l8'h"<dZddlmZddlZddlZddlmZddlmZddlm Z m Z m Z m Z ddl mZddlmZmZmZmZdd lmZegd Z Gd d Zed gdZ edgdZ eddgZ ddZddZddZ ddZy)z6Constants and types shared across multiple auth types.) annotationsN)standard_b64encode) namedtuple)AnyDictMappingOptional)Binary)_OIDCAzureCallback_OIDCGCPCallback_OIDCProperties_OIDCTestCallback)ConfigurationError) GSSAPIz MONGODB-CR MONGODB-OIDC MONGODB-X509 MONGODB-AWSPLAINz SCRAM-SHA-1z SCRAM-SHA-256DEFAULTc@eZdZdZedZddZddZddZd dZ y) _Cachedatacd|_yNrselfs O/var/www/html/trade_iq/venv/lib/python3.12/site-packages/pymongo/auth_shared.py__init__z_Cache.__init__7s  c0t|trytS)NT isinstancerNotImplementedrothers r__eq__z _Cache.__eq__:s eV $r c0t|trytS)NFr"r%s r__ne__z _Cache.__ne__@s eV $r c|jSr) _hash_valrs r__hash__z_Cache.__hash__Es ~~r N)returnNone)r&objectr-bool)r-int) __name__ __module__ __qualname__ __slots__hashr+rr'r)r,r rrr2s$IXI  r rMongoCredential) mechanismsourceusernamepasswordmechanism_propertiescacheGSSAPIProperties service_namecanonicalize_host_name service_realm_AWSPropertiesaws_session_tokenc |dvr|t|d|dk(r||dk7r td|jdi}|jdd }t|jd d }|jd } t ||| } t |d||| dS|dk(r/| td||dk7r tdt |d|dddS|dk(r`| | td||dk7r td|jdi}|jd} t | } t |d||| dS|dk(rC|jdi}|jd} |jd}|jd}|jdd}gd}|jd|}d}| d}t|| s|r| t|| r|rd }t||m|d!k(r| d"}t|t} nY|d#k(rd}|s td$t|} n9|d%k(rd}|s td&t|} ntd'|t|t| |||||(}t |d|||tS|d)k(r|xs|xsd}t ||||ddS|xs|xsd*}| td+t ||||dtS),z8Build and return a mechanism specific credentials tuple.)rrrNz requires a username.rz $externalz:authentication source must be $external or None for GSSAPIauthmechanismproperties SERVICE_NAMEmongodbCANONICALIZE_HOST_NAMEF SERVICE_REALMr@rz+Passwords are not supported by MONGODB-X509z@authentication source must be $external or None for MONGODB-X509rz;username without a password is not supported by MONGODB-AWSz?authentication source must be $external or None for MONGODB-AWSAWS_SESSION_TOKEN)rEr OIDC_CALLBACKOIDC_HUMAN_CALLBACK ENVIRONMENTTOKEN_RESOURCE)z *.mongodb.netz*.mongodb-dev.netz*.mongodb-qa.netz*.mongodbgov.net localhostz 127.0.0.1z::1 ALLOWED_HOSTSzVauthentication with MONGODB-OIDC requires providing either a callback or a environmentz)password is not supported by MONGODB-OIDCz5cannot set both OIDC_CALLBACK and OIDC_HUMAN_CALLBACKtestz;test environment for MONGODB-OIDC does not support usernameazurezTAzure environment for MONGODB-OIDC requires a TOKEN_RESOURCE auth mechanism propertygcpzOGCP provider for MONGODB-OIDC requires a TOKEN_RESOURCE auth mechanism propertyz+unrecognized ENVIRONMENT for MONGODB-OIDC: )callbackhuman_callback environment allowed_hoststoken_resourcer;radminzA password is required.) r ValueErrorgetr0r?r8rDrr r r r)mechr:userpasswdextradatabase propertiesrA canonicalizerCpropsrE aws_propsrWrXenvironr[default_allowedrZmsg oidc_propssource_databases r_build_credentials_tuplermZsn BBt| D6)>!?@@ x  &K"7YZ ZYY8"= !~~ni@ JNN+CUKL "7  %#/'  t[$tLL    $%RS S  &K"7_` `t[$dDII    $%bc c  &K"7$Q YY8"= &NN+>?"5FG t[$ 4PP  YY8"= >>/2#(=>../#(8"= #H d   =C$S) ) ~"(--NM(--  & #WC,S11,.G#%,n.n=E!%,i,N;(+VW^V_)`aa$S) )$)')  t[$ FHUU  ;H; t_dFD$OO 7H7 >$%>? ?t_dFD&(SSr c djt||Dcgc]\}}t||z gc}}Scc}}w)zXOR two byte strings together.r )joinzipbytes)firsecxys r_xorrvs3 88C >1UAE7^> ??>s< cDtd|jdDS)z-Split a scram response into key, value pairs.c3K|]E}tjtjttf|j ddGyw)=N)typingcastTuplerqsplit).0items r z(_parse_scram_response..s;   FLL. 40CDsA A ,)dictr~)responses r_parse_scram_responsers% NN4( r c|j}|jdjddjdd}tt j d}d|zdz|z}d |t d |zd d d id }|||fS)Nzutf-8rys=3Drs=2C sn=s,r=rzsn,,skipEmptyExchangeT) saslStartr9payload autoAuthorizeoptions)r;encodereplacerosurandomr ) credentialsr9r;r`nonce first_barecmds r_authenticate_scram_startrs##H ??7 # + +D& 9 A A$ OD rzz"~ .E&.J&:-.'.  C *c !!r )r_strr: Optional[str]r`rrarrbzMapping[str, Any]rcrr-r8)rrrqrsrqr-rq)rrqr-zDict[bytes, bytes])rr8r9rr-z4tuple[bytes, bytes, typing.MutableMapping[str, Any]]) __doc__ __future__rrr{base64r collectionsrrrrr bsonr pymongo.auth_oidc_sharedr r r rpymongo.errorsr frozenset MECHANISMSrr8r?rDrmrvrrr7r rrs =" %"// .    :.T?S6,/B.CD:sT sT sT sT  sT  sT  sTsTl@ " "-0"9"r