o ˷ex @sddlZddlmZmZddlmZmZmZddlmZddl Z ddl m Z ddl m Z mZddZGd d d eZGd d d e ZdS) N)datetime timedelta) parse_qslquote urlencode)ImproperlyConfigured) get_adapter) OAuth2Client OAuth2ErrorcOs(tj|i|}t|tr|d}|S)Nzutf-8)jwtencode isinstancebytesdecode)argskwargsresprc/var/www/ideatree/venv/lib/python3.10/site-packages/allauth/socialaccount/providers/apple/client.py jwt_encodes  rc@seZdZdZdZdS)ScopeemailnameN)__name__ __module__ __qualname__EMAILNAMErrrrrsrc@s0eZdZdZddZddZddZdd Zd S) AppleOAuth2Clientz Custom client because `Sign In With Apple`: * requires `response_mode` field in redirect_url * requires special `client_secret` as JWT cCsvt}t|jd}|jstd|jstd|jd|||t ddd}|j dd }t ||jd|d }|S) z6Create a JWT signed with an apple provided private keyapplezApple 'key' missingzApple 'certificate_key' missingzhttps://appleid.apple.com)hours)issaudsubiatexpES256)kidalg)payloadkey algorithmheaders) rutcnowrget_apprequestr+rcertificate_key get_client_idrconsumer_secretr)selfnowappclaimsr- client_secretrrrgenerate_client_secret$s"   z(AppleOAuth2Client.generate_client_secretcCs|jddS)zCWe support multiple client_ids, but use the first one for api calls,r) consumer_keysplit)r4rrrr29szAppleOAuth2Client.get_client_idcCs|j}|}||d|j|d}||tj|j|||jd}d}|j dvr@z| }Wnt y?t t |j}Ynw|rFd|vrMtd|j|S)Nauthorization_code) client_idcode grant_type redirect_urir8)datar-) access_tokenz!Error retrieving access token: %s)access_token_urlr9r2 callback_url_strip_empty_keysrequestsr0access_token_methodr- status_codejson ValueErrordictrtextr content)r4r?urlr8rBrrErrrget_access_token=s,      z"AppleOAuth2Client.get_access_tokencCsF||jd|jdd}|jr|j|d<||d|t|tdfS)N form_postz code id_token)r>rA response_modescope response_typestatez%s?%s) quote_via)r2rGrUrWupdaterr)r4authorization_url extra_paramsparamsrrrget_redirect_urlUs  z"AppleOAuth2Client.get_redirect_urlN)rrr__doc__r9r2rRr]rrrrrs  r)rIrr urllib.parserrrdjango.core.exceptionsrr allauth.socialaccount.adapterr-allauth.socialaccount.providers.oauth2.clientr r robjectrrrrrrs