o ¾­§i½ ã@sLddlmZmZmZddlmZddlmZddlm Z Gdd„de ƒZ dS) é)ÚCallableÚOptionalÚAny)ÚAccessTokenInfoé)Ú AadClient)Ú GetTokenMixinc s”eZdZdZdededegefdeddf ‡fdd „ Zdd d „Zd eddfd d„Z ddd„Z dedede e fdd„Z dedede fdd„Z‡ZS)ÚClientAssertionCredentialaÏAuthenticates a service principal with a JWT assertion. This credential is for advanced scenarios. :class:`~azure.identity.CertificateCredential` has a more convenient API for the most common assertion scenario, authenticating a service principal with a certificate. :param str tenant_id: ID of the principal's tenant. Also called its "directory" ID. :param str client_id: The principal's client ID :param func: A callable that returns a string assertion. The credential will call this every time it acquires a new token. :paramtype func: Callable[[], str] :keyword str authority: Authority of a Microsoft Entra endpoint, for example "login.microsoftonline.com", the authority for Azure Public Cloud (which is the default). :class:`~azure.identity.AzureAuthorityHosts` defines authorities for other clouds. :keyword cache_persistence_options: configuration for persistent token caching. If unspecified, the credential will cache tokens in memory. :paramtype cache_persistence_options: ~azure.identity.TokenCachePersistenceOptions :keyword List[str] additionally_allowed_tenants: Specifies tenants in addition to the specified "tenant_id" for which the credential may acquire tokens. Add the wildcard value "*" to allow the credential to acquire tokens for any tenant the application can access. .. admonition:: Example: .. literalinclude:: ../samples/credential_creation_code_snippets.py :start-after: [START create_client_assertion_credential] :end-before: [END create_client_assertion_credential] :language: python :dedent: 4 :caption: Create a ClientAssertionCredential. Ú tenant_idÚ client_idÚfuncÚkwargsÚreturnNc  sb||_| dd¡}| dd¡}| dd¡}| dd¡}t||f||||dœ|¤Ž|_tƒ ¡dS)NÚ authorityÚcacheÚ cae_cacheÚadditionally_allowed_tenants)rrrr)Ú_funcÚpoprÚ_clientÚsuperÚ__init__) Úselfr r r r rrrr©Ú __class__©úc/home/app/Keep/.python/lib/python3.10/site-packages/azure/identity/_credentials/client_assertion.pyr,s"    þúù z"ClientAssertionCredential.__init__cCs|j ¡|S©N)rÚ __enter__©rrrrr=s z#ClientAssertionCredential.__enter__ÚargscGs|jj|ŽdSr)rÚ__exit__)rr rrrr!Asz"ClientAssertionCredential.__exit__cCs | ¡dS)zDClose the credential's underlying HTTP client and release resources.N)r!rrrrÚcloseDs zClientAssertionCredential.closeÚscopescOs|jj|fi|¤ŽSr)rZget_cached_access_token)rr#r rrrÚ_acquire_token_silentlyHsz1ClientAssertionCredential._acquire_token_silentlycOs"| ¡}|jj||fi|¤Ž}|Sr)rrZobtain_token_by_jwt_assertion)rr#r Z assertionÚtokenrrrÚ_request_tokenKsz(ClientAssertionCredential._request_token)rr )rN)Ú__name__Ú __module__Ú __qualname__Ú__doc__Ústrrrrrr!r"rrr$r&Ú __classcell__rrrrr s*  r N) ÚtypingrrrZazure.core.credentialsrÚ _internalrZ_internal.get_token_mixinrr rrrrÚs