|
Server : Apache System : Linux cvar2.toservers.com 3.10.0-962.3.2.lve1.5.73.el7.x86_64 #1 SMP Wed Aug 24 21:31:23 UTC 2022 x86_64 User : njnconst ( 1116) PHP Version : 8.4.18 Disable Function : NONE Directory : /usr/lib64/python2.7/site-packages/django/core/ |
Upload File : |
�
r�\c�����������@��sk��d��Z��d�d�l�m�Z�d�d�l�Z�d�d�l�Z�d�d�l�Z�d�d�l�Z�d�d�l�m�Z�d�d�l �m
�Z
�d�d�l
�m
�Z
�m
�Z
�d�d�l�m�Z�m�Z�m�Z�d�d�l�m�Z�d �e�f�d
�������YZ�d
�e�f�d
�������YZ�d
����Z�d����Z�d����Z�d�d���Z�d�e�f�d�������YZ
�d�d�e
�e
�d���Z �d�d�e
�d�d���Z �d�e�f�d�������YZ!�d�e!�f�d�������YZ"�d�S(���u`��
Functions for creating and restoring url-safe signed JSON objects.
The format used looks like this:
>>> signing.dumps("hello")
'ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk'
There are two components here, separated by a ':'. The first component is a
URLsafe base64 encoded JSON of the object passed to dumps(). The second
component is a base64 encoded hmac/SHA1 hash of "$first_component:$secret"
signing.loads(s) checks the signature and returns the deserialised object.
If the signature fails, a BadSignature exception is raised.
>>> signing.loads("ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk")
u'hello'
>>> signing.loads("ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk-modified")
...
BadSignature: Signature failed: ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk-modified
You can optionally compress the JSON prior to base64 encoding it to save
space, using the compress=True argument. This checks if compression actually
helps and only applies compression if the result is a shorter string:
>>> signing.dumps(range(1, 20), compress=True)
'.eJwFwcERACAIwLCF-rCiILN47r-GyZVJsNgkxaFxoDgxcOHGxMKD_T7vhAml:1QaUaL:BA0thEZrp4FQVXIXuOvYJtLJSrQ'
The fact that the string is compressed is signalled by the prefixed '.' at the
start of the base64 JSON.
There are 65 url-safe characters: the 64 used by url-safe base64 and the ':'.
These functions make use of all of them.
i����(���t���unicode_literalsN(���t���settings(���t���baseconv(���t���constant_time_comparet
���salted_hmac(���t
���force_bytest ���force_strt
���force_text(���t���import_by_patht
���BadSignaturec�����������B��s���e��Z�d��Z�RS(���u"���
Signature does not match
(���t���__name__t
���__module__t���__doc__(����(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR ���2���s���t���SignatureExpiredc�����������B��s���e��Z�d��Z�RS(���u<���
Signature timestamp is older than required max_age
(���R
���R
���R
���(����(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR
���9���s���c���������C��s���t��j�|����j�d���S(���Nt���=(���t���base64t���urlsafe_b64encodet���strip(���t���s(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyt
���b64_encode@���s����c���������C��s&���d�t��|����
d�}�t�j�|��|���S(���NR���i���(���t���lenR���t���urlsafe_b64decode(���R���t���pad(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyt
���b64_decodeD���s����c���������C��s
���t��t�|��|�|���j������S(���N(���R���R���t���digest(���t���saltt���valuet���key(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyt
���base64_hmacI���s����u%���django.core.signing.get_cookie_signerc���������C��s&���t��t�j���}�|�d�t�j�d�|���S(���Nu���django.http.cookiesR���(���R���R���t���SIGNING_BACKENDt
���SECRET_KEY(���R���t���Signer(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyt���get_cookie_signerM���s����t���JSONSerializerc�����������B��s ���e��Z�d��Z�d����Z�d����Z�RS(���uW���
Simple wrapper around json to be used in signing.dumps and
signing.loads.
c���������C��s
���t��j�|�d�d��j�d���S(���Nt
���separatorsu���,u���:u���latin-1(���u���,u���:(���t���jsont���dumpst���encode(���t���selft���obj(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR$���W���s����c���������C��s���t��j�|�j�d�����S(���Nu���latin-1(���R#���t���loadst���decode(���R&���t���data(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR(���Z���s����(���R
���R
���R
���R$���R(���(����(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR!���R���s��� u���django.core.signingc��� ������C��s����|����j��|����}�t�}�|�r[�t�j�|���}�t�|���t�|���d�k��r[�|�}�t�}�q[�n��t�|���}�|�rz�d�|�}�n��t�|�d�|��j�|���S(���u���
Returns URL-safe, sha1 signed base64 compressed JSON string. If key is
None, settings.SECRET_KEY is used instead.
If compress is True (not the default) checks if compressing using zlib can
save some space. Prepends a '.' to signify compression. This is included
in the signature, to protect against zip bombs.
Salt can be used to namespace the hash, so that a signed string is
only valid for a given namespace. Leaving this at the default
value or re-using a salt value across different parts of your
application without good cause is a security risk.
The serializer is expected to return a bytestring.
i���t���.R���( ���R$���t���Falset���zlibt���compressR���t���TrueR���t���TimestampSignert���sign( ���R'���R���R���t
���serializerR.���R*���t
���is_compressedt
���compressedt���base64d(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR$���^���s����
c���������C��s����t��t�|�d�|��j�|��d�|����}�t�}�|�d� d�k�rP�|�d� }�t�}�n��t�|���}�|�rt�t�j�|���}�n��|����j�|���S(���u}���
Reverse of dumps(), raises BadSignature if signature fails.
The serializer is expected to accept a bytestring.
R���t���max_agei���R+���( ���R���R0���t���unsignR,���R/���R���R-���t
���decompressR(���(���R���R���R���R2���R6���R5���R8���R*���(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR(������s����'
R ���c�����������B��s5���e��Z�d�d��d�d���Z�d����Z�d����Z�d����Z�RS(���u���:c���������C��sV���t��|���|��_�t��|�p
�t�j���|��_�t��|�pI�d�|��j�j�|��j�j�f���|��_�d��S(���Nu���%s.%s( ���t���strt���sepR���R
���R���t ���__class__R
���R
���R���(���R&���R���R:���R���(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyt���__init__����s���� c���������C��s&���t��|��j�d�|�|��j���}�t�|���S(���Nu���signer(���R
���R���R���R���(���R&���R���t ���signature(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR=�������s����
c���������C��s/���t��|���}�t�d���|�|��j�|��j�|���f�S(���Nu���%s%s%s(���R���R9���R:���R=���(���R&���R���(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR1�������s����
c���������C��s����t��|���}�|��j�|�k�r1�t�d�|��j�����n��|�j�|��j�d���\�}�}�t�|�|��j�|�����rn�t�|���St�d�|�����d��S(���Nu���No "%s" found in valuei���u
���Signature "%s" does not match(���R���R:���R ���t���rsplitR���R=���R���(���R&���t
���signed_valueR���t���sig(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR7�������s����
N(���R
���R
���t���NoneR<���R=���R1���R7���(����(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR �������s��� R0���c�����������B��s&���e��Z�d�����Z�d����Z�d�d���Z�RS(���c���������C��s
���t��j�j�t�t�j��������S(���N(���R���t���base62R%���t���intt���time(���R&���(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyt ���timestamp����s����c���������C��sD���t��|���}�t�d���|�|��j�|��j����f�}�t�t�|����j�|���S(���Nu���%s%s%s(���R���R9���R:���RE���t���superR0���R1���(���R&���R���(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR1�������s����
"c���������C��s����t��t�|����j�|���}�|�j�|��j�d���\�}�}�t�j�j�|���}�|�d�k �r��t �j ����|�}�|�|�k�r��t
�d�|�|�f�����q��n��|�S(���uk���
Retrieve original value and check it wasn't signed more
than max_age seconds ago.
i���u
���Signature age %s > %s secondsN(
���RF���R0���R7���R>���R:���R���RB���R)���RA���RD���R
���(���R&���R���R6���t���resultRE���t���age(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR7�������s����
N(���R
���R
���RE���R1���RA���R7���(����(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyR0�������s��� (#���R
���t
���__future__R����R���R#���RD���R-���t
���django.confR���t
���django.utilsR���t���django.utils.cryptoR���R���t���django.utils.encodingR���R���R���t���django.utils.module_loadingR���t ���ExceptionR ���R
���R���R���R
���R ���t���objectR!���RA���R,���R$���R(���R ���R0���(����(����(����s5���/tmp/pip-install-XxeQeY/django/django/core/signing.pyt���<module>"���s*���
!