qhrO2SSKJr SSKrSSKrSSKJrJrJrJr SSK J r SSK J r SSK Jr SSKJrJrJrJrJrJrJrJr SS KJrJrJrJr S S KJr \(aSS KJ r SS K!J"r" SSK#J$r$ "SS\5r%"SS\%5r&"SS\%5r'"SS\'5r(g)) annotationsN) TYPE_CHECKINGAnyLiteralcast) urlencode)SIGNATURE_TYPE_AUTH_HEADER)OAuth1) AuthCanceled AuthException AuthFailedAuthMissingParameterAuthStateForbiddenAuthStateMissingAuthTokenErrorAuthUnknownError)constant_time_comparehandle_http_errorsparse_qsurl_add_parameters)BaseAuth)Mapping)Response)AuthBasec ^\rSrSr%SrSrSrSrS\S'Sr S\S'Sr S \S 'S r S r S r S\S'SrSrSrS$U4SjjrSrS%SjrSrSrSrS$S&SjjrSrSrS'SjrS(SjrS(SjrS(SjrS)SjrS)S jrS!r S"r!S#r"U=r#$)* OAuthAuth$aOAuth authentication backend base class. Settings will be inspected to get more values names that should be stored on extra_data field. The setting name is created following the pattern SOCIAL_AUTH__EXTRA_DATA. access_token is always stored. URLs settings: AUTHORIZATION_URL Authorization service url ACCESS_TOKEN_URL Access token URL POSTLiteral['GET', 'POST']ACCESS_TOKEN_METHODstrREVOKE_TOKEN_URL Literal['GET', 'POST', 'DELETE']REVOKE_TOKEN_METHODidscopeNzlist[str] | None DEFAULT_SCOPE Fc>[TU]"XX4/UQ70UD6nURSS5=(d URS5US'U$)zHReturn access_token and extra defined names to store in extra_data field access_tokenr super extra_dataget selfuseruidresponsedetailsargskwargsdata __class__s L/var/www/html/env/lib/python3.13/site-packages/social_core/backends/oauth.pyr0OAuthAuth.extra_data>sPw!$XPPP'||NB? 6:: D ^ c8URRS5$)z2Generate csrf token to include as state parameter. )strategy random_stringr3s r< state_tokenOAuthAuth.state_tokenGs}}**2..r>cUR(dUR(aZURS-nURR U5nUc+UR 5nURR X5 U$SnU$N_state)STATE_PARAMETERREDIRECT_STATEnamerA session_getrD session_set)r3rKstates r<get_or_create_stateOAuthAuth.get_or_create_stateKso   4#6#6 99x'DMM--d3E}((* ))$6 E r>cRURRURS-5$rG)rArLrKrCs r<get_session_stateOAuthAuth.get_session_state[s }}((X)=>>r>cURRS5=(d URRS5nU(a[U[5(aUSnU$)NrNredirect_stater)r:r1 isinstancelist)r3 request_states r<get_request_stateOAuthAuth.get_request_state^sF g.Q$))--@P2Q Z t<<)!,Mr>cUR(dUR(dgUR5nUR5nU(d [ US5eU(d [ US5e[ X!5(d [U5eU$)zNValidate state value. Raises exception on error, returns state value if valid.NrN)rIrJrRrYrrrr)r3rNrXs r<validate_stateOAuthAuth.validate_statedso##D,?,?&&(..0 &tW5 5"41 1$]::$T* * r>c~[SUR5nUR(aU(a[USU05nU$)z-Build redirect with redirect_state parameter.r$rU)r redirect_urirJr)r3rNuris r<get_redirect_uriOAuthAuth.get_redirect_uriss65$++,   5$S+;U*CDC r>cURS/5nURSS5(dXR=(d /-nU$)z$Return list with needed access scopeSCOPEIGNORE_DEFAULT_SCOPEF)settingr*)r3r)s r< get_scopeOAuthAuth.get_scopezs< Wb)||2E:://526E r>c0nUR5nU(a'URRU5XR'U$N)rgSCOPE_SEPARATORjoinSCOPE_PARAMETER_NAME)r3paramr)s r<get_scope_argumentOAuthAuth.get_scope_arguments:  /3/C/C/H/H/OE++ , r>c0$)z3Loads user data from service. Implement in subclass)r3r-r8r9s r< user_dataOAuthAuth.user_datas r>cUR$rj)AUTHORIZATION_URLrCs r<authorization_urlOAuthAuth.authorization_urls%%%r>cUR$rj)ACCESS_TOKEN_URLrCs r<access_token_urlOAuthAuth.access_token_url$$$r>cUR$rj)r%r3tokenr5s r<revoke_token_urlOAuthAuth.revoke_token_urlr}r>c0$rjrrrs r<revoke_token_paramsOAuthAuth.revoke_token_params r>c0$rjrrrs r<revoke_token_headersOAuthAuth.revoke_token_headersrr>c URS:H$)N) status_code)r3r6s r<process_revoke_token_response'OAuthAuth.process_revoke_token_responses##s**r>cURX5=n(amURX5nURX5nURS:wa [ U5OSnUR UUUUURS9nUR U5$g)NGET)paramsheadersr:method)rrrr'rrequestr)r3rr5rrrr:r6s r< revoke_tokenOAuthAuth.revoke_tokens#44U@ @  @--e9F//;G(,(@(@E(I9V$tD|| // $H55h? ?r>rrrj)return str | None)rNrrr$)rzdict[str, Any] | None)rr$)rzdict[str, Any])$__name__ __module__ __qualname____firstlineno____doc__rvrzr#__annotations__r%r'ID_KEYrmr*rkrJrIr0rDrOrRrYr\rargrorsrwr{rrrrr__static_attributes__ __classcell__r;s@r<rr$s 28/8crc\rSrSr%SrSrSrS\S'SrSr S r SS jr S r \ S 5r\ S 5rSrSrSrSrSrSS\4SSjjrSSSjjrSSjrSrg) BaseOAuth1zConsumer based mechanism OAuth authentication, fill the needed parameters to communicate properly with authentication service. URLs settings: REQUEST_TOKEN_URL Request token URL r rr"REQUEST_TOKEN_METHOD oauth_tokenr_unauthorized_token_namecDUR5nURU5$zReturn redirect url)set_unauthorized_tokenoauth_authorization_requestr3rs r<auth_urlBaseOAuth1.auth_urls!++-//66r>c^SU;a'USS:Xa [US5e[USUS-5eg)N oauth_problem user_refusedzUser refused the accessz Error was )r rr3r:s r< process_errorBaseOAuth1.process_errorsA d "O$6"4)BCC"4_8M)MN N #r>cURUR5 UR5 UR5nUR U5nUR "U/UQ70UD6$)zReturn user, might be logged in)rr:r\get_unauthorized_tokenr-do_auth)r3r8r9rr-s r< auth_completeBaseOAuth1.auth_completesY 499% ++-((/ ||L:4:6::r>c[U[5(d [U5nURU5nUb SU;aXS'UR X@S.5 UR R "U0UD6$);Finish the auth process once the access_token was retrievedr-r6backend)rVdictrrsupdaterA authenticate)r3r-r8r9r:s r<rBaseOAuth1.do_authsg,--#L1L~~l+  d :#/  49:}}))4:6::r>c URUR-nURRU/5nU(d [ US5eUR R UR5nUc [ US5eSnUH{nUn[U[5(d [U5nUR UR5U:XdMFURRU[[U5U1- 55 Un U$ [ US5e)NzMissing unauthorized tokenzIncorrect tokens)rKUNATHORIZED_TOKEN_SUFIXrArLrr:r1OAUTH_TOKEN_PARAMETER_NAMErVrrrMrWset)r3rKunauthed_tokens data_tokenrutoken orig_utokens r<r!BaseOAuth1.get_unauthorized_tokensyy4777--33D"= 'CD DYY]]4#B#BC   'CD D%F Kfd++!&)zz$99:jH ))$s?3{mCD &!'9: :r>cUR5nURUR-n/URR U/5QUPnURR X#5 U$rj)unauthorized_tokenrKrrArLrM)r3rrKtokenss r<r!BaseOAuth1.set_unauthorized_tokens['')yy4777>4==,,T26>> !!$/ r>c&URS05$)z6Return extra arguments needed on request-token processREQUEST_TOKEN_EXTRA_ARGUMENTS)rfrCs r<request_token_extra_arguments(BaseOAuth1.request_token_extra_argumentss||;R@@r>c UR5nURUR55 UR5up#UR 5nUR UR U[X#URU5S9URS9nURnUR(dUR(a0URUR=(d UR5nU$URR5nU$)z3Return request for unauthorized token (first stage)) callback_uri)rauthr)rrroget_key_and_secretrOrREQUEST_TOKEN_URLr rarcontentencodingapparent_encodingdecode)r3rkeysecretrNr6rs r<rBaseOAuth1.unauthorized_tokens335 d--/0--/ ((*<<  " "$2G2G2NO,,    ""    : :nnX%6%6%T(:T:TUG&&--/Gr>c[U[5(d [U5nUR5=(d 0nUR UR 55 UR UR5X R'UR5nURU5X R'[UR5U5$)z*Generate OAuth request to authorize token.) rVrrauth_extra_argumentsrror1rrOraREDIRECT_URI_PARAMETER_NAMErrw)r3rrrNs r<r&BaseOAuth1.oauth_authorization_requests%&&UOE**,2 d--/027))  + +3 ../((*373H3H3O//0!$"8"8":FCCr>Nc rUR5upEU=(d URRS5nU(aIURS5nURS5nU(d [US5eU(d [US5eOSnSnUR 5n[ UUUUUR U5UUS9$)Noauth_verifierroauth_token_secretzMissing oauth_tokenzMissing oauth_token_secret)resource_owner_keyresource_owner_secretrverifiersignature_type)rr:r1rrOr ra) r3rrrrrrrrNs r< oauth_authBaseOAuth1.oauth_auth"s --/ 'J499==9I+J !&=!9 $)II.B$C !%$T+@AA($T+GHH)"& $( !((*  1"7..u5#)  r>c@URX$X0RU5S9$)z+Generate OAuth request, setups callback url)rrr)rr)r3rurlrrs r< oauth_requestBaseOAuth1.oauth_request?s(|| vOOE4J  r>crURUR5URU5URS9$)z%Return request for access token value)rr)get_querystringr{rr#rs r<r-BaseOAuth1.access_tokenGs;##  ! ! #'++$  r>rrrzstr | bytes | None)r dict | None)Nr)rrrr$rr"rr)rrrdict[str, str])rrrrrrrrrrrrrrrrrrrrrr rrr-rrrr>r<rrs3808!."077 O ;;;;4A& D"1   <TY  # :P   r>rc^\rSrSr%SrSrS\S'SrSrS\S'S r S r S r SS jr SSS jjr SS jrSSjrSrSSjrU4SjrS S!SjjrSr\S5r\S5rSrSrSrSrSrU=r$)" BaseOAuth2iPzgBase class for OAuth2 providers. OAuth2 details at: https://datatracker.ietf.org/doc/html/rfc6749 NrREFRESH_TOKEN_URLr!code RESPONSE_TYPETFcUR$rj)USE_BASIC_AUTHrCs r<use_basic_authBaseOAuth2.use_basic_auth^s"""r>cUR5up#X RU5S.nUR(a U(aXS'UR(aURUS'U$)N) client_idr_rN response_type)rrarIr)r3rNr client_secretrs r< auth_paramsBaseOAuth2.auth_paramsasW#'#:#:#< (:O:OPU:VW   E#7O   &*&8&8F? # r>cUR5nURU5nURUR55 URUR 55 [ UR 5X R(+5$r)rOrrrorrrwrJ)r3rNrs r<rBaseOAuth2.auth_urljsp((*!!%( d--/0 d//12"  " " $f2E2E.E  r>cSURRSS5URU5S.nUR5(d&UR 5up4UR UUS.5 U$)Nauthorization_coderr ) grant_typerr_)rr)r:r1rarrr)r3rNrrrs r<auth_complete_paramsBaseOAuth2.auth_complete_paramswsl.IIMM&"- 11%8  ""$$'+'>'>'@ $I MM!*%2   r>cNUR5(aUR5$grj)rrrCs r<auth_complete_credentials$BaseOAuth2.auth_complete_credentialss#    **, ,r>c SSS.$)Nz!application/x-www-form-urlencodedzapplication/json)z Content-TypeAcceptrrrCs r< auth_headersBaseOAuth2.auth_headerss?(  r>c>[TU]"XU/UQ7SU0UD6nURS5=(d URS5US'U$)zUReturn access_token, token_type, and extra defined names to store in extra_data fieldr7 token_typer.r2s r<r0BaseOAuth2.extra_datasLw!$XXXwXQWX%\\,7S6::l;S\ r>c $URXX4XVS9$)N)rrr:rr)get_json)r3rrrr:rrs r<request_access_tokenBaseOAuth2.request_access_tokens!}}   r>cURS5(aSSUS;d SUS;a[XRSS55e[XRS5=(d US5eSU;a[XS5eg)Nerrordenied cancellederror_descriptionr )r1r rrs r<rBaseOAuth2.process_errorsy 88G  4=(K4=,H"42Er)JKKT88,?#@#QDMR R t t(^4 4 r>c URUR5 UR5nSupEURS:XaUR U5nOUR U5nUR UR 5UUUR5UR5URS9nURU5 UR"US/UQ7SU0UD6$)z2Completes login process, must return user instance)NNr)r:rrrrr-r6) rr:r\r#r rr{rrr)r3r8r9rNr:rr6s r<rBaseOAuth2.auth_completes 499%##%!   # #u ,..u5F,,U3D,,  ! ! #%%'//1++ -  8$|| ^ $ :> /7 BH  r>cUR"U/UQ70UD6nURS5=(d 0nURU=(d 05 SU;aXS'URXPS.5 URR"U0UD6$)rr6r-r)rsr1rrAr)r3r-r8r9r:r6s r<rBaseOAuth2.do_authsx~~l}}))4:6::r>c4UR5upEUSUUS.$)N refresh_token)r&r rr)r)r3rr8r9rrs r<refresh_token_paramsBaseOAuth2.refresh_token_paramss)#'#:#:#< ")"*   r>c"UR5$rj)json)r3r6r8r9s r<process_refresh_token_response)BaseOAuth2.process_refresh_token_responses}}r>cUR"U/UQ70UD6nUR5nURnUS:XaSOSnSUR5SXgU0nUR"U40UD6n UR "U /UQ70UD6$)Nrrr:rr)r'refresh_token_urlREFRESH_TOKEN_METHODrrr+) r3rr8r9rrrr request_argsrs r<r&BaseOAuth2.refresh_tokens**5B4B6B$$&** E/hv!4#4#4#6&vV ,,s3l3227LTLVLLr>cHUR=(d UR5$rj)rr{rCs r<r.BaseOAuth2.refresh_token_urls%%@)>)>)@@r>rr)rboolrj)rNrrrr)rzMapping[str, str | bytes])rNNNN)rr$rr&rz Mapping[str, str | bytes] | Noner:zdict | bytes | str | Nonerz!tuple[str, str] | AuthBase | Nonerrrzdict[Any, Any])rrrrrrrr/rrJrIrrrrr rrr0rrrrrr'r+r&r.rrrs@r<rrPs %)z(! &M:&NON#     4948*.26"    1  2  (  0       5  .;; MAAr>rc^^\rSrSrSrSrSrSrSrSr Sr S U4S jjr S U4S jjr S r U=r$) BaseOAuth2PKCEiz Base class for providers using OAuth2 with Proof Key for Code Exchange (PKCE). OAuth2 details at: https://datatracker.ietf.org/doc/html/rfc6749 PKCE details at: https://datatracker.ietf.org/doc/html/rfc7636 s256r@TcURS3nURSURS9nURR U5nURR X5 U$)N_code_verifierPKCE_CODE_VERIFIER_LENGTHdefault)rKrf!PKCE_DEFAULT_CODE_VERIFIER_LENGTHrArBrM)r3rKcode_verifier_len code_verifiers r<create_code_verifier#BaseOAuth2PKCE.create_code_verifiers`))N+ LL '1W1W)  334EF  !!$6r>cVURS3nURRU5$)Nr9)rKrArL)r3rKs r<get_code_verifier BaseOAuth2PKCE.get_code_verifiers'))N+}}((..r>c&UR5nUS:Xah[R"UR55R 5n[ R "U5nUR5RSS5$US:XaU$[US5e)Nr7=r plainz"Unsupported code challenge method.) lowerhashlibsha256encodedigestbase64urlsafe_b64encoderreplacer )r3r?challenge_methodrhashedencodeds r<generate_code_challenge&BaseOAuth2PKCE.generate_code_challenges~!'') V ^^M$8$8$:;BBDF..v6G>>#++C4 4 W  D"FGGr>c>[TU]US9nURSURS9(aCURSURS9nUR 5nUR XC5nX2S'XRS'U$)NrNUSE_PKCEr;PKCE_CODE_CHALLENGE_METHODcode_challenge_methodcode_challenge)r/rrfDEFAULT_USE_PKCE"PKCE_DEFAULT_CODE_CHALLENGE_METHODr@rS)r3rNrrYr?rZr;s r<rBaseOAuth2PKCE.auth_paramss$5$1 << D,A,A< B$(LL,??%1% !!557M!99N/D* +'5# $ r>c>[TU]US9nURSURS9(aUR 5nX2S'U$)NrVrWr;r?)r/r rfr[rC)r3rNrr?r;s r<r #BaseOAuth2PKCE.auth_complete_paramssF-E-: << D,A,A< B 224M&3? # r>rrrj)rrrrrr\r=r[r@rCrSrr rrrs@r<r6r6s;*0&(*%/H r>r6)) __future__rrMrItypingrrrr urllib.parseroauthlib.oauth1r requests_oauthlibr exceptionsr r rrrrrrutilsrrrrbasercollections.abcrrequestsr requests.authrrrrr6rrr>r<rks" 44"6$    '!&GGT_ _ DWAWAt<Z<r>