@bitblit/ratchet-warden-server 4.0.419-alpha → 4.0.421-alpha
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/build/index.d.ts +1 -0
- package/lib/build/index.js +2 -0
- package/lib/build/index.js.map +1 -0
- package/lib/build/ratchet-warden-server-info.d.ts +5 -0
- package/lib/build/ratchet-warden-server-info.js +15 -0
- package/lib/build/ratchet-warden-server-info.js.map +1 -0
- package/lib/server/index.d.ts +17 -0
- package/lib/server/index.js +18 -0
- package/lib/server/index.js.map +1 -0
- package/lib/server/provider/warden-default-send-magic-link-command-validator.d.ts +6 -0
- package/lib/server/provider/warden-default-send-magic-link-command-validator.js +14 -0
- package/lib/server/provider/warden-default-send-magic-link-command-validator.js.map +1 -0
- package/lib/server/provider/warden-default-user-decoration-provider.d.ts +7 -0
- package/lib/server/provider/warden-default-user-decoration-provider.js +12 -0
- package/lib/server/provider/warden-default-user-decoration-provider.js.map +1 -0
- package/lib/server/provider/warden-event-processing-provider.d.ts +5 -0
- package/lib/server/provider/warden-event-processing-provider.js +2 -0
- package/lib/server/provider/warden-event-processing-provider.js.map +1 -0
- package/lib/server/provider/warden-mailer-and-expiring-code-ratchet-single-use-code-provider.d.ts +22 -0
- package/lib/server/provider/warden-mailer-and-expiring-code-ratchet-single-use-code-provider.js +101 -0
- package/lib/server/provider/warden-mailer-and-expiring-code-ratchet-single-use-code-provider.js.map +1 -0
- package/lib/server/provider/warden-mailer-and-expiring-code-ratchet-single-user-provider-options.d.ts +8 -0
- package/lib/server/provider/warden-mailer-and-expiring-code-ratchet-single-user-provider-options.js +2 -0
- package/lib/server/provider/warden-mailer-and-expiring-code-ratchet-single-user-provider-options.js.map +1 -0
- package/lib/server/provider/warden-message-sending-provider.d.ts +8 -0
- package/lib/server/provider/warden-message-sending-provider.js +2 -0
- package/lib/server/provider/warden-message-sending-provider.js.map +1 -0
- package/lib/server/provider/warden-no-op-event-processing-provider.d.ts +6 -0
- package/lib/server/provider/warden-no-op-event-processing-provider.js +5 -0
- package/lib/server/provider/warden-no-op-event-processing-provider.js.map +1 -0
- package/lib/server/provider/warden-s3-single-file-storage-provider-options.d.ts +4 -0
- package/lib/server/provider/warden-s3-single-file-storage-provider-options.js +2 -0
- package/lib/server/provider/warden-s3-single-file-storage-provider-options.js.map +1 -0
- package/lib/server/provider/warden-s3-single-file-storage-provider.d.ts +31 -0
- package/lib/server/provider/warden-s3-single-file-storage-provider.js +91 -0
- package/lib/server/provider/warden-s3-single-file-storage-provider.js.map +1 -0
- package/lib/server/provider/warden-send-magic-link-command-validator.d.ts +5 -0
- package/lib/server/provider/warden-send-magic-link-command-validator.js +2 -0
- package/lib/server/provider/warden-send-magic-link-command-validator.js.map +1 -0
- package/lib/server/provider/warden-single-use-code-provider.d.ts +9 -0
- package/lib/server/provider/warden-single-use-code-provider.js +2 -0
- package/lib/server/provider/warden-single-use-code-provider.js.map +1 -0
- package/lib/server/provider/warden-storage-provider.d.ts +12 -0
- package/lib/server/provider/warden-storage-provider.js +2 -0
- package/lib/server/provider/warden-storage-provider.js.map +1 -0
- package/lib/server/provider/warden-twilio-verify-single-use-code-provider-options.d.ts +5 -0
- package/lib/server/provider/warden-twilio-verify-single-use-code-provider-options.js +2 -0
- package/lib/server/provider/warden-twilio-verify-single-use-code-provider-options.js.map +1 -0
- package/lib/server/provider/warden-twilio-verify-single-use-code-provider.d.ts +13 -0
- package/lib/server/provider/warden-twilio-verify-single-use-code-provider.js +32 -0
- package/lib/server/provider/warden-twilio-verify-single-use-code-provider.js.map +1 -0
- package/lib/server/provider/warden-user-decoration-provider.d.ts +5 -0
- package/lib/server/provider/warden-user-decoration-provider.js +2 -0
- package/lib/server/provider/warden-user-decoration-provider.js.map +1 -0
- package/lib/server/warden-service-options.d.ts +16 -0
- package/lib/server/warden-service-options.js +2 -0
- package/lib/server/warden-service-options.js.map +1 -0
- package/lib/server/warden-service.d.ts +35 -0
- package/lib/server/warden-service.js +518 -0
- package/lib/server/warden-service.js.map +1 -0
- package/package.json +17 -18
- package/lib/index.mjs +0 -2
- package/lib/types.d.ts +0 -168
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"warden-twilio-verify-single-use-code-provider.js","sourceRoot":"","sources":["../../../src/server/provider/warden-twilio-verify-single-use-code-provider.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,MAAM,EAAE,MAAM,uCAAuC,CAAC;AAE/D,OAAO,EAAE,mBAAmB,EAAE,MAAM,kEAAkE,CAAC;AACvG,OAAO,EAAE,iBAAiB,EAAE,MAAM,iEAAiE,CAAC;AAGpG,MAAM,OAAO,uCAAuC;IAG9B;IAFZ,yBAAyB,CAAsB;IAEvD,YAAoB,WAAoE;QAApE,gBAAW,GAAX,WAAW,CAAyD;IAAG,CAAC;IAEpF,KAAK,CAAC,mBAAmB;QAC/B,IAAI,CAAC,IAAI,CAAC,yBAAyB,EAAE,CAAC;YACpC,MAAM,IAAI,GAAmD,MAAM,IAAI,CAAC,WAAW,CAAC;YACpF,IAAI,CAAC,yBAAyB,GAAG,IAAI,mBAAmB,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,gBAAgB,CAAC,CAAC;QACnH,CAAC;QACD,OAAO,IAAI,CAAC,yBAAyB,CAAC;IACxC,CAAC;IAEM,kBAAkB,CAAC,IAAuB;QAC/C,OAAO,IAAI,KAAK,iBAAiB,CAAC,sBAAsB,CAAC;IAC3D,CAAC;IAEM,KAAK,CAAC,oBAAoB,CAAC,OAAsB,EAAE,uBAA+B;QAEvF,MAAM,OAAO,GAAwB,MAAM,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACtE,MAAM,IAAI,GAAQ,MAAM,OAAO,CAAC,sCAAsC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;QACtF,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE,IAAI,CAAC,CAAC;QAC3C,OAAO,CAAC,CAAC,IAAI,CAAC;IAChB,CAAC;IACM,KAAK,CAAC,SAAS,CAAC,YAAoB,EAAE,IAAY;QACvD,MAAM,OAAO,GAAwB,MAAM,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACtE,MAAM,IAAI,GAAY,MAAM,OAAO,CAAC,6CAA6C,CAAC,YAAY,EAAE,IAAI,CAAC,CAAC;QACtG,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}
|
|
@@ -0,0 +1,5 @@
|
|
|
1
|
+
import { WardenEntry } from '@bitblit/ratchet-warden-common/common/model/warden-entry';
|
|
2
|
+
import { WardenUserDecoration } from '@bitblit/ratchet-warden-common/common/model/warden-user-decoration';
|
|
3
|
+
export interface WardenUserDecorationProvider<T> {
|
|
4
|
+
fetchDecoration(wardenUser: WardenEntry): Promise<WardenUserDecoration<T>>;
|
|
5
|
+
}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"warden-user-decoration-provider.js","sourceRoot":"","sources":["../../../src/server/provider/warden-user-decoration-provider.ts"],"names":[],"mappings":""}
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
import { WardenStorageProvider } from './provider/warden-storage-provider.js';
|
|
2
|
+
import { JwtRatchetLike } from '@bitblit/ratchet-common/jwt/jwt-ratchet-like';
|
|
3
|
+
import { WardenUserDecorationProvider } from './provider/warden-user-decoration-provider.js';
|
|
4
|
+
import { WardenEventProcessingProvider } from './provider/warden-event-processing-provider.js';
|
|
5
|
+
import { WardenSingleUseCodeProvider } from './provider/warden-single-use-code-provider.js';
|
|
6
|
+
import { WardenSendMagicLinkCommandValidator } from './provider/warden-send-magic-link-command-validator.js';
|
|
7
|
+
export interface WardenServiceOptions {
|
|
8
|
+
relyingPartyName: string;
|
|
9
|
+
allowedOrigins: string[];
|
|
10
|
+
singleUseCodeProviders: WardenSingleUseCodeProvider[];
|
|
11
|
+
storageProvider: WardenStorageProvider;
|
|
12
|
+
jwtRatchet: JwtRatchetLike;
|
|
13
|
+
userDecorationProvider?: WardenUserDecorationProvider<any>;
|
|
14
|
+
eventProcessor?: WardenEventProcessingProvider;
|
|
15
|
+
sendMagicLinkCommandValidator?: WardenSendMagicLinkCommandValidator;
|
|
16
|
+
}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"warden-service-options.js","sourceRoot":"","sources":["../../src/server/warden-service-options.ts"],"names":[],"mappings":""}
|
|
@@ -0,0 +1,35 @@
|
|
|
1
|
+
import { AuthenticationResponseJSON, PublicKeyCredentialCreationOptionsJSON, PublicKeyCredentialRequestOptionsJSON, RegistrationResponseJSON } from '@simplewebauthn/types';
|
|
2
|
+
import { WardenServiceOptions } from './warden-service-options.js';
|
|
3
|
+
import { WardenContact } from '@bitblit/ratchet-warden-common/common/model/warden-contact';
|
|
4
|
+
import { WardenCustomTemplateDescriptor } from '@bitblit/ratchet-warden-common/common/command/warden-custom-template-descriptor';
|
|
5
|
+
import { WardenEntry } from '@bitblit/ratchet-warden-common/common/model/warden-entry';
|
|
6
|
+
import { WardenLoginRequest } from '@bitblit/ratchet-warden-common/common/model/warden-login-request';
|
|
7
|
+
import { WardenCommand } from '@bitblit/ratchet-warden-common/common/command/warden-command';
|
|
8
|
+
import { WardenCommandResponse } from '@bitblit/ratchet-warden-common/common/command/warden-command-response';
|
|
9
|
+
import { WardenStoreRegistrationResponse } from '@bitblit/ratchet-warden-common/common/model/warden-store-registration-response';
|
|
10
|
+
import { WardenSingleUseCodeProvider } from './provider/warden-single-use-code-provider.js';
|
|
11
|
+
export declare class WardenService {
|
|
12
|
+
private inOptions;
|
|
13
|
+
private opts;
|
|
14
|
+
constructor(inOptions: WardenServiceOptions);
|
|
15
|
+
get options(): WardenServiceOptions;
|
|
16
|
+
findEntryByContact(contact: WardenContact): Promise<WardenEntry>;
|
|
17
|
+
findEntryById(userId: string): Promise<WardenEntry>;
|
|
18
|
+
processCommandStringToString(cmdString: string, origin: string, loggedInUserId: string): Promise<string>;
|
|
19
|
+
processCommandToResponse(cmd: WardenCommand, origin: string, loggedInUserId: string): Promise<WardenCommandResponse>;
|
|
20
|
+
urlIsOnAllowedOrigin(url: string): boolean;
|
|
21
|
+
singleUseCodeProvider(contact: WardenContact, requireMagicLinkSupport: boolean, returnNullIfNoProviders?: boolean): WardenSingleUseCodeProvider;
|
|
22
|
+
sendMagicLink(contact: WardenContact, overrideDestinationContact: WardenContact, relyingPartyName: string, landingUrl: string, metaIn?: Record<string, string>, ttlSeconds?: number, customTemplate?: WardenCustomTemplateDescriptor): Promise<boolean>;
|
|
23
|
+
createAccount(contact: WardenContact, sendCode?: boolean, label?: string, tags?: string[]): Promise<string>;
|
|
24
|
+
addContactMethodToUser(userId: string, contact: WardenContact): Promise<boolean>;
|
|
25
|
+
removeContactMethodFromUser(userId: string, contact: WardenContact): Promise<WardenEntry>;
|
|
26
|
+
generateWebAuthnRegistrationChallengeForLoggedInUser(userId: string, origin: string): Promise<PublicKeyCredentialCreationOptionsJSON>;
|
|
27
|
+
storeAuthnRegistration(userId: string, origin: string, applicationName: string, deviceLabel: string, data: RegistrationResponseJSON): Promise<WardenStoreRegistrationResponse>;
|
|
28
|
+
generateWebAuthnAuthenticationChallengeForUserId(userId: string, origin: string): Promise<PublicKeyCredentialRequestOptionsJSON>;
|
|
29
|
+
generateWebAuthnAuthenticationChallenge(user: WardenEntry, origin: string): Promise<PublicKeyCredentialRequestOptionsJSON>;
|
|
30
|
+
sendExpiringValidationToken(request: WardenContact): Promise<boolean>;
|
|
31
|
+
processLogin(request: WardenLoginRequest, origin: string): Promise<boolean>;
|
|
32
|
+
loginWithWebAuthnRequest(user: WardenEntry, origin: string, data: AuthenticationResponseJSON): Promise<boolean>;
|
|
33
|
+
removeSingleWebAuthnRegistration(userId: string, key: string): Promise<WardenEntry>;
|
|
34
|
+
removeUser(userId: string): Promise<boolean>;
|
|
35
|
+
}
|
|
@@ -0,0 +1,518 @@
|
|
|
1
|
+
import { generateAuthenticationOptions, generateRegistrationOptions, verifyAuthenticationResponse, verifyRegistrationResponse, } from '@simplewebauthn/server';
|
|
2
|
+
import { WardenUtils } from '@bitblit/ratchet-warden-common/common/util/warden-utils';
|
|
3
|
+
import { WardenStoreRegistrationResponseType } from '@bitblit/ratchet-warden-common/common/model/warden-store-registration-response-type';
|
|
4
|
+
import { RequireRatchet } from '@bitblit/ratchet-common/lang/require-ratchet';
|
|
5
|
+
import { Logger } from '@bitblit/ratchet-common/logger/logger';
|
|
6
|
+
import { ErrorRatchet } from '@bitblit/ratchet-common/lang/error-ratchet';
|
|
7
|
+
import { StringRatchet } from '@bitblit/ratchet-common/lang/string-ratchet';
|
|
8
|
+
import { Base64Ratchet } from '@bitblit/ratchet-common/lang/base64-ratchet';
|
|
9
|
+
import { WardenDefaultUserDecorationProvider } from './provider/warden-default-user-decoration-provider.js';
|
|
10
|
+
import { WardenNoOpEventProcessingProvider } from './provider/warden-no-op-event-processing-provider.js';
|
|
11
|
+
import { WardenDefaultSendMagicLinkCommandValidator } from './provider/warden-default-send-magic-link-command-validator.js';
|
|
12
|
+
export class WardenService {
|
|
13
|
+
inOptions;
|
|
14
|
+
opts;
|
|
15
|
+
constructor(inOptions) {
|
|
16
|
+
this.inOptions = inOptions;
|
|
17
|
+
RequireRatchet.notNullOrUndefined(inOptions, 'options');
|
|
18
|
+
RequireRatchet.notNullOrUndefined(inOptions.relyingPartyName, 'options.relyingPartyName');
|
|
19
|
+
RequireRatchet.notNullUndefinedOrEmptyArray(inOptions.allowedOrigins, 'options.allowedOrigins');
|
|
20
|
+
RequireRatchet.notNullOrUndefined(inOptions.storageProvider, 'options.storageProvider');
|
|
21
|
+
RequireRatchet.notNullOrUndefined(inOptions.jwtRatchet, 'options.jwtRatchet');
|
|
22
|
+
RequireRatchet.notNullUndefinedOrEmptyArray(inOptions.singleUseCodeProviders, 'options.singleUseCodeProviders');
|
|
23
|
+
this.opts = Object.assign({
|
|
24
|
+
userTokenDataProvider: new WardenDefaultUserDecorationProvider(),
|
|
25
|
+
eventProcessor: new WardenNoOpEventProcessingProvider(),
|
|
26
|
+
sendMagicLinkCommandValidator: new WardenDefaultSendMagicLinkCommandValidator(),
|
|
27
|
+
}, inOptions);
|
|
28
|
+
}
|
|
29
|
+
get options() {
|
|
30
|
+
return Object.assign({}, this.opts);
|
|
31
|
+
}
|
|
32
|
+
findEntryByContact(contact) {
|
|
33
|
+
return this.opts.storageProvider.findEntryByContact(contact);
|
|
34
|
+
}
|
|
35
|
+
findEntryById(userId) {
|
|
36
|
+
return this.opts.storageProvider.findEntryById(userId);
|
|
37
|
+
}
|
|
38
|
+
async processCommandStringToString(cmdString, origin, loggedInUserId) {
|
|
39
|
+
let rval = null;
|
|
40
|
+
try {
|
|
41
|
+
const cmd = JSON.parse(cmdString);
|
|
42
|
+
const resp = await this.processCommandToResponse(cmd, origin, loggedInUserId);
|
|
43
|
+
if (resp === null) {
|
|
44
|
+
Logger.warn('Response was null for %s %s %s', cmdString, origin, loggedInUserId);
|
|
45
|
+
}
|
|
46
|
+
else {
|
|
47
|
+
rval = JSON.stringify(resp);
|
|
48
|
+
}
|
|
49
|
+
}
|
|
50
|
+
catch (err) {
|
|
51
|
+
const errString = ErrorRatchet.safeStringifyErr(err);
|
|
52
|
+
Logger.error('Failed %s : %j', errString, cmdString, err);
|
|
53
|
+
rval = JSON.stringify({ error: errString });
|
|
54
|
+
}
|
|
55
|
+
return rval;
|
|
56
|
+
}
|
|
57
|
+
async processCommandToResponse(cmd, origin, loggedInUserId) {
|
|
58
|
+
let rval = null;
|
|
59
|
+
if (cmd) {
|
|
60
|
+
Logger.info('Processing command : UserID: %s Origin: %s Command: %j', loggedInUserId, origin, cmd);
|
|
61
|
+
if (cmd.sendExpiringValidationToken) {
|
|
62
|
+
rval = { sendExpiringValidationToken: await this.sendExpiringValidationToken(cmd.sendExpiringValidationToken) };
|
|
63
|
+
}
|
|
64
|
+
else if (cmd.generateWebAuthnAuthenticationChallengeForUserId) {
|
|
65
|
+
const tmp = await this.generateWebAuthnAuthenticationChallengeForUserId(cmd.generateWebAuthnAuthenticationChallengeForUserId, origin);
|
|
66
|
+
rval = { generateWebAuthnAuthenticationChallengeForUserId: { dataAsJson: JSON.stringify(tmp) } };
|
|
67
|
+
}
|
|
68
|
+
else if (cmd.createAccount) {
|
|
69
|
+
rval = {
|
|
70
|
+
createAccount: await this.createAccount(cmd.createAccount.contact, cmd.createAccount.sendCode, cmd.createAccount.label, cmd.createAccount.tags),
|
|
71
|
+
};
|
|
72
|
+
}
|
|
73
|
+
else if (cmd.sendMagicLink) {
|
|
74
|
+
if (cmd?.sendMagicLink?.contactLookup && cmd?.sendMagicLink?.contact) {
|
|
75
|
+
throw ErrorRatchet.fErr('You may not specify both contact and contactLookup');
|
|
76
|
+
}
|
|
77
|
+
if (!cmd?.sendMagicLink?.contactLookup && !cmd?.sendMagicLink?.contact) {
|
|
78
|
+
throw ErrorRatchet.fErr('You must not specify either contact and contactLookup');
|
|
79
|
+
}
|
|
80
|
+
if (cmd.sendMagicLink.contactLookup) {
|
|
81
|
+
const entry = await this.findEntryById(cmd.sendMagicLink.contactLookup.userId);
|
|
82
|
+
if (entry) {
|
|
83
|
+
if (cmd.sendMagicLink.contactLookup.contactType) {
|
|
84
|
+
cmd.sendMagicLink.contact = (entry.contactMethods || []).find((cm) => cm.type === cmd.sendMagicLink.contactLookup.contactType);
|
|
85
|
+
}
|
|
86
|
+
else {
|
|
87
|
+
cmd.sendMagicLink.contact = (entry.contactMethods || []).length > 0 ? entry.contactMethods[0] : null;
|
|
88
|
+
}
|
|
89
|
+
}
|
|
90
|
+
cmd.sendMagicLink.contactLookup = null;
|
|
91
|
+
}
|
|
92
|
+
if (!cmd.sendMagicLink.contact) {
|
|
93
|
+
throw ErrorRatchet.fErr('Could not find contract entry either directly or by lookup');
|
|
94
|
+
}
|
|
95
|
+
const loggedInUser = StringRatchet.trimToNull(loggedInUserId)
|
|
96
|
+
? await this.opts.storageProvider.findEntryById(loggedInUserId)
|
|
97
|
+
: null;
|
|
98
|
+
await this.opts.sendMagicLinkCommandValidator.allowMagicLinkCommand(cmd.sendMagicLink, origin, loggedInUser);
|
|
99
|
+
const ttlSeconds = cmd?.sendMagicLink?.ttlSeconds || 300;
|
|
100
|
+
rval = {
|
|
101
|
+
sendMagicLink: await this.sendMagicLink(cmd.sendMagicLink.contact, cmd.sendMagicLink.overrideDestinationContact, this.opts.relyingPartyName, cmd.sendMagicLink.landingUrl, cmd.sendMagicLink.meta, ttlSeconds, cmd.sendMagicLink.customTemplate),
|
|
102
|
+
};
|
|
103
|
+
}
|
|
104
|
+
else if (cmd.generateWebAuthnRegistrationChallengeForLoggedInUser) {
|
|
105
|
+
if (!StringRatchet.trimToNull(loggedInUserId)) {
|
|
106
|
+
ErrorRatchet.throwFormattedErr('This requires a logged in user');
|
|
107
|
+
}
|
|
108
|
+
const tmp = await this.generateWebAuthnRegistrationChallengeForLoggedInUser(loggedInUserId, origin);
|
|
109
|
+
rval = { generateWebAuthnRegistrationChallengeForLoggedInUser: { dataAsJson: JSON.stringify(tmp) } };
|
|
110
|
+
}
|
|
111
|
+
else if (cmd.addContactToLoggedInUser) {
|
|
112
|
+
if (!WardenUtils.validContact(cmd.addContactToLoggedInUser)) {
|
|
113
|
+
ErrorRatchet.throwFormattedErr('Cannot add, invalid contact %j', cmd.addContactToLoggedInUser);
|
|
114
|
+
}
|
|
115
|
+
else {
|
|
116
|
+
const out = await this.addContactMethodToUser(loggedInUserId, cmd.addContactToLoggedInUser);
|
|
117
|
+
rval = { addContactToLoggedInUser: out };
|
|
118
|
+
}
|
|
119
|
+
}
|
|
120
|
+
else if (cmd.addWebAuthnRegistrationToLoggedInUser) {
|
|
121
|
+
if (!StringRatchet.trimToNull(loggedInUserId)) {
|
|
122
|
+
ErrorRatchet.throwFormattedErr('This requires a logged in user');
|
|
123
|
+
}
|
|
124
|
+
const data = JSON.parse(cmd.addWebAuthnRegistrationToLoggedInUser.webAuthn.dataAsJson);
|
|
125
|
+
const out = await this.storeAuthnRegistration(loggedInUserId, origin, cmd.addWebAuthnRegistrationToLoggedInUser.applicationName, cmd.addWebAuthnRegistrationToLoggedInUser.deviceLabel, data);
|
|
126
|
+
if (out.updatedEntry) {
|
|
127
|
+
rval = { addWebAuthnRegistrationToLoggedInUser: WardenUtils.stripWardenEntryToSummary(out.updatedEntry) };
|
|
128
|
+
}
|
|
129
|
+
else if (out.error) {
|
|
130
|
+
rval = { error: out.error };
|
|
131
|
+
}
|
|
132
|
+
else {
|
|
133
|
+
rval = { error: 'Cannot happen - neither user nor error set' };
|
|
134
|
+
}
|
|
135
|
+
}
|
|
136
|
+
else if (cmd.removeWebAuthnRegistration) {
|
|
137
|
+
const modified = await this.removeSingleWebAuthnRegistration(cmd.removeWebAuthnRegistration.userId, cmd.removeWebAuthnRegistration.credentialId);
|
|
138
|
+
rval = {
|
|
139
|
+
removeWebAuthnRegistration: WardenUtils.stripWardenEntryToSummary(modified),
|
|
140
|
+
};
|
|
141
|
+
}
|
|
142
|
+
else if (cmd.removeWebAuthnRegistrationFromLoggedInUser) {
|
|
143
|
+
const modified = await this.removeSingleWebAuthnRegistration(loggedInUserId, cmd.removeWebAuthnRegistrationFromLoggedInUser);
|
|
144
|
+
rval = {
|
|
145
|
+
removeWebAuthnRegistrationFromLoggedInUser: WardenUtils.stripWardenEntryToSummary(modified),
|
|
146
|
+
};
|
|
147
|
+
}
|
|
148
|
+
else if (cmd.removeContactFromLoggedInUser) {
|
|
149
|
+
const output = await this.removeContactMethodFromUser(loggedInUserId, cmd.removeContactFromLoggedInUser);
|
|
150
|
+
rval = {
|
|
151
|
+
removeContactFromLoggedInUser: WardenUtils.stripWardenEntryToSummary(output),
|
|
152
|
+
};
|
|
153
|
+
}
|
|
154
|
+
else if (cmd.performLogin) {
|
|
155
|
+
const loginData = cmd.performLogin;
|
|
156
|
+
const loginOk = await this.processLogin(loginData, origin);
|
|
157
|
+
Logger.info('Performing login - login auth check was : %s', loginOk);
|
|
158
|
+
if (loginOk) {
|
|
159
|
+
const user = StringRatchet.trimToNull(loginData.userId)
|
|
160
|
+
? await this.opts.storageProvider.findEntryById(loginData.userId)
|
|
161
|
+
: await this.opts.storageProvider.findEntryByContact(loginData.contact);
|
|
162
|
+
const decoration = await this.opts.userDecorationProvider.fetchDecoration(user);
|
|
163
|
+
const wardenToken = {
|
|
164
|
+
loginData: WardenUtils.stripWardenEntryToSummary(user),
|
|
165
|
+
user: decoration.userTokenData,
|
|
166
|
+
roles: WardenUtils.teamRolesToRoles(decoration.userTeamRoles),
|
|
167
|
+
proxy: null,
|
|
168
|
+
};
|
|
169
|
+
const jwtToken = await this.opts.jwtRatchet.createTokenString(wardenToken, decoration.userTokenExpirationSeconds);
|
|
170
|
+
const output = {
|
|
171
|
+
request: loginData,
|
|
172
|
+
userId: user.userId,
|
|
173
|
+
jwtToken: jwtToken,
|
|
174
|
+
};
|
|
175
|
+
rval = { performLogin: output };
|
|
176
|
+
}
|
|
177
|
+
else {
|
|
178
|
+
rval = { error: 'Login failed' };
|
|
179
|
+
}
|
|
180
|
+
}
|
|
181
|
+
else if (cmd.refreshJwtToken) {
|
|
182
|
+
const parsed = await this.opts.jwtRatchet.decodeToken(cmd.refreshJwtToken, 1);
|
|
183
|
+
const user = await this.opts.storageProvider.findEntryById(parsed.loginData.userId);
|
|
184
|
+
const decoration = await this.opts.userDecorationProvider.fetchDecoration(user);
|
|
185
|
+
const wardenToken = {
|
|
186
|
+
loginData: WardenUtils.stripWardenEntryToSummary(user),
|
|
187
|
+
user: decoration.userTokenData,
|
|
188
|
+
roles: WardenUtils.teamRolesToRoles(decoration.userTeamRoles),
|
|
189
|
+
proxy: null,
|
|
190
|
+
};
|
|
191
|
+
const newToken = await this.opts.jwtRatchet.createTokenString(wardenToken, decoration.userTokenExpirationSeconds);
|
|
192
|
+
rval = {
|
|
193
|
+
refreshJwtToken: newToken,
|
|
194
|
+
};
|
|
195
|
+
}
|
|
196
|
+
}
|
|
197
|
+
else {
|
|
198
|
+
rval = { error: 'No command sent' };
|
|
199
|
+
}
|
|
200
|
+
return rval;
|
|
201
|
+
}
|
|
202
|
+
urlIsOnAllowedOrigin(url) {
|
|
203
|
+
let rval = false;
|
|
204
|
+
if (url) {
|
|
205
|
+
const u = new URL(url);
|
|
206
|
+
for (let i = 0; i < this.opts.allowedOrigins.length && !rval; i++) {
|
|
207
|
+
const test = new URL(this.opts.allowedOrigins[i]);
|
|
208
|
+
rval = test.origin === u.origin && test.protocol === u.protocol && test.port === u.port;
|
|
209
|
+
}
|
|
210
|
+
}
|
|
211
|
+
return rval;
|
|
212
|
+
}
|
|
213
|
+
singleUseCodeProvider(contact, requireMagicLinkSupport, returnNullIfNoProviders) {
|
|
214
|
+
const rval = this.opts.singleUseCodeProviders.find((s) => s.handlesContactType(contact.type) && (!requireMagicLinkSupport || s.createCodeAndSendMagicLink));
|
|
215
|
+
if (!rval && !returnNullIfNoProviders) {
|
|
216
|
+
throw ErrorRatchet.fErr('Cannot find a single use code provider for contact type : %s', contact.type);
|
|
217
|
+
}
|
|
218
|
+
return rval;
|
|
219
|
+
}
|
|
220
|
+
async sendMagicLink(contact, overrideDestinationContact, relyingPartyName, landingUrl, metaIn, ttlSeconds, customTemplate) {
|
|
221
|
+
let rval = false;
|
|
222
|
+
RequireRatchet.notNullOrUndefined(contact, 'contact');
|
|
223
|
+
RequireRatchet.notNullUndefinedOrOnlyWhitespaceString(landingUrl, 'landingUrl');
|
|
224
|
+
RequireRatchet.true(this.urlIsOnAllowedOrigin(landingUrl), 'landingUrl is not on an allowed origin for redirect');
|
|
225
|
+
if (contact?.type && StringRatchet.trimToNull(contact?.value)) {
|
|
226
|
+
const prov = this.singleUseCodeProvider(contact, true);
|
|
227
|
+
rval = await prov.createCodeAndSendMagicLink(contact, relyingPartyName, landingUrl, metaIn, ttlSeconds, overrideDestinationContact, customTemplate);
|
|
228
|
+
}
|
|
229
|
+
else {
|
|
230
|
+
ErrorRatchet.throwFormattedErr('Cannot send - invalid contact %j', contact);
|
|
231
|
+
}
|
|
232
|
+
return rval;
|
|
233
|
+
}
|
|
234
|
+
async createAccount(contact, sendCode, label, tags) {
|
|
235
|
+
let rval = null;
|
|
236
|
+
if (WardenUtils.validContact(contact)) {
|
|
237
|
+
const old = await this.opts.storageProvider.findEntryByContact(contact);
|
|
238
|
+
if (old) {
|
|
239
|
+
ErrorRatchet.throwFormattedErr('Cannot create - account already exists for %j', contact);
|
|
240
|
+
}
|
|
241
|
+
const guid = StringRatchet.createType4Guid();
|
|
242
|
+
const now = Date.now();
|
|
243
|
+
const newUser = {
|
|
244
|
+
userId: guid,
|
|
245
|
+
userLabel: label || 'User ' + guid,
|
|
246
|
+
contactMethods: [contact],
|
|
247
|
+
tags: tags || [],
|
|
248
|
+
webAuthnAuthenticators: [],
|
|
249
|
+
createdEpochMS: now,
|
|
250
|
+
updatedEpochMS: now,
|
|
251
|
+
};
|
|
252
|
+
const next = await this.opts.storageProvider.saveEntry(newUser);
|
|
253
|
+
rval = next.userId;
|
|
254
|
+
if (this?.opts?.eventProcessor) {
|
|
255
|
+
await this.opts.eventProcessor.userCreated(next);
|
|
256
|
+
}
|
|
257
|
+
if (sendCode) {
|
|
258
|
+
Logger.info('New user %j created and send requested - sending', next);
|
|
259
|
+
await this.sendExpiringValidationToken(contact);
|
|
260
|
+
}
|
|
261
|
+
}
|
|
262
|
+
else {
|
|
263
|
+
ErrorRatchet.throwFormattedErr('Cannot create - invalid contact (missing or invalid fields)');
|
|
264
|
+
}
|
|
265
|
+
return rval;
|
|
266
|
+
}
|
|
267
|
+
async addContactMethodToUser(userId, contact) {
|
|
268
|
+
let rval = false;
|
|
269
|
+
if (StringRatchet.trimToNull(userId) && WardenUtils.validContact(contact)) {
|
|
270
|
+
const otherUser = await this.opts.storageProvider.findEntryByContact(contact);
|
|
271
|
+
if (otherUser && otherUser.userId !== userId) {
|
|
272
|
+
ErrorRatchet.throwFormattedErr('Cannot add contact to this user, another user already has that contact');
|
|
273
|
+
}
|
|
274
|
+
const curUser = await this.opts.storageProvider.findEntryById(userId);
|
|
275
|
+
if (!curUser) {
|
|
276
|
+
ErrorRatchet.throwFormattedErr('Cannot add contact to this user, user does not exist');
|
|
277
|
+
}
|
|
278
|
+
curUser.contactMethods.push(contact);
|
|
279
|
+
await this.opts.storageProvider.saveEntry(curUser);
|
|
280
|
+
rval = true;
|
|
281
|
+
}
|
|
282
|
+
else {
|
|
283
|
+
ErrorRatchet.throwFormattedErr('Cannot add - invalid config : %s %j', userId, contact);
|
|
284
|
+
}
|
|
285
|
+
return rval;
|
|
286
|
+
}
|
|
287
|
+
async removeContactMethodFromUser(userId, contact) {
|
|
288
|
+
let rval = null;
|
|
289
|
+
if (StringRatchet.trimToNull(userId) && WardenUtils.validContact(contact)) {
|
|
290
|
+
const curUser = await this.opts.storageProvider.findEntryById(userId);
|
|
291
|
+
if (!curUser) {
|
|
292
|
+
ErrorRatchet.throwFormattedErr('Cannot remove contact from this user, user does not exist');
|
|
293
|
+
}
|
|
294
|
+
curUser.contactMethods = (curUser.contactMethods || []).filter((s) => s.type !== contact.type || s.value !== contact.value);
|
|
295
|
+
if (curUser.contactMethods.length === 0) {
|
|
296
|
+
ErrorRatchet.throwFormattedErr('Cannot remove the last contact method from a user');
|
|
297
|
+
}
|
|
298
|
+
await this.opts.storageProvider.saveEntry(curUser);
|
|
299
|
+
rval = await this.opts.storageProvider.findEntryById(userId);
|
|
300
|
+
}
|
|
301
|
+
else {
|
|
302
|
+
ErrorRatchet.throwFormattedErr('Cannot add - invalid config : %s %j', userId, contact);
|
|
303
|
+
}
|
|
304
|
+
return rval;
|
|
305
|
+
}
|
|
306
|
+
async generateWebAuthnRegistrationChallengeForLoggedInUser(userId, origin) {
|
|
307
|
+
if (!origin || !this.opts.allowedOrigins.includes(origin)) {
|
|
308
|
+
throw new Error('Invalid origin : ' + origin);
|
|
309
|
+
}
|
|
310
|
+
const asUrl = new URL(origin);
|
|
311
|
+
const rpID = asUrl.hostname;
|
|
312
|
+
const entry = await this.opts.storageProvider.findEntryById(userId);
|
|
313
|
+
if (!entry) {
|
|
314
|
+
throw ErrorRatchet.fErr('Cannot generateWebAuthnRegistrationChallengeForLoggedInUser - no user %s / %s', userId, origin);
|
|
315
|
+
}
|
|
316
|
+
const options = await generateRegistrationOptions({
|
|
317
|
+
rpName: this.opts.relyingPartyName,
|
|
318
|
+
rpID: rpID,
|
|
319
|
+
userID: StringRatchet.stringToUint8Array(entry.userId),
|
|
320
|
+
userName: entry.userLabel,
|
|
321
|
+
attestationType: 'none',
|
|
322
|
+
excludeCredentials: entry.webAuthnAuthenticators.map((authenticator) => ({
|
|
323
|
+
id: authenticator.credentialPublicKeyBase64,
|
|
324
|
+
transports: authenticator.transports,
|
|
325
|
+
})),
|
|
326
|
+
});
|
|
327
|
+
await this.opts.storageProvider.updateUserChallenge(entry.userId, rpID, options.challenge);
|
|
328
|
+
return options;
|
|
329
|
+
}
|
|
330
|
+
async storeAuthnRegistration(userId, origin, applicationName, deviceLabel, data) {
|
|
331
|
+
Logger.info('Store authn data : %j', data);
|
|
332
|
+
let rval = null;
|
|
333
|
+
try {
|
|
334
|
+
if (!origin || !this.opts.allowedOrigins.includes(origin)) {
|
|
335
|
+
throw new Error('Invalid origin : ' + origin);
|
|
336
|
+
}
|
|
337
|
+
const asUrl = new URL(origin);
|
|
338
|
+
const rpID = asUrl.hostname;
|
|
339
|
+
const user = await this.opts.storageProvider.findEntryById(userId);
|
|
340
|
+
if (!user) {
|
|
341
|
+
throw ErrorRatchet.fErr('Cannot storeAuthnRegistration - no user %s / %s', userId, origin);
|
|
342
|
+
}
|
|
343
|
+
const expectedChallenge = await this.opts.storageProvider.fetchCurrentUserChallenge(user.userId, rpID);
|
|
344
|
+
const vrOpts = {
|
|
345
|
+
response: data,
|
|
346
|
+
expectedChallenge: expectedChallenge,
|
|
347
|
+
expectedOrigin: origin,
|
|
348
|
+
expectedRPID: rpID,
|
|
349
|
+
};
|
|
350
|
+
Logger.info('Calling verifyRegistrationResponse: %j', vrOpts);
|
|
351
|
+
const verification = await verifyRegistrationResponse(vrOpts);
|
|
352
|
+
Logger.info('verifyRegistrationResponse Result : %j', verification);
|
|
353
|
+
rval = {
|
|
354
|
+
updatedEntry: null,
|
|
355
|
+
registrationResponseId: data.id,
|
|
356
|
+
result: verification.verified ? WardenStoreRegistrationResponseType.Verified : WardenStoreRegistrationResponseType.Failed,
|
|
357
|
+
};
|
|
358
|
+
if (rval.result === WardenStoreRegistrationResponseType.Verified) {
|
|
359
|
+
Logger.info('Storing registration');
|
|
360
|
+
const newAuth = {
|
|
361
|
+
origin: origin,
|
|
362
|
+
applicationName: applicationName || 'Unknown Application',
|
|
363
|
+
deviceLabel: deviceLabel || 'Unknown Device',
|
|
364
|
+
counter: verification.registrationInfo.counter,
|
|
365
|
+
credentialBackedUp: verification.registrationInfo.credentialBackedUp,
|
|
366
|
+
credentialDeviceType: verification.registrationInfo.credentialDeviceType,
|
|
367
|
+
credentialIdBase64: verification.registrationInfo.credentialID,
|
|
368
|
+
credentialPublicKeyBase64: Base64Ratchet.uint8ArrayToBase64UrlString(verification.registrationInfo.credentialPublicKey),
|
|
369
|
+
};
|
|
370
|
+
user.webAuthnAuthenticators = (user.webAuthnAuthenticators || []).filter((wa) => wa.credentialIdBase64 !== newAuth.credentialIdBase64);
|
|
371
|
+
user.webAuthnAuthenticators.push(newAuth);
|
|
372
|
+
const storedUser = await this.opts.storageProvider.saveEntry(user);
|
|
373
|
+
rval.updatedEntry = storedUser;
|
|
374
|
+
Logger.info('Stored auth : %j', storedUser);
|
|
375
|
+
}
|
|
376
|
+
}
|
|
377
|
+
catch (err) {
|
|
378
|
+
rval = {
|
|
379
|
+
registrationResponseId: data.id,
|
|
380
|
+
result: WardenStoreRegistrationResponseType.Error,
|
|
381
|
+
error: ErrorRatchet.safeStringifyErr(err),
|
|
382
|
+
};
|
|
383
|
+
}
|
|
384
|
+
return rval;
|
|
385
|
+
}
|
|
386
|
+
async generateWebAuthnAuthenticationChallengeForUserId(userId, origin) {
|
|
387
|
+
const user = await this.opts.storageProvider.findEntryById(userId);
|
|
388
|
+
const rval = await this.generateWebAuthnAuthenticationChallenge(user, origin);
|
|
389
|
+
return rval;
|
|
390
|
+
}
|
|
391
|
+
async generateWebAuthnAuthenticationChallenge(user, origin) {
|
|
392
|
+
const userAuthenticators = user.webAuthnAuthenticators;
|
|
393
|
+
if (!origin || !this.opts.allowedOrigins.includes(origin)) {
|
|
394
|
+
throw new Error('Invalid origin : ' + origin);
|
|
395
|
+
}
|
|
396
|
+
const asUrl = new URL(origin);
|
|
397
|
+
const rpID = asUrl.hostname;
|
|
398
|
+
const out = userAuthenticators.map((authenticator) => {
|
|
399
|
+
const next = {
|
|
400
|
+
id: authenticator.credentialIdBase64,
|
|
401
|
+
transports: authenticator.transports,
|
|
402
|
+
};
|
|
403
|
+
return next;
|
|
404
|
+
});
|
|
405
|
+
const opts = {
|
|
406
|
+
rpID: rpID,
|
|
407
|
+
allowCredentials: out,
|
|
408
|
+
userVerification: 'preferred',
|
|
409
|
+
};
|
|
410
|
+
const options = await generateAuthenticationOptions(opts);
|
|
411
|
+
await this.opts.storageProvider.updateUserChallenge(user.userId, rpID, options.challenge);
|
|
412
|
+
return options;
|
|
413
|
+
}
|
|
414
|
+
async sendExpiringValidationToken(request) {
|
|
415
|
+
let rval = false;
|
|
416
|
+
if (request?.type && StringRatchet.trimToNull(request?.value)) {
|
|
417
|
+
const prov = this.singleUseCodeProvider(request, false);
|
|
418
|
+
rval = await prov.createAndSendNewCode(request, this.opts.relyingPartyName);
|
|
419
|
+
}
|
|
420
|
+
else {
|
|
421
|
+
ErrorRatchet.throwFormattedErr('Cannot send - invalid request %j', request);
|
|
422
|
+
}
|
|
423
|
+
return rval;
|
|
424
|
+
}
|
|
425
|
+
async processLogin(request, origin) {
|
|
426
|
+
Logger.info('Processing login : %s : %j', origin, request);
|
|
427
|
+
let rval = false;
|
|
428
|
+
RequireRatchet.notNullOrUndefined(request, 'request');
|
|
429
|
+
RequireRatchet.true(!!StringRatchet.trimToNull(request?.userId) || WardenUtils.validContact(request?.contact), 'Invalid contact and no userId');
|
|
430
|
+
RequireRatchet.true(!!request?.webAuthn || !!StringRatchet.trimToNull(request?.expiringToken), 'You must provide one of webAuthn or expiringToken');
|
|
431
|
+
RequireRatchet.true(!request?.webAuthn || !StringRatchet.trimToNull(request?.expiringToken), 'WebAuthn and ExpiringToken may not BOTH be set');
|
|
432
|
+
let user = StringRatchet.trimToNull(request?.userId)
|
|
433
|
+
? await this.opts.storageProvider.findEntryById(request?.userId)
|
|
434
|
+
: await this.opts.storageProvider.findEntryByContact(request.contact);
|
|
435
|
+
if (!user) {
|
|
436
|
+
Logger.info('User not found, and createUserIfMissing=%s / %j', request.createUserIfMissing, request.contact);
|
|
437
|
+
if (request.createUserIfMissing && request.contact) {
|
|
438
|
+
const newVal = await this.createAccount(request.contact);
|
|
439
|
+
Logger.info('Finished create, new id is %s', newVal);
|
|
440
|
+
user = await this.opts.storageProvider.findEntryById(newVal);
|
|
441
|
+
}
|
|
442
|
+
if (!user) {
|
|
443
|
+
ErrorRatchet.throwFormattedErr('No user found for %j / %s', request?.contact, request?.userId);
|
|
444
|
+
}
|
|
445
|
+
}
|
|
446
|
+
if (request.webAuthn) {
|
|
447
|
+
rval = await this.loginWithWebAuthnRequest(user, origin, request.webAuthn);
|
|
448
|
+
}
|
|
449
|
+
else if (StringRatchet.trimToNull(request.expiringToken)) {
|
|
450
|
+
const prov = this.singleUseCodeProvider(request.contact, false);
|
|
451
|
+
const lookup = await prov.checkCode(request.contact.value, request.expiringToken);
|
|
452
|
+
if (lookup) {
|
|
453
|
+
rval = true;
|
|
454
|
+
}
|
|
455
|
+
else {
|
|
456
|
+
ErrorRatchet.throwFormattedErr('Cannot login - token is invalid for this user');
|
|
457
|
+
}
|
|
458
|
+
}
|
|
459
|
+
return rval;
|
|
460
|
+
}
|
|
461
|
+
async loginWithWebAuthnRequest(user, origin, data) {
|
|
462
|
+
let rval = false;
|
|
463
|
+
const asUrl = new URL(origin);
|
|
464
|
+
const rpID = asUrl.hostname;
|
|
465
|
+
const expectedChallenge = await this.opts.storageProvider.fetchCurrentUserChallenge(user.userId, rpID);
|
|
466
|
+
const auth = (user.webAuthnAuthenticators || []).find((s) => s.credentialIdBase64 === data.id);
|
|
467
|
+
if (!auth) {
|
|
468
|
+
const allIds = (user.webAuthnAuthenticators || []).map((s) => s.credentialIdBase64);
|
|
469
|
+
throw ErrorRatchet.fErr('Could not find authenticator %s (%s) for user %s (avail were : %j)', data.id, data.id, user.userId, allIds);
|
|
470
|
+
}
|
|
471
|
+
const authenticator = {
|
|
472
|
+
counter: auth.counter,
|
|
473
|
+
credentialID: auth.credentialIdBase64,
|
|
474
|
+
credentialPublicKey: Base64Ratchet.base64UrlStringToBytes(auth.credentialPublicKeyBase64),
|
|
475
|
+
};
|
|
476
|
+
const vrOpts = {
|
|
477
|
+
response: data,
|
|
478
|
+
expectedChallenge,
|
|
479
|
+
expectedOrigin: origin,
|
|
480
|
+
expectedRPID: rpID,
|
|
481
|
+
authenticator,
|
|
482
|
+
};
|
|
483
|
+
const verification = await verifyAuthenticationResponse(vrOpts);
|
|
484
|
+
if (verification.verified) {
|
|
485
|
+
rval = true;
|
|
486
|
+
}
|
|
487
|
+
return rval;
|
|
488
|
+
}
|
|
489
|
+
async removeSingleWebAuthnRegistration(userId, key) {
|
|
490
|
+
let ent = await this.opts.storageProvider.findEntryById(userId);
|
|
491
|
+
if (ent) {
|
|
492
|
+
ent.webAuthnAuthenticators = (ent.webAuthnAuthenticators || []).filter((s) => s.credentialIdBase64 !== key);
|
|
493
|
+
ent = await this.opts.storageProvider.saveEntry(ent);
|
|
494
|
+
}
|
|
495
|
+
else {
|
|
496
|
+
Logger.info('Not removing - no such user as %s', userId);
|
|
497
|
+
}
|
|
498
|
+
return ent;
|
|
499
|
+
}
|
|
500
|
+
async removeUser(userId) {
|
|
501
|
+
let rval = false;
|
|
502
|
+
if (StringRatchet.trimToNull(userId)) {
|
|
503
|
+
const oldUser = await this.opts.storageProvider.findEntryById(userId);
|
|
504
|
+
if (oldUser) {
|
|
505
|
+
await this.opts.storageProvider.removeEntry(userId);
|
|
506
|
+
if (this?.opts?.eventProcessor) {
|
|
507
|
+
await this.opts.eventProcessor.userRemoved(oldUser);
|
|
508
|
+
}
|
|
509
|
+
rval = true;
|
|
510
|
+
}
|
|
511
|
+
else {
|
|
512
|
+
Logger.warn('Cannot remove non-existent user : %s', userId);
|
|
513
|
+
}
|
|
514
|
+
}
|
|
515
|
+
return rval;
|
|
516
|
+
}
|
|
517
|
+
}
|
|
518
|
+
//# sourceMappingURL=warden-service.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"warden-service.js","sourceRoot":"","sources":["../../src/server/warden-service.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,6BAA6B,EAE7B,2BAA2B,EAG3B,4BAA4B,EAE5B,0BAA0B,GAE3B,MAAM,wBAAwB,CAAC;AAahC,OAAO,EAAE,WAAW,EAAE,MAAM,yDAAyD,CAAC;AAQtF,OAAO,EAAE,mCAAmC,EAAE,MAAM,qFAAqF,CAAC;AAG1I,OAAO,EAAE,cAAc,EAAE,MAAM,8CAA8C,CAAC;AAC9E,OAAO,EAAE,MAAM,EAAE,MAAM,uCAAuC,CAAC;AAC/D,OAAO,EAAE,YAAY,EAAE,MAAM,4CAA4C,CAAC;AAC1E,OAAO,EAAE,aAAa,EAAE,MAAM,6CAA6C,CAAC;AAC5E,OAAO,EAAE,aAAa,EAAE,MAAM,6CAA6C,CAAC;AAG5E,OAAO,EAAE,mCAAmC,EAAE,MAAM,uDAAuD,CAAC;AAC5G,OAAO,EAAE,iCAAiC,EAAE,MAAM,sDAAsD,CAAC;AAEzG,OAAO,EAAE,0CAA0C,EAAE,MAAM,gEAAgE,CAAC;AAE5H,MAAM,OAAO,aAAa;IAGJ;IAFZ,IAAI,CAAuB;IAEnC,YAAoB,SAA+B;QAA/B,cAAS,GAAT,SAAS,CAAsB;QACjD,cAAc,CAAC,kBAAkB,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;QACxD,cAAc,CAAC,kBAAkB,CAAC,SAAS,CAAC,gBAAgB,EAAE,0BAA0B,CAAC,CAAC;QAC1F,cAAc,CAAC,4BAA4B,CAAC,SAAS,CAAC,cAAc,EAAE,wBAAwB,CAAC,CAAC;QAChG,cAAc,CAAC,kBAAkB,CAAC,SAAS,CAAC,eAAe,EAAE,yBAAyB,CAAC,CAAC;QACxF,cAAc,CAAC,kBAAkB,CAAC,SAAS,CAAC,UAAU,EAAE,oBAAoB,CAAC,CAAC;QAC9E,cAAc,CAAC,4BAA4B,CAAC,SAAS,CAAC,sBAAsB,EAAE,gCAAgC,CAAC,CAAC;QAEhH,IAAI,CAAC,IAAI,GAAG,MAAM,CAAC,MAAM,CACvB;YACE,qBAAqB,EAAE,IAAI,mCAAmC,EAAE;YAChE,cAAc,EAAE,IAAI,iCAAiC,EAAE;YACvD,6BAA6B,EAAE,IAAI,0CAA0C,EAAE;SAChF,EACD,SAAS,CACV,CAAC;IACJ,CAAC;IAED,IAAW,OAAO;QAChB,OAAO,MAAM,CAAC,MAAM,CAAC,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;IACtC,CAAC;IAGM,kBAAkB,CAAC,OAAsB;QAC9C,OAAO,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC;IAC/D,CAAC;IAGM,aAAa,CAAC,MAAc;QACjC,OAAO,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;IACzD,CAAC;IAGM,KAAK,CAAC,4BAA4B,CAAC,SAAiB,EAAE,MAAc,EAAE,cAAsB;QACjG,IAAI,IAAI,GAAW,IAAI,CAAC;QACxB,IAAI,CAAC;YACH,MAAM,GAAG,GAAkB,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;YACjD,MAAM,IAAI,GAA0B,MAAM,IAAI,CAAC,wBAAwB,CAAC,GAAG,EAAE,MAAM,EAAE,cAAc,CAAC,CAAC;YACrG,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;gBAClB,MAAM,CAAC,IAAI,CAAC,gCAAgC,EAAE,SAAS,EAAE,MAAM,EAAE,cAAc,CAAC,CAAC;YACnF,CAAC;iBAAM,CAAC;gBACN,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YAC9B,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YAEb,MAAM,SAAS,GAAW,YAAY,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC;YAC7D,MAAM,CAAC,KAAK,CAAC,gBAAgB,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;YAC1D,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,SAAS,EAA2B,CAAC,CAAC;QACvE,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAGM,KAAK,CAAC,wBAAwB,CAAC,GAAkB,EAAE,MAAc,EAAE,cAAsB;QAC9F,IAAI,IAAI,GAA0B,IAAI,CAAC;QACvC,IAAI,GAAG,EAAE,CAAC;YACR,MAAM,CAAC,IAAI,CAAC,yDAAyD,EAAE,cAAc,EAAE,MAAM,EAAE,GAAG,CAAC,CAAC;YAEpG,IAAI,GAAG,CAAC,2BAA2B,EAAE,CAAC;gBACpC,IAAI,GAAG,EAAE,2BAA2B,EAAE,MAAM,IAAI,CAAC,2BAA2B,CAAC,GAAG,CAAC,2BAA2B,CAAC,EAAE,CAAC;YAClH,CAAC;iBAAM,IAAI,GAAG,CAAC,gDAAgD,EAAE,CAAC;gBAChE,MAAM,GAAG,GAA0C,MAAM,IAAI,CAAC,gDAAgD,CAC5G,GAAG,CAAC,gDAAgD,EACpD,MAAM,CACP,CAAC;gBACF,IAAI,GAAG,EAAE,gDAAgD,EAAE,EAAE,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACnG,CAAC;iBAAM,IAAI,GAAG,CAAC,aAAa,EAAE,CAAC;gBAC7B,IAAI,GAAG;oBACL,aAAa,EAAE,MAAM,IAAI,CAAC,aAAa,CACrC,GAAG,CAAC,aAAa,CAAC,OAAO,EACzB,GAAG,CAAC,aAAa,CAAC,QAAQ,EAC1B,GAAG,CAAC,aAAa,CAAC,KAAK,EACvB,GAAG,CAAC,aAAa,CAAC,IAAI,CACvB;iBACF,CAAC;YACJ,CAAC;iBAAM,IAAI,GAAG,CAAC,aAAa,EAAE,CAAC;gBAC7B,IAAI,GAAG,EAAE,aAAa,EAAE,aAAa,IAAI,GAAG,EAAE,aAAa,EAAE,OAAO,EAAE,CAAC;oBACrE,MAAM,YAAY,CAAC,IAAI,CAAC,oDAAoD,CAAC,CAAC;gBAChF,CAAC;gBACD,IAAI,CAAC,GAAG,EAAE,aAAa,EAAE,aAAa,IAAI,CAAC,GAAG,EAAE,aAAa,EAAE,OAAO,EAAE,CAAC;oBACvE,MAAM,YAAY,CAAC,IAAI,CAAC,uDAAuD,CAAC,CAAC;gBACnF,CAAC;gBACD,IAAI,GAAG,CAAC,aAAa,CAAC,aAAa,EAAE,CAAC;oBACpC,MAAM,KAAK,GAAgB,MAAM,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,aAAa,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;oBAC5F,IAAI,KAAK,EAAE,CAAC;wBACV,IAAI,GAAG,CAAC,aAAa,CAAC,aAAa,CAAC,WAAW,EAAE,CAAC;4BAEhD,GAAG,CAAC,aAAa,CAAC,OAAO,GAAG,CAAC,KAAK,CAAC,cAAc,IAAI,EAAE,CAAC,CAAC,IAAI,CAC3D,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,IAAI,KAAK,GAAG,CAAC,aAAa,CAAC,aAAa,CAAC,WAAW,CAChE,CAAC;wBACJ,CAAC;6BAAM,CAAC;4BACN,GAAG,CAAC,aAAa,CAAC,OAAO,GAAG,CAAC,KAAK,CAAC,cAAc,IAAI,EAAE,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;wBACvG,CAAC;oBACH,CAAC;oBACD,GAAG,CAAC,aAAa,CAAC,aAAa,GAAG,IAAI,CAAC;gBACzC,CAAC;gBAED,IAAI,CAAC,GAAG,CAAC,aAAa,CAAC,OAAO,EAAE,CAAC;oBAC/B,MAAM,YAAY,CAAC,IAAI,CAAC,4DAA4D,CAAC,CAAC;gBACxF,CAAC;gBAED,MAAM,YAAY,GAAgB,aAAa,CAAC,UAAU,CAAC,cAAc,CAAC;oBACxE,CAAC,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,cAAc,CAAC;oBAC/D,CAAC,CAAC,IAAI,CAAC;gBAET,MAAM,IAAI,CAAC,IAAI,CAAC,6BAA6B,CAAC,qBAAqB,CAAC,GAAG,CAAC,aAAa,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;gBAE7G,MAAM,UAAU,GAAW,GAAG,EAAE,aAAa,EAAE,UAAU,IAAI,GAAG,CAAC;gBAEjE,IAAI,GAAG;oBACL,aAAa,EAAE,MAAM,IAAI,CAAC,aAAa,CACrC,GAAG,CAAC,aAAa,CAAC,OAAO,EACzB,GAAG,CAAC,aAAa,CAAC,0BAA0B,EAC5C,IAAI,CAAC,IAAI,CAAC,gBAAgB,EAC1B,GAAG,CAAC,aAAa,CAAC,UAAU,EAC5B,GAAG,CAAC,aAAa,CAAC,IAAI,EACtB,UAAU,EACV,GAAG,CAAC,aAAa,CAAC,cAAc,CACjC;iBACF,CAAC;YACJ,CAAC;iBAAM,IAAI,GAAG,CAAC,oDAAoD,EAAE,CAAC;gBACpE,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;oBAC9C,YAAY,CAAC,iBAAiB,CAAC,gCAAgC,CAAC,CAAC;gBACnE,CAAC;gBACD,MAAM,GAAG,GAA2C,MAAM,IAAI,CAAC,oDAAoD,CACjH,cAAc,EACd,MAAM,CACP,CAAC;gBACF,IAAI,GAAG,EAAE,oDAAoD,EAAE,EAAE,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACvG,CAAC;iBAAM,IAAI,GAAG,CAAC,wBAAwB,EAAE,CAAC;gBACxC,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC,GAAG,CAAC,wBAAwB,CAAC,EAAE,CAAC;oBAC5D,YAAY,CAAC,iBAAiB,CAAC,gCAAgC,EAAE,GAAG,CAAC,wBAAwB,CAAC,CAAC;gBACjG,CAAC;qBAAM,CAAC;oBACN,MAAM,GAAG,GAAY,MAAM,IAAI,CAAC,sBAAsB,CAAC,cAAc,EAAE,GAAG,CAAC,wBAAwB,CAAC,CAAC;oBACrG,IAAI,GAAG,EAAE,wBAAwB,EAAE,GAAG,EAAE,CAAC;gBAC3C,CAAC;YACH,CAAC;iBAAM,IAAI,GAAG,CAAC,qCAAqC,EAAE,CAAC;gBACrD,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;oBAC9C,YAAY,CAAC,iBAAiB,CAAC,gCAAgC,CAAC,CAAC;gBACnE,CAAC;gBACD,MAAM,IAAI,GAA6B,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,qCAAqC,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;gBACjH,MAAM,GAAG,GAAoC,MAAM,IAAI,CAAC,sBAAsB,CAC5E,cAAc,EACd,MAAM,EACN,GAAG,CAAC,qCAAqC,CAAC,eAAe,EACzD,GAAG,CAAC,qCAAqC,CAAC,WAAW,EACrD,IAAI,CACL,CAAC;gBACF,IAAI,GAAG,CAAC,YAAY,EAAE,CAAC;oBACrB,IAAI,GAAG,EAAE,qCAAqC,EAAE,WAAW,CAAC,yBAAyB,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC;gBAC5G,CAAC;qBAAM,IAAI,GAAG,CAAC,KAAK,EAAE,CAAC;oBACrB,IAAI,GAAG,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,CAAC;gBAC9B,CAAC;qBAAM,CAAC;oBACN,IAAI,GAAG,EAAE,KAAK,EAAE,4CAA4C,EAAE,CAAC;gBACjE,CAAC;YACH,CAAC;iBAAM,IAAI,GAAG,CAAC,0BAA0B,EAAE,CAAC;gBAC1C,MAAM,QAAQ,GAAgB,MAAM,IAAI,CAAC,gCAAgC,CACvE,GAAG,CAAC,0BAA0B,CAAC,MAAM,EACrC,GAAG,CAAC,0BAA0B,CAAC,YAAY,CAC5C,CAAC;gBACF,IAAI,GAAG;oBACL,0BAA0B,EAAE,WAAW,CAAC,yBAAyB,CAAC,QAAQ,CAAC;iBAC5E,CAAC;YACJ,CAAC;iBAAM,IAAI,GAAG,CAAC,0CAA0C,EAAE,CAAC;gBAC1D,MAAM,QAAQ,GAAgB,MAAM,IAAI,CAAC,gCAAgC,CACvE,cAAc,EACd,GAAG,CAAC,0CAA0C,CAC/C,CAAC;gBACF,IAAI,GAAG;oBACL,0CAA0C,EAAE,WAAW,CAAC,yBAAyB,CAAC,QAAQ,CAAC;iBAC5F,CAAC;YACJ,CAAC;iBAAM,IAAI,GAAG,CAAC,6BAA6B,EAAE,CAAC;gBAC7C,MAAM,MAAM,GAAgB,MAAM,IAAI,CAAC,2BAA2B,CAAC,cAAc,EAAE,GAAG,CAAC,6BAA6B,CAAC,CAAC;gBAEtH,IAAI,GAAG;oBACL,6BAA6B,EAAE,WAAW,CAAC,yBAAyB,CAAC,MAAM,CAAC;iBAC7E,CAAC;YAEJ,CAAC;iBAAM,IAAI,GAAG,CAAC,YAAY,EAAE,CAAC;gBAC5B,MAAM,SAAS,GAAuB,GAAG,CAAC,YAAY,CAAC;gBACvD,MAAM,OAAO,GAAY,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;gBACpE,MAAM,CAAC,IAAI,CAAC,8CAA8C,EAAE,OAAO,CAAC,CAAC;gBACrE,IAAI,OAAO,EAAE,CAAC;oBACZ,MAAM,IAAI,GAAgB,aAAa,CAAC,UAAU,CAAC,SAAS,CAAC,MAAM,CAAC;wBAClE,CAAC,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,SAAS,CAAC,MAAM,CAAC;wBACjE,CAAC,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,kBAAkB,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;oBAC1E,MAAM,UAAU,GAA8B,MAAM,IAAI,CAAC,IAAI,CAAC,sBAAsB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;oBAC3G,MAAM,WAAW,GAAwB;wBACvC,SAAS,EAAE,WAAW,CAAC,yBAAyB,CAAC,IAAI,CAAC;wBACtD,IAAI,EAAE,UAAU,CAAC,aAAa;wBAC9B,KAAK,EAAE,WAAW,CAAC,gBAAgB,CAAC,UAAU,CAAC,aAAa,CAAC;wBAC7D,KAAK,EAAE,IAAI;qBACZ,CAAC;oBACF,MAAM,QAAQ,GAAW,MAAM,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,iBAAiB,CAAC,WAAW,EAAE,UAAU,CAAC,0BAA0B,CAAC,CAAC;oBAC1H,MAAM,MAAM,GAAuB;wBACjC,OAAO,EAAE,SAAS;wBAClB,MAAM,EAAE,IAAI,CAAC,MAAM;wBACnB,QAAQ,EAAE,QAAQ;qBACnB,CAAC;oBACF,IAAI,GAAG,EAAE,YAAY,EAAE,MAAM,EAAE,CAAC;gBAClC,CAAC;qBAAM,CAAC;oBACN,IAAI,GAAG,EAAE,KAAK,EAAE,cAAc,EAAE,CAAC;gBACnC,CAAC;YACH,CAAC;iBAAM,IAAI,GAAG,CAAC,eAAe,EAAE,CAAC;gBAC/B,MAAM,MAAM,GAAwB,MAAM,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,GAAG,CAAC,eAAe,IAAqC,CAAC;gBACpI,MAAM,IAAI,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;gBACjG,MAAM,UAAU,GAA8B,MAAM,IAAI,CAAC,IAAI,CAAC,sBAAsB,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;gBAC3G,MAAM,WAAW,GAAwB;oBACvC,SAAS,EAAE,WAAW,CAAC,yBAAyB,CAAC,IAAI,CAAC;oBACtD,IAAI,EAAE,UAAU,CAAC,aAAa;oBAC9B,KAAK,EAAE,WAAW,CAAC,gBAAgB,CAAC,UAAU,CAAC,aAAa,CAAC;oBAC7D,KAAK,EAAE,IAAI;iBACZ,CAAC;gBAEF,MAAM,QAAQ,GAAW,MAAM,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,iBAAiB,CAAC,WAAW,EAAE,UAAU,CAAC,0BAA0B,CAAC,CAAC;gBAG1H,IAAI,GAAG;oBACL,eAAe,EAAE,QAAQ;iBAC1B,CAAC;YACJ,CAAC;QACH,CAAC;aAAM,CAAC;YACN,IAAI,GAAG,EAAE,KAAK,EAAE,iBAAiB,EAAE,CAAC;QACtC,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,oBAAoB,CAAC,GAAW;QACrC,IAAI,IAAI,GAAY,KAAK,CAAC;QAC1B,IAAI,GAAG,EAAE,CAAC;YACR,MAAM,CAAC,GAAQ,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;YAC5B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE,CAAC;gBAClE,MAAM,IAAI,GAAQ,IAAI,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAC;gBACvD,IAAI,GAAG,IAAI,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,IAAI,IAAI,CAAC,QAAQ,KAAK,CAAC,CAAC,QAAQ,IAAI,IAAI,CAAC,IAAI,KAAK,CAAC,CAAC,IAAI,CAAC;YAC1F,CAAC;QACH,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,qBAAqB,CAC1B,OAAsB,EACtB,uBAAgC,EAChC,uBAAiC;QAEjC,MAAM,IAAI,GAAgC,IAAI,CAAC,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAC7E,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,kBAAkB,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,uBAAuB,IAAI,CAAC,CAAC,0BAA0B,CAAC,CACxG,CAAC;QACF,IAAI,CAAC,IAAI,IAAI,CAAC,uBAAuB,EAAE,CAAC;YACtC,MAAM,YAAY,CAAC,IAAI,CAAC,8DAA8D,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;QACxG,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,KAAK,CAAC,aAAa,CACxB,OAAsB,EACtB,0BAAyC,EACzC,gBAAwB,EACxB,UAAkB,EAClB,MAA+B,EAC/B,UAAmB,EACnB,cAA+C;QAE/C,IAAI,IAAI,GAAY,KAAK,CAAC;QAC1B,cAAc,CAAC,kBAAkB,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;QACtD,cAAc,CAAC,sCAAsC,CAAC,UAAU,EAAE,YAAY,CAAC,CAAC;QAChF,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,UAAU,CAAC,EAAE,qDAAqD,CAAC,CAAC;QAElH,IAAI,OAAO,EAAE,IAAI,IAAI,aAAa,CAAC,UAAU,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,CAAC;YAC9D,MAAM,IAAI,GAAgC,IAAI,CAAC,qBAAqB,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;YACpF,IAAI,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAC1C,OAAO,EACP,gBAAgB,EAChB,UAAU,EACV,MAAM,EACN,UAAU,EACV,0BAA0B,EAC1B,cAAc,CACf,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,YAAY,CAAC,iBAAiB,CAAC,kCAAkC,EAAE,OAAO,CAAC,CAAC;QAC9E,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAGM,KAAK,CAAC,aAAa,CAAC,OAAsB,EAAE,QAAkB,EAAE,KAAc,EAAE,IAAe;QACpG,IAAI,IAAI,GAAW,IAAI,CAAC;QACxB,IAAI,WAAW,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE,CAAC;YACtC,MAAM,GAAG,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC;YACrF,IAAI,GAAG,EAAE,CAAC;gBACR,YAAY,CAAC,iBAAiB,CAAC,+CAA+C,EAAE,OAAO,CAAC,CAAC;YAC3F,CAAC;YAED,MAAM,IAAI,GAAW,aAAa,CAAC,eAAe,EAAE,CAAC;YACrD,MAAM,GAAG,GAAW,IAAI,CAAC,GAAG,EAAE,CAAC;YAC/B,MAAM,OAAO,GAAgB;gBAC3B,MAAM,EAAE,IAAI;gBACZ,SAAS,EAAE,KAAK,IAAI,OAAO,GAAG,IAAI;gBAClC,cAAc,EAAE,CAAC,OAAO,CAAC;gBACzB,IAAI,EAAE,IAAI,IAAI,EAAE;gBAChB,sBAAsB,EAAE,EAAE;gBAC1B,cAAc,EAAE,GAAG;gBACnB,cAAc,EAAE,GAAG;aACpB,CAAC;YACF,MAAM,IAAI,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YAC7E,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC;YACnB,IAAI,IAAI,EAAE,IAAI,EAAE,cAAc,EAAE,CAAC;gBAC/B,MAAM,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YACnD,CAAC;YAED,IAAI,QAAQ,EAAE,CAAC;gBACb,MAAM,CAAC,IAAI,CAAC,kDAAkD,EAAE,IAAI,CAAC,CAAC;gBACtE,MAAM,IAAI,CAAC,2BAA2B,CAAC,OAAO,CAAC,CAAC;YAClD,CAAC;QACH,CAAC;aAAM,CAAC;YACN,YAAY,CAAC,iBAAiB,CAAC,6DAA6D,CAAC,CAAC;QAChG,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAKM,KAAK,CAAC,sBAAsB,CAAC,MAAc,EAAE,OAAsB;QACxE,IAAI,IAAI,GAAY,KAAK,CAAC;QAC1B,IAAI,aAAa,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,WAAW,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1E,MAAM,SAAS,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC;YAC3F,IAAI,SAAS,IAAI,SAAS,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;gBAC7C,YAAY,CAAC,iBAAiB,CAAC,wEAAwE,CAAC,CAAC;YAC3G,CAAC;YACD,MAAM,OAAO,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;YACnF,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,YAAY,CAAC,iBAAiB,CAAC,sDAAsD,CAAC,CAAC;YACzF,CAAC;YACD,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACrC,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YACnD,IAAI,GAAG,IAAI,CAAC;QACd,CAAC;aAAM,CAAC;YACN,YAAY,CAAC,iBAAiB,CAAC,qCAAqC,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QACzF,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAGM,KAAK,CAAC,2BAA2B,CAAC,MAAc,EAAE,OAAsB;QAC7E,IAAI,IAAI,GAAgB,IAAI,CAAC;QAC7B,IAAI,aAAa,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,WAAW,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1E,MAAM,OAAO,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;YACnF,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,YAAY,CAAC,iBAAiB,CAAC,2DAA2D,CAAC,CAAC;YAC9F,CAAC;YACD,OAAO,CAAC,cAAc,GAAG,CAAC,OAAO,CAAC,cAAc,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC,KAAK,KAAK,OAAO,CAAC,KAAK,CAAC,CAAC;YAC5H,IAAI,OAAO,CAAC,cAAc,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACxC,YAAY,CAAC,iBAAiB,CAAC,mDAAmD,CAAC,CAAC;YACtF,CAAC;YACD,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YACnD,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;QAC/D,CAAC;aAAM,CAAC;YACN,YAAY,CAAC,iBAAiB,CAAC,qCAAqC,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QACzF,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAIM,KAAK,CAAC,oDAAoD,CAC/D,MAAc,EACd,MAAc;QAEd,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YAC1D,MAAM,IAAI,KAAK,CAAC,mBAAmB,GAAG,MAAM,CAAC,CAAC;QAChD,CAAC;QACD,MAAM,KAAK,GAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;QACnC,MAAM,IAAI,GAAW,KAAK,CAAC,QAAQ,CAAC;QAEpC,MAAM,KAAK,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;QACjF,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,YAAY,CAAC,IAAI,CAAC,+EAA+E,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;QAC3H,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,2BAA2B,CAAC;YAChD,MAAM,EAAE,IAAI,CAAC,IAAI,CAAC,gBAAgB;YAClC,IAAI,EAAE,IAAI;YACV,MAAM,EAAE,aAAa,CAAC,kBAAkB,CAAC,KAAK,CAAC,MAAM,CAAC;YACtD,QAAQ,EAAE,KAAK,CAAC,SAAS;YAGzB,eAAe,EAAE,MAAM;YAEvB,kBAAkB,EAAE,KAAK,CAAC,sBAAsB,CAAC,GAAG,CAAC,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;gBACvE,EAAE,EAAE,aAAa,CAAC,yBAAyB;gBAG3C,UAAU,EAAE,aAAa,CAAC,UAAuD;aAClF,CAAC,CAAC;SACJ,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAAC,KAAK,CAAC,MAAM,EAAE,IAAI,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;QAE3F,OAAO,OAAO,CAAC;IACjB,CAAC;IAGM,KAAK,CAAC,sBAAsB,CACjC,MAAc,EACd,MAAc,EACd,eAAuB,EACvB,WAAmB,EACnB,IAA8B;QAE9B,MAAM,CAAC,IAAI,CAAC,uBAAuB,EAAE,IAAI,CAAC,CAAC;QAC3C,IAAI,IAAI,GAAoC,IAAI,CAAC;QACjD,IAAI,CAAC;YACH,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC1D,MAAM,IAAI,KAAK,CAAC,mBAAmB,GAAG,MAAM,CAAC,CAAC;YAChD,CAAC;YACD,MAAM,KAAK,GAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;YACnC,MAAM,IAAI,GAAW,KAAK,CAAC,QAAQ,CAAC;YAEpC,MAAM,IAAI,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;YAChF,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,MAAM,YAAY,CAAC,IAAI,CAAC,iDAAiD,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;YAC7F,CAAC;YAGD,MAAM,iBAAiB,GAAW,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,yBAAyB,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAE/G,MAAM,MAAM,GAAmC;gBAC7C,QAAQ,EAAE,IAAI;gBACd,iBAAiB,EAAE,iBAAiB;gBACpC,cAAc,EAAE,MAAM;gBACtB,YAAY,EAAE,IAAI;aACnB,CAAC;YAEF,MAAM,CAAC,IAAI,CAAC,wCAAwC,EAAE,MAAM,CAAC,CAAC;YAE9D,MAAM,YAAY,GAAiC,MAAM,0BAA0B,CAAC,MAAM,CAAC,CAAC;YAC5F,MAAM,CAAC,IAAI,CAAC,wCAAwC,EAAE,YAAY,CAAC,CAAC;YAEpE,IAAI,GAAG;gBACL,YAAY,EAAE,IAAI;gBAClB,sBAAsB,EAAE,IAAI,CAAC,EAAE;gBAC/B,MAAM,EAAE,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,mCAAmC,CAAC,QAAQ,CAAC,CAAC,CAAC,mCAAmC,CAAC,MAAM;aAC1H,CAAC;YAEF,IAAI,IAAI,CAAC,MAAM,KAAK,mCAAmC,CAAC,QAAQ,EAAE,CAAC;gBACjE,MAAM,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;gBACpC,MAAM,OAAO,GAAwB;oBACnC,MAAM,EAAE,MAAM;oBACd,eAAe,EAAE,eAAe,IAAI,qBAAqB;oBACzD,WAAW,EAAE,WAAW,IAAI,gBAAgB;oBAC5C,OAAO,EAAE,YAAY,CAAC,gBAAgB,CAAC,OAAO;oBAC9C,kBAAkB,EAAE,YAAY,CAAC,gBAAgB,CAAC,kBAAkB;oBACpE,oBAAoB,EAAE,YAAY,CAAC,gBAAgB,CAAC,oBAAoB;oBACxE,kBAAkB,EAAE,YAAY,CAAC,gBAAgB,CAAC,YAAY;oBAC9D,yBAAyB,EAAE,aAAa,CAAC,2BAA2B,CAAC,YAAY,CAAC,gBAAgB,CAAC,mBAAmB,CAAC;iBAExH,CAAC;gBAIF,IAAI,CAAC,sBAAsB,GAAG,CAAC,IAAI,CAAC,sBAAsB,IAAI,EAAE,CAAC,CAAC,MAAM,CACtE,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,kBAAkB,KAAK,OAAO,CAAC,kBAAkB,CAC7D,CAAC;gBACF,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBAC1C,MAAM,UAAU,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;gBAChF,IAAI,CAAC,YAAY,GAAG,UAAU,CAAC;gBAC/B,MAAM,CAAC,IAAI,CAAC,kBAAkB,EAAE,UAAU,CAAC,CAAC;YAC9C,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,GAAG;gBACL,sBAAsB,EAAE,IAAI,CAAC,EAAE;gBAC/B,MAAM,EAAE,mCAAmC,CAAC,KAAK;gBACjD,KAAK,EAAE,YAAY,CAAC,gBAAgB,CAAC,GAAG,CAAC;aAC1C,CAAC;QACJ,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,KAAK,CAAC,gDAAgD,CAC3D,MAAc,EACd,MAAc;QAEd,MAAM,IAAI,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;QAChF,MAAM,IAAI,GAA0C,MAAM,IAAI,CAAC,uCAAuC,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QACrH,OAAO,IAAI,CAAC;IACd,CAAC;IAGM,KAAK,CAAC,uCAAuC,CAAC,IAAiB,EAAE,MAAc;QAEpF,MAAM,kBAAkB,GAA0B,IAAI,CAAC,sBAAsB,CAAC;QAC9E,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YAC1D,MAAM,IAAI,KAAK,CAAC,mBAAmB,GAAG,MAAM,CAAC,CAAC;QAChD,CAAC;QACD,MAAM,KAAK,GAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;QACnC,MAAM,IAAI,GAAW,KAAK,CAAC,QAAQ,CAAC;QAEpC,MAAM,GAAG,GAAU,kBAAkB,CAAC,GAAG,CAAC,CAAC,aAAa,EAAE,EAAE;YAC1D,MAAM,IAAI,GAAQ;gBAChB,EAAE,EAAE,aAAa,CAAC,kBAAkB;gBAGpC,UAAU,EAAE,aAAa,CAAC,UAAU;aACrC,CAAC;YACF,OAAO,IAAI,CAAC;QACd,CAAC,CAAC,CAAC;QAEH,MAAM,IAAI,GAAsC;YAE9C,IAAI,EAAE,IAAI;YACV,gBAAgB,EAAE,GAAG;YACrB,gBAAgB,EAAE,WAAW;SAC9B,CAAC;QAEF,MAAM,OAAO,GAA0C,MAAM,6BAA6B,CAAC,IAAI,CAAC,CAAC;QAGjG,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;QAE1F,OAAO,OAAO,CAAC;IACjB,CAAC;IAGM,KAAK,CAAC,2BAA2B,CAAC,OAAsB;QAC7D,IAAI,IAAI,GAAY,KAAK,CAAC;QAC1B,IAAI,OAAO,EAAE,IAAI,IAAI,aAAa,CAAC,UAAU,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,CAAC;YAC9D,MAAM,IAAI,GAAgC,IAAI,CAAC,qBAAqB,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YACrF,IAAI,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAC9E,CAAC;aAAM,CAAC;YACN,YAAY,CAAC,iBAAiB,CAAC,kCAAkC,EAAE,OAAO,CAAC,CAAC;QAC9E,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAIM,KAAK,CAAC,YAAY,CAAC,OAA2B,EAAE,MAAc;QACnE,MAAM,CAAC,IAAI,CAAC,4BAA4B,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QAC3D,IAAI,IAAI,GAAY,KAAK,CAAC;QAC1B,cAAc,CAAC,kBAAkB,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;QACtD,cAAc,CAAC,IAAI,CACjB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,OAAO,EAAE,MAAM,CAAC,IAAI,WAAW,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,EACzF,+BAA+B,CAChC,CAAC;QACF,cAAc,CAAC,IAAI,CACjB,CAAC,CAAC,OAAO,EAAE,QAAQ,IAAI,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,OAAO,EAAE,aAAa,CAAC,EACzE,mDAAmD,CACpD,CAAC;QACF,cAAc,CAAC,IAAI,CACjB,CAAC,OAAO,EAAE,QAAQ,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,OAAO,EAAE,aAAa,CAAC,EACvE,gDAAgD,CACjD,CAAC;QAEF,IAAI,IAAI,GAAgB,aAAa,CAAC,UAAU,CAAC,OAAO,EAAE,MAAM,CAAC;YAC/D,CAAC,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,OAAO,EAAE,MAAM,CAAC;YAChE,CAAC,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,kBAAkB,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QACxE,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,CAAC,IAAI,CAAC,iDAAiD,EAAE,OAAO,CAAC,mBAAmB,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC;YAC7G,IAAI,OAAO,CAAC,mBAAmB,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;gBACnD,MAAM,MAAM,GAAW,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;gBACjE,MAAM,CAAC,IAAI,CAAC,+BAA+B,EAAE,MAAM,CAAC,CAAC;gBACrD,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;YAC/D,CAAC;YAED,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,YAAY,CAAC,iBAAiB,CAAC,2BAA2B,EAAE,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC;YACjG,CAAC;QACH,CAAC;QAED,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;YACrB,IAAI,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC7E,CAAC;aAAM,IAAI,aAAa,CAAC,UAAU,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;YAC3D,MAAM,IAAI,GAAgC,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YAC7F,MAAM,MAAM,GAAY,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;YAC3F,IAAI,MAAM,EAAE,CAAC;gBACX,IAAI,GAAG,IAAI,CAAC;YACd,CAAC;iBAAM,CAAC;gBACN,YAAY,CAAC,iBAAiB,CAAC,+CAA+C,CAAC,CAAC;YAClF,CAAC;QACH,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAGM,KAAK,CAAC,wBAAwB,CAAC,IAAiB,EAAE,MAAc,EAAE,IAAgC;QACvG,IAAI,IAAI,GAAY,KAAK,CAAC;QAC1B,MAAM,KAAK,GAAQ,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;QACnC,MAAM,IAAI,GAAW,KAAK,CAAC,QAAQ,CAAC;QACpC,MAAM,iBAAiB,GAAW,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,yBAAyB,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAK/G,MAAM,IAAI,GAAwB,CAAC,IAAI,CAAC,sBAAsB,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,kBAAkB,KAAK,IAAI,CAAC,EAAE,CAAC,CAAC;QAEpH,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,MAAM,GAAa,CAAC,IAAI,CAAC,sBAAsB,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,kBAAkB,CAAC,CAAC;YAC9F,MAAM,YAAY,CAAC,IAAI,CAAC,oEAAoE,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACvI,CAAC;QAED,MAAM,aAAa,GAAwB;YACzC,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,YAAY,EAAE,IAAI,CAAC,kBAAkB;YACrC,mBAAmB,EAAE,aAAa,CAAC,sBAAsB,CAAC,IAAI,CAAC,yBAAyB,CAAC;SAC1F,CAAC;QAEF,MAAM,MAAM,GAAqC;YAC/C,QAAQ,EAAE,IAAI;YACd,iBAAiB;YACjB,cAAc,EAAE,MAAM;YACtB,YAAY,EAAE,IAAI;YAClB,aAAa;SACd,CAAC;QAEF,MAAM,YAAY,GAAmC,MAAM,4BAA4B,CAAC,MAAM,CAAC,CAAC;QAEhG,IAAI,YAAY,CAAC,QAAQ,EAAE,CAAC;YAC1B,IAAI,GAAG,IAAI,CAAC;QACd,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAGM,KAAK,CAAC,gCAAgC,CAAC,MAAc,EAAE,GAAW;QACvE,IAAI,GAAG,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;QAC7E,IAAI,GAAG,EAAE,CAAC;YACR,GAAG,CAAC,sBAAsB,GAAG,CAAC,GAAG,CAAC,sBAAsB,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,kBAAkB,KAAK,GAAG,CAAC,CAAC;YAC5G,GAAG,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACvD,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC,mCAAmC,EAAE,MAAM,CAAC,CAAC;QAC3D,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAGM,KAAK,CAAC,UAAU,CAAC,MAAc;QACpC,IAAI,IAAI,GAAY,KAAK,CAAC;QAC1B,IAAI,aAAa,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;YACrC,MAAM,OAAO,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;YACnF,IAAI,OAAO,EAAE,CAAC;gBACZ,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;gBACpD,IAAI,IAAI,EAAE,IAAI,EAAE,cAAc,EAAE,CAAC;oBAC/B,MAAM,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;gBACtD,CAAC;gBACD,IAAI,GAAG,IAAI,CAAC;YACd,CAAC;iBAAM,CAAC;gBACN,MAAM,CAAC,IAAI,CAAC,sCAAsC,EAAE,MAAM,CAAC,CAAC;YAC9D,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}
|