A SrSSKrSSKrSSKrSSKrSSKJr SSKJr SSKJ r SSK J r SSK J r SSK Jr SS KJr SS KJr SS KJr SS KJr SSKrSSKrSS KJr SS0r\R:R<R>S\R:R@R>S\R:RBR>\RDRGSSSS50r$S%Sjr%"SS\RL5r'Sr("SS\ RR5r*S&Sjr+"SS\ RR5r,Sr-S r.S!r/S'S"jr0S(S#jr1S&S$jr2g))zHAnthos command library functions and utilities for the anthoscli binary.N)flags) file_parsers)messages)binary_operations) exceptions)log) console_io)store)files) platforms)urllibCOBRA_SILENCE_USAGEtruez2~/.config/google/anthos/kubectl-anthos-config.yamlz>~/Library/Preferences/google/anthos/kubectl-anthos-config.yamlz %APPDATA%googleanthoszkubectl-anthos-config.yamlc[R"[R5nUR [ 5 U(aUR U5 U(aUHnUR U5 M U$)z6Return an env dict to be passed on command invocation.)copydeepcopyosenvironupdateDEFAULT_ENV_ARGSpop) extra_vars exclude_varsenvks :lib/googlecloudsdk/command_lib/anthos/anthoscli_backend.pyGetEnvArgsForCommandr2sM bjj!#** JJz  ggaj *c\rSrSrSrSrg)AnthosAuthException>z?Base Exception for auth issues raised by gcloud anthos surface.N)__name__ __module__ __qualname____firstlineno____doc____static_attributes__r$r rr"r">sGr r"c[RRU5n[RRU5n[RR U5=(d UnX#4$)z=Splits full path into relative(basename) path and parent dir.)rpathnormpathbasenamedirname)r,r-rel_path parent_dirs rRelativePkgPathFromFullPathr2BsJ WW  d #( WW  h '(wwx(4H*  r cx^\rSrSrSrU4SjrS SjrSSjrSrSr SSjr S r S r S r S rU=r$)AnthosCliWrapperJ0Binary operation wrapper for anthoscli commands.c r>S[RRSS90n[[U]"SSUS.UD6 g)N MISSING_EXEC anthosclibinaryr; custom_errorsr$)rMISSING_BINARYformatsuperr4__init__selfkwargsr= __class__s rrAAnthosCliWrapper.__init__MsJ//66k6JM D*C-C;ACr c DASX/nU(aURSU/5 U$)Ngetz --patternextend)rCrepo_uri local_dest file_patternrD exec_argss r _ParseGetArgsAnthosCliWrapper._ParseGetArgsTs+-I \23 r c ASU/nU(aURSU/5 U(aURS5 U(aURSU/5 U(aURS5 U$)Nrz--repo --dry-runz --strategyz --verbose)rJappend)rC local_dirrKstrategydry_runverboserDrNs r_ParseUpdateArgs!AnthosCliWrapper._ParseUpdateArgs]se 9%I(+,{# h/0{# r c ASU/$)Ndescr$)rCrTrDs r_ParseDescribeArgs#AnthosCliWrapper._ParseDescribeArgsus I r c SR[R"U5VVs/sHup#SRX#5PM snn5$s snnf)N,z{}={})joinsix iteritemsr?)rCtagsxys r _ParseTagsAnthosCliWrapper._ParseTagsys9 88cmmD6IJ6IdaW^^A)6IJ KKJsA c 8AUnURS5(dUS- nSU/nU(aURSU/5 U(aURSU/5 U(a"URSURU5/5 U(aURSU/5 U$)N/initz --descriptionz--namez--tagz--url)endswithrJrf) rCrT descriptionnamercinfo_urlrD package_pathrNs r_ParseInitArgsAnthosCliWrapper._ParseInitArgs|s L   % %cl&I56 $'( !678*+ r c ASSUSU/nU$)Napplyz-f --projectr$)rC apply_dirprojectrDrNs r_ParseApplyArgs AnthosCliWrapper._ParseApplyArgss$ ;@I r c ~ASSUSU/nU(aURSU/5 U(aURSU/5 U$)Nexportz-crtz --locationz--output-directoryrI)rCclusterrvlocation output_dirrDrNs r_ParseExportArgs!AnthosCliWrapper._ParseExportArgssH4+w?I h/0,j9: r c lUS:XaUR"S0UD6$US:XaUR"S0UD6$US:XaUR"S0UD6$US:XaUR"S0UD6$US:XaUR"S0UD6$US:XaUR "S0UD6$[ R"SRU55e) NrHrr[rjrsrzz$Invalid Operation [{}] for anthosclir$) rOrXr\rprwr~rInvalidOperationForBinaryr?rCcommandrDs r_ParseArgsForCommand%AnthosCliWrapper._ParseArgsForCommands%    )& ))(  " " ,V ,,&  $ $ .v ..&  *6 **'  ! ! +F ++(  " " ,V ,,  5 5.55g> @@r r$N)NNFF)NNNN)r%r&r'r(r)rArOrXr\rfrprwr~rr* __classcell__rEs@rr4r4JsX8C!% $$$ 0L "&" 4 @@r r4c[R"XS9nSU0n[ R "USS9$![an[SR XS95eSnAff=f)z@Generate a JSON object containing the current gcloud auth token.)allow_account_impersonation auth_tokenzS[RRSS90n[[U]"SSUS.UD6 g)Nr8zkubectl-anthosr:r<r$)rMISSING_AUTH_BINARYr?r@rrArBs rrAAnthosAuthWrapper.__init__sL  ( ( / /7G / HM T+H}H@FHr c[R"[[RR 5R 5$r)r ExpandHomeAndVarsDEFAULT_LOGIN_CONFIG_PATHr OperatingSystemCurrentid)rCs rdefault_config_path%AnthosAuthWrapper.default_config_paths4  " "!)";";"C"C"E"H"HI KKr c  XA S/nU(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURS/5 U(aU(aURSUS U/5 U (aURS U /5 U (aURS U /5 U (aURS /5 U (aURS U /5 U$)Nlogin --cluster --kubeconfigz--login-configz--login-config-cert--userrRz--ldap-usernamez--ldap-passwordz--preferred-authz--serverz--remote-loginz--remote-bootstraprI)rCr{ kube_config login_configlogin_config_certuser ldap_user ldap_passrVpreferred_auth server_url no_browserremote_bootstraprDrNs r_ParseLoginArgs!AnthosAuthWrapper._ParseLoginArgss  I W-. 45(,78-/@AB $'( }%Y i):I FH*N;< J/0()*,.>?@ r c AS/nURSU/5 U(aURSU/5 U(aURSU/5 U$)Ncreate-login-configrz--outputz --merge-fromrI)rCr output_file merge_fromrDrNs r_ParseCreateLoginConfigArgs-AnthosAuthWrapper._ParseCreateLoginConfigArgssT &'I nk23 K01 34 r c AS/nU(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURSU/5 U(aURS U/5 U (aURS U /5 U (aURS U /5 U (aURS U /5 U (aURS U /5 U (aURSU /5 U$)Ntokenz--typerz--aws-sts-regionz --id-tokenz--access-tokenz--access-token-expiryz--refresh-tokenz --client-idz--client-secretz --idp-certificate-authority-dataz--idp-issuer-urlz--kubeconfig-pathrrI)rC token_typer{aws_sts_regionid_tokenraccess_token_expiry refresh_token client_id client_secretidp_certificate_authority_dataidp_issuer_urlkubeconfig_pathrrDrNs r_ParseTokenArgs!AnthosAuthWrapper._ParseTokenArgss?  I*-. W-.*N;< h/0(,78/1DEF)=9: y12)=9:% -/M NP*N;<+_=> $'( r c US:XaUR"S0UD6$US:XaUR"S0UD6$US:XaS/$US:XaUR"S0UD6$[R"SR U55e)Nrrversionrz)Invalid Operation [{}] for kubectl-anthosr$)rrrrrr?rs rr&AnthosAuthWrapper._ParseArgsForCommand7s'  ! ! +F ++ ) )  - - 7 77 I [ G   ! ! +F ++  7 7 5 < #_Base64EncodeLdap..Qs##//&"2"233D3DQ3G"HIr r$)usernamepasswdencs r_Base64EncodeLdaprOsI# XF ##r cSnSnUR5(dgSRX5nSRX5n[R"SSUS9n[R"USS 9n[ X45$) z+Prompt User for Ldap Username and Password.Nrz5Please enter the ldap user for [{}] on cluster [{}]: z9Please enter the ldap password for [{}] on cluster [{}]: c[U5S:$Nrrrds rr%_GetLdapUserAndPass..as #a&1*r z*Error: Invalid username, please try again.) validator error_message prompt_stringc[U5S:$rrrs rrres #a&1*r )validation_callable)IsLdapr?r PromptWithValidatorPromptPasswordr)cluster_config auth_namer{rr user_message pass_messages r_GetLdapUserAndPassrUs))    ++16)+E++16)+E,,$@ ")''(<>) 9 00r c U(dg[RRU5nURS:H=(d URS:HnU(a[R "X=(d SS9nUR [RR:wa/[SRUR UR55eXRU4$[R"U5n[R"U5nXVU4$)afParses config input to determine whether URL or File logic should execute. Determines whether the cluster_config is a file or URL. If it's a URL, it then pulls the contents of the file using a GET request. If it's a file, then it expands the file path and returns its contents. Args: cluster_config: str, A file path or URL for the login-config. certificate_file: str, Optional file path to the CA certificate to use with the GET request to the URL. Raises: AnthosAuthException: If the data could not be pulled from the URL. Returns: parsed_config_fileOrURL, config_contents, and is_url parsed_config_fileOrURL: str, returns either the URL that was passed or an expanded file path if a file was passed. config_contents: str, returns the contents of the file or URL. is_url: bool, True if the provided cluster_config input was a URL. NNNhttphttpsT)verifyzIRequest to login-config URL failed withresponse code [{}] and text [{}]: )r parseurlparseschemerequestsrH status_codecodesokr"r?textrExpandLocalDirAndVersionr ReadFileContents)rcertificate_file config_urlis_urlresponseexpanded_config_pathcontentss r GetFileOrURLris.  ||$$^4*    & F**;*;w*F& ||N3KtLHx~~000 !EEKV$,$8$8(--FI JJ ==& 0077G  # #$8 9(  //r cU(aU(dgSnU(aEU(d[SRU55e[R"U[RS9nO$[R"UU[RS9n[ XP5nUR 5nU(aU(GaUR5nU(d[SRU55e[U5S:XaUR5nOTSRU5n S n U(a!U(aU(dXRU5-n [R"XS S 9n Xn[RR!S RU55 UR#U5 U(aU(dUR%5 ['XgU5upX|U 4$![a SnGN2[Ra gf=f) z.Get preferredAuthentication value for cluster.rNz-Config contents were not passed with URL [{}]) file_contents item_type)rrrz)No Authentication Providers found in [{}]rzCPlease select your preferred authentication option for cluster [{}]zN. Note: This will overwrite current preferred auth method [{}] in config file.T)message cancel_optionz/Setting Preferred Authentication option to [{}])r"r?rYamlConfigFilerrGetPreferredAuthKeyErrorYamlConfigObjectFieldErrorGetAuthProvidersrrr PromptChoicerstatusPrintSetPreferredAuth WriteToDiskr)r{rconfig_contents force_updater configsr auth_method providersprompt_messageoverride_warningindexrrs rGetPreferredAuthForClusterr)s l  '   9 @ @ N PP))%1O1OQG))%002G %W6. 113K  //1I   5 < <\ J LL 9~MMOk++16'?8 f'*A*A+*NN%% 4Ae$kJJ9@@MO##K0F ,^-46)  **E K  0 0 sG G&G&%G&cUR(a)[RRUR5 UR(a)[RRUR5 UR (a>[R "[RRUR55 gU(d-[RR[R5 UR$)zHandle Login Responses.N) stdoutrrrstderrfailedrrLOGIN_CONFIG_FAILED_MESSAGEr?LOGIN_CONFIG_SUCCESS_MESSAGE)rlist_clusters_onlys rLoginResponseHandlerr1s __JJX__% __JJX__% __IIh2299(//JK  JJX::; r r)F)T)NFF)3r)rrrr!googlecloudsdk.command_lib.anthosr(googlecloudsdk.command_lib.anthos.commonrr&googlecloudsdk.command_lib.util.anthosrgooglecloudsdk.corerc_exceptrgooglecloudsdk.core.consoler googlecloudsdk.core.credentialsr rgooglecloudsdk.core.utilr r rra six.movesr rrLINUXrMACOSXWINDOWSr,r`rrErrorr"r2StreamingBinaryBackedOperationr4rrrrrrr)r1r$r rr@s-O 3A=D6#2<*. )62##&&< $$''H %%((  [(H1 3   H(..Hm@(GGm@` ,yG)HHyGx$ 1((0Z04,1&+ >+B r