edZddlmZddlZddlZddlZddlZddlZddlZddl m Z ddl m Z ddl mZmZmZddlmZd d lmZejd ZGd d eZdS)z Authenticate a user )unicode_literalsN)input)errors)OIDC_CLIENT_ID get_config store_token) WebServer)SubCommandBaserepo_clicNeZdZdZdZdZdZdZdZd dZ d Z d Z d Z d Z dS) SubCommandloginTc.|dSN)r)selfs 7lib/python3.11/site-packages/repo_cli/commands/login.pymainzSubCommand.mains c|}t||j|jj}|rdnd}|j||S)Nzlogin as ADMIN successfulzlogin successful)interactive_get_tokenr argsapi is_admin_jwtloginfo)rtokenis_adminmsgs rrzSubCommand.loginsY**,,E49%%%8(-5M));M  c rct|jddr |jj}ntd}||_t|jdd}||fS)Nlogin_usernamez Username: login_password)getattrrr"rusername)rr%passwords rget_login_and_passwordz!SubCommand.get_login_and_password&sX 49. 5 5 +y/HH\**H  49&6==!!rct}|dr|}n|}|S)Noauth2)rgetoauth2_get_tokendirect_get_token)rconfigrs rrz SubCommand.interactive_get_token/sH ::h   ,))++EE))++E rNc|j|}|s0d}t|t j||S)z Returns user opaque token Args: force_scopes (bool): True if old token should be recreated with new scopes  force_scopeszSUnable to request the user token. Server was unable to return any valid user token!)rget_user_tokenloggererrorr RepoCLIError)rr0 user_tokenr s rget_and_validate_user_tokenz&SubCommand.get_and_validate_user_token7sRX,,,,GG  +gC LL   %c** *rc|\}}tdD]} |tjtj}|j|||d|jvr |jj nd}|cS#tj $rt dd}YwxYwtjd)N)streamr0r/z7Invalid Username password combination, please try againz%You've reached maximum login attempts)r'rangegetpasssysstderrrrr6rr0r Unauthorizedr2r3r4)rr%r&_r5s rr,zSubCommand.direct_get_tokenGs!88::(q  A #&cjAAAHx222!==%22"&!7!7> "!!!&    VWWW  !"IJJJsA(B+CCc<|j}tjd|j}|s5t d|jtj| |ddz}| S)Nz (/auth/realms/([a-z][a-z-]+)/).*zAuth path is not supported: r z .well-known/openid-configuration)path) rget_authorize_urlrematchrAr2rrWrongRepoAuthSetup_replacegeturl)rurlmatchess rget_openid_configuration_urlz'SubCommand.get_openid_configuration_url]sh((**(=sxHH . KKAsxAA B B B+-- -ll -O OlPPzz||rcj|}|jd|tt||j}|}||jdtj | | d|j s0d}t|tj||j |j_||jj}|S)NzOpenID configuration: ) client_idopenid_configuration_url verify_sslz!Opening browser to get a token...xzNUnable to request the user token. Server was unable to return any valid token!r/)rJrdebugr rrNstartr webbrowseropen localhost_urljoin access_tokenr2r3rr4r_jwtr6rr0)rrMserverthreadr r5s rr+zSubCommand.oauth2_get_tokengs#'#D#D#F#F  J0HJJKKK$%=       9:::,,../// C" +bC LL   %c** *+ 55/6  rch|ddtx|_}|dt jd|ddd |d d d |dddd||jdS)NrzAuthenticate a user)help descriptionz --hostnamezQSpecify the host name of this login, this should be unique (default: %(default)s))defaultr[z --usernamer"zASpecify your username. If this is not given, you will be prompted)destr[z --passwordr#zASpecify your password. If this is not given, you will be promptedz--force-scopesr0 store_truez8Previous token will be recreated with actual user scopes)r^actionr[)r) add_parser__doc__ subparser add_argumentplatformnode set_defaultsr)r subparsersrcs rrazSubCommand.add_parser~s%/%:%: /W&;& &    MOOd     !T     !T     K    DI.....rr)__name__ __module__ __qualname__name manages_authrrr'rr6r,rJr+rarrrrs DL""" KKK,./////rr)rb __future__rr;loggingrerCr<rR six.movesrr utils.configrrr utils.local_auth_serverr baser getLoggerr2rrnrrrws(''''' BBBBBBBBBB//////  : & &@/@/@/@/@/@/@/@/@/@/r