o Df @sRddlmZddlmZddlmZGdddZGdddZGd d d Zd S) )default_json_headers) OAuth2Request)InvalidRequestErrorc@sjeZdZdgZdZeZdefddZe ddZ  dd d Z d d Z d dZ ddZddZddZdS) BaseGrantclient_secret_basicNrequestcCs4d|_d|_||_||_ttttd|_dS)N)$after_validate_authorization_requestafter_validate_consent_requestafter_validate_token_request process_token)prompt redirect_urirserverset_hooks)selfrrr[/home/ubuntu/webapp/venv/lib/python3.10/site-packages/authlib/oauth2/rfc6749/grants/base.py__init__s zBaseGrant.__init__cCs|jjSN)rclientrrrrrszBaseGrant.clientTcCs*|dur|j}|jj|jj|||||dS)N)r grant_typeuserscope expires_ininclude_refresh_token) GRANT_TYPErgenerate_tokenrr)rrrrrrrrrr#szBaseGrant.generate_tokencCs(|j|j|j}|jjd||d|S)aAuthenticate client with the given methods for token endpoint. For example, the client makes the following HTTP request using TLS: .. code-block:: http POST /token HTTP/1.1 Host: server.example.com Authorization: Basic czZCaGRSa3F0MzpnWDFmQmF0M2JW Content-Type: application/x-www-form-urlencoded grant_type=authorization_code&code=SplxlOBeZQQYbYS6WxSbIA &redirect_uri=https%3A%2F%2Fclient%2Eexample%2Ecom%2Fcb Default available methods are: "none", "client_secret_basic" and "client_secret_post". :return: client after_authenticate_client)rgrant)rauthenticate_clientrTOKEN_ENDPOINT_AUTH_METHODS send_signal)rrrrr"authenticate_token_endpoint_client0sz,BaseGrant.authenticate_token_endpoint_clientcCs|j||jS)z%A method to save token into database.)r save_tokenr)rtokenrrrr&KszBaseGrant.save_tokencCs|jj}|jj}|j||S)zAValidate if requested scope is supported by Authorization Server.)rrstatervalidate_requested_scope)rrr(rrrr)Osz"BaseGrant.validate_requested_scopecCs,||jvr td||j|j||dS)NzHook type %s is not in %s.)r ValueErroradd)r hook_typehookrrr register_hookUs zBaseGrant.register_hookcOs*|j|D] }||g|Ri|qdSr)r)rr,argskwargsr-rrr execute_hook[szBaseGrant.execute_hook)NNNNT)__name__ __module__ __qualname__r#rrTOKEN_RESPONSE_HEADERrrpropertyrrr%r&r)r.r1rrrrrs    rc@s8eZdZdgZdZedefddZddZdd Z dS) TokenEndpointMixinPOSTNrcCs|j|jko |j|jvSr)rrmethodTOKEN_ENDPOINT_HTTP_METHODSclsrrrrcheck_token_endpointgs  z'TokenEndpointMixin.check_token_endpointcCtrNotImplementedErrorrrrrvalidate_token_requestlz)TokenEndpointMixin.validate_token_requestcCr>rr?rrrrcreate_token_responseorBz(TokenEndpointMixin.create_token_response) r2r3r4r:r classmethodrr=rArCrrrrr7`s r7c@sXeZdZeZdZedefddZe defddZ ddZ d d Z d e fd d ZdS)AuthorizationEndpointMixinFrcCs |j|jvSr) response_typeRESPONSE_TYPESr;rrrcheck_authorization_endpointws z7AuthorizationEndpointMixin.check_authorization_endpointcCsN|jr||jstd|jd|jd|jS|}|s%td|jd|S)Nz Redirect URI z is not supported by client.)r(z"Missing "redirect_uri" in request.)rcheck_redirect_urirr(get_default_redirect_uri)rrrrrr#validate_authorization_redirect_uri{s  z>AuthorizationEndpointMixin.validate_authorization_redirect_uricCs|}|d|||_dS)Nr )validate_authorization_requestr1r)rrrrrvalidate_consent_requests  z3AuthorizationEndpointMixin.validate_consent_requestcCr>rr?rrrrrLrBz9AuthorizationEndpointMixin.validate_authorization_requestrcCr>rr?)rr grant_userrrrcreate_authorization_responserBz8AuthorizationEndpointMixin.create_authorization_responseN)r2r3r4rrGERROR_RESPONSE_FRAGMENTrDrrH staticmethodrKrMrLstrrOrrrrrEssrEN) authlib.constsrrequestsrerrorsrrr7rErrrrs  Z