o kYi4@s|ddlZddlZddlZddlmZmZddlmZddlm Z m Z m Z m Z m Z mZmZmZzDddlmZddlmZmZmZddlmZmZmZmZmZmZmZmZdd l m!Z!m"Z"dd l#m$Z$m%Z%dd l&m'Z'dd l(m)Z)d Z*Wn e+y}dZ*Ynwe,gdZ-ddZ.Gddde/Z0Gddde0Z1Gddde0Z2e*rGddde0Z3Gddde0Z4Gddde3Z5dSdS)N)constant_time_compare string_typesInvalidKeyError)base64url_decodebase64url_encodeder_to_raw_signature force_bytes force_unicodefrom_base64url_uintraw_to_der_signatureto_base64url_uint)hashes)load_pem_private_keyload_pem_public_keyload_ssh_public_key) RSAPrivateKey RSAPublicKeyRSAPrivateNumbersRSAPublicNumbersrsa_recover_prime_factors rsa_crt_dmp1 rsa_crt_dmq1 rsa_crt_iqmp)EllipticCurvePrivateKeyEllipticCurvePublicKey)ecpadding)default_backend)InvalidSignatureTF RS256RS384RS512ES256ES384ES521ES512PS256PS384PS512c Cstttjttjttjd}trA|ttjttjttjttjttjttjttjt t jt t jt t jd |S)zE Returns the algorithms that are implemented by the library. )noneHS256HS384HS512r!) NoneAlgorithm HMACAlgorithmSHA256SHA384SHA512 has_cryptoupdate RSAAlgorithm ECAlgorithmRSAPSSAlgorithm)default_algorithmsr;R/var/www/html/asistente-voz-ia/venv/lib/python3.10/site-packages/jwt/algorithms.pyget_default_algorithms&s& r=c@s@eZdZdZddZddZddZedd Zed d Z d S) AlgorithmzH The interface for an algorithm used to sign and verify tokens. cCt)z Performs necessary validation and conversions on the key and returns the key value in the proper format for sign() and verify(). NotImplementedErrorselfkeyr;r;r< prepare_keyFzAlgorithm.prepare_keycCr?)zn Returns a digital signature for the specified message using the specified key value. r@rCmsgrDr;r;r<signMrFzAlgorithm.signcCr?)zz Verifies that the specified digital signature is valid for the specified message and key values. r@rCrHrDsigr;r;r<verifyTrFzAlgorithm.verifycCr?)z7 Serializes a given RSA key into a JWK r@key_objr;r;r<to_jwk[rFzAlgorithm.to_jwkcCr?)zb Deserializes a given RSA key from JWK back into a PublicKey or PrivateKey object r@)jwkr;r;r<from_jwkbrFzAlgorithm.from_jwkN) __name__ __module__ __qualname____doc__rErIrL staticmethodrOrQr;r;r;r<r>Bs r>c@s(eZdZdZddZddZddZdS) r0zZ Placeholder for use when no signing or verification operations are required. cCs |dkrd}|durtd|S)Nz*When alg = "none", key value must be None.rrBr;r;r<rEos zNoneAlgorithm.prepare_keycCdS)Nr;rGr;r;r<rIxzNoneAlgorithm.signcCrX)NFr;rJr;r;r<rL{rZzNoneAlgorithm.verifyN)rRrSrTrUrErIrLr;r;r;r<r0js  r0c@sZeZdZdZejZejZej Z ddZ ddZ e ddZe dd Zd d Zd d ZdS)r1zf Performs signing and verification operations using HMAC and the specified hash function. cC ||_dSNhash_algrCr^r;r;r<__init__ zHMACAlgorithm.__init__cs2tgd}tfdd|DrtdS)N)s-----BEGIN PUBLIC KEY-----s-----BEGIN CERTIFICATE-----s-----BEGIN RSA PUBLIC KEY-----ssh-rsacg|]}|vqSr;r;).0 string_valuerDr;r< z-HMACAlgorithm.prepare_key..zdThe specified key is an asymmetric key or x509 certificate and should not be used as an HMAC secret.)r anyr)rCrDinvalid_stringsr;rfr<rEszHMACAlgorithm.prepare_keycCstttt|ddS)Noct)kkty)jsondumpsr rr rMr;r;r<rOszHMACAlgorithm.to_jwkcCs,t|}|ddkrtdt|dS)NrmrkzNot an HMAC keyrl)rnloadsgetrr)rPobjr;r;r<rQs  zHMACAlgorithm.from_jwkcCst|||jSr\)hmacnewr^digestrGr;r;r<rIszHMACAlgorithm.signcCst||||Sr\)rrIrJr;r;r<rLszHMACAlgorithm.verifyN)rRrSrTrUhashlibsha256r2sha384r3sha512r4r`rErVrOrQrIrLr;r;r;r<r1s   r1c@sZeZdZdZejZejZejZddZddZ e ddZ e dd Z d d Z d d ZdS)r7z~ Performs signing and verification operations using RSASSA-PKCS-v1_5 and the specified hash function. cCr[r\r]r_r;r;r<r`razRSAAlgorithm.__init__cCst|ts t|tr |St|trBt|}z|dr#t|td}n t|dtd}W|SW|St yAt |td}Y|Swt d)Nrbbackendpasswordr{Expecting a PEM-formatted key.) isinstancerrrr startswithrrr ValueErrorr TypeErrorrBr;r;r<rEs$    zRSAAlgorithm.prepare_keyc Csd}t|ddrE|}ddgtt|jjtt|jjtt|jtt|jtt|j tt|j tt|j tt|j d }n!t|ddrb|}ddgtt|jtt|jd}nt dt|S)Nprivate_numbersRSArI) rmkey_opsnedpqdpdqqirL)rmrrrNot a public or private key)getattrrr rpublic_numbersrrrrrdmp1dmq1iqmprrnro)rNrrnumbersr;r;r<rOs.           zRSAAlgorithm.to_jwkc szt|Wn tytdwddkrtddvrdvrdvrdvr2td gd }fd d |D}t|}|rMt|sMtd ttdtd}|rt tdtdtdtdtdtd|d}n$td}t |j ||j \}}t |||t ||t||t|||d}|tSdvrdvrttdtd}|tStd)NzKey is not valid JSONrmrzNot an RSA keyrrrothz5Unsupported RSA private key: > 2 primes not supported)rrrrrcrcr;r;)rdproprrr;r<rg rhz)RSAAlgorithm.from_jwk..z@RSA key must include all parameters if any are present besides drrrrr)rrrrrrrr)rnrprrrqriallrr rrrrrrr private_keyr public_key) rP other_props props_foundany_props_foundrrrrrr;rr<rQs`            zRSAAlgorithm.from_jwkcCs||t|Sr\)rIrPKCS1v15r^rGr;r;r<rI8szRSAAlgorithm.signcCs4z|||t|WdStyYdSw)NTF)rLrrr^r rJr;r;r<rL;s  zRSAAlgorithm.verifyN)rRrSrTrUrr2r3r4r`rErVrOrQrIrLr;r;r;r<r7s # > r7c@sBeZdZdZejZejZejZddZddZ ddZ dd Z d S) r8zr Performs signing and verification operations using ECDSA and the specified hash function cCr[r\r]r_r;r;r<r`KrazECAlgorithm.__init__cCst|ts t|tr |St|trBt|}z|dr#t|td}n t|td}W|SW|St yAt |dtd}Y|Swt d)Ns ecdsa-sha2-rzr|r~) rrrrr rrrrrrrrBr;r;r<rENs$    zECAlgorithm.prepare_keycCs"||t|}t||jSr\)rIrECDSAr^r curve)rCrHrDder_sigr;r;r<rIfs zECAlgorithm.signcCsZzt||j}Wn tyYdSwz|||t|WdSty,YdSw)NFT)r rrrLrrr^r )rCrHrDrKrr;r;r<rLks  zECAlgorithm.verifyN) rRrSrTrUrr2r3r4r`rErIrLr;r;r;r<r8Bs r8c@s eZdZdZddZddZdS)r9zA Performs a signature using RSASSA-PSS with MGF1 cCs*||tjt||jjd|S)Nmgf salt_length)rIrPSSMGF1r^ digest_sizerGr;r;r<rI|s zRSAPSSAlgorithm.signc CsHz|||tjt||jjd|WdSty#YdSw)NrTF)rLrrrr^rr rJr;r;r<rLs  zRSAPSSAlgorithm.verifyN)rRrSrTrUrIrLr;r;r;r<r9ws r9)6rvrsrncompatrr exceptionsrutilsrrr r r r r rcryptography.hazmat.primitivesr,cryptography.hazmat.primitives.serializationrrr-cryptography.hazmat.primitives.asymmetric.rsarrrrrrrr,cryptography.hazmat.primitives.asymmetric.ecrr)cryptography.hazmat.primitives.asymmetricrrcryptography.hazmat.backendsrcryptography.exceptionsr r5 ImportErrorsetrequires_cryptographyr=objectr>r0r1r7r8r9r;r;r;r<s< ( (    (45