!U " "33FGDD D ^x ' '55fgFF F ^u $ $55fgFF F% $rc6|j|Sr)rcreate_json_requestrs rcreate_endpoint_requestz3ClientConfigurationEndpoint.create_endpoint_request:s{..w777rc||}||||d|tfS)N)introspect_clientupdate!generate_client_registration_infor)rr'rbodys rr)z7ClientConfigurationEndpoint.create_read_client_response=sE%%f-- D::67KKLLLD...rc@|||ddg}dd|fS)N)z Cache-Controlzno-store)Pragmazno-cache) delete_client)rr'rheaderss rr*z9ClientConfigurationEndpoint.create_delete_client_responseBs4 67+++ ) " Brcd}|D]}||jjvrt|jjd}|st||krtd|jjvr3||jjdst||}||||}|||S)N)registration_access_tokenregistration_client_uriclient_secret_expires_atclient_id_issued_at client_id client_secret) payloaddatarget get_client_idcheck_client_secretextract_client_metadata update_clientr))rr'rmust_not_includekrAclient_metadatas rr+z9ClientConfigurationEndpoint.create_update_client_responseJs   " , ,AGO((()+++)O(,,[99  (%'' ' ,,.. . .%'' ' go2 2 2--go.B?.STT ,)+++66w??##FOWEE//@@@rc|jj}i}|}|jD]}t |dr|r||ni}||i||} |n'#t$r}t|j |d}~wwxYw|j di| |S)Nget_claims_options) rCrDcopyget_server_metadatarhasattrrNvalidaterr rr3get_registered_claims) rr json_datarLserver_metadata claims_classoptionsclaimserrors rrHz3ClientConfigurationEndpoint.extract_client_metadatajsO(--// 2244 / E EL<)=>>CR //@@@  "\)R/JJF O!!!! O O O01BCCN O #O " D DV%A%A%C%C D D D Ds6B  B/B**B/c"i|j|jSr) client_inforL)rr's rr2z-ClientConfigurationEndpoint.introspect_client}s?&$?(>??rct)aGenerate ```registration_client_uri`` and ``registration_access_token`` for RFC7592. By default this method returns the values sent in the current request. Developers MUST rewrite this method to return different registration information.:: def generate_client_registration_info(self, client, request):{ access_token = request.headers['Authorization'].split(' ')[1] return { 'registration_client_uri': request.uri, 'registration_access_token': access_token, } :param client: the instance of OAuth client :param request: formatted request instance NotImplementedErrorrr'rs rr4z=ClientConfigurationEndpoint.generate_client_registration_info "###rct)aLAuthenticate current credential who is requesting to register a client. Developers MUST implement this method in subclass:: def authenticate_token(self, request): auth = request.headers.get("Authorization") return get_token_by_auth(auth) :return: token instance r^rs rr"z.ClientConfigurationEndpoint.authenticate_token"###rct)a<Read a client from the request payload. Developers MUST implement this method in subclass:: def authenticate_client(self, request): client_id = request.payload.data.get("client_id") return Client.get(client_id=client_id) :return: client instance r^rs rr$z/ClientConfigurationEndpoint.authenticate_clientrcrct)aRevoke a token access in case an invalid client has been requested. Developers MUST implement this method in subclass:: def revoke_access_token(self, token, request): token.revoked = True token.save() r^)rr,rs rr%z/ClientConfigurationEndpoint.revoke_access_token"###rct)a Checks whether the current client is allowed to be accessed, edited or deleted. Developers MUST implement it in subclass, e.g.:: def check_permission(self, client, request): return client.editable :return: boolean r^r`s rr&z,ClientConfigurationEndpoint.check_permissionrfrct)a2Delete authorization code from database or cache. Developers MUST implement it in subclass, e.g.:: def delete_client(self, client, request): client.delete() :param client: the instance of OAuth client :param request: formatted request instance r^r`s rr:z)ClientConfigurationEndpoint.delete_clientrcrct)a:Update the client in the database. Developers MUST implement this method in subclass:: def update_client(self, client, client_metadata, request): client.set_client_metadata( {**client.client_metadata, **client_metadata} ) client.save() return client :param client: the instance of OAuth client :param client_metadata: a dict of the client claims to update :param request: formatted request instance :return: client instance r^)rr'rLrs rrIz)ClientConfigurationEndpoint.update_clientrarct)zeReturn server metadata which includes supported grant types, response types and etc. r^)rs rrQz/ClientConfigurationEndpoint.get_server_metadatas"###r)NN)__name__ __module__ __qualname__ ENDPOINT_NAMErrrr/r)r*r+rHr2r4r"r$r%r&r:rIrQrOrrr r s,*MGGGG;;;"G"G"GH888///    AAA@&@@@$$$$ $ $ $ $ $ $ $ $ $ $ $ $ $ $ $$$$$$$$$$rr N)authlib.constsr authlib.joserrfc6749rrrr rfc7591r rfc7591.claimsr r rOrrrts//////""""""''''''(((((())))))------000000111111V$V$V$V$V$V$V$V$V$V$r