o Df @sPddlmZddlmZddlmZddlmZddlm Z GdddeZ d S) )UnsupportedTokenTypeError)RevocationEndpoint)ContinueIteration)InvalidTokenError)JWTBearerTokenValidatorcs2eZdZdZd fdd ZddZddZZS) JWTRevocationEndpointaJWTRevocationEndpoint inherits from `RFC7009`_ :class:`~authlib.oauth2.rfc7009.RevocationEndpoint`. The JWT access tokens cannot be revoked. If the submitted token is a JWT access token, then revocation returns a `invalid_token_error`. :param issuer: The issuer identifier. :param \*\*kwargs: Other parameters are inherited from :class:`~authlib.oauth2.rfc7009.RevocationEndpoint`. Plain text access tokens and other kind of tokens such as refresh_tokens will be ignored by this endpoint and passed to the next revocation endpoint:: class MyJWTAccessTokenRevocationEndpoint(JWTRevocationEndpoint): def get_jwks(self): ... authorization_server.register_endpoint( MyJWTAccessTokenRevocationEndpoint( issuer="https://authorization-server.example.org", ) ) authorization_server.register_endpoint(MyRefreshTokenRevocationEndpoint) .. _RFC7009: https://tools.ietf.org/html/rfc7009 Ncs tj|d|i|||_dS)Nserver)super__init__issuer)selfr r argskwargs __class__Z/home/ubuntu/webapp/venv/lib/python3.10/site-packages/authlib/oauth2/rfc9068/revocation.pyr &s zJWTRevocationEndpoint.__init__cCsf||||jddvrtt|jdd}|j|_z ||jdWt ty2tw)token_type_hint) access_tokenNN)r resource_servertoken) check_paramsformgetrrr get_jwksauthenticate_tokenrr)r requestclient validatorrrrr*s  z(JWTRevocationEndpoint.authenticate_tokencCst)zReturn the JWKs that will be used to check the JWT access token signature. Developers MUST re-implement this method:: def get_jwks(self): return load_jwks("jwks.json") )NotImplementedError)r rrrr?szJWTRevocationEndpoint.get_jwks)N)__name__ __module__ __qualname____doc__r rr __classcell__rrrrrs rN) rfc6749rrfc7009rauthlib.common.errorsrauthlib.oauth2.rfc6750.errorsr&authlib.oauth2.rfc9068.token_validatorrrrrrrs