o i/@sddlZddlmZmZmZddlmZmZddlm Z ddl m Z ddl m Z ddlmZdd lmZd d lmZd d lmZd d lmZddlmZddlmZmZmZGddde ZGdddeeZdS)N)OptionalAnyDict)ClientAuthenticationErrorHttpResponseError)AccessTokenInfo)AsyncRetryPolicy)PipelineResponse)CredentialUnavailableError)EnvironmentVariables)AsyncContextManager) GetTokenMixin)AsyncManagedIdentityClient)within_credential_chain) _get_request_check_forbidden_responsePIPELINE_SETTINGScsTeZdZdZdeddffdd Zdeeefdeeefde ffd d Z Z S) AsyncImdsRetryPolicyaXAsync custom retry policy for IMDS credential with extended retry duration for 410 responses. This policy ensures that specifically for 410 status codes, the total exponential backoff duration is at least 70 seconds to handle temporary IMDS endpoint unavailability. For other status codes, it uses the standard retry behavior. kwargsreturnNc sd|_tjdi|dS)Ng@)backoff_factor_for_410super__init__selfr __class__r[/home/app/Keep/.python/lib/python3.10/site-packages/azure/identity/aio/_credentials/imds.pyrszAsyncImdsRetryPolicy.__init__settingsresponsecs0|jjdkr |j|d<n|j|d<t||S)Nibackoff) http_response status_coderbackoff_factorris_retry)rr!r"rrr r'$s   zAsyncImdsRetryPolicy.is_retry) __name__ __module__ __qualname____doc__rrrstrr boolr' __classcell__rrrr rs2rcsjeZdZdeddffdd ZdddZddd Zd ededee fd d Z d edede fd dZ Z S)ImdsCredentialrrNc snt|dd|_t|d<ttfittfi||_ t j t j vr)d|_nd|_d|vp3d|v|_dS)N_enable_imds_probeZretry_policy_classTZ client_idZidentity_config)rrpopr0rrrdictr_clientr Z!AZURE_POD_IDENTITY_AUTHORITY_HOSTosenviron_endpoint_available_user_assigned_identityrrrr r-s  zImdsCredential.__init__cs|jIdH|SN)r3 __aenter__rrrr r9<szImdsCredential.__aenter__cs|jIdHdSr8)r3closer:rrr r;@szImdsCredential.closescopescs|jj|i|Sr8)r3Zget_cached_token)rr<rrrr _acquire_token_silentlyCsz&ImdsCredential._acquire_token_silentlyc sr|jdur |jnt}|rQ|jsQz|jj|dddIdHd|_Wn,ty=}z t|d|_WYd}~nd}~wtyP}zd}t |d|d}~wwz|jj|ddd iiIdH}W|St yjty}z1|j d krd }|j r|d 7}n|d 7}|j r|d|j 7}t |d|t|t |j |jd|d}~wty}zd}t ||d}~ww)Nr)Zconnection_timeoutZ retry_totalTzYManagedIdentityCredential authentication unavailable, no response from the IMDS endpoint.)messageheadersZMetadatatrueiz6ManagedIdentityCredential authentication unavailable. z>The requested identity has not been assigned to this resource.z/No identity has been assigned to this resource.z Error: )r?r")r0rgetr6r3Z request_tokenrr Exceptionr r%r7r?rr")rr<rZdo_probeex error_messageZ token_inforrr _request_tokenFsL        zImdsCredential._request_token)rr/)rN) r(r)r*rrr9r;r,rrr=rFr.rrrr r/,s   r/)r4typingrrrZazure.core.exceptionsrrZazure.core.credentialsrZazure.core.pipeline.policiesrZazure.core.pipeliner r _constantsr _internalrZ_internal.get_token_mixinrZ!_internal.managed_identity_clientrrZ_credentials.imdsrrrrr/rrrr s