o M>S$ @sdZddlmZddlmZddlmZddlmZm Z m Z ddl m Z m Z mZmZddlmZddlmZd Zed d Zed d Zd dZddZddZddZddZdddddddedddZd*d d!ZGd"d#d#eZd*d$d%Z Gd&d'd'eZ!Gd(d)d)e"Z#dS)+z3 flask_jwt ~~~~~~~~~ Flask-JWT module ) OrderedDict) timedeltawraps)TimedJSONWebSignatureSerializerSignatureExpired BadSignature) current_apprequestjsonify_request_ctx_stack) MethodView) LocalProxyz0.2.0cCsttjddS)N current_user)getattrr toprrY/home/www/bk.finsightngr.online/venv20/lib/python3.10/site-packages/flask_jwt/__init__.pysrcCs tjdS)Njwt)r extensionsrrrrrs cCsHtjd}t|trt|}|tjd}ttjd|tjddS)NJWT_EXPIRATION_DELTA JWT_LEEWAYJWT_SECRET_KEY JWT_ALGORITHM)Z secret_key expires_inZalgorithm_name)r config isinstancerint total_secondsr)rZexpires_in_totalrrr_get_serializers   r cCs d|jiS)NZuser_id)id)userrrr_default_payload_handler*sr#cCst|dS)zReturn the encoded payload.zutf-8)r dumpsdecodepayloadrrr_default_encode_handler0sr(cCs4z t|}W|StytjdrY|Sw)zReturn the decoded token.JWT_VERIFY_EXPIRATION)r loadsrr r)tokenresultrrr_default_decode_handler5s r-cCs td|iS)z2Return a Flask response, given an encoded payload.r+)r r&rrr_default_response_handler?s r.zLogin Requiredz/authrZHS256Ti,)seconds)JWT_DEFAULT_REALMJWT_AUTH_URL_RULEJWT_AUTH_ENDPOINTrZ JWT_VERIFYr)rrNcsfdd}|S)zuView decorator that requires a valid JWT token to be present in the request :param realm: an optional realm cstfdd}|S)Ncst|i|SN) verify_jwt)argskwargs)fnrealmrr decoratorUsz0jwt_required..wrapper..decoratorr)r7r9r8)r7rwrapperTszjwt_required..wrapperr)r8r;rr:r jwt_requiredOs r<c@seZdZdddZdS)JWTErrorNcCs||_||_||_||_dSr3)error description status_codeheaders)selfr?r@rArBrrr__init__^s zJWTError.__init__)r>N)__name__ __module__ __qualname__rDrrrrr=]sr=cCs|ptjd}tjdd}|durtddddd|i|}|d d kr.td d t|d kr9td dt|dkrDtd dz t j }||d }Wnt y[tddt yftddwt |tj_}|durytdddS)aDoes the actual work of verifying the JWT data in the current request. This is done automatically for you by `jwt_required()` but you could call it manually. Doing so would be useful in the context of optional JWT access in your APIs. :param realm: an optional realm r0Z AuthorizationNzAuthorization Requiredz Authorization header was missingizWWW-AuthenticatezJWT realm="%s"rZbearerzInvalid JWT headerzUnsupported authorization typez Token missingzToken contains spacesz Invalid JWTzToken is expiredzToken is undecipherablezUser does not exist)r rr rBgetr=splitlowerlen_jwtdecode_callbackrr user_callbackr rr)r8Zauthpartshandlerr'r"rrrr4es2          r4c@seZdZddZdS) JWTAuthViewcCstjdd}|dd}|dd}||t|dkg}t|s&tdddd tj||d }|r>t|}t |}t |Stdd ) NT)forceusernamepasswordrIz Bad RequestzMissing required credentialsr>)rA)rUrVzInvalid credentials) r Zget_jsonrJrMallr=rNauthentication_callbackpayload_callbackencode_callbackresponse_callback)rCdatarUrVZ criterionr"r'r+rrrposts       zJWTAuthView.postN)rErFrGr]rrrrrSs rSc@sfeZdZdddZddZddZdd Zd d Zd d ZddZ ddZ ddZ ddZ ddZ dS)JWTNcCs<|dur ||_||nd|_t|_t|_t|_t|_ dSr3) appinit_appr.r[r(rZr-rOr#rY)rCr_rrrrDs  z JWT.__init__cCstD] \}}|j||q|jd|jd|jdd}|jdd}|r=|r=t|jd}|j|dg|d|t |j t |dsMi|_ ||j d<dS) NrZ SECRET_KEYr1r2ZPOST)methodsZ view_funcrr) CONFIG_DEFAULTSitemsr setdefaultrJrSZas_viewZ add_url_ruleZ errorhandlerr= _on_jwt_errorhasattrr)rCr_kvZurl_ruleZendpointZ auth_viewrrrr`s z JWT.init_appcCst|d|j|S)Nerror_callback)r_error_callbackrCerrrreszJWT._on_jwt_errorcCs.ttd|jfd|jfd|jfg|j|jfS)NrAr?r@)r rrAr?r@rBrkrrrrjszJWT._error_callbackcC ||_|S)a Specifies the authentication handler function. This function receives two positional arguments. The first being the username the second being the password. It should return an object representing the authenticated user. Example:: @jwt.authentication_handler def authenticate(username, password): if username == 'joe' and password == 'pass': return User(id=1, username='joe') :param callback: the authentication handler function )rXrCcallbackrrrauthentication_handler zJWT.authentication_handlercCrm)aSpecifies the user handler function. This function receives the token payload as its only positional argument. It should return an object representing the current user. Example:: @jwt.user_handler def load_user(payload): if payload['user_id'] == 1: return User(id=1, username='joe') :param callback: the user handler function )rPrnrrr user_handlerrqzJWT.user_handlercCrm)a]Specifies the error handler function. This function receives a JWTError instance as its only positional argument. It can optionally return a response. Example:: @jwt.error_handler def error_handler(e): return "Something bad happened", 400 :param callback: the error handler function )rirnrrr error_handlers zJWT.error_handlercCrm)zSpecifies the response handler function. This function receives a JWT-encoded payload and returns a Flask response. :param callable callback: the response handler function )r[rnrrrresponse_handlerzJWT.response_handlercCrm)zSpecifies the encoding handler function. This function receives a payload and signs it. :param callable callback: the encoding handler function )rZrnrrrencode_handlerruzJWT.encode_handlercCrm)zSpecifies the decoding handler function. This function receives a signed payload and decodes it. :param callable callback: the decoding handler function )rOrnrrrdecode_handlerruzJWT.decode_handlercCrm)aSpecifies the payload handler function. This function receives a user object and returns a dictionary payload. Example:: @jwt.payload_handler def make_payload(user): return { 'user_id': user.id, 'exp': datetime.utcnow() + current_app.config['JWT_EXPIRATION_DELTA'] } :param callable callback: the payload handler function )rYrnrrrpayload_handlerszJWT.payload_handlerr3)rErFrGrDr`rerjrprrrsrtrvrwrxrrrrr^s     r^r3)$__doc__ collectionsrdatetimer functoolsrZ itsdangerousrrrZflaskr r r r Z flask.viewsr Zwerkzeug.localr __version__rrNr r#r(r-r.rbr< Exceptionr=r4rSobjectr^rrrrs<           &