o 5 h}'@sdZddlZddlZeeZddlmZddlm Z m Z ddl m Z m Z mZddlmmZgdZGdddejjejZe d Zd ZGd d d ejjejZGd ddejZdS)z.passlib.handlers.misc - misc generic handlers N)warn) to_native_str str_consteq)unicodeuunicode_or_bytes_types) unix_disabled unix_fallback plaintextcsLeZdZdZdZdZeddZd fdd Zdd Z ed d d Z Z S) r aThis class provides the fallback behavior for unix shadow files, and follows the :ref:`password-hash-api`. This class does not implement a hash, but instead provides fallback behavior as found in /etc/shadow on most unix variants. If used, should be the last scheme in the context. * this class will positively identify all hash strings. * for security, passwords will always hash to ``!``. * it rejects all passwords if the hash is NOT an empty string (``!`` or ``*`` are frequently used). * by default it rejects all passwords if the hash is an empty string, but if ``enable_wildcard=True`` is passed to verify(), all passwords will be allowed through if the hash is an empty string. .. deprecated:: 1.6 This has been deprecated due to its "wildcard" feature, and will be removed in Passlib 1.8. Use :class:`unix_disabled` instead. )enable_wildcardcCt|trdStj|dNThash isinstanceruhexcExpectedStringErrorclsrri/var/www/html/construction_image-detection-poc/venv/lib/python3.10/site-packages/passlib/handlers/misc.pyidentify. zunix_fallback.identifyFc s*tdttt|jdi|||_dS)Nzf'unix_fallback' is deprecated, and will be removed in Passlib 1.8; please use 'unix_disabled' instead.r)rDeprecationWarningsuperr __init__r )selfr kwds __class__rrr5s  zunix_fallback.__init__cCs|jr|jStdS)N!)checksumr)rsecretrrr_calc_checksum=szunix_fallback._calc_checksumcCs.t|t|tstj|d|rdS|S)NrF)rvalidate_secretrrrr)rr#rr rrrverifyEs  zunix_fallback.verify)F) __name__ __module__ __qualname____doc__name context_kwds classmethodrrr$r& __classcell__rrrrr s r z*!s*!cseZdZdZdZdZdZeee Z de j vre dZne dZedfdd Zed d Zed d ZeddZejdddedddZedddZeddZZS)raThis class provides disabled password behavior for unix shadow files, and follows the :ref:`password-hash-api`. This class does not implement a hash, but instead matches the "disabled account" strings found in ``/etc/shadow`` on most Unix variants. "encrypting" a password will simply return the disabled account marker. It will reject all passwords, no matter the hash string. The :meth:`~passlib.ifc.PasswordHash.hash` method supports one optional keyword: :type marker: str :param marker: Optional marker string which overrides the platform default used to indicate a disabled account. If not specified, this will default to ``"*"`` on BSD systems, and use the Linux default ``"!"`` for all other platforms. (:attr:`!unix_disabled.default_marker` will contain the default value) .. versionadded:: 1.6 This class was added as a replacement for the now-deprecated :class:`unix_fallback` class, which had some undesirable features. markerrbsd*r!Nc s>tt|jdi|}|dur||std|||_|S)Nzinvalid marker: %rr)rrusingr ValueErrordefault_marker)rr0rsubclsrrrr3xs   zunix_disabled.usingcCs@t|trt}nt|trt}ntj|d| p|d|vS)Nrr)rr _MARKER_CHARSbytes _MARKER_BYTESrrr)rrstartrrrrs  zunix_disabled.identifycCs$t|||stj|dS)NF)rr%rrInvalidHashError)rr#rrrrr&s   zunix_disabled.verifycKsT|rt|||jdi||St||j}|r"||s$Jt|ddS)Nr0paramr)rwarn_hash_settings_deprecationr3rr%r5rr)rr#rr0rrrrs   zunix_disabled.hash1.72.0 deprecatedremovedcCsN||s tj||rt|t|ddS|dur"|j|d}||S)Nconfigr<r/)rrrr;r%rr3r)rr#rDr0rrrgenhashs      zunix_disabled.genhashcCsB|d}|durt|dd}||r||}|r||7}|S)Nrr<)rrrenable)rroutrrrdisables    zunix_disabled.disablecCsRt|dd}|jD]}||r"|t|d}|r|Stdq tj|)Nrr<zcannot restore original hash)r_disable_prefixes startswithlenr4rrr;)rrprefixorigrrrrGs    zunix_disabled.enableN)r'r(r)r*r+ setting_kwdsr,tuplestrr7rJsysplatformrr5r-r3rr&rrdeprecated_methodrErIrGr.rrrrrRs0         rc@s~eZdZdZdZdZdZdZeddZ eddd Z edd d Z e j d d deddZe j d d dedddZdS)r a~This class stores passwords in plaintext, and follows the :ref:`password-hash-api`. The :meth:`~passlib.ifc.PasswordHash.hash`, :meth:`~passlib.ifc.PasswordHash.genhash`, and :meth:`~passlib.ifc.PasswordHash.verify` methods all require the following additional contextual keyword: :type encoding: str :param encoding: This controls the character encoding to use (defaults to ``utf-8``). This encoding will be used to encode :class:`!unicode` passwords under Python 2, and decode :class:`!bytes` hashes under Python 3. .. versionchanged:: 1.6 The ``encoding`` keyword was added. rencodingzutf-8cCr r rrrrrrrzplaintext.identifyNcCs t||s |j}t||dS)Nr#)rr%default_encodingr)rr#rWrrrrs  zplaintext.hashcCs>|s|j}t||d}||stj|t||||S)Nr)rXrrrrr;rr)rr#rrWrrrr&s    zplaintext.verifyr?r@rAcCs |dS)NrF)r)rrrr genconfigs zplaintext.genconfigcCs$||s tj||j||dS)NrV)rrrr;r)rr#rDrWrrrrEs  zplaintext.genhashrO)r'r(r)r*r+rPr,rXr-rrr&rrUrYrErrrrr s$      r )r*rSlogging getLoggerr'logwarningsr passlib.utilsrrpasslib.utils.compatrrrpasslib.utils.handlersutilshandlersr__all__ifc DisabledHash StaticHandlerr r7r9MinimalHandlerrr rrrrs  6~