)JfFddlZddlmZddlmZmZddlmZddlm Z ddl m Z ddl m Z ddlZddlmZdd lmZdd lmZdd lmZmZmZdd lmZmZd dlmZd dlmZd dl m!Z!GddeZ"e ddZ#ej$e"Z%e#Z&ej$e"Z'dS)N) timedelta)HttpResponseNotAllowedHttpResponseRedirect)reverse)timezone) urlencode) csrf_exempt) get_adapter) SocialToken) OAuth2Error) OAuth2AdapterOAuth2CallbackViewOAuth2LoginView)build_absolute_uriget_request_param)get_apple_session)AppleOAuth2Client) AppleProviderc\eZdZeZejZdZdZ dZ dZ dZ dZ dZdZd Zd Zd Zd S) AppleOAuth2Adapterz$https://appleid.apple.com/auth/tokenz(https://appleid.apple.com/auth/authorizez#https://appleid.apple.com/auth/keyscNt|j}| |}n'#t j$r}td|d}~wwxYw|dD]}|d|kr|cSdS)Nz"Error retrieving apple public key.keyskid)r get_requests_sessiongetpublic_key_urlraise_for_statusjsonJSONDecodeErrorr )selfrresponsedataeds n/home/alex/cs2snipeproduction/venv/lib/python3.11/site-packages/allauth/socialaccount/providers/apple/views.py_get_apple_public_keyz(AppleOAuth2Adapter._get_apple_public_key"s==5577;;D>^099$*EU:V:VWW ctd|j}d|jdDS)N)requestproviderc6g|]}|S)strip).0auds r& z4AppleOAuth2Adapter.get_client_id..:s @@@ @@@r3,)r get_app provider_id client_idsplit)r!r6apps r& get_client_idz AppleOAuth2Adapter.get_client_id8sEmm##D4;K#LL@@s}':':3'?'?@@@@r3c|}||} ||}tj||dg|d}|S#tj$r}t d|d}~wwxYw)NRS256zhttps://appleid.apple.com)r+audienceissuerzInvalid id_token) get_providerrCr2r)decode PyJWTErrorr )r!r/r6 allowed_audsr1 identity_datar$s r&get_verified_identity_dataz-AppleOAuth2Adapter.get_verified_identity_data<s$$&&))(33  9,,X66JJ#9%2 M! ~ 9 9 9011q 8 9s0AB+A;;BcXt|d}|dd|_||j}|r6t jt t|z|_| |d}i|||_ |S)N access_token)token refresh_token)secondsr/) r r token_secretexpires_in_keyrnowrint expires_atrM user_data)r!r#rP expires_inrLs r& parse_tokenzAppleOAuth2Adapter.parse_tokenNs~&   "XXor::XXd122  S'|~~ #j//0R0R0RRE 77Z8HII 3T3]3 r3c |j}|||}|j|jd<t ||S)N)r5r"r/)rYrHsociallogin_from_responsestaterdelete)r!r5rBrPkwargs extra_datalogins r&complete_loginz!AppleOAuth2Adapter.complete_login_se_ !!##==j>  #(/ J '""))+++ r3c|jdd} tj|S#tj$ricYSwxYw)NuserrR)apple_login_sessionrrloadsr )r!r5user_scope_datas r&get_user_scope_dataz&AppleOAuth2Adapter.get_user_scope_dataksX!599&"EE :o.. .#   III s1AAcBt|}t|d}|jdd}|||}|dd}||jd}i|||d|iS)z8We need to gather the info from the apple specific logincodepkce_code_verifierN)rlr/)rrsessionpopget_access_tokenrstoreri) r!r5rBclient apple_sessionrkrlaccess_token_datar/s r&get_access_token_dataz(AppleOAuth2Adapter.get_access_token_datats)'22 !&11$_001EtLL"33 %74  %((T::  $*..z::H  &&w//     r3N)__name__ __module__ __qualname__r client_classridr?access_token_url authorize_urlrr'r2rCrMr[rcrirtr8r3r&rrs$L"K=>M:N   AAA999$"        r3rapple_finish_callbackc|jdkrtdgSt|}gd}i}|D]}t||d}|r|||<ddg}|D]}t||d|j|<t |t |}td|t|} | | | S)a Apple uses a `form_post` response type, which due to CORS/Samesite-cookie rules means this request cannot access the request since the session cookie is unavailable. We work around this by storing the apple response in a separate, temporary session and redirecting to a more normal oauth flow. args: finish_endpoint_name (str): The name of a defined URL, which can be overridden in your url configuration if you have more than one callback endpoint. POST)rkr^errorrRrer/z {url}?{query})urlquery) methodrrrrprrrformatrsave) r5finish_endpoint_namerrkeys_to_put_in_url url_paramskeyvaluekeys_to_save_to_sessionrr"s r&apple_post_callbackrs  ~%vh///%g..M433J!$$!'333  $#JsO &z2&GG#4Wc2#F#F C  Wg.B&C&C D DC#3i .C.CDDHx   Or3)r|)(rdatetimer django.httprr django.urlsr django.utilsrdjango.utils.httprdjango.views.decorators.csrfr r)allauth.socialaccount.adapterr allauth.socialaccount.modelsr -allauth.socialaccount.providers.oauth2.clientr ,allauth.socialaccount.providers.oauth2.viewsr rr allauth.utilsrrrrrrqrr6rrr adapter_view oauth2_loginoauth2_callbackoauth2_finish_loginr8r3r&rs DDDDDDDD!!!!!!''''''444444 555555444444EEEEEE @???????,,,,,,%%%%%%######m m m m m m m m ` %%% %P,+,>?? %5(56HIIr3