§
    !¾<i  م                   َ¼   — d dl Z d dlZd dlZd dlmZ d dlmZ d dlmZ d dl	m
Z
 d dl	mZ ddlmZ dd	lmZ d
dlmZ d
dlmZ d
dlmZ d
dlmZ  G d„ d¦  «        ZdS )é    N©عgenerate_token)عdefault_json_headers)ع	deprecate)ع	JoseError)عJsonWebTokené   )عAccessDeniedError)عInvalidRequestErroré   )عClientMetadataClaims)عInvalidClientMetadataError)عInvalidSoftwareStatementError)ع UnapprovedSoftwareStatementErrorc                   َp   — e Zd ZdZdZdZdd„Zd„ Zd„ Zd„ Z	d„ Z
d	„ Zd
„ Zd„ Zd„ Zd„ Zd„ Zd„ Zd„ Zd„ ZdS )عClientRegistrationEndpointzچThe client registration endpoint is an OAuth 2.0 endpoint designed to
    allow a client to be registered with the authorization server.
    عclient_registrationNc                 َ2   — || _         |pt          g| _        d S ©N)عserverr   عclaims_classes)عselfr   r   s      ْڑ/Users/kimhansen/Desktop/03 Workspace/ceo-agents/chl-effectiveness/mcp-servers/whoop/.venv/lib/python3.11/site-packages/authlib/oauth2/rfc7591/endpoint.pyع__init__z#ClientRegistrationEndpoint.__init__   s    € طˆŒط,ذFص1Eذ0Fˆشذذَ    c                 َ,   — |                       |¦  «        S r   )عcreate_registration_response©r   عrequests     r   ع__call__z#ClientRegistrationEndpoint.__call__"   s   € ط×0ز0°ر9ش9ذ9r   c                 َ¢  — |                       |¦  «        }|st          ¦   «         ‚||_        |                      |¦  «        }|                      |¦  «        }i }|                     |¦  «         |                     |¦  «         |                      |||¦  «        }|                      ||¦  «        }|r|                     |¦  «         d|t          fS )Néة   )	عauthenticate_tokenr
   ع
credentialعextract_client_metadataعgenerate_client_infoعupdateعsave_clientع!generate_client_registration_infor   )r   r   عtokenعclient_metadataعclient_infoعbodyعclientعregistration_infos           r   r   z7ClientRegistrationEndpoint.create_registration_response%   sض   € ط×'ز'¨ر0ش0ˆطً 	&ف#ر%ش%ذ%à"ˆشà×6ز6°wر?ش?ˆط×/ز/°ر8ش8ˆطˆطڈٹگOر$ش$ذ$طڈٹگKر ش ذ ط×!ز! +¨ہرHشHˆط ×BزBہ6ب7رSشSذطً 	+طڈKٹKذ)ر*ش*ذ*طگDص.ذ.ذ.r   c                 َp  — |j         j        st          ¦   «         ‚|j         j                             ¦   «         }|                     dd ¦  «        }|r2| j        r+|                      ||¦  «        }|                     |¦  «         i }|                      ¦   «         }| j	        D ]•}t          |d¦  «        r|r|                     |¦  «        ni } ||i ||¦  «        }		 |	                     ¦   «          n'# t          $ r}
t          |
j        ¦  «        |
‚d }
~
ww xY w |j        di |	                     ¦   «         ¤ژ Œ–|S )Nعsoftware_statementعget_claims_options© )عpayloadعdatar   عcopyعpopع'software_statement_alg_values_supportedعextract_software_statementr'   عget_server_metadatar   عhasattrr2   عvalidater   r   عdescriptionعget_registered_claims)r   r   ع	json_datar1   r5   r+   عserver_metadataعclaims_classعoptionsعclaimsعerrors              r   r%   z2ClientRegistrationEndpoint.extract_client_metadata7   sz  € طŒش#ً 	(ف%ر'ش'ذ'à”Oش(×-ز-ر/ش/ˆ	ط&ں]ڑ]ذ+?ہرFشFذطً 	# $ش"Nً 	#ط×2ز2ذ3EہwرOشOˆDط×زکTر"ش"ذ"àˆط×2ز2ر4ش4ˆط ش/ً 	Eً 	EˆLُ ک<ذ)=ر>ش>ًطCRًگ×/ز/°ر@ش@ذ@àً ً
 "گ\ )¨R°¸/رJشJˆFًOط—’ر!ش!ذ!ذ!ّفً Oً Oً Oف0°ش1BرCشCبذNًّّّّOًّّّ #ˆOش"ذDذD V×%Aز%Aر%Cش%CذDذDذDذDطذs   أC/أ/
Dأ9DؤDc                 َè   — |                       |¦  «        }|st          ¦   «         ‚	 t          | j        ¦  «        }|                     ||¦  «        }|S # t
          $ r}t          ¦   «         |‚d }~ww xY wr   )عresolve_public_keyr   r   r8   عdecoder   r   )r   r1   r   عkeyعjwtrC   عexcs          r   r9   z5ClientRegistrationEndpoint.extract_software_statementR   s„   € ط×%ز% gر.ش.ˆطً 	5ف2ر4ش4ذ4ً	;فکtشKرLشLˆCط—Z’Zذ 2°Cر8ش8ˆFàˆMّفً 	;ً 	;ً 	;ف/ر1ش1°sذ:ًّّّّ	;ّّّs   §+A ء
A1ءA,ء,A1c                 َœ  — 	 |                       |¦  «        }n5# t          $ r( |                       ¦   «         }t          dd¬¦  «         Y nw xY w	 |                      |¦  «        }n5# t          $ r( |                      ¦   «         }t          dd¬¦  «         Y nw xY wt	          t          j        ¦   «         ¦  «        }d}t          ||||¬¦  «        S )Nz[generate_client_id takes a 'request' parameter. It will become mandatory in coming releasesz1.8)عversionz_generate_client_secret takes a 'request' parameter. It will become mandatory in coming releasesr   )ع	client_idعclient_secretعclient_id_issued_atعclient_secret_expires_at)عgenerate_client_idع	TypeErrorr   عgenerate_client_secretعintعtimeعdict)r   r   rM   rN   rO   rP   s         r   r&   z/ClientRegistrationEndpoint.generate_client_info_   s  € ً	ط×/ز/°ر8ش8ˆIˆIّفً 	ً 	ً 	ط×/ز/ر1ش1ˆIفً>àًٌ ô ً ً ً ً	ًّّّ	ط ×7ز7¸ر@ش@ˆMˆMّفً 	ً 	ً 	ط ×7ز7ر9ش9ˆMفً>àًٌ ô ً ً ً ً	ُّّّ "¥$¤)،+¤+ر.ش.ذط#$ذ فطط'ط 3ط%=ً	
ٌ 
ô 
ً 	
s!   ‚ ک/A
ء	A
ءA$ ء$/BآBc                 َ   — dS )zفGenerate ```registration_client_uri`` and ``registration_access_token``
        for RFC7592. This method returns ``None`` by default. Developers MAY rewrite
        this method to return registration information.
        Nr3   )r   r.   r   s      r   r)   z<ClientRegistrationEndpoint.generate_client_registration_info~   s	   € ً
 ˆtr   c                 َ6   — | j                              |¦  «        S r   )r   عcreate_json_requestr   s     r   عcreate_endpoint_requestz2ClientRegistrationEndpoint.create_endpoint_request…   s   € طŒ{×.ز.¨wر7ش7ذ7r   c                 َ    — t          d¦  «        S )zپGenerate ``client_id`` value. Developers MAY rewrite this method
        to use their own way to generate ``client_id``.
        é*   r   r   s     r   rQ   z-ClientRegistrationEndpoint.generate_client_idˆ   s   € ُ کbر!ش!ذ!r   c                 َt   — t          j        t          j        d¦  «        ¦  «                             d¦  «        S )z‰Generate ``client_secret`` value. Developers MAY rewrite this method
        to use their own way to generate ``client_secret``.
        é   عascii)عbinasciiعhexlifyعosعurandomrG   r   s     r   rS   z1ClientRegistrationEndpoint.generate_client_secretژ   s+   € ُ ش¥¤
¨2،¤ر/ش/×6ز6°wر?ش?ذ?r   c                 َ   — t          ¦   «         ‚)zeReturn server metadata which includes supported grant types,
        response types and etc.
        ©عNotImplementedError)r   s    r   r:   z.ClientRegistrationEndpoint.get_server_metadata”   s   € ُ "ر#ش#ذ#r   c                 َ   — t          ¦   «         ‚)aL  Authenticate current credential who is requesting to register a client.
        Developers MUST implement this method in subclass::

            def authenticate_token(self, request):
                auth = request.headers.get("Authorization")
                return get_token_by_auth(auth)

        :return: token instance
        re   r   s     r   r#   z-ClientRegistrationEndpoint.authenticate_tokenڑ   َ   € ُ "ر#ش#ذ#r   c                 َ   — t          ¦   «         ‚)aI  Resolve a public key for decoding ``software_statement``. If
        ``enable_software_statement=True``, developers MUST implement this
        method in subclass::

            def resolve_public_key(self, request):
                return get_public_key_from_user(request.credential)

        :return: JWK or Key string
        re   r   s     r   rF   z-ClientRegistrationEndpoint.resolve_public_key¦   rh   r   c                 َ   — t          ¦   «         ‚)a®  Save client into database. Developers MUST implement this method
        in subclass::

            def save_client(self, client_info, client_metadata, request):
                client = OAuthClient(
                    client_id=client_info['client_id'],
                    client_secret=client_info['client_secret'],
                    ...
                )
                client.save()
                return client
        re   )r   r,   r+   r   s       r   r(   z&ClientRegistrationEndpoint.save_client²   s   € ُ "ر#ش#ذ#r   )NN)ع__name__ع
__module__ع__qualname__ع__doc__عENDPOINT_NAMEr8   r   r    r   r%   r9   r&   r)   rZ   rQ   rS   r:   r#   rF   r(   r3   r   r   r   r      s  € € € € € ًً ً *€Mً /3ذ+ًGً Gً Gً Gً:ً :ً :ً/ً /ً /ً$ً ً ً6;ً ;ً ;ً
ً 
ً 
ً>ً ً ً8ً 8ً 8ً"ً "ً "ً@ً @ً @ً$ً $ً $ً
$ً 
$ً 
$ً
$ً 
$ً 
$ً$ً $ً $ً $ً $r   r   )r`   rb   rU   عauthlib.common.securityr   عauthlib.constsr   عauthlib.deprecater   عauthlib.joser   r   عrfc6749r
   r   rC   r   عerrorsr   r   r   r   r3   r   r   ْ<module>rv      s"  ًط €€€ط 	€	€	€	ط €€€à 2ذ 2ذ 2ذ 2ذ 2ذ 2ط /ذ /ذ /ذ /ذ /ذ /ط 'ذ 'ذ 'ذ 'ذ 'ذ 'ط "ذ "ذ "ذ "ذ "ذ "ط %ذ %ذ %ذ %ذ %ذ %à 'ذ 'ذ 'ذ 'ذ 'ذ 'ط )ذ )ذ )ذ )ذ )ذ )ط (ذ (ذ (ذ (ذ (ذ (ط .ذ .ذ .ذ .ذ .ذ .ط 1ذ 1ذ 1ذ 1ذ 1ذ 1ط 4ذ 4ذ 4ذ 4ذ 4ذ 4ًl$ً l$ً l$ً l$ً l$ٌ l$ô l$ً l$ً l$ً l$r   