SSKrSSKrSSKrSSKrSSKrSSKrSSKrSSKrSSKJ r SSK J r SSK J r Jr SSKJr SSKJrJrJrJrJrJrJrJrJr SSKJrJr SSKJrJ r J!r! SS KJ"r" \RF"\$5r%S r&S r'S r(S r)/SQr*Sr+Sr,Sr-Sr."SS5r/"SS\/5r0"SS\/5r1"SS\/5r2"SS\/5r3"SS\35r4"SS \45r5"S!S"\55r6"S#S$\55r7"S%S&\35r8"S'S(\85r9"S)S*\35r:"S+S,\/5r;"S-S.\;5r<"S/S0\;5r="S1S2\05r>\1\2\2\;\<\=\:\5\7\6\>S3. r?\(aSS4K@JArA \?R\A5 g\?R\3\8\4\9S5.5 g)6N)Mapping formatdate)sha1sha256) itemgetter) HAS_CRT HTTPHeaders encodebytesensure_unicodeparse_qsquoteunquoteurlsplit urlunsplit)NoAuthTokenErrorNoCredentialsError)is_valid_ipv6_endpoint_urlnormalize_url_pathpercent_encode_sequence) MD5_AVAILABLE@e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855iz%Y-%m-%dT%H:%M:%SZz%Y%m%dT%H%M%SZ)expectz user-agentzx-amzn-trace-idzUNSIGNED-PAYLOADz"STREAMING-UNSIGNED-PAYLOAD-TRAILERc[U5nURn[U5(aSUS3nSSS.nURb9URUR UR 5:waSX!R4-nU$)N[]Pi)httphttpsz%s:%d)rhostnamerportgetscheme)url url_partshost default_portss lib/third_party/botocore/auth.py_host_from_urlr)Fs|  I   D!#&&4&{M~~! >>]..y/?/?@ @dNN33D KcURn[U[5(a'[R"UR S55nU$[U[ 5(a[R"U5nU$Nutf-8)data isinstancebytesjsonloadsdecodestr)requestr.s r(_get_body_as_dictr6YsZ <rNs r(__init__TokenSigner.__init__ts$r*rMN)rArBrCrDrFrOrGr@r*r(rIrInsN%r*rIc*\rSrSrSrSrSrSrSrg) SigV2Authxz# Sign a request with Signature V2. cXlgrL credentialsr>rVs r(rOSigV2Auth.__init__}&r*cF[RS5 [UR5nURn[ U5S:XaSnUR SURSUS3n[R"URRRS5[S9n/n[U5H`nUS:XaM [X(5n [!URS5SS 9n [!U RS5S S 9n UR#U S U 35 Mb S R%U5n X\- n[RS U5 UR'URS55 [(R*"UR-55R/5R1S5n X4$)Nz$Calculating signature using v2 auth.r/ r- digestmod Signaturesafez-_~=&zString to sign: %s)loggerdebugrr$pathlenmethodnetlochmacnewrV secret_keyencodersortedr4rappendjoinupdatebase64 b64encodedigeststripr3)r>r5paramssplitrgstring_to_signlhmacpairskeyvalue quoted_key quoted_valueqsb64s r(calc_signatureSigV2Auth.calc_signatures_ ;<%zz t9>D#NN+2ell^2dV2F    ' ' . .w 76 &>Ck! $Eszz'2: ^**734u||~.446==gFyr*cURc [5eUR(a URnO URnURRUS'SUS'SUS'[ R "[[ R"55US'URR(aURRUS'URX5up4XBS'U$) NAWSAccessKeyId2SignatureVersion HmacSHA256SignatureMethod Timestamp SecurityTokenr_) rVrr.rw access_keytimestrftimeISO8601gmtimetokenr)r>r5rwr signatures r(r;SigV2Auth.add_auths    #$& & <<\\F^^F#'#3#3#>#> %(!"$0 !"mmGT[[]C{    ! !&*&6&6&<&r5new_hmacencoded_signaturers r(r;SigV3Auth.add_authsJ    #$& & W__ $'",D"9    ! !%8OO$:;6:6F6F6L6LGOO2 388    ' ' . .w 76  /66w?@'(9:@@B()9)9)D)D(EF..?.F.Fw.O-P R  "W__ 4 672;./r*rUN)rArBrCrDrOr;rGr@r*r(rrs 'rV service_name region_names r(rOSigV4Auth.__init__s&()r*cU(a:[R"XRS5[5R 5nU$[R"XRS5[5R 5nU$r,)rkrlrnr hexdigestru)r>r|msghexsigs r(_signSigV4Auth._signsW ((3 7 3V<FFHC ((3 7 3V<CCEC r*c[5nURR5H%up4UR5nU[;dM!XBU'M' SU;a[ UR 5US'U$)zS Select the headers from the request that need to be included in the StringToSign. r&)r ritemslowerSIGNED_HEADERS_BLACKLISTr)r$)r>r5 header_mapnamer}lnames r(headers_to_signSigV4Auth.headers_to_signse !] "??002KDJJLE44$)5!3  #"0 !>66w~~F F33HW[[4IJ Jr*c </n[U[5(aUR5nUH1up4UR[ USS9[ [ U5SS945 M3 /n[ U5Hup4URUSU35 M SRU5nU$)Nz-_.~rarcrd)r/rrrprr4rorq)r>rw key_val_pairsr|r}sorted_key_valsrs r(r(SigV4Auth._canonical_query_string_paramss fg & &\\^F JC  s(%E *HI !!/JC  " "cU!E7#3 40!$/!:%%r*c:SnUR(a/nURRS5H)nURS5upVnURXW45 M+ /n[ U5HupWURUSU35 M SR U5nU$)Nr`rdrc)queryrx partitionrprorq) r>partsrrpairr|_r}rs r(r%SigV4Auth._canonical_query_string_urls!# ;;M ))#. $s 3 $$c\2/!O%]3 &&#aw'784%(XXo%> "%%r*c^/n[[U55nUHLnSRU4SjURU555nUR US[ U535 MN SRU5$)z Return the headers that need to be included in the StringToSign in their canonical form by converting all header keys to lower case, sorting them in alphabetical order and then joining them into a string, separated by newlines. ,c3F># UHnTRU5v M g7frL) _header_value).0vr>s r( .SigV4Auth.canonical_headers..,s#/K!""1%%/Ks!:r\)rosetrqget_allrpr )r>rrsorted_header_namesr|r}s` r(canonical_headersSigV4Auth.canonical_headers"sz$S%9:&CHH/>/F/Fs/KE NNcU!N5$9#:; < ' yy!!r*c@SRUR55$)N )rqrx)r>r}s r(rSigV4Auth._header_value2s xx &&r*cZ[S[U555nSRU5$)Nc3\# UH"oR5R5v M$ g7frL)rrv)rns r(r+SigV4Auth.signed_headers..;s I4Hq**4Hs*,;)rorrq)r>rrs r(signed_headersSigV4Auth.signed_headers:s&IC4HIIxx  r*cURRS05nURS5n[U[5=(a URS5S:H$)Nchecksumrequest_algorithmintrailer)contextr"r/dict)r>r5checksum_context algorithms r(_is_streaming_checksum_payload(SigV4Auth._is_streaming_checksum_payload>sJ"??..z2>$(()<= )T*Oy}}T/Bi/OOr*cURU5(a[$URU5(d[$URnU(a[ US5(aUR 5n[R"UR[5n[5n[US5HnURU5 M UR5nURU5 U$U(a[U5R5$[ $)Nseekr*)r"STREAMING_UNSIGNED_PAYLOAD_TRAILER_should_sha256_sign_payloadUNSIGNED_PAYLOADbodyhasattrtell functoolspartialreadPAYLOAD_BUFFERriterrrrrEMPTY_SHA256_HASH)r>r5 request_bodypositionread_chunksizerchunk hex_checksums r(payloadSigV4Auth.payloadCs  . .w 7 75 511'::$ #|| GL&99#((*H&..!!>NxHnc2&3#--/L   h '  ,'113 3$ $r*c|URRS5(dgURRSS5$)NrTpayload_signing_enabled)r$ startswithrr"r=s r(r%SigV4Auth._should_sha256_sign_payload]s4{{%%g.. ""#r5crrgr body_checksums r(canonical_requestSigV4Auth.canonical_requestgsnn""$ %''(=(B(BC $ $--g67..w7 $((9D@A $%%o67 !W__ 4#OO,BCM LL1M - yy}r*c,[[U5SS9nU$)Nz/~ra)rr)r>rgnormalized_paths r(r SigV4Auth._normalize_url_pathvs 24 8tDr*c"URR/nURURSSS5 URUR5 URUR 5 URS5 SR U5$N timestampr aws4_requestr[)rVrrprrrrqr>r5scopes r(rSigV4Auth.scopezsp!!,,- W__[1!A67 T&&' T''( ^$xxr*c/nURURSSS5 URUR5 URUR5 URS5 SR U5$r)rprrrrqrs r(credential_scopeSigV4Auth.credential_scopesa W__[1!A67 T&&' T''( ^$xxr*cS/nURURS5 URURU55 UR[UR S55R 55 SR U5$)z Return the canonical StringToSign as well as a dict containing the original version of all headers that were included in the StringToSign. AWS4-HMAC-SHA256rr-r\)rprrrrnrrq)r>r5rstss r(rySigV4Auth.string_to_signsl "" 7??;/0 4((12 6+227;<FFHIyy~r*cDURRnURSU3R5URSSS5nURX@R 5nURXPR 5nURUS5nURXqSS9$)NAWS4rrrrT)r)rVrmrrnrrr)r>ryr5r|k_datek_region k_service k_signings r(rSigV4Auth.signatures))C5\ ! ! #W__[%A!A%F ::f&7&78JJx););< JJy.9 zz)z>>r*c URc [5e[RR5nUR [ 5UR S'URU5 URU5n[RS5 [RSU5 URX5n[RSU5 URXA5n[RSU5 URX5 g)Nrz$Calculating signature using v4 auth.zCanonicalRequest: %sStringToSign: %sz Signature: %s)rVrdatetimeutcnowrSIGV4_TIMESTAMPr_modify_request_before_signingrrerfryr_inject_signature_to_request)r>r5 datetime_nowrryrs r(r;SigV4Auth.add_auths    #$& &((//1 '3'<'<_'M $ ++G4 227; ;< ,.?@,,WH (.9NN>;  %y1 ))'=r*cSURU5-/nURU5nURSURU535 URSU-5 SR U5UR S'U$)NzAWS4-HMAC-SHA256 Credential=%szSignedHeaders=z Signature=%sz, Authorization)rrrprrqr)r>r5rauth_strrs r(r0&SigV4Auth._inject_signature_to_requestsy4tzz'7JJK..w7T00AB C  23+/99X+>(r*cSUR;a URS URU5 URR(a@SUR;a URS URRURS'URR SS5(d1SUR;a URS [ URS'gg)Nr4rrTr )r_set_necessary_date_headersrVrrr"rr=s r(r/(SigV4Auth._modify_request_before_signings goo -0 ((1    ! !%8OO$:;6:6F6F6L6LGOO2 3""#r5datetime_timestamps r(r8%SigV4Auth._set_necessary_date_headerss W__ $'!)!2!2!;!; ,o" '1HOO$6$@$@$BCD'GOOF #w.OOL1/w.OOL1,3OOK,HGOOL )r*)rrrVN)F)rArBrCrDrrErOrrrrrrrrrrrrr rrryrr;r0r/r8rGr@r*r(rrsO* K&"& " '!P %4D  ?>$ GIr*rc:^\rSrSrU4SjrU4SjrSrSrU=r$) S3SigV4Authic>[TU]U5 SUR;a URS URU5URS'g)Nr )superr/rrr>r5 __class__s r(r/*S3SigV4Auth._modify_request_before_signingsA .w7 !W__ 4 6726,,w2G./r*c >URRS5n[USS5nUc0nURSS5nUbU$SnURRS05nURS5n[U[5(aURS5S:XaUS nUR R S 5(aXQR;ag URRS S 5(ag [TU]%U5$)N client_configs3rz Content-MD5rrrheaderrrThas_streaming_inputF) rr"getattrr/rr$rrrFr) r>r5rK s3_config sign_payloadchecksum_headerrrrHs r(r'S3SigV4Auth._should_sha256_sign_payloads ++O< M46   I!}}%>E  #  ("??..z2>$(()<= i & &9==+>(+J'/O &&w//oo5 ??  4e < <w27;;r*cU$rLr@r>rgs r(r S3SigV4Auth._normalize_url_path r*r@) rArBrCrDr/rr rG __classcell__rHs@r(rDrDsH'[TU]XU5 X@lgrL)rFrO_identity_cache)r>rVrridentity_cacherHs r(rOS3ExpressAuth.__init__s K@-r*c$>[TU]U5 grL)rFr;rGs r(r;S3ExpressAuth.add_auths !r*c>[TU]U5 SUR;a#URRURS'SUR;aURS gg)Nzx-amz-s3session-tokenr)rFr/rrVrrGs r(r/,S3ExpressAuth._modify_request_before_signing sU .w7 "'// 97;7G7G7M7MGOO3 4 !W__ 4 67 5r*)r]) rArBrCrDREQUIRES_IDENTITY_CACHErOr;r/rGrXrYs@r(r[r[s". "88r*r[c\rSrSrSrSrSrg)S3ExpressPostAuthi)Tc$[RR5nUR[5URS'0nURR SS5bURSn0n/nURR SS5b'URSnUR SS5bUSnXTS'SUS'UR U5US'URSUS'URSS05 URSUR U505 URSURS05 URRb@URRUS 'URS URR05 [R"[R"U5RS 55RS 5US 'UR!US U5US 'X1RS'XARS'g) Nrs3-presign-post-fieldss3-presign-post-policy conditionsr x-amz-algorithmx-amz-credential x-amz-dateX-Amz-S3session-Tokenr-policyx-amz-signaturer,r-rr.rr"rrprVrrsrtr1dumpsrnr3rr>r5r1fieldsrorjs r(r;S3ExpressPostAuth.add_auth,s((//1 '3'<'<_'M $ ??  7 > J__%=>F ??  7 > J__%=>Fzz,-9#L1 )|$6 !%)ZZ%8!"&{;|,.@AB-tzz'/BCD<)EFG    ! ! -.2.>.>.D.DF* +   ($*:*:*@*@A  "++ JJv  % %g . &/ x%)NN6(3CW$M !4:014:01r*r@N)rArBrCrDrdr;rGr@r*r(rfrf)s "';r*rfcP^\rSrSrSrSr\S.U4SjjrSrSrSr S r S r U=r $) S3ExpressQueryAuthiVi,T)expiresc2>[TU]UUUUS9 XPlg)N)r^rFrO_expires)r>rVrrr^rxrHs r(rOS3ExpressQueryAuth.__init__Zs*    )   r*chURRS5nSnX#:Xa URS URURU55nSUR U5UR SUR US.nURRbURRUS'[UR5n[URSS9nUR5VV s0sH upXS _M n nn UR(a"U RUR5 0UlS n UR (a!U R[#U55 S UlU (a[%U 5S -n U [%U53n Un U S U S U S XS4n['U5Ul gs sn nf)N content-type0application/x-www-form-urlencoded; charset=utf-8r rzX-Amz-AlgorithmzX-Amz-Credentialr;z X-Amz-ExpireszX-Amz-SignedHeadersrnTkeep_blank_valuesrr`rdrr"rrrrr{rVrrr$r rrrwrrr.r6rr)r>r5 content_typeblocklisted_content_typer auth_paramsr%query_string_partskr query_dictoperation_paramsnew_query_stringp new_url_partss r(r/1S3ExpressQueryAuth._modify_request_before_signingks**>: > !  3/ ,,T-A-A'-JK 2 $ 7 3!//+6!]]#1      ! ! -373C3C3I3IK/ 0W[[) &iooN*<*B*B*DE*D$!a1g*D E >>   gnn -GN <<   /8 9GL 6zBSH  !8!E F G  1qtQqT+;qTB  / AF*F.c4U=RSU-- slgNz&X-Amz-Signature=%sr$r>r5rs r(r0/S3ExpressQueryAuth._inject_signature_to_request  ,y88 r*cU$rLr@rUs r(r &S3ExpressQueryAuth._normalize_url_pathrWr*c[$rLrr=s r(rS3ExpressQueryAuth.payload  r*r{) rArBrCrDDEFAULT_EXPIRESrdrOr/r0r rrGrXrYs@r(rwrwVs7O"   "?0B9   r*rwc>^\rSrSrSr\4U4SjjrSrSrSrU=r $)SigV4QueryAuthic2>[TU]XU5 X@lgrLrz)r>rVrrrxrHs r(rOSigV4QueryAuth.__init__s K@ r*chURRS5nSnX#:Xa URS URURU55nSUR U5UR SUR US.nURRbURRUS'[UR5n[URSS9nUR5VV s0sH upXS _M n nn UR(a"U RUR5 0UlS n UR (a!U R[#U55 S UlU (a[%U 5S -n U [%U53n Un U S U S U S XS4n['U5Ul gs sn nf)Nr~rr rrrTrrr`rdrrrr)r>r5rblacklisted_content_typerrr%rrrrrrrrs r(r/-SigV4QueryAuth._modify_request_before_signings**>: > !  3/ ,,T-A-A'-JK 2 $ 7 3!//+6!]]#1      ! ! -262B2B2H2HK. /W[[) &iooN*<*B*B*DE*D$!a1g*D E >>   gnn -GN <<   /8 9GL 6zBSH  !8!E F G  1qtQqT+;qTB  / AFrc4U=RSU-- slgrrrs r(r0+SigV4QueryAuth._inject_signature_to_requestrr*r) rArBrCrDrrOr/r0rGrXrYs@r(rrs#O?N ?0B99r*rc$\rSrSrSrSrSrSrg)S3SigV4QueryAuthizS3 SigV4 auth using query parameters. This signer will sign a request using query parameters and signature version 4, i.e a "presigned url" signer. Based off of: http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-query-string-auth.html cU$rLr@rUs r(r $S3SigV4QueryAuth._normalize_url_pathrWr*c[$rLrr=s r(rS3SigV4QueryAuth.payloadrr*r@N)rArBrCrDrr rrGr@r*r(rrs  r*rc\rSrSrSrSrSrg)S3SigV4PostAuthi'zv Presigns a s3 post Implementation doc here: http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-UsingHTTPPOST.html c$[RR5nUR[5URS'0nURR SS5bURSn0n/nURR SS5b'URSnUR SS5bUSnXTS'SUS'UR U5US'URSUS'URSS05 URSUR U505 URSURS05 URRb@URRUS 'URS URR05 [R"[R"U5RS 55RS 5US 'UR!US U5US 'X1RS'XARS'g) Nrrhrirjr rkrlrmx-amz-security-tokenr-rorprqrss r(r;S3SigV4PostAuth.add_auth/s((//1 '3'<'<_'M $ ??  7 > J__%=>F ??  7 > J__%=>Fzz,-9#L1 )|$6 !%)ZZ%8!"&{;|,.@AB-tzz'/BCD<)EFG    ! ! --1-=-=-C-CF) *   5t7G7G7M7MN O"++ JJv  % %g . &/ x%)NN6(3CW$M !4:014:01r*r@NrArBrCrDrr;rGr@r*r(rr's %;r*rcr\rSrSr/SQrSSjrSrSrSrSr SS jr SS jr SS jr S r S rSrSrg) HmacV1AuthiW)$ accelerateaclcorsdefaultObjectAcllocationlogging partNumberrorequestPaymenttorrent versioning versionIdversionswebsiteuploadsuploadIdzresponse-content-typezresponse-content-languagezresponse-expireszresponse-cache-controlzresponse-content-dispositionzresponse-content-encodingdelete lifecycletaggingrestore storageClass notification replicationr analyticsmetrics inventoryselectz select-typez object-lockNcXlgrLrUrs r(rOHmacV1Auth.__init__rYr*c&[R"URRR S5[ S9nUR UR S55 [UR55R5RS5$)Nr-r]) rkrlrVrmrnrrrr rurvr3)r>ryrs r( sign_stringHmacV1Auth.sign_stringsk88    ' ' . .w 74  --g678??,-335<rinteresting_headershoiihfoundr|lks r(canonical_standard_headers%HmacV1Auth.canonical_standard_headerssE W ..*%BEYY[<+JJw|1134 E  5 2&yy~r*cb/n0nUH[nUR5nXcMURS5(dM2SRSURU555X5'M] [ UR 55nUHnUR USX435 M SRU5$)Nx-amz-rc3@# UHoR5v M g7frL)rv)rrs r(r6HmacV1Auth.canonical_custom_headers..s2+?a +?srr\)rrrqrrokeysrp)r>rrcustom_headersr|rsorted_header_keyss r(canonical_custom_headers#HmacV1Auth.canonical_custom_headerssCB|'==**),2+2??3+?2*N& $N$7$7$9:%C JJ#a 345 6&yy~r*cJ[U5S:XaU$US[US54$)z TODO: Do we need this? rr)rhr)r>nvs r( unquote_vHmacV1Auth.unquote_vs+ r7a<IqE72a5>* *r*cUbUnO URnUR(aURRS5nUVs/sHoURSS5PM nnUVs/sH(oUSUR;dMUR U5PM* nn[ U5S:aRUR [S5S9 UVs/sHnSRU5PM nnUS- nUSRU5- nU$s snfs snfs snf)Nrdrcrr)r|?) rgrrx QSAOfInterestrrhsortrrq)r>rx auth_pathbufqsaas r(canonical_resourceHmacV1Auth.canonical_resources  C**C ;;++##C(C,/0Cq773?CC0+.+.aA$$:L:L2L!q!3 3x!|Z]+,/0Cqsxx{C0s sxx}$ 1 1sC8$C=>C=DcUR5S-nX`RU5S-- nURU5nU(aXgS-- nX`RX%S9- nU$)Nr\r)r rrr)r>rirxrrxrcsrs r(canonical_stringHmacV1Auth.canonical_stringsg\\^d " --g6==66w?  4' 'B %%e%AA r*cURR(aUS URRUS'URXX5S9n[R SU5 UR U5$)Nrrr+)rVrrrerfr)r>rirxrrxrrys r( get_signatureHmacV1Auth.get_signatureso    ! !./.2.>.>.D.DG* +.. 7/   (.9//r*c>URc[e[RS5 [ UR 5n[RSUR 5 URUR X!RURS9nURX5 g)Nz(Calculating signature using hmacv1 auth.zHTTP request method: %sr) rVrrerfrr$rirrr_inject_signature)r>r5rxrs r(r;HmacV1Auth.add_auths|    #$ $ ?@% .?&& NNE??g>O>O'  w2r*c[SS9$)NTrrr>s r(rHmacV1Auth._get_dates &&r*cSUR;a URS SURRSU3nX1RS'g)Nr4zAWS r)rrVr)r>r5r auth_headers r(rHmacV1Auth._inject_signaturesG goo -0T--8899+F +6(r*rU)NNrL)rArBrCrDrrOrrrrrrrr;rrrGr@r*r(rrWsN%MN'F" +6?C ?C 0 3' 7r*rc4\rSrSrSrSr\4SjrSrSrSr g) HmacV1QueryAuthiz Generates a presigned request for s3. Spec from this document: http://docs.aws.amazon.com/AmazonS3/latest/dev/RESTAuthentication.html #RESTAuthenticationQueryStringAuth rcXlX lgrL)rVr{)r>rVrxs r(rOHmacV1QueryAuth.__init__ s & r*c|[[[R"5[UR5-55$rL)r4r=rr{rs r(rHmacV1QueryAuth._get_dates&3tyy{S%77899r*c0nURRUS'X#S'URH\nUR5nUS:XaURSUS'M-UR S5(dUS;dMKURUX5'M^ [ U5n[ UR5nUS(a USSU3nUS US US XgS 4n[U5Ulg) Nrr_rExpiresr)rr~rdrrrr) rVrrrrrrr$r) r>r5rr header_keyrrrrs r(r!HmacV1QueryAuth._inject_signatures '+'7'7'B'B #$"+;!//J!!#BV#(/(? 9%x((B3-")!4 * 3:> W[[ ! Q4#$A$q)9(:; 1qtQqT+;qTB  / r*)r{rVN) rArBrCrDrrrOrrrGr@r*r(r r s O,; :0r*r c\rSrSrSrSrSrg)HmacV1PostAuthi5z Generates a presigned post for s3. Spec from this document: http://docs.aws.amazon.com/AmazonS3/latest/dev/UsingHTTPPOST.html c0nURRSS5bURSn0n/nURRSS5b'URSnURSS5bUSnXCS'URRUS'URRb@URRUS'UR SURR05 [ R"[R"U5RS55RS5US'URUS5US'X!RS'X1RS'g) Nrhrirjrrr-ror) rr"rVrrrprsrtr1rrrnr3r)r>r5rtrorjs r(r;HmacV1PostAuth.add_auth>sR ??  7 > J__%=>F ??  7 > J__%=>Fzz,-9#L1 )|#'#3#3#>#>    ! ! --1-=-=-C-CF) *   5t7G7G7M7MN O"++ JJv  % %g . &/ x#..vh/?@{4:014:01r*r@Nrr@r*r(rr5s ;r*rc\rSrSrSrSrSrg) BearerAuthi]z Performs bearer token authorization by placing the bearer token in the Authorization header as specified by Section 2.1 of RFC 6750. https://datatracker.ietf.org/doc/html/rfc6750#section-2.1 cURc [5eSURR3nSUR;a URS X!RS'g)NzBearer r4)rNrrr)r>r5r s r(r;BearerAuth.add_authesP ?? ""$ $ 5 567 goo -0+6(r*r@Nrr@r*r(rr]s 7r*r) v2v3v3httpsrLzs3-queryzs3-presign-postzs3v4-presign-postz v4-s3expresszv4-s3express-queryzv4-s3express-presign-postbearer)CRT_AUTH_TYPE_MAPS)v4zv4-querys3v4z s3v4-query)Crsr>r,rrkr1rrcollections.abcr email.utilsrhashlibrroperatorrbotocore.compatr r r r r rrrrbotocore.exceptionsrrbotocore.utilsrrrr getLoggerrArerrrr.rrrr)r6r8rIrRrrrDr[rfrwrrrrr rrAUTH_TYPE_MAPSbotocore.crt.authr"rrr@r*r(r/s  #"    E*   8 $G  " &%I"& ..%*%: :z< <8JI JIZ3)3l8K8**; *;Ze e PN9YN9b ~ 0-;i-;`f7f7R20j20j%;Z%;P77&   %(!,!2  4,-&*  r*