a [r_2@s>dZddlZddlZddlZddlZddlZddlZddlZddlZ ddl m Z ddl m Z ddlmZmZddlmZddlmZddlmZdd lmZdd lmZdd lmZmZmZmZdd lm Z dd l!m"Z"ddl#m$Z$ddl%m&Z&ddl'm(Z(ddl'm)Z)ddl*m+Z+e,Z-GdddeZ.ddZ/ddZ0dS)z9Client for interacting with the Google Cloud Storage API.N)AnonymousCredentials) page_iterator) _LocalStack_NOW)ClientWithProject)NotFound)_get_storage_host)_bucket_bound_hostname_url) Connection)get_expiration_seconds_v4get_v4_now_dtstampsensure_signed_credentials _sign_messageBatchBucket)Blob)HMACKeyMetadata) BucketACL)DefaultObjectACL)_DEFAULT_TIMEOUTc sTeZdZdZdZeddddffdd ZeddZe dd Z e j d d Z d d Z d dZ ddZe ddZdefddZd0ddZddZeddfddZeddfddZddddddefddZd1dd Zddddddddd!def d"d#Zdddd!ddefd$d%Zddefd&d'Zdddddefd(d)Zddefd*d+Zd2d.d/ZZS)3ClientaClient to bundle configuration needed for API requests. :type project: str or None :param project: the project which the client acts on behalf of. Will be passed when creating a topic. If not passed, falls back to the default inferred from the environment. :type credentials: :class:`~google.auth.credentials.Credentials` :param credentials: (Optional) The OAuth2 Credentials to use for this client. If not passed (and if no ``_http`` object is passed), falls back to the default inferred from the environment. :type _http: :class:`~requests.Session` :param _http: (Optional) HTTP object to make requests. Can be any object that defines ``request()`` with the same interface as :meth:`requests.Session.request`. If not passed, an ``_http`` object is created that is bound to the ``credentials`` for the current object. This parameter should be considered private, and could change in the future. :type client_info: :class:`~google.api_core.client_info.ClientInfo` :param client_info: The client info used to send a user-agent string along with API requests. If ``None``, then default info will be used. Generally, you only need to set this if you're developing your own library or partner tool. :type client_options: :class:`~google.api_core.client_options.ClientOptions` or :class:`dict` :param client_options: (Optional) Client options used to set user options on the client. API Endpoint should be set through client_options. )z7https://www.googleapis.com/auth/devstorage.full_controlz4https://www.googleapis.com/auth/devstorage.read_onlyz5https://www.googleapis.com/auth/devstorage.read_writeNc sd|_|durd}d}nd}|tur(d}tt|j||||dd|i}t|d<|rt|tkrptj j |}|j r|j }||d<|rd|_ t|fi||_t|_dS)NTF)project credentialsclient_options_http client_info api_endpoint)_base_connection_markersuperr__init__rtypedictgoogleZapi_corerZ from_dictrrr _connectionr _batch_stack) selfrrrrrZ no_projectZkw_argsr __class__:lib/python3.9/site-packages/google/cloud/storage/client.pyr#_s6   zClient.__init__cCs|dtd}d|_|S)aUFactory: return client with anonymous credentials. .. note:: Such a client has only limited access to "public" buckets: listing their contents and downloading their blobs. :rtype: :class:`google.cloud.storage.client.Client` :returns: Instance w/ anonymous credentials and no project. r)rrN)rr)clsclientr,r,r-create_anonymous_clients zClient.create_anonymous_clientcCs|jdur|jS|jSdS)zGet connection or batch on the client. :rtype: :class:`google.cloud.storage._http.Connection` :returns: The connection set on the client, or the batch if one is set. N) current_batchr r)r,r,r-r's zClient._connectioncCs|jdurtd||_dS)aSet connection on the client. Intended to be used by constructor (since the base class calls) self._connection = connection Will raise if the connection is set more than once. :type value: :class:`google.cloud.storage._http.Connection` :param value: The connection set on the client. :raises: :class:`ValueError` if connection has already been set. Nz Connection already set on client)r ValueError)r)valuer,r,r-r's cCs|j|dS)zPush a batch onto our stack. "Protected", intended for use by batch context mgrs. :type batch: :class:`google.cloud.storage.batch.Batch` :param batch: newly-active batch N)r(push)r)batchr,r,r- _push_batchszClient._push_batchcCs |jS)aPop a batch from our stack. "Protected", intended for use by batch context mgrs. :raises: IndexError if the stack is empty. :rtype: :class:`google.cloud.storage.batch.Batch` :returns: the top-most batch/transaction, after removing it. )r(popr2r,r,r- _pop_batchs zClient._pop_batchcCs t|tr|}n t||d}|S)aHelper to return given bucket or create new by name. Args: bucket_or_name (Union[ :class:`~google.cloud.storage.bucket.Bucket`, str, ]): The bucket resource to pass or name to create. Returns: google.cloud.storage.bucket.Bucket The newly created bucket or the given one. )name) isinstancer)r)bucket_or_namebucketr,r,r-_bucket_arg_to_buckets  zClient._bucket_arg_to_bucketcCs|jjS)zCurrently-active batch. :rtype: :class:`google.cloud.storage.batch.Batch` or ``NoneType`` (if no batch is active). :returns: The batch at the top of the batch stack. )r(topr2r,r,r-r1szClient.current_batchcCs2|dur|j}d|f}|jjd||d}|dS)atGet the email address of the project's GCS service account :type project: str :param project: (Optional) Project ID to use for retreiving GCS service account email address. Defaults to the client's project. :type timeout: float or tuple :param timeout: (Optional) The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. :rtype: str :returns: service account email address Nz/projects/%s/serviceAccountZGET)methodpathtimeoutZ email_address)rr api_request)r)rrBrA api_responser,r,r-get_service_account_emails z Client.get_service_account_emailcCst|||dS)a0Factory constructor for bucket object. .. note:: This will not make an HTTP request; it simply instantiates a bucket object owned by this client. :type bucket_name: str :param bucket_name: The name of the bucket to be instantiated. :type user_project: str :param user_project: (Optional) The project ID to be billed for API requests made via the bucket. :rtype: :class:`google.cloud.storage.bucket.Bucket` :returns: The bucket object created. )r/r: user_projectr)r) bucket_namerFr,r,r-r=sz Client.bucketcCs t|dS)aFactory constructor for batch object. .. note:: This will not make an HTTP request; it simply instantiates a batch object owned by this client. :rtype: :class:`google.cloud.storage.batch.Batch` :returns: The batch object created. )r/rr2r,r,r-r6s z Client.batchcCs ||}|j||||d|S)aAPI call: retrieve a bucket via a GET request. See https://cloud.google.com/storage/docs/json_api/v1/buckets/get Args: bucket_or_name (Union[ :class:`~google.cloud.storage.bucket.Bucket`, str, ]): The bucket resource to pass or name to create. timeout (Optional[Union[float, Tuple[float, float]]]): The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. if_metageneration_match (Optional[long]): Make the operation conditional on whether the blob's current metageneration matches the given value. if_metageneration_not_match (Optional[long]): Make the operation conditional on whether the blob's current metageneration does not match the given value. Returns: google.cloud.storage.bucket.Bucket The bucket matching the name provided. Raises: google.cloud.exceptions.NotFound If the bucket is not found. Examples: Retrieve a bucket using a string. .. literalinclude:: snippets.py :start-after: [START get_bucket] :end-before: [END get_bucket] :dedent: 4 Get a bucket using a resource. >>> from google.cloud import storage >>> client = storage.Client() >>> # Set properties on a plain resource object. >>> bucket = client.get_bucket("my-bucket-name") >>> # Time passes. Another program may have modified the bucket ... # in the meantime, so you want to get the latest state. >>> bucket = client.get_bucket(bucket) # API request. )r/rBif_metageneration_matchif_metageneration_not_match)r>reload)r)r<rBrHrIr=r,r,r- get_bucket%s> zClient.get_bucketcCs.z|j||||dWSty(YdS0dS)aCGet a bucket by name, returning None if not found. You can use this if you would rather check for a None value than catching an exception: .. literalinclude:: snippets.py :start-after: [START lookup_bucket] :end-before: [END lookup_bucket] :dedent: 4 :type bucket_name: str :param bucket_name: The name of the bucket to get. :type timeout: float or tuple :param timeout: (Optional) The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. :type if_metageneration_match: long :param if_metageneration_match: (Optional) Make the operation conditional on whether the blob's current metageneration matches the given value. :type if_metageneration_not_match: long :param if_metageneration_not_match: (Optional) Make the operation conditional on whether the blob's current metageneration does not match the given value. :rtype: :class:`google.cloud.storage.bucket.Bucket` :returns: The bucket matching the name provided or None if not found. )rBrHrIN)rKr)r)rGrBrHrIr,r,r- lookup_bucketls& zClient.lookup_bucketc s|||dur|j}|dur(td|durFtjdtdd|_d|i} |durht|}|| d<|durt |}|| d<|dur|| d <fd d j D} j | d <|dur|| d <|j j dd| | |d} | S)a API call: create a new bucket via a POST request. See https://cloud.google.com/storage/docs/json_api/v1/buckets/insert Args: bucket_or_name (Union[ :class:`~google.cloud.storage.bucket.Bucket`, str, ]): The bucket resource to pass or name to create. requester_pays (bool): DEPRECATED. Use Bucket().requester_pays instead. (Optional) Whether requester pays for API requests for this bucket and its blobs. project (str): (Optional) The project under which the bucket is to be created. If not passed, uses the project set on the client. user_project (str): (Optional) The project ID to be billed for API requests made via created bucket. location (str): (Optional) The location of the bucket. If not passed, the default location, US, will be used. See https://cloud.google.com/storage/docs/bucket-locations predefined_acl (str): (Optional) Name of predefined ACL to apply to bucket. See: https://cloud.google.com/storage/docs/access-control/lists#predefined-acl predefined_default_object_acl (str): (Optional) Name of predefined ACL to apply to bucket's objects. See: https://cloud.google.com/storage/docs/access-control/lists#predefined-acl timeout (Optional[Union[float, Tuple[float, float]]]): The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. Returns: google.cloud.storage.bucket.Bucket The newly created bucket. Raises: google.cloud.exceptions.Conflict If the bucket already exists. Examples: Create a bucket using a string. .. literalinclude:: snippets.py :start-after: [START create_bucket] :end-before: [END create_bucket] :dedent: 4 Create a bucket using a resource. >>> from google.cloud import storage >>> client = storage.Client() >>> # Set properties on a plain resource object. >>> bucket = storage.Bucket("my-bucket-name") >>> bucket.location = "europe-west6" >>> bucket.storage_class = "COLDLINE" >>> # Pass that resource object to the client. >>> bucket = client.create_bucket(bucket) # API request. N2Client project not set: pass an explicit project.zFrequester_pays arg is deprecated. Use Bucket().requester_pays instead.) stacklevelrZ predefinedAclZpredefinedDefaultObjectAcl userProjectcsi|]}|j|qSr,) _properties).0keyr=r,r- z(Client.create_bucket..r:locationPOST/b)r@rA query_paramsdataZ_target_objectrB)r>rr3warningswarnPendingDeprecationWarningrequester_paysrZvalidate_predefinedrZ_changesr:r'rC_set_properties) r)r<r_rrFrWZpredefined_aclZpredefined_default_object_aclrBrZZ propertiesrDr,rTr- create_bucketsJN    zClient.create_bucketc CsJz|j||||dWn.tyDt|}|j||||dYn0dS)aDownload the contents of a blob object or blob URI into a file-like object. Args: blob_or_uri (Union[ :class:`~google.cloud.storage.blob.Blob`, str, ]): The blob resource to pass or URI to download. file_obj (file): A file handle to which to write the blob's data. start (int): (Optional) The first byte in a range to be downloaded. end (int): (Optional) The last byte in a range to be downloaded. Examples: Download a blob using a blob resource. >>> from google.cloud import storage >>> client = storage.Client() >>> bucket = client.get_bucket('my-bucket-name') >>> blob = storage.Blob('path/to/blob', bucket) >>> with open('file-to-download-to') as file_obj: >>> client.download_blob_to_file(blob, file_obj) # API request. Download a blob using a URI. >>> from google.cloud import storage >>> client = storage.Client() >>> with open('file-to-download-to') as file_obj: >>> client.download_blob_to_file( >>> 'gs://bucket_name/path/to/blob', file_obj) )r/startendN)Zdownload_to_fileAttributeErrorrZ from_string)r)Z blob_or_uriZfile_objrbrcZblobr,r,r-download_blob_to_files (  zClient.download_blob_to_fileZnoAclc Cs,||} | j|||||||| | | || d S)a Return an iterator used to find blobs in the bucket. If :attr:`user_project` is set, bills the API request to that project. Args: bucket_or_name (Union[ :class:`~google.cloud.storage.bucket.Bucket`, str, ]): The bucket resource to pass or name to create. max_results (int): (Optional) The maximum number of blobs to return. page_token (str): (Optional) If present, return the next batch of blobs, using the value, which must correspond to the ``nextPageToken`` value returned in the previous response. Deprecated: use the ``pages`` property of the returned iterator instead of manually passing the token. prefix (str): (Optional) Prefix used to filter blobs. delimiter (str): (Optional) Delimiter, used with ``prefix`` to emulate hierarchy. start_offset (str): (Optional) Filter results to objects whose names are lexicographically equal to or after ``startOffset``. If ``endOffset`` is also set, the objects listed will have names between ``startOffset`` (inclusive) and ``endOffset`` (exclusive). end_offset (str): (Optional) Filter results to objects whose names are lexicographically before ``endOffset``. If ``startOffset`` is also set, the objects listed will have names between ``startOffset`` (inclusive) and ``endOffset`` (exclusive). include_trailing_delimiter (boolean): (Optional) If true, objects that end in exactly one instance of ``delimiter`` will have their metadata included in ``items`` in addition to ``prefixes``. versions (bool): (Optional) Whether object versions should be returned as separate blobs. projection (str): (Optional) If used, must be 'full' or 'noAcl'. Defaults to ``'noAcl'``. Specifies the set of properties to return. fields (str): (Optional) Selector specifying which fields to include in a partial response. Must be a list of fields. For example to get a partial response with just the next page token and the name and language of each blob returned: ``'items(name,contentLanguage),nextPageToken'``. See: https://cloud.google.com/storage/docs/json_api/v1/parameters#fields timeout (Optional[Union[float, Tuple[float, float]]]): The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. Returns: Iterator of all :class:`~google.cloud.storage.blob.Blob` in this bucket matching the arguments. Example: List blobs in the bucket with user_project. >>> from google.cloud import storage >>> client = storage.Client() >>> bucket = storage.Bucket("my-bucket-name", user_project='my-project') >>> all_blobs = list(client.list_blobs(bucket)) ) max_results page_tokenprefix delimiter start_offset end_offsetinclude_trailing_delimiterversions projectionfieldsr/rB)r> list_blobs)r)r<rfrgrhrirjrkrlrmrnrorBr=r,r,r-rpIsa zClient.list_blobsc Csx|dur|j}|durtdd|i}|dur6||d<||d<|durN||d<tj|jj|d} tj|| dt|||d S) a Get all buckets in the project associated to the client. This will not populate the list of blobs available in each bucket. .. literalinclude:: snippets.py :start-after: [START list_buckets] :end-before: [END list_buckets] :dedent: 4 This implements "storage.buckets.list". :type max_results: int :param max_results: (Optional) The maximum number of buckets to return. :type page_token: str :param page_token: (Optional) If present, return the next batch of buckets, using the value, which must correspond to the ``nextPageToken`` value returned in the previous response. Deprecated: use the ``pages`` property of the returned iterator instead of manually passing the token. :type prefix: str :param prefix: (Optional) Filter results to buckets whose names begin with this prefix. :type projection: str :param projection: (Optional) Specifies the set of properties to return. If used, must be 'full' or 'noAcl'. Defaults to 'noAcl'. :type fields: str :param fields: (Optional) Selector specifying which fields to include in a partial response. Must be a list of fields. For example to get a partial response with just the next page token and the language of each bucket returned: 'items/id,nextPageToken' :type project: str :param project: (Optional) The project whose buckets are to be listed. If not passed, uses the project set on the client. :type timeout: float or tuple :param timeout: (Optional) The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. :rtype: :class:`~google.api_core.page_iterator.Iterator` :raises ValueError: if both ``project`` is ``None`` and the client's project is also ``None``. :returns: Iterator of all :class:`~google.cloud.storage.bucket.Bucket` belonging to this project. NrMrrhrnrorBrY)r/rCrA item_to_valuergrf extra_params) rr3 functoolspartialr'rCr HTTPIterator_item_to_bucket) r)rfrgrhrnrorrBrsrCr,r,r- list_bucketss(BzClient.list_bucketsc Csf|dur|j}d|}d|i}|dur0||d<|jjd|||d}t|}|d|_|d} || fS) aCreate an HMAC key for a service account. :type service_account_email: str :param service_account_email: e-mail address of the service account :type project_id: str :param project_id: (Optional) Explicit project ID for the key. Defaults to the client's project. :type user_project: str :param user_project: (Optional) This parameter is currently ignored. :type timeout: float or tuple :param timeout: (Optional) The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. :rtype: Tuple[:class:`~google.cloud.storage.hmac_key.HMACKeyMetadata`, str] :returns: metadata for the created key, plus the bytes of the key's secret, which is an 40-character base64-encoded string. N/projects/{}/hmacKeysserviceAccountEmailrPrX)r@rArZrBmetadatasecret)rformatr'rCrrQ) r)service_account_email project_idrFrBrAZ qs_paramsrDr{r|r,r,r-create_hmac_keys  zClient.create_hmac_keyc Cst|dur|j}d|}i}|dur,||d<|dur<||d<|durL||d<tj|jj|d} tj|| |t||dS)a List HMAC keys for a project. :type max_results: int :param max_results: (Optional) Max number of keys to return in a given page. :type service_account_email: str :param service_account_email: (Optional) Limit keys to those created by the given service account. :type show_deleted_keys: bool :param show_deleted_keys: (Optional) Included deleted keys in the list. Default is to exclude them. :type project_id: str :param project_id: (Optional) Explicit project ID for the key. Defaults to the client's project. :type user_project: str :param user_project: (Optional) This parameter is currently ignored. :type timeout: float or tuple :param timeout: (Optional) The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. :rtype: Tuple[:class:`~google.cloud.storage.hmac_key.HMACKeyMetadata`, str] :returns: metadata for the created key, plus the bytes of the key's secret, which is an 40-character base64-encoded string. NryrzZshowDeletedKeysrPrq)r/rCrArrrfrs) rr}rtrur'rCrrv_item_to_hmac_key_metadata) r)rfr~Zshow_deleted_keysrrFrBrArsrCr,r,r-list_hmac_keysGs&* zClient.list_hmac_keyscCst||||}|j|d|S)aReturn a metadata instance for the given HMAC key. :type access_id: str :param access_id: Unique ID of an existing key. :type project_id: str :param project_id: (Optional) Project ID of an existing key. Defaults to client's project. :type timeout: float or tuple :param timeout: (Optional) The amount of time, in seconds, to wait for the server response. Can also be passed as a tuple (connect_timeout, read_timeout). See :meth:`requests.Session.request` documentation for details. :type user_project: str :param user_project: (Optional) This parameter is currently ignored. rq)rrJ)r)Z access_idrrFrBr{r,r,r-get_hmac_key_metadatas zClient.get_hmac_key_metadataFhttpc  Cs|dur|jn|}t|t\} } dj|j| d}d|id|id| id|idd ig}|p\g}i}t|pjiD](\}}|d sr|||<|||iqr||7}t }|dur|t j d d }|t j t |d }t jtt||dddd}t|d}| r4| r4t|| | }t|}n ||}t|d}||d || ||d|rxd|}n|rt|| }n d|}||dS)a Generate a V4 signed policy object. .. note:: Assumes ``credentials`` implements the :class:`google.auth.credentials.Signing` interface. Also assumes ``credentials`` has a ``service_account_email`` property which identifies the credentials. Generated policy object allows user to upload objects with a POST request. :type bucket_name: str :param bucket_name: Bucket name. :type blob_name: str :param blob_name: Object name. :type expiration: Union[Integer, datetime.datetime, datetime.timedelta] :param expiration: Policy expiration time. :type conditions: list :param conditions: (Optional) List of POST policy conditions, which are used to restrict what is allowed in the request. :type fields: dict :param fields: (Optional) Additional elements to include into request. :type credentials: :class:`google.auth.credentials.Signing` :param credentials: (Optional) Credentials object with an associated private key to sign text. :type virtual_hosted_style: bool :param virtual_hosted_style: (Optional) If True, construct the URL relative to the bucket virtual hostname, e.g., '.storage.googleapis.com'. :type bucket_bound_hostname: str :param bucket_bound_hostname: (Optional) If passed, construct the URL relative to the bucket-bound hostname. Value can be bare or with a scheme, e.g., 'example.com' or 'http://example.com'. See: https://cloud.google.com/storage/docs/request-endpoints#cname :type scheme: str :param scheme: (Optional) If ``bucket_bound_hostname`` is passed as a bare hostname, use this value as a scheme. ``https`` will work only when using a CDN. Defaults to ``"http"``. :type service_account_email: str :param service_account_email: (Optional) E-mail address of the service account. :type access_token: str :param access_token: (Optional) Access token for a service account. :rtype: dict :returns: Signed POST policy. Example: Generate signed POST policy and upload a file. >>> from google.cloud import storage >>> client = storage.Client() >>> policy = client.generate_signed_post_policy_v4( "bucket-name", "blob-name", expiration=datetime.datetime(2020, 3, 17), conditions=[ ["content-length-range", 0, 255] ], fields=[ "x-goog-meta-hello" => "world" ], ) >>> with open("bucket-name", "rb") as f: files = {"file": ("bucket-name", f)} requests.post(policy["url"], data=policy["fields"], files=files) Nz.{email}/{datestamp}/auto/storage/goog4_request)Zemail datestampr=rS x-goog-datex-goog-credentialx-goog-algorithmzGOOG4-RSA-SHA256z x-ignore-rN)Zhours)ZsecondsZ) conditions expiration),:)Z separatorszutf-8)rSrrrzx-goog-signaturepolicyz"https://{}.storage.googleapis.com/z"https://storage.googleapis.com/{}/)urlro)Z _credentialsr r r}Z signer_emailsorteditems startswithappendrdatetimeZ timedeltar jsondumps collections OrderedDictZ isoformatbase64Z b64encodeencoderZ b64decodeZ sign_bytesbinasciiZhexlifydecodeupdater )r)rGZ blob_namerrrorZvirtual_hosted_styleZbucket_bound_hostnameschemer~Z access_tokenZ timestamprZx_goog_credentialZrequired_conditionsZ policy_fieldsrSr4ZnowZpolicy_expiresrZ str_to_signZ signatureZsignature_bytesrr,r,r-generate_signed_post_policy_v4spZ            z%Client.generate_signed_post_policy_v4)N)NN)NNNFNrNN)__name__ __module__ __qualname____doc__ZSCOPEr!r# classmethodr0propertyr'setterr7r9r>r1rrEr=r6rKrLrarerprxrrrr __classcell__r,r,r*r-r5s" -        J 3  1 s a 1 E rcCs$|d}t|j|}|||S)aJConvert a JSON bucket to the native object. :type iterator: :class:`~google.api_core.page_iterator.Iterator` :param iterator: The iterator that has retrieved the item. :type item: dict :param item: An item to be converted to a bucket. :rtype: :class:`.Bucket` :returns: The next bucket in the page. r:)getrr/r`)iteratoritemr:r=r,r,r-rwOs   rwcCst|j}||_|S)aConvert a JSON key metadata resource to the native object. :type iterator: :class:`~google.api_core.page_iterator.Iterator` :param iterator: The iterator that has retrieved the item. :type item: dict :param item: An item to be converted to a key metadata instance. :rtype: :class:`~google.cloud.storage.hmac_key.HMACKeyMetadata` :returns: The next key metadata instance in the page. )rr/rQ)rrr{r,r,r-ras r)1rrrrrrtrr\Zgoogle.api_core.client_optionsr&Zgoogle.auth.credentialsrZgoogle.api_corerZgoogle.cloud._helpersrrZgoogle.cloud.clientrZgoogle.cloud.exceptionsrZgoogle.cloud.storage._helpersrr Zgoogle.cloud.storage._httpr Zgoogle.cloud.storage._signingr r r rZgoogle.cloud.storage.batchrZgoogle.cloud.storage.bucketrZgoogle.cloud.storage.blobrZgoogle.cloud.storage.hmac_keyrZgoogle.cloud.storage.aclrrZgoogle.cloud.storage.constantsrobjectr!rrwrr,r,r,r-sH              "