RubyGems - familia - Versions diffs - 2.0.0.pre5 → 2.0.0.pre7 - Mend

familia 2.0.0.pre5 → 2.0.0.pre7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (151) hide show

checksums.yaml +4 -4
data/.github/workflows/claude-code-review.yml +57 -0
data/.github/workflows/claude.yml +71 -0
data/.gitignore +5 -1
data/.rubocop.yml +3 -0
data/CLAUDE.md +32 -10
data/Gemfile +2 -2
data/Gemfile.lock +4 -3
data/docs/wiki/API-Reference.md +95 -18
data/docs/wiki/Connection-Pooling-Guide.md +437 -0
data/docs/wiki/Encrypted-Fields-Overview.md +40 -3
data/docs/wiki/Expiration-Feature-Guide.md +596 -0
data/docs/wiki/Feature-System-Guide.md +631 -0
data/docs/wiki/Features-System-Developer-Guide.md +892 -0
data/docs/wiki/Field-System-Guide.md +784 -0
data/docs/wiki/Home.md +82 -15
data/docs/wiki/Implementation-Guide.md +126 -33
data/docs/wiki/Quantization-Feature-Guide.md +721 -0
data/docs/wiki/Relationships-Guide.md +684 -0
data/docs/wiki/Security-Model.md +65 -25
data/docs/wiki/Transient-Fields-Guide.md +280 -0
data/examples/bit_encoding_integration.rb +237 -0
data/examples/redis_command_validation_example.rb +231 -0
data/examples/relationships_basic.rb +273 -0
data/lib/familia/base.rb +1 -1
data/lib/familia/connection.rb +3 -3
data/lib/familia/data_type/types/counter.rb +38 -0
data/lib/familia/data_type/types/hashkey.rb +18 -0
data/lib/familia/data_type/types/lock.rb +43 -0
data/lib/familia/data_type/types/string.rb +9 -2
data/lib/familia/data_type.rb +9 -6
data/lib/familia/encryption/encrypted_data.rb +137 -0
data/lib/familia/encryption/manager.rb +21 -4
data/lib/familia/encryption/providers/aes_gcm_provider.rb +20 -0
data/lib/familia/encryption/providers/xchacha20_poly1305_provider.rb +20 -0
data/lib/familia/encryption.rb +1 -1
data/lib/familia/errors.rb +17 -3
data/lib/familia/features/encrypted_fields/concealed_string.rb +293 -0
data/lib/familia/features/encrypted_fields/encrypted_field_type.rb +94 -26
data/lib/familia/features/encrypted_fields.rb +413 -4
data/lib/familia/features/expiration.rb +319 -33
data/lib/familia/features/quantization.rb +385 -44
data/lib/familia/features/relationships/cascading.rb +438 -0
data/lib/familia/features/relationships/indexing.rb +370 -0
data/lib/familia/features/relationships/membership.rb +503 -0
data/lib/familia/features/relationships/permission_management.rb +264 -0
data/lib/familia/features/relationships/querying.rb +620 -0
data/lib/familia/features/relationships/redis_operations.rb +274 -0
data/lib/familia/features/relationships/score_encoding.rb +442 -0
data/lib/familia/features/relationships/tracking.rb +379 -0
data/lib/familia/features/relationships.rb +466 -0
data/lib/familia/features/safe_dump.rb +1 -1
data/lib/familia/features/transient_fields/redacted_string.rb +1 -1
data/lib/familia/features/transient_fields.rb +192 -10
data/lib/familia/features.rb +2 -1
data/lib/familia/field_type.rb +5 -2
data/lib/familia/horreum/{connection.rb → core/connection.rb} +2 -8
data/lib/familia/horreum/{database_commands.rb → core/database_commands.rb} +14 -3
data/lib/familia/horreum/core/serialization.rb +535 -0
data/lib/familia/horreum/{utils.rb → core/utils.rb} +0 -2
data/lib/familia/horreum/core.rb +21 -0
data/lib/familia/horreum/{settings.rb → shared/settings.rb} +0 -2
data/lib/familia/horreum/{definition_methods.rb → subclass/definition.rb} +45 -29
data/lib/familia/horreum/{management_methods.rb → subclass/management.rb} +9 -8
data/lib/familia/horreum/{related_fields_management.rb → subclass/related_fields_management.rb} +15 -10
data/lib/familia/horreum.rb +17 -17
data/lib/familia/validation/command_recorder.rb +336 -0
data/lib/familia/validation/expectations.rb +519 -0
data/lib/familia/validation/test_helpers.rb +443 -0
data/lib/familia/validation/validator.rb +412 -0
data/lib/familia/validation.rb +140 -0
data/lib/familia/version.rb +1 -1
data/lib/familia.rb +1 -1
data/try/core/create_method_try.rb +240 -0
data/try/core/database_consistency_try.rb +299 -0
data/try/core/errors_try.rb +25 -4
data/try/core/familia_try.rb +1 -1
data/try/core/persistence_operations_try.rb +297 -0
data/try/data_types/counter_try.rb +93 -0
data/try/data_types/lock_try.rb +133 -0
data/try/debugging/debug_aad_process.rb +82 -0
data/try/debugging/debug_concealed_internal.rb +59 -0
data/try/debugging/debug_concealed_reveal.rb +61 -0
data/try/debugging/debug_context_aad.rb +68 -0
data/try/debugging/debug_context_simple.rb +80 -0
data/try/debugging/debug_cross_context.rb +62 -0
data/try/debugging/debug_database_load.rb +64 -0
data/try/debugging/debug_encrypted_json_check.rb +53 -0
data/try/debugging/debug_encrypted_json_step_by_step.rb +62 -0
data/try/debugging/debug_exists_lifecycle.rb +54 -0
data/try/debugging/debug_field_decrypt.rb +74 -0
data/try/debugging/debug_fresh_cross_context.rb +73 -0
data/try/debugging/debug_load_path.rb +66 -0
data/try/debugging/debug_method_definition.rb +46 -0
data/try/debugging/debug_method_resolution.rb +41 -0
data/try/debugging/debug_minimal.rb +24 -0
data/try/debugging/debug_provider.rb +68 -0
data/try/debugging/debug_secure_behavior.rb +73 -0
data/try/debugging/debug_string_class.rb +46 -0
data/try/debugging/debug_test.rb +46 -0
data/try/debugging/debug_test_design.rb +80 -0
data/try/edge_cases/hash_symbolization_try.rb +1 -0
data/try/edge_cases/reserved_keywords_try.rb +1 -0
data/try/edge_cases/string_coercion_try.rb +2 -0
data/try/encryption/encryption_core_try.rb +6 -4
data/try/features/categorical_permissions_try.rb +515 -0
data/try/features/encrypted_fields_core_try.rb +19 -11
data/try/features/encrypted_fields_integration_try.rb +66 -70
data/try/features/encrypted_fields_no_cache_security_try.rb +22 -8
data/try/features/encrypted_fields_security_try.rb +151 -144
data/try/features/encryption_fields/aad_protection_try.rb +108 -23
data/try/features/encryption_fields/concealed_string_core_try.rb +253 -0
data/try/features/encryption_fields/context_isolation_try.rb +30 -8
data/try/features/encryption_fields/error_conditions_try.rb +6 -6
data/try/features/encryption_fields/fresh_key_derivation_try.rb +20 -14
data/try/features/encryption_fields/fresh_key_try.rb +27 -22
data/try/features/encryption_fields/key_rotation_try.rb +16 -10
data/try/features/encryption_fields/nonce_uniqueness_try.rb +15 -13
data/try/features/encryption_fields/secure_by_default_behavior_try.rb +310 -0
data/try/features/encryption_fields/thread_safety_try.rb +6 -6
data/try/features/encryption_fields/universal_serialization_safety_try.rb +174 -0
data/try/features/feature_dependencies_try.rb +3 -3
data/try/features/relationships_edge_cases_try.rb +145 -0
data/try/features/relationships_performance_minimal_try.rb +132 -0
data/try/features/relationships_performance_simple_try.rb +155 -0
data/try/features/relationships_performance_try.rb +420 -0
data/try/features/relationships_performance_working_try.rb +144 -0
data/try/features/relationships_try.rb +237 -0
data/try/features/safe_dump_try.rb +3 -0
data/try/features/transient_fields/redacted_string_try.rb +2 -0
data/try/features/transient_fields/single_use_redacted_string_try.rb +2 -0
data/try/features/transient_fields_core_try.rb +1 -1
data/try/features/transient_fields_integration_try.rb +1 -1
data/try/helpers/test_helpers.rb +26 -1
data/try/horreum/base_try.rb +14 -8
data/try/horreum/enhanced_conflict_handling_try.rb +3 -1
data/try/horreum/initialization_try.rb +1 -1
data/try/horreum/relations_try.rb +2 -2
data/try/horreum/serialization_persistent_fields_try.rb +8 -8
data/try/horreum/serialization_try.rb +39 -4
data/try/models/customer_safe_dump_try.rb +1 -1
data/try/models/customer_try.rb +1 -1
data/try/validation/atomic_operations_try.rb.disabled +320 -0
data/try/validation/command_validation_try.rb.disabled +207 -0
data/try/validation/performance_validation_try.rb.disabled +324 -0
data/try/validation/real_world_scenarios_try.rb.disabled +390 -0
metadata +81 -12
data/TEST_COVERAGE.md +0 -40
data/lib/familia/features/relatable_objects.rb +0 -125
data/lib/familia/horreum/serialization.rb +0 -473
data/try/features/relatable_objects_try.rb +0 -220

data/lib/familia/features/relationships/score_encoding.rb ADDED Viewed

@@ -0,0 +1,442 @@
+# lib/familia/features/relationships/score_encoding.rb
+module Familia
+  module Features
+    module Relationships
+      # Score encoding using bit flags for permissions
+      #
+      # Encodes permissions as bit flags in the decimal portion of Redis sorted set scores:
+      # - Integer part: Unix timestamp for time-based ordering
+      # - Decimal part: 8-bit permission flags (0-255)
+      #
+      # Format: [timestamp].[permission_bits]
+      # Example: 1704067200.037 = Jan 1, 2024 with read(1) + write(4) + delete(32) = 37
+      #
+      # Bit positions:
+      #   0: read      - View/list items
+      #   1: append    - Add new items
+      #   2: write     - Modify existing items
+      #   3: edit      - Edit metadata
+      #   4: configure - Change settings
+      #   5: delete    - Remove items
+      #   6: transfer  - Change ownership
+      #   7: admin     - Full control
+      #
+      # This allows combining permissions (read + delete without write) and efficient
+      # permission checking using bitwise operations while maintaining time-based ordering.
+      module ScoreEncoding
+        # Maximum value for metadata to preserve precision (3 decimal places)
+        # For 8-bit permission system, max value is 255
+        MAX_METADATA = 255
+        METADATA_PRECISION = 1000.0
+        # Permission bit flags (8-bit system)
+        PERMISSION_FLAGS = {
+          none:      0b00000000,  # 0   - No permissions
+          read:      0b00000001,  # 1   - View/list
+          append:    0b00000010,  # 2   - Add new items
+          write:     0b00000100,  # 4   - Modify existing
+          edit:      0b00001000,  # 8   - Edit metadata
+          configure: 0b00010000,  # 16  - Change settings
+          delete:    0b00100000,  # 32  - Remove items
+          transfer:  0b01000000,  # 64  - Change ownership
+          admin:     0b10000000   # 128 - Full control
+        }.freeze
+        # Predefined permission combinations
+        PERMISSION_ROLES = {
+          viewer:     PERMISSION_FLAGS[:read],
+          editor:     PERMISSION_FLAGS[:read] | PERMISSION_FLAGS[:write] | PERMISSION_FLAGS[:edit],
+          moderator:  PERMISSION_FLAGS[:read] | PERMISSION_FLAGS[:write] | PERMISSION_FLAGS[:edit] | PERMISSION_FLAGS[:delete],
+          admin:      0b11111111 # All permissions
+        }.freeze
+        # Categorical masks for efficient broad queries
+        PERMISSION_CATEGORIES = {
+          readable:       0b00000001,  # Has basic access
+          content_editor: 0b00001110,  # Can modify content (append|write|edit)
+          administrator:  0b11110000,  # Has any admin powers
+          privileged:     0b11111110,  # Has beyond read-only
+          owner:          0b11111111   # All permissions
+        }.freeze
+        class << self
+          # Get permission bit flag value for a permission symbol
+          #
+          # @param permission [Symbol] Permission symbol to get value for
+          # @return [Integer] Bit flag value for the permission
+          # @raise [ArgumentError] If permission is unknown
+          def permission_level_value(permission)
+            PERMISSION_FLAGS[permission] || raise(ArgumentError, "Unknown permission: #{permission.inspect}")
+          end
+          # Encode timestamp and permission (alias for encode_score)
+          #
+          # @param timestamp [Time, Integer] The timestamp to encode
+          # @param permission [Symbol, Integer, Array] Permission(s) to encode
+          # @return [Float] Encoded score suitable for Redis sorted sets
+          def permission_encode(timestamp, permission)
+            encode_score(timestamp, permission)
+          end
+          # Decode score into permission information
+          #
+          # @param score [Float] The encoded score
+          # @return [Hash] Hash with timestamp, permissions bits, and permission list
+          def permission_decode(score)
+            decoded = decode_score(score)
+            {
+              timestamp: decoded[:timestamp],
+              permissions: decoded[:permissions],
+              permission_list: decoded[:permission_list]
+            }
+          end
+          # Encode a timestamp and permissions into a Redis score
+          #
+          # @param timestamp [Time, Integer] The timestamp to encode
+          # @param permissions [Integer, Symbol, Array] Permissions to encode
+          # @return [Float] Encoded score suitable for Redis sorted sets
+          #
+          # @example Basic encoding with bit flag
+          #   encode_score(Time.now, 5)  # read(1) + write(4) = 5
+          #   #=> 1704067200.005
+          #
+          # @example Permission symbol encoding
+          #   encode_score(Time.now, :read)
+          #   #=> 1704067200.001
+          #
+          # @example Multiple permissions
+          #   encode_score(Time.now, [:read, :write, :delete])
+          #   #=> 1704067200.037
+          def encode_score(timestamp, permissions = 0)
+            time_part = timestamp.respond_to?(:to_i) ? timestamp.to_i : timestamp
+            permission_bits = case permissions
+                              when Symbol
+                                PERMISSION_ROLES[permissions] || PERMISSION_FLAGS[permissions] || 0
+                              when Array
+                                # Support array of permission symbols
+                                permissions.reduce(0) { |acc, p| acc | (PERMISSION_FLAGS[p] || 0) }
+                              when Integer
+                                validate_permission_bits(permissions)
+                              else
+                                0
+                              end
+            time_part + (permission_bits / METADATA_PRECISION)
+          end
+          # Decode a Redis score back into timestamp and permissions
+          #
+          # @param score [Float] The encoded score
+          # @return [Hash] Hash with :timestamp, :permissions, and :permission_list keys
+          #
+          # @example Basic decoding
+          #   decode_score(1704067200.037)
+          #   #=> { timestamp: 1704067200, permissions: 37, permission_list: [:read, :write, :delete] }
+          def decode_score(score)
+            return { timestamp: 0, permissions: 0, permission_list: [] } unless score.is_a?(Numeric)
+            time_part = score.to_i
+            permission_bits = ((score - time_part) * METADATA_PRECISION).round
+            {
+              timestamp: time_part,
+              permissions: permission_bits,
+              permission_list: decode_permission_flags(permission_bits)
+            }
+          end
+          # Check if score has specific permissions
+          #
+          # @param score [Float] The encoded score
+          # @param permissions [Array<Symbol>] Permissions to check
+          # @return [Boolean] True if all permissions are present
+          #
+          # @example
+          #   permission?(1704067200.005, :read)  # score has read(1) + write(4)
+          #   #=> true
+          def permission?(score, *permissions)
+            decoded = decode_score(score)
+            permission_bits = decoded[:permissions]
+            permissions.all? do |perm|
+              flag = PERMISSION_FLAGS[perm]
+              flag && permission_bits.anybits?(flag)
+            end
+          end
+          # Add permissions to existing score
+          #
+          # @param score [Float] The existing encoded score
+          # @param permissions [Array<Symbol>] Permissions to add
+          # @return [Float] New score with added permissions
+          #
+          # @example
+          #   add_permissions(1704067200.001, :write, :delete)  # add write(4) + delete(32) to read(1)
+          #   #=> 1704067200.037
+          def add_permissions(score, *permissions)
+            decoded = decode_score(score)
+            current_bits = decoded[:permissions]
+            new_bits = permissions.reduce(current_bits) do |acc, perm|
+              acc | (PERMISSION_FLAGS[perm] || 0)
+            end
+            encode_score(decoded[:timestamp], new_bits)
+          end
+          # Remove permissions from existing score
+          #
+          # @param score [Float] The existing encoded score
+          # @param permissions [Array<Symbol>] Permissions to remove
+          # @return [Float] New score with removed permissions
+          #
+          # @example
+          #   remove_permissions(1704067200.037, :write)  # remove write(4) from read(1)+write(4)+delete(32)
+          #   #=> 1704067200.033
+          def remove_permissions(score, *permissions)
+            decoded = decode_score(score)
+            current_bits = decoded[:permissions]
+            new_bits = permissions.reduce(current_bits) do |acc, perm|
+              acc & ~(PERMISSION_FLAGS[perm] || 0)
+            end
+            encode_score(decoded[:timestamp], new_bits)
+          end
+          # Create score range for permissions
+          #
+          # @param min_permissions [Array<Symbol>, nil] Minimum required permissions
+          # @param max_permissions [Array<Symbol>, nil] Maximum allowed permissions
+          # @return [Array<Float>] Min and max scores for Redis range queries
+          #
+          # @example
+          #   permission_range([:read], [:read, :write])
+          #   #=> [0.001, 0.005]
+          def permission_range(min_permissions = [], max_permissions = nil)
+            min_bits = Array(min_permissions).reduce(0) { |acc, p| acc | (PERMISSION_FLAGS[p] || 0) }
+            max_bits = if max_permissions
+                         Array(max_permissions).reduce(0) do |acc, p|
+                           acc | (PERMISSION_FLAGS[p] || 0)
+                         end
+                       else
+                         255
+                       end
+            [min_bits / METADATA_PRECISION, max_bits / METADATA_PRECISION]
+          end
+          # Get current timestamp as score (no permissions)
+          #
+          # @return [Float] Current time as Redis score
+          def current_score
+            encode_score(Time.now, 0)
+          end
+          # Create score range for Redis operations based on time bounds
+          #
+          # @param start_time [Time, nil] Start time (nil for -inf)
+          # @param end_time [Time, nil] End time (nil for +inf)
+          # @param min_permissions [Array<Symbol>, nil] Minimum required permissions
+          # @return [Array] Array suitable for Redis ZRANGEBYSCORE operations
+          #
+          # @example Time range
+          #   score_range(1.hour.ago, Time.now)
+          #   #=> [1704063600.0, 1704067200.255]
+          #
+          # @example Permission filter
+          #   score_range(nil, nil, min_permissions: [:read])
+          #   #=> [0.001, "+inf"]
+          def score_range(start_time = nil, end_time = nil, min_permissions: nil)
+            min_bits = if min_permissions
+                         Array(min_permissions).reduce(0) do |acc, p|
+                           acc | (PERMISSION_FLAGS[p] || 0)
+                         end
+                       else
+                         0
+                       end
+            min_score = if start_time
+                          encode_score(start_time, min_bits)
+                        elsif min_permissions
+                          encode_score(0, min_bits)
+                        else
+                          '-inf'
+                        end
+            max_score = if end_time
+                          encode_score(end_time, 255) # Use max valid permission bits
+                        else
+                          '+inf'
+                        end
+            [min_score, max_score]
+          end
+          # Decode permission bits into array of permission symbols
+          #
+          # @param bits [Integer] Permission bits to decode
+          # @return [Array<Symbol>] Array of permission symbols
+          def decode_permission_flags(bits)
+            PERMISSION_FLAGS.select { |_name, flag| bits.anybits?(flag) }.keys
+          end
+          # Check broad permission categories
+          #
+          # @param score [Float] The encoded score
+          # @param category [Symbol] Category to check (:readable, :content_editor, :administrator, etc.)
+          # @return [Boolean] True if score meets the category requirements
+          def category?(score, category)
+            decoded = decode_score(score)
+            permission_bits = decoded[:permissions]
+            mask = PERMISSION_CATEGORIES[category]
+            return false unless mask
+            permission_bits.anybits?(mask)
+          end
+          # Filter collection by permission category
+          #
+          # @param scores [Array<Float>] Array of scores to filter
+          # @param category [Symbol] Category to filter by
+          # @return [Array<Float>] Scores matching the category
+          def filter_by_category(scores, category)
+            mask = PERMISSION_CATEGORIES[category]
+            return [] unless mask
+            scores.select do |score|
+              permission_bits = ((score % 1) * METADATA_PRECISION).round
+              permission_bits.anybits?(mask)
+            end
+          end
+          # Get permission tier for score
+          #
+          # @param score [Float] The encoded score
+          # @return [Symbol] Permission tier (:administrator, :content_editor, :viewer, :none)
+          def permission_tier(score)
+            decoded = decode_score(score)
+            bits = decoded[:permissions]
+            if bits.anybits?(PERMISSION_CATEGORIES[:administrator])
+              :administrator
+            elsif bits.anybits?(PERMISSION_CATEGORIES[:content_editor])
+              :content_editor
+            elsif bits.anybits?(PERMISSION_CATEGORIES[:readable])
+              :viewer
+            else
+              :none
+            end
+          end
+          # Efficient bulk categorization
+          #
+          # @param scores [Array<Float>] Array of scores to categorize
+          # @return [Hash] Hash mapping tiers to arrays of scores
+          def categorize_scores(scores)
+            scores.group_by { |score| permission_tier(score) }
+          end
+          # Check if permissions meet minimum category
+          #
+          # @param permission_bits [Integer] Permission bits to check
+          # @param category [Symbol] Category to check against
+          # @return [Boolean] True if permissions meet the category requirements
+          def meets_category?(permission_bits, category)
+            mask = PERMISSION_CATEGORIES[category]
+            return false unless mask
+            case category
+            when :readable
+              permission_bits.positive? # Any permission implies read
+            when :privileged
+              permission_bits > 1 # More than just read
+            when :administrator
+              permission_bits.anybits?(PERMISSION_CATEGORIES[:administrator])
+            else
+              permission_bits.anybits?(mask)
+            end
+          end
+          # Range queries for categorical filtering
+          #
+          # @param category [Symbol] Category to create range for
+          # @param start_time [Time, nil] Optional start time filter
+          # @param end_time [Time, nil] Optional end time filter
+          # @return [Array<String>] Min and max range strings for Redis queries
+          def category_score_range(category, start_time = nil, end_time = nil)
+            PERMISSION_CATEGORIES[category] || 0
+            # Any permission matching the category mask
+            min_score = start_time ? start_time.to_i : 0
+            max_score = end_time ? end_time.to_i : Time.now.to_i
+            # Return range that includes any matching permissions
+            ["#{min_score}.000", "#{max_score}.999"]
+          end
+          private
+          # Validate permission bits are within acceptable range
+          #
+          # @param bits [Integer] Permission bits to validate
+          # @return [Integer] Validated permission bits
+          # @raise [ArgumentError] If bits are outside 0-255 range
+          def validate_permission_bits(bits)
+            raise ArgumentError, 'Permission bits must be 0-255' unless (0..255).cover?(bits)
+            bits
+          end
+        end
+        # Instance methods for classes that include this module
+        def encode_score(timestamp, permissions = 0)
+          ScoreEncoding.encode_score(timestamp, permissions)
+        end
+        def decode_score(score)
+          ScoreEncoding.decode_score(score)
+        end
+        def permission?(score, *permissions)
+          ScoreEncoding.permission?(score, *permissions)
+        end
+        def add_permissions(score, *permissions)
+          ScoreEncoding.add_permissions(score, *permissions)
+        end
+        def remove_permissions(score, *permissions)
+          ScoreEncoding.remove_permissions(score, *permissions)
+        end
+        def permission_range(min_permissions = [], max_permissions = nil)
+          ScoreEncoding.permission_range(min_permissions, max_permissions)
+        end
+        def current_score
+          ScoreEncoding.current_score
+        end
+        def score_range(start_time = nil, end_time = nil, min_permissions: nil)
+          ScoreEncoding.score_range(start_time, end_time, min_permissions: min_permissions)
+        end
+        # Legacy method aliases for backward compatibility
+        def permission_encode(timestamp, permission)
+          ScoreEncoding.permission_encode(timestamp, permission)
+        end
+        def permission_decode(score)
+          ScoreEncoding.permission_decode(score)
+        end
+      end
+    end
+  end
+end