M SrSSKJr SSKJr SSKJr SSKrSSKrSSKrSSKrSSK r SSK r SSK r SSK r SSK r SSKrSSKrSSKrSSKJr SSKJr SSKJr SS KJr SS KJr SS KJr SS KJr SS KJr SSKJr SSKJr SSK r SSKrSSK!r!SSK"J#r$ SSK"J%r% SSK&r&SSK'J(r( SSK)J*r+ Sr-Sq.S:Sjr/"SS\R`"S/SQ55r1Sr2"SS\RfRh5r4Sr5Sr6"SS\75r8"S S!\RfRh5r9S"\RtS#\RfRv4S$jrSz;A module to get an unauthenticated requests.Session object.)absolute_import)division)unicode_literalsN)requests)_MutualTlsOffloadAdapter) context_aware)execution_utils)log) properties) transport)encoding)http_proxy_types) platforms) http_client)urllibcreate_urllib3_contextahIt appears that the current proxy configuration is using an HTTPS scheme for contacting the proxy server, which likely indicates an error in your HTTPS_PROXY environment variable setting. This can usually be resolved by setting HTTPS_PROXY=http://... instead of HTTPS_PROXY=https://... See https://cloud.google.com/sdk/docs/proxy-settings for more information.FcR[XUXV5n[5RUUUS9nU$)aGet a requests.Session that is properly configured for use by gcloud. This method does not add credentials to the client. For a requests.Session that has been authenticated, use core.credentials.requests.GetSession(). Args: timeout: double, The timeout in seconds. This is the socket level timeout. If timeout is None, timeout is infinite. If default argument 'unset' is given, a sensible default is selected using transport.GetDefaultTimeout(). ca_certs: str, absolute filename of a ca_certs file that overrides the default. The gcloud config property for ca_certs, in turn, overrides this argument. session: requests.Session instance streaming_response_body: bool, True indicates that the response body will be a streaming body. redact_request_body_reason: str, the reason why the request body must be redacted if --log-http is used. If None, the body is not redacted. client_certificate: str, absolute filename of a client_certificate file that is set explicitly for client certificate authentication client_key: str, absolute filename of a client_key file that is set explicitly for client certificate authentication Returns: A requests.Session object configured with all the required settings for gcloud. )streaming_response_bodyredact_request_body_reason)_CreateRawSessionRequestWrapperWrapWithDefaults)timeoutca_certssessionrrclient_certificate client_keyrs #lib/googlecloudsdk/core/requests.py GetSessionr Es@D"'W"4B+ 115!;2=+ c0^\rSrSrSrSU4SjjrSrU=r$)ClientSideCertificatepzHolds information about a client side certificate. Attributes: certfile: str, path to a cert file. keyfile: str, path to a key file. password: str, password to the private key. c,>[[U] XX#5$N)superr#__new__)clscertfilekeyfilepassword __class__s rr(ClientSideCertificate.__new__{s & 4 w **r!r&)__name__ __module__ __qualname____firstlineno____doc__r(__static_attributes__ __classcell__r-s@rr#r#ps**r!r#)r*r+r,c[5$)zReturns a urrlib3 SSL context.rr/r!rCreateSSLContextr9s  !!r!cJ^\rSrSrSrU4SjrU4SjrU4SjrSrSr U=r $) HTTPAdaptera3Transport adapter for requests. Transport adapters provide an interface to extend the default behavior of the requests library using the full power of the underlying urrlib3 library. See https://requests.readthedocs.io/en/master/user/advanced/ #transport-adapters for more information about adapters. c:>Xl[[U]"U0UD6 gr&) _cert_infor'r;__init__)selfclient_side_certificateargskwargsr-s rr?HTTPAdapter.__init__s-O +t%t6v6r!cN>URU5 [[U]"U0UD6$r&)_add_ssl_contextr'r;init_poolmanagerr@rBrCr-s rrGHTTPAdapter.init_poolmanagers(&! d 4d Ef EEr!cN>URU5 [[U]"U0UD6$r&)rFr'r;proxy_manager_forrHs rrKHTTPAdapter.proxy_manager_fors(&! d 5t Fv FFr!cUR(dg[5nUR5 0nURR(aURRUS'URR(aURRUS'UR "URR 40UD6 X!S'g)Nr+r, ssl_context)r>r9load_default_certsr+r,load_cert_chainr*)r@rCcontextcert_chain_kwargss rrFHTTPAdapter._add_ssl_contexts ??  G   %)__%<%< " &*oo&>&> # DOO44J8IJ#=r!)r>) r0r1r2r3r4r?rGrKrFr5r6r7s@rr;r;s#7FG$$r!r;c[RRRR 5n[RRR R 5n[RRR R5n[XU4Vs/sH o3(dM UPM sn5nUS:aUS:wa[R"S5eU(dg[RRRR5n[RRRR 5n[RRRR 5n[RUnU[ R":Xa U(aSOSn OQU[ R$:Xa U(aSOSn O1U[ R&:XaS n O[)S R+U55eU(dU(aS R-S Xg455n U S - n OSn SR+XUU5$s snf)zReturns the proxy string for use by requests from gcloud properties. See https://requests.readthedocs.io/en/master/user/advanced/#proxies. rz\Please set all or none of the following properties: proxy/type, proxy/address and proxy/portNsocks4asocks4socks5hsocks5httpzUnsupported proxy type: {}:c3r# UH-n[RRU5=(d Sv M/ g7f)N)rparsequote).0xs r GetProxyInfo..s,G-E 1##-Es57@r]z {}://{}{}:{})r VALUESproxy proxy_typeGetaddressportGetIntlenInvalidValueErrorrdnsGetBoolusernamer,rPROXY_TYPE_MAPsocksPROXY_TYPE_SOCKS4PROXY_TYPE_SOCKS5PROXY_TYPE_HTTP ValueErrorformatjoin) rg proxy_address proxy_portfproxy_prop_set proxy_rdns proxy_user proxy_passhttp_proxy_type proxy_scheme proxy_auths r GetProxyInfors   &&11557*##))11557-  &&++224*j9?9QQq9?A.aNa/  & & 3 44    &&++335*  &&//335*  &&//335*$33J?//// *9L%111 *9L%///L 188D EE:G.8-EGGJ#JJ   |) ++;@s " I0IaPlease use the installed gcloud CLI (`apt install google-cloud-cli`) This version of gcloud you are currently using will encounter issues due to changes in internal security policy enforcement in the near future. If this is not possible due to dev requirements, please apply for policy exemption at go/gcloud-cba-exemption-internal-version-gcloud using this error message to self-exempt or reach out to go/gcloud-cba-investigation for investigation. c0^\rSrSrSrSU4SjjrSrU=r$) ECPProxyErrorzCustom exception for errors related to the ECP proxy communication. For example, startup failures or receiving a specific proxy error header. cV>X l[TU] U(a USU35 gU5 g)N: )original_exceptionr'r?)r@messagerr-s rr?ECPProxyError.__init__s00 G.@7)2()*FMr!rr&)r0r1r2r3r4r?r5r6r7s@rrrs r!rc^\rSrSrSrSS\S\S\4U4SjjjrS\4S jrSS \S \S\4S jjr S \S\SS4Sjr S\S \SS4Sjr U4Sjr Sr U4SjrSrU=r$)_LocalECPProxyAdaptera#A requests adapter that routes HTTPS requests through a local ECP proxy. This adapter starts the ECP proxy as a background process upon instantiation and manages its lifecycle, terminating it when the adapter is closed. This avoids the overhead of starting a new process for every request. Ncertificate_config_file_pathgcloud_proxy_urlstartup_timeoutc >XlX l[TU] "S0UD6 [R "UR 5 SUlSUl[R"S5Ul URUSS9Ul g)aJInitializes the adapter and starts the local ECP proxy process. Args: certificate_config_file_path: Path to the JSON certificate config file. gcloud_proxy_url: Optional URL for proxy chaining. startup_timeout: Seconds to wait for the proxy to become available. **kwargs: Additional arguments for the HTTPAdapter. N localhost) max_retriesr/)rrr'r?atexitregisterclose proxy_process proxy_hostsecrets token_hex nonce_token_start_ecp_proxy_with_retriesrz)r@rrrrCr-s rr?_LocalECPProxyAdapter.__init__sr)E%, Gv  OODJJD!DO((,D88Q9DOr!returnc[R"5nURS5 UR5SsSSS5 $!,(df  g=f)z4Dynamically finds and returns an available TCP port.)r]rrN)socketbind getsockname)r@ss r_find_free_port%_LocalECPProxyAdapter._find_free_ports0 AffWo ]]_Q  s $A Arrc[R"UR5nURS05RS5nU(d$[ SR UR55e[ US-5H4nUR5nURXFS9 URXaS9 Us $ g![anUR(a5URR5cURR5 XR:a"[R"SUS U35 SnAM[R"S US U35 eSnAff=f) agAttempts to start the ECP Proxy, retrying on failure. This method orchestrates the proxy startup by finding an available port, launching the proxy process, and waiting for it to become responsive. If the proxy fails to start, it retries the process until either succeeds or the maximum number of retries is reached. Args: timeout: The maximum time in seconds to wait for the proxy to start max_retries: The maximum number of times to retry starting the proxy. Returns: The port number on which the proxy successfully started. Raises: ECPProxyError: If the proxy fails to start after all retry attempts. libsecp_http_proxyaECP HTTP proxy binary path is not specified in enterprise certificate config file. Cannot use mTLS with ECP if the ECP HTTP proxy binary does not exist. Please check the ECP configuration. See `gcloud topic client-certificate` to learn more about ECP. If this error is unexpected either delete {} or generate a new configuration with `$ gcloud auth enterprise-certificate-config create --help` r)rrz)rzrNz"ECP proxy failed to start on port rz ECP proxy failed to start after z retries: )rGetCertificateConfigrgetrrwranger_start_ecp_proxy_wait_for_proxyrpoll terminater warningerror)r@rr cert_configrattemptrzes rr3_LocalECPProxyAdapter._start_ecp_proxy_with_retriess8* 44 ))K!__VR0445EFN    $VD$E$EF q)'')j '   D*   $"4"4"9"9";"C    & & (  ++::,bL M  4[MA3OP sB44 E >A'E+EE rrzc[R"SU35 SURS[U5SUR/nUR (aUR SUR /5 [R"U/UQ76n[R"USSS9Ul g![[4a)n[R"SU35 [S US 9UeSnAff=f) aLaunches the local ECP proxy executable as a subprocess. Constructs the necessary command-line arguments, including the ECP config path, port, nonce token, and an optional upstream proxy URL. It then uses subprocess.Popen to start the proxy process in the background. Args: ecp_http_proxy: The path to the ECP HTTP proxy binary. proxy_port: The TCP port for the proxy to listen on. Raises: ECPProxyError: If the subprocess fails to start due to OSError or ValueError. z(Starting local ECP proxy server on port z!-enterprise_certificate_file_pathz-portz -nonce_tokenz%-gcloud_configured_upstream_proxy_urlN)stdoutstderrz&Failed to start ECP proxy executable: z!Failed to start ECP proxy processr)r debugrstrrrextendr ArgsForExecutableTool subprocessPopenrOSErrorrvrr)r@rrzrB proxy_argsrs rr&_LocalECPProxyAdapter._start_ecp_proxyTsII8 EF , )) J   D  kk 2D4I4I J!66~MMJ %++ d Z  ii8<=  -!  sB!!C1$CCc [R"SUS35 [R"5n[R"5U- U:akURR 5b#[ SURRS35e[R"URU4SS9 SSS5 O/UR5 [ SURS US US 35eS URS US 3n[R"USS9nUR S:wa[ SUR S35eUR"nX`R$:wa [ S5e[R"S5 g!,(df  O+=f![a [R"S5 GMzf=f[R"5U- U:aGMGN![R&R(an[ SUS9UeSnAff=f)a}Waits for the proxy to become available and verifies its identity. This method first waits for the proxy's TCP port to accept connections. Once the port is open, it sends a request to the `/readyz` endpoint to confirm that the proxy is fully operational and to verify a security nonce, ensuring that gcloud is communicating with the correct proxy instance. Args: proxy_port: The port where the proxy is expected to be listening. timeout: The maximum time in seconds to wait for the proxy. Raises: ECPProxyError: If the proxy process terminates unexpectedly, fails to respond within the timeout, or returns an invalid nonce. z*Waiting for the proxy to be ready on port z...Nz0Proxy process terminated unexpectedly with code z while waiting for it to start.g?rz ECP Proxy on r[z did not become ready in z seconds.http://z/readyzrz'Proxy /readyz endpoint returned status .z+Nonce mismatch from proxy /readyz endpoint.z"Proxy is ready and nonce verified.z6Failed to verify proxy readiness via /readyz endpoint.r)r rtime monotonicrrr returncodercreate_connectionrrsleeprrr status_codetextr exceptionsRequestException)r@rzr start_time readyz_urlresponse server_noncers rr%_LocalECPProxyAdapter._wait_for_proxys"II::,cJK!J .. Z '' 1   " . >!!,,--L N    % % __j )3      jjl  $//*!J<8Yi ! T__-Qzl'Bjj!4h    $5h6J6J5K1 M  ]]l )) )IJJ ii45?   3 .. Z '' 1 1R    / /  B sI !F,E5.F'B G5 F?FF F+*F+G=- G88G=c X>[RRUR5nURUR S'[RR SSURURS45nSURSURU3UlSUS'[R"SUR5SUR35 [TU]<"U40UD6nUR)U5$![ R"R$an['S US 9UeS nAff=f) a|Intercepts an outgoing request and reroutes it through the local ECP proxy. This method modifies the request's URL to point to the local proxy and adds a custom header (`x-goog-ecpproxy-target-host`) to inform the proxy of the original destination. It then sends the modified request and passes the response to `_handle_proxy_response` for inspection. Args: request: The `requests.PreparedRequest` object to send. **kwargs: Additional arguments passed to the underlying `send` method. Returns: The `requests.Response` object from the proxy. Raises: ECPProxyError: If the proxy returns an error or fails to send the request. zx-goog-ecpproxy-target-hostr]rr[FverifyzRedirecting request for z to proxy at zFailed to send request to proxyrN)rr^urlspliturlhostnameheaders urlunsplitpathqueryrrzr rgeturlr'sendrrrr_handle_proxy_response)r@requestrC original_url proxy_pathrrr-s rr_LocalECPProxyAdapter.sends &<<((5L5A5J5JGOO12(( R""L$6$6;JDOO,Adoo->zlKGKF8II "<#6#6#8"9: KK= g00h  & &x 00    / /  +  sC;;D) D$$D)c*URRS5nU(aG[R"S5 UR 5RSS5nSU3n[U5eU$![R a SUR 3nN2f=f)a'Inspects the proxy's response for custom error headers. If the `x-goog-ecpproxy-error` header is present in the response, this method assumes the proxy encountered an internal error. It attempts to parse a detailed error message from the JSON response body and raises an `ECPProxyError` with the relevant information. Args: response: The `requests.Response` object received from the proxy. Returns: The original `requests.Response` object if no error header is found. Raises: ECPProxyError: If the `x-goog-ecpproxy-error` header is present. zx-goog-ecpproxy-errorzECP Proxy returned an errorrzNo message in body.z'ECP Proxy indicated an internal error: z6ECP Proxy indicated an internal error. Response body: )rrr rjsonJSONDecodeErrorrr)r@rproxy_error_header error_detailsrs rr,_LocalECPProxyAdapter._handle_proxy_responses""))--.EF ii-.  ++I7LM ;M?K ' "" O ! !      s%A,,#BBc>[R"S5 UR(aOURR5c4URR 5 URR SS9 [TU]-5 g![ Ra3 [R"S5 URR5 NUf=f)arTerminates the background ECP proxy process to clean up resources. This method ensures that the local proxy subprocess is properly shut down when the session is closed. It first attempts a graceful termination and waits briefly, then forcefully kills the process if it does not exit in time. Finally, it calls the parent class's `close` method to complete the cleanup. z:Closing ECP Proxy Adapter and terminating proxy process...Ng?rz7Proxy process did not terminate gracefully, killing it.) r rrrrwaitrTimeoutExpiredrkillr'r)r@r-s rr_LocalECPProxyAdapter.closesIIJK d00557? ""$" , GMO & &" MN !"sBAC C)rrrrrzr)N)r)r0r1r2r3r4rintr?rrrrrrrr5r6r7s@rrrs# $' @ s ./44'*4 4l****XC3CCCJ.1`Br!r ca_configrcU(aUR(d [S5eUR(a[URS9$[ UR5$)aCreates a requests adapter for mTLS offloading via ECP. This function decides which adapter to use based on the provided configuration: - If `ca_config.use_local_proxy` is True, it returns a `_LocalECPProxyAdapter`, which routes traffic through a local ECP proxy subprocess. - Otherwise, it returns a `_MutualTlsOffloadAdapter` from the google-auth library, which uses the ECP binary for TLS offloading without a local proxy. Args: ca_config: The enterprise certificate configuration object. Returns: An instance of a requests adapter for mTLS offloading. Raises: ValueError: If the certificate configuration file path is not provided. z.Certificate config file path must be provided.)r)rrvuse_local_proxyrr)rs r_CreateMutualTlsOffloadAdapterr+sM, )@@ E FF %.%K%K  $I$J$J KKr!cT[RR5[RR:Hn[R =(a S[R ;n[ R"5nU(a)U(d"U(a[R"[5 gg)a]Warn users if running non-bundled Python on Linux and is a Googler. Checks if the current OS is Linux, running Python that is not bundled and if the user is a Googler. If all conditions are true, a warning message will be emitted, along with returning true to bypass the mTLS code path. Returns: True if the conditions are met, False otherwise. bundledTF) rOperatingSystemCurrentLINUXsys executabler IsInternalUserCheckr r_GOOGLER_BUNDLED_PYTHON_WARNING)is_linuxis_bundled_pythonis_internal_users r%_LinuxNonbundledPythonAndGooglerCheckrLso'')Y-F-F-L-LL nnDcnn)D335 ',<KK/0  r!c^^ ^ U=(d [R"5n[5m URm U U U4SjnXclT (aSUlT T S.UlO6[ 5(a'[(dSq[R"[5 SnUb5Ub2Ub/[R"SXU5 [XE5n[U5nO[R"5n U (a[!5 U R"[R$R&:Xa [)U 5nOU R"[R$R*:XaX[R"SU R,5 [U R,U R,U R.5n[U5nO[S5nO [S5nU(aSUlO U(aXlUR3SU5 U$) aReturns a requests.Session subclass. Args: timeout: float, Request timeout, in seconds. ca_certs: str, absolute filename of a ca_certs file disable_ssl_certificate_validation: bool, If true, disable ssl certificate validation. session: requests.Session instance. Otherwise, a new requests.Session will be initialized. client_certificate: str, absolute filename of a client_certificate file client_key: str, absolute filename of a client_key file Returns: A requests.Session subclass. c>SU;aTUS'[5(a-SU;a'[T[R"5T/UQ70UD6US'T"U0UD6$)Nrproxies) _HasBpo42627_AdjustProxiesKwargForBpo42627urllib_requestgetproxies_environment)rBrCorig_request_method proxy_infors rWrappedRequestSession..WrappedRequestzsg!fY~~)618 n;;= 0 $0(.0fY  / //r!F)rZhttpsTNzVUsing provided server certificate %s, client certificate %s, client certificate key %szUsing client certificate %shttps://)rSessionrr trust_envr !_HasInvalidHttpsProxyEnvVarScheme*_invalid_https_proxy_env_var_warning_shownr r$_INVALID_HTTPS_PROXY_ENV_VAR_WARNINGrr#r;rConfigr config_type ConfigTypeENTERPRISE_CERTIFICATErON_DISK_CERTIFICATEencrypted_client_cert_pathencrypted_client_cert_passwordrmount) rr"disable_ssl_certificate_validationrrrrrAadapterrrrs ` @@rrras*  )x'')'~* 0#/GGO)** 6 5480 kk67 # (>8CWII`j24(12G$$&I+-   -":":"Q"Q Q0;  M$<$<$P$P P /66 8"7  0 0  0 0  4 4#656d#D!g'GNN -- G$ .r!c XUS:waUnO[R"5n[RRR R 5=(d Sn[RRRR5nU(aUnU(aSn[UUUUUUS9$)zECreate a requests.Session matching the appropriate gcloud properties.unsetFN)rrr!rrr) r GetDefaultTimeoutr reauthdisable_ssl_validationrocorecustom_ca_certs_filerhr)rrrrreffective_timeout no_validateca_certs_propertys rrrs  !335!!&&==EEGP5+ '',,AAEEG HH *"4? $6&  ((r!c~[RRU5n[RRURSS9n[ R "U=(d 05H upEXSU'M [U5n[RRUSS9US'[RRU5$)zFGets the complete URI by merging url and params from the request args.T)keep_blank_values)doseqrU) rr^rparse_qsrsix iteritemslist urlencoder)rparams url_parts query_paramsparamvalues r_GetURIFromRequestArgsr:sll##C()&&y$&O,mmFLb1le29o)'' D'A)A,   ++r!cF^\rSrSrSr\S5rSU4SjjrSrSr U=r $)RequestiaEncapsulates parameters for making a general HTTP request. This implementation does additional manipulation to ensure that the request parameters are specified in the same way as they were specified by the caller. That is, if the user calls: request('URI', 'GET', None, {'header': '1'}) After modifying the request, we will call request using positional parameters, instead of transforming the request into: request('URI', method='GET', body=None, headers={'header': '1'}) cU"U0UD6$r&r/)r)rBrCs rFromRequestArgsRequest.FromRequestArgss   r!c d>X`l[X#5n[[U]XqU=(d 0U5 gr&)_kwargsr:r'r<r?) r@methodrr5datarrCurir-s rr?Request.__init__s)L  -C '4!#w}"dCr!cURUR/n[UR5nURUS'UR (aUR US'X4$)NrrC)rBrDdictrArbody)r@rBrCs r ToRequestArgsRequest.ToRequestArgssL KK "D $,, F F9 yyyyfVn <r!)rA)NNN) r0r1r2r3r4 classmethodr>r?rIr5r6r7s@rr<r<s,   D r!r<c(\rSrSrSr\S5rSrg)Responseiz:Encapsulates responses from making a general HTTP request.cRU"URURUR5$r&)rrcontent)r)rs r FromResponseResponse.FromResponse s# x##X%5%5x7G7G HHr!r/N)r0r1r2r3r4rKrPr5r/r!rrMrMsBIIr!rMc&\rSrSrSr\r\rSr Sr g)riz,Class for wrapping request.Session requests.cAU$)z&Returns the response without decoding.r/)r@rresponse_encodings rDecodeResponseRequestWrapper.DecodeResponses  Or!r/N) r0r1r2r3r4r< request_classrMresponse_classrUr5r/r!rrrs4-.r!rc h[5n[R"[RS[R"[RSS55n[R"[RSS5nUR R SU3SSU3S05 [R"US9$) zGReturns a gcloud's requests session to refresh google-auth credentials.GCE_METADATA_HOSTGCE_METADATA_ROOTzmetadata.google.internalGCE_METADATA_IPz169.254.169.254rr])r) r r GetEncodedValueosenvironr updategoogle_auth_requestsr<)r metadata_rootmetadata_ip_roots rGoogleAuthRequestrds L' **jj **  $&'---jj#%68 //  !"B  % %g 66r!c \rSrSrSrSrSrg)_GoogleAuthApitoolsCredentialsi9cXlgr& credentials)r@ris rr?'_GoogleAuthApitoolsCredentials.__init__;s"r!cPA[5nURRU5 gr&)rdrirefresh)r@r auth_requests rrl&_GoogleAuthApitoolsCredentials.refresh>s!$&L\*r!rhN)r0r1r2r3r?rlr5r/r!rrfrf9s #+r!rfc^[XU5n[US5(aD[UR5nURmU4SjnXSl[ URSU5 U$)zGReturns an authenticated httplib2.Http-like object for use by apitools._googlecloudsdk_credentialsc>T"U0UD6$r&r/)rBrCrs r HttpRequest(GetApitoolsRequests..HttpRequestOs $ 1& 11r!ri)_ApitoolsRequestshasattrrfrprsetattr)rresponse_handlerrTrcredsrrrs @rGetApitoolsRequestsryDsa!'=NO+ W344 *7+N+N OE%--2& K  6 r!cB\rSrSrSrSr\RS5rSr g)ResponseHandleriXzHandler to process the Http Response. Attributes: use_stream: bool, if True, the response body gets returned as a stream of data instead of returning the entire body at once. cXlg)zInitializes ResponseHandler. Args: use_stream: bool, if True, the response body gets returned as a stream of data instead of returning the entire body at once. N use_stream)r@r~s rr?ResponseHandler.__init__`s !Or!cg)zHandles the http response.Nr/)r@response_streams rhandleResponseHandler.handleisr!r}N) r0r1r2r3r4r?abcabstractmethodrr5r/r!rr{r{Xs&!%%r!r{c<\rSrSrSrSSjrSrS SjrSrg) rtinz0A httplib2.Http-like object for use by apitools.NcXl0UlU(a [U[5(d [ S5eX lX0lg)Nz3response_handler should be of type ResponseHandler.)r connections isinstancer{rv_response_handler_response_encoding)r@rrwrTs rr?_ApitoolsRequests.__init__qs:LD (/ : :NOO-/r!c4AAUR[R[R4;a[R "S5 gUR R(a[RRRR5(aX[RRRR5(a![R"UR 5nO UR"nUR R%U5 g)z:Response hook to be used if response_handler has been set.z1Skipping response_handler as response is invalid.N)rhttplibOKPARTIAL_CONTENTr rrr~r rer(log_httprolog_http_streaming_bodyioBytesIOrOrawr)r@rrBrCstreams r ResponseHook_ApitoolsRequests.ResponseHook|s fGJJ0G0G#HH iiCD  ))''//1166>>@@zz(**+f||f!!&)r!c AUS:aXPRl0nURb&URUS'URRnOSnURR X!X4XS9n [ U R5nU RUS'U(aSn O7URbURU l U Rn O U Rn [R"U5U 4$)z/Makes an HTTP request using httplib2 semantics.rrF)rCrrhooksstatusr!)r max_redirectsrrr~rrGrrrr rrOhttplib2rM) r@rDrBrHr redirectionsconnection_typerr~rrOs rr_ApitoolsRequests.requests a#/ll E )++eJ))44jj||##$ $QH8##$G ,,GHg , 11h g  g   W %w ..r!)rrrrNN)GETNNrN) r0r1r2r3r4r?rrr5r/r!rrtrtns%8 0** )/r!rtcn[R"5nURSS5RS5$)zAReturns whether the HTTPS proxy env var is using an HTTPS scheme.rr]r)r r r startswith) env_proxiess rrrs. 557+ " % 0 0 <rs B&'    BC-/#*)-5. , 4") Q%.3*',*."& (V *2>@ * " %$(##//%$P(+X8  I xH--99xv L66L ""LB,  ',  Zz?C:>(4 ,i@Iy!!I Y-- 7:++(%c((5%,I/I/X=*,C"!"s$G22 H?H