o i$@sddlmZmZmZmZddlmZmZmZm Z m Z ddl m Z ddl mZddlmZddlmZmZmZdd lmZdd lmZmZed d d ZGdddZGdd d eZdS))AnyOptionalTypeVarcast) AccessTokenTokenRequestOptionsAccessTokenInfoSupportsTokenInfoTokenCredential)SilentAuthenticationCredential)CredentialUnavailableError)DEVELOPER_SIGN_ON_CLIENT_ID) AadClient AadClientBase within_dac) log_get_token)NO_TOKENSharedTokenCacheBaseT_SharedTokenCacheCredential)boundc@seZdZdZddeededdfddZddd Zd eddfd d Z dd dZ e dddddedeedeede dede f ddZe dddedeedefddZede fddZdS) SharedTokenCacheCredentialaAuthenticates using tokens in the local cache shared between Microsoft applications. :param str username: Username (typically an email address) of the user to authenticate as. This is used when the local cache contains tokens for multiple identities. :keyword str authority: Authority of a Microsoft Entra endpoint, for example 'login.microsoftonline.com', the authority for Azure Public Cloud (which is the default). :class:`~azure.identity.AzureAuthorityHosts` defines authorities for other clouds. :keyword str tenant_id: a Microsoft Entra tenant ID. Used to select an account when the cache contains tokens for multiple identities. :keyword AuthenticationRecord authentication_record: an authentication record returned by a user credential such as :class:`DeviceCodeCredential` or :class:`InteractiveBrowserCredential` :keyword cache_persistence_options: configuration for persistent token caching. If not provided, the credential will use the persistent cache shared by Microsoft development applications :paramtype cache_persistence_options: ~azure.identity.TokenCachePersistenceOptions NusernamekwargsreturncKs4d|vrtdi||_dStdd|i||_dS)NZauthentication_recordr)r _credentialr)selfrrrr_/home/app/Keep/.python/lib/python3.10/site-packages/azure/identity/_credentials/shared_cache.py__init__%sz#SharedTokenCacheCredential.__init__cCs|j|SN)r __enter__rrrr r#+s z$SharedTokenCacheCredential.__enter__argscGs|jj|dSr")r__exit__rr%rrr r&/sz#SharedTokenCacheCredential.__exit__cCs |dS)z)Close the credential's transport session.Nr&r$rrr close2s z SharedTokenCacheCredential.closeFclaims tenant_id enable_caescopesr+r,r-cOs tt|jj||||d|S)a Get an access token for `scopes` from the shared cache. If no access token is cached, attempt to acquire one using a cached refresh token. This method is called automatically by Azure SDK clients. :param str scopes: desired scopes for the access token. This method requires at least one scope. For more information about scopes, see https://learn.microsoft.com/entra/identity-platform/scopes-oidc. :keyword str claims: additional claims required in the token, such as those returned in a resource provider's claims challenge following an authorization failure :keyword str tenant_id: not used by this credential; any value provided will be ignored. :keyword bool enable_cae: indicates whether to enable Continuous Access Evaluation (CAE) for the requested token. Defaults to False. :return: An access token with the desired scopes. :rtype: ~azure.core.credentials.AccessToken :raises ~azure.identity.CredentialUnavailableError: the cache is unavailable or contains insufficient user information :raises ~azure.core.exceptions.ClientAuthenticationError: authentication failed. The error's ``message`` attribute gives a reason. r*)rr r get_token)rr+r,r-r.rrrr r/6s z$SharedTokenCacheCredential.get_tokenoptionsr1cGstt|jj|d|iS)aRequest an access token for `scopes`. If no access token is cached, attempt to acquire one using a cached refresh token. This is an alternative to `get_token` to enable certain scenarios that require additional properties on the token. This method is called automatically by Azure SDK clients. :param str scopes: desired scope for the access token. This method requires at least one scope. For more information about scopes, see https://learn.microsoft.com/entra/identity-platform/scopes-oidc. :keyword options: A dictionary of options for the token request. Unknown options will be ignored. Optional. :paramtype options: ~azure.core.credentials.TokenRequestOptions :rtype: ~azure.core.credentials.AccessTokenInfo :return: An AccessTokenInfo instance containing information about the token. :raises ~azure.identity.CredentialUnavailableError: the cache is unavailable or contains insufficient user information. :raises ~azure.core.exceptions.ClientAuthenticationError: authentication failed. The error's ``message`` attribute gives a reason. r1)rr rget_token_inforr1r.rrr r2Ysz)SharedTokenCacheCredential.get_token_infocCstS)zWhether the shared token cache is supported on the current platform. :return: True if the shared token cache is supported on the current platform, otherwise False. :rtype: bool )r supportedrrrr r4psz$SharedTokenCacheCredential.supportedr")rrrN)__name__ __module__ __qualname____doc__rstrrr!r#r&r)rboolrr/rrr2 staticmethodr4rrrr rs6   ""rc @seZdZdZdedefddZddZdd d Zddd d d ede ede ede de de f ddZ ddd ede edefddZdddd ede edede def ddZde defddZdS) rzQThe original SharedTokenCacheCredential, which doesn't use msal.ClientApplicationrrcCs|jr|j|Sr")_clientr#r$rrr r#}s z%_SharedTokenCacheCredential.__enter__cGs|jr |jj|dSdSr")r=r&r'rrr r&sz$_SharedTokenCacheCredential.__exit__NcCs |dSr"r(r$rrr r)s z!_SharedTokenCacheCredential.closeFr*r.r+r,r-rcOsHi}|r||d<|r||d<||d<|j||dd|}t|j|jS)Nr+r,r-r/r1base_method_name)_get_token_basertokenZ expires_on)rr+r,r-r.rr1Z token_inforrr r/sz%_SharedTokenCacheCredential.get_tokenr0r1cGs|j||ddS)Nr2r>)r@r3rrr r2z*_SharedTokenCacheCredential.get_token_infor2r>r?c OsD|s td|d|js||pi}|d}|d}|dd}|r*|jn|j}|s<|j|d}|ss     g