U I])@stdZddlmZmZddlZddlmZmZmZddl m Z m Z m Z m Z mZmZmZmZmZmZGdddeZdS) z oauthlib.oauth1.rfc5849.endpoints.base ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This module is an implementation of various logic needed for signing and checking OAuth 1.0 RFC 5849 requests. )absolute_importunicode_literalsN)CaseInsensitiveDictRequestgenerate_token) CONTENT_TYPE_FORM_URLENCODEDSIGNATURE_HMAC_SHA1SIGNATURE_HMAC_SHA256 SIGNATURE_RSASIGNATURE_TYPE_AUTH_HEADERSIGNATURE_TYPE_BODYSIGNATURE_TYPE_QUERYerrors signatureutilsc@s@eZdZdddZddZddZdd Zd d Zdd dZdS) BaseEndpointNcCs||_|p t|_dSN)request_validatorrtoken_generator)selfrrrH/usr/lib/python3/dist-packages/oauthlib/oauth1/rfc5849/endpoints/base.py__init__szBaseEndpoint.__init__c Cstj|jddd}tj|jdd}tj|jdd}g}||||||ttddt|t |ft |t |ft |t |ff}t |dkrd d |D}tjd d |fd z|d\}}} Wn tk rtjdd YnX||| fS)zExtracts parameters from query, headers and body. Signature type is set to the source in which parameters were found. FT)headersexclude_oauth_signatureZ with_realm)bodyr) uri_queryrcSs|dS)Nrr)srrr+z=BaseEndpoint._get_signature_type_and_params..cSsg|] }|dqS)rr).0rrrr 5sz?BaseEndpoint._get_signature_type_and_params..zFoauth_ params must come from only 1 signaturetype but were found in %sz, Z descriptionr#Missing mandatory OAuth parameters.)rZcollect_parametersrrrextendlistfilterr rZfilter_oauth_paramsr rlenrInvalidRequestErrorjoin IndexError) rrequestZ header_paramsZ body_paramsZ query_paramsparamsZ!signature_types_with_oauth_paramsZ found_typessignature_type oauth_paramsrrr_get_signature_type_and_paramssR      z+BaseEndpoint._get_signature_type_and_paramsc Cs&t|pi}d|kr0t|dkr0t||||}nt||d|}||\}}}tt|t|krntjddt|}|d|_ |d|_ |d|_ |d|_ |d |_ |d |_|d |_|d |_t|d |_||_dd|D|_d |jddkr"dd|jD|_|S)Nz Content-TypezDuplicate OAuth1 entries.r$oauth_signatureZoauth_consumer_keyZ oauth_tokenZ oauth_nonceZoauth_timestampZoauth_callbackZoauth_verifierZoauth_signature_methodrealmcSs g|]\}}|dkr||fqS)r3rr"kvrrrr#dsz0BaseEndpoint._create_request..Z AuthorizationcSs g|]\}}|dkr||fqS)r4rr5rrrr#gs)rrrr1r)dictrr*getr client_keyresource_owner_keynonce timestampZ redirect_uriZverifiersignature_methodr4r0r.r) ruriZ http_methodrrr-r/r.r0rrr_create_requestDs:          zBaseEndpoint._create_requestcCs$|jjr |jds tdS)Nzhttps://)rZ enforce_sslr?lower startswithrZInsecureTransportError)rr-rrr_check_transport_securitylsz&BaseEndpoint._check_transport_securitycCs&t|j|j|j|j|jfs(tjdd|j|jj krPtj d|j|jj fdd|j krt|j ddkrttjddt |jdkrtjddzt |j}Wn tk rtjd dYn.Xtt||jjkrtjd |jjd|j|jstjd d|j|js"tjd ddS) Nr%r$z Invalid signature, %s not in %r.Z oauth_versionz1.0zInvalid OAuth version. zInvalid timestamp sizezTimestamp must be an integer.zCTimestamp given is invalid, differ from allowed by over %s seconds.zInvalid client key format.zInvalid nonce format.)allrr:r<r=r>rr*rZallowed_signature_methodsZInvalidSignatureMethodErrorr0r)int ValueErrorabstimeZtimestamp_lifetimeZcheck_client_keyZ check_nonce)rr-Ztsrrr_check_mandatory_parametersrs^     z(BaseEndpoint._check_mandatory_parametersFcCs|jtkr(|j|j|}t||}n|j|j|}d}|jrp|r\|j |j|j|}n|j |j|j|}|jt krt |||}n(|jt krt|||}nt|||}|Sr)r>r rZ get_rsa_keyr:rZverify_rsa_sha1Zget_client_secretr;Zget_request_token_secretZget_access_token_secretr Zverify_hmac_sha1r Zverify_hmac_sha256Zverify_plaintext)rr-Zis_token_requestZrsa_keyZvalid_signatureZ client_secretZresource_owner_secretrrr_check_signaturesL    zBaseEndpoint._check_signature)N)F) __name__ __module__ __qualname__rr1r@rCrJrKrrrrrs  *(Br)__doc__Z __future__rrrIZoauthlib.commonrrrr2rr r r r r rrrrobjectrrrrrs 0