@ackplus/nest-auth 0.0.39 → 0.0.40

package/src/lib/core/services/jwt.service.js

@@ -0,0 +1,93 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtService = void 0;
+const tslib_1 = require("tslib");
+const common_1 = require("@nestjs/common");
+const jsonwebtoken_1 = tslib_1.__importDefault(require("jsonwebtoken"));
+const auth_constants_1 = require("../../auth.constants");
+const ms_1 = tslib_1.__importDefault(require("ms"));
+let JwtService = class JwtService {
+    constructor(options) {
+        this.options = options;
+    }
+    async generateAccessToken(payload) {
+        return new Promise((resolve, reject) => {
+            jsonwebtoken_1.default.sign({
+                ...payload,
+                type: 'access',
+                exp: Math.floor(Date.now() / 1000) + (0, ms_1.default)(this.options.session.sessionExpiry),
+                iat: Math.floor(Date.now() / 1000),
+            }, this.options.jwt.secret, (err, token) => {
+                if (err)
+                    reject(err);
+                else
+                    resolve(token);
+            });
+        });
+    }
+    async generateRefreshToken(payload) {
+        return new Promise((resolve, reject) => {
+            jsonwebtoken_1.default.sign({
+                ...payload,
+                type: 'refresh',
+                exp: Math.floor(Date.now() / 1000) + (0, ms_1.default)(this.options.session.refreshTokenExpiry),
+                iat: Math.floor(Date.now() / 1000),
+            }, this.options.jwt.secret, (err, token) => {
+                if (err)
+                    reject(err);
+                else
+                    resolve(token);
+            });
+        });
+    }
+    async verifyToken(token) {
+        return new Promise((resolve, reject) => {
+            jsonwebtoken_1.default.verify(token, this.options.jwt.secret, (err, decoded) => {
+                if (err)
+                    reject(err);
+                else
+                    resolve(decoded);
+            });
+        });
+    }
+    async generateTokens(payload) {
+        const [accessToken, refreshToken] = await Promise.all([
+            this.generateAccessToken(payload),
+            this.generateRefreshToken(payload),
+        ]);
+        return {
+            accessToken,
+            refreshToken,
+        };
+    }
+    updateToken(token, payload) {
+        return new Promise((resolve, reject) => {
+            const decoded = this.decodeToken(token);
+            if (!decoded)
+                reject(new Error('Invalid token'));
+            else {
+                jsonwebtoken_1.default.sign({ ...decoded, ...payload }, this.options.jwt.secret, { expiresIn: this.options.session.sessionExpiry }, (err, token) => {
+                    if (err)
+                        reject(err);
+                    else
+                        resolve(token);
+                });
+            }
+        });
+    }
+    decodeToken(token) {
+        try {
+            return jsonwebtoken_1.default.decode(token);
+        }
+        catch (error) {
+            return null;
+        }
+    }
+};
+exports.JwtService = JwtService;
+exports.JwtService = JwtService = tslib_1.__decorate([
+    (0, common_1.Injectable)(),
+    tslib_1.__param(0, (0, common_1.Inject)(auth_constants_1.AUTH_MODULE_OPTIONS)),
+    tslib_1.__metadata("design:paramtypes", [Object])
+], JwtService);
+//# sourceMappingURL=jwt.service.js.map

package/src/lib/core/services/jwt.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.service.js","sourceRoot":"","sources":["../../../../../../../packages/nest-auth/src/lib/core/services/jwt.service.ts"],"names":[],"mappings":";;;;AAAA,2CAAoD;AACpD,wEAA+B;AAE/B,yDAA2D;AAE3D,oDAAoB;AAIb,IAAM,UAAU,GAAhB,MAAM,UAAU;IACnB,YAEY,OAA0B;QAA1B,YAAO,GAAP,OAAO,CAAmB;IAClC,CAAC;IAEL,KAAK,CAAC,mBAAmB,CAAC,OAAiC;QACvD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACnC,sBAAG,CAAC,IAAI,CACJ;gBACI,GAAG,OAAO;gBACV,IAAI,EAAE,QAAQ;gBACd,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,IAAA,YAAE,EAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC;gBAC3E,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;aACrC,EACD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EACvB,CAAC,GAAG,EAAE,KAAK,EAAE,EAAE;gBACX,IAAI,GAAG;oBAAE,MAAM,CAAC,GAAG,CAAC,CAAC;;oBAChB,OAAO,CAAC,KAAK,CAAC,CAAC;YACxB,CAAC,CACJ,CAAC;QACN,CAAC,CAAC,CAAC;IACP,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,OAAiC;QACxD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACnC,sBAAG,CAAC,IAAI,CACJ;gBACI,GAAG,OAAO;gBACV,IAAI,EAAE,SAAS;gBACf,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,IAAA,YAAE,EAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,kBAAkB,CAAC;gBAChF,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;aACrC,EACD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EACvB,CAAC,GAAG,EAAE,KAAK,EAAE,EAAE;gBACX,IAAI,GAAG;oBAAE,MAAM,CAAC,GAAG,CAAC,CAAC;;oBAChB,OAAO,CAAC,KAAK,CAAC,CAAC;YACxB,CAAC,CACJ,CAAC;QACN,CAAC,CAAC,CAAC;IACP,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,KAAa;QAC3B,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACnC,sBAAG,CAAC,MAAM,CACN,KAAK,EACL,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EACvB,CAAC,GAAG,EAAE,OAAO,EAAE,EAAE;gBACb,IAAI,GAAG;oBAAE,MAAM,CAAC,GAAG,CAAC,CAAC;;oBAChB,OAAO,CAAC,OAA0B,CAAC,CAAC;YAC7C,CAAC,CACJ,CAAC;QACN,CAAC,CAAC,CAAC;IACP,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,OAAiC;QAIlD,MAAM,CAAC,WAAW,EAAE,YAAY,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YAClD,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC;YACjC,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC;SACrC,CAAC,CAAC;QAEH,OAAO;YACH,WAAW;YACX,YAAY;SACf,CAAC;IACN,CAAC;IAED,WAAW,CAAC,KAAa,EAAE,OAAiC;QACxD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACnC,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;YACxC,IAAI,CAAC,OAAO;gBAAE,MAAM,CAAC,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC;iBAC5C,CAAC;gBACF,sBAAG,CAAC,IAAI,CAAC,EAAE,GAAG,OAAO,EAAE,GAAG,OAAO,EAAE,EAAE,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,EAAE,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,CAAC,GAAG,EAAE,KAAK,EAAE,EAAE;oBAC5H,IAAI,GAAG;wBAAE,MAAM,CAAC,GAAG,CAAC,CAAC;;wBAChB,OAAO,CAAC,KAAK,CAAC,CAAC;gBACxB,CAAC,CAAC,CAAC;YACP,CAAC;QACL,CAAC,CAAC,CAAC;IACP,CAAC;IAED,WAAW,CAAC,KAAa;QACrB,IAAI,CAAC;YACD,OAAO,sBAAG,CAAC,MAAM,CAAC,KAAK,CAAoB,CAAC;QAChD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,OAAO,IAAI,CAAC;QAChB,CAAC;IACL,CAAC;CACJ,CAAA;AA1FY,gCAAU;qBAAV,UAAU;IADtB,IAAA,mBAAU,GAAE;IAGJ,mBAAA,IAAA,eAAM,EAAC,oCAAmB,CAAC,CAAA;;GAFvB,UAAU,CA0FtB"}

package/src/lib/nest-auth.module.js

@@ -0,0 +1,118 @@
+"use strict";
+var NestAuthModule_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.NestAuthModule = void 0;
+const tslib_1 = require("tslib");
+const common_1 = require("@nestjs/common");
+const typeorm_1 = require("@nestjs/typeorm");
+const core_1 = require("./core");
+const event_emitter_1 = require("@nestjs/event-emitter");
+const request_context_middleware_1 = require("./request-context/request-context.middleware");
+const auth_module_1 = require("./auth/auth.module");
+const user_module_1 = require("./user/user.module");
+const role_module_1 = require("./role/role.module");
+const session_module_1 = require("./session/session.module");
+const tenant_module_1 = require("./tenant/tenant.module");
+const mfa_options_interface_1 = require("./core/interfaces/mfa-options.interface");
+const core_module_1 = require("./core/core.module");
+const deepmerge_1 = tslib_1.__importDefault(require("deepmerge"));
+let NestAuthModule = NestAuthModule_1 = class NestAuthModule {
+    static forRoot(options) {
+        const mergedOptions = this.getOptions(options);
+        return {
+            module: NestAuthModule_1,
+            imports: [
+                core_module_1.CoreModule.forRoot(mergedOptions),
+                auth_module_1.AuthModule,
+                tenant_module_1.TenantModule,
+                user_module_1.UserModule,
+                role_module_1.RoleModule,
+                session_module_1.SessionModule,
+            ],
+            exports: [
+                core_module_1.CoreModule,
+                auth_module_1.AuthModule,
+                tenant_module_1.TenantModule,
+                user_module_1.UserModule,
+                role_module_1.RoleModule,
+                session_module_1.SessionModule,
+            ],
+        };
+    }
+    static forRootAsync(options) {
+        return {
+            module: NestAuthModule_1,
+            imports: [
+                core_module_1.CoreModule.forRoot(options.useFactory()),
+                auth_module_1.AuthModule,
+                user_module_1.UserModule,
+                role_module_1.RoleModule,
+                session_module_1.SessionModule,
+                ...options.imports || [],
+            ],
+            exports: [
+                core_module_1.CoreModule,
+                auth_module_1.AuthModule,
+                user_module_1.UserModule,
+                role_module_1.RoleModule,
+                session_module_1.SessionModule,
+            ],
+        };
+    }
+    static getOptions(options) {
+        return (0, deepmerge_1.default)(this.moduleDefaultOptions, options);
+    }
+    configure(consumer) {
+        consumer.apply(request_context_middleware_1.RequestContextMiddleware).forRoutes('auth/*');
+    }
+};
+exports.NestAuthModule = NestAuthModule;
+NestAuthModule.moduleDefaultOptions = {
+    passwordResetOtpExpiresIn: '15m',
+    session: {
+        storageType: core_1.SessionStorageType.DATABASE,
+        sessionExpiry: '1h',
+        refreshTokenExpiry: '30d',
+    },
+    jwt: {
+        secret: 'secret',
+    },
+    accessTokenType: 'header',
+    cookieOptions: {
+        httpOnly: true,
+        secure: false,
+    },
+    emailAuth: {
+        enabled: true,
+    },
+    mfa: {
+        enabled: false,
+        methods: [mfa_options_interface_1.MFAMethodEnum.EMAIL, mfa_options_interface_1.MFAMethodEnum.TOTP],
+        allowUserToggle: true,
+        allowMethodSelection: true,
+        otpLength: 6,
+        otpExpiresIn: '15m',
+    },
+};
+exports.NestAuthModule = NestAuthModule = NestAuthModule_1 = tslib_1.__decorate([
+    (0, common_1.Module)({
+        imports: [
+            typeorm_1.TypeOrmModule.forFeature(core_1.NestAuthEntities),
+            event_emitter_1.EventEmitterModule,
+            core_module_1.CoreModule,
+            auth_module_1.AuthModule,
+            tenant_module_1.TenantModule,
+            user_module_1.UserModule,
+            role_module_1.RoleModule,
+            session_module_1.SessionModule,
+        ],
+        exports: [
+            auth_module_1.AuthModule,
+            tenant_module_1.TenantModule,
+            user_module_1.UserModule,
+            role_module_1.RoleModule,
+            session_module_1.SessionModule,
+        ],
+    })
+], NestAuthModule);
+//# sourceMappingURL=nest-auth.module.js.map

package/src/lib/nest-auth.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"nest-auth.module.js","sourceRoot":"","sources":["../../../../../packages/nest-auth/src/lib/nest-auth.module.ts"],"names":[],"mappings":";;;;;AAAA,2CAA2E;AAC3E,6CAAgD;AAChD,iCAA8D;AAE9D,yDAA2D;AAC3D,6FAAwF;AACxF,oDAAgD;AAChD,oDAAgD;AAChD,oDAAgD;AAChD,6DAAyD;AACzD,0DAAsD;AACtD,mFAAwE;AACxE,oDAAgD;AAChD,kEAAkC;AAqB3B,IAAM,cAAc,sBAApB,MAAM,cAAc;IA6BzB,MAAM,CAAC,OAAO,CAAC,OAA0B;QACvC,MAAM,aAAa,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;QAE/C,OAAO;YACL,MAAM,EAAE,gBAAc;YACtB,OAAO,EAAE;gBACP,wBAAU,CAAC,OAAO,CAAC,aAAa,CAAC;gBACjC,wBAAU;gBACV,4BAAY;gBACZ,wBAAU;gBACV,wBAAU;gBACV,8BAAa;aACd;YACD,OAAO,EAAE;gBACP,wBAAU;gBACV,wBAAU;gBACV,4BAAY;gBACZ,wBAAU;gBACV,wBAAU;gBACV,8BAAa;aACd;SACF,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,YAAY,CAAC,OAA+B;QACjD,OAAO;YACL,MAAM,EAAE,gBAAc;YACtB,OAAO,EAAE;gBACP,wBAAU,CAAC,OAAO,CAAC,OAAO,CAAC,UAAU,EAAuB,CAAC;gBAC7D,wBAAU;gBACV,wBAAU;gBACV,wBAAU;gBACV,8BAAa;gBACb,GAAG,OAAO,CAAC,OAAO,IAAI,EAAE;aACzB;YACD,OAAO,EAAE;gBACP,wBAAU;gBACV,wBAAU;gBACV,wBAAU;gBACV,wBAAU;gBACV,8BAAa;aACd;SACF,CAAC;IACJ,CAAC;IAEO,MAAM,CAAC,UAAU,CAAC,OAA0B;QAClD,OAAO,IAAA,mBAAS,EAAC,IAAI,CAAC,oBAAoB,EAAE,OAAO,CAAC,CAAC;IACvD,CAAC;IAED,SAAS,CAAC,QAA4B;QACpC,QAAQ,CAAC,KAAK,CAAC,qDAAwB,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IAC/D,CAAC;;AAhFU,wCAAc;AAClB,mCAAoB,GAA+B;IACxD,yBAAyB,EAAE,KAAK;IAChC,OAAO,EAAE;QACP,WAAW,EAAE,yBAAkB,CAAC,QAAQ;QACxC,aAAa,EAAE,IAAI;QACnB,kBAAkB,EAAE,KAAK;KAC1B;IACD,GAAG,EAAE;QACH,MAAM,EAAE,QAAQ;KACjB;IACD,eAAe,EAAE,QAAQ;IACzB,aAAa,EAAE;QACb,QAAQ,EAAE,IAAI;QACd,MAAM,EAAE,KAAK;KACd;IACD,SAAS,EAAE;QACT,OAAO,EAAE,IAAI;KACd;IACD,GAAG,EAAE;QACH,OAAO,EAAE,KAAK;QACd,OAAO,EAAE,CAAC,qCAAa,CAAC,KAAK,EAAE,qCAAa,CAAC,IAAI,CAAC;QAClD,eAAe,EAAE,IAAI;QACrB,oBAAoB,EAAE,IAAI;QAC1B,SAAS,EAAE,CAAC;QACZ,YAAY,EAAE,KAAK;KACpB;CACF,AA1B0B,CA0BzB;yBA3BS,cAAc;IAnB1B,IAAA,eAAM,EAAC;QACN,OAAO,EAAE;YACP,uBAAa,CAAC,UAAU,CAAC,uBAAgB,CAAC;YAC1C,kCAAkB;YAClB,wBAAU;YACV,wBAAU;YACV,4BAAY;YACZ,wBAAU;YACV,wBAAU;YACV,8BAAa;SACd;QACD,OAAO,EAAE;YACP,wBAAU;YACV,4BAAY;YACZ,wBAAU;YACV,wBAAU;YACV,8BAAa;SACd;KACF,CAAC;GACW,cAAc,CAiF1B"}

package/src/lib/request-context/request-context.js

@@ -0,0 +1,108 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RequestContext = void 0;
+const async_hooks_1 = require("async_hooks");
+class RequestContext {
+    constructor(request, response) {
+        this.id = Math.random();
+        this.request = request;
+        this.response = response;
+    }
+    static create(request, response, next) {
+        const context = new RequestContext(request, response);
+        RequestContext.storage.run(context, () => next());
+    }
+    static current() {
+        return RequestContext.storage.getStore();
+    }
+    static currentRequest() {
+        const requestContext = RequestContext.current();
+        return requestContext ? requestContext.request : null;
+    }
+    static currentUser() {
+        const request = RequestContext.currentRequest();
+        if (!request['user']) {
+            return null;
+        }
+        return {
+            id: request['user'].sub,
+            ...request['user']
+        };
+    }
+    static currentSession() {
+        const request = RequestContext.currentRequest();
+        return request ? request['session'] : null;
+    }
+    static getDeviceInfo() {
+        return {
+            deviceName: this.getDeviceName(),
+            ipAddress: this.getIpAddress(),
+            browser: this.getBrowser(),
+        };
+    }
+    static getDeviceName() {
+        const request = this.currentRequest();
+        if (!request) {
+            return 'Unknown Device';
+        }
+        const userAgent = request.headers['user-agent'] || 'unknown';
+        if (userAgent.includes('Windows')) {
+            return 'Windows';
+        }
+        else if (userAgent.includes('Macintosh')) {
+            return 'Mac';
+        }
+        else if (userAgent.includes('Linux')) {
+            return 'Linux';
+        }
+        else if (userAgent.includes('Android')) {
+            return 'Android';
+        }
+        else if (userAgent.includes('iPhone') || userAgent.includes('iPad')) {
+            return 'iOS';
+        }
+        return 'Unknown Device';
+    }
+    static getBrowser() {
+        const request = this.currentRequest();
+        if (!request) {
+            return 'unknown';
+        }
+        const userAgent = request.headers['user-agent'] || 'unknown';
+        if (userAgent.includes('Chrome') && !userAgent.includes('Chromium')) {
+            return 'Chrome';
+        }
+        if (userAgent.includes('Firefox')) {
+            return 'Firefox';
+        }
+        if (userAgent.includes('Safari') && !userAgent.includes('Chrome')) {
+            return 'Safari';
+        }
+        if (userAgent.includes('Edg')) {
+            return 'Edge';
+        }
+        if (userAgent.includes('Opera') || userAgent.includes('OPR')) {
+            return 'Opera';
+        }
+        if (userAgent.includes('MSIE') || userAgent.includes('Trident/')) {
+            return 'Internet Explorer';
+        }
+        if (userAgent.includes('Brave')) {
+            return 'Brave';
+        }
+        return 'Unknown Browser';
+    }
+    static getIpAddress() {
+        const request = this.currentRequest();
+        if (request) {
+            return request.ip ||
+                request.headers['x-forwarded-for']?.toString() ||
+                request.connection.remoteAddress ||
+                'unknown';
+        }
+        return 'unknown';
+    }
+}
+exports.RequestContext = RequestContext;
+RequestContext.storage = new async_hooks_1.AsyncLocalStorage();
+//# sourceMappingURL=request-context.js.map

package/src/lib/request-context/request-context.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"request-context.js","sourceRoot":"","sources":["../../../../../../packages/nest-auth/src/lib/request-context/request-context.ts"],"names":[],"mappings":";;;AAAA,6CAAgD;AAIhD,MAAa,cAAc;IAUvB,YAAoB,OAAgB,EAAE,QAAkB;QACpD,IAAI,CAAC,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;QACxB,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAC7B,CAAC;IAEM,MAAM,CAAC,MAAM,CAChB,OAAgB,EAChB,QAAkB,EAClB,IAAgB;QAEhB,MAAM,OAAO,GAAG,IAAI,cAAc,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QACtD,cAAc,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,IAAI,EAAE,CAAC,CAAC;IACtD,CAAC;IAEM,MAAM,CAAC,OAAO;QACjB,OAAO,cAAc,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;IAC7C,CAAC;IAEM,MAAM,CAAC,cAAc;QACxB,MAAM,cAAc,GAAG,cAAc,CAAC,OAAO,EAAE,CAAC;QAChD,OAAO,cAAc,CAAC,CAAC,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC;IAC1D,CAAC;IAEM,MAAM,CAAC,WAAW;QACrB,MAAM,OAAO,GAAG,cAAc,CAAC,cAAc,EAAE,CAAC;QAChD,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YACnB,OAAO,IAAI,CAAC;QAChB,CAAC;QACD,OAAO;YACH,EAAE,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG;YACvB,GAAG,OAAO,CAAC,MAAM,CAAC;SACF,CAAC;IACzB,CAAC;IAEM,MAAM,CAAC,cAAc;QACxB,MAAM,OAAO,GAAG,cAAc,CAAC,cAAc,EAAE,CAAC;QAChD,OAAO,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC/C,CAAC;IAEM,MAAM,CAAC,aAAa;QACvB,OAAO;YACH,UAAU,EAAE,IAAI,CAAC,aAAa,EAAE;YAChC,SAAS,EAAE,IAAI,CAAC,YAAY,EAAE;YAC9B,OAAO,EAAE,IAAI,CAAC,UAAU,EAAE;SAC7B,CAAC;IACN,CAAC;IAEO,MAAM,CAAC,aAAa;QACxB,MAAM,OAAO,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;QACtC,IAAI,CAAC,OAAO,EAAE,CAAC;YACX,OAAO,gBAAgB,CAAC;QAC5B,CAAC;QACD,MAAM,SAAS,GAAG,OAAO,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,SAAS,CAAC;QAC7D,IAAI,SAAS,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YAChC,OAAO,SAAS,CAAC;QACrB,CAAC;aAAM,IAAI,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;YACzC,OAAO,KAAK,CAAC;QACjB,CAAC;aAAM,IAAI,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YACrC,OAAO,OAAO,CAAC;QACnB,CAAC;aAAM,IAAI,SAAS,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YACvC,OAAO,SAAS,CAAC;QACrB,CAAC;aAAM,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YACpE,OAAO,KAAK,CAAC;QACjB,CAAC;QACD,OAAO,gBAAgB,CAAC;IAC5B,CAAC;IAEO,MAAM,CAAC,UAAU;QACrB,MAAM,OAAO,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;QACtC,IAAI,CAAC,OAAO,EAAE,CAAC;YACX,OAAO,SAAS,CAAC;QACrB,CAAC;QACD,MAAM,SAAS,GAAG,OAAO,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,SAAS,CAAC;QAG7D,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;YAClE,OAAO,QAAQ,CAAC;QACpB,CAAC;QAED,IAAI,SAAS,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YAChC,OAAO,SAAS,CAAC;QACrB,CAAC;QAED,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YAChE,OAAO,QAAQ,CAAC;QACpB,CAAC;QAED,IAAI,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YAC5B,OAAO,MAAM,CAAC;QAClB,CAAC;QAED,IAAI,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YAC3D,OAAO,OAAO,CAAC;QACnB,CAAC;QAED,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;YAC/D,OAAO,mBAAmB,CAAC;QAC/B,CAAC;QAED,IAAI,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC9B,OAAO,OAAO,CAAC;QACnB,CAAC;QAED,OAAO,iBAAiB,CAAC;IAC7B,CAAC;IAEO,MAAM,CAAC,YAAY;QACvB,MAAM,OAAO,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;QACtC,IAAI,OAAO,EAAE,CAAC;YACV,OAAO,OAAO,CAAC,EAAE;gBACb,OAAO,CAAC,OAAO,CAAC,iBAAiB,CAAC,EAAE,QAAQ,EAAE;gBAC9C,OAAO,CAAC,UAAU,CAAC,aAAa;gBAChC,SAAS,CAAC;QAClB,CAAC;QACD,OAAO,SAAS,CAAC;IACrB,CAAC;;AA9HL,wCA+HC;AA7HkB,sBAAO,GAAG,IAAI,+BAAiB,EAAkB,CAAC"}

package/src/lib/request-context/request-context.middleware.js

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RequestContextMiddleware = void 0;
+const tslib_1 = require("tslib");
+const common_1 = require("@nestjs/common");
+const request_context_1 = require("./request-context");
+let RequestContextMiddleware = class RequestContextMiddleware {
+    use(req, res, next) {
+        request_context_1.RequestContext.create(req, res, next);
+    }
+};
+exports.RequestContextMiddleware = RequestContextMiddleware;
+exports.RequestContextMiddleware = RequestContextMiddleware = tslib_1.__decorate([
+    (0, common_1.Injectable)()
+], RequestContextMiddleware);
+//# sourceMappingURL=request-context.middleware.js.map

package/src/lib/request-context/request-context.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"request-context.middleware.js","sourceRoot":"","sources":["../../../../../../packages/nest-auth/src/lib/request-context/request-context.middleware.ts"],"names":[],"mappings":";;;;AAAA,2CAA4D;AAE5D,uDAAmD;AAI5C,IAAM,wBAAwB,GAA9B,MAAM,wBAAwB;IAEjC,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI;QACd,gCAAc,CAAC,MAAM,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,CAAC;IAC1C,CAAC;CAEJ,CAAA;AANY,4DAAwB;mCAAxB,wBAAwB;IADpC,IAAA,mBAAU,GAAE;GACA,wBAAwB,CAMpC"}

package/src/lib/role/entities/permission.entity.js

@@ -0,0 +1,42 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Permission = void 0;
+const tslib_1 = require("tslib");
+const typeorm_1 = require("typeorm");
+const role_entity_1 = require("./role.entity");
+const auth_constants_1 = require("../../auth.constants");
+let Permission = class Permission extends typeorm_1.BaseEntity {
+};
+exports.Permission = Permission;
+tslib_1.__decorate([
+    (0, typeorm_1.PrimaryGeneratedColumn)('uuid'),
+    tslib_1.__metadata("design:type", String)
+], Permission.prototype, "id", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.Column)(),
+    tslib_1.__metadata("design:type", String)
+], Permission.prototype, "name", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.Column)({ nullable: true }),
+    tslib_1.__metadata("design:type", String)
+], Permission.prototype, "description", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.Column)({ nullable: true, default: auth_constants_1.DEFAULT_GUARD_NAME }),
+    tslib_1.__metadata("design:type", String)
+], Permission.prototype, "guard", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.CreateDateColumn)(),
+    tslib_1.__metadata("design:type", Date)
+], Permission.prototype, "createdAt", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.UpdateDateColumn)(),
+    tslib_1.__metadata("design:type", Date)
+], Permission.prototype, "updatedAt", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.ManyToMany)(() => role_entity_1.Role, role => role.permissions),
+    tslib_1.__metadata("design:type", Array)
+], Permission.prototype, "roles", void 0);
+exports.Permission = Permission = tslib_1.__decorate([
+    (0, typeorm_1.Entity)('nest_auth_permissions')
+], Permission);
+//# sourceMappingURL=permission.entity.js.map

package/src/lib/role/entities/permission.entity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission.entity.js","sourceRoot":"","sources":["../../../../../../../packages/nest-auth/src/lib/role/entities/permission.entity.ts"],"names":[],"mappings":";;;;AAAA,qCAA6H;AAC7H,+CAAqC;AACrC,yDAA0D;AAGnD,IAAM,UAAU,GAAhB,MAAM,UAAW,SAAQ,oBAAU;CAqBzC,CAAA;AArBY,gCAAU;AAEnB;IADC,IAAA,gCAAsB,EAAC,MAAM,CAAC;;sCACpB;AAGX;IADC,IAAA,gBAAM,GAAE;;wCACI;AAGb;IADC,IAAA,gBAAM,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;+CACP;AAGpB;IADC,IAAA,gBAAM,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,OAAO,EAAE,mCAAkB,EAAE,CAAC;;yCAC1C;AAGd;IADC,IAAA,0BAAgB,GAAE;sCACR,IAAI;6CAAC;AAGhB;IADC,IAAA,0BAAgB,GAAE;sCACR,IAAI;6CAAC;AAGhB;IADC,IAAA,oBAAU,EAAC,GAAG,EAAE,CAAC,kBAAI,EAAE,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC;;yCACnC;qBApBL,UAAU;IADtB,IAAA,gBAAM,EAAC,uBAAuB,CAAC;GACnB,UAAU,CAqBtB"}

package/src/lib/role/entities/role.entity.js

@@ -0,0 +1,106 @@
+"use strict";
+var Role_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Role = void 0;
+const tslib_1 = require("tslib");
+const typeorm_1 = require("typeorm");
+const lodash_1 = require("lodash");
+const auth_constants_1 = require("../../auth.constants");
+const tenant_entity_1 = require("../../tenant/entities/tenant.entity");
+const common_1 = require("@nestjs/common");
+const user_entity_1 = require("../../user/entities/user.entity");
+const permission_entity_1 = require("./permission.entity");
+let Role = Role_1 = class Role extends typeorm_1.BaseEntity {
+    static async createRole(name, guard = auth_constants_1.DEFAULT_GUARD_NAME, isSystem = false, tenantId) {
+        const existingSystemRole = await Role_1.findOne({
+            where: { name, isSystem: true }
+        });
+        if (existingSystemRole) {
+            throw new common_1.ConflictException(`Cannot create role with name '${name}' as it conflicts with a system role`);
+        }
+        const role = new Role_1();
+        role.name = name;
+        role.guard = guard;
+        role.isSystem = isSystem;
+        role.tenantId = isSystem ? null : tenantId;
+        await role.save();
+        return role;
+    }
+    async syncPermissions(permissionIds) {
+        const newPermissions = Array.isArray(permissionIds) ? permissionIds : [permissionIds];
+        this.permissions = newPermissions.map(permissionId => permission_entity_1.Permission.create({
+            id: permissionId,
+        }));
+    }
+    async removePermissions(permissionIds) {
+        const removingPermissions = Array.isArray(permissionIds) ? permissionIds : [permissionIds];
+        this.permissions = this.permissions.filter(permission => !removingPermissions.includes(permission.id));
+    }
+    async attachPermissions(permissionsIds) {
+        const existingPermissions = await this.permissions.map(permission => permission_entity_1.Permission.create({
+            id: permission.id,
+        }));
+        const newPermissions = Array.isArray(permissionsIds) ? permissionsIds : [permissionsIds];
+        const newPermissionsEntities = newPermissions.map(permissionId => permission_entity_1.Permission.create({
+            id: permissionId,
+        }));
+        this.permissions = (0, lodash_1.uniqBy)([...existingPermissions, ...newPermissionsEntities], 'id');
+    }
+};
+exports.Role = Role;
+tslib_1.__decorate([
+    (0, typeorm_1.PrimaryGeneratedColumn)('uuid'),
+    tslib_1.__metadata("design:type", String)
+], Role.prototype, "id", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.Column)(),
+    tslib_1.__metadata("design:type", String)
+], Role.prototype, "name", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.Column)({ nullable: true, default: auth_constants_1.DEFAULT_GUARD_NAME }),
+    tslib_1.__metadata("design:type", String)
+], Role.prototype, "guard", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.Column)({ nullable: true }),
+    (0, typeorm_1.RelationId)((role) => role.tenant),
+    tslib_1.__metadata("design:type", String)
+], Role.prototype, "tenantId", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.ManyToOne)(() => tenant_entity_1.Tenant),
+    tslib_1.__metadata("design:type", tenant_entity_1.Tenant)
+], Role.prototype, "tenant", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.Column)({ default: false }),
+    tslib_1.__metadata("design:type", Boolean)
+], Role.prototype, "isSystem", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.Column)({ default: true }),
+    tslib_1.__metadata("design:type", Boolean)
+], Role.prototype, "isActive", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.CreateDateColumn)(),
+    tslib_1.__metadata("design:type", Date)
+], Role.prototype, "createdAt", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.UpdateDateColumn)(),
+    tslib_1.__metadata("design:type", Date)
+], Role.prototype, "updatedAt", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.ManyToMany)(() => permission_entity_1.Permission, permission => permission.roles),
+    (0, typeorm_1.JoinTable)({
+        name: 'nest_auth_role_nest_auth_permissions'
+    }),
+    tslib_1.__metadata("design:type", Array)
+], Role.prototype, "permissions", void 0);
+tslib_1.__decorate([
+    (0, typeorm_1.ManyToMany)(() => user_entity_1.User, user => user.roles),
+    (0, typeorm_1.JoinTable)({
+        name: 'nest_auth_role_nest_auth_users'
+    }),
+    tslib_1.__metadata("design:type", Array)
+], Role.prototype, "users", void 0);
+exports.Role = Role = Role_1 = tslib_1.__decorate([
+    (0, typeorm_1.Entity)('nest_auth_roles'),
+    (0, typeorm_1.Unique)(['name', 'guard', 'tenantId'])
+], Role);
+//# sourceMappingURL=role.entity.js.map

package/src/lib/role/entities/role.entity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"role.entity.js","sourceRoot":"","sources":["../../../../../../../packages/nest-auth/src/lib/role/entities/role.entity.ts"],"names":[],"mappings":";;;;;AAAA,qCAAkL;AAClL,mCAAgC;AAChC,yDAA0D;AAC1D,uEAA6D;AAC7D,2CAAmD;AACnD,iEAAuD;AACvD,2DAAiD;AAI1C,IAAM,IAAI,YAAV,MAAM,IAAK,SAAQ,oBAAU;IAyChC,MAAM,CAAC,KAAK,CAAC,UAAU,CACnB,IAAY,EACZ,QAAgB,mCAAkB,EAClC,WAAoB,KAAK,EACzB,QAAgB;QAIhB,MAAM,kBAAkB,GAAG,MAAM,MAAI,CAAC,OAAO,CAAC;YAC1C,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE;SAClC,CAAC,CAAC;QACH,IAAI,kBAAkB,EAAE,CAAC;YACrB,MAAM,IAAI,0BAAiB,CAAC,iCAAiC,IAAI,sCAAsC,CAAC,CAAC;QAC7G,CAAC;QAED,MAAM,IAAI,GAAG,IAAI,MAAI,EAAE,CAAC;QACxB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC;QAC3C,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;QAClB,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,aAAgC;QAClD,MAAM,cAAc,GAAG,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC;QACtF,IAAI,CAAC,WAAW,GAAG,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC,8BAAU,CAAC,MAAM,CAAC;YACpE,EAAE,EAAE,YAAY;SACnB,CAAC,CAAC,CAAC;IACR,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,aAAgC;QACpD,MAAM,mBAAmB,GAAG,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC;QAC3F,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC,mBAAmB,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC,CAAC;IAC3G,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,cAAiC;QACrD,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC,8BAAU,CAAC,MAAM,CAAC;YACnF,EAAE,EAAE,UAAU,CAAC,EAAE;SACpB,CAAC,CAAC,CAAC;QAEJ,MAAM,cAAc,GAAG,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC;QACzF,MAAM,sBAAsB,GAAG,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC,8BAAU,CAAC,MAAM,CAAC;YAChF,EAAE,EAAE,YAAY;SACnB,CAAC,CAAC,CAAC;QAEJ,IAAI,CAAC,WAAW,GAAG,IAAA,eAAM,EAAC,CAAC,GAAG,mBAAmB,EAAE,GAAG,sBAAsB,CAAC,EAAE,IAAI,CAAC,CAAC;IACzF,CAAC;CACJ,CAAA;AAzFY,oBAAI;AAEb;IADC,IAAA,gCAAsB,EAAC,MAAM,CAAC;;gCACpB;AAGX;IADC,IAAA,gBAAM,GAAE;;kCACI;AAGb;IADC,IAAA,gBAAM,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,OAAO,EAAE,mCAAkB,EAAE,CAAC;;mCAC1C;AAId;IAFC,IAAA,gBAAM,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;IAC1B,IAAA,oBAAU,EAAC,CAAC,IAAU,EAAE,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC;;sCACvB;AAGjB;IADC,IAAA,mBAAS,EAAC,GAAG,EAAE,CAAC,sBAAM,CAAC;sCAChB,sBAAM;oCAAC;AAGf;IADC,IAAA,gBAAM,EAAC,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;;sCACT;AAGlB;IADC,IAAA,gBAAM,EAAC,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;;sCACR;AAGlB;IADC,IAAA,0BAAgB,GAAE;sCACR,IAAI;uCAAC;AAGhB;IADC,IAAA,0BAAgB,GAAE;sCACR,IAAI;uCAAC;AAMhB;IAJC,IAAA,oBAAU,EAAC,GAAG,EAAE,CAAC,8BAAU,EAAE,UAAU,CAAC,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC;IAC5D,IAAA,mBAAS,EAAC;QACP,IAAI,EAAE,sCAAsC;KAC/C,CAAC;;yCACwB;AAM1B;IAJC,IAAA,oBAAU,EAAC,GAAG,EAAE,CAAC,kBAAI,EAAE,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC;IAC1C,IAAA,mBAAS,EAAC;QACP,IAAI,EAAE,gCAAgC;KACzC,CAAC;;mCACY;eAvCL,IAAI;IAFhB,IAAA,gBAAM,EAAC,iBAAiB,CAAC;IACzB,IAAA,gBAAM,EAAC,CAAC,MAAM,EAAE,OAAO,EAAE,UAAU,CAAC,CAAC;GACzB,IAAI,CAyFhB"}

package/src/lib/role/index.js

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const tslib_1 = require("tslib");
+tslib_1.__exportStar(require("./services/role.service"), exports);
+tslib_1.__exportStar(require("./role.module"), exports);
+//# sourceMappingURL=index.js.map

package/src/lib/role/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../../packages/nest-auth/src/lib/role/index.ts"],"names":[],"mappings":";;;AAOA,kEAAwC;AAGxC,wDAA8B"}

package/src/lib/role/role.module.js

@@ -0,0 +1,22 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RoleModule = void 0;
+const tslib_1 = require("tslib");
+const common_1 = require("@nestjs/common");
+const typeorm_1 = require("@nestjs/typeorm");
+const role_entity_1 = require("./entities/role.entity");
+const permission_entity_1 = require("./entities/permission.entity");
+const role_service_1 = require("./services/role.service");
+let RoleModule = class RoleModule {
+};
+exports.RoleModule = RoleModule;
+exports.RoleModule = RoleModule = tslib_1.__decorate([
+    (0, common_1.Module)({
+        imports: [
+            typeorm_1.TypeOrmModule.forFeature([role_entity_1.Role, permission_entity_1.Permission]),
+        ],
+        providers: [role_service_1.RoleService],
+        exports: [role_service_1.RoleService],
+    })
+], RoleModule);
+//# sourceMappingURL=role.module.js.map

package/src/lib/role/role.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"role.module.js","sourceRoot":"","sources":["../../../../../../packages/nest-auth/src/lib/role/role.module.ts"],"names":[],"mappings":";;;;AAAA,2CAAwC;AACxC,6CAAgD;AAChD,wDAA8C;AAC9C,oEAA0D;AAC1D,0DAAsD;AAS/C,IAAM,UAAU,GAAhB,MAAM,UAAU;CAAI,CAAA;AAAd,gCAAU;qBAAV,UAAU;IAPtB,IAAA,eAAM,EAAC;QACJ,OAAO,EAAE;YACL,uBAAa,CAAC,UAAU,CAAC,CAAC,kBAAI,EAAE,8BAAU,CAAC,CAAC;SAC/C;QACD,SAAS,EAAE,CAAC,0BAAW,CAAC;QACxB,OAAO,EAAE,CAAC,0BAAW,CAAC;KACzB,CAAC;GACW,UAAU,CAAI"}