b0SSKrSSKJr SSKJrJrJrJrJrJ r SSK J r J r J r JrJr SSKJr SSKJr "SS\5r"S S \5r"S S \5r"S S\5r"SS\5r"SS\5r"SS\5r"SS\5r\\\\\\\S.rg)N)BytesIO)SIGNED_HEADERS_BLACKLIST"STREAMING_UNSIGNED_PAYLOAD_TRAILERUNSIGNED_PAYLOAD BaseSigner_get_body_as_dict_host_from_url) HTTPHeadersawscrtparse_qsurlsplit urlunsplit)NoCredentialsError)percent_encode_sequencec\rSrSrSr/SQr\RRRr Sr Sr Sr SrSrSrSrS rS rS rS rS rSrg) CrtSigV4AuthT Authorizationz X-Amz-DateX-Amz-Content-SHA256zX-Amz-Security-Tokenc6XlX lX0lSUlgN credentials _service_name _region_name_expiration_in_secondsselfr service_name region_names $lib/third_party/botocore/crt/auth.py__init__CrtSigV4Auth.__init__*&)'&*#cURRS05nURS5n[U[5=(a URS5S:H$Nchecksumrequest_algorithmintrailercontextget isinstancedictrrequestchecksum_context algorithms r"_is_streaming_checksum_payload+CrtSigV4Auth._is_streaming_checksum_payload0J"??..z2>$(()<= )T*Oy}}T/Bi/OOr&cURc [5e[RR5R [R R S9nURU5nURU5 [RRRURRURRURRS9nUR!U5(a["nO)UR%U5(a U(aUnO SnO[&nUR)U5(a%[RR*R,nO$[RR*R.n[RR1[RR2R4UR6UUR8UR:UUR<UR>UR@UUURBS9 nUREU5n[RRGX5n U RI5 URKX5 gN)tzinfo) access_key_idsecret_access_key session_token) r5signature_typecredentials_providerregionservicedateshould_sign_headeruse_double_uri_encodeshould_normalize_uri_pathsigned_body_valuesigned_body_header_typeexpiration_in_seconds)&rrdatetimeutcnowreplacetimezoneutc_get_existing_sha256_modify_request_before_signingr authAwsCredentialsProvider new_static access_key secret_keytokenr6r_should_sha256_sign_payloadr!_should_add_content_sha256_headerAwsSignedBodyHeaderTypeX_AMZ_CONTENT_SHA_256NONEAwsSigningConfigAwsSigningAlgorithmV4_SIGNATURE_TYPErr_should_sign_header_USE_DOUBLE_URI_ENCODE_SHOULD_NORMALIZE_URI_PATHr_crt_request_from_aws_requestaws_sign_requestresult_apply_signing_changes rr3 datetime_nowexisting_sha256r@explicit_payload body_headersigning_config crt_requestfutures r"add_authCrtSigV4Auth.add_auth5s    #$& & ((//199$$((: 33G< ++G4%{{AALL**55"..99**00 M   . .w 7 7A   - -g 6 6#2 #' /   1 12B C C 33II !++==BBK55kk5588//!5$$&&#77"&"="=&*&E&E.$/"&"="=6  88A --kJ  ##G9r&c[UR5nUR(a UROSnUR(a^/nURR 5H&upV[ U5nUR USU35 M( US-SRU5-nO"UR(aUSUR3n[RRURR 55nSnUR(a=[URS5(a URnO[UR5n[RR!UR"UUUS9n U $N/=?&seek)methodpathheaders body_streamr urlryparamsitemsstrappendjoinqueryr http HttpHeadersrzbodyhasattrr HttpRequestrx r aws_request url_partscrt_patharrayparamvalue crt_headerscrt_body_streamrms r"rc*CrtSigV4Auth._crt_request_from_aws_requestn2[__- %.^^9>>   E + 2 2 8 8 : E  waw/0!; #~7H __"1Y__$56Hkk--k.A.A.G.G.IJ    {''00"-"2"2")+*:*:";kk--%%' . r&c`[R"[UR55Ulgrr from_pairslistrzrrsigned_crt_requests r"rf#CrtSigV4Auth._apply_signing_changes$)44 #++ , r&c 0UR5[;$rlowerrrnamekwargss r"r` CrtSigV4Auth._should_sign_headerzz|#;;;r&cURH!nX!R;dMURU M# SUR;a#[UR5URS'ggNhost_PRESIGNED_HEADERS_BLOCKLISTrzr r}rr3hs r"rP+CrtSigV4Auth._modify_request_before_signingT22AOO#OOA&3  (&4W[[&AGOOF # )r&c8URRS5$Nrrzr/rr3s r"rO!CrtSigV4Auth._get_existing_sha256""#9::r&c|URRS5(dgURRSS5$NhttpsTpayload_signing_enabledr} startswithr.r/rs r"rW(CrtSigV4Auth._should_sha256_sign_payload4{{%%g.. ""#URRS5n[USS5nUc0nURSS5nUbU$SnURRS05nURS5n[U[5(aURS5S:XaUS nUR R S 5(aXQR;ag URRS S 5(ag [TU]%U5$)N client_configs3r Content-MD5r)r*r+headerrrThas_streaming_inputF) r.r/getattrr0r1r}rrzsuperrW) rr3r s3_config sign_payloadchecksum_headerr4r5 __class__s r"rW*CrtS3SigV4Auth._should_sha256_sign_payloads ++O< M46   I!}}%>E  #  ("??..z2>$(()<= i & &9==+>(+J'/O &&w//oo5 ??  4e < <w27;;r&cgNTrrs r"rX0CrtS3SigV4Auth._should_add_content_sha256_headerrr&r rrrrrarbrOrWrXr __classcell__rs@r"rrs$"!&'UR@UUURBS9 nUREU5n[RRGX5n U RI5 URKX5 gr:)&rrrJrKrLrMrNrOrPr rQrRrSrTrUrVr6rrWrrXrYrZr[r\r] V4_ASYMMETRICr_rrr`rarbrrcrdrerfrgs r"roCrtSigV4AsymAuth.add_auths    #$& & ((//199$$((: 33G< ++G4%{{AALL**55"..99**00 M   . .w 7 7A   - -g 6 6#2 #' /   1 12B C C 33II !++==BBK55kk55CC//!5$$&&#77"&"="=&*&E&E.$/"&"="=6  88A --kJ  ##G9r&c[UR5nUR(a UROSnUR(a^/nURR 5H&upV[ U5nUR USU35 M( US-SRU5-nO"UR(aUSUR3n[RRURR 55nSnUR(a=[URS5(a URnO[UR5n[RR!UR"UUUS9n U $rrr|rs r"rc.CrtSigV4AsymAuth._crt_request_from_aws_request3rr&c`[R"[UR55Ulgrrrs r"rf'CrtSigV4AsymAuth._apply_signing_changesQrr&c 0UR5[;$rrrs r"r`$CrtSigV4AsymAuth._should_sign_headerWrr&cURH!nX!R;dMURU M# SUR;a#[UR5URS'ggrrrs r"rP/CrtSigV4AsymAuth._modify_request_before_signingZrr&c8URRS5$rrrs r"rO%CrtSigV4AsymAuth._get_existing_sha256drr&cURRS05nURS5n[U[5=(a URS5S:H$r(r-r2s r"r6/CrtSigV4AsymAuth._is_streaming_checksum_payloadgr8r&c|URRS5(dgURRSS5$rrrs r"rW,CrtSigV4AsymAuth._should_sha256_sign_payloadlrr&c USL$rrrs r"rX2CrtSigV4AsymAuth._should_add_content_sha256_headervrr&rN)rrrrrrr rQrrr_rarbr#rorcrfr`rPrOr6rWrXrrr&r"rrshO$ kk22GGO!!%+ 7:r< <B;P D,r&rc<^\rSrSrSrSrSrU4SjrSrSr U=r $)CrtS3SigV4AsymAuthi{Fcgrrrs r"rO'CrtS3SigV4AsymAuth._get_existing_sha256rr&cP>URRS5n[USS5nUc0nURSS5nUbU$URR S5(aSUR ;agURRSS5(ag[ TU]U5$) NrrrrrTrF)r.r/rr}rrzrrW)rr3rrrrs r"rW.CrtS3SigV4AsymAuth._should_sha256_sign_payloads ++O< M46   I!}}%>E  #  &&w//GOO3 ??  4e < <w27;;r&cgrrrs r"rX4CrtS3SigV4AsymAuth._should_add_content_sha256_headerrr&rrrs@r"rr{s$"!&"[TU]XU5 X@lgrrr#rrrr r!expiresrs r"r#CrtSigV4AsymQueryAuth.__init__ K@&-#r&c>[T U]U5 URRS5nUS:Xa URS [ UR 5n[ URSS9nUR5VVs0sH upVXVS_M nnnUR(a!UR[U55 SUl [U5nUn U SU SU SXS 4n [U 5Ulgs snnf Nz content-typez0application/x-www-form-urlencoded; charset=utf-8T)keep_blank_valuesr)rrPrzr/r r}r rrdataupdaterrr) rr3 content_typerquery_string_partskv query_dictnew_query_stringp new_url_partsrs r"rP4CrtSigV4AsymQueryAuth._modify_request_before_signings .w7**>: M M/W[[) &iooN*<*B*B*DE*D$!a1g*D E <<   /8 9GL2:> 1qtQqT+;qTB  / 1Fs;C1c>[TU]X5 [UR5Rn[UR 5n[ USUSUSX4S45UlgNrrrrrrfr ryrr}rrrr signed_queryrrs r"rf,CrtSigV4AsymQueryAuth._apply_signing_changes\ &{G 2 7 78>> [__ %%adAaD!A$ d%KL r&rrrrrDEFAULT_EXPIRESr rQrHTTP_REQUEST_QUERY_PARAMSr_r#rPrfrrrs@r"rrs:Okk22LLO?N. (0TMMr&rc,\rSrSrSrSrSrSrSrSr g)CrtS3SigV4AsymQueryAuthizS3 SigV4A auth using query parameters. This signer will sign a request using query parameters and signature version 4A, i.e a "presigned url" signer. FcgNFrrs r"rW3CrtS3SigV4AsymQueryAuth._should_sha256_sign_payload r&cgr+rrs r"rX9CrtS3SigV4AsymQueryAuth._should_add_content_sha256_headerr&rN rrrr__doc__rarbrWrXrrr&r"r)r)s #!&r&r)c^\rSrSrSr\R RRr \4U4Sjjr U4Sjr U4Sjr Sr U=r$)CrtSigV4QueryAuthirc2>[TU]XU5 X@lgrrrs r"r#CrtSigV4QueryAuth.__init__ r r&cP>[T U]U5 URRS5nUS:Xa URS [ UR 5n[ URSS9R5VVs0sH upEXES_M nnnUR(a"URUR5 0Ul UR(a!UR[U55 SUl [U5nUnUSUSUSXxS 4n [U 5Ulgs snnfr )rrPrzr/r r}r rrr~rrrrr) rr3rrrrrrrrrs r"rP0CrtSigV4QueryAuth._modify_request_before_signings .w7**>: M M/W[[) !4eg  tG  >>   gnn -GN <<   /8 9GL2:> 1qtQqT+;qTB  / ? s9D"c>[TU]X5 [UR5Rn[UR 5n[ USUSUSX4S45Ulgrrr s r"rf(CrtSigV4QueryAuth._apply_signing_changesBr#r&r$r%rs@r"r4r4s:Okk22LLO?N. .0`MMr&r4c,\rSrSrSrSrSrSrSrSr g)CrtS3SigV4QueryAuthiSzS3 SigV4 auth using query parameters. This signer will sign a request using query parameters and signature version 4, i.e a "presigned url" signer. Based off of: http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-query-string-auth.html Fcgr+rrs r"rW/CrtS3SigV4QueryAuth._should_sha256_sign_payload_r-r&cgr+rrs r"rX5CrtS3SigV4QueryAuth._should_add_content_sha256_headerfr0r&rNr1rr&r"r<r<Ss#!&r&r<)v4zv4-queryv4as3v4z s3v4-querys3v4az s3v4a-query)rJior botocore.authrrrrrr botocore.compatr r r r rbotocore.exceptionsrbotocore.utilsrrrrrrr)r4r<CRT_AUTH_TYPE_MAPSrr&r"rKsPO22P,:P,f4\4nP,zP,f/)/dBM,BMJ3,HM HMV+6 !  % *r&