o h@sddlZddlmZddlmZddlmZddlmZddl m Z ddl m Z ddl mZdd lmZdd lmZGd d d e ZGd ddeZegZdS)N)reverse) urlencode) EmailAddress) get_adapter)jwtkit)ProviderAccount) OAuth2Error)OAuth2Provider)OpenIDConnectOAuth2Adapterc@s eZdZdS)OpenIDConnectProviderAccountN)__name__ __module__ __qualname__rrn/var/www/html/pos/venv/lib/python3.10/site-packages/allauth/socialaccount/providers/openid_connect/provider.pyr sr cseZdZdZdZeZeZdZ fddZ e ddZ dd Z d d Zd d Ze ddZddZddZddZddZddZddZZS)OpenIDConnectProvideropenid_connectzOpenID ConnectTcs tj|i||jj|_dSN)super__init__appname)selfargskwargs __class__rrrszOpenIDConnectProvider.__init__cCs|jjd}||S)N server_url)rsettings wk_server_url)rurlrrrr s  z OpenIDConnectProvider.server_urlcCsd}d|vr ||7}|S)Nz!/.well-known/openid-configurationz /.well-known/r)rr well_known_urirrrr%sz#OpenIDConnectProvider.wk_server_urlcKs4t|jjdd|jjid}|r|dt|}|S)N_login provider_idr?)rrproviderr#r)rrequestrr rrr get_login_url+s z#OpenIDConnectProvider.get_login_urlcCst|jjdd|jjidS)N _callbackr#r$)rrr&r#rrrrget_callback_url3s  z&OpenIDConnectProvider.get_callback_urlcCs|jjdS)Ntoken_auth_method)rrgetr*rrrr,9sz'OpenIDConnectProvider.token_auth_methodcCsgdS)N)openidprofileemailrr*rrrget_default_scope=sz'OpenIDConnectProvider.get_default_scopecCs t|dS)Nsub)strrdatarrr extract_uid@s z!OpenIDConnectProvider.extract_uidc Cs@t|d|d|d|d|d|d|ddS) Nr0preferred_usernameruser_idpicture family_name given_name)r0usernamerr8r9 last_name first_name)dictr-r4rrrextract_common_fieldsCsz+OpenIDConnectProvider.extract_common_fieldscCs2g}|d}|r|t||dddd|S)Nr0email_verifiedFT)r0verifiedprimary)r-appendr)rr5 addressesr0rrrextract_email_addressesNs  z-OpenIDConnectProvider.extract_email_addressescCs|||jjSr)oauth2_adapter_classrr#)rr'rrrget_oauth2_adapter[sz(OpenIDConnectProvider.get_oauth2_adapterc Cs|d}|s tdz||}|j}tj||d|d|jjgtj d}Wnt t j fy?}ztd|d}~ww| ||}|S)Nid_token invalid_tokenjwks_uriissuer) credentialkeys_urlrLaudience lookup_kid)r-rvalidation_errorrH openid_configrverify_and_decoder client_idlookup_kid_jwkrrequestsRequestExceptionsociallogin_from_response) rr'tokenrIoauth2_adapterrR identity_dataeloginrrr verify_token^s&     z"OpenIDConnectProvider.verify_token)r r ridrr account_classr rGsupports_token_authenticationrpropertyrrr(r+r,r1r6r@rFrHr^ __classcell__rrrrrs(     r)rV django.urlsrdjango.utils.httprallauth.account.modelsrallauth.socialaccount.adapterrallauth.socialaccount.internalr$allauth.socialaccount.providers.baser-allauth.socialaccount.providers.oauth2.clientr/allauth.socialaccount.providers.oauth2.providerr 4allauth.socialaccount.providers.openid_connect.viewsr r rprovider_classesrrrrs          ]