o ɶd1H@sddlmZddlmZddlmZddlmZddlm Z ddl Z ddl Z ddlmZddlZddlZddlZe jZGdd d eZGd d d eZGd d d eZGdddeZGdddeZdS))x509)default_backend)requests) HTTPError) ServiceErrorN)sixc@sDeZdZddZddZddZddZd d Zd d Zd dZ dS)AbstractCertificateRetrievercKsdddd|_dS)N) certificateprivate_key_pem private_keycertificate_and_private_keyselfkwargsrBusr/lib/python3.10/site-packages/oci/auth/certificate_retriever.py__init__*s z%AbstractCertificateRetriever.__init__cCtdNz Subclasses should implement thisNotImplementedErrorrrrrrefresh2z$AbstractCertificateRetriever.refreshcCrrrrrrrget_certificate_and_private_key6rzrz0AbstractCertificateRetriever.get_certificate_rawcCrrrrrrrget_private_key_pemBrz0AbstractCertificateRetriever.get_private_key_pemcCrrrrrrrget_private_keyFrz,AbstractCertificateRetriever.get_private_keyN) __name__ __module__ __qualname__rrrrrrrrrrrr)s rcsdeZdZdZdZfddZddZddZd d Zd d Z d dZ ddZ ddZ ddZ ZS)UrlBasedCertificateRetrievera A certificate retriever which reads PEM-format strings from URLs. :param str certificate_url: The URL from which to retrieve a certificate. It is assumed that what we retrieve is the PEM-formatted string for the certificate. This is mandatory :param str private_key_url: (optional) The URL from which to retrieve the private key corresponding to certificate_url (if any). It is assumed that what we retrieve is the PEM-formatted string for the private key. :param str passphrase: (optional) The passphrase of the private key (if any). :param obj retry_strategy: (optional) A retry strategy to use when retrieving the certificate and private key from the URLs provided to this class. This should be one of the strategies available in the :py:mod:`~oci.retry` module. By default this retriever will not perform any retries. :param bool log_requests: (optional) log_request if set to True will log the request url and response data when retrieving the certificate & corresponding private key (if there is one defined for this retriever) **Note:** This class is used internally, it is not recommended for user's direct use. ic stt|d|vrtd|d|_|d|_|d|_|d|_t d t t ||_|jt |drKd|j_|jt jnd |j_|jr`t|jtjr`|jd |_t|_t|_|d drz|jj|d | dS) NZcertificate_urlz6certificate_url must be supplied as a keyword argumentprivate_key_url passphraseretry_strategyz{}.{}Z log_requestsFTasciiheaders)!superr#r TypeErrorcert_urlgetr$r%r&logging getLoggerformatr idlogger addHandler NullHandlerdisabledsetLevelDEBUG isinstancer text_typeencode threadingLock _refresh_lockrZSessionrequests_sessionr(updaterr __class__rrrfs(         z%UrlBasedCertificateRetriever.__init__cCsV|jz|jr|j|jn |W|jdSW|jdS|jw)zp Refresh the token by making a call to Identity for a new token. Returns the new token. N)r<acquirer&Zmake_retrying_call_refresh_innerreleaserrrrrs  z$UrlBasedCertificateRetriever.refreshcCs"|j|j}|j|Sz] Returns the certificate_and_private_key dictionary contained by this object r<rAr copyrC)rZret_valrrrrs   zs*       !TS+