o h-@sddlZddlZddlmZmZddlmZddlmZddlm Z ddl m Z ddl m Z ejejZGdd d eZGd d d eZGd d d ZdS)N)datetime timedelta)settings)signing)timezone)get_random_string) import_stringc@eZdZdZdS) CreateErrorz Used internally as a consistent exception type to catch from save (see the docstring for SessionBase.save() for details). N__name__ __module__ __qualname____doc__rrg/var/www/html/optinet_system/venv/lib/python3.10/site-packages/django/contrib/sessions/backends/base.pyr sr c@r ) UpdateErrorzF Occurs if Django tries to update a session that was deleted. Nr rrrrrsrc@seZdZdZdZdZeZdVddZddZ d d Z d d Z d dZ e ddZdVddZefddZddZddZddZddZddZdd Zd!d"Zd#d$Zd%d&Zd'd(Zd)d*Zd+d,Zd-d.Zd/d0Zd1d2Zd3d4Z d5d6Z!d7d8Z"e e!Z#e e!e"Z$dWd:d;Z%e e%Z&dd?Z(d@dAZ)dBdCZ*dDdEZ+dFdGZ,dHdIZ-dJdKZ.dLdMZ/dWdNdOZ0dVdPdQZ1dRdSZ2e3dTdUZ4dS)X SessionBasez- Base class for all Session classes. testcookieworkedNcCs"||_d|_d|_ttj|_dS)NF) _session_keyaccessedmodifiedrrSESSION_SERIALIZER serializerself session_keyrrr__init__+szSessionBase.__init__cC ||jvSN_sessionrkeyrrr __contains__1 zSessionBase.__contains__cCs |j|Sr r!r#rrr __getitem__4r&zSessionBase.__getitem__cCs||j|<d|_dSNTr"rrr$valuerrr __setitem__7s  zSessionBase.__setitem__cCs|j|=d|_dSr(r)r#rrr __delitem__;s zSessionBase.__delitem__cCs d|jjS)Nzdjango.contrib.sessions.) __class__rrrrrkey_salt?s zSessionBase.key_saltcCs|j||Sr )r"get)rr$defaultrrrr1CszSessionBase.getcCs:|jp||jv|_||jurdn|f}|jj|g|RS)Nr)rr"_SessionBase__not_givenpop)rr$r2argsrrrr4FszSessionBase.popcCs(||jvr |j|Sd|_||j|<|Sr(r)r*rrr setdefaultKs   zSessionBase.setdefaultcCs|j||j<dSr )TEST_COOKIE_VALUETEST_COOKIE_NAMEr/rrrset_test_cookieSszSessionBase.set_test_cookiecCs||j|jkSr )r1r8r7r/rrrtest_cookie_workedVszSessionBase.test_cookie_workedcCs ||j=dSr )r8r/rrrdelete_test_cookieYs zSessionBase.delete_test_cookiecCstj||j|jddS)zGReturn the given session dictionary serialized and encoded as a string.T)saltrcompress)rdumpsr0r)r session_dictrrrencode\s zSessionBase.encodecCsTz tj||j|jdWStjy td}|dYiSty)YiSw)N)r<rz!django.security.SuspiciousSessionzSession data corrupted) rloadsr0r BadSignaturelogging getLoggerwarning Exception)r session_dataloggerrrrdecodees    zSessionBase.decodecCs|j|d|_dSr()r"updater)rdict_rrrrJss  zSessionBase.updatecCrr r!r#rrrhas_keywr&zSessionBase.has_keycC |jSr )r"keysr/rrrrNzr&zSessionBase.keyscCrMr )r"valuesr/rrrrO}r&zSessionBase.valuescCrMr )r"itemsr/rrrrPr&zSessionBase.itemscCsi|_d|_d|_dSr()_session_cacherrr/rrrclears zSessionBase.clearcCs(z |j o|j WStyYdSw)zBReturn True when there is no session_key and the session is empty.T)rrQAttributeErrorr/rrris_emptys  zSessionBase.is_emptycCs tdt}||s |Sq)z)Return session key that isn't being used.T )rVALID_KEY_CHARSexistsrrrr_get_new_session_keys   z SessionBase._get_new_session_keycCs|jdur ||_|jSr )rrXr/rrr_get_or_create_session_keys  z&SessionBase._get_or_create_session_keycCs|ot|dkS)z Key must be truthy and at least 8 characters long. 8 characters is an arbitrary lower bound for some minimal key security. )lenr#rrr_validate_session_keysz!SessionBase._validate_session_keycCs|jSr )_SessionBase__session_keyr/rrr_get_session_keyzSessionBase._get_session_keycCs||r ||_dSd|_dS)zV Validate session key on assignment. Invalid values will set to None. N)r\r]rr+rrr_set_session_keys   zSessionBase._set_session_keyFcCsLd|_z|jWSty%|jdus|ri|_Y|jS||_Y|jSw)z Lazily load session from storage (unless "no_load" is True, when only an empty dict is stored) and store it in the current instance. TN)rrQrSrload)rno_loadrrr _get_sessions  zSessionBase._get_sessioncCstjSr )rSESSION_COOKIE_AGEr/rrrget_session_cookie_ager_z"SessionBase.get_session_cookie_agecKsz|d}Wn tyt}Ynwz|d}Wnty(|d}Ynw|s/|St|ttfs8|St|trBt|}||}|j d|j S)zGet the number of seconds until the session expires. Optionally, this function accepts `modification` and `expiry` keyword arguments specifying the modification and expiry of the session. modificationexpiry_session_expiryiQ) KeyErrorrnowr1rf isinstancerstr fromisoformatdaysseconds)rkwargsrgrhdeltarrrget_expiry_ages$       zSessionBase.get_expiry_agecKsz|d}Wn tyt}Ynwz|d}Wnty(|d}Ynwt|tr0|St|tr:t|S|p?|}|t |dS)zGet session the expiry date (as a datetime object). Optionally, this function accepts `modification` and `expiry` keyword arguments specifying the modification and expiry of the session. rgrhri)rp) rjrrkr1rlrrmrnrfr)rrqrgrhrrrget_expiry_dates          zSessionBase.get_expiry_datecCs^|durz|d=WdStyYdSwt|tr t|}t|tr)|}||d<dS)a* Set a custom expiration for the session. ``value`` can be an integer, a Python ``datetime`` or ``timedelta`` object or ``None``. If ``value`` is an integer, the session will expire after that many seconds of inactivity. If set to ``0`` then the session will expire on browser close. If ``value`` is a ``datetime`` or ``timedelta`` object, the session will expire at that specific future time. If ``value`` is ``None``, the session uses the global session expiry policy. Nri)rjrlrrrkr isoformatr`rrr set_expirys     zSessionBase.set_expirycCs |d}dur tjS|dkS)a Return ``True`` if the session is set to expire when the browser closes, and ``False`` if there's an expiry date. Use ``get_expiry_date()`` or ``get_expiry_age()`` to find the actual expiry date/age, if there is one. riNr)r1rSESSION_EXPIRE_AT_BROWSER_CLOSE)rrhrrrget_expire_at_browser_closesz'SessionBase.get_expire_at_browser_closecCs||d|_dS)zc Remove the current session data from the database and regenerate the key. N)rRdeleterr/rrrflush!s zSessionBase.flushcCs0|j}|j}|||_|r||dSdS)zU Create a new session key, while retaining the current session data. N)r"rcreaterQry)rdatar$rrr cycle_key*szSessionBase.cycle_keycCtd)zF Return True if the given session_key already exists. z9subclasses of SessionBase must provide an exists() methodNotImplementedErrorrrrrrW7zSessionBase.existscCr~)z Create a new session instance. Guaranteed to create a new object with a unique key and will have saved the result once (with empty data) before the method returns. z8subclasses of SessionBase must provide a create() methodrr/rrrr{?zSessionBase.createcCr~)z Save the session data. If 'must_create' is True, create a new session object (or raise CreateError). Otherwise, only update an existing object and don't create one (raise UpdateError if needed). z6subclasses of SessionBase must provide a save() methodr)r must_createrrrsaveIrzSessionBase.savecCr~)zx Delete the session data under this key. If the key is None, use the current session key value. z8subclasses of SessionBase must provide a delete() methodrrrrrrySszSessionBase.deletecCr~)z@ Load the session data and return a dictionary. z6subclasses of SessionBase must provide a load() methodrr/rrrrb\rzSessionBase.loadcCr~)a Remove expired sessions from the session store. If this operation isn't possible on a given backend, it should raise NotImplementedError. If it isn't necessary, because the backend has a built-in expiration mechanism, it should be a no-op. z.This backend does not support clear_expired().r)clsrrr clear_expiredds zSessionBase.clear_expiredr )F)5r r rrr8r7objectr3rr%r'r,r-propertyr0r1r4r6r9r:r;r@rIrJrLrNrOrPrRrTrXrYr\r^rarrrdr"rfrsrtrvrxrzr}rWr{rryrb classmethodrrrrrr!sd            r)rCstringrr django.confr django.corer django.utilsrdjango.utils.cryptordjango.utils.module_loadingrascii_lowercasedigitsrVrFr rrrrrrs