o ~j6h@s\dZddlmZddlmZddlmZGdddeZGdddeZGd d d eZd S) z(Interfaces for asynchronous credentials.)_helpers) exceptions)_BaseCredentialscs:eZdZdZfddZd ddZddZd d ZZS) Credentialsa^Base class for all asynchronous credentials. All credentials have a :attr:`token` that is used for authentication and may also optionally set an :attr:`expiry` to indicate when the token will no longer be valid. Most credentials will be :attr:`invalid` until :meth:`refresh` is called. Credentials can do this automatically before the first HTTP request in :meth:`before_request`. Although the token and expiration will change as the credentials are :meth:`refreshed ` and used, credentials should be considered immutable. Various credentials will accept configuration such as private keys, scopes, and other options. These options are not changeable after construction. Some classes will provide mechanisms to copy the credentials with modifications such as :meth:`ScopedCredentials.with_scopes`. cstt|dSN)superr__init__)self __class__j/var/www/html/chefvision.cloud.itp360.com/venv/lib/python3.10/site-packages/google/auth/aio/credentials.pyr+szCredentials.__init__Ncs|j||ddS)zApply the token to the authentication header. Args: headers (Mapping): The HTTP request headers. token (Optional[str]): If specified, overrides the current access token. )tokenN)_applyr headersrr r r apply.szCredentials.applycs td)a Refreshes the access token. Args: request (google.auth.aio.transport.Request): The object used to make HTTP requests. Raises: google.auth.exceptions.RefreshError: If the credentials could not be refreshed. zRefresh must be implemented)NotImplementedErrorr requestr r r refresh8s zCredentials.refreshcs||IdHdS)aPerforms credential-specific before request logic. Refreshes the credentials if necessary, then calls :meth:`apply` to apply the token to the authentication header. Args: request (google.auth.aio.transport.Request): The object used to make HTTP requests. method (str): The request's HTTP method or the RPC method being invoked. url (str): The request's URI or the RPC service's URI. headers (Mapping): The request's headers. Nrr rmethodurlrr r r before_requestEszCredentials.before_requestr) __name__ __module__ __qualname____doc__rrrr __classcell__r r r r rs     rcsDeZdZdZfddZeeddZeeddZ Z S)StaticCredentialsaAsynchronous Credentials representing an immutable access token. The credentials are considered immutable except the tokens which can be configured in the constructor :: credentials = StaticCredentials(token="token123") StaticCredentials does not support :meth `refresh` and assumes that the configured token is valid and not expired. StaticCredentials will never attempt to refresh the token. cstt|||_dS)zB Args: token (str): The access token. N)rr!rr)r rr r r rcs zStaticCredentials.__init__c td)Nz'Static credentials cannot be refreshed.rInvalidOperationrr r r rks zStaticCredentials.refreshcs||IdHdSrrrr r r rqsz StaticCredentials.before_request) rrrrrrcopy_docstringrrrr r r r r r!Vs  r!c@s*eZdZdZddZd ddZddZdS) AnonymousCredentialszAsynchronous Credentials that do not provide any authentication information. These are useful in the case of services that support anonymous access or local service emulators that do not use credentials. cr")zVRaises :class:``InvalidOperation``, anonymous credentials cannot be refreshed.z*Anonymous credentials cannot be refreshed.r#rr r r r}s zAnonymousCredentials.refreshNcs|dur tddS)zAnonymous credentials do nothing to the request. The optional ``token`` argument is not supported. Raises: google.auth.exceptions.InvalidValue: If a token was specified. Nz+Anonymous credentials don't support tokens.)r InvalidValuerr r r rs zAnonymousCredentials.applycsdS)z0Anonymous credentials do nothing to the request.Nr rr r r rsz#AnonymousCredentials.before_requestr)rrrrrrrr r r r r&vs   r&N) r google.authrrgoogle.auth._credentials_baserrr!r&r r r r s   >