k7i74SSKJr SSKJr SSKJr SSKJr SSKJr SSKJ r SSKJ r SS K J r SS K J r SS KJr SS KJr SS KJr "SS\ 5rSrg))ContinueIteration) deprecate)ClientAuthentication)InvalidScopeError) OAuth2Error)UnsupportedGrantTypeError)UnsupportedResponseTypeError)Hookable)hooked) JsonRequest) OAuth2Request) scope_to_listc^\rSrSrSrSU4SjjrSrSrSSjrSr SSjr S r S r S r S rS \4SjrS \4SjrSrSrSSjrSr\S5rSSjrSrSSjr\S Sj5rSSjrSrSrU=r $)!AuthorizationServerzAuthorization server that handles Authorization Endpoint and Token Endpoint. :param scopes_supported: A list of supported scopes by this authorization server. c>[TU]5 Xl0UlSUl/Ul/Ul0Ul/UlgN) super__init__scopes_supported_token_generators _client_auth_authorization_grants _token_grants _endpoints _extensions)selfr __class__s e/home/james-whalen/.local/lib/python3.13/site-packages/authlib/oauth2/rfc6749/authorization_server.pyrAuthorizationServer.__init__sC  0!# %'"c[5e)zQuery OAuth client by client_id. The client model class MUST implement the methods described by :class:`~authlib.oauth2.rfc6749.ClientMixin`. NotImplementedError)r client_ids r query_client AuthorizationServer.query_client!s "##r"c[5e)z:Define function to save the generated token into database.r$)rtokenrequests r save_tokenAuthorizationServer.save_token( !##r"c URRU5nU(dURRS5nU(d [S5eU"UUUUUUS9$)a]Generate the token dict. :param grant_type: current requested grant_type. :param client: the client that making the request. :param user: current authorized user. :param expires_in: if provided, use this value as expires_in. :param scope: current requested scope. :param include_refresh_token: should refresh_token be included. :return: Token dict defaultzNo configured token generator) grant_typeclientuserscope expires_ininclude_refresh_token)rget RuntimeError)rr1r2r3r4r5r6funcs r generate_token"AuthorizationServer.generate_token,sa(%%))*5))--i8D>? ?!!"7   r"c X RU'g)aRegister a function as token generator for the given ``grant_type``. Developers MUST register a default token generator with a special ``grant_type=default``:: def generate_bearer_token( grant_type, client, user=None, scope=None, expires_in=None, include_refresh_token=True, ): token = {"token_type": "Bearer", "access_token": ...} if include_refresh_token: token["refresh_token"] = ... ... return token authorization_server.register_token_generator( "default", generate_bearer_token ) If you register a generator for a certain grant type, that generator will only works for the given grant type:: authorization_server.register_token_generator( "client_credentials", generate_bearer_token, ) :param grant_type: string name of the grant type :param func: a function to generate token N)r)rr1r9s r register_token_generator,AuthorizationServer.register_token_generatorPsF.2z*r"cURc+UR(a[UR5UlURXU5$)zAuthenticate client via HTTP request information with the given methods, such as ``client_secret_basic``, ``client_secret_post``. )rr'r)rr+methodsendpoints r authenticate_client'AuthorizationServer.authenticate_clientus>    $):): 4T5F5F GD   8< 6r"c[U[5(a U"U5nOXlURR UR /5nUR U5 g)zAdd extra endpoint to authorization server. e.g. RevocationEndpoint:: authorization_server.register_endpoint(RevocationEndpoint) :param endpoint_cls: A endpoint class or instance. N) isinstancetypeserverr setdefault ENDPOINT_NAMErJ)rrA endpointss r register_endpoint%AuthorizationServer.register_endpointsI h % %~H"OOO..x/E/ErJ "r"c URH)up#URU5(dM[X#X5s $ [SURR S3URR URR S9e)zsFind the authorization grant for current request. :param request: OAuth2Request instance. :return: grant instance zThe response type 'z!' is not supported by the server.) redirect_uri)rrp _create_grantr payload response_typerrr+rsrts r get_authorization_grant+AuthorizationServer.get_authorization_grantsw&*%?%? !I55g>>$YGJJ&@+!'//"?"?!@@a b OO ) ) 55  r"cURU5nX!lURU5nURU5 UR 5 U$![ a!nUR RUleSnAff=f)zValidate current HTTP request for authorization page. This page is designed for resource owner to grant or deny the authorization. N)r]r3r&validate_no_multiple_request_parametervalidate_consent_requestrrstate)rr+end_usergrantrQs r get_consent_grant%AuthorizationServer.get_consent_grantsw,,W5 #L009E  8 8 A  * * ,  "////EK   s8A A8A33A8cURH)up#URU5(dM[X#X5s $ [URR 5e)zkFind the token grant for current request. :param request: OAuth2Request instance. :return: grant instance )rrqrr rr1rs r get_token_grant#AuthorizationServer.get_token_grantsL &*%7%7 !I--g66$YGJJ&8((B(BCCr"c*XR;a[SUS35eURUnUH*nURU5nUR"U"U56s $ g![a M<[ anUR X%5sSnAs $SnAff=f)zValidate endpoint request and create endpoint response. :param name: Endpoint name :param request: HTTP request instance. :return: Response z There is no 'z ' endpoint.N)rr8create_endpoint_requestrgrrhandle_error_response)rrUr+r}rArQs r create_endpoint_response,AuthorizationServer.create_endpoint_responses  &tfK@A AOOD) !H66w?G B++Xg->??"%  B11'AA Bs$A B, B5B B Bc*[U[5(dURU5nU(d[SSS9 UR U5nUR5nURXR5nUR"U6nURSU5 U$![ a6nUR RUlURX5sSnA$SnAff=f![a6nUR RUlURX5nSnANSnAff=f)zValidate authorization request and create authorization response. :param request: HTTP request instance. :param grant_user: if granted, it is resource owner. If denied, it is None. :returns: Response z,The 'grant' parameter will become mandatory.z1.8)versionNafter_authorization_response)rxrr]rrr rrrvalidate_authorization_requestcreate_authorization_responsergr execute_hook)rr+ grant_userrrQrrVresponses r r1AuthorizationServer.create_authorization_response.s'=11009G De T B44W=  B ??AL66|PD++T2H 98D0 B%oo33 11'AA B B!////EK11'AH Bs5B 0C C+C C C D,D  DcHURU5nURU5nUR 5 UR 5nUR "U6$![anURX5sSnA$SnAff=f![anURX5sSnA$SnAff=f)zYValidate token request and create token response. :param request: HTTP request instance N)r]rr rvalidate_token_requestcreate_token_responsergr)rr+rrQrVs r r)AuthorizationServer.create_token_responseMs ,,W5 >((1E >  ( ( *..0D''. . ) >--g= = > >--g= = >s:A.A< A9A4.A94A9< B!BB!B!cJUR"U"URX556$r)rgrRrPs r r)AuthorizationServer.handle_error_response_s###U4+=+=g+M%NOOr")rrrrrrrr)NNNT)r*)NN)NNN)!__name__ __module__ __qualname____firstlineno____doc__rr'r,r:r=rBrGrLrRrXrr]r rargrmrur~r rrrrrrr__static_attributes__ __classcell__)rs@r rrs $$"" H#2J=1:1$ $ $$k$$*?&#     * DB(  <>$PPr"rcFU"X#5nU(aUH nU"U5 M U$rrO)rsrtr+rzrexts r rrcs% g &EC J Lr"N)authlib.common.errorsrauthlib.deprecaterrBrerrorsrrr r hooksr r requestsr rutilrrrrOr"r rs?3'5%-0!#PP(PPf r"