U 6d@shdZddlmZddlmZddlmZddlmZddlmZ Gddde j Z Gd d d e j Z d S) aOAuth 2.0 Async Credentials. This module provides credentials based on OAuth 2.0 access and refresh tokens. These credentials usually access resources on behalf of a user (resource owner). Specifically, this is intended to use access tokens acquired using the `Authorization Code grant`_ and can refresh those tokens using a optional `refresh token`_. Obtaining the initial access and refresh token is outside of the scope of this module. Consult `rfc6749 section 4.1`_ for complete details on the Authorization Code grant flow. .. _Authorization Code grant: https://tools.ietf.org/html/rfc6749#section-1.3.1 .. _refresh token: https://tools.ietf.org/html/rfc6749#section-6 .. _rfc6749 section 4.1: https://tools.ietf.org/html/rfc6749#section-4.1 )_credentials_async)_helpers) exceptions) _reauth_async) credentialsc@s$eZdZdZeejddZdS) CredentialsaCredentials using OAuth 2.0 access and refresh tokens. The credentials are considered immutable. If you want to modify the quota project, use :meth:`with_quota_project` or :: credentials = credentials.with_quota_project('myproject-123) c s|jdks(|jdks(|jdks(|jdkr2tdtj||j|j|j|j|j|j |j dIdH\}}}}}||_ ||_ ||_| d|_||_ |jrd|krt|j}t|d}||} | rtdd| dS)NzThe credentials do not contain the necessary fields need to refresh the access token. You must specify refresh_token, token_uri, client_id, and client_secret.)Zscopes rapt_tokenZenable_reauth_refreshZid_tokenZscopezUNot all requested scopes were granted by the authorization server, missing scopes {}.z, )Z_refresh_tokenZ _token_uriZ _client_idZ_client_secretrZ RefreshErrorreauthZ refresh_grantZ_scopesZ _rapt_tokenZ_enable_reauth_refreshtokenexpirygetZ _id_token frozensetsplitformatjoin) selfrequestZ access_tokenZ refresh_tokenr Zgrant_responserZrequested_scopesZgranted_scopesZ scopes_requested_but_not_grantedrD/tmp/pip-unpacked-wheel-h3lf9jv9/google/oauth2/_credentials_async.pyrefresh2sT     zCredentials.refreshN) __name__ __module__ __qualname____doc__rZcopy_docstringrrrrrrrr)s rc@seZdZdZdS)UserAccessTokenCredentialsaAccess token credentials for user account. Obtain the access token for a given user account or the current active user account with the ``gcloud auth print-access-token`` command. Args: account (Optional[str]): Account to get the access token for. If not specified, the current active account will be used. quota_project_id (Optional[str]): The project ID used for quota and billing. N)rrrrrrrrrdsrN) rZ google.authrrrrZ google.oauth2rr Zoauth2_credentialsrrrrrrs     ;