o "4g!@sddlZddlZddlmZddlmZddlmZddlm Z ddl m Z ddl m Z ddlmZdd lmZdd lmZdd lmZdd lmZmZmZdd lmZmZmZmZmZddl m!Z!ddl"m#Z#ddl$m%Z%ddl&m'Z'ddl(m)Z)GdddeZ*Gddde%Z+e+gZ,dS)N)quote)REDIRECT_FIELD_NAME) get_token)render_to_string)reverse)get_random_string)escapejs) EmailAddress) get_adapter) QUERY_EMAIL) AuthAction AuthProcessProviderAccount) GRAPH_API_URLGRAPH_API_VERSION NONCE_LENGTHNONCE_SESSION_KEY PROVIDER_ID)FacebookOAuth2Adapter) OAuth2Error)OAuth2Provider)import_callable)get_default_locale_callablec@seZdZddZddZdS)FacebookAccountcCs|jjdS)Nlink)account extra_datagetselfr!z/var/www/html/authentication-server/venv/lib/python3.10/site-packages/allauth/socialaccount/providers/facebook/provider.pyget_profile_url&zFacebookAccount.get_profile_urlcCs|jj}td|S)NzC/%s/picture?type=square&height=600&width=600&return_ssl_resources=1)ruidr)r r%r!r!r"get_avatar_url)szFacebookAccount.get_avatar_urlN)__name__ __module__ __qualname__r#r&r!r!r!r"r%s rcseZdZeZdZeZeZ dZ dZ dZ fddZ ddZfd d Zd d Zd dZddZddZfddZddZddZddZddZd)ddZd d!Zd"d#Zd$d%Zd&efd'd(ZZS)*FacebookProviderFacebookTzhttps://www.facebook.comz;https://limited.facebook.com/.well-known/oauth/openid/jwks/csd|_tj|i|dSN)_locale_callable_cachesuper__init__)r argskwargs __class__r!r"r/BszFacebookProvider.__init__cCs|ddS)NMETHODoauth2 get_settingsrrr!r!r" get_methodFszFacebookProvider.get_methodc  s|d|}|dkrJdt|tpd}dt|dp tj}dt|dp,tj}dt|dd}d||||f}d t |f} | S|d kr\t t |j |fi|} | St d |) Nmethodjs_sdkz'%s'processactionscopez&allauth.facebook.login(%s, %s, %s, %s)z javascript:%sr5zInvalid method specified: %s)popr8rrrr LOGINr AUTHENTICATErr.r* get_login_url RuntimeError) r requestr1r9nextr<r=r>jsretr2r!r"rBIs$ zFacebookProvider.get_login_urlcCs$|}|d}|rt|StS)N LOCALE_FUNC)r7rrr)r settingsfuncr!r!r"_get_locale_callable]s z%FacebookProvider._get_locale_callablecCs|js||_||Sr,)r-rK)r rDr!r!r"get_locale_for_requestbs  z'FacebookProvider.get_locale_for_requestcCsg}tr |d|S)Nemail)r append)r r>r!r!r"get_default_scopegs z"FacebookProvider.get_default_scopecCs|}gd}|d|S)N) idrMname first_name last_nameverifiedlocaletimezonergender updated_timeFIELDSr6)r rIdefault_fieldsr!r!r" get_fieldsms zFacebookProvider.get_fieldscs:t||}|tjkrd|d<|S|tjkrd|d<|S)Nreauthenticate auth_type rerequest)r.get_auth_params_from_requestr REAUTHENTICATE REREQUEST)r rDr=rGr2r!r"r_~s  z-FacebookProvider.get_auth_params_from_requestcCs*|jtd}|}||di|S)N)appIdversion INIT_PARAMS) client_idrr7updater)r rDapp init_paramsrIr!r!r"get_init_paramss z FacebookProvider.get_init_paramscCsD||d}d|||d<|ddkr |j|dd|d<|S) N authenticate,r>r]r\T) or_create auth_nonce)r_joinget_scope_from_requestr get_nonce)r rDrGr!r!r"get_fb_login_optionss z%FacebookProvider.get_fb_login_optionscCsN|}|dd}ddt|D}d|vr%||}|j|d}|S)NSDK_URLz&//connect.facebook.net/{locale}/sdk.jscSs g|] }|ddur|dqS)rNr!).0tupr!r!r" sz0FacebookProvider.get_sdk_url..rU)rU)r7rstring FormatterparserLformat)r rDrIsdk_url field_namesrUr!r!r" get_sdk_urls    zFacebookProvider.get_sdk_urlcs|dkrdSfdd}|jjt|||j||d|d|d|jdd |d t d }d |i}t d |dS)Nr:r;cst|Sr,)build_absolute_urir)rQrDr!r"abs_urir$z*FacebookProvider.media_js..abs_urifacebook_login_by_tokensocialaccount_login_cancelledaccount_logoutr5)r9socialaccount_login_error) rbrcsdkUrl initParams loginOptionsloginByTokenUrl cancelUrl logoutUrlloginUrlerrorUrl csrfTokenfb_datazfacebook/fbconnect.htmlr~) r8rgrerr|rirqr}rBrr)r rDrrctxr!r~r"media_jss&    zFacebookProvider.media_jsFcCs>|r |jtd}n|jt}|s|rtt}||jt<|Sr,)sessionr?rrrr)r rDrlr?noncer!r!r"rps  zFacebookProvider.get_noncecCs|dS)NrPr!r datar!r!r" extract_uidszFacebookProvider.extract_uidcCs0t|d|d|d|d|ddS)NrMusernamerRrSrQ)rMrrRrSrQ)dictrrr!r!r"extract_common_fieldssz&FacebookProvider.extract_common_fieldscCs*g}|d}|r|t|ddd|S)NrMFT)rMrTprimary)rrNr )r rrGrMr!r!r"extract_email_addressess  z(FacebookProvider.extract_email_addressestokenc Csddlm}|d}|d}t||gstdz|r'||||WS|s+J||||WStt j fyH}ztd|d}~ww)a Verifies both normal oAuth2-style "access_token"s as well as OIDC-style "Limited Login" JWTs. Limited Login is an OIDC-based form of Facebook Login that their iOS SDK uses when App Tracking Transparency consent is denied. r)flows access_tokenid_token invalid_tokenN) (allauth.socialaccount.providers.facebookrranyr validation_error verify_tokenverify_limited_login_tokenrrequestsRequestException)r rDrrrrer!r!r"rs     zFacebookProvider.verify_token)FF) r'r(r)rrPrQr account_classroauth2_adapter_classsupports_token_authentication!limited_login_expected_jwt_issuerlimited_login_jwks_urlr/r8rBrKrLrOr[r_rirqr|rrprrrrr __classcell__r!r!r2r"r*4s4       r*)-rrv urllib.parserdjango.contrib.authrdjango.middleware.csrfrdjango.template.loaderr django.urlsrdjango.utils.cryptordjango.utils.htmlrallauth.account.modelsr allauth.socialaccount.adapterr "allauth.socialaccount.app_settingsr $allauth.socialaccount.providers.baser r r2allauth.socialaccount.providers.facebook.constantsrrrrr.allauth.socialaccount.providers.facebook.viewsr-allauth.socialaccount.providers.oauth2.clientr/allauth.socialaccount.providers.oauth2.providerr allauth.utilsrrUrrr*provider_classesr!r!r!r"s.                =