@cedros/login-react 0.0.11 → 0.0.13

package/dist/AuthenticationSettings-CR_i6TTS.js

@@ -0,0 +1,495 @@
+import { jsxs as r, jsx as e } from "react/jsx-runtime";
+import { useRef as F, useState as v, useCallback as A, useEffect as T, useMemo as D } from "react";
+import { L as x } from "./LoadingSpinner-6vml-zwr.js";
+import { E as P } from "./ErrorMessage-CcEK0pYO.js";
+import { u as L, A as j, S as R } from "./AutosaveStatus-N4uNS6-2.js";
+import { u as U } from "./apiClient-B2JxVPlH.js";
+import { u as M } from "./useOrgs-Be3KH4ib.js";
+function q() {
+  const { config: n, _internal: g } = U(), m = n.serverUrl, b = F(g?.getAccessToken ?? (() => null));
+  b.current = g?.getAccessToken ?? (() => null);
+  const [S, w] = v([]), [f, N] = v(0), [E, c] = v(!1), [k, t] = v(null), h = A(() => {
+    const d = b.current();
+    return {
+      "Content-Type": "application/json",
+      ...d ? { Authorization: `Bearer ${d}` } : {}
+    };
+  }, []), p = A(
+    async (d, a = 50, o = 0) => {
+      c(!0), t(null);
+      try {
+        const i = new URLSearchParams();
+        d && i.set("org_id", d), i.set("limit", String(a)), i.set("offset", String(o));
+        const s = await fetch(`${m}/admin/sso-providers?${i}`, {
+          headers: h()
+        });
+        if (!s.ok) {
+          const I = await s.json().catch(() => ({}));
+          throw new Error(I.error || `Failed to fetch SSO providers: ${s.status}`);
+        }
+        const y = await s.json();
+        return w(y.providers), N(y.total), y;
+      } catch (i) {
+        const s = i instanceof Error ? i : new Error(String(i));
+        throw t(s), s;
+      } finally {
+        c(!1);
+      }
+    },
+    [m, h]
+  ), l = A(
+    async (d) => {
+      c(!0), t(null);
+      try {
+        const a = await fetch(`${m}/admin/sso-providers`, {
+          method: "POST",
+          headers: h(),
+          body: JSON.stringify(d)
+        });
+        if (!a.ok) {
+          const i = await a.json().catch(() => ({}));
+          throw new Error(i.error || `Failed to create SSO provider: ${a.status}`);
+        }
+        const o = await a.json();
+        return w((i) => [...i, o]), N((i) => i + 1), o;
+      } catch (a) {
+        const o = a instanceof Error ? a : new Error(String(a));
+        throw t(o), o;
+      } finally {
+        c(!1);
+      }
+    },
+    [m, h]
+  ), u = A(
+    async (d, a) => {
+      c(!0), t(null);
+      try {
+        const o = await fetch(`${m}/admin/sso-providers/${d}`, {
+          method: "PUT",
+          headers: h(),
+          body: JSON.stringify(a)
+        });
+        if (!o.ok) {
+          const s = await o.json().catch(() => ({}));
+          throw new Error(s.error || `Failed to update SSO provider: ${o.status}`);
+        }
+        const i = await o.json();
+        return w((s) => s.map((y) => y.id === d ? i : y)), i;
+      } catch (o) {
+        const i = o instanceof Error ? o : new Error(String(o));
+        throw t(i), i;
+      } finally {
+        c(!1);
+      }
+    },
+    [m, h]
+  ), O = A(
+    async (d) => {
+      c(!0), t(null);
+      try {
+        const a = await fetch(`${m}/admin/sso-providers/${d}`, {
+          method: "DELETE",
+          headers: h()
+        });
+        if (!a.ok) {
+          const o = await a.json().catch(() => ({}));
+          throw new Error(o.error || `Failed to delete SSO provider: ${a.status}`);
+        }
+        w((o) => o.filter((i) => i.id !== d)), N((o) => o - 1);
+      } catch (a) {
+        const o = a instanceof Error ? a : new Error(String(a));
+        throw t(o), o;
+      } finally {
+        c(!1);
+      }
+    },
+    [m, h]
+  ), C = A(
+    async (d, a) => u(d, { enabled: a }),
+    [u]
+  );
+  return {
+    providers: S,
+    total: f,
+    isLoading: E,
+    error: k,
+    fetchProviders: p,
+    createProvider: l,
+    updateProvider: u,
+    deleteProvider: O,
+    toggleProvider: C
+  };
+}
+function z({ className: n }) {
+  const {
+    providers: g,
+    isLoading: m,
+    error: b,
+    fetchProviders: S,
+    createProvider: w,
+    updateProvider: f,
+    deleteProvider: N,
+    toggleProvider: E
+  } = q(), { activeOrg: c } = M(), [k, t] = v("list"), [h, p] = v(null), [l, u] = v(null);
+  T(() => {
+    S(c?.id);
+  }, [S, c?.id]);
+  const O = () => {
+    p(null), u(null), t("add");
+  }, C = (s) => {
+    p(s), u(null), t("edit");
+  }, d = () => {
+    t("list"), p(null), u(null);
+  }, a = async (s) => {
+    if (confirm(`Delete SSO provider "${s.name}"? This cannot be undone.`))
+      try {
+        await N(s.id);
+      } catch {
+      }
+  }, o = async (s) => {
+    try {
+      await E(s.id, !s.enabled);
+    } catch {
+    }
+  }, i = async (s) => {
+    u(null);
+    try {
+      k === "add" ? await w(s) : h && await f(h.id, s), t("list"), p(null);
+    } catch (y) {
+      u(y instanceof Error ? y.message : "Failed to save provider");
+    }
+  };
+  return m && g.length === 0 ? /* @__PURE__ */ r("div", { className: `cedros-system-settings cedros-system-settings-loading ${n ?? ""}`, children: [
+    /* @__PURE__ */ e(x, {}),
+    /* @__PURE__ */ e("span", { children: "Loading SSO providers..." })
+  ] }) : k === "add" || k === "edit" ? /* @__PURE__ */ e("div", { className: `cedros-system-settings ${n ?? ""}`, children: /* @__PURE__ */ e(
+    J,
+    {
+      provider: h,
+      orgId: c?.id,
+      error: l,
+      isLoading: m,
+      onSave: i,
+      onCancel: d
+    }
+  ) }) : /* @__PURE__ */ r("div", { className: `cedros-system-settings ${n ?? ""}`, children: [
+    /* @__PURE__ */ r("div", { className: "cedros-settings-page-header", children: [
+      /* @__PURE__ */ r("div", { className: "cedros-settings-page-header-content", children: [
+        /* @__PURE__ */ e("h2", { className: "cedros-settings-page-title", children: "SSO Providers" }),
+        /* @__PURE__ */ e("p", { className: "cedros-settings-page-description", children: "Configure OIDC identity providers for enterprise single sign-on." })
+      ] }),
+      /* @__PURE__ */ e("button", { type: "button", className: "cedros-btn cedros-btn-primary", onClick: O, children: "Add Provider" })
+    ] }),
+    b && /* @__PURE__ */ e(P, { error: b.message }),
+    g.length === 0 ? /* @__PURE__ */ r("div", { className: "cedros-system-settings-empty", children: [
+      /* @__PURE__ */ e("p", { children: "No SSO providers configured." }),
+      /* @__PURE__ */ e("p", { className: "cedros-text-muted", children: "Add an OIDC provider like Okta, Azure AD, or Auth0 to enable enterprise SSO." })
+    ] }) : /* @__PURE__ */ e("div", { className: "cedros-sso-provider-list", children: g.map((s) => /* @__PURE__ */ e(
+      B,
+      {
+        provider: s,
+        onEdit: () => C(s),
+        onDelete: () => a(s),
+        onToggle: () => o(s)
+      },
+      s.id
+    )) })
+  ] });
+}
+function B({ provider: n, onEdit: g, onDelete: m, onToggle: b }) {
+  return /* @__PURE__ */ r(
+    "div",
+    {
+      className: `cedros-sso-provider-card ${n.enabled ? "" : "cedros-sso-provider-card--disabled"}`,
+      children: [
+        /* @__PURE__ */ r("div", { className: "cedros-sso-provider-card-header", children: [
+          /* @__PURE__ */ r("div", { className: "cedros-sso-provider-card-info", children: [
+            /* @__PURE__ */ e("h3", { className: "cedros-sso-provider-card-name", children: n.name }),
+            /* @__PURE__ */ e("p", { className: "cedros-sso-provider-card-issuer", children: n.issuerUrl })
+          ] }),
+          /* @__PURE__ */ r(
+            "button",
+            {
+              type: "button",
+              role: "switch",
+              "aria-checked": n.enabled,
+              className: `cedros-toggle ${n.enabled ? "cedros-toggle-on" : "cedros-toggle-off"}`,
+              onClick: b,
+              children: [
+                /* @__PURE__ */ e("span", { className: "cedros-toggle-track", children: /* @__PURE__ */ e("span", { className: "cedros-toggle-thumb" }) }),
+                /* @__PURE__ */ e("span", { className: "cedros-toggle-label", children: n.enabled ? "Enabled" : "Disabled" })
+              ]
+            }
+          )
+        ] }),
+        /* @__PURE__ */ r("div", { className: "cedros-sso-provider-card-details", children: [
+          /* @__PURE__ */ r("div", { className: "cedros-sso-provider-card-detail", children: [
+            /* @__PURE__ */ e("span", { className: "cedros-sso-provider-card-detail-label", children: "Client ID" }),
+            /* @__PURE__ */ e("code", { className: "cedros-sso-provider-card-detail-value", children: n.clientId })
+          ] }),
+          n.emailDomain && /* @__PURE__ */ r("div", { className: "cedros-sso-provider-card-detail", children: [
+            /* @__PURE__ */ e("span", { className: "cedros-sso-provider-card-detail-label", children: "Email Domain" }),
+            /* @__PURE__ */ r("span", { className: "cedros-sso-provider-card-detail-value", children: [
+              "@",
+              n.emailDomain
+            ] })
+          ] }),
+          /* @__PURE__ */ r("div", { className: "cedros-sso-provider-card-detail", children: [
+            /* @__PURE__ */ e("span", { className: "cedros-sso-provider-card-detail-label", children: "Registration" }),
+            /* @__PURE__ */ e("span", { className: "cedros-sso-provider-card-detail-value", children: n.allowRegistration ? "Allowed" : "Existing users only" })
+          ] })
+        ] }),
+        /* @__PURE__ */ r("div", { className: "cedros-sso-provider-card-actions", children: [
+          /* @__PURE__ */ e("button", { type: "button", className: "cedros-btn cedros-btn-ghost", onClick: g, children: "Edit" }),
+          /* @__PURE__ */ e(
+            "button",
+            {
+              type: "button",
+              className: "cedros-btn cedros-btn-ghost cedros-btn-danger",
+              onClick: m,
+              children: "Delete"
+            }
+          )
+        ] })
+      ]
+    }
+  );
+}
+function J({
+  provider: n,
+  orgId: g,
+  error: m,
+  isLoading: b,
+  onSave: S,
+  onCancel: w
+}) {
+  const f = !!n, [N, E] = v(n?.name ?? ""), [c, k] = v(n?.issuerUrl ?? ""), [t, h] = v(n?.clientId ?? ""), [p, l] = v(""), [u, O] = v(n?.emailDomain ?? ""), [C, d] = v(n?.allowRegistration ?? !0), [a, o] = v(n?.enabled ?? !0), i = A(
+    (s) => {
+      if (s.preventDefault(), f) {
+        const y = {
+          name: N,
+          issuerUrl: c,
+          clientId: t,
+          emailDomain: u || null,
+          allowRegistration: C,
+          enabled: a
+        };
+        p && (y.clientSecret = p), S(y);
+      } else {
+        if (!g)
+          return;
+        S({
+          orgId: g,
+          name: N,
+          issuerUrl: c,
+          clientId: t,
+          clientSecret: p,
+          emailDomain: u || null,
+          allowRegistration: C,
+          enabled: a
+        });
+      }
+    },
+    [
+      f,
+      g,
+      N,
+      c,
+      t,
+      p,
+      u,
+      C,
+      a,
+      S
+    ]
+  );
+  return /* @__PURE__ */ r("form", { className: "cedros-sso-provider-form", onSubmit: i, children: [
+    /* @__PURE__ */ e("div", { className: "cedros-settings-page-header", children: /* @__PURE__ */ r("div", { className: "cedros-settings-page-header-content", children: [
+      /* @__PURE__ */ e("h2", { className: "cedros-settings-page-title", children: f ? "Edit SSO Provider" : "Add SSO Provider" }),
+      /* @__PURE__ */ e("p", { className: "cedros-settings-page-description", children: "Configure an OIDC identity provider for enterprise single sign-on." })
+    ] }) }),
+    m && /* @__PURE__ */ e(P, { error: m }),
+    /* @__PURE__ */ r("div", { className: "cedros-form-section", children: [
+      /* @__PURE__ */ r("div", { className: "cedros-form-group", children: [
+        /* @__PURE__ */ e("label", { className: "cedros-form-label", htmlFor: "sso-name", children: "Provider Name" }),
+        /* @__PURE__ */ e(
+          "input",
+          {
+            id: "sso-name",
+            type: "text",
+            className: "cedros-form-input",
+            value: N,
+            onChange: (s) => E(s.target.value),
+            placeholder: "e.g., Okta, Azure AD",
+            required: !0
+          }
+        )
+      ] }),
+      /* @__PURE__ */ r("div", { className: "cedros-form-group", children: [
+        /* @__PURE__ */ e("label", { className: "cedros-form-label", htmlFor: "sso-issuer", children: "Issuer URL" }),
+        /* @__PURE__ */ e(
+          "input",
+          {
+            id: "sso-issuer",
+            type: "url",
+            className: "cedros-form-input",
+            value: c,
+            onChange: (s) => k(s.target.value),
+            placeholder: "https://your-org.okta.com",
+            required: !0
+          }
+        ),
+        /* @__PURE__ */ e("p", { className: "cedros-form-hint", children: "The OIDC issuer URL. Must support discovery at /.well-known/openid-configuration" })
+      ] }),
+      /* @__PURE__ */ r("div", { className: "cedros-form-group", children: [
+        /* @__PURE__ */ e("label", { className: "cedros-form-label", htmlFor: "sso-client-id", children: "Client ID" }),
+        /* @__PURE__ */ e(
+          "input",
+          {
+            id: "sso-client-id",
+            type: "text",
+            className: "cedros-form-input",
+            value: t,
+            onChange: (s) => h(s.target.value),
+            placeholder: "OAuth client ID",
+            required: !0
+          }
+        )
+      ] }),
+      /* @__PURE__ */ r("div", { className: "cedros-form-group", children: [
+        /* @__PURE__ */ r("label", { className: "cedros-form-label", htmlFor: "sso-client-secret", children: [
+          "Client Secret",
+          " ",
+          f && /* @__PURE__ */ e("span", { className: "cedros-form-hint-inline", children: "(leave blank to keep current)" })
+        ] }),
+        /* @__PURE__ */ e(
+          "input",
+          {
+            id: "sso-client-secret",
+            type: "password",
+            className: "cedros-form-input",
+            value: p,
+            onChange: (s) => l(s.target.value),
+            placeholder: f ? "••••••••" : "OAuth client secret",
+            required: !f
+          }
+        )
+      ] }),
+      /* @__PURE__ */ r("div", { className: "cedros-form-group", children: [
+        /* @__PURE__ */ e("label", { className: "cedros-form-label", htmlFor: "sso-email-domain", children: "Email Domain (optional)" }),
+        /* @__PURE__ */ e(
+          "input",
+          {
+            id: "sso-email-domain",
+            type: "text",
+            className: "cedros-form-input",
+            value: u,
+            onChange: (s) => O(s.target.value),
+            placeholder: "company.com"
+          }
+        ),
+        /* @__PURE__ */ e("p", { className: "cedros-form-hint", children: "Restrict to users with emails from this domain" })
+      ] }),
+      /* @__PURE__ */ e("div", { className: "cedros-form-group", children: /* @__PURE__ */ r("label", { className: "cedros-form-checkbox", children: [
+        /* @__PURE__ */ e(
+          "input",
+          {
+            type: "checkbox",
+            checked: C,
+            onChange: (s) => d(s.target.checked)
+          }
+        ),
+        /* @__PURE__ */ e("span", { children: "Allow new user registration via SSO" })
+      ] }) }),
+      /* @__PURE__ */ e("div", { className: "cedros-form-group", children: /* @__PURE__ */ r("label", { className: "cedros-form-checkbox", children: [
+        /* @__PURE__ */ e(
+          "input",
+          {
+            type: "checkbox",
+            checked: a,
+            onChange: (s) => o(s.target.checked)
+          }
+        ),
+        /* @__PURE__ */ e("span", { children: "Enable this provider" })
+      ] }) })
+    ] }),
+    /* @__PURE__ */ r("div", { className: "cedros-form-actions", children: [
+      /* @__PURE__ */ e(
+        "button",
+        {
+          type: "button",
+          className: "cedros-btn cedros-btn-ghost",
+          onClick: w,
+          disabled: b,
+          children: "Cancel"
+        }
+      ),
+      /* @__PURE__ */ e("button", { type: "submit", className: "cedros-btn cedros-btn-primary", disabled: b, children: b ? "Saving..." : f ? "Save Changes" : "Add Provider" })
+    ] })
+  ] });
+}
+const $ = [
+  { id: "email", label: "Email", categories: ["auth.email"] },
+  { id: "google", label: "Google", categories: ["auth.google"] },
+  { id: "apple", label: "Apple", categories: ["auth.apple"] },
+  { id: "solana", label: "Solana", categories: ["auth.solana"] },
+  { id: "passkeys", label: "Passkeys", categories: ["auth.webauthn"] },
+  { id: "instantlink", label: "Instant Link", categories: ["auth.instantlink"] },
+  { id: "sso", label: "SSO Providers", categories: [], isCustom: !0 }
+];
+function X({ className: n }) {
+  const {
+    settings: g,
+    edits: m,
+    isLoading: b,
+    autosaveStatus: S,
+    autosaveError: w,
+    error: f,
+    fetchSettings: N,
+    handleChange: E
+  } = L(), [c, k] = v("email");
+  T(() => {
+    N();
+  }, [N]);
+  const t = $.find((l) => l.id === c), h = D(() => {
+    if (!t) return [];
+    const l = [];
+    for (const u of t.categories) {
+      const O = g[u] ?? [];
+      l.push(...O);
+    }
+    return l;
+  }, [g, t]), p = D(() => t?.keys ? h.filter((l) => t.keys.includes(l.key)).sort((l, u) => t.keys.indexOf(l.key) - t.keys.indexOf(u.key)) : h, [h, t]);
+  return b && Object.keys(g).length === 0 ? /* @__PURE__ */ r("div", { className: `cedros-system-settings cedros-system-settings-loading ${n ?? ""}`, children: [
+    /* @__PURE__ */ e(x, {}),
+    /* @__PURE__ */ e("span", { children: "Loading settings..." })
+  ] }) : f ? /* @__PURE__ */ e("div", { className: `cedros-system-settings ${n ?? ""}`, children: /* @__PURE__ */ e(P, { error: f.message }) }) : /* @__PURE__ */ r("div", { className: `cedros-system-settings ${n ?? ""}`, children: [
+    /* @__PURE__ */ r("div", { className: "cedros-settings-page-header", children: [
+      /* @__PURE__ */ r("div", { className: "cedros-settings-page-header-content", children: [
+        /* @__PURE__ */ e("h2", { className: "cedros-settings-page-title", children: "Authentication" }),
+        /* @__PURE__ */ e("p", { className: "cedros-settings-page-description", children: "Configure authentication providers and methods for user sign-in." })
+      ] }),
+      /* @__PURE__ */ e(j, { status: S, error: w })
+    ] }),
+    /* @__PURE__ */ e("div", { className: "cedros-admin-tabs cedros-admin-tabs--line", children: $.map((l) => /* @__PURE__ */ e(
+      "button",
+      {
+        type: "button",
+        className: `cedros-admin-tab ${c === l.id ? "cedros-admin-tab-active" : ""}`,
+        onClick: () => k(l.id),
+        "aria-selected": c === l.id,
+        role: "tab",
+        children: l.label
+      },
+      l.id
+    )) }),
+    /* @__PURE__ */ e("div", { className: "cedros-admin-tab-content", role: "tabpanel", children: t?.isCustom ? /* @__PURE__ */ e(z, {}) : p.length === 0 ? /* @__PURE__ */ e("div", { className: "cedros-system-settings-empty", children: /* @__PURE__ */ r("p", { children: [
+      "No settings found for ",
+      t?.label ?? "this provider",
+      "."
+    ] }) }) : /* @__PURE__ */ e(R, { settings: p, edits: m, onChange: E }) })
+  ] });
+}
+export {
+  X as A
+};

package/dist/AuthenticationSettings-CR_i6TTS.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthenticationSettings-CR_i6TTS.js","sources":["../src/hooks/useSsoProviders.ts","../src/components/admin/settings/SsoProvidersSettings.tsx","../src/components/admin/settings/AuthenticationSettings.tsx"],"sourcesContent":["/**\n * Hook for managing SSO providers (admin)\n */\nimport { useState, useCallback, useRef } from 'react';\nimport { useCedrosLogin } from '../context/useCedrosLogin';\n\nexport interface SsoProvider {\n  id: string;\n  orgId: string;\n  name: string;\n  issuerUrl: string;\n  clientId: string;\n  scopes: string[];\n  enabled: boolean;\n  allowRegistration: boolean;\n  emailDomain: string | null;\n  createdAt: string;\n  updatedAt: string;\n}\n\nexport interface CreateSsoProviderInput {\n  orgId: string;\n  name: string;\n  issuerUrl: string;\n  clientId: string;\n  clientSecret: string;\n  scopes?: string[];\n  enabled?: boolean;\n  allowRegistration?: boolean;\n  emailDomain?: string | null;\n}\n\nexport interface UpdateSsoProviderInput {\n  name?: string;\n  issuerUrl?: string;\n  clientId?: string;\n  clientSecret?: string;\n  scopes?: string[];\n  enabled?: boolean;\n  allowRegistration?: boolean;\n  emailDomain?: string | null;\n}\n\ninterface ListResponse {\n  providers: SsoProvider[];\n  total: number;\n  limit: number;\n  offset: number;\n}\n\nexport function useSsoProviders() {\n  const { config, _internal } = useCedrosLogin();\n  const serverUrl = config.serverUrl;\n\n  // PERF-03: Stabilize getAccessToken reference using ref pattern\n  // to prevent unnecessary re-creation of callbacks\n  const getAccessTokenRef = useRef(_internal?.getAccessToken ?? (() => null));\n  getAccessTokenRef.current = _internal?.getAccessToken ?? (() => null);\n\n  const [providers, setProviders] = useState<SsoProvider[]>([]);\n  const [total, setTotal] = useState(0);\n  const [isLoading, setIsLoading] = useState(false);\n  const [error, setError] = useState<Error | null>(null);\n\n  // Memoize getHeaders with empty deps since it uses ref\n  const getHeaders = useCallback(() => {\n    const token = getAccessTokenRef.current();\n    return {\n      'Content-Type': 'application/json',\n      ...(token ? { Authorization: `Bearer ${token}` } : {}),\n    };\n  }, []);\n\n  const fetchProviders = useCallback(\n    async (orgId?: string, limit = 50, offset = 0) => {\n      setIsLoading(true);\n      setError(null);\n      try {\n        const params = new URLSearchParams();\n        if (orgId) params.set('org_id', orgId);\n        params.set('limit', String(limit));\n        params.set('offset', String(offset));\n\n        const res = await fetch(`${serverUrl}/admin/sso-providers?${params}`, {\n          headers: getHeaders(),\n        });\n\n        if (!res.ok) {\n          const err = await res.json().catch(() => ({}));\n          throw new Error(err.error || `Failed to fetch SSO providers: ${res.status}`);\n        }\n\n        const data: ListResponse = await res.json();\n        setProviders(data.providers);\n        setTotal(data.total);\n        return data;\n      } catch (err) {\n        const error = err instanceof Error ? err : new Error(String(err));\n        setError(error);\n        throw error;\n      } finally {\n        setIsLoading(false);\n      }\n    },\n    [serverUrl, getHeaders]\n  );\n\n  const createProvider = useCallback(\n    async (input: CreateSsoProviderInput): Promise<SsoProvider> => {\n      setIsLoading(true);\n      setError(null);\n      try {\n        const res = await fetch(`${serverUrl}/admin/sso-providers`, {\n          method: 'POST',\n          headers: getHeaders(),\n          body: JSON.stringify(input),\n        });\n\n        if (!res.ok) {\n          const err = await res.json().catch(() => ({}));\n          throw new Error(err.error || `Failed to create SSO provider: ${res.status}`);\n        }\n\n        const provider: SsoProvider = await res.json();\n        setProviders((prev) => [...prev, provider]);\n        setTotal((prev) => prev + 1);\n        return provider;\n      } catch (err) {\n        const error = err instanceof Error ? err : new Error(String(err));\n        setError(error);\n        throw error;\n      } finally {\n        setIsLoading(false);\n      }\n    },\n    [serverUrl, getHeaders]\n  );\n\n  const updateProvider = useCallback(\n    async (id: string, input: UpdateSsoProviderInput): Promise<SsoProvider> => {\n      setIsLoading(true);\n      setError(null);\n      try {\n        const res = await fetch(`${serverUrl}/admin/sso-providers/${id}`, {\n          method: 'PUT',\n          headers: getHeaders(),\n          body: JSON.stringify(input),\n        });\n\n        if (!res.ok) {\n          const err = await res.json().catch(() => ({}));\n          throw new Error(err.error || `Failed to update SSO provider: ${res.status}`);\n        }\n\n        const provider: SsoProvider = await res.json();\n        setProviders((prev) => prev.map((p) => (p.id === id ? provider : p)));\n        return provider;\n      } catch (err) {\n        const error = err instanceof Error ? err : new Error(String(err));\n        setError(error);\n        throw error;\n      } finally {\n        setIsLoading(false);\n      }\n    },\n    [serverUrl, getHeaders]\n  );\n\n  const deleteProvider = useCallback(\n    async (id: string): Promise<void> => {\n      setIsLoading(true);\n      setError(null);\n      try {\n        const res = await fetch(`${serverUrl}/admin/sso-providers/${id}`, {\n          method: 'DELETE',\n          headers: getHeaders(),\n        });\n\n        if (!res.ok) {\n          const err = await res.json().catch(() => ({}));\n          throw new Error(err.error || `Failed to delete SSO provider: ${res.status}`);\n        }\n\n        setProviders((prev) => prev.filter((p) => p.id !== id));\n        setTotal((prev) => prev - 1);\n      } catch (err) {\n        const error = err instanceof Error ? err : new Error(String(err));\n        setError(error);\n        throw error;\n      } finally {\n        setIsLoading(false);\n      }\n    },\n    [serverUrl, getHeaders]\n  );\n\n  const toggleProvider = useCallback(\n    async (id: string, enabled: boolean): Promise<SsoProvider> => {\n      return updateProvider(id, { enabled });\n    },\n    [updateProvider]\n  );\n\n  return {\n    providers,\n    total,\n    isLoading,\n    error,\n    fetchProviders,\n    createProvider,\n    updateProvider,\n    deleteProvider,\n    toggleProvider,\n  };\n}\n","/**\n * SSO Providers settings - manage OIDC identity providers\n */\nimport { useState, useEffect, useCallback } from 'react';\nimport { LoadingSpinner } from '../../shared/LoadingSpinner';\nimport { ErrorMessage } from '../../shared/ErrorMessage';\nimport {\n  useSsoProviders,\n  type SsoProvider,\n  type CreateSsoProviderInput,\n  type UpdateSsoProviderInput,\n} from '../../../hooks/useSsoProviders';\nimport { useOrgs } from '../../../hooks/useOrgs';\n\nexport interface SsoProvidersSettingsProps {\n  className?: string;\n}\n\ntype ViewMode = 'list' | 'add' | 'edit';\n\nexport function SsoProvidersSettings({ className }: SsoProvidersSettingsProps) {\n  const {\n    providers,\n    isLoading,\n    error,\n    fetchProviders,\n    createProvider,\n    updateProvider,\n    deleteProvider,\n    toggleProvider,\n  } = useSsoProviders();\n\n  const { activeOrg } = useOrgs();\n  const [viewMode, setViewMode] = useState<ViewMode>('list');\n  const [editingProvider, setEditingProvider] = useState<SsoProvider | null>(null);\n  const [formError, setFormError] = useState<string | null>(null);\n\n  useEffect(() => {\n    fetchProviders(activeOrg?.id);\n  }, [fetchProviders, activeOrg?.id]);\n\n  const handleAdd = () => {\n    setEditingProvider(null);\n    setFormError(null);\n    setViewMode('add');\n  };\n\n  const handleEdit = (provider: SsoProvider) => {\n    setEditingProvider(provider);\n    setFormError(null);\n    setViewMode('edit');\n  };\n\n  const handleCancel = () => {\n    setViewMode('list');\n    setEditingProvider(null);\n    setFormError(null);\n  };\n\n  const handleDelete = async (provider: SsoProvider) => {\n    if (!confirm(`Delete SSO provider \"${provider.name}\"? This cannot be undone.`)) {\n      return;\n    }\n    try {\n      await deleteProvider(provider.id);\n    } catch {\n      // Error is already set in hook\n    }\n  };\n\n  const handleToggle = async (provider: SsoProvider) => {\n    try {\n      await toggleProvider(provider.id, !provider.enabled);\n    } catch {\n      // Error is already set in hook\n    }\n  };\n\n  const handleSave = async (data: CreateSsoProviderInput | UpdateSsoProviderInput) => {\n    setFormError(null);\n    try {\n      if (viewMode === 'add') {\n        await createProvider(data as CreateSsoProviderInput);\n      } else if (editingProvider) {\n        await updateProvider(editingProvider.id, data as UpdateSsoProviderInput);\n      }\n      setViewMode('list');\n      setEditingProvider(null);\n    } catch (err) {\n      setFormError(err instanceof Error ? err.message : 'Failed to save provider');\n    }\n  };\n\n  if (isLoading && providers.length === 0) {\n    return (\n      <div className={`cedros-system-settings cedros-system-settings-loading ${className ?? ''}`}>\n        <LoadingSpinner />\n        <span>Loading SSO providers...</span>\n      </div>\n    );\n  }\n\n  if (viewMode === 'add' || viewMode === 'edit') {\n    return (\n      <div className={`cedros-system-settings ${className ?? ''}`}>\n        <SsoProviderForm\n          provider={editingProvider}\n          orgId={activeOrg?.id}\n          error={formError}\n          isLoading={isLoading}\n          onSave={handleSave}\n          onCancel={handleCancel}\n        />\n      </div>\n    );\n  }\n\n  return (\n    <div className={`cedros-system-settings ${className ?? ''}`}>\n      <div className=\"cedros-settings-page-header\">\n        <div className=\"cedros-settings-page-header-content\">\n          <h2 className=\"cedros-settings-page-title\">SSO Providers</h2>\n          <p className=\"cedros-settings-page-description\">\n            Configure OIDC identity providers for enterprise single sign-on.\n          </p>\n        </div>\n        <button type=\"button\" className=\"cedros-btn cedros-btn-primary\" onClick={handleAdd}>\n          Add Provider\n        </button>\n      </div>\n\n      {error && <ErrorMessage error={error.message} />}\n\n      {providers.length === 0 ? (\n        <div className=\"cedros-system-settings-empty\">\n          <p>No SSO providers configured.</p>\n          <p className=\"cedros-text-muted\">\n            Add an OIDC provider like Okta, Azure AD, or Auth0 to enable enterprise SSO.\n          </p>\n        </div>\n      ) : (\n        <div className=\"cedros-sso-provider-list\">\n          {providers.map((provider) => (\n            <SsoProviderCard\n              key={provider.id}\n              provider={provider}\n              onEdit={() => handleEdit(provider)}\n              onDelete={() => handleDelete(provider)}\n              onToggle={() => handleToggle(provider)}\n            />\n          ))}\n        </div>\n      )}\n    </div>\n  );\n}\n\n// =============================================================================\n// Provider Card\n// =============================================================================\n\ninterface SsoProviderCardProps {\n  provider: SsoProvider;\n  onEdit: () => void;\n  onDelete: () => void;\n  onToggle: () => void;\n}\n\nfunction SsoProviderCard({ provider, onEdit, onDelete, onToggle }: SsoProviderCardProps) {\n  return (\n    <div\n      className={`cedros-sso-provider-card ${provider.enabled ? '' : 'cedros-sso-provider-card--disabled'}`}\n    >\n      <div className=\"cedros-sso-provider-card-header\">\n        <div className=\"cedros-sso-provider-card-info\">\n          <h3 className=\"cedros-sso-provider-card-name\">{provider.name}</h3>\n          <p className=\"cedros-sso-provider-card-issuer\">{provider.issuerUrl}</p>\n        </div>\n        <button\n          type=\"button\"\n          role=\"switch\"\n          aria-checked={provider.enabled}\n          className={`cedros-toggle ${provider.enabled ? 'cedros-toggle-on' : 'cedros-toggle-off'}`}\n          onClick={onToggle}\n        >\n          <span className=\"cedros-toggle-track\">\n            <span className=\"cedros-toggle-thumb\" />\n          </span>\n          <span className=\"cedros-toggle-label\">{provider.enabled ? 'Enabled' : 'Disabled'}</span>\n        </button>\n      </div>\n\n      <div className=\"cedros-sso-provider-card-details\">\n        <div className=\"cedros-sso-provider-card-detail\">\n          <span className=\"cedros-sso-provider-card-detail-label\">Client ID</span>\n          <code className=\"cedros-sso-provider-card-detail-value\">{provider.clientId}</code>\n        </div>\n        {provider.emailDomain && (\n          <div className=\"cedros-sso-provider-card-detail\">\n            <span className=\"cedros-sso-provider-card-detail-label\">Email Domain</span>\n            <span className=\"cedros-sso-provider-card-detail-value\">@{provider.emailDomain}</span>\n          </div>\n        )}\n        <div className=\"cedros-sso-provider-card-detail\">\n          <span className=\"cedros-sso-provider-card-detail-label\">Registration</span>\n          <span className=\"cedros-sso-provider-card-detail-value\">\n            {provider.allowRegistration ? 'Allowed' : 'Existing users only'}\n          </span>\n        </div>\n      </div>\n\n      <div className=\"cedros-sso-provider-card-actions\">\n        <button type=\"button\" className=\"cedros-btn cedros-btn-ghost\" onClick={onEdit}>\n          Edit\n        </button>\n        <button\n          type=\"button\"\n          className=\"cedros-btn cedros-btn-ghost cedros-btn-danger\"\n          onClick={onDelete}\n        >\n          Delete\n        </button>\n      </div>\n    </div>\n  );\n}\n\n// =============================================================================\n// Provider Form\n// =============================================================================\n\ninterface SsoProviderFormProps {\n  provider: SsoProvider | null;\n  orgId?: string;\n  error: string | null;\n  isLoading: boolean;\n  onSave: (data: CreateSsoProviderInput | UpdateSsoProviderInput) => void;\n  onCancel: () => void;\n}\n\nfunction SsoProviderForm({\n  provider,\n  orgId,\n  error,\n  isLoading,\n  onSave,\n  onCancel,\n}: SsoProviderFormProps) {\n  const isEditing = Boolean(provider);\n\n  const [name, setName] = useState(provider?.name ?? '');\n  const [issuerUrl, setIssuerUrl] = useState(provider?.issuerUrl ?? '');\n  const [clientId, setClientId] = useState(provider?.clientId ?? '');\n  const [clientSecret, setClientSecret] = useState('');\n  const [emailDomain, setEmailDomain] = useState(provider?.emailDomain ?? '');\n  const [allowRegistration, setAllowRegistration] = useState(provider?.allowRegistration ?? true);\n  const [enabled, setEnabled] = useState(provider?.enabled ?? true);\n\n  const handleSubmit = useCallback(\n    (e: React.FormEvent) => {\n      e.preventDefault();\n\n      if (isEditing) {\n        const updates: UpdateSsoProviderInput = {\n          name,\n          issuerUrl,\n          clientId,\n          emailDomain: emailDomain || null,\n          allowRegistration,\n          enabled,\n        };\n        // Only include secret if changed\n        if (clientSecret) {\n          updates.clientSecret = clientSecret;\n        }\n        onSave(updates);\n      } else {\n        if (!orgId) {\n          return;\n        }\n        const data: CreateSsoProviderInput = {\n          orgId,\n          name,\n          issuerUrl,\n          clientId,\n          clientSecret,\n          emailDomain: emailDomain || null,\n          allowRegistration,\n          enabled,\n        };\n        onSave(data);\n      }\n    },\n    [\n      isEditing,\n      orgId,\n      name,\n      issuerUrl,\n      clientId,\n      clientSecret,\n      emailDomain,\n      allowRegistration,\n      enabled,\n      onSave,\n    ]\n  );\n\n  return (\n    <form className=\"cedros-sso-provider-form\" onSubmit={handleSubmit}>\n      <div className=\"cedros-settings-page-header\">\n        <div className=\"cedros-settings-page-header-content\">\n          <h2 className=\"cedros-settings-page-title\">\n            {isEditing ? 'Edit SSO Provider' : 'Add SSO Provider'}\n          </h2>\n          <p className=\"cedros-settings-page-description\">\n            Configure an OIDC identity provider for enterprise single sign-on.\n          </p>\n        </div>\n      </div>\n\n      {error && <ErrorMessage error={error} />}\n\n      <div className=\"cedros-form-section\">\n        <div className=\"cedros-form-group\">\n          <label className=\"cedros-form-label\" htmlFor=\"sso-name\">\n            Provider Name\n          </label>\n          <input\n            id=\"sso-name\"\n            type=\"text\"\n            className=\"cedros-form-input\"\n            value={name}\n            onChange={(e) => setName(e.target.value)}\n            placeholder=\"e.g., Okta, Azure AD\"\n            required\n          />\n        </div>\n\n        <div className=\"cedros-form-group\">\n          <label className=\"cedros-form-label\" htmlFor=\"sso-issuer\">\n            Issuer URL\n          </label>\n          <input\n            id=\"sso-issuer\"\n            type=\"url\"\n            className=\"cedros-form-input\"\n            value={issuerUrl}\n            onChange={(e) => setIssuerUrl(e.target.value)}\n            placeholder=\"https://your-org.okta.com\"\n            required\n          />\n          <p className=\"cedros-form-hint\">\n            The OIDC issuer URL. Must support discovery at /.well-known/openid-configuration\n          </p>\n        </div>\n\n        <div className=\"cedros-form-group\">\n          <label className=\"cedros-form-label\" htmlFor=\"sso-client-id\">\n            Client ID\n          </label>\n          <input\n            id=\"sso-client-id\"\n            type=\"text\"\n            className=\"cedros-form-input\"\n            value={clientId}\n            onChange={(e) => setClientId(e.target.value)}\n            placeholder=\"OAuth client ID\"\n            required\n          />\n        </div>\n\n        <div className=\"cedros-form-group\">\n          <label className=\"cedros-form-label\" htmlFor=\"sso-client-secret\">\n            Client Secret{' '}\n            {isEditing && (\n              <span className=\"cedros-form-hint-inline\">(leave blank to keep current)</span>\n            )}\n          </label>\n          <input\n            id=\"sso-client-secret\"\n            type=\"password\"\n            className=\"cedros-form-input\"\n            value={clientSecret}\n            onChange={(e) => setClientSecret(e.target.value)}\n            placeholder={isEditing ? '••••••••' : 'OAuth client secret'}\n            required={!isEditing}\n          />\n        </div>\n\n        <div className=\"cedros-form-group\">\n          <label className=\"cedros-form-label\" htmlFor=\"sso-email-domain\">\n            Email Domain (optional)\n          </label>\n          <input\n            id=\"sso-email-domain\"\n            type=\"text\"\n            className=\"cedros-form-input\"\n            value={emailDomain}\n            onChange={(e) => setEmailDomain(e.target.value)}\n            placeholder=\"company.com\"\n          />\n          <p className=\"cedros-form-hint\">Restrict to users with emails from this domain</p>\n        </div>\n\n        <div className=\"cedros-form-group\">\n          <label className=\"cedros-form-checkbox\">\n            <input\n              type=\"checkbox\"\n              checked={allowRegistration}\n              onChange={(e) => setAllowRegistration(e.target.checked)}\n            />\n            <span>Allow new user registration via SSO</span>\n          </label>\n        </div>\n\n        <div className=\"cedros-form-group\">\n          <label className=\"cedros-form-checkbox\">\n            <input\n              type=\"checkbox\"\n              checked={enabled}\n              onChange={(e) => setEnabled(e.target.checked)}\n            />\n            <span>Enable this provider</span>\n          </label>\n        </div>\n      </div>\n\n      <div className=\"cedros-form-actions\">\n        <button\n          type=\"button\"\n          className=\"cedros-btn cedros-btn-ghost\"\n          onClick={onCancel}\n          disabled={isLoading}\n        >\n          Cancel\n        </button>\n        <button type=\"submit\" className=\"cedros-btn cedros-btn-primary\" disabled={isLoading}>\n          {isLoading ? 'Saving...' : isEditing ? 'Save Changes' : 'Add Provider'}\n        </button>\n      </div>\n    </form>\n  );\n}\n","/**\n * Authentication settings page - configure auth providers with tabs\n */\nimport { useState, useEffect, useMemo } from 'react';\nimport { LoadingSpinner } from '../../shared/LoadingSpinner';\nimport { ErrorMessage } from '../../shared/ErrorMessage';\nimport { useSettingsAutosave } from '../../../hooks/useSettingsAutosave';\nimport { SettingsSection } from './settingsInputs';\nimport { AutosaveStatus } from './AutosaveStatus';\nimport { SsoProvidersSettings } from './SsoProvidersSettings';\n\ntype AuthTab = 'email' | 'google' | 'apple' | 'solana' | 'passkeys' | 'instantlink' | 'sso';\n\ninterface TabConfig {\n  id: AuthTab;\n  label: string;\n  /** Categories to pull settings from (not used for 'sso' tab) */\n  categories: string[];\n  /** Optional list of specific keys to show (if omitted, show all in categories) */\n  keys?: string[];\n  /** If true, renders a custom component instead of settings section */\n  isCustom?: boolean;\n}\n\nconst TABS: TabConfig[] = [\n  { id: 'email', label: 'Email', categories: ['auth.email'] },\n  { id: 'google', label: 'Google', categories: ['auth.google'] },\n  { id: 'apple', label: 'Apple', categories: ['auth.apple'] },\n  { id: 'solana', label: 'Solana', categories: ['auth.solana'] },\n  { id: 'passkeys', label: 'Passkeys', categories: ['auth.webauthn'] },\n  { id: 'instantlink', label: 'Instant Link', categories: ['auth.instantlink'] },\n  { id: 'sso', label: 'SSO Providers', categories: [], isCustom: true },\n];\n\nexport interface AuthenticationSettingsProps {\n  className?: string;\n}\n\nexport function AuthenticationSettings({ className }: AuthenticationSettingsProps) {\n  const {\n    settings,\n    edits,\n    isLoading,\n    autosaveStatus,\n    autosaveError,\n    error,\n    fetchSettings,\n    handleChange,\n  } = useSettingsAutosave();\n\n  const [activeTab, setActiveTab] = useState<AuthTab>('email');\n\n  useEffect(() => {\n    fetchSettings();\n  }, [fetchSettings]);\n\n  // Get current tab config\n  const currentTab = TABS.find((t) => t.id === activeTab);\n\n  // Collect settings from all categories for the current tab\n  const allTabSettings = useMemo(() => {\n    if (!currentTab) return [];\n    const allSettings: (typeof settings)[string] = [];\n    for (const category of currentTab.categories) {\n      const categorySettings = settings[category] ?? [];\n      allSettings.push(...categorySettings);\n    }\n    return allSettings;\n  }, [settings, currentTab]);\n\n  const currentSettings = useMemo(() => {\n    if (!currentTab?.keys) return allTabSettings;\n    // Filter and sort by keys order\n    return allTabSettings\n      .filter((s) => currentTab.keys!.includes(s.key))\n      .sort((a, b) => currentTab.keys!.indexOf(a.key) - currentTab.keys!.indexOf(b.key));\n  }, [allTabSettings, currentTab]);\n\n  if (isLoading && Object.keys(settings).length === 0) {\n    return (\n      <div className={`cedros-system-settings cedros-system-settings-loading ${className ?? ''}`}>\n        <LoadingSpinner />\n        <span>Loading settings...</span>\n      </div>\n    );\n  }\n\n  if (error) {\n    return (\n      <div className={`cedros-system-settings ${className ?? ''}`}>\n        <ErrorMessage error={error.message} />\n      </div>\n    );\n  }\n\n  return (\n    <div className={`cedros-system-settings ${className ?? ''}`}>\n      <div className=\"cedros-settings-page-header\">\n        <div className=\"cedros-settings-page-header-content\">\n          <h2 className=\"cedros-settings-page-title\">Authentication</h2>\n          <p className=\"cedros-settings-page-description\">\n            Configure authentication providers and methods for user sign-in.\n          </p>\n        </div>\n        <AutosaveStatus status={autosaveStatus} error={autosaveError} />\n      </div>\n\n      {/* Tabs */}\n      <div className=\"cedros-admin-tabs cedros-admin-tabs--line\">\n        {TABS.map((tab) => (\n          <button\n            key={tab.id}\n            type=\"button\"\n            className={`cedros-admin-tab ${activeTab === tab.id ? 'cedros-admin-tab-active' : ''}`}\n            onClick={() => setActiveTab(tab.id)}\n            aria-selected={activeTab === tab.id}\n            role=\"tab\"\n          >\n            {tab.label}\n          </button>\n        ))}\n      </div>\n\n      {/* Tab content */}\n      <div className=\"cedros-admin-tab-content\" role=\"tabpanel\">\n        {currentTab?.isCustom ? (\n          <SsoProvidersSettings />\n        ) : currentSettings.length === 0 ? (\n          <div className=\"cedros-system-settings-empty\">\n            <p>No settings found for {currentTab?.label ?? 'this provider'}.</p>\n          </div>\n        ) : (\n          <SettingsSection settings={currentSettings} edits={edits} onChange={handleChange} />\n        )}\n      </div>\n    </div>\n  );\n}\n"],"names":["useSsoProviders","config","_internal","useCedrosLogin","serverUrl","getAccessTokenRef","useRef","providers","setProviders","useState","total","setTotal","isLoading","setIsLoading","error","setError","getHeaders","useCallback","token","fetchProviders","orgId","limit","offset","params","res","err","data","createProvider","input","provider","prev","updateProvider","id","p","deleteProvider","toggleProvider","enabled","SsoProvidersSettings","className","activeOrg","useOrgs","viewMode","setViewMode","editingProvider","setEditingProvider","formError","setFormError","useEffect","handleAdd","handleEdit","handleCancel","handleDelete","handleToggle","handleSave","jsx","LoadingSpinner","SsoProviderForm","jsxs","ErrorMessage","SsoProviderCard","onEdit","onDelete","onToggle","onSave","onCancel","isEditing","name","setName","issuerUrl","setIssuerUrl","clientId","setClientId","clientSecret","setClientSecret","emailDomain","setEmailDomain","allowRegistration","setAllowRegistration","setEnabled","handleSubmit","e","updates","TABS","AuthenticationSettings","settings","edits","autosaveStatus","autosaveError","fetchSettings","handleChange","useSettingsAutosave","activeTab","setActiveTab","currentTab","t","allTabSettings","useMemo","allSettings","category","categorySettings","currentSettings","s","a","b","AutosaveStatus","tab","SettingsSection"],"mappings":";;;;;;;AAkDO,SAASA,IAAkB;AAChC,QAAM,EAAE,QAAAC,GAAQ,WAAAC,EAAA,IAAcC,EAAA,GACxBC,IAAYH,EAAO,WAInBI,IAAoBC,EAAOJ,GAAW,mBAAmB,MAAM,KAAK;AAC1E,EAAAG,EAAkB,UAAUH,GAAW,mBAAmB,MAAM;AAEhE,QAAM,CAACK,GAAWC,CAAY,IAAIC,EAAwB,CAAA,CAAE,GACtD,CAACC,GAAOC,CAAQ,IAAIF,EAAS,CAAC,GAC9B,CAACG,GAAWC,CAAY,IAAIJ,EAAS,EAAK,GAC1C,CAACK,GAAOC,CAAQ,IAAIN,EAAuB,IAAI,GAG/CO,IAAaC,EAAY,MAAM;AACnC,UAAMC,IAAQb,EAAkB,QAAA;AAChC,WAAO;AAAA,MACL,gBAAgB;AAAA,MAChB,GAAIa,IAAQ,EAAE,eAAe,UAAUA,CAAK,OAAO,CAAA;AAAA,IAAC;AAAA,EAExD,GAAG,CAAA,CAAE,GAECC,IAAiBF;AAAA,IACrB,OAAOG,GAAgBC,IAAQ,IAAIC,IAAS,MAAM;AAChD,MAAAT,EAAa,EAAI,GACjBE,EAAS,IAAI;AACb,UAAI;AACF,cAAMQ,IAAS,IAAI,gBAAA;AACnB,QAAIH,KAAOG,EAAO,IAAI,UAAUH,CAAK,GACrCG,EAAO,IAAI,SAAS,OAAOF,CAAK,CAAC,GACjCE,EAAO,IAAI,UAAU,OAAOD,CAAM,CAAC;AAEnC,cAAME,IAAM,MAAM,MAAM,GAAGpB,CAAS,wBAAwBmB,CAAM,IAAI;AAAA,UACpE,SAASP,EAAA;AAAA,QAAW,CACrB;AAED,YAAI,CAACQ,EAAI,IAAI;AACX,gBAAMC,IAAM,MAAMD,EAAI,KAAA,EAAO,MAAM,OAAO,CAAA,EAAG;AAC7C,gBAAM,IAAI,MAAMC,EAAI,SAAS,kCAAkCD,EAAI,MAAM,EAAE;AAAA,QAC7E;AAEA,cAAME,IAAqB,MAAMF,EAAI,KAAA;AACrC,eAAAhB,EAAakB,EAAK,SAAS,GAC3Bf,EAASe,EAAK,KAAK,GACZA;AAAA,MACT,SAASD,GAAK;AACZ,cAAMX,IAAQW,aAAe,QAAQA,IAAM,IAAI,MAAM,OAAOA,CAAG,CAAC;AAChE,cAAAV,EAASD,CAAK,GACRA;AAAAA,MACR,UAAA;AACE,QAAAD,EAAa,EAAK;AAAA,MACpB;AAAA,IACF;AAAA,IACA,CAACT,GAAWY,CAAU;AAAA,EAAA,GAGlBW,IAAiBV;AAAA,IACrB,OAAOW,MAAwD;AAC7D,MAAAf,EAAa,EAAI,GACjBE,EAAS,IAAI;AACb,UAAI;AACF,cAAMS,IAAM,MAAM,MAAM,GAAGpB,CAAS,wBAAwB;AAAA,UAC1D,QAAQ;AAAA,UACR,SAASY,EAAA;AAAA,UACT,MAAM,KAAK,UAAUY,CAAK;AAAA,QAAA,CAC3B;AAED,YAAI,CAACJ,EAAI,IAAI;AACX,gBAAMC,IAAM,MAAMD,EAAI,KAAA,EAAO,MAAM,OAAO,CAAA,EAAG;AAC7C,gBAAM,IAAI,MAAMC,EAAI,SAAS,kCAAkCD,EAAI,MAAM,EAAE;AAAA,QAC7E;AAEA,cAAMK,IAAwB,MAAML,EAAI,KAAA;AACxC,eAAAhB,EAAa,CAACsB,MAAS,CAAC,GAAGA,GAAMD,CAAQ,CAAC,GAC1ClB,EAAS,CAACmB,MAASA,IAAO,CAAC,GACpBD;AAAA,MACT,SAASJ,GAAK;AACZ,cAAMX,IAAQW,aAAe,QAAQA,IAAM,IAAI,MAAM,OAAOA,CAAG,CAAC;AAChE,cAAAV,EAASD,CAAK,GACRA;AAAAA,MACR,UAAA;AACE,QAAAD,EAAa,EAAK;AAAA,MACpB;AAAA,IACF;AAAA,IACA,CAACT,GAAWY,CAAU;AAAA,EAAA,GAGlBe,IAAiBd;AAAA,IACrB,OAAOe,GAAYJ,MAAwD;AACzE,MAAAf,EAAa,EAAI,GACjBE,EAAS,IAAI;AACb,UAAI;AACF,cAAMS,IAAM,MAAM,MAAM,GAAGpB,CAAS,wBAAwB4B,CAAE,IAAI;AAAA,UAChE,QAAQ;AAAA,UACR,SAAShB,EAAA;AAAA,UACT,MAAM,KAAK,UAAUY,CAAK;AAAA,QAAA,CAC3B;AAED,YAAI,CAACJ,EAAI,IAAI;AACX,gBAAMC,IAAM,MAAMD,EAAI,KAAA,EAAO,MAAM,OAAO,CAAA,EAAG;AAC7C,gBAAM,IAAI,MAAMC,EAAI,SAAS,kCAAkCD,EAAI,MAAM,EAAE;AAAA,QAC7E;AAEA,cAAMK,IAAwB,MAAML,EAAI,KAAA;AACxC,eAAAhB,EAAa,CAACsB,MAASA,EAAK,IAAI,CAACG,MAAOA,EAAE,OAAOD,IAAKH,IAAWI,CAAE,CAAC,GAC7DJ;AAAA,MACT,SAASJ,GAAK;AACZ,cAAMX,IAAQW,aAAe,QAAQA,IAAM,IAAI,MAAM,OAAOA,CAAG,CAAC;AAChE,cAAAV,EAASD,CAAK,GACRA;AAAAA,MACR,UAAA;AACE,QAAAD,EAAa,EAAK;AAAA,MACpB;AAAA,IACF;AAAA,IACA,CAACT,GAAWY,CAAU;AAAA,EAAA,GAGlBkB,IAAiBjB;AAAA,IACrB,OAAOe,MAA8B;AACnC,MAAAnB,EAAa,EAAI,GACjBE,EAAS,IAAI;AACb,UAAI;AACF,cAAMS,IAAM,MAAM,MAAM,GAAGpB,CAAS,wBAAwB4B,CAAE,IAAI;AAAA,UAChE,QAAQ;AAAA,UACR,SAAShB,EAAA;AAAA,QAAW,CACrB;AAED,YAAI,CAACQ,EAAI,IAAI;AACX,gBAAMC,IAAM,MAAMD,EAAI,KAAA,EAAO,MAAM,OAAO,CAAA,EAAG;AAC7C,gBAAM,IAAI,MAAMC,EAAI,SAAS,kCAAkCD,EAAI,MAAM,EAAE;AAAA,QAC7E;AAEA,QAAAhB,EAAa,CAACsB,MAASA,EAAK,OAAO,CAACG,MAAMA,EAAE,OAAOD,CAAE,CAAC,GACtDrB,EAAS,CAACmB,MAASA,IAAO,CAAC;AAAA,MAC7B,SAASL,GAAK;AACZ,cAAMX,IAAQW,aAAe,QAAQA,IAAM,IAAI,MAAM,OAAOA,CAAG,CAAC;AAChE,cAAAV,EAASD,CAAK,GACRA;AAAAA,MACR,UAAA;AACE,QAAAD,EAAa,EAAK;AAAA,MACpB;AAAA,IACF;AAAA,IACA,CAACT,GAAWY,CAAU;AAAA,EAAA,GAGlBmB,IAAiBlB;AAAA,IACrB,OAAOe,GAAYI,MACVL,EAAeC,GAAI,EAAE,SAAAI,GAAS;AAAA,IAEvC,CAACL,CAAc;AAAA,EAAA;AAGjB,SAAO;AAAA,IACL,WAAAxB;AAAA,IACA,OAAAG;AAAA,IACA,WAAAE;AAAA,IACA,OAAAE;AAAA,IACA,gBAAAK;AAAA,IACA,gBAAAQ;AAAA,IACA,gBAAAI;AAAA,IACA,gBAAAG;AAAA,IACA,gBAAAC;AAAA,EAAA;AAEJ;AClMO,SAASE,EAAqB,EAAE,WAAAC,KAAwC;AAC7E,QAAM;AAAA,IACJ,WAAA/B;AAAA,IACA,WAAAK;AAAA,IACA,OAAAE;AAAA,IACA,gBAAAK;AAAA,IACA,gBAAAQ;AAAA,IACA,gBAAAI;AAAA,IACA,gBAAAG;AAAA,IACA,gBAAAC;AAAA,EAAA,IACEnC,EAAA,GAEE,EAAE,WAAAuC,EAAA,IAAcC,EAAA,GAChB,CAACC,GAAUC,CAAW,IAAIjC,EAAmB,MAAM,GACnD,CAACkC,GAAiBC,CAAkB,IAAInC,EAA6B,IAAI,GACzE,CAACoC,GAAWC,CAAY,IAAIrC,EAAwB,IAAI;AAE9D,EAAAsC,EAAU,MAAM;AACd,IAAA5B,EAAeoB,GAAW,EAAE;AAAA,EAC9B,GAAG,CAACpB,GAAgBoB,GAAW,EAAE,CAAC;AAElC,QAAMS,IAAY,MAAM;AACtB,IAAAJ,EAAmB,IAAI,GACvBE,EAAa,IAAI,GACjBJ,EAAY,KAAK;AAAA,EACnB,GAEMO,IAAa,CAACpB,MAA0B;AAC5C,IAAAe,EAAmBf,CAAQ,GAC3BiB,EAAa,IAAI,GACjBJ,EAAY,MAAM;AAAA,EACpB,GAEMQ,IAAe,MAAM;AACzB,IAAAR,EAAY,MAAM,GAClBE,EAAmB,IAAI,GACvBE,EAAa,IAAI;AAAA,EACnB,GAEMK,IAAe,OAAOtB,MAA0B;AACpD,QAAK,QAAQ,wBAAwBA,EAAS,IAAI,2BAA2B;AAG7E,UAAI;AACF,cAAMK,EAAeL,EAAS,EAAE;AAAA,MAClC,QAAQ;AAAA,MAER;AAAA,EACF,GAEMuB,IAAe,OAAOvB,MAA0B;AACpD,QAAI;AACF,YAAMM,EAAeN,EAAS,IAAI,CAACA,EAAS,OAAO;AAAA,IACrD,QAAQ;AAAA,IAER;AAAA,EACF,GAEMwB,IAAa,OAAO3B,MAA0D;AAClF,IAAAoB,EAAa,IAAI;AACjB,QAAI;AACF,MAAIL,MAAa,QACf,MAAMd,EAAeD,CAA8B,IAC1CiB,KACT,MAAMZ,EAAeY,EAAgB,IAAIjB,CAA8B,GAEzEgB,EAAY,MAAM,GAClBE,EAAmB,IAAI;AAAA,IACzB,SAASnB,GAAK;AACZ,MAAAqB,EAAarB,aAAe,QAAQA,EAAI,UAAU,yBAAyB;AAAA,IAC7E;AAAA,EACF;AAEA,SAAIb,KAAaL,EAAU,WAAW,sBAEjC,OAAA,EAAI,WAAW,yDAAyD+B,KAAa,EAAE,IACtF,UAAA;AAAA,IAAA,gBAAAgB,EAACC,GAAA,EAAe;AAAA,IAChB,gBAAAD,EAAC,UAAK,UAAA,2BAAA,CAAwB;AAAA,EAAA,GAChC,IAIAb,MAAa,SAASA,MAAa,2BAElC,OAAA,EAAI,WAAW,0BAA0BH,KAAa,EAAE,IACvD,UAAA,gBAAAgB;AAAA,IAACE;AAAA,IAAA;AAAA,MACC,UAAUb;AAAA,MACV,OAAOJ,GAAW;AAAA,MAClB,OAAOM;AAAA,MACP,WAAAjC;AAAA,MACA,QAAQyC;AAAA,MACR,UAAUH;AAAA,IAAA;AAAA,EAAA,GAEd,sBAKD,OAAA,EAAI,WAAW,0BAA0BZ,KAAa,EAAE,IACvD,UAAA;AAAA,IAAA,gBAAAmB,EAAC,OAAA,EAAI,WAAU,+BACb,UAAA;AAAA,MAAA,gBAAAA,EAAC,OAAA,EAAI,WAAU,uCACb,UAAA;AAAA,QAAA,gBAAAH,EAAC,MAAA,EAAG,WAAU,8BAA6B,UAAA,iBAAa;AAAA,QACxD,gBAAAA,EAAC,KAAA,EAAE,WAAU,oCAAmC,UAAA,mEAAA,CAEhD;AAAA,MAAA,GACF;AAAA,MACA,gBAAAA,EAAC,YAAO,MAAK,UAAS,WAAU,iCAAgC,SAASN,GAAW,UAAA,eAAA,CAEpF;AAAA,IAAA,GACF;AAAA,IAEClC,KAAS,gBAAAwC,EAACI,GAAA,EAAa,OAAO5C,EAAM,SAAS;AAAA,IAE7CP,EAAU,WAAW,IACpB,gBAAAkD,EAAC,OAAA,EAAI,WAAU,gCACb,UAAA;AAAA,MAAA,gBAAAH,EAAC,OAAE,UAAA,+BAAA,CAA4B;AAAA,MAC/B,gBAAAA,EAAC,KAAA,EAAE,WAAU,qBAAoB,UAAA,+EAAA,CAEjC;AAAA,IAAA,EAAA,CACF,sBAEC,OAAA,EAAI,WAAU,4BACZ,UAAA/C,EAAU,IAAI,CAACsB,MACd,gBAAAyB;AAAA,MAACK;AAAA,MAAA;AAAA,QAEC,UAAA9B;AAAA,QACA,QAAQ,MAAMoB,EAAWpB,CAAQ;AAAA,QACjC,UAAU,MAAMsB,EAAatB,CAAQ;AAAA,QACrC,UAAU,MAAMuB,EAAavB,CAAQ;AAAA,MAAA;AAAA,MAJhCA,EAAS;AAAA,IAAA,CAMjB,EAAA,CACH;AAAA,EAAA,GAEJ;AAEJ;AAaA,SAAS8B,EAAgB,EAAE,UAAA9B,GAAU,QAAA+B,GAAQ,UAAAC,GAAU,UAAAC,KAAkC;AACvF,SACE,gBAAAL;AAAA,IAAC;AAAA,IAAA;AAAA,MACC,WAAW,4BAA4B5B,EAAS,UAAU,KAAK,oCAAoC;AAAA,MAEnG,UAAA;AAAA,QAAA,gBAAA4B,EAAC,OAAA,EAAI,WAAU,mCACb,UAAA;AAAA,UAAA,gBAAAA,EAAC,OAAA,EAAI,WAAU,iCACb,UAAA;AAAA,YAAA,gBAAAH,EAAC,MAAA,EAAG,WAAU,iCAAiC,UAAAzB,EAAS,MAAK;AAAA,YAC7D,gBAAAyB,EAAC,KAAA,EAAE,WAAU,mCAAmC,YAAS,UAAA,CAAU;AAAA,UAAA,GACrE;AAAA,UACA,gBAAAG;AAAA,YAAC;AAAA,YAAA;AAAA,cACC,MAAK;AAAA,cACL,MAAK;AAAA,cACL,gBAAc5B,EAAS;AAAA,cACvB,WAAW,iBAAiBA,EAAS,UAAU,qBAAqB,mBAAmB;AAAA,cACvF,SAASiC;AAAA,cAET,UAAA;AAAA,gBAAA,gBAAAR,EAAC,UAAK,WAAU,uBACd,4BAAC,QAAA,EAAK,WAAU,uBAAsB,EAAA,CACxC;AAAA,kCACC,QAAA,EAAK,WAAU,uBAAuB,UAAAzB,EAAS,UAAU,YAAY,WAAA,CAAW;AAAA,cAAA;AAAA,YAAA;AAAA,UAAA;AAAA,QACnF,GACF;AAAA,QAEA,gBAAA4B,EAAC,OAAA,EAAI,WAAU,oCACb,UAAA;AAAA,UAAA,gBAAAA,EAAC,OAAA,EAAI,WAAU,mCACb,UAAA;AAAA,YAAA,gBAAAH,EAAC,QAAA,EAAK,WAAU,yCAAwC,UAAA,aAAS;AAAA,YACjE,gBAAAA,EAAC,QAAA,EAAK,WAAU,yCAAyC,YAAS,SAAA,CAAS;AAAA,UAAA,GAC7E;AAAA,UACCzB,EAAS,eACR,gBAAA4B,EAAC,OAAA,EAAI,WAAU,mCACb,UAAA;AAAA,YAAA,gBAAAH,EAAC,QAAA,EAAK,WAAU,yCAAwC,UAAA,gBAAY;AAAA,YACpE,gBAAAG,EAAC,QAAA,EAAK,WAAU,yCAAwC,UAAA;AAAA,cAAA;AAAA,cAAE5B,EAAS;AAAA,YAAA,EAAA,CAAY;AAAA,UAAA,GACjF;AAAA,UAEF,gBAAA4B,EAAC,OAAA,EAAI,WAAU,mCACb,UAAA;AAAA,YAAA,gBAAAH,EAAC,QAAA,EAAK,WAAU,yCAAwC,UAAA,gBAAY;AAAA,8BACnE,QAAA,EAAK,WAAU,yCACb,UAAAzB,EAAS,oBAAoB,YAAY,sBAAA,CAC5C;AAAA,UAAA,EAAA,CACF;AAAA,QAAA,GACF;AAAA,QAEA,gBAAA4B,EAAC,OAAA,EAAI,WAAU,oCACb,UAAA;AAAA,UAAA,gBAAAH,EAAC,YAAO,MAAK,UAAS,WAAU,+BAA8B,SAASM,GAAQ,UAAA,OAAA,CAE/E;AAAA,UACA,gBAAAN;AAAA,YAAC;AAAA,YAAA;AAAA,cACC,MAAK;AAAA,cACL,WAAU;AAAA,cACV,SAASO;AAAA,cACV,UAAA;AAAA,YAAA;AAAA,UAAA;AAAA,QAED,EAAA,CACF;AAAA,MAAA;AAAA,IAAA;AAAA,EAAA;AAGN;AAeA,SAASL,EAAgB;AAAA,EACvB,UAAA3B;AAAA,EACA,OAAAT;AAAA,EACA,OAAAN;AAAA,EACA,WAAAF;AAAA,EACA,QAAAmD;AAAA,EACA,UAAAC;AACF,GAAyB;AACvB,QAAMC,IAAY,EAAQpC,GAEpB,CAACqC,GAAMC,CAAO,IAAI1D,EAASoB,GAAU,QAAQ,EAAE,GAC/C,CAACuC,GAAWC,CAAY,IAAI5D,EAASoB,GAAU,aAAa,EAAE,GAC9D,CAACyC,GAAUC,CAAW,IAAI9D,EAASoB,GAAU,YAAY,EAAE,GAC3D,CAAC2C,GAAcC,CAAe,IAAIhE,EAAS,EAAE,GAC7C,CAACiE,GAAaC,CAAc,IAAIlE,EAASoB,GAAU,eAAe,EAAE,GACpE,CAAC+C,GAAmBC,CAAoB,IAAIpE,EAASoB,GAAU,qBAAqB,EAAI,GACxF,CAACO,GAAS0C,CAAU,IAAIrE,EAASoB,GAAU,WAAW,EAAI,GAE1DkD,IAAe9D;AAAA,IACnB,CAAC+D,MAAuB;AAGtB,UAFAA,EAAE,eAAA,GAEEf,GAAW;AACb,cAAMgB,IAAkC;AAAA,UACtC,MAAAf;AAAA,UACA,WAAAE;AAAA,UACA,UAAAE;AAAA,UACA,aAAaI,KAAe;AAAA,UAC5B,mBAAAE;AAAA,UACA,SAAAxC;AAAA,QAAA;AAGF,QAAIoC,MACFS,EAAQ,eAAeT,IAEzBT,EAAOkB,CAAO;AAAA,MAChB,OAAO;AACL,YAAI,CAAC7D;AACH;AAYF,QAAA2C,EAVqC;AAAA,UACnC,OAAA3C;AAAA,UACA,MAAA8C;AAAA,UACA,WAAAE;AAAA,UACA,UAAAE;AAAA,UACA,cAAAE;AAAA,UACA,aAAaE,KAAe;AAAA,UAC5B,mBAAAE;AAAA,UACA,SAAAxC;AAAA,QAAA,CAES;AAAA,MACb;AAAA,IACF;AAAA,IACA;AAAA,MACE6B;AAAA,MACA7C;AAAA,MACA8C;AAAA,MACAE;AAAA,MACAE;AAAA,MACAE;AAAA,MACAE;AAAA,MACAE;AAAA,MACAxC;AAAA,MACA2B;AAAA,IAAA;AAAA,EACF;AAGF,SACE,gBAAAN,EAAC,QAAA,EAAK,WAAU,4BAA2B,UAAUsB,GACnD,UAAA;AAAA,IAAA,gBAAAzB,EAAC,SAAI,WAAU,+BACb,UAAA,gBAAAG,EAAC,OAAA,EAAI,WAAU,uCACb,UAAA;AAAA,MAAA,gBAAAH,EAAC,MAAA,EAAG,WAAU,8BACX,UAAAW,IAAY,sBAAsB,oBACrC;AAAA,MACA,gBAAAX,EAAC,KAAA,EAAE,WAAU,oCAAmC,UAAA,qEAAA,CAEhD;AAAA,IAAA,EAAA,CACF,EAAA,CACF;AAAA,IAECxC,KAAS,gBAAAwC,EAACI,GAAA,EAAa,OAAA5C,EAAA,CAAc;AAAA,IAEtC,gBAAA2C,EAAC,OAAA,EAAI,WAAU,uBACb,UAAA;AAAA,MAAA,gBAAAA,EAAC,OAAA,EAAI,WAAU,qBACb,UAAA;AAAA,QAAA,gBAAAH,EAAC,SAAA,EAAM,WAAU,qBAAoB,SAAQ,YAAW,UAAA,iBAExD;AAAA,QACA,gBAAAA;AAAA,UAAC;AAAA,UAAA;AAAA,YACC,IAAG;AAAA,YACH,MAAK;AAAA,YACL,WAAU;AAAA,YACV,OAAOY;AAAA,YACP,UAAU,CAACc,MAAMb,EAAQa,EAAE,OAAO,KAAK;AAAA,YACvC,aAAY;AAAA,YACZ,UAAQ;AAAA,UAAA;AAAA,QAAA;AAAA,MACV,GACF;AAAA,MAEA,gBAAAvB,EAAC,OAAA,EAAI,WAAU,qBACb,UAAA;AAAA,QAAA,gBAAAH,EAAC,SAAA,EAAM,WAAU,qBAAoB,SAAQ,cAAa,UAAA,cAE1D;AAAA,QACA,gBAAAA;AAAA,UAAC;AAAA,UAAA;AAAA,YACC,IAAG;AAAA,YACH,MAAK;AAAA,YACL,WAAU;AAAA,YACV,OAAOc;AAAA,YACP,UAAU,CAACY,MAAMX,EAAaW,EAAE,OAAO,KAAK;AAAA,YAC5C,aAAY;AAAA,YACZ,UAAQ;AAAA,UAAA;AAAA,QAAA;AAAA,QAEV,gBAAA1B,EAAC,KAAA,EAAE,WAAU,oBAAmB,UAAA,mFAAA,CAEhC;AAAA,MAAA,GACF;AAAA,MAEA,gBAAAG,EAAC,OAAA,EAAI,WAAU,qBACb,UAAA;AAAA,QAAA,gBAAAH,EAAC,SAAA,EAAM,WAAU,qBAAoB,SAAQ,iBAAgB,UAAA,aAE7D;AAAA,QACA,gBAAAA;AAAA,UAAC;AAAA,UAAA;AAAA,YACC,IAAG;AAAA,YACH,MAAK;AAAA,YACL,WAAU;AAAA,YACV,OAAOgB;AAAA,YACP,UAAU,CAACU,MAAMT,EAAYS,EAAE,OAAO,KAAK;AAAA,YAC3C,aAAY;AAAA,YACZ,UAAQ;AAAA,UAAA;AAAA,QAAA;AAAA,MACV,GACF;AAAA,MAEA,gBAAAvB,EAAC,OAAA,EAAI,WAAU,qBACb,UAAA;AAAA,QAAA,gBAAAA,EAAC,SAAA,EAAM,WAAU,qBAAoB,SAAQ,qBAAoB,UAAA;AAAA,UAAA;AAAA,UACjD;AAAA,UACbQ,KACC,gBAAAX,EAAC,QAAA,EAAK,WAAU,2BAA0B,UAAA,gCAAA,CAA6B;AAAA,QAAA,GAE3E;AAAA,QACA,gBAAAA;AAAA,UAAC;AAAA,UAAA;AAAA,YACC,IAAG;AAAA,YACH,MAAK;AAAA,YACL,WAAU;AAAA,YACV,OAAOkB;AAAA,YACP,UAAU,CAACQ,MAAMP,EAAgBO,EAAE,OAAO,KAAK;AAAA,YAC/C,aAAaf,IAAY,aAAa;AAAA,YACtC,UAAU,CAACA;AAAA,UAAA;AAAA,QAAA;AAAA,MACb,GACF;AAAA,MAEA,gBAAAR,EAAC,OAAA,EAAI,WAAU,qBACb,UAAA;AAAA,QAAA,gBAAAH,EAAC,SAAA,EAAM,WAAU,qBAAoB,SAAQ,oBAAmB,UAAA,2BAEhE;AAAA,QACA,gBAAAA;AAAA,UAAC;AAAA,UAAA;AAAA,YACC,IAAG;AAAA,YACH,MAAK;AAAA,YACL,WAAU;AAAA,YACV,OAAOoB;AAAA,YACP,UAAU,CAACM,MAAML,EAAeK,EAAE,OAAO,KAAK;AAAA,YAC9C,aAAY;AAAA,UAAA;AAAA,QAAA;AAAA,QAEd,gBAAA1B,EAAC,KAAA,EAAE,WAAU,oBAAmB,UAAA,iDAAA,CAA8C;AAAA,MAAA,GAChF;AAAA,wBAEC,OAAA,EAAI,WAAU,qBACb,UAAA,gBAAAG,EAAC,SAAA,EAAM,WAAU,wBACf,UAAA;AAAA,QAAA,gBAAAH;AAAA,UAAC;AAAA,UAAA;AAAA,YACC,MAAK;AAAA,YACL,SAASsB;AAAA,YACT,UAAU,CAACI,MAAMH,EAAqBG,EAAE,OAAO,OAAO;AAAA,UAAA;AAAA,QAAA;AAAA,QAExD,gBAAA1B,EAAC,UAAK,UAAA,sCAAA,CAAmC;AAAA,MAAA,EAAA,CAC3C,EAAA,CACF;AAAA,wBAEC,OAAA,EAAI,WAAU,qBACb,UAAA,gBAAAG,EAAC,SAAA,EAAM,WAAU,wBACf,UAAA;AAAA,QAAA,gBAAAH;AAAA,UAAC;AAAA,UAAA;AAAA,YACC,MAAK;AAAA,YACL,SAASlB;AAAA,YACT,UAAU,CAAC4C,MAAMF,EAAWE,EAAE,OAAO,OAAO;AAAA,UAAA;AAAA,QAAA;AAAA,QAE9C,gBAAA1B,EAAC,UAAK,UAAA,uBAAA,CAAoB;AAAA,MAAA,EAAA,CAC5B,EAAA,CACF;AAAA,IAAA,GACF;AAAA,IAEA,gBAAAG,EAAC,OAAA,EAAI,WAAU,uBACb,UAAA;AAAA,MAAA,gBAAAH;AAAA,QAAC;AAAA,QAAA;AAAA,UACC,MAAK;AAAA,UACL,WAAU;AAAA,UACV,SAASU;AAAA,UACT,UAAUpD;AAAA,UACX,UAAA;AAAA,QAAA;AAAA,MAAA;AAAA,MAGD,gBAAA0C,EAAC,UAAA,EAAO,MAAK,UAAS,WAAU,iCAAgC,UAAU1C,GACvE,UAAAA,IAAY,cAAcqD,IAAY,iBAAiB,eAAA,CAC1D;AAAA,IAAA,EAAA,CACF;AAAA,EAAA,GACF;AAEJ;AClaA,MAAMiB,IAAoB;AAAA,EACxB,EAAE,IAAI,SAAS,OAAO,SAAS,YAAY,CAAC,YAAY,EAAA;AAAA,EACxD,EAAE,IAAI,UAAU,OAAO,UAAU,YAAY,CAAC,aAAa,EAAA;AAAA,EAC3D,EAAE,IAAI,SAAS,OAAO,SAAS,YAAY,CAAC,YAAY,EAAA;AAAA,EACxD,EAAE,IAAI,UAAU,OAAO,UAAU,YAAY,CAAC,aAAa,EAAA;AAAA,EAC3D,EAAE,IAAI,YAAY,OAAO,YAAY,YAAY,CAAC,eAAe,EAAA;AAAA,EACjE,EAAE,IAAI,eAAe,OAAO,gBAAgB,YAAY,CAAC,kBAAkB,EAAA;AAAA,EAC3E,EAAE,IAAI,OAAO,OAAO,iBAAiB,YAAY,CAAA,GAAI,UAAU,GAAA;AACjE;AAMO,SAASC,EAAuB,EAAE,WAAA7C,KAA0C;AACjF,QAAM;AAAA,IACJ,UAAA8C;AAAA,IACA,OAAAC;AAAA,IACA,WAAAzE;AAAA,IACA,gBAAA0E;AAAA,IACA,eAAAC;AAAA,IACA,OAAAzE;AAAA,IACA,eAAA0E;AAAA,IACA,cAAAC;AAAA,EAAA,IACEC,EAAA,GAEE,CAACC,GAAWC,CAAY,IAAInF,EAAkB,OAAO;AAE3D,EAAAsC,EAAU,MAAM;AACd,IAAAyC,EAAA;AAAA,EACF,GAAG,CAACA,CAAa,CAAC;AAGlB,QAAMK,IAAaX,EAAK,KAAK,CAACY,MAAMA,EAAE,OAAOH,CAAS,GAGhDI,IAAiBC,EAAQ,MAAM;AACnC,QAAI,CAACH,EAAY,QAAO,CAAA;AACxB,UAAMI,IAAyC,CAAA;AAC/C,eAAWC,KAAYL,EAAW,YAAY;AAC5C,YAAMM,IAAmBf,EAASc,CAAQ,KAAK,CAAA;AAC/C,MAAAD,EAAY,KAAK,GAAGE,CAAgB;AAAA,IACtC;AACA,WAAOF;AAAA,EACT,GAAG,CAACb,GAAUS,CAAU,CAAC,GAEnBO,IAAkBJ,EAAQ,MACzBH,GAAY,OAEVE,EACJ,OAAO,CAACM,MAAMR,EAAW,KAAM,SAASQ,EAAE,GAAG,CAAC,EAC9C,KAAK,CAACC,GAAGC,MAAMV,EAAW,KAAM,QAAQS,EAAE,GAAG,IAAIT,EAAW,KAAM,QAAQU,EAAE,GAAG,CAAC,IAJrDR,GAK7B,CAACA,GAAgBF,CAAU,CAAC;AAE/B,SAAIjF,KAAa,OAAO,KAAKwE,CAAQ,EAAE,WAAW,sBAE7C,OAAA,EAAI,WAAW,yDAAyD9C,KAAa,EAAE,IACtF,UAAA;AAAA,IAAA,gBAAAgB,EAACC,GAAA,EAAe;AAAA,IAChB,gBAAAD,EAAC,UAAK,UAAA,sBAAA,CAAmB;AAAA,EAAA,GAC3B,IAIAxC,IAEA,gBAAAwC,EAAC,OAAA,EAAI,WAAW,0BAA0BhB,KAAa,EAAE,IACvD,UAAA,gBAAAgB,EAACI,GAAA,EAAa,OAAO5C,EAAM,QAAA,CAAS,GACtC,sBAKD,OAAA,EAAI,WAAW,0BAA0BwB,KAAa,EAAE,IACvD,UAAA;AAAA,IAAA,gBAAAmB,EAAC,OAAA,EAAI,WAAU,+BACb,UAAA;AAAA,MAAA,gBAAAA,EAAC,OAAA,EAAI,WAAU,uCACb,UAAA;AAAA,QAAA,gBAAAH,EAAC,MAAA,EAAG,WAAU,8BAA6B,UAAA,kBAAc;AAAA,QACzD,gBAAAA,EAAC,KAAA,EAAE,WAAU,oCAAmC,UAAA,mEAAA,CAEhD;AAAA,MAAA,GACF;AAAA,MACA,gBAAAA,EAACkD,GAAA,EAAe,QAAQlB,GAAgB,OAAOC,EAAA,CAAe;AAAA,IAAA,GAChE;AAAA,sBAGC,OAAA,EAAI,WAAU,6CACZ,UAAAL,EAAK,IAAI,CAACuB,MACT,gBAAAnD;AAAA,MAAC;AAAA,MAAA;AAAA,QAEC,MAAK;AAAA,QACL,WAAW,oBAAoBqC,MAAcc,EAAI,KAAK,4BAA4B,EAAE;AAAA,QACpF,SAAS,MAAMb,EAAaa,EAAI,EAAE;AAAA,QAClC,iBAAed,MAAcc,EAAI;AAAA,QACjC,MAAK;AAAA,QAEJ,UAAAA,EAAI;AAAA,MAAA;AAAA,MAPAA,EAAI;AAAA,IAAA,CASZ,GACH;AAAA,sBAGC,OAAA,EAAI,WAAU,4BAA2B,MAAK,YAC5C,aAAY,WACX,gBAAAnD,EAACjB,KAAqB,IACpB+D,EAAgB,WAAW,IAC7B,gBAAA9C,EAAC,SAAI,WAAU,gCACb,4BAAC,KAAA,EAAE,UAAA;AAAA,MAAA;AAAA,MAAuBuC,GAAY,SAAS;AAAA,MAAgB;AAAA,IAAA,EAAA,CAAC,EAAA,CAClE,IAEA,gBAAAvC,EAACoD,GAAA,EAAgB,UAAUN,GAAiB,OAAAf,GAAc,UAAUI,EAAA,CAAc,EAAA,CAEtF;AAAA,EAAA,GACF;AAEJ;"}