yJddlZddlZddlZddlZddlZddlZddlZddlm Z m Z dZ ejejGddeZGddeZGdd eZGd d eZeeefDcic]}|j&|c}Zycc}w) N)_helperserrorszhttps://accounts.google.comceZdZdZeej dZeej dZej dZ y)ReauthChallengez!Base class for reauth challenges.cy)z"Returns the name of the challenge.Nselfs Lplatform/gsutil/third_party/google-reauth-python/google_reauth/challenges.pynamezReauthChallenge.name" cy)zAReturns true if a challenge is supported locally on this machine.Nrr s r is_locally_eligiblez#ReauthChallenge.is_locally_eligible(r rcy)aUPerforms logic required to obtain credentials and returns it. Args: metadata: challenge metadata returned in the 'challenges' field in the initial reauth request. Includes the 'challengeType' field and other challenge-specific fields. Returns: response that will be send to the reauth service as the content of the 'proposalResponse' field in the request body. Usually a dict with the keys specific to the challenge. For example, {'credential': password} for password challenge. Nrr metadatas r obtain_challenge_inputz&ReauthChallenge.obtain_challenge_input.s rN) __name__ __module__ __qualname____doc__propertyabcabstractmethodr rrrrr rrsa+        rrc6eZdZdZedZedZdZy)PasswordChallengez(Challenge that asks for user's password.cy)NPASSWORDrr s r r zPasswordChallenge.nameCsrcyNTrr s r rz%PasswordChallenge.is_locally_eligibleGrc<tjd}|sd}d|iS)NzPlease enter your password: credential)rget_user_password)r unused_metadatapasswds r rz(PasswordChallenge.obtain_challenge_inputKs&++,IJFf%%rNrrrrrr rrrrr rr@s02 &rrc6eZdZdZedZedZdZy)SecurityKeyChallengez2Challenge that asks for user's security key touch.cy)N SECURITY_KEYrr s r r zSecurityKeyChallenge.nameUsrcyr!rr s r rz(SecurityKeyChallenge.is_locally_eligibleYr"rc|d}|d}|d}g}|D]}|djd}tjjt t j |}|djd} t j | } |j|| d tjjjt} | j||tjj} d| iS#tj j"$r} | j$tj j"j&k(r tjjd nS| j$tj j"j(k(r tjjd n| Yd} ~ yd} ~ wtj j*$r"tjjd YywxYw) N securityKey challenges applicationId keyHandleascii challenge)keyr5)print_callbackzIneligible security key. z0Timed out while waiting for security key touch. zNo security key found. )encodepyu2fmodel RegisteredKey bytearraybase64urlsafe_b64decodeappend convenience authenticatorCreateCompositeAuthenticator REAUTH_ORIGIN AuthenticatesysstderrwriterU2FErrorcodeDEVICE_INELIGIBLETIMEOUTNoDeviceFoundError) r rskr1app_idchallenge_datackhr6r5apiresponsees r rz+SecurityKeyChallenge.obtain_challenge_input]s m $ % O$A;&&w/B++++&222679C+--g6I00;I  ! !#I"F G  9##11NNC''7:zz7G7G(IH!8, ,||$$ vv..@@@   !=>5<<00888   GI||.. 9 JJ  7 8 9s &ADH  B$G  ?H  H Nr)rrr r+r+Rs0< rr+c6eZdZdZedZedZdZy) SamlChallengez>Challenge that asks the users to browse to their ID Providers.cy)NSAMLrr s r r zSamlChallenge.namesrcyr!rr s r rz!SamlChallenge.is_locally_eligibler"rc*tj)N)rReauthSamlLoginRequiredErrorrs r rz$SamlChallenge.obtain_challenge_inputs1133rNr)rrr rVrV~s0H 4rrV)rr=rEpyu2f.convenience.authenticatorr9 pyu2f.errors pyu2f.modelsix google_reauthrrrC add_metaclassABCMetaobjectrrr+rVr AVAILABLE_CHALLENGES)r5s0r res & *. 3;; f   B&&$)?)X4O4*  NNIsB