o i@sddlmZddlmZddlmZddlZddlZddl m Z e e Z Gddde ZGdd d e ZGd d d eZd ed eefddZd ed efddZdededejd eeeffddZ    dd ededeedeedeeedeejd efddZdS))Optional)AuthorizationServerMetadata)AsyncOAuth2ClientN) BaseModelc@sNeZdZUdZeed<eed<eeed<dZeeed<dZ eeed<dS)Oauth2AuthorizationSchemezJInformation about the oauth flow to perform with the authorization server.authorization_url token_urlscopeN description refresh_url) __name__ __module__ __qualname____doc__str__annotations__listr rr rr^/var/www/html/karishye-ai-python/venv/lib/python3.10/site-packages/mistralai/extra/mcp/auth.pyr s  rc@s*eZdZUdZeed<eed<eed<dS) OAuthParamsz"Required params for authorization.scheme client_id client_secretN)r r rrrrrrrrrrs  rc@s&eZdZdZededdfddZdS)rzWSubclass of the Async httpx oauth client which provides a constructor from OAuthParams. oauth_paramsreturncCs||j|j|jjdS)N)rrr )rrrr )clsrrrrfrom_oauth_params"s z#AsyncOAuth2Client.from_oauth_paramsN)r r rr classmethodrrrrrrrsr server_urlrcs|d}t|IdH}d|jkrdkr=nn ztdi|}||WSty<t dYdSwt d|dS)zFetch the metadata from the well-known location. This should be available on MCP servers as described by the specification: https://modelcontextprotocol.io/specification/2025-03-26/basic/authorization#2-3-server-metadata-discovery. z'/.well-known/oauth-authorization-serverNi,z)Failed to parse oauth well-known metadataz-Failed to get oauth well-known metadata from r) httpx AsyncClientget status_coderjsonvalidate ValueErrorlogger exceptionerror)rwell_known_urlresponseserver_metadatarrr,get_well_known_authorization_server_metadata+s   r-c sXt|dIdH}|dur|St||d|d|ddgdgdd gd gd d gd S)zKFetch the metadata from the authorization server to perform the oauth flow.rNz /authorizez/tokenz /registercodequeryauthorization_code refresh_tokenclient_secret_basicS256plain) issuerauthorization_endpointtoken_endpointregister_endpointresponse_types_supportedresponse_modes_supportedgrant_types_supported%token_endpoint_auth_methods_supported code_challenge_methods_supported)r-r)rmetadatarrrget_oauth_server_metadataBsr@r9 redirect_url async_clientc sdddgddg|gd}|j||dIdH}z||}|d }|d }W||fStyE}z td |jd |j|d}~ww) zkTry to register the client dynamically with an MCP server. Returns a client_id and client_secret. MistralSDKClientr1r2r3r/) client_name grant_typestoken_endpoint_auth_methodresponse_types redirect_uris)r$Nrrz#Client registration failed: status=z, error=)postraise_for_statusr$ Exceptionr&r#text) r9rArBregistration_payloadr+registration_inforrerrrdynamic_client_registration[s,   rPrrr c st|dIdH}t|j|j|pgd|jvr|jndd}|r(|r(t|||dS|r8t|j||dIdH\}} n+t 4IdH}t|j||dIdH\}} WdIdHn 1IdHs^wYt|| |dS)z8Get issuer metadata and build the oauth required params.r.Nr2)rrr r )rrr)r9rArB) r@rr7r8r<rrPregistration_endpointr r!) rrArrr rBr? oauth_scheme reg_client_idreg_client_secretrrrbuild_oauth_params{sD  (rU)NNNN)typingrauthlib.oauth2.rfc8414r!authlib.integrations.httpx_clientrAsyncOAuth2ClientBaser loggingmistralai.typesr getLoggerr r'rrrr-r@r!tuplerPrrUrrrrsX         #