3.SrSSKJr SSKJr SSKJr SSKJr SSKJ r SSK J r SSK Jr SSK J r SS K Jr SS KJr SS KJr S /rS r"S S\R*5rSSjr"SS\R.\R0\ R25rg)z@A module to get a credentialed http object for making API calls.)absolute_import)division)unicode_literals)external_account)requests)base) exceptions) transport)storeic\rSrSrSrSrg)Error#zExceptions for this module.N)__name__ __module__ __qualname____firstlineno____doc____static_attributes__r/lib/googlecloudsdk/core/credentials/requests.pyrr#s#rrNc[R"UUUUUS9n[5n[R"5n[ R "X85n URUUUSU S9nURXCU S9nU$)aGet requests.Session object for working with the Google API. Args: timeout: double, The timeout in seconds to pass to httplib2. This is the socket level timeout. If timeout is None, timeout is infinite. If default argument 'unset' is given, a sensible default is selected. ca_certs: str, absolute filename of a ca_certs file that overrides the default enable_resource_quota: bool, By default, we are going to tell APIs to use the quota of the project being operated on. For some APIs we want to use gcloud's quota, so you can explicitly disable that behavior by passing False here. allow_account_impersonation: bool, True to allow use of impersonated service account credentials for calls made with this client. If False, the active user credentials will always be used. session: requests.Session instance. Otherwise, a new requests.Session will be initialized. streaming_response_body: bool, True indicates that the response body will be a streaming body. redact_request_body_reason: str, the reason why the request body must be redacted if --log-http is used. If None, the body is not redacted. Returns: 1. A regular requests.Session object if no credentials are available; 2. Or an authorized requests.Session object authorized by google-auth credentials. Raises: creds_exceptions.Error: If an error loading the credentials occurs. )timeoutca_certssessionstreaming_response_bodyredact_request_body_reasonT credentials) r GetSessionRequestWrapperr UseGoogleAuthr LoadIfEnabled WrapQuotaWrapCredentials) rrenable_resource_quotaallow_account_impersonationrrrrequest_wrapperuse_google_authr s rr!r!'sJ   5!;  '#$/&&(/##!+  % % !  & '  + +  , ' .rc*\rSrSrSrSrSSjrSrg)r"fz-Class for wrapping requests.Session requests.c^^^^^TRmSS0m[R"T5mSUUUUU4SjjnUTlT$)z=Returns an http_client authorized with the given credentials.attemptrc>T RnT T lT RTXU5 UT lT "X4X#=(d 0S.UD6nUR[;a[ T [ R 5(aT R(dRTS[:aETS==S- ss'T R[R"55 T "X4X#=(d 0S.UD6nU$)N)dataheadersr.r ) requestbefore_request status_codeREFRESH_STATUS_CODES isinstancegoogle_auth_external_account CredentialsvalidMAX_REFRESH_ATTEMPTSrefreshrGoogleAuthRequest) methodurlr0r1kwargswrapped_requestresponse auth_requestcredential_refresh_statecreds http_client orig_requests rWrappedRequest6RequestWrapper.AuthorizeClient..WrappedRequestss#++o(k <g>+k C -RC;ACh   "6 6%!=!I!IJJ{{ "9 -0D D +q0+ h0023 E"MrE=CEor)NN)r2google_auth_requestsRequest)selfrErDrGrBrCrFs `` @@@rAuthorizeClientRequestWrapper.AuthorizeClientmsB&&L )1~'// T"U0UD6nURS:waU$URnUR=(d [RUlUR 5SSnX2lUHlnURS5S:XdMURS5[R:XdM?URS5[R:XdMdT"U0UD6s $ U$![ [ 4a UsX2l$f=f!X2lf=f)aRetries the request after removing the quota project header. Try the request with the X-Goog-User-Project header. If the account does not have the permission to expense the quota of the user project in the header, remove the header and retry. Args: *args: *args to send to requests.Session.request method. **kwargs: **kwargs to send to requests.Session.request method. Returns: Response from requests.Session.request. ierrordetailsz@typez(type.googleapis.com/google.rpc.ErrorInforeasondomain) r4encodingcore_transportENCODINGjsonKeyError ValueErrorgetr USER_PROJECT_ERROR_REASONUSER_PROJECT_ERROR_DOMAIN)argsr?rA old_encoding err_details err_detailrFr@s rRequestWithRetry2RequestWrapper.WrapQuota..RequestWithRetrys!$1&1h    $&&l"++F~/F/Fh)mmog.y9 )#* NN7 #9 : NN8 $ (K(K K NN8 $ (K(K Kt.v. . $ o #()s$C""C=4D<C==DD) QuotaProjectr2QuotaWrappedRequestr#UserProjectQuotaWithFallbackEnabled) rKrEr'r(r*r quota_projectrarFr@s @@rr%RequestWrapper.WrapQuotas%%# &M  &&L..{JOB //11, ,k rr)N)rrrrrrLr%rrrrr"r"fs 6H 9rr")unsetNTTNFN)r __future__rrr google.authrr7google.auth.transportrrIgooglecloudsdk.calliopergooglecloudsdk.corer r rUgooglecloudsdk.core.credentialsr r5r:rr!CredentialWrappingMixinQuotaHandlerMixinr"rrrrqs G&'HB(*(;15u$J  $%)+/',*. <~^ %%  ^r