\AhX,SSKrSSKrSSKrSSKJr SSKJr SSKJr SSK J r SSK J r J r Jr SSKJrJr SS KJrJrJr \ R,\ R.SSS4S jrS rS rS rSrSrSrSrSr Sr!Sr"Sr#Sr$Sr%Sr&Sr'Sr(Sr)Sr*g)N)Mappingpack)jwk)get_random_bytes) ALGORITHMSJWE_SIZE_LIMITZIPS)JWEError JWEParseError)base64url_decodebase64url_encode ensure_binaryc:[U5nU[R;a[SU-5eU[R;a[SU-5e[R "X5n[ X2XEU5n[X@5n[XX$X5upp[XxXU 5n U $)aKEncrypts plaintext and returns a JWE compact serialization string. Args: plaintext (bytes): A bytes object to encrypt key (str or dict): The key(s) to use for encrypting the content. Can be individual JWK or JWK set. encryption (str, optional): The content encryption algorithm used to perform authenticated encryption on the plaintext to produce the ciphertext and the Authentication Tag. Defaults to A256GCM. algorithm (str, optional): The cryptographic algorithm used to encrypt or determine the value of the CEK. Defaults to dir. zip (str, optional): The compression algorithm) applied to the plaintext before encryption. Defaults to None. cty (str, optional): The media type for the secured content. See http://www.iana.org/assignments/media-types/media-types.xhtml kid (str, optional): Key ID for the provided key Returns: bytes: The string representation of the header, encrypted key, initialization vector, ciphertext, and authentication tag. Raises: JWEError: If there is an error signing the token. Examples: >>> from jose import jwe >>> jwe.encrypt('Hello, World!', 'asecret128bitkey', algorithm='dir', encryption='A128GCM') 'eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4R0NNIn0..McILMB3dYsNJSuhcDzQshA.OfX9H_mcUpHDeRM4IA.CcnTWqaqxNsjT4eCaUABSg' Algorithm %s not supported.) rr SUPPORTEDr r construct_encoded_header _compress_encrypt_and_auth_jwe_compact_serialize) plaintextkey encryption algorithmzipctykidencoded_headerenc_cekiv cipher_textauth_tag jwe_strings OC:\Users\julio\Documents\inmobiliaria_backend\env\Lib\site-packages\jose/jwe.pyencryptr's>i(I ,,,4y@AA---4zABB -- 'C$YCcJN#)I):3:\e)v&G'RZ[J c>[U5[:a[S[U5S[S35e[U5up#pEpgUSnUSn U[R ;a[SU-5eU [R ;a[SU -5e[R"X5nU[R:XaUS:Hn [U5n OURU5n S n Un U n [!XXeX5nUb[#UR%S5U5nU (aU$S$![ a [S5ef=f![a [S US 35e[a S n [U 5n Nf=f![a [S U S 35e[an[U5eSnAff=f)aDecrypts a JWE compact serialized string and returns the plaintext. Args: jwe_str (str): A JWE to be decrypt. key (str or dict): A key to attempt to decrypt the payload with. Can be individual JWK or JWK set. Returns: bytes: The plaintext bytes, assuming the authentication tag is valid. Raises: JWEError: If there is an exception verifying the token. Examples: >>> from jose import jwe >>> jwe.decrypt(jwe_string, 'asecret128bitkey') 'Hello, World!' z JWE string z bytes exceeds  bytesalgencrz!alg and enc headers are required!r(Talg  is not implementedFenc Nr)lenr r _jwe_compact_deserializer rKeyErrorr rrDIR_get_key_bytes_from_key unwrap_keyNotImplementedError Exception_get_random_cek_bytes_for_enc_decrypt_and_auth _decompressget)jwe_strrheaderr encrypted_keyr"r#r$r+r, cek_valid cek_bytesprotected_headeraad plain_textes r&decryptrE<s. 7|n$S\N/.AQQWXYYG_`gGhDFM{ AUmUm j** *83>? ? j** *83>? ? + -- !C& jnn"S( ,C0  ;}5II*& C&y{V  E!2J? ":,,y A?@@AT# <T#&9:; ; ;I6c:I ;L 8cU"5677 qks7ADD5& E*D25/E'&E'*"F FFc"[U5SnU$)aReturns the decoded headers without verification of any kind. Args: jwe_str (str): A compact serialized JWE to decode the headers from. Returns: dict: The dict representation of the JWE headers. Raises: JWEError: If there is an exception decoding the JWE. r)r1)r<r=s r&get_unverified_headerrGs&g .q 1F Mr(c"U[R;a[X5upgn[X#XGU5n Or" ciphertextr$s r&r1r1si(I.clcrcr !d `zP`'~6 .;K( fg & &JKK5()>? * j )2%&9: 0#$45 =j JJe 3122 x~~ &.,--., ;5aS9::; x~~ &53445 x~~ &*L))* x~~ &20112 x~~ &0.//0sR!BC& C72 D > E E2:C C4!C//C47&D &E &E/2&FcXS.nU(aX%S'U(aX5S'U(aXES'[R"USSS9RS5n[U5$) a] Generate an appropriate JOSE header based on the values provided Args: alg (str): Key wrap/negotiation algorithm enc (str): Encryption algorithm zip (str): Compression method cty (str): Content type of the encrypted data kid (str): ID for the key used for the operation Returns: bytes: JSON object of header based on input )r+r,rrr),:T) separators sort_keyszutf-8)rcdumpsencoder)r+r,rrrr= json_headers r&rrQs\ %F u  u  u ** fWo  K ((r(c[SU5$)Nz!Qr)int_vals r& _big_endianrxms g r(c[X!U5upgU[R;a0[ Xb5upn UR XE5upn [XXYU 5nONU[R;a+[R"Xb5nUR XE5upnO[SUS35eX{X4$![a [SUS35ef=f)a Generate a content encryption key (cek) and initialization vector (iv) based on enc and alg, compress the plaintext based on zip, encrypt the compressed plaintext using the cek and iv based on enc Args: key (Key): The key provided for encryption alg (str): The algorithm use for key wrap/negotiation enc (str): The encryption algorithm with which to encrypt the plaintext zip (str): The compression algorithm with which to compress the plaintext plaintext (bytes): The data to encrypt aad (str): Additional authentication data utilized for generating an auth tag Returns: (bytes, bytes, bytes, bytes): A tuple of the following data (key wrapped cek, iv, cipher text, auth tag) r-r.r/rI) _get_cekr6r r rJrKr'rLrMrr)rr+r,rrrBr@kw_cekrNrOrPr"rmtagr$s r&rrqs&8$Ss3  j&&&+^_h+n(,44YDZS7C  y6#1#9#9)#I !D-A"BCC z ++ 8cU"56778s B&&CcXURS5up#[R"X5nU$)z Get an HMACKey for the provided encryption algorithm and key bytes Args: enc (str): Encryption algorithm mac_key_bytes (bytes): vytes for the HMAC key Returns: (HMACKey): The key to perform HMAC actions rT)rVrr)r,rXr[hash_algrOs r&rUrUs&))C.KAmmM4G Nr(cU[R;a[SUS35eUcUnU$U[R:Xa[R "U5nU$[SUS35e)z Compress the plaintext based on the algorithm supplied Args: zip (str): Compression Algorithm plaintext (bytes): plaintext to compress Returns: (bytes): Compressed plaintext ZIP  is not supported!rI)r rr6DEFzlibcompress)rr compresseds r&rrsq $.. !D-?"@AA {  ]]9-  "D-A"BCCr(c<U[R;a[SUS35eUcUnU$U[R:XaP[R "5nUR U[S9nUR(a[S[S35eU$[SUS35e)z Decompress the plaintext based on the algorithm supplied Args: zip (str): Compression Algorithm plaintext (bytes): plaintext to decompress Returns: (bytes): Compressed plaintext rr) max_lengthz Decompressed JWE string exceeds r*rI) r rr6rr decompressobj decompressr unconsumed_tailr )rr decompressed decompressors r&r:r:s $.. !D-?"@AA {!   ))+ #..zn.U  ' '=n=MVTU U ( "D-A"BCCr(cjU[R:Xa[U5up4X44$[X5up4X44$)z Get the content encryption key Args: enc (str): Encryption algorithm alg (str): kwy wrap/negotiation algorithm key (Key): Key provided to encryption method Return: (bytes, bytes): Tuple of (cek bytes and wrapped cek) )r r3_get_direct_key_wrap_cek_get_key_wrap_cek)r,r+rcek wrapped_ceks r&rzrzs@ jnn3C8  -S6  r(cUR5nUSS:Xa[U5nSnX#4$[SRUS55e)z Get the cek and wrapped cek from the encryption key direct Args: key (Key): Key provided to encryption method Return: (Key, bytes): Tuple of (cek Key object and wrapped cek) ktyoctr(zJWK type {} not supported!)to_dictr4r6format)rjwk_datar@rs r&rrsR{{}H%+C0    !!"">"E"Ehuo"VWWr(cFUR5nUSn[U5nU$)z Get the raw key bytes from a Key object Args: key (Key): Key from which to extract the raw key bytes Returns: (bytes) key data k)rr)rr encoded_keyr@s r&r4r4s({{}H3-K -I r(c@[U5nURU5nX#4$)z_get_rsa_key_wrap_cek Get the content encryption key for RSA key wrap Args: enc (str): Encryption algorithm key (Key): Key provided to encryption method Returns: (Key, bytes): Tuple of (cek Key object and wrapped cek) )r8wrap_key)r,rr@rs r&rrs%.c2I,,y)K  !!r(cDU[R:XaSnOzU[R:XaSnOcU[R[R4;aSnO > (( ( (( (!SE"899 Q/I r(ct[[U5S-5nX!-U-U-nURU5nUSUnU$)a2 Get ann auth tag from the provided data Args: ciphertext (bytes): Encrypted value iv (bytes): Initialization vector aad (bytes): Additional Authenticated Data mac_key (bytes): Key to use in generating the MAC tag_length (int): How log the tag should be Returns: (bytes) Auth tag rr)rxr0sign) rmr"rBrO tag_lengthalauth_tag_input signaturer$s r&rLrL9sF SX\ "BX *R/N ^,I:&H Or(c[U5n[U5n[U5n[U5n[U5nUS-U-S-U-S-U-S-U-$)aQ Generate a compact serialized JWE Args: encoded_header (bytes): Base64 URL Encoded JWE header JSON encrypted_cek (bytes): Encrypted content encryption key (cek) iv (bytes): Initialization vector (IV) cipher_text (bytes): Cipher text auth_tag (bytes): JWE Auth Tag Returns: (str): JWE compact serialized string r])rr) r encrypted_cekr"r#r$encoded_encrypted_cek encoded_ivencoded_cipher_textencoded_auth_tags r&rrNs ,K,];!"%J*;7'1                    r()+rarcrcollections.abcrstructrrbackendsr constantsr r r exceptionsr r utilsrrrrr3r'rErGr9rKr1rrxrrUrr:rzrr4rr8rLrr(r&rs #&77/DD(2'9'9Z^^Y]cgmq+\H-V  #L4GKT)8",J  ,6("*  " 4*r(