;B SrSSKJr SSKJr SSKJr SSKrSSKrSSKrSSKrSSK J r SSK J r SSK J r SS KJr SS KJr SS KJr SS KJr SS KJr SSKJr SSKJr SSKrSSKrSSKJr SS0r \RBRDRFS\RBRHRFS\RBRJRF\RLROSSSS50r(S(Sjr)"SS\RT5r+Sr,"SS\RZ5r.S)Sjr/"S S!\RZ5r0S"r1S#r2S$r3S*S%jr4S+S&jr5S)S'jr6g),zHAnthos command library functions and utilities for the anthoscli binary.)absolute_import)division)unicode_literalsN)flags) file_parsers)messages)binary_operations) exceptions)log) console_io)store)files) platforms)urllibCOBRA_SILENCE_USAGEtruez2~/.config/google/anthos/kubectl-anthos-config.yamlz>~/Library/Preferences/google/anthos/kubectl-anthos-config.yamlz %APPDATA%googleanthoszkubectl-anthos-config.yamlc[R"[R5nUR [ 5 U(aUR U5 U(aUHnUR U5 M U$)z6Return an env dict to be passed on command invocation.)copydeepcopyosenvironupdateDEFAULT_ENV_ARGSpop) extra_vars exclude_varsenvks :lib/googlecloudsdk/command_lib/anthos/anthoscli_backend.pyGetEnvArgsForCommandr"5sM bjj!#** JJz  ggaj *c\rSrSrSrSrg)AnthosAuthExceptionAz?Base Exception for auth issues raised by gcloud anthos surface.N)__name__ __module__ __qualname____firstlineno____doc____static_attributes__r'r#r!r%r%AsGr#r%c[RRU5n[RRU5n[RR U5=(d UnX#4$)z=Splits full path into relative(basename) path and parent dir.)rpathnormpathbasenamedirname)r/r0rel_path parent_dirs r!RelativePkgPathFromFullPathr5EsJ WW  d #( WW  h '(wwx(4H*  r#cx^\rSrSrSrU4SjrS SjrSSjrSrSr SSjr S r S r S r S rU=r$)AnthosCliWrapperM0Binary operation wrapper for anthoscli commands.c r>S[RRSS90n[[U]"SSUS.UD6 g)N MISSING_EXEC anthosclibinaryr> custom_errorsr')rMISSING_BINARYformatsuperr7__init__selfkwargsr@ __class__s r!rDAnthosCliWrapper.__init__PsJ//66k6JM D*C-C;ACr#c DASX/nU(aURSU/5 U$)Ngetz --patternextend)rFrepo_uri local_dest file_patternrG exec_argss r! _ParseGetArgsAnthosCliWrapper._ParseGetArgsWs+-I \23 r#c ASU/nU(aURSU/5 U(aURS5 U(aURSU/5 U(aURS5 U$)Nrz--repo --dry-runz --strategyz --verbose)rMappend)rF local_dirrNstrategydry_runverboserGrQs r!_ParseUpdateArgs!AnthosCliWrapper._ParseUpdateArgs`se 9%I(+,{# h/0{# r#c ASU/$)Ndescr')rFrWrGs r!_ParseDescribeArgs#AnthosCliWrapper._ParseDescribeArgsxs I r#c SR[R"U5VVs/sHup#SRX#5PM snn5$s snnf)N,z{}={})joinsix iteritemsrB)rFtagsxys r! _ParseTagsAnthosCliWrapper._ParseTags|s9 88cmmD6IJ6IdaW^^A)6IJ KKJsA c 8AUnURS5(dUS- nSU/nU(aURSU/5 U(aURSU/5 U(a"URSURU5/5 U(aURSU/5 U$)N/initz --descriptionz--namez--tagz--url)endswithrMri) rFrW descriptionnamerfinfo_urlrG package_pathrQs r!_ParseInitArgsAnthosCliWrapper._ParseInitArgss L   % %cl&I56 $'( !678*+ r#c ASSUSU/nU$)Napplyz-f --projectr')rF apply_dirprojectrGrQs r!_ParseApplyArgs AnthosCliWrapper._ParseApplyArgss$ ;@I r#c ~ASSUSU/nU(aURSU/5 U(aURSU/5 U$)Nexportz-crwz --locationz--output-directoryrL)rFclusterrylocation output_dirrGrQs r!_ParseExportArgs!AnthosCliWrapper._ParseExportArgssH4+w?I h/0,j9: r#c lUS:XaUR"S0UD6$US:XaUR"S0UD6$US:XaUR"S0UD6$US:XaUR"S0UD6$US:XaUR"S0UD6$US:XaUR "S0UD6$[ R"SRU55e) NrKrr^rmrvr}z$Invalid Operation [{}] for anthosclir') rRr[r_rsrzrr InvalidOperationForBinaryrBrFcommandrGs r!_ParseArgsForCommand%AnthosCliWrapper._ParseArgsForCommands%    )& ))(  " " ,V ,,&  $ $ .v ..&  *6 **'  ! ! +F ++(  " " ,V ,,  5 5.55g> @@r#r'N)NNFF)NNNN)r(r)r*r+r,rDrRr[r_rirsrzrrr- __classcell__rHs@r!r7r7MsX8C!% $$$ 0L "&" 4 @@r#r7c[R"XS9nSU0n[ R "USS9$![an[SR XS95eSnAff=f)z@Generate a JSON object containing the current gcloud auth token.)allow_account_impersonation auth_tokenzS[RRSS90n[[U]"SSUS.UD6 g)Nr;zkubectl-anthosr=r?r')rMISSING_AUTH_BINARYrBrCrrDrEs r!rDAnthosAuthWrapper.__init__sL  ( ( / /7G / HM T+H}H@FHr#c[R"[[RR 5R 5$r)rExpandHomeAndVarsDEFAULT_LOGIN_CONFIG_PATHrOperatingSystemCurrentid)rFs r!default_config_path%AnthosAuthWrapper.default_config_paths4  " "!)";";"C"C"E"H"HI KKr#c  XA S/nU(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURS/5 U(aU(aURSUS U/5 U (aURS U /5 U (aURS U /5 U (aURS /5 U (aURS U /5 U$)Nlogin --cluster --kubeconfigz--login-configz--login-config-cert--userrUz--ldap-usernamez--ldap-passwordz--preferred-authz--serverz--remote-loginz--remote-bootstraprL)rFr~ kube_config login_configlogin_config_certuser ldap_user ldap_passrYpreferred_auth server_url no_browserremote_bootstraprGrQs r!_ParseLoginArgs!AnthosAuthWrapper._ParseLoginArgss  I W-. 45(,78-/@AB $'( }%Y i):I FH*N;< J/0()*,.>?@ r#c AS/nURSU/5 U(aURSU/5 U(aURSU/5 U$)Ncreate-login-configrz--outputz --merge-fromrL)rFr output_file merge_fromrGrQs r!_ParseCreateLoginConfigArgs-AnthosAuthWrapper._ParseCreateLoginConfigArgssT &'I nk23 K01 34 r#c AS/nU(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURS U/5 U (aURS U /5 U (aURS U /5 U (aURS U /5 U (aURS U /5 U (aURSU /5 U$)Ntokenz--typerz--aws-sts-regionz --id-tokenz--access-tokenz--access-token-expiryz--refresh-tokenz --client-idz--client-secretz --idp-certificate-authority-dataz--idp-issuer-urlz--kubeconfig-pathrrL)rF token_typer~aws_sts_regionid_tokenraccess_token_expiry refresh_token client_id client_secretidp_certificate_authority_dataidp_issuer_urlkubeconfig_pathrrGrQs r!_ParseTokenArgs!AnthosAuthWrapper._ParseTokenArgss?  I*-. W-.*N;< h/0(,78/1DEF)=9: y12)=9:% -/M NP*N;<+_=> $'( r#c US:XaUR"S0UD6$US:XaUR"S0UD6$US:XaS/$US:XaUR"S0UD6$[R"SR U55e)Nrrversionrz)Invalid Operation [{}] for kubectl-anthosr')rrrr rrBrs r!r&AnthosAuthWrapper._ParseArgsForCommand:s'  ! ! +F ++ ) )  - - 7 77 I [ G   ! ! +F ++  7 7 5 < #_Base64EncodeLdap..Ts##//&"2"233D3DQ3G"HIr#r')usernamepasswdencs r!_Base64EncodeLdaprRsI# XF ##r#cSnSnUR5(dgSRX5nSRX5n[R"SSUS9n[R"USS 9n[ X45$) z+Prompt User for Ldap Username and Password.Nrz5Please enter the ldap user for [{}] on cluster [{}]: z9Please enter the ldap password for [{}] on cluster [{}]: c[U5S:$Nrrrgs r!r%_GetLdapUserAndPass..ds #a&1*r#z*Error: Invalid username, please try again.) validator error_message prompt_stringc[U5S:$rrrs r!rrhs #a&1*r#)validation_callable)IsLdaprBr PromptWithValidatorPromptPasswordr)cluster_config auth_namer~rr user_message pass_messages r!_GetLdapUserAndPassrXs))    ++16)+E++16)+E,,$@ ")''(<>) 9 00r#c U(dg[RRU5nURS:H=(d URS:HnU(a[R "X=(d SS9nUR [RR:wa/[SRUR UR55eXRU4$[R"U5n[R"U5nXVU4$)afParses config input to determine whether URL or File logic should execute. Determines whether the cluster_config is a file or URL. If it's a URL, it then pulls the contents of the file using a GET request. If it's a file, then it expands the file path and returns its contents. Args: cluster_config: str, A file path or URL for the login-config. certificate_file: str, Optional file path to the CA certificate to use with the GET request to the URL. Raises: AnthosAuthException: If the data could not be pulled from the URL. Returns: parsed_config_fileOrURL, config_contents, and is_url parsed_config_fileOrURL: str, returns either the URL that was passed or an expanded file path if a file was passed. config_contents: str, returns the contents of the file or URL. is_url: bool, True if the provided cluster_config input was a URL. NNNhttphttpsT)verifyzIRequest to login-config URL failed withresponse code [{}] and text [{}]: )rparseurlparseschemerequestsrK status_codecodesokr%rBtextrExpandLocalDirAndVersionrReadFileContents)rcertificate_file config_urlis_urlresponseexpanded_config_pathcontentss r! GetFileOrURLrls.  ||$$^4*    & F**;*;w*F& ||N3KtLHx~~000 !EEKV$,$8$8(--FI JJ ==& 0077G  # #$8 9(  //r#cU(aU(dgSnU(aEU(d[SRU55e[R"U[RS9nO$[R"UU[RS9n[ XP5nUR 5nU(aU(GaUR5nU(d[SRU55e[U5S:XaUR5nOTSRU5n S n U(a!U(aU(dXRU5-n [R"XS S 9n Xn[RR!S RU55 UR#U5 U(aU(dUR%5 ['XgU5upX|U 4$![a SnGN2[Ra gf=f) z.Get preferredAuthentication value for cluster.rNz-Config contents were not passed with URL [{}]) file_contents item_type)rrrz)No Authentication Providers found in [{}]rzCPlease select your preferred authentication option for cluster [{}]zN. Note: This will overwrite current preferred auth method [{}] in config file.T)message cancel_optionz/Setting Preferred Authentication option to [{}])r%rBrYamlConfigFilerrGetPreferredAuthKeyErrorYamlConfigObjectFieldErrorGetAuthProvidersrrr PromptChoicer statusPrintSetPreferredAuth WriteToDiskr)r~rconfig_contents force_updaterconfigsr auth_method providersprompt_messageoverride_warningindexrrs r!GetPreferredAuthForClusterr,s l  '   9 @ @ N PP))%1O1OQG))%002G %W6. 113K  //1I   5 < <\ J LL 9~MMOk++16'?8 f'*A*A+*NN%% 4Ae$kJJ9@@MO##K0F ,^-46)  **E K  0 0 sG G&G&%G&cUR(a)[RRUR5 UR(a)[RRUR5 UR (a>[R "[RRUR55 gU(d-[RR[R5 UR$)zHandle Login Responses.N) stdoutr r r!stderrfailedrrLOGIN_CONFIG_FAILED_MESSAGErBLOGIN_CONFIG_SUCCESS_MESSAGE)rlist_clusters_onlys r!LoginResponseHandlerr4s __JJX__% __JJX__% __IIh2299(//JK  JJX::; r#r)F)T)NFF)7r, __future__rrrrrrr!googlecloudsdk.command_lib.anthosr(googlecloudsdk.command_lib.anthos.commonrr&googlecloudsdk.command_lib.util.anthosr googlecloudsdk.corer c_exceptr googlecloudsdk.core.consoler googlecloudsdk.core.credentialsr rgooglecloudsdk.core.utilrrrrd six.movesrrrLINUXrMACOSXWINDOWSr/rcrr"Errorr%r5StreamingBinaryBackedOperationr7rrrrrrr,r4r'r#r!rDs6O&' 3A=D6#2<*. )62##&&< $$''H %%((  [(H1 3   H(..Hm@(GGm@` ,yG)HHyGx$ 1((0Z04,1&+ >+B r#