U >i'@sddlmZddlmZddlmZddlmZddlm Z ddl m Z m Z m Z ddlmZmZmZddlmZdd lmZdd lmZmZmZmZmZmZmZmZmZm Z m!Z!m"Z"dd l#m$Z$m%Z%dd l&m'Z'dd l(m)Z)ddl*m+Z+ddl,m-Z.ddl/m0Z0m1Z1ddl2m3Z4m-Z5ddl6m3Z7m-Z8ddl9m:Z:ddZ;GdddeZGdddeZ?GdddeZ@Gdd d eZAGd!d"d"eZBGd#d$d$eZCGd%d&d&eZDGd'd(d(e ZEGd)d*d*eZFd+S),) HTTPStatus)ValidationError)get_pending_stage)Login) SignupView) APIResponseAuthenticationResponseConflictResponse)APIViewAuthenticatedAPIViewAuthenticationStageAPIView) ErrorResponse)response) ActivateTOTPInputAddWebAuthnInputAuthenticateInputAuthenticateWebAuthnInputCreateWebAuthnInputDeleteWebAuthnInputGenerateRecoveryCodesInputLoginWebAuthnInputReauthenticateWebAuthnInputSignupWebAuthnInput TrustInputUpdateWebAuthnInput)DefaultMFAAdapter get_adapter)add) trust_browser) Authenticator)flows)AuthenticateStage TrustStage)authr )PasskeySignupStagec CsLzt|jWn6tk rF}zt|tj|dWYSd}~XYnXdS)N)status exception)rZvalidate_can_add_authenticatoruserrr rCONFLICT)requester+>/tmp/pip-unpacked-wheel-upujnpc2/allauth/headless/mfa/views.py_validate_can_add_authenticator-sr-c@s$eZdZeZeZddZddZdS)AuthenticateViewcOs|j|SNinputsaverespond_next_stageselfr)argskwargsr+r+r,post8s zAuthenticateView.postcCsd|jjjiSNr'stageloginr'r5r+r+r,get_input_kwargs<sz!AuthenticateView.get_input_kwargsN) __name__ __module__ __qualname__r input_classr! stage_classr8r>r+r+r+r,r.4sr.c@s eZdZeZddZddZdS)ReauthenticateViewcOs|jt|jSr/)r1r2rr)r4r+r+r,r8Cs zReauthenticateView.postcCs d|jjiSr9r)r'r=r+r+r,r>Gsz#ReauthenticateView.get_input_kwargsN)r?r@rArrBr8r>r+r+r+r,rD@srDc@seZdZddZdS)AuthenticatorsViewcOstjj|jd}t||S)N)r')robjectsfilterr'rZAuthenticatorsResponser5r)r6r7authenticatorsr+r+r,getLszAuthenticatorsView.getN)r?r@rArKr+r+r+r,rFKsrFc@sBeZdZdeiZedddZddZddZd d Z d d Z d S)ManageTOTPViewPOST)returnc OsV|}|sJt|}|r|St}tjdd}||j|}t|||St ||S)NT)Z regenerate) _get_authenticatorr-r totp_authZget_totp_secretZbuild_totp_urlr'rZTOTPNotFoundResponse TOTPResponse) r5r)r6r7 authenticatorerradaptersecretZtotp_urlr+r+r,rKTs zManageTOTPView.getcCstjjtjj|jjdS)N)typer')rrGrHTypeZTOTPr)r'firstr=r+r+r,rO`sz!ManageTOTPView._get_authenticatorcCs d|jjiSr9rEr=r+r+r,r>eszManageTOTPView.get_input_kwargscOst||jd}t||S)Nr) totp_flowsZ activate_totpr1rrQr5r)r6r7rRr+r+r,r8hszManageTOTPView.postcOs"|}|rt||}t|Sr/)rOrYZdeactivate_totprZAuthenticatorDeletedResponserZr+r+r,deletels zManageTOTPView.deleteN) r?r@rArrBrrKrOr>r8r[r+r+r+r,rLQs  rLc@s(eZdZeZddZddZddZdS)ManageRecoveryCodesViewcOs$t|}|st|St||Sr/)recovery_codes_flowsZview_recovery_codesrZRecoveryCodesNotFoundResponseRecoveryCodesResponserZr+r+r,rKvs  zManageRecoveryCodesView.getcOst|}t||Sr/)r]Zgenerate_recovery_codesrr^rZr+r+r,r8|s zManageRecoveryCodesView.postcCs d|jjiSr9rEr=r+r+r,r>sz(ManageRecoveryCodesView.get_input_kwargsN)r?r@rArrBrKr8r>r+r+r+r,r\ssr\csPeZdZeeedZfddZddZddZ dd Z d d Z d d Z Z S)ManageWebAuthnView)rMPUTDELETEcs.|jdkrt|}|r|Stj|f||S)N)GETrM)methodr-superhandle)r5r)r6r7rS __class__r+r,res  zManageWebAuthnView.handlecOs&d|jk}t||j|}t||S)N passwordless)rbwebauthn_flowsbegin_registrationr'rAddWebAuthnResponse)r5r)r6r7rhcreation_optionsr+r+r,rKs zManageWebAuthnView.getcCs d|jjiSr9rEr=r+r+r,r>sz#ManageWebAuthnView.get_input_kwargscOs@tj||jjd|jjdd\}}t|}tj||d|idS)Nname credential)rmrnZrecovery_codes_generated)meta)riZadd_authenticatorr1 cleaned_databoolrAuthenticatorResponse)r5r)r6r7r#Zrc_authZdid_generate_recovery_codesr+r+r,r8s  zManageWebAuthnView.postcOs.|jjd}t|||jjdt||S)Nidrm)r1rpriZrename_authenticatorrrrrZr+r+r,puts  zManageWebAuthnView.putcOs"|jjd}t||t|S)NrJ)r1rpriZremove_authenticatorsrZAuthenticatorsDeletedResponserIr+r+r,r[s  zManageWebAuthnView.delete)r?r@rArrrrBrerKr>r8rtr[ __classcell__r+r+rfr,r_s  r_c@s,eZdZdeiZddZddZddZdS) ReauthenticateWebAuthnViewrMcOst|j}t||Sr/) webauthn_authbegin_authenticationr'rWebAuthnRequestOptionsResponser5r)r6r7Zrequest_optionsr+r+r,rKs zReauthenticateWebAuthnView.getcCs d|jjiSr9rEr=r+r+r,r>sz+ReauthenticateWebAuthnView.get_input_kwargscOs"|jjd}t||t|jS)Nrn)r1rpriZreauthenticaterr)rZr+r+r,r8s  zReauthenticateWebAuthnView.postN)r?r@rArrBrKr>r8r+r+r+r,rvs rvc@s0eZdZdeiZeZddZddZddZ dS) AuthenticateWebAuthnViewrMcOst|jjj}t||Sr/)rwrxr;r<r'rryrzr+r+r,rKszAuthenticateWebAuthnView.getcCsd|jjjiSr9r:r=r+r+r,r>sz)AuthenticateWebAuthnView.get_input_kwargscOs|j|Sr/r0r4r+r+r,r8s zAuthenticateWebAuthnView.postN) r?r@rArrBr!rCrKr>r8r+r+r+r,r{sr{c@s$eZdZdeiZddZddZdS)LoginWebAuthnViewrMcOst}t||Sr/)rwrxrryrzr+r+r,rKszLoginWebAuthnView.getcOs4|jjd}d}t|j|d}t|||t|S)Nrn)r' redirect_url)r1rprr'riZperform_passwordless_loginr)r5r)r6r7rRr}r<r+r+r,r8s  zLoginWebAuthnView.postN)r?r@rArrBrKr8r+r+r+r,r|s r|csJeZdZeedZdZddZddZddZ fd d Z d d Z Z S) SignupWebAuthnView)rMr`TcOs4|}|r|Stj||jjjddd}t||S)NT)rhZsignup)_require_stagerirjr;r<r'rrk)r5r)r6r7resprlr+r+r,rKszSignupWebAuthnView.getcCs"t|dr|jSt|j|_|jS)Nr;)hasattrr;rr)r=r+r+r, _prep_stages  zSignupWebAuthnView._prep_stagecCs*||jr|jjtjkr&t|jSdSr/)rr;keyr$r r)r=r+r+r,rs z!SignupWebAuthnView._require_stagecs6t}||jr2|jjdkr2|jjj|d<|S)Nr`r')rdr>rr;r)rcr<r')r5retrfr+r,r>s  z#SignupWebAuthnView.get_input_kwargscOsJ|}|r|Stj||jjj|jjd|jjdd|jt |S)Nrmrn)r'rmrn) rriZsignup_authenticatorr;r<r'r1rpexitr)r5r)r6r7rr+r+r,rts   zSignupWebAuthnView.put) r?r@rArrrBZ by_passkeyrKrrr>rtrur+r+rfr,r~s  r~c@seZdZeZeZddZdS) TrustViewcOs.|jjd}|}|r*t||jjj||S)Ntrust)r1rpr3rr;r<r')r5r)r6r7rrr+r+r,r8 s  zTrustView.postN)r?r@rArrBr"rCr8r+r+r+r,rsrN)GhttprZdjango.core.exceptionsrZ!allauth.account.internal.stagekitrZallauth.account.modelsrZallauth.headless.account.viewsrZallauth.headless.base.responserrr Zallauth.headless.base.viewsr r r Z*allauth.headless.internal.restkit.responser Zallauth.headless.mfarZallauth.headless.mfa.inputsrrrrrrrrrrrrZallauth.mfa.adapterrrZallauth.mfa.internal.flowsrZ allauth.mfa.internal.flows.trustrZallauth.mfa.modelsrZ#allauth.mfa.recovery_codes.internalr r]Zallauth.mfa.stagesr!r"Zallauth.mfa.totp.internalr#rPrYZallauth.mfa.webauthn.internalrwriZallauth.mfa.webauthn.stagesr$r-r.rDrFrLr\r_rvr{r|r~rr+r+r+r,s<       8       "21