npm - @atproto/oauth-provider - Versions diffs - 0.6.6 → 0.7.1 - Mend

@atproto/oauth-provider 0.6.6 → 0.7.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (465) hide show

package/CHANGELOG.md +49 -0
package/dist/access-token/access-token-mode.d.ts +5 -0
package/dist/access-token/access-token-mode.d.ts.map +1 -0
package/dist/access-token/access-token-mode.js +9 -0
package/dist/access-token/access-token-mode.js.map +1 -0
package/dist/account/account-manager.d.ts +13 -7
package/dist/account/account-manager.d.ts.map +1 -1
package/dist/account/account-manager.js +69 -52
package/dist/account/account-manager.js.map +1 -1
package/dist/account/account-store.d.ts +88 -77
package/dist/account/account-store.d.ts.map +1 -1
package/dist/account/account-store.js +24 -73
package/dist/account/account-store.js.map +1 -1
package/dist/account/sign-in-data.d.ts +4 -13
package/dist/account/sign-in-data.d.ts.map +1 -1
package/dist/account/sign-in-data.js +9 -9
package/dist/account/sign-in-data.js.map +1 -1
package/dist/account/sign-up-input.d.ts +4 -5
package/dist/account/sign-up-input.d.ts.map +1 -1
package/dist/account/sign-up-input.js +13 -3
package/dist/account/sign-up-input.js.map +1 -1
package/dist/client/client-manager.d.ts +4 -1
package/dist/client/client-manager.d.ts.map +1 -1
package/dist/client/client-manager.js +13 -1
package/dist/client/client-manager.js.map +1 -1
package/dist/client/client-store.d.ts +1 -1
package/dist/client/client-store.d.ts.map +1 -1
package/dist/constants.d.ts +5 -1
package/dist/constants.d.ts.map +1 -1
package/dist/constants.js +6 -2
package/dist/constants.js.map +1 -1
package/dist/customization/branding.d.ts +54 -0
package/dist/customization/branding.d.ts.map +1 -0
package/dist/customization/branding.js +13 -0
package/dist/customization/branding.js.map +1 -0
package/dist/customization/build-customization-css.d.ts +3 -0
package/dist/customization/build-customization-css.d.ts.map +1 -0
package/dist/customization/build-customization-css.js +27 -0
package/dist/customization/build-customization-css.js.map +1 -0
package/dist/customization/build-customization-data.d.ts +4 -0
package/dist/customization/build-customization-data.d.ts.map +1 -0
package/dist/customization/build-customization-data.js +18 -0
package/dist/customization/build-customization-data.js.map +1 -0
package/dist/customization/colors.d.ts +7 -0
package/dist/customization/colors.d.ts.map +1 -0
package/dist/customization/colors.js +27 -0
package/dist/customization/colors.js.map +1 -0
package/dist/customization/customization.d.ts +129 -0
package/dist/customization/customization.d.ts.map +1 -0
package/dist/customization/customization.js +26 -0
package/dist/customization/customization.js.map +1 -0
package/dist/customization/links.d.ts +26 -0
package/dist/customization/links.d.ts.map +1 -0
package/dist/customization/links.js +12 -0
package/dist/customization/links.js.map +1 -0
package/dist/device/device-id.d.ts +1 -0
package/dist/device/device-id.d.ts.map +1 -1
package/dist/device/device-id.js +4 -0
package/dist/device/device-id.js.map +1 -1
package/dist/device/device-manager.d.ts +6 -36
package/dist/device/device-manager.d.ts.map +1 -1
package/dist/device/device-manager.js +49 -43
package/dist/device/device-manager.js.map +1 -1
package/dist/device/device-store.d.ts +1 -0
package/dist/device/device-store.d.ts.map +1 -1
package/dist/device/device-store.js.map +1 -1
package/dist/dpop/dpop-manager.d.ts +3 -3
package/dist/dpop/dpop-nonce.d.ts +3 -3
package/dist/dpop/dpop-nonce.d.ts.map +1 -1
package/dist/errors/access-denied-error.d.ts +4 -3
package/dist/errors/access-denied-error.d.ts.map +1 -1
package/dist/errors/access-denied-error.js +5 -6
package/dist/errors/access-denied-error.js.map +1 -1
package/dist/{output/build-error-payload.d.ts → errors/error-parser.d.ts} +1 -1
package/dist/errors/error-parser.d.ts.map +1 -0
package/dist/{output/build-error-payload.js → errors/error-parser.js} +2 -2
package/dist/errors/error-parser.js.map +1 -0
package/dist/errors/invalid-grant-error.d.ts +1 -0
package/dist/errors/invalid-grant-error.d.ts.map +1 -1
package/dist/errors/invalid-grant-error.js +5 -0
package/dist/errors/invalid-grant-error.js.map +1 -1
package/dist/errors/login-required-error.d.ts +1 -0
package/dist/errors/login-required-error.d.ts.map +1 -1
package/dist/errors/login-required-error.js +5 -0
package/dist/errors/login-required-error.js.map +1 -1
package/dist/index.d.ts +1 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +1 -0
package/dist/index.js.map +1 -1
package/dist/lib/html/build-document.d.ts +2 -2
package/dist/lib/html/build-document.d.ts.map +1 -1
package/dist/lib/html/build-document.js +4 -0
package/dist/lib/html/build-document.js.map +1 -1
package/dist/lib/html/hydration-data.d.ts +4 -0
package/dist/lib/html/hydration-data.d.ts.map +1 -0
package/dist/{output/backend-data.js → lib/html/hydration-data.js} +8 -8
package/dist/lib/html/hydration-data.js.map +1 -0
package/dist/lib/html/tags.d.ts +1 -1
package/dist/lib/html/tags.d.ts.map +1 -1
package/dist/lib/html/tags.js +1 -1
package/dist/lib/html/tags.js.map +1 -1
package/dist/lib/http/accept.d.ts +2 -2
package/dist/lib/http/accept.d.ts.map +1 -1
package/dist/lib/http/accept.js +1 -1
package/dist/lib/http/accept.js.map +1 -1
package/dist/lib/http/context.d.ts +2 -4
package/dist/lib/http/context.d.ts.map +1 -1
package/dist/lib/http/context.js +29 -4
package/dist/lib/http/context.js.map +1 -1
package/dist/lib/http/headers.d.ts +3 -0
package/dist/lib/http/headers.d.ts.map +1 -0
package/dist/lib/http/headers.js +14 -0
package/dist/lib/http/headers.js.map +1 -0
package/dist/lib/http/index.d.ts +1 -0
package/dist/lib/http/index.d.ts.map +1 -1
package/dist/lib/http/index.js +1 -0
package/dist/lib/http/index.js.map +1 -1
package/dist/lib/http/middleware.d.ts +1 -1
package/dist/lib/http/middleware.d.ts.map +1 -1
package/dist/lib/http/middleware.js +8 -24
package/dist/lib/http/middleware.js.map +1 -1
package/dist/lib/http/parser.d.ts +3 -3
package/dist/lib/http/parser.d.ts.map +1 -1
package/dist/lib/http/request.d.ts +13 -9
package/dist/lib/http/request.d.ts.map +1 -1
package/dist/lib/http/request.js +27 -49
package/dist/lib/http/request.js.map +1 -1
package/dist/lib/http/response.d.ts +6 -2
package/dist/lib/http/response.d.ts.map +1 -1
package/dist/lib/http/response.js +31 -11
package/dist/lib/http/response.js.map +1 -1
package/dist/lib/http/route.d.ts +3 -3
package/dist/lib/http/route.d.ts.map +1 -1
package/dist/lib/http/route.js +1 -1
package/dist/lib/http/route.js.map +1 -1
package/dist/lib/http/router.d.ts +12 -11
package/dist/lib/http/router.d.ts.map +1 -1
package/dist/lib/http/router.js +26 -34
package/dist/lib/http/router.js.map +1 -1
package/dist/lib/http/security-headers.js +1 -1
package/dist/lib/http/security-headers.js.map +1 -1
package/dist/lib/http/stream.d.ts +3 -3
package/dist/lib/http/stream.d.ts.map +1 -1
package/dist/lib/http/types.d.ts +1 -1
package/dist/lib/http/types.d.ts.map +1 -1
package/dist/lib/send-web-page.d.ts +8 -0
package/dist/lib/send-web-page.d.ts.map +1 -0
package/dist/{output → lib}/send-web-page.js +9 -7
package/dist/lib/send-web-page.js.map +1 -0
package/dist/lib/util/authorization-header.d.ts.map +1 -1
package/dist/lib/util/color.d.ts +32 -0
package/dist/lib/util/color.d.ts.map +1 -0
package/dist/lib/util/color.js +116 -0
package/dist/lib/util/color.js.map +1 -0
package/dist/lib/util/crypto.d.ts +1 -0
package/dist/lib/util/crypto.d.ts.map +1 -1
package/dist/lib/util/crypto.js +8 -3
package/dist/lib/util/crypto.js.map +1 -1
package/dist/lib/util/function.d.ts +1 -0
package/dist/lib/util/function.d.ts.map +1 -1
package/dist/lib/util/function.js +12 -0
package/dist/lib/util/function.js.map +1 -1
package/dist/lib/util/locale.d.ts +20 -0
package/dist/lib/util/locale.d.ts.map +1 -0
package/dist/lib/util/locale.js +14 -0
package/dist/lib/util/locale.js.map +1 -0
package/dist/lib/util/time.d.ts +1 -1
package/dist/lib/util/time.d.ts.map +1 -1
package/dist/lib/util/time.js +1 -1
package/dist/lib/util/time.js.map +1 -1
package/dist/lib/util/type.d.ts +22 -0
package/dist/lib/util/type.d.ts.map +1 -1
package/dist/lib/util/type.js.map +1 -1
package/dist/lib/util/ui8.d.ts +4 -0
package/dist/lib/util/ui8.d.ts.map +1 -0
package/dist/lib/util/ui8.js +17 -0
package/dist/lib/util/ui8.js.map +1 -0
package/dist/lib/util/zod-error.d.ts +2 -0
package/dist/lib/util/zod-error.d.ts.map +1 -0
package/dist/lib/util/zod-error.js +16 -0
package/dist/lib/util/zod-error.js.map +1 -0
package/dist/oauth-errors.d.ts +22 -22
package/dist/oauth-errors.d.ts.map +1 -1
package/dist/oauth-errors.js +37 -45
package/dist/oauth-errors.js.map +1 -1
package/dist/oauth-hooks.d.ts +11 -23
package/dist/oauth-hooks.d.ts.map +1 -1
package/dist/oauth-hooks.js.map +1 -1
package/dist/oauth-middleware.d.ts +12 -0
package/dist/oauth-middleware.d.ts.map +1 -0
package/dist/oauth-middleware.js +32 -0
package/dist/oauth-middleware.js.map +1 -0
package/dist/oauth-provider.d.ts +109 -113
package/dist/oauth-provider.d.ts.map +1 -1
package/dist/oauth-provider.js +124 -542
package/dist/oauth-provider.js.map +1 -1
package/dist/oauth-verifier.d.ts +7 -26
package/dist/oauth-verifier.d.ts.map +1 -1
package/dist/oauth-verifier.js +6 -16
package/dist/oauth-verifier.js.map +1 -1
package/dist/request/code.d.ts.map +1 -1
package/dist/request/request-data.d.ts +2 -4
package/dist/request/request-data.d.ts.map +1 -1
package/dist/request/request-data.js.map +1 -1
package/dist/request/request-manager.d.ts +4 -2
package/dist/request/request-manager.d.ts.map +1 -1
package/dist/request/request-manager.js +9 -8
package/dist/request/request-manager.js.map +1 -1
package/dist/request/request-store.d.ts +6 -0
package/dist/request/request-store.d.ts.map +1 -1
package/dist/request/request-store.js +3 -1
package/dist/request/request-store.js.map +1 -1
package/dist/result/authorization-redirect-parameters.d.ts +18 -0
package/dist/result/authorization-redirect-parameters.d.ts.map +1 -0
package/dist/result/authorization-redirect-parameters.js +3 -0
package/dist/result/authorization-redirect-parameters.js.map +1 -0
package/dist/result/authorization-result-authorize-page.d.ts +13 -0
package/dist/result/authorization-result-authorize-page.d.ts.map +1 -0
package/dist/result/authorization-result-authorize-page.js +3 -0
package/dist/result/authorization-result-authorize-page.js.map +1 -0
package/dist/result/authorization-result-redirect.d.ts +8 -0
package/dist/result/authorization-result-redirect.d.ts.map +1 -0
package/dist/result/authorization-result-redirect.js +3 -0
package/dist/result/authorization-result-redirect.js.map +1 -0
package/dist/router/assets/assets-manifest.d.ts +10 -0
package/dist/router/assets/assets-manifest.d.ts.map +1 -0
package/dist/router/assets/assets-manifest.js +77 -0
package/dist/router/assets/assets-manifest.js.map +1 -0
package/dist/router/assets/assets.d.ts +16 -0
package/dist/router/assets/assets.d.ts.map +1 -0
package/dist/router/assets/assets.js +43 -0
package/dist/router/assets/assets.js.map +1 -0
package/dist/router/assets/csrf.d.ts +4 -0
package/dist/router/assets/csrf.d.ts.map +1 -0
package/dist/router/assets/csrf.js +51 -0
package/dist/router/assets/csrf.js.map +1 -0
package/dist/router/assets/send-account-page.d.ts +7 -0
package/dist/router/assets/send-account-page.d.ts.map +1 -0
package/dist/router/assets/send-account-page.js +34 -0
package/dist/router/assets/send-account-page.js.map +1 -0
package/dist/router/assets/send-authorization-page.d.ts +5 -0
package/dist/router/assets/send-authorization-page.d.ts.map +1 -0
package/dist/router/assets/send-authorization-page.js +49 -0
package/dist/router/assets/send-authorization-page.js.map +1 -0
package/dist/router/assets/send-error-page.d.ts +4 -0
package/dist/router/assets/send-error-page.d.ts.map +1 -0
package/dist/router/assets/send-error-page.js +34 -0
package/dist/router/assets/send-error-page.js.map +1 -0
package/dist/router/create-account-page-middleware.d.ts +6 -0
package/dist/router/create-account-page-middleware.d.ts.map +1 -0
package/dist/router/create-account-page-middleware.js +39 -0
package/dist/router/create-account-page-middleware.js.map +1 -0
package/dist/router/create-api-middleware.d.ts +8 -0
package/dist/router/create-api-middleware.d.ts.map +1 -0
package/dist/router/create-api-middleware.js +501 -0
package/dist/router/create-api-middleware.js.map +1 -0
package/dist/router/create-authorization-page-middleware.d.ts +6 -0
package/dist/router/create-authorization-page-middleware.d.ts.map +1 -0
package/dist/router/create-authorization-page-middleware.js +104 -0
package/dist/router/create-authorization-page-middleware.js.map +1 -0
package/dist/router/create-oauth-middleware.d.ts +6 -0
package/dist/router/create-oauth-middleware.d.ts.map +1 -0
package/dist/router/create-oauth-middleware.js +142 -0
package/dist/router/create-oauth-middleware.js.map +1 -0
package/dist/router/error-handler.d.ts +3 -0
package/dist/router/error-handler.d.ts.map +1 -0
package/dist/{account/account.js → router/error-handler.js} +1 -1
package/dist/router/error-handler.js.map +1 -0
package/dist/router/middleware-options.d.ts +6 -0
package/dist/router/middleware-options.d.ts.map +1 -0
package/dist/router/middleware-options.js +3 -0
package/dist/router/middleware-options.js.map +1 -0
package/dist/router/send-redirect.d.ts +16 -0
package/dist/router/send-redirect.d.ts.map +1 -0
package/dist/{output/send-authorize-redirect.js → router/send-redirect.js} +40 -24
package/dist/router/send-redirect.js.map +1 -0
package/dist/{token/token-claims.d.ts → signer/api-token-payload.d.ts} +237 -232
package/dist/signer/api-token-payload.d.ts.map +1 -0
package/dist/signer/api-token-payload.js +17 -0
package/dist/signer/api-token-payload.js.map +1 -0
package/dist/signer/signed-token-payload.d.ts +164 -159
package/dist/signer/signed-token-payload.d.ts.map +1 -1
package/dist/signer/signed-token-payload.js +10 -16
package/dist/signer/signed-token-payload.js.map +1 -1
package/dist/signer/signer.d.ts +42 -11246
package/dist/signer/signer.d.ts.map +1 -1
package/dist/signer/signer.js +30 -15
package/dist/signer/signer.js.map +1 -1
package/dist/token/refresh-token.d.ts.map +1 -1
package/dist/token/token-data.d.ts +1 -1
package/dist/token/token-data.d.ts.map +1 -1
package/dist/token/token-id.d.ts.map +1 -1
package/dist/token/token-manager.d.ts +28 -26
package/dist/token/token-manager.d.ts.map +1 -1
package/dist/token/token-manager.js +138 -196
package/dist/token/token-manager.js.map +1 -1
package/dist/token/token-store.d.ts +4 -4
package/dist/token/token-store.d.ts.map +1 -1
package/dist/token/token-store.js +1 -0
package/dist/token/token-store.js.map +1 -1
package/dist/token/verify-token-claims.d.ts +3 -3
package/dist/token/verify-token-claims.d.ts.map +1 -1
package/dist/token/verify-token-claims.js +1 -1
package/dist/token/verify-token-claims.js.map +1 -1
package/dist/types/email-otp.d.ts +3 -0
package/dist/types/email-otp.d.ts.map +1 -0
package/dist/types/email-otp.js +6 -0
package/dist/types/email-otp.js.map +1 -0
package/dist/types/email.d.ts +3 -0
package/dist/types/email.d.ts.map +1 -0
package/dist/types/email.js +29 -0
package/dist/types/email.js.map +1 -0
package/dist/types/handle.d.ts +3 -0
package/dist/types/handle.d.ts.map +1 -0
package/dist/types/handle.js +22 -0
package/dist/types/handle.js.map +1 -0
package/dist/types/invite-code.d.ts +4 -0
package/dist/types/invite-code.d.ts.map +1 -0
package/dist/types/invite-code.js +6 -0
package/dist/types/invite-code.js.map +1 -0
package/dist/types/password.d.ts +4 -0
package/dist/types/password.d.ts.map +1 -0
package/dist/types/password.js +7 -0
package/dist/types/password.js.map +1 -0
package/package.json +11 -14
package/src/access-token/access-token-mode.ts +4 -0
package/src/account/account-manager.ts +105 -75
package/src/account/account-store.ts +118 -114
package/src/account/sign-in-data.ts +10 -10
package/src/account/sign-up-input.ts +13 -4
package/src/client/client-manager.ts +34 -2
package/src/client/client-store.ts +1 -1
package/src/constants.ts +6 -1
package/src/customization/branding.ts +12 -0
package/src/customization/build-customization-css.ts +30 -0
package/src/customization/build-customization-data.ts +22 -0
package/src/customization/colors.ts +30 -0
package/src/customization/customization.ts +25 -0
package/src/customization/links.ts +10 -0
package/src/device/device-id.ts +5 -0
package/src/device/device-manager.ts +76 -66
package/src/device/device-store.ts +2 -0
package/src/errors/access-denied-error.ts +24 -17
package/src/{output/build-error-payload.ts → errors/error-parser.ts} +1 -1
package/src/errors/invalid-grant-error.ts +5 -0
package/src/errors/login-required-error.ts +10 -0
package/src/index.ts +1 -0
package/src/lib/html/build-document.ts +6 -4
package/src/{output/backend-data.ts → lib/html/hydration-data.ts} +7 -5
package/src/lib/html/tags.ts +2 -2
package/src/lib/http/accept.ts +3 -3
package/src/lib/http/context.ts +41 -10
package/src/lib/http/headers.ts +15 -0
package/src/lib/http/index.ts +1 -0
package/src/lib/http/middleware.ts +8 -23
package/src/lib/http/request.ts +40 -75
package/src/lib/http/response.ts +39 -15
package/src/lib/http/route.ts +8 -5
package/src/lib/http/router.ts +40 -46
package/src/lib/http/security-headers.ts +1 -1
package/src/lib/http/types.ts +1 -6
package/src/{output → lib}/send-web-page.ts +10 -9
package/src/lib/util/color.ts +132 -0
package/src/lib/util/crypto.ts +9 -4
package/src/lib/util/function.ts +14 -0
package/src/lib/util/locale.ts +18 -0
package/src/lib/util/time.ts +3 -4
package/src/lib/util/type.ts +24 -0
package/src/lib/util/ui8.ts +14 -0
package/src/lib/util/zod-error.ts +14 -0
package/src/oauth-errors.ts +22 -22
package/src/oauth-hooks.ts +11 -24
package/src/oauth-middleware.ts +53 -0
package/src/oauth-provider.ts +290 -1061
package/src/oauth-verifier.ts +9 -55
package/src/request/request-data.ts +5 -4
package/src/request/request-manager.ts +11 -11
package/src/request/request-store.ts +7 -0
package/src/result/authorization-redirect-parameters.ts +24 -0
package/src/result/authorization-result-authorize-page.ts +14 -0
package/src/result/authorization-result-redirect.ts +8 -0
package/src/router/assets/assets-manifest.ts +115 -0
package/src/router/assets/assets.ts +54 -0
package/src/router/assets/csrf.ts +63 -0
package/src/router/assets/send-account-page.ts +43 -0
package/src/router/assets/send-authorization-page.ts +62 -0
package/src/router/assets/send-error-page.ts +42 -0
package/src/router/create-account-page-middleware.ts +69 -0
package/src/router/create-api-middleware.ts +814 -0
package/src/router/create-authorization-page-middleware.ts +173 -0
package/src/router/create-oauth-middleware.ts +247 -0
package/src/router/error-handler.ts +6 -0
package/src/router/middleware-options.ts +9 -0
package/src/router/send-redirect.ts +142 -0
package/src/signer/api-token-payload.ts +18 -0
package/src/signer/signed-token-payload.ts +18 -28
package/src/signer/signer.ts +49 -34
package/src/token/token-data.ts +1 -1
package/src/token/token-manager.ts +190 -239
package/src/token/token-store.ts +6 -4
package/src/token/verify-token-claims.ts +4 -4
package/src/types/email-otp.ts +3 -0
package/src/types/email.ts +26 -0
package/src/types/handle.ts +18 -0
package/src/types/invite-code.ts +4 -0
package/src/types/password.ts +4 -0
package/tsconfig.build.tsbuildinfo +1 -0
package/tsconfig.json +1 -1
package/dist/access-token/access-token-type.d.ts +0 -6
package/dist/access-token/access-token-type.d.ts.map +0 -1
package/dist/access-token/access-token-type.js +0 -10
package/dist/access-token/access-token-type.js.map +0 -1
package/dist/account/account.d.ts +0 -2
package/dist/account/account.d.ts.map +0 -1
package/dist/account/account.js.map +0 -1
package/dist/assets/assets-middleware.d.ts +0 -5
package/dist/assets/assets-middleware.d.ts.map +0 -1
package/dist/assets/assets-middleware.js +0 -41
package/dist/assets/assets-middleware.js.map +0 -1
package/dist/lib/locale.d.ts +0 -15
package/dist/lib/locale.d.ts.map +0 -1
package/dist/lib/locale.js +0 -17
package/dist/lib/locale.js.map +0 -1
package/dist/output/backend-data.d.ts +0 -4
package/dist/output/backend-data.d.ts.map +0 -1
package/dist/output/backend-data.js.map +0 -1
package/dist/output/build-authorize-data.d.ts +0 -29
package/dist/output/build-authorize-data.d.ts.map +0 -1
package/dist/output/build-authorize-data.js +0 -21
package/dist/output/build-authorize-data.js.map +0 -1
package/dist/output/build-customization-data.d.ts +0 -234
package/dist/output/build-customization-data.d.ts.map +0 -1
package/dist/output/build-customization-data.js +0 -174
package/dist/output/build-customization-data.js.map +0 -1
package/dist/output/build-error-data.d.ts +0 -3
package/dist/output/build-error-data.d.ts.map +0 -1
package/dist/output/build-error-data.js +0 -10
package/dist/output/build-error-data.js.map +0 -1
package/dist/output/build-error-payload.d.ts.map +0 -1
package/dist/output/build-error-payload.js.map +0 -1
package/dist/output/output-manager.d.ts +0 -28
package/dist/output/output-manager.d.ts.map +0 -1
package/dist/output/output-manager.js +0 -134
package/dist/output/output-manager.js.map +0 -1
package/dist/output/send-authorize-redirect.d.ts +0 -25
package/dist/output/send-authorize-redirect.d.ts.map +0 -1
package/dist/output/send-authorize-redirect.js.map +0 -1
package/dist/output/send-web-page.d.ts +0 -8
package/dist/output/send-web-page.d.ts.map +0 -1
package/dist/output/send-web-page.js.map +0 -1
package/dist/token/token-claims.d.ts.map +0 -1
package/dist/token/token-claims.js +0 -27
package/dist/token/token-claims.js.map +0 -1
package/src/access-token/access-token-type.ts +0 -5
package/src/account/account.ts +0 -1
package/src/assets/assets-middleware.ts +0 -44
package/src/lib/locale.ts +0 -21
package/src/output/build-authorize-data.ts +0 -53
package/src/output/build-customization-data.ts +0 -217
package/src/output/build-error-data.ts +0 -8
package/src/output/output-manager.ts +0 -188
package/src/output/send-authorize-redirect.ts +0 -137
package/src/token/token-claims.ts +0 -30
package/tsconfig.backend.tsbuildinfo +0 -1
/package/{tsconfig.backend.json → tsconfig.build.json} +0 -0

package/dist/oauth-provider.d.ts CHANGED Viewed

@@ -1,56 +1,68 @@
-import type { IncomingMessage, ServerResponse } from 'node:http';
 import type { Redis, RedisOptions } from 'ioredis';
 import { Jwks, Keyset } from '@atproto/jwk';
-import { OAuthAccessToken, OAuthAuthorizationCodeGrantTokenRequest, OAuthAuthorizationRequestJar, OAuthAuthorizationRequestPar, OAuthAuthorizationRequestParameters, OAuthAuthorizationRequestQuery, OAuthAuthorizationServerMetadata, OAuthClientCredentials, OAuthClientCredentialsNone, OAuthClientMetadata, OAuthIntrospectionResponse, OAuthParResponse, OAuthRefreshTokenGrantTokenRequest, OAuthTokenIdentification, OAuthTokenRequest, OAuthTokenResponse, OAuthTokenType } from '@atproto/oauth-types';
+import type { Account } from '@atproto/oauth-provider-api';
+import { OAuthAccessToken, OAuthAuthorizationCodeGrantTokenRequest, OAuthAuthorizationRequestJar, OAuthAuthorizationRequestPar, OAuthAuthorizationRequestParameters, OAuthAuthorizationRequestQuery, OAuthAuthorizationServerMetadata, OAuthClientCredentials, OAuthClientCredentialsNone, OAuthClientMetadata, OAuthParResponse, OAuthRefreshTokenGrantTokenRequest, OAuthTokenIdentification, OAuthTokenRequest, OAuthTokenResponse, OAuthTokenType } from '@atproto/oauth-types';
 import { SimpleStore } from '@atproto-labs/simple-store';
+import { AccessTokenMode } from './access-token/access-token-mode.js';
 import { AccountManager } from './account/account-manager.js';
-import { AccountStore, DeviceAccountInfo } from './account/account-store.js';
-import { Account } from './account/account.js';
+import { AccountStore, AuthorizedClientData, DeviceAccount } from './account/account-store.js';
 import { ClientAuth } from './client/client-auth.js';
+import { ClientId } from './client/client-id.js';
 import { ClientManager, LoopbackMetadataGetter } from './client/client-manager.js';
 import { ClientStore } from './client/client-store.js';
 import { Client } from './client/client.js';
+import { Branding, BrandingInput } from './customization/branding.js';
+import { Customization, CustomizationInput } from './customization/customization.js';
 import { DeviceId } from './device/device-id.js';
 import { DeviceManager, DeviceManagerOptions } from './device/device-manager.js';
 import { DeviceStore } from './device/device-store.js';
 import { HcaptchaConfig } from './lib/hcaptcha.js';
-import { Handler, Router } from './lib/http/index.js';
 import { RequestMetadata } from './lib/http/request.js';
-import { Override } from './lib/util/type.js';
+import { LocalizedString, MultiLangString } from './lib/util/locale.js';
 import { CustomMetadata } from './metadata/build-metadata.js';
-import { OAuthHooks, SignInData, SignUpData } from './oauth-hooks.js';
+import { OAuthHooks } from './oauth-hooks.js';
 import { OAuthVerifier, OAuthVerifierOptions } from './oauth-verifier.js';
-import { AuthorizationResultAuthorize } from './output/build-authorize-data.js';
-import { Branding, BrandingInput, Customization, CustomizationInput } from './output/build-customization-data.js';
-import { OutputManager } from './output/output-manager.js';
-import { AuthorizationResultRedirect } from './output/send-authorize-redirect.js';
 import { ReplayStore } from './replay/replay-store.js';
 import { RequestManager } from './request/request-manager.js';
 import { RequestStore } from './request/request-store.js';
-import { RequestUri } from './request/request-uri.js';
+import { AuthorizationRedirectParameters } from './result/authorization-redirect-parameters.js';
+import { AuthorizationResultAuthorizePage } from './result/authorization-result-authorize-page.js';
+import { AuthorizationResultRedirect } from './result/authorization-result-redirect.js';
+import { ErrorHandler } from './router/error-handler.js';
 import { TokenManager } from './token/token-manager.js';
 import { TokenStore } from './token/token-store.js';
-import { VerifyTokenClaimsOptions } from './token/verify-token-claims.js';
-export { type Branding, type BrandingInput, type CustomMetadata, type Customization, type CustomizationInput, type Handler, type HcaptchaConfig, Keyset, type OAuthAuthorizationServerMetadata, };
-type ApiContext = {
-    requestUri: RequestUri;
-    deviceId: DeviceId;
-    deviceMetadata: RequestMetadata;
-};
-export type ErrorHandler<Req extends IncomingMessage = IncomingMessage, Res extends ServerResponse = ServerResponse> = (req: Req, res: Res, err: unknown, message: string) => void;
-export type RouterOptions<Req extends IncomingMessage = IncomingMessage, Res extends ServerResponse = ServerResponse> = {
-    onError?: ErrorHandler<Req, Res>;
-};
-export type OAuthProviderOptions = Override<OAuthVerifierOptions & OAuthHooks & DeviceManagerOptions & CustomizationInput, {
+import { VerifyTokenClaimsOptions, VerifyTokenClaimsResult } from './token/verify-token-claims.js';
+export { AccessTokenMode, Keyset };
+export type { AuthorizationRedirectParameters, AuthorizationResultAuthorizePage as AuthorizationResultAuthorize, AuthorizationResultRedirect, Branding, BrandingInput, CustomMetadata, Customization, CustomizationInput, ErrorHandler, HcaptchaConfig, LocalizedString, MultiLangString, OAuthAuthorizationServerMetadata, };
+type OAuthProviderConfig = {
     /**
      * Maximum age a device/account session can be before requiring
      * re-authentication.
      */
     authenticationMaxAge?: number;
+    /**
+     * Maximum age an ephemeral session (one where "remember me" was not
+     * checked) can be before requiring re-authentication.
+     */
     /**
      * Maximum age access & id tokens can be before requiring a refresh.
      */
     tokenMaxAge?: number;
+    /**
+     * If set to {@link AccessTokenMode.stateless}, the generated access tokens
+     * will contain all the necessary information to validate the token without
+     * needing to query the database. This is useful for cases where the Resource
+     * Server is on a different host/server than the Authorization Server.
+     *
+     * When set to {@link AccessTokenMode.light}, the access tokens will contain
+     * only the necessary information to validate the token, but the token id
+     * will need to be queried from the database to retrieve the full token
+     * information (scope, audience, etc.)
+     *
+     * @see {@link AccessTokenMode}
+     * @default {AccessTokenMode.stateless}
+     */
+    accessTokenMode?: AccessTokenMode;
     /**
      * Additional metadata to be included in the discovery document.
      */
@@ -105,117 +117,123 @@ export type OAuthProviderOptions = Override<OAuthVerifierOptions & OAuthHooks &
      * @default is as specified by ATPROTO
      */
     loopbackMetadata?: null | false | LoopbackMetadataGetter;
-}>;
+};
+export type OAuthProviderOptions = OAuthProviderConfig & OAuthVerifierOptions & OAuthHooks & DeviceManagerOptions & CustomizationInput;
 export declare class OAuthProvider extends OAuthVerifier {
+    protected readonly accessTokenMode: AccessTokenMode;
     readonly metadata: OAuthAuthorizationServerMetadata;
+    readonly customization: Customization;
     readonly authenticationMaxAge: number;
     readonly accountManager: AccountManager;
     readonly deviceManager: DeviceManager;
     readonly clientManager: ClientManager;
     readonly requestManager: RequestManager;
     readonly tokenManager: TokenManager;
-    readonly outputManager: OutputManager;
-    constructor({ metadata, authenticationMaxAge, tokenMaxAge, safeFetch, redis, store, // compound store implementation
+    constructor({ authenticationMaxAge, tokenMaxAge, accessTokenMode, metadata, safeFetch, redis, store, // compound store implementation
     accountStore, deviceStore, tokenStore, clientStore, replayStore, requestStore, clientJwksCache, clientMetadataCache, loopbackMetadata, ...rest }: OAuthProviderOptions);
     get jwks(): {
         readonly keys: readonly ({
             readonly kty: "RSA";
             readonly n: string;
             readonly e: string;
-            readonly alg?: "RS256" | "RS384" | "RS512" | "PS256" | "PS384" | "PS512" | undefined;
-            readonly kid?: string | undefined;
-            readonly ext?: boolean | undefined;
-            readonly use?: "sig" | "enc" | undefined;
+            readonly alg?: "RS256" | "RS384" | "RS512" | "PS256" | "PS384" | "PS512" | undefined | undefined;
+            readonly kid?: string | undefined | undefined;
+            readonly ext?: boolean | undefined | undefined;
+            readonly use?: "sig" | "enc" | undefined | undefined;
             readonly key_ops?: readonly ("sign" | "verify" | "encrypt" | "decrypt" | "wrapKey" | "unwrapKey" | "deriveKey" | "deriveBits")[] | undefined;
             readonly x5c?: readonly string[] | undefined;
-            readonly x5t?: string | undefined;
-            readonly 'x5t#S256'?: string | undefined;
-            readonly x5u?: string | undefined;
-            readonly d?: string | undefined;
-            readonly p?: string | undefined;
-            readonly q?: string | undefined;
-            readonly dp?: string | undefined;
-            readonly dq?: string | undefined;
-            readonly qi?: string | undefined;
+            readonly x5t?: string | undefined | undefined;
+            readonly 'x5t#S256'?: string | undefined | undefined;
+            readonly x5u?: string | undefined | undefined;
+            readonly d?: string | undefined | undefined;
+            readonly p?: string | undefined | undefined;
+            readonly q?: string | undefined | undefined;
+            readonly dp?: string | undefined | undefined;
+            readonly dq?: string | undefined | undefined;
+            readonly qi?: string | undefined | undefined;
             readonly oth?: readonly [{
-                readonly d?: string | undefined;
-                readonly r?: string | undefined;
-                readonly t?: string | undefined;
+                readonly d?: string | undefined | undefined;
+                readonly r?: string | undefined | undefined;
+                readonly t?: string | undefined | undefined;
             }, ...{
-                readonly d?: string | undefined;
-                readonly r?: string | undefined;
-                readonly t?: string | undefined;
+                readonly d?: string | undefined | undefined;
+                readonly r?: string | undefined | undefined;
+                readonly t?: string | undefined | undefined;
             }[]] | undefined;
         } | {
             readonly kty: "EC";
             readonly crv: "P-256" | "P-384" | "P-521";
             readonly x: string;
             readonly y: string;
-            readonly alg?: "ES256" | "ES384" | "ES512" | undefined;
-            readonly kid?: string | undefined;
-            readonly ext?: boolean | undefined;
-            readonly use?: "sig" | "enc" | undefined;
+            readonly alg?: "ES256" | "ES384" | "ES512" | undefined | undefined;
+            readonly kid?: string | undefined | undefined;
+            readonly ext?: boolean | undefined | undefined;
+            readonly use?: "sig" | "enc" | undefined | undefined;
             readonly key_ops?: readonly ("sign" | "verify" | "encrypt" | "decrypt" | "wrapKey" | "unwrapKey" | "deriveKey" | "deriveBits")[] | undefined;
             readonly x5c?: readonly string[] | undefined;
-            readonly x5t?: string | undefined;
-            readonly 'x5t#S256'?: string | undefined;
-            readonly x5u?: string | undefined;
-            readonly d?: string | undefined;
+            readonly x5t?: string | undefined | undefined;
+            readonly 'x5t#S256'?: string | undefined | undefined;
+            readonly x5u?: string | undefined | undefined;
+            readonly d?: string | undefined | undefined;
         } | {
             readonly kty: "EC";
             readonly crv: "secp256k1";
             readonly x: string;
             readonly y: string;
-            readonly alg?: "ES256K" | undefined;
-            readonly kid?: string | undefined;
-            readonly ext?: boolean | undefined;
-            readonly use?: "sig" | "enc" | undefined;
+            readonly alg?: "ES256K" | undefined | undefined;
+            readonly kid?: string | undefined | undefined;
+            readonly ext?: boolean | undefined | undefined;
+            readonly use?: "sig" | "enc" | undefined | undefined;
             readonly key_ops?: readonly ("sign" | "verify" | "encrypt" | "decrypt" | "wrapKey" | "unwrapKey" | "deriveKey" | "deriveBits")[] | undefined;
             readonly x5c?: readonly string[] | undefined;
-            readonly x5t?: string | undefined;
-            readonly 'x5t#S256'?: string | undefined;
-            readonly x5u?: string | undefined;
-            readonly d?: string | undefined;
+            readonly x5t?: string | undefined | undefined;
+            readonly 'x5t#S256'?: string | undefined | undefined;
+            readonly x5u?: string | undefined | undefined;
+            readonly d?: string | undefined | undefined;
         } | {
             readonly kty: "OKP";
             readonly crv: "Ed25519" | "Ed448";
             readonly x: string;
-            readonly alg?: "EdDSA" | undefined;
-            readonly kid?: string | undefined;
-            readonly ext?: boolean | undefined;
-            readonly use?: "sig" | "enc" | undefined;
+            readonly alg?: "EdDSA" | undefined | undefined;
+            readonly kid?: string | undefined | undefined;
+            readonly ext?: boolean | undefined | undefined;
+            readonly use?: "sig" | "enc" | undefined | undefined;
             readonly key_ops?: readonly ("sign" | "verify" | "encrypt" | "decrypt" | "wrapKey" | "unwrapKey" | "deriveKey" | "deriveBits")[] | undefined;
             readonly x5c?: readonly string[] | undefined;
-            readonly x5t?: string | undefined;
-            readonly 'x5t#S256'?: string | undefined;
-            readonly x5u?: string | undefined;
-            readonly d?: string | undefined;
+            readonly x5t?: string | undefined | undefined;
+            readonly 'x5t#S256'?: string | undefined | undefined;
+            readonly x5u?: string | undefined | undefined;
+            readonly d?: string | undefined | undefined;
         } | {
             readonly kty: "oct";
             readonly k: string;
-            readonly alg?: "HS256" | "HS384" | "HS512" | undefined;
-            readonly kid?: string | undefined;
-            readonly ext?: boolean | undefined;
-            readonly use?: "sig" | "enc" | undefined;
+            readonly alg?: "HS256" | "HS384" | "HS512" | undefined | undefined;
+            readonly kid?: string | undefined | undefined;
+            readonly ext?: boolean | undefined | undefined;
+            readonly use?: "sig" | "enc" | undefined | undefined;
             readonly key_ops?: readonly ("sign" | "verify" | "encrypt" | "decrypt" | "wrapKey" | "unwrapKey" | "deriveKey" | "deriveBits")[] | undefined;
             readonly x5c?: readonly string[] | undefined;
-            readonly x5t?: string | undefined;
-            readonly 'x5t#S256'?: string | undefined;
-            readonly x5u?: string | undefined;
+            readonly x5t?: string | undefined | undefined;
+            readonly 'x5t#S256'?: string | undefined | undefined;
+            readonly x5u?: string | undefined | undefined;
         } | {
             readonly kty: string;
-            readonly alg?: string | undefined;
-            readonly kid?: string | undefined;
-            readonly ext?: boolean | undefined;
-            readonly use?: "sig" | "enc" | undefined;
+            readonly alg?: string | undefined | undefined;
+            readonly kid?: string | undefined | undefined;
+            readonly ext?: boolean | undefined | undefined;
+            readonly use?: "sig" | "enc" | undefined | undefined;
             readonly key_ops?: readonly ("sign" | "verify" | "encrypt" | "decrypt" | "wrapKey" | "unwrapKey" | "deriveKey" | "deriveBits")[] | undefined;
             readonly x5c?: readonly string[] | undefined;
-            readonly x5t?: string | undefined;
-            readonly 'x5t#S256'?: string | undefined;
-            readonly x5u?: string | undefined;
+            readonly x5t?: string | undefined | undefined;
+            readonly 'x5t#S256'?: string | undefined | undefined;
+            readonly x5u?: string | undefined | undefined;
         })[];
     };
-    protected loginRequired(client: Client, parameters: OAuthAuthorizationRequestParameters, info: DeviceAccountInfo): boolean;
+    /**
+     * @returns true if the user's consent is required for the requested scopes
+     */
+    checkConsentRequired(parameters: OAuthAuthorizationRequestParameters, clientData?: AuthorizedClientData): boolean;
+    checkLoginRequired(deviceAccount: DeviceAccount): boolean;
     protected authenticateClient(credentials: OAuthClientCredentials): Promise<[Client, ClientAuth]>;
     protected decodeJAR(client: Client, input: OAuthAuthorizationRequestJar): Promise<{
         payload: OAuthAuthorizationRequestParameters;
@@ -230,48 +248,26 @@ export declare class OAuthProvider extends OAuthVerifier {
     /**
      * @see {@link https://datatracker.ietf.org/doc/html/rfc9126}
      */
-    protected pushedAuthorizationRequest(credentials: OAuthClientCredentials, authorizationRequest: OAuthAuthorizationRequestPar, dpopJkt: null | string): Promise<OAuthParResponse>;
+    pushedAuthorizationRequest(credentials: OAuthClientCredentials, authorizationRequest: OAuthAuthorizationRequestPar, dpopJkt: null | string): Promise<OAuthParResponse>;
     private processAuthorizationRequest;
-    private deleteRequest;
     /**
      * @see {@link https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-11#section-4.1.1}
      */
-    protected authorize(clientCredentials: OAuthClientCredentialsNone, query: OAuthAuthorizationRequestQuery, deviceId: DeviceId, deviceMetadata: RequestMetadata): Promise<AuthorizationResultRedirect | AuthorizationResultAuthorize>;
-    protected getSessions(client: Client, clientAuth: ClientAuth, deviceId: DeviceId, parameters: OAuthAuthorizationRequestParameters): Promise<{
+    authorize(clientCredentials: OAuthClientCredentialsNone, query: OAuthAuthorizationRequestQuery, deviceId: DeviceId, deviceMetadata: RequestMetadata): Promise<AuthorizationResultRedirect | AuthorizationResultAuthorizePage>;
+    protected getSessions(clientId: ClientId, deviceId: DeviceId, parameters: OAuthAuthorizationRequestParameters): Promise<{
         account: Account;
-        info: DeviceAccountInfo;
         selected: boolean;
         loginRequired: boolean;
         consentRequired: boolean;
         matchesHint: boolean;
     }[]>;
-    protected signUp({ requestUri, deviceId, deviceMetadata }: ApiContext, data: SignUpData): Promise<{
-        account: Account;
-        consentRequired: boolean;
-    }>;
-    protected signIn({ requestUri, deviceId, deviceMetadata }: ApiContext, data: SignInData): Promise<{
-        account: Account;
-        consentRequired: boolean;
-    }>;
-    protected acceptRequest({ requestUri, deviceId, deviceMetadata }: ApiContext, sub: string): Promise<AuthorizationResultRedirect>;
-    protected rejectRequest({ requestUri, deviceId, }: ApiContext): Promise<AuthorizationResultRedirect>;
-    protected token(clientCredentials: OAuthClientCredentials, clientMetadata: RequestMetadata, request: OAuthTokenRequest, dpopJkt: null | string): Promise<OAuthTokenResponse>;
+    token(clientCredentials: OAuthClientCredentials, clientMetadata: RequestMetadata, request: OAuthTokenRequest, dpopJkt: null | string): Promise<OAuthTokenResponse>;
     protected codeGrant(client: Client, clientAuth: ClientAuth, clientMetadata: RequestMetadata, input: OAuthAuthorizationCodeGrantTokenRequest, dpopJkt: null | string): Promise<OAuthTokenResponse>;
     refreshTokenGrant(client: Client, clientAuth: ClientAuth, clientMetadata: RequestMetadata, input: OAuthRefreshTokenGrantTokenRequest, dpopJkt: null | string): Promise<OAuthTokenResponse>;
     /**
      * @see {@link https://datatracker.ietf.org/doc/html/rfc7009#section-2.1 rfc7009}
      */
-    protected revoke({ token }: OAuthTokenIdentification): Promise<void>;
-    /**
-     * @see {@link https://datatracker.ietf.org/doc/html/rfc7662#section-2.1 rfc7662}
-     */
-    protected introspect(credentials: OAuthClientCredentials, { token }: OAuthTokenIdentification): Promise<OAuthIntrospectionResponse>;
-    protected authenticateToken(tokenType: OAuthTokenType, token: OAuthAccessToken, dpopJkt: string | null, verifyOptions?: VerifyTokenClaimsOptions): Promise<import("./token/verify-token-claims.js").VerifyTokenClaimsResult>;
-    /**
-     * @returns An http request handler that can be used with node's http server
-     * or as a middleware with express / connect.
-     */
-    httpHandler<T = void, Req extends IncomingMessage = IncomingMessage, Res extends ServerResponse = ServerResponse>(options?: RouterOptions<Req, Res>): Handler<T, Req, Res>;
-    buildRouter<T = void, Req extends IncomingMessage = IncomingMessage, Res extends ServerResponse = ServerResponse>(options?: RouterOptions<Req, Res>): Router<T, Req, Res>;
+    revoke(credentials: OAuthClientCredentials, { token }: OAuthTokenIdentification): Promise<void>;
+    protected verifyToken(tokenType: OAuthTokenType, token: OAuthAccessToken, dpopJkt: string | null, verifyOptions?: VerifyTokenClaimsOptions): Promise<VerifyTokenClaimsResult>;
 }
 //# sourceMappingURL=oauth-provider.d.ts.map

package/dist/oauth-provider.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"oauth-provider.d.ts","sourceRoot":"","sources":["../src/oauth-provider.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,~~eAAe~~,EAAE,~~cAAc~~,EAAE,MAAM,~~WAAW~~,CAAA;~~AAEhE~~,OAAO,~~KAAK,~~EAAE,~~KAAK~~,EAAE,~~YAAY~~,EAAE,MAAM,~~SAAS~~,CAAA;~~AAElD~~,OAAO,~~EAAE~~,~~IAAI,~~EAAE,~~MAAM~~,EAAE,MAAM,~~cAAc~~,CAAA;~~AAC3C~~,OAAO,EAEL,gBAAgB,EAChB,uCAAuC,EACvC,4BAA4B,EAC5B,4BAA4B,EAC5B,mCAAmC,EACnC,8BAA8B,EAC9B,gCAAgC,EAChC,sBAAsB,EACtB,0BAA0B,EAC1B,mBAAmB,EACnB,~~0BAA0B,EAC1B,~~gBAAgB,EAChB,kCAAkC,EAClC,wBAAwB,EACxB,iBAAiB,EACjB,kBAAkB,EAClB,cAAc,~~EAQf~~,MAAM,sBAAsB,CAAA;AAE7B,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAA;~~AAGxD~~,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAA;AAC7D,OAAO,EACL,YAAY,EACZ,~~iBAAiB~~,~~EAKlB~~,MAAM,4BAA4B,CAAA;AACnC,OAAO,EAAE,~~OAAO~~,~~EAAE~~,MAAM,~~sBAAsB~~,CAAA;~~AAI9C~~,OAAO,EAAE,~~UAAU~~,~~EAAqB~~,MAAM,~~yBAAyB~~,CAAA;~~AACvE~~,OAAO,EACL,aAAa,EACb,sBAAsB,EACvB,MAAM,4BAA4B,CAAA;AACnC,OAAO,EAAE,WAAW,EAAiB,MAAM,0BAA0B,CAAA;AACrE,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAA;AAE3C,OAAO,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAA;AAChD,OAAO,~~EAEL~~,aAAa,EACb,oBAAoB,EAErB,MAAM,4BAA4B,CAAA;AACnC,OAAO,EAAE,WAAW,EAAiB,MAAM,0BAA0B,CAAA;~~AAWrE~~,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAA;AAClD,OAAO,~~EACL~~,~~OAAO~~,~~EAEP~~,MAAM,~~EAaP~~,~~MAAM,qBAAqB,~~CAAA;~~AAC5B~~,OAAO,~~EACL~~,eAAe,~~EAGhB~~,~~MAAM~~,~~uBAAuB,CAAA;AAE9B,OAAO,EAAa,QAAQ,~~EAAE,MAAM,~~oBAAoB~~,CAAA;~~AACxD~~,OAAO,EAAE,cAAc,EAAiB,MAAM,8BAA8B,CAAA;AAC5E,OAAO,EAAE,UAAU,EAAE,~~UAAU,EAAE,UAAU,EAAE,~~MAAM,kBAAkB,CAAA;~~AACrE~~,OAAO,EAAE,aAAa,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAA;AACzE,OAAO,EAAE,~~4BAA4B~~,~~EAAE~~,MAAM,~~kCAAkC~~,CAAA;~~AAC/E~~,OAAO,~~EACL~~,~~QAAQ~~,~~EACR~~,~~aAAa,EACb,aAAa,EACb,kBAAkB,EAEnB,~~MAAM,~~sCAAsC~~,CAAA;~~AAK7C~~,OAAO,EAAE,~~aAAa~~,~~EAAE~~,MAAM,4BAA4B,CAAA;~~AAC1D~~,OAAO,~~EACL~~,~~2BAA2B~~,~~EAE5B,~~MAAM,~~qCAAqC,~~CAAA;~~AAC5C~~,OAAO,EAAE,~~WAAW~~,~~EAAiB~~,MAAM,~~0BAA0B~~,CAAA;~~AAGrE~~,OAAO,EAAE,~~cAAc~~,EAAE,MAAM,~~8BAA8B~~,CAAA;~~AAG7D~~,OAAO,EAAE,YAAY,~~EAAkB,MAAM,4BAA4B,CAAA;AACzE,OAAO,~~EAAE,~~UAAU,EAAoB,~~MAAM,~~0BAA0B~~,CAAA;~~AAEvE~~,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAA;AACvD,OAAO,EAAE,UAAU,EAAgB,MAAM,wBAAwB,CAAA;AACjE,OAAO,~~EAAE~~,wBAAwB,~~EAAE~~,~~MAAM~~,~~gCAAgC~~,~~CAAA;AAEzE,OAAO,EACL,KAAK,QAAQ,EACb,KAAK,aAAa,EAClB,KAAK,cAAc,EACnB,KAAK,aAAa,EAClB,KAAK,kBAAkB,EACvB,KAAK,OAAO,EACZ,KAAK,cAAc,EACnB,~~MAAM,~~EACN,KAAK,~~gCAAgC,~~GACtC,~~CAAA;~~AAED~~,~~KAAK~~,~~UAAU,GAAG;IAChB,UAAU,~~EAAE,~~UAAU~~,~~CAAA;IACtB,QAAQ,~~EAAE,~~QAAQ~~,~~CAAA;IAClB,cAAc,~~EAAE,~~eAAe,~~CAAA;~~CAChC~~,~~CAAA;AAED~~,~~MAAM~~,~~MAAM~~,~~YAAY~~,~~CACtB~~,~~GAAG~~,~~SAAS~~,~~eAAe~~,~~GAAG~~,~~eAAe~~,~~EAC7C~~,~~GAAG~~,~~SAAS~~,cAAc,~~GAAG~~,~~cAAc~~,~~IACzC~~,~~CAAC~~,~~GAAG~~,~~EAAE~~,~~GAAG~~,~~EAAE~~,~~GAAG~~,~~EAAE,GAAG,EAAE,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,KAAK,IAAI,CAAA;AAE/D,MAAM,MAAM,aAAa,CACvB,GAAG,SAAS,~~eAAe,~~GAAG~~,eAAe,~~EAC7C~~,~~GAAG~~,~~SAAS~~,~~cAAc,GAAG,cAAc,IACzC;IACF,OAAO,CAAC,EAAE,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,~~CAAA;~~CACjC,CAAA;~~AAED,~~MAAM~~,~~MAAM~~,~~oBAAoB,~~GAAG~~,QAAQ,CACzC,oBAAoB,GAAG,UAAU,GAAG,oBAAoB,GAAG,kBAAkB,EAC7E~~;~~IACE~~;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAA;IAE7B;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAA;IAEpB;;OAEG;IACH,QAAQ,CAAC,EAAE,cAAc,CAAA;IAEzB;;;;;;OAMG;IACH,SAAS,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAA;IAEnC;;;OAGG;IACH,KAAK,CAAC,EAAE,KAAK,GAAG,YAAY,GAAG,MAAM,CAAA;IAErC;;;;;;OAMG;IACH,KAAK,CAAC,EAAE,OAAO,CACb,YAAY,GACV,WAAW,GACX,WAAW,GACX,WAAW,GACX,YAAY,GACZ,UAAU,CACb,CAAA;IAED,YAAY,CAAC,EAAE,YAAY,CAAA;IAC3B,WAAW,CAAC,EAAE,WAAW,CAAA;IACzB,WAAW,CAAC,EAAE,WAAW,CAAA;IACzB,WAAW,CAAC,EAAE,WAAW,CAAA;IACzB,YAAY,CAAC,EAAE,YAAY,CAAA;IAC3B,UAAU,CAAC,EAAE,UAAU,CAAA;IAEvB;;;;;OAKG;IACH,eAAe,CAAC,EAAE,WAAW,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;IAE3C;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,WAAW,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAA;IAE9D;;;;;;;OAOG;IACH,gBAAgB,CAAC,EAAE,IAAI,GAAG,KAAK,GAAG,sBAAsB,CAAA;CACzD,~~CACF,~~CAAA;AAED,qBAAa,aAAc,SAAQ,aAAa;IAC9C,SAAgB,QAAQ,EAAE,gCAAgC,CAAA;~~IAE1D~~,SAAgB,oBAAoB,EAAE,MAAM,CAAA;IAE5C,SAAgB,cAAc,EAAE,cAAc,CAAA;IAC9C,SAAgB,aAAa,EAAE,aAAa,CAAA;IAC5C,SAAgB,aAAa,EAAE,aAAa,CAAA;IAC5C,SAAgB,cAAc,EAAE,cAAc,CAAA;IAC9C,SAAgB,YAAY,EAAE,YAAY,CAAA;~~IAC1C~~,~~SAAgB~~,~~aAAa~~,~~EAAE~~,~~aAAa~~,~~CAAA;gBAEzB~~,~~EACjB~~,QAAQ,~~EACR~~,~~oBAA6C,EAC7C,WAA2B,EAE3B,~~SAA2B,EAC3B,KAAK,EACL,KAAK,EAAE,gCAAgC;IAGvC,YAAoC,EACpC,WAAkC,EAClC,UAAgC,EAGhC,WAAkC,EAClC,WAAkC,EAClC,YAAoC,EAEpC,eAGE,EACF,mBAGE,EAEF,gBAAgD,EAMhD,GAAG,IAAI,EACR,EAAE,oBAAoB;IA4DvB,IAAI,IAAI;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;MAEP;IAED,~~SAAS~~,~~CAAC~~,~~aAAa~~,~~CACrB,MAAM,~~EAAE,~~MAAM~~,~~EACd~~,UAAU,EAAE,~~mCAAmC~~,~~EAC/C~~,~~IAAI~~,EAAE,~~iBAAiB~~;~~cAaT~~,kBAAkB,CAChC,WAAW,EAAE,sBAAsB,GAClC,OAAO,CAAC,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;cAmChB,SAAS,CACvB,MAAM,EAAE,MAAM,EACd,KAAK,EAAE,4BAA4B,GAClC,OAAO,CACN;QACE,OAAO,EAAE,mCAAmC,CAAA;KAC7C,GACD;QACE,OAAO,EAAE,mCAAmC,CAAA;QAC5C,eAAe,EAAE;YAAE,GAAG,EAAE,MAAM,CAAC;YAAC,GAAG,EAAE,MAAM,CAAA;SAAE,CAAA;QAC7C,GAAG,EAAE,MAAM,CAAA;KACZ,CACJ;IA6CD;;OAEG;~~cACa~~,0BAA0B,~~CACxC~~,WAAW,EAAE,sBAAsB,EACnC,oBAAoB,EAAE,4BAA4B,EAClD,OAAO,EAAE,IAAI,GAAG,MAAM,GACrB,OAAO,CAAC,gBAAgB,CAAC;YAkCd,2BAA2B;~~YAqD3B,aAAa;IAW3B~~;;OAEG;~~cACa~~,SAAS,~~CACvB~~,iBAAiB,EAAE,0BAA0B,EAC7C,KAAK,EAAE,8BAA8B,EACrC,QAAQ,EAAE,QAAQ,EAClB,cAAc,EAAE,eAAe,GAC9B,OAAO,CAAC,2BAA2B,GAAG,~~4BAA4B~~,CAAC;~~cAyGtD~~,WAAW,CACzB,~~MAAM~~,EAAE,~~MAAM~~,~~EACd~~,~~UAAU,EAAE,UAAU,EACtB,~~QAAQ,EAAE,QAAQ,EAClB,UAAU,EAAE,mCAAmC,GAC9C,OAAO,CACR;QACE,OAAO,EAAE,OAAO,CAAA;~~QAChB~~,~~IAAI,EAAE,iBAAiB,CAAA;QAEvB,~~QAAQ,EAAE,OAAO,CAAA;QACjB,aAAa,EAAE,OAAO,CAAA;QACtB,eAAe,EAAE,OAAO,CAAA;QAExB,WAAW,EAAE,OAAO,CAAA;KACrB,EAAE,CACJ;~~cAqCe~~,MAAM,CACpB,EAAE,UAAU,EAAE,QAAQ,EAAE,cAAc,EAAE,EAAE,UAAU,EACpD,IAAI,EAAE,UAAU,GACf,OAAO,CAAC;QACT,OAAO,EAAE,OAAO,CAAA;QAChB,eAAe,EAAE,OAAO,CAAA;KACzB,CAAC;cAiBc,MAAM,CACpB,EAAE,UAAU,EAAE,QAAQ,EAAE,cAAc,EAAE,EAAE,UAAU,EACpD,IAAI,EAAE,UAAU,GACf,OAAO,CAAC;QACT,OAAO,EAAE,OAAO,CAAA;QAChB,eAAe,EAAE,OAAO,CAAA;KACzB,CAAC;cAwBc,aAAa,CAC3B,EAAE,UAAU,EAAE,QAAQ,EAAE,cAAc,EAAE,EAAE,UAAU,EACpD,GAAG,EAAE,MAAM,GACV,OAAO,CAAC,2BAA2B,CAAC;cA8CvB,aAAa,CAAC,EAC5B,UAAU,EACV,QAAQ,GACT,EAAE,UAAU,GAAG,OAAO,CAAC,2BAA2B,CAAC;cAepC,KAAK,~~CACnB~~,iBAAiB,EAAE,sBAAsB,EACzC,cAAc,EAAE,eAAe,EAC/B,OAAO,EAAE,iBAAiB,EAC1B,OAAO,EAAE,IAAI,GAAG,MAAM,GACrB,OAAO,CAAC,kBAAkB,CAAC;cAyCd,SAAS,CACvB,MAAM,EAAE,MAAM,EACd,UAAU,EAAE,UAAU,EACtB,cAAc,EAAE,eAAe,EAC/B,KAAK,EAAE,uCAAuC,EAC9C,OAAO,EAAE,IAAI,GAAG,MAAM,GACrB,OAAO,CAAC,kBAAkB,CAAC;~~IA6DxB~~,iBAAiB,CACrB,MAAM,EAAE,MAAM,EACd,UAAU,EAAE,UAAU,EACtB,cAAc,EAAE,eAAe,EAC/B,KAAK,EAAE,kCAAkC,EACzC,OAAO,EAAE,IAAI,GAAG,MAAM,GACrB,OAAO,CAAC,kBAAkB,CAAC;IAU9B;;OAEG;~~cACa~~,MAAM,~~CAAC~~,~~EAAE,KAAK,EAAE,EAAE,wBAAwB;IAM1D;;OAEG;cACa,UAAU,CACxB,~~WAAW,EAAE,sBAAsB,EACnC,EAAE,KAAK,EAAE,EAAE,wBAAwB~~,GAClC,OAAO,CAAC,0BAA0B,CAAC~~;~~cAiDb~~,~~iBAAiB~~,~~CACxC~~,SAAS,EAAE,cAAc,EACzB,KAAK,EAAE,gBAAgB,EACvB,OAAO,EAAE,MAAM,GAAG,IAAI,EACtB,aAAa,CAAC,EAAE,wBAAwB~~;IAgB1C;;;OAGG;IACI~~,~~WAAW~~,~~CAChB,CAAC,GAAG,IAAI,EACR,GAAG,SAAS,eAAe,GAAG,eAAe,EAC7C,GAAG,SAAS,cAAc,GAAG,cAAc,EAC3C,~~OAAO,CAAC,~~EAAE~~,~~aAAa,~~CAAC~~,GAAG,EAAE,GAAG,CAAC,GAAG,OAAO,CAAC,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC~~;~~IAKnD,WAAW,CAChB,CAAC,GAAG,IAAI,EACR,GAAG,SAAS,eAAe,GAAG,eAAe,EAC7C,GAAG,SAAS,cAAc,GAAG,cAAc,EAC3C,OAAO,CAAC,EAAE,aAAa,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,MAAM,CAAC,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC;CA6iB1D~~"}
1	+ {"version":3,"file":"oauth-provider.d.ts","sourceRoot":"","sources":["../src/oauth-provider.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,KAAK,EAAE,YAAY,EAAE,MAAM,SAAS,CAAA;AAClD,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,cAAc,CAAA;AAC3C,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,6BAA6B,CAAA;AAC1D,OAAO,EAEL,gBAAgB,EAChB,uCAAuC,EACvC,4BAA4B,EAC5B,4BAA4B,EAC5B,mCAAmC,EACnC,8BAA8B,EAC9B,gCAAgC,EAChC,sBAAsB,EACtB,0BAA0B,EAC1B,mBAAmB,EACnB,gBAAgB,EAChB,kCAAkC,EAClC,wBAAwB,EACxB,iBAAiB,EACjB,kBAAkB,EAClB,cAAc,EAGf,MAAM,sBAAsB,CAAA;AAE7B,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAA;AAExD,OAAO,EAAE,eAAe,EAAE,MAAM,qCAAqC,CAAA;AACrE,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAA;AAC7D,OAAO,EACL,YAAY,EACZ,oBAAoB,EACpB,aAAa,EAEd,MAAM,4BAA4B,CAAA;AACnC,OAAO,EAAE,UAAU,EAAqB,MAAM,yBAAyB,CAAA;AACvE,OAAO,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAA;AAChD,OAAO,EACL,aAAa,EACb,sBAAsB,EACvB,MAAM,4BAA4B,CAAA;AACnC,OAAO,EAAE,WAAW,EAAiB,MAAM,0BAA0B,CAAA;AACrE,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAA;AAE3C,OAAO,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAA;AACrE,OAAO,EACL,aAAa,EACb,kBAAkB,EAEnB,MAAM,kCAAkC,CAAA;AACzC,OAAO,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAA;AAChD,OAAO,EACL,aAAa,EACb,oBAAoB,EAErB,MAAM,4BAA4B,CAAA;AACnC,OAAO,EAAE,WAAW,EAAiB,MAAM,0BAA0B,CAAA;AAQrE,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAA;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAA;AAEvD,OAAO,EAAE,eAAe,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAA;AAEvE,OAAO,EAAE,cAAc,EAAiB,MAAM,8BAA8B,CAAA;AAC5E,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAC7C,OAAO,EAAE,aAAa,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAA;AACzE,OAAO,EAAE,WAAW,EAAiB,MAAM,0BAA0B,CAAA;AAGrE,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAA;AAG7D,OAAO,EAAE,YAAY,EAAkB,MAAM,4BAA4B,CAAA;AAEzE,OAAO,EAAE,+BAA+B,EAAE,MAAM,+CAA+C,CAAA;AAC/F,OAAO,EAAE,gCAAgC,EAAE,MAAM,iDAAiD,CAAA;AAClG,OAAO,EAAE,2BAA2B,EAAE,MAAM,2CAA2C,CAAA;AACvF,OAAO,EAAE,YAAY,EAAE,MAAM,2BAA2B,CAAA;AACxD,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAA;AACvD,OAAO,EAAE,UAAU,EAAgB,MAAM,wBAAwB,CAAA;AACjE,OAAO,EACL,wBAAwB,EACxB,uBAAuB,EACxB,MAAM,gCAAgC,CAAA;AAEvC,OAAO,EAAE,eAAe,EAAE,MAAM,EAAE,CAAA;AAClC,YAAY,EACV,+BAA+B,EAC/B,gCAAgC,IAAI,4BAA4B,EAChE,2BAA2B,EAC3B,QAAQ,EACR,aAAa,EACb,cAAc,EACd,aAAa,EACb,kBAAkB,EAClB,YAAY,EACZ,cAAc,EACd,eAAe,EACf,eAAe,EACf,gCAAgC,GACjC,CAAA;AAED,KAAK,mBAAmB,GAAG;IACzB;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAA;IAE7B;;;OAGG;IAEH;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAA;IAEpB;;;;;;;;;;;;;OAaG;IACH,eAAe,CAAC,EAAE,eAAe,CAAA;IAEjC;;OAEG;IACH,QAAQ,CAAC,EAAE,cAAc,CAAA;IAEzB;;;;;;OAMG;IACH,SAAS,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAA;IAEnC;;;OAGG;IACH,KAAK,CAAC,EAAE,KAAK,GAAG,YAAY,GAAG,MAAM,CAAA;IAErC;;;;;;OAMG;IACH,KAAK,CAAC,EAAE,OAAO,CACb,YAAY,GACV,WAAW,GACX,WAAW,GACX,WAAW,GACX,YAAY,GACZ,UAAU,CACb,CAAA;IAED,YAAY,CAAC,EAAE,YAAY,CAAA;IAC3B,WAAW,CAAC,EAAE,WAAW,CAAA;IACzB,WAAW,CAAC,EAAE,WAAW,CAAA;IACzB,WAAW,CAAC,EAAE,WAAW,CAAA;IACzB,YAAY,CAAC,EAAE,YAAY,CAAA;IAC3B,UAAU,CAAC,EAAE,UAAU,CAAA;IAEvB;;;;;OAKG;IACH,eAAe,CAAC,EAAE,WAAW,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;IAE3C;;;;;OAKG;IACH,mBAAmB,CAAC,EAAE,WAAW,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAA;IAE9D;;;;;;;OAOG;IACH,gBAAgB,CAAC,EAAE,IAAI,GAAG,KAAK,GAAG,sBAAsB,CAAA;CACzD,CAAA;AAED,MAAM,MAAM,oBAAoB,GAAG,mBAAmB,GACpD,oBAAoB,GACpB,UAAU,GACV,oBAAoB,GACpB,kBAAkB,CAAA;AAEpB,qBAAa,aAAc,SAAQ,aAAa;IAC9C,SAAS,CAAC,QAAQ,CAAC,eAAe,EAAE,eAAe,CAAA;IAEnD,SAAgB,QAAQ,EAAE,gCAAgC,CAAA;IAC1D,SAAgB,aAAa,EAAE,aAAa,CAAA;IAE5C,SAAgB,oBAAoB,EAAE,MAAM,CAAA;IAE5C,SAAgB,cAAc,EAAE,cAAc,CAAA;IAC9C,SAAgB,aAAa,EAAE,aAAa,CAAA;IAC5C,SAAgB,aAAa,EAAE,aAAa,CAAA;IAC5C,SAAgB,cAAc,EAAE,cAAc,CAAA;IAC9C,SAAgB,YAAY,EAAE,YAAY,CAAA;gBAEvB,EAEjB,oBAA6C,EAC7C,WAA2B,EAC3B,eAA2C,EAE3C,QAAQ,EAER,SAA2B,EAC3B,KAAK,EACL,KAAK,EAAE,gCAAgC;IAGvC,YAAoC,EACpC,WAAkC,EAClC,UAAgC,EAGhC,WAAkC,EAClC,WAAkC,EAClC,YAAoC,EAEpC,eAGE,EACF,mBAGE,EAEF,gBAAgD,EAMhD,GAAG,IAAI,EACR,EAAE,oBAAoB;IA4DvB,IAAI,IAAI;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;MAEP;IAED;;OAEG;IACI,oBAAoB,CACzB,UAAU,EAAE,mCAAmC,EAC/C,UAAU,CAAC,EAAE,oBAAoB;IAiB5B,kBAAkB,CAAC,aAAa,EAAE,aAAa;cAKtC,kBAAkB,CAChC,WAAW,EAAE,sBAAsB,GAClC,OAAO,CAAC,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;cAmChB,SAAS,CACvB,MAAM,EAAE,MAAM,EACd,KAAK,EAAE,4BAA4B,GAClC,OAAO,CACN;QACE,OAAO,EAAE,mCAAmC,CAAA;KAC7C,GACD;QACE,OAAO,EAAE,mCAAmC,CAAA;QAC5C,eAAe,EAAE;YAAE,GAAG,EAAE,MAAM,CAAC;YAAC,GAAG,EAAE,MAAM,CAAA;SAAE,CAAA;QAC7C,GAAG,EAAE,MAAM,CAAA;KACZ,CACJ;IA6CD;;OAEG;IACU,0BAA0B,CACrC,WAAW,EAAE,sBAAsB,EACnC,oBAAoB,EAAE,4BAA4B,EAClD,OAAO,EAAE,IAAI,GAAG,MAAM,GACrB,OAAO,CAAC,gBAAgB,CAAC;YAkCd,2BAA2B;IA0DzC;;OAEG;IACU,SAAS,CACpB,iBAAiB,EAAE,0BAA0B,EAC7C,KAAK,EAAE,8BAA8B,EACrC,QAAQ,EAAE,QAAQ,EAClB,cAAc,EAAE,eAAe,GAC9B,OAAO,CAAC,2BAA2B,GAAG,gCAAgC,CAAC;cAgH1D,WAAW,CACzB,QAAQ,EAAE,QAAQ,EAClB,QAAQ,EAAE,QAAQ,EAClB,UAAU,EAAE,mCAAmC,GAC9C,OAAO,CACR;QACE,OAAO,EAAE,OAAO,CAAA;QAEhB,QAAQ,EAAE,OAAO,CAAA;QACjB,aAAa,EAAE,OAAO,CAAA;QACtB,eAAe,EAAE,OAAO,CAAA;QAExB,WAAW,EAAE,OAAO,CAAA;KACrB,EAAE,CACJ;IA4BY,KAAK,CAChB,iBAAiB,EAAE,sBAAsB,EACzC,cAAc,EAAE,eAAe,EAC/B,OAAO,EAAE,iBAAiB,EAC1B,OAAO,EAAE,IAAI,GAAG,MAAM,GACrB,OAAO,CAAC,kBAAkB,CAAC;cAyCd,SAAS,CACvB,MAAM,EAAE,MAAM,EACd,UAAU,EAAE,UAAU,EACtB,cAAc,EAAE,eAAe,EAC/B,KAAK,EAAE,uCAAuC,EAC9C,OAAO,EAAE,IAAI,GAAG,MAAM,GACrB,OAAO,CAAC,kBAAkB,CAAC;IAiExB,iBAAiB,CACrB,MAAM,EAAE,MAAM,EACd,UAAU,EAAE,UAAU,EACtB,cAAc,EAAE,eAAe,EAC/B,KAAK,EAAE,kCAAkC,EACzC,OAAO,EAAE,IAAI,GAAG,MAAM,GACrB,OAAO,CAAC,kBAAkB,CAAC;IAU9B;;OAEG;IACU,MAAM,CACjB,WAAW,EAAE,sBAAsB,EACnC,EAAE,KAAK,EAAE,EAAE,wBAAwB;cAoBZ,WAAW,CAClC,SAAS,EAAE,cAAc,EACzB,KAAK,EAAE,gBAAgB,EACvB,OAAO,EAAE,MAAM,GAAG,IAAI,EACtB,aAAa,CAAC,EAAE,wBAAwB,GACvC,OAAO,CAAC,uBAAuB,CAAC;CAgCpC"}