o 7?e*@sJdZddlZddlmZddlZddlZddlZddlm Z ddl m Z ddl m Z ddl m Z ddl mZeeZee jdZesKee jdZd eZd ee jd Zd Zd ZeeiZz eeddZWn eywdZYnwd Z dZ!ddZ"ddZ#edfddZ$eddddfddZ%ddZ&d"ddZ'd#d d!Z(dS)$zProvides helper methods for talking to the Compute Engine metadata server. See https://cloud.google.com/compute/docs/metadata for more details. N)urljoin)_helpers)environment_vars) exceptions)metricszmetadata.google.internalzhttp://{}/computeMetadata/v1/z http://{}z169.254.169.254zmetadata-flavorZGoogleZGCE_METADATA_TIMEOUTz/sys/class/dmi/id/product_namecCs t|rdStjdkr dStS)aChecks to see if the code runs on Google Compute Engine Args: request (google.auth.transport.Request): A callable used to make HTTP requests. Returns: bool: True if the code runs on Google Compute Engine, False otherwise. TntF)pingosnamedetect_gce_residency_linuxrequestre/home/www/facesmatcher.com/pyenv/lib/python3.10/site-packages/google/auth/compute_engine/_metadata.py is_on_gceBs   rcCsZzttd}|}Wdn1swYWn ty'YdSw|tS)zDetect Google Compute Engine residency by smbios check on Linux Returns: bool: True if the GCE product name file is detected, False otherwise. rNF)open_GCE_PRODUCT_NAME_FILEreadstrip Exception startswith_GOOGLE)Zfile_objcontentrrrr Ws   r c Csd}t}t|tj<||krPz|td||d}|jt}|j t j ko)|t kWSt jyK}ztd|d|||d7}WYd}~nd}~ww||ksdS)aChecks to see if the metadata server is available. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. timeout (int): How long to wait for the metadata server to respond. retry_count (int): How many times to attempt connecting to metadata server using above timeout. Returns: bool: True if the metadata server is reachable, False otherwise. rGET)urlmethodheaderstimeoutJCompute Engine Metadata server unavailable on attempt %s of %s. Reason: %sNF)_METADATA_HEADERScopyrZmds_pingAPI_CLIENT_HEADER_METADATA_IP_ROOTrget_METADATA_FLAVOR_HEADERstatus http_clientOK_METADATA_FLAVOR_VALUErTransportError_LOGGERwarning)rr retry_countretriesrresponseZmetadata_flavorerrrr gs0  r Fc CsHt||}|dur in|}t} |r| ||rd|d<t||} d} | |krYz || d| d} WqatjyT} zt d| d|| | d7} WYd} ~ nd} ~ ww| |ks*td | | j t j krt| j}t| jd d krzt|WSty}z td |}||d}~ww|Std | | j | j| )abFetch a resource from the metadata server. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. path (str): The resource to retrieve. For example, ``'instance/service-accounts/default'``. root (str): The full path to the metadata server root. params (Optional[Mapping[str, str]]): A mapping of query parameter keys to values. recursive (bool): Whether to do a recursive query of metadata. See https://cloud.google.com/compute/docs/metadata#aggcontents for more details. retry_count (int): How many times to attempt connecting to metadata server using above timeout. headers (Optional[Mapping[str, str]]): Headers for the request. Returns: Union[Mapping, str]: If the metadata server returns JSON, a mapping of the decoded JSON is return. Otherwise, the response content is returned as a string. Raises: google.auth.exceptions.TransportError: if an error occurred while retrieving metadata. Ntrue recursiverr)rrrr r!zqFailed to retrieve {} from the Google Compute Engine metadata service. Compute Engine Metadata server unavailablez content-typezapplication/jsonzMReceived invalid JSON from the Google Compute Engine metadata service: {:.20}z^Failed to retrieve {} from the Google Compute Engine metadata service. Status: {} Response: {})rr"r#updaterZ update_queryrr,r-r.formatr(r)r* from_bytesdataZparse_content_typerjsonloads ValueError)rpathrootparamsr5r/rbase_urlZ query_paramsZheaders_to_userr0r1r2rZ caught_excnew_excrrrr&sh #      r&cCs t|dS)aOGet the Google Cloud Project ID from the metadata server. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. Returns: str: The project ID Raises: google.auth.exceptions.TransportError: if an error occurred while retrieving metadata. zproject/project-id)r&r rrrget_project_ids rBdefaultcCsd|}t||ddidS)aGet information about a service account from the metadata server. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. service_account (str): The string 'default' or a service account email address. The determines which service account for which to acquire information. Returns: Mapping: The service account's information, for example:: { 'email': '...', 'scopes': ['scope', ...], 'aliases': ['default', '...'] } Raises: google.auth.exceptions.TransportError: if an error occurred while retrieving metadata. zinstance/service-accounts/{0}/r5r4)r?)r7r&)rservice_accountr=rrrget_service_account_infos rEcCsr|rt|ts d|}d|i}nd}tjti}d|}t||||d}t t j |dd}|d|fS) aGet the OAuth 2.0 access token for a service account. Args: request (google.auth.transport.Request): A callable used to make HTTP requests. service_account (str): The string 'default' or a service account email address. The determines which service account for which to acquire an access token. scopes (Optional[Union[str, List[str]]]): Optional string or list of strings with auth scopes. Returns: Tuple[str, datetime]: The access token and its expiration. Raises: google.auth.exceptions.TransportError: if an error occurred while retrieving metadata. ,scopesNz#instance/service-accounts/{0}/token)r?rZ expires_in)secondsZ access_token) isinstancestrjoinrr$Ztoken_request_access_token_mdsr7r&rutcnowdatetime timedelta)rrDrGr?Zmetrics_headerr=Z token_jsonZ token_expiryrrrget_service_account_token#s       rO)rC)rCN))__doc__rM http.clientclientr)r:loggingr urllib.parserZ google.authrrrr getLogger__name__r-getenvZGCE_METADATA_HOSTZ_GCE_METADATA_HOSTZGCE_METADATA_ROOTr7Z_METADATA_ROOTZGCE_METADATA_IPr%r'r+r"intZ_METADATA_DEFAULT_TIMEOUTr<rrrr r r&rBrErOrrrrsV          3 ^