v^0@s%ddlZddlZddlZddlZddlmZmZddlmZddlm Z ddl m Z ddl m Z ddlmZmZmZddlmZdd lmZdd lmZejejZGd d d eZGd ddeZGdddZdS)N)datetime timedelta)settings)SuspiciousSession)SuspiciousOperation)timezone)constant_time_compareget_random_string salted_hmac)RemovedInDjango40Warning) import_string)LANGUAGE_SESSION_KEYc@seZdZdZdS) CreateErrorz Used internally as a consistent exception type to catch from save (see the docstring for SessionBase.save() for details). N)__name__ __module__ __qualname____doc__rrG/tmp/pip-build-8lau8j11/django/django/contrib/sessions/backends/base.pyrs rc@seZdZdZdS) UpdateErrorzF Occurs if Django tries to update a session that was deleted. N)rrrrrrrrrs rc@sJeZdZdZdZdZeZdddZddZ d d Z d d Z d dZ dddZ eddZddZddZddZddZddZddZdd Zd!d"Zd#d$Zd%d&Zd'd(Zd)d*Zd+d,Zd-d.Zd/d0Zd1d2Zd3d4Zd5d6Z d7d8Z!e"e Z#e"e e!Z$d9d:d;Z%e"e%Z&d<d=Z'd>d?Z(d@dAZ)dBdCZ*dDdEZ+dFdGZ,dHdIZ-dJdKZ.dLdMZ/d9dNdOZ0ddPdQZ1dRdSZ2e3dTdUZ4dS)V SessionBasez- Base class for all Session classes. Z testcookieZworkedNcCs1||_d|_d|_ttj|_dS)NF) _session_keyaccessedmodifiedr rZSESSION_SERIALIZER serializer)self session_keyrrr__init__/s   zSessionBase.__init__cCs ||jkS)N)_session)rkeyrrr __contains__5szSessionBase.__contains__cCs-|tkr"tjdtdd|j|S)NzThe user language will no longer be stored in request.session in Django 4.0. Read it from request.COOKIES[settings.LANGUAGE_COOKIE_NAME] instead. stacklevel)r warningswarnr r)rrrrr __getitem__8s   zSessionBase.__getitem__cCs||j|Z expected_hasheloggerrrrr=mszSessionBase.decodecCs|jj|d|_dS)NT)rupdater)rZdict_rrrrLszSessionBase.updatecCs ||jkS)N)r)rrrrrhas_keyszSessionBase.has_keycCs |jjS)N)rkeys)rrrrrNszSessionBase.keyscCs |jjS)N)rvalues)rrrrrOszSessionBase.valuescCs |jjS)N)ritems)rrrrrPszSessionBase.itemscCsi|_d|_d|_dS)NT)_session_cacherr)rrrrclears  zSessionBase.clearc Cs3y|j o|j SWntk r.dSYnXdS)zBReturn True when there is no session_key and the session is empty.TN)rrQAttributeError)rrrris_emptys zSessionBase.is_emptycCs-x&tdt}|j|s|SqWdS)z)Return session key that isn't being used. N)r VALID_KEY_CHARSexists)rrrrr_get_new_session_keysz SessionBase._get_new_session_keycCs%|jdkr|j|_|jS)N)rrX)rrrr_get_or_create_session_keysz&SessionBase._get_or_create_session_keycCs|ot|dkS)z Key must be truthy and at least 8 characters long. 8 characters is an arbitrary lower bound for some minimal key security. )len)rrrrr_validate_session_keysz!SessionBase._validate_session_keycCs|jS)N)_SessionBase__session_key)rrrr_get_session_keyszSessionBase._get_session_keycCs(|j|r||_n d|_dS)zV Validate session key on assignment. Invalid values will set to None. N)r\r])rr&rrr_set_session_keys zSessionBase._set_session_keyFc Cs`d|_y |jSWnBtk rX|jdks9|rEi|_n|j|_YnX|jS)z Lazily load session from storage (unless "no_load" is True, when only an empty dict is stored) and store it in the current instance. TN)rrQrSrload)rZno_loadrrr _get_sessions    zSessionBase._get_sessioncCstjS)N)rZSESSION_COOKIE_AGE)rrrrget_session_cookie_agesz"SessionBase.get_session_cookie_agecKsy|d}Wntk r.tj}YnXy|d}Wn!tk r`|jd}YnX|sq|jSt|ts|S||}|jd|jS)zGet the number of seconds until the session expires. Optionally, this function accepts `modification` and `expiry` keyword arguments specifying the modification and expiry of the session. modificationexpiry_session_expiryiQ) KeyErrorrnowr)rbrErdaysseconds)rkwargsrcrddeltarrrget_expiry_ages    zSessionBase.get_expiry_agecKsy|d}Wntk r.tj}YnXy|d}Wn!tk r`|jd}YnXt|trt|S|p|j}|td|S)zGet session the expiry date (as a datetime object). Optionally, this function accepts `modification` and `expiry` keyword arguments specifying the modification and expiry of the session. rcrdreri)rfrrgr)rErrbr)rrjrcrdrrrget_expiry_dates  zSessionBase.get_expiry_datec Cs]|dkr0y |d=Wntk r+YnXdSt|trOtj|}||ds