Pi$TSSKrSSKrSSKrSSKJr SSKJr SSKJr SSKJr SSK J r \R\ \ 4r\R\r\R\R"\\4r"SS 5r"S S \5r"S S \5rS\S\R,\ 4Sjr"SS5rg)N)_base64_alphabet) base64_decode) base64_encode) want_bytes) BadSignaturecH\rSrSrSrS\S\S\4SjrS\S\S\S\4SjrS r g ) SigningAlgorithmz_Subclasses must implement :meth:`get_signature` to provide signature generation functionality. keyvaluereturnc[5e)z2Returns the signature for the given key and value.)NotImplementedErrorselfr r s e/var/www/html/backend/Backoffice_Marketplace/venv/lib/python3.13/site-packages/itsdangerous/signer.py get_signatureSigningAlgorithm.get_signatures !##sigcL[R"X0RX55$)z=Verifies the given signature matches the expected signature. )hmaccompare_digestr)rr r rs rverify_signature!SigningAlgorithm.verify_signatures ""3(:(:3(FGGrN) __name__ __module__ __qualname____firstlineno____doc__bytesrboolr__static_attributes__rrrr r sG$$u$$HEH%HeHHrr c.\rSrSrSrS\S\S\4SjrSrg) NoneAlgorithm zXProvides an algorithm that does not perform any signing and returns an empty signature. r r rcg)Nrrrs rrNoneAlgorithm.get_signature%srrN)rrr r!r"r#rr%rrrr'r' s!urr'c\rSrSr%Sr\"\R5r\ R\ S'S S\ R4Sjjr S\ S\ S \ 4S jrS rg) HMACAlgorithm)z*Provides signature generation using HMACs.default_digest_methodN digest_methodc.Uc URnXlgN)r.r/)rr/s r__init__HMACAlgorithm.__init__1s   66M%2rr r rc`[R"XURS9nUR5$)N)msg digestmod)rnewr/digest)rr r macs rrHMACAlgorithm.get_signature7s$hhs1C1CDzz|r)r/r1)rrr r!r" staticmethodhashlibsha1r._tAny__annotations__r2r#rr%rrrr,r,)sI4 %1$>266>3bff3 urr, secret_keyrc[U[[45(a [U5/$UVs/sHn[U5PM sn$s snfr1) isinstancestrr#r)rAss r_make_keys_listrF<s=*sEl++:&''#- .:aJqM: .. .sAc\rSrSr%Sr\"\R5r\ R\ S'Sr \ \ S'SS\S\S \S \ R"\ S \ R"\ RS \ R"\4 S jjr\S\4Sj5rSS\S\4SjjrS\S\4SjrS\S\4SjrS\S\S\4SjrS\S\4SjrS\S\4SjrSrg)SignerCa^A signer securely signs bytes, then unsigns them to verify that the value hasn't been changed. The secret key should be a random string of ``bytes`` and should not be saved to code or version control. Different salts should be used to distinguish signing in different contexts. See :doc:`/concepts` for information about the security of the secret key and salt. :param secret_key: The secret key to sign and verify with. Can be a list of keys, oldest to newest, to support key rotation. :param salt: Extra key to combine with ``secret_key`` to distinguish signatures in different contexts. :param sep: Separator between the signature and value. :param key_derivation: How to derive the signing key from the secret key and salt. Possible values are ``concat``, ``django-concat``, or ``hmac``. Defaults to :attr:`default_key_derivation`, which defaults to ``django-concat``. :param digest_method: Hash function to use when generating the HMAC signature. Defaults to :attr:`default_digest_method`, which defaults to :func:`hashlib.sha1`. Note that the security of the hash alone doesn't apply when used intermediately in HMAC. :param algorithm: A :class:`SigningAlgorithm` instance to use instead of building a default :class:`HMACAlgorithm` with the ``digest_method``. .. versionchanged:: 2.0 Added support for key rotation by passing a list to ``secret_key``. .. versionchanged:: 0.18 ``algorithm`` was added as an argument to the class constructor. .. versionchanged:: 0.14 ``key_derivation`` and ``digest_method`` were added as arguments to the class constructor. r. django-concatdefault_key_derivationNrAsaltsepkey_derivationr/ algorithmc@[U5Ul[U5UlUR[;a [ S5eUb [U5nOSnX lUc URnX@lUc URnXPl Uc[UR5nX`l g)NzThe given separator cannot be used because it may be contained in the signature itself. ASCII letters, digits, and '-_=' must not be used.itsdangerous.Signer) rF secret_keysrrMr ValueErrorrLrKrNr.r/r,rO)rrArLrMrNr/rOs rr2Signer.__init__xs,;:+F$S/ 88' '7   d#D)D  !!88N#1   66M%2  %d&8&89I+4rrc URS$)zThe newest (last) entry in the :attr:`secret_keys` list. This is for compatibility from before key rotation support was added. )rR)rs rrASigner.secret_keys ##rcUcURSnO [U5nURS:XaE[R"[ UR URU-5R55$URS:XaH[R"[ UR URS-U-5R55$URS:XaI[R"XR S9nURUR5 UR5$URS:XaU$[S5e) aThis method is called to derive the key. The default key derivation choices can be overridden here. Key derivation is not intended to be used as a security method to make a complex key out of a short password. Instead you should use large random secret keys. :param secret_key: A specific secret key to derive from. Defaults to the last item in :attr:`secret_keys`. .. versionchanged:: 2.0 Added the ``secret_key`` parameter. rVconcatrJssignerr)r6nonezUnknown key derivation method) rRrrNr>castr#r/rLr8rr7update TypeError)rrAr9s r derive_keySigner.derive_keys  ))"-J#J/J   ( *775$"4"4TYY5K"L"S"S"UV V  O 377t))$))i*?**LMTTV  F *((:1C1CDC JJtyy !::<   F * ;< NNrcHURU5 g![a gf=f)z^Only validates the given signed value. Returns ``True`` if the signature exists and is valid. TF)rmr)rris rvalidateSigner.validates(  KK %  s  !!)rOr/rNrLrRrM)rQ.NNNr1)rrr r!r"r;r<r=r.r>r?r@rKrD _t_secret_key_t_opt_str_bytes _t_str_bytesOptionalr r2propertyr#rAr^rrcr$rrmrpr%rrrrHrHCs9#V%1$>266>#2C1 "8 +/-137,5!,5,5 ,5  C( ,5 {{266* ,5;;/0,5\$E$$ =%5==B"<"E"<,<5< l$" O< OE O\drrH)r<rtypingr>encodingrrrrexcrUnionrDr#rurvrtIterablersr r'r,ListrFrHrrrr~s &## xxU # ;;|,\2L@A  H H $$&/ /"''%./~~r