o yi@szddlmZddlZddlZddlZddlZddlmZddlm Z ddl m Z ddl m Z ddlmZddlZGdd d ZeZdCd d ZdDddZGdddeZe ddGdddZejddZejddeZdZdedZdZdZd Z e !d!Z"dEd#d$Z#ed%d&Z$dFd(d)Z%dGd.d/Z&dHd2d3Z'd4d5dId8d9Z(dJd;d<Z)dDd=d>Z*dKd?d@Z+dLdAdBZ,dS)M) annotationsN)contextmanager) dataclass)Path)Lock)Optionalc@seZdZddZdS)GoogleColabStatecCsd|_t|_d|_dS)NF) is_checkedrlocksecretselfrG/home/livre-enfant/venv/lib/python3.10/site-packages/fal_client/auth.py__init__s zGoogleColabState.__init__N)__name__ __module__ __qualname__rrrrrrs rreturnboolcCsDzddlm}dt|vWStyYdSty!YdSw)Nr get_ipythonz google.colabF)IPythonrstrModuleNotFoundError NameErrorrrrris_google_colabs   r Optional[str]c CstsdStjMtjrtjWdSzddlm}Wnty.YWddSwz |d}| t_Wn t yGdt_Ynwdt_tjWdS1sXwYdS)Nr)userdataFAL_KEYT) r _colab_stater r r google.colabr ImportErrorgetstrip Exception)rtokenrrrget_colab_token%s*    $r'c@s eZdZdS)MissingCredentialsErrorN)rrrrrrrr(;sr(T)frozenc@s:eZdZUdZded<ded<ed ddZd d d Zd S)AuthCredentialsz)Represents an authorization header value.rschemer&rcCs|jd|jS)N )r+r&r rrr header_valueFszAuthCredentials.header_valuedict[str, str]cCs d|jiS)N Authorization)r-r rrr as_headersJs zAuthCredentials.as_headersNrr)rr.)rrr__doc____annotations__propertyr-r0rrrrr*?s  r* FAL_RUN_HOSTzfal.runFAL_QUEUE_RUN_HOSTzqueue.z auth.fal.aizhttps://z /oauth/token TwXR51Vz8JbY8GUUMy6EyuVR0fTO7N4N auth0_tokenz .portalockz.falrcCsttdttS)N FAL_HOME_DIR)rosgetenvrDEFAULT_FAL_HOME expanduserrrrr_get_fal_home_dirYsr>ccszddl}Wn tydVYdSwtt}|jjddd|jjt|ddd dVWddS1sAUTH_LOCK_FILENAMEparentmkdirutilsTemporaryFileLockr)rE lock_filerrr _token_lock]s    "rL#tuple[Optional[str], Optional[str]]cCsdtt}|s dSdd|D}|sdS|d}d}t|dkr*|d}|p-d|p0dfS)N)NNcSsg|] }|r|qSr)r$).0linerrr tsz%_read_auth_tokens..r)r>AUTH_TOKEN_FILENAMEexists read_text splitlineslen)pathlines refresh_token access_tokenrrr_read_auth_tokensos  r[rYrrZNonecCsBtt}|jjddd|g}|r|||d|dS)NTr? )r>rRrGrHappend write_textjoin)rYrZrWcontentsrrr_write_auth_tokenss  rbr& Optional[int]cCsdz'|dd}dt| d}t||}t|d}t|dWSt y1YdSw)z?Returns exp claim in seconds since epoch or None if unreadable..rQ=zutf-8expN) splitrVbase64urlsafe_b64decodejsonloadsdecodeintr#r%)r&payload_segmentpaddingpayloadclaimsrrr_decode_jwt_exps rsi,)leeway_secondsrtrncCs$t|}|dur dSt||kS)NT)rstime)r&rtrgrrr_is_access_token_expiredsrvdictcCsZtjtdt|ddd}z|}Wn tyi}Ynw|jdks'd|vr+td|S)NrY) grant_type client_idrY)datarDrZzDFailed to refresh fal auth token. Please run `fal auth login` again.)httpxpostAUTH0_TOKEN_URLAUTH0_CLIENT_IDrkr% status_coder()rYresponse token_datarrr_refresh_access_tokens$  rcCst t\}}Wdn1swY|sdS|r$t|s$|St|}|d|}|d}tt||Wd|S1sFwY|S)z Try to reuse tokens created by `fal auth login`. We share the same file layout as fal-cli: - refresh token on first line - optional cached access token on second line NrYrZ)rLr[rvrr#rb)rYrZr new_refresh new_accessrrr_load_bearer_token_from_logins      rcCstjddk}|s8td}rtd|Std}r.td}r.td|d|St}r8td|St}rBtd|Std ) z Return credentials using this priority: 1) FAL_KEY / FAL_KEY_ID+FAL_KEY_SECRET / Colab secret (unless FAL_FORCE_AUTH_BY_USER=1) 2) Tokens saved by `fal auth login` FAL_FORCE_AUTH_BY_USER1rKey FAL_KEY_IDFAL_KEY_SECRET:Bearerz_No credentials found. Set FAL_KEY (or FAL_KEY_ID/FAL_KEY_SECRET) or login via `fal auth login`.)r:environr#r;r*r'rr()force_user_authkeykey_idfal_key_secret colab_tokenbearerrrrfetch_auth_credentialss      rcCs"t}|jdkrtd|jS)z Legacy helper kept for backwards compatibility. It only returns Key-based credentials; user-based auth (Bearer) will raise MissingCredentialsError so callers don't accidentally send it as a key. rzFKey credentials not found. Set FAL_KEY (or FAL_KEY_ID/FAL_KEY_SECRET).)rr+lowerr(r&)authrrrfetch_credentialss r)rr)rr)rr)rrM)rYrrZrrr\)r&rrrc)r&rrtrnrr)rYrrrw)rr*r1)- __future__rrirkr:ru contextlibr dataclassesrpathlibr threadingrtypingrr}rr rr'r%r(r*rr#r5r6 AUTH0_DOMAINrrrRrFhomer<r>rLr[rbrsrvrrrrrrrrsJ