ó µ[PEc@sódZddlZddlZddlZddlZddlZdefd„ƒYZdefd„ƒYZ de fd„ƒYZ d e fd „ƒYZ d e fd „ƒYZ ejd ƒZdd„Zdd„Ze d„Ze d„ZdS(s™ This module contains classes to support HTTP State Management Mechanism, also known as Cookies. The classes provide simple ways for creating, parsing and digitally signing cookies, as well as the ability to store simple Python objects in Cookies (using marshalling). The behaviour of the classes is designed to be most useful within mod_python applications. The current state of HTTP State Management standardization is rather unclear. It appears that the de-facto standard is the original Netscape specification, even though already two RFC's have been put out (RFC2109 (1997) and RFC2965 (2000)). The RFC's add a couple of useful features (e.g. using Max-Age instead of Expires, but my limited tests show that Max-Age is ignored by the two browsers tested (IE and Safari). As a result of this, perhaps trying to be RFC-compliant (by automatically providing Max-Age and Version) could be a waste of cookie space... iÿÿÿÿNt CookieErrorcBseZRS((t__name__t __module__(((s5/usr/lib/python2.7/dist-packages/mod_python/Cookie.pyR4st metaCookiecBseZd„ZRS(c Csed}|d}||d<||d(t __class__RR-(R((s5/usr/lib/python2.7/dist-packages/mod_python/Cookie.pyt__repr__¥s ( RRt__doc__Rt __metaclass__t DOWNGRADEtIGNOREt EXCEPTIONR0t classmethodR4R:R<(((s5/usr/lib/python2.7/dist-packages/mod_python/Cookie.pyR*fs   t SignedCookiecBsPeZdZejd„ZeeƒZdd„Zd„Z d„Z d„Z RS(sx This is a variation of Cookie that provides automatic cryptographic signing of cookies and verification. It uses the HMAC support in the Python standard library. This ensures that the cookie has not been tamprered with on the client side. Note that this class does not encrypt cookie data, thus it is still plainly visible as part of the cookie. c KsÈt|||}g}x‘|D]‰}||}y|j|ƒWqtk r§|tjkre‚q¨|tjkr„|j|ƒq¨tjtj|ƒƒ|||[^;\ =]+)\ *(=\ *)?(?P"(?:[^\\"]|\\.)*"|[^;]*)\s*;?cCs‡i}tj|ƒ}xk|D]c}|jdƒ|jdƒ}}|ddkr]|dksi||kr|||ƒ||*s      /DJL