a !f@sdZddlZddlZddlZddlmZddlmZddlmZddl m Z ddl m Z ddl mZddlZdd lmZdd lmZdd lmZdd lmZdd lmZdZdZdddZddZddZddZdS)a2This module contains the views used by the OAuth2 flows. Their are two views used by the OAuth2 flow, the authorize and the callback view. The authorize view kicks off the three-legged OAuth flow, and the callback view validates the flow and if successful stores the credentials in the configured storage.N)http) shortcuts)settings) urlresolvers)redirect)html)parse)client) django_util) get_storage)signalsZgoogle_oauth2_csrf_tokenzgoogle_oauth2_flow_{0}c Cstttd}||jt<t||d}t j t j j t j j|||tdd}t|}t||j|<|S)aMCreates a Web Server Flow Args: request: A Django request object. scopes: the request oauth2 scopes. return_url: The URL to return to after the flow is complete. Defaults to the path of the current request. Returns: An OAuth2 flow object that has been stored in the session. i) csrf_token return_urlzgoogle_oauth:callback) client_id client_secretscopestateZ redirect_uri)hashlibsha256osurandom hexdigestsession _CSRF_KEYjsondumpsr ZOAuth2WebServerFlowr oauth2_settingsrrZbuild_absolute_urirreverse _FLOW_KEYformat jsonpickleencode)requestscopesrr rflowZflow_keyr%g/var/www/html/python-backend/venv/lib/python3.9/site-packages/oauth2client/contrib/django_util/views.py _make_flow,s$   r'cCs*|jt|d}|dur dSt|S)a Looks up the flow in session to recover information about requested scopes. Args: csrf_token: The token passed in the callback request that should match the one previously generated and stored in the request on the initial authorization view. Returns: The OAuth2 Flow object associated with this flow based on the CSRF token. N)rgetrrr decode)r r"Z flow_pickler%r%r&_get_flow_for_tokenOs r*c Cs~d|jvr<|jd|jdd}t|}td|Sz|jd}|jd}WntyptdYS0z|jt }WntytdYS0zt |}|d }|d }Wn t tfytd YS0||krtd St ||}|s td Sz||} Wn8tjyP} ztd| WYd} ~ Sd} ~ 00t|| tjjtj|| dt|S)a View that handles the user's return from OAuth2 provider. This view verifies the CSRF state and OAuth authorization code, and on success stores the credentials obtained in the storage provider, and redirects to the return_url specified in the authorize view and stored in the session. Args: request: Django request. Returns: A redirect response back to the return_url. errorZerror_descriptionzAuthorization failed {0}rcodez+Request missing state or authorization codez"No existing session for this flow.r rzInvalid state parameter.zInvalid CSRF token.zMissing Oauth2 flow.zAn error has occurred: {0}N)Zsenderr" credentials)GETr(rescaperZHttpResponseBadRequestrKeyErrorrrrloads ValueErrorr*Zstep2_exchanger ZFlowExchangeErrorr putr Zoauth2_authorizedsendrr) r"reasonZ encoded_stater-Z server_csrfrZ client_csrfrr$r.Zexchange_errorr%r%r&oauth2_callback`sV             r7cCs|jdd}|s |jdd}|jdtjj}tjjr~|j s`t d t j t|St|||}|r~t |St|||d}|}t |S)a View to start the OAuth2 Authorization flow. This view starts the OAuth2 authorization flow. If scopes is passed in as a GET URL parameter, it will authorize those scopes, otherwise the default scopes specified in settings. The return_url can also be specified as a GET parameter, otherwise the referer header will be checked, and if that isn't found it will return to the root path. Args: request: The Django request object. Returns: A redirect to Google OAuth2 Authorization. rNZ HTTP_REFERER/r#z {0}?next={1})r"r#r)r/r(ZMETAgetlistr rr#Z storage_modeluseris_authenticatedrrrZ LOGIN_URLrquoteZ get_full_pathZ UserOAuth2Zhas_credentialsr'Zstep1_get_authorize_urlr)r"rr#Z user_oauthr$Zauth_urlr%r%r&oauth2_authorizes r=)N)__doc__rrrdjangorrZ django.confrZ django.corerZdjango.shortcutsrZ django.utilsrr Zsix.moves.urllibrZ oauth2clientr Zoauth2client.contribr Z oauth2client.contrib.django_utilr r rrr'r*r7r=r%r%r%r&s*            #?