o Df]@sNdZddlZddlZddlmZddlmZmZddlm Z ddl m Z ddl m Z dd lmZd d lmZd d lmZd d lmZd dlmZmZGdddeZGdddeZGdddeZGdddeZGdddeZeedededededededddeddded d!ded"d#dedededgZdS)$z authlib.jose.rfc7518 ~~~~~~~~~~~~~~~~~~~~ "alg" (Algorithm) Header Parameter Values for JWS per `Section 3`_. .. _`Section 3`: https://tools.ietf.org/html/rfc7518#section-3 N)hashes)decode_dss_signatureencode_dss_signature)ECDSA)padding)InvalidSignature) JWSAlgorithm)OctKey)RSAKey)ECKey) encode_int decode_intc@s,eZdZdZdZddZddZddZd S) NoneAlgorithmnonez%No digital signature or MAC performedcCsdSNselfraw_datarrV/home/ubuntu/webapp/venv/lib/python3.10/site-packages/authlib/jose/rfc7518/jws_algs.py prepare_keyzNoneAlgorithm.prepare_keycCdS)Nr)rmsgkeyrrrsign!rzNoneAlgorithm.signcCr)NFr)rrsigrrrrverify$rzNoneAlgorithm.verifyN)__name__ __module__ __qualname__name descriptionrrr rrrrrs  rc@sBeZdZdZejZejZej Z ddZ ddZ ddZ dd Zd S) HMACAlgorithmzHMAC using SHA algorithms for JWS. Available algorithms: - HS256: HMAC using SHA-256 - HS384: HMAC using SHA-384 - HS512: HMAC using SHA-512 cCs.d||_d||_t|d||_dS)NHSzHMAC using SHA-SHA)r$r%getattrhash_algrsha_typerrr__init__3s  zHMACAlgorithm.__init__cC t|Sr)r import_keyrrrrr8 zHMACAlgorithm.prepare_keycCs|d}t|||jSNr) get_op_keyhmacnewr*digestrrrop_keyrrrr;s zHMACAlgorithm.signcCs*|d}t|||j}t||S)Nr )r2r3r4r*r5compare_digest)rrrrr7v_sigrrrr @s  zHMACAlgorithm.verifyN)r!r"r#__doc__hashlibsha256SHA256sha384SHA384sha512SHA512r-rrr rrrrr&(s r&c@BeZdZdZejZejZejZddZddZ ddZ dd Z d S) RSAAlgorithmzRSA using SHA algorithms for JWS. Available algorithms: - RS256: RSASSA-PKCS1-v1_5 using SHA-256 - RS384: RSASSA-PKCS1-v1_5 using SHA-384 - RS512: RSASSA-PKCS1-v1_5 using SHA-512 cCs8d||_d||_t|d||_t|_dS)NRSzRSASSA-PKCS1-v1_5 using SHA-r()r$r%r)r*rPKCS1v15r+rrrr-Qs  zRSAAlgorithm.__init__cCr.rr r/rrrrrWr0zRSAAlgorithm.prepare_keycCs|d}|||j|Sr1)r2rrr*r6rrrrZs zRSAAlgorithm.signcCs<|d}z||||j|WdStyYdSw)Nr TF)r2r rr*rrrrrr7rrrr ^s  zRSAAlgorithm.verifyN r!r"r#r:rr=r?rAr-rrr rrrrrCFs rCc@rB) ECAlgorithmzECDSA using SHA algorithms for JWS. Available algorithms: - ES256: ECDSA using P-256 and SHA-256 - ES384: ECDSA using P-384 and SHA-384 - ES512: ECDSA using P-521 and SHA-512 cCs6||_||_d|jd||_t|d||_dS)Nz ECDSA using z and SHA-r()r$curver%r)r*)rr$rJr,rrrr-rszECAlgorithm.__init__cCs6t|}|d|jkrtd|jd|jd|S)Ncrvz Key for "z" not supported, only "z " allowed)r r/rJ ValueErrorr$)rrrrrrrxs zECAlgorithm.prepare_keycCsD|d}||t|}t|\}}|j}t||t||Sr1)r2rrr*rcurve_key_sizer)rrrr7der_sigrssizerrrr~s  zECAlgorithm.signc Cs|j}|dd}t|d|krdSt|d|}t||d}t||}z|d} | ||t|WdStyEYdSw)NrFr T) rMlenrrr2r rr*r) rrrrkey_sizelengthrOrPrNr7rrrr s    zECAlgorithm.verifyNrHrrrrrIgs rIc@rB) RSAPSSAlgorithmzRSASSA-PSS using SHA algorithms for JWS. Available algorithms: - PS256: RSASSA-PSS using SHA-256 and MGF1 with SHA-256 - PS384: RSASSA-PSS using SHA-384 and MGF1 with SHA-384 - PS512: RSASSA-PSS using SHA-512 and MGF1 with SHA-512 cCs4d||_d}||||_t|d||_dS)NPSz,RSASSA-PSS using SHA-{} and MGF1 with SHA-{}r()r$formatr%r)r*)rr,tplrrrr-s zRSAPSSAlgorithm.__init__cCr.rrFrrrrrr0zRSAPSSAlgorithm.prepare_keycCs4|d}||tjt||jjd|S)Nrmgf salt_length)r2rrPSSMGF1r* digest_sizer6rrrrs  zRSAPSSAlgorithm.signc CsR|d}z|||tjt||jjd|WdSty(YdSw)Nr r[TF)r2r rr^r_r*r`rrGrrrr s   zRSAPSSAlgorithm.verifyNrHrrrrrWs rWiiES256zP-256ES384zP-384ES512zP-521ES256K secp256k1)r:r3r;cryptography.hazmat.primitivesr/cryptography.hazmat.primitives.asymmetric.utilsrr,cryptography.hazmat.primitives.asymmetric.ecr)cryptography.hazmat.primitives.asymmetricrcryptography.exceptionsrrfc7515r oct_keyr rsa_keyr ec_keyr utilrrrr&rCrIrWJWS_ALGORITHMSrrrrsB         !11