@actuate-media/cms-core 0.12.0 → 0.14.0

package/dist/__tests__/auth/oauth.test.js

@@ -0,0 +1,406 @@
+import { describe, it, expect, beforeEach, vi, afterEach } from 'vitest';
+import * as jose from 'jose';
+import { generateCodeVerifier, generateCodeChallenge, generateState, generateOAuthNonce, verifyState, getAuthorizationUrl, handleOAuthCallback, InvalidOAuthStateError, } from '../../auth/oauth.js';
+const TEST_SECRET = 'a-secret-key-that-is-at-least-32-chars-long!!';
+const RETURN_TO = '/admin/dashboard';
+const PROVIDER_CONFIG = {
+    clientId: 'client-id-123',
+    clientSecret: 'client-secret-abc',
+    redirectUri: 'https://example.com/api/cms/auth/oauth/google/callback',
+};
+// ─── PKCE primitives ────────────────────────────────────────────────────
+describe('generateCodeVerifier', () => {
+    it('returns a base64url string with no padding', () => {
+        const v = generateCodeVerifier();
+        // RFC 7636 §4.1: verifiers are 43..128 chars from the unreserved alphabet.
+        expect(v).toMatch(/^[A-Za-z0-9_-]{43,128}$/);
+        expect(v).not.toContain('=');
+        expect(v).not.toContain('+');
+        expect(v).not.toContain('/');
+    });
+    it('produces a unique value per call', () => {
+        const a = generateCodeVerifier();
+        const b = generateCodeVerifier();
+        const c = generateCodeVerifier();
+        expect(new Set([a, b, c]).size).toBe(3);
+    });
+});
+describe('generateCodeChallenge', () => {
+    it('returns a base64url SHA-256 of the verifier (RFC 7636 §4.2 S256 method)', async () => {
+        // Test vector from RFC 7636 §4.2: verifier "dBjftJeZ4CVP-mB92K27uhbUJU1p1r_wW1gFWFOEjXk"
+        // → challenge "E9Melhoa2OwvFrEMTJguCHaoeK1t8URWbuGJSstw-cM"
+        const verifier = 'dBjftJeZ4CVP-mB92K27uhbUJU1p1r_wW1gFWFOEjXk';
+        const challenge = await generateCodeChallenge(verifier);
+        expect(challenge).toBe('E9Melhoa2OwvFrEMTJguCHaoeK1t8URWbuGJSstw-cM');
+    });
+    it('produces base64url output (no padding)', async () => {
+        const challenge = await generateCodeChallenge('any-verifier-value-for-testing-only');
+        expect(challenge).toMatch(/^[A-Za-z0-9_-]+$/);
+        expect(challenge).not.toContain('=');
+    });
+});
+describe('generateOAuthNonce', () => {
+    it('returns a base64url 16-byte nonce', () => {
+        const n = generateOAuthNonce();
+        expect(n).toMatch(/^[A-Za-z0-9_-]+$/);
+        // 16 bytes → 22 base64url chars (no padding)
+        expect(n.length).toBe(22);
+    });
+    it('produces a unique value per call', () => {
+        const set = new Set(Array.from({ length: 50 }, () => generateOAuthNonce()));
+        expect(set.size).toBe(50);
+    });
+});
+// ─── State token (signed JWT with PKCE verifier) ────────────────────────
+describe('generateState / verifyState', () => {
+    it('round-trips a valid state through sign + verify', async () => {
+        const verifier = generateCodeVerifier();
+        const state = await generateState('google', verifier, RETURN_TO, TEST_SECRET);
+        const decoded = await verifyState(state, TEST_SECRET);
+        expect(decoded.provider).toBe('google');
+        expect(decoded.codeVerifier).toBe(verifier);
+        expect(decoded.returnTo).toBe(RETURN_TO);
+        expect(decoded.nonce).toBeUndefined();
+    });
+    it('round-trips a nonce when provided', async () => {
+        const nonce = generateOAuthNonce();
+        const state = await generateState('github', generateCodeVerifier(), '/admin', TEST_SECRET, nonce);
+        const decoded = await verifyState(state, TEST_SECRET);
+        expect(decoded.nonce).toBe(nonce);
+    });
+    it('strips standard JWT claims from the returned payload', async () => {
+        const verifier = generateCodeVerifier();
+        const state = await generateState('google', verifier, RETURN_TO, TEST_SECRET);
+        const decoded = await verifyState(state, TEST_SECRET);
+        // jose injects iat/exp/iss into the JWT but verifyState should only return
+        // the validated OAuthState fields.
+        expect(decoded.iat).toBeUndefined();
+        expect(decoded.exp).toBeUndefined();
+        expect(decoded.iss).toBeUndefined();
+    });
+    it('rejects a token signed with a different secret', async () => {
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        await expect(verifyState(state, 'a-different-secret-of-at-least-32-chars-x')).rejects.toThrow();
+    });
+    it('rejects a tampered token', async () => {
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        // Flip a character in the signature (last segment)
+        const parts = state.split('.');
+        parts[2] = parts[2].replace(/[A-Za-z0-9_-]/, (c) => (c === 'a' ? 'b' : 'a'));
+        const tampered = parts.join('.');
+        await expect(verifyState(tampered, TEST_SECRET)).rejects.toThrow();
+    });
+    it('rejects a token issued by a different application (issuer mismatch)', async () => {
+        // Sign a state-shaped JWT with the right key but a wrong `iss`.
+        const key = new TextEncoder().encode(TEST_SECRET);
+        const evil = await new jose.SignJWT({
+            provider: 'google',
+            codeVerifier: 'x'.repeat(43),
+            returnTo: '/',
+        })
+            .setProtectedHeader({ alg: 'HS256' })
+            .setIssuedAt()
+            .setExpirationTime('10m')
+            .setIssuer('not-actuate-cms')
+            .sign(key);
+        await expect(verifyState(evil, TEST_SECRET)).rejects.toThrow();
+    });
+    it('rejects a state with a missing provider field', async () => {
+        const key = new TextEncoder().encode(TEST_SECRET);
+        const malformed = await new jose.SignJWT({
+            codeVerifier: 'x'.repeat(43),
+            returnTo: '/',
+        })
+            .setProtectedHeader({ alg: 'HS256' })
+            .setIssuedAt()
+            .setExpirationTime('10m')
+            .setIssuer('actuate-cms')
+            .sign(key);
+        await expect(verifyState(malformed, TEST_SECRET)).rejects.toThrow(InvalidOAuthStateError);
+    });
+    it('rejects a state with a missing codeVerifier field', async () => {
+        const key = new TextEncoder().encode(TEST_SECRET);
+        const malformed = await new jose.SignJWT({
+            provider: 'google',
+            returnTo: '/',
+        })
+            .setProtectedHeader({ alg: 'HS256' })
+            .setIssuedAt()
+            .setExpirationTime('10m')
+            .setIssuer('actuate-cms')
+            .sign(key);
+        await expect(verifyState(malformed, TEST_SECRET)).rejects.toThrow(InvalidOAuthStateError);
+    });
+    it('rejects a state where nonce is not a string', async () => {
+        const key = new TextEncoder().encode(TEST_SECRET);
+        const malformed = await new jose.SignJWT({
+            provider: 'google',
+            codeVerifier: 'x'.repeat(43),
+            returnTo: '/',
+            nonce: 12345,
+        })
+            .setProtectedHeader({ alg: 'HS256' })
+            .setIssuedAt()
+            .setExpirationTime('10m')
+            .setIssuer('actuate-cms')
+            .sign(key);
+        await expect(verifyState(malformed, TEST_SECRET)).rejects.toThrow(InvalidOAuthStateError);
+    });
+});
+// ─── Authorization URL builder ──────────────────────────────────────────
+describe('getAuthorizationUrl', () => {
+    it('builds a Google authorize URL with PKCE params', () => {
+        const url = new URL(getAuthorizationUrl('google', PROVIDER_CONFIG, 'state-jwt', 'challenge-x'));
+        expect(url.origin + url.pathname).toBe('https://accounts.google.com/o/oauth2/v2/auth');
+        expect(url.searchParams.get('response_type')).toBe('code');
+        expect(url.searchParams.get('client_id')).toBe(PROVIDER_CONFIG.clientId);
+        expect(url.searchParams.get('redirect_uri')).toBe(PROVIDER_CONFIG.redirectUri);
+        expect(url.searchParams.get('state')).toBe('state-jwt');
+        expect(url.searchParams.get('code_challenge')).toBe('challenge-x');
+        expect(url.searchParams.get('code_challenge_method')).toBe('S256');
+        expect(url.searchParams.get('scope')).toContain('openid');
+    });
+    it('uses a github-specific authorize endpoint', () => {
+        const url = new URL(getAuthorizationUrl('github', PROVIDER_CONFIG, 's', 'c'));
+        expect(url.origin + url.pathname).toBe('https://github.com/login/oauth/authorize');
+    });
+});
+function createFakeDb(initial = {}) {
+    const users = initial.users ?? [];
+    const oauthAccounts = initial.oauthAccounts ?? [];
+    const sessions = [];
+    return {
+        users,
+        oauthAccounts,
+        sessions,
+        user: {
+            findFirst: vi.fn(async ({ where }) => {
+                const target = where.email.equals.toLowerCase();
+                return users.find((u) => u.email.toLowerCase() === target) ?? null;
+            }),
+            create: vi.fn(async ({ data }) => {
+                const u = { id: `u_${users.length + 1}`, ...data };
+                users.push(u);
+                return u;
+            }),
+        },
+        oAuthAccount: {
+            findUnique: vi.fn(async ({ where, }) => {
+                const w = where.provider_providerAccountId;
+                const acc = oauthAccounts.find((a) => a.provider === w.provider && a.providerAccountId === w.providerAccountId);
+                if (!acc)
+                    return null;
+                const user = users.find((u) => u.id === acc.userId) ?? null;
+                return { ...acc, user };
+            }),
+            upsert: vi.fn(async ({ where, create }) => {
+                const w = where.provider_providerAccountId;
+                const existing = oauthAccounts.find((a) => a.provider === w.provider && a.providerAccountId === w.providerAccountId);
+                if (existing)
+                    return existing;
+                oauthAccounts.push({
+                    provider: w.provider,
+                    providerAccountId: w.providerAccountId,
+                    userId: create.userId,
+                });
+                return oauthAccounts[oauthAccounts.length - 1];
+            }),
+        },
+        session: {
+            create: vi.fn(async ({ data }) => {
+                const s = { id: `s_${sessions.length + 1}`, ...data };
+                sessions.push(s);
+                return s;
+            }),
+        },
+    };
+}
+describe('handleOAuthCallback', () => {
+    const PROVIDERS = { google: PROVIDER_CONFIG };
+    const originalFetch = globalThis.fetch;
+    const originalEncryptionKey = process.env.CMS_ENCRYPTION_KEY;
+    beforeEach(() => {
+        // Set a 64-hex-char encryption key so encryptSecret() doesn't throw.
+        process.env.CMS_ENCRYPTION_KEY = 'a'.repeat(64);
+    });
+    afterEach(() => {
+        globalThis.fetch = originalFetch;
+        if (originalEncryptionKey === undefined) {
+            delete process.env.CMS_ENCRYPTION_KEY;
+        }
+        else {
+            process.env.CMS_ENCRYPTION_KEY = originalEncryptionKey;
+        }
+        vi.restoreAllMocks();
+    });
+    function mockProviderResponses(opts) {
+        globalThis.fetch = vi.fn(async (input) => {
+            const url = typeof input === 'string' ? input : (input.url ?? input.toString());
+            if (url.includes('oauth2.googleapis.com/token')) {
+                return new Response(JSON.stringify({ access_token: opts.accessToken ?? 'access-tok', token_type: 'Bearer' }), { status: 200, headers: { 'Content-Type': 'application/json' } });
+            }
+            if (url.includes('googleapis.com/oauth2/v3/userinfo')) {
+                return new Response(JSON.stringify({
+                    sub: opts.profile.id,
+                    email: opts.profile.email,
+                    name: opts.profile.name,
+                }), { status: 200, headers: { 'Content-Type': 'application/json' } });
+            }
+            throw new Error(`Unexpected fetch in test: ${url}`);
+        });
+    }
+    it('rejects when the state.provider does not match the URL provider', async () => {
+        const state = await generateState('github', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb();
+        await expect(handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db)).rejects.toThrow(/Provider mismatch/);
+    });
+    it('rejects when the nonce in state does not match the cookie nonce', async () => {
+        const nonce = generateOAuthNonce();
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET, nonce);
+        const db = createFakeDb();
+        await expect(handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db, {
+            expectedNonce: 'a-different-nonce',
+        })).rejects.toThrow(/nonce mismatch/i);
+    });
+    it('rejects when state has a nonce but no cookie nonce was provided', async () => {
+        const nonce = generateOAuthNonce();
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET, nonce);
+        const db = createFakeDb();
+        await expect(handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db, {
+            expectedNonce: null,
+        })).rejects.toThrow(/nonce mismatch/i);
+    });
+    it('rejects when the provider is not configured', async () => {
+        const state = await generateState('github', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb();
+        await expect(handleOAuthCallback('github', 'code-x', state, PROVIDERS, TEST_SECRET, db)).rejects.toThrow(/not configured/);
+    });
+    it('rejects when the OAuth provider returns no email', async () => {
+        mockProviderResponses({ profile: { id: '111', email: '', name: 'Nobody' } });
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb();
+        await expect(handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db)).rejects.toThrow(/email/);
+    });
+    it('rejects self-signup when allowSelfSignup is false (default)', async () => {
+        mockProviderResponses({ profile: { id: '222', email: 'new@example.com', name: 'New User' } });
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb();
+        await expect(handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db)).rejects.toThrow(/No account found/);
+        expect(db.user.create).not.toHaveBeenCalled();
+    });
+    it('refuses to silently link an OAuth login to a password-protected account', async () => {
+        mockProviderResponses({
+            profile: { id: '333', email: 'pwd@example.com', name: 'Pwd User' },
+        });
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb({
+            users: [
+                {
+                    id: 'u_existing',
+                    email: 'pwd@example.com',
+                    name: 'Pwd User',
+                    role: 'CLIENT',
+                    passwordHash: 'pbkdf2:600000:abc:def',
+                },
+            ],
+        });
+        await expect(handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db)).rejects.toThrow(/already exists/);
+    });
+    it('reuses an existing OAuth-only account (passwordHash null) when emails match', async () => {
+        mockProviderResponses({
+            profile: { id: '444', email: 'oauth@example.com', name: 'OAuth User' },
+        });
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb({
+            users: [
+                {
+                    id: 'u_oauth_only',
+                    email: 'oauth@example.com',
+                    name: 'OAuth User',
+                    role: 'CLIENT',
+                    passwordHash: null,
+                },
+            ],
+        });
+        const result = await handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db);
+        expect(result.user.id).toBe('u_oauth_only');
+        expect(db.user.create).not.toHaveBeenCalled();
+        expect(db.session.create).toHaveBeenCalledOnce();
+    });
+    it('provisions a new user when allowSelfSignup is true and no account exists', async () => {
+        mockProviderResponses({
+            profile: { id: '555', email: 'fresh@example.com', name: 'Fresh User' },
+        });
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb();
+        const onProvision = vi.fn();
+        const result = await handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db, { allowSelfSignup: true, onProvision });
+        expect(onProvision).toHaveBeenCalledOnce();
+        expect(db.user.create).toHaveBeenCalledOnce();
+        expect(db.user.create.mock.calls[0][0].data.passwordHash).toBeNull();
+        expect(result.user.email).toBe('fresh@example.com');
+        expect(result.user.role).toBe('CLIENT');
+    });
+    it('lets onProvision throw to reject self-signup', async () => {
+        mockProviderResponses({
+            profile: { id: '666', email: 'blocked@evil.com', name: 'Blocked' },
+        });
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb();
+        const onProvision = vi.fn(() => {
+            throw new Error('Email domain not allowed');
+        });
+        await expect(handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db, {
+            allowSelfSignup: true,
+            onProvision,
+        })).rejects.toThrow(/domain not allowed/);
+        expect(db.user.create).not.toHaveBeenCalled();
+    });
+    it('returns an existing user found via OAuthAccount even if email differs', async () => {
+        mockProviderResponses({
+            profile: { id: '777', email: 'now@example.com', name: 'Linked User' },
+        });
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb({
+            users: [
+                {
+                    id: 'u_linked',
+                    email: 'old@example.com', // different from current OAuth email
+                    name: 'Linked',
+                    role: 'ADMIN',
+                    passwordHash: 'pbkdf2:600000:a:b',
+                },
+            ],
+            oauthAccounts: [{ provider: 'google', providerAccountId: '777', userId: 'u_linked' }],
+        });
+        const result = await handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db);
+        // Even though the email matches a *different* user, the existing
+        // OAuthAccount link wins and we return the linked user.
+        expect(result.user.id).toBe('u_linked');
+        expect(result.user.role).toBe('ADMIN');
+    });
+    it('creates a session row for the authenticated user', async () => {
+        mockProviderResponses({
+            profile: { id: '888', email: 'session@example.com', name: 'Session User' },
+        });
+        const state = await generateState('google', generateCodeVerifier(), RETURN_TO, TEST_SECRET);
+        const db = createFakeDb({
+            users: [
+                {
+                    id: 'u_sess',
+                    email: 'session@example.com',
+                    name: 'Session',
+                    role: 'CLIENT',
+                    passwordHash: null,
+                },
+            ],
+        });
+        await handleOAuthCallback('google', 'code-x', state, PROVIDERS, TEST_SECRET, db);
+        expect(db.session.create).toHaveBeenCalledOnce();
+        const call = db.session.create.mock.calls[0][0];
+        expect(call.data.userId).toBe('u_sess');
+        // Default 7-day expiry — verify the date is in the future
+        expect(call.data.expiresAt.getTime()).toBeGreaterThan(Date.now());
+    });
+});
+//# sourceMappingURL=oauth.test.js.map

package/dist/__tests__/auth/oauth.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.test.js","sourceRoot":"","sources":["../../../src/__tests__/auth/oauth.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,EAAE,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAA;AACxE,OAAO,KAAK,IAAI,MAAM,MAAM,CAAA;AAC5B,OAAO,EACL,oBAAoB,EACpB,qBAAqB,EACrB,aAAa,EACb,kBAAkB,EAClB,WAAW,EACX,mBAAmB,EACnB,mBAAmB,EACnB,sBAAsB,GACvB,MAAM,qBAAqB,CAAA;AAE5B,MAAM,WAAW,GAAG,+CAA+C,CAAA;AACnE,MAAM,SAAS,GAAG,kBAAkB,CAAA;AAEpC,MAAM,eAAe,GAAG;IACtB,QAAQ,EAAE,eAAe;IACzB,YAAY,EAAE,mBAAmB;IACjC,WAAW,EAAE,wDAAwD;CACtE,CAAA;AAED,2EAA2E;AAE3E,QAAQ,CAAC,sBAAsB,EAAE,GAAG,EAAE;IACpC,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;QACpD,MAAM,CAAC,GAAG,oBAAoB,EAAE,CAAA;QAChC,2EAA2E;QAC3E,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,yBAAyB,CAAC,CAAA;QAC5C,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;QAC5B,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;QAC5B,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;IAC9B,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;QAC1C,MAAM,CAAC,GAAG,oBAAoB,EAAE,CAAA;QAChC,MAAM,CAAC,GAAG,oBAAoB,EAAE,CAAA;QAChC,MAAM,CAAC,GAAG,oBAAoB,EAAE,CAAA;QAChC,MAAM,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACzC,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE;IACrC,EAAE,CAAC,yEAAyE,EAAE,KAAK,IAAI,EAAE;QACvF,yFAAyF;QACzF,4DAA4D;QAC5D,MAAM,QAAQ,GAAG,6CAA6C,CAAA;QAC9D,MAAM,SAAS,GAAG,MAAM,qBAAqB,CAAC,QAAQ,CAAC,CAAA;QACvD,MAAM,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,6CAA6C,CAAC,CAAA;IACvE,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;QACtD,MAAM,SAAS,GAAG,MAAM,qBAAqB,CAAC,qCAAqC,CAAC,CAAA;QACpF,MAAM,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAA;QAC7C,MAAM,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAA;IACtC,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,QAAQ,CAAC,oBAAoB,EAAE,GAAG,EAAE;IAClC,EAAE,CAAC,mCAAmC,EAAE,GAAG,EAAE;QAC3C,MAAM,CAAC,GAAG,kBAAkB,EAAE,CAAA;QAC9B,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAA;QACrC,6CAA6C;QAC7C,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;IAC3B,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;QAC1C,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,EAAE,GAAG,EAAE,CAAC,kBAAkB,EAAE,CAAC,CAAC,CAAA;QAC3E,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;IAC3B,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,2EAA2E;AAE3E,QAAQ,CAAC,6BAA6B,EAAE,GAAG,EAAE;IAC3C,EAAE,CAAC,iDAAiD,EAAE,KAAK,IAAI,EAAE;QAC/D,MAAM,QAAQ,GAAG,oBAAoB,EAAE,CAAA;QACvC,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC7E,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC,KAAK,EAAE,WAAW,CAAC,CAAA;QACrD,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QACvC,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QAC3C,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;QACxC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,aAAa,EAAE,CAAA;IACvC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,mCAAmC,EAAE,KAAK,IAAI,EAAE;QACjD,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAA;QAClC,MAAM,KAAK,GAAG,MAAM,aAAa,CAC/B,QAAQ,EACR,oBAAoB,EAAE,EACtB,QAAQ,EACR,WAAW,EACX,KAAK,CACN,CAAA;QACD,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC,KAAK,EAAE,WAAW,CAAC,CAAA;QACrD,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IACnC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,sDAAsD,EAAE,KAAK,IAAI,EAAE;QACpE,MAAM,QAAQ,GAAG,oBAAoB,EAAE,CAAA;QACvC,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC7E,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC,KAAK,EAAE,WAAW,CAAC,CAAA;QACrD,2EAA2E;QAC3E,mCAAmC;QACnC,MAAM,CAAE,OAA8C,CAAC,GAAG,CAAC,CAAC,aAAa,EAAE,CAAA;QAC3E,MAAM,CAAE,OAA8C,CAAC,GAAG,CAAC,CAAC,aAAa,EAAE,CAAA;QAC3E,MAAM,CAAE,OAA8C,CAAC,GAAG,CAAC,CAAC,aAAa,EAAE,CAAA;IAC7E,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;QAC9D,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,MAAM,CAAC,WAAW,CAAC,KAAK,EAAE,2CAA2C,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,CAAA;IACjG,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,0BAA0B,EAAE,KAAK,IAAI,EAAE;QACxC,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,mDAAmD;QACnD,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QAC9B,KAAK,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC,OAAO,CAAC,eAAe,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAA;QAC7E,MAAM,QAAQ,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAA;QAChC,MAAM,MAAM,CAAC,WAAW,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,CAAA;IACpE,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,qEAAqE,EAAE,KAAK,IAAI,EAAE;QACnF,gEAAgE;QAChE,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,WAAW,CAAC,CAAA;QACjD,MAAM,IAAI,GAAG,MAAM,IAAI,IAAI,CAAC,OAAO,CAAC;YAClC,QAAQ,EAAE,QAAQ;YAClB,YAAY,EAAE,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5B,QAAQ,EAAE,GAAG;SACd,CAAC;aACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;aACpC,WAAW,EAAE;aACb,iBAAiB,CAAC,KAAK,CAAC;aACxB,SAAS,CAAC,iBAAiB,CAAC;aAC5B,IAAI,CAAC,GAAG,CAAC,CAAA;QACZ,MAAM,MAAM,CAAC,WAAW,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,CAAA;IAChE,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,+CAA+C,EAAE,KAAK,IAAI,EAAE;QAC7D,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,WAAW,CAAC,CAAA;QACjD,MAAM,SAAS,GAAG,MAAM,IAAI,IAAI,CAAC,OAAO,CAAC;YACvC,YAAY,EAAE,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5B,QAAQ,EAAE,GAAG;SACd,CAAC;aACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;aACpC,WAAW,EAAE;aACb,iBAAiB,CAAC,KAAK,CAAC;aACxB,SAAS,CAAC,aAAa,CAAC;aACxB,IAAI,CAAC,GAAG,CAAC,CAAA;QACZ,MAAM,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAA;IAC3F,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;QACjE,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,WAAW,CAAC,CAAA;QACjD,MAAM,SAAS,GAAG,MAAM,IAAI,IAAI,CAAC,OAAO,CAAC;YACvC,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,GAAG;SACd,CAAC;aACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;aACpC,WAAW,EAAE;aACb,iBAAiB,CAAC,KAAK,CAAC;aACxB,SAAS,CAAC,aAAa,CAAC;aACxB,IAAI,CAAC,GAAG,CAAC,CAAA;QACZ,MAAM,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAA;IAC3F,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;QAC3D,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,WAAW,CAAC,CAAA;QACjD,MAAM,SAAS,GAAG,MAAM,IAAI,IAAI,CAAC,OAAO,CAAC;YACvC,QAAQ,EAAE,QAAQ;YAClB,YAAY,EAAE,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5B,QAAQ,EAAE,GAAG;YACb,KAAK,EAAE,KAAK;SACb,CAAC;aACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;aACpC,WAAW,EAAE;aACb,iBAAiB,CAAC,KAAK,CAAC;aACxB,SAAS,CAAC,aAAa,CAAC;aACxB,IAAI,CAAC,GAAG,CAAC,CAAA;QACZ,MAAM,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAA;IAC3F,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,2EAA2E;AAE3E,QAAQ,CAAC,qBAAqB,EAAE,GAAG,EAAE;IACnC,EAAE,CAAC,gDAAgD,EAAE,GAAG,EAAE;QACxD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,mBAAmB,CAAC,QAAQ,EAAE,eAAe,EAAE,WAAW,EAAE,aAAa,CAAC,CAAC,CAAA;QAC/F,MAAM,CAAC,GAAG,CAAC,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,8CAA8C,CAAC,CAAA;QACtF,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QAC1D,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAA;QACxE,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,CAAA;QAC9E,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;QACvD,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAA;QAClE,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QAClE,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAA;IAC3D,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;QACnD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,mBAAmB,CAAC,QAAQ,EAAE,eAAe,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAA;QAC7E,MAAM,CAAC,GAAG,CAAC,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,0CAA0C,CAAC,CAAA;IACpF,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAYF,SAAS,YAAY,CACnB,UAGI,EAAE;IAEN,MAAM,KAAK,GAAe,OAAO,CAAC,KAAK,IAAI,EAAE,CAAA;IAC7C,MAAM,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,EAAE,CAAA;IACjD,MAAM,QAAQ,GAA2D,EAAE,CAAA;IAE3E,OAAO;QACL,KAAK;QACL,aAAa;QACb,QAAQ;QACR,IAAI,EAAE;YACJ,SAAS,EAAE,EAAE,CAAC,EAAE,CACd,KAAK,EAAE,EAAE,KAAK,EAA0D,EAAE,EAAE;gBAC1E,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,WAAW,EAAE,CAAA;gBAC/C,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,EAAE,KAAK,MAAM,CAAC,IAAI,IAAI,CAAA;YACpE,CAAC,CACF;YACD,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC,KAAK,EAAE,EAAE,IAAI,EAAkC,EAAE,EAAE;gBAC/D,MAAM,CAAC,GAAa,EAAE,EAAE,EAAE,KAAK,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,EAAE,GAAG,IAAI,EAAE,CAAA;gBAC5D,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;gBACb,OAAO,CAAC,CAAA;YACV,CAAC,CAAC;SACH;QACD,YAAY,EAAE;YACZ,UAAU,EAAE,EAAE,CAAC,EAAE,CACf,KAAK,EAAE,EACL,KAAK,GAGN,EAAE,EAAE;gBACH,MAAM,CAAC,GAAG,KAAK,CAAC,0BAA0B,CAAA;gBAC1C,MAAM,GAAG,GAAG,aAAa,CAAC,IAAI,CAC5B,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,iBAAiB,KAAK,CAAC,CAAC,iBAAiB,CAChF,CAAA;gBACD,IAAI,CAAC,GAAG;oBAAE,OAAO,IAAI,CAAA;gBACrB,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,GAAG,CAAC,MAAM,CAAC,IAAI,IAAI,CAAA;gBAC3D,OAAO,EAAE,GAAG,GAAG,EAAE,IAAI,EAAE,CAAA;YACzB,CAAC,CACF;YACD,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC,KAAK,EAAE,EAAE,KAAK,EAAE,MAAM,EAAO,EAAE,EAAE;gBAC7C,MAAM,CAAC,GAAG,KAAK,CAAC,0BAA0B,CAAA;gBAC1C,MAAM,QAAQ,GAAG,aAAa,CAAC,IAAI,CACjC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,iBAAiB,KAAK,CAAC,CAAC,iBAAiB,CAChF,CAAA;gBACD,IAAI,QAAQ;oBAAE,OAAO,QAAQ,CAAA;gBAC7B,aAAa,CAAC,IAAI,CAAC;oBACjB,QAAQ,EAAE,CAAC,CAAC,QAAQ;oBACpB,iBAAiB,EAAE,CAAC,CAAC,iBAAiB;oBACtC,MAAM,EAAE,MAAM,CAAC,MAAM;iBACtB,CAAC,CAAA;gBACF,OAAO,aAAa,CAAC,aAAa,CAAC,MAAM,GAAG,CAAC,CAAC,CAAA;YAChD,CAAC,CAAC;SACH;QACD,OAAO,EAAE;YACP,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC,KAAK,EAAE,EAAE,IAAI,EAAiD,EAAE,EAAE;gBAC9E,MAAM,CAAC,GAAG,EAAE,EAAE,EAAE,KAAK,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,EAAE,GAAG,IAAI,EAAE,CAAA;gBACrD,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;gBAChB,OAAO,CAAC,CAAA;YACV,CAAC,CAAC;SACH;KACF,CAAA;AACH,CAAC;AAED,QAAQ,CAAC,qBAAqB,EAAE,GAAG,EAAE;IACnC,MAAM,SAAS,GAAG,EAAE,MAAM,EAAE,eAAe,EAAE,CAAA;IAC7C,MAAM,aAAa,GAAG,UAAU,CAAC,KAAK,CAAA;IACtC,MAAM,qBAAqB,GAAG,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAA;IAE5D,UAAU,CAAC,GAAG,EAAE;QACd,qEAAqE;QACrE,OAAO,CAAC,GAAG,CAAC,kBAAkB,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAA;IACjD,CAAC,CAAC,CAAA;IAEF,SAAS,CAAC,GAAG,EAAE;QACb,UAAU,CAAC,KAAK,GAAG,aAAa,CAAA;QAChC,IAAI,qBAAqB,KAAK,SAAS,EAAE,CAAC;YACxC,OAAO,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAA;QACvC,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,kBAAkB,GAAG,qBAAqB,CAAA;QACxD,CAAC;QACD,EAAE,CAAC,eAAe,EAAE,CAAA;IACtB,CAAC,CAAC,CAAA;IAEF,SAAS,qBAAqB,CAAC,IAG9B;QACC,UAAU,CAAC,KAAK,GAAG,EAAE,CAAC,EAAE,CAAC,KAAK,EAAE,KAA6B,EAAE,EAAE;YAC/D,MAAM,GAAG,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAE,KAAiB,CAAC,GAAG,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAA;YAC5F,IAAI,GAAG,CAAC,QAAQ,CAAC,6BAA6B,CAAC,EAAE,CAAC;gBAChD,OAAO,IAAI,QAAQ,CACjB,IAAI,CAAC,SAAS,CAAC,EAAE,YAAY,EAAE,IAAI,CAAC,WAAW,IAAI,YAAY,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC,EACxF,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,EAAE,CACjE,CAAA;YACH,CAAC;YACD,IAAI,GAAG,CAAC,QAAQ,CAAC,mCAAmC,CAAC,EAAE,CAAC;gBACtD,OAAO,IAAI,QAAQ,CACjB,IAAI,CAAC,SAAS,CAAC;oBACb,GAAG,EAAE,IAAI,CAAC,OAAO,CAAC,EAAE;oBACpB,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,KAAK;oBACzB,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI;iBACxB,CAAC,EACF,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,EAAE,CACjE,CAAA;YACH,CAAC;YACD,MAAM,IAAI,KAAK,CAAC,6BAA6B,GAAG,EAAE,CAAC,CAAA;QACrD,CAAC,CAAiB,CAAA;IACpB,CAAC;IAED,EAAE,CAAC,iEAAiE,EAAE,KAAK,IAAI,EAAE;QAC/E,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,EAAE,CAAA;QACzB,MAAM,MAAM,CACV,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,CAC3E,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;IACxC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,iEAAiE,EAAE,KAAK,IAAI,EAAE;QAC/E,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAA;QAClC,MAAM,KAAK,GAAG,MAAM,aAAa,CAC/B,QAAQ,EACR,oBAAoB,EAAE,EACtB,SAAS,EACT,WAAW,EACX,KAAK,CACN,CAAA;QACD,MAAM,EAAE,GAAG,YAAY,EAAE,CAAA;QACzB,MAAM,MAAM,CACV,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,EAAE;YACzE,aAAa,EAAE,mBAAmB;SACnC,CAAC,CACH,CAAC,OAAO,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAA;IACtC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,iEAAiE,EAAE,KAAK,IAAI,EAAE;QAC/E,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAA;QAClC,MAAM,KAAK,GAAG,MAAM,aAAa,CAC/B,QAAQ,EACR,oBAAoB,EAAE,EACtB,SAAS,EACT,WAAW,EACX,KAAK,CACN,CAAA;QACD,MAAM,EAAE,GAAG,YAAY,EAAE,CAAA;QACzB,MAAM,MAAM,CACV,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,EAAE;YACzE,aAAa,EAAE,IAAI;SACpB,CAAC,CACH,CAAC,OAAO,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAA;IACtC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;QAC3D,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,EAAE,CAAA;QACzB,MAAM,MAAM,CACV,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,CAC3E,CAAC,OAAO,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAA;IACrC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,kDAAkD,EAAE,KAAK,IAAI,EAAE;QAChE,qBAAqB,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,CAAC,CAAA;QAC5E,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,EAAE,CAAA;QACzB,MAAM,MAAM,CACV,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,CAC3E,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,6DAA6D,EAAE,KAAK,IAAI,EAAE;QAC3E,qBAAqB,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,iBAAiB,EAAE,IAAI,EAAE,UAAU,EAAE,EAAE,CAAC,CAAA;QAC7F,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,EAAE,CAAA;QACzB,MAAM,MAAM,CACV,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,CAC3E,CAAC,OAAO,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAA;QACrC,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAA;IAC/C,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,yEAAyE,EAAE,KAAK,IAAI,EAAE;QACvF,qBAAqB,CAAC;YACpB,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,iBAAiB,EAAE,IAAI,EAAE,UAAU,EAAE;SACnE,CAAC,CAAA;QACF,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,CAAC;YACtB,KAAK,EAAE;gBACL;oBACE,EAAE,EAAE,YAAY;oBAChB,KAAK,EAAE,iBAAiB;oBACxB,IAAI,EAAE,UAAU;oBAChB,IAAI,EAAE,QAAQ;oBACd,YAAY,EAAE,uBAAuB;iBACtC;aACF;SACF,CAAC,CAAA;QACF,MAAM,MAAM,CACV,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,CAC3E,CAAC,OAAO,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAA;IACrC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,6EAA6E,EAAE,KAAK,IAAI,EAAE;QAC3F,qBAAqB,CAAC;YACpB,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,mBAAmB,EAAE,IAAI,EAAE,YAAY,EAAE;SACvE,CAAC,CAAA;QACF,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,CAAC;YACtB,KAAK,EAAE;gBACL;oBACE,EAAE,EAAE,cAAc;oBAClB,KAAK,EAAE,mBAAmB;oBAC1B,IAAI,EAAE,YAAY;oBAClB,IAAI,EAAE,QAAQ;oBACd,YAAY,EAAE,IAAI;iBACnB;aACF;SACF,CAAC,CAAA;QACF,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,CAAA;QAC/F,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAA;QAC3C,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAA;QAC7C,MAAM,CAAC,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAE,CAAA;IAClD,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,0EAA0E,EAAE,KAAK,IAAI,EAAE;QACxF,qBAAqB,CAAC;YACpB,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,mBAAmB,EAAE,IAAI,EAAE,YAAY,EAAE;SACvE,CAAC,CAAA;QACF,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,EAAE,CAAA;QACzB,MAAM,WAAW,GAAG,EAAE,CAAC,EAAE,EAAE,CAAA;QAC3B,MAAM,MAAM,GAAG,MAAM,mBAAmB,CACtC,QAAQ,EACR,QAAQ,EACR,KAAK,EACL,SAAS,EACT,WAAW,EACX,EAAE,EACF,EAAE,eAAe,EAAE,IAAI,EAAE,WAAW,EAAE,CACvC,CAAA;QACD,MAAM,CAAC,WAAW,CAAC,CAAC,oBAAoB,EAAE,CAAA;QAC1C,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAE,CAAA;QAC7C,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAE,CAAC,CAAC,CAAE,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,QAAQ,EAAE,CAAA;QACtE,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAA;QACnD,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;IACzC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,8CAA8C,EAAE,KAAK,IAAI,EAAE;QAC5D,qBAAqB,CAAC;YACpB,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,kBAAkB,EAAE,IAAI,EAAE,SAAS,EAAE;SACnE,CAAC,CAAA;QACF,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,EAAE,CAAA;QACzB,MAAM,WAAW,GAAG,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE;YAC7B,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAA;QAC7C,CAAC,CAAC,CAAA;QACF,MAAM,MAAM,CACV,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,EAAE;YACzE,eAAe,EAAE,IAAI;YACrB,WAAW;SACZ,CAAC,CACH,CAAC,OAAO,CAAC,OAAO,CAAC,oBAAoB,CAAC,CAAA;QACvC,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAA;IAC/C,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,uEAAuE,EAAE,KAAK,IAAI,EAAE;QACrF,qBAAqB,CAAC;YACpB,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,iBAAiB,EAAE,IAAI,EAAE,aAAa,EAAE;SACtE,CAAC,CAAA;QACF,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,CAAC;YACtB,KAAK,EAAE;gBACL;oBACE,EAAE,EAAE,UAAU;oBACd,KAAK,EAAE,iBAAiB,EAAE,qCAAqC;oBAC/D,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,OAAO;oBACb,YAAY,EAAE,mBAAmB;iBAClC;aACF;YACD,aAAa,EAAE,CAAC,EAAE,QAAQ,EAAE,QAAQ,EAAE,iBAAiB,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;SACtF,CAAC,CAAA;QACF,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,CAAA;QAC/F,iEAAiE;QACjE,wDAAwD;QACxD,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAA;QACvC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IACxC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,kDAAkD,EAAE,KAAK,IAAI,EAAE;QAChE,qBAAqB,CAAC;YACpB,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,qBAAqB,EAAE,IAAI,EAAE,cAAc,EAAE;SAC3E,CAAC,CAAA;QACF,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,SAAS,EAAE,WAAW,CAAC,CAAA;QAC3F,MAAM,EAAE,GAAG,YAAY,CAAC;YACtB,KAAK,EAAE;gBACL;oBACE,EAAE,EAAE,QAAQ;oBACZ,KAAK,EAAE,qBAAqB;oBAC5B,IAAI,EAAE,SAAS;oBACf,IAAI,EAAE,QAAQ;oBACd,YAAY,EAAE,IAAI;iBACnB;aACF;SACF,CAAC,CAAA;QACF,MAAM,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,EAAE,CAAC,CAAA;QAChF,MAAM,CAAC,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAE,CAAA;QAChD,MAAM,IAAI,GAAG,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAE,CAAC,CAAC,CAAE,CAAA;QACjD,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QACvC,0DAA0D;QAC1D,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAA;IACnE,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA"}

package/dist/__tests__/auth/reset.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=reset.test.d.ts.map

package/dist/__tests__/auth/reset.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"reset.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/auth/reset.test.ts"],"names":[],"mappings":""}