U 6d$@s.dZddlZddlZddlZddlZddlZddlmZddlm Z ddl m Z ddl m Z ddl mZeeZee jdZesee jdZd eZd ee jd Zd Zd ZeeiZzeeddZWnek rdZYnXedfddZ edddfddZ!ddZ"dddZ#dddZ$dS)zProvides helper methods for talking to the Compute Engine metadata server. See https://cloud.google.com/compute/docs/metadata for more details. N) http_client)parse)_helpers)environment_vars) exceptionszmetadata.google.internalzhttp://{}/computeMetadata/v1/z http://{}z169.254.169.254zmetadata-flavorZGoogleZGCE_METADATA_TIMEOUTc Csd}||krz2|tdt|d}|jt}|jtjko<|tkWSt j k r~}z t d|d|||d7}W5d}~XYqXqdS)aChecks to see if the metadata server is available. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. timeout (int): How long to wait for the metadata server to respond. retry_count (int): How many times to attempt connecting to metadata server using above timeout. Returns: bool: True if the metadata server is reachable, False otherwise. rGET)urlmethodheaderstimeoutJCompute Engine Metadata server unavailable on attempt %s of %s. Reason: %sNF) _METADATA_IP_ROOT_METADATA_HEADERSr get_METADATA_FLAVOR_HEADERstatusrOK_METADATA_FLAVOR_VALUErTransportError_LOGGERwarning)requestr retry_countretriesresponseZmetadata_flavorerH/tmp/pip-unpacked-wheel-h3lf9jv9/google/auth/compute_engine/_metadata.pyping?s,  r Fc CsHt||}|dkrin|}|r(d|d<t||}d} | |krz||dtd} WqWq8tjk r} z td| d|| | d7} W5d} ~ XYq8Xq8td || j t j kr*t | j} | jd d kr$z t| WStk r } z td | }t|| W5d} ~ XYnXn| Sntd || j | j| dS)aFetch a resource from the metadata server. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. path (str): The resource to retrieve. For example, ``'instance/service-accounts/default'``. root (str): The full path to the metadata server root. params (Optional[Mapping[str, str]]): A mapping of query parameter keys to values. recursive (bool): Whether to do a recursive query of metadata. See https://cloud.google.com/compute/docs/metadata#aggcontents for more details. retry_count (int): How many times to attempt connecting to metadata server using above timeout. Returns: Union[Mapping, str]: If the metadata server returns JSON, a mapping of the decoded JSON is return. Otherwise, the response content is returned as a string. Raises: google.auth.exceptions.TransportError: if an error occurred while retrieving metadata. Ntrue recursiverr)r r r r rzqFailed to retrieve {} from the Google Compute Engine metadata service. Compute Engine Metadata server unavailablez content-typezapplication/jsonzMReceived invalid JSON from the Google Compute Engine metadata service: {:.20}z^Failed to retrieve {} from the Google Compute Engine metadata service. Status: {} Response: {})urlparseurljoinrZ update_queryrrrrrformatrrr from_bytesdatar jsonloads ValueErrorsix raise_from)rpathrootparamsr#rbase_urlZ query_paramsr rrrcontentZ caught_excnew_excrrrrosX     rcCs t|dS)aOGet the Google Cloud Project ID from the metadata server. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. Returns: str: The project ID Raises: google.auth.exceptions.TransportError: if an error occurred while retrieving metadata. zproject/project-id)r)rrrrget_project_idsr4defaultcCsd|}t||ddidS)aGet information about a service account from the metadata server. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. service_account (str): The string 'default' or a service account email address. The determines which service account for which to acquire information. Returns: Mapping: The service account's information, for example:: { 'email': '...', 'scopes': ['scope', ...], 'aliases': ['default', '...'] } Raises: google.auth.exceptions.TransportError: if an error occurred while retrieving metadata. zinstance/service-accounts/{0}/r#r"r0)r&r)rservice_accountr.rrrget_service_account_infos r8cCsb|r"t|tsd|}d|i}nd}d|}t|||d}ttj|dd}|d|fS) aGet the OAuth 2.0 access token for a service account. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. service_account (str): The string 'default' or a service account email address. The determines which service account for which to acquire an access token. scopes (Optional[Union[str, List[str]]]): Optional string or list of strings with auth scopes. Returns: Tuple[str, datetime]: The access token and its expiration. Raises: google.auth.exceptions.TransportError: if an error occurred while retrieving metadata. ,scopesNz#instance/service-accounts/{0}/tokenr6Z expires_in)secondsZ access_token) isinstancestrjoinr&rrutcnowdatetime timedelta)rr7r:r0r.Z token_jsonZ token_expiryrrrget_service_account_tokens     rB)r5)r5N)%__doc__r@r)loggingosr,Z six.movesrZsix.moves.urllibrr$Z google.authrrr getLogger__name__rgetenvZGCE_METADATA_HOSTZ_GCE_METADATA_HOSTZGCE_METADATA_ROOTr&Z_METADATA_ROOTZGCE_METADATA_IPrrrrintZ_METADATA_DEFAULT_TIMEOUTr+r rr4r8rBrrrrsJ         1 P