gddlmZddlmZddlmZddlmZddlm Z m Z ddl m ZddlmZddlmZmZmZmZdd lmZdd lmZddlm Z dd lmZdd lmZGd deZ de fdZy))BytesIO)Dict)quote) urlencode)gettext gettext_lazy) app_settings) get_adapter) user_display user_emailuser_pk_to_url_str user_username)context) BaseAdapter) Authenticator)import_attributec8eZdZdZedededededdZ defd Zdefd Zdefd Z d edefd Z dedefdZ defdZ dedefdZ dedefdZdedefdZdZddefdZdej(defdZdeeeffdZdefdZy)DefaultMFAAdaptera4The adapter class allows you to override various functionality of the ``allauth.mfa`` app. To do so, point ``settings.MFA_ADAPTER`` to your own class that derives from ``DefaultMFAAdapter`` and override the behavior by altering the implementation of the methods according to your own needs. zUYou cannot add an email address to an account protected by two-factor authentication.z0You cannot deactivate two-factor authentication.zTYou cannot generate recovery codes without having two-factor authentication enabled.zIncorrect code.zYYou cannot activate two-factor authentication until you have verified your email address.)add_email_blockedcannot_delete_authenticatorcannot_generate_recovery_codesincorrect_codeunverified_emailreturnc$|j|S)zZReturns the label used for representing the given user in a TOTP QR code. )_get_user_identifierselfusers P/var/www/django_project/virt/lib/python3.12/site-packages/allauth/mfa/adapter.pyget_totp_labelz DefaultMFAAdapter.get_totp_label/s((..cPt|}|s t|}|s t|}|S)z`Human-palatable identifier for a user account. It is intended only for display. )r rstr)rrlabels r rz&DefaultMFAAdapter._get_user_identifier5s,4 !$'EIE r"cJtj}|s|j}|S)zYReturns the TOTP issuer name that will be contained in the TOTP QR code. )r TOTP_ISSUER_get_site_name)rissuers r get_totp_issuerz!DefaultMFAAdapter.get_totp_issuer@s%))((*F r"secretc|j|}|j}||d}tjdk7rtj|d<tjdk7rtj|d<dt |dt |S)N)r+r)digitsperiodzotpauth://totp/?)r!r*r TOTP_DIGITS TOTP_PERIODrr)rrr+r%r)paramss r build_totp_urlz DefaultMFAAdapter.build_totp_urlIs##D)%%'    # #q (+77F8   # #r )+77F8  ua &0A/BCCr"urlcddl}ddlm}|j||}t }|j ||j jdS)Nr) SvgPathImage) image_factoryutf8)qrcodeqrcode.image.svgr8makersavegetvaluedecode)rr6r;r8imgbufs r build_totp_svgz DefaultMFAAdapter.build_totp_svgXsC1kk#\k:i  ||~$$V,,r"ctjr9ddlm}|jj t jjSt jjS)Nr)Site) allauth_settings SITES_ENABLEDdjango.contrib.sites.modelsrEobjects get_currentrrequestnameget_host)rrEs r r(z DefaultMFAAdapter._get_site_nameas@  ) ) 8<<++GOO<AA A??++- -r"textc|S)zSecrets such as the TOTP key are stored in the database. This hook can be used to encrypt those so that they are not stored in the clear in the database. )rrNs r encryptzDefaultMFAAdapter.encryptis  r"encrypted_textc |}|S)zCounter part of ``encrypt()``.rP)rrRrNs r decryptzDefaultMFAAdapter.decryptps  r" authenticatorcy)NTrP)rrUs r can_delete_authenticatorz*DefaultMFAAdapter.can_delete_authenticatorusr"c6tj|i|SN)get_account_adaptersend_notification_mail)rargskwargss r r[z(DefaultMFAAdapter.send_notification_mailxs;"$;;TLVLLr"Nc|jrytjj|}||j|}|j S)zM Returns ``True`` if (and only if) the user has 2FA enabled. F)r)type__in) is_anonymousrrIfilterexists)rrtypesqss r is_mfa_enabledz DefaultMFAAdapter.is_mfa_enabled{sK     " " ) )t ) 4  E*Byy{r"typectjj||j}|dk(r t dS|dk(r t dSt dj |dzS)zi Generate a human friendly name for the key. Used to prefill the "Add key" form. )rrfrz Master keyz Backup keyzKey nr. {number})number)rrIracountrformat)rrrfns r generate_authenticator_namez-DefaultMFAAdapter.generate_authenticator_namesj  ! ! ( (d ( > D D F 6<( ( !V<( ()*11Q1??r"c|j}tjjj dd|dS)N:r)idrL)r(rrKrM partition)rrLs r #get_public_key_credential_rp_entityz5DefaultMFAAdapter.get_public_key_credential_rp_entitys=""$//**,66s;A>  r"cnt|jdt||j|dS)Nr:)rp display_namerL)r encoder rrs r %get_public_key_credential_user_entityz7DefaultMFAAdapter.get_public_key_credential_user_entitys5$T*11&9(.--d3  r"rY)__name__ __module__ __qualname____doc___error_messagesr$r!rr*r5rCr(rQrTrboolrWr[reTypermrrrdictrvrPr"r rrs1 c () >( +, b+ -. g NF/c/ C  D3 D3 D-#-#-..CCcc mM $  @m6H6H @S @ T#s(^  T r"rrc>ttjSrY)rr ADAPTERrPr"r r r s 1 L00 1 33r"N)!iortypingr urllib.parserdjango.utils.httprdjango.utils.translationrrr{allauthr rFallauth.account.adapterr rZallauth.account.utilsr r r r allauth.corerallauth.core.internal.adapterr allauth.mfaallauth.mfa.modelsr allauth.utilsrrrPr"r rsQ'?4F !5$,*G G T4&4r"