fddlmZmZmZmZddlmZddlZddl m Z ddl m Z ddl mZmZmZmZmZmZmZmZddlmZddlmZdd lmZdd lmZdd lmZd ej@jB_"d Z#dd iZ$defdZ%deefdZ&deddfdZ'd%dZ(de fdZ)dedefdZ*de+defdZ,dedefdZ-deefdZ.de/deefdZ0dedefdZ1d&defd Z2defd!Z3dedefd"Z4Gd#d$Z5y)')AnyDictListOptional)get_user_modelN) Fido2Server)websafe_decode)AttestedCredentialDataAuthenticationResponseAuthenticatorDataPublicKeyCredentialRpEntityPublicKeyCredentialUserEntityRegistrationResponseResidentKeyRequirementUserVerificationRequirement)url_str_to_user_pk)context) app_settings) get_adapter) AuthenticatorTzmfa.webauthn.state credPropsreturncJtj|}tdi|S)N)r%get_public_key_credential_user_entityr)userkwargss ]/var/www/cs2snipe.com/venv/lib/python3.12/site-packages/allauth/mfa/webauthn/internal/auth.pybuild_user_payloadr!s" ] @ @ FF ( 26 22c\tjjjtSN)rrequestsessiongetSTATE_SESSION_KEYrr r get_stater'&s ?? " " & &'8 99r statecF|tjjt<yr")rr#r$r&)r(s r set_stater**s16GOO-.r c`tjjjtdyr")rr#r$popr&rr r clear_stater-.s OO 148r ctj}tdi|}d}tjrd}t ||}|S)Ncy)NTr)os rzget_server..7sr ) verify_originr)r#get_public_key_credential_rp_entityr rWEBAUTHN_ALLOW_INSECURE_ORIGINr) rp_kwargsrpr2servers r get_serverr82sC AACI $ 1y 1BM22& = 9F Mr responsecz tj|S#t$rtj dwxYwNincorrect_code)r from_dict TypeErrorrvalidation_errorr9s rparse_registration_responserA<s;?#--h77 ?m,,-=>>?#: passwordlessc$t}t|}|jt|||rtj ntj |rtj ntj t\}}t|t|S)N)r credentialsresident_key_requirementuser_verification extensions) r8get_credentialsregister_beginrrREQUIRED DISCOURAGEDr EXTENSIONSr*dict)rrCr7rEregistration_datar(s rbegin_registrationrPCs \F!$'K%44  % # + +'33 ( 0 0,88 5 ue ! ""r credentialct}t}|stjd |j ||}t |S#t $rtjdwxYwr;)r8r'rr?register_complete ValueErrorr-)rQr7r(bindings rcomplete_registrationrVYso \F KE m,,-=>>?**5*=M N ?m,,-=>>?s A#A2c>g}tjj|tjj}|D]\}|j j j}|s*|j|j j j^|SN)rtype) robjectsfilterTypeWEBAUTHNwrapauthenticator_datacredential_dataappend)rrEauthenticators authenticatorr`s rrIrIgs02K"**11  **332N(X ',,.AAQQ    }113FFVV WX r credential_idctjj|tjj}|D]7}||j j jjk(s5|cSyrX) rrZr[r\r]r^r_r`rd)rrdrbrcs r"get_authenticator_by_credential_idrfssu#**11  **332N(! !!#66FFTT U! ! r cz tj|S#t$rtj dwxYwr;)r r=r>rr?r@s rparse_authentication_responserhs;?%//99 ?m,,-=>>?rBct}|j|r t|ngtj\}}t |t |S)N)rErG)r8authenticate_beginrIr PREFERREDr*rN)rr7request_optionsr(s rbegin_authenticationrmsM \F#66-1OD)r5??7OUe   r c |jdijd}tt|jd}tjj|j}|stjd|S#tt t f$rtjdwxYw)Nr9 userHandleutf8r<)pk) r%rr decoderTr>KeyErrorrr?rrZr[first)r9 user_handleuser_pkrs rextract_user_from_responserws?ll:r266|D $^K%@%G%G%OP   # # * *g * 6 < < >D m,,-=>> K  8 ,?m,,-=>>?s AB.Ccnt|}t}t}|stj d |j |||}tt||j}|stj d|S#t $r}tj d|d}~wwxYwr;) rIr8r'rr?authenticate_completerTr-rfrd)rr9rEr7r(rUercs rcomplete_authenticationr{s!$'K \F KE m,,-=>>F..uk8LM6tW=R=RSM m,,-=>>  Fm,,-=>AEFsB B4B//B4ceZdZdZedededdfdZedefdZ e jdefdZ ede fdZ ede efd Zy ) WebAuthnc||_yr")instance)selfrs r__init__zWebAuthn.__init__s   r namerQrct|tjj||d}|j||S)N)rrQ)rrYdata)rr\r]save)clsrrrQrs raddz WebAuthn.adds> ##,,(   8}r c4|jjdSNrrrrs rrz WebAuthn.names}}!!&))r c6||jjd<yrr)rrs rrz WebAuthn.names%) 6"r ct|jjdjjj S)NrQ)rArrr9attestation_object auth_datars rr_zWebAuthn.authenticator_datas0* MM  | , (%%ii 0r c|jjjdijdijdijdS)NrQclientExtensionResultsrrk)rrr%rs ris_passwordlesszWebAuthn.is_passwordlesssE MM   " "< 4 S)2 . Sb ! SY  r N)__name__ __module__ __qualname__r classmethodstrrNrpropertyrsetterr r_rboolrrr rr}r}s! S d z  *c** [[***0$500  $  r r})rNr")6typingrrrrdjango.contrib.authrfido2.featuresfido2 fido2.serverr fido2.utilsr fido2.webauthnr r r r rrrrallauth.account.utilsr allauth.corer allauth.mfarallauth.mfa.adapterrallauth.mfa.modelsrfeatureswebauthn_json_mappingenabledr&rMrr'r*r-r8rArrPrVrIbytesrfrhrmrwr{r}rr rrsN,,.$&   5 $+,04$$,)4 3 =3 :8D>:7T7d79K?#?2F?#4#D#, d /@  T"89    m ?C?4J?!t!  D]$& & r