o &zh @sddlZddlmZddlmZddlmZddlmZm Z ddl m Z m Z ddl mZddlmZdd lmZeGd d d Zd ed efddZde d eefddZdeed efddZde d ede d dfddZde d ed efddZdS)N) dataclass)List) AbstractUser) BadSignatureSigner) HttpRequest HttpResponse) salted_hmac) app_settings) Authenticatorc@seZdZUeed<eed<dS) IssuedTrust fingerprintatN)__name__ __module__ __qualname__str__annotations__intrr[/var/www/html/kangema/venv/lib/python3.10/site-packages/allauth/mfa/internal/flows/trust.pyr s  r userreturncCsd}g}|t|j||jtjj|jddD]#}|t|j|t|j|j d}|dur@|t|qt |d |dd S) z| If the user changes anything about his security setup, we want to invalidate any trust that was issued before. zallauth.mfa.trust)user_idpkseedN|sha256) algorithm)appendrrpasswordr objectsfilterorder_bytypedatagetr join hexdigest)rsaltparts authenticatorrrrrcreate_config_fingerprints  r,requestcsr|jtj}|s gSt}z||}Wn ty gYSwdd|D}ttt fdd|}|S)NcSs g|] }t|d|ddqS)rr r)r ).0entryrrr /s z'decode_trust_cookie..cs|jtjkS)N)rr TRUST_COOKIE_AGE total_seconds)tnowrr3sz%decode_trust_cookie..) COOKIESr&r TRUST_COOKIE_NAMEr unsign_objectrtimelistr")r-valuesignerr%trustsrr6rdecode_trust_cookie&s"  rAr@cCst}|dd|DS)NcSsg|]}|j|jfqSrr/)r0itrrrr2;sz'encode_trust_cookie..)r sign_object)r@r?rrrencode_trust_cookie9srDresponsec CsVt|}t|}|t|ttd|jtjt |tj tj tj tj tjddS)Nr/)max_agepathdomainsecurehttponly)r,rArr rr< set_cookier r:rDr3TRUST_COOKIE_PATHTRUST_COOKIE_DOMAINTRUST_COOKIE_SECURETRUST_COOKIE_HTTPONLY)r-rrEr r@rrr trust_browser>s rPcs0tjsdSt|}t|tfdd|DS)NFcsg|]}|jkqSrr )r0r5rQrrr2Tsz&is_trusted_browser..)r TRUST_ENABLEDrAr,any)r-rr@rrQris_trusted_browserOs rT)r< dataclassesrtypingrdjango.contrib.auth.modelsrdjango.core.signingrr django.httprrdjango.utils.cryptor allauth.mfar allauth.mfa.modelsr r rr,rArDrPboolrTrrrrs0