U g@s2dZddlmZddlmZddlmZddlmZddl m Z ee ddd Z e e e d d d Ze d ddZeedddZe e edddZeedddZeedddZe e edddZe e edddZe e edd d!Ze e e d"d#d$Ze e ed"d%d&Ze e edd'd(Zeed)d*d+Zd,S)-a These are the default methods implementations that are used in this extension. All of these can be updated on an app by app basis using the JWTManager loader decorators. For further information, check out the following links: http://flask-jwt-extended.readthedocs.io/en/latest/changing_default_behavior.html http://flask-jwt-extended.readthedocs.io/en/latest/tokens_from_complex_object.html ) HTTPStatus)Any)jsonify)ResponseReturnValue)config)userdatareturncCsiS)z By default, we add no additional claims to the access tokens. :param userdata: data passed in as the ```identity``` argument to the ```create_access_token``` and ```create_refresh_token``` functions rr r H/tmp/pip-unpacked-wheel-qm6yk1_p/flask_jwt_extended/default_callbacks.py"default_additional_claims_callbacksr ) jwt_headersjwt_datarcCsdS)NFr )r rr r r default_blocklist_callbacksr)rcCsiS)aG By default header typically consists of two parts: the type of the token, which is JWT, and the signing algorithm being used, such as HMAC SHA256 or RSA. But we don't set the default header here we set it as empty which further by default set while encoding the token :return: default we set None here r )default_headersr r r default_jwt_headers_callback!srcCs|S)a) By default, we use the passed in object directly as the jwt identity. See this for additional info: :param userdata: data passed in as the ```identity``` argument to the ```create_access_token``` and ```create_refresh_token``` functions r r r r r default_user_identity_callback,s r)_expired_jwt_header_expired_jwt_datarcCsttjditjfS)z By default, if an expired token attempts to access a protected endpoint, we return a generic error message with a 401 status zToken has expiredrr error_msg_keyr UNAUTHORIZED)rrr r r default_expired_token_callback8sr) error_stringrcCsttj|itjfS)z By default, if an invalid token attempts to access a protected endpoint, we return the error string for why it is not valid with a 422 status code :param error_string: String indicating why the token is invalid )rrrrUNPROCESSABLE_ENTITYrr r r default_invalid_token_callbackBs rcCsttj|itjfS)z By default, if a protected endpoint is accessed without a JWT, we return the error string indicating why this is unauthorized, with a 401 status code :param error_string: String indicating why this request is unauthorized rrr r r default_unauthorized_callbackOsr) jwt_headerrrcCsttjditjfS)z By default, if a non-fresh jwt is used to access a ```fresh_jwt_required``` endpoint, we return a general error message with a 401 status code zFresh token requiredrrrr r r "default_needs_fresh_token_callbackYs r cCsttjditjfS)z By default, if a revoked token is used to access a protected endpoint, we return a general error message with a 401 status code zToken has been revokedrrr r r default_revoked_token_callbackfs r!) _jwt_headerrrcCs(|tj}tjd|i}t|tjfS)z By default, if a user_lookup callback is defined and the callback function returns None, we return a general error message with a 401 status code zError loading the user )rZidentity_claim_keyrrrr)r"ridentityresultr r r "default_user_lookup_error_callbackss r%)r" _jwt_datarcCsdS)zG By default, we do not do any verification of the user claims. Tr r"r&r r r #default_token_verification_callbacksr(cCsttjditjfS)zz By default, if the user claims verification failed, we return a generic error message with a 400 status code zUser claims verification failed)rrrr BAD_REQUESTr'r r r *default_token_verification_failed_callbacks r*cCstjS)z By default, the decode key specified via the JWT_SECRET_KEY or JWT_PUBLIC_KEY settings will be used to decode all tokens )rZ decode_keyrr r r default_decode_key_callbacksr+)r#rcCstjS)z By default, the encode key specified via the JWT_SECRET_KEY or JWT_PRIVATE_KEY settings will be used to encode all tokens )rZ encode_key)r#r r r default_encode_key_callbacksr,N)__doc__httprtypingrZflaskrZ flask.typingrZflask_jwt_extended.configrdictr boolrrrrstrrrr r!r%r(r*r+r,r r r r sD