&g4dZddlmZddlmZdZdZdZdS)zUtilites for mutual TLS.) exceptions) _mtls_helperctjtj dStjtj dSdS)zCheck if default client SSL credentials exists on the device. Returns: bool: indicating if the default client cert source exists. NTF)r_check_config_pathCONTEXT_AWARE_METADATA_PATH&CERTIFICATE_CONFIGURATION_DEFAULT_PATHL/var/www/api/venv/lib/python3.11/site-packages/google/auth/transport/mtls.pyhas_default_client_cert_sourcer sP ' (PQQ t'  ?    t 5r cPtstjdd}|S)aGet a callback which returns the default client SSL credentials. Returns: Callable[[], [bytes, bytes]]: A callback which returns the default client certificate bytes and private key bytes, both in PEM format. Raises: google.auth.exceptions.DefaultClientCertSourceError: If the default client SSL credentials don't exist or are malformed. z(Default client cert source doesn't existc tj\}}}n6#tttf$r}t j|}||d}~wwxYw||fS)N)rget_client_cert_and_keyOSError RuntimeError ValueErrorrMutualTLSChannelError)_ cert_bytes key_bytes caught_excnew_excs r callbackz,default_client_cert_source..callback:si *'3'K'M'M $Az99z2 * * * 6zBBGz ) *9$$sA AA r rr)rs r default_client_cert_sourcer*s@ * + + . 6   %%% Or cZtstjdfd}|S)atGet a callback which returns the default encrpyted client SSL credentials. Args: cert_path (str): The cert file path. The default client certificate will be written to this file when the returned callback is called. key_path (str): The key file path. The default encrypted client key will be written to this file when the returned callback is called. Returns: Callable[[], [str, str, bytes]]: A callback which generates the default client certificate, encrpyted private key and passphrase. It writes the certificate and private key into the cert_path and key_path, and returns the cert_path, key_path and passphrase bytes. Raises: google.auth.exceptions.DefaultClientCertSourceError: If any problem occurs when loading or saving the client certificate and key. z2Default client encrypted cert source doesn't existc tjd\}}}}td5}||dddn #1swxYwYt d5}||dddn #1swxYwYn5#tjt f$r}t j|}||d}~wwxYw |fS)NT)generate_encrypted_keywb)rget_client_ssl_credentialsopenwriterClientCertErrorrr) rrrpassphrase_bytes cert_filekey_filerr cert_pathkey_paths r rz6default_client_encrypted_cert_source..callback^sd * 7tTTT   i&& ,) +++ , , , , , , , , , , , , , , ,h%% *y))) * * * * * * * * * * * * * * **G4 * * * 6zBBGz ) *($444s^*BA BABAB*B  B BBBBC .CC r)r'r(rs`` r $default_client_encrypted_cert_sourcer)FsQ& * + + . @   555555$ Or N)__doc__ google.authrgoogle.auth.transportrr rr)r r r r-sh""""""......*8*****r