o Df@s(dZddlmZddlmZgdZGdddeZGdddeZGd d d eZGd d d eZ Gd ddeZ GdddeZ GdddeZ GdddeZ GdddeZGdddeZGdddeZGdddeZGdddeZGdd d eZGd!d"d"eZGd#d$d$eZd%S)&a= authlib.oauth2.rfc6749.errors ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Implementation for OAuth 2 Error Response. A basic error has parameters: error REQUIRED. A single ASCII [USASCII] error code. error_description OPTIONAL. Human-readable ASCII [USASCII] text providing additional information, used to assist the client developer in understanding the error that occurred. error_uri OPTIONAL. A URI identifying a human-readable web page with information about the error, used to provide the client developer with additional information about the error. Values for the "error_uri" parameter MUST conform to the URI-reference syntax and thus MUST NOT include characters outside the set %x21 / %x23-5B / %x5D-7E. state REQUIRED if a "state" parameter was present in the client authorization request. The exact value received from the client. https://tools.ietf.org/html/rfc6749#section-5.2 :copyright: (c) 2017 by Hsiaoming Yang. ) OAuth2Erroris_secure_transport)rInsecureTransportErrorInvalidRequestErrorInvalidClientErrorUnauthorizedClientErrorInvalidGrantErrorUnsupportedResponseTypeErrorUnsupportedGrantTypeErrorInvalidScopeErrorAccessDeniedErrorMissingAuthorizationErrorUnsupportedTokenTypeErrorMissingCodeExceptionMissingTokenExceptionMissingTokenTypeExceptionMismatchingStateExceptionc@s eZdZdZdZeddZdS)rinsecure_transportzOAuth 2 MUST utilize https.cCst|s|dS)z:Check and raise InsecureTransportError with the given URI.Nr)clsurirV/home/ubuntu/webapp/venv/lib/python3.10/site-packages/authlib/oauth2/rfc6749/errors.pycheck4szInsecureTransportError.checkN)__name__ __module__ __qualname__error description classmethodrrrrrr0s rc@eZdZdZdZdS)raFThe request is missing a required parameter, includes an unsupported parameter value (other than grant type), repeats a parameter, includes multiple credentials, utilizes more than one mechanism for authenticating the client, or is otherwise malformed. https://tools.ietf.org/html/rfc6749#section-5.2 invalid_requestNrrr__doc__rrrrrr;rcs(eZdZdZdZdZfddZZS)ra}Client authentication failed (e.g., unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the "Authorization" request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code and include the "WWW-Authenticate" response header field matching the authentication scheme used by the client. https://tools.ietf.org/html/rfc6749#section-5.2 invalid_clientics^t}|jdkr-|}|dd}d|jdd|dg}|ddd|f|S) N"|error="error_description="WWW-AuthenticatezBasic , )super get_headers status_codeget_error_descriptionreplacerappendjoin)selfheaderserror_descriptionextras __class__rrr.Xs     zInvalidClientError.get_headers)rrrr#rr/r. __classcell__rrr8rrGs  rc@r )r a7The provided authorization grant (e.g., authorization code, resource owner credentials) or refresh token is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client. https://tools.ietf.org/html/rfc6749#section-5.2 invalid_grantNr"rrrrr hr$r c@r )rz The authenticated client is not authorized to use this authorization grant type. https://tools.ietf.org/html/rfc6749#section-5.2 unauthorized_clientNr"rrrrrtsrc,eZdZdZdZfddZddZZS)r zZThe authorization server does not support obtaining an access token using this method.unsupported_response_typect||_dSN)r-__init__ response_type)r4rBr8rrrA  z%UnsupportedResponseTypeError.__init__cCd|jdS)Nzresponse_type= is not supported)rBr4rrrr0z2UnsupportedResponseTypeError.get_error_descriptionrrrr#rrAr0r:rrr8rr }s  r cr=)r zThe authorization grant type is not supported by the authorization server. https://tools.ietf.org/html/rfc6749#section-5.2 unsupported_grant_typecr?r@)r-rA grant_type)r4rJr8rrrArCz"UnsupportedGrantTypeError.__init__cCrD)Nz grant_type=rE)rJrFrrrr0rGz/UnsupportedGrantTypeError.get_error_descriptionrHrrr8rr s  r c@eZdZdZdZdZdS)r zThe requested scope is invalid, unknown, malformed, or exceeds the scope granted by the resource owner. https://tools.ietf.org/html/rfc6749#section-5.2 invalid_scopez6The requested scope is invalid, unknown, or malformed.Nrrrr#rrrrrrr sr c@rK)r zThe resource owner or authorization server denied the request. Used in authorization endpoint for "code" and "implicit". Defined in `Section 4.1.2.1`_. .. _`Section 4.1.2.1`: https://tools.ietf.org/html/rfc6749#section-4.1.2.1 access_deniedz=The resource owner or authorization server denied the requestNrMrrrrr sr cs.eZdZdZdfdd ZfddZZS)ForbiddenErrorr&Ncst||_||_dSr@)r-rA auth_typerealm)r4rPrQr8rrrAs  zForbiddenError.__init__cst}|js |Sg}|jr|d|jd|d|jd|j}|d|d|d|jdd|f|S)Nzrealm="r'r)r*r+ r,)r-r.rPrQr2rrr3)r4r5r7r6r8rrr.s zForbiddenError.get_headers)NN)rrrr/rAr.r:rrr8rrOsrOc@r )rmissing_authorizationz#Missing "Authorization" in headers.Nrrrrrrrrrrrc@seZdZdZdS)runsupported_token_typeN)rrrrrrrrrsrc@r )r missing_codezMissing "code" in response.NrTrrrrrrUrc@r )r missing_tokenz#Missing "access_token" in response.NrTrrrrrrUrc@r )rmissing_token_typez!Missing "token_type" in response.NrTrrrrrrUrc@r )rmismatching_statez6CSRF Warning! State not equal in request and response.NrTrrrrrrUrN)r#authlib.oauth2.baserauthlib.common.securityr__all__rrrr rr r r r rOrrrrrrrrrrs(    !