o &zhK @svddlZddlmZmZmZddlmZddlZddlm Z ddl m Z m Z ddZ Gdd d ZGd d d e ZdS) N) parse_qslquote urlencode)ImproperlyConfigured) get_adapter) OAuth2Client OAuth2ErrorcOs(tj|i|}t|tr|d}|S)Nzutf-8)jwtencode isinstancebytesdecode)argskwargsresprg/var/www/html/kangema/venv/lib/python3.10/site-packages/allauth/socialaccount/providers/apple/client.py jwt_encode s  rc@seZdZdZdZdS)ScopeemailnameN)__name__ __module__ __qualname__EMAILNAMErrrrrsrc@s2eZdZdZddZddZd ddZd d ZdS) AppleOAuth2Clientz Custom client because `Sign In With Apple`: * requires `response_mode` field in redirect_url * requires special `client_secret` as JWT cCstt}t|j|jd}|jstd|jd}|s#td|jd| ||dd}|j dd }t ||d|d }|S) z6Create a JWT signed with an apple provided private keyapplezApple 'key' missingcertificate_keyzApple 'certificate_key' missingzhttps://appleid.apple.comi)issaudsubiatexpES256)kidalg)payloadkey algorithmheaders) inttimerrequestget_appr(rsettingsget get_client_idconsumer_secretr)selfnowapprclaimsr* client_secretrrrgenerate_client_secret s$   z(AppleOAuth2Client.generate_client_secretcCs|jddS)zCWe support multiple client_ids, but use the first one for api calls,r) consumer_keysplit)r3rrrr16szAppleOAuth2Client.get_client_idNcCs|j}|}||d|j|d}|r||d<||tj|j|||j d}d}|j dvrIz| }Wnt yHt t|j}Ynw|rOd|vrVtd|j|S)Nauthorization_code) client_idcode grant_type redirect_urir7 code_verifier)datar*) access_tokenz!Error retrieving access token: %s)access_token_urlr8r1 callback_url_strip_empty_keysrget_requests_sessionr-access_token_methodr* status_codejson ValueErrordictrtextrcontent)r3r>pkce_code_verifierurlr7rBrrErrrget_access_token:s4     z"AppleOAuth2Client.get_access_tokencCsT|jt|}||jd|dd}|jr|j|d<||d|t|tdfS)N form_postz code id_token)r=r@ response_modescope response_typestatez%s?%s) quote_via) scope_delimiterjoinsetr1rGrXupdaterr)r3authorization_urlrV extra_paramsparamsrrrget_redirect_urlVs  z"AppleOAuth2Client.get_redirect_url)N)rrr__doc__r8r1rSrarrrrrs   r)r, urllib.parserrrdjango.core.exceptionsrr allauth.socialaccount.adapterr-allauth.socialaccount.providers.oauth2.clientrrrrrrrrrs