ugddlZddlZddlZddlZddlZddlZddlZddlmZddl m Z ddl m Z m Z mZmZmZddlmZddlmZddlmZmZddlmZej4eZd d gZd ZGd d eZGd d e Z y)N)override) SecretStr) UserIdentityServerAuthenticationProviderClientAuthProviderClientAuthHeaders AuthError)System)ChromaAuthError)OpenTelemetryGranularity trace_method)Dict!BasicAuthenticationServerProviderBasicAuthClientProvider AuthorizationcBeZdZdZdeddffd ZedefdZxZ S)rz Client auth provider for basic auth. The credentials are passed as a base64-encoded string in the Authorization header prepended with "Basic ". systemreturnNct|||j|_|jj dt t |jj|_y)Nchroma_client_auth_credentials) super__init__settings _settingsrequirerstrr_creds)selfr __class__s W/var/www/openai/venv/lib/python3.12/site-packages/chromadb/auth/basic_authn/__init__.pyrz BasicAuthClientProvider.__init__,sI   @AFOO$R$R ST ctj|jjj dj d}t td|iS)Nutf-8zBasic )base64 b64encoderget_secret_valueencodedecodeAUTHORIZATION_HEADERr)rencodeds r authenticatez$BasicAuthClientProvider.authenticate2sY""{{++-. 6 6w ? &/  !)fWI,>"?  r!) __name__ __module__ __qualname____doc__r rrrr+ __classcell__rs@r rr&s: UvU$U  /  r!c|eZdZdZdeddffd Zedeje de e e fde fdZ xZS) ra/ Server auth provider for basic auth. The credentials are read from `chroma_server_authn_credentials_file` and each line must be in the format :. Expects tokens to be passed as a base64-encoded string in the Authorization header prepended with "Basic". rrNct|||j|_i|_|j }|D]}|j s|j jdDcgc]}|}}|r|drt|dk7s t|std|d|d}|d}||jvr tdt||j|<ycc}w)N:rz$Invalid htpasswd credentials found: z3. Lines must be exactly :.zXDuplicate username found in [chroma_server_authn_credentials]. Usernames must be unique.) rrrrrread_creds_or_creds_filestripsplitlenall ValueErrorr) rrcredslinev _raw_credsusernamepasswordrs r rz*BasicAuthenticationServerProvider.__init__Fs  ,. --/D::<%)ZZ\%7%7%<=%<!%s0 C(z.BasicAuthenticationServerProvider.authenticateheadersc z tj|jvrttdz|tj}t j dd|}|j }tj|jd}d|vr td|jdd\}}t|}t|}||jvr tdtj|jd|j|j!jd}|s tdt#| S#t$r+}t$j'd t)|Yd}~nd}~wt*$rw}t-j.|j0}|d } | j2} | j4} t$j'd t7|j8d | d| Yd}~nd}~wwxYwt;j<t?j@ddtC)Nz header not foundz^Basic r#r4z#Invalid Authorization header formatr6zInvalid username or password)user_idz7BasicAuthenticationServerProvider.authenticate failed: zNBasicAuthenticationServerProvider.authenticate failed: Failed to authenticate z at gMbP?g{Gzt?)"r)lowerkeysr resubr8r$ b64decoder(r9rrbcryptcheckpwr'r&rloggererrorrepr Exception traceback extract_tb __traceback__linenofilenametyper,timesleeprandomuniformr ) rrC _auth_headerbase64_decodedrArB _pwd_checketblast_call_stack line_numberrWs r authenticate_or_raisez7BasicAuthenticationServerProvider.authenticate_or_raisees $ #))+7<<>A 47J JKK"#7#=#=#?@L66*b,?L'--/L#--l;BB7KN.( EFF!/!5!5c1!= Hh8}H8}Ht{{* >??( H%668??HJ >??1 1  LLI$q'S   %%aoo6B fO)00K&//H LL**.q'*:*:);4z;-Y    NN5% ( s%EE H!F HA-HH)r,r-r.r/r rr r ALLrrrrrdr0r1s@r rr<s`8v8$8>8:R:V:V) T#s(^) ) ) r!)!r$r[rJrYrSrMlogging overridesrpydanticr chromadb.authrrrrr chromadb.configr chromadb.errorsr chromadb.telemetry.opentelemetryr r typingr getLoggerr,rO__all__r)rrr!r rqs}  #+    8 $ .0I J& 0 ,V (DV r!