google/auth/_cloud_sdk.py - platform/external/python/google-auth-library-python - Git at Google

 # Copyright 2015 Google Inc.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #      http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.

 """Helpers for reading the Google Cloud SDK's configuration."""

 import io
 import os

 import six
 from six.moves import configparser

 from google.auth import environment_vars
 import google.oauth2.credentials

 # The Google OAuth 2.0 token endpoint. Used for authorized user credentials.
 _GOOGLE_OAUTH2_TOKEN_ENDPOINT = 'https://accounts.google.com/o/oauth2/token'

 # The ~/.config subdirectory containing gcloud credentials.
 _CONFIG_DIRECTORY = 'gcloud'
 # Windows systems store config at %APPDATA%\gcloud
 _WINDOWS_CONFIG_ROOT_ENV_VAR = 'APPDATA'
 # The name of the file in the Cloud SDK config that contains default
 # credentials.
 _CREDENTIALS_FILENAME = 'application_default_credentials.json'
 # The config section and key for the project ID in the cloud SDK config.
 _PROJECT_CONFIG_SECTION = 'core'
 _PROJECT_CONFIG_KEY = 'project'


 def get_config_path():
     """Returns the absolute path the the Cloud SDK's configuration directory.

     Returns:
         str: The Cloud SDK config path.
     """
     # If the path is explicitly set, return that.
     try:
         return os.environ[environment_vars.CLOUD_SDK_CONFIG_DIR]
     except KeyError:
         pass

     # Non-windows systems store this at ~/.config/gcloud
     if os.name != 'nt':
         return os.path.join(
             os.path.expanduser('~'), '.config', _CONFIG_DIRECTORY)
     # Windows systems store config at %APPDATA%\gcloud
     else:
         try:
             return os.path.join(
                 os.environ[_WINDOWS_CONFIG_ROOT_ENV_VAR],
                 _CONFIG_DIRECTORY)
         except KeyError:
             # This should never happen unless someone is really
             # messing with things, but we'll cover the case anyway.
             drive = os.environ.get('SystemDrive', 'C:')
             return os.path.join(
                 drive, '\\', _CONFIG_DIRECTORY)


 def get_application_default_credentials_path():
     """Gets the path to the application default credentials file.

     The path may or may not exist.

     Returns:
         str: The full path to application default credentials.
     """
     config_path = get_config_path()
     return os.path.join(config_path, _CREDENTIALS_FILENAME)


 def _get_active_config(config_path):
     """Gets the active config for the Cloud SDK.

     Args:
         config_path (str): The Cloud SDK's config path.

     Returns:
         str: The active configuration name.
     """
     active_config_filename = os.path.join(config_path, 'active_config')

     if not os.path.isfile(active_config_filename):
         return 'default'

     with io.open(active_config_filename, 'r', encoding='utf-8') as file_obj:
         active_config_name = file_obj.read().strip()

     return active_config_name


 def _get_config_file(config_path, config_name):
     """Returns the full path to a configuration's config file.

     Args:
         config_path (str): The Cloud SDK's config path.
         config_name (str): The configuration name.

     Returns:
         str: The config file path.
     """
     return os.path.join(
         config_path, 'configurations', 'config_{}'.format(config_name))


 def get_project_id():
     """Gets the project ID from the Cloud SDK's configuration.

     Returns:
         Optional[str]: The project ID.
     """
     config_path = get_config_path()
     active_config = _get_active_config(config_path)
     config_file = _get_config_file(config_path, active_config)

     if not os.path.isfile(config_file):
         return None

     config = configparser.RawConfigParser()

     try:
         config.read(config_file)

         if config.has_section(_PROJECT_CONFIG_SECTION):
             return config.get(
                 _PROJECT_CONFIG_SECTION, _PROJECT_CONFIG_KEY)

     except configparser.Error:
         return None


 def load_authorized_user_credentials(info):
     """Loads an authorized user credential.

     Args:
         info (Mapping[str, str]): The loaded file's data.

     Returns:
         google.oauth2.credentials.Credentials: The constructed credentials.

     Raises:
         ValueError: if the info is in the wrong format or missing data.
     """
     keys_needed = set(('refresh_token', 'client_id', 'client_secret'))
     missing = keys_needed.difference(six.iterkeys(info))

     if missing:
         raise ValueError(
             'Authorized user info was not in the expected format, missing '
             'fields {}.'.format(', '.join(missing)))

     return google.oauth2.credentials.Credentials(
         None,  # No access token, must be refreshed.
         refresh_token=info['refresh_token'],
         token_uri=_GOOGLE_OAUTH2_TOKEN_ENDPOINT,
         client_id=info['client_id'],
         client_secret=info['client_secret'])
	# Copyright 2015 Google Inc.
	#
	# Licensed under the Apache License, Version 2.0 (the "License");
	# you may not use this file except in compliance with the License.
	# You may obtain a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing, software
	# distributed under the License is distributed on an "AS IS" BASIS,
	# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	# See the License for the specific language governing permissions and
	# limitations under the License.

	"""Helpers for reading the Google Cloud SDK's configuration."""

	import io
	import os

	import six
	from six.moves import configparser

	from google.auth import environment_vars
	import google.oauth2.credentials

	# The Google OAuth 2.0 token endpoint. Used for authorized user credentials.
	_GOOGLE_OAUTH2_TOKEN_ENDPOINT = 'https://accounts.google.com/o/oauth2/token'

	# The ~/.config subdirectory containing gcloud credentials.
	_CONFIG_DIRECTORY = 'gcloud'
	# Windows systems store config at %APPDATA%\gcloud
	_WINDOWS_CONFIG_ROOT_ENV_VAR = 'APPDATA'
	# The name of the file in the Cloud SDK config that contains default
	# credentials.
	_CREDENTIALS_FILENAME = 'application_default_credentials.json'
	# The config section and key for the project ID in the cloud SDK config.
	_PROJECT_CONFIG_SECTION = 'core'
	_PROJECT_CONFIG_KEY = 'project'


	def get_config_path():
	"""Returns the absolute path the the Cloud SDK's configuration directory.

	Returns:
	str: The Cloud SDK config path.
	"""
	# If the path is explicitly set, return that.
	try:
	return os.environ[environment_vars.CLOUD_SDK_CONFIG_DIR]
	except KeyError:
	pass

	# Non-windows systems store this at ~/.config/gcloud
	if os.name != 'nt':
	return os.path.join(
	os.path.expanduser('~'), '.config', _CONFIG_DIRECTORY)
	# Windows systems store config at %APPDATA%\gcloud
	else:
	try:
	return os.path.join(
	os.environ[_WINDOWS_CONFIG_ROOT_ENV_VAR],
	_CONFIG_DIRECTORY)
	except KeyError:
	# This should never happen unless someone is really
	# messing with things, but we'll cover the case anyway.
	drive = os.environ.get('SystemDrive', 'C:')
	return os.path.join(
	drive, '\\', _CONFIG_DIRECTORY)


	def get_application_default_credentials_path():
	"""Gets the path to the application default credentials file.

	The path may or may not exist.

	Returns:
	str: The full path to application default credentials.
	"""
	config_path = get_config_path()
	return os.path.join(config_path, _CREDENTIALS_FILENAME)


	def _get_active_config(config_path):
	"""Gets the active config for the Cloud SDK.

	Args:
	config_path (str): The Cloud SDK's config path.

	Returns:
	str: The active configuration name.
	"""
	active_config_filename = os.path.join(config_path, 'active_config')

	if not os.path.isfile(active_config_filename):
	return 'default'

	with io.open(active_config_filename, 'r', encoding='utf-8') as file_obj:
	active_config_name = file_obj.read().strip()

	return active_config_name


	def _get_config_file(config_path, config_name):
	"""Returns the full path to a configuration's config file.

	Args:
	config_path (str): The Cloud SDK's config path.
	config_name (str): The configuration name.

	Returns:
	str: The config file path.
	"""
	return os.path.join(
	config_path, 'configurations', 'config_{}'.format(config_name))


	def get_project_id():
	"""Gets the project ID from the Cloud SDK's configuration.

	Returns:
	Optional[str]: The project ID.
	"""
	config_path = get_config_path()
	active_config = _get_active_config(config_path)
	config_file = _get_config_file(config_path, active_config)

	if not os.path.isfile(config_file):
	return None

	config = configparser.RawConfigParser()

	try:
	config.read(config_file)

	if config.has_section(_PROJECT_CONFIG_SECTION):
	return config.get(
	_PROJECT_CONFIG_SECTION, _PROJECT_CONFIG_KEY)

	except configparser.Error:
	return None


	def load_authorized_user_credentials(info):
	"""Loads an authorized user credential.

	Args:
	info (Mapping[str, str]): The loaded file's data.

	Returns:
	google.oauth2.credentials.Credentials: The constructed credentials.

	Raises:
	ValueError: if the info is in the wrong format or missing data.
	"""
	keys_needed = set(('refresh_token', 'client_id', 'client_secret'))
	missing = keys_needed.difference(six.iterkeys(info))

	if missing:
	raise ValueError(
	'Authorized user info was not in the expected format, missing '
	'fields {}.'.format(', '.join(missing)))

	return google.oauth2.credentials.Credentials(
	None, # No access token, must be refreshed.
	refresh_token=info['refresh_token'],
	token_uri=_GOOGLE_OAUTH2_TOKEN_ENDPOINT,
	client_id=info['client_id'],
	client_secret=info['client_secret'])