and body https://example.com/protected?access_token=kjfch2345sdf # Query access_token=sdf23409df # Body cH[R"U5 X lXlgN)r__init___tokens_default_token)self default_token token_typess \/var/www/html/env/lib/python3.13/site-packages/oauthlib/oauth2/rfc6749/endpoints/resource.pyr ResourceEndpoint.__init__,sd#" +cUR$r )rrs rrResourceEndpoint.default_token1s"""rcLURRUR5$r )tokensgetrrs rdefault_token_type_handler+ResourceEndpoint.default_token_type_handler5s{{t1122rcUR$r )r rs rrResourceEndpoint.tokens9s ||rNc[XX45nURU5UlXVlURR URUR 5n[RSURU5 URU5U4$)z0Validate client, code etc, return body + headersz(Dispatching token_type %s request to %r.) rfind_token_type token_typescopesrrrlogdebugvalidate_request)ruri http_methodbodyheadersr"requesttoken_type_handlers rverify_requestResourceEndpoint.verify_request=s~#D:!11':![[__W-?-?-1-L-LN <$$&8 :!227;WDDrc^[U4SjURR55SS9n[U5(aUSS$S$)aToken type identification. RFC 6749 does not provide a method for easily differentiating between different token types during protected resource access. We estimate the most likely token type (if any) by asking each known token type to give an estimation based on the request. c3N># UHupURT5U4v M g7fr ) estimate_type).0ntr*s r 3ResourceEndpoint.find_token_type..Rs(=(;__W5q9(;s"%T)reverserrN)sortedritemslen)rr* estimatess ` rr ResourceEndpoint.find_token_typeJsH=(, (9(9(;=FJL "%i..y|A:d:r)rr )GETNNN)__name__ __module__ __qualname____firstlineno____doc__r propertyrrrrr,r __static_attributes__rrrrsi2, ##33%HL" E% E ;rr) rAloggingoauthlib.commonrbaserr getLoggerr=r#rrDrrrIs3#? !C;|C;r