§ .çh¤ ãó¼—ddlZddlmZddlmZmZmZddlmZddl m Z ddl m Z m Z mZddlmZmZGd„d e¦«ZGd „d e¦«ZGd „d ¦«ZdS)éN)ÚAny)ÚAuthCredentialsÚAuthenticationBackendÚ SimpleUser)Ú HTTPException)ÚHTTPConnection)ÚReceiveÚScopeÚSend)Ú AccessTokenÚ OAuthAuthorizationServerProvidercó(‡—eZdZdZdefˆfd„ ZˆxZS)ÚAuthenticatedUserzUser with authentication info.Ú auth_infocóz•—t¦« |j¦«||_|j|_dS©N)ÚsuperÚ__init__Ú client_idÚ access_tokenÚscopes)ÚselfrÚ __class__s €úc/var/www/FlaskApp/flask-venv/lib/python3.11/site-packages/mcp/server/auth/middleware/bearer_auth.pyrzAuthenticatedUser.__init__s4ø€Ý ‰Œ×Ò˜Ô,Ñ-Ô-Ð-Ø%ˆÔØÔ&ˆŒ ˆ ˆ ó)Ú__name__Ú __module__Ú __qualname__Ú__doc__r rÚ __classcell__)rs@rrrsJø€€€€€Ø(Ð(ð' +ð'ð'ð'ð'ð'ð'ð'ð'ð'ð'rrcó<—eZdZdZdeeeeffd„Zdefd„ZdS)ÚBearerAuthBackendz> Authentication backend that validates Bearer tokens. Úprovidercó—||_dSr)r#)rr#s rrzBearerAuthBackend.__init__s€ð!ˆŒ ˆ ˆ rÚconncƒó¦‡K—tˆfd„‰jD¦«d¦«}|r'| ¦« d¦«sdS|dd…}|j |¦«ƒd{V—†}|sdS|jr+|jttj¦«¦«krdSt|j ¦«t|¦«fS)Nc3ó|•K—|]6}| ¦«dk¯‰j |¦«V—Œ7dS)Ú authorizationN)ÚlowerÚheadersÚget)Ú.0Úkeyr%s €rú z1BearerAuthBackend.authenticate..&sRøèè€ð ð àØ—9’9‘;”; /Ò1Ð1ð” × Ò  Ñ%Ô%à1Ð1Ð1Ð1ð ð rzbearer é) Únextr*r)Ú startswithr#Úload_access_tokenÚ expires_atÚintÚtimerrr)rr%Ú auth_headerÚtokenrs ` rÚ authenticatezBearerAuthBackend.authenticate$søèè€Ýð ð ð ð àœ<ð ñ ô ð ñ  ô ˆ ðð  +×"3Ò"3Ñ"5Ô"5×"@Ò"@ÀÑ"KÔ"Kð Ø4à˜A˜B˜B”ˆðœ-×9Ò9¸%Ñ@Ô@Ð@Ð@Ð@Ð@Ð@Ð@ˆ àð Ø4à Ô ð  IÔ$8½3½t¼y¹{¼{Ñ;KÔ;KÒ$KÐ$KØ4å˜yÔ/Ñ0Ô0Õ2CÀIÑ2NÔ2NÐNÐNrN) rrrrr rrrr8©rrr"r"sg€€€€€ððð!à2°3¸¸S°=ÔAð!ð!ð!ð!ð O ~ðOðOðOðOðOðOrr"cóF—eZdZdZdedeefd„Zdede de dd fd „Z d S) ÚRequireAuthMiddlewarezÉ Middleware that requires a valid Bearer token in the Authorization header. This will validate the token with the auth provider and store the resulting auth info in the request state. ÚappÚrequired_scopescó"—||_||_dS)zì Initialize the middleware. Args: app: ASGI application provider: Authentication provider to validate tokens required_scopes: Optional list of scopes that the token must have N)r<r=)rr<r=s rrzRequireAuthMiddleware.__init__Fs€ðˆŒØ.ˆÔÐÐrÚscopeÚreceiveÚsendÚreturnNcƒó0K—| d¦«}t|t¦«stdd¬¦«‚| d¦«}|jD]}| ||jvrtdd¬¦«‚Œ| |||¦«ƒd{V—†dS)NÚuseri‘Ú Unauthorized)Ú status_codeÚdetailÚauthi“zInsufficient scope)r+Ú isinstancerrr=rr<)rr?r@rAÚ auth_userÚauth_credentialsÚrequired_scopes rÚ__call__zRequireAuthMiddleware.__call__RsÅèè€Ø—I’I˜fÑ%Ô%ˆ ݘ)Õ%6Ñ7Ô7ð HݨC¸ÐGÑGÔGÐ GØ Ÿ9š9 VÑ,Ô,Ðà"Ô2ð Rð RˆNð!Ð(Ø!Ð)9Ô)@Ð@Ð@å#°Ðst€€€€€ððð /˜Cð /°$°s´)ð /ð /ð /ð /ð- Eð-°Gð-À4ð-ÈDð-ð-ð-ð-ð-ð-rr;)r5ÚtypingrÚstarlette.authenticationrrrÚstarlette.exceptionsrÚstarlette.requestsrÚstarlette.typesr r r Úmcp.server.auth.providerr r rr"r;r9rrúrVs>ðØ € € € ØÐÐÐÐÐððððððððððð /Ð.Ð.Ð.Ð.Ð.Ø-Ð-Ð-Ð-Ð-Ð-Ø0Ð0Ð0Ð0Ð0Ð0Ð0Ð0Ð0Ð0àRÐRÐRÐRÐRÐRÐRÐRð'ð'ð'ð'ð'˜ ñ'ô'ð'ð"Oð"Oð"Oð"Oð"OÐ-ñ"Oô"Oð"OðJ"-ð"-ð"-ð"-ð"-ñ"-ô"-ð"-ð"-ð"-r