Home Explore Help
Sign In
SMusatov
/
ydb
mirror of https://github.com/ydb-platform/ydb.git
1
0
Fork 0
Files
Tree: 18686b50ca
Branches Tags
ydb
/
contrib
/
python
/
google-auth
/
py2
/
google
/
auth
/
_service_account_info.py

_service_account_info.py 2.3 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. # Copyright 2016 Google LLC
    2. 

  2. #
    3. 

  3. # Licensed under the Apache License, Version 2.0 (the "License");
    4. 

  4. # you may not use this file except in compliance with the License.
    5. 

  5. # You may obtain a copy of the License at
    6. 

  6. #
    7. 

  7. #      http://www.apache.org/licenses/LICENSE-2.0
    8. 

  8. #
    9. 

  9. # Unless required by applicable law or agreed to in writing, software
    10. 

  10. # distributed under the License is distributed on an "AS IS" BASIS,
    11. 

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12. 

  12. # See the License for the specific language governing permissions and
    13. 

  13. # limitations under the License.
    14. 

  14. 

  15. """Helper functions for loading data from a Google service account file."""
    16. 

  16. 

  17. import io
    18. 

  18. import json
    19. 

  19. 

  20. import six
    21. 

  21. 

  22. from google.auth import crypt
    23. 

  23. 

  24. 

  25. def from_dict(data, require=None):
    26. 

  26.     """Validates a dictionary containing Google service account data.
    27. 

  27. 

  28.     Creates and returns a :class:`google.auth.crypt.Signer` instance from the
    29. 

  29.     private key specified in the data.
    30. 

  30. 

  31.     Args:
    32. 

  32.         data (Mapping[str, str]): The service account data
    33. 

  33.         require (Sequence[str]): List of keys required to be present in the
    34. 

  34.             info.
    35. 

  35. 

  36.     Returns:
    37. 

  37.         google.auth.crypt.Signer: A signer created from the private key in the
    38. 

  38.             service account file.
    39. 

  39. 

  40.     Raises:
    41. 

  41.         ValueError: if the data was in the wrong format, or if one of the
    42. 

  42.             required keys is missing.
    43. 

  43.     """
    44. 

  44.     keys_needed = set(require if require is not None else [])
    45. 

  45. 

  46.     missing = keys_needed.difference(six.iterkeys(data))
    47. 

  47. 

  48.     if missing:
    49. 

  49.         raise ValueError(
    50. 

  50.             "Service account info was not in the expected format, missing "
    51. 

  51.             "fields {}.".format(", ".join(missing))
    52. 

  52.         )
    53. 

  53. 

  54.     # Create a signer.
    55. 

  55.     signer = crypt.RSASigner.from_service_account_info(data)
    56. 

  56. 

  57.     return signer
    58. 

  58. 

  59. 

  60. def from_filename(filename, require=None):
    61. 

  61.     """Reads a Google service account JSON file and returns its parsed info.
    62. 

  62. 

  63.     Args:
    64. 

  64.         filename (str): The path to the service account .json file.
    65. 

  65.         require (Sequence[str]): List of keys required to be present in the
    66. 

  66.             info.
    67. 

  67. 

  68.     Returns:
    69. 

  69.         Tuple[ Mapping[str, str], google.auth.crypt.Signer ]: The verified
    70. 

  70.             info and a signer instance.
    71. 

  71.     """
    72. 

  72.     with io.open(filename, "r", encoding="utf-8") as json_file:
    73. 

  73.         data = json.load(json_file)
    74. 

  74.         return data, from_dict(data, require=require)
    75.