Ë †KàiãóT—dZddlmZddlmZddlmZGd„d«ZGd„d«Zy ) zØauthlib.oauth2.rfc6749.resource_protector. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Implementation of Accessing Protected Resources per `Section 7`_. .. _`Section 7`: https://tools.ietf.org/html/rfc6749#section-7 é)ÚMissingAuthorizationError)ÚUnsupportedTokenTypeError)Ú scope_to_listcó>—eZdZdZdZd d„Zed„«Zd„Zd„Z d„Z y) ÚTokenValidatorziBase token validator class. Subclass this validator to register into ResourceProtector instance. ÚbearerNc ó —||_||_y©N)ÚrealmÚextra_attributes)Úselfr r s úu/home/jay/workspace/scripts/.codegraph-venv/lib/python3.12/site-packages/authlib/oauth2/rfc6749/resource_protector.pyÚ__init__zTokenValidator.__init__s€ØˆŒ Ø 0ˆÕócó˜—|syt|«}|syt|«}|D])}tt|««}|j|«sŒ)yy)NFT)rÚsetÚ issuperset)Ú token_scopesÚrequired_scopesÚscopeÚresource_scopess rÚscope_insufficientz!TokenValidator.scope_insufficientsV€áØä$ \Ó2ˆ ÙØä˜<Ó(ˆ Ø$ò ˆEÜ!¤-°Ó"6Ó7ˆOØ×&Ñ& Õ7Ùð ð rcó—t«‚)a_A method to query token from database with the given token string. Developers MUST re-implement this method. For instance:: def authenticate_token(self, token_string): return get_token_from_database(token_string) :param token_string: A string to represent the access_token. :return: token ©ÚNotImplementedError)r Ú token_strings rÚauthenticate_tokenz!TokenValidator.authenticate_token*s €ô"Ó#Ð#rcó—y)a@A method to validate if the HTTP request is valid or not. Developers MUST re-implement this method. For instance, your server requires a "X-Device-Version" in the header:: def validate_request(self, request): if "X-Device-Version" not in request.headers: raise InvalidRequestError() Usually, you don't have to detect if the request is valid or not. If you have to, you MUST re-implement this method. :param request: instance of HttpRequest :raise: InvalidRequestError N©)r Úrequests rÚvalidate_requestzTokenValidator.validate_request6srcó—t«‚)a4A method to validate if the authorized token is valid, if it has the permission on the given scopes. Developers MUST re-implement this method. e.g, check if token is expired, revoked:: def validate_token(self, token, scopes, request): if not token: raise InvalidTokenError() if token.is_expired() or token.is_revoked(): raise InvalidTokenError() if not match_token_scopes(token, scopes): raise InsufficientScopeError() r)r ÚtokenÚscopesr s rÚvalidate_tokenzTokenValidator.validate_tokenFs €ô"Ó#Ð#rr ) Ú__name__Ú __module__Ú __qualname__Ú__doc__Ú TOKEN_TYPErÚ staticmethodrrr!r%rrrrrs6„ñð€Jó1ðñóðò $ò ó $rrcó0—eZdZd„Zdefd„Zd„Zd„Zd„Zy)ÚResourceProtectorcó.—i|_d|_d|_yr )Ú_token_validatorsÚ_default_realmÚ_default_auth_type)r s rrzResourceProtector.__init__Ws€Ø!#ˆÔØ"ˆÔØ"&ˆÕrÚ validatorcóÄ—|js"|j|_|j|_|j|jvr||j|j<yy)z„Register a token validator for a given Authorization type. Authlib has a built-in BearerTokenValidator per rfc6750. N)r1r r0r*r/)r r2s rÚregister_token_validatorz*ResourceProtector.register_token_validator\sV€ð×&Ò&Ø"+§/¡/ˆDÔ Ø&/×&:Ñ&:ˆDÔ #à × Ñ  t×'=Ñ'=Ñ =Ø;DˆD× "Ñ " 9×#7Ñ#7Ò 8ð >rcóœ—|jj|j««}|s t|j|j «‚|S)z;Get token validator from registry for the given token type.)r/ÚgetÚlowerrr1r0)r Ú token_typer2s rÚget_token_validatorz%ResourceProtector.get_token_validatorgsJ€à×*Ñ*×.Ñ.¨z×/?Ñ/?Ó/AÓBˆ ÙÜ+Ø×'Ñ'¨×)<Ñ)<óð ðÐrcó0—|jjd«}|s t|j|j«‚|j dd«}t |«dk7r t|j|j«‚|\}}|j|«}||fS)aËParse the token and token validator from request Authorization header. Here is an example of Authorization header:: Authorization: Bearer a-token-string This method will parse this header, if it can find the validator for ``Bearer``, it will return the validator and ``a-token-string``. :return: validator, token_string :raise: MissingAuthorizationError :raise: UnsupportedTokenTypeError Ú AuthorizationNré) Úheadersr6rr1r0ÚsplitÚlenrr9)r r ÚauthÚ token_partsr8rr2s rÚparse_request_authorizationz-ResourceProtector.parse_request_authorizationps€ð‰×"Ñ" ?Ó3ˆÙÜ+Ø×'Ñ'¨×)<Ñ)<óð ð —j‘j  qÓ)ˆ Ü ˆ{Ó ˜qÒ Ü+Ø×'Ñ'¨×)<Ñ)<óð ð$/Ñ ˆ LØ×,Ñ,¨ZÓ8ˆ ؘ,Ð&Ð&rc óœ—|j|«\}}|j|«|j|«}|j|||fi|¤Ž|S)z(Validate the request and return a token.)rBr!rr%)r r$r Úkwargsr2rr#s rr!z"ResourceProtector.validate_requestŽsS€à"&×"BÑ"BÀ7Ó"Kш <Ø×"Ñ" 7Ô+Ø×,Ñ,¨\Ó:ˆØ ˆ × Ñ  ¨°ÑB¸6ÒB؈ rN) r&r'r(rrr4r9rBr!rrrr-r-Vs$„ò'ð E°.ó Eòò'ó<rr-N)r)ÚerrorsrrÚutilrrr-rrrúrGs,ðñõ.Ý-Ý÷E$ñE$÷P>ò>r