o ¾­§i4ã @sLdZddlZddlZddlZddlZddlZddlmZmZe  e ¡Z z ddl Z e   dd„¡Wn!eefyQddd d œ ej¡ZerMed e›d ƒ‚ed ƒ‚wGdd„deƒZGdd„deƒZdZdd„Zdd„Zd,dd„Zdd„Zdd„Zdd„Zdd „Z  ! d-d"d#„Z     ! d.d$d%„Z  d/d&d'„Z d,d(d)„Z!d*d+„Z"dS)0z†This module is an adaptor to the underlying broker. It relies on PyMsalRuntime which is the package providing broker's functionality. éNé)Ú __version__ÚSKUcCs0tjjtjtjjtjtjjtji |tj¡|ƒS©N) Ú pymsalruntimeZLogLevelÚTRACEÚloggerÚdebugÚDEBUGÚFATALÚcriticalÚget)ÚmessageÚlevel©rúB/home/app/Keep/.python/lib/python3.10/site-packages/msal/broker.pyÚs   ù ørz1.20z1.31z1.33)Úwin32ÚdarwinÚlinuxz;You must install dependency by: pip install "msal[broker]>=z,<2"z8Dependency pymsalruntime unavailable on current platformc@ó eZdZdS)ÚRedirectUriErrorN©Ú__name__Ú __module__Ú __qualname__rrrrr(órc@r)ÚTokenTypeErrorNrrrrrr,rrz$msauth.com.msauth.unsignedapp://authcCs\| ¡}d|vs d|vrtd |t¡ƒ‚dd || ¡| ¡| ¡¡| ¡| ¡| ¡dœS)NZ AADSTS50011Z AADSTS7000218z¸MsalRuntime needs the current app to register these redirect_uri (1) ms-appx-web://Microsoft.AAD.BrokerPlugin/{} (2) {} (3) https://login.microsoftonline.com/common/oauth2/nativeclientZ broker_errorz'{}. Status: {}, Error code: {}, Tag: {})ÚerrorZerror_descriptionZ_broker_statusZ_broker_error_codeZ _broker_tag)Z get_contextrÚformatÚ_redirect_uri_on_macZ get_statusZget_error_codeZget_tag)rÚ client_idÚcontextrrrÚ_convert_error8s$ÿü þ÷r#cCsbt ¡}t |||fdd„¡|j ¡|j ¡}|r&t dt |dƒ¡dS|j  ¡}|r/|SdS)zEReturn an instance of MSALRuntimeError or MSALRuntimeAccount, or NonecSó | |¡Sr©Zcomplete©ÚresultÚ callback_datarrrrYó z%_read_account_by_id..zread_account_by_id() error: %sN) rÚ CallbackDataZread_account_by_idÚsignalÚwaitr'Ú get_errorrr r#Ú get_account)Ú account_idÚcorrelation_idr(rÚaccountrrrÚ_read_account_by_idSs ý   r2c Cs,| ¡}| dd¡| ¡}|rtt||ƒ|dS| ¡r$t | ¡¡ni}| ¡}|s0Jdƒ‚dd„|  ¡r?|  ¡  ¡dn|  ¡|  ¡tt ¡ƒ| ¡|| ¡| ¡|  ¡r[dn|p^dd œ ¡Dƒ}|d  d ¡}|d  ¡d krƒ|sƒtd |d dd…¡ƒ‚| ¡} | rd | ¡|d<t||dS)NZ wam_telemetry)Z_msalruntime_telemetryz*Account is expected to be always availablecSsi|] \}}|r||“qSrr)Ú.0ÚkÚvrrrÚ ps  ôz#_convert_result..rÚpopZbearer)Ú access_tokenZ expires_inZid_tokenÚid_token_claimsZ client_infoZ _account_idÚ token_typer8ZAAAAr:zssh-certz'Broker could not get an SSH Cert: {}...éú Úscope)Zget_telemetry_datar7r-Údictr#Z get_id_tokenÚjsonÚloadsr.Zis_pop_authorizationZget_authorization_headerÚsplitZget_access_tokenZget_access_token_expiry_timeÚintÚtimeZget_raw_id_tokenZget_client_infoZget_account_idÚitemsÚ startswithÚlowerrrZget_granted_scopesÚjoin) r'r!Úexpected_token_typeZ telemetryrr9r1Ú return_valueZ likely_a_certZgranted_scopesrrrÚ_convert_resultfsB  þÿ õ ô ÿ rJcCs tt ¡ƒSr)ÚstrÚuuidÚuuid4rrrrÚ_get_new_correlation_id‡s rNcCs| dd¡dS)NZmsal_request_typeZconsumer_passthrough)Úset_additional_parameter©ÚparamsrrrÚ_enable_msa_pt‹srRcCs(t ||¡}| dt¡| dt¡|S)NZmsal_client_skuZmsal_client_ver)rZMSALRuntimeAuthParametersrOrr)r!Ú authorityrQrrrÚ_build_msal_runtime_auth_paramsŽs   rTcCstjdkr | d¡dSdS)Nrú.r:©rH)rTrYÚset_requested_scopesÚset_decoded_claimsÚset_pop_paramsÚ _http_methodÚ_urlÚnetlocÚpathÚ_noncerr*rDrOrKrRZsignin_silentlyrNr+r,rJr'r ) rSr!Úscopesr0ÚclaimsÚ enable_msa_ptÚ auth_schemeÚkwargsrQr(r4r5rrrÚ_signin_silently›s4   þ€ ý ÿrhc  Ks,t||ƒ} |  |¡|  tjdkrtnd¡|r,|dkr&|r%d}t d¡nt d|¡|dur6|  dd¡|r.r:rZ)rTr[rXrVrWr rÚwarningrOrRr]r^r_r`rarbrDrKr\rr*Zsignin_interactivelyZget_console_windowZget_desktop_windowrNr+r,rJr'r )rSr!rcZparent_window_handleÚpromptZ login_hintrdr0rerfrgrQr4r5r(rrrÚ_signin_interactively¸sP þ €  þ€   û ÿrmc KsÔ|ptƒ}t||ƒ}|durdSt||ƒ} t| ƒ|  |¡|r%|  |¡|r5|  |j|jj |jj |j ¡|  ¡D]\} } | durI|   | t| ƒ¡q9t ¡} t | ||| fdd„¡| j ¡t| j|| d¡dS)NcSr$rr%r&rrrr r)z)_acquire_token_silently..r:rZ)rNr2rTrYr[r\r]r^r_r`rarbrDrOrKrr*Zacquire_token_silentlyr+r,rJr'r ) rSr!r/rcrdr0rfrgr1rQr4r5r(rrrÚ_acquire_token_silentlyðs:     þ€ ü ÿrncCsf|ptƒ}t||ƒ}|durdSt ¡}t ||||fdd„¡|j ¡|j ¡}|r1t ||ƒSdS)NcSr$rr%r&rrrrr)z#_signout_silently..) rNr2rr*Zsignout_silentlyr+r,r'r-r#)r!r/r0r1r(rrrrÚ_signout_silentlys   ü   ÿrocCst d¡dS)Nr)rZset_is_pii_enabledrrrrÚ_enable_pii_log!srpr)NNFN)NNNNFN)NNN)#Ú__doc__r?ÚloggingrVrCrLZskurrÚ getLoggerrrrZregister_logging_callbackÚ ImportErrorÚAttributeErrorr rWZmin_verÚ ValueErrorrrr r#r2rJrNrRrTrYrhrmrnrorprrrrÚsd  ýü ÿô ! ý  ø9 þ !