ó æk7i°ãóx•SSKrSSKJr SSKJr SSKJr SSKJr \R"\ 5r "SS \\5r g) éNé)ÚUnauthorizedClientError)Úhookedé)Ú BaseGrant)ÚTokenEndpointMixincó2•\rSrSrSrSrSr\S5rSr g)ÚClientCredentialsGranté a„The client can request an access token using only its client credentials (or other supported means of authentication) when the client is requesting access to the protected resources under its control, or those of another resource owner that have been previously arranged with the authorization server. The client credentials grant type MUST only be used by confidential clients:: +---------+ +---------------+ | | | | | |>--(A)- Client Authentication --->| Authorization | | Client | | Server | | |<--(B)---- Access Token ---------<| | | | | | +---------+ +---------------+ https://tools.ietf.org/html/rfc6749#section-4.4 Úclient_credentialscó•UR5n[RSU5 URUR5(d[ SURS35eXR lUR5 g)avThe client makes a request to the token endpoint by adding the following parameters using the "application/x-www-form-urlencoded" format per Appendix B with a character encoding of UTF-8 in the HTTP request entity-body: grant_type REQUIRED. Value MUST be set to "client_credentials". scope OPTIONAL. The scope of the access request as described by Section 3.3. The client MUST authenticate with the authorization server as described in Section 3.2.1. For example, the client makes the following HTTP request using transport-layer security (with extra line breaks for display purposes only): .. code-block:: http POST /token HTTP/1.1 Host: server.example.com Authorization: Basic czZCaGRSa3F0MzpnWDFmQmF0M2JW Content-Type: application/x-www-form-urlencoded grant_type=client_credentials The authorization server MUST authenticate the client. zValidate token request of %rz0The client is not authorized to use 'grant_type=Ú'N) Ú"authenticate_token_endpoint_clientÚlogÚdebugÚcheck_grant_typeÚ GRANT_TYPErÚrequestÚclientÚvalidate_requested_scope)Úselfrs Új/home/james-whalen/.local/lib/python3.13/site-packages/authlib/oauth2/rfc6749/grants/client_credentials.pyÚvalidate_token_requestÚ-ClientCredentialsGrant.validate_token_request"sn€ðB×8Ñ8Ó:ˆÜ ‰ Ð0°&Ô9à×&Ñ& t§¡×7Ñ7Ü)ØBÀ4Ç?Á?ÐBSÐSTÐUóð ð% ‰ ÔØ ×%Ñ%Õ'ócóÜ•URURRRSS9n[R SXR 5 URU5 SXR4$)a¤If the access token request is valid and authorized, the authorization server issues an access token as described in Section 5.1. A refresh token SHOULD NOT be included. If the request failed client authentication or is invalid, the authorization server returns an error response as described in Section 5.2. An example successful response: .. code-block:: http HTTP/1.1 200 OK Content-Type: application/json Cache-Control: no-store Pragma: no-cache { "access_token":"2YotnFZFEjr1zCsicMWpAA", "token_type":"example", "expires_in":3600, "example_parameter":"example_value" } :returns: (status_code, body, headers) F)ÚscopeÚinclude_refresh_tokenzIssue token %r to %réÈ) Úgenerate_tokenrÚpayloadrrrrÚ save_tokenÚTOKEN_RESPONSE_HEADER)rÚtokens rÚcreate_token_responseÚ,ClientCredentialsGrant.create_token_responseNs`€ð4×#Ñ#Ø—,‘,×&Ñ&×,Ñ,ÀEð$ð ˆô ‰ Ð(¨%·±Ô=Ø ‰˜ÔØE×5Ñ5Ð5Ð5r©N) Ú__name__Ú __module__Ú __qualname__Ú__firstlineno__Ú__doc__rrrr%Ú__static_attributes__r'rrr r s(†ñð(&€Jò*(ðX ñ6ó ó6rr ) ÚloggingÚerrorsrÚhooksrÚbaserrÚ getLoggerr(rr r'rrÚr3s5ðÛå,ÝÝÝ$à ×Ò˜Ó!€ôb6˜YÐ(:õb6r