2Bf$RddlZddlZddlZddlmZddlmZddlmZddlmZddl m Z eje e fZejeZejej"eefZGdd ZGd d eZGd d eZdedej,e fdZGddZy)N)_base64_alphabet) base64_decode) base64_encode) want_bytes) BadSignaturec<eZdZdZdededefdZdedededefdZy) SigningAlgorithmzgSubclasses must implement :meth:`get_signature` to provide signature generation functionality. keyvaluereturnct)z2Returns the signature for the given key and value.)NotImplementedErrorselfr r s S/var/www/highfloat_scraper/venv/lib/python3.12/site-packages/itsdangerous/signer.py get_signaturezSigningAlgorithm.get_signatures !##sigcNtj||j||S)zMVerifies the given signature matches the expected signature. )hmaccompare_digestr)rr r rs rverify_signaturez!SigningAlgorithm.verify_signatures$""3(:(:3(FGGrN)__name__ __module__ __qualname____doc__bytesrboolrrrr r sG$$u$$HEH%HeHHrr c$eZdZdZdededefdZy) NoneAlgorithmz`Provides an algorithm that does not perform any signing and returns an empty signature. r r r cy)Nrr rs rrzNoneAlgorithm.get_signature%srN)rrrrrrr rrr"r" s!urr"ceZdZUdZeej Zeje d<d dejfdZ de de de fd Z y) HMACAlgorithmz*Provides signature generation using HMACs.default_digest_methodN digest_methodc.| |j}||_yN)r&r')rr's r__init__zHMACAlgorithm.__init__1s   66M%2rr r r cftj|||j}|jS)N)msg digestmod)rnewr'digest)rr r macs rrzHMACAlgorithm.get_signature7s&hhs1C1CDzz|rr))rrrr staticmethodhashlibsha1r&_tAny__annotations__r*rrr rrr%r%)sI4 %1$>266>3bff3 urr% secret_keyr ct|ttfr t|gS|Dcgc] }t|c}Scc}wr)) isinstancestrrr)r7ss r_make_keys_listr<<s6*sEl+:&''#- .aJqM .. .s<cleZdZUdZeej Zeje d<dZ e e d< dde deded ej e d ej ejd ej ef d Zed efdZdded efdZded efdZded efdZdeded efdZded efdZded efdZy)SigneraA signer securely signs bytes, then unsigns them to verify that the value hasn't been changed. The secret key should be a random string of ``bytes`` and should not be saved to code or version control. Different salts should be used to distinguish signing in different contexts. See :doc:`/concepts` for information about the security of the secret key and salt. :param secret_key: The secret key to sign and verify with. Can be a list of keys, oldest to newest, to support key rotation. :param salt: Extra key to combine with ``secret_key`` to distinguish signatures in different contexts. :param sep: Separator between the signature and value. :param key_derivation: How to derive the signing key from the secret key and salt. Possible values are ``concat``, ``django-concat``, or ``hmac``. Defaults to :attr:`default_key_derivation`, which defaults to ``django-concat``. :param digest_method: Hash function to use when generating the HMAC signature. Defaults to :attr:`default_digest_method`, which defaults to :func:`hashlib.sha1`. Note that the security of the hash alone doesn't apply when used intermediately in HMAC. :param algorithm: A :class:`SigningAlgorithm` instance to use instead of building a default :class:`HMACAlgorithm` with the ``digest_method``. .. versionchanged:: 2.0 Added support for key rotation by passing a list to ``secret_key``. .. versionchanged:: 0.18 ``algorithm`` was added as an argument to the class constructor. .. versionchanged:: 0.14 ``key_derivation`` and ``digest_method`` were added as arguments to the class constructor. r& django-concatdefault_key_derivationNr7saltsepkey_derivationr' algorithmc<t||_t||_|jtvr t d| t|}nd}||_| |j}||_| |j}||_ |t|j}||_ y)NzThe given separator cannot be used because it may be contained in the signature itself. ASCII letters, digits, and '-_=' must not be used.itsdangerous.Signer) r< secret_keysrrBr ValueErrorrAr@rCr&r'r%rD)rr7rArBrCr'rDs rr*zSigner.__init__xs,;:+F$S/ 88' '7   d#D)D  !!88N#1   66M%2  %d&8&89I+4rr c |jdS)zThe newest (last) entry in the :attr:`secret_keys` list. This is for compatibility from before key rotation support was added. )rG)rs rr7zSigner.secret_keys ##rc|||jd}n t|}|jdk(rDtjt |j |j|zjS|jdk(rGtjt |j |jdz|zjS|jdk(rLtj||j }|j|j|jS|jdk(r|Std) aThis method is called to derive the key. The default key derivation choices can be overridden here. Key derivation is not intended to be used as a security method to make a complex key out of a short password. Instead you should use large random secret keys. :param secret_key: A specific secret key to derive from. Defaults to the last item in :attr:`secret_keys`. .. versionchanged:: 2.0 Added the ``secret_key`` parameter. rJconcatr?ssignerr)r-nonezUnknown key derivation method) rGrrCr4castrr'rAr/rr.update TypeError)rr7r0s r derive_keyzSigner.derive_keys  ))"-J#J/J   ( *775$"4"4TYY5K"L"S"S"UV V  O 377t))$))i*?**LMTTV  F *((:1C1CDC JJtyy !::<   F * ;< NNrcF |j|y#t$rYywxYw)znOnly validates the given signed value. Returns ``True`` if the signature exists and is valid. TF)r\r)rrXs rvalidatezSigner.validates(  KK %  s   )rF.NNNr))rrrrr1r2r3r&r4r5r6r@r: _t_secret_key_t_opt_str_bytes _t_str_bytesOptionalr r*propertyrr7rQrrTrrr\r^r rrr>r>Cs9#V%1$>266>#2C1 "8 +/-137,5!,5,5 ,5  C( ,5 {{266* ,5;;/0,5\$E$$ =%5==B"<"E"<,<5< l$" O< OE O\drr>)r2rtypingr4encodingrrrrexcrUnionr:rrbrcraIterabler`r r"r%Listr<r>r rrrks &## xxU # ;;|,\2L@A  H H $$&/ /"''%./~~r