o iq$@sddlZddlZddlmZmZmZddlmZmZddl m Z m Z m Z ddl mZddlmZddlmZmZmZdd lmZdd lmZdd lmZdd lmZmZdd lmZGdddZdS)N)DictOptionalAny)PublicClientApplication TokenCache) AccessTokenAccessTokenInfoTokenRequestOptions)ClientAuthenticationError)CredentialUnavailableError)resolve_tenantvalidate_tenant_id within_dac)wrap_exceptions) MsalClient)NO_TOKEN)_load_persistent_cacheTokenCachePersistenceOptions)AuthenticationRecordc @s:eZdZdZdddedeeddfddZd,d d Zd d Z d-d dZ dddddedeedeede de de f ddZdddedeedefddZddddedeedede def ddZd.d e deefd!d"Zde fd#d$Zedede defd%d&Zdeee ffd'd(Zd)eee fddfd*d+ZdS)/SilentAuthenticationCredentialauInternal class for authenticating from the default shared cache given an AuthenticationRecord. :param authentication_record: an AuthenticationRecord from which to authenticate :type authentication_record: ~azure.identity.AuthenticationRecord :keyword str tenant_id: tenant ID of the application the credential is authenticating for. Defaults to the tenant N) tenant_idauthentication_recordrreturncKs||_|p|jj|_t|j|dd|_|dd|_|js#|jr'd|_nd|_|dd|_i|_ i|_ |dg|_ t di||_ dS)N_cache _cae_cacheTFZcache_persistence_optionsadditionally_allowed_tenants) _auth_recordr _tenant_idrpoprr _custom_cache_cache_persistence_options_client_applications_cae_client_applications_additionally_allowed_tenantsr_client)selfrrkwargsrrY/home/app/Keep/.python/lib/python3.10/site-packages/azure/identity/_credentials/silent.py__init__s  z'SilentAuthenticationCredential.__init__cCs|j|SN)r& __enter__r'rrr)r,6s z(SilentAuthenticationCredential.__enter__cGs|jj|dSr+)r&__exit__)r'argsrrr)r.:sz'SilentAuthenticationCredential.__exit__cCs |dSr+)r.r-rrr)close=s z$SilentAuthenticationCredential.closeFclaimsr enable_caescopesr2r3r(cOsHi}|r||d<|r||d<||d<|j||dd|}t|j|jS)Nr2rr3 get_tokenoptionsbase_method_name)_get_token_basertokenZ expires_on)r'r2rr3r4r(r7Z token_inforrr)r5@sz(SilentAuthenticationCredential.get_token)r7r7cGs|j||ddS)Nget_token_infor6)r9)r'r7r4rrr)r;Rsz-SilentAuthenticationCredential.get_token_infor;r6r8c Os|s td|d|p i}|d}|d}|dd}|r#|jn|j}|s>|j|d}|s>tr9tdd tdd |j||||d |S) N'z' requires at least one scoper2rr3F)is_caezShared token cache unavailablemessager1) ValueErrorgetrr_initialize_cacherr r _acquire_token_silent) r'r7r8r4r(r2rr3 token_cacherrr)r9Us      z.SilentAuthenticationCredential._get_token_baser=cCs|jptdd}tdvrtdd|js+|s+zt|||_Wn ty*YdSw|jsC|rCzt|||_Wn tyBYdSw|rH|jS|jS)NT)Zallow_unencrypted_storage>LinuxDarwinWindowsz5Shared token cache is not supported on this platform.r>) r"rplatformsystemr rr Exceptionr)r'r=Z cache_optionsrrr)rBss       z0SilentAuthenticationCredential._initialize_cachecKs|t|jfd|ji|}|j}d}|j}|dr"|j}dg}|j}||vr:t|j j d |j j |||j |d||<||S)Nrr3ZCP1z https://{}/{}) client_id authorityrD http_clientZclient_capabilities)r rr%r#rrAr$rrrrKformatrLr&)r'r(rZclient_applications_mapZ capabilitiesrDrrr)_get_client_applications.  z6SilentAuthenticationCredential._get_client_applicationc Osd}|jdi|}|j|jjd}|std|D]K}|d|jjkr&qtt}|j t |||dd}|red|vred|vred |vrMt|d nd}t |d|t|d|d d |d Sq|rd } |dps|d} | r}| d | 7} t | dtt |jjd)zSilently acquire a token from MSAL. :param str scopes: desired scopes for the access token :return: an access token :rtype: ~azure.core.credentials.AccessToken N)usernamezFThe cache contains no account matching the given AuthenticationRecord.home_account_idr2)accountZclaims_challengeZ access_tokenZ expires_in refresh_on token_typeZBearer)rTrSzToken acquisition failedZerror_descriptionerrorz: {}r>r)rOZ get_accountsrrPr rArQinttimeZacquire_token_silent_with_errorlistrrNr r) r'r4r(resultZclient_applicationZaccounts_for_userrRnowrSr?detailsrrr)rCs8     z4SilentAuthenticationCredential._acquire_token_silentcCs |j}|js|d=|d=|S)Nrr)__dict__copyr!r'staterrr) __getstate__s z+SilentAuthenticationCredential.__getstate__r_cCs&|j||jsd|_d|_dSdSr+)r\updater!rrr^rrr) __setstate__s  z+SilentAuthenticationCredential.__setstate__)rr)rN)F)__name__ __module__ __qualname____doc__rrstrr*r,r.r0boolrrr5r rr;r9rrBrOrrCrr`rbrrrr)rsb    -r) rHrWtypingrrrZmsalrrZazure.core.credentialsrrr Zazure.core.exceptionsr r _internalr rrZ_internal.decoratorsrZ_internal.msal_clientrZ_internal.shared_token_cacherZ_persistent_cacherrrrrrrr)s