2BfddlZddlZddlZddlmZddlmZddlmZddlmZddl m Z ddl m Z dd l m Z dd l mZdd lmZdd lmZdd lmZddlmZddlmZddlmZddlmZddlmZGddeZGddeZy)N)datetime)timezone)Decimal)Real) _CompactJSON) base64_decode) base64_encode) want_bytes)BadData) BadHeader) BadPayload) BadSignature)SignatureExpired) Serializer) HMACAlgorithm) NoneAlgorithmceZdZdZeej eejeeje dZ dZ e Z d fd Zdfd ZdZdZddZd Zdd Zdd Zdd ZxZS)JSONWebSignatureSerializerzThis serializer implements JSON Web Signature (JWS) support. Only supports the JWS Compact Serialization. .. deprecated:: 2.0 Will be removed in ItsDangerous 2.1. Use a dedicated library such as authlib. )HS256HS384HS512nonerctjdtdt|||||||| |j }||_|j||_y)NzsJWS support is deprecated and will be removed in ItsDangerous 2.1. Use a dedicated JWS/JWT library such as authlib.) stacklevel)salt serializerserializer_kwargssigner signer_kwargs) warningswarnDeprecationWarningsuper__init__default_algorithmalgorithm_namemake_algorithm algorithm) self secret_keyrrrr r!r( __class__s P/var/www/highfloat_scraper/venv/lib/python3.12/site-packages/itsdangerous/jws.pyr&z#JSONWebSignatureSerializer.__init__,sq        !/'    !!33N,,,^<ct|}d|vr td|jdd\}} t|} t|} t ||t} t| ts t d | t |||}|r|| fS|S#t$r}t d|d}~wwxYw#t$r}td|d}~wwxYw#t$r}t d|d}~wwxYw) N.zNo "." found in valuerz:Could not base64 decode the header because of an exception)original_errorz;Could not base64 decode the payload because of an exception)rz5Could not unserialize header because it was malformedz#Header payload is not a JSON object)header) r rsplitr Exceptionr r% load_payloadrr isinstancedict) r+payloadr return_headerbase64d_headerbase64d_payload json_headere json_payloadr3r-s r.r6z'JSONWebSignatureSerializer.load_payloadLsW% w 45 5*1--a*@' '7K (9L W)+,)OF&$'A&Q Q'&| &K F? "= L    M    G   sF B B3 C B0 B++B03 C< C  C C, C''C,ct|jj|fi|j}t|jj|fi|j}|dz|zS)Nr1)r rdumpsr)r+r3objr;r<s r. dump_payloadz'JSONWebSignatureSerializer.dump_payloadvsh& !DOO ! !& CD,B,B C ( !DOO ! !# @)?)? @ $66r/cR |j|S#t$r tdwxYw)NzAlgorithm not supported)jws_algorithmsKeyErrorNotImplementedError)r+r(s r.r)z)JSONWebSignatureSerializer.make_algorithms6 A&&~6 6 A%&?@ @ As&c| |j}|dnd}| |j}|j|j|d||S)Nr.)rsepkey_derivationr*)rr*r secret_keys)r+rr*rKs r. make_signerz&JSONWebSignatureSerializer.make_signersU <99D#'<T  I{{   )   r/cL|r|jni}|j|d<|S)Nalg)copyr()r+ header_fieldsr3s r. make_headerz&JSONWebSignatureSerializer.make_headers()6##%B++u  r/c|j|}|j||j}|j|j ||S)zLike :meth:`.Serializer.dumps` but creates a JSON Web Signature. It also allows for specifying additional fields to be included in the JWS header. )rRrMr*signrC)r+rBrrQr3r s r.rAz JSONWebSignatureSerializer.dumpssF !!-0!!$7{{4,,VS9::r/c|j|j||jjt |d\}}|j d|j k7rtd|||r||fS|S)z{Reverse of :meth:`dumps`. If requested via ``return_header`` it will return a tuple of payload and header. Tr:rOzAlgorithm mismatch)r3r9)r6rMr*unsignr getr(r )r+srr:r9r3s r.loadsz JSONWebSignatureSerializer.loadss~++   T4>> 2 9 9*Q- H,  ::e  3 3 30Q Q F? "r/c2d|i}|j||||S)Nr:)_loads_unsafe_impl)r+rYrr:kwargss r. loads_unsafez'JSONWebSignatureSerializer.loads_unsafes#!=1&&q$??r/)NNNNNNNF)NN)__name__ __module__ __qualname____doc__rhashlibsha256sha384sha512rrEr'rdefault_serializerr&r6rCr)rMrRrArZr^ __classcell__r-s@r.rrsw~~.w~~.w~~. N % =@(T7A  " ;"@r/rcJeZdZdZdZdfd ZfdZd fd ZdZdZ xZ S) TimedJSONWebSignatureSerializeraWorks like the regular :class:`JSONWebSignatureSerializer` but also records the time of the signing and can be used to expire signatures. JWS currently does not specify this behavior but it mentions a possible extension like this in the spec. Expiry date is encoded into the header similar to what's specified in `draft-ietf-oauth -json-web-token `_. ic Pt||fi|| |j}||_yN)r%r&DEFAULT_EXPIRES_IN expires_in)r+r,rpr]r-s r.r&z(TimedJSONWebSignatureSerializer.__init__s- .v.  00J$r/cxt||}|j}||jz}||d<||d<|S)Niatexp)r%rRnowrp)r+rQr3rrrsr-s r.rRz+TimedJSONWebSignatureSerializer.make_headersB$]3hhjDOO#u u  r/c6t|||d\}}d|vr td|td|} t |d|d<|ddkr||d|j krtd||j| |r||fS|S#t $r|wxYw) NTrVrszMissing expiry date)r9zExpiry date is not an IntDaterzSignature expired)r9 date_signed) r%rZrr int ValueErrorrtrget_issue_date)r+rYrr:r9r3int_date_errorr-s r.rZz%TimedJSONWebSignatureSerializer.loadss'-4t-D  4gF F"#BGT !u .F5M %=1  %=488: %"# //7  F? "! !  !s B Bc|jd}t|ttfr.t j t |tjSy)aRIf the header contains the ``iat`` field, return the date the signature was issued, as a timezone-aware :class:`datetime.datetime` in UTC. .. versionchanged:: 2.0 The timestamp is returned as a timezone-aware ``datetime`` in UTC rather than a naive ``datetime`` assumed to be UTC. rr)tzN) rXr7rrr fromtimestamprwrutc)r+r3rvs r.ryz.TimedJSONWebSignatureSerializer.get_issue_dates@ZZ  b4/ *))#b'hllC C +r/c<ttjSrn)rwtime)r+s r.rtz#TimedJSONWebSignatureSerializer.nows499;r/rnr_) r`rarbrcror&rRrZryrtrirjs@r.rlrls* %8 D r/rl)rdrr"rrdecimalrnumbersr_jsonrencodingr r r excr r rrrrrr rrrrlr/r.rs^ ## !"!!`@`@FI &@I r/