ai_v/venv/Lib/site-packages/werkzeug/datastructures/auth.py

from __future__ import annotations

import base64
import binascii
import collections.abc as cabc
import typing as t

from ..http import dump_header
from ..http import parse_dict_header
from ..http import quote_header_value
from .structures import CallbackDict

if t.TYPE_CHECKING:
    import typing_extensions as te


class Authorization:
    """Represents the parts of an ``Authorization`` request header.

    :attr:`.Request.authorization` returns an instance if the header is set.

    An instance can be used with the test :class:`.Client` request methods' ``auth``
    parameter to send the header in test requests.

    Depending on the auth scheme, either :attr:`parameters` or :attr:`token` will be
    set. The ``Basic`` scheme's token is decoded into the ``username`` and ``password``
    parameters.

    For convenience, ``auth["key"]`` and ``auth.key`` both access the key in the
    :attr:`parameters` dict, along with ``auth.get("key")`` and ``"key" in auth``.

    .. versionchanged:: 2.3
        The ``token`` parameter and attribute was added to support auth schemes that use
        a token instead of parameters, such as ``Bearer``.

    .. versionchanged:: 2.3
        The object is no longer a ``dict``.

    .. versionchanged:: 0.5
        The object is an immutable dict.
    """

    def __init__(
        self,
        auth_type: str,
        data: dict[str, str | None] | None = None,
        token: str | None = None,
    ) -> None:
        self.type = auth_type
        """The authorization scheme, like ``basic``, ``digest``, or ``bearer``."""

        if data is None:
            data = {}

        self.parameters = data
        """A dict of parameters parsed from the header. Either this or :attr:`token`
        will have a value for a given scheme.
        """

        self.token = token
        """A token parsed from the header. Either this or :attr:`parameters` will have a
        value for a given scheme.

        .. versionadded:: 2.3
        """

    def __getattr__(self, name: str) -> str | None:
        return self.parameters.get(name)

    def __getitem__(self, name: str) -> str | None:
        return self.parameters.get(name)

    def get(self, key: str, default: str | None = None) -> str | None:
        return self.parameters.get(key, default)

    def __contains__(self, key: str) -> bool:
        return key in self.parameters

    def __eq__(self, other: object) -> bool:
        if not isinstance(other, Authorization):
            return NotImplemented

        return (
            other.type == self.type
            and other.token == self.token
            and other.parameters == self.parameters
        )

    @classmethod
    def from_header(cls, value: str | None) -> te.Self | None:
        """Parse an ``Authorization`` header value and return an instance, or ``None``
        if the value is empty.

        :param value: The header value to parse.

        .. versionadded:: 2.3
        """
        if not value:
            return None

        scheme, _, rest = value.partition(" ")
        scheme = scheme.lower()
        rest = rest.strip()

        if scheme == "basic":
            try:
                username, _, password = base64.b64decode(rest).decode().partition(":")
            except (binascii.Error, UnicodeError):
                return None

            return cls(scheme, {"username": username, "password": password})

        if "=" in rest.rstrip("="):
            # = that is not trailing, this is parameters.
            return cls(scheme, parse_dict_header(rest), None)

        # No = or only trailing =, this is a token.
        return cls(scheme, None, rest)

    def to_header(self) -> str:
        """Produce an ``Authorization`` header value representing this data.

        .. versionadded:: 2.0
        """
        if self.type == "basic":
            value = base64.b64encode(
                f"{self.username}:{self.password}".encode()
            ).decode("ascii")
            return f"Basic {value}"

        if self.token is not None:
            return f"{self.type.title()} {self.token}"

        return f"{self.type.title()} {dump_header(self.parameters)}"

    def __str__(self) -> str:
        return self.to_header()

    def __repr__(self) -> str:
        return f"<{type(self).__name__} {self.to_header()}>"


class WWWAuthenticate:
    """Represents the parts of a ``WWW-Authenticate`` response header.

    Set :attr:`.Response.www_authenticate` to an instance of list of instances to set
    values for this header in the response. Modifying this instance will modify the
    header value.

    Depending on the auth scheme, either :attr:`parameters` or :attr:`token` should be
    set. The ``Basic`` scheme will encode ``username`` and ``password`` parameters to a
    token.

    For convenience, ``auth["key"]`` and ``auth.key`` both act on the :attr:`parameters`
    dict, and can be used to get, set, or delete parameters. ``auth.get("key")`` and
    ``"key" in auth`` are also provided.

    .. versionchanged:: 2.3
        The ``token`` parameter and attribute was added to support auth schemes that use
        a token instead of parameters, such as ``Bearer``.

    .. versionchanged:: 2.3
        The object is no longer a ``dict``.

    .. versionchanged:: 2.3
        The ``on_update`` parameter was removed.
    """

    def __init__(
        self,
        auth_type: str,
        values: dict[str, str | None] | None = None,
        token: str | None = None,
    ):
        self._type = auth_type.lower()
        self._parameters: dict[str, str | None] = CallbackDict(
            values, lambda _: self._trigger_on_update()
        )
        self._token = token
        self._on_update: cabc.Callable[[WWWAuthenticate], None] | None = None

    def _trigger_on_update(self) -> None:
        if self._on_update is not None:
            self._on_update(self)

    @property
    def type(self) -> str:
        """The authorization scheme, like ``basic``, ``digest``, or ``bearer``."""
        return self._type

    @type.setter
    def type(self, value: str) -> None:
        self._type = value
        self._trigger_on_update()

    @property
    def parameters(self) -> dict[str, str | None]:
        """A dict of parameters for the header. Only one of this or :attr:`token` should
        have a value for a given scheme.
        """
        return self._parameters

    @parameters.setter
    def parameters(self, value: dict[str, str]) -> None:
        self._parameters = CallbackDict(value, lambda _: self._trigger_on_update())
        self._trigger_on_update()

    @property
    def token(self) -> str | None:
        """A dict of parameters for the header. Only one of this or :attr:`token` should
        have a value for a given scheme.
        """
        return self._token

    @token.setter
    def token(self, value: str | None) -> None:
        """A token for the header. Only one of this or :attr:`parameters` should have a
        value for a given scheme.

        .. versionadded:: 2.3
        """
        self._token = value
        self._trigger_on_update()

    def __getitem__(self, key: str) -> str | None:
        return self.parameters.get(key)

    def __setitem__(self, key: str, value: str | None) -> None:
        if value is None:
            if key in self.parameters:
                del self.parameters[key]
        else:
            self.parameters[key] = value

        self._trigger_on_update()

    def __delitem__(self, key: str) -> None:
        if key in self.parameters:
            del self.parameters[key]
            self._trigger_on_update()

    def __getattr__(self, name: str) -> str | None:
        return self[name]

    def __setattr__(self, name: str, value: str | None) -> None:
        if name in {"_type", "_parameters", "_token", "_on_update"}:
            super().__setattr__(name, value)
        else:
            self[name] = value

    def __delattr__(self, name: str) -> None:
        del self[name]

    def __contains__(self, key: str) -> bool:
        return key in self.parameters

    def __eq__(self, other: object) -> bool:
        if not isinstance(other, WWWAuthenticate):
            return NotImplemented

        return (
            other.type == self.type
            and other.token == self.token
            and other.parameters == self.parameters
        )

    def get(self, key: str, default: str | None = None) -> str | None:
        return self.parameters.get(key, default)

    @classmethod
    def from_header(cls, value: str | None) -> te.Self | None:
        """Parse a ``WWW-Authenticate`` header value and return an instance, or ``None``
        if the value is empty.

        :param value: The header value to parse.

        .. versionadded:: 2.3
        """
        if not value:
            return None

        scheme, _, rest = value.partition(" ")
        scheme = scheme.lower()
        rest = rest.strip()

        if "=" in rest.rstrip("="):
            # = that is not trailing, this is parameters.
            return cls(scheme, parse_dict_header(rest), None)

        # No = or only trailing =, this is a token.
        return cls(scheme, None, rest)

    def to_header(self) -> str:
        """Produce a ``WWW-Authenticate`` header value representing this data."""
        if self.token is not None:
            return f"{self.type.title()} {self.token}"

        if self.type == "digest":
            items = []

            for key, value in self.parameters.items():
                if key in {"realm", "domain", "nonce", "opaque", "qop"}:
                    value = quote_header_value(value, allow_token=False)
                else:
                    value = quote_header_value(value)

                items.append(f"{key}={value}")

            return f"Digest {', '.join(items)}"

        return f"{self.type.title()} {dump_header(self.parameters)}"

    def __str__(self) -> str:
        return self.to_header()

    def __repr__(self) -> str:
        return f"<{type(self).__name__} {self.to_header()}>"
feat(api): 实现图像生成及后台同步功能 - 新增图像生成接口，支持试用、积分和自定义API Key模式 - 实现生成图片结果异步上传至MinIO存储，带重试机制 - 优化积分预扣除和异常退还逻辑，保障用户积分准确 - 添加获取生成历史记录接口，支持时间范围和分页 - 提供本地字典配置接口，支持模型、比例、提示模板和尺寸 - 实现图片批量上传接口，支持S3兼容对象存储 feat(admin): 增加管理员角色管理与权限分配接口 - 实现角色列表查询、角色创建、更新及删除功能 - 增加权限列表查询接口 - 实现用户角色分配接口，便于统一管理用户权限 - 增加系统字典增删查改接口，支持分类过滤和排序 - 权限控制全面覆盖管理接口，保证安全访问 feat(auth): 完善用户登录注册及权限相关接口与页面 - 实现手机号验证码发送及校验功能，保障注册安全 - 支持手机号注册、登录及退出接口，集成日志记录 - 增加修改密码功能，验证原密码后更新 - 提供动态导航菜单接口，基于权限展示不同菜单 - 实现管理界面路由及日志、角色、字典管理页面访问权限控制 - 添加系统日志查询接口，支持关键词和等级筛选 feat(app): 初始化Flask应用并配置蓝图与数据库 - 创建应用程序工厂，加载配置，初始化数据库和Redis客户端 - 注册认证、API及管理员蓝图，整合路由 - 根路由渲染主页模板 - 应用上下文中自动创建数据库表，保证运行环境准备完毕 feat(database): 提供数据库创建与迁移支持脚本 - 新增数据库创建脚本，支持自动检测是否已存在 - 添加数据库表初始化脚本，支持创建和删除所有表 - 实现RBAC权限初始化，包含基础权限和角色创建 - 新增字段手动修复脚本，添加用户API Key和积分字段 - 强制迁移脚本支持清理连接和修复表结构，初始化默认数据及角色分配 feat(config): 新增系统配置参数 - 配置数据库、Redis、Session和MinIO相关参数 - 添加AI接口地址及试用Key配置 - 集成阿里云短信服务配置及开发模式相关参数 feat(extensions): 初始化数据库、Redis和MinIO客户端 - 创建全局SQLAlchemy数据库实例和Redis客户端 - 配置基于boto3的MinIO兼容S3客户端 chore(logs): 添加示例系统日志文件 - 记录用户请求、验证码发送成功与失败的日志信息 2026-01-12 00:53:31 +08:00			`from __future__ import annotations`

			`import base64`
			`import binascii`
			`import collections.abc as cabc`
			`import typing as t`

			`from ..http import dump_header`
			`from ..http import parse_dict_header`
			`from ..http import quote_header_value`
			`from .structures import CallbackDict`

			`if t.TYPE_CHECKING:`
			`import typing_extensions as te`


			`class Authorization:`
			"""Represents the parts of an ``Authorization`` request header.

			:attr:`.Request.authorization` returns an instance if the header is set.

			An instance can be used with the test :class:`.Client` request methods' ``auth``
			`parameter to send the header in test requests.`

			Depending on the auth scheme, either :attr:`parameters` or :attr:`token` will be
			set. The ``Basic`` scheme's token is decoded into the ``username`` and ``password``
			`parameters.`

			For convenience, ``auth["key"]`` and ``auth.key`` both access the key in the
			:attr:`parameters` dict, along with ``auth.get("key")`` and ``"key" in auth``.

			`.. versionchanged:: 2.3`
			The ``token`` parameter and attribute was added to support auth schemes that use
			a token instead of parameters, such as ``Bearer``.

			`.. versionchanged:: 2.3`
			The object is no longer a ``dict``.

			`.. versionchanged:: 0.5`
			`The object is an immutable dict.`
			`"""`

			`def __init__(`
			`self,`
			`auth_type: str,`
			`data: dict[str, str \| None] \| None = None,`
			`token: str \| None = None,`
			`) -> None:`
			`self.type = auth_type`
			"""The authorization scheme, like ``basic``, ``digest``, or ``bearer``."""

			`if data is None:`
			`data = {}`

			`self.parameters = data`
			"""A dict of parameters parsed from the header. Either this or :attr:`token`
			`will have a value for a given scheme.`
			`"""`

			`self.token = token`
			"""A token parsed from the header. Either this or :attr:`parameters` will have a
			`value for a given scheme.`

			`.. versionadded:: 2.3`
			`"""`

			`def __getattr__(self, name: str) -> str \| None:`
			`return self.parameters.get(name)`

			`def __getitem__(self, name: str) -> str \| None:`
			`return self.parameters.get(name)`

			`def get(self, key: str, default: str \| None = None) -> str \| None:`
			`return self.parameters.get(key, default)`

			`def __contains__(self, key: str) -> bool:`
			`return key in self.parameters`

			`def __eq__(self, other: object) -> bool:`
			`if not isinstance(other, Authorization):`
			`return NotImplemented`

			`return (`
			`other.type == self.type`
			`and other.token == self.token`
			`and other.parameters == self.parameters`
			`)`

			`@classmethod`
			`def from_header(cls, value: str \| None) -> te.Self \| None:`
			"""Parse an ``Authorization`` header value and return an instance, or ``None``
			`if the value is empty.`

			`:param value: The header value to parse.`

			`.. versionadded:: 2.3`
			`"""`
			`if not value:`
			`return None`

			`scheme, _, rest = value.partition(" ")`
			`scheme = scheme.lower()`
			`rest = rest.strip()`

			`if scheme == "basic":`
			`try:`
			`username, _, password = base64.b64decode(rest).decode().partition(":")`
			`except (binascii.Error, UnicodeError):`
			`return None`

			`return cls(scheme, {"username": username, "password": password})`

			`if "=" in rest.rstrip("="):`
			`# = that is not trailing, this is parameters.`
			`return cls(scheme, parse_dict_header(rest), None)`

			`# No = or only trailing =, this is a token.`
			`return cls(scheme, None, rest)`

			`def to_header(self) -> str:`
			"""Produce an ``Authorization`` header value representing this data.

			`.. versionadded:: 2.0`
			`"""`
			`if self.type == "basic":`
			`value = base64.b64encode(`
			`f"{self.username}:{self.password}".encode()`
			`).decode("ascii")`
			`return f"Basic {value}"`

			`if self.token is not None:`
			`return f"{self.type.title()} {self.token}"`

			`return f"{self.type.title()} {dump_header(self.parameters)}"`

			`def __str__(self) -> str:`
			`return self.to_header()`

			`def __repr__(self) -> str:`
			`return f"<{type(self).__name__} {self.to_header()}>"`


			`class WWWAuthenticate:`
			"""Represents the parts of a ``WWW-Authenticate`` response header.

			Set :attr:`.Response.www_authenticate` to an instance of list of instances to set
			`values for this header in the response. Modifying this instance will modify the`
			`header value.`

			Depending on the auth scheme, either :attr:`parameters` or :attr:`token` should be
			set. The ``Basic`` scheme will encode ``username`` and ``password`` parameters to a
			`token.`

			For convenience, ``auth["key"]`` and ``auth.key`` both act on the :attr:`parameters`
			dict, and can be used to get, set, or delete parameters. ``auth.get("key")`` and
			``"key" in auth`` are also provided.

			`.. versionchanged:: 2.3`
			The ``token`` parameter and attribute was added to support auth schemes that use
			a token instead of parameters, such as ``Bearer``.

			`.. versionchanged:: 2.3`
			The object is no longer a ``dict``.

			`.. versionchanged:: 2.3`
			The ``on_update`` parameter was removed.
			`"""`

			`def __init__(`
			`self,`
			`auth_type: str,`
			`values: dict[str, str \| None] \| None = None,`
			`token: str \| None = None,`
			`):`
			`self._type = auth_type.lower()`
			`self._parameters: dict[str, str \| None] = CallbackDict(`
			`values, lambda _: self._trigger_on_update()`
			`)`
			`self._token = token`
			`self._on_update: cabc.Callable[[WWWAuthenticate], None] \| None = None`

			`def _trigger_on_update(self) -> None:`
			`if self._on_update is not None:`
			`self._on_update(self)`

			`@property`
			`def type(self) -> str:`
			"""The authorization scheme, like ``basic``, ``digest``, or ``bearer``."""
			`return self._type`

			`@type.setter`
			`def type(self, value: str) -> None:`
			`self._type = value`
			`self._trigger_on_update()`

			`@property`
			`def parameters(self) -> dict[str, str \| None]:`
			"""A dict of parameters for the header. Only one of this or :attr:`token` should
			`have a value for a given scheme.`
			`"""`
			`return self._parameters`

			`@parameters.setter`
			`def parameters(self, value: dict[str, str]) -> None:`
			`self._parameters = CallbackDict(value, lambda _: self._trigger_on_update())`
			`self._trigger_on_update()`

			`@property`
			`def token(self) -> str \| None:`
			"""A dict of parameters for the header. Only one of this or :attr:`token` should
			`have a value for a given scheme.`
			`"""`
			`return self._token`

			`@token.setter`
			`def token(self, value: str \| None) -> None:`
			"""A token for the header. Only one of this or :attr:`parameters` should have a
			`value for a given scheme.`

			`.. versionadded:: 2.3`
			`"""`
			`self._token = value`
			`self._trigger_on_update()`

			`def __getitem__(self, key: str) -> str \| None:`
			`return self.parameters.get(key)`

			`def __setitem__(self, key: str, value: str \| None) -> None:`
			`if value is None:`
			`if key in self.parameters:`
			`del self.parameters[key]`
			`else:`
			`self.parameters[key] = value`

			`self._trigger_on_update()`

			`def __delitem__(self, key: str) -> None:`
			`if key in self.parameters:`
			`del self.parameters[key]`
			`self._trigger_on_update()`

			`def __getattr__(self, name: str) -> str \| None:`
			`return self[name]`

			`def __setattr__(self, name: str, value: str \| None) -> None:`
			`if name in {"_type", "_parameters", "_token", "_on_update"}:`
			`super().__setattr__(name, value)`
			`else:`
			`self[name] = value`

			`def __delattr__(self, name: str) -> None:`
			`del self[name]`

			`def __contains__(self, key: str) -> bool:`
			`return key in self.parameters`

			`def __eq__(self, other: object) -> bool:`
			`if not isinstance(other, WWWAuthenticate):`
			`return NotImplemented`

			`return (`
			`other.type == self.type`
			`and other.token == self.token`
			`and other.parameters == self.parameters`
			`)`

			`def get(self, key: str, default: str \| None = None) -> str \| None:`
			`return self.parameters.get(key, default)`

			`@classmethod`
			`def from_header(cls, value: str \| None) -> te.Self \| None:`
			"""Parse a ``WWW-Authenticate`` header value and return an instance, or ``None``
			`if the value is empty.`

			`:param value: The header value to parse.`

			`.. versionadded:: 2.3`
			`"""`
			`if not value:`
			`return None`

			`scheme, _, rest = value.partition(" ")`
			`scheme = scheme.lower()`
			`rest = rest.strip()`

			`if "=" in rest.rstrip("="):`
			`# = that is not trailing, this is parameters.`
			`return cls(scheme, parse_dict_header(rest), None)`

			`# No = or only trailing =, this is a token.`
			`return cls(scheme, None, rest)`

			`def to_header(self) -> str:`
			"""Produce a ``WWW-Authenticate`` header value representing this data."""
			`if self.token is not None:`
			`return f"{self.type.title()} {self.token}"`

			`if self.type == "digest":`
			`items = []`

			`for key, value in self.parameters.items():`
			`if key in {"realm", "domain", "nonce", "opaque", "qop"}:`
			`value = quote_header_value(value, allow_token=False)`
			`else:`
			`value = quote_header_value(value)`

			`items.append(f"{key}={value}")`

			`return f"Digest {', '.join(items)}"`

			`return f"{self.type.title()} {dump_header(self.parameters)}"`

			`def __str__(self) -> str:`
			`return self.to_header()`

			`def __repr__(self) -> str:`
			`return f"<{type(self).__name__} {self.to_header()}>"`