@foldspace-fe/casdoor-next-auth-kit 0.1.26 → 0.1.27

package/dist/{chunk-WNDID6YX.js → chunk-WPOURR7G.js}

@@ -659,13 +659,15 @@ function authConfigTemplate() {
   createLogoutHandler,
   createNextAuthOptions,
   createSignupRouteHandler,
+  decodeCasdoorAccessToken,
+  isGlobalAdminEmail,
   type AuthBusinessAdapter,
   type AuthKitConfig,
   type AuthPersistenceAdapter,
 } from '@foldspace-fe/casdoor-next-auth-kit';
-import { isGlobalAdminEmail } from '@foldspace-fe/casdoor-next-auth-kit';
 import { paymentSuccessHandler as billingPaymentSuccessHandler } from '@/lib/billing/payment-success';
 import { paymentFinishedHandler as billingPaymentFinishedHandler } from '@/lib/billing/payment-finished';
+import { syncUserRecord } from '@/lib/user/record';
 
 export function createAuthKitConfig(): AuthKitConfig {
   return {
@@ -687,12 +689,26 @@ export function createAuthKitConfig(): AuthKitConfig {
 export const authKitConfig = createAuthKitConfig();
 
 export const adapter: AuthBusinessAdapter = {
-  onUserSync: async (profile) => {
-    const email = profile.email ?? null;
-    const isAdmin = Boolean(profile.isAdmin) || isGlobalAdminEmail(email);
+  onUserSync: async (profile, tokens) => {
+    const accessToken = tokens.accessToken ?? tokens.access_token ?? '';
+    const decodedAccessToken = accessToken ? decodeCasdoorAccessToken(accessToken) : null;
+    const email =
+      profile.email ??
+      (typeof decodedAccessToken?.email === 'string' ? decodedAccessToken.email : null);
+    const isAdmin =
+      Boolean(profile.isAdmin) ||
+      Boolean(decodedAccessToken?.isAdmin) ||
+      isGlobalAdminEmail(email);
 
     return {
-      id: String(profile.id ?? profile.sub ?? email ?? 'casdoor-user'),
+      id: String(
+        profile.id ??
+          profile.sub ??
+          (typeof decodedAccessToken?.sub === 'string' ? decodedAccessToken.sub : null) ??
+          (typeof decodedAccessToken?.id === 'string' ? decodedAccessToken.id : null) ??
+          email ??
+          'casdoor-user',
+      ),
       name: profile.name ?? profile.displayName ?? null,
       email,
       image: profile.picture ?? profile.avatarUrl ?? null,
@@ -707,12 +723,7 @@ export const adapter: AuthBusinessAdapter = {
 
 export const persistence: AuthPersistenceAdapter = {
   async syncAuthUser(user) {
-    console.info('[casdoor-next-auth-kit] syncAuthUser received user', {
-      id: user.id,
-      email: user.email,
-      isAdmin: user.isAdmin,
-      role: user.role,
-    });
+    await syncUserRecord(user);
   },
   async findAuthUser() {
     return null;
@@ -918,4 +929,4 @@ export {
   commerceProxyRouteTemplate,
   envTemplate
 };
-//# sourceMappingURL=chunk-WNDID6YX.js.map
+//# sourceMappingURL=chunk-WPOURR7G.js.map

package/dist/{chunk-WNDID6YX.js.map → chunk-WPOURR7G.js.map}

@@ -1 +1 @@
-{"version":3,"sources":["../src/prisma/schema-template.ts","../src/core/env.ts","../src/cli/fs.ts","../src/cli/templates.ts"],"sourcesContent":["import type { PrismaSchemaFieldDefinition, PrismaSchemaModelDefinition } from '../types';\n\nexport const AUTH_PRISMA_SCHEMA_MODELS: PrismaSchemaModelDefinition[] = [\n  {\n    name: 'AuthUser',\n    description: 'Shared authentication user record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'email', type: 'String?', attributes: ['@unique'] },\n      { name: 'name', type: 'String?' },\n      { name: 'image', type: 'String?' },\n      { name: 'isAdmin', type: 'Boolean', attributes: ['@default(false)'] },\n      { name: 'role', type: 'String', attributes: ['@default(\"user\")'] },\n      { name: 'tokenBalance', type: 'Int', attributes: ['@default(0)'] },\n      { name: 'isVip', type: 'Boolean', attributes: ['@default(false)'] },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([email])'],\n  },\n  {\n    name: 'AuthMembership',\n    description: 'Subscription membership snapshot',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String', attributes: ['@unique'] },\n      { name: 'plan', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'startsAt', type: 'DateTime?' },\n      { name: 'endsAt', type: 'DateTime?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])'],\n  },\n  {\n    name: 'AuthOrder',\n    description: 'Commerce order record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'kind', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'amount', type: 'Int' },\n      { name: 'currency', type: 'String', attributes: ['@default(\"CNY\")'] },\n      { name: 'payload', type: 'Json?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])'],\n  },\n  {\n    name: 'AuthSubscription',\n    description: 'Commerce subscription record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'productId', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'interval', type: 'String' },\n      { name: 'startsAt', type: 'DateTime?' },\n      { name: 'endsAt', type: 'DateTime?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])', '@@index([productId])'],\n  },\n  {\n    name: 'AuthInvoice',\n    description: 'Commerce invoice record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'orderId', type: 'String?' },\n      { name: 'invoiceNo', type: 'String', attributes: ['@unique'] },\n      { name: 'status', type: 'String' },\n      { name: 'amount', type: 'Int' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])', '@@index([orderId])'],\n  },\n];\n\nfunction renderField(field: PrismaSchemaFieldDefinition): string {\n  const attributes = field.attributes?.length ? ` ${field.attributes.join(' ')}` : '';\n  return `  ${field.name} ${field.type}${attributes}`;\n}\n\nfunction renderModel(model: PrismaSchemaModelDefinition): string {\n  const lines = [\n    `/// ${model.description}`,\n    `model ${model.name} {`,\n    ...model.fields.map(renderField),\n  ];\n\n  if (model.blockAttributes?.length) {\n    lines.push(...model.blockAttributes.map((attribute) => `  ${attribute}`));\n  }\n\n  lines.push('}');\n  return lines.join('\\n');\n}\n\nexport function buildAuthPrismaSchemaTemplate(models: PrismaSchemaModelDefinition[] = AUTH_PRISMA_SCHEMA_MODELS): string {\n  return [\n    '// generated by @foldspace-fe/casdoor-next-auth-kit',\n    '// merge these models into the host Prisma schema if you want a dedicated auth module',\n    '',\n    ...models.map(renderModel),\n  ].join('\\n\\n');\n}\n","import type { ManagedEnvFile, ManagedEnvVariableDefinition } from '../types';\n\nexport const AUTH_KIT_ENV_FILES: ManagedEnvFile[] = ['.env', '.env.local', '.env.production', '.env.example'];\n\nexport const AUTH_KIT_ENV_VARIABLES: ManagedEnvVariableDefinition[] = [\n  {\n    key: 'APP_URL',\n    description: '站点对外公开地址',\n    example: 'https://your-domain.com',\n    local: 'http://localhost:5177',\n    production: 'https://your-domain.com',\n  },\n  {\n    key: 'NEXTAUTH_URL',\n    description: 'NextAuth 回调地址',\n    example: 'http://localhost:5177',\n    local: 'http://localhost:5177',\n    production: 'https://your-domain.com',\n  },\n  {\n    key: 'NEXTAUTH_SECRET',\n    description: 'NextAuth JWT secret',\n    example: 'replace-with-a-random-secret',\n    local: 'replace-with-a-random-secret',\n    production: 'replace-with-a-random-secret',\n  },\n  {\n    key: 'GLOBAL_ADMIN_EMAILS',\n    description: '全局管理员邮箱，逗号分隔',\n    example: 'admin@example.com',\n    local: 'admin@example.com',\n    production: 'admin@example.com',\n  },\n  {\n    key: 'AUTH_DEBUG',\n    description: '是否开启认证调试日志',\n    example: 'false',\n    local: 'false',\n    production: 'false',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_SERVER_URL',\n    description: 'Casdoor 服务地址',\n    example: 'https://auth.example.com',\n    local: 'https://auth.example.com',\n    production: 'https://auth.example.com',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_CLIENT_ID',\n    description: 'Casdoor client id',\n    example: 'your-casdoor-client-id',\n    local: 'your-casdoor-client-id',\n    production: 'your-casdoor-client-id',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_APP_NAME',\n    description: 'Casdoor app name',\n    example: 'your-app-name',\n    local: 'your-app-name',\n    production: 'your-app-name',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME',\n    description: 'Casdoor organization name',\n    example: 'your-org-name',\n    local: 'your-org-name',\n    production: 'your-org-name',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_REDIRECT_PATH',\n    description: 'Casdoor OAuth 回调路径',\n    example: '/callback',\n    local: '/callback',\n    production: '/callback',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_SIGNIN_PATH',\n    description: 'Casdoor authorize 路径',\n    example: '/login/oauth/authorize',\n    local: '/login/oauth/authorize',\n    production: '/login/oauth/authorize',\n  },\n  {\n    key: 'NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH',\n    description: '注销后跳转路径，默认首页',\n    example: '/',\n    local: '/',\n    production: '/',\n  },\n  {\n    key: 'NEXT_PUBLIC_BILLING_PURCHASABLE_IDS',\n    description: 'Billing 可购买项白名单，逗号分隔',\n    example: 'membership-monthly,credits-50',\n    local: 'membership-monthly,credits-50',\n    production: 'membership-monthly,credits-50',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_STATIC_ORIGIN',\n    description: 'Casdoor 静态资源 origin',\n    example: 'https://casdoor-static.foldspace.cn',\n    local: 'https://casdoor-static.foldspace.cn',\n    production: 'https://casdoor-static.foldspace.cn',\n  },\n  {\n    key: 'CASDOOR_CLIENT_SECRET',\n    description: 'Casdoor client secret',\n    example: 'your-casdoor-client-secret',\n    local: 'your-casdoor-client-secret',\n    production: 'your-casdoor-client-secret',\n  },\n  {\n    key: 'BILLING_PAYMENT_SUCCESS_DEBUG',\n    description: '是否打印 payment-success 调试日志',\n    example: 'false',\n    local: 'false',\n    production: 'false',\n  },\n];\n\nfunction stringifyEnvValue(value: string): string {\n  if (value === '') {\n    return '\"\"';\n  }\n\n  if (/^[A-Za-z0-9_./:-]+$/.test(value)) {\n    return value;\n  }\n\n  return JSON.stringify(value);\n}\n\nfunction stripQuotes(value: string): string {\n  const trimmed = value.trim();\n  if (\n    (trimmed.startsWith('\"') && trimmed.endsWith('\"')) ||\n    (trimmed.startsWith(\"'\") && trimmed.endsWith(\"'\"))\n  ) {\n    return trimmed.slice(1, -1);\n  }\n\n  return trimmed;\n}\n\nfunction parseEnvKeys(content: string): Set<string> {\n  const keys = new Set<string>();\n  for (const line of content.split(/\\r?\\n/)) {\n    const trimmed = line.trim();\n    if (!trimmed || trimmed.startsWith('#')) {\n      continue;\n    }\n\n    const separatorIndex = trimmed.indexOf('=');\n    if (separatorIndex === -1) {\n      continue;\n    }\n\n    const key = trimmed.slice(0, separatorIndex).trim();\n    if (key) {\n      keys.add(key);\n    }\n  }\n  return keys;\n}\n\nexport function readManagedEnvValue(content: string, key: string): string | null {\n  for (const line of content.split(/\\r?\\n/)) {\n    const trimmed = line.trim();\n    if (!trimmed || trimmed.startsWith('#')) {\n      continue;\n    }\n\n    const separatorIndex = trimmed.indexOf('=');\n    if (separatorIndex === -1) {\n      continue;\n    }\n\n    const currentKey = trimmed.slice(0, separatorIndex).trim();\n    if (currentKey !== key) {\n      continue;\n    }\n\n    const rawValue = trimmed.slice(separatorIndex + 1).trim();\n    return stripQuotes(rawValue);\n  }\n\n  return null;\n}\n\nexport function getManagedEnvValue(definition: ManagedEnvVariableDefinition, file: ManagedEnvFile): string {\n  if (file === '.env.example') {\n    return definition.example;\n  }\n  if (file === '.env.production') {\n    return definition.production ?? definition.example;\n  }\n  if (file === '.env.local') {\n    return definition.local ?? definition.example;\n  }\n  return definition.base ?? definition.local ?? definition.production ?? definition.example;\n}\n\nexport function buildManagedEnvTemplate(file: ManagedEnvFile, existingContent = ''): string {\n  const existingKeys = parseEnvKeys(existingContent);\n  const lines: string[] = existingContent.trimEnd() ? existingContent.trimEnd().split(/\\r?\\n/) : [];\n  const missing = AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key));\n\n  if (missing.length === 0 && existingContent) {\n    return existingContent;\n  }\n\n  if (lines.length > 0) {\n    lines.push('');\n  }\n\n  lines.push(`# Casdoor Next Auth Kit managed values for ${file}`);\n  for (const definition of missing) {\n    const value = getManagedEnvValue(definition, file);\n    lines.push(`# ${definition.description}`);\n    lines.push(`${definition.key}=${stringifyEnvValue(value)}`);\n    lines.push('');\n  }\n\n  while (lines.length > 0 && lines[lines.length - 1] === '') {\n    lines.pop();\n  }\n\n  return `${lines.join('\\n')}\\n`;\n}\n\nexport function getMissingManagedEnvKeys(content: string): string[] {\n  const existingKeys = parseEnvKeys(content);\n  return AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key)).map(\n    (definition) => definition.key,\n  );\n}\n\nexport function sanitizeExistingEnvContent(content: string): string {\n  return stripQuotes(content);\n}\n","    import fs from 'node:fs';\n    import path from 'node:path';\n\n    export const generatedHeader = '// generated by @foldspace-fe/casdoor-next-auth-kit\\n';\n    export const customBegin = '// @foldspace-fe/casdoor-next-auth-kit:begin custom';\n    export const customEnd = '// @foldspace-fe/casdoor-next-auth-kit:end custom';\n\nexport function ensureDir(filePath: string) {\n  fs.mkdirSync(path.dirname(filePath), { recursive: true });\n}\n\nexport function writeGeneratedFile(filePath: string, content: string) {\n  ensureDir(filePath);\n  fs.writeFileSync(filePath, generatedHeader + content, 'utf8');\n}\n\nexport function writeTextFile(filePath: string, content: string) {\n  ensureDir(filePath);\n  fs.writeFileSync(filePath, content, 'utf8');\n}\n\nexport function exists(filePath: string) {\n  return fs.existsSync(filePath);\n}\n\n    export function read(filePath: string) {\n      return fs.readFileSync(filePath, 'utf8');\n    }\n\nexport function preserveCustomBlock(existing: string, next: string) {\n      const begin = existing.indexOf(customBegin);\n      const end = existing.indexOf(customEnd);\n      if (begin === -1 || end === -1 || end <= begin) return next;\n      const custom = existing.slice(begin, end + customEnd.length);\n      const targetBegin = next.indexOf(customBegin);\n      const targetEnd = next.indexOf(customEnd);\n      if (targetBegin === -1 || targetEnd === -1 || targetEnd <= targetBegin) return next;\n  return next.slice(0, targetBegin) + custom + next.slice(targetEnd + customEnd.length);\n}\n\nexport function removePath(filePath: string) {\n  fs.rmSync(filePath, { force: true, recursive: true });\n}\n","import { customBegin, customEnd } from './fs.ts';\nimport { buildAuthPrismaSchemaTemplate } from '../prisma/schema-template.ts';\nimport { AUTH_KIT_ENV_FILES, buildManagedEnvTemplate } from '../core/env.ts';\n\nexport function authLoginRouteTemplate() {\n  return `import { loginHandler } from '../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = loginHandler;\n`;\n}\n\nexport function authSignupRouteTemplate() {\n  return `import { signupHandler } from '../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = signupHandler;\n`;\n}\n\nexport function authorizeRouteTemplate() {\n  return `import { authorizeHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = authorizeHandler;\n`;\n}\n\nexport function signupAuthorizeRouteTemplate() {\n  return `import { authorizeHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = authorizeHandler;\n`;\n}\n\nexport function callbackRouteTemplate() {\n  return `import { callbackHandler } from '../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = callbackHandler;\n`;\n}\n\nexport function logoutRouteTemplate() {\n  return `import { logoutHandler } from '../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = logoutHandler;\n`;\n}\n\nexport function callbackErrorPageTemplate() {\n  return `import { ClearDomainCookiesButton } from './clear-domain-cookies-button';\n\nexport const dynamic = 'force-dynamic';\n\nexport default async function CallbackErrorPage({\n  searchParams,\n}: {\n  searchParams: Promise<{ title?: string; message?: string; details?: string }>;\n}) {\n  const params = await searchParams;\n\n  return (\n    <main\n      style={{\n        minHeight: '100dvh',\n        display: 'flex',\n        alignItems: 'center',\n        justifyContent: 'center',\n        padding: '20px 16px',\n        background:\n          'radial-gradient(circle at top, rgba(99, 102, 241, 0.12) 0, rgba(99, 102, 241, 0) 38%), linear-gradient(180deg, #f8fafc 0%, #eef2ff 100%)',\n      }}\n    >\n      <section\n        style={{\n          width: 'min(100%, 400px)',\n          borderRadius: 28,\n          padding: '24px 20px',\n          boxSizing: 'border-box',\n          background: 'rgba(255, 255, 255, 0.96)',\n          border: '1px solid rgba(148, 163, 184, 0.2)',\n          boxShadow: '0 22px 52px rgba(15, 23, 42, 0.12)',\n          textAlign: 'center',\n          backdropFilter: 'blur(10px)',\n        }}\n      >\n        <div\n          style={{\n            width: 52,\n            height: 52,\n            margin: '0 auto 14px',\n            display: 'grid',\n            placeItems: 'center',\n            borderRadius: 18,\n            background: 'linear-gradient(135deg, rgba(239, 68, 68, 0.15), rgba(249, 115, 22, 0.1))',\n            color: '#b91c1c',\n            fontSize: 28,\n            lineHeight: 1,\n          }}\n          aria-hidden=\"true\"\n        >\n          !\n        </div>\n        <div\n          style={{\n            display: 'inline-flex',\n            alignItems: 'center',\n            justifyContent: 'center',\n            marginBottom: 12,\n            padding: '6px 12px',\n            borderRadius: 9999,\n            background: 'rgba(254, 226, 226, 0.9)',\n            color: '#b91c1c',\n            fontSize: 13,\n            fontWeight: 600,\n            letterSpacing: '0.04em',\n          }}\n        >\n          认证失败\n        </div>\n        <h2 style={{ margin: 0, fontSize: 24, lineHeight: 1.2, color: '#0f172a' }}>{params.title ?? 'Callback Error'}</h2>\n        <p style={{ margin: '12px 0 0', color: '#334155', lineHeight: 1.6 }}>{params.message ?? 'Unknown callback failure.'}</p>\n        {params.details ? (\n          <pre\n            style={{\n              margin: '14px 0 0',\n              maxHeight: 140,\n              overflow: 'auto',\n              padding: 14,\n              borderRadius: 18,\n              textAlign: 'left',\n              whiteSpace: 'pre-wrap',\n              wordBreak: 'break-word',\n              background: '#f8fafc',\n              color: '#0f172a',\n              border: '1px solid rgba(148, 163, 184, 0.18)',\n              fontSize: 13,\n              lineHeight: 1.6,\n            }}\n          >\n            {params.details}\n          </pre>\n        ) : null}\n${customBegin}\n        <div style={{ display: 'flex', flexDirection: 'column', gap: 10, marginTop: 20 }}>\n        <ClearDomainCookiesButton />\n          <a href=\"/\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>返回首页</a>\n          <a href=\"/auth/login\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>重新登录</a>\n          <a href=\"/auth/signup\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>去注册</a>\n        </div>\n${customEnd}\n      </section>\n    </main>\n  );\n}\n`;\n}\n\nexport function callbackErrorClearCookiesButtonTemplate() {\n  return `'use client';\n\nimport { useState } from 'react';\n\nconst AUTH_COOKIE_NAMES = [\n  'auth_origin',\n  'auth_redirect',\n  'oauth_state',\n  'pkce_code_verifier',\n  'next-auth.session-token',\n  '__Secure-next-auth.session-token',\n  'next-auth.csrf-token',\n  '__Secure-next-auth.csrf-token',\n  '__Host-next-auth.csrf-token',\n];\n\nfunction getPathCandidates(pathname: string): string[] {\n  const normalized = pathname.startsWith('/') ? pathname : '/' + pathname;\n  const segments = normalized.split('/').filter(Boolean);\n  const paths = new Set<string>(['/']);\n\n  let current = '';\n  for (const segment of segments) {\n    current += '/' + segment;\n    paths.add(current);\n  }\n\n  return [...paths];\n}\n\nfunction getDomainCandidates(hostname: string): string[] {\n  const normalized = hostname.toLowerCase();\n  if (\n    normalized === 'localhost' ||\n    normalized.endsWith('.localhost') ||\n    /^\\\\d+\\\\.\\\\d+\\\\.\\\\d+\\\\.\\\\d+$/.test(normalized) ||\n    /^\\\\[[^\\\\]]+\\\\]$/.test(normalized)\n  ) {\n    return [];\n  }\n\n  const parts = normalized.split('.');\n  if (parts.length < 2) {\n    return [];\n  }\n\n  const domains = new Set<string>();\n  for (let index = 0; index < parts.length - 1; index++) {\n    const suffix = parts.slice(index).join('.');\n    domains.add(suffix);\n    domains.add('.' + suffix);\n  }\n\n  return [...domains];\n}\n\nfunction expireCookie(name: string, path: string, domain?: string) {\n  const pieces = [\n    name + '=',\n    'Max-Age=0',\n    'Expires=Thu, 01 Jan 1970 00:00:00 GMT',\n    'Path=' + path,\n    'SameSite=Lax',\n  ];\n\n  if (domain) {\n    pieces.push('Domain=' + domain);\n  }\n\n  if (window.location.protocol === 'https:') {\n    pieces.push('Secure');\n  }\n\n  document.cookie = pieces.join('; ');\n}\n\n${customBegin}\nexport function ClearDomainCookiesButton() {\n  const [cleared, setCleared] = useState(false);\n\n  const handleClick = () => {\n    if (typeof document === 'undefined' || typeof window === 'undefined') {\n      return;\n    }\n\n    const names = new Set<string>(AUTH_COOKIE_NAMES);\n    for (const entry of document.cookie.split(';')) {\n      const [rawName] = entry.trim().split('=');\n      if (rawName) {\n        names.add(rawName);\n      }\n    }\n\n    const pathCandidates = getPathCandidates(window.location.pathname);\n    const domainCandidates = getDomainCandidates(window.location.hostname);\n\n    for (const name of names) {\n      for (const path of pathCandidates) {\n        expireCookie(name, path);\n        for (const domain of domainCandidates) {\n          expireCookie(name, path, domain);\n        }\n      }\n    }\n\n    setCleared(true);\n  };\n\n  return (\n    <button\n      type=\"button\"\n      onClick={handleClick}\n      disabled={cleared}\n      style={{\n        display: 'inline-flex',\n        width: '100%',\n        alignItems: 'center',\n        justifyContent: 'center',\n        minHeight: 44,\n        padding: '0 16px',\n        boxSizing: 'border-box',\n        borderRadius: 9999,\n        border: '1px solid rgba(148, 163, 184, 0.35)',\n        color: '#0f172a',\n        background: cleared ? 'rgba(220, 252, 231, 0.92)' : 'rgba(248, 250, 252, 0.9)',\n        cursor: cleared ? 'default' : 'pointer',\n      }}\n    >\n      {cleared ? '已清空' : '清空当前域 Cookie'}\n    </button>\n  );\n}\n${customEnd}\n`;\n}\n\nexport function authConfigTemplate() {\n  return `import {\n  createCallbackHandler,\n  createCasdoorApiProxyHandler,\n  createCasdoorCommerceProxyHandler,\n  createAuthorizeRouteHandler,\n  createLoginRouteHandler,\n  createLogoutHandler,\n  createNextAuthOptions,\n  createSignupRouteHandler,\n  type AuthBusinessAdapter,\n  type AuthKitConfig,\n  type AuthPersistenceAdapter,\n} from '@foldspace-fe/casdoor-next-auth-kit';\nimport { isGlobalAdminEmail } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { paymentSuccessHandler as billingPaymentSuccessHandler } from '@/lib/billing/payment-success';\nimport { paymentFinishedHandler as billingPaymentFinishedHandler } from '@/lib/billing/payment-finished';\n\nexport function createAuthKitConfig(): AuthKitConfig {\n  return {\n    appUrl: process.env.APP_URL || '',\n    nextauthSecret: process.env.NEXTAUTH_SECRET || 'dev-nextauth-secret',\n    logoutRedirectPath: process.env.NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH || '/',\n    casdoor: {\n      serverUrl: process.env.NEXT_PUBLIC_CASDOOR_SERVER_URL || process.env.CASDOOR_SERVER_URL || '',\n      clientId: process.env.NEXT_PUBLIC_CASDOOR_CLIENT_ID || process.env.CASDOOR_CLIENT_ID || '',\n      clientSecret: process.env.CASDOOR_CLIENT_SECRET || '',\n      appName: process.env.NEXT_PUBLIC_CASDOOR_APP_NAME || '',\n      organizationName: process.env.NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME || '',\n      redirectPath: process.env.NEXT_PUBLIC_CASDOOR_REDIRECT_PATH || '/callback',\n      signinPath: process.env.NEXT_PUBLIC_CASDOOR_SIGNIN_PATH || '/login/oauth/authorize',\n    },\n  };\n}\n\nexport const authKitConfig = createAuthKitConfig();\n\nexport const adapter: AuthBusinessAdapter = {\n  onUserSync: async (profile) => {\n    const email = profile.email ?? null;\n    const isAdmin = Boolean(profile.isAdmin) || isGlobalAdminEmail(email);\n\n    return {\n      id: String(profile.id ?? profile.sub ?? email ?? 'casdoor-user'),\n      name: profile.name ?? profile.displayName ?? null,\n      email,\n      image: profile.picture ?? profile.avatarUrl ?? null,\n      isAdmin,\n      role: isAdmin ? 'admin' : 'user',\n      tokenBalance: 2580,\n      isVip: true,\n    };\n  },\n  isAdminEmail: isGlobalAdminEmail,\n};\n\nexport const persistence: AuthPersistenceAdapter = {\n  async syncAuthUser(user) {\n    console.info('[casdoor-next-auth-kit] syncAuthUser received user', {\n      id: user.id,\n      email: user.email,\n      isAdmin: user.isAdmin,\n      role: user.role,\n    });\n  },\n  async findAuthUser() {\n    return null;\n  },\n};\n\nexport const paymentSuccessHandler = billingPaymentSuccessHandler;\nexport const paymentFinishedHandler = billingPaymentFinishedHandler;\n\nexport const loginHandler = createLoginRouteHandler(authKitConfig);\nexport const signupHandler = createSignupRouteHandler(authKitConfig);\nexport const authorizeHandler = createAuthorizeRouteHandler(authKitConfig);\nexport const callbackHandler = createCallbackHandler({\n  config: authKitConfig,\n  adapter,\n  persistence,\n});\nexport const logoutHandler = createLogoutHandler(authKitConfig);\nexport const authOptions = createNextAuthOptions({\n  config: authKitConfig,\n  adapter,\n  persistence,\n});\nexport const apiProxyHandler = createCasdoorApiProxyHandler(authKitConfig, '/auth/api', '/api');\nexport const commerceProxyHandler = createCasdoorCommerceProxyHandler(authKitConfig, '/auth/api/commerce', '/api/commerce');\n`;\n}\n\nexport function nextAuthRouteTemplate() {\n  return `import NextAuth from 'next-auth';\nimport { createNextAuthOptions } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { adapter, authKitConfig, persistence } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nconst handler = NextAuth(\n  createNextAuthOptions({\n    config: authKitConfig,\n    adapter,\n    persistence,\n  }),\n);\n\nexport const GET = handler;\nexport const POST = handler;\n`;\n}\n\nexport function paymentSuccessRouteTemplate() {\n  return `import { createBillingPaymentSuccessRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { authKitConfig, paymentSuccessHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nexport const GET = createBillingPaymentSuccessRouteHandler({\n  appUrl: authKitConfig.appUrl,\n  fallbackRedirect: '/auth/payment/finished',\n  handler: paymentSuccessHandler,\n  phase: 'success',\n});\n`;\n}\n\nexport function paymentFinishedRouteTemplate() {\n  return `import { createBillingPaymentFinishedRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { authKitConfig, paymentFinishedHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nexport const GET = createBillingPaymentFinishedRouteHandler({\n  appUrl: authKitConfig.appUrl,\n  fallbackRedirect: '/',\n  handler: paymentFinishedHandler,\n  phase: 'finished',\n});\n`;\n}\n\nexport function billingPaymentSuccessHandlerTemplate() {\n  return `import type { BillingPaymentSuccessHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';\nimport { resolveBillingOrderRedirect } from './order-redirect';\n\n${customBegin}\nconst paymentSuccessHandlerImpl: BillingPaymentSuccessHandler = async (context) => {\n  const redirectTarget = resolveBillingOrderRedirect(context.orderId || context.paymentId);\n  console.info('[casdoor-next-auth-kit] payment success callback received', {\n    paymentId: context.paymentId,\n    orderId: context.orderId,\n    status: context.status,\n    redirectTo: context.redirectTo,\n    redirectTarget,\n  });\n  return;\n};\n${customEnd}\n\nexport const paymentSuccessHandler: BillingPaymentSuccessHandler = paymentSuccessHandlerImpl;\n`;\n}\n\nexport function billingPaymentFinishedHandlerTemplate() {\n  return `import type { BillingPaymentFinishedHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';\nimport { resolveBillingOrderRedirect } from './order-redirect';\n\n${customBegin}\nconst paymentFinishedHandlerImpl: BillingPaymentFinishedHandler = async (context) => {\n  const redirectTarget = resolveBillingOrderRedirect(context.orderId || context.paymentId);\n  console.info('[casdoor-next-auth-kit] payment finished callback received', {\n    paymentId: context.paymentId,\n    orderId: context.orderId,\n    status: context.status,\n    redirectTo: context.redirectTo,\n    redirectTarget,\n  });\n  return;\n};\n${customEnd}\n\nexport const paymentFinishedHandler: BillingPaymentFinishedHandler = paymentFinishedHandlerImpl;\n`;\n}\n\nexport function billingOrderRedirectTemplate() {\n  return `export function resolveBillingOrderRedirect(orderIdOrPaymentId?: string | null): string | null {\n  if (!orderIdOrPaymentId) {\n    return null;\n  }\n\n  return null;\n}\n`;\n}\n\n    export function authIndexHtmlTemplate() {\n      return `export { AUTH_INDEX_HTML, createAuthIndexHtml } from '@foldspace-fe/casdoor-next-auth-kit';\n`;\n    }\n\n    export function prismaSchemaTemplate() {\n      return buildAuthPrismaSchemaTemplate();\n    }\n\nexport function apiProxyRouteTemplate() {\n  return `import { apiProxyHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = apiProxyHandler;\nexport const HEAD = apiProxyHandler;\nexport const POST = apiProxyHandler;\nexport const PUT = apiProxyHandler;\nexport const PATCH = apiProxyHandler;\nexport const DELETE = apiProxyHandler;\nexport const OPTIONS = apiProxyHandler;\n`;\n}\n\nexport function commerceProxyRouteTemplate() {\n  return `import { commerceProxyHandler } from '../../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = commerceProxyHandler;\nexport const HEAD = commerceProxyHandler;\nexport const POST = commerceProxyHandler;\nexport const PUT = commerceProxyHandler;\nexport const PATCH = commerceProxyHandler;\nexport const DELETE = commerceProxyHandler;\nexport const OPTIONS = commerceProxyHandler;\n`;\n}\n\n    export function envTemplate(file: typeof AUTH_KIT_ENV_FILES[number], existingContent = '') {\n      return buildManagedEnvTemplate(file, existingContent);\n    }\n"],"mappings":";AAEO,IAAM,4BAA2D;AAAA,EACtE;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,SAAS,MAAM,WAAW,YAAY,CAAC,SAAS,EAAE;AAAA,MAC1D,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,MAChC,EAAE,MAAM,SAAS,MAAM,UAAU;AAAA,MACjC,EAAE,MAAM,WAAW,MAAM,WAAW,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACpE,EAAE,MAAM,QAAQ,MAAM,UAAU,YAAY,CAAC,kBAAkB,EAAE;AAAA,MACjE,EAAE,MAAM,gBAAgB,MAAM,OAAO,YAAY,CAAC,aAAa,EAAE;AAAA,MACjE,EAAE,MAAM,SAAS,MAAM,WAAW,YAAY,CAAC,iBAAiB,EAAE;AAAA,MAClE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,kBAAkB;AAAA,EACtC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,UAAU,YAAY,CAAC,SAAS,EAAE;AAAA,MAC1D,EAAE,MAAM,QAAQ,MAAM,SAAS;AAAA,MAC/B,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,YAAY,MAAM,YAAY;AAAA,MACtC,EAAE,MAAM,UAAU,MAAM,YAAY;AAAA,MACpC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,mBAAmB;AAAA,EACvC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,QAAQ,MAAM,SAAS;AAAA,MAC/B,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,UAAU,MAAM,MAAM;AAAA,MAC9B,EAAE,MAAM,YAAY,MAAM,UAAU,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACpE,EAAE,MAAM,WAAW,MAAM,QAAQ;AAAA,MACjC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,mBAAmB;AAAA,EACvC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,aAAa,MAAM,SAAS;AAAA,MACpC,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,YAAY,MAAM,SAAS;AAAA,MACnC,EAAE,MAAM,YAAY,MAAM,YAAY;AAAA,MACtC,EAAE,MAAM,UAAU,MAAM,YAAY;AAAA,MACpC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,qBAAqB,sBAAsB;AAAA,EAC/D;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,WAAW,MAAM,UAAU;AAAA,MACnC,EAAE,MAAM,aAAa,MAAM,UAAU,YAAY,CAAC,SAAS,EAAE;AAAA,MAC7D,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,UAAU,MAAM,MAAM;AAAA,MAC9B,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,qBAAqB,oBAAoB;AAAA,EAC7D;AACF;AAEA,SAAS,YAAY,OAA4C;AAC/D,QAAM,aAAa,MAAM,YAAY,SAAS,IAAI,MAAM,WAAW,KAAK,GAAG,CAAC,KAAK;AACjF,SAAO,KAAK,MAAM,IAAI,IAAI,MAAM,IAAI,GAAG,UAAU;AACnD;AAEA,SAAS,YAAY,OAA4C;AAC/D,QAAM,QAAQ;AAAA,IACZ,OAAO,MAAM,WAAW;AAAA,IACxB,SAAS,MAAM,IAAI;AAAA,IACnB,GAAG,MAAM,OAAO,IAAI,WAAW;AAAA,EACjC;AAEA,MAAI,MAAM,iBAAiB,QAAQ;AACjC,UAAM,KAAK,GAAG,MAAM,gBAAgB,IAAI,CAAC,cAAc,KAAK,SAAS,EAAE,CAAC;AAAA,EAC1E;AAEA,QAAM,KAAK,GAAG;AACd,SAAO,MAAM,KAAK,IAAI;AACxB;AAEO,SAAS,8BAA8B,SAAwC,2BAAmC;AACvH,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,IACA,GAAG,OAAO,IAAI,WAAW;AAAA,EAC3B,EAAE,KAAK,MAAM;AACf;;;AC7GO,IAAM,qBAAuC,CAAC,QAAQ,cAAc,mBAAmB,cAAc;AAErG,IAAM,yBAAyD;AAAA,EACpE;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AACF;AAEA,SAAS,kBAAkB,OAAuB;AAChD,MAAI,UAAU,IAAI;AAChB,WAAO;AAAA,EACT;AAEA,MAAI,sBAAsB,KAAK,KAAK,GAAG;AACrC,WAAO;AAAA,EACT;AAEA,SAAO,KAAK,UAAU,KAAK;AAC7B;AAEA,SAAS,YAAY,OAAuB;AAC1C,QAAM,UAAU,MAAM,KAAK;AAC3B,MACG,QAAQ,WAAW,GAAG,KAAK,QAAQ,SAAS,GAAG,KAC/C,QAAQ,WAAW,GAAG,KAAK,QAAQ,SAAS,GAAG,GAChD;AACA,WAAO,QAAQ,MAAM,GAAG,EAAE;AAAA,EAC5B;AAEA,SAAO;AACT;AAEA,SAAS,aAAa,SAA8B;AAClD,QAAM,OAAO,oBAAI,IAAY;AAC7B,aAAW,QAAQ,QAAQ,MAAM,OAAO,GAAG;AACzC,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,CAAC,WAAW,QAAQ,WAAW,GAAG,GAAG;AACvC;AAAA,IACF;AAEA,UAAM,iBAAiB,QAAQ,QAAQ,GAAG;AAC1C,QAAI,mBAAmB,IAAI;AACzB;AAAA,IACF;AAEA,UAAM,MAAM,QAAQ,MAAM,GAAG,cAAc,EAAE,KAAK;AAClD,QAAI,KAAK;AACP,WAAK,IAAI,GAAG;AAAA,IACd;AAAA,EACF;AACA,SAAO;AACT;AAEO,SAAS,oBAAoB,SAAiB,KAA4B;AAC/E,aAAW,QAAQ,QAAQ,MAAM,OAAO,GAAG;AACzC,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,CAAC,WAAW,QAAQ,WAAW,GAAG,GAAG;AACvC;AAAA,IACF;AAEA,UAAM,iBAAiB,QAAQ,QAAQ,GAAG;AAC1C,QAAI,mBAAmB,IAAI;AACzB;AAAA,IACF;AAEA,UAAM,aAAa,QAAQ,MAAM,GAAG,cAAc,EAAE,KAAK;AACzD,QAAI,eAAe,KAAK;AACtB;AAAA,IACF;AAEA,UAAM,WAAW,QAAQ,MAAM,iBAAiB,CAAC,EAAE,KAAK;AACxD,WAAO,YAAY,QAAQ;AAAA,EAC7B;AAEA,SAAO;AACT;AAEO,SAAS,mBAAmB,YAA0C,MAA8B;AACzG,MAAI,SAAS,gBAAgB;AAC3B,WAAO,WAAW;AAAA,EACpB;AACA,MAAI,SAAS,mBAAmB;AAC9B,WAAO,WAAW,cAAc,WAAW;AAAA,EAC7C;AACA,MAAI,SAAS,cAAc;AACzB,WAAO,WAAW,SAAS,WAAW;AAAA,EACxC;AACA,SAAO,WAAW,QAAQ,WAAW,SAAS,WAAW,cAAc,WAAW;AACpF;AAEO,SAAS,wBAAwB,MAAsB,kBAAkB,IAAY;AAC1F,QAAM,eAAe,aAAa,eAAe;AACjD,QAAM,QAAkB,gBAAgB,QAAQ,IAAI,gBAAgB,QAAQ,EAAE,MAAM,OAAO,IAAI,CAAC;AAChG,QAAM,UAAU,uBAAuB,OAAO,CAAC,eAAe,CAAC,aAAa,IAAI,WAAW,GAAG,CAAC;AAE/F,MAAI,QAAQ,WAAW,KAAK,iBAAiB;AAC3C,WAAO;AAAA,EACT;AAEA,MAAI,MAAM,SAAS,GAAG;AACpB,UAAM,KAAK,EAAE;AAAA,EACf;AAEA,QAAM,KAAK,8CAA8C,IAAI,EAAE;AAC/D,aAAW,cAAc,SAAS;AAChC,UAAM,QAAQ,mBAAmB,YAAY,IAAI;AACjD,UAAM,KAAK,KAAK,WAAW,WAAW,EAAE;AACxC,UAAM,KAAK,GAAG,WAAW,GAAG,IAAI,kBAAkB,KAAK,CAAC,EAAE;AAC1D,UAAM,KAAK,EAAE;AAAA,EACf;AAEA,SAAO,MAAM,SAAS,KAAK,MAAM,MAAM,SAAS,CAAC,MAAM,IAAI;AACzD,UAAM,IAAI;AAAA,EACZ;AAEA,SAAO,GAAG,MAAM,KAAK,IAAI,CAAC;AAAA;AAC5B;AAEO,SAAS,yBAAyB,SAA2B;AAClE,QAAM,eAAe,aAAa,OAAO;AACzC,SAAO,uBAAuB,OAAO,CAAC,eAAe,CAAC,aAAa,IAAI,WAAW,GAAG,CAAC,EAAE;AAAA,IACtF,CAAC,eAAe,WAAW;AAAA,EAC7B;AACF;AAEO,SAAS,2BAA2B,SAAyB;AAClE,SAAO,YAAY,OAAO;AAC5B;;;AC9OI,OAAO,QAAQ;AACf,OAAO,UAAU;AAEV,IAAM,kBAAkB;AACxB,IAAM,cAAc;AACpB,IAAM,YAAY;AAEtB,SAAS,UAAU,UAAkB;AAC1C,KAAG,UAAU,KAAK,QAAQ,QAAQ,GAAG,EAAE,WAAW,KAAK,CAAC;AAC1D;AAEO,SAAS,mBAAmB,UAAkB,SAAiB;AACpE,YAAU,QAAQ;AAClB,KAAG,cAAc,UAAU,kBAAkB,SAAS,MAAM;AAC9D;AAEO,SAAS,cAAc,UAAkB,SAAiB;AAC/D,YAAU,QAAQ;AAClB,KAAG,cAAc,UAAU,SAAS,MAAM;AAC5C;AAEO,SAAS,OAAO,UAAkB;AACvC,SAAO,GAAG,WAAW,QAAQ;AAC/B;AAEW,SAAS,KAAK,UAAkB;AACrC,SAAO,GAAG,aAAa,UAAU,MAAM;AACzC;AAEG,SAAS,oBAAoB,UAAkB,MAAc;AAC9D,QAAM,QAAQ,SAAS,QAAQ,WAAW;AAC1C,QAAM,MAAM,SAAS,QAAQ,SAAS;AACtC,MAAI,UAAU,MAAM,QAAQ,MAAM,OAAO,MAAO,QAAO;AACvD,QAAM,SAAS,SAAS,MAAM,OAAO,MAAM,UAAU,MAAM;AAC3D,QAAM,cAAc,KAAK,QAAQ,WAAW;AAC5C,QAAM,YAAY,KAAK,QAAQ,SAAS;AACxC,MAAI,gBAAgB,MAAM,cAAc,MAAM,aAAa,YAAa,QAAO;AACnF,SAAO,KAAK,MAAM,GAAG,WAAW,IAAI,SAAS,KAAK,MAAM,YAAY,UAAU,MAAM;AACtF;AAEO,SAAS,WAAW,UAAkB;AAC3C,KAAG,OAAO,UAAU,EAAE,OAAO,MAAM,WAAW,KAAK,CAAC;AACtD;;;ACtCO,SAAS,yBAAyB;AACvC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,0BAA0B;AACxC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,yBAAyB;AACvC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,sBAAsB;AACpC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,4BAA4B;AAC1C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EA6FP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOX,SAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAMX;AAEO,SAAS,0CAA0C;AACxD,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EA4EP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAwDX,SAAS;AAAA;AAEX;AAEO,SAAS,qBAAqB;AACnC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAyFT;AAEO,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAkBT;AAEO,SAAS,8BAA8B;AAC5C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAaT;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAaT;AAEO,SAAS,uCAAuC;AACrD,SAAO;AAAA;AAAA;AAAA,EAGP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYX,SAAS;AAAA;AAAA;AAAA;AAIX;AAEO,SAAS,wCAAwC;AACtD,SAAO;AAAA;AAAA;AAAA,EAGP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYX,SAAS;AAAA;AAAA;AAAA;AAIX;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAQT;AAEW,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAET;AAEO,SAAS,uBAAuB;AACrC,SAAO,8BAA8B;AACvC;AAEG,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEO,SAAS,6BAA6B;AAC3C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEW,SAAS,YAAY,MAAyC,kBAAkB,IAAI;AACzF,SAAO,wBAAwB,MAAM,eAAe;AACtD;","names":[]}
+{"version":3,"sources":["../src/prisma/schema-template.ts","../src/core/env.ts","../src/cli/fs.ts","../src/cli/templates.ts"],"sourcesContent":["import type { PrismaSchemaFieldDefinition, PrismaSchemaModelDefinition } from '../types';\n\nexport const AUTH_PRISMA_SCHEMA_MODELS: PrismaSchemaModelDefinition[] = [\n  {\n    name: 'AuthUser',\n    description: 'Shared authentication user record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'email', type: 'String?', attributes: ['@unique'] },\n      { name: 'name', type: 'String?' },\n      { name: 'image', type: 'String?' },\n      { name: 'isAdmin', type: 'Boolean', attributes: ['@default(false)'] },\n      { name: 'role', type: 'String', attributes: ['@default(\"user\")'] },\n      { name: 'tokenBalance', type: 'Int', attributes: ['@default(0)'] },\n      { name: 'isVip', type: 'Boolean', attributes: ['@default(false)'] },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([email])'],\n  },\n  {\n    name: 'AuthMembership',\n    description: 'Subscription membership snapshot',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String', attributes: ['@unique'] },\n      { name: 'plan', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'startsAt', type: 'DateTime?' },\n      { name: 'endsAt', type: 'DateTime?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])'],\n  },\n  {\n    name: 'AuthOrder',\n    description: 'Commerce order record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'kind', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'amount', type: 'Int' },\n      { name: 'currency', type: 'String', attributes: ['@default(\"CNY\")'] },\n      { name: 'payload', type: 'Json?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])'],\n  },\n  {\n    name: 'AuthSubscription',\n    description: 'Commerce subscription record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'productId', type: 'String' },\n      { name: 'status', type: 'String' },\n      { name: 'interval', type: 'String' },\n      { name: 'startsAt', type: 'DateTime?' },\n      { name: 'endsAt', type: 'DateTime?' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])', '@@index([productId])'],\n  },\n  {\n    name: 'AuthInvoice',\n    description: 'Commerce invoice record',\n    fields: [\n      { name: 'id', type: 'String', attributes: ['@id', '@default(cuid())'] },\n      { name: 'userId', type: 'String' },\n      { name: 'orderId', type: 'String?' },\n      { name: 'invoiceNo', type: 'String', attributes: ['@unique'] },\n      { name: 'status', type: 'String' },\n      { name: 'amount', type: 'Int' },\n      { name: 'createdAt', type: 'DateTime', attributes: ['@default(now())'] },\n      { name: 'updatedAt', type: 'DateTime', attributes: ['@updatedAt'] },\n    ],\n    blockAttributes: ['@@index([userId])', '@@index([orderId])'],\n  },\n];\n\nfunction renderField(field: PrismaSchemaFieldDefinition): string {\n  const attributes = field.attributes?.length ? ` ${field.attributes.join(' ')}` : '';\n  return `  ${field.name} ${field.type}${attributes}`;\n}\n\nfunction renderModel(model: PrismaSchemaModelDefinition): string {\n  const lines = [\n    `/// ${model.description}`,\n    `model ${model.name} {`,\n    ...model.fields.map(renderField),\n  ];\n\n  if (model.blockAttributes?.length) {\n    lines.push(...model.blockAttributes.map((attribute) => `  ${attribute}`));\n  }\n\n  lines.push('}');\n  return lines.join('\\n');\n}\n\nexport function buildAuthPrismaSchemaTemplate(models: PrismaSchemaModelDefinition[] = AUTH_PRISMA_SCHEMA_MODELS): string {\n  return [\n    '// generated by @foldspace-fe/casdoor-next-auth-kit',\n    '// merge these models into the host Prisma schema if you want a dedicated auth module',\n    '',\n    ...models.map(renderModel),\n  ].join('\\n\\n');\n}\n","import type { ManagedEnvFile, ManagedEnvVariableDefinition } from '../types';\n\nexport const AUTH_KIT_ENV_FILES: ManagedEnvFile[] = ['.env', '.env.local', '.env.production', '.env.example'];\n\nexport const AUTH_KIT_ENV_VARIABLES: ManagedEnvVariableDefinition[] = [\n  {\n    key: 'APP_URL',\n    description: '站点对外公开地址',\n    example: 'https://your-domain.com',\n    local: 'http://localhost:5177',\n    production: 'https://your-domain.com',\n  },\n  {\n    key: 'NEXTAUTH_URL',\n    description: 'NextAuth 回调地址',\n    example: 'http://localhost:5177',\n    local: 'http://localhost:5177',\n    production: 'https://your-domain.com',\n  },\n  {\n    key: 'NEXTAUTH_SECRET',\n    description: 'NextAuth JWT secret',\n    example: 'replace-with-a-random-secret',\n    local: 'replace-with-a-random-secret',\n    production: 'replace-with-a-random-secret',\n  },\n  {\n    key: 'GLOBAL_ADMIN_EMAILS',\n    description: '全局管理员邮箱，逗号分隔',\n    example: 'admin@example.com',\n    local: 'admin@example.com',\n    production: 'admin@example.com',\n  },\n  {\n    key: 'AUTH_DEBUG',\n    description: '是否开启认证调试日志',\n    example: 'false',\n    local: 'false',\n    production: 'false',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_SERVER_URL',\n    description: 'Casdoor 服务地址',\n    example: 'https://auth.example.com',\n    local: 'https://auth.example.com',\n    production: 'https://auth.example.com',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_CLIENT_ID',\n    description: 'Casdoor client id',\n    example: 'your-casdoor-client-id',\n    local: 'your-casdoor-client-id',\n    production: 'your-casdoor-client-id',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_APP_NAME',\n    description: 'Casdoor app name',\n    example: 'your-app-name',\n    local: 'your-app-name',\n    production: 'your-app-name',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME',\n    description: 'Casdoor organization name',\n    example: 'your-org-name',\n    local: 'your-org-name',\n    production: 'your-org-name',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_REDIRECT_PATH',\n    description: 'Casdoor OAuth 回调路径',\n    example: '/callback',\n    local: '/callback',\n    production: '/callback',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_SIGNIN_PATH',\n    description: 'Casdoor authorize 路径',\n    example: '/login/oauth/authorize',\n    local: '/login/oauth/authorize',\n    production: '/login/oauth/authorize',\n  },\n  {\n    key: 'NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH',\n    description: '注销后跳转路径，默认首页',\n    example: '/',\n    local: '/',\n    production: '/',\n  },\n  {\n    key: 'NEXT_PUBLIC_BILLING_PURCHASABLE_IDS',\n    description: 'Billing 可购买项白名单，逗号分隔',\n    example: 'membership-monthly,credits-50',\n    local: 'membership-monthly,credits-50',\n    production: 'membership-monthly,credits-50',\n  },\n  {\n    key: 'NEXT_PUBLIC_CASDOOR_STATIC_ORIGIN',\n    description: 'Casdoor 静态资源 origin',\n    example: 'https://casdoor-static.foldspace.cn',\n    local: 'https://casdoor-static.foldspace.cn',\n    production: 'https://casdoor-static.foldspace.cn',\n  },\n  {\n    key: 'CASDOOR_CLIENT_SECRET',\n    description: 'Casdoor client secret',\n    example: 'your-casdoor-client-secret',\n    local: 'your-casdoor-client-secret',\n    production: 'your-casdoor-client-secret',\n  },\n  {\n    key: 'BILLING_PAYMENT_SUCCESS_DEBUG',\n    description: '是否打印 payment-success 调试日志',\n    example: 'false',\n    local: 'false',\n    production: 'false',\n  },\n];\n\nfunction stringifyEnvValue(value: string): string {\n  if (value === '') {\n    return '\"\"';\n  }\n\n  if (/^[A-Za-z0-9_./:-]+$/.test(value)) {\n    return value;\n  }\n\n  return JSON.stringify(value);\n}\n\nfunction stripQuotes(value: string): string {\n  const trimmed = value.trim();\n  if (\n    (trimmed.startsWith('\"') && trimmed.endsWith('\"')) ||\n    (trimmed.startsWith(\"'\") && trimmed.endsWith(\"'\"))\n  ) {\n    return trimmed.slice(1, -1);\n  }\n\n  return trimmed;\n}\n\nfunction parseEnvKeys(content: string): Set<string> {\n  const keys = new Set<string>();\n  for (const line of content.split(/\\r?\\n/)) {\n    const trimmed = line.trim();\n    if (!trimmed || trimmed.startsWith('#')) {\n      continue;\n    }\n\n    const separatorIndex = trimmed.indexOf('=');\n    if (separatorIndex === -1) {\n      continue;\n    }\n\n    const key = trimmed.slice(0, separatorIndex).trim();\n    if (key) {\n      keys.add(key);\n    }\n  }\n  return keys;\n}\n\nexport function readManagedEnvValue(content: string, key: string): string | null {\n  for (const line of content.split(/\\r?\\n/)) {\n    const trimmed = line.trim();\n    if (!trimmed || trimmed.startsWith('#')) {\n      continue;\n    }\n\n    const separatorIndex = trimmed.indexOf('=');\n    if (separatorIndex === -1) {\n      continue;\n    }\n\n    const currentKey = trimmed.slice(0, separatorIndex).trim();\n    if (currentKey !== key) {\n      continue;\n    }\n\n    const rawValue = trimmed.slice(separatorIndex + 1).trim();\n    return stripQuotes(rawValue);\n  }\n\n  return null;\n}\n\nexport function getManagedEnvValue(definition: ManagedEnvVariableDefinition, file: ManagedEnvFile): string {\n  if (file === '.env.example') {\n    return definition.example;\n  }\n  if (file === '.env.production') {\n    return definition.production ?? definition.example;\n  }\n  if (file === '.env.local') {\n    return definition.local ?? definition.example;\n  }\n  return definition.base ?? definition.local ?? definition.production ?? definition.example;\n}\n\nexport function buildManagedEnvTemplate(file: ManagedEnvFile, existingContent = ''): string {\n  const existingKeys = parseEnvKeys(existingContent);\n  const lines: string[] = existingContent.trimEnd() ? existingContent.trimEnd().split(/\\r?\\n/) : [];\n  const missing = AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key));\n\n  if (missing.length === 0 && existingContent) {\n    return existingContent;\n  }\n\n  if (lines.length > 0) {\n    lines.push('');\n  }\n\n  lines.push(`# Casdoor Next Auth Kit managed values for ${file}`);\n  for (const definition of missing) {\n    const value = getManagedEnvValue(definition, file);\n    lines.push(`# ${definition.description}`);\n    lines.push(`${definition.key}=${stringifyEnvValue(value)}`);\n    lines.push('');\n  }\n\n  while (lines.length > 0 && lines[lines.length - 1] === '') {\n    lines.pop();\n  }\n\n  return `${lines.join('\\n')}\\n`;\n}\n\nexport function getMissingManagedEnvKeys(content: string): string[] {\n  const existingKeys = parseEnvKeys(content);\n  return AUTH_KIT_ENV_VARIABLES.filter((definition) => !existingKeys.has(definition.key)).map(\n    (definition) => definition.key,\n  );\n}\n\nexport function sanitizeExistingEnvContent(content: string): string {\n  return stripQuotes(content);\n}\n","    import fs from 'node:fs';\n    import path from 'node:path';\n\n    export const generatedHeader = '// generated by @foldspace-fe/casdoor-next-auth-kit\\n';\n    export const customBegin = '// @foldspace-fe/casdoor-next-auth-kit:begin custom';\n    export const customEnd = '// @foldspace-fe/casdoor-next-auth-kit:end custom';\n\nexport function ensureDir(filePath: string) {\n  fs.mkdirSync(path.dirname(filePath), { recursive: true });\n}\n\nexport function writeGeneratedFile(filePath: string, content: string) {\n  ensureDir(filePath);\n  fs.writeFileSync(filePath, generatedHeader + content, 'utf8');\n}\n\nexport function writeTextFile(filePath: string, content: string) {\n  ensureDir(filePath);\n  fs.writeFileSync(filePath, content, 'utf8');\n}\n\nexport function exists(filePath: string) {\n  return fs.existsSync(filePath);\n}\n\n    export function read(filePath: string) {\n      return fs.readFileSync(filePath, 'utf8');\n    }\n\nexport function preserveCustomBlock(existing: string, next: string) {\n      const begin = existing.indexOf(customBegin);\n      const end = existing.indexOf(customEnd);\n      if (begin === -1 || end === -1 || end <= begin) return next;\n      const custom = existing.slice(begin, end + customEnd.length);\n      const targetBegin = next.indexOf(customBegin);\n      const targetEnd = next.indexOf(customEnd);\n      if (targetBegin === -1 || targetEnd === -1 || targetEnd <= targetBegin) return next;\n  return next.slice(0, targetBegin) + custom + next.slice(targetEnd + customEnd.length);\n}\n\nexport function removePath(filePath: string) {\n  fs.rmSync(filePath, { force: true, recursive: true });\n}\n","import { customBegin, customEnd } from './fs.ts';\nimport { buildAuthPrismaSchemaTemplate } from '../prisma/schema-template.ts';\nimport { AUTH_KIT_ENV_FILES, buildManagedEnvTemplate } from '../core/env.ts';\n\nexport function authLoginRouteTemplate() {\n  return `import { loginHandler } from '../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = loginHandler;\n`;\n}\n\nexport function authSignupRouteTemplate() {\n  return `import { signupHandler } from '../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = signupHandler;\n`;\n}\n\nexport function authorizeRouteTemplate() {\n  return `import { authorizeHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = authorizeHandler;\n`;\n}\n\nexport function signupAuthorizeRouteTemplate() {\n  return `import { authorizeHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = authorizeHandler;\n`;\n}\n\nexport function callbackRouteTemplate() {\n  return `import { callbackHandler } from '../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = callbackHandler;\n`;\n}\n\nexport function logoutRouteTemplate() {\n  return `import { logoutHandler } from '../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = logoutHandler;\n`;\n}\n\nexport function callbackErrorPageTemplate() {\n  return `import { ClearDomainCookiesButton } from './clear-domain-cookies-button';\n\nexport const dynamic = 'force-dynamic';\n\nexport default async function CallbackErrorPage({\n  searchParams,\n}: {\n  searchParams: Promise<{ title?: string; message?: string; details?: string }>;\n}) {\n  const params = await searchParams;\n\n  return (\n    <main\n      style={{\n        minHeight: '100dvh',\n        display: 'flex',\n        alignItems: 'center',\n        justifyContent: 'center',\n        padding: '20px 16px',\n        background:\n          'radial-gradient(circle at top, rgba(99, 102, 241, 0.12) 0, rgba(99, 102, 241, 0) 38%), linear-gradient(180deg, #f8fafc 0%, #eef2ff 100%)',\n      }}\n    >\n      <section\n        style={{\n          width: 'min(100%, 400px)',\n          borderRadius: 28,\n          padding: '24px 20px',\n          boxSizing: 'border-box',\n          background: 'rgba(255, 255, 255, 0.96)',\n          border: '1px solid rgba(148, 163, 184, 0.2)',\n          boxShadow: '0 22px 52px rgba(15, 23, 42, 0.12)',\n          textAlign: 'center',\n          backdropFilter: 'blur(10px)',\n        }}\n      >\n        <div\n          style={{\n            width: 52,\n            height: 52,\n            margin: '0 auto 14px',\n            display: 'grid',\n            placeItems: 'center',\n            borderRadius: 18,\n            background: 'linear-gradient(135deg, rgba(239, 68, 68, 0.15), rgba(249, 115, 22, 0.1))',\n            color: '#b91c1c',\n            fontSize: 28,\n            lineHeight: 1,\n          }}\n          aria-hidden=\"true\"\n        >\n          !\n        </div>\n        <div\n          style={{\n            display: 'inline-flex',\n            alignItems: 'center',\n            justifyContent: 'center',\n            marginBottom: 12,\n            padding: '6px 12px',\n            borderRadius: 9999,\n            background: 'rgba(254, 226, 226, 0.9)',\n            color: '#b91c1c',\n            fontSize: 13,\n            fontWeight: 600,\n            letterSpacing: '0.04em',\n          }}\n        >\n          认证失败\n        </div>\n        <h2 style={{ margin: 0, fontSize: 24, lineHeight: 1.2, color: '#0f172a' }}>{params.title ?? 'Callback Error'}</h2>\n        <p style={{ margin: '12px 0 0', color: '#334155', lineHeight: 1.6 }}>{params.message ?? 'Unknown callback failure.'}</p>\n        {params.details ? (\n          <pre\n            style={{\n              margin: '14px 0 0',\n              maxHeight: 140,\n              overflow: 'auto',\n              padding: 14,\n              borderRadius: 18,\n              textAlign: 'left',\n              whiteSpace: 'pre-wrap',\n              wordBreak: 'break-word',\n              background: '#f8fafc',\n              color: '#0f172a',\n              border: '1px solid rgba(148, 163, 184, 0.18)',\n              fontSize: 13,\n              lineHeight: 1.6,\n            }}\n          >\n            {params.details}\n          </pre>\n        ) : null}\n${customBegin}\n        <div style={{ display: 'flex', flexDirection: 'column', gap: 10, marginTop: 20 }}>\n        <ClearDomainCookiesButton />\n          <a href=\"/\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>返回首页</a>\n          <a href=\"/auth/login\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>重新登录</a>\n          <a href=\"/auth/signup\" style={{ display: 'inline-flex', width: '100%', alignItems: 'center', justifyContent: 'center', minHeight: 44, padding: '0 16px', boxSizing: 'border-box', borderRadius: 9999, border: '1px solid rgba(148, 163, 184, 0.35)', color: '#0f172a', textDecoration: 'none', background: 'rgba(248, 250, 252, 0.9)' }}>去注册</a>\n        </div>\n${customEnd}\n      </section>\n    </main>\n  );\n}\n`;\n}\n\nexport function callbackErrorClearCookiesButtonTemplate() {\n  return `'use client';\n\nimport { useState } from 'react';\n\nconst AUTH_COOKIE_NAMES = [\n  'auth_origin',\n  'auth_redirect',\n  'oauth_state',\n  'pkce_code_verifier',\n  'next-auth.session-token',\n  '__Secure-next-auth.session-token',\n  'next-auth.csrf-token',\n  '__Secure-next-auth.csrf-token',\n  '__Host-next-auth.csrf-token',\n];\n\nfunction getPathCandidates(pathname: string): string[] {\n  const normalized = pathname.startsWith('/') ? pathname : '/' + pathname;\n  const segments = normalized.split('/').filter(Boolean);\n  const paths = new Set<string>(['/']);\n\n  let current = '';\n  for (const segment of segments) {\n    current += '/' + segment;\n    paths.add(current);\n  }\n\n  return [...paths];\n}\n\nfunction getDomainCandidates(hostname: string): string[] {\n  const normalized = hostname.toLowerCase();\n  if (\n    normalized === 'localhost' ||\n    normalized.endsWith('.localhost') ||\n    /^\\\\d+\\\\.\\\\d+\\\\.\\\\d+\\\\.\\\\d+$/.test(normalized) ||\n    /^\\\\[[^\\\\]]+\\\\]$/.test(normalized)\n  ) {\n    return [];\n  }\n\n  const parts = normalized.split('.');\n  if (parts.length < 2) {\n    return [];\n  }\n\n  const domains = new Set<string>();\n  for (let index = 0; index < parts.length - 1; index++) {\n    const suffix = parts.slice(index).join('.');\n    domains.add(suffix);\n    domains.add('.' + suffix);\n  }\n\n  return [...domains];\n}\n\nfunction expireCookie(name: string, path: string, domain?: string) {\n  const pieces = [\n    name + '=',\n    'Max-Age=0',\n    'Expires=Thu, 01 Jan 1970 00:00:00 GMT',\n    'Path=' + path,\n    'SameSite=Lax',\n  ];\n\n  if (domain) {\n    pieces.push('Domain=' + domain);\n  }\n\n  if (window.location.protocol === 'https:') {\n    pieces.push('Secure');\n  }\n\n  document.cookie = pieces.join('; ');\n}\n\n${customBegin}\nexport function ClearDomainCookiesButton() {\n  const [cleared, setCleared] = useState(false);\n\n  const handleClick = () => {\n    if (typeof document === 'undefined' || typeof window === 'undefined') {\n      return;\n    }\n\n    const names = new Set<string>(AUTH_COOKIE_NAMES);\n    for (const entry of document.cookie.split(';')) {\n      const [rawName] = entry.trim().split('=');\n      if (rawName) {\n        names.add(rawName);\n      }\n    }\n\n    const pathCandidates = getPathCandidates(window.location.pathname);\n    const domainCandidates = getDomainCandidates(window.location.hostname);\n\n    for (const name of names) {\n      for (const path of pathCandidates) {\n        expireCookie(name, path);\n        for (const domain of domainCandidates) {\n          expireCookie(name, path, domain);\n        }\n      }\n    }\n\n    setCleared(true);\n  };\n\n  return (\n    <button\n      type=\"button\"\n      onClick={handleClick}\n      disabled={cleared}\n      style={{\n        display: 'inline-flex',\n        width: '100%',\n        alignItems: 'center',\n        justifyContent: 'center',\n        minHeight: 44,\n        padding: '0 16px',\n        boxSizing: 'border-box',\n        borderRadius: 9999,\n        border: '1px solid rgba(148, 163, 184, 0.35)',\n        color: '#0f172a',\n        background: cleared ? 'rgba(220, 252, 231, 0.92)' : 'rgba(248, 250, 252, 0.9)',\n        cursor: cleared ? 'default' : 'pointer',\n      }}\n    >\n      {cleared ? '已清空' : '清空当前域 Cookie'}\n    </button>\n  );\n}\n${customEnd}\n`;\n}\n\nexport function authConfigTemplate() {\n  return `import {\n  createCallbackHandler,\n  createCasdoorApiProxyHandler,\n  createCasdoorCommerceProxyHandler,\n  createAuthorizeRouteHandler,\n  createLoginRouteHandler,\n  createLogoutHandler,\n  createNextAuthOptions,\n  createSignupRouteHandler,\n  decodeCasdoorAccessToken,\n  isGlobalAdminEmail,\n  type AuthBusinessAdapter,\n  type AuthKitConfig,\n  type AuthPersistenceAdapter,\n} from '@foldspace-fe/casdoor-next-auth-kit';\nimport { paymentSuccessHandler as billingPaymentSuccessHandler } from '@/lib/billing/payment-success';\nimport { paymentFinishedHandler as billingPaymentFinishedHandler } from '@/lib/billing/payment-finished';\nimport { syncUserRecord } from '@/lib/user/record';\n\nexport function createAuthKitConfig(): AuthKitConfig {\n  return {\n    appUrl: process.env.APP_URL || '',\n    nextauthSecret: process.env.NEXTAUTH_SECRET || 'dev-nextauth-secret',\n    logoutRedirectPath: process.env.NEXT_PUBLIC_AUTH_LOGOUT_REDIRECT_PATH || '/',\n    casdoor: {\n      serverUrl: process.env.NEXT_PUBLIC_CASDOOR_SERVER_URL || process.env.CASDOOR_SERVER_URL || '',\n      clientId: process.env.NEXT_PUBLIC_CASDOOR_CLIENT_ID || process.env.CASDOOR_CLIENT_ID || '',\n      clientSecret: process.env.CASDOOR_CLIENT_SECRET || '',\n      appName: process.env.NEXT_PUBLIC_CASDOOR_APP_NAME || '',\n      organizationName: process.env.NEXT_PUBLIC_CASDOOR_ORGANIZATION_NAME || '',\n      redirectPath: process.env.NEXT_PUBLIC_CASDOOR_REDIRECT_PATH || '/callback',\n      signinPath: process.env.NEXT_PUBLIC_CASDOOR_SIGNIN_PATH || '/login/oauth/authorize',\n    },\n  };\n}\n\nexport const authKitConfig = createAuthKitConfig();\n\nexport const adapter: AuthBusinessAdapter = {\n  onUserSync: async (profile, tokens) => {\n    const accessToken = tokens.accessToken ?? tokens.access_token ?? '';\n    const decodedAccessToken = accessToken ? decodeCasdoorAccessToken(accessToken) : null;\n    const email =\n      profile.email ??\n      (typeof decodedAccessToken?.email === 'string' ? decodedAccessToken.email : null);\n    const isAdmin =\n      Boolean(profile.isAdmin) ||\n      Boolean(decodedAccessToken?.isAdmin) ||\n      isGlobalAdminEmail(email);\n\n    return {\n      id: String(\n        profile.id ??\n          profile.sub ??\n          (typeof decodedAccessToken?.sub === 'string' ? decodedAccessToken.sub : null) ??\n          (typeof decodedAccessToken?.id === 'string' ? decodedAccessToken.id : null) ??\n          email ??\n          'casdoor-user',\n      ),\n      name: profile.name ?? profile.displayName ?? null,\n      email,\n      image: profile.picture ?? profile.avatarUrl ?? null,\n      isAdmin,\n      role: isAdmin ? 'admin' : 'user',\n      tokenBalance: 2580,\n      isVip: true,\n    };\n  },\n  isAdminEmail: isGlobalAdminEmail,\n};\n\nexport const persistence: AuthPersistenceAdapter = {\n  async syncAuthUser(user) {\n    await syncUserRecord(user);\n  },\n  async findAuthUser() {\n    return null;\n  },\n};\n\nexport const paymentSuccessHandler = billingPaymentSuccessHandler;\nexport const paymentFinishedHandler = billingPaymentFinishedHandler;\n\nexport const loginHandler = createLoginRouteHandler(authKitConfig);\nexport const signupHandler = createSignupRouteHandler(authKitConfig);\nexport const authorizeHandler = createAuthorizeRouteHandler(authKitConfig);\nexport const callbackHandler = createCallbackHandler({\n  config: authKitConfig,\n  adapter,\n  persistence,\n});\nexport const logoutHandler = createLogoutHandler(authKitConfig);\nexport const authOptions = createNextAuthOptions({\n  config: authKitConfig,\n  adapter,\n  persistence,\n});\nexport const apiProxyHandler = createCasdoorApiProxyHandler(authKitConfig, '/auth/api', '/api');\nexport const commerceProxyHandler = createCasdoorCommerceProxyHandler(authKitConfig, '/auth/api/commerce', '/api/commerce');\n`;\n}\n\nexport function nextAuthRouteTemplate() {\n  return `import NextAuth from 'next-auth';\nimport { createNextAuthOptions } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { adapter, authKitConfig, persistence } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nconst handler = NextAuth(\n  createNextAuthOptions({\n    config: authKitConfig,\n    adapter,\n    persistence,\n  }),\n);\n\nexport const GET = handler;\nexport const POST = handler;\n`;\n}\n\nexport function paymentSuccessRouteTemplate() {\n  return `import { createBillingPaymentSuccessRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { authKitConfig, paymentSuccessHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nexport const GET = createBillingPaymentSuccessRouteHandler({\n  appUrl: authKitConfig.appUrl,\n  fallbackRedirect: '/auth/payment/finished',\n  handler: paymentSuccessHandler,\n  phase: 'success',\n});\n`;\n}\n\nexport function paymentFinishedRouteTemplate() {\n  return `import { createBillingPaymentFinishedRouteHandler } from '@foldspace-fe/casdoor-next-auth-kit';\nimport { authKitConfig, paymentFinishedHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\nexport const runtime = 'nodejs';\n\nexport const GET = createBillingPaymentFinishedRouteHandler({\n  appUrl: authKitConfig.appUrl,\n  fallbackRedirect: '/',\n  handler: paymentFinishedHandler,\n  phase: 'finished',\n});\n`;\n}\n\nexport function billingPaymentSuccessHandlerTemplate() {\n  return `import type { BillingPaymentSuccessHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';\nimport { resolveBillingOrderRedirect } from './order-redirect';\n\n${customBegin}\nconst paymentSuccessHandlerImpl: BillingPaymentSuccessHandler = async (context) => {\n  const redirectTarget = resolveBillingOrderRedirect(context.orderId || context.paymentId);\n  console.info('[casdoor-next-auth-kit] payment success callback received', {\n    paymentId: context.paymentId,\n    orderId: context.orderId,\n    status: context.status,\n    redirectTo: context.redirectTo,\n    redirectTarget,\n  });\n  return;\n};\n${customEnd}\n\nexport const paymentSuccessHandler: BillingPaymentSuccessHandler = paymentSuccessHandlerImpl;\n`;\n}\n\nexport function billingPaymentFinishedHandlerTemplate() {\n  return `import type { BillingPaymentFinishedHandler } from '@foldspace-fe/casdoor-next-auth-kit/billing';\nimport { resolveBillingOrderRedirect } from './order-redirect';\n\n${customBegin}\nconst paymentFinishedHandlerImpl: BillingPaymentFinishedHandler = async (context) => {\n  const redirectTarget = resolveBillingOrderRedirect(context.orderId || context.paymentId);\n  console.info('[casdoor-next-auth-kit] payment finished callback received', {\n    paymentId: context.paymentId,\n    orderId: context.orderId,\n    status: context.status,\n    redirectTo: context.redirectTo,\n    redirectTarget,\n  });\n  return;\n};\n${customEnd}\n\nexport const paymentFinishedHandler: BillingPaymentFinishedHandler = paymentFinishedHandlerImpl;\n`;\n}\n\nexport function billingOrderRedirectTemplate() {\n  return `export function resolveBillingOrderRedirect(orderIdOrPaymentId?: string | null): string | null {\n  if (!orderIdOrPaymentId) {\n    return null;\n  }\n\n  return null;\n}\n`;\n}\n\n    export function authIndexHtmlTemplate() {\n      return `export { AUTH_INDEX_HTML, createAuthIndexHtml } from '@foldspace-fe/casdoor-next-auth-kit';\n`;\n    }\n\n    export function prismaSchemaTemplate() {\n      return buildAuthPrismaSchemaTemplate();\n    }\n\nexport function apiProxyRouteTemplate() {\n  return `import { apiProxyHandler } from '../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = apiProxyHandler;\nexport const HEAD = apiProxyHandler;\nexport const POST = apiProxyHandler;\nexport const PUT = apiProxyHandler;\nexport const PATCH = apiProxyHandler;\nexport const DELETE = apiProxyHandler;\nexport const OPTIONS = apiProxyHandler;\n`;\n}\n\nexport function commerceProxyRouteTemplate() {\n  return `import { commerceProxyHandler } from '../../../../auth-config';\n\nexport const dynamic = 'force-dynamic';\n\nexport const GET = commerceProxyHandler;\nexport const HEAD = commerceProxyHandler;\nexport const POST = commerceProxyHandler;\nexport const PUT = commerceProxyHandler;\nexport const PATCH = commerceProxyHandler;\nexport const DELETE = commerceProxyHandler;\nexport const OPTIONS = commerceProxyHandler;\n`;\n}\n\n    export function envTemplate(file: typeof AUTH_KIT_ENV_FILES[number], existingContent = '') {\n      return buildManagedEnvTemplate(file, existingContent);\n    }\n"],"mappings":";AAEO,IAAM,4BAA2D;AAAA,EACtE;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,SAAS,MAAM,WAAW,YAAY,CAAC,SAAS,EAAE;AAAA,MAC1D,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,MAChC,EAAE,MAAM,SAAS,MAAM,UAAU;AAAA,MACjC,EAAE,MAAM,WAAW,MAAM,WAAW,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACpE,EAAE,MAAM,QAAQ,MAAM,UAAU,YAAY,CAAC,kBAAkB,EAAE;AAAA,MACjE,EAAE,MAAM,gBAAgB,MAAM,OAAO,YAAY,CAAC,aAAa,EAAE;AAAA,MACjE,EAAE,MAAM,SAAS,MAAM,WAAW,YAAY,CAAC,iBAAiB,EAAE;AAAA,MAClE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,kBAAkB;AAAA,EACtC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,UAAU,YAAY,CAAC,SAAS,EAAE;AAAA,MAC1D,EAAE,MAAM,QAAQ,MAAM,SAAS;AAAA,MAC/B,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,YAAY,MAAM,YAAY;AAAA,MACtC,EAAE,MAAM,UAAU,MAAM,YAAY;AAAA,MACpC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,mBAAmB;AAAA,EACvC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,QAAQ,MAAM,SAAS;AAAA,MAC/B,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,UAAU,MAAM,MAAM;AAAA,MAC9B,EAAE,MAAM,YAAY,MAAM,UAAU,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACpE,EAAE,MAAM,WAAW,MAAM,QAAQ;AAAA,MACjC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,mBAAmB;AAAA,EACvC;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,aAAa,MAAM,SAAS;AAAA,MACpC,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,YAAY,MAAM,SAAS;AAAA,MACnC,EAAE,MAAM,YAAY,MAAM,YAAY;AAAA,MACtC,EAAE,MAAM,UAAU,MAAM,YAAY;AAAA,MACpC,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,qBAAqB,sBAAsB;AAAA,EAC/D;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,QAAQ;AAAA,MACN,EAAE,MAAM,MAAM,MAAM,UAAU,YAAY,CAAC,OAAO,kBAAkB,EAAE;AAAA,MACtE,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,WAAW,MAAM,UAAU;AAAA,MACnC,EAAE,MAAM,aAAa,MAAM,UAAU,YAAY,CAAC,SAAS,EAAE;AAAA,MAC7D,EAAE,MAAM,UAAU,MAAM,SAAS;AAAA,MACjC,EAAE,MAAM,UAAU,MAAM,MAAM;AAAA,MAC9B,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,iBAAiB,EAAE;AAAA,MACvE,EAAE,MAAM,aAAa,MAAM,YAAY,YAAY,CAAC,YAAY,EAAE;AAAA,IACpE;AAAA,IACA,iBAAiB,CAAC,qBAAqB,oBAAoB;AAAA,EAC7D;AACF;AAEA,SAAS,YAAY,OAA4C;AAC/D,QAAM,aAAa,MAAM,YAAY,SAAS,IAAI,MAAM,WAAW,KAAK,GAAG,CAAC,KAAK;AACjF,SAAO,KAAK,MAAM,IAAI,IAAI,MAAM,IAAI,GAAG,UAAU;AACnD;AAEA,SAAS,YAAY,OAA4C;AAC/D,QAAM,QAAQ;AAAA,IACZ,OAAO,MAAM,WAAW;AAAA,IACxB,SAAS,MAAM,IAAI;AAAA,IACnB,GAAG,MAAM,OAAO,IAAI,WAAW;AAAA,EACjC;AAEA,MAAI,MAAM,iBAAiB,QAAQ;AACjC,UAAM,KAAK,GAAG,MAAM,gBAAgB,IAAI,CAAC,cAAc,KAAK,SAAS,EAAE,CAAC;AAAA,EAC1E;AAEA,QAAM,KAAK,GAAG;AACd,SAAO,MAAM,KAAK,IAAI;AACxB;AAEO,SAAS,8BAA8B,SAAwC,2BAAmC;AACvH,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,IACA,GAAG,OAAO,IAAI,WAAW;AAAA,EAC3B,EAAE,KAAK,MAAM;AACf;;;AC7GO,IAAM,qBAAuC,CAAC,QAAQ,cAAc,mBAAmB,cAAc;AAErG,IAAM,yBAAyD;AAAA,EACpE;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,aAAa;AAAA,IACb,SAAS;AAAA,IACT,OAAO;AAAA,IACP,YAAY;AAAA,EACd;AACF;AAEA,SAAS,kBAAkB,OAAuB;AAChD,MAAI,UAAU,IAAI;AAChB,WAAO;AAAA,EACT;AAEA,MAAI,sBAAsB,KAAK,KAAK,GAAG;AACrC,WAAO;AAAA,EACT;AAEA,SAAO,KAAK,UAAU,KAAK;AAC7B;AAEA,SAAS,YAAY,OAAuB;AAC1C,QAAM,UAAU,MAAM,KAAK;AAC3B,MACG,QAAQ,WAAW,GAAG,KAAK,QAAQ,SAAS,GAAG,KAC/C,QAAQ,WAAW,GAAG,KAAK,QAAQ,SAAS,GAAG,GAChD;AACA,WAAO,QAAQ,MAAM,GAAG,EAAE;AAAA,EAC5B;AAEA,SAAO;AACT;AAEA,SAAS,aAAa,SAA8B;AAClD,QAAM,OAAO,oBAAI,IAAY;AAC7B,aAAW,QAAQ,QAAQ,MAAM,OAAO,GAAG;AACzC,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,CAAC,WAAW,QAAQ,WAAW,GAAG,GAAG;AACvC;AAAA,IACF;AAEA,UAAM,iBAAiB,QAAQ,QAAQ,GAAG;AAC1C,QAAI,mBAAmB,IAAI;AACzB;AAAA,IACF;AAEA,UAAM,MAAM,QAAQ,MAAM,GAAG,cAAc,EAAE,KAAK;AAClD,QAAI,KAAK;AACP,WAAK,IAAI,GAAG;AAAA,IACd;AAAA,EACF;AACA,SAAO;AACT;AAEO,SAAS,oBAAoB,SAAiB,KAA4B;AAC/E,aAAW,QAAQ,QAAQ,MAAM,OAAO,GAAG;AACzC,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,CAAC,WAAW,QAAQ,WAAW,GAAG,GAAG;AACvC;AAAA,IACF;AAEA,UAAM,iBAAiB,QAAQ,QAAQ,GAAG;AAC1C,QAAI,mBAAmB,IAAI;AACzB;AAAA,IACF;AAEA,UAAM,aAAa,QAAQ,MAAM,GAAG,cAAc,EAAE,KAAK;AACzD,QAAI,eAAe,KAAK;AACtB;AAAA,IACF;AAEA,UAAM,WAAW,QAAQ,MAAM,iBAAiB,CAAC,EAAE,KAAK;AACxD,WAAO,YAAY,QAAQ;AAAA,EAC7B;AAEA,SAAO;AACT;AAEO,SAAS,mBAAmB,YAA0C,MAA8B;AACzG,MAAI,SAAS,gBAAgB;AAC3B,WAAO,WAAW;AAAA,EACpB;AACA,MAAI,SAAS,mBAAmB;AAC9B,WAAO,WAAW,cAAc,WAAW;AAAA,EAC7C;AACA,MAAI,SAAS,cAAc;AACzB,WAAO,WAAW,SAAS,WAAW;AAAA,EACxC;AACA,SAAO,WAAW,QAAQ,WAAW,SAAS,WAAW,cAAc,WAAW;AACpF;AAEO,SAAS,wBAAwB,MAAsB,kBAAkB,IAAY;AAC1F,QAAM,eAAe,aAAa,eAAe;AACjD,QAAM,QAAkB,gBAAgB,QAAQ,IAAI,gBAAgB,QAAQ,EAAE,MAAM,OAAO,IAAI,CAAC;AAChG,QAAM,UAAU,uBAAuB,OAAO,CAAC,eAAe,CAAC,aAAa,IAAI,WAAW,GAAG,CAAC;AAE/F,MAAI,QAAQ,WAAW,KAAK,iBAAiB;AAC3C,WAAO;AAAA,EACT;AAEA,MAAI,MAAM,SAAS,GAAG;AACpB,UAAM,KAAK,EAAE;AAAA,EACf;AAEA,QAAM,KAAK,8CAA8C,IAAI,EAAE;AAC/D,aAAW,cAAc,SAAS;AAChC,UAAM,QAAQ,mBAAmB,YAAY,IAAI;AACjD,UAAM,KAAK,KAAK,WAAW,WAAW,EAAE;AACxC,UAAM,KAAK,GAAG,WAAW,GAAG,IAAI,kBAAkB,KAAK,CAAC,EAAE;AAC1D,UAAM,KAAK,EAAE;AAAA,EACf;AAEA,SAAO,MAAM,SAAS,KAAK,MAAM,MAAM,SAAS,CAAC,MAAM,IAAI;AACzD,UAAM,IAAI;AAAA,EACZ;AAEA,SAAO,GAAG,MAAM,KAAK,IAAI,CAAC;AAAA;AAC5B;AAEO,SAAS,yBAAyB,SAA2B;AAClE,QAAM,eAAe,aAAa,OAAO;AACzC,SAAO,uBAAuB,OAAO,CAAC,eAAe,CAAC,aAAa,IAAI,WAAW,GAAG,CAAC,EAAE;AAAA,IACtF,CAAC,eAAe,WAAW;AAAA,EAC7B;AACF;AAEO,SAAS,2BAA2B,SAAyB;AAClE,SAAO,YAAY,OAAO;AAC5B;;;AC9OI,OAAO,QAAQ;AACf,OAAO,UAAU;AAEV,IAAM,kBAAkB;AACxB,IAAM,cAAc;AACpB,IAAM,YAAY;AAEtB,SAAS,UAAU,UAAkB;AAC1C,KAAG,UAAU,KAAK,QAAQ,QAAQ,GAAG,EAAE,WAAW,KAAK,CAAC;AAC1D;AAEO,SAAS,mBAAmB,UAAkB,SAAiB;AACpE,YAAU,QAAQ;AAClB,KAAG,cAAc,UAAU,kBAAkB,SAAS,MAAM;AAC9D;AAEO,SAAS,cAAc,UAAkB,SAAiB;AAC/D,YAAU,QAAQ;AAClB,KAAG,cAAc,UAAU,SAAS,MAAM;AAC5C;AAEO,SAAS,OAAO,UAAkB;AACvC,SAAO,GAAG,WAAW,QAAQ;AAC/B;AAEW,SAAS,KAAK,UAAkB;AACrC,SAAO,GAAG,aAAa,UAAU,MAAM;AACzC;AAEG,SAAS,oBAAoB,UAAkB,MAAc;AAC9D,QAAM,QAAQ,SAAS,QAAQ,WAAW;AAC1C,QAAM,MAAM,SAAS,QAAQ,SAAS;AACtC,MAAI,UAAU,MAAM,QAAQ,MAAM,OAAO,MAAO,QAAO;AACvD,QAAM,SAAS,SAAS,MAAM,OAAO,MAAM,UAAU,MAAM;AAC3D,QAAM,cAAc,KAAK,QAAQ,WAAW;AAC5C,QAAM,YAAY,KAAK,QAAQ,SAAS;AACxC,MAAI,gBAAgB,MAAM,cAAc,MAAM,aAAa,YAAa,QAAO;AACnF,SAAO,KAAK,MAAM,GAAG,WAAW,IAAI,SAAS,KAAK,MAAM,YAAY,UAAU,MAAM;AACtF;AAEO,SAAS,WAAW,UAAkB;AAC3C,KAAG,OAAO,UAAU,EAAE,OAAO,MAAM,WAAW,KAAK,CAAC;AACtD;;;ACtCO,SAAS,yBAAyB;AACvC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,0BAA0B;AACxC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,yBAAyB;AACvC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,sBAAsB;AACpC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAMT;AAEO,SAAS,4BAA4B;AAC1C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EA6FP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOX,SAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAMX;AAEO,SAAS,0CAA0C;AACxD,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EA4EP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAwDX,SAAS;AAAA;AAEX;AAEO,SAAS,qBAAqB;AACnC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAoGT;AAEO,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAkBT;AAEO,SAAS,8BAA8B;AAC5C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAaT;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAaT;AAEO,SAAS,uCAAuC;AACrD,SAAO;AAAA;AAAA;AAAA,EAGP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYX,SAAS;AAAA;AAAA;AAAA;AAIX;AAEO,SAAS,wCAAwC;AACtD,SAAO;AAAA;AAAA;AAAA,EAGP,WAAW;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYX,SAAS;AAAA;AAAA;AAAA;AAIX;AAEO,SAAS,+BAA+B;AAC7C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAQT;AAEW,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAET;AAEO,SAAS,uBAAuB;AACrC,SAAO,8BAA8B;AACvC;AAEG,SAAS,wBAAwB;AACtC,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEO,SAAS,6BAA6B;AAC3C,SAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYT;AAEW,SAAS,YAAY,MAAyC,kBAAkB,IAAI;AACzF,SAAO,wBAAwB,MAAM,eAAe;AACtD;","names":[]}

package/dist/cli-templates.js

@@ -1,6 +1,6 @@
 import {
   authConfigTemplate
-} from "./chunk-WNDID6YX.js";
+} from "./chunk-WPOURR7G.js";
 export {
   authConfigTemplate
 };

package/dist/cli.js

@@ -28,7 +28,7 @@ import {
   signupAuthorizeRouteTemplate,
   writeGeneratedFile,
   writeTextFile
-} from "./chunk-WNDID6YX.js";
+} from "./chunk-WPOURR7G.js";
 
 // package.json
 var package_default = {

package/dist/index.js

@@ -28,7 +28,7 @@ import {
   readManagedEnvValue,
   sanitizeExistingEnvContent,
   signupAuthorizeRouteTemplate
-} from "./chunk-WNDID6YX.js";
+} from "./chunk-WPOURR7G.js";
 import {
   buildBillingSubscriptionCatalog,
   createBillingPaymentFinishedResponse,

package/dist/skills/casdoor-next-auth-kit/SKILL.md

@@ -75,6 +75,7 @@ npx @foldspace-fe/casdoor-next-auth-kit@latest check
 - `useAuthUser` — 获取当前登录用户信息（含 Casdoor 用户字段）
 - `useAuthRole` — 获取当前用户的角色信息，用于权限判断
 - `role` 是一等认证字段，Casdoor profile、callback、JWT/session、`useAuthUser`、`useAuthRole` 和生成的 `auth-config.ts` 会一起维护它；`isAdmin` 仍然保留兼容推导，但不要只依赖它
+- 生成的 `auth-config.ts` 需要在 `onUserSync` 里同时看 Casdoor profile 和 access token，优先用 `decodeCasdoorAccessToken(accessToken)` 兜底补齐 `email`、`sub` 和 `isAdmin`，再把最终用户对象交给 `syncUserRecord(user)` 落库
 - `useAuthActions` — 提供登录、注册、注销等认证操作方法
 - Casdoor 登录 / 注册入口处理器 — 处理用户进入认证流程的初始交互
 - callback / logout / nextauth 路由处理器 — 处理 OAuth 回调、注销和 NextAuth 路由请求

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@foldspace-fe/casdoor-next-auth-kit",
-  "version": "0.1.26",
+  "version": "0.1.27",
   "private": false,
   "type": "module",
   "repository": {