KedZddlZddlZddlZddlZddlZddlZddlZddlm Z ddl m Z ddl m Z ddlmZmZdZdd Zd Ze dd Zdd ZdS)z- Password generation for the Jupyter Server. N)contextmanager)jupyter_config_dir)Config)ConfigFileNotFoundJSONFileConfigLoader argon2c|ktdD]J}tjd}tjd}||kr|}n(tjddKd}t ||d krHd dl}|d d d }||}d||fStj |} dttzdztjdtzz} | |d| dzd|| | fS)aGenerate hashed password and salt for use in server configuration. In the server configuration, set `c.ServerApp.password` to the generated string. Parameters ---------- passphrase : str Password to hash. If unspecified, the user is asked to input and verify a password. algorithm : str Hashing algorithm to use (e.g, 'sha1' or any argument supported by :func:`hashlib.new`, or 'argon2'). Returns ------- hashed_passphrase : str Hashed password, in the format 'hash_algorithm:salt:passphrase_hash'. Examples -------- >>> passwd('mypassword') # doctest: +ELLIPSIS 'argon2:...' NzEnter password: zVerify password: zPasswords do not match. stacklevelz'No matching passwords found. Giving up.r ri( ) memory_cost time_cost parallelism:z%0xutf-8ascii)rangegetpasswarningswarn ValueErrorr PasswordHasherhashjoinhashlibnewstrsalt_lenrandom getrandbitsupdateencode hexdigest) passphrase algorithm_p0p1msgr phh_phhsalts *> >??? 88Yakkmm4 5 55cZ|drQddl}ddl}|} ||dd|S#|jj$rYdSwxYw |dd\}}}n#ttf$rYdSwxYw tj |}n#t$rYdSwxYwt|dkrdS| |d|d z||kS) auVerify that a given passphrase matches its hashed version. Parameters ---------- hashed_passphrase : str Hashed password, in the format returned by `passwd`. passphrase : str Passphrase to validate. Returns ------- valid : bool True if the passphrase matches the hash. Examples -------- >>> myhash = passwd('mypassword') >>> passwd_check(myhash, 'mypassword') True >>> passwd_check(myhash, 'otherpassword') False >>> passwd_check('sha1:0e112c3ddfce:a68df677475c2b47b6e86d0467eec97ac5f4b85a', ... 'mypassword') True zargon2:rNFrr rr) startswithr argon2.exceptionsrverify exceptionsVerificationErrorsplitr TypeErrorr!r"lenr'r(r))hashed_passphraser*r r0r+r3 pw_digestr2s r4 passwd_checkrCPsi8##I..       " " $ $ 99.qrr2J?? ? 2   55 %6%<%*> >??? ;;==I %%s5AA$#A$(BBBB11 B?>B?c#.K|,tjtd}tjtj|dt tj|tj|} |}n#t$rt}YnwxYw|Vt|dd5}| tj|d dddn #1swxYwY tj||dS#t $r9t#j}t'jd |d |t*d YdSwxYw) zContext manager that can be used to modify a config object On exit of the context manager, the config will be written back to disk, by default with user-only (600) permissions. Nzjupyter_server_config.jsonT)exist_okwutf8)encodingr )indentzFailed to set permissions on z: r )ospathr rmakedirsdirnamerbasename load_configrropenwritejsondumpschmod Exception traceback format_excrrRuntimeWarning) config_filemodeloaderconfigftbs r4persist_configr`sgll#5#7#79UVV K ,,t<<<< !"'"2"2;"?"?Q\A]A] ^ ^F##%%  LLL k3 0 0 0.A  6!,,,---...............  d#####     ! # # @K @ @B @ @.]^        s6/CCC8*D..D25D2:E?FFct|}t|5}||j_dddn #1swxYwY|S)z:Ask user for password, store it in JSON configuration fileN)r5r`IdentityProviderhashed_password)passwordrZrcr]s r4 set_passwordresX&&O  $ $B2A/BBBBBBBBBBBBBBB s 8<<)Nr )NrD)NN)__doc__rr!rSrKr%rWr contextlibrjupyter_core.pathsrtraitlets.configrtraitlets.config.loaderrrr$r5rCr`rer6r4rls  %%%%%%111111######LLLLLLLL 76767676t6&6&6&r    @r6