([f>ddlZddlZddlZddlZddlmZmZmZmZddl m Z ddl m Z m Z ddlmZddlmZdd lmZmZGd d Zd Zd ZdZdZdS)N)to_bytes to_unicode json_loads json_dumps) JWTClaims) DecodeErrorInsecureClaimError)JsonWebSignature)JsonWebEncryption)KeySetKeyceZdZdZejdgdejZd dZ dZ d dZ d d Z dS) JsonWebToken)passwordtokensecret secret_key|)z1\b(?:3[47]\d|(?:4\d|5[1-5]|65)\d{2}|6011)\d{12}\bzB-----BEGIN[A-Z ]+PRIVATE KEY-----.+-----END[A-Z ]+PRIVATE KEY-----z3^\b(?!(000|666|9))\d{3}-(?!00)\d{2}-(?!0000)\d{4}\bNc^t|||_t|||_dS)N)private_headers)r _jwsr _jwe)self algorithmsrs L/var/www/piapp/venv/lib/python3.11/site-packages/authlib/jose/rfc7519/jwt.py__init__zJsonWebToken.__init__s.$ZQQQ %j/RRR c|D]`}||jvrt|||}t|tr)|j|rt|adS)z0Check if payload contains sensitive information.N)SENSITIVE_NAMESr isinstancestrSENSITIVE_VALUESsearch)rpayloadkvs rcheck_sensitive_dataz!JsonWebToken.check_sensitive_data s{ , ,AD((((+++ A!S!! ,d&;&B&B1&E&E ,(+++ , ,rTc|dddD]Z}||}t|tjr)t j|||<[|r||t||}tt|}d|vr|j |||S|j |||S)aEncode a JWT with the given header, payload and key. :param header: A dict of JWS header :param payload: A dict to be encoded :param key: key used to sign the signature :param check: check if sensitive data in payload :return: bytes typJWT)expiatnbfenc) setdefaultgetr"datetimecalendartimegm utctimetupler)find_encode_keyrrrserialize_compactr)rheaderr&keycheckr'claimtexts rencodezJsonWebToken.encode,s %'''& C CAKKNNE%!233 C%_U-?-?-A-ABB  /  % %g . . .c6** 7++,, F??9..vtSAA A9..vtSAA Arc|t}t|r|}ntt|}t |}|d}|dkr"|j||t}n7|dkr"|j ||t}ntd||d|d||S) aDecode the JWT with the given key. This is similar with :meth:`verify`, except that it will raise BadSignatureError when signature doesn't match. :param s: text of JWT :param key: key used to verify the signature :param claims_cls: class to be used for JWT claims :param claims_options: `options` parameters for claims_cls :param claims_params: `params` parameters for claims_cls :return: claims_cls instance :raise: BadSignatureError N.r zInvalid input segments lengthr&r9)optionsparams) rcallablecreate_load_keyprepare_raw_keyrcountrdeserialize_compactdecode_payloadrr ) rsr: claims_clsclaims_options claims_paramsload_key dot_countdatas rdecodezJsonWebToken.decodeGs  "J C== =HH&s';';<>900HnMMDD !^^900HnMMDD=>> >z OT(^"     r)N)T)NNN) __name__ __module__ __qualname__r!recompilejoinDOTALLr$rr)r>rQrrrrsCO!rz$))---## SSSS , , ,BBBB6)-26" " " " " " rrc tt|}n#t$rtdwxYwt |t std|S)NzInvalid payload valuezInvalid payload type)rr ValueErrorr r"dict) bytes_payloadr&s rrIrIlsn3Z 6677 33312223 gt $ $20111 Ns9ct|tr|St|tr:|dr%|drt |}n t|t tfrd|i}|S)N{}keys)r"rr# startswithendswithrtuplelist)raws rrFrFvs#v #s NN3  $'LL$5$5oo C% ' 'sm Jrc|t|trQ|d}|r||St j|j}|j|d<|St|trud|vrq|d}|d}|D]}|d|kr|cS |s!t j|}|d|d<|Stdt|trd|vr |d|d<n&t|tr|jr |j|d<|S)NkidraInvalid JSON Web Key Set) r"rr2 find_by_kidrandomchoicerarhr\r[r)r:r9rhrvrar's rr7r7sV#vjj  (??3'' ' ]38 $ $u  #t 536{jj  AuuU||s""# t$$BuIF5MI3444#t #E u C   #' u Jrcfd}|S)Ncttr(|dSttrpdvrld}|d}|#|D]}|d|kr|cS nt |dkr|dSt dS)Nrhrarrri)r"rrjr2r\lenr[)r9r&rarhr'r:s rrNz!create_load_key..load_keys c6 " " 6??6::e#4#455 5 c4 9Vs]]v;D**U##C!!AuuU||s** +! t99>>7N788 8 rrY)r:rNs` rrErEs#( Or)rUrkr3r4authlib.common.encodingrrrrclaimsrerrorsr r rfc7515r rfc7516r rfc7517rrrrIrFr7rErYrrrwsE 44444444&&&&&&''''''!!!!!!!!Y Y Y Y Y Y Y Y x   @r