@atxp/server 0.2.22 → 0.4.0

package/dist/index.js

@@ -1,5 +1,609 @@
-export * from './atxpServer.js';
-export * from './types.js';
-export * from './atxpContext.js';
-export * from './requirePayment.js';
-//# sourceMappingURL=index.js.map
+import { AsyncLocalStorage } from 'async_hooks';
+import * as contentType from 'content-type';
+import { isJSONRPCRequest } from '@modelcontextprotocol/sdk/types.js';
+import { parseMcpMessages, paymentRequiredError, DEFAULT_AUTHORIZATION_SERVER, MemoryOAuthDb, OAuthResourceClient, ConsoleLogger } from '@atxp/common';
+
+var TokenProblem;
+(function (TokenProblem) {
+    TokenProblem["NO_TOKEN"] = "NO-TOKEN";
+    TokenProblem["NON_BEARER_AUTH_HEADER"] = "NON-BEARER-AUTH-HEADER";
+    TokenProblem["INVALID_TOKEN"] = "INVALID-TOKEN";
+    TokenProblem["INVALID_AUDIENCE"] = "INVALID-AUDIENCE";
+    TokenProblem["NON_SUFFICIENT_FUNDS"] = "NON-SUFFICIENT-FUNDS";
+    TokenProblem["INTROSPECT_ERROR"] = "INTROSPECT-ERROR";
+})(TokenProblem || (TokenProblem = {}));
+
+const contextStorage = new AsyncLocalStorage();
+function getATXPConfig() {
+    const context = contextStorage.getStore();
+    return context?.config ?? null;
+}
+function getATXPResource() {
+    const context = contextStorage.getStore();
+    return context?.resource ?? null;
+}
+// Helper function to get the current request's user
+function atxpAccountId() {
+    const context = contextStorage.getStore();
+    return context?.tokenData?.sub ?? null;
+}
+// Helper function to run code within a user context
+async function withATXPContext(config, resource, tokenInfo, next) {
+    config.logger.debug(`Setting user context to ${tokenInfo?.data?.sub ?? 'null'}`);
+    if (tokenInfo && tokenInfo.data?.sub) {
+        if (tokenInfo.token) {
+            const dbData = {
+                accessToken: tokenInfo.token,
+                resourceUrl: ''
+            };
+            // Save the token to the oAuthDB so that other users of the DB can access it
+            // if needed (ie, for token-exchange for downstream services)
+            await config.oAuthDb.saveAccessToken(tokenInfo.data.sub, '', dbData);
+        }
+        else {
+            config.logger.warn(`Setting user context with token data, but there was no token provided. This probably indicates a bug, since the data should be derived from the token`);
+            config.logger.debug(`Token data: ${JSON.stringify(tokenInfo.data)}`);
+        }
+    }
+    const ctx = {
+        tokenData: tokenInfo?.data || null,
+        config,
+        resource
+    };
+    return contextStorage.run(ctx, next);
+}
+
+/**
+ * Core platform-agnostic token checking logic
+ * Takes an authorization header string instead of platform-specific request objects
+ */
+async function checkTokenCore(config, resourceURL, authorizationHeader) {
+    const protocol = resourceURL.protocol;
+    const host = resourceURL.host;
+    const pathname = resourceURL.pathname;
+    const protectedResourceMetadataUrl = `${protocol}//${host}/.well-known/oauth-protected-resource${pathname}`;
+    const failure = {
+        passes: false,
+        resourceMetadataUrl: protectedResourceMetadataUrl,
+    };
+    // Extract the Bearer token from the Authorization header
+    if (!authorizationHeader) {
+        return { ...failure, problem: TokenProblem.NO_TOKEN, data: null, token: null };
+    }
+    if (!authorizationHeader.startsWith('Bearer ')) {
+        return { ...failure, problem: TokenProblem.NON_BEARER_AUTH_HEADER, data: null, token: null };
+    }
+    const token = authorizationHeader.substring(7);
+    try {
+        const introspectionResult = await config.oAuthClient.introspectToken(config.server, token);
+        if (!introspectionResult.active) {
+            return { ...failure, problem: TokenProblem.INVALID_TOKEN, data: null, token };
+        }
+        return {
+            passes: true,
+            data: introspectionResult,
+            token,
+        };
+    }
+    catch (error) {
+        config.logger.error(`Error during token introspection: ${error}`);
+        return { ...failure, problem: TokenProblem.INTROSPECT_ERROR, data: null, token };
+    }
+}
+
+/**
+ * Core platform-agnostic OAuth challenge response creation
+ * Returns the response data instead of writing to platform-specific response objects
+ */
+function createOAuthChallengeResponseCore(tokenCheck) {
+    if (tokenCheck.passes) {
+        return null;
+    }
+    let status = 401;
+    let body = {};
+    // https://datatracker.ietf.org/doc/html/rfc6750#section-3.1
+    switch (tokenCheck.problem) {
+        case TokenProblem.NO_TOKEN:
+            break;
+        case TokenProblem.NON_BEARER_AUTH_HEADER:
+            status = 400;
+            body = { error: 'invalid_request', error_description: 'Authorization header did not include a Bearer token' };
+            break;
+        case TokenProblem.INVALID_TOKEN:
+            body = { error: 'invalid_token', error_description: 'Token is not active' };
+            break;
+        case TokenProblem.INVALID_AUDIENCE:
+            body = { error: 'invalid_token', error_description: 'Token does not match the expected audience' };
+            break;
+        case TokenProblem.NON_SUFFICIENT_FUNDS:
+            status = 403;
+            body = { error: 'insufficient_scope', error_description: 'Non sufficient funds' };
+            break;
+        case TokenProblem.INTROSPECT_ERROR:
+            status = 502;
+            body = { error: 'server_error', error_description: 'An internal server error occurred' };
+            break;
+    }
+    const wwwAuthenticate = `Bearer resource_metadata="${tokenCheck.resourceMetadataUrl}"`;
+    return {
+        status,
+        headers: {
+            'Content-Type': 'application/json',
+            'WWW-Authenticate': wwwAuthenticate
+        },
+        body: JSON.stringify(body)
+    };
+}
+
+/**
+ * Core platform-agnostic MCP request parsing logic
+ * Takes parsed JSON and request metadata instead of platform-specific request objects
+ */
+function parseMcpRequestsCore(config, requestUrl, method, parsedBody) {
+    if (!method || method.toLowerCase() !== 'post') {
+        return [];
+    }
+    // The middleware has to be mounted at the root to serve the protected resource metadata,
+    // but the actual MCP server it's controlling is specified by the mountPath.
+    const path = requestUrl.pathname.replace(/\/$/, '');
+    const mountPath = config.mountPath.replace(/\/$/, '');
+    if (path !== mountPath && path !== `${mountPath}/message`) {
+        config.logger.debug(`Request path (${path}) does not match the mountPath (${mountPath}), skipping MCP middleware`);
+        return [];
+    }
+    if (!parsedBody || typeof parsedBody !== 'object') {
+        return [];
+    }
+    // Check if it's a JSON-RPC request
+    if (Array.isArray(parsedBody)) {
+        // Batch request
+        return parsedBody.filter(msg => msg && typeof msg === 'object' &&
+            msg.jsonrpc === '2.0' &&
+            msg.method &&
+            msg.id !== undefined);
+    }
+    else {
+        // Single request
+        const body = parsedBody;
+        if (body.jsonrpc === '2.0' && body.method && body.id !== undefined) {
+            return [body];
+        }
+    }
+    return [];
+}
+
+/**
+ * Node.js HTTP implementation of token checking
+ * Extracts data from Node.js IncomingMessage and delegates to core logic
+ */
+async function checkToken(config, resourceURL, req) {
+    // Extract the authorization header from Node.js request
+    const authorizationHeader = req.headers.authorization || null;
+    // Use the shared core logic
+    return checkTokenCore(config, resourceURL, authorizationHeader);
+}
+
+/**
+ * Node.js HTTP implementation of OAuth challenge sending
+ * Uses Node.js ServerResponse and delegates to core logic
+ */
+function sendOAuthChallenge(res, tokenCheck) {
+    // Use the shared core logic to get response data
+    const responseData = createOAuthChallengeResponseCore(tokenCheck);
+    if (!responseData) {
+        return false;
+    }
+    // Apply the response data to Node.js ServerResponse
+    Object.entries(responseData.headers).forEach(([key, value]) => {
+        res.setHeader(key, value);
+    });
+    res.writeHead(responseData.status);
+    res.end(responseData.body);
+    return true;
+}
+function sendProtectedResourceMetadata$1(res, metadata) {
+    if (!metadata) {
+        return false;
+    }
+    res.setHeader('Content-Type', 'application/json');
+    res.writeHead(200);
+    res.end(JSON.stringify(metadata));
+    return true;
+}
+function sendOAuthMetadata$1(res, metadata) {
+    if (!metadata) {
+        return false;
+    }
+    res.setHeader('Content-Type', 'application/json');
+    res.writeHead(200);
+    res.end(JSON.stringify(metadata));
+    return true;
+}
+
+// Helper function to parse size strings like "4mb" to bytes
+function parseSize(size) {
+    const match = size.match(/^(\d+(?:\.\d+)?)\s*([kmgt]?b?)$/i);
+    if (!match) {
+        throw new Error(`Invalid size format: ${size}`);
+    }
+    const value = parseFloat(match[1]);
+    const unit = (match[2] || 'b').toLowerCase();
+    const multipliers = {
+        'b': 1,
+        'kb': 1024,
+        'mb': 1024 * 1024,
+        'gb': 1024 * 1024 * 1024,
+        'tb': 1024 * 1024 * 1024 * 1024,
+    };
+    return Math.floor(value * (multipliers[unit] || 1));
+}
+async function getRawBody(req, encoding, maxSize) {
+    // Use native Node.js approach to read request body
+    const chunks = [];
+    let totalSize = 0;
+    const maxSizeBytes = parseSize(maxSize);
+    for await (const chunk of req) {
+        totalSize += chunk.length;
+        if (totalSize > maxSizeBytes) {
+            throw new Error(`Request body too large. Maximum size is ${maxSize}`);
+        }
+        chunks.push(chunk);
+    }
+    const body = Buffer.concat(chunks);
+    return body.toString(encoding);
+}
+
+// Useful reference for dealing with low-level http requests:
+// https://github.com/modelcontextprotocol/typescript-sdk/blob/c6ac083b1b37b222b5bfba5563822daa5d03372e/src/server/streamableHttp.ts#L375
+// Using the same value as MCP SDK
+const MAXIMUM_MESSAGE_SIZE = "4mb";
+/**
+ * Node.js HTTP implementation of MCP request parsing
+ * Handles Node.js IncomingMessage parsing and delegates to core logic
+ */
+async function parseMcpRequests(config, requestUrl, req, parsedBody) {
+    parsedBody = parsedBody ?? await parseBody(req, config.logger);
+    // Use the shared core logic for basic validation and filtering
+    const basicMessages = parseMcpRequestsCore(config, requestUrl, req.method || '', parsedBody);
+    // Only proceed with MCP processing if the basic validation passed
+    if (basicMessages.length === 0) {
+        return [];
+    }
+    // Apply additional MCP-specific processing (parseMcpMessages handles SSE and other formats)
+    const messages = await parseMcpMessages(parsedBody, config.logger);
+    const requests = messages.filter(msg => isJSONRPCRequest(msg));
+    if (requests.length !== messages.length) {
+        config.logger.debug(`Dropped ${messages.length - requests.length} MCP messages that were not MCP requests`);
+    }
+    return requests;
+}
+async function parseBody(req, logger) {
+    try {
+        const ct = req.headers["content-type"];
+        let encoding = "utf-8";
+        if (ct) {
+            const parsedCt = contentType.parse(ct);
+            encoding = parsedCt.parameters.charset ?? "utf-8";
+        }
+        const body = await getRawBody(req, encoding, MAXIMUM_MESSAGE_SIZE);
+        return JSON.parse(body);
+    }
+    catch (error) {
+        logger.error(error.message);
+        return undefined;
+    }
+}
+
+/**
+ * Web API implementation of token checking for Cloudflare Workers, Deno, etc.
+ * Extracts data from Web API Request and delegates to core logic
+ */
+async function checkTokenWebApi(config, resourceURL, request) {
+    // Extract authorization header from Web API request
+    const authorizationHeader = request.headers.get('authorization');
+    // Use the shared core logic
+    return checkTokenCore(config, resourceURL, authorizationHeader);
+}
+
+/**
+ * Web API implementation of OAuth challenge sending for Cloudflare Workers, Deno, etc.
+ * Uses Web API Response and delegates to core logic
+ */
+function sendOAuthChallengeWebApi(tokenCheck) {
+    // Use the shared core logic to get response data
+    const responseData = createOAuthChallengeResponseCore(tokenCheck);
+    if (!responseData) {
+        return null;
+    }
+    // Convert to Web API Response
+    return new Response(responseData.body, {
+        status: responseData.status,
+        headers: responseData.headers
+    });
+}
+function sendProtectedResourceMetadata(metadata) {
+    if (!metadata) {
+        return null;
+    }
+    return new Response(JSON.stringify(metadata), {
+        status: 200,
+        headers: {
+            'Content-Type': 'application/json'
+        }
+    });
+}
+function sendOAuthMetadata(metadata) {
+    if (!metadata) {
+        return null;
+    }
+    return new Response(JSON.stringify(metadata), {
+        status: 200,
+        headers: {
+            'Content-Type': 'application/json'
+        }
+    });
+}
+
+/**
+ * Web API implementation of MCP request parsing for Cloudflare Workers, Deno, etc.
+ * Handles Web API Request parsing and delegates to core logic
+ */
+async function parseMcpRequestsWebApi(config, request) {
+    const requestUrl = new URL(request.url);
+    try {
+        const text = await request.text();
+        if (!text) {
+            return [];
+        }
+        const parsedBody = JSON.parse(text);
+        // Use the shared core logic
+        return parseMcpRequestsCore(config, requestUrl, request.method, parsedBody);
+    }
+    catch (error) {
+        config.logger.debug(`Error parsing MCP request: ${error instanceof Error ? error.message : String(error)}`);
+        return [];
+    }
+}
+
+async function requirePayment(paymentConfig) {
+    const config = getATXPConfig();
+    if (!config) {
+        throw new Error('No config found');
+    }
+    const user = atxpAccountId();
+    if (!user) {
+        config.logger.error('No user found');
+        throw new Error('No user found');
+    }
+    const charge = {
+        amount: paymentConfig.price,
+        currency: config.currency,
+        network: config.network,
+        destination: config.destination,
+        source: user,
+        payeeName: config.payeeName,
+    };
+    config.logger.debug(`Charging amount ${charge.amount}, destination ${charge.destination}, source ${charge.source}`);
+    const chargeResponse = await config.paymentServer.charge(charge);
+    if (chargeResponse.success) {
+        config.logger.info(`Charged ${charge.amount} for source ${charge.source}`);
+        return;
+    }
+    const existingPaymentId = await paymentConfig.getExistingPaymentId?.();
+    if (existingPaymentId) {
+        config.logger.info(`Found existing payment ID ${existingPaymentId}`);
+        throw paymentRequiredError(config.server, existingPaymentId, charge.amount);
+    }
+    const paymentId = await config.paymentServer.createPaymentRequest(charge);
+    config.logger.info(`Created payment request ${paymentId}`);
+    throw paymentRequiredError(config.server, paymentId, charge.amount);
+}
+
+/**
+ * ATXP Payment Server implementation
+ *
+ * This class handles payment operations with the ATXP authorization server.
+ *
+ * @example
+ * ```typescript
+ * const paymentServer = new ATXPPaymentServer(
+ *   'https://auth.atxp.ai',
+ *   logger
+ * );
+ * ```
+ */
+class ATXPPaymentServer {
+    constructor(server, logger, fetchFn = fetch) {
+        this.server = server;
+        this.logger = logger;
+        this.fetchFn = fetchFn;
+        this.charge = async ({ source, destination, network, currency, amount }) => {
+            const body = { source, destination, network, currency, amount };
+            const chargeResponse = await this.makeRequest('POST', '/charge', body);
+            const json = await chargeResponse.json();
+            if (chargeResponse.status === 200) {
+                return { success: true, requiredPayment: null };
+            }
+            else if (chargeResponse.status === 402) {
+                return { success: false, requiredPayment: json };
+            }
+            else {
+                const msg = `Unexpected status code ${chargeResponse.status} from payment server POST /charge endpoint`;
+                this.logger.warn(msg);
+                this.logger.debug(`Response body: ${JSON.stringify(json)}`);
+                throw new Error(msg);
+            }
+        };
+        this.createPaymentRequest = async (charge) => {
+            const response = await this.makeRequest('POST', '/payment-request', charge);
+            const json = await response.json();
+            if (response.status !== 200) {
+                this.logger.warn(`POST /payment-request responded with unexpected HTTP status ${response.status}`);
+                this.logger.debug(`Response body: ${JSON.stringify(json)}`);
+                throw new Error(`POST /payment-request responded with unexpected HTTP status ${response.status}`);
+            }
+            if (!json.id) {
+                throw new Error(`POST /payment-request response did not contain an id`);
+            }
+            return json.id;
+        };
+        /**
+         * Makes authenticated requests to the ATXP authorization server
+         *
+         * @param method - HTTP method ('GET' or 'POST')
+         * @param path - API endpoint path
+         * @param body - Request body (for POST requests)
+         * @returns Promise<Response> - The HTTP response from the server
+         *
+         * @example
+         * ```typescript
+         * const response = await paymentServer.makeRequest('POST', '/charge', {
+         *   source: 'user123',
+         *   destination: 'merchant456',
+         *   amount: new BigNumber('0.01')
+         * });
+         * ```
+         */
+        this.makeRequest = async (method, path, body) => {
+            const url = new URL(path, this.server);
+            const response = await this.fetchFn(url, {
+                method,
+                headers: {
+                    'Content-Type': 'application/json'
+                },
+                body: JSON.stringify(body)
+            });
+            return response;
+        };
+    }
+}
+
+const DEFAULT_CONFIG = {
+    mountPath: '/',
+    currency: 'USDC',
+    network: 'base',
+    server: DEFAULT_AUTHORIZATION_SERVER,
+    payeeName: 'An ATXP Server',
+    allowHttp: false, // May be overridden in buildServerConfig by process.env.NODE_ENV
+    resource: null, // Set dynamically from the request URL
+};
+function buildServerConfig(args) {
+    if (!args.destination) {
+        throw new Error('destination is required');
+    }
+    // Read environment variables at runtime, not module load time
+    const envDefaults = {
+        ...DEFAULT_CONFIG,
+        atxpAuthClientToken: process.env.ATXP_AUTH_CLIENT_TOKEN,
+        allowHttp: process.env.NODE_ENV === 'development',
+    };
+    const withDefaults = { ...envDefaults, ...args };
+    const oAuthDb = withDefaults.oAuthDb ?? new MemoryOAuthDb();
+    const oAuthClient = withDefaults.oAuthClient ?? new OAuthResourceClient({
+        db: oAuthDb,
+        allowInsecureRequests: withDefaults.allowHttp,
+        clientName: withDefaults.payeeName,
+    });
+    const logger = withDefaults.logger ?? new ConsoleLogger();
+    const paymentServer = withDefaults.paymentServer ?? new ATXPPaymentServer(withDefaults.server, logger);
+    const built = { oAuthDb, oAuthClient, paymentServer, logger };
+    return Object.freeze({ ...withDefaults, ...built });
+}
+
+function getPath(url) {
+    const fullPath = url.pathname.replace(/^\/$/, '');
+    return fullPath;
+}
+function getProtocolFromHeaders(headers, requestProtocol) {
+    // Check for X-Forwarded-Proto header (common proxy header)
+    const forwardedProto = headers['x-forwarded-proto'] || headers['X-Forwarded-Proto'];
+    if (forwardedProto) {
+        const proto = Array.isArray(forwardedProto) ? forwardedProto[0] : forwardedProto;
+        return proto === 'https' ? 'https:' : 'http:';
+    }
+    // Check for X-Forwarded-Protocol header (alternative)
+    const forwardedProtocol = headers['x-forwarded-protocol'] || headers['X-Forwarded-Protocol'];
+    if (forwardedProtocol) {
+        const proto = Array.isArray(forwardedProtocol) ? forwardedProtocol[0] : forwardedProtocol;
+        return proto === 'https' ? 'https:' : 'http:';
+    }
+    // Fall back to request protocol
+    return requestProtocol;
+}
+function getResource(config, requestUrl, headers) {
+    if (config.resource) {
+        return new URL(config.resource);
+    }
+    const originalProtocol = headers ? getProtocolFromHeaders(headers, requestUrl.protocol) : requestUrl.protocol;
+    const protocol = config.allowHttp ? originalProtocol : 'https:';
+    const url = new URL(`${protocol}//${requestUrl.host}${requestUrl.pathname}`);
+    const fullPath = getPath(url);
+    // If this is a PRM path, convert it into the path for the resource this is the metadata for
+    const resourcePath = fullPath.replace('/.well-known/oauth-protected-resource', '').replace(/\/$/, '');
+    const resource = new URL(`${protocol}//${requestUrl.host}${resourcePath}`);
+    return resource;
+}
+
+async function getOAuthMetadata(config, requestUrl) {
+    if (isOAuthMetadataRequest(config, requestUrl)) {
+        try {
+            const authServer = await config.oAuthClient.authorizationServerFromUrl(new URL(config.server));
+            return {
+                issuer: config.server,
+                authorization_endpoint: authServer.authorization_endpoint,
+                response_types_supported: authServer.response_types_supported,
+                grant_types_supported: authServer.grant_types_supported,
+                token_endpoint: authServer.token_endpoint,
+                token_endpoint_auth_methods_supported: authServer.token_endpoint_auth_methods_supported,
+                registration_endpoint: authServer.registration_endpoint,
+                revocation_endpoint: authServer.revocation_endpoint,
+                introspection_endpoint: authServer.introspection_endpoint,
+                introspection_endpoint_auth_methods_supported: authServer.introspection_endpoint_auth_methods_supported,
+                code_challenge_methods_supported: authServer.code_challenge_methods_supported,
+                scopes_supported: authServer.scopes_supported
+            };
+        }
+        catch (error) {
+            config.logger.error(`Error fetching authorization server configuration from ${config.server}: ${error}`);
+            throw error;
+        }
+    }
+    return null;
+}
+function isOAuthMetadataRequest(config, requestUrl) {
+    const path = getPath(requestUrl).replace(/\/$/, '');
+    return path === '/.well-known/oauth-authorization-server';
+}
+
+function getProtectedResourceMetadata(config, requestUrl, headers) {
+    if (isProtectedResourceMetadataRequest(config, requestUrl, headers)) {
+        const resource = getResource(config, requestUrl, headers);
+        return {
+            resource,
+            resource_name: config.payeeName || resource.toString(),
+            authorization_servers: [config.server],
+            bearer_methods_supported: ['header'],
+            scopes_supported: ['read', 'write'],
+        };
+    }
+    return null;
+}
+function isProtectedResourceMetadataRequest(config, requestUrl, headers) {
+    const path = getPath(requestUrl);
+    if (!path.startsWith('/.well-known/oauth-protected-resource')) {
+        return false;
+    }
+    const resource = getResource(config, requestUrl, headers);
+    const resourcePath = getPath(resource);
+    const mountPath = config.mountPath.replace(/\/$/, '');
+    if (resourcePath === mountPath) {
+        return true;
+    }
+    if (resourcePath === `${mountPath}/message`) {
+        return true;
+    }
+    return false;
+}
+
+export { ATXPPaymentServer, DEFAULT_CONFIG, TokenProblem, atxpAccountId, buildServerConfig, checkTokenCore, checkToken as checkTokenNode, checkTokenWebApi, createOAuthChallengeResponseCore, getATXPConfig, getATXPResource, getOAuthMetadata, getProtectedResourceMetadata, getResource, parseBody as parseBodyNode, parseMcpRequestsCore, parseMcpRequests as parseMcpRequestsNode, parseMcpRequestsWebApi, requirePayment, sendOAuthChallenge, sendOAuthChallengeWebApi, sendOAuthMetadata$1 as sendOAuthMetadataNode, sendOAuthMetadata as sendOAuthMetadataWebApi, sendProtectedResourceMetadata$1 as sendProtectedResourceMetadataNode, sendProtectedResourceMetadata as sendProtectedResourceMetadataWebApi, withATXPContext };
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,iBAAiB,CAAC;AAChC,cAAc,YAAY,CAAC;AAC3B,cAAc,kBAAkB,CAAC;AACjC,cAAc,qBAAqB,CAAC"}
+{"version":3,"file":"index.js","sources":["../src/types.ts","../src/atxpContext.ts","../src/core/token.ts","../src/core/oauth.ts","../src/core/mcp.ts","../src/node/token.ts","../src/node/oauth.ts","../src/node/getRawBody.ts","../src/node/http.ts","../src/webapi/token.ts","../src/webapi/oauth.ts","../src/webapi/mcp.ts","../src/requirePayment.ts","../src/paymentServer.ts","../src/serverConfig.ts","../src/getResource.ts","../src/oAuthMetadata.ts","../src/protectedResourceMetadata.ts"],"sourcesContent":[null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null],"names":["sendProtectedResourceMetadata","sendOAuthMetadata"],"mappings":";;;;;IAmDY;AAAZ,CAAA,UAAY,YAAY,EAAA;AACtB,IAAA,YAAA,CAAA,UAAA,CAAA,GAAA,UAAqB;AACrB,IAAA,YAAA,CAAA,wBAAA,CAAA,GAAA,wBAAiD;AACjD,IAAA,YAAA,CAAA,eAAA,CAAA,GAAA,eAA+B;AAC/B,IAAA,YAAA,CAAA,kBAAA,CAAA,GAAA,kBAAqC;AACrC,IAAA,YAAA,CAAA,sBAAA,CAAA,GAAA,sBAA6C;AAC7C,IAAA,YAAA,CAAA,kBAAA,CAAA,GAAA,kBAAqC;AACvC,CAAC,EAPW,YAAY,KAAZ,YAAY,GAAA,EAAA,CAAA,CAAA;;AC/CxB,MAAM,cAAc,GAAG,IAAI,iBAAiB,EAAsB;SAQlD,aAAa,GAAA;AAC3B,IAAA,MAAM,OAAO,GAAG,cAAc,CAAC,QAAQ,EAAE;AACzC,IAAA,OAAO,OAAO,EAAE,MAAM,IAAI,IAAI;AAChC;SAEgB,eAAe,GAAA;AAC7B,IAAA,MAAM,OAAO,GAAG,cAAc,CAAC,QAAQ,EAAE;AACzC,IAAA,OAAO,OAAO,EAAE,QAAQ,IAAI,IAAI;AAClC;AAEA;SACgB,aAAa,GAAA;AAC3B,IAAA,MAAM,OAAO,GAAG,cAAc,CAAC,QAAQ,EAAE;AACzC,IAAA,OAAO,OAAO,EAAE,SAAS,EAAE,GAAG,IAAI,IAAI;AACxC;AAEA;AACO,eAAe,eAAe,CAAC,MAAkB,EAAE,QAAa,EAAE,SAAoD,EAAE,IAAgB,EAAA;AAC7I,IAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,wBAAA,EAA2B,SAAS,EAAE,IAAI,EAAE,GAAG,IAAI,MAAM,CAAA,CAAE,CAAC;IAEhF,IAAG,SAAS,IAAI,SAAS,CAAC,IAAI,EAAE,GAAG,EAAE;AACnC,QAAA,IAAG,SAAS,CAAC,KAAK,EAAE;AAClB,YAAA,MAAM,MAAM,GAAG;gBACb,WAAW,EAAE,SAAS,CAAC,KAAM;AAC7B,gBAAA,WAAW,EAAE;aACd;;;AAGD,YAAA,MAAM,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,GAAG,EAAE,EAAE,EAAE,MAAM,CAAC;QACtE;aAAO;AACL,YAAA,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,qJAAA,CAAuJ,CAAC;AAC3K,YAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,IAAI,CAAC,CAAA,CAAE,CAAC;QACtE;IACF;AAEA,IAAA,MAAM,GAAG,GAAG;AACV,QAAA,SAAS,EAAE,SAAS,EAAE,IAAI,IAAI,IAAI;QAClC,MAAM;QACN;KACD;IACD,OAAO,cAAc,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC;AACtC;;ACnDA;;;AAGG;AACI,eAAe,cAAc,CAClC,MAAkB,EAClB,WAAgB,EAChB,mBAAkC,EAAA;AAElC,IAAA,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ;AACrC,IAAA,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI;AAC7B,IAAA,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ;IACrC,MAAM,4BAA4B,GAAG,CAAA,EAAG,QAAQ,KAAK,IAAI,CAAA,qCAAA,EAAwC,QAAQ,CAAA,CAAE;AAE3G,IAAA,MAAM,OAAO,GAAG;AACd,QAAA,MAAM,EAAE,KAAc;AACtB,QAAA,mBAAmB,EAAE,4BAA4B;KAClD;;IAGD,IAAI,CAAC,mBAAmB,EAAE;AACxB,QAAA,OAAO,EAAC,GAAG,OAAO,EAAE,OAAO,EAAE,YAAY,CAAC,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAC;IAC9E;IACA,IAAI,CAAC,mBAAmB,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE;AAC9C,QAAA,OAAO,EAAC,GAAG,OAAO,EAAE,OAAO,EAAE,YAAY,CAAC,sBAAsB,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAC;IAC5F;IAEA,MAAM,KAAK,GAAG,mBAAmB,CAAC,SAAS,CAAC,CAAC,CAAC;AAE9C,IAAA,IAAI;AACF,QAAA,MAAM,mBAAmB,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,eAAe,CAAC,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC;AAE1F,QAAA,IAAI,CAAC,mBAAmB,CAAC,MAAM,EAAE;AAC/B,YAAA,OAAO,EAAC,GAAG,OAAO,EAAE,OAAO,EAAE,YAAY,CAAC,aAAa,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAC;QAC7E;QAEA,OAAO;AACL,YAAA,MAAM,EAAE,IAAI;AACZ,YAAA,IAAI,EAAE,mBAAmB;YACzB,KAAK;SACN;IACH;IAAE,OAAO,KAAK,EAAE;QACd,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,kCAAA,EAAqC,KAAK,CAAA,CAAE,CAAC;AACjE,QAAA,OAAO,EAAC,GAAG,OAAO,EAAE,OAAO,EAAE,YAAY,CAAC,gBAAgB,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAC;IAChF;AACF;;AC7CA;;;AAGG;AACG,SAAU,gCAAgC,CAAC,UAAsB,EAAA;AAKrE,IAAA,IAAI,UAAU,CAAC,MAAM,EAAE;AACrB,QAAA,OAAO,IAAI;IACb;IAEA,IAAI,MAAM,GAAG,GAAG;IAChB,IAAI,IAAI,GAAkE,EAAE;;AAG5E,IAAA,QAAQ,UAAU,CAAC,OAAO;QACxB,KAAK,YAAY,CAAC,QAAQ;YACxB;QACF,KAAK,YAAY,CAAC,sBAAsB;YACtC,MAAM,GAAG,GAAG;YACZ,IAAI,GAAG,EAAE,KAAK,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,qDAAqD,EAAE;YAC7G;QACF,KAAK,YAAY,CAAC,aAAa;YAC7B,IAAI,GAAG,EAAE,KAAK,EAAE,eAAe,EAAE,iBAAiB,EAAE,qBAAqB,EAAE;YAC3E;QACF,KAAK,YAAY,CAAC,gBAAgB;YAChC,IAAI,GAAG,EAAE,KAAK,EAAE,eAAe,EAAE,iBAAiB,EAAE,4CAA4C,EAAE;YAClG;QACF,KAAK,YAAY,CAAC,oBAAoB;YACpC,MAAM,GAAG,GAAG;YACZ,IAAI,GAAG,EAAE,KAAK,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,sBAAsB,EAAE;YACjF;QACF,KAAK,YAAY,CAAC,gBAAgB;YAChC,MAAM,GAAG,GAAG;YACZ,IAAI,GAAG,EAAE,KAAK,EAAE,cAAc,EAAE,iBAAiB,EAAE,mCAAmC,EAAE;YACxF;;AAMJ,IAAA,MAAM,eAAe,GAAG,CAAA,0BAAA,EAA6B,UAAU,CAAC,mBAAmB,GAAG;IAEtF,OAAO;QACL,MAAM;AACN,QAAA,OAAO,EAAE;AACP,YAAA,cAAc,EAAE,kBAAkB;AAClC,YAAA,kBAAkB,EAAE;AACrB,SAAA;AACD,QAAA,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI;KAC1B;AACH;;ACrDA;;;AAGG;AACG,SAAU,oBAAoB,CAClC,MAAkB,EAClB,UAAe,EACf,MAAc,EACd,UAAmB,EAAA;IAEnB,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,WAAW,EAAE,KAAK,MAAM,EAAE;AAC9C,QAAA,OAAO,EAAE;IACX;;;AAIA,IAAA,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;AACnD,IAAA,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;IACrD,IAAI,IAAI,KAAK,SAAS,IAAI,IAAI,KAAK,CAAA,EAAG,SAAS,CAAA,QAAA,CAAU,EAAE;QACzD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,cAAA,EAAiB,IAAI,CAAA,gCAAA,EAAmC,SAAS,CAAA,0BAAA,CAA4B,CAAC;AAClH,QAAA,OAAO,EAAE;IACX;IAEA,IAAI,CAAC,UAAU,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE;AACjD,QAAA,OAAO,EAAE;IACX;;AAGA,IAAA,IAAI,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE;;AAE7B,QAAA,OAAO,UAAU,CAAC,MAAM,CAAC,GAAG,IAC1B,GAAG,IAAI,OAAO,GAAG,KAAK,QAAQ;YAC9B,GAAG,CAAC,OAAO,KAAK,KAAK;AACrB,YAAA,GAAG,CAAC,MAAM;AACV,YAAA,GAAG,CAAC,EAAE,KAAK,SAAS,CACrB;IACH;SAAO;;QAEL,MAAM,IAAI,GAAG,UAA+D;AAC5E,QAAA,IAAI,IAAI,CAAC,OAAO,KAAK,KAAK,IAAI,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,EAAE,KAAK,SAAS,EAAE;YAClE,OAAO,CAAC,IAAI,CAAC;QACf;IACF;AAEA,IAAA,OAAO,EAAE;AACX;;AC3CA;;;AAGG;AACI,eAAe,UAAU,CAAC,MAAkB,EAAE,WAAgB,EAAE,GAAoB,EAAA;;IAEzF,MAAM,mBAAmB,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,IAAI,IAAI;;IAG7D,OAAO,cAAc,CAAC,MAAM,EAAE,WAAW,EAAE,mBAAmB,CAAC;AACjE;;ACTA;;;AAGG;AACG,SAAU,kBAAkB,CAAC,GAAmB,EAAE,UAAsB,EAAA;;AAE5E,IAAA,MAAM,YAAY,GAAG,gCAAgC,CAAC,UAAU,CAAC;IAEjE,IAAI,CAAC,YAAY,EAAE;AACjB,QAAA,OAAO,KAAK;IACd;;AAGA,IAAA,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,KAAI;AAC5D,QAAA,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,KAAK,CAAC;AAC3B,IAAA,CAAC,CAAC;AACF,IAAA,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,MAAM,CAAC;AAClC,IAAA,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC;AAE1B,IAAA,OAAO,IAAI;AACb;AAEM,SAAUA,+BAA6B,CAAC,GAAmB,EAAE,QAA0C,EAAA;IAC3G,IAAI,CAAC,QAAQ,EAAE;AACb,QAAA,OAAO,KAAK;IACd;AACA,IAAA,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC;AACjD,IAAA,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC;IAClB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;AACjC,IAAA,OAAO,IAAI;AACb;AAEM,SAAUC,mBAAiB,CAAC,GAAmB,EAAE,QAA0C,EAAA;IAC/F,IAAI,CAAC,QAAQ,EAAE;AACb,QAAA,OAAO,KAAK;IACd;AACA,IAAA,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC;AACjD,IAAA,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC;IAClB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;AACjC,IAAA,OAAO,IAAI;AACb;;AC3CA;AACA,SAAS,SAAS,CAAC,IAAY,EAAA;IAC7B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,kCAAkC,CAAC;IAC5D,IAAI,CAAC,KAAK,EAAE;AACV,QAAA,MAAM,IAAI,KAAK,CAAC,wBAAwB,IAAI,CAAA,CAAE,CAAC;IACjD;IAEA,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AAClC,IAAA,MAAM,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,EAAE,WAAW,EAAE;AAE5C,IAAA,MAAM,WAAW,GAA2B;AAC1C,QAAA,GAAG,EAAE,CAAC;AACN,QAAA,IAAI,EAAE,IAAI;QACV,IAAI,EAAE,IAAI,GAAG,IAAI;AACjB,QAAA,IAAI,EAAE,IAAI,GAAG,IAAI,GAAG,IAAI;AACxB,QAAA,IAAI,EAAE,IAAI,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI;KAChC;AAED,IAAA,OAAO,IAAI,CAAC,KAAK,CAAC,KAAK,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;AACrD;AAEO,eAAe,UAAU,CAAC,GAAoB,EAAE,QAAgB,EAAE,OAAe,EAAA;;IAEtF,MAAM,MAAM,GAAa,EAAE;IAC3B,IAAI,SAAS,GAAG,CAAC;AACjB,IAAA,MAAM,YAAY,GAAG,SAAS,CAAC,OAAO,CAAC;AAEvC,IAAA,WAAW,MAAM,KAAK,IAAI,GAAG,EAAE;AAC7B,QAAA,SAAS,IAAI,KAAK,CAAC,MAAM;AACzB,QAAA,IAAI,SAAS,GAAG,YAAY,EAAE;AAC5B,YAAA,MAAM,IAAI,KAAK,CAAC,2CAA2C,OAAO,CAAA,CAAE,CAAC;QACvE;AACA,QAAA,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC;IACpB;IAEA,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;AAClC,IAAA,OAAO,IAAI,CAAC,QAAQ,CAAC,QAA0B,CAAC;AAClD;;AChCA;AACA;AAEA;AACA,MAAM,oBAAoB,GAAG,KAAK;AAElC;;;AAGG;AACI,eAAe,gBAAgB,CAAC,MAAkB,EAAE,UAAe,EAAE,GAAoB,EAAE,UAAoB,EAAA;AACpH,IAAA,UAAU,GAAG,UAAU,IAAI,MAAM,SAAS,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC;;AAG9D,IAAA,MAAM,aAAa,GAAG,oBAAoB,CAAC,MAAM,EAAE,UAAU,EAAE,GAAG,CAAC,MAAM,IAAI,EAAE,EAAE,UAAU,CAAC;;AAG5F,IAAA,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE;AAC9B,QAAA,OAAO,EAAE;IACX;;IAGA,MAAM,QAAQ,GAAG,MAAM,gBAAgB,CAAC,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC;AAElE,IAAA,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,GAAG,IAAI,gBAAgB,CAAC,GAAG,CAAC,CAAC;IAC9D,IAAI,QAAQ,CAAC,MAAM,KAAK,QAAQ,CAAC,MAAM,EAAE;AACvC,QAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,QAAA,EAAW,QAAQ,CAAC,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAA,wCAAA,CAA0C,CAAC;IAC7G;AAEA,IAAA,OAAO,QAAQ;AACjB;AAEO,eAAe,SAAS,CAAC,GAAoB,EAAE,MAAc,EAAA;AAClE,IAAA,IAAI;QACF,MAAM,EAAE,GAAG,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC;QAEtC,IAAI,QAAQ,GAAG,OAAO;QACtB,IAAI,EAAE,EAAE;YACN,MAAM,QAAQ,GAAG,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC;YACtC,QAAQ,GAAG,QAAQ,CAAC,UAAU,CAAC,OAAO,IAAI,OAAO;QACnD;QACA,MAAM,IAAI,GAAG,MAAM,UAAU,CAAC,GAAG,EAAE,QAAQ,EAAE,oBAAoB,CAAC;AAClE,QAAA,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC;IACzB;IAAE,OAAO,KAAK,EAAE;AACd,QAAA,MAAM,CAAC,KAAK,CAAE,KAAe,CAAC,OAAO,CAAC;AACtC,QAAA,OAAO,SAAS;IAClB;AACF;;ACnDA;;;AAGG;AACI,eAAe,gBAAgB,CACpC,MAAkB,EAClB,WAAgB,EAChB,OAAgB,EAAA;;IAGhB,MAAM,mBAAmB,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;;IAGhE,OAAO,cAAc,CAAC,MAAM,EAAE,WAAW,EAAE,mBAAmB,CAAC;AACjE;;ACbA;;;AAGG;AACG,SAAU,wBAAwB,CAAC,UAAsB,EAAA;;AAE7D,IAAA,MAAM,YAAY,GAAG,gCAAgC,CAAC,UAAU,CAAC;IAEjE,IAAI,CAAC,YAAY,EAAE;AACjB,QAAA,OAAO,IAAI;IACb;;AAGA,IAAA,OAAO,IAAI,QAAQ,CAAC,YAAY,CAAC,IAAI,EAAE;QACrC,MAAM,EAAE,YAAY,CAAC,MAAM;QAC3B,OAAO,EAAE,YAAY,CAAC;AACvB,KAAA,CAAC;AACJ;AAEM,SAAU,6BAA6B,CAAC,QAA0C,EAAA;IACtF,IAAI,CAAC,QAAQ,EAAE;AACb,QAAA,OAAO,IAAI;IACb;IAEA,OAAO,IAAI,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE;AAC5C,QAAA,MAAM,EAAE,GAAG;AACX,QAAA,OAAO,EAAE;AACP,YAAA,cAAc,EAAE;AACjB;AACF,KAAA,CAAC;AACJ;AAEM,SAAU,iBAAiB,CAAC,QAA0C,EAAA;IAC1E,IAAI,CAAC,QAAQ,EAAE;AACb,QAAA,OAAO,IAAI;IACb;IAEA,OAAO,IAAI,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE;AAC5C,QAAA,MAAM,EAAE,GAAG;AACX,QAAA,OAAO,EAAE;AACP,YAAA,cAAc,EAAE;AACjB;AACF,KAAA,CAAC;AACJ;;AC3CA;;;AAGG;AACI,eAAe,sBAAsB,CAC1C,MAAkB,EAClB,OAAgB,EAAA;IAEhB,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC;AAEvC,IAAA,IAAI;AACF,QAAA,MAAM,IAAI,GAAG,MAAM,OAAO,CAAC,IAAI,EAAE;QACjC,IAAI,CAAC,IAAI,EAAE;AACT,YAAA,OAAO,EAAE;QACX;QAEA,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC;;AAGnC,QAAA,OAAO,oBAAoB,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC,MAAM,EAAE,UAAU,CAAqB;IACjG;IAAE,OAAO,KAAK,EAAE;QACd,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,8BAA8B,KAAK,YAAY,KAAK,GAAG,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,CAAA,CAAE,CAAC;AAC3G,QAAA,OAAO,EAAE;IACX;AACF;;ACzBO,eAAe,cAAc,CAAC,aAAmC,EAAA;AACtE,IAAA,MAAM,MAAM,GAAG,aAAa,EAAE;IAC9B,IAAI,CAAC,MAAM,EAAE;AACX,QAAA,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC;IACpC;AACA,IAAA,MAAM,IAAI,GAAG,aAAa,EAAE;IAC5B,IAAI,CAAC,IAAI,EAAE;AACT,QAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC;AACpC,QAAA,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC;IAClC;AAEA,IAAA,MAAM,MAAM,GAAG;QACb,MAAM,EAAE,aAAa,CAAC,KAAK;QAC3B,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,WAAW,EAAE,MAAM,CAAC,WAAW;AAC/B,QAAA,MAAM,EAAE,IAAI;QACZ,SAAS,EAAE,MAAM,CAAC,SAAS;KAC5B;AAED,IAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,gBAAA,EAAmB,MAAM,CAAC,MAAM,iBAAiB,MAAM,CAAC,WAAW,CAAA,SAAA,EAAY,MAAM,CAAC,MAAM,CAAA,CAAE,CAAC;IACnH,MAAM,cAAc,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC;AAChE,IAAA,IAAI,cAAc,CAAC,OAAO,EAAE;AAC1B,QAAA,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,QAAA,EAAW,MAAM,CAAC,MAAM,eAAe,MAAM,CAAC,MAAM,CAAA,CAAE,CAAC;QAC1E;IACF;IAEA,MAAM,iBAAiB,GAAG,MAAM,aAAa,CAAC,oBAAoB,IAAI;IACtE,IAAI,iBAAiB,EAAE;QACrB,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,0BAAA,EAA6B,iBAAiB,CAAA,CAAE,CAAC;AACpE,QAAA,MAAM,oBAAoB,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC;IAC7E;IAEA,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,oBAAoB,CAAC,MAAM,CAAC;IACzE,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,wBAAA,EAA2B,SAAS,CAAA,CAAE,CAAC;AAC1D,IAAA,MAAM,oBAAoB,CAAC,MAAM,CAAC,MAAM,EAAE,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC;AACrE;;ACnCA;;;;;;;;;;;;AAYG;MACU,iBAAiB,CAAA;AAC5B,IAAA,WAAA,CACmB,MAA8B,EAC9B,MAAc,EACd,UAAqB,KAAK,EAAA;QAF1B,IAAA,CAAA,MAAM,GAAN,MAAM;QACN,IAAA,CAAA,MAAM,GAAN,MAAM;QACN,IAAA,CAAA,OAAO,GAAP,OAAO;AAG1B,QAAA,IAAA,CAAA,MAAM,GAAG,OAAM,EAAC,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EACkC,KAA6B;AAC3H,YAAA,MAAM,IAAI,GAAG,EAAC,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAC;AAC7D,YAAA,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,CAAC;AACtE,YAAA,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,IAAI,EAA+B;AACrE,YAAA,IAAI,cAAc,CAAC,MAAM,KAAK,GAAG,EAAE;gBACjC,OAAO,EAAC,OAAO,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAC;YAC/C;AAAO,iBAAA,IAAI,cAAc,CAAC,MAAM,KAAK,GAAG,EAAE;gBACxC,OAAO,EAAC,OAAO,EAAE,KAAK,EAAE,eAAe,EAAE,IAAI,EAAC;YAChD;iBAAO;AACL,gBAAA,MAAM,GAAG,GAAG,CAAA,uBAAA,EAA0B,cAAc,CAAC,MAAM,4CAA4C;AACvG,gBAAA,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC;AACrB,gBAAA,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,eAAA,EAAkB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAA,CAAE,CAAC;AAC3D,gBAAA,MAAM,IAAI,KAAK,CAAC,GAAG,CAAC;YACtB;AACF,QAAA,CAAC;AAED,QAAA,IAAA,CAAA,oBAAoB,GAAG,OAAM,MAAc,KAAqB;AAC9D,YAAA,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,kBAAkB,EAAE,MAAM,CAAC;AAC3E,YAAA,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAmB;AACnD,YAAA,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE;gBAC3B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,4DAAA,EAA+D,QAAQ,CAAC,MAAM,CAAA,CAAE,CAAC;AAClG,gBAAA,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,eAAA,EAAkB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAA,CAAE,CAAC;gBAC3D,MAAM,IAAI,KAAK,CAAC,CAAA,4DAAA,EAA+D,QAAQ,CAAC,MAAM,CAAA,CAAE,CAAC;YACnG;AACA,YAAA,IAAG,CAAC,IAAI,CAAC,EAAE,EAAE;AACX,gBAAA,MAAM,IAAI,KAAK,CAAC,CAAA,oDAAA,CAAsD,CAAC;YACzE;YACA,OAAO,IAAI,CAAC,EAAE;AAChB,QAAA,CAAC;AAED;;;;;;;;;;;;;;;;AAgBG;QACO,IAAA,CAAA,WAAW,GAAG,OAAM,MAAsB,EAAE,IAAY,EAAE,IAAa,KAAuB;YACtG,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC;YACtC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE;gBACvC,MAAM;AACN,gBAAA,OAAO,EAAE;AACP,oBAAA,cAAc,EAAE;AACjB,iBAAA;AACD,gBAAA,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI;AAC1B,aAAA,CAAC;AACF,YAAA,OAAO,QAAQ;AACjB,QAAA,CAAC;IA5DD;AA6DD;;ACzEM,MAAM,cAAc,GAAkE;AAC3F,IAAA,SAAS,EAAE,GAAG;AACd,IAAA,QAAQ,EAAE,MAAe;AACzB,IAAA,OAAO,EAAE,MAAe;AACxB,IAAA,MAAM,EAAE,4BAA4B;AACpC,IAAA,SAAS,EAAE,gBAAgB;IAC3B,SAAS,EAAE,KAAK;IAChB,QAAQ,EAAE,IAAI;;AAGV,SAAU,iBAAiB,CAAC,IAAc,EAAA;AAC9C,IAAA,IAAG,CAAC,IAAI,CAAC,WAAW,EAAE;AACpB,QAAA,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC;IAC5C;;AAGA,IAAA,MAAM,WAAW,GAAG;AAClB,QAAA,GAAG,cAAc;AACjB,QAAA,mBAAmB,EAAE,OAAO,CAAC,GAAG,CAAC,sBAAsB;AACvD,QAAA,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,aAAa;KAClD;IACD,MAAM,YAAY,GAAG,EAAE,GAAG,WAAW,EAAE,GAAG,IAAI,EAAE;IAChD,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,IAAI,IAAI,aAAa,EAAE;IAC3D,MAAM,WAAW,GAAG,YAAY,CAAC,WAAW,IAAI,IAAI,mBAAmB,CAAC;AACtE,QAAA,EAAE,EAAE,OAAO;QACX,qBAAqB,EAAE,YAAY,CAAC,SAAS;QAC7C,UAAU,EAAE,YAAY,CAAC,SAAS;AACnC,KAAA,CAAC;IACF,MAAM,MAAM,GAAG,YAAY,CAAC,MAAM,IAAI,IAAI,aAAa,EAAE;AACzD,IAAA,MAAM,aAAa,GAAG,YAAY,CAAC,aAAa,IAAI,IAAI,iBAAiB,CAAC,YAAY,CAAC,MAAM,EAAE,MAAM,CAAC;IAEtG,MAAM,KAAK,GAAG,EAAE,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,EAAC;AAC5D,IAAA,OAAO,MAAM,CAAC,MAAM,CAAC,EAAE,GAAG,YAAY,EAAE,GAAG,KAAK,EAAE,CAAC;AACrD;;ACzCM,SAAU,OAAO,CAAC,GAAQ,EAAA;AAC9B,IAAA,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC;AACjD,IAAA,OAAO,QAAQ;AACjB;AAEA,SAAS,sBAAsB,CAAC,OAAsD,EAAE,eAAuB,EAAA;;IAE7G,MAAM,cAAc,GAAG,OAAO,CAAC,mBAAmB,CAAC,IAAI,OAAO,CAAC,mBAAmB,CAAC;IACnF,IAAI,cAAc,EAAE;AAClB,QAAA,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,GAAG,cAAc,CAAC,CAAC,CAAC,GAAG,cAAc;QAChF,OAAO,KAAK,KAAK,OAAO,GAAG,QAAQ,GAAG,OAAO;IAC/C;;IAGA,MAAM,iBAAiB,GAAG,OAAO,CAAC,sBAAsB,CAAC,IAAI,OAAO,CAAC,sBAAsB,CAAC;IAC5F,IAAI,iBAAiB,EAAE;AACrB,QAAA,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,iBAAiB,CAAC,GAAG,iBAAiB,CAAC,CAAC,CAAC,GAAG,iBAAiB;QACzF,OAAO,KAAK,KAAK,OAAO,GAAG,QAAQ,GAAG,OAAO;IAC/C;;AAGA,IAAA,OAAO,eAAe;AACxB;SAEgB,WAAW,CAAC,MAAkB,EAAE,UAAe,EAAE,OAAuD,EAAA;AACtH,IAAA,IAAI,MAAM,CAAC,QAAQ,EAAE;AACnB,QAAA,OAAO,IAAI,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC;IACjC;IAEA,MAAM,gBAAgB,GAAG,OAAO,GAAG,sBAAsB,CAAC,OAAO,EAAE,UAAU,CAAC,QAAQ,CAAC,GAAG,UAAU,CAAC,QAAQ;AAC7G,IAAA,MAAM,QAAQ,GAAG,MAAM,CAAC,SAAS,GAAG,gBAAgB,GAAG,QAAQ;AAC/D,IAAA,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,QAAQ,CAAA,EAAA,EAAK,UAAU,CAAC,IAAI,CAAA,EAAG,UAAU,CAAC,QAAQ,CAAA,CAAE,CAAC;AAE5E,IAAA,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC;;AAE7B,IAAA,MAAM,YAAY,GAAG,QAAQ,CAAC,OAAO,CAAC,uCAAuC,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;AAErG,IAAA,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,CAAA,EAAG,QAAQ,CAAA,EAAA,EAAK,UAAU,CAAC,IAAI,CAAA,EAAG,YAAY,CAAA,CAAE,CAAC;AAC1E,IAAA,OAAO,QAAQ;AACjB;;ACrCO,eAAe,gBAAgB,CAAC,MAAkB,EAAE,UAAe,EAAA;AACxE,IAAA,IAAI,sBAAsB,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE;AAC9C,QAAA,IAAI;AACF,YAAA,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,0BAA0B,CAAC,IAAI,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAE9F,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,sBAAsB,EAAE,UAAU,CAAC,sBAAsB;gBACzD,wBAAwB,EAAE,UAAU,CAAC,wBAAwB;gBAC7D,qBAAqB,EAAE,UAAU,CAAC,qBAAqB;gBACvD,cAAc,EAAE,UAAU,CAAC,cAAc;gBACzC,qCAAqC,EAAE,UAAU,CAAC,qCAAqC;gBACvF,qBAAqB,EAAE,UAAU,CAAC,qBAAqB;gBACvD,mBAAmB,EAAE,UAAU,CAAC,mBAAmB;gBACnD,sBAAsB,EAAE,UAAU,CAAC,sBAAsB;gBACzD,6CAA6C,EAAE,UAAU,CAAC,6CAA6C;gBACvG,gCAAgC,EAAE,UAAU,CAAC,gCAAgC;gBAC7E,gBAAgB,EAAE,UAAU,CAAC;aAC9B;QACH;QAAE,OAAO,KAAK,EAAE;AACd,YAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,uDAAA,EAA0D,MAAM,CAAC,MAAM,CAAA,EAAA,EAAK,KAAK,CAAA,CAAE,CAAC;AACxG,YAAA,MAAM,KAAK;QACb;IACF;AACA,IAAA,OAAO,IAAI;AACb;AAEA,SAAS,sBAAsB,CAAC,MAAkB,EAAE,UAAe,EAAA;AACjE,IAAA,MAAM,IAAI,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;IACnD,OAAO,IAAI,KAAK,yCAAyC;AAC3D;;SC/BgB,4BAA4B,CAAC,MAAkB,EAAE,UAAe,EAAE,OAAuD,EAAA;IACvI,IAAI,kCAAkC,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC,EAAE;QACnE,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;QACzD,OAAO;YACL,QAAQ;YACR,aAAa,EAAE,MAAM,CAAC,SAAS,IAAI,QAAQ,CAAC,QAAQ,EAAE;AACtD,YAAA,qBAAqB,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC;YACtC,wBAAwB,EAAE,CAAC,QAAQ,CAAC;AACpC,YAAA,gBAAgB,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;SACpC;IACH;AACA,IAAA,OAAO,IAAI;AACb;AAEA,SAAS,kCAAkC,CAAC,MAAkB,EAAE,UAAe,EAAE,OAAuD,EAAA;AACtI,IAAA,MAAM,IAAI,GAAG,OAAO,CAAC,UAAU,CAAC;IAChC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,uCAAuC,CAAC,EAAE;AAC7D,QAAA,OAAO,KAAK;IACd;IACA,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;AACzD,IAAA,MAAM,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC;AACtC,IAAA,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;AACrD,IAAA,IAAI,YAAY,KAAK,SAAS,EAAE;AAC9B,QAAA,OAAO,IAAI;IACb;AACA,IAAA,IAAI,YAAY,KAAK,CAAA,EAAG,SAAS,CAAA,QAAA,CAAU,EAAE;AAC3C,QAAA,OAAO,IAAI;IACb;AACA,IAAA,OAAO,KAAK;AACd;;;;"}