@acmekit/framework 2.13.1

package/dist/http/utils/get-query-config.js

@@ -0,0 +1,109 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.pickByConfig = pickByConfig;
+exports.prepareListQuery = prepareListQuery;
+exports.prepareRetrieveQuery = prepareRetrieveQuery;
+const utils_1 = require("@acmekit/utils");
+const field_filtering_1 = require("./field-filtering");
+const rbac_field_filter_1 = require("./policies/rbac-field-filter");
+function pickByConfig(obj, config) {
+    const fields = [...(config.select ?? []), ...(config.relations ?? [])];
+    if (fields.length) {
+        if (Array.isArray(obj)) {
+            return obj.map((o) => (0, utils_1.pickDeep)(o, fields));
+        }
+        else {
+            return (0, utils_1.pickDeep)(obj, fields);
+        }
+    }
+    return obj;
+}
+async function prepareListQuery(validated, queryConfig = {}, req) {
+    let { allowed = [], restricted = [], defaults = [], defaultLimit = 50, isList, entity, } = queryConfig;
+    const { order, fields, limit = defaultLimit, offset = 0, with_deleted, } = validated;
+    const parsedFields = field_filtering_1.FieldParser.parse(fields, defaults);
+    const { fields: allFields, starFields } = parsedFields;
+    const rbacFilterFieldsFeatureFlag = utils_1.FeatureFlag.isFeatureEnabled("rbac_filter_fields");
+    const filters = [];
+    if (req?.policies && entity && rbacFilterFieldsFeatureFlag) {
+        filters.push(new rbac_field_filter_1.RBACFieldFilter({
+            policies: req.policies,
+            userRoles: req.auth_context?.app_metadata?.roles || [],
+            container: req.scope,
+        }));
+    }
+    if (allowed.length) {
+        filters.push(new field_filtering_1.AllowedFieldFilter({ allowed }));
+    }
+    else if (restricted.length) {
+        filters.push(new field_filtering_1.RestrictedFieldFilter({ restricted }));
+    }
+    const notAllowedArrays = await (0, utils_1.promiseAll)(filters.map((f) => f.getNotAllowedFields({ entity: entity, parsedFields })));
+    const notAllowedFields = [...new Set(notAllowedArrays.flat())];
+    if (notAllowedFields.length && rbacFilterFieldsFeatureFlag) {
+        notAllowedFields.forEach((field) => {
+            allFields.delete(field);
+            starFields.delete(field);
+        });
+    }
+    // TODO: maintain backward compatibility, remove in the future
+    const { select, relations } = (0, utils_1.stringToSelectRelationObject)(Array.from(allFields));
+    let allRelations = new Set([...relations, ...Array.from(starFields)]);
+    // End of expand compatibility
+    let orderBy = {};
+    if ((0, utils_1.isDefined)(order)) {
+        let orderField = order;
+        if (order.startsWith("-")) {
+            orderField = order.slice(1);
+            orderBy = { [orderField]: "DESC" };
+        }
+        else {
+            orderBy = { [order]: "ASC" };
+        }
+        if (allowed.length && !allowed.includes(orderField)) {
+            throw new utils_1.AcmeKitError(utils_1.AcmeKitError.Types.INVALID_DATA, `Order field ${orderField} is not valid`);
+        }
+    }
+    const finalOrder = (0, utils_1.isPresent)(orderBy) ? (0, utils_1.buildOrder)(orderBy) : undefined;
+    return {
+        listConfig: {
+            select: select.length ? select : undefined,
+            relations: Array.from(allRelations),
+            skip: offset,
+            take: limit,
+            order: finalOrder,
+            withDeleted: with_deleted,
+        },
+        remoteQueryConfig: {
+            entity,
+            // Add starFields that are relations only on which we want all properties with a dedicated format to the remote query
+            fields: [
+                ...Array.from(allFields),
+                ...Array.from(starFields).map((f) => `${f}.*`),
+            ],
+            pagination: isList
+                ? {
+                    skip: offset,
+                    take: limit,
+                    order: finalOrder,
+                }
+                : {},
+            withDeleted: with_deleted,
+        },
+    };
+}
+async function prepareRetrieveQuery(validated, queryConfig, req) {
+    const { listConfig, remoteQueryConfig } = await prepareListQuery(validated, queryConfig, req);
+    return {
+        retrieveConfig: {
+            select: listConfig.select,
+            relations: listConfig.relations,
+        },
+        remoteQueryConfig: {
+            fields: remoteQueryConfig.fields,
+            pagination: {},
+            withDeleted: remoteQueryConfig.withDeleted,
+        },
+    };
+}
+//# sourceMappingURL=get-query-config.js.map

package/dist/http/utils/get-query-config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-query-config.js","sourceRoot":"","sources":["../../../src/http/utils/get-query-config.ts"],"names":[],"mappings":";;AAqBA,oCAcC;AAED,4CAoHC;AAED,oDA4BC;AAtLD,0CAUuB;AAEvB,uDAK0B;AAC1B,oEAA8D;AAE9D,SAAgB,YAAY,CAC1B,GAAsB,EACtB,MAA0B;IAE1B,MAAM,MAAM,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,IAAI,EAAE,CAAC,EAAE,GAAG,CAAC,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,CAAA;IAEtE,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;QAClB,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;YACvB,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAA,gBAAQ,EAAC,CAAW,EAAE,MAAkB,CAAC,CAAC,CAAA;QAClE,CAAC;aAAM,CAAC;YACN,OAAO,IAAA,gBAAQ,EAAC,GAAa,EAAE,MAAkB,CAAC,CAAA;QACpD,CAAC;IACH,CAAC;IACD,OAAO,GAAG,CAAA;AACZ,CAAC;AAEM,KAAK,UAAU,gBAAgB,CACpC,SAAY,EACZ,cAAgE,EAAE,EAClE,GAGC;IAED,IAAI,EACF,OAAO,GAAG,EAAE,EACZ,UAAU,GAAG,EAAE,EACf,QAAQ,GAAG,EAAE,EACb,YAAY,GAAG,EAAE,EACjB,MAAM,EACN,MAAM,GACP,GAAG,WAAW,CAAA;IACf,MAAM,EACJ,KAAK,EACL,MAAM,EACN,KAAK,GAAG,YAAY,EACpB,MAAM,GAAG,CAAC,EACV,YAAY,GACb,GAAG,SAAS,CAAA;IAEb,MAAM,YAAY,GAAG,6BAAW,CAAC,KAAK,CAAC,MAAM,EAAE,QAAoB,CAAC,CAAA;IACpE,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,YAAY,CAAA;IAEtD,MAAM,2BAA2B,GAC/B,mBAAW,CAAC,gBAAgB,CAAC,oBAAoB,CAAC,CAAA;IAEpD,MAAM,OAAO,GAAmB,EAAE,CAAA;IAElC,IAAI,GAAG,EAAE,QAAQ,IAAI,MAAM,IAAI,2BAA2B,EAAE,CAAC;QAC3D,OAAO,CAAC,IAAI,CACV,IAAI,mCAAe,CAAC;YAClB,QAAQ,EAAE,GAAG,CAAC,QAAQ;YACtB,SAAS,EAAG,GAAG,CAAC,YAAY,EAAE,YAAY,EAAE,KAAkB,IAAI,EAAE;YACpE,SAAS,EAAE,GAAG,CAAC,KAAK;SACrB,CAAC,CACH,CAAA;IACH,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;QACnB,OAAO,CAAC,IAAI,CAAC,IAAI,oCAAkB,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC,CAAA;IACnD,CAAC;SAAM,IAAI,UAAU,CAAC,MAAM,EAAE,CAAC;QAC7B,OAAO,CAAC,IAAI,CAAC,IAAI,uCAAqB,CAAC,EAAE,UAAU,EAAE,CAAC,CAAC,CAAA;IACzD,CAAC;IAED,MAAM,gBAAgB,GAAG,MAAM,IAAA,kBAAU,EACvC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAChB,CAAC,CAAC,mBAAmB,CAAC,EAAE,MAAM,EAAE,MAAgB,EAAE,YAAY,EAAE,CAAC,CAClE,CACF,CAAA;IACD,MAAM,gBAAgB,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,gBAAgB,CAAC,IAAI,EAAE,CAAC,CAAC,CAAA;IAE9D,IAAI,gBAAgB,CAAC,MAAM,IAAI,2BAA2B,EAAE,CAAC;QAC3D,gBAAgB,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,EAAE;YACjC,SAAS,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;YACvB,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QAC1B,CAAC,CAAC,CAAA;IACJ,CAAC;IAED,8DAA8D;IAC9D,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,GAAG,IAAA,oCAA4B,EACxD,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CACtB,CAAA;IAED,IAAI,YAAY,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,SAAS,EAAE,GAAG,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAA;IAErE,8BAA8B;IAE9B,IAAI,OAAO,GAAgD,EAAE,CAAA;IAC7D,IAAI,IAAA,iBAAS,EAAC,KAAK,CAAC,EAAE,CAAC;QACrB,IAAI,UAAU,GAAG,KAAK,CAAA;QACtB,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YAC1B,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;YAC3B,OAAO,GAAG,EAAE,CAAC,UAAU,CAAC,EAAE,MAAM,EAAE,CAAA;QACpC,CAAC;aAAM,CAAC;YACN,OAAO,GAAG,EAAE,CAAC,KAAK,CAAC,EAAE,KAAK,EAAE,CAAA;QAC9B,CAAC;QAED,IAAI,OAAO,CAAC,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;YACpD,MAAM,IAAI,oBAAY,CACpB,oBAAY,CAAC,KAAK,CAAC,YAAY,EAC/B,eAAe,UAAU,eAAe,CACzC,CAAA;QACH,CAAC;IACH,CAAC;IAED,MAAM,UAAU,GAAG,IAAA,iBAAS,EAAC,OAAO,CAAC,CAAC,CAAC,CAAC,IAAA,kBAAU,EAAC,OAAO,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;IACvE,OAAO;QACL,UAAU,EAAE;YACV,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS;YAC1C,SAAS,EAAE,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC;YACnC,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,KAAK;YACX,KAAK,EAAE,UAAU;YACjB,WAAW,EAAE,YAAY;SAC1B;QACD,iBAAiB,EAAE;YACjB,MAAM;YACN,qHAAqH;YACrH,MAAM,EAAE;gBACN,GAAG,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC;gBACxB,GAAG,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC;aAC/C;YACD,UAAU,EAAE,MAAM;gBAChB,CAAC,CAAC;oBACE,IAAI,EAAE,MAAM;oBACZ,IAAI,EAAE,KAAK;oBACX,KAAK,EAAE,UAAU;iBAClB;gBACH,CAAC,CAAC,EAAE;YACN,WAAW,EAAE,YAAY;SAC1B;KACF,CAAA;AACH,CAAC;AAEM,KAAK,UAAU,oBAAoB,CAIxC,SAAY,EACZ,WAA8D,EAC9D,GAGC;IAED,MAAM,EAAE,UAAU,EAAE,iBAAiB,EAAE,GAAG,MAAM,gBAAgB,CAC9D,SAAS,EACT,WAAW,EACX,GAAG,CACJ,CAAA;IAED,OAAO;QACL,cAAc,EAAE;YACd,MAAM,EAAE,UAAU,CAAC,MAAM;YACzB,SAAS,EAAE,UAAU,CAAC,SAAS;SAChC;QACD,iBAAiB,EAAE;YACjB,MAAM,EAAE,iBAAiB,CAAC,MAAM;YAChC,UAAU,EAAE,EAAE;YACd,WAAW,EAAE,iBAAiB,CAAC,WAAW;SAC3C;KACF,CAAA;AACH,CAAC"}

package/dist/http/utils/http-compression.d.ts

@@ -0,0 +1,5 @@
+import { HttpCompressionOptions, ProjectConfigOptions } from "../../config";
+import type { AcmeKitRequest, AcmeKitResponse } from "../types";
+export declare function shouldCompressResponse(req: AcmeKitRequest, res: AcmeKitResponse): boolean;
+export declare function compressionOptions(config: ProjectConfigOptions): HttpCompressionOptions;
+//# sourceMappingURL=http-compression.d.ts.map

package/dist/http/utils/http-compression.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-compression.d.ts","sourceRoot":"","sources":["../../../src/http/utils/http-compression.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,sBAAsB,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAA;AAC3E,OAAO,KAAK,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,UAAU,CAAA;AAE/D,wBAAgB,sBAAsB,CACpC,GAAG,EAAE,cAAc,EACnB,GAAG,EAAE,eAAe,WAkBrB;AAED,wBAAgB,kBAAkB,CAChC,MAAM,EAAE,oBAAoB,GAC3B,sBAAsB,CAWxB"}

package/dist/http/utils/http-compression.js

@@ -0,0 +1,33 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.shouldCompressResponse = shouldCompressResponse;
+exports.compressionOptions = compressionOptions;
+const compression_1 = __importDefault(require("compression"));
+const utils_1 = require("@acmekit/utils");
+function shouldCompressResponse(req, res) {
+    const { projectConfig } = req.scope.resolve(utils_1.ContainerRegistrationKeys.CONFIG_MODULE);
+    const { enabled } = compressionOptions(projectConfig);
+    if (!enabled) {
+        return false;
+    }
+    if (req.headers["x-no-compression"]) {
+        // don't compress responses with this request header
+        return false;
+    }
+    // fallback to standard filter function
+    return compression_1.default.filter(req, res);
+}
+function compressionOptions(config) {
+    const responseCompressionOptions = config.http.compression ?? {};
+    responseCompressionOptions.enabled =
+        responseCompressionOptions.enabled ?? false;
+    responseCompressionOptions.level = responseCompressionOptions.level ?? 6;
+    responseCompressionOptions.memLevel = responseCompressionOptions.memLevel ?? 8;
+    responseCompressionOptions.threshold =
+        responseCompressionOptions.threshold ?? 1024;
+    return responseCompressionOptions;
+}
+//# sourceMappingURL=http-compression.js.map

package/dist/http/utils/http-compression.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-compression.js","sourceRoot":"","sources":["../../../src/http/utils/http-compression.ts"],"names":[],"mappings":";;;;;AAOA,wDAoBC;AAED,gDAaC;AA1CD,8DAAqC;AAErC,0CAA0D;AAK1D,SAAgB,sBAAsB,CACpC,GAAmB,EACnB,GAAoB;IAEpB,MAAM,EAAE,aAAa,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,OAAO,CACzC,iCAAyB,CAAC,aAAa,CACxC,CAAA;IACD,MAAM,EAAE,OAAO,EAAE,GAAG,kBAAkB,CAAC,aAAa,CAAC,CAAA;IAErD,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,KAAK,CAAA;IACd,CAAC;IAED,IAAI,GAAG,CAAC,OAAO,CAAC,kBAAkB,CAAC,EAAE,CAAC;QACpC,oDAAoD;QACpD,OAAO,KAAK,CAAA;IACd,CAAC;IAED,uCAAuC;IACvC,OAAO,qBAAW,CAAC,MAAM,CAAC,GAAU,EAAE,GAAU,CAAC,CAAA;AACnD,CAAC;AAED,SAAgB,kBAAkB,CAChC,MAA4B;IAE5B,MAAM,0BAA0B,GAAG,MAAM,CAAC,IAAI,CAAC,WAAW,IAAI,EAAE,CAAA;IAEhE,0BAA0B,CAAC,OAAO;QAChC,0BAA0B,CAAC,OAAO,IAAI,KAAK,CAAA;IAC7C,0BAA0B,CAAC,KAAK,GAAG,0BAA0B,CAAC,KAAK,IAAI,CAAC,CAAA;IACxE,0BAA0B,CAAC,QAAQ,GAAG,0BAA0B,CAAC,QAAQ,IAAI,CAAC,CAAA;IAC9E,0BAA0B,CAAC,SAAS;QAClC,0BAA0B,CAAC,SAAS,IAAI,IAAI,CAAA;IAE9C,OAAO,0BAA0B,CAAA;AACnC,CAAC"}

package/dist/http/utils/maybe-apply-link-filter.d.ts

@@ -0,0 +1,8 @@
+import type { AcmeKitNextFunction, AcmeKitRequest, AcmeKitResponse } from "../types";
+export declare function maybeApplyLinkFilter({ entryPoint, resourceId, filterableField, filterByField, }: {
+    entryPoint: any;
+    resourceId: any;
+    filterableField: any;
+    filterByField?: string | undefined;
+}): (req: AcmeKitRequest, _: AcmeKitResponse, next: AcmeKitNextFunction) => Promise<void>;
+//# sourceMappingURL=maybe-apply-link-filter.d.ts.map

package/dist/http/utils/maybe-apply-link-filter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"maybe-apply-link-filter.d.ts","sourceRoot":"","sources":["../../../src/http/utils/maybe-apply-link-filter.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,mBAAmB,EACnB,cAAc,EACd,eAAe,EAChB,MAAM,UAAU,CAAA;AAEjB,wBAAgB,oBAAoB,CAAC,EACnC,UAAU,EACV,UAAU,EACV,eAAe,EACf,aAAoB,GACrB;;;;;CAAA,IAEG,KAAK,cAAc,EACnB,GAAG,eAAe,EAClB,MAAM,mBAAmB,mBA2C5B"}

package/dist/http/utils/maybe-apply-link-filter.js

@@ -0,0 +1,68 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.maybeApplyLinkFilter = maybeApplyLinkFilter;
+const utils_1 = require("@acmekit/utils");
+function maybeApplyLinkFilter({ entryPoint, resourceId, filterableField, filterByField = "id", }) {
+    return async function linkFilter(req, _, next) {
+        const filterableFields = req.filterableFields;
+        if (!filterableFields?.[filterableField]) {
+            return next();
+        }
+        const filterFields = filterableFields[filterableField];
+        const idsToFilterBy = Array.isArray(filterFields)
+            ? filterFields
+            : [filterFields];
+        delete filterableFields[filterableField];
+        let existingFilters = filterableFields[filterByField];
+        const query = req.scope.resolve(utils_1.ContainerRegistrationKeys.QUERY);
+        const filters = {
+            [filterableField]: idsToFilterBy,
+        };
+        if (existingFilters) {
+            filters[resourceId] = existingFilters;
+        }
+        const { data: resources } = await query.graph({
+            entity: entryPoint,
+            fields: [resourceId],
+            filters,
+        });
+        filterableFields[filterByField] = resources.map((p) => p[resourceId]);
+        req.filterableFields = transformFilterableFields(filterableFields);
+        return next();
+    };
+}
+/*
+  Transforms an object key string into nested objects
+  before = {
+    "test.something.another": []
+  }
+
+  after = {
+    test: {
+      something: {
+        another: []
+      }
+    }
+  }
+*/
+function transformFilterableFields(filterableFields) {
+    const result = {};
+    for (const key of Object.keys(filterableFields)) {
+        const value = filterableFields[key];
+        const keys = key.split(".");
+        let current = result;
+        // Iterate over the keys, creating nested objects as needed
+        for (let i = 0; i < keys.length; i++) {
+            const part = keys[i];
+            current[part] ??= {};
+            if (i === keys.length - 1) {
+                // If its the last key, assign the value
+                current[part] = value;
+                break;
+            }
+            current = current[part];
+        }
+    }
+    return result;
+}
+//# sourceMappingURL=maybe-apply-link-filter.js.map

package/dist/http/utils/maybe-apply-link-filter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"maybe-apply-link-filter.js","sourceRoot":"","sources":["../../../src/http/utils/maybe-apply-link-filter.ts"],"names":[],"mappings":";;AAOA,oDAoDC;AA3DD,0CAA0D;AAO1D,SAAgB,oBAAoB,CAAC,EACnC,UAAU,EACV,UAAU,EACV,eAAe,EACf,aAAa,GAAG,IAAI,GACrB;IACC,OAAO,KAAK,UAAU,UAAU,CAC9B,GAAmB,EACnB,CAAkB,EAClB,IAAyB;QAEzB,MAAM,gBAAgB,GAAG,GAAG,CAAC,gBAAgB,CAAA;QAE7C,IAAI,CAAC,gBAAgB,EAAE,CAAC,eAAe,CAAC,EAAE,CAAC;YACzC,OAAO,IAAI,EAAE,CAAA;QACf,CAAC;QAED,MAAM,YAAY,GAAG,gBAAgB,CAAC,eAAe,CAAC,CAAA;QAEtD,MAAM,aAAa,GAAG,KAAK,CAAC,OAAO,CAAC,YAAY,CAAC;YAC/C,CAAC,CAAC,YAAY;YACd,CAAC,CAAC,CAAC,YAAY,CAAC,CAAA;QAElB,OAAO,gBAAgB,CAAC,eAAe,CAAC,CAAA;QAExC,IAAI,eAAe,GAAG,gBAAgB,CAAC,aAAa,CAGvC,CAAA;QAEb,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,iCAAyB,CAAC,KAAK,CAAC,CAAA;QAEhE,MAAM,OAAO,GAA4B;YACvC,CAAC,eAAe,CAAC,EAAE,aAAa;SACjC,CAAA;QAED,IAAI,eAAe,EAAE,CAAC;YACpB,OAAO,CAAC,UAAU,CAAC,GAAG,eAAe,CAAA;QACvC,CAAC;QAED,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,MAAM,KAAK,CAAC,KAAK,CAAC;YAC5C,MAAM,EAAE,UAAU;YAClB,MAAM,EAAE,CAAC,UAAU,CAAC;YACpB,OAAO;SACR,CAAC,CAAA;QAEF,gBAAgB,CAAC,aAAa,CAAC,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAA;QAErE,GAAG,CAAC,gBAAgB,GAAG,yBAAyB,CAAC,gBAAgB,CAAC,CAAA;QAElE,OAAO,IAAI,EAAE,CAAA;IACf,CAAC,CAAA;AACH,CAAC;AACD;;;;;;;;;;;;;EAaE;AACF,SAAS,yBAAyB,CAAC,gBAAyC;IAC1E,MAAM,MAAM,GAAG,EAAE,CAAA;IACjB,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,EAAE,CAAC;QAChD,MAAM,KAAK,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAA;QACnC,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QAC3B,IAAI,OAAO,GAAG,MAAM,CAAA;QAEpB,2DAA2D;QAC3D,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACrC,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,CAAC,CAAA;YACpB,OAAO,CAAC,IAAI,CAAC,KAAK,EAAE,CAAA;YAEpB,IAAI,CAAC,KAAK,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC1B,wCAAwC;gBACxC,OAAO,CAAC,IAAI,CAAC,GAAG,KAAK,CAAA;gBACrB,MAAK;YACP,CAAC;YAED,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;QACzB,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAA;AACf,CAAC"}

package/dist/http/utils/policies/rbac-field-filter.d.ts

@@ -0,0 +1,19 @@
+import { PolicyDefinition } from "@acmekit/framework/utils";
+import type { AcmeKitContainer } from "@acmekit/types";
+import { FieldFilterContext, IFieldFilter } from "../field-filtering/index";
+/**
+ * RBAC Field Filter using the Strategy pattern
+ * Optimized for parallel permission checks
+ */
+export declare class RBACFieldFilter implements IFieldFilter {
+    private policies;
+    private userRoles;
+    private container;
+    constructor({ policies, userRoles, container, }: {
+        policies: PolicyDefinition[];
+        userRoles: string[];
+        container: AcmeKitContainer;
+    });
+    getNotAllowedFields(context: FieldFilterContext): Promise<string[]>;
+}
+//# sourceMappingURL=rbac-field-filter.d.ts.map

package/dist/http/utils/policies/rbac-field-filter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rbac-field-filter.d.ts","sourceRoot":"","sources":["../../../../src/http/utils/policies/rbac-field-filter.ts"],"names":[],"mappings":"AAAA,OAAO,EAEL,gBAAgB,EAIjB,MAAM,0BAA0B,CAAA;AAEjC,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAA;AAEtD,OAAO,EAAE,kBAAkB,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAA;AAqY3E;;;GAGG;AACH,qBAAa,eAAgB,YAAW,YAAY;IAClD,OAAO,CAAC,QAAQ,CAAoB;IACpC,OAAO,CAAC,SAAS,CAAU;IAC3B,OAAO,CAAC,SAAS,CAAkB;gBAEvB,EACV,QAAQ,EACR,SAAS,EACT,SAAS,GACV,EAAE;QACD,QAAQ,EAAE,gBAAgB,EAAE,CAAA;QAC5B,SAAS,EAAE,MAAM,EAAE,CAAA;QACnB,SAAS,EAAE,gBAAgB,CAAA;KAC5B;IAMK,mBAAmB,CAAC,OAAO,EAAE,kBAAkB,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;CA+D1E"}

package/dist/http/utils/policies/rbac-field-filter.js

@@ -0,0 +1,348 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RBACFieldFilter = void 0;
+const utils_1 = require("@acmekit/framework/utils");
+const modules_sdk_1 = require("@acmekit/modules-sdk");
+const has_permission_1 = require("../../../policies/has-permission");
+/**
+ * Base GraphQL schema with common scalars
+ */
+const baseGraphqlSchema = `
+    scalar DateTime
+    scalar Date
+    scalar Time
+    scalar JSON
+`;
+const primitiveTypes = new Set([
+    "String",
+    "Int",
+    "Float",
+    "Boolean",
+    "ID",
+    "DateTime",
+    "JSON",
+]);
+// Cache for the schema and entity mappings to avoid re-parsing the GraphQL
+let cachedSchema = null;
+let cachedEntityMap = null;
+let cachedEntityAliasMap = null;
+function isString(value) {
+    return typeof value === "string";
+}
+/**
+ * Makes a GraphQL schema executable
+ */
+function makeSchemaExecutable(inputSchema) {
+    const { schema: cleanedSchema } = utils_1.GraphQLUtils.cleanGraphQLSchema(inputSchema);
+    if (!cleanedSchema) {
+        return;
+    }
+    return utils_1.GraphQLUtils.makeExecutableSchema({
+        typeDefs: cleanedSchema,
+    });
+}
+function getExecutableSchema() {
+    if (cachedSchema) {
+        return cachedSchema;
+    }
+    cachedSchema = buildExecutableSchema();
+    return cachedSchema;
+}
+/**
+ * Builds entity alias map from joiner configs
+ * Maps all possible aliases (e.g., "variant", "variants") to canonical entity names (e.g., "ProductVariant")
+ */
+function buildEntityAliasMap() {
+    const moduleJoinerConfigs = modules_sdk_1.AcmeKitModule.getAllJoinerConfigs();
+    const aliasMap = new Map();
+    for (const config of moduleJoinerConfigs) {
+        if (!config.alias) {
+            continue;
+        }
+        const aliases = Array.isArray(config.alias) ? config.alias : [config.alias];
+        for (const alias of aliases) {
+            const aliasNames = Array.isArray(alias.name) ? alias.name : [alias.name];
+            if (!alias.entity) {
+                continue;
+            }
+            const targetEntity = alias.entity;
+            for (const aliasName of aliasNames) {
+                aliasMap.set(aliasName, targetEntity);
+            }
+        }
+    }
+    return aliasMap;
+}
+/**
+ * Gets the entity alias map, building it if necessary
+ */
+function getEntityAliasMap() {
+    if (!cachedEntityAliasMap) {
+        cachedEntityAliasMap = buildEntityAliasMap();
+    }
+    return cachedEntityAliasMap;
+}
+function getSchemaFromJoinerConfigs(moduleJoinerConfigs) {
+    const schemaParts = [];
+    for (const config of moduleJoinerConfigs) {
+        if (!config?.schema) {
+            continue;
+        }
+        schemaParts.push(config.schema);
+    }
+    return schemaParts.join("\n");
+}
+function buildCompleteEntityMap() {
+    const moduleJoinerConfigs = modules_sdk_1.AcmeKitModule.getAllJoinerConfigs();
+    const entityMap = new Map();
+    // base GraphQL schema
+    const schema = buildExecutableSchema();
+    if (!schema) {
+        return entityMap;
+    }
+    const entitiesMap = schema.getTypeMap();
+    // Process each service configuration to build alias field mappings
+    for (const config of moduleJoinerConfigs) {
+        processServiceConfig(config, entitiesMap, entityMap);
+    }
+    return entityMap;
+}
+/**
+ * Processes a service configuration to extract field mappings
+ */
+function processServiceConfig(config, entitiesMap, entityMap) {
+    if (!config.extends) {
+        return;
+    }
+    for (const extend of config.extends) {
+        if (!entitiesMap[extend?.entity]) {
+            continue;
+        }
+        const extendedFieldAlias = extend.fieldAlias || {};
+        if (Object.keys(extendedFieldAlias).length > 0) {
+            processFieldAliases(extendedFieldAlias, extend.entity, entitiesMap, entityMap);
+        }
+    }
+}
+/**
+ * Processes field aliases to build entity mappings
+ */
+function processFieldAliases(fieldAlias, baseEntity, entitiesMap, entityMap) {
+    for (const [aliasName, aliasConfig] of Object.entries(fieldAlias)) {
+        const aliasPath = isString(aliasConfig) ? aliasConfig : aliasConfig.path;
+        if (!aliasPath) {
+            continue;
+        }
+        // Build the complete path from base entity through alias path
+        const pathSegments = aliasPath.split(".");
+        let currentEntity = baseEntity;
+        let finalEntity = baseEntity;
+        let isValidPath = true;
+        // Traverse the path to find the final entity
+        for (const segment of pathSegments) {
+            const entityMapping = findFieldInEntity(currentEntity, segment, entitiesMap);
+            if (!entityMapping) {
+                isValidPath = false;
+                break;
+            }
+            currentEntity = entityMapping.targetEntity;
+            finalEntity = entityMapping.targetEntity;
+        }
+        if (isValidPath) {
+            const fullPath = `${baseEntity}.${aliasName}`;
+            entityMap.set(fullPath, {
+                entityName: aliasName,
+                targetEntity: finalEntity,
+                path: pathSegments,
+            });
+        }
+    }
+}
+/**
+ * Finds a field in an entity and returns its target entity
+ */
+function findFieldInEntity(entityName, fieldName, entitiesMap) {
+    const entity = entitiesMap[entityName];
+    if (!entity?.astNode?.fields) {
+        return null;
+    }
+    for (const field of entity.astNode.fields) {
+        if (field.name?.value === fieldName) {
+            let type = field.type;
+            while (type.type) {
+                type = type.type;
+            }
+            const targetEntity = type.name?.value;
+            if (targetEntity && !primitiveTypes.has(targetEntity)) {
+                return { targetEntity };
+            }
+        }
+    }
+    return null;
+}
+/**
+ * Gets the complete entity map with all aliases resolved
+ */
+function getEntityMap() {
+    if (!cachedEntityMap) {
+        cachedEntityMap = buildCompleteEntityMap();
+    }
+    return cachedEntityMap;
+}
+/**
+ * Builds executable schema from all joiner configs
+ */
+function buildExecutableSchema() {
+    const moduleJoinerConfigs = modules_sdk_1.AcmeKitModule.getAllJoinerConfigs();
+    const schemaFromJoinerConfigs = getSchemaFromJoinerConfigs(moduleJoinerConfigs);
+    const augmentedSchema = baseGraphqlSchema + "\n" + schemaFromJoinerConfigs;
+    const executableSchema = makeSchemaExecutable(augmentedSchema);
+    return executableSchema || null;
+}
+/**
+ * Gets the actual GraphQL entity name from a field path using the complete entity map
+ * This now uses the pre-built entity map with all aliases resolved
+ * e.g., "product.variants.prices" -> "Price" (from resolved alias path)
+ */
+function getActualEntityName(fieldPath) {
+    const schema = getExecutableSchema();
+    if (!schema) {
+        return null;
+    }
+    const entitiesMap = schema.getTypeMap();
+    const entityMap = getEntityMap();
+    const entityAliasMap = getEntityAliasMap();
+    const parts = fieldPath.split(".");
+    const entryPoint = parts[0];
+    const resolvedEntityName = entityAliasMap.get(entryPoint);
+    if (!resolvedEntityName) {
+        return null;
+    }
+    let currentEntity = entitiesMap[resolvedEntityName];
+    let currentEntityName = resolvedEntityName;
+    if (!currentEntity) {
+        return null;
+    }
+    for (let i = 1; i < parts.length; i++) {
+        const fieldName = parts[i];
+        const mappingKey = `${currentEntityName}.${fieldName}`;
+        const entityMapping = entityMap.get(mappingKey);
+        if (entityMapping) {
+            // field alias paths
+            const targetEntityName = entityMapping.targetEntity;
+            currentEntityName = targetEntityName;
+            currentEntity = entitiesMap[currentEntityName];
+            if (!currentEntity) {
+                return null;
+            }
+        }
+        else {
+            const fieldResult = findFieldInEntity(currentEntityName, fieldName, entitiesMap);
+            if (!fieldResult) {
+                return null;
+            }
+            currentEntityName = fieldResult.targetEntity;
+            currentEntity = entitiesMap[currentEntityName];
+            if (!currentEntity) {
+                return null;
+            }
+        }
+    }
+    return currentEntityName;
+}
+/**
+ * Gets the normalized snake_case entity name for policy comparison
+ * e.g., "product.variants" -> "product_variant", "Price" -> "price"
+ */
+function getNormalizedEntityName(fieldPath) {
+    const actualEntityName = getActualEntityName(fieldPath);
+    if (!actualEntityName) {
+        return null;
+    }
+    return (0, utils_1.toSnakeCase)(actualEntityName);
+}
+/**
+ * Collects all unique entity paths that need permission checks
+ * This avoids duplicate permission checks for shared path prefixes
+ */
+function collectUniqueEntityPaths(entity, fields) {
+    const uniquePaths = new Map();
+    for (const field of fields) {
+        const fullFieldPath = entity + "." + field;
+        const pathSegments = fullFieldPath.split(".");
+        // Build paths incrementally using string concatenation (more efficient than slice + join)
+        let currentPath = "";
+        for (let i = 0; i < pathSegments.length; i++) {
+            currentPath =
+                i === 0 ? pathSegments[i] : currentPath + "." + pathSegments[i];
+            if (!uniquePaths.has(currentPath)) {
+                const entityName = getNormalizedEntityName(currentPath);
+                uniquePaths.set(currentPath, { path: currentPath, entityName });
+            }
+        }
+    }
+    return uniquePaths;
+}
+/**
+ * RBAC Field Filter using the Strategy pattern
+ * Optimized for parallel permission checks
+ */
+class RBACFieldFilter {
+    constructor({ policies, userRoles, container, }) {
+        this.policies = policies;
+        this.userRoles = userRoles;
+        this.container = container;
+    }
+    async getNotAllowedFields(context) {
+        const { entity, parsedFields } = context;
+        const { fields, starFields } = parsedFields;
+        const fieldsToCheck = [...fields, ...Array.from(starFields)];
+        if (!fieldsToCheck.length || !this.policies.length || !entity) {
+            return [];
+        }
+        const uniquePaths = collectUniqueEntityPaths(entity, fieldsToCheck);
+        const pathsNeedingCheck = [];
+        for (const [path, info] of uniquePaths) {
+            if (info.entityName && utils_1.PolicyResource[info.entityName]) {
+                pathsNeedingCheck.push({ path, entityName: info.entityName });
+            }
+        }
+        const permissionResults = await (0, utils_1.promiseAll)(pathsNeedingCheck.map(async ({ path, entityName }) => {
+            const hasAccess = await (0, has_permission_1.hasPermission)({
+                roles: this.userRoles,
+                actions: { resource: entityName, operation: "read" },
+                container: this.container,
+            });
+            return { path, hasAccess };
+        }));
+        const accessMap = new Map();
+        for (const result of permissionResults) {
+            accessMap.set(result.path, result.hasAccess);
+        }
+        const notAllowedFields = [];
+        for (const field of fieldsToCheck) {
+            const fullFieldPath = entity + "." + field;
+            const pathSegments = fullFieldPath.split(".");
+            let currentPath = "";
+            let fieldAllowed = true;
+            for (let i = 0; i < pathSegments.length; i++) {
+                currentPath =
+                    i === 0 ? pathSegments[i] : currentPath + "." + pathSegments[i];
+                // Check if this path was in our permission check results
+                if (accessMap.has(currentPath)) {
+                    const hasAccess = accessMap.get(currentPath);
+                    if (!hasAccess) {
+                        fieldAllowed = false;
+                        break;
+                    }
+                }
+            }
+            if (!fieldAllowed) {
+                notAllowedFields.push(field);
+            }
+        }
+        return notAllowedFields;
+    }
+}
+exports.RBACFieldFilter = RBACFieldFilter;
+//# sourceMappingURL=rbac-field-filter.js.map

package/dist/http/utils/policies/rbac-field-filter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rbac-field-filter.js","sourceRoot":"","sources":["../../../../src/http/utils/policies/rbac-field-filter.ts"],"names":[],"mappings":";;;AAAA,oDAMiC;AACjC,sDAAoD;AAEpD,qEAAgE;AAGhE;;GAEG;AACH,MAAM,iBAAiB,GAAG;;;;;CAKzB,CAAA;AAED,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC;IAC7B,QAAQ;IACR,KAAK;IACL,OAAO;IACP,SAAS;IACT,IAAI;IACJ,UAAU;IACV,MAAM;CACP,CAAC,CAAA;AAEF,2EAA2E;AAC3E,IAAI,YAAY,GAAsC,IAAI,CAAA;AAC1D,IAAI,eAAe,GAAsC,IAAI,CAAA;AAC7D,IAAI,oBAAoB,GAA+B,IAAI,CAAA;AAa3D,SAAS,QAAQ,CAAC,KAAU;IAC1B,OAAO,OAAO,KAAK,KAAK,QAAQ,CAAA;AAClC,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB,CAAC,WAAmB;IAC/C,MAAM,EAAE,MAAM,EAAE,aAAa,EAAE,GAAG,oBAAY,CAAC,kBAAkB,CAAC,WAAW,CAAC,CAAA;IAE9E,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAM;IACR,CAAC;IAED,OAAO,oBAAY,CAAC,oBAAoB,CAAC;QACvC,QAAQ,EAAE,aAAa;KACxB,CAAC,CAAA;AACJ,CAAC;AAED,SAAS,mBAAmB;IAC1B,IAAI,YAAY,EAAE,CAAC;QACjB,OAAO,YAAY,CAAA;IACrB,CAAC;IAED,YAAY,GAAG,qBAAqB,EAAE,CAAA;IACtC,OAAO,YAAY,CAAA;AACrB,CAAC;AAED;;;GAGG;AACH,SAAS,mBAAmB;IAC1B,MAAM,mBAAmB,GAAG,2BAAa,CAAC,mBAAmB,EAAE,CAAA;IAC/D,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAkB,CAAA;IAE1C,KAAK,MAAM,MAAM,IAAI,mBAAmB,EAAE,CAAC;QACzC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;YAClB,SAAQ;QACV,CAAC;QAED,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QAC3E,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,MAAM,UAAU,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;YACxE,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;gBAClB,SAAQ;YACV,CAAC;YAED,MAAM,YAAY,GAAG,KAAK,CAAC,MAAM,CAAA;YACjC,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;gBACnC,QAAQ,CAAC,GAAG,CAAC,SAAS,EAAE,YAAY,CAAC,CAAA;YACvC,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAA;AACjB,CAAC;AAED;;GAEG;AACH,SAAS,iBAAiB;IACxB,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC1B,oBAAoB,GAAG,mBAAmB,EAAE,CAAA;IAC9C,CAAC;IACD,OAAO,oBAAoB,CAAA;AAC7B,CAAC;AAED,SAAS,0BAA0B,CAAC,mBAA0B;IAC5D,MAAM,WAAW,GAAa,EAAE,CAAA;IAEhC,KAAK,MAAM,MAAM,IAAI,mBAAmB,EAAE,CAAC;QACzC,IAAI,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC;YACpB,SAAQ;QACV,CAAC;QAED,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;IACjC,CAAC;IAED,OAAO,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AAC/B,CAAC;AAED,SAAS,sBAAsB;IAC7B,MAAM,mBAAmB,GAAG,2BAAa,CAAC,mBAAmB,EAAE,CAAA;IAC/D,MAAM,SAAS,GAAG,IAAI,GAAG,EAAyB,CAAA;IAElD,sBAAsB;IACtB,MAAM,MAAM,GAAG,qBAAqB,EAAE,CAAA;IACtC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,SAAS,CAAA;IAClB,CAAC;IAED,MAAM,WAAW,GAAG,MAAM,CAAC,UAAU,EAAE,CAAA;IAEvC,mEAAmE;IACnE,KAAK,MAAM,MAAM,IAAI,mBAAmB,EAAE,CAAC;QACzC,oBAAoB,CAAC,MAAM,EAAE,WAAW,EAAE,SAAS,CAAC,CAAA;IACtD,CAAC;IAED,OAAO,SAAS,CAAA;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB,CAC3B,MAAW,EACX,WAAgC,EAChC,SAAqC;IAErC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QACpB,OAAM;IACR,CAAC;IAED,KAAK,MAAM,MAAM,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACpC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC;YACjC,SAAQ;QACV,CAAC;QAED,MAAM,kBAAkB,GAAG,MAAM,CAAC,UAAU,IAAI,EAAE,CAAA;QAClD,IAAI,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/C,mBAAmB,CACjB,kBAAkB,EAClB,MAAM,CAAC,MAAM,EACb,WAAW,EACX,SAAS,CACV,CAAA;QACH,CAAC;IACH,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAC1B,UAA+B,EAC/B,UAAkB,EAClB,WAAgC,EAChC,SAAqC;IAErC,KAAK,MAAM,CAAC,SAAS,EAAE,WAAW,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,CAAC;QAClE,MAAM,SAAS,GAAG,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,WAAW,CAAC,IAAI,CAAA;QAExE,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,SAAQ;QACV,CAAC;QAED,8DAA8D;QAC9D,MAAM,YAAY,GAAG,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QACzC,IAAI,aAAa,GAAG,UAAU,CAAA;QAC9B,IAAI,WAAW,GAAG,UAAU,CAAA;QAC5B,IAAI,WAAW,GAAG,IAAI,CAAA;QAEtB,6CAA6C;QAC7C,KAAK,MAAM,OAAO,IAAI,YAAY,EAAE,CAAC;YACnC,MAAM,aAAa,GAAG,iBAAiB,CACrC,aAAa,EACb,OAAO,EACP,WAAW,CACZ,CAAA;YAED,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,WAAW,GAAG,KAAK,CAAA;gBACnB,MAAK;YACP,CAAC;YAED,aAAa,GAAG,aAAa,CAAC,YAAY,CAAA;YAC1C,WAAW,GAAG,aAAa,CAAC,YAAY,CAAA;QAC1C,CAAC;QAED,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,QAAQ,GAAG,GAAG,UAAU,IAAI,SAAS,EAAE,CAAA;YAE7C,SAAS,CAAC,GAAG,CAAC,QAAQ,EAAE;gBACtB,UAAU,EAAE,SAAS;gBACrB,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,YAAY;aACnB,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,iBAAiB,CACxB,UAAkB,EAClB,SAAiB,EACjB,WAAgC;IAEhC,MAAM,MAAM,GAAG,WAAW,CAAC,UAAU,CAAQ,CAAA;IAE7C,IAAI,CAAC,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAC7B,OAAO,IAAI,CAAA;IACb,CAAC;IAED,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;QAC1C,IAAI,KAAK,CAAC,IAAI,EAAE,KAAK,KAAK,SAAS,EAAE,CAAC;YACpC,IAAI,IAAI,GAAG,KAAK,CAAC,IAAI,CAAA;YAErB,OAAO,IAAI,CAAC,IAAI,EAAE,CAAC;gBACjB,IAAI,GAAG,IAAI,CAAC,IAAI,CAAA;YAClB,CAAC;YAED,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,EAAE,KAAK,CAAA;YACrC,IAAI,YAAY,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC;gBACtD,OAAO,EAAE,YAAY,EAAE,CAAA;YACzB,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAA;AACb,CAAC;AAED;;GAEG;AACH,SAAS,YAAY;IACnB,IAAI,CAAC,eAAe,EAAE,CAAC;QACrB,eAAe,GAAG,sBAAsB,EAAE,CAAA;IAC5C,CAAC;IACD,OAAO,eAAe,CAAA;AACxB,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB;IAC5B,MAAM,mBAAmB,GAAG,2BAAa,CAAC,mBAAmB,EAAE,CAAA;IAE/D,MAAM,uBAAuB,GAC3B,0BAA0B,CAAC,mBAAmB,CAAC,CAAA;IAEjD,MAAM,eAAe,GAAG,iBAAiB,GAAG,IAAI,GAAG,uBAAuB,CAAA;IAC1E,MAAM,gBAAgB,GAAG,oBAAoB,CAAC,eAAe,CAAC,CAAA;IAE9D,OAAO,gBAAgB,IAAI,IAAI,CAAA;AACjC,CAAC;AAED;;;;GAIG;AACH,SAAS,mBAAmB,CAAC,SAAiB;IAC5C,MAAM,MAAM,GAAG,mBAAmB,EAAE,CAAA;IAEpC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,WAAW,GAAG,MAAM,CAAC,UAAU,EAAE,CAAA;IACvC,MAAM,SAAS,GAAG,YAAY,EAAE,CAAA;IAChC,MAAM,cAAc,GAAG,iBAAiB,EAAE,CAAA;IAC1C,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IAElC,MAAM,UAAU,GAAG,KAAK,CAAC,CAAC,CAAE,CAAA;IAC5B,MAAM,kBAAkB,GAAG,cAAc,CAAC,GAAG,CAAC,UAAU,CAAC,CAAA;IAEzD,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACxB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,IAAI,aAAa,GAAG,WAAW,CAAC,kBAAkB,CAAQ,CAAA;IAC1D,IAAI,iBAAiB,GAAG,kBAAkB,CAAA;IAE1C,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,CAAA;QAE1B,MAAM,UAAU,GAAG,GAAG,iBAAiB,IAAI,SAAS,EAAE,CAAA;QACtD,MAAM,aAAa,GAAG,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,CAAA;QAE/C,IAAI,aAAa,EAAE,CAAC;YAClB,oBAAoB;YACpB,MAAM,gBAAgB,GAAG,aAAa,CAAC,YAAY,CAAA;YACnD,iBAAiB,GAAG,gBAAgB,CAAA;YACpC,aAAa,GAAG,WAAW,CAAC,iBAAiB,CAAQ,CAAA;YAErD,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,OAAO,IAAI,CAAA;YACb,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,WAAW,GAAG,iBAAiB,CACnC,iBAAiB,EACjB,SAAS,EACT,WAAW,CACZ,CAAA;YAED,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,OAAO,IAAI,CAAA;YACb,CAAC;YAED,iBAAiB,GAAG,WAAW,CAAC,YAAY,CAAA;YAC5C,aAAa,GAAG,WAAW,CAAC,iBAAiB,CAAQ,CAAA;YAErD,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,OAAO,IAAI,CAAA;YACb,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,iBAAiB,CAAA;AAC1B,CAAC;AAED;;;GAGG;AACH,SAAS,uBAAuB,CAAC,SAAiB;IAChD,MAAM,gBAAgB,GAAG,mBAAmB,CAAC,SAAS,CAAC,CAAA;IACvD,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACtB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,OAAO,IAAA,mBAAW,EAAC,gBAAgB,CAAC,CAAA;AACtC,CAAC;AAED;;;GAGG;AACH,SAAS,wBAAwB,CAC/B,MAAc,EACd,MAAgB;IAEhB,MAAM,WAAW,GAAG,IAAI,GAAG,EAAoB,CAAA;IAE/C,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,MAAM,aAAa,GAAG,MAAM,GAAG,GAAG,GAAG,KAAK,CAAA;QAC1C,MAAM,YAAY,GAAG,aAAa,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QAE7C,0FAA0F;QAC1F,IAAI,WAAW,GAAG,EAAE,CAAA;QACpB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,YAAY,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC7C,WAAW;gBACT,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW,GAAG,GAAG,GAAG,YAAY,CAAC,CAAC,CAAC,CAAA;YAEjE,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,WAAW,CAAC,EAAE,CAAC;gBAClC,MAAM,UAAU,GAAG,uBAAuB,CAAC,WAAW,CAAC,CAAA;gBACvD,WAAW,CAAC,GAAG,CAAC,WAAW,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,UAAU,EAAE,CAAC,CAAA;YACjE,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,WAAW,CAAA;AACpB,CAAC;AAED;;;GAGG;AACH,MAAa,eAAe;IAK1B,YAAY,EACV,QAAQ,EACR,SAAS,EACT,SAAS,GAKV;QACC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAA;QACxB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;QAC1B,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;IAC5B,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,OAA2B;QACnD,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,OAAO,CAAA;QACxC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,GAAG,YAAY,CAAA;QAC3C,MAAM,aAAa,GAAG,CAAC,GAAG,MAAM,EAAE,GAAG,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAA;QAE5D,IAAI,CAAC,aAAa,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC;YAC9D,OAAO,EAAE,CAAA;QACX,CAAC;QAED,MAAM,WAAW,GAAG,wBAAwB,CAAC,MAAM,EAAE,aAAa,CAAC,CAAA;QAEnE,MAAM,iBAAiB,GAA2C,EAAE,CAAA;QACpE,KAAK,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,WAAW,EAAE,CAAC;YACvC,IAAI,IAAI,CAAC,UAAU,IAAI,sBAAc,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;gBACvD,iBAAiB,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,UAAU,EAAE,IAAI,CAAC,UAAU,EAAE,CAAC,CAAA;YAC/D,CAAC;QACH,CAAC;QAED,MAAM,iBAAiB,GAAG,MAAM,IAAA,kBAAU,EACxC,iBAAiB,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,EAAE,EAAE;YACnD,MAAM,SAAS,GAAG,MAAM,IAAA,8BAAa,EAAC;gBACpC,KAAK,EAAE,IAAI,CAAC,SAAS;gBACrB,OAAO,EAAE,EAAE,QAAQ,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,EAAE;gBACpD,SAAS,EAAE,IAAI,CAAC,SAAS;aAC1B,CAAC,CAAA;YACF,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,CAAA;QAC5B,CAAC,CAAC,CACH,CAAA;QAED,MAAM,SAAS,GAAG,IAAI,GAAG,EAAmB,CAAA;QAC5C,KAAK,MAAM,MAAM,IAAI,iBAAiB,EAAE,CAAC;YACvC,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,SAAS,CAAC,CAAA;QAC9C,CAAC;QAED,MAAM,gBAAgB,GAAa,EAAE,CAAA;QACrC,KAAK,MAAM,KAAK,IAAI,aAAa,EAAE,CAAC;YAClC,MAAM,aAAa,GAAG,MAAM,GAAG,GAAG,GAAG,KAAK,CAAA;YAC1C,MAAM,YAAY,GAAG,aAAa,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;YAE7C,IAAI,WAAW,GAAG,EAAE,CAAA;YACpB,IAAI,YAAY,GAAG,IAAI,CAAA;YAEvB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,YAAY,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC7C,WAAW;oBACT,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW,GAAG,GAAG,GAAG,YAAY,CAAC,CAAC,CAAC,CAAA;gBAEjE,yDAAyD;gBACzD,IAAI,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,EAAE,CAAC;oBAC/B,MAAM,SAAS,GAAG,SAAS,CAAC,GAAG,CAAC,WAAW,CAAE,CAAA;oBAC7C,IAAI,CAAC,SAAS,EAAE,CAAC;wBACf,YAAY,GAAG,KAAK,CAAA;wBACpB,MAAK;oBACP,CAAC;gBACH,CAAC;YACH,CAAC;YAED,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;YAC9B,CAAC;QACH,CAAC;QAED,OAAO,gBAAgB,CAAA;IACzB,CAAC;CACF;AAlFD,0CAkFC"}