@enterprisestandard/react 0.0.5-beta.20251125.1 → 0.0.5-beta.20260114.1

package/dist/workload-token-store.d.ts

@@ -0,0 +1,187 @@
+/**
+ * Token caching for workload identity authentication.
+ *
+ * Token stores are optional but recommended for performance - they enable:
+ * - Token caching to avoid repeated token acquisition
+ * - Automatic token refresh before expiration
+ * - Reduced load on authorization servers
+ *
+ * ## Token Caching Strategy
+ *
+ * Unlike session stores for user authentication, workload token stores cache
+ * short-lived access tokens (typically 5 minutes) for service-to-service calls.
+ *
+ * **Default Behavior:**
+ * - Tokens cached with 5-minute TTL
+ * - Auto-refresh 60 seconds before expiration
+ * - Expired tokens automatically removed
+ *
+ * ## Performance Characteristics
+ *
+ * | Backend      | Lookup Time | Use Case                    |
+ * |--------------|-------------|----------------------------|
+ * | InMemory     | <0.00005ms  | Single-server deployments  |
+ * | Redis        | 1-2ms       | Multi-server deployments   |
+ * | Database     | 5-20ms      | Persistent token storage   |
+ *
+ * ## Example Usage
+ *
+ * ```typescript
+ * import { workload, InMemoryWorkloadTokenStore } from '@enterprisestandard/react/server';
+ *
+ * // With token caching
+ * const workloadAuth = workload({
+ *   // ... other config
+ *   token_store: new InMemoryWorkloadTokenStore(),
+ *   auto_refresh: true,  // Refresh before expiry
+ * });
+ *
+ * // Without token caching (fetch new token each time)
+ * const workloadAuth = workload({
+ *   // ... config without token_store
+ * });
+ * ```
+ */
+/**
+ * Cached workload token data.
+ *
+ * @template TExtended - Type-safe custom data that consumers can add to cached tokens
+ */
+export type CachedWorkloadToken<TExtended = object> = {
+    /**
+     * Workload identifier (typically SPIFFE ID).
+     * Used as the primary key for token lookup.
+     */
+    workload_id: string;
+    /**
+     * OAuth2 access token (Bearer token)
+     */
+    access_token: string;
+    /**
+     * Token type (always "Bearer" for OAuth2)
+     */
+    token_type: string;
+    /**
+     * OAuth2 scopes granted for this token
+     */
+    scope?: string;
+    /**
+     * Timestamp when the token expires.
+     * Used for automatic cleanup and refresh logic.
+     */
+    expires_at: Date;
+    /**
+     * Timestamp when the token was created/cached.
+     */
+    created_at: Date;
+    /**
+     * Optional refresh token (rarely used for workload identities)
+     */
+    refresh_token?: string;
+} & TExtended;
+/**
+ * Abstract interface for workload token storage backends.
+ *
+ * Consumers can implement this interface to use different storage backends:
+ * - Redis (recommended for multi-server deployments)
+ * - Database (PostgreSQL, MySQL, etc. for persistence)
+ * - Distributed cache (Memcached, etc.)
+ * - Custom solutions
+ *
+ * @template TExtended - Type-safe custom data that consumers can add to cached tokens
+ *
+ * @example
+ * ```typescript
+ * // Custom token cache data
+ * type MyTokenData = {
+ *   environment: string;
+ *   region: string;
+ * };
+ *
+ * // Implement custom store with Redis
+ * class RedisWorkloadTokenStore implements WorkloadTokenStore<MyTokenData> {
+ *   async set(token: CachedWorkloadToken<MyTokenData>): Promise<void> {
+ *     const ttl = Math.floor((token.expires_at.getTime() - Date.now()) / 1000);
+ *     await redis.setex(
+ *       `workload:token:${token.workload_id}`,
+ *       ttl,
+ *       JSON.stringify(token)
+ *     );
+ *   }
+ *
+ *   async get(workload_id: string): Promise<CachedWorkloadToken<MyTokenData> | null> {
+ *     const data = await redis.get(`workload:token:${workload_id}`);
+ *     if (!data) return null;
+ *     const token = JSON.parse(data);
+ *     // Convert date strings back to Date objects
+ *     token.expires_at = new Date(token.expires_at);
+ *     token.created_at = new Date(token.created_at);
+ *     return token;
+ *   }
+ *
+ *   // ... other methods
+ * }
+ * ```
+ */
+export interface WorkloadTokenStore<TExtended = object> {
+    /**
+     * Store or update a workload token in the cache.
+     *
+     * @param token - The token data to cache
+     */
+    set(token: CachedWorkloadToken<TExtended>): Promise<void>;
+    /**
+     * Retrieve a cached token by workload ID.
+     *
+     * @param workload_id - The workload identifier (e.g., SPIFFE ID)
+     * @returns The cached token if found and not expired, null otherwise
+     */
+    get(workload_id: string): Promise<CachedWorkloadToken<TExtended> | null>;
+    /**
+     * Delete a cached token by workload ID.
+     *
+     * Used when explicitly revoking tokens or clearing cache.
+     *
+     * @param workload_id - The workload identifier to remove
+     */
+    delete(workload_id: string): Promise<void>;
+    /**
+     * Check if a valid (non-expired) token exists for a workload.
+     *
+     * @param workload_id - The workload identifier to check
+     * @returns true if a valid token exists, false otherwise
+     */
+    isValid(workload_id: string): Promise<boolean>;
+    /**
+     * Remove all expired tokens from the cache.
+     *
+     * Should be called periodically to prevent memory leaks.
+     */
+    cleanup(): Promise<void>;
+}
+/**
+ * In-memory workload token store implementation using Maps.
+ *
+ * Suitable for:
+ * - Development and testing
+ * - Single-server deployments
+ * - Applications without high availability requirements
+ *
+ * NOT suitable for:
+ * - Multi-server deployments (tokens not shared across instances)
+ * - High availability scenarios (tokens lost on restart)
+ * - Production applications with distributed architecture
+ *
+ * For production multi-server deployments, implement WorkloadTokenStore with Redis.
+ *
+ * @template TExtended - Type-safe custom data that consumers can add to cached tokens
+ */
+export declare class InMemoryWorkloadTokenStore<TExtended = object> implements WorkloadTokenStore<TExtended> {
+    private tokens;
+    set(token: CachedWorkloadToken<TExtended>): Promise<void>;
+    get(workload_id: string): Promise<CachedWorkloadToken<TExtended> | null>;
+    delete(workload_id: string): Promise<void>;
+    isValid(workload_id: string): Promise<boolean>;
+    cleanup(): Promise<void>;
+}
+//# sourceMappingURL=workload-token-store.d.ts.map

package/dist/workload-token-store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"workload-token-store.d.ts","sourceRoot":"","sources":["../src/workload-token-store.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;AAEH;;;;GAIG;AACH,MAAM,MAAM,mBAAmB,CAAC,SAAS,GAAG,MAAM,IAAI;IACpD;;;OAGG;IACH,WAAW,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,YAAY,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;;OAGG;IACH,UAAU,EAAE,IAAI,CAAC;IAEjB;;OAEG;IACH,UAAU,EAAE,IAAI,CAAC;IAEjB;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,GAAG,SAAS,CAAC;AAEd;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;AACH,MAAM,WAAW,kBAAkB,CAAC,SAAS,GAAG,MAAM;IACpD;;;;OAIG;IACH,GAAG,CAAC,KAAK,EAAE,mBAAmB,CAAC,SAAS,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAE1D;;;;;OAKG;IACH,GAAG,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,mBAAmB,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC;IAEzE;;;;;;OAMG;IACH,MAAM,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAE3C;;;;;OAKG;IACH,OAAO,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAE/C;;;;OAIG;IACH,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CAC1B;AAED;;;;;;;;;;;;;;;;GAgBG;AACH,qBAAa,0BAA0B,CAAC,SAAS,GAAG,MAAM,CAAE,YAAW,kBAAkB,CAAC,SAAS,CAAC;IAClG,OAAO,CAAC,MAAM,CAAqD;IAE7D,GAAG,CAAC,KAAK,EAAE,mBAAmB,CAAC,SAAS,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAIzD,GAAG,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,mBAAmB,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC;IAaxE,MAAM,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAI1C,OAAO,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAK9C,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;CAQ/B"}

package/dist/workload.d.ts

@@ -0,0 +1,227 @@
+import type { EnterpriseStandard } from '.';
+import type { StandardSchemaV1 } from './types/standard-schema';
+import type { JWTAssertionClaims, TokenValidationResult, WorkloadTokenResponse } from './types/workload-schema';
+import { type WorkloadTokenStore } from './workload-token-store';
+/**
+ * Common fields shared across all workload authentication modes
+ */
+type WorkloadConfigBase = {
+    /**
+     * OAuth2 token endpoint URL
+     * REQUIRED for client role (token acquisition)
+     */
+    token_url?: string;
+    /**
+     * JWKS endpoint URL for public key retrieval
+     * REQUIRED for server role (token validation)
+     */
+    jwks_uri?: string;
+    /**
+     * Expected token issuer URL for validation
+     * RECOMMENDED for server role (token validation)
+     */
+    issuer?: string;
+    /**
+     * Target audience for tokens
+     */
+    audience?: string;
+    /**
+     * Default OAuth2 scopes (space-delimited)
+     */
+    scope?: string;
+    /**
+     * JWT assertion/token lifetime in seconds
+     * @default 300 (5 minutes)
+     */
+    token_lifetime?: number;
+    /**
+     * Refresh threshold in seconds (refresh token this many seconds before expiry)
+     * @default 60
+     */
+    refresh_threshold?: number;
+    /**
+     * Optional token store for caching access tokens
+     */
+    token_store?: WorkloadTokenStore;
+    /**
+     * Automatically refresh tokens before expiration
+     * @default true
+     */
+    auto_refresh?: boolean;
+    /**
+     * Optional RFC 7009 token revocation endpoint
+     */
+    revocation_endpoint?: string;
+    /**
+     * Optional handler defaults (merged with per-call overrides in `handler`)
+     */
+    tokenUrl?: string;
+    validateUrl?: string;
+    jwksUrl?: string;
+    refreshUrl?: string;
+    validation?: {
+        jwtAssertionClaims?: StandardSchemaV1<unknown, JWTAssertionClaims>;
+        tokenResponse?: StandardSchemaV1<unknown, WorkloadTokenResponse>;
+    };
+};
+/**
+ * JWT Bearer Grant (RFC 7523) Configuration
+ *
+ * Used for SPIFFE-style workload identities where services have their own
+ * cryptographic identity and sign their own JWT assertions.
+ *
+ * @example
+ * ```json
+ * {
+ *   "token_url": "https://auth.example.com/oauth/token",
+ *   "jwks_uri": "https://auth.example.com/.well-known/jwks.json",
+ *   "workload_id": "spiffe://trust-domain/ns/service",
+ *   "audience": "https://auth.example.com/oauth/token",
+ *   "private_key": "-----BEGIN PRIVATE KEY-----...",
+ *   "algorithm": "RS256"
+ * }
+ * ```
+ */
+export type JwtBearerWorkloadConfig = WorkloadConfigBase & {
+    /**
+     * Workload identifier (e.g., SPIFFE ID: spiffe://trust-domain/namespace/service)
+     * REQUIRED for JWT Bearer Grant mode
+     */
+    workload_id?: string;
+    /**
+     * PEM-encoded private key for signing JWT assertions
+     * REQUIRED for client role in JWT Bearer Grant mode
+     */
+    private_key?: string;
+    /**
+     * Key ID (kid) to include in JWT header for key rotation support
+     */
+    key_id?: string;
+    /**
+     * JWT signing algorithm
+     * @default 'RS256'
+     */
+    algorithm?: 'RS256' | 'RS384' | 'RS512' | 'ES256' | 'ES384' | 'ES512';
+};
+/**
+ * OAuth2 Client Credentials Configuration
+ *
+ * Standard OAuth2 Client Credentials Grant (RFC 6749 Section 4.4).
+ * Used with identity providers like Keycloak for service-to-service authentication.
+ *
+ * @example
+ * ```json
+ * {
+ *   "token_url": "https://sso.example.com/realms/myrealm/protocol/openid-connect/token",
+ *   "jwks_uri": "https://sso.example.com/realms/myrealm/protocol/openid-connect/certs",
+ *   "client_id": "my-service",
+ *   "client_secret": "secret-from-idp",
+ *   "issuer": "https://sso.example.com/realms/myrealm",
+ *   "scope": "api:read api:write"
+ * }
+ * ```
+ */
+export type ClientCredentialsWorkloadConfig = WorkloadConfigBase & {
+    /**
+     * OAuth2 client identifier registered with the authorization server
+     * REQUIRED for Client Credentials mode
+     */
+    client_id?: string;
+    /**
+     * OAuth2 client secret
+     * REQUIRED for Client Credentials mode
+     */
+    client_secret?: string;
+};
+/**
+ * Server-Only Workload Configuration
+ *
+ * Used when a service only needs to validate incoming workload tokens,
+ * not acquire tokens for outbound calls. Requires only jwks_uri for
+ * public key retrieval.
+ *
+ * @example
+ * ```json
+ * {
+ *   "jwks_uri": "https://sso.example.com/realms/myrealm/protocol/openid-connect/certs",
+ *   "issuer": "https://sso.example.com/realms/myrealm"
+ * }
+ * ```
+ */
+export type ServerOnlyWorkloadConfig = WorkloadConfigBase;
+/**
+ * Workload Identity Authentication Configuration
+ *
+ * Union type supporting multiple authentication modes. The mode is automatically
+ * detected based on which fields are present:
+ *
+ * - **JWT Bearer Grant**: Requires `workload_id` + `private_key`
+ * - **Client Credentials**: Requires `client_id` + `client_secret`
+ * - **Server-Only**: Only `jwks_uri` (and optionally `issuer`) for token validation
+ *
+ * The developer uses the same API regardless of mode - the library handles the details.
+ */
+export type WorkloadConfig = JwtBearerWorkloadConfig | ClientCredentialsWorkloadConfig | ServerOnlyWorkloadConfig;
+export type ESConfig = {
+    es?: EnterpriseStandard;
+};
+/**
+ * Workload Identity extracted from validated tokens
+ */
+export type WorkloadIdentity = {
+    /**
+     * Workload identifier (for JWT Bearer Grant tokens)
+     */
+    workload_id?: string;
+    /**
+     * Client identifier (for OAuth2 Client Credentials tokens)
+     */
+    client_id?: string;
+    /**
+     * Granted scopes
+     */
+    scope?: string;
+    /**
+     * Full JWT claims from the token
+     */
+    claims: JWTAssertionClaims;
+};
+/**
+ * Workload Identity Authentication Interface
+ */
+export type Workload = WorkloadConfig & {
+    getToken: (scope?: string) => Promise<string>;
+    refreshToken: () => Promise<WorkloadTokenResponse>;
+    generateJWTAssertion: (scope?: string) => Promise<string>;
+    revokeToken: (token: string) => Promise<void>;
+    validateToken: (token: string, validation?: WorkloadConfig['validation']) => Promise<TokenValidationResult>;
+    getWorkload: (request: Request) => Promise<WorkloadIdentity | undefined>;
+    parseJWT: (token: string, validation?: WorkloadConfig['validation']) => Promise<JWTAssertionClaims>;
+    handler: (request: Request) => Promise<Response>;
+};
+/**
+ * Create a workload identity authentication instance
+ *
+ * @param config - Workload authentication configuration
+ * @returns Workload authentication interface
+ *
+ * @example
+ * ```typescript
+ * import { workload } from '@enterprisestandard/react';
+ *
+ * const workloadAuth = workload({
+ *   token_url: 'https://auth.example.com/oauth/token',
+ *   jwks_uri: 'https://auth.example.com/.well-known/jwks.json',
+ *   workload_id: 'spiffe://trust-domain/ns/service',
+ *   audience: 'https://auth.example.com/oauth/token',
+ *   private_key: '-----BEGIN PRIVATE KEY-----...',
+ *   algorithm: 'RS256',
+ * });
+ *
+ * // Get access token
+ * const token = await workloadAuth.getToken('api:read api:write');
+ * ```
+ */
+export declare function workload(config: WorkloadConfig): Workload;
+export {};
+//# sourceMappingURL=workload.d.ts.map

package/dist/workload.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"workload.d.ts","sourceRoot":"","sources":["../src/workload.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,GAAG,CAAC;AAC5C,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAChE,OAAO,KAAK,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAGhH,OAAO,EAA8B,KAAK,kBAAkB,EAAE,MAAM,wBAAwB,CAAC;AAE7F;;GAEG;AACH,KAAK,kBAAkB,GAAG;IACxB;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;OAGG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;;OAGG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB;;;OAGG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B;;OAEG;IACH,WAAW,CAAC,EAAE,kBAAkB,CAAC;IAEjC;;;OAGG;IACH,YAAY,CAAC,EAAE,OAAO,CAAC;IAEvB;;OAEG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE;QACX,kBAAkB,CAAC,EAAE,gBAAgB,CAAC,OAAO,EAAE,kBAAkB,CAAC,CAAC;QACnE,aAAa,CAAC,EAAE,gBAAgB,CAAC,OAAO,EAAE,qBAAqB,CAAC,CAAC;KAClE,CAAC;CACH,CAAC;AAEF;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,MAAM,uBAAuB,GAAG,kBAAkB,GAAG;IACzD;;;OAGG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;;OAGG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;OAGG;IACH,SAAS,CAAC,EAAE,OAAO,GAAG,OAAO,GAAG,OAAO,GAAG,OAAO,GAAG,OAAO,GAAG,OAAO,CAAC;CACvE,CAAC;AAEF;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,MAAM,+BAA+B,GAAG,kBAAkB,GAAG;IACjE;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;OAGG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,CAAC;AAEF;;;;;;;;;;;;;;GAcG;AACH,MAAM,MAAM,wBAAwB,GAAG,kBAAkB,CAAC;AAE1D;;;;;;;;;;;GAWG;AACH,MAAM,MAAM,cAAc,GAAG,uBAAuB,GAAG,+BAA+B,GAAG,wBAAwB,CAAC;AA2BlH,MAAM,MAAM,QAAQ,GAAG;IACrB,EAAE,CAAC,EAAE,kBAAkB,CAAC;CACzB,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC7B;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,MAAM,EAAE,kBAAkB,CAAC;CAC5B,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,cAAc,GAAG;IAEtC,QAAQ,EAAE,CAAC,KAAK,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,CAAC,CAAC;IAC9C,YAAY,EAAE,MAAM,OAAO,CAAC,qBAAqB,CAAC,CAAC;IACnD,oBAAoB,EAAE,CAAC,KAAK,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,CAAC,CAAC;IAC1D,WAAW,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAG9C,aAAa,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,cAAc,CAAC,YAAY,CAAC,KAAK,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAC5G,WAAW,EAAE,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,gBAAgB,GAAG,SAAS,CAAC,CAAC;IACzE,QAAQ,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,cAAc,CAAC,YAAY,CAAC,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IAGpG,OAAO,EAAE,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAC;CAClD,CAAC;AA6DF;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,wBAAgB,QAAQ,CAAC,MAAM,EAAE,cAAc,GAAG,QAAQ,CAgsBzD"}

package/package.json

@@ -1,10 +1,9 @@
 {
   "name": "@enterprisestandard/react",
-  "version": "0.0.5-beta.20251125.1",
+  "version": "0.0.5-beta.20260114.1",
   "description": "Enterprise Standard React Components",
   "private": false,
   "main": "dist/index.js",
-  "scripts": {},
   "types": "./dist/index.d.ts",
   "exports": {
     ".": {

package/dist/enterprise-user.d.ts

@@ -1,126 +0,0 @@
-export interface EnterpriseUser {
-    schemas?: string[];
-    id?: string;
-    externalId?: string;
-    meta?: {
-        resourceType?: string;
-        created?: string;
-        lastModified?: string;
-        version?: string;
-        location?: string;
-    };
-    userName: string;
-    name: string;
-    fullName?: {
-        formatted?: string;
-        familyName?: string;
-        givenName?: string;
-        middleName?: string;
-        honorificPrefix?: string;
-        honorificSuffix?: string;
-    };
-    nickName?: string;
-    profileUrl?: string;
-    avatarUrl?: string;
-    title?: string;
-    userType?: string;
-    preferredLanguage?: string;
-    locale?: string;
-    timezone?: string;
-    active?: boolean;
-    password?: string;
-    email: string;
-    emails?: Array<{
-        value: string;
-        type?: string;
-        primary?: boolean;
-        display?: string;
-    }>;
-    phoneNumbers?: Array<{
-        value: string;
-        type?: string;
-        primary?: boolean;
-        display?: string;
-    }>;
-    ims?: Array<{
-        value: string;
-        type?: string;
-        primary?: boolean;
-        display?: string;
-    }>;
-    photos?: Array<{
-        value: string;
-        type?: string;
-        primary?: boolean;
-        display?: string;
-    }>;
-    addresses?: Array<{
-        formatted?: string;
-        streetAddress?: string;
-        locality?: string;
-        region?: string;
-        postalCode?: string;
-        country?: string;
-        type?: string;
-        primary?: boolean;
-    }>;
-    groups?: Array<{
-        value: string;
-        $ref?: string;
-        display?: string;
-        type?: string;
-    }>;
-    entitlements?: Array<{
-        value: string;
-        display?: string;
-        type?: string;
-        primary?: boolean;
-    }>;
-    roles?: Array<{
-        value: string;
-        display?: string;
-        type?: string;
-        primary?: boolean;
-    }>;
-    x509Certificates?: Array<{
-        value: string;
-        display?: string;
-        type?: string;
-        primary?: boolean;
-    }>;
-    employeeNumber?: string;
-    costCenter?: string;
-    organization?: string;
-    division?: string;
-    department?: string;
-    manager?: {
-        value: string;
-        $ref?: string;
-        displayName?: string;
-    };
-    sso?: {
-        profile: IdTokenClaims;
-        tenant: {
-            id: string;
-            name: string;
-        };
-        scope?: string;
-        tokenType: string;
-        sessionState?: string;
-        expires: Date;
-    };
-}
-export type IdTokenClaims = {
-    iss?: string;
-    aud?: string;
-    exp?: number;
-    iat?: number;
-    sub?: string;
-    sid?: string;
-    name?: string;
-    email?: string;
-    preferred_username?: string;
-    picture?: string;
-    [key: string]: unknown;
-};
-//# sourceMappingURL=enterprise-user.d.ts.map

package/dist/enterprise-user.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"enterprise-user.d.ts","sourceRoot":"","sources":["../src/enterprise-user.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,cAAc;IAE7B,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE;QACL,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE;QACT,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,eAAe,CAAC,EAAE,MAAM,CAAC;QACzB,eAAe,CAAC,EAAE,MAAM,CAAC;KAC1B,CAAC;IACF,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,KAAK,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;QAClB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,CAAC,CAAC;IACH,YAAY,CAAC,EAAE,KAAK,CAAC;QACnB,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;QAClB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,CAAC,CAAC;IACH,GAAG,CAAC,EAAE,KAAK,CAAC;QACV,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;QAClB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,CAAC,CAAC;IACH,MAAM,CAAC,EAAE,KAAK,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;QAClB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,CAAC,CAAC;IACH,SAAS,CAAC,EAAE,KAAK,CAAC;QAChB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC,CAAC;IACH,MAAM,CAAC,EAAE,KAAK,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;KACf,CAAC,CAAC;IACH,YAAY,CAAC,EAAE,KAAK,CAAC;QACnB,KAAK,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC,CAAC;IACH,KAAK,CAAC,EAAE,KAAK,CAAC;QACZ,KAAK,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC,CAAC;IACH,gBAAgB,CAAC,EAAE,KAAK,CAAC;QACvB,KAAK,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC,CAAC;IAGH,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE;QACR,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,CAAC;IAGF,GAAG,CAAC,EAAE;QACJ,OAAO,EAAE,aAAa,CAAC;QACvB,MAAM,EAAE;YACN,EAAE,EAAE,MAAM,CAAC;YACX,IAAI,EAAE,MAAM,CAAC;SACd,CAAC;QACF,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,SAAS,EAAE,MAAM,CAAC;QAClB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,OAAO,EAAE,IAAI,CAAC;KACf,CAAC;CACH;AAED,MAAM,MAAM,aAAa,GAAG;IAC1B,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB,CAAC"}

package/dist/oidc-schema.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"oidc-schema.d.ts","sourceRoot":"","sources":["../src/oidc-schema.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAE1D;;;GAGG;AACH,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,IAAI,EAAE,MAAM,CAAC;IAEb;;;OAGG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAE3B;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;OAGG;IACH,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,kBAAkB,CAAC,CAoHhH;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;;;GAIG;AACH,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,aAAa,CAAC,CAmJ5G;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;;;GAIG;AACH,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,aAAa,CAAC,CAsD5G"}

package/dist/scim-schema.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"scim-schema.d.ts","sourceRoot":"","sources":["../src/scim-schema.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAE1D;;;GAGG;AAEH;;GAEG;AACH,MAAM,WAAW,IAAI;IACnB;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB;;OAEG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED;;GAEG;AACH,MAAM,WAAW,KAAK;IACpB;;OAEG;IACH,KAAK,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B;;OAEG;IACH,KAAK,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,OAAO;IACtB;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,KAAK;IACpB;;OAEG;IACH,KAAK,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,IAAI;IACnB;;OAEG;IACH,KAAK,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B;;OAEG;IACH,KAAK,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IACd;;OAEG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,cAAc;IAC7B;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB;;OAEG;IACH,OAAO,CAAC,EAAE;QACR;;WAEG;QACH,KAAK,CAAC,EAAE,MAAM,CAAC;QACf;;WAEG;QACH,IAAI,CAAC,EAAE,MAAM,CAAC;QACd;;WAEG;QACH,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,IAAI;IACnB;;OAEG;IACH,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB;;OAEG;IACH,IAAI,CAAC,EAAE;QACL,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,CAAC;IACF;;OAEG;IACH,QAAQ,EAAE,MAAM,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,IAAI,CAAC;IACZ;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IACf;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;OAEG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;OAEG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB;;OAEG;IACH,MAAM,CAAC,EAAE,KAAK,EAAE,CAAC;IACjB;;OAEG;IACH,YAAY,CAAC,EAAE,WAAW,EAAE,CAAC;IAC7B;;OAEG;IACH,GAAG,CAAC,EAAE,KAAK,CAAC;QACV,KAAK,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC,CAAC;IACH;;OAEG;IACH,MAAM,CAAC,EAAE,KAAK,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC,CAAC;IACH;;OAEG;IACH,SAAS,CAAC,EAAE,OAAO,EAAE,CAAC;IACtB;;OAEG;IACH,MAAM,CAAC,EAAE,KAAK,EAAE,CAAC;IACjB;;OAEG;IACH,YAAY,CAAC,EAAE,KAAK,CAAC;QACnB,KAAK,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC,CAAC;IACH;;OAEG;IACH,KAAK,CAAC,EAAE,IAAI,EAAE,CAAC;IACf;;OAEG;IACH,gBAAgB,CAAC,EAAE,eAAe,EAAE,CAAC;IACrC;;OAEG;IACH,4DAA4D,CAAC,EAAE,cAAc,CAAC;IAC9E;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;CACpB;AAqYD;;;;GAIG;AACH,wBAAgB,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,CAAC,CAgG1F"}

package/dist/standard-schema.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"standard-schema.d.ts","sourceRoot":"","sources":["../src/standard-schema.ts"],"names":[],"mappings":"AAAA,sEAAsE;AACtE,MAAM,WAAW,gBAAgB,CAAC,KAAK,GAAG,OAAO,EAAE,MAAM,GAAG,KAAK;IAC/D,sCAAsC;IACtC,QAAQ,CAAC,WAAW,EAAE,gBAAgB,CAAC,KAAK,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;CAC7D;AAED,MAAM,CAAC,OAAO,WAAW,gBAAgB,CAAC;IACxC,gDAAgD;IAChD,UAAiB,KAAK,CAAC,KAAK,GAAG,OAAO,EAAE,MAAM,GAAG,KAAK;QACpD,0CAA0C;QAC1C,QAAQ,CAAC,OAAO,EAAE,CAAC,CAAC;QACpB,6CAA6C;QAC7C,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;QACxB,sCAAsC;QACtC,QAAQ,CAAC,QAAQ,EAAE,CAAC,KAAK,EAAE,OAAO,KAAK,MAAM,CAAC,MAAM,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;QAChF,iDAAiD;QACjD,QAAQ,CAAC,KAAK,CAAC,EAAE,KAAK,CAAC,KAAK,EAAE,MAAM,CAAC,GAAG,SAAS,CAAC;KACnD;IAED,qDAAqD;IACrD,KAAY,MAAM,CAAC,MAAM,IAAI,aAAa,CAAC,MAAM,CAAC,GAAG,aAAa,CAAC;IAEnE,mDAAmD;IACnD,UAAiB,aAAa,CAAC,MAAM;QACnC,8BAA8B;QAC9B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;QACvB,+BAA+B;QAC/B,QAAQ,CAAC,MAAM,CAAC,EAAE,SAAS,CAAC;KAC7B;IAED,gDAAgD;IAChD,UAAiB,aAAa;QAC5B,uCAAuC;QACvC,QAAQ,CAAC,MAAM,EAAE,aAAa,CAAC,KAAK,CAAC,CAAC;KACvC;IAED,iDAAiD;IACjD,UAAiB,KAAK;QACpB,sCAAsC;QACtC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;QACzB,qCAAqC;QACrC,QAAQ,CAAC,IAAI,CAAC,EAAE,aAAa,CAAC,WAAW,GAAG,WAAW,CAAC,GAAG,SAAS,CAAC;KACtE;IAED,+CAA+C;IAC/C,UAAiB,WAAW;QAC1B,2CAA2C;QAC3C,QAAQ,CAAC,GAAG,EAAE,WAAW,CAAC;KAC3B;IAED,2CAA2C;IAC3C,UAAiB,KAAK,CAAC,KAAK,GAAG,OAAO,EAAE,MAAM,GAAG,KAAK;QACpD,oCAAoC;QACpC,QAAQ,CAAC,KAAK,EAAE,KAAK,CAAC;QACtB,qCAAqC;QACrC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;KACzB;IAED,kDAAkD;IAClD,KAAY,UAAU,CAAC,MAAM,SAAS,gBAAgB,IAAI,WAAW,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IAE7G,mDAAmD;IACnD,KAAY,WAAW,CAAC,MAAM,SAAS,gBAAgB,IAAI,WAAW,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;CAChH"}