U ÔÉ>itã@sRddlmZddlmZddlmZddlmZeejƒZ e j Z Gdd„dƒZ dS)é)Ú import_module)Úurlparse)Úsettings)Úpatch_vary_headersc@s(eZdZdZdd„Zdd„Zdd„ZdS) Ú LoginSessionaTSome providers sometimes POST their responses, which due to CORS/Samesite-cookie rules means that this request cannot access the session as its session cookie is unavailable. We work around this by storing the response in a separate, temporary session and redirecting to a different endpoint that can pick up the flow. cCsR||_||_||_t||dƒ|_|jdkrN|j |¡}t|ƒ|_t|||jƒdS)z8 Prepares an provider specific session. N) ÚrequestÚattribute_nameÚ cookie_nameÚgetattrÚstoreZCOOKIESÚgetÚ SessionStoreÚsetattr)Úselfrrr Ú session_key©rúB/tmp/pip-unpacked-wheel-upujnpc2/allauth/socialaccount/sessions.pyÚ__init__s   zLoginSession.__init__c Csht|dƒ|j ¡i}ttddƒ}|r0||d<|j|j|jjfddtjt |j ƒj tj ddœ|—ŽdS)z4 Save the session and set a cookie. )ÚCookieZSESSION_COOKIE_SAMESITENÚsamesite)Zmax_ageÚexpiresÚdomainÚpathÚsecureÚhttponly) rr Úsaver rÚ set_cookier rZSESSION_COOKIE_DOMAINrÚurlrZSESSION_COOKIE_SECURE)rÚresponseÚkwargsrrrrr"s&   þ ÷ özLoginSession.savecCs|j ¡dS)N)r Údelete)rrrrr 9szLoginSession.deleteN)Ú__name__Ú __module__Ú __qualname__Ú__doc__rrr rrrrr s rN) Ú importlibrÚ urllib.parserZ django.confrZdjango.utils.cacherZSESSION_ENGINEZenginer rrrrrÚs