rhD"FSrSSKrSSKrSSKrSSKrSSKrSSKJr SSKJ r J r SSK J r SSK Jr SSKJr \"S5rS r"S S \5r"S S \5rSrSrSrSrSSjrSrS Sjr"SS5rSS\S4SjrSS\SS4Sjr"SS5r "SS\ 5r!g)!a_ Functions for creating and restoring url-safe signed JSON objects. The format used looks like this: >>> signing.dumps("hello") 'ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk' There are two components here, separated by a ':'. The first component is a URLsafe base64 encoded JSON of the object passed to dumps(). The second component is a base64 encoded hmac/SHA-256 hash of "$first_component:$secret" signing.loads(s) checks the signature and returns the deserialized object. If the signature fails, a BadSignature exception is raised. >>> signing.loads("ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv422nZA4sgmk") 'hello' >>> signing.loads("ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv42-modified") ... BadSignature: Signature "ImhlbGxvIg:1QaUZC:YIye-ze3TTx7gtSv42-modified" does not match You can optionally compress the JSON prior to base64 encoding it to save space, using the compress=True argument. This checks if compression actually helps and only applies compression if the result is a shorter string: >>> signing.dumps(list(range(1, 20)), compress=True) '.eJwFwcERACAIwLCF-rCiILN47r-GyZVJsNgkxaFxoDgxcOHGxMKD_T7vhAml:1QaUaL:BA0thEZrp4FQVXIXuOvYJtLJSrQ' The fact that the string is compressed is signalled by the prefixed '.' at the start of the base64 JSON. There are 65 url-safe characters: the 64 used by url-safe base64 and the ':'. These functions make use of all of them. N)settings)constant_time_compare salted_hmac force_bytes) import_string)_lazy_re_compilez^[A-z0-9-_=]*$>0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyzc\rSrSrSrSrg) BadSignature4zSignature does not match.N__name__ __module__ __qualname____firstlineno____doc____static_attributes__rK/var/www/html/shao/venv/lib/python3.13/site-packages/django/core/signing.pyr r 4s#rr c\rSrSrSrSrg)SignatureExpired:z3Signature timestamp is older than required max_age.rNrrrrrr:s=rrcUS:XagUS:aSOSn[U5nSnUS:a"[US5up[UU-nUS:aM"X-$)Nr0->)absdivmodBASE62_ALPHABET)ssignencoded remainders r b62_encoder'@s]Ava%3RD AAG a%a} !),w6 a% >rcUS:XagSnUSS:XaUSSnSnSnUHnUS-[RU5-nM X-$)Nrrrr)r"index)r#r$decodeddigits r b62_decoder.Ls\Cx Dts{ abEGB,!6!6u!== >rcL[R"U5RS5$)N=)base64urlsafe_b64encodestrip)r#s r b64_encoder4Ys  # #A & , ,T 22rcVS[U5*S--n[R"X-5$)Nr0)lenr1urlsafe_b64decode)r#pads r b64_decoder:]s) 3q6'A+ C  # #AG ,,rc `[[XX#S9R55R5$)N algorithm)r4rdigestdecode)saltvaluekeyr=s r base64_hmacrCbs) D:AAC  fhrcS[U5-$)Nsdjango.http.cookiesr)rBs r_cookie_signer_keyrEhs !K$4 44rc[[R5nU"[[R5[ [[R 5US9$)N)rB fallback_keysr@)rrSIGNING_BACKENDrE SECRET_KEYmapSECRET_KEY_FALLBACKS)r@Signers rget_cookie_signerrMmsA 833 4F  x22 3,h.K.KL  rc$\rSrSrSrSrSrSrg)JSONSerializervzK Simple wrapper around json to be used in signing.dumps and signing.loads. cJ[R"USS9RS5$)N),:) separatorslatin-1)jsondumpsencode)selfobjs rrWJSONSerializer.dumps|szz#*5<^\rSrSrSrU4SjrSU4SjjrSrU=r$)rccP[[[R"555$ry)r'inttime)rYs r timestampTimestampSigner.timestamps#diik*++rch>U<UR<UR5<3n[TU] U5$ry)rjrsuperr$)rYrArns rr$TimestampSigner.signs)!488T^^-=>w|E""rc>>[TU]U5nURURS5up[ U5nUb`[ U[ R5(aUR5n[R"5U- nXR:a[SU<SU<S35eU$)zS Retrieve original value and check it wasn't signed more than max_age seconds ago. r)zSignature age z > z seconds) rrr|rjr. isinstancedatetime timedelta total_secondsrr)rYrArfresultragerns rrTimestampSigner.unsigns &!==15y)  '8#5#566!//1))+ )C}&#w'WXX rrry) rrrrrr$rr __classcell__)rns@rrcrcs,#rrc)sha1)z%django.core.signing.get_cookie_signer)"rr1rrVrr django.confrdjango.utils.cryptorrdjango.utils.encodingrdjango.utils.module_loadingrdjango.utils.regex_helperr ror" Exceptionr rr'r.r4r:rCrErMrOrWr]rLrcrrrrs!F B-5601 R 9  |  3-  5  2 2-.SX4   ,J(J(Zfr