9i2dZddlZddlZddlZddlZddlZddlmZmZeje Z ddl Z e jdGd deZGddeZdZdZdZddZdZdZdZ ddZ ddZ d dZddZ dZ!y#eef$r6dddd j!ej"Zer ed ed ed wxYw)!zThis module is an adaptor to the underlying broker. It relies on PyMsalRuntime which is the package providing broker's functionality. N) __version__SKUc<tjjtjtjj tjtjj tjij|tj|SN) pymsalruntimeLogLevelTRACEloggerdebugDEBUGFATALcriticalget)messagelevels >/var/www/html/venv/lib/python3.12/site-packages/msal/broker.pyrse$$fll$$fll $$fooD  #eV\\ "7D,z1.20z1.31z1.33)win32darwinlinuxz;You must install dependency by: pip install "msal[broker]>=z,<2"z8Dependency pymsalruntime unavailable on current platformc eZdZy)RedirectUriErrorN__name__ __module__ __qualname__rrrr(rrc eZdZy)TokenTypeErrorNrrrrr"r",r rr"z$msauth.com.msauth.unsignedapp://authcL|j}d|vsd|vrtdj|tddj||j |j |j |j |j |j dS)N AADSTS50011 AADSTS7000218zMsalRuntime needs the current app to register these redirect_uri (1) ms-appx-web://Microsoft.AAD.BrokerPlugin/{} (2) {} (3) https://login.microsoftonline.com/common/oauth2/nativeclient broker_errorz'{}. Status: {}, Error code: {}, Tag: {})errorerror_description_broker_status_broker_error_code _broker_tag) get_contextrformat_redirect_uri_on_mac get_statusget_error_codeget_tag)r' client_idcontexts r_convert_errorr48s!G W $') DEKF +E- . . GMM      4 4 6 I **,#224}}  rcJtj}tj|||fd|jj |j j }|r!tjdt|dy|j j}|r|Sy)zEReturn an instance of MSALRuntimeError or MSALRuntimeAccount, or Nonec$|j|Srcompleteresult callback_datas rrz%_read_account_by_id..YM4J4J64Rrzread_account_by_id() error: %sN) r CallbackDataread_account_by_idsignalwaitr: get_errorr r r4 get_account) account_idcorrelation_idr;r'accounts r_read_account_by_idrFSs!..0M$$%2R   * * ,E  5~eT7RS""..0G rc|j}|jdd|j}|rtt |||S|j r#t j|j ni}|j}|sJd|jr!|jjdn|j|jttjz |j!||j#|j%|jrdn|xsddj'Dcic] \}}|r|| } }}| dj)d } | d j+d k(r"| s t-d j/| ddd |j1} | rdj3| | d<t| |Scc}}w)N wam_telemetry)_msalruntime_telemetryz*Account is expected to be always availablerpopbearer) access_token expires_inid_tokenid_token_claims client_info _account_id token_typerLAAAArRzssh-certz'Broker could not get an SSH Cert: {}... scope)get_telemetry_datarJrAdictr4 get_id_tokenjsonloadsrBis_pop_authorizationget_authorization_headersplitget_access_tokenget_access_token_expiry_timeinttimeget_raw_id_tokenget_client_infoget_account_iditems startswithlowerr"r-get_granted_scopesjoin) r:r2expected_token_type telemetryr'rOrEkv return_value likely_a_certgranted_scopess r_convert_resultrrfs))+I MM/4(    E N5)4YWW;A;N;N;Pdjj!4!4!67VXO  "G @@@7 **,  + + - 282I2I2K99;c$))+>NN++-*..0--/446  +8 &  %' TQqD L !0;;FCML!'')Z7 FMM  (! ,./ /..0N # 8 W  Y ??) s G1c<ttjSr)struuiduuid4rrr_get_new_correlation_idrws tzz| rc(|jddy)Nmsal_request_typeconsumer_passthrough)set_additional_parameter)paramss r_enable_msa_ptr}s ##$79OPrctj||}|jdt|jdt|S)Nmsal_client_skumsal_client_ver)rMSALRuntimeAuthParametersr{rr)r2 authorityr|s r_build_msal_runtime_auth_paramsrs;  4 4Y JF ##$5s; ##$5{C Mrc t||}|j||r|j||rP|j|j|j j |j j|jtj} |jD]#\} } |  |j| t| %|r t|tj||xs t!| fd| j"j%t'| j(||j+dS)Nc$|j|Srr7r9s rrz"_signin_silently..r<rrRrk)rset_requested_scopesset_decoded_claimsset_pop_params _http_method_urlnetlocpath_noncerr=rfr{rtr}signin_silentlyrwr?r@rrr:r) rr2scopesrDclaims enable_msa_pt auth_schemekwargsr|r;rmrns r_signin_silentlyrs -Y BF ' !!&)  $ $k&6&6&=&={?O?O?T?T    "..0M 71 =  + +As1v 67v!!313%2RT iVZZ =U WWrc  t||} | j|| jtjdk(rt nd|r5|dk(r|r.d}t jdnt jd||| jdd|r t| | rP| j| j| jj| jj| j| j!D]#\} } |  | j| t#| %|r| j%|t'j(d }t'j*|xs*t'j,xst'j.| |xs t1||fd |j2j5t7|j8|| j;d  S) Nrz.r<rrRr)rrset_redirect_urisysplatformr.r warningr{r}rrrrrrrfrtrrr=signin_interactivelyget_console_windowget_desktop_windowrwr?r@rrr:r)rr2rparent_window_handleprompt login_hintrrDrrrr|rmrnr;s r_signin_interactivelyrs-Y BF '  #  8F  % % " lm NNF O#''(96Bv  $ $k&6&6&=&={?O?O?T?T     71 =  + +As1v 67!!&)!..dCM&&h @ @ BhmFfFfFh313%2R T  iVZZ =U WWrc |xs t}t||}|yt||} | j||r| j ||rP| j |j |jj|jj|j|jD]#\} } |  | j| t| %tj} tj | ||| fd| j"j%t'| j(||j+dS)Nc$|j|Srr7r9s rrz)_acquire_token_silently..r<rrRr)rwrFrrrrrrrrrrfr{rtrr=acquire_token_silentlyr?r@rrr:r) rr2rCrrrDrrrEr|rmrnr;s r_acquire_token_silentlyrs+ $@'>'@N!*n=G ,Y BF ' !!&)  $ $k&6&6&=&={?O?O?T?T     71 =  + +As1v 67"..0M((%2R T  iVZZ =U WWrc |xs t}t||}|ytj}tj||||fd|j j |jj}|r t||Sy)Nc$|j|Srr7r9s rrz#_signout_silently..r<r) rwrFrr=signout_silentlyr?r@r:rAr4)r2rCrDrEr;r's r_signout_silentlyrs#@'>'@N!*n=G!..0M""%2R T   * * ,E eY// rc.tjdy)Nr)rset_is_pii_enabledrrr_enable_pii_logrs$$Q'rr)NNFN)NNNNFN)NNN)"__doc__rZloggingrrbruskurr getLoggerrr rregister_logging_callback ImportErrorAttributeErrorrrmin_ver ValueErrorrr"r.r4rFrrrwr}rrrrrrrrrrsE  !   8 $V+M++-,-2 z  Z > 6&@BQCGW>5WrOSW@0 (A ^$ V c#,,  I'RV WY YTUU Vs B=C