o i@sddlZddlmZmZddlmZddlmZddlZddl Z ddl m Z m Z ddl mZmZmZmZddlmZGdd d e ZGd d d eZdS) N) AwaitableCallable)Any)uuid4) BaseModelField)OAuthClientProviderOAuthFlowErrorOAuthTokenError TokenStorage)OAuthClientMetadatac@seZdZUdZedddZedBed<edddZedBed<edddZ edBed <edd dZ edBed <edd dZ e ee fdBed <edddZedBed<edddZedBed<edddZeed<ddedBdefddZdS) JWTParameterszJWT parameters.NzeJWT assertion for JWT authentication. Will be used instead of generating a new assertion if provided.)default description assertionzIssuer for JWT assertions.issuerz&Subject identifier for JWT assertions.subjectzAudience for JWT assertions.audiencez%Additional claims for JWT assertions.claimsRS256z%Algorithm for signing JWT assertions.jwt_signing_algorithmzPrivate key for JWT signing.jwt_signing_keyi,z%Lifetime of generated JWT in seconds.jwt_lifetime_secondswith_audience_fallbackreturncCs|jdur |j}|S|jstd|jstd|jstd|jr%|jn|}|s-tdtt}|j|j|||j|t t d}| |j pJit j||j|jpUdd}|S)Nz(Missing signing key for JWT bearer grantz#Missing issuer for JWT bearer grantz$Missing subject for JWT bearer grantz%Missing audience for JWT bearer grant)isssubaudexpiatjtir) algorithm)rrr rrrinttimerstrrupdaterjwtencoder)selfrrrnowrr*s/var/www/html/karishye-ai-python/venv/lib/python3.10/site-packages/mcp/client/auth/extensions/client_credentials.py to_assertions6  zJWTParameters.to_assertionN)__name__ __module__ __qualname____doc__rrr$__annotations__rrrrdictrrrrr"r,r*r*r*r+r s  r cseZdZUdZdZedBed<    ddedede de ege dfdBd e ge e eedBffdBd e dedBd dffd d ZdddededeeefdBd ejffddZd ejffdd ZdeeeffddZd ejfddZZS)RFC7523OAuthClientProviderz*OAuth client provider for RFC7532 clients.Njwt_parametersr@ server_urlclient_metadatastorageredirect_handlercallback_handlertimeoutrcs t||||||||_dSr-)super__init__r5)r(r7r8r9r:r;r<r5 __class__r*r+r>Gs z#RFC7523OAuthClientProvider.__init__ token_data auth_code code_verifierrBcs<|pi}|jjjdkr|j|dtj|||dIdHS)z9Build token exchange request for authorization_code flow.private_key_jwtrAN)contextr8token_endpoint_auth_method_add_client_authentication_jwtr="_exchange_token_authorization_code)r(rCrDrBr?r*r+rITs  z=RFC7523OAuthClientProvider._exchange_token_authorization_codecs2d|jjjvr|IdH}|StIdHS)zPerform the authorization flow.+urn:ietf:params:oauth:grant-type:jwt-bearerN)rFr8 grant_types_exchange_token_jwt_bearerr=_perform_authorization)r( token_requestr?r*r+rM]s z1RFC7523OAuthClientProvider._perform_authorizationcCs\|jstd|jjstdt|jjj}|jj|d}||d<d|d<|j|d<dS) zIAdd JWT assertion for client authentication to token endpoint parameters.z/Missing JWT parameters for private_key_jwt flowz/Missing OAuth metadata for private_key_jwt flowrclient_assertionz6urn:ietf:params:oauth:client-assertion-type:jwt-bearerclient_assertion_typerN)r5r rFoauth_metadatar$rr,get_resource_url)r(rBrrr*r*r+rHesz9RFC7523OAuthClientProvider._add_client_authentication_jwtcs|jjs td|jstd|jjstdt|jjj}|jj|d}d|d}|j |jj r:|j |d<|jj j rF|jj j |d<|}tjd ||d d id S) z2Build token exchange request for JWT bearer grant.zMissing client infozMissing JWT parameterszMissing OAuth metadatarOrJ) grant_typerresourcescopePOSTz Content-Typez!application/x-www-form-urlencoded)dataheaders)rF client_infor r5rRr r$rr,should_include_resource_paramprotocol_versionrSr8rV_get_token_endpointhttpxRequest)r(rrrB token_urlr*r*r+rLxs(  z5RFC7523OAuthClientProvider._exchange_token_jwt_bearer)NNr6N)r.r/r0r1r5r r2r$r r rrtuplefloatr>r3rr^r_rIrMrHrL __classcell__r*r*r?r+r4BsJ   r4)r#collections.abcrrtypingruuidrr^r&pydanticrrmcp.client.authrr r r mcp.shared.authr r r4r*r*r*r+s   4