File: //lib64/python3.9/site-packages/gssapi/__pycache__/creds.cpython-39.pyc
a
�������_�@�����������������������@���sj���d�d�l�m�Z���d�d�l�m�Z���d�d�l�m�Z�m�Z���d�d�l�m Z ��e�d���Z
e�d���Z�e�d���Z�e�d���Z
G�d d
��d
e�j���Z�d�S�)������)���creds)���named_tuples)���import_gssapi_extension��_encode_dict)���namesZ�cred_imp_expZ�s4uZ
cred_storeZ�rfc5588c������������������������s����e�Z�d�Z�d�Z�d�Z�d"��f�d�d�� Z�e�d�d�����Z�e�d d
����Z�e�d�d�����Z e�d
d�����Z
e�d#d�d�����Z�d$d�d���Z
d%d�d���Z�d&d�d���Z�d'd�d���Z�d(d�d���Z�d�d���Z�d d!��Z�����Z�S�))��Credentialsa<���GSSAPI Credentials
This class represents a set of GSSAPI credentials which may
be used with and/or returned by other GSSAPI methods.
It inherits from the low-level GSSAPI :class:`~gssapi.raw.creds.Creds`
class, and thus may used with both low-level and high-level API methods.
If your implementation of GSSAPI supports the credentials import-export
extension, you may pickle and unpickle this object.
The constructor either acquires or imports a set of GSSAPI
credentials.
If the `base` argument is used, an existing
:class:`~gssapi.raw.creds.Cred` object from the low-level API is
converted into a high-level object.
If the `token` argument is used, the credentials
are imported using the token, if the credentials import-export
extension is supported (:requires-ext:`cred_imp_exp`).
Otherwise, the credentials are acquired as per the
:meth:`acquire` method.
Raises:
BadMechanismError
BadNameTypeError
BadNameError
ExpiredCredentialsError
MissingCredentialsError
��N��bothc������������
�����������s^���|�d�u�r�|�}�n>|�d�u�r2t�d�u�r&t�d�����t���|���}�n�|�j�|�|�|�|�|�d���} | j�}�t�t�|�����|�|���S�)�N�WYour GSSAPI implementation does not have support for importing and exporting creditials)���store)��
rcred_imp_exp��NotImplementedErrorZ�import_cred��acquirer������superr������__new__)
��cls��base��token��name��lifetime��mechs��usager����Z
base_creds��res��� __class__r�����2/usr/lib64/python3.9/site-packages/gssapi/creds.pyr����1���s��������������������������z�Credentials.__new__c��������������������C���s����|�j�d�d�d�d�d���j�S�)�z.Get the name associated with these credentialsTF��r����r����r����r����)���inquirer��������selfr����r����r����r����E���s����������z�Credentials.namec��������������������C���s����|�j�d�d�d�d�d���j�S�)�z/Get the remaining lifetime of these credentialsFTr����)�r����r����r����r����r����r����r����K���s����������z�Credentials.lifetimec��������������������C���s����|�j�d�d�d�d�d���j�S�)�z(Get the mechanisms for these credentialsFTr����)�r����r����r����r����r����r����r����Q���s����������z�Credentials.mechsc��������������������C���s����|�j�d�d�d�d�d���j�S�)�z>Get the usage (initiate, accept, or both) of these credentialsFTr����)�r����r����r����r����r����r����r����W���s����������z�Credentials.usagec��������������������C���s^���|�d�u�r�t���|�|�|�|���}�n*t�d�u�r*t�d�����t�|���}�t���|�|�|�|�|���}�t���|�|�j�d���|�j |�j
��S�)�a����Acquire GSSAPI credentials
This method acquires credentials. If the `store` argument is
used, the credentials will be acquired from the given
credential store (if supported). Otherwise, the credentials are
acquired from the default store.
The credential store information is a dictionary containing
mechanisms-specific keys and values pointing to a credential store
or stores.
Using a non-default store requires support for the credentials store
extension.
Args:
name (Name): the name associated with the credentials,
or None for the default name
lifetime (int): the desired lifetime of the credentials, or None
for indefinite
mechs (list): the desired :class:`MechType` OIDs to be used
with the credentials, or None for the default set
usage (str): the usage for the credentials -- either 'both',
'initiate', or 'accept'
store (dict): the credential store information pointing to the
credential store from which to acquire the credentials,
or None for the default store (:requires-ext:`cred_store`)
Returns:
AcquireCredResult: the acquired credentials and information about
them
Raises:
BadMechanismError
BadNameTypeError
BadNameError
ExpiredCredentialsError
MissingCredentialsError
N�SYour GSSAPI implementation does not have support for manipulating credential stores��r����)���rcredsZ�acquire_cred��rcred_cred_storer
���r����Z�acquire_cred_from��tuplesZ�AcquireCredResultr����r����r����)�r����r����r����r����r����r����r����r����r����r����r����]���s�����*��������������������������z�Credentials.acquireFc��������������������C���sZ���|�d�u�r*t�d�u�r�t�d�����t���|�|�|�|�|���S�t�d�u�r:t�d�����t�|���}�t���|�|�|�|�|�|���S�d�S�)�a����Store these credentials into the given store
This method stores the current credentials into the specified
credentials store. If the default store is used, support for
:rfc:`5588` is required. Otherwise, support for the credentials
store extension is required.
:requires-ext:`rfc5588` or :requires-ext:`cred_store`
Args:
store (dict): the store into which to store the credentials,
or None for the default store.
usage (str): the usage to store the credentials with -- either
'both', 'initiate', or 'accept'
mech (OID): the :class:`MechType` to associate with the
stored credentials
overwrite (bool): whether or not to overwrite existing credentials
stored with the same name, etc
set_default (bool): whether or not to set these credentials as
the default credentials for the given store.
Returns:
StoreCredResult: the results of the credential storing operation
Raises:
GSSError
ExpiredCredentialsError
MissingCredentialsError
OperationUnavailableError
DuplicateCredentialsElementError
Nz=Your GSSAPI implementation does not have support for RFC 5588z\Your GSSAPI implementation does not have support for manipulating credential stores directly)��
rcred_rfc5588r
���Z
store_credr#���r����Z�store_cred_into)�r����r����r������mechZ overwriteZ�set_defaultr����r����r����r��������s�����"������
���������������z�Credentials.store��initiatec��������������������C���s2���t�d�u�r�t�d�����t���|�|�|�|�|���}�t�|���|�j�d���S�)�a����Impersonate a name using the current credentials
This method acquires credentials by impersonating another
name using the current credentials.
:requires-ext:`s4u`
Args:
name (Name): the name to impersonate
lifetime (int): the desired lifetime of the new credentials,
or None for indefinite
mechs (list): the desired :class:`MechType` OIDs for the new
credentials
usage (str): the desired usage for the new credentials -- either
'both', 'initiate', or 'accept'. Note that some mechanisms
may only support 'initiate'.
Returns:
Credentials: the new credentials impersonating the given name
N�8Your GSSAPI implementation does not have support for S4Ur!���)�� rcred_s4ur
���Z�acquire_cred_impersonate_name��typer����)�r����r����r����r����r����r����r����r����r������impersonate����s������������������z�Credentials.impersonateTc��������������������C���sD���t���|�|�|�|�|���}�|�j�d�u�r*t���|�j���}�n�d�}�t���|�|�j�|�j�|�j ��S�)�a����Inspect these credentials for information
This method inspects these credentials for information about them.
Args:
name (bool): get the name associated with the credentials
lifetime (bool): get the remaining lifetime for the credentials
usage (bool): get the usage for the credentials
mechs (bool): get the mechanisms associated with the credentials
Returns:
InquireCredResult: the information about the credentials,
with None used when the corresponding argument was False
Raises:
MissingCredentialsError
InvalidCredentialsError
ExpiredCredentialsError
N)
r"���Z�inquire_credr����r������Namer$���Z�InquireCredResultr����r����r����)�r����r����r����r����r����r������res_namer����r����r����r��������s��������
�����
���z�Credentials.inquirec��������������������C���sF���t���|�|�|�|�|�|���}�|�j�d�u�r,t���|�j���}�n�d�}�t���|�|�j�|�j�|�j ��S�)�a����Inspect these credentials for per-mechanism information
This method inspects these credentials for per-mechanism information
about them.
Args:
mech (OID): the mechanism for which to retrive the information
name (bool): get the name associated with the credentials
init_lifetime (bool): get the remaining initiate lifetime for
the credentials
accept_lifetime (bool): get the remaining accept lifetime for
the credentials
usage (bool): get the usage for the credentials
Returns:
InquireCredByMechResult: the information about the credentials,
with None used when the corresponding argument was False
N)
r"���Z�inquire_cred_by_mechr����r����r,���r$���Z�InquireCredByMechResult�
init_lifetime��accept_lifetimer����)�r����r&���r����r.���r/���r����r����r-���r����r����r������inquire_by_mech
���s������������
�������������z�Credentials.inquire_by_mechc������������ ��� ���C���s����|�d�u�r�|�d�u�r�t�d�����|�d�u�rPt�d�u�r0t�d�����t�|���}�t���|�|�|�|�|�|�|���}�nD|�d�u�r�t�d�u�rht�d�����t���|�|�|�|�|�|�|���}�n�t���|�|�|�|�|�|���}�t |�j
��S�)�a� ��Acquire more credentials to add to the current set
This method works like :meth:`acquire`, except that it adds the
acquired credentials for a single mechanism to a copy of the current
set, instead of creating a new set for multiple mechanisms.
Unlike :meth:`acquire`, you cannot pass None desired name or
mechanism.
If the `impersonator` argument is used, the credentials will
impersonate the given name using the impersonator credentials
(:requires-ext:`s4u`).
If the `store` argument is used, the credentials will be acquired
from the given credential store (:requires-ext:`cred_store`).
Otherwise, the credentials are acquired from the default store.
The credential store information is a dictionary containing
mechanisms-specific keys and values pointing to a credential store
or stores.
Note that the `store` argument is not compatible with the
`impersonator` argument.
Args:
name (Name): the name associated with the
credentials
mech (OID): the desired :class:`MechType` to be used with the
credentials
usage (str): the usage for the credentials -- either 'both',
'initiate', or 'accept'
init_lifetime (int): the desired initiate lifetime of the
credentials, or None for indefinite
accept_lifetime (int): the desired accept lifetime of the
credentials, or None for indefinite
impersonator (Credentials): the credentials to use to impersonate
the given name, or None to not acquire normally
(:requires-ext:`s4u`)
store (dict): the credential store information pointing to the
credential store from which to acquire the credentials,
or None for the default store (:requires-ext:`cred_store`)
Returns:
Credentials: the credentials set containing the current credentials
and the newly acquired ones.
Raises:
BadMechanismError
BadNameTypeError
BadNameError
DuplicateCredentialsElementError
ExpiredCredentialsError
MissingCredentialsError
NzMYou cannot use both the `impersonator` and `store` arguments at the same timer ���r(���)��
ValueErrorr#���r
���r����Z
add_cred_fromr)���Z�add_cred_impersonate_namer"���Z�add_credr����r����) r����r����r&���r����r.���r/���Z�impersonatorr����r����r����r����r������add/���s,����9������������������������������������������z�Credentials.addc��������������������C���s����t�d�u�r�t�d�����t���|���S�)�ay���Export these credentials into a token
This method exports the current credentials to a token that can
then be imported by passing the `token` argument to the constructor.
This is often used to pass credentials between processes.
:requires-ext:`cred_imp_exp`
Returns:
bytes: the exported credentials in token form
Nr
���)�r����r
���Z�export_credr����r����r����r������export����s����������z�Credentials.exportc��������������������C���s����t�|���d�|�����f�f�S�)�N)�r*���r3���r����r����r����r�����
__reduce__����s������z�Credentials.__reduce__)�NNNNNr ���N)�NNNr ���N)�Nr ���NFF)�NNNr'���)�TTTT)�TTTT)�r ���NNNN)���__name__�
__module__��__qualname__��__doc__� __slots__r������propertyr����r����r����r������classmethodr����r����r+���r����r0���r2���r3���r4����
__classcell__r����r����r����r����r����
���sB������!����������
���
���
���
��������;����
4����
!
�����
"������
U��r����N)�Z
gssapi.rawr����r"���r����r$���Z
gssapi._utilsr����r����Z�gssapir����r����r)���r#���r%���Z�Credsr����r����r����r����r������<module>����s��������������������