U #FZh@s8dZddlmZddlmZddZddZdd Zd S) zUtilites for mutual TLS.) exceptions) _mtls_helpercCs,ttjdk rdSttjdk r(dSdS)zCheck if default client SSL credentials exists on the device. Returns: bool: indicating if the default client cert source exists. NTF)rZ_check_config_pathZCONTEXT_AWARE_METADATA_PATHZ&CERTIFICATE_CONFIGURATION_DEFAULT_PATHrra/home/aprabhat/apps/x.techxrdev.in/venv/lib/python3.8/site-packages/google/auth/transport/mtls.pyhas_default_client_cert_sources rcCststddd}|S)aGet a callback which returns the default client SSL credentials. Returns: Callable[[], [bytes, bytes]]: A callback which returns the default client certificate bytes and private key bytes, both in PEM format. Raises: google.auth.exceptions.DefaultClientCertSourceError: If the default client SSL credentials don't exist or are malformed. z(Default client cert source doesn't existc SsTzt\}}}Wn8tttfk rJ}zt|}||W5d}~XYnX||fS)N)rZget_client_cert_and_keyOSError RuntimeError ValueErrorrMutualTLSChannelError)_ cert_bytes key_bytes caught_excnew_excrrrcallback:s  z,default_client_cert_source..callbackrrr )rrrrdefault_client_cert_source*s  rcs"tstdfdd}|S)atGet a callback which returns the default encrpyted client SSL credentials. Args: cert_path (str): The cert file path. The default client certificate will be written to this file when the returned callback is called. key_path (str): The key file path. The default encrypted client key will be written to this file when the returned callback is called. Returns: Callable[[], [str, str, bytes]]: A callback which generates the default client certificate, encrpyted private key and passphrase. It writes the certificate and private key into the cert_path and key_path, and returns the cert_path, key_path and passphrase bytes. Raises: google.auth.exceptions.DefaultClientCertSourceError: If any problem occurs when loading or saving the client certificate and key. z2Default client encrypted cert source doesn't existc szXtjdd\}}}}td}||W5QRXtd}||W5QRXWn8tjtfk r}zt|}||W5d}~XYnX|fS)NT)Zgenerate_encrypted_keywb)rZget_client_ssl_credentialsopenwriterZClientCertErrorrr )r r r Zpassphrase_bytes cert_filekey_filerr cert_pathkey_pathrrr^s    z6default_client_encrypted_cert_source..callbackr)rrrrrr$default_client_encrypted_cert_sourceFs rN)__doc__Z google.authrZgoogle.auth.transportrrrrrrrrs