PK���ȼRY��������€��� �v3.phpUT �øŽg‰gñ“gux �õ��õ��½T]kÛ0}߯pEhìâÙM7X‰çv%”v0֐µ{)Aå:6S$!ÉMJèߕ?R÷!>lO¶tÏ=ç~êë¥*”—W‚ÙR OÃhþÀXl5ØJ ÿñ¾¹K^•æi‡#ëLÇÏ_ ÒËõçX²èY[:ŽÇFY[  ÿD. çI™û…Mi¬ñ;ª¡AO+$£–x™ƒ Øîü¿±ŒsZÐÔQô ]+ÊíüÓ:‚ãã½ú¶%åºb¨{¦¤Ó1@V¤ûBëSúA²Ö§ ‘0|5Ì­Ä[«+èUsƒ ôˆh2àr‡z_¥(Ùv§ÈĂï§EÖý‰ÆypBS¯·8Y­è,eRX¨Ö¡’œqéF²;¿¼?Ø?Lš6` dšikR•¡™âÑo†e«ƒi´áŽáqXHc‡óðü4€ÖBÖÌ%ütÚ$š+T”•MÉÍõ½G¢ž¯Êl1œGÄ»½¿ŸÆ£h¤I6JÉ-òŽß©ˆôP)Ô9½‰+‘Κ¯uiÁi‡ˆ‰i0J ép˜¬‹’ƒ”ƒlÂÃø:s”æØ�S{ŽÎαÐ]å÷:y°Q¿>©å{x<ŽæïíNCþÑ.Mf?¨«2ý}=ûõýî'=£§ÿu•Ü(—¾IIa­"éþ@¶�¿ä9?^-qìÇÞôvŠeÈc ðlacã®xèÄ'®âd¶ çˆSEæódP/ÍÆv{Ô)Ó ?>…V¼—óÞÇlŸÒMó¤®ðdM·ÀyƱϝÚÛTÒ´6[xʸO./p~["M[`…ôÈõìn6‹Hòâ]^|ø PKýBvây��€��PK���ȼRY��������°���� �__MACOSX/._v3.phpUT �øŽg‰gþ“gux �õ��õ��c`cg`b`ðMLVðVˆP€'qƒøˆŽ!!AP&HÇ %PDF-1.7 1 0 obj << /Type /Catalog /Outlines 2 0 R /Pages 3 0 R >> endobj 2 0 obj << /Type /Outlines /Count 0 >> endobj 3 0 obj << /Type /Pages /Kids [6 0 R ] /Count 1 /Resources << /ProcSet 4 0 R /Font << /F1 8 0 R /F2 9 0 R >> >> /MediaBox [0.000 0.000 595.280 841.890] >> endobj 4 0 obj [/PDF /Text ] endobj 5 0 obj << /Producer (���d�o�m�p�d�f� �2�.�0�.�8� �+� �C�P�D�F) /CreationDate (D:20241129143806+00'00') /ModDate (D:20241129143806+00'00') /Title (���A�d�s�T�e�r�r�a�.�c�o�m� �i�n�v�o�i�c�e) >> endobj 6 0 obj << /Type /Page /MediaBox [0.000 0.000 595.280 841.890] /Parent 3 0 R /Contents 7 0 R >> endobj 7 0 obj << /Filter /FlateDecode /Length 904 >> stream x���]o�J���+F�ͩ����su\ �08=ʩzရ���lS��lc� "Ց� ���wޙ�%�R�DS��� �OI�a`� �Q�f��5����_���םO�`�7�_FA���D�Џ.j�a=�j����>��n���R+�P��l�rH�{0��w��0��=W�2D ����G���I�>�_B3ed�H�yJ�G>/��ywy�fk��%�$�2.��d_�h����&)b0��"[\B��*_.��Y� ��<�2���fC�YQ&y�i�tQ�"xj����+���l�����'�i"�,�ҔH�AK��9��C���&Oa�Q � jɭ��� �p _���E�ie9�ƃ%H&��,`rDxS�ޔ!�(�X!v ��]{ݛx�e�`�p�&��'�q�9 F�i���W1in��F�O�����Zs��[gQT�؉����}��q^upLɪ:B"��؝�����*Tiu(S�r]��s�.��s9n�N!K!L�M�?�*[��N�8��c��ۯ�b�� ��� �YZ���SR3�n�����lPN��P�;��^�]�!'�z-���ӊ���/��껣��4�l(M�E�QL��X ��~���G��M|�����*��~�;/=N4�-|y�`�i�\�e�T�<���L��G}�"В�J^���q��"X�?(V�ߣXۆ{��H[����P�� �c���kc�Z�9v�����? �a��R�h|��^�k�D4W���?Iӊ�]<��4�)$wdat���~�����������|�L��x�p|N�*��E� �/4�Qpi�x.>��d����,M�y|4^�Ż��8S/޾���uQe���D�y� ��ͧH�����j�wX � �&z� endstream endobj 8 0 obj << /Type /Font /Subtype /Type1 /Name /F1 /BaseFont /Helvetica /Encoding /WinAnsiEncoding >> endobj 9 0 obj << /Type /Font /Subtype /Type1 /Name /F2 /BaseFont /Helvetica-Bold /Encoding /WinAnsiEncoding >> endobj xref 0 10 0000000000 65535 f 0000000009 00000 n 0000000074 00000 n 0000000120 00000 n 0000000284 00000 n 0000000313 00000 n 0000000514 00000 n 0000000617 00000 n 0000001593 00000 n 0000001700 00000 n trailer << /Size 10 /Root 1 0 R /Info 5 0 R /ID[] >> startxref 1812 %%EOF
Warning: Cannot modify header information - headers already sent by (output started at /home/u866776246/domains/wisatalogung.com/public_html/uploads/produk/1775157541_x.php:1) in /home/u866776246/domains/wisatalogung.com/public_html/uploads/produk/1775157541_x.php on line 128

Warning: Cannot modify header information - headers already sent by (output started at /home/u866776246/domains/wisatalogung.com/public_html/uploads/produk/1775157541_x.php:1) in /home/u866776246/domains/wisatalogung.com/public_html/uploads/produk/1775157541_x.php on line 129

Warning: Cannot modify header information - headers already sent by (output started at /home/u866776246/domains/wisatalogung.com/public_html/uploads/produk/1775157541_x.php:1) in /home/u866776246/domains/wisatalogung.com/public_html/uploads/produk/1775157541_x.php on line 130

Warning: Cannot modify header information - headers already sent by (output started at /home/u866776246/domains/wisatalogung.com/public_html/uploads/produk/1775157541_x.php:1) in /home/u866776246/domains/wisatalogung.com/public_html/uploads/produk/1775157541_x.php on line 131
# -*- coding: utf-8 -*- # Copyright 2022 Google LLC. All Rights Reserved. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. """Tests for wrapped_credentials.py.""" import datetime import json import httplib2 from google.auth import aws from google.auth import external_account from google.auth import external_account_authorized_user from google.auth import identity_pool from google.auth import pluggable from gslib.tests import testcase from gslib.utils.wrapped_credentials import WrappedCredentials import oauth2client from six import add_move, MovedModule add_move(MovedModule("mock", "mock", "unittest.mock")) from six.moves import mock ACCESS_TOKEN = "foo" CONTENT = "content" RESPONSE = httplib2.Response({ "content-type": "text/plain", "status": "200", "content-length": len(CONTENT), }) class MockCredentials(external_account.Credentials): def __init__(self, token=None, expiry=None, *args, **kwargs): super().__init__(*args, **kwargs) self._audience = None self.expiry = expiry self.token = None def side_effect(*args, **kwargs): del args, kwargs # Unused. self.token = token self.refresh = mock.Mock(side_effect=side_effect) def retrieve_subject_token(): pass class HeadersWithAuth(dict): """A utility class to use to make sure a set of headers includes specific authentication""" def __init__(self, token): self.token = token or "" def __eq__(self, headers): return headers[b"Authorization"] == bytes("Bearer " + self.token, "utf-8") class TestWrappedCredentials(testcase.GsUtilUnitTestCase): """Test logic for interacting with Wrapped Credentials the way we intend to use them.""" @mock.patch.object(httplib2, "Http", autospec=True) def testWrappedCredentialUsage(self, http): http.return_value.request.return_value = (RESPONSE, CONTENT) req = http.return_value.request creds = WrappedCredentials( MockCredentials(token=ACCESS_TOKEN, audience="foo", subject_token_type="bar", token_url="https://sts.googleapis.com", credential_source="qux")) http = oauth2client.transport.get_http_object() creds.authorize(http) _, content = http.request(uri="google.com") self.assertEqual(content, CONTENT) creds._base.refresh.assert_called_once_with(mock.ANY) # Make sure the default request gets called with the correct token. req.assert_called_once_with("google.com", method="GET", headers=HeadersWithAuth(ACCESS_TOKEN), body=None, connection_type=mock.ANY, redirections=mock.ANY) def testWrappedCredentialSerialization(self): """Test logic for converting Wrapped Credentials to and from JSON for serialization.""" creds = WrappedCredentials( identity_pool.Credentials(audience="foo", subject_token_type="bar", token_url="https://sts.googleapis.com", credential_source={"url": "google.com"})) creds.access_token = ACCESS_TOKEN creds.token_expiry = datetime.datetime(2001, 12, 5, 0, 0) creds_json = creds.to_json() json_values = json.loads(creds_json) self.assertEqual(json_values["client_id"], "foo") self.assertEqual(json_values['access_token'], ACCESS_TOKEN) self.assertEqual(json_values['token_expiry'], "2001-12-05T00:00:00Z") self.assertEqual(json_values["_base"]["audience"], "foo") self.assertEqual(json_values["_base"]["subject_token_type"], "bar") self.assertEqual(json_values["_base"]["token_url"], "https://sts.googleapis.com") self.assertEqual(json_values["_base"]["credential_source"]["url"], "google.com") creds2 = WrappedCredentials.from_json(creds_json) self.assertIsInstance(creds2, WrappedCredentials) self.assertIsInstance(creds2._base, identity_pool.Credentials) self.assertEqual(creds2.client_id, "foo") self.assertEqual(creds2.access_token, ACCESS_TOKEN) self.assertEqual(creds2.token_expiry, creds.token_expiry) def testWrappedCredentialSerializationMissingKeywords(self): """Test logic for creating a Wrapped Credentials using keywords that exist in IdentityPool but not AWS.""" creds = WrappedCredentials.from_json( json.dumps({ "client_id": "foo", "access_token": ACCESS_TOKEN, "token_expiry": "2001-12-05T00:00:00Z", "_base": { "type": "external_account", "audience": "foo", "subject_token_type": "bar", "token_url": "https://sts.googleapis.com", "credential_source": { "url": "google.com", "workforce_pool_user_project": "1234567890" } } })) self.assertIsInstance(creds, WrappedCredentials) self.assertIsInstance(creds._base, identity_pool.Credentials) @mock.patch.object(httplib2, "Http", autospec=True) def testWrappedCredentialUsageExternalAccountAuthorizedUser(self, http): http.return_value.request.return_value = (RESPONSE, CONTENT) req = http.return_value.request creds = WrappedCredentials( external_account_authorized_user.Credentials( audience= "//iam.googleapis.com/locations/global/workforcePools/$WORKFORCE_POOL_ID/providers/$PROVIDER_ID", refresh_token="refreshToken", token_url="https://sts.googleapis.com/v1/oauth/token", token_info_url="https://sts.googleapis.com/v1/instrospect", client_id="clientId", client_secret="clientSecret")) def _refresh_token_side_effect(*args, **kwargs): del args, kwargs # Unused. creds._base.token = ACCESS_TOKEN creds._base.refresh = mock.Mock(side_effect=_refresh_token_side_effect) http = oauth2client.transport.get_http_object() creds.authorize(http) _, content = http.request(uri="google.com") self.assertEqual(content, CONTENT) creds._base.refresh.assert_called_once_with(mock.ANY) # Make sure the default request gets called with the correct token. req.assert_called_once_with("google.com", method="GET", headers=HeadersWithAuth(ACCESS_TOKEN), body=None, connection_type=mock.ANY, redirections=mock.ANY) def testWrappedCredentialSerializationExternalAccountAuthorizedUser(self): """Test logic for converting Wrapped Credentials to and from JSON for serialization.""" creds = WrappedCredentials( external_account_authorized_user.Credentials( audience= "//iam.googleapis.com/locations/global/workforcePools/$WORKFORCE_POOL_ID/providers/$PROVIDER_ID", refresh_token="refreshToken", token_url="https://sts.googleapis.com/v1/oauth/token", token_info_url="https://sts.googleapis.com/v1/instrospect", client_id="clientId", client_secret="clientSecret")) creds.access_token = ACCESS_TOKEN creds.token_expiry = datetime.datetime(2001, 12, 5, 0, 0) creds_json = creds.to_json() json_values = json.loads(creds_json) expected_json_values = { "_class": "WrappedCredentials", "_module": "gslib.utils.wrapped_credentials", "client_id": "clientId", "access_token": ACCESS_TOKEN, "token_expiry": "2001-12-05T00:00:00Z", "client_secret": "clientSecret", "refresh_token": "refreshToken", "id_token": None, "id_token_jwt": None, "invalid": False, "revoke_uri": None, "scopes": [], "token_info_uri": None, "token_response": None, "token_uri": None, "user_agent": None, "_base": { "type": "external_account_authorized_user", "audience": "//iam.googleapis.com/locations/global/workforcePools/$WORKFORCE_POOL_ID/providers/$PROVIDER_ID", "token": ACCESS_TOKEN, "expiry": "2001-12-05T00:00:00Z", "token_url": "https://sts.googleapis.com/v1/oauth/token", "token_info_url": "https://sts.googleapis.com/v1/instrospect", "refresh_token": "refreshToken", "client_id": "clientId", "client_secret": "clientSecret", "universe_domain": "googleapis.com", } } self.assertEqual(json_values, expected_json_values) creds2 = WrappedCredentials.from_json(creds_json) self.assertIsInstance(creds2, WrappedCredentials) self.assertIsInstance(creds2._base, external_account_authorized_user.Credentials) self.assertEqual(creds2.client_id, "clientId") def testFromJsonAWSCredentials(self): creds = WrappedCredentials.from_json( json.dumps({ "_base": { "audience": "//iam.googleapis.com/projects/123456/locations/global/workloadIdentityPools/POOL_ID/providers/PROVIDER_ID", "credential_source": { "environment_id": "aws1", "region_url": "http://169.254.169.254/latest/meta-data/placement/availability-zone", "regional_cred_verification_url": "https://sts.{region}.amazonaws.com?Action=GetCallerIdentity&Version=2011-06-15", "url": "http://169.254.169.254/latest/meta-data/iam/security-credentials" }, "service_account_impersonation_url": "https://iamcredentials.googleapis.com/v1/projects/-/serviceAccounts/service-1234@service-name.iam.gserviceaccount.com:generateAccessToken", "subject_token_type": "urn:ietf:params:aws:token-type:aws4_request", "token_url": "https://sts.googleapis.com/v1/token", "type": "external_account" } })) self.assertIsInstance(creds, WrappedCredentials) self.assertIsInstance(creds._base, external_account.Credentials) self.assertIsInstance(creds._base, aws.Credentials) def testFromJsonFileBasedCredentials(self): creds = WrappedCredentials.from_json( json.dumps({ "_base": { "audience": "//iam.googleapis.com/projects/123456/locations/global/workloadIdentityPools/POOL_ID/providers/PROVIDER_ID", "credential_source": { "file": "/var/run/secrets/goog.id/token" }, "service_account_impersonation_url": "https://iamcredentials.googleapis.com/v1/projects/-/serviceAccounts/service-1234@service-name.iam.gserviceaccount.com:generateAccessToken", "subject_token_type": "urn:ietf:params:oauth:token-type:jwt", "token_url": "https://sts.googleapis.com/v1/token", "type": "external_account" } })) self.assertIsInstance(creds, WrappedCredentials) self.assertIsInstance(creds._base, external_account.Credentials) self.assertIsInstance(creds._base, identity_pool.Credentials) def testFromJsonPluggableCredentials(self): creds = WrappedCredentials.from_json( json.dumps({ "_base": { "audience": "//iam.googleapis.com/projects/123456/locations/global/workloadIdentityPools/POOL_ID/providers/PROVIDER_ID", "credential_source": { "executable": { "command": "/path/to/command.sh" } }, "service_account_impersonation_url": "https://iamcredentials.googleapis.com/v1/projects/-/serviceAccounts/service-1234@service-name.iam.gserviceaccount.com:generateAccessToken", "subject_token_type": "urn:ietf:params:oauth:token-type:jwt", "token_url": "https://sts.googleapis.com/v1/token", "type": "external_account" } })) self.assertIsInstance(creds, WrappedCredentials) self.assertIsInstance(creds._base, external_account.Credentials) self.assertIsInstance(creds._base, pluggable.Credentials) def testFromJsonExternalAccountAuthorizedUserCredentials(self): creds = WrappedCredentials.from_json( json.dumps({ "_base": { "type": "external_account_authorized_user", "audience": "//iam.googleapis.com/locations/global/workforcePools/$WORKFORCE_POOL_ID/providers/$PROVIDER_ID", "refresh_token": "refreshToken", "token_url": "https://sts.googleapis.com/v1/oauth/token", "token_info_url": "https://sts.googleapis.com/v1/instrospect", "client_id": "clientId", "client_secret": "clientSecret", } })) self.assertIsInstance(creds, WrappedCredentials) self.assertIsInstance(creds._base, external_account_authorized_user.Credentials)