?hddlmZddlmZmZmZddlmZddlZddlm Z ddl m Z m Z m Z mZddlmZmZdd lmZdd lmZerd d lmZd ZeeeeeeffZGddZy)) annotations)DictListUnion) TYPE_CHECKINGN) OAuth2Session)AuthCredentialsAuthClientPasswordAuthBearerTokenAuthClientCredentials)MissingScopeExceptionAuthenticationFailedException)_decode_json_response_dict) _Warnings) ConnectioncTeZdZ d dZd dZd dZd dZd dZddZddZ y)_Authc2||_||_|d}|d}t|trt|tsJ||_||_g|_d|vr|d}t|tsJ||_|j|_ |j|y)NhrefclientIdscopes) _credentials _connection isinstancestr_open_id_config_url _client_id_default_scopeslist_get_token_endpoint_token_endpoint _validate)self oidc_config credentials connection config_url client_iddefault_scopess ]/home/chris/cleankitchens-env/lib/python3.12/site-packages/weaviate/connect/authentication.py__init__z_Auth.__init__s .9'1 (  + *c*z)S/III(2 (*, { "(2Nnd3 33#1D $($<$<$> {#ct|jtr>|jj dr t dd|vrd|dvr t dyyy)N!https://login.microsoftonline.comzMicrosoft/azure does not recommend to authenticate using username and password and this method is not supported by the python client.grant_types_supportedpasswordzThe grant_types supported by the third-party authentication service are insufficient. Please add the 'password' grant type.)rrr r$ startswithr)r&r's r-r%z_Auth._validate1st d''); <##../RS3;(;6k2I&JJ32K7 =r/ctj|j|jj}t |d}|J|d}t |tsJ|S)N)proxieszGet token endpointtoken_endpoint)requestsgetrrr6rrr)r& response_authresponse_auth_jsonr7s r-r#z_Auth._get_token_endpointCs_ T%=%=tGWGWG_G_` 7 G[\!---+,<=.#...r/cPt|jtr|j|j}|St|jtr|j |j}|St|jt sJ|j|j}|S)N)rrr _get_session_auth_bearer_tokenr _get_session_client_credentialr _get_session_user_pw)r&sessionss r-get_auth_sessionz_Auth.get_auth_sessionKs d'' 9::4;L;LMH ))+@ A::4;L;LMH d//1CD DD001B1BCHr/cd|ji}|j|j|d<|j|j|d<d|vrtj|jt ||j |jtS)N access_token expires_in refresh_token)tokenr7r+default_timeout) rCrDrErauth_no_refresh_tokenrr$r AUTH_DEFAULT_TIMEOUT)r&configrFs r-r=z$_Auth._get_session_auth_bearer_tokenVs-;V=P=P,Q    ("("3"3E,     +%+%9%9E/ " % '  + +F,=,= >//oo0   r/cF|jj}|j|jt |j |j d|t}|j|j|j}d|vrtj|d|S)Nr3)r+r7 grant_typescoperG)usernamer3rErD) r!copyextend scope_listrr r$rI fetch_tokenrNr3rrH)r&rJrMsessionrFs r-r?z_Auth._get_session_user_pwhs//446 V&&'oo//!0  ##V__v#W % '  + +E,,? @r/c |jj}|j|j|jt |dk(r2|j j dr|jdzg}ntt|j|jd||j ddddt}|j|S) Nrr1z /.defaultclient_secret_postclient_credentialsi)rCrD)r+ client_secrettoken_endpoint_auth_methodrMr7rLrFrG) r!rOrQrPlenr$r4r r rrWrIrR)r&rJrMrSs r-r>z$_Auth._get_session_client_credentialxs//446    ( LL** + u:?##../RS;67++oo ..';//+#'t<0   r/N)r' OIDC_CONFIGr(r r)rreturnNone)r'rZr[r\)r[r)r[r)rJr r[r)rJr r[r)rJr r[r) __name__ __module__ __qualname__r.r%r#rAr=r?r>r/r-rrsK$ $%$ $  $,$  $ r/r) __future__rtypingrrrrr8$authlib.integrations.requests_clientr weaviate.authr r r r weaviate.exceptionsr rutilrwarningsrr)rrIrrZrr`r/r-rhsa"$$ > U- &3c49n--. vvr/