k7i!nSSKJr SSKJr SSKJr SSKJr SSKJr SSK J r SSK J r "S S \ 5r g ) )ContinueIteration)default_json_headers)ExpiredTokenError)InvalidClaimError)InvalidTokenError)JWTBearerTokenValidator)IntrospectionEndpointc^^\rSrSrSrSrS U4SjjrSrSrSr Sr S \ S \ 4S jr S r U=r$)JWTIntrospectionEndpoint aJWTIntrospectionEndpoint inherits from :ref:`specs/rfc7662` :class:`~authlib.oauth2.rfc7662.IntrospectionEndpoint` and implements the machinery to automatically process the JWT access tokens. :param issuer: The issuer identifier for which tokens will be introspected. :param \\*\\*kwargs: Other parameters are inherited from :class:`~authlib.oauth2.rfc7662.introspection.IntrospectionEndpoint`. :: class MyJWTAccessTokenIntrospectionEndpoint(JWTIntrospectionEndpoint): def get_jwks(self): ... def get_username(self, user_id): ... # endpoint dedicated to JWT access token introspection authorization_server.register_endpoint( MyJWTAccessTokenIntrospectionEndpoint( issuer="https://authorization-server.example.org", ) ) # another endpoint dedicated to refresh token introspection authorization_server.register_endpoint(MyRefreshTokenIntrospectionEndpoint) introspectionc6>[TU]"USU0UD6 Xlg)Nserver)super__init__issuer)selfrrargskwargs __class__s ^/home/james-whalen/.local/lib/python3.13/site-packages/authlib/oauth2/rfc9068/introspection.pyr!JWTIntrospectionEndpoint.__init__,s $8v88 czURU5nURX5nURU5nSU[4$))authenticate_endpoint_clientauthenticate_tokencreate_introspection_payloadr)rrequestclienttokenbodys rcreate_endpoint_response1JWTIntrospectionEndpoint.create_endpoint_response0sF227;''8007D...rc|URX5 URRS5S;a [5e[ UR SS9nUR UlURURS5nU(aURXBU5(aU$gg![an[5UeSnAff=f)rtoken_type_hint) access_tokenNN)rresource_serverr#) check_paramsformgetrrrget_jwksrrcheck_permission)rr!r" validatorr#excs rr+JWTIntrospectionEndpoint.authenticate_token=s '* <<  - .6L L#% %+4;;PTU !]]  /00g1FGE T**5'BBLC5! /#%3 . /s!B!! B;+ B66B;c LU(dSS0$UR5 SSUSUSUSUS USUS US S . nUR US5=n(aXCS 'U$![a SS0s$[a+nURS:Xa [ 5Ue[ 5UeSnAff=f)NactiveFissTBearer client_idscopesubaudexpiat) r4 token_typer7r8r9r:r5r;r<username)validaterr claim_namerr get_username)rr#r1payloadr>s rr 5JWTIntrospectionEndpoint.create_introspection_payloadQse$ $ / NN "{+7^<<<<<  ((u6 68 6"*J -! %e$ $  /~~&')s2#%3 . /sAB#/ B#8&BB#c[5e)zReturn the JWKs that will be used to check the JWT access token signature. Developers MUST re-implement this method:: def get_jwks(self): return load_jwks("jwks.json") )NotImplementedError)rs rr.!JWTIntrospectionEndpoint.get_jwksos "##ruser_idreturncg)zReturns an username from a user ID. Developers MAY re-implement this method:: def get_username(self, user_id): return User.get(id=user_id).username N)rrGs rrA%JWTIntrospectionEndpoint.get_usernamexsr)r)N)__name__ __module__ __qualname____firstlineno____doc__ ENDPOINT_NAMErr%rr r.strrA__static_attributes__ __classcell__)rs@rr r s@<$M /(<$CCrr N)authlib.common.errorsrauthlib.constsrauthlib.jose.errorsrrauthlib.oauth2.rfc6750.errorsr&authlib.oauth2.rfc9068.token_validatorrrfc7662r r rJrrr[s)3/11;J+t4tr