ɯeiddlmZddlZddlZddlZddlmZmZmZddlm Z ddl m Z ddl Z ddl mZddlmZddlmZmZmZd d lmZmZd d lmZmZd d lmZd dlmZmZe e Z!GddeZ"y)) annotationsN)datetime timedeltatimezone) getLogger)Any)default_backend) RSAPrivateKey)Encoding PublicFormatload_der_private_key)ER_CONNECTION_TIMEOUTER_INVALID_PRIVATE_KEY)OperationalErrorProgrammingError)KEY_PAIR_AUTHENTICATOR) AuthByPluginAuthTypeceZdZdZdZdZdZdZdZdZ dZ dZ e f dfd Z dd Z edd Z dd Zdd ZedZddZddZddZ dfd ZeddZxZS) AuthByKeyPairzKey pair based authentication.RS256isssubexpiat< c t|d dttjdt j i|ttttjdt jj|_ ||_ d|_ d|_ tttjd||_y) a#Inits AuthByKeyPair class with private key. Args: private_key: a byte array of der formats of private key, or an object that implements the `RSAPrivateKey` interface. lifetime_in_seconds: number of seconds the JWT token will be valid max_retry_attemptsJWT_CNXN_RETRY_ATTEMPTSJWT_CNXN_WAIT_TIME)secondsrJWT_LIFETIME_IN_SECONDSN)super__init__intosgetenvrDEFAULT_JWT_RETRY_ATTEMPTSrDEFAULT_JWT_CNXN_WAIT_TIME total_seconds_socket_timeout _private_key _jwt_token_jwt_token_exp _lifetime)self private_keylifetime_in_secondskwargs __class__s b/var/www/html/glpi_dashboard/venv/lib/python3.12/site-packages/snowflake/connector/auth/keypair.pyr)zAuthByKeyPair.__init__(s  " -}/W/W     # II,%@@ mo AL" ";=PQR cd|_yN)r1r5s r: reset_secretszAuthByKeyPair.reset_secretsQs  r;c"tjSr=)rKEY_PAIRr>s r:type_zAuthByKeyPair.type_Ts   r;c :d|vr|jdd}n|jdd}|j}|j}tjtj j d}t|jtr% tj|j|_t|jtrZ t!|jdt# }t|t$sqtd |j&j(d tt|jt$r |j}n!t+dt-|j|j/|}||j0z|_|j4|d|d||j6|d||j8||j:|j2i}t=j>|||j@} t| tr"| jCd|_"|jDS| |_"|jDS#t$r}td|dtd}~wwxYw#t$r}td |d td}~wwxYw)Nz.global-r.)tzinfozFailed to decode private key: z` Please provide a valid unencrypted rsa private key in base64-encoded DER format as a str object)msgerrno)datapasswordbackendzFailed to load private key: zQ Please provide a valid unencrypted rsa private key in DER format as bytes objectzPrivate key type (zU) not supported. Please provide a valid rsa private key in DER format as bytes objectz%Expected bytes or RSAPrivateKey, got ) algorithmutf-8)# partitionupperrnowrutcreplace isinstancer1strbase64 b64decode Exceptionrrbytesr r r r9__name__ TypeErrortype calculate_public_key_fingerprintr4r3ISSUERSUBJECT ISSUE_TIME EXPIRE_TIMEjwtencode ALGORITHMdecoder2) r5accountuserr8rPer6 public_key_fppayloadr2s r:preparezAuthByKeyPair.prepareXs{  '',Q/G'',Q/G--/zz|ll8<<(000= d'' - $*$4$4T5F5F$G! d'' / 2**!+- k=9&,[-B-B-K-K,LM1  ))= 9++K7T=N=N8O7PQ ==kJ !DNN2 KKG9AdV1]O< LLWIQtf- OOS   d11  ZZO  j% ((//8DO)DOo &8> LL,;;  ^^% .)!F$4$4Z5F5F5H$I$P$P %    3]Cr;c@t|dd<|j|dd<y)NrI AUTHENTICATORTOKEN)rr2)r5bodys r: update_bodyzAuthByKeyPair.update_bodys"(>V _% $V Wr;c|jSr=)r2r>s r:assertion_contentzAuthByKeyPair.assertion_contents r;c ||jkSr=)_jwt_retry_attempts)r5counts r: should_retryzAuthByKeyPair.should_retryst////r;c tjdt| |||||dtjd|j ||y)NzInvoking base timeout handlerF) authenticator service_namererfrJ delete_paramsz@Base timeout handler passed, preparing new token before retrying)rerf)rxryr(handle_timeoutrj)r5rrrerfrJr8r9s r:rzAuthByKeyPair.handle_timeoutsU  45 '%    WX W4 0r;c*|jturyy)NTF)rHr)ops r:can_handle_exceptionz"AuthByKeyPair.can_handle_exceptions 88, ,r;)r6zbytes | str | RSAPrivateKeyr7r*returnNone)rr)rr)rerTrfrTr8rrrT)r8rrzdict[str, bool])rzdict[Any, Any]rr)rrT)rr*rbool)rrTr str | NonererTrfrTrJrr8rrr)rrrr)rY __module__ __qualname____doc__rcr]r^r`r_LIFETIMEr-r.r)r?propertyrBrjrm staticmethodr\rrrrr __classcell__)r9s@r:rrs*(I FGKJH!#!# $,' 0' !'  ' R!!!JJ J  J JX""0011! 1  1  111 1.r;r)# __future__rrUrsr+rrrloggingrtypingrracryptography.hazmat.backendsr -cryptography.hazmat.primitives.asymmetric.rsar ,cryptography.hazmat.primitives.serializationr r r errorcoderrerrorsrrnetworkr by_pluginrrrYrxrr'r;r:rsW"  22 8G F7,- 8 BLBr;