ó ›t0^c@s dZddlZddlZddlZddlZddlZddlmZmZm Z m Z m Z m Z de fd„ƒYZde jfd„ƒYZde jfd „ƒYZd e jfd „ƒYZd e fd „ƒYZedkreejƒƒndS(sJSON Web Signature.iÿÿÿÿN(tb64terrorst json_utiltjwatjwktutilt MediaTypecBs2eZdZdZed„ƒZed„ƒZRS(s MediaType field encoder/decoder.s application/cCs9d|kr5d|kr*tjdƒ‚n|j|S|S(sDecoder.t/t;sUnexpected semi-colon(RtDeserializationErrortPREFIX(tclstvalue((s./usr/lib/python2.7/site-packages/josepy/jws.pytdecodes    cCs!d|kr|t|jƒS|S(sEncoder.R(tlenR (R R ((s./usr/lib/python2.7/site-packages/josepy/jws.pytencodes (t__name__t __module__t__doc__R t classmethodR R(((s./usr/lib/python2.7/site-packages/josepy/jws.pyR s tHeadercBs eZdZejddejjdeƒZ ejddeƒZ ejdde j jdeƒZ ejddeƒZ ejddeƒZejdded dƒZejd dejdeƒZejd dejdeƒZejd d ejdejdeƒZejdd ejdejdeƒZejdded dƒZd„Zd„Zd„Zejd„ƒZejd„ƒZejd„ƒZRS(s6JOSE Header. .. warning:: This class supports **only** Registered Header Parameter Names (as defined in section 4.1 of the protocol). If you need Public Header Parameter Names (4.2) or Private Header Parameter Names (4.3), you must subclass and override :meth:`from_json` and :meth:`to_partial_json` appropriately. .. warning:: This class does not support any extensions through the "crit" (Critical) Header Parameter (4.1.11) and as a conforming implementation, :meth:`from_json` treats its occurrence as an error. Please subclass if you seek for a different behaviour. :ivar x5tS256: "x5t#S256" :ivar str typ: MIME Media Type, inc. :const:`MediaType.PREFIX`. :ivar str cty: Content-Type, inc. :const:`MediaType.PREFIX`. talgtdecodert omitemptytjkuRtkidtx5utx5ctdefaulttx5tsx5t#S256ttyptencodertctytcritcs&t‡fd†tjˆjƒDƒƒS(s4Fields that would not be omitted in the JSON object.c3sB|]8\}}|jtˆ|ƒƒs|tˆ|ƒfVqdS(N(tomittgetattr(t.0tnametfield(tself(s./usr/lib/python2.7/site-packages/josepy/jws.pys Ns (tdicttsixt iteritemst_fields(R'((R's./usr/lib/python2.7/site-packages/josepy/jws.pyt not_omittedLscCsŒt|t|ƒƒs3tdjt|ƒƒƒ‚n|jƒ}|jƒ}t|ƒj|ƒrotdƒ‚n|j|ƒt|ƒ|S(NsHeader cannot be added to: {0}s+Addition of overlapping headers not defined(t isinstancettypet TypeErrortformatR,tsett intersectiontupdate(R'tothertnot_omitted_selftnot_omitted_other((s./usr/lib/python2.7/site-packages/josepy/jws.pyt__add__Rs    cCs(|jdkr!tjdƒ‚n|jS(síFind key based on header. .. todo:: Supports only "jwk" header parameter lookup. :returns: (Public) key found in the header. :rtype: .JWK :raises josepy.errors.Error: if key could not be found s No key foundN(RtNoneRtError(R'((s./usr/lib/python2.7/site-packages/josepy/jws.pytfind_key`s cCstjdƒ‚dS(Ns("crit" is not supported, please subclass(RR (t unused_value((s./usr/lib/python2.7/site-packages/josepy/jws.pyR!oscCs8g|D]-}tjtjjtjj|jƒƒ^qS(N(tbase64t b64encodetOpenSSLtcryptotdump_certificatet FILETYPE_ASN1twrapped(R tcert((s./usr/lib/python2.7/site-packages/josepy/jws.pyRwscCsGytd„|DƒƒSWn(tjjk rB}tj|ƒ‚nXdS(Ncss<|]2}tjtjjtjjtj|ƒƒƒVqdS(N(RtComparableX509R>R?tload_certificateRAR<t b64decode(R$RC((s./usr/lib/python2.7/site-packages/josepy/jws.pys s(ttupleR>R?R9RR (R terror((s./usr/lib/python2.7/site-packages/josepy/jws.pyR|s  (((RRRRtFieldRt JWASignaturet from_jsontTrueRRRtJWKRRRtdecode_b64joseRtx5tS256RRR RR R!R,R7R:RR(((s./usr/lib/python2.7/site-packages/josepy/jws.pyR&s.!   t SignaturecBseZdZeZdZejddeddƒZ ejddedeƒdej ƒZ ejddej d ej ƒZe jd „ƒZ e jd „ƒZ d „Zed „ƒZed„ƒZdd„Zeeeƒd„ƒZd„Zed„ƒZRS(sJWS Signature. :ivar combined: Combined Header (protected and unprotected, :class:`Header`). :ivar unicode protected: JWS protected header (Jose Base-64 decoded). :ivar header: JWS Unprotected Header (:class:`Header`). :ivar str signature: The signature. tcombinedt protectedRRttheaderRt signatureRcCstj|jdƒƒS(Nsutf-8(Rtencode_b64joseR(R ((s./usr/lib/python2.7/site-packages/josepy/jws.pyRR›scCstj|ƒjdƒS(Nsutf-8(RRNR (R ((s./usr/lib/python2.7/site-packages/josepy/jws.pyRR scKs8d|kr|j|ƒ}ntt|ƒj|dS(NRQ(t_with_combinedtsuperRPt__init__(R'tkwargs((s./usr/lib/python2.7/site-packages/josepy/jws.pyRY¤s cCsk|jd|jdjƒ}|jd|jdjƒ}|rW||jj|ƒ}n|}||d<|S(NRTRRRQ(tgetR+Rt header_clst json_loads(R RZRTRRRQ((s./usr/lib/python2.7/site-packages/josepy/jws.pyRWªs cCs'tj|jdƒƒdtj|ƒS(Nsutf-8t.(RR=R(R RRtpayload((s./usr/lib/python2.7/site-packages/josepy/jws.pyt_msg¸sc CsX|dkr|jjƒn|}|jjjd|jd|jd|j|j|ƒƒS(sEVerify. :param JWK key: Key used for verification. tkeytsigtmsgN( R8RQR:RtverifyRaRUR`RR(R'R_Ra((s./usr/lib/python2.7/site-packages/josepy/jws.pyRd½s!c KsÏ|}||d<|r)|jƒ|ds(tallRu(R'Ra((RaR's./usr/lib/python2.7/site-packages/josepy/jws.pyRdscKs(|d|d|jjd||fƒS(sSign.R_Ru(t signature_clsRh(R R_RZ((s./usr/lib/python2.7/site-packages/josepy/jws.pyRhs cCs |jdS(sPGet a singleton signature. :rtype: :class:`JWS.signature_cls` i(Ru(R'((s./usr/lib/python2.7/site-packages/josepy/jws.pyRU scCsGtj|jjjdƒƒdtj|jƒdtj|jjƒS(s7Compact serialization. :rtype: bytes sutf-8R^(RR=RURRRR_(R'((s./usr/lib/python2.7/site-packages/josepy/jws.pyt to_compacts3cCs‘y|jdƒ\}}}Wn tk r>tjdƒ‚nX|jdtj|ƒjdƒdtj|ƒƒ}|dtj|ƒd|fƒS(sACompact deserialization. :param bytes compact: R^sOCompact JWS serialization should comprise of exactly 3 dot-separated componentsRRsutf-8RUR_Ru(tsplitt ValueErrorRR RwRRFR (R tcompactRRR_RURb((s./usr/lib/python2.7/site-packages/josepy/jws.pyt from_compact)s   cCsgtj|jƒ}|rNt|jƒdkrN|jdjƒ}||d<|Si|d6|jd6SdS(NiiR_Ru(RRVR_RRutto_partial_json(R'tflatR_tret((s./usr/lib/python2.7/site-packages/josepy/jws.pyR}<s c s¨d|kr*d|kr*tjdƒ‚nzd|krjˆdtj|jdƒƒdˆjj|ƒfƒSˆdtj|dƒdt‡fd†|dDƒƒƒSdS(NRURusFlat mixed with non-flatR_c3s!|]}ˆjj|ƒVqdS(N(RwRK(R$Rb(R (s./usr/lib/python2.7/site-packages/josepy/jws.pys Ss(RR RRNRfRwRKRG(R Rp((R s./usr/lib/python2.7/site-packages/josepy/jws.pyRKJs (spayloads signaturesN(RRRRrRPRwR8RdRRhtpropertyRURxR|RLR}RK(((s./usr/lib/python2.7/site-packages/josepy/jws.pyRtøs   tCLIcBskeZdZed„ƒZed„ƒZed„ƒZed„ƒZed„ƒZedd„ƒZ RS(sJWS CLI.c Csà|jjj|jjƒƒ}|jjƒ|jdkrFg|_n|jrb|jj dƒnt j dt j jƒjƒd|d|jdt|jƒƒ}|jrÉtj|jƒjdƒƒntj|jƒƒdS(sSign.RR_RaRjsutf-8N(RtktytloadRatreadtcloseRjR8R{tappendRtRhtsyststdinRR1R)tprint_RxR tjson_dumps_pretty(R targsRaRb((s./usr/lib/python2.7/site-packages/josepy/jws.pyRhZs   - cCs×|jr*tjtjjƒjƒƒ}nCytjtjjƒƒ}Wn$tj k rl}t j |ƒdSX|j dk r­|jj|j jƒƒjƒ}|j jƒnd}tjj|jƒ|jd|ƒ S(sVerify.iÿÿÿÿRaN(R{RtR|R‡RˆR„RR]RR9R)R‰RaR8R‚RƒReR…tstdouttwriteR_Rd(R R‹RbRHRa((s./usr/lib/python2.7/site-packages/josepy/jws.pyRdls ! !cCstjj|ƒS(N(RRJRK(R targ((s./usr/lib/python2.7/site-packages/josepy/jws.pyt _alg_type‚scCs|S(N((R RŽ((s./usr/lib/python2.7/site-packages/josepy/jws.pyt _header_type†scCstjj|S(N(RRMtTYPES(R RŽ((s./usr/lib/python2.7/site-packages/josepy/jws.pyt _kty_type‹scCsN|dkrtjd}ntjƒ}|jdddƒ|jƒ}|jdƒ}|jd|j ƒ|jddd tj d ƒd t ƒ|jd d d |j dt jƒ|jddddd |jƒ|jdƒ}|jd|jƒ|jddd tj d ƒd tƒ|jdd |jd tƒ|j|ƒ}|j|ƒS(s Parse arguments and sign/verify.is --compacttactiont store_trueRhtfuncs-ks--keyR.trbtrequireds-as--algRs-ps --protectR†Rds--ktyN(R8R‡targvtargparsetArgumentParsert add_argumenttadd_subparserst add_parsert set_defaultsRhtFileTypeRLRRtRS256RRdtFalseR’t parse_argsR•(R R‹tparsert subparserst parser_signt parser_verifytparsed((s./usr/lib/python2.7/site-packages/josepy/jws.pytruns*   N( RRRRRhRdRRR’R8R¨(((s./usr/lib/python2.7/site-packages/josepy/jws.pyRWst__main__(RR™R<R‡R>R)tjosepyRRRRRRtobjectRtJSONObjectWithFieldsRRPRtRRtexitR¨(((s./usr/lib/python2.7/site-packages/josepy/jws.pyts     .`r_V