npm - @bsv/wallet-toolbox - Versions diffs - 1.4.11 → 1.5.1 - Mend

@bsv/wallet-toolbox 1.4.11 → 1.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (169) hide show

package/out/src/AuthFetchDebug.d.ts ADDED Viewed

@@ -0,0 +1,88 @@
+import { WalletInterface } from '../../wallet/Wallet.interfaces.js';
+import { Peer } from '../Peer.js';
+import { SessionManager } from '../SessionManager.js';
+import { RequestedCertificateSet } from '../types.js';
+import { VerifiableCertificate } from '../certificates/VerifiableCertificate.js';
+interface SimplifiedFetchRequestOptions {
+    method?: string;
+    headers?: Record<string, string>;
+    body?: any;
+    retryCounter?: number;
+}
+interface AuthPeer {
+    peer: Peer;
+    identityKey?: string;
+    supportsMutualAuth?: boolean;
+    pendingCertificateRequests: Array<true>;
+}
+/**
+ * AuthFetch provides a lightweight fetch client for interacting with servers
+ * over a simplified HTTP transport mechanism. It integrates session management, peer communication,
+ * and certificate handling to enable secure and mutually-authenticated requests.
+ *
+ * Additionally, it automatically handles 402 Payment Required responses by creating
+ * and sending BSV payment transactions when necessary.
+ */
+export declare class AuthFetch {
+    private readonly sessionManager;
+    private readonly wallet;
+    private callbacks;
+    private readonly certificatesReceived;
+    private readonly requestedCertificates?;
+    peers: Record<string, AuthPeer>;
+    /**
+    * Constructs a new AuthFetch instance.
+    * @param wallet - The wallet instance for signing and authentication.
+    * @param requestedCertificates - Optional set of certificates to request from peers.
+    */
+    constructor(wallet: WalletInterface, requestedCertificates?: RequestedCertificateSet, sessionManager?: SessionManager);
+    /**
+     * Mutually authenticates and sends a HTTP request to a server.
+     *
+     * 1) Attempt the request.
+     * 2) If 402 Payment Required, automatically create and send payment.
+     * 3) Return the final response.
+     *
+     * @param url - The URL to send the request to.
+     * @param config - Configuration options for the request, including method, headers, and body.
+     * @returns A promise that resolves with the server's response, structured as a Response-like object.
+     *
+     * @throws Will throw an error if unsupported headers are used or other validation fails.
+     */
+    fetch(url: string, config?: SimplifiedFetchRequestOptions): Promise<Response>;
+    /**
+     * Request Certificates from a Peer
+     * @param baseUrl
+     * @param certificatesToRequest
+     */
+    sendCertificateRequest(baseUrl: string, certificatesToRequest: RequestedCertificateSet): Promise<VerifiableCertificate[]>;
+    /**
+     * Return any certificates we've collected thus far, then clear them out.
+     */
+    consumeReceivedCertificates(): VerifiableCertificate[];
+    /**
+     * Serializes the HTTP request to be sent over the Transport.
+     *
+     * @param method - The HTTP method (e.g., 'GET', 'POST') for the request.
+     * @param headers - A record of HTTP headers to include in the request.
+     * @param body - The body of the request, if applicable (e.g., for POST/PUT requests).
+     * @param parsedUrl - The parsed URL object containing the full request URL.
+     * @param requestNonce - A unique random nonce to ensure request integrity.
+     * @returns A promise that resolves to a `Writer` containing the serialized request.
+     *
+     * @throws Will throw an error if unsupported headers are used or serialization fails.
+     */
+    private serializeRequest;
+    /**
+     * Handles a non-authenticated fetch requests and validates that the server is not claiming to be authenticated.
+     */
+    private handleFetchAndValidate;
+    /**
+     * If we get 402 Payment Required, we build a transaction via wallet.createAction()
+     * and re-attempt the request with an x-bsv-payment header.
+     */
+    private handlePaymentAndRetry;
+    private normalizeBodyToNumberArray;
+}
+export {};
+//# sourceMappingURL=AuthFetchDebug.d.ts.map

package/out/src/AuthFetchDebug.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"AuthFetchDebug.d.ts","sourceRoot":"","sources":["../../src/AuthFetchDebug.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,eAAe,EAAE,MAAM,mCAAmC,CAAA;AAEnE,OAAO,EAAE,IAAI,EAAE,MAAM,YAAY,CAAA;AACjC,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAA;AACrD,OAAO,EAAE,uBAAuB,EAAE,MAAM,aAAa,CAAA;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,0CAA0C,CAAA;AAIhF,UAAU,6BAA6B;IACrC,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IAChC,IAAI,CAAC,EAAE,GAAG,CAAA;IACV,YAAY,CAAC,EAAE,MAAM,CAAA;CACtB;AAED,UAAU,QAAQ;IAChB,IAAI,EAAE,IAAI,CAAA;IACV,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,kBAAkB,CAAC,EAAE,OAAO,CAAA;IAC5B,0BAA0B,EAAE,KAAK,CAAC,IAAI,CAAC,CAAA;CACxC;AAID;;;;;;;GAOG;AACH,qBAAa,SAAS;IACpB,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAgB;IAC/C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAiB;IACxC,OAAO,CAAC,SAAS,CAA8D;IAC/E,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAA8B;IACnE,OAAO,CAAC,QAAQ,CAAC,qBAAqB,CAAC,CAAyB;IAChE,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAK;IAEpC;;;;MAIE;gBACU,MAAM,EAAE,eAAe,EAAE,qBAAqB,CAAC,EAAE,uBAAuB,EAAE,cAAc,CAAC,EAAE,cAAc;IAMrH;;;;;;;;;;;;OAYG;IACG,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,GAAE,6BAAkC,GAAG,OAAO,CAAC,QAAQ,CAAC;IAqLvF;;;;OAIG;IACG,sBAAsB,CAAC,OAAO,EAAE,MAAM,EAAE,qBAAqB,EAAE,uBAAuB,GAAG,OAAO,CAAC,qBAAqB,EAAE,CAAC;IAuC/H;;OAEG;IACI,2BAA2B,IAAI,qBAAqB,EAAE;IAI7D;;;;;;;;;;;OAWG;YACW,gBAAgB;IAqG9B;;OAEG;YACW,sBAAsB;IAgBpC;;;OAGG;YACW,qBAAqB;YAyErB,0BAA0B;CAwDzC"}

package/out/src/AuthFetchDebug.js ADDED Viewed

@@ -0,0 +1,518 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthFetch = void 0;
+// @ts-nocheck
+const Utils = __importStar(require("../../primitives/utils.js"));
+const Random_js_1 = __importDefault(require("../../primitives/Random.js"));
+const P2PKH_js_1 = __importDefault(require("../../script/templates/P2PKH.js"));
+const PublicKey_js_1 = __importDefault(require("../../primitives/PublicKey.js"));
+const createNonce_js_1 = require("../utils/createNonce.js");
+const Peer_js_1 = require("../Peer.js");
+const SessionManager_js_1 = require("../SessionManager.js");
+const index_js_1 = require("../utils/index.js");
+const PAYMENT_VERSION = '1.0';
+/**
+ * AuthFetch provides a lightweight fetch client for interacting with servers
+ * over a simplified HTTP transport mechanism. It integrates session management, peer communication,
+ * and certificate handling to enable secure and mutually-authenticated requests.
+ *
+ * Additionally, it automatically handles 402 Payment Required responses by creating
+ * and sending BSV payment transactions when necessary.
+ */
+class AuthFetch {
+    /**
+    * Constructs a new AuthFetch instance.
+    * @param wallet - The wallet instance for signing and authentication.
+    * @param requestedCertificates - Optional set of certificates to request from peers.
+    */
+    constructor(wallet, requestedCertificates, sessionManager) {
+        this.callbacks = {};
+        this.certificatesReceived = [];
+        this.peers = {};
+        this.wallet = wallet;
+        this.requestedCertificates = requestedCertificates;
+        this.sessionManager = sessionManager || new SessionManager_js_1.SessionManager();
+    }
+    /**
+     * Mutually authenticates and sends a HTTP request to a server.
+     *
+     * 1) Attempt the request.
+     * 2) If 402 Payment Required, automatically create and send payment.
+     * 3) Return the final response.
+     *
+     * @param url - The URL to send the request to.
+     * @param config - Configuration options for the request, including method, headers, and body.
+     * @returns A promise that resolves with the server's response, structured as a Response-like object.
+     *
+     * @throws Will throw an error if unsupported headers are used or other validation fails.
+     */
+    async fetch(url, config = {}) {
+        if (typeof config.retryCounter === 'number') {
+            if (config.retryCounter <= 0) {
+                throw new Error('Request failed after maximum number of retries.');
+            }
+            config.retryCounter--;
+        }
+        const response = await new Promise((async (resolve, reject) => {
+            try {
+                // Apply defaults
+                const { method = 'GET', headers = {}, body } = config;
+                // Extract a base url
+                const parsedUrl = new URL(url);
+                const baseURL = parsedUrl.origin;
+                // Create a new transport for this base url if needed
+                let peerToUse;
+                if (typeof this.peers[baseURL] === 'undefined') {
+                    // Create a peer for the request
+                    const newTransport = new SimplifiedFetchTransport(baseURL);
+                    peerToUse = {
+                        peer: new Peer_js_1.Peer(this.wallet, newTransport, this.requestedCertificates, this.sessionManager),
+                        pendingCertificateRequests: []
+                    };
+                    this.peers[baseURL] = peerToUse;
+                    this.peers[baseURL].peer.listenForCertificatesReceived((senderPublicKey, certs) => {
+                        this.certificatesReceived.push(...certs);
+                    });
+                    this.peers[baseURL].peer.listenForCertificatesRequested((async (verifier, requestedCertificates) => {
+                        try {
+                            this.peers[baseURL].pendingCertificateRequests.push(true);
+                            const certificatesToInclude = await (0, index_js_1.getVerifiableCertificates)(this.wallet, requestedCertificates, verifier);
+                            await this.peers[baseURL].peer.sendCertificateResponse(verifier, certificatesToInclude);
+                        }
+                        finally {
+                            // Give the backend 500 ms to process the certificates we just sent, before releasing the queue entry
+                            await new Promise(resolve => setTimeout(resolve, 500));
+                            this.peers[baseURL].pendingCertificateRequests.shift();
+                        }
+                    }));
+                }
+                else {
+                    // Check if there's a session associated with this baseURL
+                    if (this.peers[baseURL].supportsMutualAuth === false) {
+                        // Use standard fetch if mutual authentication is not supported
+                        try {
+                            const response = await this.handleFetchAndValidate(url, config, this.peers[baseURL]);
+                            resolve(response);
+                        }
+                        catch (error) {
+                            reject(error);
+                        }
+                        return;
+                    }
+                    peerToUse = this.peers[baseURL];
+                }
+                // Serialize the simplified fetch request.
+                const requestNonce = (0, Random_js_1.default)(32);
+                const requestNonceAsBase64 = Utils.toBase64(requestNonce);
+                const writer = await this.serializeRequest(method, headers, body, parsedUrl, requestNonce);
+                // Setup general message listener to resolve requests once a response is received
+                this.callbacks[requestNonceAsBase64] = { resolve, reject };
+                const listenerId = peerToUse.peer.listenForGeneralMessages((senderPublicKey, payload) => {
+                    // Create a reader
+                    const responseReader = new Utils.Reader(payload);
+                    // Deserialize first 32 bytes of payload
+                    const responseNonceAsBase64 = Utils.toBase64(responseReader.read(32));
+                    if (responseNonceAsBase64 !== requestNonceAsBase64) {
+                        return;
+                    }
+                    peerToUse.peer.stopListeningForGeneralMessages(listenerId);
+                    // Save the identity key for the peer for future requests, since we have it here.
+                    this.peers[baseURL].identityKey = senderPublicKey;
+                    this.peers[baseURL].supportsMutualAuth = true;
+                    // Status code
+                    const statusCode = responseReader.readVarIntNum();
+                    // Headers
+                    const responseHeaders = {};
+                    const nHeaders = responseReader.readVarIntNum();
+                    if (nHeaders > 0) {
+                        for (let i = 0; i < nHeaders; i++) {
+                            const nHeaderKeyBytes = responseReader.readVarIntNum();
+                            const headerKeyBytes = responseReader.read(nHeaderKeyBytes);
+                            const headerKey = Utils.toUTF8(headerKeyBytes);
+                            const nHeaderValueBytes = responseReader.readVarIntNum();
+                            const headerValueBytes = responseReader.read(nHeaderValueBytes);
+                            const headerValue = Utils.toUTF8(headerValueBytes);
+                            responseHeaders[headerKey] = headerValue;
+                        }
+                    }
+                    // Add back the server identity key header
+                    responseHeaders['x-bsv-auth-identity-key'] = senderPublicKey;
+                    // Body
+                    let responseBody;
+                    const responseBodyBytes = responseReader.readVarIntNum();
+                    if (responseBodyBytes > 0) {
+                        responseBody = responseReader.read(responseBodyBytes);
+                    }
+                    // Create the Response object
+                    const responseValue = new Response(responseBody ? new Uint8Array(responseBody) : null, {
+                        status: statusCode,
+                        statusText: `${statusCode}`,
+                        headers: new Headers(responseHeaders)
+                    });
+                    // Resolve or reject the correct request with the response data
+                    this.callbacks[requestNonceAsBase64].resolve(responseValue);
+                    // Clean up
+                    delete this.callbacks[requestNonceAsBase64];
+                });
+                // Before sending general messages to the peer, ensure that no certificate requests are pending.
+                // This way, the user would need to choose to either allow or reject the certificate request first.
+                // If the server has a resource that requires certificates to be sent before access would be granted,
+                // this makes sure the user has a chance to send the certificates before the resource is requested.
+                if (peerToUse.pendingCertificateRequests.length > 0) {
+                    await new Promise(resolve => {
+                        setInterval(() => {
+                            if (peerToUse.pendingCertificateRequests.length === 0) {
+                                resolve();
+                            }
+                        }, 100); // Check every 100 ms for the user to finish responding
+                    });
+                }
+                // Send the request, now that all listeners are set up
+                await peerToUse.peer.toPeer(writer.toArray(), peerToUse.identityKey).catch(async (error) => {
+                    var _a;
+                    if (error.message.includes('Session not found for nonce')) {
+                        delete this.peers[baseURL];
+                        (_a = config.retryCounter) !== null && _a !== void 0 ? _a : (config.retryCounter = 3);
+                        const response = await this.fetch(url, config);
+                        resolve(response);
+                        return;
+                    }
+                    if (error.message.includes('HTTP server failed to authenticate')) {
+                        try {
+                            const response = await this.handleFetchAndValidate(url, config, peerToUse);
+                            resolve(response);
+                            return;
+                        }
+                        catch (fetchError) {
+                            reject(fetchError);
+                        }
+                    }
+                    else {
+                        reject(error);
+                    }
+                });
+            }
+            catch (e) {
+                reject(e);
+            }
+        }));
+        // Check if server requires payment to access the requested route
+        if (response.status === 402) {
+            // Create and attach a payment, then retry
+            return await this.handlePaymentAndRetry(url, config, response);
+        }
+        return response;
+    }
+    /**
+     * Request Certificates from a Peer
+     * @param baseUrl
+     * @param certificatesToRequest
+     */
+    async sendCertificateRequest(baseUrl, certificatesToRequest) {
+        const parsedUrl = new URL(baseUrl);
+        const baseURL = parsedUrl.origin;
+        let peerToUse;
+        if (typeof this.peers[baseURL] !== 'undefined') {
+            peerToUse = { peer: this.peers[baseURL].peer };
+        }
+        else {
+            const newTransport = new SimplifiedFetchTransport(baseURL);
+            peerToUse = {
+                peer: new Peer_js_1.Peer(this.wallet, newTransport, this.requestedCertificates, this.sessionManager)
+            };
+            this.peers[baseURL] = peerToUse;
+        }
+        // Return a promise that resolves when certificates are received
+        return await new Promise((async (resolve, reject) => {
+            // Set up the listener before making the request
+            const callbackId = peerToUse.peer.listenForCertificatesReceived((_senderPublicKey, certs) => {
+                peerToUse.peer.stopListeningForCertificatesReceived(callbackId);
+                this.certificatesReceived.push(...certs);
+                resolve(certs);
+            });
+            try {
+                // Initiate the certificate request
+                await peerToUse.peer.requestCertificates(certificatesToRequest, peerToUse.identityKey);
+            }
+            catch (err) {
+                peerToUse.peer.stopListeningForCertificatesReceived(callbackId);
+                reject(err);
+            }
+        }));
+    }
+    /**
+     * Return any certificates we've collected thus far, then clear them out.
+     */
+    consumeReceivedCertificates() {
+        return this.certificatesReceived.splice(0);
+    }
+    /**
+     * Serializes the HTTP request to be sent over the Transport.
+     *
+     * @param method - The HTTP method (e.g., 'GET', 'POST') for the request.
+     * @param headers - A record of HTTP headers to include in the request.
+     * @param body - The body of the request, if applicable (e.g., for POST/PUT requests).
+     * @param parsedUrl - The parsed URL object containing the full request URL.
+     * @param requestNonce - A unique random nonce to ensure request integrity.
+     * @returns A promise that resolves to a `Writer` containing the serialized request.
+     *
+     * @throws Will throw an error if unsupported headers are used or serialization fails.
+     */
+    async serializeRequest(method, headers, body, parsedUrl, requestNonce) {
+        const writer = new Utils.Writer();
+        // Write request nonce
+        writer.write(requestNonce);
+        // Method length
+        writer.writeVarIntNum(method.length);
+        // Method
+        writer.write(Utils.toArray(method));
+        // Handle pathname (e.g. /path/to/resource)
+        if (parsedUrl.pathname.length > 0) {
+            // Pathname length
+            const pathnameAsArray = Utils.toArray(parsedUrl.pathname);
+            writer.writeVarIntNum(pathnameAsArray.length);
+            // Pathname
+            writer.write(pathnameAsArray);
+        }
+        else {
+            writer.writeVarIntNum(-1);
+        }
+        // Handle search params (e.g. ?q=hello)
+        if (parsedUrl.search.length > 0) {
+            // search length
+            const searchAsArray = Utils.toArray(parsedUrl.search);
+            writer.writeVarIntNum(searchAsArray.length);
+            // search
+            writer.write(searchAsArray);
+        }
+        else {
+            writer.writeVarIntNum(-1);
+        }
+        // Construct headers to send / sign:
+        // Ensures clients only provided supported HTTP request headers
+        // - Include custom headers prefixed with x-bsv (excluding those starting with x-bsv-auth)
+        // - Include a normalized version of the content-type header
+        // - Include the authorization header
+        const includedHeaders = [];
+        for (let [k, v] of Object.entries(headers)) {
+            k = k.toLowerCase(); // We will always sign lower-case header keys
+            if (k.startsWith('x-bsv-') || k === 'authorization') {
+                if (k.startsWith('x-bsv-auth')) {
+                    throw new Error('No BSV auth headers allowed here!');
+                }
+                includedHeaders.push([k, v]);
+            }
+            else if (k.startsWith('content-type')) {
+                // Normalize the Content-Type header by removing any parameters (e.g., "; charset=utf-8")
+                v = v.split(';')[0].trim();
+                includedHeaders.push([k, v]);
+            }
+            else {
+                throw new Error('Unsupported header in the simplified fetch implementation. Only content-type, authorization, and x-bsv-* headers are supported.');
+            }
+        }
+        // Sort the headers by key to ensure a consistent order for signing and verification.
+        includedHeaders.sort(([keyA], [keyB]) => keyA.localeCompare(keyB));
+        // nHeaders
+        writer.writeVarIntNum(includedHeaders.length);
+        for (let i = 0; i < includedHeaders.length; i++) {
+            // headerKeyLength
+            const headerKeyAsArray = Utils.toArray(includedHeaders[i][0], 'utf8');
+            writer.writeVarIntNum(headerKeyAsArray.length);
+            // headerKey
+            writer.write(headerKeyAsArray);
+            // headerValueLength
+            const headerValueAsArray = Utils.toArray(includedHeaders[i][1], 'utf8');
+            writer.writeVarIntNum(headerValueAsArray.length);
+            // headerValue
+            writer.write(headerValueAsArray);
+        }
+        // If method typically carries a body and body is undefined, default it
+        // This prevents signature verification errors due to mismatch default body types with express
+        const methodsThatTypicallyHaveBody = ['POST', 'PUT', 'PATCH', 'DELETE'];
+        if (methodsThatTypicallyHaveBody.includes(method.toUpperCase()) && body === undefined) {
+            // Check if content-type is application/json
+            const contentTypeHeader = includedHeaders.find(([k]) => k === 'content-type');
+            if (contentTypeHeader && contentTypeHeader[1].includes('application/json')) {
+                body = '{}';
+            }
+            else {
+                body = '';
+            }
+        }
+        // Handle body
+        if (body) {
+            const reqBody = await this.normalizeBodyToNumberArray(body); // Use the utility function
+            writer.writeVarIntNum(reqBody.length);
+            writer.write(reqBody);
+        }
+        else {
+            writer.writeVarIntNum(-1); // No body
+        }
+        return writer;
+    }
+    /**
+     * Handles a non-authenticated fetch requests and validates that the server is not claiming to be authenticated.
+     */
+    async handleFetchAndValidate(url, config, peerToUse) {
+        const response = await fetch(url, config);
+        response.headers.forEach(header => {
+            if (header.toLocaleLowerCase().startsWith('x-bsv')) {
+                throw new Error('The server is trying to claim it has been authenticated when it has not!');
+            }
+        });
+        if (response.ok) {
+            peerToUse.supportsMutualAuth = false;
+            return response;
+        }
+        else {
+            throw new Error(`Request failed with status: ${response.status}`);
+        }
+    }
+    /**
+     * If we get 402 Payment Required, we build a transaction via wallet.createAction()
+     * and re-attempt the request with an x-bsv-payment header.
+     */
+    async handlePaymentAndRetry(url, config = {}, originalResponse) {
+        var _a;
+        // Make sure the server is using the correct payment version
+        const paymentVersion = originalResponse.headers.get('x-bsv-payment-version');
+        if (!paymentVersion || paymentVersion !== PAYMENT_VERSION) {
+            throw new Error(`Unsupported x-bsv-payment-version response header. Client version: ${PAYMENT_VERSION}, Server version: ${paymentVersion}`);
+        }
+        // Get required headers from the 402 response
+        const satoshisRequiredHeader = originalResponse.headers.get('x-bsv-payment-satoshis-required');
+        if (!satoshisRequiredHeader) {
+            throw new Error('Missing x-bsv-payment-satoshis-required response header.');
+        }
+        const satoshisRequired = parseInt(satoshisRequiredHeader);
+        if (isNaN(satoshisRequired) || satoshisRequired <= 0) {
+            throw new Error('Invalid x-bsv-payment-satoshis-required response header value.');
+        }
+        const serverIdentityKey = originalResponse.headers.get('x-bsv-auth-identity-key');
+        if (!serverIdentityKey) {
+            throw new Error('Missing x-bsv-auth-identity-key response header.');
+        }
+        const derivationPrefix = originalResponse.headers.get('x-bsv-payment-derivation-prefix');
+        if (typeof derivationPrefix !== 'string' || derivationPrefix.length < 1) {
+            throw new Error('Missing x-bsv-payment-derivation-prefix response header.');
+        }
+        // Create a random suffix for the derivation path
+        const derivationSuffix = await (0, createNonce_js_1.createNonce)(this.wallet);
+        // Derive the script hex from the server identity key
+        const { publicKey: derivedPublicKey } = await this.wallet.getPublicKey({
+            protocolID: [2, '3241645161d8'], // wallet payment protocol
+            keyID: `${derivationPrefix} ${derivationSuffix}`,
+            counterparty: serverIdentityKey
+        });
+        const lockingScript = new P2PKH_js_1.default().lock(PublicKey_js_1.default.fromString(derivedPublicKey).toAddress()).toHex();
+        // Create the payment transaction using createAction
+        const { tx } = await this.wallet.createAction({
+            description: `Payment for request to ${new URL(url).origin}`,
+            outputs: [{
+                    satoshis: satoshisRequired,
+                    lockingScript,
+                    customInstructions: JSON.stringify({ derivationPrefix, derivationSuffix, payee: serverIdentityKey }),
+                    outputDescription: 'HTTP request payment'
+                }],
+            options: {
+                randomizeOutputs: false
+            }
+        });
+        // Attach the payment to the request headers
+        config.headers = config.headers || {};
+        config.headers['x-bsv-payment'] = JSON.stringify({
+            derivationPrefix,
+            derivationSuffix,
+            transaction: Utils.toBase64(tx)
+        });
+        (_a = config.retryCounter) !== null && _a !== void 0 ? _a : (config.retryCounter = 3);
+        // Re-attempt request with payment attached
+        return this.fetch(url, config);
+    }
+    async normalizeBodyToNumberArray(body) {
+        // 0. Null / undefined
+        if (body == null) {
+            return [];
+        }
+        // 1. object
+        if (typeof body === 'object') {
+            return Utils.toArray(JSON.stringify(body, 'utf8'));
+        }
+        // 2. number[]
+        if (Array.isArray(body) && body.every((item) => typeof item === 'number')) {
+            return body; // Return the array as is
+        }
+        // 3. string
+        if (typeof body === 'string') {
+            return Utils.toArray(body, 'utf8');
+        }
+        // 4. ArrayBuffer / TypedArrays
+        if (body instanceof ArrayBuffer || ArrayBuffer.isView(body)) {
+            const typedArray = body instanceof ArrayBuffer ? new Uint8Array(body) : new Uint8Array(body.buffer);
+            return Array.from(typedArray);
+        }
+        // 5. Blob
+        if (body instanceof Blob) {
+            const arrayBuffer = await body.arrayBuffer();
+            return Array.from(new Uint8Array(arrayBuffer));
+        }
+        // 6. FormData
+        if (body instanceof FormData) {
+            const entries = [];
+            body.forEach((value, key) => {
+                entries.push([key, value.toString()]);
+            });
+            const urlEncoded = new URLSearchParams(entries).toString();
+            return Utils.toArray(urlEncoded, 'utf8');
+        }
+        // 7. URLSearchParams
+        if (body instanceof URLSearchParams) {
+            return Utils.toArray(body.toString(), 'utf8');
+        }
+        // 8. ReadableStream
+        if (body instanceof ReadableStream) {
+            throw new Error('ReadableStream cannot be directly converted to number[].');
+        }
+        // 9. Fallback
+        throw new Error('Unsupported body type in this SimplifiedFetch implementation.');
+    }
+}
+exports.AuthFetch = AuthFetch;
+//# sourceMappingURL=AuthFetchDebug.js.map

package/out/src/AuthFetchDebug.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"AuthFetchDebug.js","sourceRoot":"","sources":["../../src/AuthFetchDebug.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,cAAc;AACd,iEAAkD;AAClD,2EAA+C;AAC/C,+EAAmD;AACnD,iFAAqD;AAErD,4DAAqD;AACrD,wCAAiC;AACjC,4DAAqD;AAIrD,gDAA6D;AAgB7D,MAAM,eAAe,GAAG,KAAK,CAAA;AAE7B;;;;;;;GAOG;AACH,MAAa,SAAS;IAQpB;;;;MAIE;IACF,YAAY,MAAuB,EAAE,qBAA+C,EAAE,cAA+B;QAV7G,cAAS,GAA4D,EAAE,CAAA;QAC9D,yBAAoB,GAA4B,EAAE,CAAA;QAEnE,UAAK,GAA6B,EAAE,CAAA;QAQlC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAA;QACpB,IAAI,CAAC,qBAAqB,GAAG,qBAAqB,CAAA;QAClD,IAAI,CAAC,cAAc,GAAG,cAAc,IAAI,IAAI,kCAAc,EAAE,CAAA;IAC9D,CAAC;IAED;;;;;;;;;;;;OAYG;IACH,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,SAAwC,EAAE;QACjE,IAAI,OAAO,MAAM,CAAC,YAAY,KAAK,QAAQ,EAAE,CAAC;YAC5C,IAAI,MAAM,CAAC,YAAY,IAAI,CAAC,EAAE,CAAC;gBAC7B,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAA;YACpE,CAAC;YACD,MAAM,CAAC,YAAY,EAAE,CAAA;QACvB,CAAC;QACD,MAAM,QAAQ,GAAG,MAAM,IAAI,OAAO,CAAW,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,EAAE;YACtE,IAAI,CAAC;gBACH,iBAAiB;gBACjB,MAAM,EAAE,MAAM,GAAG,KAAK,EAAE,OAAO,GAAG,EAAE,EAAE,IAAI,EAAE,GAAG,MAAM,CAAA;gBAErD,qBAAqB;gBACrB,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAA;gBAC9B,MAAM,OAAO,GAAG,SAAS,CAAC,MAAM,CAAA;gBAEhC,qDAAqD;gBACrD,IAAI,SAAmB,CAAA;gBACvB,IAAI,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,WAAW,EAAE,CAAC;oBAC/C,gCAAgC;oBAChC,MAAM,YAAY,GAAG,IAAI,wBAAwB,CAAC,OAAO,CAAC,CAAA;oBAC1D,SAAS,GAAG;wBACV,IAAI,EAAE,IAAI,cAAI,CAAC,IAAI,CAAC,MAAM,EAAE,YAAY,EAAE,IAAI,CAAC,qBAAqB,EAAE,IAAI,CAAC,cAAc,CAAC;wBAC1F,0BAA0B,EAAE,EAAE;qBAC/B,CAAA;oBACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,SAAS,CAAA;oBAC/B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC,eAAuB,EAAE,KAA8B,EAAE,EAAE;wBACjH,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAA;oBAC1C,CAAC,CAAC,CAAA;oBACF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,8BAA8B,CAAC,CAAC,KAAK,EAAE,QAAgB,EAAE,qBAA8C,EAAE,EAAE;wBAClI,IAAI,CAAC;4BACH,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,0BAA0B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;4BACzD,MAAM,qBAAqB,GAAG,MAAM,IAAA,oCAAyB,EAC3D,IAAI,CAAC,MAAM,EACX,qBAAqB,EACrB,QAAQ,CACT,CAAA;4BACD,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,uBAAuB,CAAC,QAAQ,EAAE,qBAAqB,CAAC,CAAA;wBACzF,CAAC;gCAAS,CAAC;4BACT,qGAAqG;4BACrG,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAAA;4BACtD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,0BAA0B,CAAC,KAAK,EAAE,CAAA;wBACxD,CAAC;oBACH,CAAC,CAAa,CAAC,CAAA;gBACjB,CAAC;qBAAM,CAAC;oBACN,0DAA0D;oBAC1D,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,kBAAkB,KAAK,KAAK,EAAE,CAAC;wBACrD,+DAA+D;wBAC/D,IAAI,CAAC;4BACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAA;4BACpF,OAAO,CAAC,QAAQ,CAAC,CAAA;wBACnB,CAAC;wBAAC,OAAO,KAAK,EAAE,CAAC;4BACf,MAAM,CAAC,KAAK,CAAC,CAAA;wBACf,CAAC;wBACD,OAAM;oBACR,CAAC;oBACD,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;gBACjC,CAAC;gBAED,0CAA0C;gBAC1C,MAAM,YAAY,GAAG,IAAA,mBAAM,EAAC,EAAE,CAAC,CAAA;gBAC/B,MAAM,oBAAoB,GAAG,KAAK,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;gBAEzD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,gBAAgB,CACxC,MAAM,EACN,OAAO,EACP,IAAI,EACJ,SAAS,EACT,YAAY,CACb,CAAA;gBAED,iFAAiF;gBACjF,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC,GAAG,EAAE,OAAO,EAAE,MAAM,EAAE,CAAA;gBAC1D,MAAM,UAAU,GAAG,SAAS,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,eAAuB,EAAE,OAAiB,EAAE,EAAE;oBACxG,kBAAkB;oBAClB,MAAM,cAAc,GAAG,IAAI,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAA;oBAChD,wCAAwC;oBACxC,MAAM,qBAAqB,GAAG,KAAK,CAAC,QAAQ,CAAC,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAA;oBACrE,IAAI,qBAAqB,KAAK,oBAAoB,EAAE,CAAC;wBACnD,OAAM;oBACR,CAAC;oBACD,SAAS,CAAC,IAAI,CAAC,+BAA+B,CAAC,UAAU,CAAC,CAAA;oBAE1D,iFAAiF;oBACjF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,WAAW,GAAG,eAAe,CAAA;oBACjD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,kBAAkB,GAAG,IAAI,CAAA;oBAE7C,cAAc;oBACd,MAAM,UAAU,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;oBAEjD,UAAU;oBACV,MAAM,eAAe,GAAG,EAAE,CAAA;oBAC1B,MAAM,QAAQ,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;oBAC/C,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;wBACjB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC,EAAE,EAAE,CAAC;4BAClC,MAAM,eAAe,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;4BACtD,MAAM,cAAc,GAAG,cAAc,CAAC,IAAI,CAAC,eAAe,CAAC,CAAA;4BAC3D,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC,cAAc,CAAC,CAAA;4BAC9C,MAAM,iBAAiB,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;4BACxD,MAAM,gBAAgB,GAAG,cAAc,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAA;4BAC/D,MAAM,WAAW,GAAG,KAAK,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAA;4BAClD,eAAe,CAAC,SAAS,CAAC,GAAG,WAAW,CAAA;wBAC1C,CAAC;oBACH,CAAC;oBAED,0CAA0C;oBAC1C,eAAe,CAAC,yBAAyB,CAAC,GAAG,eAAe,CAAA;oBAE5D,OAAO;oBACP,IAAI,YAAY,CAAA;oBAChB,MAAM,iBAAiB,GAAG,cAAc,CAAC,aAAa,EAAE,CAAA;oBACxD,IAAI,iBAAiB,GAAG,CAAC,EAAE,CAAC;wBAC1B,YAAY,GAAG,cAAc,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAA;oBACvD,CAAC;oBAED,6BAA6B;oBAC7B,MAAM,aAAa,GAAG,IAAI,QAAQ,CAChC,YAAY,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,IAAI,EAClD;wBACE,MAAM,EAAE,UAAU;wBAClB,UAAU,EAAE,GAAG,UAAU,EAAE;wBAC3B,OAAO,EAAE,IAAI,OAAO,CAAC,eAAe,CAAC;qBACtC,CACF,CAAA;oBAED,+DAA+D;oBAC/D,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC,CAAA;oBAE3D,WAAW;oBACX,OAAO,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC,CAAA;gBAC7C,CAAC,CAAC,CAAA;gBAEF,gGAAgG;gBAChG,mGAAmG;gBACnG,qGAAqG;gBACrG,mGAAmG;gBACnG,IAAI,SAAS,CAAC,0BAA0B,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACpD,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE;wBAC1B,WAAW,CAAC,GAAG,EAAE;4BACf,IAAI,SAAS,CAAC,0BAA0B,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gCACtD,OAAO,EAAE,CAAA;4BACX,CAAC;wBACH,CAAC,EAAE,GAAG,CAAC,CAAA,CAAC,uDAAuD;oBACjE,CAAC,CAAC,CAAA;gBACJ,CAAC;gBAED,sDAAsD;gBACtD,MAAM,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,EAAE,SAAS,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,KAAK,EAAC,KAAK,EAAC,EAAE;;oBACvF,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,6BAA6B,CAAC,EAAE,CAAC;wBAC1D,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;wBAC1B,MAAA,MAAM,CAAC,YAAY,oCAAnB,MAAM,CAAC,YAAY,GAAK,CAAC,EAAA;wBACzB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,MAAM,CAAC,CAAA;wBAC9C,OAAO,CAAC,QAAQ,CAAC,CAAA;wBACjB,OAAM;oBACR,CAAC;oBACD,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,oCAAoC,CAAC,EAAE,CAAC;wBACjE,IAAI,CAAC;4BACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,GAAG,EAAE,MAAM,EAAE,SAAS,CAAC,CAAA;4BAC1E,OAAO,CAAC,QAAQ,CAAC,CAAA;4BACjB,OAAM;wBACR,CAAC;wBAAC,OAAO,UAAU,EAAE,CAAC;4BACpB,MAAM,CAAC,UAAU,CAAC,CAAA;wBACpB,CAAC;oBACH,CAAC;yBAAM,CAAC;wBACN,MAAM,CAAC,KAAK,CAAC,CAAA;oBACf,CAAC;gBACH,CAAC,CAAC,CAAA;YACJ,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,MAAM,CAAC,CAAC,CAAC,CAAA;YACX,CAAC;QACH,CAAC,CAAa,CAAC,CAAA;QAEf,iEAAiE;QACjE,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;YAC5B,0CAA0C;YAC1C,OAAO,MAAM,IAAI,CAAC,qBAAqB,CAAC,GAAG,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAA;QAChE,CAAC;QAED,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,sBAAsB,CAAC,OAAe,EAAE,qBAA8C;QAC1F,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,CAAA;QAClC,MAAM,OAAO,GAAG,SAAS,CAAC,MAAM,CAAA;QAEhC,IAAI,SAA+C,CAAA;QACnD,IAAI,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,WAAW,EAAE,CAAC;YAC/C,SAAS,GAAG,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,CAAA;QAChD,CAAC;aAAM,CAAC;YACN,MAAM,YAAY,GAAG,IAAI,wBAAwB,CAAC,OAAO,CAAC,CAAA;YAC1D,SAAS,GAAG;gBACV,IAAI,EAAE,IAAI,cAAI,CACZ,IAAI,CAAC,MAAM,EACX,YAAY,EACZ,IAAI,CAAC,qBAAqB,EAC1B,IAAI,CAAC,cAAc,CACpB;aACF,CAAA;YACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,SAAS,CAAA;QACjC,CAAC;QAED,gEAAgE;QAChE,OAAO,MAAM,IAAI,OAAO,CAA0B,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,EAAE;YAC3E,gDAAgD;YAChD,MAAM,UAAU,GAAG,SAAS,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC,gBAAwB,EAAE,KAA8B,EAAE,EAAE;gBAC3H,SAAS,CAAC,IAAI,CAAC,oCAAoC,CAAC,UAAU,CAAC,CAAA;gBAC/D,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAA;gBACxC,OAAO,CAAC,KAAK,CAAC,CAAA;YAChB,CAAC,CAAC,CAAA;YAEF,IAAI,CAAC;gBACH,mCAAmC;gBACnC,MAAM,SAAS,CAAC,IAAI,CAAC,mBAAmB,CAAC,qBAAqB,EAAE,SAAS,CAAC,WAAW,CAAC,CAAA;YACxF,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,SAAS,CAAC,IAAI,CAAC,oCAAoC,CAAC,UAAU,CAAC,CAAA;gBAC/D,MAAM,CAAC,GAAG,CAAC,CAAA;YACb,CAAC;QACH,CAAC,CAAa,CAAC,CAAA;IACjB,CAAC;IAED;;OAEG;IACI,2BAA2B;QAChC,OAAO,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC,CAAC,CAAA;IAC5C,CAAC;IAED;;;;;;;;;;;OAWG;IACK,KAAK,CAAC,gBAAgB,CAC5B,MAAc,EACd,OAA+B,EAC/B,IAAS,EACT,SAAc,EACd,YAAsB;QAEtB,MAAM,MAAM,GAAG,IAAI,KAAK,CAAC,MAAM,EAAE,CAAA;QACjC,sBAAsB;QACtB,MAAM,CAAC,KAAK,CAAC,YAAY,CAAC,CAAA;QAC1B,gBAAgB;QAChB,MAAM,CAAC,cAAc,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;QACpC,SAAS;QACT,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAA;QAEnC,2CAA2C;QAC3C,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAClC,kBAAkB;YAClB,MAAM,eAAe,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAA;YACzD,MAAM,CAAC,cAAc,CAAC,eAAe,CAAC,MAAM,CAAC,CAAA;YAC7C,WAAW;YACX,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAA;QAC/B,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAA;QAC3B,CAAC;QAED,uCAAuC;QACvC,IAAI,SAAS,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAChC,gBAAgB;YAChB,MAAM,aAAa,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,MAAM,CAAC,CAAA;YACrD,MAAM,CAAC,cAAc,CAAC,aAAa,CAAC,MAAM,CAAC,CAAA;YAC3C,SAAS;YACT,MAAM,CAAC,KAAK,CAAC,aAAa,CAAC,CAAA;QAC7B,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAA;QAC3B,CAAC;QAED,oCAAoC;QACpC,+DAA+D;QAC/D,0FAA0F;QAC1F,4DAA4D;QAC5D,qCAAqC;QACrC,MAAM,eAAe,GAA4B,EAAE,CAAA;QACnD,KAAK,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YAC3C,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,CAAA,CAAC,6CAA6C;YACjE,IAAI,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,eAAe,EAAE,CAAC;gBACpD,IAAI,CAAC,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;oBAC/B,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAA;gBACtD,CAAC;gBACD,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAA;YAC9B,CAAC;iBAAM,IAAI,CAAC,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;gBACxC,yFAAyF;gBACzF,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAA;gBAC1B,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAA;YAC9B,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,KAAK,CAAC,iIAAiI,CAAC,CAAA;YACpJ,CAAC;QACH,CAAC;QAED,qFAAqF;QACrF,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAA;QAElE,WAAW;QACX,MAAM,CAAC,cAAc,CAAC,eAAe,CAAC,MAAM,CAAC,CAAA;QAC7C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,eAAe,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAChD,kBAAkB;YAClB,MAAM,gBAAgB,GAAG,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAA;YACrE,MAAM,CAAC,cAAc,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAA;YAC9C,YAAY;YACZ,MAAM,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAA;YAC9B,oBAAoB;YACpB,MAAM,kBAAkB,GAAG,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAA;YACvE,MAAM,CAAC,cAAc,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAA;YAChD,cAAc;YACd,MAAM,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAA;QAClC,CAAC;QAED,uEAAuE;QACvE,8FAA8F;QAC9F,MAAM,4BAA4B,GAAG,CAAC,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAA;QACvE,IAAI,4BAA4B,CAAC,QAAQ,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;YACtF,4CAA4C;YAC5C,MAAM,iBAAiB,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,cAAc,CAAC,CAAA;YAC7E,IAAI,iBAAiB,IAAI,iBAAiB,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;gBAC3E,IAAI,GAAG,IAAI,CAAA;YACb,CAAC;iBAAM,CAAC;gBACN,IAAI,GAAG,EAAE,CAAA;YACX,CAAC;QACH,CAAC;QAED,cAAc;QACd,IAAI,IAAI,EAAE,CAAC;YACT,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAA,CAAC,2BAA2B;YACvF,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;YACrC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAA;QACvB,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAA,CAAC,UAAU;QACtC,CAAC;QACD,OAAO,MAAM,CAAA;IACf,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,sBAAsB,CAAC,GAAW,EAAE,MAAmB,EAAE,SAAmB;QACxF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,MAAM,CAAC,CAAA;QACzC,QAAQ,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;YAChC,IAAI,MAAM,CAAC,iBAAiB,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;gBACnD,MAAM,IAAI,KAAK,CAAC,0EAA0E,CAAC,CAAA;YAC7F,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,IAAI,QAAQ,CAAC,EAAE,EAAE,CAAC;YAChB,SAAS,CAAC,kBAAkB,GAAG,KAAK,CAAA;YACpC,OAAO,QAAQ,CAAA;QACjB,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,KAAK,CAAC,+BAA+B,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAA;QACnE,CAAC;IACH,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,qBAAqB,CACjC,GAAW,EACX,SAAwC,EAAE,EAC1C,gBAA0B;;QAE1B,4DAA4D;QAC5D,MAAM,cAAc,GAAG,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAA;QAC5E,IAAI,CAAC,cAAc,IAAI,cAAc,KAAK,eAAe,EAAE,CAAC;YAC1D,MAAM,IAAI,KAAK,CAAC,sEAAsE,eAAe,qBAAqB,cAAc,EAAE,CAAC,CAAA;QAC7I,CAAC;QAED,6CAA6C;QAC7C,MAAM,sBAAsB,GAAG,gBAAgB,CAAC,OAAO,CAAC,GAAG,CACzD,iCAAiC,CAClC,CAAA;QACD,IAAI,CAAC,sBAAsB,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;QAC7E,CAAC;QACD,MAAM,gBAAgB,GAAG,QAAQ,CAAC,sBAAsB,CAAC,CAAA;QACzD,IAAI,KAAK,CAAC,gBAAgB,CAAC,IAAI,gBAAgB,IAAI,CAAC,EAAE,CAAC;YACrD,MAAM,IAAI,KAAK,CAAC,gEAAgE,CAAC,CAAA;QACnF,CAAC;QAED,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAA;QACjF,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAA;QACrE,CAAC;QAED,MAAM,gBAAgB,GAAG,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,iCAAiC,CAAC,CAAA;QACxF,IAAI,OAAO,gBAAgB,KAAK,QAAQ,IAAI,gBAAgB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxE,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;QAC7E,CAAC;QAED,iDAAiD;QACjD,MAAM,gBAAgB,GAAG,MAAM,IAAA,4BAAW,EAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QAEvD,qDAAqD;QACrD,MAAM,EAAE,SAAS,EAAE,gBAAgB,EAAE,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC;YACrE,UAAU,EAAE,CAAC,CAAC,EAAE,cAAc,CAAC,EAAE,0BAA0B;YAC3D,KAAK,EAAE,GAAG,gBAAgB,IAAI,gBAAgB,EAAE;YAChD,YAAY,EAAE,iBAAiB;SAChC,CAAC,CAAA;QACF,MAAM,aAAa,GAAG,IAAI,kBAAK,EAAE,CAAC,IAAI,CAAC,sBAAS,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,KAAK,EAAE,CAAA;QAElG,oDAAoD;QACpD,MAAM,EAAE,EAAE,EAAE,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC;YAC5C,WAAW,EAAE,0BAA0B,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE;YAC5D,OAAO,EAAE,CAAC;oBACR,QAAQ,EAAE,gBAAgB;oBAC1B,aAAa;oBACb,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,KAAK,EAAE,iBAAiB,EAAE,CAAC;oBACpG,iBAAiB,EAAE,sBAAsB;iBAC1C,CAAC;YACF,OAAO,EAAE;gBACP,gBAAgB,EAAE,KAAK;aACxB;SACF,CAAC,CAAA;QAIF,4CAA4C;QAC5C,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,IAAI,EAAE,CAAA;QACrC,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC;YAC/C,gBAAgB;YAChB,gBAAgB;YAChB,WAAW,EAAE,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC;SAChC,CAAC,CAAA;QACF,MAAA,MAAM,CAAC,YAAY,oCAAnB,MAAM,CAAC,YAAY,GAAK,CAAC,EAAA;QAEzB,2CAA2C;QAC3C,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,MAAM,CAAC,CAAA;IAChC,CAAC;IAEO,KAAK,CAAC,0BAA0B,CAAC,IAAiC;QACxE,sBAAsB;QACtB,IAAI,IAAI,IAAI,IAAI,EAAE,CAAC;YACjB,OAAO,EAAE,CAAA;QACX,CAAC;QAED,YAAY;QACZ,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,CAAA;QACpD,CAAC;QAED,cAAc;QACd,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,OAAO,IAAI,KAAK,QAAQ,CAAC,EAAE,CAAC;YAC1E,OAAO,IAAI,CAAA,CAAC,yBAAyB;QACvC,CAAC;QAED,YAAY;QACZ,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC,CAAA;QACpC,CAAC;QAED,+BAA+B;QAC/B,IAAI,IAAI,YAAY,WAAW,IAAI,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5D,MAAM,UAAU,GAAG,IAAI,YAAY,WAAW,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;YACnG,OAAO,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAA;QAC/B,CAAC;QAED,UAAU;QACV,IAAI,IAAI,YAAY,IAAI,EAAE,CAAC;YACzB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;YAC5C,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,UAAU,CAAC,WAAW,CAAC,CAAC,CAAA;QAChD,CAAC;QAED,cAAc;QACd,IAAI,IAAI,YAAY,QAAQ,EAAE,CAAC;YAC7B,MAAM,OAAO,GAAuB,EAAE,CAAA;YACtC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;gBAC1B,OAAO,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAA;YACvC,CAAC,CAAC,CAAA;YACF,MAAM,UAAU,GAAG,IAAI,eAAe,CAAC,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAA;YAC1D,OAAO,KAAK,CAAC,OAAO,CAAC,UAAU,EAAE,MAAM,CAAC,CAAA;QAC1C,CAAC;QAED,qBAAqB;QACrB,IAAI,IAAI,YAAY,eAAe,EAAE,CAAC;YACpC,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,EAAE,EAAE,MAAM,CAAC,CAAA;QAC/C,CAAC;QAED,oBAAoB;QACpB,IAAI,IAAI,YAAY,cAAc,EAAE,CAAC;YACnC,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAA;QAC7E,CAAC;QAED,cAAc;QACd,MAAM,IAAI,KAAK,CAAC,+DAA+D,CAAC,CAAA;IAClF,CAAC;CACF;AAjhBD,8BAihBC"}