SSKrSSKJr SSKrSSKrSSKrSSKrSSK r SSK J r J r SSK J r SSK Jr SSK Jr SSK Jr SSKJr SrS rS rS rS rS rSrSR5\5r\\-rSrSS/rSrSr Sr!Sr"Sr#Sr$Sr%Sr&Sr'Sr(Sr)Sr*Sr+S r,S!r-/S"Qr./S#Qr//S$Qr0/S%Qr1S&S'S(S)S*.S+S,S-S.0S/.S,S+S0S1S.S2.S3.4S&S'S(S)S*.S+S4S-S.0S/.S4S+S0S1S.S2.S3.4S&S'S(S)S*.S+S5S-S.0S/.S5S+S0S1S.S2.S3.4S&S'S(S)S*.S+S6S-S.0S/.S6S+S7S1S.S2.S3.4S&S'S(S)S*.S+S8S-S.0S/.S8S+S9S1S.S2.S3.4S&S'S(S)S*.S+S:S-S.0S/.S:S+S;S1S.S2.S3.4S&S'S(S)S*.S+SR5\RdRgS?55S-S.0S/.S>R5\RdRgS?55S+S@S1S.S2.S3.4S&S'S(S)S*.SASBS.SCSD.S/.SBSASES1S.SCSF.S3.4S&S'S(S)S*.SASBS.SGSH.S/.SBSASIS1S.SGSJ.S3.4S&S'S(S)S*.SASBS.SKSL.S/.SBSASMS1S.SKSN.S3.4S&S'S(S)S*.SASBSOS.SP.SQSR.SBSASSS1SOS.ST.SQSU.4S&S'S(S)S*.SASVS-S.0S/.SVSASWS1S.S2.S3.4SXSY\*\+\,SZ.S+S[S\.S[S+S]\*-S^-S_S`\,Sa.S3.4SXSY\*\+\,SZ.SASbS\.SbSAS]\*-Sc-SdS`\,Sa.S3.4SXSY\*\+S*.SASbS\.SbSAS]\*-Se-SdS`Sf.S3.4SXSY\*\+\,SZ.SASgShSiSj.\-SR.SgSAS]\*-Sk-SlS`ShSi\,Sm.\-SU.4/r4"SnSo\55r6"SpSq\ Rn5r8"SrSs\55r9g)tN)_helpersexternal_account)aws)environment_vars) exceptions) transport)DEFAULT_UNIVERSE_DOMAINz9gl-python/3.7 auth/1.1 auth-request-type/at cred-type/impzgl-python/3.7 auth/1.1usernamepasswordzdXNlcm5hbWU6cGFzc3dvcmQ=z1service-1234@service-name.iam.gserviceaccount.comz.https://us-east1-iamcredentials.googleapis.comz5/v1/projects/-/serviceAccounts/{}:generateAccessTokenQUOTA_PROJECT_IDscope1scope2z#https://sts.googleapis.com/v1/tokenz(https://sts.googleapis.com/v1/introspectz+urn:ietf:params:aws:token-type:aws4_requestzi//iam.googleapis.com/projects/123456/locations/global/workloadIdentityPools/POOL_ID/providers/PROVIDER_IDzChttp://169.254.169.254/latest/meta-data/placement/availability-zonez'http://169.254.169.254/latest/api/tokenz@http://169.254.169.254/latest/meta-data/iam/security-credentialszChttp://[fd00:ec2::254]/latest/meta-data/placement/availability-zonez'http://[fd00:ec2::254]/latest/api/tokenz@http://[fd00:ec2::254]/latest/meta-data/iam/security-credentialszNhttps://sts.{region}.amazonaws.com?Action=GetCallerIdentity&Version=2011-06-15AKIAIOSFODNN7EXAMPLEz(wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEYzAQoEXAMPLEH4aoAH0gNCAPyJxz4BlCFFxWNE1OPTgk5TthT+FvwqnKwRcOIfrRh3c/LTo6UDdyJwOOvEVPvLXCrrrUtdnniCEXAMPLE/IvU1dYUg2RVAJBanLiHb4IgRmpRV3zrkuWJOgQs8IZZaIv2BXIa2R4OlgkBN9bkUDNCJiBeb/AXlzBBko7b15fjrBs2+cTQtpZ3CYWFXG8C5zqx37wnOE49mRl/+OtkIKGO7fAEz{"KeySchema":[{"KeyType":"HASH","AttributeName":"Id"}],"TableName":"TestTable","AttributeDefinitions":[{"AttributeName":"Id","AttributeType":"S"}],"ProvisionedThroughput":{"WriteCapacityUnits":5,"ReadCapacityUnits":5}}) https://sts.googleapis.comz$https://us-east-1.sts.googleapis.comz$https://US-EAST-1.sts.googleapis.comz$https://sts.us-east-1.googleapis.comz$https://sts.US-WEST-1.googleapis.comz$https://us-east-1-sts.googleapis.comz$https://US-WEST-1-sts.googleapis.comz/https://us-west-1-sts.googleapis.com/path?queryz&https://sts-us-east-1.p.googleapis.com)%https://iamcredentials.googleapis.comzsts.googleapis.comhttps://zhttp://sts.googleapis.comzhttps://st.s.googleapis.comz$https://us-eas -1.sts.googleapis.comz#https:/us-east-1.sts.googleapis.comz%https://US-WE/ST-1-sts.googleapis.comz$https://sts-us-east-1.googleapis.comz$https://sts-US-WEST-1.googleapis.comz(testhttps://us-east-1.sts.googleapis.comz,https://us-east-1.sts.googleapis.comevil.comz.https://us-east-1.us-east-1.sts.googleapis.comz$https://us-ea.s.t.sts.googleapis.comz"https://sts.googleapis.comevil.comz%hhttps://us-east-1.sts.googleapis.comz!https://us- -1.sts.googleapis.comzhttps://-sts.googleapis.comz-https://us-east-1.sts.googleapis.com.evil.comzhttps://sts.pgoogleapis.comhttps://p.googleapis.comzhttps://sts.p.comzhttp://sts.p.googleapis.comz https://xyz-sts.p.googleapis.comz$https://sts-xyz.123.p.googleapis.comz!https://sts-xyz.p1.googleapis.comzhttps://sts-xyz.p.foo.comz$https://sts-xyz.p.foo.googleapis.com) rz/https://us-east-1.iamcredentials.googleapis.comz/https://US-EAST-1.iamcredentials.googleapis.comz/https://iamcredentials.us-east-1.googleapis.comz/https://iamcredentials.US-WEST-1.googleapis.comz/https://us-east-1-iamcredentials.googleapis.comz/https://US-WEST-1-iamcredentials.googleapis.comz:https://us-west-1-iamcredentials.googleapis.com/path?queryz1https://iamcredentials-us-east-1.p.googleapis.com)rziamcredentials.googleapis.comrz$http://iamcredentials.googleapis.comz&https://iamcre.dentials.googleapis.comz/https://us-eas -1.iamcredentials.googleapis.comz.https:/us-east-1.iamcredentials.googleapis.comz0https://US-WE/ST-1-iamcredentials.googleapis.comz/https://iamcredentials-us-east-1.googleapis.comz/https://iamcredentials-US-WEST-1.googleapis.comz3testhttps://us-east-1.iamcredentials.googleapis.comz7https://us-east-1.iamcredentials.googleapis.comevil.comz9https://us-east-1.us-east-1.iamcredentials.googleapis.comz/https://us-ea.s.t.iamcredentials.googleapis.comz-https://iamcredentials.googleapis.comevil.comz0hhttps://us-east-1.iamcredentials.googleapis.comz,https://us- -1.iamcredentials.googleapis.comz&https://-iamcredentials.googleapis.comz8https://us-east-1.iamcredentials.googleapis.com.evil.comz&https://iamcredentials.pgoogleapis.comrzhttps://iamcredentials.p.comz&http://iamcredentials.p.googleapis.comz+https://xyz-iamcredentials.p.googleapis.comz/https://iamcredentials-xyz.123.p.googleapis.comz,https://iamcredentials-xyz.p1.googleapis.comz$https://iamcredentials-xyz.p.foo.comz/https://iamcredentials-xyz.p.foo.googleapis.comz us-east-1z2011-09-09T23:36:00Z AKIDEXAMPLEz(wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY) access_key_idsecret_access_keyGETzhttps://host.foo.comdatezMon, 09 Sep 2011 23:36:00 GMT)methodurlheaderszAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host, Signature=b27ccfbfa7df52a200ff74193ca6e32d4b48b8856fab7ebf1c595d0670a7e470z host.foo.com) Authorizationhostrrrrz"https://host.foo.com/foo/bar/../..zhttps://host.foo.com/./zhttps://host.foo.com/./foozAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host, Signature=910e4d6c9abafaf87898e1eb4c929135782ea25bb0279703146455745391e63azhttps://host.foo.com/%E1%88%B4zAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host, Signature=8d6634c189aa8c75c2e51e106b6b5121bed103fdb351f7d7d4381c738823af74z%https://host.foo.com/?foo=Zoo&foo=ahazAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host, Signature=be7148d34ebccdc6423b19085378aa0bee970bdc61d144bd1a8c48c33079ab09z!https://host.foo.com/?foo=b&foo=azAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host, Signature=feb926e49e382bec75c9d7dcb2a1b6dc8aa50ca43c25d2bc51143768c0875acczhttps://host.foo.com/?{}=barz %E1%88%B4zAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host, Signature=6fb359e9a05394cc7074e0feb42573a2601abc0c869a953e8c5c12e4e01f1a8cPOSTzhttps://host.foo.com/zoobar)rZOOzAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host;zoo, Signature=b7a95a52518abbca0964a999a880429ab734f35ebbf1235bd79a5de87756dc4a)rrrr!ZOOBAR)rzoozAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host;zoo, Signature=273313af9d0c265c531e11db70bbd653f3ba074c1009239e8559d3987039cad7)rrrr#phfft)rpzAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host;p, Signature=debf546796015d6f6ded8626f5ce98597c33b47b9164cf6b17b4642036fcb592)rrrr%!application/x-www-form-urlencoded) Content-Typerzfoo=bar)rrrdatazAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=content-type;date;host, Signature=5a15b22cf462f047318703b92e6f4f38884e4a7ab7b1d6426ca46a8bd1c26cbc)rrr'r)rrrr(zhttps://host.foo.com/?foo=barzAWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20110909/us-east-1/host/aws4_request, SignedHeaders=date;host, Signature=b6e3b79003ce0743a491606ba1035a804593b0efb1e20a11cba83f8c25a57a92 us-east-22020-08-11T06:55:22Z)rrsecurity_tokenzMhttps://ec2.us-east-2.amazonaws.com?Action=DescribeRegions&Version=2013-10-15)rrzAWS4-HMAC-SHA256 Credential=z/20200811/us-east-2/ec2/aws4_request, SignedHeaders=host;x-amz-date;x-amz-security-token, Signature=41e226f997bf917ec6c9b2b14218df0874225f13bb153236c247881e614fafc9zec2.us-east-2.amazonaws.com20200811T065522Z)rr x-amz-datex-amz-security-tokenOhttps://sts.us-east-2.amazonaws.com?Action=GetCallerIdentity&Version=2011-06-15z/20200811/us-east-2/sts/aws4_request, SignedHeaders=host;x-amz-date;x-amz-security-token, Signature=596aa990b792d763465d73703e684ca273c45536c6d322c31be01a41d02e5b60zsts.us-east-2.amazonaws.comz/20200811/us-east-2/sts/aws4_request, SignedHeaders=host;x-amz-date, Signature=9e722e5b7bfa163447e2a14df118b45ebd283c5aea72019bdf921d6e7dc01a9a)rrr-z)https://dynamodb.us-east-2.amazonaws.com/zapplication/x-amz-json-1.0zDynamoDB_20120810.CreateTable)r' x-amz-targetz/20200811/us-east-2/dynamodb/aws4_request, SignedHeaders=content-type;host;x-amz-date;x-amz-security-token;x-amz-target, Signature=eb8bce0e63654bba672d4a8acb07e72d69210c1797d56ce024dbbc31beb2a2c7z dynamodb.us-east-2.amazonaws.com)rrr-r'r0r.c\rSrSr\R R S\5\R"S5S55r Sr Sr Sr Srg ) TestRequestSigneriaz;region, time, credentials, original_request, signed_requestgoogle.auth._helpers.utcnowc [RRUS5Ul[R"U5n[R "UR S5UR S5UR S55nURUUR S5UR S5UR S5UR S55n X:Xdeg) N%Y-%m-%dT%H:%M:%SZrrr+rrr(r)datetimestrptime return_valuer RequestSignerAwsSecurityCredentialsgetget_request_options) selfutcnowregiontime credentialsoriginal_requestsigned_requestrequest_signercredentials_objectactual_signed_requests Hplatform/gsutil/third_party/google-auth-library-python/tests/test_aws.pytest_get_request_options*TestRequestSigner.test_get_request_optionsbs'//88?ST**62 77 OOO , OO/ 0 OO, -  !/ B B    '   *   (   + ! %666c([R"S5n[R"[5nUR [R "[[5SS5 SSS5 WRS5(deg!,(df  N'=f)Nr)invalidrInvalid AWS service URL rr9pytestraises ValueErrorr<r: ACCESS_KEY_IDSECRET_ACCESS_KEYmatchr=rDexcinfos rG0test_get_request_options_with_missing_scheme_urlBTestRequestSigner.test_get_request_options_with_missing_scheme_urlzsk**;7 ]]: &'  . .**=:KL '}}78888' & 1B Bc([R"S5n[R"[5nUR [R "[[5SS5 SSS5 WRS5(deg!,(df  N'=f)Nr)zhttp://invalidrrMrNrUs rG0test_get_request_options_with_invalid_scheme_urlBTestRequestSigner.test_get_request_options_with_invalid_scheme_urlsk**;7 ]]: &'  . .**=:KL  '}}78888' &rYc([R"S5n[R"[5nUR [R "[[5SS5 SSS5 WRS5(deg!,(df  N'=f)Nr)rrrMrNrUs rG2test_get_request_options_with_missing_hostname_urlDTestRequestSigner.test_get_request_options_with_missing_hostname_urlsk**;7 ]]: &'  . .**=:KL '}}78888' &rYN)__name__ __module__ __qualname____firstlineno__rOmark parametrize TEST_FIXTURESmockpatchrHrWr[r^__static_attributes__r`rJrGr2r2asK [[E} ZZ-.7/7( 9 9 9rJr2c4\rSrSrSSjrSrSrSrg)"TestAwsSecurityCredentialsSupplieriNc@XlX lX0lX@lXPlgN)_security_credentials_region_credentials_exception_region_exception_expected_context)r=security_credentialsr?credentials_exceptionregion_exceptionexpected_contexts rG__init__+TestAwsSecurityCredentialsSupplier.__init__s!&:" &;#!1!1rJcURbURU:XdeURb UReUR$rn)rsrqror=contextrequests rGget_aws_security_credentials?TestAwsSecurityCredentialsSupplier.get_aws_security_credentialssF  ! ! -))W4 44  & & 2-- -)))rJcURbURU:XdeURb UReUR$rn)rsrrrpr{s rGget_aws_region1TestAwsSecurityCredentialsSupplier.get_aws_regionsD  ! ! -))W4 44  ! ! -(( (||rJ)rqrsrprrro)NNNNN)rarbrcrdrxr~rrjr`rJrGrlrls""" 2*rJrlc F \rSrSrSrSr\\\S.r Sr Sr S\ \ \S.rS\\\\S .rS S S S SR)\5S.r\SOSj5r\SPSj5r\SS\\SSSSSS4 Sj5r\SQSj5r\\4Sj5r\\4Sj5r \!RDRG\$RJSSS9S5r&\!RDRG\$RJSSS9S5r'\!RDRG\$RJSSS9S5r(\!RDRG\$RJSSS9S5r)\!RDRG\$RJSSS9S5r*Sr+Sr,S r-S!r.S"r/S#r0S$r1S%r2S&r3S'r4S(r5S)r6S*r7S+r8S,r9\!RD"S-5S.5r:\!RD"S-5\!RDRw\\!RD"S-5\!RDRw\rPS?rQ\!RD"S@\RS9\!RD"S-5SA55rS\!RD"S@\RS9\!RD"S-5SB55rT\!RD"SC\US9\!RD"S@\RS9\!RD"S-5SD555rV\!RD"SC\US9\!RD"S@\RS9\!RD"S-5SE555rWSFrX\!RD"S-5SG5rY\!RD"S-5SH5rZ\!RD"S-5SI5r[SJr\SKr]\!RD"S@\RS9\!RD"S-5SL55r^\!RD"S@\RS9\!RD"S-5SM55r_SNr`g)RTestCredentialsir)z gcp-aws-role) AccessKeyIdSecretAccessKeyTokenawsimdsv2sessiontokenr*aws1)environment_id region_urlrregional_cred_verification_url)rrrrimdsv2_session_token_url ACCESS_TOKEN-urn:ietf:params:oauth:token-type:access_tokenBearer ) access_tokenissued_token_type token_type expires_inscopec[R"U5nURXS5nURS5URS5SURS5RS5S.SURS5RS5S.SURS5RS5S./S .nURbAURS5R S URS5RS 5S.5 URS5R S [ S.54 [RR[R"US S S95$)zUtility to generate serialize AWS signed requests. This makes it easy to assert generated subject tokens based on the provided AWS security credentials, regions and AWS STS endpoint. rrrrr)keyvaluerr-rr.zx-goog-cloud-target-resource),:T) separators sort_keys) rr9r<r; session_tokenappendAUDIENCEurllibparsequotejsondumps)clsaws_security_credentials region_namerrDrCreformatted_signed_requests rG"make_serialized_aws_signed_request2TestCredentials.make_serialized_aws_signed_requestsU**;7';; $6 "%%e,$((2++// :>>O););I)F)J)J6)RS'+// :>>|L & " $ 1 1 = & * *9 5 < <1+// :>>?UV  #&&y1882X F  ||!! JJ*zT   rJNc /n U(aU (a@[R"[RSS9nXlXlU R U5 [R"[RSS9nXlU(a%SRU5RS5UlU R U5 U (a@[R"[RSS9nXlXlU R U5 U(aX[R"[RSS9nUUlU(aURS5UlU R U5 U(al[R"[RSS9nUUlU(a*[R"U5RS5UlU R U5 U(ae[R"[RSS9nUUl[R"U5RS5UlU R U5 U (ae[R"[RSS9nU Ul[R"U 5RS5UlU R U5 [R"[R5nU Ul U$)zUtility function to generate a mock HTTP request object. This will facilitate testing various edge cases by specify how the various endpoints will respond while generating a Google Access token in an AWS environment. T)instancez{}butf-8) rhcreate_autospecrResponsestatusr(rformatencoderrRequest side_effect)r region_statusr role_status role_namesecurity_credentials_statussecurity_credentials_data token_status token_dataimpersonation_statusimpersonation_dataimdsv2_session_token_statusimdsv2_session_token_data responsesimdsv2_session_responseregion_response role_responsesecurity_credentials_responsetoken_responseimpersonation_responser}s rGmake_mock_request!TestCredentials.make_mock_request sC* **.*>*>&&+'2M./H,  !89#2293E3EPTUO%2 "',||K'@'G'G'P$   _ - &&*&:&:""T' #.I *+D (   4 5  001C1CdSM#.M %.%5%5g%> "   ] + &,0,@,@""T- )4O ) 0(59ZZ-6&/.2   : ; !11)2D2DtTN$0N !"&**Z"8"?"?"HN    ^ , %)%9%9""T& "-A " )*.**5G*H*O*OPW*X " '   3 4&&y'8'89'rJc P[R"[[UUU UUUUUUU S9 $)N) audiencesubject_token_type token_urltoken_info_url!service_account_impersonation_urlcredential_source!aws_security_credentials_supplier client_id client_secretquota_project_idscopesdefault_scopes)r CredentialsrSUBJECT_TOKEN_TYPE) rrrrrrrrrrrs rGmake_credentials TestCredentials.make_credentialsfs91).O/.O'-)  rJcUSU:XdeUSU:XdeU(a USU:XdeOSU;dUSbeSU;deg)Nrrrbodyr`)rrequest_kwargsrrrs rG"assert_aws_metadata_request_kwargs2TestCredentials.assert_aws_metadata_request_kwargssfe$+++h'6111 !),7 77N2nY6O6W WW^+++rJcPUSU:XdeUSS:XdeUSU:XdeUSce[RRUS5n[U5[UR 55:XdeUH-upgUR S5X6R S5:XaM-e gNrrrrrr)rr parse_qsllenkeysdecode)rrr request_datar body_tupleskvs rGassert_token_request_kwargs+TestCredentials.assert_token_request_kwargsse$ 111h'6111i(G333f%111ll,,^F-CD ;3|'8'8':#;;;;!FQ88G$ XXg5F(GG GG"rJcUSU:XdeUSS:XdeUSU:XdeUSce[R"USRS55nXS:Xdegr)rloadsr)rrrrr body_jsons rG#assert_impersonation_request_kwargs3TestCredentials.assert_impersonation_request_kwargssye$(IIIIh'6111i(G333f%111JJ~f5<TestCredentials.test_constructor_missing_cred_verification_urlwsl 22779>? ]]: &'  ! !4E ! F'}}IJJJJ' &s A77 BcURR5nSUS'[R"[5nUR US9 SSS5 WR S5(deg!,(df  N'=f)Naws3rr z6aws version '3' is not supported in the current build.r0r#s rG/test_constructor_invalid_environment_id_version?TestCredentials.test_constructor_invalid_environment_id_versionsi 22779.4*+ ]]: &'  ! !4E ! F'}}VWWWW' &r4c URURR5S9nURS[[ [ [UR[S.:Xdeg)Nr r)typerrrrrr) rrr1rrrrrr r=rAs rG test_infoTestCredentials.test_infosc++"4499;, & "4",!%!7!76$    rJc~URURR5S9nUR[:Xdeg)Nr )rrr1rrr?s rGtest_token_info_url#TestCredentials.test_token_info_urls?++"4499;, ))^;;;rJc[HCnURURR5US-S9nURUS-:XaMCe g)Nz /introspectrr)VALID_TOKEN_URLSrrr1rr=rrAs rGtest_token_info_url_custom*TestCredentials.test_token_info_url_customsV#C//"&"8"8"="="? #m 30K --# 2EF FF $rJczURURR5SS9nUR(aeg)NrF)rrr1rr?s rGtest_token_info_url_negative,TestCredentials.test_token_info_url_negatives?++"4499;D, -----rJc[HCnURURR5US-S9nURUS-:XaMCe g)Nz/token)rr)rGrrr1 _token_urlrHs rGtest_token_url_custom%TestCredentials.test_token_url_customsT#C//"&"8"8"="="?>0K ))cHn= == $rJc[HKnURURR5U[-S9nUR U[-:XaMKe g)N)rr)(VALID_SERVICE_ACCOUNT_IMPERSONATION_URLSrrr1'SERVICE_ACCOUNT_IMPERSONATION_URL_ROUTE"_service_account_impersonation_urlrHs rG-test_service_account_impersonation_url_custom=TestCredentials.test_service_account_impersonation_url_customs_;C//"&"8"8"="="?AA0KAA== rrrrr) rrrrrr1rrr r?s rG test_info_with_default_token_url0TestCredentials.test_info_with_default_token_urlshoo1"4499; & "4"!%!7!7!6 $    rJc[R"[[URR 5SS9nUR S[[SURR 5SS.:Xdeg)Nztestdomain.org)rrrrrz#https://sts.testdomain.org/v1/tokenrY)rrrrrr1rr?s rG5test_info_with_default_token_url_with_universe_domainETestCredentials.test_info_with_default_token_url_with_universe_domainskoo1"4499;,  & "4>!%!7!7!/ $    rJcFURR5nURS5 URUS9n[R "[ R5nURS5 SSS5 WRS5(deg!,(df  N'=f)Nrr zUnable to determine AWS region) rr1r6rrOrPr RefreshErrorretrieve_subject_tokenrT)r=rrArVs rG.test_retrieve_subject_token_missing_region_url>TestCredentials.test_retrieve_subject_token_missing_region_urls!22779l+++>O+P ]]:22 3w  . .t 44}}>????4 3s B B r3c [RRURS5UlUR [ R UR[ R UR[ R URS9nURURS9nURU5nX@R[R"[ ["[$55:XdeUR'UR(SS[*5 UR'UR(SS[,5 UR'UR(SSSR/[,UR5SS 05 UR [ R UR[ R URS 9nURU5 [1UR(5S:XdeUR'UR(SS[,5 UR'UR(SSSR/[,UR5SS 05 g) Nr5rrrrrrr r{}/{}r'application/json)rrrr)r6r7AWS_SIGNATURE_TIMEr8r http_clientOK AWS_REGIONAWS_ROLE!AWS_SECURITY_CREDENTIALS_RESPONSErrrarrr:rRrSTOKENrcall_args_list REGION_URLSECURITY_CREDS_URLrr)r=r>r}rA subject_token new_requests rGBtest_retrieve_subject_token_success_temp_creds_no_environment_varsRTestCredentials.test_retrieve_subject_token_success_temp_creds_no_environment_varss'//88  # #%9 ((%..#mm(3&*&L&L ) ++d>T>T+U #::7C  G G  & &}6G O!     //  " "1 %a (*  //  " "1 %a (*<  //  " "1 %a ( NN-t}} = / 0 ,,#mm(3&*&L&L -  **;7;--.!333 //  & &q )! ,.@  //  & &q )! , NN-t}} = / 0 rJc [RRURS5UlUR [ R UR[ R UR[ R UR[ R URS9nURR5n[US'URUS9nURU5nXPR!["R$"[&[([*55:XdeUR-UR.SS[SS0S 5 UR-UR.SS[0S UR05 UR-UR.S S[SS0S 5 UR-UR.S S[2S UR05 UR-UR.S SSR5[2UR5SURS.5 UR [ R UR[ R UR[ R URS9nURU5 [7UR.5S :XdeUR-UR.SS[SS0S 5 UR-UR.SS[2S UR05 UR-UR.S SSR5[2UR5SURS.5 g)Nr5rrrrrrrrrr rrf$X-aws-ec2-metadata-token-ttl-seconds300PUTX-aws-ec2-metadata-tokenrgrhrir'r}rrrrrr)r6r7rjr8rrkrlrmrnroAWS_IMDSV2_SESSION_TOKENrr1IMDSV2_SESSION_TOKEN_URLrrarrr:rRrSrprrqrrrsrr)r=r>r}credential_source_token_urlrArtrus rGItest_retrieve_subject_token_success_temp_creds_no_environment_vars_idmsv2YTestCredentials.test_retrieve_subject_token_success_temp_creds_no_environment_vars_idmsv20s, '//88  # #%9 ((%..#mm(3&*&L&L(3&*&C&C)  '+&<&<&A&A&C# % $ & ++9, $::7C  G G  & &}6G O!     //  " "1 %a ( $ 3U ;    //  " "1 %a (  ')F)F G //  " "1 %a ( $ 3U ;    //  " "1 %a (  ')F)F G //  " "1 %a ( NN-t}} = 2,0,I,I  ,,#mm(3&*&L&L(3&*&C&C -  **;7;--.!333 //  " "1 %a ( $ 3U ;    //  & &q )! ,  ')F)F G //  & &q )! , NN-t}} = 2,0,I,I  rJc f[RRURS5UlUR [ R UR[ R UR[ R URS9nURR5n[US'URUS9nURU5nXPR[ R""[$[&[(55:XdeUR+UR,SS[SS0S 5 UR+UR,SS[.S UR05 UR+UR,S SS R1[.UR5S URS.5 gNr5rrr rrfrzr{r|r}rgrhrirr6r7rjr8rrkrlrnrorrr1rrrarrr:rRrSrprrqrsrr=r>r}rrArts rG`test_retrieve_subject_token_success_temp_creds_environment_vars_missing_secret_access_key_idmsv2pTestCredentials.test_retrieve_subject_token_success_temp_creds_environment_vars_missing_secret_access_key_idmsv2'//88  # #%9 ((#mm(3&*&L&L(3&*&C&C ) '+&<&<&A&A&C# % $ & ++9, $::7C  G G  & &}6G O!     //  " "1 %a ( $ 3U ;    //  " "1 %a (  ')F)F G //  " "1 %a ( NN-t}} = 2,0,I,I  rJc f[RRURS5UlUR [ R UR[ R UR[ R URS9nURR5n[US'URUS9nURU5nXPR[ R""[$[&[(55:XdeUR+UR,SS[SS0S 5 UR+UR,SS[.S UR05 UR+UR,S SS R1[.UR5S URS.5 grrrs rG\test_retrieve_subject_token_success_temp_creds_environment_vars_missing_access_key_id_idmsv2lTestCredentials.test_retrieve_subject_token_success_temp_creds_environment_vars_missing_access_key_id_idmsv2rrJc f[RRURS5UlUR [ R UR[ R UR[ R URS9nURR5n[US'URUS9nURU5nXPR[ R""[$[&[(55:XdeUR+UR,SS[SS0S 5 UR+UR,SS[.S UR05 UR+UR,S SS R1[.UR5S URS.5 grrrs rGTtest_retrieve_subject_token_success_temp_creds_environment_vars_missing_creds_idmsv2dTestCredentials.test_retrieve_subject_token_success_temp_creds_environment_vars_missing_creds_idmsv2 s '//88  # #%9 ((#mm(3&*&L&L(3&*&C&C ) '+&<&<&A&A&C# % $ & ++9, $::7C  G G  & &}6G O!     //  " "1 %a ( $ 3U ;    //  " "1 %a (  ')F)F G //  " "1 %a ( NN-t}} = 2,0,I,I  rJc^[RRURS5UlUR [ R URS9nURR5n[US'URUS9nURU5 UR(aeg)Nr5)rrrr )r6r7rjr8rrkrlrnrr1rrracalled)r=r>r}rrAs rG5test_retrieve_subject_token_success_temp_creds_idmsv2ETestCredentials.test_retrieve_subject_token_success_temp_creds_idmsv2=s'//88  # #%9 ((#$--) '+&<&<&A&A&C# % $ & ++9,  **73>>!!>rJc B[RRURS5UlUR [ R UR[ R UR[ R UR[ R URS9nURR5nURUS9nURU5nXPR[ R""[$[&[(55:XdeUR+UR,SS[.SS0S5 UR+UR,SS[0S UR05 UR+UR,S S[.SS0S5 UR+UR,S S[2S UR05 UR+UR,S SS R5[2UR5SURS.5 g)Nr5ryr rrfrzr{r|r}rgr~rrhrir)r6r7rjr8rrkrlrmrnrorCREDENTIAL_SOURCE_IPV6r1rrarrr:rRrSrprrqIMDSV2_SESSION_TOKEN_URL_IPV6REGION_URL_IPV6SECURITY_CREDS_URL_IPV6rrs rG(test_retrieve_subject_token_success_ipv68TestCredentials.test_retrieve_subject_token_success_ipv6Xs&//88  # #%9 ((%..#mm(3&*&L&L(3&*&C&C)  '+&A&A&F&F&H#++9, $::7C  G G  & &}6G O!     //  " "1 %a ( ) 3U ;    //  " "1 %a (  ')F)F G //  " "1 %a ( ) 3U ;    //  " "1 %a ( # ')F)F G //  " "1 %a ( NN2DMM B 2,0,I,I  rJc$[RRURS5UlUR [ R SS9nURR5n[US'URUS9n[R"[R5nURU5 SSS5 WR!S5(deUR#UR$SS[S S 0S 5 g!,(df  NQ=f) Nr5 unauthorized)rrrr z$Unable to retrieve AWS Session Tokenrrfrzr{r|)r6r7rjr8rrk UNAUTHORIZEDrr1rrrOrPrr`rarTrrq)r=r>r}rrArVs rG0test_retrieve_subject_token_session_error_idmsv2@TestCredentials.test_retrieve_subject_token_session_error_idmsv2s&//88  # #%9 (((3(@(@&4) '+&<&<&A&A&C# % $ & ++9, ]]:22 3w  . .w 74}}DEEEE //  " "1 %a ( $ 3U ;   4 3s $D Dc URR5nURS5 [RR UR S5UlUR[RUR[RUR[RUS9nURURS9nURU5nXPR[ R""[$[&55:Xdeg)Nrr5rer )ror1r6r6r7rjr8rrkrlrmrnrrrarrr:rRrS)r=r>security_creds_responser}rArts rGGtest_retrieve_subject_token_success_permanent_creds_no_environment_varsWTestCredentials.test_retrieve_subject_token_success_permanent_creds_no_environment_varss #'"H"H"M"M"O##G,&//88  # #%9 ((%..#mm(3&= ) ++d>T>T+U #::7C  G G  & &}6G H!    rJcRUR[R[5 UR[R[ 5 UR[R [5 UR[RUR5 [RRURS5Ul URURS9nURS5nX@R!["R$"[[ [55:XdegNr5r )setenvrAWS_ACCESS_KEY_IDrRAWS_SECRET_ACCESS_KEYrSAWS_SESSION_TOKENrprmr6r7rjr8rrrarrr:r=r> monkeypatchrArts rG4test_retrieve_subject_token_success_environment_varsDTestCredentials.test_retrieve_subject_token_success_environment_varss+==}M+AACTU+==uE+66H&//88  # #%9 ++d>T>T+U #::4@  G G  & &}6G O!    rJcRUR[R[5 UR[R[ 5 UR[R [5 UR[RUR5 [RRURS5Ul URURS9nUR!S5nX@R#[$R&"[[ [55:XdegrrrrrRrrSrrpAWS_DEFAULT_REGIONrmr6r7rjr8rrrarrr:rs rGHtest_retrieve_subject_token_success_environment_vars_with_default_regionXTestCredentials.test_retrieve_subject_token_success_environment_vars_with_default_regions +==}M+AACTU+==uE+>>P&//88  # #%9 ++d>T>T+U #::4@  G G  & &}6G O!    rJcUR[R[5 UR[R[ 5 UR[R [5 UR[RS5 UR[RUR5 [RRURS5Ul URURS9nUR!S5nX@R#[$R&"[[ [55:Xdeg)NzMalformed AWS Regionr5r rrs rGJtest_retrieve_subject_token_success_environment_vars_with_both_regions_setZTestCredentials.test_retrieve_subject_token_success_environment_vars_with_both_regions_sets +==}M+AACTU+==uE+>>@VW +66H&//88  # #%9 ++d>T>T+U #::4@  G G  & &}6G O!    rJcUR[R[5 UR[R[ 5 UR[R UR 5 [RRURS5Ul URURS9nURS5nX@R[R "[[ 55:Xdegr)rrrrRrrSrmr6r7rjr8rrrarrr:rs rGEtest_retrieve_subject_token_success_environment_vars_no_session_tokenUTestCredentials.test_retrieve_subject_token_success_environment_vars_no_session_token s +==}M+AACTU+66H&//88  # #%9 ++d>T>T+U #::4@  G G  & &}6G H!    rJcNUR[R[5 UR[R[ 5 UR[R [5 [RRURS5Ul UR[RURS9nUR!UR"S9nUR%U5nXPR'[(R*"[[ [55:Xdeg)Nr5rrr )rrrrRrrSrrpr6r7rjr8rrkrlrmrrrarrr:)r=r>rr}rArts rGBtest_retrieve_subject_token_success_environment_vars_except_regionRTestCredentials.test_retrieve_subject_token_success_environment_vars_except_regions +==}M+AACTU+==uE&//88  # #%9 ((%..doo) ++d>T>T+U #::7C  G G  & &}6G O!    rJc>UR[RS9nURURS9n[ R "[R5nURU5 SSS5 WRS5(deg!,(df  N'=fN)rr zUnable to retrieve AWS region) rrk BAD_REQUESTrrrOrPrr`rarTr=r}rArVs rG8test_retrieve_subject_token_error_determining_aws_regionHTestCredentials.test_retrieve_subject_token_error_determining_aws_region1s|(({7N7N(O++d>T>T+U ]]:22 3w  . .w 74}}=>>>>4 3 B BcrUR[RUR[RS9nUR UR S9n[R"[R5nURU5 SSS5 WRS5(deg!,(df  N'=f)N)rrrr z Unable to retrieve AWS role name) rrkrlrmrrrrOrPrr`rarTrs rG6test_retrieve_subject_token_error_determining_aws_roleFTestCredentials.test_retrieve_subject_token_error_determining_aws_role;s((%..#//)  ++d>T>T+U ]]:22 3w  . .w 74}}@AAAA4 3s 5B(( B6cURR5nURS5 UR[R UR S9nURUS9n[R"[R5nURU5 SSS5 WRS5(deg!,(df  N'=f)Nrrr zIUnable to determine the AWS metadata server security credentials endpoint)rr1r6rrkrlrmrrOrPrr`rarT)r=rr}rArVs rG@test_retrieve_subject_token_error_determining_security_creds_urlPTestCredentials.test_retrieve_subject_token_error_determining_security_creds_urlIs!22779e$((%..doo) ++>O+P ]]:22 3w  . .w 74}} X    4 3s B:: CcUR[RUR[RUR[R S9nUR URS9n[R"[R5nURU5 SSS5 WRS5(deg!,(df  N'=f)N)rrrrrr z+Unable to retrieve AWS security credentials)rrkrlrmrnrrrrOrPrr`rarTrs rG@test_retrieve_subject_token_error_determining_aws_security_credsPTestCredentials.test_retrieve_subject_token_error_determining_aws_security_credsZs((%..#mm(3(?(? ) ++d>T>T+U ]]:22 3w  . .w 74}}KLLLL4 3s C Cz/google.auth.metrics.python_and_auth_lib_versionc [RRURS5UlUR [ R "[[[55nSS[-SS.nS[SSR[5U[S .nUR[ R"UR$[ R"UR&[ R"UR([ R"UR*S 9nUR-[.[0UR2[4[S /S 9nUR7U5 [9UR:5S :XdeUR=UR:SSXE5 UR>UR*S:XdeUR@[4:XdeURB[:XdeURDS /:Xdeg)Nr5r&Basic _gl-python/3.7 auth/1.1 google-byoid-sdk sa-impersonation/false config-lifetime/false source/awsr'rx-goog-api-client/urn:ietf:params:oauth:grant-type:token-exchangerr grant_typerrequested_token_typerrtrrrrrrrrrignoredrrrrrrrr~rfr#r6r7rjr8rrr:rRrSrpBASIC_AUTH_ENCODINGrrSCOPESrrrkrlrmrnroSUCCESS_RESPONSErrrrr refreshrrqrtokenrrrr=r>mock_auth_lib_valueexpected_subject_token token_headerstoken_request_datar}rAs rG@test_refresh_success_without_impersonation_ignore_default_scopesPTestCredentials.test_refresh_success_without_impersonation_ignore_default_scopesjs'//88  # #%9 "&!H!H  & &}6G O" @%(;;"C L $SXXf%3"4  ((%..#mm(3&*&L&L$,,)  ++'"44-%;,  G$7))*a/// ((  " "1 %a (-   D$9$9.$IIII++/????!!V+++))i[888rJc [RRURS5UlUR [ R "[[[55nSS[-SS.nS[SSR[5U[S .nUR[ R"UR$[ R"UR&[ R"UR([ R"UR*S 9nUR-[.[0UR2[4S[S 9nUR7U5 [9UR:5S :XdeUR=UR:S SXE5 UR>UR*S:XdeUR@[4:XdeURBbeURD[:Xdeg)Nr5r&rrrrrrrrrrr~rfrrrs rG=test_refresh_success_without_impersonation_use_default_scopesMTestCredentials.test_refresh_success_without_impersonation_use_default_scopess'//88  # #%9 "&!H!H  & &}6G O" @%(;;"C L $SXXf%3"4  ((%..#mm(3&*&L&L$,,)  ++'"44-!,  G$7))*a/// ((  " "1 %a (-   D$9$9.$IIII++/????!!)))))V333rJz:google.auth.metrics.token_request_access_token_impersonatec  [RRURS5Ul[R "5R SS9[R"SS9-RS5S-nUR[R"[[[55nSS [-S S .nS [ S SU["S.nSUS.nSSR%UR&S5[([*SS.n S[,SS.n UR/[0R2UR4[0R2UR6[0R2UR8[0R2UR&[0R2US9 n UR;[<[>UR@[B[([,S/S9n U REU 5 [GU RH5S:XdeURKU RHSSXg5 URMU RHSSU U 5 U RNUS :XdeU RP[(:XdeU RR[,:XdeU RTS/:Xdeg)!Nr5r microsecondrsecondsTZr&r^gl-python/3.7 auth/1.1 google-byoid-sdk sa-impersonation/true config-lifetime/false source/awsrrr#https://www.googleapis.com/auth/iamrSA_ACCESS_TOKEN accessToken expireTimeri Bearer {}r0x0r' authorizationzx-goog-user-projectrzx-allowed-locations3600s delegatesrlifetime rrrrrrrrrrrrrrrrrrr~rfrr+r6r7rjr8rr>replace timedelta isoformatrrr:rRrSrprrrrrr 5IMPERSONATE_ACCESS_TOKEN_REQUEST_METRICS_HEADER_VALUErrrkrlrmrnrorrrrrrrrqrrrrrr r=r>mock_metrics_header_valuer expire_timerrrrimpersonation_headersimpersonation_request_datar}rAs rG=test_refresh_success_with_impersonation_ignore_default_scopesMTestCredentials.test_refresh_success_with_impersonation_ignore_default_scopessx'//88  # #%9  OO  % %! % 4x7I7IRV7W W )C.3 "&!H!H  & &}6G O" @%(;;"B L $S:3"4  -%"  /(//0E0En0UV#3!V#( ! & " ((%..#mm(3&*&L&L$,,!,5)  ++'"44.O-%;,   G$7))*a/// ((  " "1 %a (- 00  " "1 %a ( ! &   $:=$IIII++/????!!V+++))i[888rJc [RRURS5Ul[R "5R SS9[R"SS9-RS5S-nUR[R"[[[55nSS [-S S .nS [ S SU["S.nSUS.nSSR%UR&S5[([*SS.n S[,SS.n UR/[0R2UR4[0R2UR6[0R2UR8[0R2UR&[0R2US9 n UR;[<[>UR@[B[(S[,S9n U REU 5 [GU RH5S:XdeURKU RHSSXg5 URMU RHSSU U 5 U RNUS:XdeU RP[(:XdeU RRbeU RT[,:Xdeg) Nr5rrrrrrr&rrrrrrrrrrirrrrrrrrrr~rfrrrr s rG:test_refresh_success_with_impersonation_use_default_scopesJTestCredentials.test_refresh_success_with_impersonation_use_default_scopes=sr'//88  # #%9  OO  % %! % 4x7I7IRV7W W )C.3 "&!H!H  & &}6G O" @%(;;"B L $S:3"4  -%"  /(//0E0En0UV#3!V#( ! & " ((%..#mm(3&*&L&L$,,!,5)  ++'"44.O-!,   G$7))*a/// ((  " "1 %a (- 00  " "1 %a ( ! &   $:=$IIII++/????!!)))))V333rJc>UR[RS9nURURS9n[ R "[R5nURU5 SSS5 WRS5(deg!,(df  N'=fr) rrkrrrrOrPrr`rrTrs rG.test_refresh_with_retrieve_subject_token_error>TestCredentials.test_refresh_with_retrieve_subject_token_errors|(({7N7N(O++d>T>T+U ]]:22 3w    (4}}=>>>>4 3rc[RRURS5UlUR 5n[ R "[[5n[X0RS9nURUS9nURU5nX`R[ R "[[55:XdegNr5rtr?r)r6r7rjr8rrr:rRrSrlrmrrarr=r>r}rtr rArts rG1test_retrieve_subject_token_success_with_supplierATestCredentials.test_retrieve_subject_token_success_with_suppliers&//88  # #%9 ((*"99 , 6!5oo ++h+W #::7C  G G  & &}6G H!    rJc[RRURS5UlUR 5n[ R "[[[5n[X0RS9nURUS9nURU5nX`R[ R "[[[55:Xdegr)r6r7rjr8rrr:rRrSrprlrmrrarrs rG?test_retrieve_subject_token_success_with_supplier_session_tokenOTestCredentials.test_retrieve_subject_token_success_with_supplier_session_tokens&//88  # #%9 ((*"99 ,e 6!5oo ++h+W #::7C  G G  & &}6G O!    rJch[RRURS5UlUR 5n[ R "[[5n[R"[[5n[UURUS9nURUS9nUR!U5 g)Nr5)rtr?rwr)r6r7rjr8rrSupplierContextrrrr:rRrSrlrmrra)r=r>r}rwrtr rAs rGAtest_retrieve_subject_token_success_with_supplier_correct_contextQTestCredentials.test_retrieve_subject_token_success_with_supplier_correct_contexts&//88  # #%9 ((*+;;   #99 , 6!5??-  ++h+W **73rJcdUR5n[R"S5n[URUS9nUR US9n[ R"[R5nURU5 SSS5 WRS5(deg!,(df  N'=f)N Test error)r?rur) rrr`rlrmrrOrPrrT)r=r}expected_exceptionr rArVs rG/test_retrieve_subject_token_error_with_supplier?TestCredentials.test_retrieve_subject_token_error_with_suppliers((*'44\B5??:L ++h+W ]]:22 3w    (4}}]++++4 3s .B!! B/cUR5n[R"S5n[R"[ [ 5n[UUS9nURUS9n[R"[R5nURU5 SSS5 WRS5(deg!,(df  N'=f)Nr&)rtrvr) rrr`rr:rRrSrlrrOrPrrT)r=r}r'rtr rArVs rG6test_retrieve_subject_token_error_with_supplier_regionFTestCredentials.test_retrieve_subject_token_error_with_supplier_regions((*'44\B"99 , 6!5/  ++h+W ]]:22 3w    (4}}]++++4 3s B66 Cc [RRURS5Ul[R "5R SS9[R"SS9-RS5S-nUR[R"[[[55nSS [-S S .nS [ S SU["S.nSUS.nSSR%UR&S5[([*SS.nS[,SS.n UR/[0R2UR&[0R2US9n [5[R"[[[5UR6S9n UR9[:[<U [>[([,S/S9n U RAU 5 [CU RD5S:XdeURGU RDSSXV5 URIU RDSSUU 5 U RJUS:XdeU RL[(:XdeU RN[,:XdeU RPS/:Xdeg) Nr5rrrrrrr&rzggl-python/3.7 auth/1.1 google-byoid-sdk sa-impersonation/true config-lifetime/false source/programmaticrrrrrrrrirrrrrr)rrrrrr)rrrrrrrrgrfr))r6r7rjr8rr>rrrrrr:rRrSrprrrrrr r rrrkrlrlrmrrrrrrrqrrrrrr) r=r>rr rrrrr rr}r rAs rG5test_refresh_success_with_supplier_with_impersonationETestCredentials.test_refresh_success_with_supplier_with_impersonation sq'//88  # #%9  OO  % %! % 4x7I7IRV7W W )C.3 "&!H!H  & &}6G O" @%(;;"K L $S:3"4  -%"  /(//0E0En0UV#3!V#( ! & " (($,,!,5 ) 6!$!;!;0%"??  ++'.6.O-%;,   G$7))*a/// ((  " "1 %a (- 00  " "1 %a ( ! &   $:=$IIII++/????!!V+++))i[888rJc [RRURS5UlUR [ R "[[[55nSS[-SS.nS[SSR[5U[S .nUR[ R"UR$S 9n['[ R "[[[5UR(S 9nUR+[,[.U[0[S /S 9nUR3U5 [5UR65S:XdeUR9UR6SSXE5 UR:UR$S:XdeUR<[0:XdeUR>[:XdeUR@S /:Xdeg)Nr5r&rzhgl-python/3.7 auth/1.1 google-byoid-sdk sa-impersonation/false config-lifetime/false source/programmaticrrrrr)rrrr)rrrrrrrfrr)!r6r7rjr8rrr:rRrSrprrrrrrrkrlrrlrmrrrr rrrqrrrrr) r=r>rrrrr}r rAs rG"test_refresh_success_with_supplier2TestCredentials.test_refresh_success_with_supplier_ s '//88  # #%9 "&!H!H  & &}6G O" @%(;;"L L $SXXf%3"4  (($D4I4I) 6!$!;!;0%"??  ++'.6-%;,  G$7))*a/// ((  " "1 %a (-   D$9$9.$IIII++/????!!V+++))i[888rJr`)r)r/) NNNNNNNNNNNN)Nr)ararbrcrdrmrnrRrSrprorrjrrrsCRED_VERIFICATION_URLrrrrrrrr classmethodrrrrrrrrrrhriobjectrrrr r rrr$r)r,r2r7r;r@rCrIrLrPrVrZr]rbrvdictosenvironrrrrrrrrrrrrrrrrrrrr!LANG_LIBRARY_METRICS_HEADER_VALUErrr rrrrrr#r(r+r.r1rjr`rJrGrrs7JH$,)% 7/  !*? !%&*?$A 'L&!  ] - - ^$("&!$("&WWr*.%*.  87< , ,>G H H +L ) ) ZZs F  G  D ZZs F G 8 ZZs F G < ZZs F" G" H ZZs F G :K   KKX  <G.>   " @ ZZ-.9 /9 v ZZ-. ZZ__RZZ$d %/d L ZZ-. ZZ__  ' '  . .  / // b ZZ-. ZZ__  ' '  2 24E / // b ZZ-. ZZ__RZZ"2"="=z!JK/ L// b ZZ-. ZZ__  ' '  . .  2 24E "/"$ ZZ-.: /: x ZZ-. / : ZZ-. / 4 ZZ-. /  ZZ-. / $ ZZ-. / , ZZ-. / " ZZ-. / *? B "M  ZZ96 ZZ-.49/  49l ZZ96 ZZ-.44/  44l ZZDJ ZZ96 ZZ-.R9/  R9h ZZDJ ZZ96 ZZ-.R4/  R4h? ZZ-. / ( ZZ-. / ( ZZ-.4/4, ,,$ ZZ96 ZZ-.T9/  T9l ZZ96 ZZ-.39/  39rJr):r6 http.clientclientrkrr7 urllib.parserrhrO google.authrrrrrrgoogle.auth.credentialsr r r9rrrSERVICE_ACCOUNT_EMAIL&SERVICE_ACCOUNT_IMPERSONATION_URL_BASErrTrr rrrrrrrrrsrrrr3rRrSrpREQUEST_PARAMSrGINVALID_TOKEN_URLSrS*INVALID_SERVICE_ACCOUNT_IMPERSONATION_URLSrunquotergr5r2AwsSecurityCredentialsSupplierrlrr`rJrGrFs!  2("!;@6%=!   0K4'+b*h*h+'+-TT"& H  1 ;B v R DWW IFU' > zn < ,(.*F *!K ) ?@ *"U&7 4 *!K 7 ?@ 8"U&7 4 *!K , ?@ -"U&7 4 *!K / ?@ 0"U&7 4 *!K 3 ?@ 4"U&7 4 *!K : ?@ ;"U&7 4 *!K 6 ?@ 7"U&7 4 *!K 188 $$[1 ?@  288 $$[1"U&7 < *!K * ?Q +"Y&7  6 *!K * ?Q +"Y&7  6 *!K * ?gN +"W&7  6 *!K * C7 +"b& C7   !@ *!K 2 ?@ 3"U&7 0 *!2# b c!?" y"y60(-  6 *!2# d e!?" y"y60(-  6 '>OPd e!?" d"d60  , *!2# > < ?# ?!?" X"X;0 < ?(- # # { ~ B;9;9|)K)K