Aah-BddlmZddlZddlZddlZddlmZddlmZm Z ddl m Z m Z m Z mZddlmZddlmZmZmZmZdd lmZmZdd lmZerdd l mZmZGd d ZeZejZejZej Z ej!Z!ej"Z"ej#Z#ej$Z$dS)) annotationsN)Sequence) TYPE_CHECKINGAny) Algorithmget_default_algorithms has_cryptorequires_cryptography)PyJWK) DecodeErrorInvalidAlgorithmErrorInvalidSignatureErrorInvalidTokenError)base64url_decodebase64url_encode)RemovedInPyjwt3Warning)AllowedPrivateKeysAllowedPublicKeysceZdZdZ d9d:d Zed;d ZddZ d?dZ d@dAd$Z dBdCd,Z dBdDd.Z dEd/ZdFd1Z dGdHd5ZdId6ZdJd8ZdS)KPyJWSJWTN algorithmsSequence[str] | Noneoptionsdict[str, Any] | NonereturnNonec6t|_|t|nt|j|_t |jD]}||jvr|j|=|i}i|||_dS)N)r _algorithmsset _valid_algslistkeys_get_default_optionsr)selfrrkeys =/var/www/lms/venv/lib/python3.11/site-packages/jwt/api_jws.py__init__zPyJWS.__init__ s 233)5C OOO3t?O;P;P  (--//00 * *C$***$S) ?GA$3355AA dict[str, bool]c ddiS)Nverify_signatureTr.r*r(r%zPyJWS._get_default_options3s "D))r*alg_idstralg_objrc||jvrtdt|tst d||j|<|j|dS)zW Registers a new Algorithm for use when creating and verifying tokens. z Algorithm already has a handler.z!Object is not of type `Algorithm`N)r ValueError isinstancer TypeErrorr"add)r&r/r1s r(register_algorithmzPyJWS.register_algorithm7sm T% % %?@@ @'9-- A?@@ @#*  V$$$$$r*cz||jvrtd|j|=|j|dS)z Unregisters an Algorithm for use when creating and verifying tokens Throws KeyError if algorithm is not registered. zJThe specified algorithm could not be removed because it is not registered.N)r KeyErrorr"remove)r&r/s r(unregister_algorithmzPyJWS.unregister_algorithmDsS ) ) )1   V $ '''''r* list[str]c*t|jS)zM Returns a list of supported values for the 'alg' parameter. )r#r")r&s r(get_algorithmszPyJWS.get_algorithmsRsD$%%%r*alg_namec |j|S#t$r9}ts|tvrt d|d|t d|d}~wwxYw)z For a given string name, return the matching Algorithm object. Example usage: >>> jws_obj.get_algorithm_by_name("RS256") z Algorithm 'z9' could not be found. Do you have cryptography installed?Algorithm not supportedN)r r9r r NotImplementedError)r&r?es r(get_algorithm_by_namezPyJWS.get_algorithm_by_nameXs H#H- - H H H (.C"C"C)e(eee&&?@@a G  Hs  A4A  AFTpayloadbytesr'(AllowedPrivateKeys | PyJWK | str | bytes algorithm str | Noneheaders json_encodertype[json.JSONEncoder] | Noneis_payload_detachedbool sort_headerscg}| t|tr|j} nd} n|} |r:|d} | r|d} |d} | durd}|j| d} |r*||| || ds| d=|rd| d<nd| vr| d=tj| d||  } | t| |r|}nt|}| |d |}| | }t|tr|j}||}|||}| t||rd |d <d |}|d S)NHS256algb64FT)typrRrT),:) separatorscls sort_keys.r*rutf-8)r4r algorithm_nameget header_typ_validate_headersupdatejsondumpsencodeappendrjoinrDr' prepare_keysigndecode)r&rEr'rHrJrKrMrOsegments algorithm_ headers_alg headers_b64header json_header msg_payload signing_inputr1 signatureencoded_strings r(rcz PyJWS.encodeis*  #u%% % / $ "J  +!++e,,K ,$U^ !++e,,Ke##&*#*.!L!L  #  " "7 + + + MM' " " "e} u  !F5MM f__u j z||   &((  (55666  4!KK*733K $$$ (++ ,,Z88 c5 ! ! 'C!!#&&LL44 (33444  HQK8,,$$W---r*jwt str | bytes'AllowedPublicKeys | PyJWK | str | bytesdetached_payload bytes | Nonedict[str, Any]c .|r>tjdt|td|i}i|j|}|d}|r&|s$t |tstd| |\} } } } | dddurD|td |} d | d d d | g} |r| | | | ||| | | d S)Nzypassing additional kwargs to decode_complete() is deprecated and will be removed in pyjwt version 3. Unsupported kwargs:  stacklevelr-z\It is required that you pass in a value for the "algorithms" argument when calling decode().rSTFzIt is required that you pass in a value for the "detached_payload" argument to decode a message having the b64 header set to false.rZrr)rErmrq)warningswarntupler$rrr4r r _loadr]rersplit_verify_signature) r&rtr'rrrwkwargsmerged_optionsr-rErprmrqs r(decode_completezPyJWS.decode_completeso   M>',V[[]]';';>>'      ?G4DL4G4)*<=  J z#u7M7M n 59JJsOO1 ::eT " "e + +'!Z'G II}';';D!'D'DQ'G&QRRM  V  " "=&)S* U U U"   r*rc |r>tjdt|td||||||}|dS)Nzppassing additional kwargs to decode() is deprecated and will be removed in pyjwt version 3. Unsupported kwargs: r{r|)rwrE)r~rrr$rr)r&rtr'rrrwrdecodeds r(rhz PyJWS.decodes   M>',V[[]]';';>>'     && j',/JJtQ,?,? )M>.;.A.A$.J.J +NOO > > >344# = > A*>::KK8>* A A A677S @ A DZ ,,FF D D D;;;<* B B B788c A B A(88II8>* A A A677S @ A ::sx2B B*B%%B*.B>>C)C$$C)-D D$ DD$ EF2FF FG1GGrprmrqc|t|tr|jg} |d}n#t$rt ddwxYw|r|||vrt dt|tr|j}|j}nN ||}n"#t$r} t d| d} ~ wwxYw| |}| |||stddS)NrRzAlgorithm not specifiedz&The specified alg value is not allowedrAzSignature verification failed) r4r r\r9rrr'rDrBrfverifyr) r&rprmrqr'rrRr1 prepared_keyrCs r(rzPyJWS._verify_signature+sF  *S%"8"8 ,-J M-CC M M M'(ABB L M Rz-#Z2G2G'(PQQ Q c5 ! ! 4mG7LL N44S99& N N N+,EFFAM N"..s33L~~m\9EE I'(GHH H I Is!*AB B9$B44B9cHd|vr||ddSdS)Nkid) _validate_kid)r&rJs r(r_zPyJWS._validate_headersJs3 G     wu~ . . . . .  r*rcNt|tstddS)Nz(Key ID header parameter must be a string)r4r0r)r&rs r(rzPyJWS._validate_kidNs0#s## P#$NOO O P Pr*)NN)rrrrrr)rr+)r/r0r1rrr)r/r0rr)rr<)r?r0rr)NNNFT)rErFr'rGrHrIrJrrKrLrMrNrOrNrr0)rsNNN) rtrur'rvrrrrrwrxrry) rtrur'rvrrrrrwrxrr)rtrurry)rtrurr)rsN) rprFrmryrqrFr'rvrrrr)rJryrr)rrrr)__name__ __module__ __qualname__r^r) staticmethodr%r7r;r>rDrcrrhrrrr_rr.r*r(rrsJ,0)-BBBBB&***\* % % % % ( ( ( (&&&& HHHH*!%)-6:$)!K.K.K.K.K.`8:+/)-)- , , , , , b8:+/)-)- """"",    $;$;$;$;V8:+/ IIIII>////PPPPPPr*r)% __future__rrrar~collections.abcrtypingrrrrr r r api_jwkr exceptionsr rrrutilsrrrrrr_jws_global_objrcrrhr7r;rDrr.r*r(rs"""""" $$$$$$%%%%%%%%  65555555,,,,,,BAAAAAAAAsPsPsPsPsPsPsPsPl %''  !1  $7&;'='=r*