o PDi@sxddlZddlZddlmZddlmZdddZddZd d Zd d Z d dZ ddZ dej fddZ ee dS)N)rsa) serializationFcCsT|dpd}|}|dkrt|S|dkrt|S|dkr#t|Std|)zF Generates an OCI access token based on provided credentials. auth_typeconfigfileauthenticationsimpleauthenticationinstanceprincipalz-Unrecognized auth_type authentication method )getlower!_config_file_based_authentication_simple_authentication"_instance_principal_authentication ValueError)token_auth_configrefreshuser_auth_typerrT/var/www/Datamplify/venv/lib/python3.10/site-packages/oracledb/plugins/oci_tokens.pygenerate_token%srcCs~tjddd}|jtjjtjjtd d}| j tjjtj j d d}ts:ddd |D}|}||d S) zF Generates a public-private key pair for proof of possession. ii)public_exponentkey_size)encodingformatencryption_algorithmzutf-8)rrrcss,|]}|ds|ds|VqdS)z -----BEGINz-----ENDN) startswithstrip).0linerrr Os z _get_key_pair..) private_key public_key)rgenerate_private_key private_bytesrEncodingPEM PrivateFormatPKCS8 NoEncryptiondecoder public_bytes PublicFormatSubjectPublicKeyInfooracledb is_thin_modejoin splitlines)rprivate_key_pempublic_key_pemp_keyrrr _get_key_pair7s0  r3cCsDt}|dd}tjjj||dd}|j|d}|jj|dfS)z@ Token generation logic used by authentication methods. scopezurn:oracle:db::id::*r )r4r )$generate_scoped_access_token_detailsr) r3r ociidentity_data_planemodels GenerateScopedAccessTokenDetailsgenerate_scoped_access_tokendatatoken)clientrkey_pairr4detailsresponserrr_generate_access_token[s rAcCsP|dtjj}|dtjj}tj||}tj|tj|}t ||S)zg Config file base authentication implementation: config parameters are provided in a file. file_locationprofile) r r6configDEFAULT_LOCATIONDEFAULT_PROFILE from_filevalidate_configr7DataplaneClientrA)rrBrCrDr=rrrr ls   r cCsL|d|d|d|d|d|dd}tj|tj|}t||S)zK Simple authentication: config parameters are passed as parameters userkey_file fingerprinttenancyregionrC)rJrKrLrMrNrC)r6rDrHr7rIrA)rrDr=rrrr s   r cCs&tjj}tjji|d}t||S)za Instance principal authentication: for compute instances with dynamic group access. )rDsigner)r6authsigners%InstancePrincipalsSecurityTokenSignerr7rIrA)rrOr=rrrr s  r paramscs*jdurfdd}j|ddSdS)z3 OCI-specific hook for generating a token. Ncs tj|S)N)rextra_auth_params)rrSrrtoken_callbacks z&oci_token_hook..token_callback) access_token)rTset)rSrVrrUroci_token_hooks  rY)F)r6r,)cryptography.hazmat.primitives.asymmetricrcryptography.hazmat.primitivesrrr3rAr r r ConnectParamsrYregister_params_hookrrrrs   $