U T a@sdZddlZddlZddlZddlZddlZddlmZddlm Z ddl m Z m Z ddl mZddlmZddlmZed ZGd d d eZGd d d eZddZddZd$ddZd%ddZGdddZddedfddZddedfddZGd d!d!ZGd"d#d#eZdS)&ae Functions for creating and restoring url-safe signed JSON objects. The format used looks like this: >>> signing.dumps("hello") 'ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk' There are two components here, separated by a ':'. The first component is a URLsafe base64 encoded JSON of the object passed to dumps(). The second component is a base64 encoded hmac/SHA1 hash of "$first_component:$secret" signing.loads(s) checks the signature and returns the deserialized object. If the signature fails, a BadSignature exception is raised. >>> signing.loads("ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk") 'hello' >>> signing.loads("ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk-modified") ... BadSignature: Signature failed: ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk-modified You can optionally compress the JSON prior to base64 encoding it to save space, using the compress=True argument. This checks if compression actually helps and only applies compression if the result is a shorter string: >>> signing.dumps(list(range(1, 20)), compress=True) '.eJwFwcERACAIwLCF-rCiILN47r-GyZVJsNgkxaFxoDgxcOHGxMKD_T7vhAml:1QaUaL:BA0thEZrp4FQVXIXuOvYJtLJSrQ' The fact that the string is compressed is signalled by the prefixed '.' at the start of the base64 JSON. There are 65 url-safe characters: the 64 used by url-safe base64 and the ':'. These functions make use of all of them. N)settings)baseconv)constant_time_compare salted_hmac) force_bytes) import_string)_lazy_re_compilez^[A-z0-9-_=]*$c@seZdZdZdS) BadSignaturezSignature does not match.N__name__ __module__ __qualname____doc__rr7/tmp/pip-unpacked-wheel-swgtpe36/django/core/signing.pyr 4sr c@seZdZdZdS)SignatureExpiredz3Signature timestamp is older than required max_age.Nr rrrrr9srcCst|dS)N=)base64urlsafe_b64encodestrip)srrr b64_encode>srcCs dt| d}t||S)Nr)lenrurlsafe_b64decode)rpadrrr b64_decodeBsrsha1cCstt||||dS)N algorithm)rrdigestdecode)saltvaluekeyrrrr base64_hmacGsr%%django.core.signing.get_cookie_signercCs$ttj}ttj}|d||dS)Nsdjango.http.cookiesr")rrZSIGNING_BACKENDr SECRET_KEY)r"Signerr$rrrget_cookie_signerKs  r*c@s eZdZdZddZddZdS)JSONSerializerzW Simple wrapper around json to be used in signing.dumps and signing.loads. cCstj|dddS)N),:) separatorslatin-1)jsondumpsencode)selfobjrrrr1VszJSONSerializer.dumpscCst|dS)Nr/)r0loadsr!)r3datarrrr5YszJSONSerializer.loadsN)r r r rr1r5rrrrr+Qsr+zdjango.core.signingFcCst||dj|||dS)a Return URL-safe, hmac signed base64 compressed JSON string. If key is None, use settings.SECRET_KEY instead. The hmac algorithm is the default Signer algorithm. If compress is True (not the default), check if compressing using zlib can save some space. Prepend a '.' to signify compression. This is included in the signature, to protect against zip bombs. Salt can be used to namespace the hash, so that a signed string is only valid for a given namespace. Leaving this at the default value or re-using a salt value across different parts of your application without good cause is a security risk. The serializer is expected to return a bytestring. r') serializercompress)TimestampSigner sign_object)r4r$r"r7r8rrrr1]sr1cCst||dj|||dS)z| Reverse of dumps(), raise BadSignature if signature fails. The serializer is expected to accept a bytestring. r')r7max_age)r9 unsign_object)rr$r"r7r;rrrr5qsr5c@sTeZdZdZdddZddZdd Zd d Zd d Ze dfddZ e fddZ dS)r)rNr-cCsT|ptj|_||_t|jr*td||p@d|jj|jj f|_ |pLtj |_ dS)NzJUnsafe Signer separator: %r (cannot be empty or consist of only A-z0-9-_=)z%s.%s) rr(r$sep _SEP_UNSAFEmatch ValueError __class__r r r"ZDEFAULT_HASHING_ALGORITHMr)r3r$r=r"rrrr__init__~s  zSigner.__init__cCst|jd||j|jdSNZsignerr)r%r"r$rr3r#rrr signatureszSigner.signaturecCst|jd||j|jdSrC)r%r"r$legacy_algorithmrDrrr_legacy_signatureszSigner._legacy_signaturecCsd||j||fSNz%s%s%s)r=rErDrrrsignsz Signer.signcCsd|j|krtd|j||jd\}}t|||sP|jrTt|||rT|Std|dS)NzNo "%s" found in valuezSignature "%s" does not match)r=r rsplitrrErFrG)r3Z signed_valuer#sigrrrunsigns z Signer.unsignFcCs\||}d}|r:t|}t|t|dkr:|}d}t|}|rRd|}||S)ae Return URL-safe, hmac signed base64 compressed JSON string. If compress is True (not the default), check if compressing using zlib can save some space. Prepend a '.' to signify compression. This is included in the signature, to protect against zip bombs. The serializer is expected to return a bytestring. FrJT.)r1zlibr8rrr!rI)r3r4r7r8r6Z is_compressed compressedbase64drrrr:s   zSigner.sign_objectcKsT|j|f|}|dddk}|r2|dd}t|}|rHt|}||S)NrJ.)rMr2rrO decompressr5)r3Z signed_objr7kwargsrQrSr6rrrr<s  zSigner.unsign_object)Nr-NN) r r r rFrBrErGrIrMr+r:r<rrrrr)zs  r)cs2eZdZddZfddZdfdd ZZS) r9cCstjttS)N)rbase62r2inttime)r3rrr timestampszTimestampSigner.timestampcs d||j|f}t|SrH)r=rXsuperrIrDrArrrIszTimestampSigner.signNcsnt|}||jd\}}tj|}|dk rjt|tj rF| }t |}||krjt d||f|S)zk Retrieve original value and check it wasn't signed more than max_age seconds ago. rJNzSignature age %s > %s seconds) rYrMrKr=rrUr! isinstancedatetime timedelta total_secondsrWr)r3r#r;resultrXZagerZrrrMs     zTimestampSigner.unsign)N)r r r rXrIrM __classcell__rrrZrr9s r9)r)r&) rrr\r0rWrOZ django.confrZ django.utilsrZdjango.utils.cryptorrZdjango.utils.encodingrZdjango.utils.module_loadingrZdjango.utils.regex_helperrr> Exceptionr rrrr%r*r+r1r5r)r9rrrrs.#         O