Uњh,SSKJr SSKJr SSKJr SSKJr SSKJ r SSK J r SSK J r SSKJr SS KJr SS KJr SS KJr SS KJr S rSrSrSrSrSrSrSrg))urlparse)cache)ImproperlyConfigured)Http404)reverse urlencode)OneLogin_Saml2_Auth)OneLogin_Saml2_Constants) OneLogin_Saml2_IdPMetadataParser) get_adapter) SocialApp) SAMLProviderc[5nURU[RUS9$![R a [ SU35ef=f)N)provider client_idz"no SocialApp found with client_id=)r get_appridr DoesNotExistr)requestorganization_slugadapters eD:\Anime\Ugyen\janka_web_project\venv\Lib\site-packages\allauth/socialaccount/providers/saml/utils.pyget_app_or_404rs_mGP loo9J    ! !P:;L:MNOOPs +#AcUR5(aSOSURSURSURR5URR5S.nU$)Nonoff HTTP_HOST PATH_INFO)https http_host script_nameget_data post_data) is_secureMETAGETcopyPOST)rresults rprepare_django_requestr+s[ **,,%\\+.||K0KK$$&\\&&( F McFUR[SU/S95nUR[SU/S95nUR[SU/S95nURS05nURS5nU=(d UU[RS.U[R S.S.nURS 05n U RS 5bU S US 'U RS 5(aU S US 'U RS 5bU S US'U RS5bU SUS'U$)Nsaml_acs)argssaml_sls saml_metadatasp entity_id)urlbinding)entityIdassertionConsumerServicesingleLogoutServiceadvancedx509cert x509cert_new x509certNew private_key privateKeyname_id_format NameIDFormat)build_absolute_urirgetr BINDING_HTTP_POSTBINDING_HTTP_REDIRECT) rprovider_configorgacs_urlsls_url metadata_url _sp_config sp_entity_id sp_configavds rbuild_sp_configrN(s5((3%)HIG((3%)HIG--goSE.RSL!$$T2.J>>+.L 0L/AA% /EE I   j" -C wwz& #J * ww~#&~#6 -  ww})"%m"4 , ww ,$'(8$9 .! r,cUSnUSnSUSU3n[R"U5nUcN[R"UUURSS5S9n[R"UUURSS 55 U$) NrIr3zsaml.metadata..metadata_request_timeout )r3timeoutmetadata_cache_timeouti@8)rrBr parse_remoteset) idp_configrIr3 cache_key saml_configs rfetch_metadata_url_configrZLsn-L;'I a {;I))I&K6CC NN#=rB    NN3[ A r,cURS05n0SURSS5_SURS[R5_SURSS5_S URS S5_S S_S URS [R5_SURSS5_SURSS5_SURSS5_SURSS5_SURSS5_SURSS5_SURSS5_SURSS5_SURS S5_S!URS"S5_S#URS$S5_URS%S5URS&S5S'.EnURS(S5US).nURS*5nU(aXeS+'URS,5nU(aXuS,'URS-5nUc [ S.5eURS/5n U (a[ U5n U S-US-'O6US0US1S2US30S4.US-'URS55n U (a S2U 0US-S6'[ XU5US7'U$)8Nr9authnRequestsSignedauthn_request_signedFdigestAlgorithmdigest_algorithmlogoutRequestSignedlogout_request_signedlogoutResponseSignedlogout_response_signedrequestedAuthnContextsignatureAlgorithmsignature_algorithm signMetadatametadata_signedwantAssertionsEncryptedwant_assertion_encryptedwantAssertionsSignedwant_assertion_signedwantMessagesSignedwant_message_signednameIdEncryptedname_id_encryptedwantNameIdEncryptedwant_name_id_encryptedallowSingleLabelDomainsallow_single_label_domainsrejectDeprecatedAlgorithmreject_deprecated_algorithmT wantNameId want_name_idwantAttributeStatementwant_attribute_statementallowRepeatAttributeNameallow_repeat_attribute_namemetadata_valid_untilmetadata_cache_duration)metadataValidUntilmetadataCacheDurationstrict)rsecuritycontact_person contactPerson organizationidpz `idp` missingrIr3r:r4sso_url)r6r:singleSignOnServiceslo_urlr8r2)rBr SHA256 RSA_SHA256rrZrN) rrErFrMsecurity_configrYrrrrI meta_configrs rbuild_saml_configr_s   j" -Csww'=uE377#57O7V7VW sww'>F (@% H    cgg !#;#F#F   159 "377+Eu#M (? G cgg&;UC 377#6> sww'?G "377+G#O $SWW-JD%Q!" cggne4#$ !#''*Dd"K%& #CGG,I4$P'("gg&*L/4 (/ EK(J$)3y>#: E '')$ 9>8HK 4 5'#FK r,c SU0n[U5$)Nstater)rparamss rencode_relay_statersu F V r,cSnU(a`[U5nUR(dBUR(d1UR(a"URR S5(aUnU$)zAccording to the spec, RelayState need not be a URL, yet, ``onelogin.saml2` exposes it as ``return_to -- The target URL the user should be redirected to after login``. Also, for an IdP initiated login sometimes a URL is used. N/)rschemenetlocpath startswith) relay_statenext_urlpartss rdecode_relay_statersH H% <<5<rsT!#7'3=O52FP !H&8v r,