o h@s.dZddlmZddlZddlZddlmZmZddlm Z ddl m Z ddl m Z ddlmZeGd d d ZeGd d d ZeGd ddZGdddejZeGdddZ dZdZdZdZdZGdddeZGdddeZGdddeZGdddeZGd d!d!eZd&d$d%Z dS)'zFConstants, types, and classes shared across OIDC auth implementations.) annotationsN) dataclassfield)Optional)quote)_get_azure_response)_get_gcp_responsec@:eZdZUded<eddZded<eddZded<dS) OIDCIdPInfostrZissuerNdefault Optional[str]clientIdzOptional[list[str]] requestScopes)__name__ __module__ __qualname____annotations__rrrrrK/var/www/html/venv/lib/python3.10/site-packages/pymongo/auth_oidc_shared.pyr  r c@sJeZdZUded<ded<ded<eddZd ed <eddZd ed <dS) OIDCCallbackContextfloattimeout_secondsr usernameintversionNr r refresh_tokenzOptional[OIDCIdPInfo]idp_info)rrrrrrrrrrrr$s rc@r ) OIDCCallbackResultr access_tokenNr zOptional[float]expires_in_secondsrr)rrrrrr"rrrrrr -rr c@s eZdZdZejd ddZdS) OIDCCallbackz)A base class for defining OIDC callbacks.contextrreturnr cCsdS)z/Convert the given BSON value into our own type.Nrselfr$rrrfetch7szOIDCCallback.fetchNr$rr%r )rrr__doc__abcabstractmethodr(rrrrr#4sr#c@steZdZUeddZded<eddZded<eddZded<eedZ d ed <eddZ ded <d Z d ed<dS)_OIDCPropertiesNr zOptional[OIDCCallback]callbackhuman_callbackr environment)default_factoryz list[str] allowed_hoststoken_resourcer r) rrrrr.rr/r0listr2r3rrrrrr-<s r-i,<g?c@eZdZdddZdS) _OIDCTestCallbackr$rr%r cCVtjd}|s tdt|}t|dWdS1s$wYdS)NZOIDC_TOKEN_FILEzIMONGODB-OIDC with an "test" provider requires "OIDC_TOKEN_FILE" to be setr!osenvironget RuntimeErroropenr readstripr'r$Z token_filefidrrrr(P  $z_OIDCTestCallback.fetchNr)rrrr(rrrrr:Or:c@r9) _OIDCAWSCallbackr$rr%r cCr;)NAWS_WEB_IDENTITY_TOKEN_FILEzTMONGODB-OIDC with an "aws" provider requires "AWS_WEB_IDENTITY_TOKEN_FILE" to be setr<r=rErrrr([rGz_OIDCAWSCallback.fetchNr)rHrrrrrJZrIrJc@ eZdZd ddZdd d Zd S)_OIDCAzureCallbackr3r r%NonecCt||_dSNrr3r'r3rrr__init__fz_OIDCAzureCallback.__init__r$rr cCs&t|j|j|j}t|d|ddS)Nr!Z expires_in)r!r")rr3rrr r'r$resprrrr(is z_OIDCAzureCallback.fetchNr3r r%rNr)rrrrSr(rrrrrMe rMc@rL)_OIDCGCPCallbackr3r r%rNcCrOrPrQrRrrrrSqrTz_OIDCGCPCallback.__init__r$rr cCst|j|j}t|ddS)Nr!r<)rr3rr rUrrrr(tsz_OIDCGCPCallback.fetchNrWr)rXrrrrrZprYrZc@r9) _OIDCK8SCallbackr$rr%r cCs ttdS)Nr<)r _get_k8s_tokenr&rrrr(zs z_OIDCK8SCallback.fetchNr)rHrrrrr[yrIr[r%r cCsVd}dD] }|tjvrtj|}qt| }|WdS1s$wYdS)Nz3/var/run/secrets/kubernetes.io/serviceaccount/token)ZAZURE_FEDERATED_TOKEN_FILErK)r>r?rBrC)fnamekeyrFrrrr\~s   $r\)r%r )!r* __future__rr+r> dataclassesrrtypingr urllib.parserZpymongo._azure_helpersrZpymongo._gcp_helpersrr rr ABCr#r-ZTOKEN_BUFFER_MINUTESZHUMAN_CALLBACK_TIMEOUT_SECONDSZCALLBACK_VERSIONZ MACHINE_CALLBACK_TIMEOUT_SECONDSZTIME_BETWEEN_CALLS_SECONDSr:rJrMrZr[r\rrrrs<