o &zh:@sddlZddlZddlZddlZddlZddlZddlmZddlm Z ddl m Z ddl m Z ddlmZddlmZmZdZd"d ed efd d Zd#ded efddZd eefddZdeded efddZded efddZded efddZdeded efddZGd d!d!ZdS)$N)Iterator)cache)context) app_settings) Authenticator)decryptencryptzmfa.totp.secretlengthreturncCst|}t|dS)Nzutf-8)secrets token_bytesbase64 b32encodedecode)r random_bytesrY/var/www/html/kangema/venv/lib/python3.10/site-packages/allauth/mfa/totp/internal/auth.pygenerate_totp_secrets rF regeneratecCs0d}|s tjjt}|st}tjjt<|SN)rrequestsessiongetSECRET_SESSION_KEYr)rsecretrrrget_totp_secrets rccs@tt}|tj}ttj tjdD]}||VqdS)N)inttimer TOTP_PERIODrangeTOTP_TOLERANCE) current_timecounterirrryield_hotp_counters_from_time"s    r&rr$cCstd|}tj|ddd}t||tj }|dd@}t |||d}|dd @|d<t d |d}|d t j ;}|S) Nz>QasciiT)casefoldrz>I )structpackr b32decodeencodehmacnewhashlibsha1digest bytearrayunpackr TOTP_DIGITS)rr$ counter_bytes secret_enc hmac_resultoffsettruncated_hashvaluerrr hotp_value)s  r@r?cCs|dtjS)N0)rr9)r?rrrformat_hotp_value;srBcodecCst|otj|kSr)boolrTOTP_INSECURE_BYPASS_CODE)rCrrr_is_insecure_bypass?srFcCs<t|rdSt}|D]}t||}|t|krdSq dS)NTF)rFr&r@rB)rrCcountersr$r?rrrvalidate_totp_codeCs  rHc@s|eZdZdeddfddZededdfddZd edefd d Z d edefd d Z d edefddZ d eddfddZ dS)TOTPinstancer NcCs ||_dSr)rJ)selfrJrrr__init__Os z TOTP.__init__rcCs*t|tjjdt|id}|||S)Nr)usertypedata)rTyperIrsave)clsrMrrJrrractivateRs z TOTP.activaterCcCsFt|rdS||r dSt|jjd}t||}|r!|||S)NTFr)rF _is_code_usedrrJrOrH_mark_code_used)rKrCrvalidrrr validate_codeZs   zTOTP.validate_codecCsd|jjd|S)Nzallauth.mfa.totp.used?user=z&code=)rJuser_idrKrCrrr_get_used_cache_keyfzTOTP._get_used_cache_keycCst||dkS)Ny)rrrZrYrrrrTir[zTOTP._is_code_usedcCstj||dtjddS)Nr\)timeout)rsetrZrr rYrrrrUlszTOTP._mark_code_used) __name__ __module__ __qualname__rrL classmethodstrrSrDrWrZrTrUrrrrrINs rI)r )F)rr4r2r r.rtypingrdjango.core.cacher allauth.corer allauth.mfarallauth.mfa.modelsrallauth.mfa.utilsrrrrrcrrDrr&r@rBrFrHrIrrrrs*