o &gk.@sddlZddlZddlZddlZddlZddlZeeZe dZ ddZ GdddZ Gddde Z Gd d d e ZGd d d e ZGd dde ZGdddeZGddde ZGddde ZGddde ZdS)NzW(?<=^)"([^"]+)"(?=:|$)|(?<=:)"([^"]+)"(?=:|$)|(?<=^)([^:]*)(?=:|$)|(?<=:)([^:]*)(?=:|$)cCst|}dd|DS)zIt works like src.split(":") but with the ability to use a colon if you wrap the word in quotation marks. a:b:c:d -> ['a', 'b', 'c', 'd' a:"b:c":c -> ['a', 'b:c', 'd'] cSs,g|]}|dp|dp|dp|dqS)r).0mrrW/root/parts/websockify/install/lib/python3.10/site-packages/websockify/token_plugins.py s,z%parse_source_args..)_SOURCE_SPLIT_REGEXfindall)srcmatchesrrrparse_source_argss rc@eZdZddZddZdS) BasePlugincCs ||_dSN)sourceselfr rrr__init__s zBasePlugin.__init__cCsdSrrrtokenrrrlookup!szBasePlugin.lookupN)__name__ __module__ __qualname__rrrrrrrs rcs,eZdZfddZddZddZZS)ReadOnlyTokenFilecstj|i|d|_dSr)superr_targetsrargskwargs __class__rrr)s zReadOnlyTokenFile.__init__c stjjrfddtjD}njg}i_d}|D]D}ddt|DD]6}|r_|ds_zt d|\}}| ddj|<Wnt y^tdj|fYnw|d7}q-q dS) Ncsg|] }tjj|qSr)ospathjoinr)rfrrrr /sz3ReadOnlyTokenFile._load_targets..rcSsg|]}|qSr)strip)rlrrrr 7s#z:\s:zSyntax error in %s on line %d)r$r%isdirrlistdirropen readlines startswithresplitr)rsplit ValueErrorloggererror)r cfg_filesindexr'linetoktargetrr(r _load_targets-s&    zReadOnlyTokenFile._load_targetscCs*|jdur |||jvr|j|SdSr)rr=rrrrr@s   zReadOnlyTokenFile.lookup)rrrrr=r __classcell__rrr"rr%s rcseZdZfddZZS) TokenFilecs|t|Sr)r=rrrr"rrrQs zTokenFile.lookup)rrrrr>rrr"rr?Msr?c$eZdZfddZddZZS) TokenFileNamecs$t|tj|stddS)Nz)TokenFileName plugin requires a directory)rrr$r%r- Exceptionrr"rrrZs  zTokenFileName.__init__cCsBtj|}tj|j|}tj|rt| dSdS)Nr,) r$r%basenamer&rexistsr/readr)r3)rrr%rrrr_s  zTokenFileName.lookuprrrrrr>rrr"rrAVs rAc@r) BaseTokenAPIcCs$|jd\}}|dd}||gS)Nr,asciiignore)textr3encode)rresphostportrrrprocess_resultos zBaseTokenAPI.process_resultcCs,ddl}||j|}|jr||SdS)Nr)requestsgetrokrO)rrrPrLrrrrts  zBaseTokenAPI.lookupN)rrrrOrrrrrrGhs rGc@eZdZddZdS) JSONTokenApicCs|}|d|dfS)NrMrN)json)rrL resp_jsonrrrrOszJSONTokenApi.process_resultN)rrrrOrrrrrT rTc@rS) JWTTokenApic Cszddlm}m}ddl}|}zt|jd }|}Wdn1s'wYWntyJ}zt dt |WYd}~WdSd}~wwz| |Wnz |j |dddWn t dYYWdSYzS|j||d }||j} d | vr|j||jd }||j} d | vrt| d krt d WWdSd | vrt| d krt dWWdS| d| dfWWSty}zt dt |WYd}~WdSd}~wwtyt dYdSw)Nr)jwtjwkrbzError loading key file: %sutf-8oct)kktyz#Failed to correctly parse key data!)keyrYencnbfzToken can not be used yet!expzToken has expired!rMrNzFailed to parse token: %szGpackage jwcrypto not found, are you sure you've installed it correctly?)jwcryptorYrZrUJWKr/rrErBr6r7strimport_from_pem import_keydecodeJWTloadsheaderclaimstimewarning ImportError) rrrYrZrUr`key_filekey_datae parsed_headerparsedrrrrs^         zJWTTokenApi.lookupN)rrrrrrrrrXrWrXc@s eZdZdZddZddZdS) TokenRedisaToken plugin based on the Redis in-memory data store. The token source is in the format: host[:port[:db[:password[:namespace]]]] where port, db, password and namespace are optional. If port or db are left empty they will take its default value, ie. 6379 and 0 respectively. If your redis server is using the default port (6379) then you can use: my-redis-host In case you need to authenticate with the redis server and you are using the default database and port you can use: my-redis-host:::verysecretpass You can also specify a namespace. In this case, the tokens will be stored in the format '{namespace}:{token}' my-redis-host::::my-app-namespace Or if your namespace is nested, you can wrap it in quotes: my-redis-host::::"first-ns:second-ns" In the more general case you will use: my-redis-host:6380:1:verysecretpass:my-app-namespace The TokenRedis plugin expects the format of the target in one of these two formats: - JSON {"host": "target-host:target-port"} - Plain text target-host:target-port Prepare data with: redis-cli set my-token '{"host": "127.0.0.1:5000"}' Verify with: redis-cli --raw get my-token Spawn a test "server" using netcat nc -l 5000 -v Note: This Token Plugin depends on the 'redis' module, so you have to install it before using this plugin: pip install redis cCszddl}WntytdtYnwd|_d|_d|_d|_ zt |}t |dkr6|d|_ n~t |dkrI|\|_ |_|jsHd|_nkt |dkrd|\|_ |_|_|js]d|_|jscd|_nPt |dkr|\|_ |_|_|_|jszd|_|jsd|_|jsd|_n-t |d kr|\|_ |_|_|_|_ |jsd|_|jsd|_|jsd|_|j sd|_ nt t|j|_t|j|_|j r|j d 7_ td |j |jfWdSt ytd |tYdSw) NrzUnable to load redis moduleirrrr,z&TokenRedis backend initialized (%s:%s)zpThe provided --token-source='%s' is not in the expected format [:[:[:[:]]]])redisrpr6r7sysexit_port_db _password _namespacerlen_serverr5intinfo)rr rzfieldsrrrrsx               zTokenRedis.__init__c CsHzddl}WntytdtYnwtd||j|j|j |j |j d}| |j |}|dur;dS|d}td||drzt|}|dd \}}Wn8tyotd |YdStytd |YdSwtd |r|d \}}n td |dStd||f||gS)NrzFpackage redis not found, are you sure you've installed them correctly?zresolving token '%s')rMrNdbpasswordr\zresponse from redis : %s{rMr,zUnable to decode JSON token: %sz+Unable to find 'host' key in JSON token: %sz\S+:\S+zUnable to parse token: %szhost: %s, port: %s)rzrpr6r7r{r|rRedisrr}r~rrQrrir)debugr1rUrkr3r5KeyErrorr2match) rrrzclientstuff responseStrcomborMrNrrrr8sH          zTokenRedis.lookupN)rrr__doc__rrrrrrrvs; :rvcr@)UnixDomainSocketDirectorycs&tj|i|tj|j|_dSr)rrr$r%abspathr _dir_pathrr"rrr^sz"UnixDomainSocketDirectory.__init__c Csz=ddl}tj|jsWdStjtj|j|}||js$WdStj|s-WdS| t|j s9WdSd|gWSt yY}zt dt|WYd}~dSd}~ww)Nr unix_socketz$Error finding unix domain socket: %s)statr$r%r-rrr&r1rDS_ISSOCKst_moderBr6r7rf)rrruds_pathrsrrrrbs"   z UnixDomainSocketDirectory.lookuprFrrr"rr]s r)loggingr$r{rnr2rU getLoggerrr6compiler rrrr?rArGrTrXrvrrrrrs*  (  :