o i@sddlZddlZddlZddlmZddlmZddlmZddl m Z ddl m Z ddl m Z dd l mZd d lmZd d lmZd d lmZd dlmZGdddZdS)Ngenerate_token)default_json_headers) deprecate) JoseError) JsonWebToken)AccessDeniedError)InvalidRequestError)ClientMetadataClaims)InvalidClientMetadataError)InvalidSoftwareStatementError) UnapprovedSoftwareStatementErrorc@seZdZdZdZdZd ddZddZdd Zd d Z d d Z ddZ ddZ ddZ ddZddZddZddZddZddZdS)!ClientRegistrationEndpointzThe client registration endpoint is an OAuth 2.0 endpoint designed to allow a client to be registered with the authorization server. client_registrationNcCs||_|ptg|_dSN)serverr claims_classes)selfrrre/var/www/html/karishye-ai-python/venv/lib/python3.10/site-packages/authlib/oauth2/rfc7591/endpoint.py__init__sz#ClientRegistrationEndpoint.__init__cCs ||Sr)create_registration_responserrequestrrr__call__"s z#ClientRegistrationEndpoint.__call__cCsx||}|s t||_||}||}i}||||||||}|||}|r7||d|tfS)N) authenticate_tokenr credentialextract_client_metadatagenerate_client_infoupdate save_client!generate_client_registration_infor)rrtokenclient_metadata client_infobodyclientregistration_inforrrr%s        z7ClientRegistrationEndpoint.create_registration_responsec Cs|jjst|jj}|dd}|r#|jr#|||}||i}|}|j D]:}t |dr:|r:| |ni}||i||} z| Wnt y[} zt| j| d} ~ ww|jdi| q,|S)Nsoftware_statementget_claims_optionsr)payloaddatar copypop'software_statement_alg_values_supportedextract_software_statementr"get_server_metadatarhasattrr,validaterr descriptionget_registered_claims) rr json_datar+r.r&server_metadata claims_classoptionsclaimserrorrrrr 7s2         z2ClientRegistrationEndpoint.extract_client_metadatac CsR||}|s tzt|j}|||}|WSty(}zt|d}~wwr)resolve_public_keyrrr1decoderr)rr+rkeyjwtr<excrrrr2Rs   z5ClientRegistrationEndpoint.extract_software_statementcCsz||}Wnty|}tdddYnwz||}Wnty5|}tdddYnwtt}d}t||||dS)Nz[generate_client_id takes a 'request' parameter. It will become mandatory in coming releasesz1.8)versionz_generate_client_secret takes a 'request' parameter. It will become mandatory in coming releasesr) client_id client_secretclient_id_issued_atclient_secret_expires_at)generate_client_id TypeErrorrgenerate_client_secretinttimedict)rrrDrErFrGrrrr!_s4     z/ClientRegistrationEndpoint.generate_client_infocCsdS)zGenerate ```registration_client_uri`` and ``registration_access_token`` for RFC7592. This method returns ``None`` by default. Developers MAY rewrite this method to return registration information. Nr)rr)rrrrr$~szrZz-ClientRegistrationEndpoint.resolve_public_keycCrW)aSave client into database. Developers MUST implement this method in subclass:: def save_client(self, client_info, client_metadata, request): client = OAuthClient( client_id=client_info['client_id'], client_secret=client_info['client_secret'], ... ) client.save() return client rX)rr'r&rrrrr#s z&ClientRegistrationEndpoint.save_client)NN)__name__ __module__ __qualname____doc__ ENDPOINT_NAMEr1rrrr r2r!r$rOrHrJr3rr>r#rrrrrs$   r)rSrUrLauthlib.common.securityrauthlib.constsrauthlib.deprecater authlib.joserrrfc6749r r r<r errorsr rrrrrrrs