o >h@sZddlmZddlmZddlmZddlmZGdddZdd Z Gd d d eZ d S) )urlparse)settings)is_same_domain)AsyncWebsocketConsumerc@s@eZdZdZddZddZddZdd Zd d Zd d Z dS)OriginValidatorze Validates that the incoming connection has an Origin header that is in an allowed list. cCs||_||_dSN) applicationallowed_origins)selfr r r {/var/www/vedio/testing/chatpythonscript.ninositsolution.com/env/lib/python3.10/site-packages/channels/security/websocket.py__init__s zOriginValidator.__init__c s|ddkr tdd}|dgD]\}}|dkr.z t|d}Wqty-Yqwq||r>||||IdHSt}||||IdHS)Ntype websocketzIs  z2OriginValidator.validate_origin..)anyr r#r r'r r"8szOriginValidator.validate_origincCs|durdSt|}|jdurdS|js%td|jp|}t|j|S||}||}|j|jkrB||krBt|j|jrBdSdS)a Returns ``True`` if the origin is either an exact match or a match to the wildcard pattern. Compares scheme, domain, port of origin and pattern. Any pattern can be begins with a scheme. After the scheme must be a domain, or just domain without scheme. Any domain beginning with a period corresponds to the domain and all its subdomains (for example, ``.example.com`` ``example.com`` and any subdomain). Also with scheme (for example, ``http://.example.com`` ``http://exapmple.com``). After the domain there must be a port, but it can be omitted. Note. This function assumes that the given origin is either None, a schema-domain-port string, or just a domain string NFz//T)rlowerhostnameschemerget_origin_port)r rr&parsed_patternpattern_hostname origin_port pattern_portr r r r$Ns        z$OriginValidator.match_allowed_origincCsD|jdur|jS|jdks|jdkrdS|jdks|jdkr dSdS)zq Returns the origin.port or port for this schema by default. Otherwise, it returns None. NhttpwsPhttpswssi)portr,)r originr r r r-us zOriginValidator.get_origin_portN) __name__ __module__ __qualname____doc__rr rr"r$r-r r r r r s  'rcCs"tj}tjr |s gd}t||S)zi Factory function which returns an OriginValidator configured to use settings.ALLOWED_HOSTS. ) localhostz 127.0.0.1z[::1])r ALLOWED_HOSTSDEBUGr)r allowed_hostsr r r AllowedHostsOriginValidators  rAc@seZdZdZddZdS)rz= Simple application which denies all requests to it. cs|IdHdSr)close)r r r r connectszWebsocketDenier.connectN)r9r:r;r<rCr r r r rs rN) urllib.parser django.confrdjango.http.requestrgeneric.websocketrrrArr r r r s