&`DNdZddlmZddlmZddlmZddlmZGdd eZ y ) z oauthlib.oauth1.rfc5849.endpoints.authorization ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This module is an implementation of various logic needed for signing and checking OAuth 1.0 RFC 5849 requests. ) urlencode)add_params_to_uri)errors) BaseEndpointc.eZdZdZdZ ddZ ddZy)AuthorizationEndpointaAn endpoint responsible for letting authenticated users authorize access to their protected resources to a client. Typical use would be to have two views, one for displaying the authorization form and one to process said form on submission. The first view will want to utilize ``get_realms_and_credentials`` to fetch requested realms and useful client credentials, such as name and description, to be used when creating the authorization form. During form processing you can use ``create_authorization_response`` to validate the request, create a verifier as well as prepare the final redirection URI used to send the user back to the client. See :doc:`/oauth1/validator` for details on which validator methods to implement for this endpoint. c|j|jd}|j||jj |j|||S)zCreate and save a new request token. :param request: OAuthlib request. :type request: oauthlib.common.Request :param credentials: A dict of extra token credentials. :returns: The verifier as a dict. ) oauth_tokenoauth_verifier)resource_owner_keytoken_generatorupdaterequest_validator save_verifier)selfrequest credentialsverifiers Q/usr/lib/python3/dist-packages/oauthlib/oauth1/rfc5849/endpoints/authorization.pycreate_verifierz%AuthorizationEndpoint.create_verifier%sT#55"224   $ ,,  & &' ;Nc|j||||}|jstjd|jj |j|stj ||_|jrG|jj|j|j|stjd|j||xsi}|jj|j|} | dk(rddi} t|} | | dfSt| |j} d | id d fS) axCreate an authorization response, with a new request token if valid. :param uri: The full URI of the token request. :param http_method: A valid HTTP verb, i.e. GET, POST, PUT, HEAD, etc. :param body: The request body as a string. :param headers: The request headers as a dict. :param credentials: A list of credentials to include in the verifier. :returns: A tuple of 3 elements. 1. A dict of headers to set on the response. 2. The response body as a string. 3. The response status code as an integer. If the callback URI tied to the current token is "oob", a response with a 200 status code will be returned. In this case, it may be desirable to modify the response to better display the verifier to the client. An example of an authorization request:: >>> from your_validator import your_validator >>> from oauthlib.oauth1 import AuthorizationEndpoint >>> endpoint = AuthorizationEndpoint(your_validator) >>> h, b, s = endpoint.create_authorization_response( ... 'https://your.provider/authorize?oauth_token=...', ... credentials={ ... 'extra': 'argument', ... }) >>> h {'Location': 'https://the.client/callback?oauth_verifier=...&extra=argument'} >>> b None >>> s 302 An example of a request with an "oob" callback:: >>> from your_validator import your_validator >>> from oauthlib.oauth1 import AuthorizationEndpoint >>> endpoint = AuthorizationEndpoint(your_validator) >>> h, b, s = endpoint.create_authorization_response( ... 'https://your.provider/authorize?foo=bar', ... credentials={ ... 'extra': 'argument', ... }) >>> h {'Content-Type': 'application/x-www-form-urlencoded'} >>> b 'oauth_verifier=...&extra=argument' >>> s 200  http_methodbodyheadersz(Missing mandatory parameter oauth_token.zEUser granted access to realms outside of what the client may request.) descriptionoobz Content-Typez!application/x-www-form-urlencodedLocationNi.)_create_requestrrInvalidRequestErrorrverify_request_tokenInvalidClientErrorrealms verify_realmsrget_redirect_urirritems) rurirrrr'rrr redirect_uriresponse_headers response_bodypopulated_redirects rcreate_authorization_responsez3AuthorizationEndpoint.create_authorization_response6sOh&&s $/6'8)),,:< <%%::**G5++- - NN4#9#9#G#G**GNNG$E,,<> >''1BC-->>  & &1 5  C E %h/M#]C7 7!2hnn."0  23T3> >rc |j||||}|jj|j|st j |jj |j|}|d|jifS)aFetch realms and credentials for the presented request token. :param uri: The full URI of the token request. :param http_method: A valid HTTP verb, i.e. GET, POST, PUT, HEAD, etc. :param body: The request body as a string. :param headers: The request headers as a dict. :returns: A tuple of 2 elements. 1. A list of request realms. 2. A dict of credentials which may be useful in creating the authorization form. rr)r#rr%rrr& get_realms)rr+rrrrr's rget_realms_and_credentialsz0AuthorizationEndpoint.get_realms_and_credentialss&&s $/6'8%%::**G5++- -''22  & &1,g.H.HIIIr)GETNNNN)r4NN)__name__ __module__ __qualname____doc__rr0r3rrr r s-$"JNMQP?dGK+/Jrr N) r8 urllib.parseroauthlib.commonrrbaserr r9rrr>s(#-MJLMJr