From dc42b6358aa84a8ec7a856c57fd5b01922d5d791 Mon Sep 17 00:00:00 2001
From: William Scanlon <wjs.scanlon@gmail.com>
Date: Fri, 21 Jul 2017 20:18:57 -0400
Subject: [PATCH] Support for Wink oauth application authorization (#8208)

---
 .../www_static/images/config_wink.png         | Bin 0 -> 8174 bytes
 homeassistant/components/wink.py              | 321 ++++++++++++++----
 2 files changed, 262 insertions(+), 59 deletions(-)
 create mode 100644 homeassistant/components/frontend/www_static/images/config_wink.png

diff --git a/homeassistant/components/frontend/www_static/images/config_wink.png b/homeassistant/components/frontend/www_static/images/config_wink.png
new file mode 100644
index 0000000000000000000000000000000000000000..6b91f8cb58ee80f95c0e2277940b629e23a2cfd3
GIT binary patch
literal 8174
zcmeAS@N?(olHy`uVBq!ia0y~yVBE{Vz|hXY#=yYPw4>dcfq{Xg*vT`5gM)*kh9jke
zfkA$$r;B4q#hkZy>qA7o@BRN#{RH2R>{F{^7fqPrJIi!u!mF_6kB2-Ls4H%*klyLL
z#4TSrcZqpYwdzjAli^j$&!ls-woQD$@<{L*&21BJOt|NCZsHTKOHQATu8=-^OC;)M
z-Q=yj88@V+KUimUy8pd=gU;zk>pHs5{VwEtZgKidjos&&^6O`wPZv}E_51g4K_?DH
z6NOJ+;SL;%EjwaVzO)E9Wwf=-6L8`<JK=(`6URbHp(>CXXD5FS#g;UW7o3VM7kD^r
z6<Y*mDK1oR5pXi5jV71ams}m4#V;-_)Q)9UY?*OI<;yxlZZVx5mqG=cIy}91nYYrw
zsWHng1ZS@OQ6BU@Uhc{B>YCS`;y>>Oo^P2_@~L;ZN9}^1!&(creYnDWI`V5<wbQj)
zyW{s)KE0m5{bKD&?^y|}CU@<T;rdoGr+i!AGN~-7TLH&s?Caoqa3|Cuu(`VDW#joM
z?N29GXYdBioBeFoS`qOl8;#W4r&hM++`W8e=T_6{n~c=k=NQ&?y-m(-^g4c!tBbqn
z<jF|SxQAiiESzN*KaNzJlgqR1>{5|uYgN?M+wW{W8e-DBRsY!iGKPvdCOO(kxq0Ub
zA|1b1Z}?kQ=q8h#D7RcZRDA2qOH(aH-tBF8dZ$|R%*oX3>=k>>8s9G7w#oGRdR?aF
zx3eN<Pj+AW`O*1vpSh}Ut4}}uC!YK0<h^N{Cr>?CvZ`p;;?`Z)r8RX+7KYdyp7dIM
zlZ|cX_WOrQ3wL$KWC~~<ulvuXKd(>y_dJ$G`h}U(=X+H<i-z8-FftYjaPy7l5%(=)
ze(Bwl?9+VfnnS3w`o5lvUyH)THf}uUTJtI>EOqvWTd!B%+bOub+IV*OtUw{7$gPK(
z%o9BOH_y9OYqe(CgRSNAI*(84nw4lqt~q7&XwCYx=aX}P#Azs6CqA0SxwqGGTV=SQ
zbhd4TQTT-Xix<;YFWvUW^UkhZ5j~T>Ilq%`@tL!q?$+4;a_01{U8!lZ=ayx?I@Mk9
zdVAoG3lFyMyZHO<qnI;>X7_eUbog&tuwUhRcW0iwVcc}fFFto_{jIv)WDd?uIs5hF
z+1~e`Uj>?bubY3M*~xHn{GU5V*82PGF_SJ+o$K`YMdsF0@ui}?GM3jk8|(@q{kgAx
z)%&vYwWj8VB!&|w4lIg3ee9Oko0~^<Ormz`-?l2U+}b-!eYIig)Cp4swgj2H+46Af
znrF{jzYDTYNISN@O!#Uj-zKif%`q*<H~UE3w#Z^+zgnvIWu<h){OLA3&W7=@+Ammj
ztFJnd?O4GzX}{Z*d_k$76Hn?d)krR2UwW=_tA9{<_VLXIy~P{FcgU|_^6{Fh;pR;%
zo=ghK4BFa%%(u(XHg(s;%mXGz|MPi2y>VNAQ`y<?9((I8C0EZ+El&8p@YR#@==vku
z<s$rEG25%;XDc7C`L{p+q2&K}zE=+x^XsbT*GvD_p7%6fu3}Dny--@@j+^^GAJ?h>
zVSPAull;nt?)z&hXB_8eUTgpK^>_QD^MZx%yG@^SzPC1<lXa)%lP7CZay@y^$~EwP
z6Zs=OyN{tyx5oUr;i-Rz>vv6Pv%kK<Y<Yw2S@xAWnkxAlR<GHzO!EIZ+pVS2J1s3m
z-pIaN^lF2-<El~x6{h99X=^gQBQ~1MJ(6I4KTq9ne&3TbOCEOXb4@cbez2&vXWo*&
zwxU(Fl53(9`Tnsy%v*Mnb=sQN=dW57JJ*QV?t50t^43)9ywSrP<;J(qoWC}n%Sfmw
zV^(8+@R_IF+Rx?o&jU94Q_raE*WQ|RB!?wL{@?Oj9e<w{UJ3|2bL&pyyX$lAFnMY5
z^Oeu$D^nIT?X|GV(2Mo-OJsf*csxdtcW(3M-pV;_*PgoNuv$J5F`aA8cJ<oYC(oX2
z*mT71&&<6oQ!Oh)EJ6cj-+Xm{ujP%UQCFTE*_XY-+R{8@X5G@uA+x;Col5$)jraYR
ziN}9FFymRfK0~_tFaLyqx8iE^celo>vNGSE6Yg+Q@Ar#!uO~chS&=Pq+wNw}vkRXu
zmY#CH{_^1b;Jm*2l*dOux!D;n`+VZg!pr_kOP^o13E9?vdAr`y7oF}WcAj+gy?NQ@
z-?r?6X=Zh?KTMYHFQ2&MhhSIOeeXxdt$!TsOIFM-{Ihlbr!$N*_WzKsxhmlnxubIV
zlR~-wxz?TEZO$B1mrI$LFTa%a{HNXizA3p?^A=ei@Z}GV{J4Kd`LCrJyS-QMO%uL7
zCvDT``3a?ALa!!jd1=oI>{MP{Vf<4}p-^;o{l3Qb`CsSjDShQ;cpH*`%Srg8&guBG
zn^NSrt?CsC`N2B>pwA{%&hA2uEUOJ~n@zG~E@Y}I_Nv~znW7(kXih@E!!jSUJs+5U
ziv52Pl$oE$?sJ5F_v$k9z>S-EU#}89Bf0pz&)b3rPX2pN?hjyHe3K(iUGM%89pP(c
zhfb6Q>*#p)FWtOv(ynKGHge|Y+PJi2tDdDUpTm8JGjn&#Zw(DC1!cYf+a1<(Ox~|e
zxo#-y={-pzFYf=}XUj6P1)qM+J0q!m;(Ywspw)fTcIi%Ovz;eeaYl5al=X+%8~ZOG
z*i|E$-NiX)Td}#!Ix+UR1JAcS3}WAY{n?S_{%WRmZ}>veOEpFNDyBUV{d8p2lj79A
zbGGK}+eHJ@yc1kcR=xA)D4Vm}G9v20vRh?BMqwNC?i#ImWmjgib7Eul!Ojf(20tk;
z@0-h)Y*4B<Jw556$6Gb7ZG5bC7EfDNWn0{~`x*1>-B~fSC$>hvk`K$~=)@oXli7TE
zd4IsS+hu7rpX)z&+nhciar3U`8Qp)1{_iV#?eA`7JALtb#mi*ba=VYhaXYFXe2FgV
zXAQIUj_sJ;bKXklPtA%wm(8xVX=LZQ%SQ88{Cp*B|5&{_HT9f%Va`$ipJy4x|5w%9
z7%yjB?t5n6y^7Mlmy$*rS}~oGjAClS*T2=8S<c<zsdi4HKafA+kVyKGhPoqLE}3oM
zTCX}kUWB(~{ltlmlM;39SFJy^ZA}Z0vIeKOhEAkWOj`Tg+AOJ`oXI}zizGU{Kgfp%
zWoBzE-Eqw|r^+tO`2myGxmj9$62_H@4_CzVect&o@j!+|<s+#cHix6aItPwz_L;$S
z`|PanGhD}$LvsHxhBnWCdHH(q1VQl{R>$zF#N6v)-&OiUdGD~i3cl8>bGm;2O1V2T
zJkNfgt*$I7(|_^73x~4?ZKihV92U<+N<TQ&?0a0|5-Z}P>G>l2?TuTZlg`@BF*C37
zR<d(9KAUH7d}n6fJD2p65)t<$uJg`UZ#{IjIdxLYrBAVDma-Kda&=zcDl^yVq<JrH
zT*LeNq}lJ>rS-qJyiHtw*89?~wIa)SW4te|QM<KocdJ!2`}fpeYD@ky)J&`K;=0Uq
z?s%-p+6_hX4SW8ItXh|unDbkuWTvzJMAO&uhaO$Od+F*oIsNw;OO|Yz_;dE9nVco{
zd-~ISp42E`)OYB)^Yg5V#hV2`MPkZ-tY5Lq`o}q?|LdklpV+BAZP)hm@!gr-?^G)d
z5)Nx-f4itW=Ybg4v)@xqbzA3$?rmAc6LV!<*~V);ZTV%T%*{X7ebzOM3JUAGe|P_(
zIcs=)zLws&6=Kx0*q^1`TX~h~{1(Gy`W?6Z&Th*Mk$tIRraJ%89);wLJn5-l^Pa6e
zEf+7z@Z;FV-N!ediLlDh&|P$Ds>icesY}!}cD$*+5xTom>2Pt*xw*v;^~G8*mM!aX
znzy;+Lf-oH@LWk(Q8zRGKFz)x`Cd%k=X$$WR#?q3x&3<M&Id|G|K|i8f7!81Wy!=f
z*+=fZYO4_6X6AA3^s(T$wzDr2I}diQl|6I%%$(<99D7Yg|Fb(T4&?Xy|MugfHF{~u
z-qtfVo!HP5GrNB79X@M4oi&?&#d`B_NB%z@|LC%$L*k)Z`kJ?;p46;4dTm`%e9Vi#
zBAeFTyKvi1GWOX8<D{ASvOkqhGietWemKxq#W&wez1V7noVb==+`0N0)7{r9PkTJ?
za>?9J2TFvE-RI2Zx_(z+*TwWBFVC~ayx0`tSO19huC5RF4j~tR<CwYrrH&Flzq)I<
zgZocP7*wQqIP~*xzs<h*+Ph=-9w=H~H#t_aBgAT!){T&B9=q*2*Qj?zZZ!CDyH3{k
z>XwAm+M<qRmvonQ=I!pXf%*NnnI#NZqHAnU_cY&%@_j1k5gYGw@51AVA|Wxk#~W|W
zeREo_VijL;ZsPX2NhZd}Gt&GviEb{}^}iN=d5_Y}*0zhk&(?03lzY{8i_GgI%lnTf
z87`c?KwRm3{T#L{M-vpU@}&NrvtzQX#h#Bkn<D}qFFbXv?f3?M^^ZE6=j=bo!`U|B
zxmz{&5`Eu;VbRC8{nGK8&ST5jzh?6Cv)sE_co^R<lxRCWW5&13$(Puz<qy7=w2*h6
zD!ggky@1<xma)$+aOb%-akiHERW!U@Akm{S<HWrW^HX}I<S!e3Zp)lAFRvk3&u`U)
zigz6$FMp}@ym!?+++OfvlgJed*&kMxwvVco6@6N~zsSck<sa|#U)qAx54z?ziH9fb
zsJ!)I(P4>-YYaPPXBI@Cl-<?JH-~TX?v*|2r*kBNK36K*H*ahgx^*M`dY_$Y{}KVl
zB}XC+E_&=fef-0L`CYePw%thaaWqS}Io;EK{ppeJPL<97-85#bNh{g9*5a-fOXVs)
zwUFC8XM1U`yEr*~Q`wJfHw_70w-w(Xd^N1vU;1WYinr{&D_7U(dnj8TJaFK2fc=7B
zd$vmMvgCSL^VZ^(gi(U0f6J;`6Z72#v)4pC>iIFrw<6bU7BAnPWg%;X3wpOb5#Maa
z%xCpBXXUB|nrk~u9>1`9>0|X_=f@t4(2zTR?73FPCwH|KZi`>A@%(X%#d>Q%$+b=3
zww<SM*LL&3l7>^Br3?5qezl3{>?qvPduHcNn;*jdUoKwP_<L2*k9qU6`-e>K|Nc|8
z|Net@zry2cw;N{&CUY)dBf0%tG8<oA@s0IsF1uH(`w%&=`uC;!kAJf+24#P){_MSU
z>pDj9k4sozKK{PN?17)$J2S31eBHNvQd@arpRt*V&(Z(Tu#N3itkooA-G%crdQUEy
zc_8rp_ieLZExGv4b^08y3yR$zb&UC{CQI7By)nzZuJZoQ^`i2Hb^4sG0&cfo_FBap
z&oQz1ldodC<<>37`3`&PzSITZek-FqZ;j}8-Z&3Nf9pPl<(<c$ZjUQB<~{demEE+2
z;{h?7L?>VO^Ia=E_huJo>kkobt8nJ6zIsV(HDfaFAIhlm`B-(}#GyT*5jE~BZkT>p
z<ef0Lr+CegM+?rqyRIN-eY?vn=-z{U3%+qLU8;BEXNIDwBj@Tl0j0cK-%h@|q~emZ
z;erQGe*}2@{!hQATi5%3y6w4Ji}@#&uI@{gHw*gwd%w}+M)sLY9lpHf|8&Clec-mI
znsU~=rc~#DD17ksdc||6-;9SeUq4&AX6A1()#!iS%kB2fug?GQ@!;$A1q~`)V(JBX
z2bMjqz4!CNkwv%9o|$vv+e{s+oEx(qZ%{klKSyrY>f$NE5sy@?b>-&o?ORnl_sBBw
z2}VDvx90MvJ~jK|z2Dz!FZbz93)k~hWXKuH%3TfYKg<1b)!biF$4|t+@`*6Me6F>3
z_szcUifOFAZldYFnxfw<ringFG*y|fQLFWpZt9efiU>3RgMs0mwdqRQ(|CK!eUBI=
z<~`q8rk(KiQ0f!4w~P0z=@4=k%S@BatG2!R+p04@s$|_-^(Ak0Zl)Z4zql;eQ0KJD
zO^)1cR#~}rI;+DC+&>l=B<$B*mhx!jqO^40V{24;-if_hoxP#*;PqQgix2x0&FNGT
zzOm}`3KPA<tMV7G+$H6{VY^RzpP}~(U8%<sMoSZV*Dk%sI!&}WcKb7tGj9%GT&b-3
z^-$l=36G3UL`R*Ty!Gi7ok~9Mgx@nZN6rlKuZ$F2dT!|wwI3NbgO3VMI&t2|;bZH?
zy2N+Mv8NCG+@Yf@H+^s4t=hRWHgS0xw(XqnbVYR5`OR<jHxy0Ucfm;0N#E+7SlZ<i
zyVvhI{_*zZnZ1YZ{CWQKD6h3f?O#!^dtVkx2=A=^YP@FmeH)9uX$Q7@&v)0ne{lW%
zKccELJoaUq?%#3x82`2ykCzXpq^5X&JijCFdH0n4KZT@itkUk3u(!?*<NwDh$$I)x
z^~NcCT|GB;_gc?W{H*oo)}b3BXJ*b+nRY#R-^ru9a*wL~_Wyr^>&T>kE^^0yX{|c_
z`opnf#`!PVuC4o0efaF-B{wfNeY_mDM~~aP-H)rk+3o*JgUZ<49}UU9TYLU3^0N6g
z#pDcgyv*X#`-TR(scRle_b+C3@1DI-&g}7_(kV~E10sWuPOFkv>z*nq{pp0?j2o$k
zjIQM6iFPO_|4l0iof={u8W{K7Ie*iHUB4`g-gEzFl8d`NGcs}yqqD23X{dFEi+j$V
z)-$E8YrMLd`)j|{d7nu7YbBmK_3D(H3TAelJ$KILyj!uL!d>)fX;|C|)5(!D`io!d
zy*gzcn7?Vlq)?BAyXW+NTPVsZQyg9Fyyc?A@d-(4rG0%>vnQ&2esIn_!lReneRt~@
z&iw}3Gd6$r%)jCB_S^qw+UdGadNdAu9Q!4HA$)3Z=>BG-^?f&vh=k>zkp7Xyk+|i4
zSHY`^Csy%#TZF|rhgQn&yWtWPX6ycM(n0aLhwk`4U;BE+a{v9g>oXKKKe1DL{36b!
zzP|qd)O9U0B-;68lMXhqPT&7vo76SCZS1d~<v#JfwA)&-rQxK}GSFaH3>(UD*@+qV
zOrLc1zT{Lq66!SX3sHk>J*#!TgnSd%SO5BO?iRM6{+7G#Z=KwKXaAh7?N^FFZx8!p
zz4E(0|EJHk`@SCO{`2m|iT&(#puwrV{|oCrXa3k~_48P8&FVXz-+!3<a3~&0HPHO`
z;LB2R|8KLF9{#UB19dpZ_(%I<{R_)`bL#Fkv&zrOTA24ddd|MriTjE-|M}~w*fOKX
zM5s#b-9Gi&C;xBwsYMpo))YVfy{GER*-5XDf7~x8^~f{qRmIn@Wqv=hD%IaP?z46L
z@4QXGsiSlG#0%VhGxJiU416Vj|9|lM*NS<YK3%U|eYLe~UgYP?ni1Q(b}whXtaHcq
z{sHfN^}^)~dGq`dFMj<rMZHB}^3_nYW#(~qyZkC&SlRw4K6UnEf6ktWdneM5mB`Js
zKKA%#ru2EyeJ*pKixpj4v+%`3k+ixWZ2scci)%8b1zWw-{o_ARziNU@fA_l6+kBlk
z6!oUK&HEB{W5V|nFZy}QH*Boo{k)tte%0=`wRRtlPKw>p_Gh-J!dzGLqn{q_whIvr
zNceVl^$B)`$xYIFH`!X=URdZHzKhF=!!R>b<%>|{=6{Mhb$e&T=Dz><sn5;JOM2#h
z&ABrjr*-wsZg;)z;rsG`;;rULot>Y>gv8f8aG(4o-|DpdY%!;f&zC)3NNzl{y{~3s
zYU9+M78MEZw(b5)CtKQ{NV*(cx$nwx@BOP5FMAUi$2O&<^2wU0v&!8*F7eB5aVxgW
zkO;p!W8R|6jpw~5tbfT{w=Owq#`{TUJPa0IILUeb#^;#wVk_38_KELb>wmm`>A%AB
zDs}z*Uxw@JjOKx~@0hf1(}my}w)S#1W^uM}_<qct&Ak4mg|AI_9*6N)5!nSrLA+86
z=hQrpd{_M<@|8cM#EjZ(t)JP`KB?Zi`9JeRYKwrAPh5EH_h)aa!zO>e{r}NbU;8IF
z=6)}F|MsKCD?`5hcTeojwcGdQ?9~+3*Q<Ekz;&U7f0c3mzUG_r;sb;JD5<}jf1Ibk
zx%^&5_x_j9K6cbF#&RgGvkH%Wu`ohI<G<$T_{!Gl_i~>sWsVD(J1^4wZ1UN*&?h<^
z^=oud3td@@!@QAya`w)CUbgROcWQ6LyvX89np(9QKO`1_Mu&A5?ccxuzgM^uhhobP
znRS~CLF3g)e`qsO?SW-Xe9^iR)+4Hy?jHWuAF5?twP8N%BBdR=W?grVWXSzZQZWqQ
zRp-P}$m;Ut`}gnhFTFZCuk?TZA!%gy=HU&A;v?sJmK~JpEj^XGc7}jcOyQ-ymA#gQ
zce=mYG_qf)+%$XrzV)A`-{X$n{#!mS>06!Ok!mgVLov_R{N_1!zdF;xKl0%j;|25Y
zvfHUAy?-IU`K^v=y4tgUxgoW?Lf7QaP5V8QGqQHZugo9S=2Pbd+`e-9^81>;ouws@
z=l(t8eI|~7cdhbu={o6emp>fmzJ1@xr%b5o`lLMhooDx!{HkB};>Xg^^V;!TH?Gc2
zKbiY}cf-{0oBzMJEnzPCS+V)|qHOEBjfQ^`CpPknN&ZM!IM4o$+}Ye%t^Zl!KTj{!
z&^MZNNB`x9xN8R+?C$;9G5hWO_(fOa-<gRdO`2f1H~U2Vt=&K8ACTGYcl^^1jeunW
zzqjubY^-?jzcjgjzEqs~^7Yf-sz1D@uX*H;Z|ZORUnhKb7=8D-=%v!V&mgrT=8{C~
zRJmpKFOuuaO}4xG7c}nD;CdDlz5G;azO$klXXT~cX<sfD9Mb<dMN?<4=+RX>I2e)^
zE#FWRCgQ!^o#*`GZySE+RAiTzuiA4{-1A*8SAQHkyWLCPTTh?<i%I=i9ed=>-#L-*
zE1S#Cw;G>s?YhY5(o^Gj{QBW*{C>u-*PidZar@{Z`;|AEOBS}R@lW`^?ELXX+x>!n
z&OG($|8L9ftYx}w!S5vHS-0u+RNJdBJLsGjt$%p;qUq1?fBZ0cbHRhddOh{86wll(
z32fT7P~iHE?APByPgniE@!tH|6uWT$v*Lf5@>U)CwqE1H?Zcnk^!LAHd~v*PnLLkR
zV>Y+JjjfW4C**dtL<&9#$b4~a<DLJV3vM6()SQ0P-gegAav#NI-cK(+le1D@td}#-
zU{347?qd6Q#(QnvzfdiE7GiYn>hk`#?R!PswL<PKOb+wskB&aK>4aQkabsVkc=Y^z
zc3uCMY<h7_V%xEw_pRFk^YZ!o<t&`fmR@`lC*kT7Zhm^U?Gv~7<L~s{7=kOT&Nl2m
z>D-(u^*cR&R`ulzxf(~dx;y!|nBCYqv!a>L_<)b>b?cCA_1BIU?dRU~*~R?7@XE)w
z*(Tk~7>t)~xLrJ}KJR(cGtQ;ApQir0*T63-TfZaO;>@|ad%hdfxpu$rO5Dhoz%@1g
z<>8uwl!$nr+Mdp;GW9;5B?YHS=f7FDNxy5>dKdmP$#YKS^-o`${;Tnz^n~Kra|`o4
zj;YTv6L}P+vao#Z455=stYzPLe9Zox^#0bv(Q|q6&AP`TN#|DByn6A_rCfijtuwc4
z!d$6ei>kJHKRvsTL#|i;Pu+aQuA_lk*7h%t+FA=KGyJu%f30j~)^_`k-i>QJJQkg2
z^|1KdqG;A;|L5|Q#-iVB^Mn4~@%<JktNzSQka@@Ms-Ihy_vimn{NOu*<Bcs(+r6V#
z)SG%<F21c-vXeQr%)j^8s?X8abJ>gz<uz~$xJh#r>Q1__JI!U%L;=RWgC8}vPQNAG
z;Gg)rw_w}u>37wunC`vlNvb@tI@<nsKkuHck=yon8~u-;8<hFs<%w&(8(*jjy;0@)
z94T-9cQ3no;2pLL>>5`0JUX9kYq;n5_zLF=7nL)!gr2l1&MErcaH3P%+PLjU?S`U5
zS<Z^<96u?YHhr?~hr~X)9qzkp-n@IU@R`ejaLI<sc)rKnulDZEvE|&jY-P=av<K&#
z?d9*tx$5lAu{Hg2$(`ky<iwKlUw`)fzuv!hasR`7^A_XtKO~Zs7A%+l{-CP&y02o`
z+s7^;D$iCj+i%_#D)+a$U-<c{c|U%&=$SV~URFN%_;dBnrSseD%M#_Tb8An$V<y@+
z_tjC$N1yB7$nGuCo_L1qvkrfbv*J3}PfN;mJFf-KT$A)~L-~(IYk&P%ch|h?-i?g1
z<L&#T=Dn49aqG<AB9XBF;&DlfBG-Kh`1xJ#PN7v#L*+E5U5|CT-%bpvtK>4AtJS})
zzed<-PUW#wt_zpjcjrI2Z|K&#{Hxr)Y-{H2FAaWIRs37gW$V{}Q~!nfF1v?QtY3Fu
ztdZ6~{r`sVQ{TWN6}wK_UOd0ZdRb3}mNC=2&3os3a5c<6v-~B8*!@)num5e<vAS~n
zv$<Ph-<#ugPETKctJ^ov#v)9zuK}DO{j09eh}``3kE&(Yk<Vv@t&L~#zw7uWeO$`h
z{<r<hh1PEF2gR9oeOl)7DWitv?(z_+HY3xhhi6+2b;3fY$$y!2o6kRb@y@INHMrB~
z6?OzF?VJ}k@Bi@&*UgrFDCwFf@Ben`gALQyoBl31?z{BiwT6$YIM@42Jbkrj#hzlV
z?$D`kn&tMDZRvOYpOWyK=f7E>O7b-kKZ`v&MPKH9=QMc6ZTKc$;_xFmdDb%hc<Y+B
z=XV1VOaqD;?=O|P+vXHg{Ukp>ZuJv>KW@b%8qnr1ZDwb&)wHy!)Bn^bD9SGgH2-{+
Qfq{X+)78&qol`;+04kp0`~Uy|

literal 0
HcmV?d00001

diff --git a/homeassistant/components/wink.py b/homeassistant/components/wink.py
index 7024291e7fe..58a6f51b67b 100644
--- a/homeassistant/components/wink.py
+++ b/homeassistant/components/wink.py
@@ -7,15 +7,21 @@ https://home-assistant.io/components/wink/
 import logging
 import time
 import json
+import os
 from datetime import timedelta
 
 import voluptuous as vol
+import requests
 
+from homeassistant.loader import get_component
+from homeassistant.core import callback
+from homeassistant.components.http import HomeAssistantView
 from homeassistant.helpers import discovery
 from homeassistant.helpers.event import track_time_interval
 from homeassistant.const import (
-    CONF_ACCESS_TOKEN, ATTR_BATTERY_LEVEL, CONF_EMAIL, CONF_PASSWORD,
-    EVENT_HOMEASSISTANT_START, EVENT_HOMEASSISTANT_STOP)
+    ATTR_BATTERY_LEVEL, CONF_EMAIL, CONF_PASSWORD,
+    EVENT_HOMEASSISTANT_START,
+    EVENT_HOMEASSISTANT_STOP, __version__)
 from homeassistant.helpers.entity import Entity
 import homeassistant.helpers.config_validation as cv
 
@@ -23,11 +29,10 @@ REQUIREMENTS = ['python-wink==1.3.1', 'pubnubsub-handler==1.0.2']
 
 _LOGGER = logging.getLogger(__name__)
 
-CHANNELS = []
-
 DOMAIN = 'wink'
 
 SUBSCRIPTION_HANDLER = None
+
 CONF_CLIENT_ID = 'client_id'
 CONF_CLIENT_SECRET = 'client_secret'
 CONF_USER_AGENT = 'user_agent'
@@ -37,8 +42,24 @@ CONF_DEFINED_BOTH_MSG = 'Remove access token to use oath2.'
 CONF_MISSING_OATH_MSG = 'Missing oath2 credentials.'
 CONF_TOKEN_URL = "https://winkbearertoken.appspot.com/token"
 
+ATTR_ACCESS_TOKEN = 'access_token'
+ATTR_REFRESH_TOKEN = 'refresh_token'
+ATTR_CLIENT_ID = 'client_id'
+ATTR_CLIENT_SECRET = 'client_secret'
+
+WINK_AUTH_CALLBACK_PATH = '/auth/wink/callback'
+WINK_AUTH_START = '/auth/wink'
+WINK_CONFIG_FILE = '.wink.conf'
+USER_AGENT = "Manufacturer/Home-Assistant%s python/3 Wink/3" % (__version__)
+
+DEFAULT_CONFIG = {
+    'client_id': 'CLIENT_ID_HERE',
+    'client_secret': 'CLIENT_SECRET_HERE'
+}
+
 SERVICE_ADD_NEW_DEVICES = 'add_new_devices'
 SERVICE_REFRESH_STATES = 'refresh_state_from_wink'
+SERVICE_KEEP_ALIVE = 'keep_pubnub_updates_flowing'
 
 CONFIG_SCHEMA = vol.Schema({
     DOMAIN: vol.Schema({
@@ -52,11 +73,6 @@ CONFIG_SCHEMA = vol.Schema({
                       msg=CONF_MISSING_OATH_MSG): cv.string,
         vol.Exclusive(CONF_EMAIL, CONF_OATH,
                       msg=CONF_DEFINED_BOTH_MSG): cv.string,
-        vol.Exclusive(CONF_ACCESS_TOKEN, CONF_OATH,
-                      msg=CONF_DEFINED_BOTH_MSG): cv.string,
-        vol.Exclusive(CONF_ACCESS_TOKEN, CONF_APPSPOT,
-                      msg=CONF_DEFINED_BOTH_MSG): cv.string,
-        vol.Optional(CONF_USER_AGENT, default=None): cv.string
     })
 }, extra=vol.ALLOW_EXTRA)
 
@@ -66,30 +82,118 @@ WINK_COMPONENTS = [
 ]
 
 
+def _write_config_file(file_path, config):
+    try:
+        with open(file_path, 'w') as conf_file:
+            conf_file.write(json.dumps(config, sort_keys=True, indent=4))
+    except IOError as error:
+        _LOGGER.error("Saving config file failed: %s", error)
+        raise IOError("Saving Wink config file failed")
+    return config
+
+
+def _read_config_file(file_path):
+    try:
+        with open(file_path, 'r') as conf_file:
+            return json.loads(conf_file.read())
+    except IOError as error:
+        _LOGGER.error("Reading config file failed: %s", error)
+        raise IOError("Reading Wink config file failed")
+
+
+def _request_app_setup(hass, config):
+    """Assist user with configuring the Wink dev application."""
+    hass.data['configurator'] = True
+    configurator = get_component('configurator')
+
+    # pylint: disable=unused-argument
+    def wink_configuration_callback(callback_data):
+        """Handle configuration updates."""
+        _config_path = hass.config.path(WINK_CONFIG_FILE)
+        if not os.path.isfile(_config_path):
+            setup(hass, config)
+            return
+
+        client_id = callback_data.get('client_id')
+        client_secret = callback_data.get('client_secret')
+        if None not in (client_id, client_secret):
+            _write_config_file(_config_path,
+                               {ATTR_CLIENT_ID: client_id,
+                                ATTR_CLIENT_SECRET: client_secret})
+            setup(hass, config)
+            return
+        else:
+            error_msg = ("Your input was invalid. Please try again.")
+            _configurator = hass.data[DOMAIN]['configuring'][DOMAIN]
+            configurator.notify_errors(_configurator, error_msg)
+
+    start_url = "{}{}".format(hass.config.api.base_url,
+                              WINK_AUTH_CALLBACK_PATH)
+
+    description = """Please create a Wink developer app at
+                     https://developer.wink.com.
+                     Add a Redirect URI of {}.
+                     They will provide you a Client ID and secret
+                     after reviewing your request.
+                     (This can take several days).
+                     """.format(start_url)
+
+    hass.data[DOMAIN]['configuring'][DOMAIN] = configurator.request_config(
+        hass, DOMAIN, wink_configuration_callback,
+        description=description, submit_caption="submit",
+        description_image="/static/images/config_wink.png",
+        fields=[{'id': 'client_id', 'name': 'Client ID', 'type': 'string'},
+                {'id': 'client_secret',
+                 'name': 'Client secret',
+                 'type': 'string'}]
+    )
+
+
+def _request_oauth_completion(hass, config):
+    """Request user complete Wink OAuth2 flow."""
+    hass.data['configurator'] = True
+    configurator = get_component('configurator')
+    if DOMAIN in hass.data[DOMAIN]['configuring']:
+        configurator.notify_errors(
+            hass.data[DOMAIN]['configuring'][DOMAIN],
+            "Failed to register, please try again.")
+        return
+
+    # pylint: disable=unused-argument
+    def wink_configuration_callback(callback_data):
+        """Call setup again."""
+        setup(hass, config)
+
+    start_url = '{}{}'.format(hass.config.api.base_url, WINK_AUTH_START)
+
+    description = "Please authorize Wink by visiting {}".format(start_url)
+
+    hass.data[DOMAIN]['configuring'][DOMAIN] = configurator.request_config(
+        hass, DOMAIN, wink_configuration_callback,
+        description=description
+    )
+
+
 def setup(hass, config):
     """Set up the Wink component."""
     import pywink
-    import requests
     from pubnubsubhandler import PubNubSubscriptionHandler
 
-    hass.data[DOMAIN] = {}
-    hass.data[DOMAIN]['entities'] = []
-    hass.data[DOMAIN]['unique_ids'] = []
-    hass.data[DOMAIN]['entities'] = {}
-
-    user_agent = config[DOMAIN].get(CONF_USER_AGENT)
-
-    if user_agent:
-        pywink.set_user_agent(user_agent)
-
-    access_token = config[DOMAIN].get(CONF_ACCESS_TOKEN)
-    client_id = config[DOMAIN].get('client_id')
+    if hass.data.get(DOMAIN) is None:
+        hass.data[DOMAIN] = {
+            'unique_ids': [],
+            'entities': {},
+            'oauth': {},
+            'configuring': {},
+            'pubnub': None,
+            'configurator': False
+        }
 
     def _get_wink_token_from_web():
-        email = hass.data[DOMAIN]["oath"]["email"]
-        password = hass.data[DOMAIN]["oath"]["password"]
+        _email = hass.data[DOMAIN]["oauth"]["email"]
+        _password = hass.data[DOMAIN]["oauth"]["password"]
 
-        payload = {'username': email, 'password': password}
+        payload = {'username': _email, 'password': _password}
         token_response = requests.post(CONF_TOKEN_URL, data=payload)
         try:
             token = token_response.text.split(':')[1].split()[0].rstrip('<br')
@@ -98,59 +202,106 @@ def setup(hass, config):
             return False
         pywink.set_bearer_token(token)
 
-    if access_token:
-        pywink.set_bearer_token(access_token)
-    elif client_id:
-        email = config[DOMAIN][CONF_EMAIL]
-        password = config[DOMAIN][CONF_PASSWORD]
-        client_id = config[DOMAIN]['client_id']
-        client_secret = config[DOMAIN]['client_secret']
+    client_id = config[DOMAIN].get(ATTR_CLIENT_ID)
+    client_secret = config[DOMAIN].get(ATTR_CLIENT_SECRET)
+    email = config[DOMAIN].get(CONF_EMAIL)
+    password = config[DOMAIN].get(CONF_PASSWORD)
+    if None not in [client_id, client_secret]:
+        _LOGGER.info("Using legacy oauth authentication")
+        hass.data[DOMAIN]["oauth"]["client_id"] = client_id
+        hass.data[DOMAIN]["oauth"]["client_secret"] = client_secret
+        hass.data[DOMAIN]["oauth"]["email"] = email
+        hass.data[DOMAIN]["oauth"]["password"] = password
         pywink.legacy_set_wink_credentials(email, password,
                                            client_id, client_secret)
-        hass.data[DOMAIN]['oath'] = {"email": email,
-                                     "password": password,
-                                     "client_id": client_id,
-                                     "client_secret": client_secret}
-    else:
-        email = config[DOMAIN][CONF_EMAIL]
-        password = config[DOMAIN][CONF_PASSWORD]
-        hass.data[DOMAIN]['oath'] = {"email": email, "password": password}
+    elif None not in [email, password]:
+        _LOGGER.info("Using web form authentication")
+        hass.data[DOMAIN]["oauth"]["email"] = email
+        hass.data[DOMAIN]["oauth"]["password"] = password
         _get_wink_token_from_web()
+    else:
+        _LOGGER.info("Using new oauth authentication")
+        config_path = hass.config.path(WINK_CONFIG_FILE)
+        if os.path.isfile(config_path):
+            config_file = _read_config_file(config_path)
+            if config_file == DEFAULT_CONFIG:
+                _request_app_setup(hass, config)
+                return True
+            # else move on because the user modified the file
+        else:
+            _write_config_file(config_path, DEFAULT_CONFIG)
+            _request_app_setup(hass, config)
+            return True
 
+        if DOMAIN in hass.data[DOMAIN]['configuring']:
+            _configurator = hass.data[DOMAIN]['configuring']
+            get_component('configurator').request_done(_configurator.pop(
+                DOMAIN))
+
+        # Using oauth
+        access_token = config_file.get(ATTR_ACCESS_TOKEN)
+        refresh_token = config_file.get(ATTR_REFRESH_TOKEN)
+
+        # This will be called after authorizing Home-Assistant
+        if None not in (access_token, refresh_token):
+            pywink.set_wink_credentials(config_file.get(ATTR_CLIENT_ID),
+                                        config_file.get(ATTR_CLIENT_SECRET),
+                                        access_token=access_token,
+                                        refresh_token=refresh_token)
+        # This is called to create the redirect so the user can Authorize
+        # Home-Assistant
+        else:
+
+            redirect_uri = '{}{}'.format(hass.config.api.base_url,
+                                         WINK_AUTH_CALLBACK_PATH)
+
+            wink_auth_start_url = pywink.get_authorization_url(
+                config_file.get(ATTR_CLIENT_ID), redirect_uri)
+            hass.http.register_redirect(WINK_AUTH_START, wink_auth_start_url)
+            hass.http.register_view(WinkAuthCallbackView(config,
+                                                         config_file,
+                                                         pywink.request_token))
+            _request_oauth_completion(hass, config)
+            return True
+
+    pywink.set_user_agent(USER_AGENT)
     hass.data[DOMAIN]['pubnub'] = PubNubSubscriptionHandler(
         pywink.get_subscription_key())
 
+    def _subscribe():
+        hass.data[DOMAIN]['pubnub'].subscribe()
+
+    # Call subscribe after the user sets up wink via the configurator
+    # All other methods will complete setup before
+    # EVENT_HOMEASSISTANT_START is called meaning they
+    # will call subscribe via the method below. (start_subscription)
+    if hass.data[DOMAIN]['configurator']:
+        _subscribe()
+
     def keep_alive_call(event_time):
         """Call the Wink API endpoints to keep PubNub working."""
-        _LOGGER.info("Getting a new Wink token.")
-        if hass.data[DOMAIN]["oath"].get("client_id") is not None:
-            _email = hass.data[DOMAIN]["oath"]["email"]
-            _password = hass.data[DOMAIN]["oath"]["password"]
-            _client_id = hass.data[DOMAIN]["oath"]["client_id"]
-            _client_secret = hass.data[DOMAIN]["oath"]["client_secret"]
-            pywink.set_wink_credentials(_email, _password, _client_id,
-                                        _client_secret)
-        else:
-            _LOGGER.info("Getting a new Wink token.")
-            _get_wink_token_from_web()
-        time.sleep(1)
         _LOGGER.info("Polling the Wink API to keep PubNub updates flowing.")
-        _LOGGER.debug(str(json.dumps(pywink.wink_api_fetch())))
+        pywink.set_user_agent(str(int(time.time())))
+        _temp_response = pywink.get_user()
+        _LOGGER.debug(str(json.dumps(_temp_response)))
         time.sleep(1)
-        _LOGGER.debug(str(json.dumps(pywink.get_user())))
+        pywink.set_user_agent(USER_AGENT)
+        _temp_response = pywink.wink_api_fetch()
+        _LOGGER.debug(str(json.dumps(_temp_response)))
 
     # Call the Wink API every hour to keep PubNub updates flowing
-    if access_token is None:
-        track_time_interval(hass, keep_alive_call, timedelta(minutes=120))
+    track_time_interval(hass, keep_alive_call, timedelta(minutes=60))
 
     def start_subscription(event):
         """Start the pubnub subscription."""
-        hass.data[DOMAIN]['pubnub'].subscribe()
+        _subscribe()
+
     hass.bus.listen(EVENT_HOMEASSISTANT_START, start_subscription)
 
     def stop_subscription(event):
         """Stop the pubnub subscription."""
         hass.data[DOMAIN]['pubnub'].unsubscribe()
+
     hass.bus.listen(EVENT_HOMEASSISTANT_STOP, stop_subscription)
 
     def force_update(call):
@@ -166,8 +317,9 @@ def setup(hass, config):
     def pull_new_devices(call):
         """Pull new devices added to users Wink account since startup."""
         _LOGGER.info("Getting new devices from Wink API")
-        for component in WINK_COMPONENTS:
-            discovery.load_platform(hass, component, DOMAIN, {}, config)
+        for _component in WINK_COMPONENTS:
+            discovery.load_platform(hass, _component, DOMAIN, {}, config)
+
     hass.services.register(DOMAIN, SERVICE_ADD_NEW_DEVICES, pull_new_devices)
 
     # Load components for the devices in Wink that we support
@@ -178,6 +330,57 @@ def setup(hass, config):
     return True
 
 
+class WinkAuthCallbackView(HomeAssistantView):
+    """Handle OAuth finish callback requests."""
+
+    url = '/auth/wink/callback'
+    name = 'auth:wink:callback'
+    requires_auth = False
+
+    def __init__(self, config, config_file, request_token):
+        """Initialize the OAuth callback view."""
+        self.config = config
+        self.config_file = config_file
+        self.request_token = request_token
+
+    @callback
+    def get(self, request):
+        """Finish OAuth callback request."""
+        from aiohttp import web
+
+        hass = request.app['hass']
+        data = request.GET
+
+        response_message = """Wink has been successfully authorized!
+         You can close this window now! For the best results you should reboot
+         HomeAssistant"""
+        html_response = """<html><head><title>Wink Auth</title></head>
+                <body><h1>{}</h1></body></html>"""
+
+        if data.get('code') is not None:
+            response = self.request_token(data.get('code'),
+                                          self.config_file["client_secret"])
+
+            config_contents = {
+                ATTR_ACCESS_TOKEN: response['access_token'],
+                ATTR_REFRESH_TOKEN: response['refresh_token'],
+                ATTR_CLIENT_ID: self.config_file["client_id"],
+                ATTR_CLIENT_SECRET: self.config_file["client_secret"]
+            }
+            _write_config_file(hass.config.path(WINK_CONFIG_FILE),
+                               config_contents)
+
+            hass.async_add_job(setup, hass, self.config)
+
+            return web.Response(text=html_response.format(response_message),
+                                content_type='text/html')
+
+        error_msg = "No code returned from Wink API"
+        _LOGGER.error(error_msg)
+        return web.Response(text=html_response.format(error_msg),
+                            content_type='text/html')
+
+
 class WinkDevice(Entity):
     """Representation a base Wink device."""