RubyGems - authing_ruby - Versions diffs - 1.1.4 → 1.1.5 - Mend

authing_ruby 1.1.4 → 1.1.5

Files changed (462) hide show

data/lib/authing_ruby/test/js_sdk_test/node_modules/authing-js-sdk/build/umd/lib/management/AclManagementClient.d.ts DELETED Viewed

@@ -1,236 +0,0 @@
-import { GraphqlClient } from './../common/GraphqlClient';
-import { ManagementTokenProvider } from './ManagementTokenProvider';
-import { IAppAccessPolicy, IAppAccessPolicyQueryFilter, IApplication, IApplicationAccessPolicies, IResourceDto, IResourceQueryFilter, IResourceResponse, IResourceUpdateDto, ManagementClientOptions, Namespace, Namespaces, ProgrammaticAccessAccount, ProgrammaticAccessAccountList } from './types';
-import { AuthorizeResourceOpt, CommonMessage, PaginatedAuthorizedResources, PolicyAssignmentTargetType, ResourceType } from '../../types/graphql.v2';
-import { HttpClient } from '../common/HttpClient';
-/**
- * @class AclManagementClient 管理权限、访问控制
- * @description Authing 基于 PBAC（Policy Based Access Control，基于策略的访问控制）构建权限模型，
- * 可以和 RBAC （Role Based Access Control，基于角色的访问控制）结合，实现非常灵活、精细化的权限控制。
- * 此模块将此模型抽象成了两个方法: allow, isAllowed。
- *
- * @example
- *
- * 请使用以下方式使用该模块，而不要直接初始化该模块：
- *
- * \`\`\`javascript
- * import { ManagementClient } from "authing-js-sdk"
- * const managementClient = new ManagementClient({
- *    userPoolId: "YOUR_USERPOOL_ID",
- *    secret: "YOUR_USERPOOL_SECRET",
- * })
- * managementClient.acl.allow // 允许某个用户对某个资源进行某个操作
- * managementClient.acl.isAllowed // 判断某个用户是否对某个资源有某个操作权限
- * \`\`\`
- *
- * @name AclManagementClient
- */
-export declare class AclManagementClient {
-    options: ManagementClientOptions;
-    graphqlClient: GraphqlClient;
-    httpClient: HttpClient;
-    tokenProvider: ManagementTokenProvider;
-    constructor(options: ManagementClientOptions, graphqlClient: GraphqlClient, httpClient: HttpClient, tokenProvider: ManagementTokenProvider);
-    /**
-     * 生成随机字符串
-     * @param randomLenth 随机长度
-     * @returns string
-     */
-    static randomString(randomLenth?: number): string;
-    /**
-     * @name allow
-     * @name_zh 允许某个用户对某个资源进行某个操作
-     *
-     * @description 允许某个用户对某个资源进行某个操作
-     *
-     * @param {string} userId 用户 ID
-     * @param {string} action 操作名称，推荐使用 \<resourceType\>:\<actionName\> 的格式，如 `books:edit`, `books:list`
-     * @param {string} resource 资源名称, 必须为 \<resourceType\>:\<resourceId\> 格式或者为 *, 如 `*`, `books:123`, `books:*`
-     * @example
-     * managementClient.acl.allow('USERID1', 'books:123', 'books:read')
-     * managementClient.acl.isAllowed('USERID1', 'books:123', 'books:read') // true
-     * managementClient.acl.isAllowed('USERID1', 'books:123', 'books:edit') // false
-     *
-     * @example
-     * managementClient.acl.allow('USERID2', 'books:*', 'books:*')
-     * managementClient.acl.isAllowed('USERID2', 'books:123', 'books:read') // true
-     * managementClient.acl.isAllowed('USERID2', 'books:124', 'books:edit') // true
-     *
-     * @returns {Promise<CommonMessage>}
-     * @memberof AclManagementClient
-     */
-    allow(userId: string, resource: string, action: string, namespace: string): Promise<CommonMessage>;
-    /**
-     * @name isAllowed
-     * @name_zh 判断某个用户是否对某个资源有某个操作权限
-     *
-     * @description 判断某个用户是否对某个资源有某个操作权限
-     *
-     * @param {string} userId 用户ID
-     * @param {string} action 操作名称，推荐使用 \<resourceType\>:\<actionName\> 的格式，如 `books:edit`, `books:list`
-     * @param {string} resource 资源名称, 必须为 \<resourceType\>:\<resourceId\> 格式或者为 *, 如 `*`, `books:123`, `books:*`
-     * @example
-     * managementClient.acl.isAllowed('USERID', 'books:*', 'books:edit')
-     *
-     * @returns {Promise<boolean>} 是否具备操作权限
-     * @memberof AclManagementClient
-     *
-     */
-    isAllowed(userId: string, resource: string, action: string, opts?: {
-        namespace?: string;
-    }): Promise<boolean>;
-    /**
-     * @description 获取用户被授权的所有资源
-     *
-     * @param userId
-     * @param namespace
-     */
-    listAuthorizedResources(targetType: PolicyAssignmentTargetType, targetIdentifier: string, namespace: string, options?: {
-        resourceType?: ResourceType;
-    }): Promise<PaginatedAuthorizedResources>;
-    /**
-     * @description 将一个（类）资源授权给用户、角色、分组、组织机构，且可以分别指定不同的操作权限。
-     *
-     */
-    authorizeResource(params: {
-        namespace: string;
-        resource: string;
-        opts: AuthorizeResourceOpt[];
-    }): Promise<CommonMessage>;
-    /**
-     * @description 获取具备某个（类）资源操作权限的用户、分组、角色、组织机构。
-     * @param namespace {string} 权限分组标识
-     * @param resource {string} 资源标识
-     * @param actions {string[]} 资源操作标识
-     * @param targetType {string} 筛选项，指定返回主体的类型，可选值为 'USER'、'ROLE'、'ORG'、'GROUP'
-     */
-    getAuthorizedTargets(options: {
-        namespace: string;
-        resource: string;
-        resourceType: 'BUTTON' | 'UI' | 'MENU' | 'API' | 'DATA';
-        actions?: {
-            op: 'AND' | 'OR';
-            list: string[];
-        };
-        targetType?: 'USER' | 'ROLE' | 'ORG' | 'GROUP';
-    }): Promise<{
-        totalCount?: number;
-        list?: {
-            targetType?: PolicyAssignmentTargetType;
-            targetIdentifier?: string;
-            actions?: string[];
-        }[];
-    }>;
-    listResources(options?: IResourceQueryFilter): Promise<any>;
-    /**
-     * @deprecated use listResources
-     * @param options
-     */
-    getResources(options?: IResourceQueryFilter): Promise<any>;
-    createResource(options: IResourceDto): Promise<IResourceResponse>;
-    updateResource(code: string, options: IResourceUpdateDto): Promise<IResourceResponse>;
-    deleteResource(code: string, namespace: string): Promise<boolean>;
-    getApplicationAccessPolicies(options: IAppAccessPolicyQueryFilter): Promise<IApplicationAccessPolicies>;
-    enableApplicationAccessPolicy(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    disableApplicationAccessPolicy(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    deleteApplicationAccessPolicy(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    allowAccessApplication(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    denyAccessApplication(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    updateDefaultApplicationAccessPolicy(options: {
-        defaultStrategy: 'ALLOW_ALL' | 'DENY_ALL';
-        appId: string;
-    }): Promise<IApplication>;
-    /**
-     * 编程访问账号列表
-     * @param appId 应用 ID
-     * @param page 当前页数
-     * @param limit 每页显示条数
-     * @returns Promise<ProgrammaticAccessAccountList>
-     */
-    programmaticAccessAccountList(appId: string, page?: number, limit?: number): Promise<ProgrammaticAccessAccountList>;
-    /**
-     * 添加编程访问账号
-     * @param appId 应用 ID
-     * @param options.tokenLifetime AccessToken 过期时间（秒）
-     * @param options.remarks 备注
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    createProgrammaticAccessAccount(appId: string, options?: {
-        tokenLifetime: number;
-        remarks?: string;
-    }): Promise<ProgrammaticAccessAccount>;
-    /**
-     * 添加编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<boolean>
-     */
-    deleteProgrammaticAccessAccount(programmaticAccessAccountId: string): Promise<boolean>;
-    /**
-     * 刷新编程访问账号密钥
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @param programmaticAccessAccountSecret 编程访问账号 Secret
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    refreshProgrammaticAccessAccountSecret(programmaticAccessAccountId: string, programmaticAccessAccountSecret?: string): Promise<ProgrammaticAccessAccount>;
-    /**
-     * 启用编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    enableProgrammaticAccessAccount(programmaticAccessAccountId: string): Promise<ProgrammaticAccessAccount>;
-    /**
-     * 禁用编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    disableProgrammaticAccessAccount(programmaticAccessAccountId: string): Promise<ProgrammaticAccessAccount>;
-    /**
-     * 权限分组列表
-     * @param page 当前页数
-     * @param limit 每页显示条数
-     * @returns Promise<Resources>
-     */
-    listNamespaces(page?: number, limit?: number): Promise<Namespaces>;
-    /**
-     * 删除权限分组
-     * @param code 权限分组 Code
-     * @returns Promise<boolean>
-     */
-    deleteNamespace(code: string): Promise<boolean>;
-    /**
-     * 创建权限分组
-     * @param code 权限分组 Code
-     * @param name 权限分组名称
-     * @param description 权限分组描述
-     * @returns Promise<boolean>
-     */
-    createNamespace(code: string, name: string, description?: string): Promise<Namespace>;
-    /**
-     * 修改权限分组
-     * @param code 权限分组 Code
-     * @param name 权限分组名称
-     * @param code 权限分组 Code
-     * @param description 权限分组描述
-     * @returns Promise<boolean>
-     */
-    updateNamespace(code: string, updates: {
-        name?: string;
-        code?: string;
-        description?: string;
-    }): Promise<Namespace>;
-}

data/lib/authing_ruby/test/js_sdk_test/node_modules/authing-js-sdk/build/umd/lib/management/AclManagementClient.js DELETED Viewed

@@ -1,873 +0,0 @@
-var __assign = (this && this.__assign) || function () {
-    __assign = Object.assign || function(t) {
-        for (var s, i = 1, n = arguments.length; i < n; i++) {
-            s = arguments[i];
-            for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p))
-                t[p] = s[p];
-        }
-        return t;
-    };
-    return __assign.apply(this, arguments);
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __generator = (this && this.__generator) || function (thisArg, body) {
-    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g;
-    return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
-    function verb(n) { return function (v) { return step([n, v]); }; }
-    function step(op) {
-        if (f) throw new TypeError("Generator is already executing.");
-        while (_) try {
-            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
-            if (y = 0, t) op = [op[0] & 2, t.value];
-            switch (op[0]) {
-                case 0: case 1: t = op; break;
-                case 4: _.label++; return { value: op[1], done: false };
-                case 5: _.label++; y = op[1]; op = [0]; continue;
-                case 7: op = _.ops.pop(); _.trys.pop(); continue;
-                default:
-                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
-                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
-                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
-                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
-                    if (t[2]) _.ops.pop();
-                    _.trys.pop(); continue;
-            }
-            op = body.call(thisArg, _);
-        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
-        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
-    }
-};
-(function (factory) {
-    if (typeof module === "object" && typeof module.exports === "object") {
-        var v = factory(require, exports);
-        if (v !== undefined) module.exports = v;
-    }
-    else if (typeof define === "function" && define.amd) {
-        define(["require", "exports", "../graphqlapi", "../utils"], factory);
-    }
-})(function (require, exports) {
-    "use strict";
-    Object.defineProperty(exports, "__esModule", { value: true });
-    exports.AclManagementClient = void 0;
-    var graphqlapi_1 = require("../graphqlapi");
-    var utils_1 = require("../utils");
-    /**
-     * @class AclManagementClient 管理权限、访问控制
-     * @description Authing 基于 PBAC（Policy Based Access Control，基于策略的访问控制）构建权限模型，
-     * 可以和 RBAC （Role Based Access Control，基于角色的访问控制）结合，实现非常灵活、精细化的权限控制。
-     * 此模块将此模型抽象成了两个方法: allow, isAllowed。
-     *
-     * @example
-     *
-     * 请使用以下方式使用该模块，而不要直接初始化该模块：
-     *
-     * \`\`\`javascript
-     * import { ManagementClient } from "authing-js-sdk"
-     * const managementClient = new ManagementClient({
-     *    userPoolId: "YOUR_USERPOOL_ID",
-     *    secret: "YOUR_USERPOOL_SECRET",
-     * })
-     * managementClient.acl.allow // 允许某个用户对某个资源进行某个操作
-     * managementClient.acl.isAllowed // 判断某个用户是否对某个资源有某个操作权限
-     * \`\`\`
-     *
-     * @name AclManagementClient
-     */
-    var AclManagementClient = /** @class */ (function () {
-        function AclManagementClient(options, graphqlClient, httpClient, tokenProvider) {
-            this.options = options;
-            this.graphqlClient = graphqlClient;
-            this.httpClient = httpClient;
-            this.tokenProvider = tokenProvider;
-        }
-        /**
-         * 生成随机字符串
-         * @param randomLenth 随机长度
-         * @returns string
-         */
-        AclManagementClient.randomString = function (randomLenth) {
-            if (randomLenth === void 0) { randomLenth = 32; }
-            randomLenth = randomLenth || 32;
-            var t = 'abcdefhijkmnprstwxyz2345678';
-            var a = t.length;
-            var n = '';
-            for (var i = 0; i < randomLenth; i++) {
-                n += t.charAt(Math.floor(Math.random() * a));
-            }
-            return n;
-        };
-        /**
-         * @name allow
-         * @name_zh 允许某个用户对某个资源进行某个操作
-         *
-         * @description 允许某个用户对某个资源进行某个操作
-         *
-         * @param {string} userId 用户 ID
-         * @param {string} action 操作名称，推荐使用 \<resourceType\>:\<actionName\> 的格式，如 `books:edit`, `books:list`
-         * @param {string} resource 资源名称, 必须为 \<resourceType\>:\<resourceId\> 格式或者为 *, 如 `*`, `books:123`, `books:*`
-         * @example
-         * managementClient.acl.allow('USERID1', 'books:123', 'books:read')
-         * managementClient.acl.isAllowed('USERID1', 'books:123', 'books:read') // true
-         * managementClient.acl.isAllowed('USERID1', 'books:123', 'books:edit') // false
-         *
-         * @example
-         * managementClient.acl.allow('USERID2', 'books:*', 'books:*')
-         * managementClient.acl.isAllowed('USERID2', 'books:123', 'books:read') // true
-         * managementClient.acl.isAllowed('USERID2', 'books:124', 'books:edit') // true
-         *
-         * @returns {Promise<CommonMessage>}
-         * @memberof AclManagementClient
-         */
-        AclManagementClient.prototype.allow = function (userId, resource, action, namespace) {
-            return __awaiter(this, void 0, void 0, function () {
-                var data;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, graphqlapi_1.allow(this.graphqlClient, this.tokenProvider, {
-                                resource: resource,
-                                action: action,
-                                userId: userId,
-                                namespace: namespace
-                            })];
-                        case 1:
-                            data = (_a.sent()).allow;
-                            return [2 /*return*/, data];
-                    }
-                });
-            });
-        };
-        /**
-         * @name isAllowed
-         * @name_zh 判断某个用户是否对某个资源有某个操作权限
-         *
-         * @description 判断某个用户是否对某个资源有某个操作权限
-         *
-         * @param {string} userId 用户ID
-         * @param {string} action 操作名称，推荐使用 \<resourceType\>:\<actionName\> 的格式，如 `books:edit`, `books:list`
-         * @param {string} resource 资源名称, 必须为 \<resourceType\>:\<resourceId\> 格式或者为 *, 如 `*`, `books:123`, `books:*`
-         * @example
-         * managementClient.acl.isAllowed('USERID', 'books:*', 'books:edit')
-         *
-         * @returns {Promise<boolean>} 是否具备操作权限
-         * @memberof AclManagementClient
-         *
-         */
-        AclManagementClient.prototype.isAllowed = function (userId, resource, action, opts) {
-            return __awaiter(this, void 0, void 0, function () {
-                var namespace, isActionAllowed;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            namespace = (opts || {}).namespace;
-                            return [4 /*yield*/, graphqlapi_1.isAllowed(this.graphqlClient, this.tokenProvider, {
-                                    resource: resource,
-                                    action: action,
-                                    userId: userId,
-                                    namespace: namespace
-                                })];
-                        case 1:
-                            isActionAllowed = (_a.sent()).isActionAllowed;
-                            return [2 /*return*/, isActionAllowed];
-                    }
-                });
-            });
-        };
-        /**
-         * @description 获取用户被授权的所有资源
-         *
-         * @param userId
-         * @param namespace
-         */
-        AclManagementClient.prototype.listAuthorizedResources = function (targetType, targetIdentifier, namespace, options) {
-            return __awaiter(this, void 0, void 0, function () {
-                var resourceType, _a, list, totalCount;
-                return __generator(this, function (_b) {
-                    switch (_b.label) {
-                        case 0:
-                            resourceType = (options || {}).resourceType;
-                            return [4 /*yield*/, graphqlapi_1.listAuthorizedResources(this.graphqlClient, this.tokenProvider, {
-                                    targetType: targetType,
-                                    targetIdentifier: targetIdentifier,
-                                    namespace: namespace,
-                                    resourceType: resourceType
-                                })];
-                        case 1:
-                            _a = (_b.sent()).authorizedResources, list = _a.list, totalCount = _a.totalCount;
-                            list = utils_1.formatAuthorizedResources(list);
-                            return [2 /*return*/, {
-                                    list: list,
-                                    totalCount: totalCount
-                                }];
-                    }
-                });
-            });
-        };
-        /**
-         * @description 将一个（类）资源授权给用户、角色、分组、组织机构，且可以分别指定不同的操作权限。
-         *
-         */
-        AclManagementClient.prototype.authorizeResource = function (params) {
-            return __awaiter(this, void 0, void 0, function () {
-                var namespace, resource, opts, data;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            namespace = params.namespace, resource = params.resource, opts = params.opts;
-                            return [4 /*yield*/, graphqlapi_1.authorizeResource(this.graphqlClient, this.tokenProvider, {
-                                    namespace: namespace,
-                                    resource: resource,
-                                    opts: opts
-                                })];
-                        case 1:
-                            data = (_a.sent()).authorizeResource;
-                            return [2 /*return*/, data];
-                    }
-                });
-            });
-        };
-        /**
-         * @description 获取具备某个（类）资源操作权限的用户、分组、角色、组织机构。
-         * @param namespace {string} 权限分组标识
-         * @param resource {string} 资源标识
-         * @param actions {string[]} 资源操作标识
-         * @param targetType {string} 筛选项，指定返回主体的类型，可选值为 'USER'、'ROLE'、'ORG'、'GROUP'
-         */
-        AclManagementClient.prototype.getAuthorizedTargets = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                var data;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!options) {
-                                throw new Error('请传入 options.namespace、options.resource、options.actions，含义为权限分组标识、资源标识、资源操作标识');
-                            }
-                            if (!options.namespace) {
-                                throw new Error('请传入 options.namespace，含义为权限分组标识');
-                            }
-                            if (!options.resource) {
-                                throw new Error('请传入 options.resource，含义为资源标识');
-                            }
-                            if (!options.resourceType) {
-                                throw new Error('请传入 options.resourceType，含义为资源类型');
-                            }
-                            return [4 /*yield*/, graphqlapi_1.authorizedTargets(this.graphqlClient, this.tokenProvider, {
-                                    namespace: options.namespace,
-                                    resourceType: options.resourceType,
-                                    resource: options.resource,
-                                    targetType: options.targetType,
-                                    actions: options.actions
-                                })];
-                        case 1:
-                            data = (_a.sent()).authorizedTargets;
-                            return [2 /*return*/, data];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.listResources = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, this.httpClient.request({
-                                method: 'GET',
-                                url: this.options.host + "/api/v2/resources",
-                                params: {
-                                    namespace: (options === null || options === void 0 ? void 0 : options.namespace) || (options === null || options === void 0 ? void 0 : options.namespaceCode),
-                                    type: options === null || options === void 0 ? void 0 : options.type,
-                                    limit: (options === null || options === void 0 ? void 0 : options.limit) || 10,
-                                    page: (options === null || options === void 0 ? void 0 : options.page) || 1
-                                }
-                            })];
-                        case 1: return [2 /*return*/, _a.sent()];
-                    }
-                });
-            });
-        };
-        /**
-         * @deprecated use listResources
-         * @param options
-         */
-        AclManagementClient.prototype.getResources = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, this.listResources(options)];
-                        case 1: return [2 /*return*/, _a.sent()];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.createResource = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!options) {
-                                throw new Error('请传入资源数据');
-                            }
-                            if (!options.code) {
-                                throw new Error('请为资源设定一个资源标识符');
-                            }
-                            if (!options.actions || (options === null || options === void 0 ? void 0 : options.actions.length) === 0) {
-                                throw new Error('请至少定义一个资源操作');
-                            }
-                            if (!options.namespace) {
-                                throw new Error('请传入权限分组标识符');
-                            }
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/resources",
-                                    data: options
-                                })];
-                        case 1: return [2 /*return*/, _a.sent()];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.updateResource = function (code, options) {
-            return __awaiter(this, void 0, void 0, function () {
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!code) {
-                                throw new Error('请传入资源标识符');
-                            }
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/resources/" + code,
-                                    data: options
-                                })];
-                        case 1: return [2 /*return*/, _a.sent()];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.deleteResource = function (code, namespace) {
-            return __awaiter(this, void 0, void 0, function () {
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!code) {
-                                throw new Error('请传入资源标识符');
-                            }
-                            if (!namespace) {
-                                throw new Error('请传入权限分组标识符');
-                            }
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'DELETE',
-                                    url: this.options.host + "/api/v2/resources/" + code,
-                                    params: {
-                                        namespace: namespace
-                                    }
-                                })];
-                        case 1:
-                            _a.sent();
-                            return [2 /*return*/, true];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.getApplicationAccessPolicies = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                var appId, page, limit;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                                throw new Error('请传入 appId');
-                            }
-                            appId = options.appId, page = options.page, limit = options.limit;
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'GET',
-                                    url: this.options.host + "/api/v2/applications/" + appId + "/authorization/records",
-                                    params: {
-                                        page: page,
-                                        limit: limit
-                                    }
-                                })];
-                        case 1: return [2 /*return*/, _a.sent()];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.enableApplicationAccessPolicy = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                                throw new Error('请传入 appId');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                                throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                                throw new Error('请传入主体 id');
-                            }
-                            namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/applications/" + appId + "/authorization/enable-effect",
-                                    data: {
-                                        targetType: targetType,
-                                        namespace: namespace,
-                                        targetIdentifiers: targetIdentifiers,
-                                        inheritByChildren: inheritByChildren
-                                    }
-                                })];
-                        case 1:
-                            _a.sent();
-                            return [2 /*return*/, { code: 200, message: '启用应用访问控制策略成功' }];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.disableApplicationAccessPolicy = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                                throw new Error('请传入 appId');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                                throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                                throw new Error('请传入主体 id');
-                            }
-                            namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/applications/" + appId + "/authorization/disable-effect",
-                                    data: {
-                                        targetType: targetType,
-                                        namespace: namespace,
-                                        targetIdentifiers: targetIdentifiers,
-                                        inheritByChildren: inheritByChildren
-                                    }
-                                })];
-                        case 1:
-                            _a.sent();
-                            return [2 /*return*/, { code: 200, message: '停用应用访问控制策略成功' }];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.deleteApplicationAccessPolicy = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                                throw new Error('请传入 appId');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                                throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                                throw new Error('请传入主体 id');
-                            }
-                            namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/applications/" + appId + "/authorization/revoke",
-                                    data: {
-                                        targetType: targetType,
-                                        namespace: namespace,
-                                        targetIdentifiers: targetIdentifiers,
-                                        inheritByChildren: inheritByChildren
-                                    }
-                                })];
-                        case 1:
-                            _a.sent();
-                            return [2 /*return*/, { code: 200, message: '删除应用访问控制策略成功' }];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.allowAccessApplication = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                                throw new Error('请传入 appId');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                                throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                                throw new Error('请传入主体 id');
-                            }
-                            namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/applications/" + appId + "/authorization/allow",
-                                    data: {
-                                        targetType: targetType,
-                                        namespace: namespace,
-                                        targetIdentifiers: targetIdentifiers,
-                                        inheritByChildren: inheritByChildren
-                                    }
-                                })];
-                        case 1:
-                            _a.sent();
-                            return [2 /*return*/, { code: 200, message: '允许主体访问应用的策略配置已生效' }];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.denyAccessApplication = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                                throw new Error('请传入 appId');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                                throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                                throw new Error('请传入主体 id');
-                            }
-                            namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/applications/" + appId + "/authorization/deny",
-                                    data: {
-                                        targetType: targetType,
-                                        namespace: namespace,
-                                        targetIdentifiers: targetIdentifiers,
-                                        inheritByChildren: inheritByChildren
-                                    }
-                                })];
-                        case 1:
-                            _a.sent();
-                            return [2 /*return*/, { code: 200, message: '拒绝主体访问应用的策略配置已生效' }];
-                    }
-                });
-            });
-        };
-        AclManagementClient.prototype.updateDefaultApplicationAccessPolicy = function (options) {
-            return __awaiter(this, void 0, void 0, function () {
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                                throw new Error('请传入应用 id');
-                            }
-                            if (!(options === null || options === void 0 ? void 0 : options.defaultStrategy)) {
-                                throw new Error('请传入默认策略，可选值为 ALLOW_ALL、DENY_ALL，含义为默认允许所有用户登录应用、默认拒绝所有用户登录应用');
-                            }
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/applications/" + options.appId,
-                                    data: {
-                                        permissionStrategy: { defaultStrategy: options.defaultStrategy }
-                                    }
-                                })];
-                        case 1: return [2 /*return*/, _a.sent()];
-                    }
-                });
-            });
-        };
-        /**
-         * 编程访问账号列表
-         * @param appId 应用 ID
-         * @param page 当前页数
-         * @param limit 每页显示条数
-         * @returns Promise<ProgrammaticAccessAccountList>
-         */
-        AclManagementClient.prototype.programmaticAccessAccountList = function (appId, page, limit) {
-            if (page === void 0) { page = 1; }
-            if (limit === void 0) { limit = 10; }
-            return __awaiter(this, void 0, void 0, function () {
-                var result;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, this.httpClient.request({
-                                method: 'GET',
-                                url: this.options.host + "/api/v2/applications/" + appId + "/programmatic-access-accounts?limit=" + limit + "&page=" + page
-                            })];
-                        case 1:
-                            result = _a.sent();
-                            return [2 /*return*/, result];
-                    }
-                });
-            });
-        };
-        /**
-         * 添加编程访问账号
-         * @param appId 应用 ID
-         * @param options.tokenLifetime AccessToken 过期时间（秒）
-         * @param options.remarks 备注
-         * @returns Promise<ProgrammaticAccessAccount>
-         */
-        AclManagementClient.prototype.createProgrammaticAccessAccount = function (appId, options) {
-            if (options === void 0) { options = {
-                tokenLifetime: 600
-            }; }
-            return __awaiter(this, void 0, void 0, function () {
-                var result;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/applications/" + appId + "/programmatic-access-accounts",
-                                data: __assign({}, options)
-                            })];
-                        case 1:
-                            result = _a.sent();
-                            return [2 /*return*/, result];
-                    }
-                });
-            });
-        };
-        /**
-         * 添加编程访问账号
-         * @param programmaticAccessAccountId 编程访问账号 ID
-         * @returns Promise<boolean>
-         */
-        AclManagementClient.prototype.deleteProgrammaticAccessAccount = function (programmaticAccessAccountId) {
-            return __awaiter(this, void 0, void 0, function () {
-                var error_1;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            _a.trys.push([0, 2, , 3]);
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'DELETE',
-                                    url: this.options.host + "/api/v2/applications/programmatic-access-accounts?id=" + programmaticAccessAccountId
-                                })];
-                        case 1:
-                            _a.sent();
-                            return [2 /*return*/, true];
-                        case 2:
-                            error_1 = _a.sent();
-                            throw error_1;
-                        case 3: return [2 /*return*/];
-                    }
-                });
-            });
-        };
-        /**
-         * 刷新编程访问账号密钥
-         * @param programmaticAccessAccountId 编程访问账号 ID
-         * @param programmaticAccessAccountSecret 编程访问账号 Secret
-         * @returns Promise<ProgrammaticAccessAccount>
-         */
-        AclManagementClient.prototype.refreshProgrammaticAccessAccountSecret = function (programmaticAccessAccountId, programmaticAccessAccountSecret) {
-            if (programmaticAccessAccountSecret === void 0) { programmaticAccessAccountSecret = AclManagementClient.randomString(32); }
-            return __awaiter(this, void 0, void 0, function () {
-                var result;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, this.httpClient.request({
-                                method: 'PATCH',
-                                url: this.options.host + "/api/v2/applications/programmatic-access-accounts",
-                                data: {
-                                    id: programmaticAccessAccountId,
-                                    secret: programmaticAccessAccountSecret
-                                }
-                            })];
-                        case 1:
-                            result = _a.sent();
-                            return [2 /*return*/, result];
-                    }
-                });
-            });
-        };
-        /**
-         * 启用编程访问账号
-         * @param programmaticAccessAccountId 编程访问账号 ID
-         * @returns Promise<ProgrammaticAccessAccount>
-         */
-        AclManagementClient.prototype.enableProgrammaticAccessAccount = function (programmaticAccessAccountId) {
-            return __awaiter(this, void 0, void 0, function () {
-                var result;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, this.httpClient.request({
-                                method: 'PATCH',
-                                url: this.options.host + "/api/v2/applications/programmatic-access-accounts",
-                                data: {
-                                    id: programmaticAccessAccountId,
-                                    enabled: true
-                                }
-                            })];
-                        case 1:
-                            result = _a.sent();
-                            return [2 /*return*/, result];
-                    }
-                });
-            });
-        };
-        /**
-         * 禁用编程访问账号
-         * @param programmaticAccessAccountId 编程访问账号 ID
-         * @returns Promise<ProgrammaticAccessAccount>
-         */
-        AclManagementClient.prototype.disableProgrammaticAccessAccount = function (programmaticAccessAccountId) {
-            return __awaiter(this, void 0, void 0, function () {
-                var result;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, this.httpClient.request({
-                                method: 'PATCH',
-                                url: this.options.host + "/api/v2/applications/programmatic-access-accounts",
-                                data: {
-                                    id: programmaticAccessAccountId,
-                                    enabled: false
-                                }
-                            })];
-                        case 1:
-                            result = _a.sent();
-                            return [2 /*return*/, result];
-                    }
-                });
-            });
-        };
-        /**
-         * 权限分组列表
-         * @param page 当前页数
-         * @param limit 每页显示条数
-         * @returns Promise<Resources>
-         */
-        AclManagementClient.prototype.listNamespaces = function (page, limit) {
-            if (page === void 0) { page = 1; }
-            if (limit === void 0) { limit = 10; }
-            return __awaiter(this, void 0, void 0, function () {
-                var result;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0: return [4 /*yield*/, this.httpClient.request({
-                                method: 'GET',
-                                url: this.options.host + "/api/v2/resource-namespace/" + this.options.userPoolId +
-                                    utils_1.objectToQueryString({
-                                        page: page === null || page === void 0 ? void 0 : page.toString(),
-                                        limit: limit === null || limit === void 0 ? void 0 : limit.toString()
-                                    })
-                            })];
-                        case 1:
-                            result = _a.sent();
-                            return [2 /*return*/, result];
-                    }
-                });
-            });
-        };
-        /**
-         * 删除权限分组
-         * @param code 权限分组 Code
-         * @returns Promise<boolean>
-         */
-        AclManagementClient.prototype.deleteNamespace = function (code) {
-            return __awaiter(this, void 0, void 0, function () {
-                var error_2;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            _a.trys.push([0, 2, , 3]);
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'DELETE',
-                                    url: this.options.host + "/api/v2/resource-namespace/" + this.options.userPoolId + "/code/" + code
-                                })];
-                        case 1:
-                            _a.sent();
-                            return [2 /*return*/, true];
-                        case 2:
-                            error_2 = _a.sent();
-                            throw error_2;
-                        case 3: return [2 /*return*/];
-                    }
-                });
-            });
-        };
-        /**
-         * 创建权限分组
-         * @param code 权限分组 Code
-         * @param name 权限分组名称
-         * @param description 权限分组描述
-         * @returns Promise<boolean>
-         */
-        AclManagementClient.prototype.createNamespace = function (code, name, description) {
-            return __awaiter(this, void 0, void 0, function () {
-                var data, error_3;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            _a.trys.push([0, 2, , 3]);
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'POST',
-                                    url: this.options.host + "/api/v2/resource-namespace/" + this.options.userPoolId,
-                                    data: {
-                                        name: name,
-                                        code: code,
-                                        description: description
-                                    }
-                                })];
-                        case 1:
-                            data = _a.sent();
-                            return [2 /*return*/, data];
-                        case 2:
-                            error_3 = _a.sent();
-                            throw error_3;
-                        case 3: return [2 /*return*/];
-                    }
-                });
-            });
-        };
-        /**
-         * 修改权限分组
-         * @param code 权限分组 Code
-         * @param name 权限分组名称
-         * @param code 权限分组 Code
-         * @param description 权限分组描述
-         * @returns Promise<boolean>
-         */
-        AclManagementClient.prototype.updateNamespace = function (code, updates) {
-            return __awaiter(this, void 0, void 0, function () {
-                var data, error_4;
-                return __generator(this, function (_a) {
-                    switch (_a.label) {
-                        case 0:
-                            _a.trys.push([0, 2, , 3]);
-                            return [4 /*yield*/, this.httpClient.request({
-                                    method: 'PUT',
-                                    url: this.options.host + "/api/v2/resource-namespace/" + this.options.userPoolId + "/code/" + code,
-                                    data: {
-                                        name: updates.name,
-                                        code: updates.code,
-                                        description: updates.description
-                                    }
-                                })];
-                        case 1:
-                            data = _a.sent();
-                            return [2 /*return*/, data];
-                        case 2:
-                            error_4 = _a.sent();
-                            throw error_4;
-                        case 3: return [2 /*return*/];
-                    }
-                });
-            });
-        };
-        return AclManagementClient;
-    }());
-    exports.AclManagementClient = AclManagementClient;
-});
-//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiQWNsTWFuYWdlbWVudENsaWVudC5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uLy4uLy4uL3NyYy9saWIvbWFuYWdlbWVudC9BY2xNYW5hZ2VtZW50Q2xpZW50LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiI7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7O0lBaUJBLDRDQU11QjtJQVF2QixrQ0FBMEU7SUFHMUU7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7OztPQXFCRztJQUNIO1FBTUUsNkJBQ0UsT0FBZ0MsRUFDaEMsYUFBNEIsRUFDNUIsVUFBc0IsRUFDdEIsYUFBc0M7WUFFdEMsSUFBSSxDQUFDLE9BQU8sR0FBRyxPQUFPLENBQUM7WUFDdkIsSUFBSSxDQUFDLGFBQWEsR0FBRyxhQUFhLENBQUM7WUFDbkMsSUFBSSxDQUFDLFVBQVUsR0FBRyxVQUFVLENBQUM7WUFDN0IsSUFBSSxDQUFDLGFBQWEsR0FBRyxhQUFhLENBQUM7UUFDckMsQ0FBQztRQUVEOzs7O1dBSUc7UUFDVyxnQ0FBWSxHQUExQixVQUEyQixXQUF3QjtZQUF4Qiw0QkFBQSxFQUFBLGdCQUF3QjtZQUNqRCxXQUFXLEdBQUcsV0FBVyxJQUFJLEVBQUUsQ0FBQztZQUVoQyxJQUFNLENBQUMsR0FBRyw2QkFBNkIsQ0FBQztZQUN4QyxJQUFNLENBQUMsR0FBRyxDQUFDLENBQUMsTUFBTSxDQUFDO1lBQ25CLElBQUksQ0FBQyxHQUFHLEVBQUUsQ0FBQztZQUVYLEtBQUssSUFBSSxDQUFDLEdBQUcsQ0FBQyxFQUFFLENBQUMsR0FBRyxXQUFXLEVBQUUsQ0FBQyxFQUFFLEVBQUU7Z0JBQ3BDLENBQUMsSUFBSSxDQUFDLENBQUMsTUFBTSxDQUFDLElBQUksQ0FBQyxLQUFLLENBQUMsSUFBSSxDQUFDLE1BQU0sRUFBRSxHQUFHLENBQUMsQ0FBQyxDQUFDLENBQUM7YUFDOUM7WUFFRCxPQUFPLENBQUMsQ0FBQztRQUNYLENBQUM7UUFFRDs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7O1dBcUJHO1FBQ0csbUNBQUssR0FBWCxVQUNFLE1BQWMsRUFDZCxRQUFnQixFQUNoQixNQUFjLEVBQ2QsU0FBaUI7Ozs7O2dDQUVPLHFCQUFNLGtCQUFLLENBQ2pDLElBQUksQ0FBQyxhQUFhLEVBQ2xCLElBQUksQ0FBQyxhQUFhLEVBQ2xCO2dDQUNFLFFBQVEsVUFBQTtnQ0FDUixNQUFNLFFBQUE7Z0NBQ04sTUFBTSxRQUFBO2dDQUNOLFNBQVMsV0FBQTs2QkFDVixDQUNGLEVBQUE7OzRCQVRjLElBQUksR0FBSyxDQUFBLFNBU3ZCLENBQUEsTUFUa0I7NEJBVW5CLHNCQUFPLElBQUksRUFBQzs7OztTQUNiO1FBRUQ7Ozs7Ozs7Ozs7Ozs7OztXQWVHO1FBQ0csdUNBQVMsR0FBZixVQUNFLE1BQWMsRUFDZCxRQUFnQixFQUNoQixNQUFjLEVBQ2QsSUFFQzs7Ozs7OzRCQUVPLFNBQVMsR0FBSyxDQUFBLElBQUksSUFBSSxFQUFFLENBQUEsVUFBZixDQUFnQjs0QkFFTCxxQkFBTSxzQkFBUyxDQUN6QyxJQUFJLENBQUMsYUFBYSxFQUNsQixJQUFJLENBQUMsYUFBYSxFQUNsQjtvQ0FDRSxRQUFRLFVBQUE7b0NBQ1IsTUFBTSxRQUFBO29DQUNOLE1BQU0sUUFBQTtvQ0FDTixTQUFTLFdBQUE7aUNBQ1YsQ0FDRixFQUFBOzs0QkFUTyxlQUFlLEdBQUssQ0FBQSxTQVMzQixDQUFBLGdCQVRzQjs0QkFVdkIsc0JBQU8sZUFBZSxFQUFDOzs7O1NBQ3hCO1FBRUQ7Ozs7O1dBS0c7UUFDVSxxREFBdUIsR0FBcEMsVUFDRSxVQUFzQyxFQUN0QyxnQkFBd0IsRUFDeEIsU0FBaUIsRUFDakIsT0FFQzs7Ozs7OzRCQUVPLFlBQVksR0FBSyxDQUFBLE9BQU8sSUFBSSxFQUFFLENBQUEsYUFBbEIsQ0FBbUI7NEJBR25DLHFCQUFNLG9DQUF1QixDQUFDLElBQUksQ0FBQyxhQUFhLEVBQUUsSUFBSSxDQUFDLGFBQWEsRUFBRTtvQ0FDeEUsVUFBVSxZQUFBO29DQUNWLGdCQUFnQixrQkFBQTtvQ0FDaEIsU0FBUyxXQUFBO29DQUNULFlBQVksY0FBQTtpQ0FDYixDQUFDLEVBQUE7OzRCQU5BLEtBQ0UsQ0FBQSxTQUtGLENBQUEsb0JBTnlDLEVBQWxCLElBQUksVUFBQSxFQUFFLFVBQVUsZ0JBQUE7NEJBT3pDLElBQUksR0FBRyxpQ0FBeUIsQ0FBQyxJQUFJLENBQUMsQ0FBQzs0QkFDdkMsc0JBQU87b0NBQ0wsSUFBSSxNQUFBO29DQUNKLFVBQVUsWUFBQTtpQ0FDWCxFQUFDOzs7O1NBQ0g7UUFFRDs7O1dBR0c7UUFDVSwrQ0FBaUIsR0FBOUIsVUFBK0IsTUFJOUI7Ozs7Ozs0QkFDUyxTQUFTLEdBQXFCLE1BQU0sVUFBM0IsRUFBRSxRQUFRLEdBQVcsTUFBTSxTQUFqQixFQUFFLElBQUksR0FBSyxNQUFNLEtBQVgsQ0FBWTs0QkFDVCxxQkFBTSw4QkFBaUIsQ0FDekQsSUFBSSxDQUFDLGFBQWEsRUFDbEIsSUFBSSxDQUFDLGFBQWEsRUFDbEI7b0NBQ0UsU0FBUyxXQUFBO29DQUNULFFBQVEsVUFBQTtvQ0FDUixJQUFJLE1BQUE7aUNBQ0wsQ0FDRixFQUFBOzs0QkFSMEIsSUFBSSxHQUFLLENBQUEsU0FRbkMsQ0FBQSxrQkFSOEI7NEJBUy9CLHNCQUFPLElBQUksRUFBQzs7OztTQUNiO1FBRUQ7Ozs7OztXQU1HO1FBQ1Usa0RBQW9CLEdBQWpDLFVBQWtDLE9BU2pDOzs7Ozs7NEJBQ0MsSUFBSSxDQUFDLE9BQU8sRUFBRTtnQ0FDWixNQUFNLElBQUksS0FBSyxDQUNiLDhFQUE4RSxDQUMvRSxDQUFDOzZCQUNIOzRCQUNELElBQUksQ0FBQyxPQUFPLENBQUMsU0FBUyxFQUFFO2dDQUN0QixNQUFNLElBQUksS0FBSyxDQUFDLGlDQUFpQyxDQUFDLENBQUM7NkJBQ3BEOzRCQUNELElBQUksQ0FBQyxPQUFPLENBQUMsUUFBUSxFQUFFO2dDQUNyQixNQUFNLElBQUksS0FBSyxDQUFDLDhCQUE4QixDQUFDLENBQUM7NkJBQ2pEOzRCQUNELElBQUksQ0FBQyxPQUFPLENBQUMsWUFBWSxFQUFFO2dDQUN6QixNQUFNLElBQUksS0FBSyxDQUFDLGtDQUFrQyxDQUFDLENBQUM7NkJBQ3JEOzRCQUNtQyxxQkFBTSw4QkFBaUIsQ0FDekQsSUFBSSxDQUFDLGFBQWEsRUFDbEIsSUFBSSxDQUFDLGFBQWEsRUFDbEI7b0NBQ0UsU0FBUyxFQUFFLE9BQU8sQ0FBQyxTQUFTO29DQUM1QixZQUFZLEVBQUUsT0FBTyxDQUFDLFlBQW1CO29DQUN6QyxRQUFRLEVBQUUsT0FBTyxDQUFDLFFBQVE7b0NBQzFCLFVBQVUsRUFBRSxPQUFPLENBQUMsVUFBaUI7b0NBQ3JDLE9BQU8sRUFBRSxPQUFPLENBQUMsT0FBYztpQ0FDaEMsQ0FDRixFQUFBOzs0QkFWMEIsSUFBSSxHQUFLLENBQUEsU0FVbkMsQ0FBQSxrQkFWOEI7NEJBVy9CLHNCQUFPLElBQUksRUFBQzs7OztTQUNiO1FBRVksMkNBQWEsR0FBMUIsVUFBMkIsT0FBOEI7Ozs7Z0NBQ2hELHFCQUFNLElBQUksQ0FBQyxVQUFVLENBQUMsT0FBTyxDQUFDO2dDQUNuQyxNQUFNLEVBQUUsS0FBSztnQ0FDYixHQUFHLEVBQUssSUFBSSxDQUFDLE9BQU8sQ0FBQyxJQUFJLHNCQUFtQjtnQ0FDNUMsTUFBTSxFQUFFO29DQUNOLFNBQVMsRUFBRSxDQUFBLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxTQUFTLE1BQUksT0FBTyxhQUFQLE9BQU8sdUJBQVAsT0FBTyxDQUFFLGFBQWEsQ0FBQTtvQ0FDdkQsSUFBSSxFQUFFLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxJQUFJO29DQUNuQixLQUFLLEVBQUUsQ0FBQSxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsS0FBSyxLQUFJLEVBQUU7b0NBQzNCLElBQUksRUFBRSxDQUFBLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxJQUFJLEtBQUksQ0FBQztpQ0FDekI7NkJBQ0YsQ0FBQyxFQUFBO2dDQVRGLHNCQUFPLFNBU0wsRUFBQzs7OztTQUNKO1FBRUQ7OztXQUdHO1FBQ1UsMENBQVksR0FBekIsVUFBMEIsT0FBOEI7Ozs7Z0NBQy9DLHFCQUFNLElBQUksQ0FBQyxhQUFhLENBQUMsT0FBTyxDQUFDLEVBQUE7Z0NBQXhDLHNCQUFPLFNBQWlDLEVBQUM7Ozs7U0FDMUM7UUFFWSw0Q0FBYyxHQUEzQixVQUNFLE9BQXFCOzs7Ozs0QkFFckIsSUFBSSxDQUFDLE9BQU8sRUFBRTtnQ0FDWixNQUFNLElBQUksS0FBSyxDQUFDLFNBQVMsQ0FBQyxDQUFDOzZCQUM1Qjs0QkFDRCxJQUFJLENBQUMsT0FBTyxDQUFDLElBQUksRUFBRTtnQ0FDakIsTUFBTSxJQUFJLEtBQUssQ0FBQyxlQUFlLENBQUMsQ0FBQzs2QkFDbEM7NEJBQ0QsSUFBSSxDQUFDLE9BQU8sQ0FBQyxPQUFPLElBQUksQ0FBQSxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsT0FBTyxDQUFDLE1BQU0sTUFBSyxDQUFDLEVBQUU7Z0NBQ3JELE1BQU0sSUFBSSxLQUFLLENBQUMsYUFBYSxDQUFDLENBQUM7NkJBQ2hDOzRCQUNELElBQUksQ0FBQyxPQUFPLENBQUMsU0FBUyxFQUFFO2dDQUN0QixNQUFNLElBQUksS0FBSyxDQUFDLFlBQVksQ0FBQyxDQUFDOzZCQUMvQjs0QkFDTSxxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztvQ0FDbkMsTUFBTSxFQUFFLE1BQU07b0NBQ2QsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSxzQkFBbUI7b0NBQzVDLElBQUksRUFBRSxPQUFPO2lDQUNkLENBQUMsRUFBQTtnQ0FKRixzQkFBTyxTQUlMLEVBQUM7Ozs7U0FDSjtRQUVZLDRDQUFjLEdBQTNCLFVBQ0UsSUFBWSxFQUNaLE9BQTJCOzs7Ozs0QkFFM0IsSUFBSSxDQUFDLElBQUksRUFBRTtnQ0FDVCxNQUFNLElBQUksS0FBSyxDQUFDLFVBQVUsQ0FBQyxDQUFDOzZCQUM3Qjs0QkFDTSxxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztvQ0FDbkMsTUFBTSxFQUFFLE1BQU07b0NBQ2QsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSwwQkFBcUIsSUFBTTtvQ0FDcEQsSUFBSSxFQUFFLE9BQU87aUNBQ2QsQ0FBQyxFQUFBO2dDQUpGLHNCQUFPLFNBSUwsRUFBQzs7OztTQUNKO1FBRVksNENBQWMsR0FBM0IsVUFDRSxJQUFZLEVBQ1osU0FBaUI7Ozs7OzRCQUVqQixJQUFJLENBQUMsSUFBSSxFQUFFO2dDQUNULE1BQU0sSUFBSSxLQUFLLENBQUMsVUFBVSxDQUFDLENBQUM7NkJBQzdCOzRCQUNELElBQUksQ0FBQyxTQUFTLEVBQUU7Z0NBQ2QsTUFBTSxJQUFJLEtBQUssQ0FBQyxZQUFZLENBQUMsQ0FBQzs2QkFDL0I7NEJBQ0QscUJBQU0sSUFBSSxDQUFDLFVBQVUsQ0FBQyxPQUFPLENBQUM7b0NBQzVCLE1BQU0sRUFBRSxRQUFRO29DQUNoQixHQUFHLEVBQUssSUFBSSxDQUFDLE9BQU8sQ0FBQyxJQUFJLDBCQUFxQixJQUFNO29DQUNwRCxNQUFNLEVBQUU7d0NBQ04sU0FBUyxXQUFBO3FDQUNWO2lDQUNGLENBQUMsRUFBQTs7NEJBTkYsU0FNRSxDQUFDOzRCQUNILHNCQUFPLElBQUksRUFBQzs7OztTQUNiO1FBRVksMERBQTRCLEdBQXpDLFVBQ0UsT0FBb0M7Ozs7Ozs0QkFFcEMsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxLQUFLLENBQUEsRUFBRTtnQ0FDbkIsTUFBTSxJQUFJLEtBQUssQ0FBQyxXQUFXLENBQUMsQ0FBQzs2QkFDOUI7NEJBQ08sS0FBSyxHQUFrQixPQUFPLE1BQXpCLEVBQUUsSUFBSSxHQUFZLE9BQU8sS0FBbkIsRUFBRSxLQUFLLEdBQUssT0FBTyxNQUFaLENBQWE7NEJBQ2hDLHFCQUFNLElBQUksQ0FBQyxVQUFVLENBQUMsT0FBTyxDQUFDO29DQUNuQyxNQUFNLEVBQUUsS0FBSztvQ0FDYixHQUFHLEVBQUssSUFBSSxDQUFDLE9BQU8sQ0FBQyxJQUFJLDZCQUF3QixLQUFLLDJCQUF3QjtvQ0FDOUUsTUFBTSxFQUFFO3dDQUNOLElBQUksTUFBQTt3Q0FDSixLQUFLLE9BQUE7cUNBQ047aUNBQ0YsQ0FBQyxFQUFBO2dDQVBGLHNCQUFPLFNBT0wsRUFBQzs7OztTQUNKO1FBRVksMkRBQTZCLEdBQTFDLFVBQTJDLE9BQXlCOzs7Ozs7NEJBQ2xFLElBQUksRUFBQyxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsS0FBSyxDQUFBLEVBQUU7Z0NBQ25CLE1BQU0sSUFBSSxLQUFLLENBQUMsV0FBVyxDQUFDLENBQUM7NkJBQzlCOzRCQUNELElBQUksRUFBQyxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsVUFBVSxDQUFBLEVBQUU7Z0NBQ3hCLE1BQU0sSUFBSSxLQUFLLENBQ2IsdURBQXVELENBQ3hELENBQUM7NkJBQ0g7NEJBQ0QsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxpQkFBaUIsQ0FBQSxFQUFFO2dDQUMvQixNQUFNLElBQUksS0FBSyxDQUFDLFVBQVUsQ0FBQyxDQUFDOzZCQUM3Qjs0QkFFQyxTQUFTLEdBS1AsT0FBTyxVQUxBLEVBQ1QsaUJBQWlCLEdBSWYsT0FBTyxrQkFKUSxFQUNqQixVQUFVLEdBR1IsT0FBTyxXQUhDLEVBQ1YsS0FBSyxHQUVILE9BQU8sTUFGSixFQUNMLGlCQUFpQixHQUNmLE9BQU8sa0JBRFEsQ0FDUDs0QkFDWixxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztvQ0FDNUIsTUFBTSxFQUFFLE1BQU07b0NBQ2QsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSw2QkFBd0IsS0FBSyxpQ0FBOEI7b0NBQ3BGLElBQUksRUFBRTt3Q0FDSixVQUFVLFlBQUE7d0NBQ1YsU0FBUyxXQUFBO3dDQUNULGlCQUFpQixtQkFBQTt3Q0FDakIsaUJBQWlCLG1CQUFBO3FDQUNsQjtpQ0FDRixDQUFDLEVBQUE7OzRCQVRGLFNBU0UsQ0FBQzs0QkFDSCxzQkFBTyxFQUFFLElBQUksRUFBRSxHQUFHLEVBQUUsT0FBTyxFQUFFLGNBQWMsRUFBRSxFQUFDOzs7O1NBQy9DO1FBRVksNERBQThCLEdBQTNDLFVBQTRDLE9BQXlCOzs7Ozs7NEJBQ25FLElBQUksRUFBQyxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsS0FBSyxDQUFBLEVBQUU7Z0NBQ25CLE1BQU0sSUFBSSxLQUFLLENBQUMsV0FBVyxDQUFDLENBQUM7NkJBQzlCOzRCQUNELElBQUksRUFBQyxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsVUFBVSxDQUFBLEVBQUU7Z0NBQ3hCLE1BQU0sSUFBSSxLQUFLLENBQ2IsdURBQXVELENBQ3hELENBQUM7NkJBQ0g7NEJBQ0QsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxpQkFBaUIsQ0FBQSxFQUFFO2dDQUMvQixNQUFNLElBQUksS0FBSyxDQUFDLFVBQVUsQ0FBQyxDQUFDOzZCQUM3Qjs0QkFHQyxTQUFTLEdBS1AsT0FBTyxVQUxBLEVBQ1QsaUJBQWlCLEdBSWYsT0FBTyxrQkFKUSxFQUNqQixVQUFVLEdBR1IsT0FBTyxXQUhDLEVBQ1YsS0FBSyxHQUVILE9BQU8sTUFGSixFQUNMLGlCQUFpQixHQUNmLE9BQU8sa0JBRFEsQ0FDUDs0QkFDWixxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztvQ0FDNUIsTUFBTSxFQUFFLE1BQU07b0NBQ2QsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSw2QkFBd0IsS0FBSyxrQ0FBK0I7b0NBQ3JGLElBQUksRUFBRTt3Q0FDSixVQUFVLFlBQUE7d0NBQ1YsU0FBUyxXQUFBO3dDQUNULGlCQUFpQixtQkFBQTt3Q0FDakIsaUJBQWlCLG1CQUFBO3FDQUNsQjtpQ0FDRixDQUFDLEVBQUE7OzRCQVRGLFNBU0UsQ0FBQzs0QkFDSCxzQkFBTyxFQUFFLElBQUksRUFBRSxHQUFHLEVBQUUsT0FBTyxFQUFFLGNBQWMsRUFBRSxFQUFDOzs7O1NBQy9DO1FBRVksMkRBQTZCLEdBQTFDLFVBQTJDLE9BQXlCOzs7Ozs7NEJBQ2xFLElBQUksRUFBQyxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsS0FBSyxDQUFBLEVBQUU7Z0NBQ25CLE1BQU0sSUFBSSxLQUFLLENBQUMsV0FBVyxDQUFDLENBQUM7NkJBQzlCOzRCQUNELElBQUksRUFBQyxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsVUFBVSxDQUFBLEVBQUU7Z0NBQ3hCLE1BQU0sSUFBSSxLQUFLLENBQ2IsdURBQXVELENBQ3hELENBQUM7NkJBQ0g7NEJBQ0QsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxpQkFBaUIsQ0FBQSxFQUFFO2dDQUMvQixNQUFNLElBQUksS0FBSyxDQUFDLFVBQVUsQ0FBQyxDQUFDOzZCQUM3Qjs0QkFHQyxTQUFTLEdBS1AsT0FBTyxVQUxBLEVBQ1QsaUJBQWlCLEdBSWYsT0FBTyxrQkFKUSxFQUNqQixVQUFVLEdBR1IsT0FBTyxXQUhDLEVBQ1YsS0FBSyxHQUVILE9BQU8sTUFGSixFQUNMLGlCQUFpQixHQUNmLE9BQU8sa0JBRFEsQ0FDUDs0QkFDWixxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztvQ0FDNUIsTUFBTSxFQUFFLE1BQU07b0NBQ2QsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSw2QkFBd0IsS0FBSywwQkFBdUI7b0NBQzdFLElBQUksRUFBRTt3Q0FDSixVQUFVLFlBQUE7d0NBQ1YsU0FBUyxXQUFBO3dDQUNULGlCQUFpQixtQkFBQTt3Q0FDakIsaUJBQWlCLG1CQUFBO3FDQUNsQjtpQ0FDRixDQUFDLEVBQUE7OzRCQVRGLFNBU0UsQ0FBQzs0QkFDSCxzQkFBTyxFQUFFLElBQUksRUFBRSxHQUFHLEVBQUUsT0FBTyxFQUFFLGNBQWMsRUFBRSxFQUFDOzs7O1NBQy9DO1FBRVksb0RBQXNCLEdBQW5DLFVBQW9DLE9BQXlCOzs7Ozs7NEJBQzNELElBQUksRUFBQyxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsS0FBSyxDQUFBLEVBQUU7Z0NBQ25CLE1BQU0sSUFBSSxLQUFLLENBQUMsV0FBVyxDQUFDLENBQUM7NkJBQzlCOzRCQUNELElBQUksRUFBQyxPQUFPLGFBQVAsT0FBTyx1QkFBUCxPQUFPLENBQUUsVUFBVSxDQUFBLEVBQUU7Z0NBQ3hCLE1BQU0sSUFBSSxLQUFLLENBQ2IsdURBQXVELENBQ3hELENBQUM7NkJBQ0g7NEJBQ0QsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxpQkFBaUIsQ0FBQSxFQUFFO2dDQUMvQixNQUFNLElBQUksS0FBSyxDQUFDLFVBQVUsQ0FBQyxDQUFDOzZCQUM3Qjs0QkFFQyxTQUFTLEdBS1AsT0FBTyxVQUxBLEVBQ1QsaUJBQWlCLEdBSWYsT0FBTyxrQkFKUSxFQUNqQixVQUFVLEdBR1IsT0FBTyxXQUhDLEVBQ1YsS0FBSyxHQUVILE9BQU8sTUFGSixFQUNMLGlCQUFpQixHQUNmLE9BQU8sa0JBRFEsQ0FDUDs0QkFDWixxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztvQ0FDNUIsTUFBTSxFQUFFLE1BQU07b0NBQ2QsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSw2QkFBd0IsS0FBSyx5QkFBc0I7b0NBQzVFLElBQUksRUFBRTt3Q0FDSixVQUFVLFlBQUE7d0NBQ1YsU0FBUyxXQUFBO3dDQUNULGlCQUFpQixtQkFBQTt3Q0FDakIsaUJBQWlCLG1CQUFBO3FDQUNsQjtpQ0FDRixDQUFDLEVBQUE7OzRCQVRGLFNBU0UsQ0FBQzs0QkFDSCxzQkFBTyxFQUFFLElBQUksRUFBRSxHQUFHLEVBQUUsT0FBTyxFQUFFLGtCQUFrQixFQUFFLEVBQUM7Ozs7U0FDbkQ7UUFFWSxtREFBcUIsR0FBbEMsVUFBbUMsT0FBeUI7Ozs7Ozs0QkFDMUQsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxLQUFLLENBQUEsRUFBRTtnQ0FDbkIsTUFBTSxJQUFJLEtBQUssQ0FBQyxXQUFXLENBQUMsQ0FBQzs2QkFDOUI7NEJBQ0QsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxVQUFVLENBQUEsRUFBRTtnQ0FDeEIsTUFBTSxJQUFJLEtBQUssQ0FDYix1REFBdUQsQ0FDeEQsQ0FBQzs2QkFDSDs0QkFDRCxJQUFJLEVBQUMsT0FBTyxhQUFQLE9BQU8sdUJBQVAsT0FBTyxDQUFFLGlCQUFpQixDQUFBLEVBQUU7Z0NBQy9CLE1BQU0sSUFBSSxLQUFLLENBQUMsVUFBVSxDQUFDLENBQUM7NkJBQzdCOzRCQUVDLFNBQVMsR0FLUCxPQUFPLFVBTEEsRUFDVCxpQkFBaUIsR0FJZixPQUFPLGtCQUpRLEVBQ2pCLFVBQVUsR0FHUixPQUFPLFdBSEMsRUFDVixLQUFLLEdBRUgsT0FBTyxNQUZKLEVBQ0wsaUJBQWlCLEdBQ2YsT0FBTyxrQkFEUSxDQUNQOzRCQUNaLHFCQUFNLElBQUksQ0FBQyxVQUFVLENBQUMsT0FBTyxDQUFDO29DQUM1QixNQUFNLEVBQUUsTUFBTTtvQ0FDZCxHQUFHLEVBQUssSUFBSSxDQUFDLE9BQU8sQ0FBQyxJQUFJLDZCQUF3QixLQUFLLHdCQUFxQjtvQ0FDM0UsSUFBSSxFQUFFO3dDQUNKLFVBQVUsWUFBQTt3Q0FDVixTQUFTLFdBQUE7d0NBQ1QsaUJBQWlCLG1CQUFBO3dDQUNqQixpQkFBaUIsbUJBQUE7cUNBQ2xCO2lDQUNGLENBQUMsRUFBQTs7NEJBVEYsU0FTRSxDQUFDOzRCQUNILHNCQUFPLEVBQUUsSUFBSSxFQUFFLEdBQUcsRUFBRSxPQUFPLEVBQUUsa0JBQWtCLEVBQUUsRUFBQzs7OztTQUNuRDtRQUVZLGtFQUFvQyxHQUFqRCxVQUFrRCxPQUdqRDs7Ozs7NEJBQ0MsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxLQUFLLENBQUEsRUFBRTtnQ0FDbkIsTUFBTSxJQUFJLEtBQUssQ0FBQyxVQUFVLENBQUMsQ0FBQzs2QkFDN0I7NEJBQ0QsSUFBSSxFQUFDLE9BQU8sYUFBUCxPQUFPLHVCQUFQLE9BQU8sQ0FBRSxlQUFlLENBQUEsRUFBRTtnQ0FDN0IsTUFBTSxJQUFJLEtBQUssQ0FDYiw4REFBOEQsQ0FDL0QsQ0FBQzs2QkFDSDs0QkFDTSxxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztvQ0FDbkMsTUFBTSxFQUFFLE1BQU07b0NBQ2QsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSw2QkFBd0IsT0FBTyxDQUFDLEtBQU87b0NBQ2hFLElBQUksRUFBRTt3Q0FDSixrQkFBa0IsRUFBRSxFQUFFLGVBQWUsRUFBRSxPQUFPLENBQUMsZUFBZSxFQUFFO3FDQUNqRTtpQ0FDRixDQUFDLEVBQUE7Z0NBTkYsc0JBQU8sU0FNTCxFQUFDOzs7O1NBQ0o7UUFFRDs7Ozs7O1dBTUc7UUFDVSwyREFBNkIsR0FBMUMsVUFDRSxLQUFhLEVBQ2IsSUFBZ0IsRUFDaEIsS0FBa0I7WUFEbEIscUJBQUEsRUFBQSxRQUFnQjtZQUNoQixzQkFBQSxFQUFBLFVBQWtCOzs7OztnQ0FFSCxxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztnQ0FDM0MsTUFBTSxFQUFFLEtBQUs7Z0NBQ2IsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSw2QkFBd0IsS0FBSyw0Q0FBdUMsS0FBSyxjQUFTLElBQU07NkJBQ2xILENBQUMsRUFBQTs7NEJBSEksTUFBTSxHQUFHLFNBR2I7NEJBQ0Ysc0JBQU8sTUFBTSxFQUFDOzs7O1NBQ2Y7UUFFRDs7Ozs7O1dBTUc7UUFDVSw2REFBK0IsR0FBNUMsVUFDRSxLQUFhLEVBQ2IsT0FLQztZQUxELHdCQUFBLEVBQUE7Z0JBSUUsYUFBYSxFQUFFLEdBQUc7YUFDbkI7Ozs7O2dDQUVjLHFCQUFNLElBQUksQ0FBQyxVQUFVLENBQUMsT0FBTyxDQUFDO2dDQUMzQyxNQUFNLEVBQUUsTUFBTTtnQ0FDZCxHQUFHLEVBQUssSUFBSSxDQUFDLE9BQU8sQ0FBQyxJQUFJLDZCQUF3QixLQUFLLGtDQUErQjtnQ0FDckYsSUFBSSxlQUFPLE9BQU8sQ0FBRTs2QkFDckIsQ0FBQyxFQUFBOzs0QkFKSSxNQUFNLEdBQUcsU0FJYjs0QkFDRixzQkFBTyxNQUFNLEVBQUM7Ozs7U0FDZjtRQUVEOzs7O1dBSUc7UUFDVSw2REFBK0IsR0FBNUMsVUFDRSwyQkFBbUM7Ozs7Ozs7NEJBR2pDLHFCQUFNLElBQUksQ0FBQyxVQUFVLENBQUMsT0FBTyxDQUFDO29DQUM1QixNQUFNLEVBQUUsUUFBUTtvQ0FDaEIsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSw2REFBd0QsMkJBQTZCO2lDQUMvRyxDQUFDLEVBQUE7OzRCQUhGLFNBR0UsQ0FBQzs0QkFDSCxzQkFBTyxJQUFJLEVBQUM7Ozs0QkFFWixNQUFNLE9BQUssQ0FBQzs7Ozs7U0FFZjtRQUVEOzs7OztXQUtHO1FBQ1Usb0VBQXNDLEdBQW5ELFVBQ0UsMkJBQW1DLEVBQ25DLCtCQUVDO1lBRkQsZ0RBQUEsRUFBQSxrQ0FBMEMsbUJBQW1CLENBQUMsWUFBWSxDQUN4RSxFQUFFLENBQ0g7Ozs7O2dDQUVjLHFCQUFNLElBQUksQ0FBQyxVQUFVLENBQUMsT0FBTyxDQUFDO2dDQUMzQyxNQUFNLEVBQUUsT0FBTztnQ0FDZixHQUFHLEVBQUssSUFBSSxDQUFDLE9BQU8sQ0FBQyxJQUFJLHNEQUFtRDtnQ0FDNUUsSUFBSSxFQUFFO29DQUNKLEVBQUUsRUFBRSwyQkFBMkI7b0NBQy9CLE1BQU0sRUFBRSwrQkFBK0I7aUNBQ3hDOzZCQUNGLENBQUMsRUFBQTs7NEJBUEksTUFBTSxHQUFHLFNBT2I7NEJBQ0Ysc0JBQU8sTUFBTSxFQUFDOzs7O1NBQ2Y7UUFFRDs7OztXQUlHO1FBQ1UsNkRBQStCLEdBQTVDLFVBQ0UsMkJBQW1DOzs7OztnQ0FFcEIscUJBQU0sSUFBSSxDQUFDLFVBQVUsQ0FBQyxPQUFPLENBQUM7Z0NBQzNDLE1BQU0sRUFBRSxPQUFPO2dDQUNmLEdBQUcsRUFBSyxJQUFJLENBQUMsT0FBTyxDQUFDLElBQUksc0RBQW1EO2dDQUM1RSxJQUFJLEVBQUU7b0NBQ0osRUFBRSxFQUFFLDJCQUEyQjtvQ0FDL0IsT0FBTyxFQUFFLElBQUk7aUNBQ2Q7NkJBQ0YsQ0FBQyxFQUFBOzs0QkFQSSxNQUFNLEdBQUcsU0FPYjs0QkFDRixzQkFBTyxNQUFNLEVBQUM7Ozs7U0FDZjtRQUVEOzs7O1dBSUc7UUFDVSw4REFBZ0MsR0FBN0MsVUFDRSwyQkFBbUM7Ozs7O2dDQUVwQixxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztnQ0FDM0MsTUFBTSxFQUFFLE9BQU87Z0NBQ2YsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSxzREFBbUQ7Z0NBQzVFLElBQUksRUFBRTtvQ0FDSixFQUFFLEVBQUUsMkJBQTJCO29DQUMvQixPQUFPLEVBQUUsS0FBSztpQ0FDZjs2QkFDRixDQUFDLEVBQUE7OzRCQVBJLE1BQU0sR0FBRyxTQU9iOzRCQUNGLHNCQUFPLE1BQU0sRUFBQzs7OztTQUNmO1FBRUQ7Ozs7O1dBS0c7UUFDVSw0Q0FBYyxHQUEzQixVQUNFLElBQWdCLEVBQ2hCLEtBQWtCO1lBRGxCLHFCQUFBLEVBQUEsUUFBZ0I7WUFDaEIsc0JBQUEsRUFBQSxVQUFrQjs7Ozs7Z0NBRUgscUJBQU0sSUFBSSxDQUFDLFVBQVUsQ0FBQyxPQUFPLENBQUM7Z0NBQzNDLE1BQU0sRUFBRSxLQUFLO2dDQUNiLEdBQUcsRUFDRSxJQUFJLENBQUMsT0FBTyxDQUFDLElBQUksbUNBQThCLElBQUksQ0FBQyxPQUFPLENBQUMsVUFBWTtvQ0FDM0UsMkJBQW1CLENBQUM7d0NBQ2xCLElBQUksRUFBRSxJQUFJLGFBQUosSUFBSSx1QkFBSixJQUFJLENBQUUsUUFBUSxFQUFFO3dDQUN0QixLQUFLLEVBQUUsS0FBSyxhQUFMLEtBQUssdUJBQUwsS0FBSyxDQUFFLFFBQVEsRUFBRTtxQ0FDekIsQ0FBQzs2QkFDTCxDQUFDLEVBQUE7OzRCQVJJLE1BQU0sR0FBRyxTQVFiOzRCQUNGLHNCQUFPLE1BQU0sRUFBQzs7OztTQUNmO1FBRUQ7Ozs7V0FJRztRQUNVLDZDQUFlLEdBQTVCLFVBQTZCLElBQVk7Ozs7Ozs7NEJBRXJDLHFCQUFNLElBQUksQ0FBQyxVQUFVLENBQUMsT0FBTyxDQUFDO29DQUM1QixNQUFNLEVBQUUsUUFBUTtvQ0FDaEIsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSxtQ0FBOEIsSUFBSSxDQUFDLE9BQU8sQ0FBQyxVQUFVLGNBQVMsSUFBTTtpQ0FDOUYsQ0FBQyxFQUFBOzs0QkFIRixTQUdFLENBQUM7NEJBRUgsc0JBQU8sSUFBSSxFQUFDOzs7NEJBRVosTUFBTSxPQUFLLENBQUM7Ozs7O1NBRWY7UUFFRDs7Ozs7O1dBTUc7UUFDVSw2Q0FBZSxHQUE1QixVQUNFLElBQVksRUFDWixJQUFZLEVBQ1osV0FBb0I7Ozs7Ozs7NEJBR0wscUJBQU0sSUFBSSxDQUFDLFVBQVUsQ0FBQyxPQUFPLENBQUM7b0NBQ3pDLE1BQU0sRUFBRSxNQUFNO29DQUNkLEdBQUcsRUFBSyxJQUFJLENBQUMsT0FBTyxDQUFDLElBQUksbUNBQThCLElBQUksQ0FBQyxPQUFPLENBQUMsVUFBWTtvQ0FDaEYsSUFBSSxFQUFFO3dDQUNKLElBQUksTUFBQTt3Q0FDSixJQUFJLE1BQUE7d0NBQ0osV0FBVyxhQUFBO3FDQUNaO2lDQUNGLENBQUMsRUFBQTs7NEJBUkksSUFBSSxHQUFHLFNBUVg7NEJBRUYsc0JBQU8sSUFBSSxFQUFDOzs7NEJBRVosTUFBTSxPQUFLLENBQUM7Ozs7O1NBRWY7UUFFRDs7Ozs7OztXQU9HO1FBQ1UsNkNBQWUsR0FBNUIsVUFDRSxJQUFZLEVBQ1osT0FJQzs7Ozs7Ozs0QkFHYyxxQkFBTSxJQUFJLENBQUMsVUFBVSxDQUFDLE9BQU8sQ0FBQztvQ0FDekMsTUFBTSxFQUFFLEtBQUs7b0NBQ2IsR0FBRyxFQUFLLElBQUksQ0FBQyxPQUFPLENBQUMsSUFBSSxtQ0FBOEIsSUFBSSxDQUFDLE9BQU8sQ0FBQyxVQUFVLGNBQVMsSUFBTTtvQ0FDN0YsSUFBSSxFQUFFO3dDQUNKLElBQUksRUFBRSxPQUFPLENBQUMsSUFBSTt3Q0FDbEIsSUFBSSxFQUFFLE9BQU8sQ0FBQyxJQUFJO3dDQUNsQixXQUFXLEVBQUUsT0FBTyxDQUFDLFdBQVc7cUNBQ2pDO2lDQUNGLENBQUMsRUFBQTs7NEJBUkksSUFBSSxHQUFHLFNBUVg7NEJBRUYsc0JBQU8sSUFBSSxFQUFDOzs7NEJBRVosTUFBTSxPQUFLLENBQUM7Ozs7O1NBRWY7UUFDSCwwQkFBQztJQUFELENBQUMsQUEzc0JELElBMnNCQztJQTNzQlksa0RBQW1CIn0=