@antseed/provider-core 0.1.0

package/README.md

@@ -0,0 +1,86 @@
+# @antseed/provider-core
+
+Shared infrastructure for building Antseed provider plugins. Handles HTTP relaying, authentication, token management, and model validation so plugin authors can focus on provider-specific logic.
+
+## Installation
+
+```bash
+pnpm add @antseed/provider-core
+```
+
+Peer dependency: `@antseed/node >= 0.1.0`
+
+## Key Exports
+
+### BaseProvider
+
+Implements the `Provider` interface with built-in HTTP relay support. Most provider plugins use this as their foundation.
+
+```ts
+import { BaseProvider, StaticTokenProvider } from '@antseed/provider-core';
+
+const provider = new BaseProvider({
+  name: 'my-provider',
+  models: ['model-a', 'model-b'],
+  pricing: { defaults: { inputUsdPerMillion: 10, outputUsdPerMillion: 10 } },
+  relay: {
+    baseUrl: 'https://api.example.com',
+    authHeaderName: 'Authorization',
+    authHeaderValue: '',
+    tokenProvider: new StaticTokenProvider('Bearer sk-...'),
+    maxConcurrency: 10,
+    allowedModels: ['model-a', 'model-b'],
+  },
+});
+```
+
+### Token Providers
+
+- **`StaticTokenProvider`** -- Wraps a static API key with no refresh logic.
+- **`OAuthTokenProvider`** -- Manages OAuth access/refresh token pairs with automatic renewal.
+- **`createTokenProvider()`** -- Factory that creates the right provider based on auth type.
+
+### Utilities
+
+- **`swapAuthHeader()`** -- Injects/replaces authentication headers on outgoing requests.
+- **`validateRequestModel()`** -- Validates request body `model` field against an allow-list.
+- **`KNOWN_AUTH_HEADERS`** -- Standard auth header names (x-api-key, Authorization, etc.).
+
+### HttpRelay
+
+Low-level HTTP relay with concurrency control, SSE streaming support, and model validation. Used internally by `BaseProvider`.
+
+## Usage in Plugins
+
+```ts
+import type { AntseedProviderPlugin } from '@antseed/node';
+import { BaseProvider, StaticTokenProvider } from '@antseed/provider-core';
+
+const plugin: AntseedProviderPlugin = {
+  name: 'my-provider',
+  displayName: 'My Provider',
+  version: '0.1.0',
+  type: 'provider',
+  description: 'My custom provider',
+  configSchema: [
+    { key: 'API_KEY', label: 'API Key', type: 'secret', required: true, description: 'API key' },
+  ],
+  createProvider(config) {
+    return new BaseProvider({
+      name: 'my-provider',
+      models: ['default-model'],
+      pricing: { defaults: { inputUsdPerMillion: 10, outputUsdPerMillion: 10 } },
+      relay: {
+        baseUrl: 'https://api.example.com',
+        authHeaderName: 'Authorization',
+        authHeaderValue: '',
+        tokenProvider: new StaticTokenProvider(`Bearer ${config['API_KEY']}`),
+        maxConcurrency: 10,
+        allowedModels: ['default-model'],
+      },
+    });
+  },
+};
+
+export default plugin;
+```

package/dist/auth-swap.d.ts

@@ -0,0 +1,19 @@
+import type { SerializedHttpRequest } from '@antseed/node';
+/** Set of all known auth header names (lowercase). */
+export declare const KNOWN_AUTH_HEADERS: Set<string>;
+/**
+ * Strips all known auth headers and injects the seller's auth.
+ * Returns a NEW object (no mutation of the original).
+ */
+export declare function swapAuthHeader(request: SerializedHttpRequest, config: {
+    authHeaderName: string;
+    authHeaderValue: string;
+    extraHeaders?: Record<string, string>;
+}): SerializedHttpRequest;
+/**
+ * Validate request against allowed models.
+ * Parses JSON body and enforces strict top-level `"model"` allow-list.
+ * Returns null if ok, error string if rejected.
+ */
+export declare function validateRequestModel(request: SerializedHttpRequest, allowedModels: string[]): string | null;
+//# sourceMappingURL=auth-swap.d.ts.map

package/dist/auth-swap.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-swap.d.ts","sourceRoot":"","sources":["../src/auth-swap.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAE3D,sDAAsD;AACtD,eAAO,MAAM,kBAAkB,EAAE,GAAG,CAAC,MAAM,CAEzC,CAAC;AAEH;;;GAGG;AACH,wBAAgB,cAAc,CAC5B,OAAO,EAAE,qBAAqB,EAC9B,MAAM,EAAE;IAAE,cAAc,EAAE,MAAM,CAAC;IAAC,eAAe,EAAE,MAAM,CAAC;IAAC,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CAAE,GACjG,qBAAqB,CAqCvB;AAED;;;;GAIG;AACH,wBAAgB,oBAAoB,CAClC,OAAO,EAAE,qBAAqB,EAC9B,aAAa,EAAE,MAAM,EAAE,GACtB,MAAM,GAAG,IAAI,CA2Bf"}

package/dist/auth-swap.js

@@ -0,0 +1,73 @@
+/** Set of all known auth header names (lowercase). */
+export const KNOWN_AUTH_HEADERS = new Set([
+    'authorization', 'x-api-key', 'x-goog-api-key',
+]);
+/**
+ * Strips all known auth headers and injects the seller's auth.
+ * Returns a NEW object (no mutation of the original).
+ */
+export function swapAuthHeader(request, config) {
+    const newHeaders = {};
+    for (const [key, value] of Object.entries(request.headers)) {
+        if (!KNOWN_AUTH_HEADERS.has(key.toLowerCase())) {
+            newHeaders[key] = value;
+        }
+    }
+    newHeaders[config.authHeaderName] = config.authHeaderValue;
+    // Inject any extra headers (e.g. anthropic-beta for OAuth).
+    // For anthropic-beta, merge with existing values (comma-separated)
+    // so the buyer's beta flags (e.g. context-management) are preserved.
+    if (config.extraHeaders) {
+        for (const [key, value] of Object.entries(config.extraHeaders)) {
+            const lower = key.toLowerCase();
+            if (lower === 'anthropic-beta' && newHeaders[key]) {
+                // Merge: deduplicate comma-separated beta flags
+                const existing = new Set(newHeaders[key].split(',').map((s) => s.trim()));
+                for (const flag of value.split(',').map((s) => s.trim())) {
+                    existing.add(flag);
+                }
+                newHeaders[key] = [...existing].join(',');
+            }
+            else {
+                newHeaders[key] = value;
+            }
+        }
+    }
+    return {
+        requestId: request.requestId,
+        method: request.method,
+        path: request.path,
+        headers: newHeaders,
+        body: request.body,
+    };
+}
+/**
+ * Validate request against allowed models.
+ * Parses JSON body and enforces strict top-level `"model"` allow-list.
+ * Returns null if ok, error string if rejected.
+ */
+export function validateRequestModel(request, allowedModels) {
+    // If allowedModels is empty, allow everything
+    if (allowedModels.length === 0) {
+        return null;
+    }
+    let payload;
+    try {
+        payload = JSON.parse(new TextDecoder().decode(request.body));
+    }
+    catch {
+        return "Invalid JSON request body";
+    }
+    if (!payload || typeof payload !== "object" || Array.isArray(payload)) {
+        return 'Request body must be a JSON object containing a "model" field';
+    }
+    const model = payload["model"];
+    if (typeof model !== "string" || model.trim() === "") {
+        return 'Request is missing a valid "model" field';
+    }
+    if (!allowedModels.includes(model)) {
+        return `Model "${model}" is not in the allowed list`;
+    }
+    return null;
+}
+//# sourceMappingURL=auth-swap.js.map

package/dist/auth-swap.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-swap.js","sourceRoot":"","sources":["../src/auth-swap.ts"],"names":[],"mappings":"AAEA,sDAAsD;AACtD,MAAM,CAAC,MAAM,kBAAkB,GAAgB,IAAI,GAAG,CAAC;IACrD,eAAe,EAAE,WAAW,EAAE,gBAAgB;CAC/C,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,UAAU,cAAc,CAC5B,OAA8B,EAC9B,MAAkG;IAElG,MAAM,UAAU,GAA2B,EAAE,CAAC;IAE9C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3D,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YAC/C,UAAU,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QAC1B,CAAC;IACH,CAAC;IAED,UAAU,CAAC,MAAM,CAAC,cAAc,CAAC,GAAG,MAAM,CAAC,eAAe,CAAC;IAE3D,4DAA4D;IAC5D,mEAAmE;IACnE,qEAAqE;IACrE,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;QACxB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,EAAE,CAAC;YAC/D,MAAM,KAAK,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;YAChC,IAAI,KAAK,KAAK,gBAAgB,IAAI,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBAClD,gDAAgD;gBAChD,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;gBAC3E,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,CAAC;oBACzD,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBACrB,CAAC;gBACD,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC5C,CAAC;iBAAM,CAAC;gBACN,UAAU,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;YAC1B,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO;QACL,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,MAAM,EAAE,OAAO,CAAC,MAAM;QACtB,IAAI,EAAE,OAAO,CAAC,IAAI;QAClB,OAAO,EAAE,UAAU;QACnB,IAAI,EAAE,OAAO,CAAC,IAAI;KACnB,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,oBAAoB,CAClC,OAA8B,EAC9B,aAAuB;IAEvB,8CAA8C;IAC9C,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC/B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,OAAgB,CAAC;IACrB,IAAI,CAAC;QACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAY,CAAC;IAC1E,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,2BAA2B,CAAC;IACrC,CAAC;IAED,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QACtE,OAAO,+DAA+D,CAAC;IACzE,CAAC;IAED,MAAM,KAAK,GAAI,OAAmC,CAAC,OAAO,CAAC,CAAC;IAC5D,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;QACrD,OAAO,0CAA0C,CAAC;IACpD,CAAC;IAED,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACnC,OAAO,UAAU,KAAK,8BAA8B,CAAC;IACvD,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/base-provider.d.ts

@@ -0,0 +1,30 @@
+import type { Provider, SerializedHttpRequest, SerializedHttpResponse } from '@antseed/node';
+import { type RelayConfig } from './http-relay.js';
+export interface BaseProviderConfig {
+    name: string;
+    models: string[];
+    pricing: Provider['pricing'];
+    relay: RelayConfig;
+}
+/**
+ * Convenience base class that wires HttpRelay to the Provider interface.
+ * Pattern adapted from provider-anthropic's AnthropicProvider.
+ */
+export declare class BaseProvider implements Provider {
+    readonly name: string;
+    readonly models: string[];
+    readonly pricing: Provider['pricing'];
+    readonly maxConcurrency: number;
+    private readonly _relay;
+    private _activeCount;
+    private readonly _pending;
+    constructor(config: BaseProviderConfig);
+    private _resolvePending;
+    init(): Promise<void>;
+    handleRequest(req: SerializedHttpRequest): Promise<SerializedHttpResponse>;
+    getCapacity(): {
+        current: number;
+        max: number;
+    };
+}
+//# sourceMappingURL=base-provider.d.ts.map

package/dist/base-provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base-provider.d.ts","sourceRoot":"","sources":["../src/base-provider.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,qBAAqB,EAAE,sBAAsB,EAA+B,MAAM,eAAe,CAAC;AAC1H,OAAO,EAAa,KAAK,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAE9D,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,OAAO,EAAE,QAAQ,CAAC,SAAS,CAAC,CAAC;IAC7B,KAAK,EAAE,WAAW,CAAC;CACpB;AAED;;;GAGG;AACH,qBAAa,YAAa,YAAW,QAAQ;IAC3C,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC;IAC1B,QAAQ,CAAC,OAAO,EAAE,QAAQ,CAAC,SAAS,CAAC,CAAC;IACtC,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAC;IAEhC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAY;IACnC,OAAO,CAAC,YAAY,CAAK;IAEzB,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAGrB;gBAEQ,MAAM,EAAE,kBAAkB;IAgBtC,OAAO,CAAC,eAAe;IAQjB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAMrB,aAAa,CAAC,GAAG,EAAE,qBAAqB,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAmBhF,WAAW,IAAI;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE;CAMhD"}

package/dist/base-provider.js

@@ -0,0 +1,65 @@
+import { HttpRelay } from './http-relay.js';
+/**
+ * Convenience base class that wires HttpRelay to the Provider interface.
+ * Pattern adapted from provider-anthropic's AnthropicProvider.
+ */
+export class BaseProvider {
+    name;
+    models;
+    pricing;
+    maxConcurrency;
+    _relay;
+    _activeCount = 0;
+    _pending = new Map();
+    constructor(config) {
+        this.name = config.name;
+        this.models = config.models;
+        this.pricing = config.pricing;
+        this.maxConcurrency = config.relay.maxConcurrency;
+        this._relay = new HttpRelay(config.relay, {
+            onResponse: (response) => {
+                this._resolvePending(response.requestId, response);
+            },
+            onResponseChunk: (_chunk) => {
+                // Chunks are accumulated by HttpRelay into a complete response
+            },
+        });
+    }
+    _resolvePending(requestId, response) {
+        const entry = this._pending.get(requestId);
+        if (entry) {
+            this._pending.delete(requestId);
+            entry.resolve(response);
+        }
+    }
+    async init() {
+        if (this._relay['_config'].tokenProvider) {
+            await this._relay['_config'].tokenProvider.getToken();
+        }
+    }
+    async handleRequest(req) {
+        this._activeCount++;
+        try {
+            const responsePromise = new Promise((resolve, reject) => {
+                this._pending.set(req.requestId, { resolve, reject });
+            });
+            // Fire the relay (it calls onResponse when done)
+            await this._relay.handleRequest(req);
+            return await responsePromise;
+        }
+        catch (err) {
+            this._pending.delete(req.requestId);
+            throw err;
+        }
+        finally {
+            this._activeCount--;
+        }
+    }
+    getCapacity() {
+        return {
+            current: this._activeCount,
+            max: this.maxConcurrency,
+        };
+    }
+}
+//# sourceMappingURL=base-provider.js.map

package/dist/base-provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"base-provider.js","sourceRoot":"","sources":["../src/base-provider.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,SAAS,EAAoB,MAAM,iBAAiB,CAAC;AAS9D;;;GAGG;AACH,MAAM,OAAO,YAAY;IACd,IAAI,CAAS;IACb,MAAM,CAAW;IACjB,OAAO,CAAsB;IAC7B,cAAc,CAAS;IAEf,MAAM,CAAY;IAC3B,YAAY,GAAG,CAAC,CAAC;IAER,QAAQ,GAAG,IAAI,GAAG,EAGhC,CAAC;IAEJ,YAAY,MAA0B;QACpC,IAAI,CAAC,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC;QACxB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;QAC5B,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;QAC9B,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,cAAc,CAAC;QAElD,IAAI,CAAC,MAAM,GAAG,IAAI,SAAS,CAAC,MAAM,CAAC,KAAK,EAAE;YACxC,UAAU,EAAE,CAAC,QAAgC,EAAE,EAAE;gBAC/C,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;YACrD,CAAC;YACD,eAAe,EAAE,CAAC,MAAmC,EAAE,EAAE;gBACvD,+DAA+D;YACjE,CAAC;SACF,CAAC,CAAC;IACL,CAAC;IAEO,eAAe,CAAC,SAAiB,EAAE,QAAgC;QACzE,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC3C,IAAI,KAAK,EAAE,CAAC;YACV,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YAChC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IAED,KAAK,CAAC,IAAI;QACR,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,aAAa,EAAE,CAAC;YACzC,MAAM,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,aAAa,CAAC,QAAQ,EAAE,CAAC;QACxD,CAAC;IACH,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,GAA0B;QAC5C,IAAI,CAAC,YAAY,EAAE,CAAC;QACpB,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,IAAI,OAAO,CAAyB,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;gBAC9E,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;YACxD,CAAC,CAAC,CAAC;YAEH,iDAAiD;YACjD,MAAM,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC;YAErC,OAAO,MAAM,eAAe,CAAC;QAC/B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;YACpC,MAAM,GAAG,CAAC;QACZ,CAAC;gBAAS,CAAC;YACT,IAAI,CAAC,YAAY,EAAE,CAAC;QACtB,CAAC;IACH,CAAC;IAED,WAAW;QACT,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,YAAY;YAC1B,GAAG,EAAE,IAAI,CAAC,cAAc;SACzB,CAAC;IACJ,CAAC;CACF"}

package/dist/http-relay.d.ts

@@ -0,0 +1,26 @@
+import type { TokenProvider } from '@antseed/node';
+import type { SerializedHttpRequest, SerializedHttpResponse, SerializedHttpResponseChunk } from '@antseed/node';
+export interface RelayConfig {
+    baseUrl: string;
+    authHeaderName: string;
+    authHeaderValue: string;
+    tokenProvider?: TokenProvider;
+    extraHeaders?: Record<string, string>;
+    maxConcurrency: number;
+    allowedModels: string[];
+    timeoutMs?: number;
+}
+export interface RelayCallbacks {
+    onResponse: (response: SerializedHttpResponse) => void;
+    onResponseChunk?: (chunk: SerializedHttpResponseChunk) => void;
+}
+export declare class HttpRelay {
+    private readonly _config;
+    private readonly _callbacks;
+    private _activeCount;
+    constructor(config: RelayConfig, callbacks: RelayCallbacks);
+    getActiveCount(): number;
+    private _sendError;
+    handleRequest(request: SerializedHttpRequest): Promise<void>;
+}
+//# sourceMappingURL=http-relay.d.ts.map

package/dist/http-relay.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-relay.d.ts","sourceRoot":"","sources":["../src/http-relay.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AACnD,OAAO,KAAK,EAAE,qBAAqB,EAAE,sBAAsB,EAAE,2BAA2B,EAAE,MAAM,eAAe,CAAC;AAchH,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,MAAM,CAAC;IAChB,cAAc,EAAE,MAAM,CAAC;IACvB,eAAe,EAAE,MAAM,CAAC;IACxB,aAAa,CAAC,EAAE,aAAa,CAAC;IAC9B,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACtC,cAAc,EAAE,MAAM,CAAC;IACvB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,cAAc;IAC7B,UAAU,EAAE,CAAC,QAAQ,EAAE,sBAAsB,KAAK,IAAI,CAAC;IACvD,eAAe,CAAC,EAAE,CAAC,KAAK,EAAE,2BAA2B,KAAK,IAAI,CAAC;CAChE;AAED,qBAAa,SAAS;IACpB,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAc;IACtC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAiB;IAC5C,OAAO,CAAC,YAAY,CAAK;gBAEb,MAAM,EAAE,WAAW,EAAE,SAAS,EAAE,cAAc;IAK1D,cAAc,IAAI,MAAM;IAIxB,OAAO,CAAC,UAAU;IASZ,aAAa,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,IAAI,CAAC;CAoInE"}

package/dist/http-relay.js

@@ -0,0 +1,153 @@
+import { swapAuthHeader, validateRequestModel } from './auth-swap.js';
+/** Hop-by-hop headers that must not be forwarded. */
+const HOP_BY_HOP_HEADERS = new Set([
+    'connection', 'keep-alive', 'proxy-authenticate', 'proxy-authorization',
+    'te', 'trailers', 'transfer-encoding', 'upgrade',
+]);
+/** Internal headers used only within Antseed routing. */
+const INTERNAL_HEADERS = new Set([
+    'x-antseed-provider',
+]);
+export class HttpRelay {
+    _config;
+    _callbacks;
+    _activeCount = 0;
+    constructor(config, callbacks) {
+        this._config = config;
+        this._callbacks = callbacks;
+    }
+    getActiveCount() {
+        return this._activeCount;
+    }
+    _sendError(requestId, statusCode, error) {
+        this._callbacks.onResponse({
+            requestId,
+            statusCode,
+            headers: { 'content-type': 'application/json' },
+            body: new TextEncoder().encode(JSON.stringify({ error })),
+        });
+    }
+    async handleRequest(request) {
+        // Validate model against allowedModels
+        const validationError = validateRequestModel(request, this._config.allowedModels);
+        if (validationError) {
+            this._sendError(request.requestId, 403, validationError);
+            return;
+        }
+        // Check concurrency
+        if (this._activeCount >= this._config.maxConcurrency) {
+            this._sendError(request.requestId, 429, 'Max concurrency reached');
+            return;
+        }
+        // Increment active count
+        this._activeCount++;
+        try {
+            // Resolve dynamic auth token if provider uses OAuth / keychain
+            let effectiveConfig = {
+                authHeaderName: this._config.authHeaderName,
+                authHeaderValue: this._config.authHeaderValue,
+                extraHeaders: this._config.extraHeaders,
+            };
+            if (this._config.tokenProvider) {
+                const freshToken = await this._config.tokenProvider.getToken();
+                // Preserve Bearer prefix for OAuth providers that use Authorization header
+                const isBearer = this._config.authHeaderName === 'authorization';
+                const headerValue = isBearer ? `Bearer ${freshToken}` : freshToken;
+                effectiveConfig = { ...effectiveConfig, authHeaderValue: headerValue };
+            }
+            // Swap auth headers
+            const swappedRequest = swapAuthHeader(request, effectiveConfig);
+            // Build upstream URL
+            const base = this._config.baseUrl.replace(/\/+$/, '');
+            const path = request.path.startsWith('/') ? request.path : `/${request.path}`;
+            const url = `${base}${path}`;
+            // Build fetch headers, stripping hop-by-hop
+            const fetchHeaders = {};
+            for (const [key, value] of Object.entries(swappedRequest.headers)) {
+                const lower = key.toLowerCase();
+                if (!HOP_BY_HOP_HEADERS.has(lower) && !INTERNAL_HEADERS.has(lower) && lower !== 'host' && lower !== 'content-length' && lower !== 'accept-encoding') {
+                    fetchHeaders[key] = value;
+                }
+            }
+            const timeoutMs = this._config.timeoutMs ?? 120_000;
+            const controller = new AbortController();
+            const timeout = setTimeout(() => controller.abort(), timeoutMs);
+            let fetchResponse;
+            try {
+                fetchResponse = await fetch(url, {
+                    method: swappedRequest.method,
+                    headers: fetchHeaders,
+                    body: swappedRequest.method !== 'GET' && swappedRequest.method !== 'HEAD'
+                        ? Buffer.from(swappedRequest.body)
+                        : undefined,
+                    signal: controller.signal,
+                });
+            }
+            finally {
+                clearTimeout(timeout);
+            }
+            const contentType = fetchResponse.headers.get('content-type') ?? '';
+            const isSSE = contentType.includes('text/event-stream');
+            // Build response headers, stripping hop-by-hop and encoding headers.
+            // Node.js fetch auto-decompresses gzip/br responses, so we must strip
+            // content-encoding to prevent the client from double-decompressing.
+            const responseHeaders = {};
+            fetchResponse.headers.forEach((value, key) => {
+                const lower = key.toLowerCase();
+                if (!HOP_BY_HOP_HEADERS.has(lower) && lower !== 'content-encoding' && lower !== 'content-length') {
+                    responseHeaders[lower] = value;
+                }
+            });
+            if (isSSE && fetchResponse.body) {
+                // Accumulate SSE body and send as a complete response so that
+                // upstream response headers (request-id, usage metadata, etc.)
+                // are preserved for the buyer.
+                const reader = fetchResponse.body.getReader();
+                const chunks = [];
+                try {
+                    while (true) {
+                        const { done, value } = await reader.read();
+                        if (done)
+                            break;
+                        chunks.push(value);
+                    }
+                }
+                catch (err) {
+                    chunks.push(new TextEncoder().encode(`event: error\ndata: ${err instanceof Error ? err.message : 'stream error'}\n\n`));
+                }
+                const totalLength = chunks.reduce((sum, c) => sum + c.length, 0);
+                const body = new Uint8Array(totalLength);
+                let offset = 0;
+                for (const c of chunks) {
+                    body.set(c, offset);
+                    offset += c.length;
+                }
+                this._callbacks.onResponse({
+                    requestId: request.requestId,
+                    statusCode: fetchResponse.status,
+                    headers: responseHeaders,
+                    body,
+                });
+            }
+            else {
+                // Complete response
+                const body = new Uint8Array(await fetchResponse.arrayBuffer());
+                this._callbacks.onResponse({
+                    requestId: request.requestId,
+                    statusCode: fetchResponse.status,
+                    headers: responseHeaders,
+                    body,
+                });
+            }
+        }
+        catch (err) {
+            const errMsg = err instanceof Error ? err.message : String(err);
+            const sanitized = errMsg.replace(/sk-ant-[a-zA-Z0-9_-]+/g, 'sk-***');
+            this._sendError(request.requestId, 502, `Upstream error: ${sanitized}`);
+        }
+        finally {
+            this._activeCount--;
+        }
+    }
+}
+//# sourceMappingURL=http-relay.js.map

package/dist/http-relay.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-relay.js","sourceRoot":"","sources":["../src/http-relay.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AAEtE,qDAAqD;AACrD,MAAM,kBAAkB,GAAG,IAAI,GAAG,CAAC;IACjC,YAAY,EAAE,YAAY,EAAE,oBAAoB,EAAE,qBAAqB;IACvE,IAAI,EAAE,UAAU,EAAE,mBAAmB,EAAE,SAAS;CACjD,CAAC,CAAC;AAEH,yDAAyD;AACzD,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC;IAC/B,oBAAoB;CACrB,CAAC,CAAC;AAkBH,MAAM,OAAO,SAAS;IACH,OAAO,CAAc;IACrB,UAAU,CAAiB;IACpC,YAAY,GAAG,CAAC,CAAC;IAEzB,YAAY,MAAmB,EAAE,SAAyB;QACxD,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,UAAU,GAAG,SAAS,CAAC;IAC9B,CAAC;IAED,cAAc;QACZ,OAAO,IAAI,CAAC,YAAY,CAAC;IAC3B,CAAC;IAEO,UAAU,CAAC,SAAiB,EAAE,UAAkB,EAAE,KAAa;QACrE,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC;YACzB,SAAS;YACT,UAAU;YACV,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;YAC/C,IAAI,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;SAC1D,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,OAA8B;QAChD,uCAAuC;QACvC,MAAM,eAAe,GAAG,oBAAoB,CAAC,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;QAClF,IAAI,eAAe,EAAE,CAAC;YACpB,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,EAAE,eAAe,CAAC,CAAC;YACzD,OAAO;QACT,CAAC;QAED,oBAAoB;QACpB,IAAI,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;YACrD,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,EAAE,yBAAyB,CAAC,CAAC;YACnE,OAAO;QACT,CAAC;QAED,yBAAyB;QACzB,IAAI,CAAC,YAAY,EAAE,CAAC;QAEpB,IAAI,CAAC;YACH,+DAA+D;YAC/D,IAAI,eAAe,GAA+F;gBAChH,cAAc,EAAE,IAAI,CAAC,OAAO,CAAC,cAAc;gBAC3C,eAAe,EAAE,IAAI,CAAC,OAAO,CAAC,eAAe;gBAC7C,YAAY,EAAE,IAAI,CAAC,OAAO,CAAC,YAAY;aACxC,CAAC;YACF,IAAI,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC;gBAC/B,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,QAAQ,EAAE,CAAC;gBAC/D,2EAA2E;gBAC3E,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,cAAc,KAAK,eAAe,CAAC;gBACjE,MAAM,WAAW,GAAG,QAAQ,CAAC,CAAC,CAAC,UAAU,UAAU,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC;gBACnE,eAAe,GAAG,EAAE,GAAG,eAAe,EAAE,eAAe,EAAE,WAAW,EAAE,CAAC;YACzE,CAAC;YAED,oBAAoB;YACpB,MAAM,cAAc,GAAG,cAAc,CAAC,OAAO,EAAE,eAAe,CAAC,CAAC;YAEhE,qBAAqB;YACrB,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;YACtD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;YAC9E,MAAM,GAAG,GAAG,GAAG,IAAI,GAAG,IAAI,EAAE,CAAC;YAE7B,4CAA4C;YAC5C,MAAM,YAAY,GAA2B,EAAE,CAAC;YAChD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,cAAc,CAAC,OAAO,CAAC,EAAE,CAAC;gBAClE,MAAM,KAAK,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;gBAChC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,KAAK,KAAK,MAAM,IAAI,KAAK,KAAK,gBAAgB,IAAI,KAAK,KAAK,iBAAiB,EAAE,CAAC;oBACpJ,YAAY,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;gBAC5B,CAAC;YACH,CAAC;YAED,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,IAAI,OAAO,CAAC;YACpD,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,SAAS,CAAC,CAAC;YAChE,IAAI,aAAuB,CAAC;YAC5B,IAAI,CAAC;gBACH,aAAa,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;oBAC/B,MAAM,EAAE,cAAc,CAAC,MAAM;oBAC7B,OAAO,EAAE,YAAY;oBACrB,IAAI,EAAE,cAAc,CAAC,MAAM,KAAK,KAAK,IAAI,cAAc,CAAC,MAAM,KAAK,MAAM;wBACvE,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC;wBAClC,CAAC,CAAC,SAAS;oBACb,MAAM,EAAE,UAAU,CAAC,MAAM;iBAC1B,CAAC,CAAC;YACL,CAAC;oBAAS,CAAC;gBACT,YAAY,CAAC,OAAO,CAAC,CAAC;YACxB,CAAC;YAED,MAAM,WAAW,GAAG,aAAa,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;YACpE,MAAM,KAAK,GAAG,WAAW,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;YAExD,qEAAqE;YACrE,sEAAsE;YACtE,oEAAoE;YACpE,MAAM,eAAe,GAA2B,EAAE,CAAC;YACnD,aAAa,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;gBAC3C,MAAM,KAAK,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;gBAChC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,KAAK,KAAK,kBAAkB,IAAI,KAAK,KAAK,gBAAgB,EAAE,CAAC;oBACjG,eAAe,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC;gBACjC,CAAC;YACH,CAAC,CAAC,CAAC;YAEH,IAAI,KAAK,IAAI,aAAa,CAAC,IAAI,EAAE,CAAC;gBAChC,8DAA8D;gBAC9D,+DAA+D;gBAC/D,+BAA+B;gBAC/B,MAAM,MAAM,GAAG,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;gBAC9C,MAAM,MAAM,GAAiB,EAAE,CAAC;gBAChC,IAAI,CAAC;oBACH,OAAO,IAAI,EAAE,CAAC;wBACZ,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;wBAC5C,IAAI,IAAI;4BAAE,MAAM;wBAChB,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;oBACrB,CAAC;gBACH,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,MAAM,CAAC,IAAI,CACT,IAAI,WAAW,EAAE,CAAC,MAAM,CACtB,uBAAuB,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,cAAc,MAAM,CACjF,CACF,CAAC;gBACJ,CAAC;gBAED,MAAM,WAAW,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;gBACjE,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,WAAW,CAAC,CAAC;gBACzC,IAAI,MAAM,GAAG,CAAC,CAAC;gBACf,KAAK,MAAM,CAAC,IAAI,MAAM,EAAE,CAAC;oBACvB,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;oBACpB,MAAM,IAAI,CAAC,CAAC,MAAM,CAAC;gBACrB,CAAC;gBAED,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC;oBACzB,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,UAAU,EAAE,aAAa,CAAC,MAAM;oBAChC,OAAO,EAAE,eAAe;oBACxB,IAAI;iBACL,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,oBAAoB;gBACpB,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,MAAM,aAAa,CAAC,WAAW,EAAE,CAAC,CAAC;gBAC/D,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC;oBACzB,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,UAAU,EAAE,aAAa,CAAC,MAAM;oBAChC,OAAO,EAAE,eAAe;oBACxB,IAAI;iBACL,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,MAAM,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YAChE,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,CAAC,wBAAwB,EAAE,QAAQ,CAAC,CAAC;YACrE,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,EAAE,mBAAmB,SAAS,EAAE,CAAC,CAAC;QAC1E,CAAC;gBAAS,CAAC;YACT,IAAI,CAAC,YAAY,EAAE,CAAC;QACtB,CAAC;IACH,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,6 @@
+export { HttpRelay, type RelayConfig, type RelayCallbacks } from './http-relay.js';
+export { swapAuthHeader, validateRequestModel, KNOWN_AUTH_HEADERS } from './auth-swap.js';
+export { StaticTokenProvider, OAuthTokenProvider, createTokenProvider, type AuthType } from './token-providers.js';
+export type { TokenProvider, TokenProviderState } from './token-providers.js';
+export { BaseProvider, type BaseProviderConfig } from './base-provider.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,KAAK,WAAW,EAAE,KAAK,cAAc,EAAE,MAAM,iBAAiB,CAAC;AACnF,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAC1F,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,KAAK,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AACnH,YAAY,EAAE,aAAa,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC9E,OAAO,EAAE,YAAY,EAAE,KAAK,kBAAkB,EAAE,MAAM,oBAAoB,CAAC"}

package/dist/index.js

@@ -0,0 +1,5 @@
+export { HttpRelay } from './http-relay.js';
+export { swapAuthHeader, validateRequestModel, KNOWN_AUTH_HEADERS } from './auth-swap.js';
+export { StaticTokenProvider, OAuthTokenProvider, createTokenProvider } from './token-providers.js';
+export { BaseProvider } from './base-provider.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAyC,MAAM,iBAAiB,CAAC;AACnF,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAC1F,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,mBAAmB,EAAiB,MAAM,sBAAsB,CAAC;AAEnH,OAAO,EAAE,YAAY,EAA2B,MAAM,oBAAoB,CAAC"}

package/dist/token-providers.d.ts

@@ -0,0 +1,47 @@
+import type { TokenProvider, TokenProviderState } from '@antseed/node';
+export type { TokenProvider, TokenProviderState };
+/** Wraps a static API key. No refresh logic. */
+export declare class StaticTokenProvider implements TokenProvider {
+    private readonly token;
+    constructor(token: string);
+    getToken(): Promise<string>;
+    stop(): void;
+    getState(): TokenProviderState;
+}
+type RefreshRequestEncoding = 'form' | 'json';
+/**
+ * Manages an OAuth access/refresh token pair.
+ * Transparently refreshes the access token when it nears expiry.
+ */
+export declare class OAuthTokenProvider implements TokenProvider {
+    private state;
+    private refreshPromise;
+    private readonly tokenEndpoint;
+    private readonly requestEncoding;
+    private readonly clientId;
+    constructor(opts: {
+        accessToken: string;
+        refreshToken: string;
+        expiresAt: number;
+        tokenEndpoint?: string;
+        requestEncoding?: RefreshRequestEncoding;
+        clientId?: string;
+    });
+    getToken(): Promise<string>;
+    stop(): void;
+    /** Expose current state for persistence. */
+    getState(): TokenProviderState;
+    private isExpiringSoon;
+    private refresh;
+}
+export type AuthType = 'apikey' | 'oauth';
+/**
+ * Create the appropriate TokenProvider from config values.
+ */
+export declare function createTokenProvider(opts: {
+    authType?: AuthType;
+    authValue: string;
+    refreshToken?: string;
+    expiresAt?: number;
+}): TokenProvider;
+//# sourceMappingURL=token-providers.d.ts.map

package/dist/token-providers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-providers.d.ts","sourceRoot":"","sources":["../src/token-providers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAEvE,YAAY,EAAE,aAAa,EAAE,kBAAkB,EAAE,CAAC;AAsBlD,gDAAgD;AAChD,qBAAa,mBAAoB,YAAW,aAAa;IAC3C,OAAO,CAAC,QAAQ,CAAC,KAAK;gBAAL,KAAK,EAAE,MAAM;IACpC,QAAQ,IAAI,OAAO,CAAC,MAAM,CAAC;IAGjC,IAAI,IAAI,IAAI;IACZ,QAAQ,IAAI,kBAAkB;CAG/B;AAYD,KAAK,sBAAsB,GAAG,MAAM,GAAG,MAAM,CAAC;AAE9C;;;GAGG;AACH,qBAAa,kBAAmB,YAAW,aAAa;IACtD,OAAO,CAAC,KAAK,CAAa;IAC1B,OAAO,CAAC,cAAc,CAAgC;IACtD,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAS;IACvC,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAyB;IACzD,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAqB;gBAElC,IAAI,EAAE;QAChB,WAAW,EAAE,MAAM,CAAC;QACpB,YAAY,EAAE,MAAM,CAAC;QACrB,SAAS,EAAE,MAAM,CAAC;QAClB,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,eAAe,CAAC,EAAE,sBAAsB,CAAC;QACzC,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB;IAWK,QAAQ,IAAI,OAAO,CAAC,MAAM,CAAC;IAajC,IAAI,IAAI,IAAI;IAEZ,4CAA4C;IAC5C,QAAQ,IAAI,kBAAkB;IAI9B,OAAO,CAAC,cAAc;YAIR,OAAO;CA2EtB;AAMD,MAAM,MAAM,QAAQ,GAAG,QAAQ,GAAG,OAAO,CAAC;AAE1C;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE;IACxC,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,GAAG,aAAa,CAkBhB"}