o eE@sddlZddlmZddlmZddlmZmZmZm Z m Z ddl Z ddl m Zddl mZmZmZddlmZdd lmZdd lmZz dd l mZmZd ZWn ey[d ZYnwhdZGdddZdS)N)Iterable) timedelta)AnyDictOptionalTypeUnion) gettext_lazy)InvalidAlgorithmErrorInvalidTokenError algorithms)TokenBackendError)Token) format_lazy) PyJWKClientPyJWKClientErrorTF> ES256ES384ES512HS256HS384HS512RS256RS384RS512c@seZdZ       ddedeededeeedfdeedeed eeee dfd ee e j d dfd d Z ded dfddZd e fddZded eefddZdeeefd efddZddeded eeeffddZdS) TokenBackendN algorithm signing_key verifying_keyaudienceissuerjwk_urlleeway json_encoderreturnc CsV||||_||_||_||_||_tr |rt|nd|_nd|_||_ ||_ dS)N) _validate_algorithmrrr r!r"JWK_CLIENT_AVAILABLEr jwks_clientr$r%) selfrrr r!r"r#r$r%r+T/var/www/html/venv/lib/python3.10/site-packages/rest_framework_simplejwt/backends.py__init__#s  zTokenBackend.__init__cCsD|tvr tttd||tjvrtjs tttd|dSdS)z Ensure that the nominated algorithm is recognized, and that cryptography is installed for those algorithms that require it z Unrecognized algorithm type '{}'z/You must have cryptography installed to use {}.N)ALLOWED_ALGORITHMSrr_r requires_cryptography has_crypto)r*rr+r+r,r'>s z TokenBackend._validate_algorithmcCsZ|jdur tddSt|jttfrt|jdSt|jtr!|jStttdt|j)Nr)secondszIUnrecognized type '{}', 'leeway' must be of type int, float or timedelta.) r$r isinstanceintfloatrrr/type)r*r+r+r, get_leewayOs    zTokenBackend.get_leewaytokenc CsV|jdr |jS|jr(z|j|jWSty'}zttd|d}~ww|j S)NHSToken is invalid or expired) r startswithrr)get_signing_key_from_jwtkeyrrr/r )r*r8exr+r+r,get_verifying_key`s zTokenBackend.get_verifying_keypayloadcCs`|}|jdur|j|d<|jdur|j|d<tj||j|j|jd}t|t r.| dS|S)zL Returns an encoded token for the given payload dictionary. Naudiss)rr%zutf-8) copyr!r"jwtencoderrr%r3bytesdecode)r*r@ jwt_payloadr8r+r+r,rEls      zTokenBackend.encodeTverifyc Csztj||||jg|j|j||jdu|ddWSty/}ztt d|d}~wt yA}ztt d|d}~ww)z Performs a validation of the given token and returns its payload dictionary. Raises a `TokenBackendError` if the token is malformed, if its signature check fails, or if its 'exp' claim indicates it has expired. N) verify_audverify_signature)r r!r"r$optionszInvalid algorithm specifiedr:) rDrGr?rr!r"r7r rr/r )r*r8rIr>r+r+r,rGs& zTokenBackend.decode)NrNNNNN)T)__name__ __module__ __qualname__strrrrr5r4rrjson JSONEncoderr-r'r7rr?rrrEboolrGr+r+r+r,r"s@    $r)rQcollections.abcrdatetimertypingrrrrrrDdjango.utils.translationr r/r r r exceptionsrtokensrutilsrrrr( ImportErrorr.rr+r+r+r,s$