o hs.@sddlmZddlZddlZddlZddlZddlZddlmZddl m Z ddl m Z ddl mZmZmZddlmZmZmZejrIdd lmZgd ZGd d d ZGd ddeZGdddeZGdddeZGdddeZGdddejZdS)) annotationsN) b64encode)parse_http_list) ProtocolError)CookiesRequestResponse)to_bytesto_strunquote)_Hash)Auth BasicAuth DigestAuth NetRCAuthc@s6eZdZdZdZdZdddZdd d Zdd d ZdS)ra Base class for all authentication schemes. To implement a custom authentication scheme, subclass `Auth` and override the `.auth_flow()` method. If the authentication scheme does I/O such as disk access or network calls, or uses synchronization primitives such as locks, you should override `.sync_auth_flow()` and/or `.async_auth_flow()` instead of `.auth_flow()` to provide specialized implementations that will be used by `Client` and `AsyncClient` respectively. Frequestrreturn)typing.Generator[Request, Response, None]ccs |VdS)a Execute the authentication flow. To dispatch a request, `yield` it: ``` yield request ``` The client will `.send()` the response back into the flow generator. You can access it like so: ``` response = yield request ``` A `return` (or reaching the end of the generator) will result in the client returning the last response obtained from the server. You can dispatch as many requests as is necessary. Nselfrrr_/var/www/html/construction_image-detection-poc/venv/lib/python3.10/site-packages/httpx/_auth.py auth_flow&s zAuth.auth_flowccs^|jr|||}t|} |V}|jr|z||}Wn ty-YdSwq)z Execute the authentication flow synchronously. By default, this defers to `.auth_flow()`. You should override this method when the authentication scheme does I/O and/or uses concurrency primitives. TN)requires_request_bodyreadrnextrequires_response_bodysend StopIterationrrflowresponserrrsync_auth_flow>s   zAuth.sync_auth_flow(typing.AsyncGenerator[Request, Response]cCsj|jr |IdH||}t|} |V}|jr"|IdHz||}Wn ty3YdSwq)z Execute the authentication flow asynchronously. By default, this defers to `.auth_flow()`. You should override this method when the authentication scheme does I/O and/or uses concurrency primitives. N)rareadrrrrrr rrrasync_auth_flowWs   zAuth.async_auth_flowNrrrr)rrrr$) __name__ __module__ __qualname____doc__rrrr#r&rrrrrs   rc@s$eZdZdZdddZdd d Zd S) FunctionAuthz Allows the 'auth' argument to be passed as a simple callable function, that takes the request, and returns a new, modified request. func#typing.Callable[[Request], Request]rNonecCs ||_dSN_func)rr-rrr__init__ws zFunctionAuth.__init__rrrccs||VdSr0r1rrrrrzszFunctionAuth.auth_flowN)r-r.rr/r')r(r)r*r+r3rrrrrr,qs r,c@s.eZdZdZdddZdd d ZdddZdS)rzy Allows the 'auth' argument to be passed as a (username, password) pair, and uses HTTP Basic authentication. username str | bytespasswordrr/cCs||||_dSr0)_build_auth_header _auth_headerrr4r6rrrr3szBasicAuth.__init__rrrccs|j|jd<|VdS)N Authorization)r8headersrrrrrs  zBasicAuth.auth_flowstrcC,dt|t|f}t|}d|SN:zBasic joinr rdecoderr4r6userpasstokenrrrr7  zBasicAuth._build_auth_headerNr4r5r6r5rr/r'r4r5r6r5rr<r(r)r*r+r3rr7rrrrr~s   rc@s0eZdZdZddddZdd d ZdddZdS)rzT Use a 'netrc' file to lookup basic auth credentials based on the url host. Nfile str | Nonerr/cCsddl}|||_dS)Nr)netrc _netrc_info)rrJrLrrrr3szNetRCAuth.__init__rrrccsR|j|jj}|dus|ds|VdS|j|d|dd|jd<|VdS)Nr)r4r6r:)rMauthenticatorsurlhostr7r;)rr auth_inforrrrs   zNetRCAuth.auth_flowr4r5r6r<cCr=r>r@rCrrrr7rFzNetRCAuth._build_auth_headerr0)rJrKrr/r'rHrIrrrrrs    rc @seZdZUejejejejejejejejdZde d<d)d d Z d*ddZ d+ddZ d,ddZ d-ddZd.d"d#Zd/d&d'Zd(S)0r)MD5zMD5-SESSSHAzSHA-SESSzSHA-256z SHA-256-SESSzSHA-512z SHA-512-SESSz*dict[str, typing.Callable[[bytes], _Hash]]_ALGORITHM_TO_HASH_FUNCTIONr4r5r6rr/cCs$t||_t||_d|_d|_dS)Nr)r _username _password_last_challenge _nonce_countr9rrrr3s   zDigestAuth.__init__rrrccs|jr|||j|jd<|V}|jdksd|jvrdS|jdD] }|dr.nq#dS|||||_d|_|||j|jd<|j rRt |j j |d|VdS)Nr:izwww-authenticatezdigest rr) rXr7r; status_codeget_listlower startswith_parse_challengerYcookiesrset_cookie_header)rrr" auth_headerrrrrs*   zDigestAuth.auth_flowr"r rbr<_DigestAuthChallengec Cs|d\}}}|dksJi}t|D]}|dd\} } t| || <qz4|d} |d} |dd} d |vrF|d nd }d |vrR|d nd }t| | | ||d WSt yr}z d }t ||d|d }~ww)z Returns a challenge from a Digest WWW-Authenticate header. These take the form of: `Digest realm="realm@host.com",qop="auth,auth-int",nonce="abc",opaque="xyz"`  digest=rrealmnonce algorithmrSopaqueNqop)rgrhrirjrkz(Malformed Digest WWW-Authenticate headerrZ) partitionr]rstripsplitr encodegetrcKeyErrorr)rrr"rbscheme_fields header_dictfieldkeyvaluergrhrirjrkexcmessagerrrr_s(     zDigestAuth._parse_challenge challengecsH|j|jdfdd }d|j|j|jf}|jj}d|j |f}||}d|j }| |j |j } |j d7_ ||} |jd rW|d| |j | f} |j|j|d } | durj| |j |g} n | |j || | |g} |j|j|j ||d| |j d } |jr|j| d <| rd | d<|| d<| | d<d|| S)Ndatabytesrcs|Sr0) hexdigestro)r| hash_funcrrresz-DigestAuth._build_auth_header..digestr?s%08xrz-sessrZ)r4rgrhurir"rirjauthrknccnoncezDigest )r|r}rr})rUriupperrArVrgrWrPraw_pathmethodrorY_get_client_noncerhr]endswith _resolve_qoprkrj_get_header_value)rrr{reA1pathA2HA2nc_valuerHA1rk digest_data format_argsrrrr7s<   zDigestAuth._build_auth_header nonce_countintrhr}cCsLt|}||7}|t7}|td7}t|ddS)N) r<rotimectimeosurandomhashlibsha1r~)rrrhsrrrr/s zDigestAuth._get_client_nonce header_fieldsdict[str, bytes]c Csbd}d}d}d}t|D] \}\}}|dkr|d7}||vr"|n|} || |t|7}q|S)N)rirkrz{}="{}"z{}={}rz, ) enumerateitemsformatr ) rrNON_QUOTED_FIELDSQUOTED_TEMPLATENON_QUOTED_TEMPLATE header_valueirvrxtemplaterrrr7szDigestAuth._get_header_valuerk bytes | NonecCsN|durdStd|}d|vrdS|dgkrtdd|d}t||d)Ns, ?rsauth-intz.Digest auth-int support is not yet implementedzUnexpected qop value "z" in digest authrZ)rernNotImplementedErrorr)rrkrqopsrzrrrrIs    zDigestAuth._resolve_qopNrGr')rrr"r rbr<rrc)rrr{rcrr<)rrrhr}rr})rrrr<)rkrrrrr)r(r)r*rmd5rsha256sha512rU__annotations__r3rr_r7rrrrrrrrs"     0 rc@s6eZdZUded<ded<ded<ded<ded<d S) rcr}rgrhr<rirrjrkN)r(r)r*rrrrrrcWs  rc) __future__rrrrrtypingbase64rurllib.requestr _exceptionsr_modelsrrr _utilsr r r TYPE_CHECKINGr __all__rr,rrr NamedTuplercrrrrs*     [ )