# hJSrSSKrSSKrSSKrSSKrSSKJr SSKrSSKrSSK J r J r SSK J r JrJr SSKJr \R,"\5rS?S jrS rS rS?S jrS rSrSrSr "SS\ 5r!"SS\ \"5r#"SS\#5r$"SS\"5r%\S:XGaSSK&r&SSK'r'SSK(J)r) \RT"\RVS9 \&RX"\&RZ\S-S9=r.r/\.RaSS S!S"9 \.RaS#S$S%9 \.RaS&\1SS'S(9 \.RaS)\1S*S+S(9 \.RaS,S-S.S/9 \.RaS0SS1S/9 \/Re5r3\)"S2\3Rh0\3Rj5r6\%"\3RnS39r8\6Rs\3Rt(a\3RtRw5OSS4Ry\3Rz\8R}5S59S69r?\@"\'R"\8R\?S7S8S9S:\3R\?S;S<9S=S>95 SSS5 gg!\a SSKJ r J r SSK J r Jr SSKJr SSKJr GNf=f!,(df  g=f)@a$A one-stop helper for desktop app to acquire an authorization code. It starts a web server to listen redirect_uri, waiting for auth code. It optionally opens a browser window to guide a human user to manually login. After obtaining an auth code, the web server will automatically shut down. N)Template) HTTPServerBaseHTTPRequestHandler)urlparseparse_qs urlencode)escape)rr)rc[US9nURUSS9RS5sSSS5 $!,(df  g=f)Nportz Open this link to Sign In (You may want to use incognito window)
Abort )auth_uriwelcome_templatecode)AuthCodeReceiverget_auth_responseget) listen_portr receivers I/var/www/html/env/lib/python3.13/site-packages/msal/oauth2cli/authcode.pyobtain_auth_coders> { +x))"*c&k , + +s 3 Ac\[S5nUR5HDnURSS5SR5nUR5S:wdM< SSS5 g SSS5 [ R RS5$!,(df  N-=f![a N>- (($ #    sA BA B B B$B &B BBB B+*B+cSSKnUR5n[USUS5R5n[USUS5R5nUS:H=(a SU;$)Nrsystemreleaserlinux microsoft)platformunamegetattrlower)r,r- platform_namer)s ris_wslr18s^  NN EE8U1X6<<>MeYa1779G G # > w(>>c.SSKnU(a!URU5RU5nOURU5nU(d?[5(a0SSKnUR SSSSR U5/5nUS:HnU$U$![a U$f=f)zJBrowse uri with named browser. Default browser is customizable by $BROWSERrNzpowershell.exez -NoProfilez-CommandzStart-Process "{}") webbrowserrrr1 subprocesscallformatFileNotFoundError)r browser_namer4browser_openedr5 exit_codes r_browser<Ds# 5::8D$2 fhh  #!<=Q=X=XYa=bceI&!^N >!    s-B BBc UR5VVs0sH1upU[U[5(a[U5S:XaUSOU_M3 snn$s snnf)z;Flatten parse_qs()'s single-item lists into the item itselfr)items isinstancelistlen)qskvs r_qs2kvrF[sRHHJ DA z!T**s1v{qt A   s8Ac$URS5$)N<) startswithtexts r_is_htmlrLas ??3 r2clUR5VVs0sHupU[U5_M snn$s snnfN)r?r )key_value_pairsrDrEs r_escaperPes/%4%:%:%< =%>RVVG__"2JM LL0- @{{%%$++*@*@MDUDUV]D^*^(()9:|!KK88)-)C)CH--.. ' 6I -I(()A)A)NI)NO,9 )  $ $T[[%=%= >r2cURU(aSOS5 [U5(aSOSnURSU5 UR5 URR UR S55 g)Niz text/htmlz text/plainz Content-typezutf-8) send_responserL send_header end_headerswfilewriteencode)ribodyis_ok content_types rrb$_AuthCodeHandler._send_full_responsesZ %3S1&.tnn{,  6  W-.r2cN[R"U/[[U5Q76 grN)r^r_maprU)rir7argss r log_message_AuthCodeHandler.log_messages V3c)T23r2r\N)T)__name__ __module__ __qualname____firstlineno__rkrbr|__static_attributes__r\r2rrWrWns?0/4r2rWc.^\rSrSrU4SjrSrSrU=r$)_AuthCodeHttpServerc>UupEU(a*[RS:Xd[5(aSUl[[ U]"U/UQ70UD6 g)Nwin32F)sysr,r1allow_reuse_addresssuperr__init__)riserver_addressr{kwargs_r __class__s rr_AuthCodeHttpServer.__init__sB  S\\W, (-D $ !41.R4R6Rr2c[S5e)Nz"Timeout. No auth response arrived.) RuntimeErrorris rhandle_timeout"_AuthCodeHttpServer.handle_timeouts?@@r2)r)r~rrrrrr __classcell__)rs@rrrsSAAr2rc,\rSrSr\R rSrg)_AuthCodeHttpServer6r\N)r~rrrsocketAF_INET6address_familyrr\r2rrrs __Nr2rcR\rSrSrS SjrSrS SjrS SjrSrSr S r S r g)rNc[5(aSOSn[U=(d /5UlSU;a[O[nU"X1=(d S4[ 5UlSUlg)aCreate a Receiver waiting for incoming auth response. :param port: The local web server will listen at http://...: You need to use the same port when you register with your app. If your Identity Provider supports dynamic port, you can use port=0 here. Port 0 means to use an arbitrary unused port, per this official example: https://docs.python.org/2.7/library/socketserver.html#asynchronous-mixins :param scheduled_actions: For example, if the input is ``[(10, lambda: print("Got stuck during sign in? Call 800-000-0000"))]`` then the receiver would call that lambda function after waiting the response for 10 seconds. z0.0.0.0 127.0.0.1rrFN)r&sorted_scheduled_actionsrrrW_server_closing)rir scheduled_actionsaddressServers rrAuthCodeReceiver.__init__sV 122) #)):)@b"A),%=Pw 24DE  r2c4URRS$)z*The port this server actually listening tor>)rrrs rget_portAuthCodeReceiver.get_ports||**1--r2c 0n[R"URU4US9nSUlUR 5 [ R "5nU(a[ R "5U- U:aO[ R "S5 UR5(dOUR(a[ R "5U- URSS:acURRS5upgU"5 UR(a.[ R "5U- URSS:aMcU(a[ R "5U- U:aMOMU=(d S$)aWait and return the auth response. Raise RuntimeError when timeout. :param str auth_uri: If provided, this function will try to open a local browser. :param int timeout: In seconds. None means wait indefinitely. :param str state: You may provide the state you used in auth_uri, then we will use it to validate incoming response. :param str welcome_template: If provided, your end user will see it instead of the auth_uri. When present, it shall be a plaintext or html template following `Python Template string syntax `_, and include some of these placeholders: $auth_uri and $abort_uri. :param str success_template: The page will be displayed when authentication was largely successful. Placeholders can be any of these: https://tools.ietf.org/html/rfc6749#section-5.1 :param str error_template: The page will be displayed when authentication encountered error. Placeholders can be any of these: https://tools.ietf.org/html/rfc6749#section-5.2 :param callable auth_uri_callback: A function with the shape of lambda auth_uri: ... When a browser was unable to be launch, this function will be called, so that the app could tell user to manually visit the auth_uri. :param str browser_name: If you did ``webbrowser.register("xyz", None, BackgroundBrowser("/path/to/browser"))`` beforehand, you can pass in the name "xyz" to use that browser. The default value ``None`` means using default browser, which is customizable by env var $BROWSER. :return: The auth response of the first leg of Auth Code flow, typically {"code": "...", "state": "..."} or {"error": "...", ...} See https://tools.ietf.org/html/rfc6749#section-4.1.2 and https://openid.net/specs/openid-connect-core-1_0.html#AuthResponse Returns None when the state was mismatched, or when timeout occurred. )targetr{rTr>rN) threadingThread_get_auth_responsedaemonstarttimesleepis_aliverpop)ritimeoutrresulttbeginrcallbacks rr"AuthCodeReceiver.get_auth_responsesj   **&6 K   18tyy{U"W,d JJqM::<<** e+d.E.Ea.H.KK"5599!<  ** e+d.E.Ea.H.KK 29tyy{U"W,d~r2c  SRUR5S9n SRU S9n [RSU 5 [ U=(d S5R X+S9UR lU(awU(aU OUn [RSU -5 S n [XS 9n U (dAU(d2[RS RXUR5S 95 OU"U 5 [ U=(d S5UR l [ U=(d S5UR l X0R l0UR lX@R lUR"(dIUR R%5 UR R(aOUR"(dMIUR'UR R5 g! [RS 5 GNY=f)Nzhttp://localhost:{p})pz{loc}?error=abort)loczAbort by visit %s)r abort_uriz*Open a browser on this device to visit: %sF)r9z_browse(...) unsuccessfulaFound no browser in current environment. If this program is being run inside a container which either (1) has access to host network (i.e. started by `docker run --net=host -it ...`), or (2) published port {port} to host network (i.e. started by `docker run -p 127.0.0.1:{port}:{port} -it ...`), you can use browser on host to visit the following link. Otherwise, this auth attempt would either timeout (current timeout setting is {timeout}) or be aborted by CTRL+C. Auth URI: {auth_uri})r rr z8Authentication completed. You can close this window now.z?Authentication failed. $error: $error_description. ($error_uri))r7rr^r_rrfrrhinfor< exceptionwarningrcrdrrgrarhandle_requestupdate)rirr rr[rrcrdauth_uri_callbackr9 welcome_urir_urir:s rr#AuthCodeReceiver._get_auth_responses -33dmmo3F '..;.?  ()4$,-=-C$D$T$T%U%4 ! "2;D KKDtK L"N >!(!I "(NN HIO%)IOIR S&d+(01A2G F)H %&.~0N M'O # ' %' ""' -- LL ' ' )||)) ---  dll001I >  !<=s G((HcFSUlURR5 g)zGEither call this eventually; or use the entire class as context managerTN)rr server_closers rcloseAuthCodeReceiver.closePs  !!#r2cU$rNr\rs r __enter__AuthCodeReceiver.__enter__Us r2c$UR5 grN)r)riexc_typeexc_valexc_tbs r__exit__AuthCodeReceiver.__exit__Xs  r2)rrr)NNrN)NNNNNNNN) r~rrrrrrrrrrrr\r2rrrs9!F. CJMQIM"42l$ r2r__main__r>)Client)levelz/The auth code received will be shown at stdout.)formatter_class descriptionz --endpointzThe auth endpoint for your app.z>https://login.microsoftonline.com/common/oauth2/v2.0/authorize)helpdefault client_idz!The client_id of your application)rz--portzThe port in redirect_uri)typerrz --timeout<zTimeout value, in secondz--hostrzThe host of redirect_uri)rrz--scopezThe scope listauthorization_endpointr zhttp://{h}:{p})hr)scope redirect_urir zASign In, or AbortOh no. $errorzOh yeah. Got $coder[)r rrdrcrr[)indentrN)D__doc__loggingr rrstringrrr http.serverrr urllib.parserrrhtmlr ImportErrorBaseHTTPServerurllibcgi getLoggerr~r^rr&r1r<rFrLrPrUrWobjectrrrargparsejsonoauth2r basicConfigINFOArgumentParserArgumentDefaultsHelpFormatterrparser add_argumentint parse_argsr{endpointrclientr rinitiate_auth_code_flowrrr7hostrflowprintdumpsrrr\r2rrsz   >::   8 $  ) ?.  >T "4-"4JA*fA(%.%nvnd z gll+(( >>OOQQANN<PRNN;%HNINN8#q7QNRNN;S";UNVNN8[7QNRNN9d1ANB    D -t}}=t~~ NF tyy )X--(, $**""$)00499@Q@Q@S0T. djj33*%S71LLw-4  * )#S A+  t * )sH/ BI/"II I&