o ^[2h@slddlmZddlmZddlmZddlmZddlmZGdddeZ Gd d d Z Gd d d Z d S))default_json_headers)InvalidRequestError)Hookable)hooked) OAuth2RequestcsheZdZdgZdZeZdeffdd Ze ddZ     dd d Z d d Z d dZ ddZZS) BaseGrantclient_secret_basicNrequestcs&td|_d|_||_||_dSN)super__init__prompt redirect_urir server)selfr r __class__s/home/skpark/git/infrasmart_work/infrasmart/venv/lib/python3.10/site-packages/authlib/oauth2/rfc6749/grants/base.pyr s  zBaseGrant.__init__cCs|jjSr )r clientrrrrrszBaseGrant.clientTcCs*|dur|j}|jj|jj|||||dS)N)r grant_typeuserscope expires_ininclude_refresh_token) GRANT_TYPErgenerate_tokenr r)rrrrrrrrrr!szBaseGrant.generate_tokencCs(|j|j|j}|jjd||d|S)aAuthenticate client with the given methods for token endpoint. For example, the client makes the following HTTP request using TLS: .. code-block:: http POST /token HTTP/1.1 Host: server.example.com Authorization: Basic czZCaGRSa3F0MzpnWDFmQmF0M2JW Content-Type: application/x-www-form-urlencoded grant_type=authorization_code&code=SplxlOBeZQQYbYS6WxSbIA &redirect_uri=https%3A%2F%2Fclient%2Eexample%2Ecom%2Fcb Default available methods are: "none", "client_secret_basic" and "client_secret_post". :return: client after_authenticate_client)rgrant)rauthenticate_clientr TOKEN_ENDPOINT_AUTH_METHODS send_signal)rrrrr"authenticate_token_endpoint_client4s z,BaseGrant.authenticate_token_endpoint_clientcCs|j||jS)z%A method to save token into database.)r save_tokenr )rtokenrrrr%NszBaseGrant.save_tokencCs|jjj}|j|S)zAValidate if requested scope is supported by Authorization Server.)r payloadrrvalidate_requested_scope)rrrrrr(Rs  z"BaseGrant.validate_requested_scope)NNNNT)__name__ __module__ __qualname__r"rrTOKEN_RESPONSE_HEADERrr propertyrrr$r%r( __classcell__rrrrr s   rc@s8eZdZdgZdZedefddZddZdd Z dS) TokenEndpointMixinPOSTNr cCs|jj|jko |j|jvSr )r'rrmethodTOKEN_ENDPOINT_HTTP_METHODSclsr rrrcheck_token_endpoint_s z'TokenEndpointMixin.check_token_endpointcCtr NotImplementedErrorrrrrvalidate_token_requestfz)TokenEndpointMixin.validate_token_requestcCr6r r7rrrrcreate_token_responseir:z(TokenEndpointMixin.create_token_response) r)r*r+r2r classmethodrr5r9r;rrrrr/Xs r/c@sneZdZeZdZedefddZe defddZ e defddZ e d d Z d d Zd efddZdS)AuthorizationEndpointMixinFr cCs|jj|jvSr )r' response_typeRESPONSE_TYPESr3rrrcheck_authorization_endpointqsz7AuthorizationEndpointMixin.check_authorization_endpointcCsR|jjr||jjstd|jjd|jjS|}|s'td|jjd|S)Nz Redirect URI z is not supported by client.z"Missing 'redirect_uri' in request.state)r'rcheck_redirect_urirget_default_redirect_urirB)r rrrrr#validate_authorization_redirect_uriusz>AuthorizationEndpointMixin.validate_authorization_redirect_uricCsJ|jj}gd}|D]}t||gdkr"td|d|jjdq dS)zFor the Authorization Endpoint, request and response parameters MUST NOT be included more than once. Per `Section 3.1`_. .. _`Section 3.1`: https://tools.ietf.org/html/rfc6749#section-3.1 )r> client_idrrrBz Multiple 'z ' in request.rAN)r'datalistlengetrrB)r rH parametersparamrrr&validate_no_multiple_request_parameterszAAuthorizationEndpointMixin.validate_no_multiple_request_parametercCs|}||_|Sr )validate_authorization_requestr)rrrrrvalidate_consent_requestsz3AuthorizationEndpointMixin.validate_consent_requestcCr6r r7rrrrrNr:z9AuthorizationEndpointMixin.validate_authorization_requestrcCr6r r7)rr grant_userrrrcreate_authorization_responser:z8AuthorizationEndpointMixin.create_authorization_responseN)r)r*r+setr?ERROR_RESPONSE_FRAGMENTr<rr@ staticmethodrErMrrOrNstrrQrrrrr=ms r=N) authlib.constsrerrorsrhooksrrrequestsrrr/r=rrrrs    O