@cesco_valle/identity-contracts 0.1.0 → 0.2.0

package/README.md

@@ -1,22 +1,42 @@
 # @cesco_valle/identity-contracts
 
 Shared **Zod schemas + inferred TypeScript types** for the portfolio identity
-service wire contracts (user / project-admin / machine-admin surfaces). The single
-source of truth consumed by `identity-service` (server-side validation) and
+service wire contracts. The single source of truth, mirrored 1:1 from
+`identity-service` and consumed by it (server-side validation) and by
 `@cesco_valle/identity-auth-sdk`.
 
-> Scaffold in progress — the schemas land in the next checkpoint.
+Only depends on `zod`. ESM-only.
 
 ## Install
 
 ```bash
-npm install @cesco_valle/identity-contracts
+npm install @cesco_valle/identity-contracts zod
 ```
 
-## Usage (planned)
+## Entry points
+
+Import from the surface you need:
+
+- `@cesco_valle/identity-contracts/user` — end-user cookie/session surface
+  (`projectAuthLoginRequestSchema`, `projectAuthResponseSchema`,
+  `registerEmailCheckResponseSchema`, …).
+- `@cesco_valle/identity-contracts/project-admin` — project-admin (cookie) surface
+  (memberships, audit logs, sessions, admin-operations list).
+- `@cesco_valle/identity-contracts/admin` — machine-admin surface (the mutation
+  envelope, per-operation payloads, `decideApproval`, read queries).
+- `@cesco_valle/identity-contracts/shared` — common primitives
+  (`projectSummarySchema`, `membershipStatusSchema`, `apiErrorSchema`, …).
+- The package root re-exports `shared` flat plus the `user` / `projectAdmin` /
+  `admin` **namespaces** (e.g. `import { user } from '@cesco_valle/identity-contracts'`).
+
+## Usage
 
 ```ts
-import { loginRequestSchema, type ProjectAuthResponse } from '@cesco_valle/identity-contracts';
-```
+import {
+  projectAuthLoginRequestSchema,
+  type ProjectAuthResponse,
+} from '@cesco_valle/identity-contracts/user';
 
-Only depends on `zod`. ESM-only.
+const body = projectAuthLoginRequestSchema.parse({ email, password });
+// `ProjectAuthResponse` types the /login response.
+```

package/dist/admin-DggLseAG.d.ts

@@ -0,0 +1,185 @@
+import { z } from 'zod';
+
+/**
+ * Common mutation envelope for the machine-to-machine admin surface (ADR 0008).
+ * `mcp-server`/`openclaw-ops` send this on every mutating operation.
+ */
+declare const adminMutationEnvelopeSchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    reason: z.ZodString;
+    idempotencyKey: z.ZodString;
+    ticketRef: z.ZodOptional<z.ZodString>;
+    channel: z.ZodString;
+    operatorUserId: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+type AdminMutationEnvelope = z.infer<typeof adminMutationEnvelopeSchema>;
+declare const createUserOperationSchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    reason: z.ZodString;
+    idempotencyKey: z.ZodString;
+    ticketRef: z.ZodOptional<z.ZodString>;
+    channel: z.ZodString;
+    operatorUserId: z.ZodOptional<z.ZodString>;
+    payload: z.ZodObject<{
+        email: z.ZodEmail;
+        displayName: z.ZodOptional<z.ZodString>;
+        password: z.ZodOptional<z.ZodString>;
+        roleCodes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+type CreateUserOperationRequest = z.infer<typeof createUserOperationSchema>;
+declare const banUserOperationSchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    reason: z.ZodString;
+    idempotencyKey: z.ZodString;
+    ticketRef: z.ZodOptional<z.ZodString>;
+    channel: z.ZodString;
+    operatorUserId: z.ZodOptional<z.ZodString>;
+    payload: z.ZodObject<{
+        userId: z.ZodString;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+type BanUserOperationRequest = z.infer<typeof banUserOperationSchema>;
+declare const unbanUserOperationSchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    reason: z.ZodString;
+    idempotencyKey: z.ZodString;
+    ticketRef: z.ZodOptional<z.ZodString>;
+    channel: z.ZodString;
+    operatorUserId: z.ZodOptional<z.ZodString>;
+    payload: z.ZodObject<{
+        userId: z.ZodString;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+type UnbanUserOperationRequest = z.infer<typeof unbanUserOperationSchema>;
+declare const assignProjectRoleOperationSchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    reason: z.ZodString;
+    idempotencyKey: z.ZodString;
+    ticketRef: z.ZodOptional<z.ZodString>;
+    channel: z.ZodString;
+    operatorUserId: z.ZodOptional<z.ZodString>;
+    payload: z.ZodObject<{
+        userId: z.ZodString;
+        roleCodes: z.ZodArray<z.ZodString>;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+type AssignProjectRoleOperationRequest = z.infer<typeof assignProjectRoleOperationSchema>;
+declare const revokeProjectAccessOperationSchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    reason: z.ZodString;
+    idempotencyKey: z.ZodString;
+    ticketRef: z.ZodOptional<z.ZodString>;
+    channel: z.ZodString;
+    operatorUserId: z.ZodOptional<z.ZodString>;
+    payload: z.ZodObject<{
+        userId: z.ZodString;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+type RevokeProjectAccessOperationRequest = z.infer<typeof revokeProjectAccessOperationSchema>;
+declare const readmitMembershipOperationSchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    reason: z.ZodString;
+    idempotencyKey: z.ZodString;
+    ticketRef: z.ZodOptional<z.ZodString>;
+    channel: z.ZodString;
+    operatorUserId: z.ZodOptional<z.ZodString>;
+    payload: z.ZodObject<{
+        userId: z.ZodString;
+        roleCodes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+type ReadmitMembershipOperationRequest = z.infer<typeof readmitMembershipOperationSchema>;
+declare const revokeSessionOperationSchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    reason: z.ZodString;
+    idempotencyKey: z.ZodString;
+    ticketRef: z.ZodOptional<z.ZodString>;
+    channel: z.ZodString;
+    operatorUserId: z.ZodOptional<z.ZodString>;
+    payload: z.ZodObject<{
+        sessionId: z.ZodOptional<z.ZodString>;
+        userId: z.ZodOptional<z.ZodString>;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+type RevokeSessionOperationRequest = z.infer<typeof revokeSessionOperationSchema>;
+declare const adminApprovalIdParamsSchema: z.ZodObject<{
+    approvalId: z.ZodString;
+}, z.core.$strip>;
+declare const decideApprovalSchema: z.ZodObject<{
+    decision: z.ZodEnum<{
+        approve: "approve";
+        reject: "reject";
+    }>;
+    operatorUserId: z.ZodString;
+    decisionReason: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+type DecideApprovalRequest = z.infer<typeof decideApprovalSchema>;
+declare const adminListProjectUsersQuerySchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+    limit: z.ZodDefault<z.ZodCoercedNumber<unknown>>;
+    cursor: z.ZodOptional<z.ZodString>;
+    status: z.ZodOptional<z.ZodEnum<{
+        ACTIVE: "ACTIVE";
+        SUSPENDED: "SUSPENDED";
+        REVOKED: "REVOKED";
+    }>>;
+    q: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+type AdminListProjectUsersQuery = z.infer<typeof adminListProjectUsersQuerySchema>;
+declare const adminGetUserAccessQuerySchema: z.ZodObject<{
+    targetProjectId: z.ZodString;
+}, z.core.$strip>;
+type AdminGetUserAccessQuery = z.infer<typeof adminGetUserAccessQuerySchema>;
+declare const adminUserIdParamsSchema: z.ZodObject<{
+    userId: z.ZodString;
+}, z.core.$strip>;
+declare const adminListPendingApprovalsQuerySchema: z.ZodObject<{
+    targetProjectId: z.ZodOptional<z.ZodString>;
+    limit: z.ZodDefault<z.ZodCoercedNumber<unknown>>;
+    cursor: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+type AdminListPendingApprovalsQuery = z.infer<typeof adminListPendingApprovalsQuerySchema>;
+type AdminOperationResponseStatus = 'completed' | 'pending_approval' | 'denied' | 'failed';
+interface AdminMutationResponse {
+    status: AdminOperationResponseStatus;
+    operationId: string;
+    approvalId: string | null;
+    auditEventId: string;
+    message: string;
+    result: unknown;
+}
+
+type admin_AdminGetUserAccessQuery = AdminGetUserAccessQuery;
+type admin_AdminListPendingApprovalsQuery = AdminListPendingApprovalsQuery;
+type admin_AdminListProjectUsersQuery = AdminListProjectUsersQuery;
+type admin_AdminMutationEnvelope = AdminMutationEnvelope;
+type admin_AdminMutationResponse = AdminMutationResponse;
+type admin_AdminOperationResponseStatus = AdminOperationResponseStatus;
+type admin_AssignProjectRoleOperationRequest = AssignProjectRoleOperationRequest;
+type admin_BanUserOperationRequest = BanUserOperationRequest;
+type admin_CreateUserOperationRequest = CreateUserOperationRequest;
+type admin_DecideApprovalRequest = DecideApprovalRequest;
+type admin_ReadmitMembershipOperationRequest = ReadmitMembershipOperationRequest;
+type admin_RevokeProjectAccessOperationRequest = RevokeProjectAccessOperationRequest;
+type admin_RevokeSessionOperationRequest = RevokeSessionOperationRequest;
+type admin_UnbanUserOperationRequest = UnbanUserOperationRequest;
+declare const admin_adminApprovalIdParamsSchema: typeof adminApprovalIdParamsSchema;
+declare const admin_adminGetUserAccessQuerySchema: typeof adminGetUserAccessQuerySchema;
+declare const admin_adminListPendingApprovalsQuerySchema: typeof adminListPendingApprovalsQuerySchema;
+declare const admin_adminListProjectUsersQuerySchema: typeof adminListProjectUsersQuerySchema;
+declare const admin_adminMutationEnvelopeSchema: typeof adminMutationEnvelopeSchema;
+declare const admin_adminUserIdParamsSchema: typeof adminUserIdParamsSchema;
+declare const admin_assignProjectRoleOperationSchema: typeof assignProjectRoleOperationSchema;
+declare const admin_banUserOperationSchema: typeof banUserOperationSchema;
+declare const admin_createUserOperationSchema: typeof createUserOperationSchema;
+declare const admin_decideApprovalSchema: typeof decideApprovalSchema;
+declare const admin_readmitMembershipOperationSchema: typeof readmitMembershipOperationSchema;
+declare const admin_revokeProjectAccessOperationSchema: typeof revokeProjectAccessOperationSchema;
+declare const admin_revokeSessionOperationSchema: typeof revokeSessionOperationSchema;
+declare const admin_unbanUserOperationSchema: typeof unbanUserOperationSchema;
+declare namespace admin {
+  export { type admin_AdminGetUserAccessQuery as AdminGetUserAccessQuery, type admin_AdminListPendingApprovalsQuery as AdminListPendingApprovalsQuery, type admin_AdminListProjectUsersQuery as AdminListProjectUsersQuery, type admin_AdminMutationEnvelope as AdminMutationEnvelope, type admin_AdminMutationResponse as AdminMutationResponse, type admin_AdminOperationResponseStatus as AdminOperationResponseStatus, type admin_AssignProjectRoleOperationRequest as AssignProjectRoleOperationRequest, type admin_BanUserOperationRequest as BanUserOperationRequest, type admin_CreateUserOperationRequest as CreateUserOperationRequest, type admin_DecideApprovalRequest as DecideApprovalRequest, type admin_ReadmitMembershipOperationRequest as ReadmitMembershipOperationRequest, type admin_RevokeProjectAccessOperationRequest as RevokeProjectAccessOperationRequest, type admin_RevokeSessionOperationRequest as RevokeSessionOperationRequest, type admin_UnbanUserOperationRequest as UnbanUserOperationRequest, admin_adminApprovalIdParamsSchema as adminApprovalIdParamsSchema, admin_adminGetUserAccessQuerySchema as adminGetUserAccessQuerySchema, admin_adminListPendingApprovalsQuerySchema as adminListPendingApprovalsQuerySchema, admin_adminListProjectUsersQuerySchema as adminListProjectUsersQuerySchema, admin_adminMutationEnvelopeSchema as adminMutationEnvelopeSchema, admin_adminUserIdParamsSchema as adminUserIdParamsSchema, admin_assignProjectRoleOperationSchema as assignProjectRoleOperationSchema, admin_banUserOperationSchema as banUserOperationSchema, admin_createUserOperationSchema as createUserOperationSchema, admin_decideApprovalSchema as decideApprovalSchema, admin_readmitMembershipOperationSchema as readmitMembershipOperationSchema, admin_revokeProjectAccessOperationSchema as revokeProjectAccessOperationSchema, admin_revokeSessionOperationSchema as revokeSessionOperationSchema, admin_unbanUserOperationSchema as unbanUserOperationSchema };
+}
+
+export { type AdminGetUserAccessQuery as A, type BanUserOperationRequest as B, type CreateUserOperationRequest as C, type DecideApprovalRequest as D, type ReadmitMembershipOperationRequest as R, type UnbanUserOperationRequest as U, admin as a, type AdminListPendingApprovalsQuery as b, type AdminListProjectUsersQuery as c, type AdminMutationEnvelope as d, type AdminMutationResponse as e, type AdminOperationResponseStatus as f, type AssignProjectRoleOperationRequest as g, type RevokeProjectAccessOperationRequest as h, type RevokeSessionOperationRequest as i, adminApprovalIdParamsSchema as j, adminGetUserAccessQuerySchema as k, adminListPendingApprovalsQuerySchema as l, adminListProjectUsersQuerySchema as m, adminMutationEnvelopeSchema as n, adminUserIdParamsSchema as o, assignProjectRoleOperationSchema as p, banUserOperationSchema as q, createUserOperationSchema as r, decideApprovalSchema as s, readmitMembershipOperationSchema as t, revokeProjectAccessOperationSchema as u, revokeSessionOperationSchema as v, unbanUserOperationSchema as w };

package/dist/admin.d.ts

@@ -0,0 +1,2 @@
+import 'zod';
+export { A as AdminGetUserAccessQuery, b as AdminListPendingApprovalsQuery, c as AdminListProjectUsersQuery, d as AdminMutationEnvelope, e as AdminMutationResponse, f as AdminOperationResponseStatus, g as AssignProjectRoleOperationRequest, B as BanUserOperationRequest, C as CreateUserOperationRequest, D as DecideApprovalRequest, R as ReadmitMembershipOperationRequest, h as RevokeProjectAccessOperationRequest, i as RevokeSessionOperationRequest, U as UnbanUserOperationRequest, j as adminApprovalIdParamsSchema, k as adminGetUserAccessQuerySchema, l as adminListPendingApprovalsQuerySchema, m as adminListProjectUsersQuerySchema, n as adminMutationEnvelopeSchema, o as adminUserIdParamsSchema, p as assignProjectRoleOperationSchema, q as banUserOperationSchema, r as createUserOperationSchema, s as decideApprovalSchema, t as readmitMembershipOperationSchema, u as revokeProjectAccessOperationSchema, v as revokeSessionOperationSchema, w as unbanUserOperationSchema } from './admin-DggLseAG.js';

package/dist/admin.js

@@ -0,0 +1,34 @@
+import {
+  adminApprovalIdParamsSchema,
+  adminGetUserAccessQuerySchema,
+  adminListPendingApprovalsQuerySchema,
+  adminListProjectUsersQuerySchema,
+  adminMutationEnvelopeSchema,
+  adminUserIdParamsSchema,
+  assignProjectRoleOperationSchema,
+  banUserOperationSchema,
+  createUserOperationSchema,
+  decideApprovalSchema,
+  readmitMembershipOperationSchema,
+  revokeProjectAccessOperationSchema,
+  revokeSessionOperationSchema,
+  unbanUserOperationSchema
+} from "./chunk-EQAB2XCS.js";
+import "./chunk-PZ5AY32C.js";
+export {
+  adminApprovalIdParamsSchema,
+  adminGetUserAccessQuerySchema,
+  adminListPendingApprovalsQuerySchema,
+  adminListProjectUsersQuerySchema,
+  adminMutationEnvelopeSchema,
+  adminUserIdParamsSchema,
+  assignProjectRoleOperationSchema,
+  banUserOperationSchema,
+  createUserOperationSchema,
+  decideApprovalSchema,
+  readmitMembershipOperationSchema,
+  revokeProjectAccessOperationSchema,
+  revokeSessionOperationSchema,
+  unbanUserOperationSchema
+};
+//# sourceMappingURL=admin.js.map

package/dist/admin.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/dist/chunk-35J5NTZH.js

@@ -0,0 +1,197 @@
+import {
+  membershipStatusSchema,
+  projectMembershipUserSchema,
+  projectRoleSummarySchema,
+  projectSummarySchema
+} from "./chunk-ENAO7AFV.js";
+import {
+  __export
+} from "./chunk-PZ5AY32C.js";
+
+// src/project-admin.ts
+var project_admin_exports = {};
+__export(project_admin_exports, {
+  adminOperationStatusSchema: () => adminOperationStatusSchema,
+  createProjectMembershipRequestSchema: () => createProjectMembershipRequestSchema,
+  listProjectAdminOperationsQuerySchema: () => listProjectAdminOperationsQuerySchema,
+  listProjectAuditLogsQuerySchema: () => listProjectAuditLogsQuerySchema,
+  listProjectMembershipsQuerySchema: () => listProjectMembershipsQuerySchema,
+  membershipAuditActionSchema: () => membershipAuditActionSchema,
+  membershipStatusSchema: () => membershipStatusSchema,
+  projectAccessResponseSchema: () => projectAccessResponseSchema,
+  projectAdminOperationApprovalSchema: () => projectAdminOperationApprovalSchema,
+  projectAdminOperationItemSchema: () => projectAdminOperationItemSchema,
+  projectAdminOperationListResponseSchema: () => projectAdminOperationListResponseSchema,
+  projectAuditLogItemSchema: () => projectAuditLogItemSchema,
+  projectAuditLogListResponseSchema: () => projectAuditLogListResponseSchema,
+  projectMembershipListItemSchema: () => projectMembershipListItemSchema,
+  projectMembershipListResponseSchema: () => projectMembershipListResponseSchema,
+  projectMembershipParamsSchema: () => projectMembershipParamsSchema,
+  projectMembershipResponseSchema: () => projectMembershipResponseSchema,
+  projectMembershipUserSchema: () => projectMembershipUserSchema,
+  projectRoleSummarySchema: () => projectRoleSummarySchema,
+  projectSlugParamsSchema: () => projectSlugParamsSchema,
+  projectSummarySchema: () => projectSummarySchema,
+  replaceProjectMembershipRolesRequestSchema: () => replaceProjectMembershipRolesRequestSchema
+});
+import { z } from "zod";
+var projectSlugParamsSchema = z.object({
+  slug: z.string().trim().min(1)
+});
+var projectMembershipParamsSchema = projectSlugParamsSchema.extend({
+  userId: z.string().trim().min(1)
+});
+var listProjectMembershipsQuerySchema = z.object({
+  limit: z.coerce.number().int().min(1).max(50).default(20),
+  cursor: z.string().trim().min(1).optional(),
+  status: membershipStatusSchema.optional(),
+  q: z.string().trim().min(1).optional()
+});
+var membershipAuditActionSchema = z.enum([
+  "CREATED",
+  "ROLES_REPLACED",
+  "SUSPENDED",
+  "REACTIVATED",
+  "REVOKED",
+  "READMITTED"
+]);
+var listProjectAuditLogsQuerySchema = z.object({
+  limit: z.coerce.number().int().min(1).max(50).default(20),
+  cursor: z.string().trim().min(1).optional(),
+  action: membershipAuditActionSchema.optional(),
+  targetUserId: z.string().trim().min(1).optional(),
+  membershipId: z.string().trim().min(1).optional()
+});
+var createProjectMembershipRequestSchema = z.object({
+  email: z.string().trim().pipe(z.email()),
+  roleCodes: z.array(z.string().trim().min(1)).min(1)
+});
+var replaceProjectMembershipRolesRequestSchema = z.object({
+  roleCodes: z.array(z.string().trim().min(1)).min(1)
+});
+var projectAccessResponseSchema = z.object({
+  project: projectSummarySchema,
+  access: z.object({
+    isMember: z.boolean(),
+    membershipId: z.string().nullable(),
+    status: membershipStatusSchema.nullable(),
+    roles: z.array(projectRoleSummarySchema),
+    isAdmin: z.boolean()
+  })
+});
+var projectMembershipResponseSchema = z.object({
+  membershipId: z.string(),
+  user: projectMembershipUserSchema,
+  project: projectSummarySchema,
+  status: membershipStatusSchema,
+  roles: z.array(projectRoleSummarySchema)
+});
+var projectMembershipListItemSchema = z.object({
+  membershipId: z.string(),
+  user: projectMembershipUserSchema,
+  status: membershipStatusSchema,
+  roles: z.array(projectRoleSummarySchema),
+  createdAt: z.iso.datetime(),
+  updatedAt: z.iso.datetime()
+});
+var projectMembershipListResponseSchema = z.object({
+  project: projectSummarySchema,
+  items: z.array(projectMembershipListItemSchema),
+  page: z.object({
+    nextCursor: z.string().nullable(),
+    hasMore: z.boolean(),
+    limit: z.number().int().min(1).max(50)
+  })
+});
+var projectAuditLogItemSchema = z.object({
+  id: z.string(),
+  action: membershipAuditActionSchema,
+  membershipId: z.string(),
+  actor: projectMembershipUserSchema,
+  target: projectMembershipUserSchema,
+  fromStatus: membershipStatusSchema.nullable(),
+  toStatus: membershipStatusSchema.nullable(),
+  fromRoleCodes: z.array(z.string()),
+  toRoleCodes: z.array(z.string()),
+  createdAt: z.iso.datetime()
+});
+var projectAuditLogListResponseSchema = z.object({
+  project: projectSummarySchema,
+  items: z.array(projectAuditLogItemSchema),
+  page: z.object({
+    nextCursor: z.string().nullable(),
+    hasMore: z.boolean(),
+    limit: z.number().int().min(1).max(50)
+  })
+});
+var adminOperationStatusSchema = z.enum([
+  "COMPLETED",
+  "PENDING_APPROVAL",
+  "DENIED",
+  "FAILED"
+]);
+var listProjectAdminOperationsQuerySchema = z.object({
+  limit: z.coerce.number().int().min(1).max(50).default(20),
+  cursor: z.string().trim().min(1).optional(),
+  status: adminOperationStatusSchema.optional(),
+  operationName: z.string().trim().min(1).optional()
+});
+var projectAdminOperationApprovalSchema = z.object({
+  approvalId: z.string(),
+  status: z.enum(["PENDING", "APPROVED", "REJECTED", "EXPIRED"]),
+  requestedByUserId: z.string().nullable(),
+  approvedByUserId: z.string().nullable(),
+  requestedAt: z.iso.datetime(),
+  decidedAt: z.iso.datetime().nullable(),
+  expiresAt: z.iso.datetime()
+});
+var projectAdminOperationItemSchema = z.object({
+  operationId: z.string(),
+  operationName: z.string(),
+  status: adminOperationStatusSchema,
+  reason: z.string().nullable(),
+  ticketRef: z.string().nullable(),
+  sourceChannel: z.string().nullable(),
+  operatorUserId: z.string().nullable(),
+  servicePrincipalId: z.string().nullable(),
+  targetUserId: z.string().nullable(),
+  targetSessionId: z.string().nullable(),
+  correlationId: z.string().nullable(),
+  policyVersion: z.string().nullable(),
+  errorCode: z.string().nullable(),
+  approval: projectAdminOperationApprovalSchema.nullable(),
+  createdAt: z.iso.datetime(),
+  updatedAt: z.iso.datetime()
+});
+var projectAdminOperationListResponseSchema = z.object({
+  project: projectSummarySchema,
+  items: z.array(projectAdminOperationItemSchema),
+  page: z.object({
+    nextCursor: z.string().nullable(),
+    hasMore: z.boolean(),
+    limit: z.number().int().min(1).max(50)
+  })
+});
+
+export {
+  projectSlugParamsSchema,
+  projectMembershipParamsSchema,
+  listProjectMembershipsQuerySchema,
+  membershipAuditActionSchema,
+  listProjectAuditLogsQuerySchema,
+  createProjectMembershipRequestSchema,
+  replaceProjectMembershipRolesRequestSchema,
+  projectAccessResponseSchema,
+  projectMembershipResponseSchema,
+  projectMembershipListItemSchema,
+  projectMembershipListResponseSchema,
+  projectAuditLogItemSchema,
+  projectAuditLogListResponseSchema,
+  adminOperationStatusSchema,
+  listProjectAdminOperationsQuerySchema,
+  projectAdminOperationApprovalSchema,
+  projectAdminOperationItemSchema,
+  projectAdminOperationListResponseSchema,
+  project_admin_exports
+};
+//# sourceMappingURL=chunk-35J5NTZH.js.map

package/dist/chunk-35J5NTZH.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/project-admin.ts"],"sourcesContent":["import { z } from 'zod';\n\nimport {\n  membershipStatusSchema,\n  projectMembershipUserSchema,\n  projectRoleSummarySchema,\n  projectSummarySchema,\n} from './shared.js';\n\n// Re-exported under the names the identity-service project-admin surface uses.\nexport { membershipStatusSchema, projectMembershipUserSchema, projectRoleSummarySchema, projectSummarySchema };\n\nexport const projectSlugParamsSchema = z.object({\n  slug: z.string().trim().min(1),\n});\n\nexport const projectMembershipParamsSchema = projectSlugParamsSchema.extend({\n  userId: z.string().trim().min(1),\n});\n\nexport const listProjectMembershipsQuerySchema = z.object({\n  limit: z.coerce.number().int().min(1).max(50).default(20),\n  cursor: z.string().trim().min(1).optional(),\n  status: membershipStatusSchema.optional(),\n  q: z.string().trim().min(1).optional(),\n});\n\nexport const membershipAuditActionSchema = z.enum([\n  'CREATED',\n  'ROLES_REPLACED',\n  'SUSPENDED',\n  'REACTIVATED',\n  'REVOKED',\n  'READMITTED',\n]);\n\nexport const listProjectAuditLogsQuerySchema = z.object({\n  limit: z.coerce.number().int().min(1).max(50).default(20),\n  cursor: z.string().trim().min(1).optional(),\n  action: membershipAuditActionSchema.optional(),\n  targetUserId: z.string().trim().min(1).optional(),\n  membershipId: z.string().trim().min(1).optional(),\n});\n\nexport const createProjectMembershipRequestSchema = z.object({\n  email: z.string().trim().pipe(z.email()),\n  roleCodes: z.array(z.string().trim().min(1)).min(1),\n});\n\nexport const replaceProjectMembershipRolesRequestSchema = z.object({\n  roleCodes: z.array(z.string().trim().min(1)).min(1),\n});\n\nexport const projectAccessResponseSchema = z.object({\n  project: projectSummarySchema,\n  access: z.object({\n    isMember: z.boolean(),\n    membershipId: z.string().nullable(),\n    status: membershipStatusSchema.nullable(),\n    roles: z.array(projectRoleSummarySchema),\n    isAdmin: z.boolean(),\n  }),\n});\n\nexport const projectMembershipResponseSchema = z.object({\n  membershipId: z.string(),\n  user: projectMembershipUserSchema,\n  project: projectSummarySchema,\n  status: membershipStatusSchema,\n  roles: z.array(projectRoleSummarySchema),\n});\n\nexport const projectMembershipListItemSchema = z.object({\n  membershipId: z.string(),\n  user: projectMembershipUserSchema,\n  status: membershipStatusSchema,\n  roles: z.array(projectRoleSummarySchema),\n  createdAt: z.iso.datetime(),\n  updatedAt: z.iso.datetime(),\n});\n\nexport const projectMembershipListResponseSchema = z.object({\n  project: projectSummarySchema,\n  items: z.array(projectMembershipListItemSchema),\n  page: z.object({\n    nextCursor: z.string().nullable(),\n    hasMore: z.boolean(),\n    limit: z.number().int().min(1).max(50),\n  }),\n});\n\nexport const projectAuditLogItemSchema = z.object({\n  id: z.string(),\n  action: membershipAuditActionSchema,\n  membershipId: z.string(),\n  actor: projectMembershipUserSchema,\n  target: projectMembershipUserSchema,\n  fromStatus: membershipStatusSchema.nullable(),\n  toStatus: membershipStatusSchema.nullable(),\n  fromRoleCodes: z.array(z.string()),\n  toRoleCodes: z.array(z.string()),\n  createdAt: z.iso.datetime(),\n});\n\nexport const projectAuditLogListResponseSchema = z.object({\n  project: projectSummarySchema,\n  items: z.array(projectAuditLogItemSchema),\n  page: z.object({\n    nextCursor: z.string().nullable(),\n    hasMore: z.boolean(),\n    limit: z.number().int().min(1).max(50),\n  }),\n});\n\nexport const adminOperationStatusSchema = z.enum([\n  'COMPLETED',\n  'PENDING_APPROVAL',\n  'DENIED',\n  'FAILED',\n]);\n\nexport const listProjectAdminOperationsQuerySchema = z.object({\n  limit: z.coerce.number().int().min(1).max(50).default(20),\n  cursor: z.string().trim().min(1).optional(),\n  status: adminOperationStatusSchema.optional(),\n  operationName: z.string().trim().min(1).optional(),\n});\n\nexport const projectAdminOperationApprovalSchema = z.object({\n  approvalId: z.string(),\n  status: z.enum(['PENDING', 'APPROVED', 'REJECTED', 'EXPIRED']),\n  requestedByUserId: z.string().nullable(),\n  approvedByUserId: z.string().nullable(),\n  requestedAt: z.iso.datetime(),\n  decidedAt: z.iso.datetime().nullable(),\n  expiresAt: z.iso.datetime(),\n});\n\nexport const projectAdminOperationItemSchema = z.object({\n  operationId: z.string(),\n  operationName: z.string(),\n  status: adminOperationStatusSchema,\n  reason: z.string().nullable(),\n  ticketRef: z.string().nullable(),\n  sourceChannel: z.string().nullable(),\n  operatorUserId: z.string().nullable(),\n  servicePrincipalId: z.string().nullable(),\n  targetUserId: z.string().nullable(),\n  targetSessionId: z.string().nullable(),\n  correlationId: z.string().nullable(),\n  policyVersion: z.string().nullable(),\n  errorCode: z.string().nullable(),\n  approval: projectAdminOperationApprovalSchema.nullable(),\n  createdAt: z.iso.datetime(),\n  updatedAt: z.iso.datetime(),\n});\n\nexport const projectAdminOperationListResponseSchema = z.object({\n  project: projectSummarySchema,\n  items: z.array(projectAdminOperationItemSchema),\n  page: z.object({\n    nextCursor: z.string().nullable(),\n    hasMore: z.boolean(),\n    limit: z.number().int().min(1).max(50),\n  }),\n});\n\nexport type ListProjectAdminOperationsQuery = z.infer<\n  typeof listProjectAdminOperationsQuerySchema\n>;\nexport type ProjectAdminOperationListResponse = z.infer<\n  typeof projectAdminOperationListResponseSchema\n>;\nexport type ProjectSlugParams = z.infer<typeof projectSlugParamsSchema>;\nexport type ProjectMembershipParams = z.infer<typeof projectMembershipParamsSchema>;\nexport type ListProjectMembershipsQuery = z.infer<typeof listProjectMembershipsQuerySchema>;\nexport type CreateProjectMembershipRequest = z.infer<typeof createProjectMembershipRequestSchema>;\nexport type ReplaceProjectMembershipRolesRequest = z.infer<\n  typeof replaceProjectMembershipRolesRequestSchema\n>;\nexport type ProjectAccessResponse = z.infer<typeof projectAccessResponseSchema>;\nexport type ProjectMembershipResponse = z.infer<typeof projectMembershipResponseSchema>;\nexport type ProjectMembershipListResponse = z.infer<typeof projectMembershipListResponseSchema>;\nexport type ListProjectAuditLogsQuery = z.infer<typeof listProjectAuditLogsQuerySchema>;\nexport type ProjectAuditLogListResponse = z.infer<typeof projectAuditLogListResponseSchema>;\n"],"mappings":";;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,SAAS,SAAS;AAYX,IAAM,0BAA0B,EAAE,OAAO;AAAA,EAC9C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC;AAC/B,CAAC;AAEM,IAAM,gCAAgC,wBAAwB,OAAO;AAAA,EAC1E,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC;AACjC,CAAC;AAEM,IAAM,oCAAoC,EAAE,OAAO;AAAA,EACxD,OAAO,EAAE,OAAO,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,QAAQ,EAAE;AAAA,EACxD,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AAAA,EAC1C,QAAQ,uBAAuB,SAAS;AAAA,EACxC,GAAG,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AACvC,CAAC;AAEM,IAAM,8BAA8B,EAAE,KAAK;AAAA,EAChD;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAEM,IAAM,kCAAkC,EAAE,OAAO;AAAA,EACtD,OAAO,EAAE,OAAO,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,QAAQ,EAAE;AAAA,EACxD,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AAAA,EAC1C,QAAQ,4BAA4B,SAAS;AAAA,EAC7C,cAAc,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AAAA,EAChD,cAAc,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AAClD,CAAC;AAEM,IAAM,uCAAuC,EAAE,OAAO;AAAA,EAC3D,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,CAAC;AAAA,EACvC,WAAW,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC;AACpD,CAAC;AAEM,IAAM,6CAA6C,EAAE,OAAO;AAAA,EACjE,WAAW,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC;AACpD,CAAC;AAEM,IAAM,8BAA8B,EAAE,OAAO;AAAA,EAClD,SAAS;AAAA,EACT,QAAQ,EAAE,OAAO;AAAA,IACf,UAAU,EAAE,QAAQ;AAAA,IACpB,cAAc,EAAE,OAAO,EAAE,SAAS;AAAA,IAClC,QAAQ,uBAAuB,SAAS;AAAA,IACxC,OAAO,EAAE,MAAM,wBAAwB;AAAA,IACvC,SAAS,EAAE,QAAQ;AAAA,EACrB,CAAC;AACH,CAAC;AAEM,IAAM,kCAAkC,EAAE,OAAO;AAAA,EACtD,cAAc,EAAE,OAAO;AAAA,EACvB,MAAM;AAAA,EACN,SAAS;AAAA,EACT,QAAQ;AAAA,EACR,OAAO,EAAE,MAAM,wBAAwB;AACzC,CAAC;AAEM,IAAM,kCAAkC,EAAE,OAAO;AAAA,EACtD,cAAc,EAAE,OAAO;AAAA,EACvB,MAAM;AAAA,EACN,QAAQ;AAAA,EACR,OAAO,EAAE,MAAM,wBAAwB;AAAA,EACvC,WAAW,EAAE,IAAI,SAAS;AAAA,EAC1B,WAAW,EAAE,IAAI,SAAS;AAC5B,CAAC;AAEM,IAAM,sCAAsC,EAAE,OAAO;AAAA,EAC1D,SAAS;AAAA,EACT,OAAO,EAAE,MAAM,+BAA+B;AAAA,EAC9C,MAAM,EAAE,OAAO;AAAA,IACb,YAAY,EAAE,OAAO,EAAE,SAAS;AAAA,IAChC,SAAS,EAAE,QAAQ;AAAA,IACnB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE,IAAI,EAAE;AAAA,EACvC,CAAC;AACH,CAAC;AAEM,IAAM,4BAA4B,EAAE,OAAO;AAAA,EAChD,IAAI,EAAE,OAAO;AAAA,EACb,QAAQ;AAAA,EACR,cAAc,EAAE,OAAO;AAAA,EACvB,OAAO;AAAA,EACP,QAAQ;AAAA,EACR,YAAY,uBAAuB,SAAS;AAAA,EAC5C,UAAU,uBAAuB,SAAS;AAAA,EAC1C,eAAe,EAAE,MAAM,EAAE,OAAO,CAAC;AAAA,EACjC,aAAa,EAAE,MAAM,EAAE,OAAO,CAAC;AAAA,EAC/B,WAAW,EAAE,IAAI,SAAS;AAC5B,CAAC;AAEM,IAAM,oCAAoC,EAAE,OAAO;AAAA,EACxD,SAAS;AAAA,EACT,OAAO,EAAE,MAAM,yBAAyB;AAAA,EACxC,MAAM,EAAE,OAAO;AAAA,IACb,YAAY,EAAE,OAAO,EAAE,SAAS;AAAA,IAChC,SAAS,EAAE,QAAQ;AAAA,IACnB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE,IAAI,EAAE;AAAA,EACvC,CAAC;AACH,CAAC;AAEM,IAAM,6BAA6B,EAAE,KAAK;AAAA,EAC/C;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAEM,IAAM,wCAAwC,EAAE,OAAO;AAAA,EAC5D,OAAO,EAAE,OAAO,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,QAAQ,EAAE;AAAA,EACxD,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AAAA,EAC1C,QAAQ,2BAA2B,SAAS;AAAA,EAC5C,eAAe,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AACnD,CAAC;AAEM,IAAM,sCAAsC,EAAE,OAAO;AAAA,EAC1D,YAAY,EAAE,OAAO;AAAA,EACrB,QAAQ,EAAE,KAAK,CAAC,WAAW,YAAY,YAAY,SAAS,CAAC;AAAA,EAC7D,mBAAmB,EAAE,OAAO,EAAE,SAAS;AAAA,EACvC,kBAAkB,EAAE,OAAO,EAAE,SAAS;AAAA,EACtC,aAAa,EAAE,IAAI,SAAS;AAAA,EAC5B,WAAW,EAAE,IAAI,SAAS,EAAE,SAAS;AAAA,EACrC,WAAW,EAAE,IAAI,SAAS;AAC5B,CAAC;AAEM,IAAM,kCAAkC,EAAE,OAAO;AAAA,EACtD,aAAa,EAAE,OAAO;AAAA,EACtB,eAAe,EAAE,OAAO;AAAA,EACxB,QAAQ;AAAA,EACR,QAAQ,EAAE,OAAO,EAAE,SAAS;AAAA,EAC5B,WAAW,EAAE,OAAO,EAAE,SAAS;AAAA,EAC/B,eAAe,EAAE,OAAO,EAAE,SAAS;AAAA,EACnC,gBAAgB,EAAE,OAAO,EAAE,SAAS;AAAA,EACpC,oBAAoB,EAAE,OAAO,EAAE,SAAS;AAAA,EACxC,cAAc,EAAE,OAAO,EAAE,SAAS;AAAA,EAClC,iBAAiB,EAAE,OAAO,EAAE,SAAS;AAAA,EACrC,eAAe,EAAE,OAAO,EAAE,SAAS;AAAA,EACnC,eAAe,EAAE,OAAO,EAAE,SAAS;AAAA,EACnC,WAAW,EAAE,OAAO,EAAE,SAAS;AAAA,EAC/B,UAAU,oCAAoC,SAAS;AAAA,EACvD,WAAW,EAAE,IAAI,SAAS;AAAA,EAC1B,WAAW,EAAE,IAAI,SAAS;AAC5B,CAAC;AAEM,IAAM,0CAA0C,EAAE,OAAO;AAAA,EAC9D,SAAS;AAAA,EACT,OAAO,EAAE,MAAM,+BAA+B;AAAA,EAC9C,MAAM,EAAE,OAAO;AAAA,IACb,YAAY,EAAE,OAAO,EAAE,SAAS;AAAA,IAChC,SAAS,EAAE,QAAQ;AAAA,IACnB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE,IAAI,EAAE;AAAA,EACvC,CAAC;AACH,CAAC;","names":[]}

package/dist/chunk-ENAO7AFV.js

@@ -0,0 +1,49 @@
+// src/shared.ts
+import { z } from "zod";
+var projectSummarySchema = z.object({
+  id: z.string(),
+  slug: z.string(),
+  name: z.string()
+});
+var projectRoleSummarySchema = z.object({
+  id: z.string(),
+  code: z.string(),
+  name: z.string()
+});
+var membershipStatusSchema = z.enum(["ACTIVE", "SUSPENDED", "REVOKED"]);
+var userStatusSchema = z.enum(["ACTIVE", "BANNED"]);
+var projectMembershipUserSchema = z.object({
+  id: z.string(),
+  email: z.string(),
+  displayName: z.string().nullable()
+});
+var apiErrorSchema = z.object({
+  error: z.object({
+    code: z.string(),
+    message: z.string(),
+    issues: z.array(z.unknown()).optional()
+  })
+});
+var KNOWN_API_ERROR_CODES = [
+  "VALIDATION_ERROR",
+  "AUTHENTICATION_REQUIRED",
+  "USER_BANNED",
+  "PROJECT_DISABLED",
+  "PROJECT_NOT_FOUND",
+  "PROJECT_ADMIN_REQUIRED",
+  "SERVICE_PRINCIPAL_AUTH_REQUIRED",
+  "SERVICE_PRINCIPAL_DISABLED",
+  "SERVICE_PRINCIPAL_PROJECT_FORBIDDEN",
+  "ADMIN_IDEMPOTENCY_KEY_REUSED"
+];
+
+export {
+  projectSummarySchema,
+  projectRoleSummarySchema,
+  membershipStatusSchema,
+  userStatusSchema,
+  projectMembershipUserSchema,
+  apiErrorSchema,
+  KNOWN_API_ERROR_CODES
+};
+//# sourceMappingURL=chunk-ENAO7AFV.js.map

package/dist/chunk-ENAO7AFV.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/shared.ts"],"sourcesContent":["import { z } from 'zod';\n\nexport const projectSummarySchema = z.object({\n  id: z.string(),\n  slug: z.string(),\n  name: z.string(),\n});\nexport type ProjectSummary = z.infer<typeof projectSummarySchema>;\n\nexport const projectRoleSummarySchema = z.object({\n  id: z.string(),\n  code: z.string(),\n  name: z.string(),\n});\nexport type ProjectRoleSummary = z.infer<typeof projectRoleSummarySchema>;\n\nexport const membershipStatusSchema = z.enum(['ACTIVE', 'SUSPENDED', 'REVOKED']);\nexport type MembershipStatus = z.infer<typeof membershipStatusSchema>;\n\nexport const userStatusSchema = z.enum(['ACTIVE', 'BANNED']);\nexport type UserStatus = z.infer<typeof userStatusSchema>;\n\nexport const projectMembershipUserSchema = z.object({\n  id: z.string(),\n  email: z.string(),\n  displayName: z.string().nullable(),\n});\nexport type ProjectMembershipUser = z.infer<typeof projectMembershipUserSchema>;\n\n/**\n * The JSON error envelope returned by identity-service on any failure:\n * `{ \"error\": { \"code\", \"message\", \"issues?\" } }`.\n */\nexport const apiErrorSchema = z.object({\n  error: z.object({\n    code: z.string(),\n    message: z.string(),\n    issues: z.array(z.unknown()).optional(),\n  }),\n});\nexport type ApiError = z.infer<typeof apiErrorSchema>;\n\n/** Stable error codes the surfaces may return (non-exhaustive, for ergonomics). */\nexport const KNOWN_API_ERROR_CODES = [\n  'VALIDATION_ERROR',\n  'AUTHENTICATION_REQUIRED',\n  'USER_BANNED',\n  'PROJECT_DISABLED',\n  'PROJECT_NOT_FOUND',\n  'PROJECT_ADMIN_REQUIRED',\n  'SERVICE_PRINCIPAL_AUTH_REQUIRED',\n  'SERVICE_PRINCIPAL_DISABLED',\n  'SERVICE_PRINCIPAL_PROJECT_FORBIDDEN',\n  'ADMIN_IDEMPOTENCY_KEY_REUSED',\n] as const;\nexport type KnownApiErrorCode = (typeof KNOWN_API_ERROR_CODES)[number];\n"],"mappings":";AAAA,SAAS,SAAS;AAEX,IAAM,uBAAuB,EAAE,OAAO;AAAA,EAC3C,IAAI,EAAE,OAAO;AAAA,EACb,MAAM,EAAE,OAAO;AAAA,EACf,MAAM,EAAE,OAAO;AACjB,CAAC;AAGM,IAAM,2BAA2B,EAAE,OAAO;AAAA,EAC/C,IAAI,EAAE,OAAO;AAAA,EACb,MAAM,EAAE,OAAO;AAAA,EACf,MAAM,EAAE,OAAO;AACjB,CAAC;AAGM,IAAM,yBAAyB,EAAE,KAAK,CAAC,UAAU,aAAa,SAAS,CAAC;AAGxE,IAAM,mBAAmB,EAAE,KAAK,CAAC,UAAU,QAAQ,CAAC;AAGpD,IAAM,8BAA8B,EAAE,OAAO;AAAA,EAClD,IAAI,EAAE,OAAO;AAAA,EACb,OAAO,EAAE,OAAO;AAAA,EAChB,aAAa,EAAE,OAAO,EAAE,SAAS;AACnC,CAAC;AAOM,IAAM,iBAAiB,EAAE,OAAO;AAAA,EACrC,OAAO,EAAE,OAAO;AAAA,IACd,MAAM,EAAE,OAAO;AAAA,IACf,SAAS,EAAE,OAAO;AAAA,IAClB,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,SAAS;AAAA,EACxC,CAAC;AACH,CAAC;AAIM,IAAM,wBAAwB;AAAA,EACnC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;","names":[]}