o [h@sddlZddlZddlmZddlmZddlmZddlmZddlmZddl m Z Gd d d e Z Gd d d e Z Gd dde ZGddde ZdS)N)constant_time_compare)_base64_alphabet) base64_decode) base64_encode) want_bytes) BadSignaturec@s eZdZdZddZddZdS)SigningAlgorithmzgSubclasses must implement :meth:`get_signature` to provide signature generation functionality. cCst)z2Returns the signature for the given key and value.)NotImplementedErrorselfkeyvaluerz/home/ubuntu/experiments/live_experiments/Pythonexperiments/Otree/venv/lib/python3.10/site-packages/itsdangerous/signer.py get_signatureszSigningAlgorithm.get_signaturecCst||||S)zMVerifies the given signature matches the expected signature. )rr)r r rsigrrrverify_signaturesz!SigningAlgorithm.verify_signatureN)__name__ __module__ __qualname____doc__rrrrrrr s r c@seZdZdZddZdS) NoneAlgorithmz`Provides an algorithm that does not perform any signing and returns an empty signature. cCsdS)Nrr rrrr!szNoneAlgorithm.get_signatureN)rrrrrrrrrrs rc@s,eZdZdZeejZdddZddZ dS) HMACAlgorithmz*Provides signature generation using HMACs.NcCs|dur|j}||_dSN)default_digest_method digest_method)r rrrr__init__-s zHMACAlgorithm.__init__cCstj|||jd}|S)N)msg digestmod)hmacnewrdigest)r r rmacrrrr2szHMACAlgorithm.get_signaturer) rrrr staticmethodhashlibsha1rrrrrrrr%s    rc@sbeZdZdZeejZdZ     dddZ ddZ d d Z d d Z d dZ ddZddZdS)SigneraThis class can sign and unsign bytes, validating the signature provided. Salt can be used to namespace the hash, so that a signed string is only valid for a given namespace. Leaving this at the default value or re-using a salt value across different parts of your application where the same signed value in one part can mean something different in another part is a security risk. See :ref:`the-salt` for an example of what the salt is doing and how you can utilize it. .. versionadded:: 0.14 ``key_derivation`` and ``digest_method`` were added as arguments to the class constructor. .. versionadded:: 0.18 ``algorithm`` was added as an argument to the class constructor. django-concatN.cCs|t||_t||_|jtvrtd|durdn||_|dur#|j}||_|dur-|j}||_ |dur9t |j }||_ dS)NzThe given separator cannot be used because it may be contained in the signature itself. Alphanumeric characters and `-_=` must not be used.zitsdangerous.Signer) r secret_keysepr ValueErrorsaltdefault_key_derivationkey_derivationrrr algorithm)r r+r.r,r0rr1rrrr[s    zSigner.__init__cCst|j}|jdkr|||jS|jdkr%||d|jS|jdkrs