fg ddlZddlmZddlmZmZddlmZddlm Z ddl m Z ddl m Z ddlmZdd lmZdd lmZmZmZdd lmZmZd d lmZd dlmZGddeZe ddZej>eZ eZ!ej>eZ"y)N) timedelta)HttpResponseNotAllowedHttpResponseRedirect)reverse)timezone) urlencode) csrf_exempt)jwtkit) SocialToken) OAuth2AdapterOAuth2CallbackViewOAuth2LoginView)build_absolute_uriget_request_param)get_apple_session)AppleOAuth2ClientcJeZdZeZdZdZdZdZe dZ dZ dZ dZ d d Zy ) AppleOAuth2Adapterapplez$https://appleid.apple.com/auth/tokenz(https://appleid.apple.com/auth/authorizez#https://appleid.apple.com/auth/keysctj||jd|jtj}|S)Nzhttps://appleid.apple.com) credentialkeys_urlissueraudience lookup_kid)r verify_and_decodepublic_key_urlget_audslookup_kid_jwk)clsproviderid_tokendatas f/var/www/cs2snipe.com/venv/lib/python3.12/site-packages/allauth/socialaccount/providers/apple/views.pyget_verified_identity_dataz-AppleOAuth2Adapter.get_verified_identity_datas=''''.&&(,,   cNt|d}|jdd|_|j|j}|r/t j t t|z|_tj|j|d}i|||_ |S)N access_token)token refresh_token)secondsr#) r get token_secretexpires_in_keyrnowrint expires_atrr& get_provider user_data)selfr$r* expires_in identity_datas r% parse_tokenzAppleOAuth2Adapter.parse_token)s~& "XXor:XXd112 '||~ #j/0RRE +EE    j!1 4T3]3 r'c |j}|jj||}|j|jd<t |j |S)N)requestresponser#)r5r4sociallogin_from_responsestaterdelete)r6r;appr*kwargs extra_datalogins r%complete_loginz!AppleOAuth2Adapter.complete_login<sZ__ !!#==j> #(// J '"))+ r'c|jjdd} tj|S#tj$ricYSwxYw)Nuserr,)apple_login_sessionr.jsonloadsJSONDecodeError)r6r;user_scope_datas r%get_user_scope_dataz&AppleOAuth2Adapter.get_user_scope_dataHsJ!5599&"E ::o. .## I s3A  A Nct|}t|d}|j||}|jdd}||jjd}i||j |d|iS)z8We need to gather the info from the apple specific logincode)pkce_code_verifierr#N)rrget_access_tokenr.storerL) r6r;r@clientrO apple_sessionrNaccess_token_datar#s r%get_access_token_dataz(AppleOAuth2Adapter.get_access_token_dataQs)'2 !&1"33 %74 %((T:  $**..z:H  &&w/    r')N)__name__ __module__ __qualname__r client_class provider_idaccess_token_url authorize_urlr classmethodr&r9rDrLrUr'r%rrsB$LK=>M:N&  r'rcv|jdk7r tdgSt|}gd}i}|D]}t||d}|s|||<ddg}|D]}t||d|j|<t |t |}tdj|t|} |j| | S)a Apple uses a `form_post` response type, which due to CORS/Samesite-cookie rules means this request cannot access the request since the session cookie is unavailable. We work around this by storing the apple response in a separate, temporary session and redirecting to a more normal oauth flow. args: finish_endpoint_name (str): The name of a defined URL, which can be overridden in your url configuration if you have more than one callback endpoint. POST)rNr>errorr,rFr#z {url}?{query})urlquery) methodrrrrQrrrformatrsave) r;finish_endpoint_namerSkeys_to_put_in_url url_paramskeyvaluekeys_to_save_to_sessionrbr<s r%apple_post_callbackrmgs ~~%vh//%g.M4J!$!'33 #JsO$ &z2&G#4Wc2#F C G Wg.B&C DC#3i .CDHx Or')apple_finish_callback)#rHdatetimer django.httprr django.urlsr django.utilsrdjango.utils.httprdjango.views.decorators.csrfr allauth.socialaccount.internalr allauth.socialaccount.modelsr ,allauth.socialaccount.providers.oauth2.viewsr r r allauth.utilsrrrSrrRrrrm adapter_view oauth2_loginoauth2_callbackoauth2_finish_loginr^r'r%r}s D!'414 @,%M M ` % %P,++,>? %5(556HIr'