o i +@sddlZddlZddlmZmZddlZddlmZmZm Z ddl m Z ddl m Z ddlmZddlmZdd lmZdd lmZdd lmZmZd Zd dgZdee fddZdeddfddZGdddZdS)N)AnyOptional) AccessTokenTokenRequestOptionsAccessTokenInfo)ClientAuthenticationError)AuthenticationRecord)CredentialUnavailableError)AZURE_VSCODE_CLIENT_ID) within_dac) log_get_token)get_broker_credentialvalidate_tenant_idi(zA~/.azure/ms-azuretools.vscode-azureresourcegroups/authRecord.jsonzA~/.Azure/ms-azuretools.vscode-azureresourcegroups/authRecord.jsonreturnc CstD]U}tj|}tj|rWtj|}|tkr d}t|t|ddd }t |}Wdn1s7wYt |t |d|d|d|d |d d }|SqdS) aLoad the authentication record corresponding to a known location. This will load from ~/.azure/ms-azuretools.vscode-azureresourcegroups/authRecord.json or ~/.Azure/ms-azuretools.vscode-azureresourcegroups/authRecord.json :return: The authentication record if it exists, otherwise None. :rtype: Optional[AuthenticationRecord] :raises: ValueError if the authentication record is not in the expected format zkVS Code auth record file is unexpectedly large. Please check the file for corruption or unexpected content.rzutf-8)encodingN authorityclientId homeAccountIdtenantIdusername)r client_idhome_account_id tenant_idr) VSCODE_AUTH_RECORD_PATHSospath expanduserexistsgetsizeMAX_AUTH_RECORD_SIZE ValueErroropenjsonload_validate_auth_record_jsonr )Zauth_record_pathZ expanded_path file_size error_messagefZ deserializedZ auth_recordr*Y/home/app/Keep/.python/lib/python3.10/site-packages/azure/identity/_credentials/vscode.pyload_vscode_auth_records,    r,datac Csg}z4|d}|rt|ts|dn!zt|Wnty4}z|d|WYd}~nd}~wwWntyD|dYnwz|d}|rQt|tsW|dn |tkrc|dtWntyr|d Ynwz|d }|rt|ts|d Wnty|d Ynwz|d }|rt|ts|dWnty|dYnwz|d}|rt|ts|dWnty|dYnw|rdd|}t|dS)zValidate the authentication record. :param dict data: The authentication record data to validate. :raises ValueError: If the authentication record fails validation checks. rz#tenantId must be a non-empty stringztenantId validation failed: NztenantId field is missingrz#clientId must be a non-empty stringzJclientId must match expected VS Code Azure Resources extension client ID: zclientId field is missingrz#username must be a non-empty stringzusername field is missingrz(homeAccountId must be a non-empty stringzhomeAccountId field is missingrz$authority must be a non-empty stringzauthority field is missingz)Authentication record validation failed: z; ) isinstancestrappendrr"KeyErrorr join) r-errorsrerrrrr(r*r*r+r&Gsn           r&c @seZdZdZdeddfddZdddZd eddfd d Zdd d Ze dddde de e de e dede f ddZ ddde de edefddZdS)VisualStudioCodeCredentialaAuthenticates as the Azure user signed in to Visual Studio Code via the 'Azure Resources' extension. This currently only works in Windows/WSL environments and requires the 'azure-identity-broker' package to be installed. :keyword str tenant_id: A Microsoft Entra tenant ID. Defaults to the tenant specified in the authentication record file used by the Azure Resources extension. :keyword List[str] additionally_allowed_tenants: Specifies tenants in addition to the specified "tenant_id" for which the credential may acquire tokens. Add the wildcard value "*" to allow the credential to acquire tokens for any tenant the application can access. kwargsrNc Ksd|_d|_t}|rDzt}|sd|_WdS|dt|tjjddd||_WdStyC}zd|d|_WYd}~dSd}~wwdS)NzVisualStudioCodeCredential requires the 'azure-identity-broker' package to be installed. You must also ensure you have the Azure Resources extension installed and have signed in to Azure via Visual Studio Code.zVisualStudioCodeCredential requires the user to be signed in to Azure via Visual Studio Code. Please ensure you have the Azure Resources extension installed and have signed in.T)rauthentication_recordZparent_window_handleZuse_default_broker_accountZdisable_interactive_fallbackz>Failed to load authentication record from Visual Studio Code: zO. Please ensure you have the Azure Resources extension installed and signed in.r*) _broker_credential_unavailable_messagerr,r msalZPublicClientApplicationZCONSOLE_WINDOW_HANDLEr")selfr6Zbroker_credential_classr7exr*r*r+__init__s8z#VisualStudioCodeCredential.__init__cCs|jr|j|SN)r8 __enter__r;r*r*r+r?s z$VisualStudioCodeCredential.__enter__argscGs|jr |jj|dSdSr>)r8__exit__)r;rAr*r*r+rBsz#VisualStudioCodeCredential.__exit__cCs|jr |jdSdS)z)Close the credential's transport session.N)r8closer@r*r*r+rCsz VisualStudioCodeCredential.closeclaimsrscopesrErc Osx|js t|jdtr0z|jj|||d|}|WSty/}zt|jd|d}~ww|jj|||d|S)aRequest an access token for `scopes` as the user currently signed in to Visual Studio Code. This method is called automatically by Azure SDK clients. :param str scopes: desired scopes for the access token. This method requires at least one scope. For more information about scopes, see https://learn.microsoft.com/entra/identity-platform/scopes-oidc. :keyword str claims: additional claims required in the token, such as those returned in a resource provider's claims challenge following an authorization failure. :keyword str tenant_id: optional tenant to include in the token request. :return: An access token with the desired scopes. :rtype: ~azure.core.credentials.AccessToken :raises ~azure.identity.CredentialUnavailableError: the credential cannot retrieve user details from Visual Studio Code messagerDN)r8r r9r get get_tokenrrH)r;rErrFr6tokenr<r*r*r+rJs z$VisualStudioCodeCredential.get_token)optionsrLc Gsl|js t|jdtr-z |jj|d|i}|WSty,}zt|jd|d}~ww|jj|d|iS)aRequest an access token for `scopes` as the user currently signed in to Visual Studio Code. This is an alternative to `get_token` to enable certain scenarios that require additional properties on the token. This method is called automatically by Azure SDK clients. :param str scopes: desired scopes for the access token. This method requires at least one scope. For more information about scopes, see https://learn.microsoft.com/entra/identity-platform/scopes-oidc. :keyword options: A dictionary of options for the token request. Unknown options will be ignored. Optional. :paramtype options: ~azure.core.credentials.TokenRequestOptions :rtype: ~azure.core.credentials.AccessTokenInfo :return: An AccessTokenInfo instance containing information about the token. :raises ~azure.identity.CredentialUnavailableError: the credential cannot retrieve user details from Visual Studio Code. rGrLN)r8r r9r rIget_token_inforrH)r;rLrFrKr<r*r*r+rMs z)VisualStudioCodeCredential.get_token_info)rr5)rN)__name__ __module__ __qualname____doc__rr=r?rBrCr r/rrrJrrrMr*r*r*r+r5s( "  $r5)rr$typingrrr:Zazure.core.credentialsrrrZazure.core.exceptionsrZ _auth_recordr _exceptionsr _constantsr _internalr Z_internal.decoratorsr Z_internal.utilsrrr!rr,dictr&r5r*r*r*r+s&      +: