o Dfb@sdZddlZddlZddlmZddlmZGdddZGdddeZGd d d eZ d d Z e Z Gd ddeZ GdddeZ dS)z(SASL mechanisms for AMQP authentication.N)BytesIO) _write_tablec@s$eZdZdZeddZddZdS)SASLzThe base class for all amqp SASL authentication mechanisms. You should sub-class this if you're implementing your own authentication. cCt)z2Return a bytes containing the SASL mechanism name.NotImplementedErrorselfr B/home/ubuntu/webapp/venv/lib/python3.10/site-packages/amqp/sasl.py mechanismszSASL.mechanismcCr)z@Return the first response to a SASL challenge as a bytes object.rr connectionr r r startsz SASL.startN)__name__ __module__ __qualname____doc__propertyr rr r r r r s   rc@(eZdZdZdZddZdZddZdS) PLAINzbPLAIN SASL authentication mechanism. See https://tools.ietf.org/html/rfc4616 for details sPLAINcC|||_|_dSNusernamepasswordr rrr r r __init__"zPLAIN.__init__rcCs^|jdus |jdur tSt}|d||jd|d||jd|S)Nzutf-8)rrNotImplementedrwriteencodegetvaluer rlogin_responser r r r*s  z PLAIN.startNrrrrr r __slots__rr r r r r  rc@r) AMQPLAINzhAMQPLAIN SASL authentication mechanism. This is a non-standard mechanism used by AMQP servers. sAMQPLAINcCrrrrr r r r=rzAMQPLAIN.__init__rcCsF|jdus |jdur tSt}t|j|jd|jg|ddS)N)sLOGINsPASSWORD)rrr rrr!r#r$r r r rEszAMQPLAIN.startNr&r r r r r)5r(r)csTz ddlddlWntyGdddt}|YSwGfdddt}|S)Nrc@s*eZdZdZdZ  d ddZddZdS) z)_get_gssapi_mechanism..FakeGSSAPIz7A no-op SASL mechanism for when gssapi isn't available.NamqpFcSs|stddS)Nz?You need to install the `gssapi` module for GSSAPI SASL supportrr client_nameservicerdns fail_softr r r rYs z2_get_gssapi_mechanism..FakeGSSAPI.__init__cSstSr)r rr r r r`z/_get_gssapi_mechanism..FakeGSSAPI.startNr+FFrrrrr rrr r r r FakeGSSAPITs r4cs:eZdZdZdZ  d ddZdZd d Zfd d ZdS)z%_get_gssapi_mechanism..GSSAPIzsGSSAPI SASL authentication mechanism. See https://tools.ietf.org/html/rfc4752 for details sGSSAPINr+FcSs4|r t|ts |d}||_||_||_||_dS)Nascii) isinstancebytesr"r-r0r.r/r,r r r rls   z._get_gssapi_mechanism..GSSAPI.__init__)r-r0r.r/cSs^|jj}|jr|jtjtjfvr|}t|d\}}}n|jj }t |t s-| d}|S)Nrr5) transportsockr/familysocketAF_INETAF_INET6 getpeername gethostbyaddrhostr6r7r")r rr9peerhostname_r r r get_hostname|s  z2_get_gssapi_mechanism..GSSAPI.get_hostnamecsz0|jrj|jd}nd}||}d|j|gjj}j||d}| dWSj j j yB|j rAtYSw)N)name@)rEcreds)r- CredentialsNamerDjoinr.NameTypehostbased_serviceSecurityContextsteprawmiscGSSErrorr0r )r rrGrBrEcontextgssapir r rs"   z+_get_gssapi_mechanism..GSSAPI.startr2) rrrrr rr'rDrr rSr r GSSAPIds   rU)rTgssapi.raw.misc ImportErrorr)r4rUr rSr _get_gssapi_mechanismOs  5rXc@seZdZdZdZddZdS)EXTERNALzEXTERNAL SASL mechanism. Enables external authentication, i.e. not handled through this protocol. Only passes 'EXTERNAL' as authentication mechanism, but no further authentication data. sEXTERNALcCsdS)Nr r r r r rr1zEXTERNAL.startN)rrrrr rr r r r rYs rYc@s$eZdZdZdZddZddZdS)RAWzA generic custom SASL mechanism. This mechanism takes a mechanism name and response to send to the server, so can be used for simple custom authentication schemes. NcCs:t|tsJt|tsJ|||_|_tdtdS)NznPassing login_method and login_response to Connection is deprecated. Please implement a SASL subclass instead.)r6r7r responsewarningswarnDeprecationWarning)r r r\r r r rs z RAW.__init__cCs|jSr)r\r r r r rsz RAW.startr3r r r r r[s  r[)rr;r]ioramqp.serializationrrrr)rXrUrYr[r r r r s  M