@hed-hog/core 0.0.4

package/dist/auth/auth.service.js

@@ -0,0 +1,493 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthService = void 0;
+const api_locale_1 = require("@hed-hog/api-locale");
+const api_prisma_1 = require("@hed-hog/api-prisma");
+const common_1 = require("@nestjs/common");
+const challenge_service_1 = require("../challenge/challenge.service");
+const mail_service_1 = require("../mail/mail.service");
+const security_service_1 = require("../security/security.service");
+const session_service_1 = require("../session/session.service");
+const setting_service_1 = require("../setting/setting.service");
+const token_service_1 = require("../token/token.service");
+const user_service_1 = require("../user/user.service");
+let AuthService = class AuthService {
+    constructor(prisma, mail, setting, security, token, session, user, challenge) {
+        this.prisma = prisma;
+        this.mail = mail;
+        this.setting = setting;
+        this.security = security;
+        this.token = token;
+        this.session = session;
+        this.user = user;
+        this.challenge = challenge;
+        this.settings = {};
+    }
+    async onModuleInit() {
+        this.settings = await this.setting.getSettingValues([
+            'mfa-issuer',
+            'mfa-window',
+            'mfa-setp',
+            'system-name',
+            'google_client_id',
+            'google_client_secret',
+            'google_scopes',
+            'url',
+            'mfa-challenge-expiration-minutes',
+            'access-token-expiration-minutes'
+        ]);
+    }
+    async getAuthenticationPayload(locale, userId, ipAddress, userAgent) {
+        const payload = { sub: userId };
+        const accessToken = await this.token.createAccessToken(payload);
+        const { token: refreshToken, session } = await this.session.create(locale, userId, ipAddress, userAgent);
+        return {
+            accessToken,
+            refreshToken,
+            session,
+        };
+    }
+    async loginWithEmailAndPassword(locale, ipAddress, userAgent, { email, password }) {
+        var _a;
+        const user = await this.user.findUserByEmail(locale, email);
+        if (!user)
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('accessDenied', locale, 'Access denied.'));
+        const credentials = ((_a = user.user_credential) === null || _a === void 0 ? void 0 : _a.filter((c) => c.type === 'password')) || [];
+        if (!await this.security.validatePassword(locale, credentials, password)) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('accessDenied', locale, 'Access denied.'));
+        }
+        const mfaMethods = await this.prisma.user_mfa.findMany({
+            where: {
+                user_id: user.id,
+                verified_at: { not: null }
+            },
+            include: {
+                user_mfa_totp: true,
+                user_mfa_email: true
+            }
+        });
+        if (mfaMethods.length > 0) {
+            const mfaToken = await this.token.createMfaChallengeToken({
+                userId: user.id,
+                ipAddress,
+                userAgent,
+                email
+            });
+            const emailMfas = mfaMethods.filter(m => m.type === 'email' && m.user_mfa_email && m.user_mfa_email.length > 0);
+            if (emailMfas.length > 0) {
+                const emails = emailMfas.map(mfa => mfa.user_mfa_email[0].email);
+                await this.challenge.sendMfaCodeToMultipleEmails(locale, user.id, emails);
+            }
+            return {
+                requiresMfa: true,
+                mfaToken,
+                mfaMethods: mfaMethods.map(m => ({ type: m.type, id: m.id }))
+            };
+        }
+        const { accessToken, refreshToken, session } = await this.getAuthenticationPayload(locale, user.id, ipAddress, userAgent);
+        this.mail.sendTemplatedMail(locale, {
+            email,
+            slug: 'auth-login-new-device',
+            variables: {
+                name: user.name,
+                ipAddress,
+                userAgent,
+                location: 'Unknown',
+            }
+        });
+        await this.user.registerUserActivity(user.id, "login");
+        return { accessToken, refreshToken, session };
+    }
+    async verifyUser(locale, userId) {
+        const user = await this.user.findUserById(locale, userId);
+        delete user.user_credential;
+        return user;
+    }
+    async refreshAccessToken(locale, refreshToken, ipAddress, userAgent) {
+        if (!refreshToken) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('accessDenied', locale, 'Access denied.'));
+        }
+        const { session, token } = await this.session.refresh(locale, refreshToken, ipAddress, userAgent);
+        const user = await this.user.findUserById(locale, session.user_id);
+        const payload = { sub: user.id };
+        const accessToken = await this.token.createAccessToken(payload);
+        return { accessToken, refreshToken: token, session };
+    }
+    async forgotPassword(locale, { email }) {
+        const user = await this.user.findUserByEmail(locale, email);
+        if (user) {
+            await this.user.registerUserActivity(user === null || user === void 0 ? void 0 : user.id, "forgotPassword");
+        }
+        await this.challenge.forgotEmail(locale, email);
+        return { success: true };
+    }
+    async logout(res, req, refreshToken) {
+        var _a;
+        await this.session.deleteRefreshTokenCookie(res, refreshToken);
+        await this.user.registerUserActivity((_a = req.auth) === null || _a === void 0 ? void 0 : _a.sub, "logout");
+        return { success: true };
+    }
+    async forgotResetPassword(locale, password, code, ipAddress, userAgent) {
+        const challenge = await this.challenge.verifyCodePassword(locale, code);
+        const passwordHash = await this.security.hashArgon2(password);
+        await this.prisma.user_credential.updateMany({
+            where: {
+                type: 'password',
+                user: {
+                    user_mfa: {
+                        some: {
+                            user_mfa_challenge: {
+                                some: { id: challenge.id }
+                            }
+                        }
+                    }
+                }
+            },
+            data: { hash: passwordHash },
+        });
+        const userIdentifier = await this.prisma.user_identifier.findFirst({
+            where: {
+                type: 'email',
+                user_id: challenge.user_mfa.user_id
+            },
+            include: {
+                user: {
+                    select: { name: true }
+                }
+            }
+        });
+        if (!userIdentifier) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('userIdentifierNotFound', locale, 'User identifier not found.'));
+        }
+        this.mail.sendTemplatedMail(locale, {
+            email: userIdentifier.value,
+            slug: 'auth-forget-password-confirmation',
+            variables: {
+                name: userIdentifier.user.name,
+            }
+        });
+        const { accessToken, refreshToken, session } = await this.getAuthenticationPayload(locale, challenge.user_mfa.user_id, ipAddress, userAgent);
+        await this.user.registerUserActivity(userIdentifier.id, "resetPassword");
+        return { accessToken, refreshToken, session };
+    }
+    async verifyMfaCode(locale, mfaToken, code, ipAddress, userAgent, methodType) {
+        var _a, _b, _c, _d;
+        const payload = await this.token.verifyMfaChallengeToken(mfaToken);
+        const user = await this.prisma.user.findUnique({
+            where: { id: payload.userId },
+            include: {
+                user_mfa: {
+                    where: { verified_at: { not: null } },
+                    include: {
+                        user_mfa_totp: true,
+                        user_mfa_email: true
+                    }
+                },
+                user_recovery_code: true
+            }
+        });
+        if (!user) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('accessDenied', locale, 'Access denied.'));
+        }
+        let isValid = false;
+        if (methodType === 'totp') {
+            const totpMfa = user.user_mfa.find(m => m.type === 'totp' && m.user_mfa_totp);
+            if (totpMfa && totpMfa.user_mfa_totp[0]) {
+                const secretBuffer = totpMfa.user_mfa_totp[0].secret;
+                const secret = secretBuffer instanceof Uint8Array
+                    ? Buffer.from(secretBuffer).toString('utf-8')
+                    : String(secretBuffer);
+                const window = (_a = this.settings['mfa-window']) !== null && _a !== void 0 ? _a : 0;
+                const step = (_b = this.settings['mfa-setp']) !== null && _b !== void 0 ? _b : 30;
+                const speakeasy = require('speakeasy');
+                isValid = speakeasy.totp.verify({
+                    secret,
+                    encoding: 'base32',
+                    token: code,
+                    window,
+                    step
+                });
+            }
+        }
+        else if (methodType === 'email') {
+            const emailMfa = user.user_mfa.find(m => m.type === 'email');
+            if (emailMfa) {
+                isValid = await this.challenge.verifyMfaEmailCode(locale, user.id, code);
+            }
+        }
+        else if (methodType === 'recovery') {
+            for (const recoveryCode of user.user_recovery_code) {
+                if (await this.security.verifyArgon2(code, recoveryCode.hash)) {
+                    isValid = true;
+                    await this.prisma.user_recovery_code.delete({
+                        where: { id: recoveryCode.id }
+                    });
+                    break;
+                }
+            }
+        }
+        else {
+            const totpMfa = user.user_mfa.find(m => m.type === 'totp' && m.user_mfa_totp);
+            if (totpMfa && totpMfa.user_mfa_totp[0]) {
+                const secretBuffer = totpMfa.user_mfa_totp[0].secret;
+                const secret = secretBuffer instanceof Uint8Array
+                    ? Buffer.from(secretBuffer).toString('utf-8')
+                    : String(secretBuffer);
+                const window = (_c = this.settings['mfa-window']) !== null && _c !== void 0 ? _c : 0;
+                const step = (_d = this.settings['mfa-setp']) !== null && _d !== void 0 ? _d : 30;
+                const speakeasy = require('speakeasy');
+                isValid = speakeasy.totp.verify({
+                    secret,
+                    encoding: 'base32',
+                    token: code,
+                    window,
+                    step
+                });
+            }
+            if (!isValid) {
+                const emailMfa = user.user_mfa.find(m => m.type === 'email');
+                if (emailMfa) {
+                    isValid = await this.challenge.verifyMfaEmailCode(locale, user.id, code);
+                }
+            }
+        }
+        if (!isValid) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('invalidMfaCode', locale, 'Invalid MFA code.'));
+        }
+        const { accessToken, refreshToken, session } = await this.getAuthenticationPayload(locale, user.id, ipAddress, userAgent);
+        this.mail.sendTemplatedMail(locale, {
+            email: payload.email,
+            slug: 'auth-login-new-device',
+            variables: {
+                name: user.name,
+                ipAddress,
+                userAgent,
+                location: 'Unknown',
+            }
+        });
+        await this.user.registerUserActivity(user.id, "login");
+        return { accessToken, refreshToken, session };
+    }
+    async verifyMfaRecoveryCode(locale, mfaToken, recoveryCode, ipAddress, userAgent) {
+        const payload = await this.token.verifyMfaChallengeToken(mfaToken);
+        const user = await this.prisma.user.findUnique({
+            where: { id: payload.userId },
+            include: {
+                user_recovery_code: true
+            }
+        });
+        if (!user) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('accessDenied', locale, 'Access denied.'));
+        }
+        let isValid = false;
+        for (const code of user.user_recovery_code) {
+            if (await this.security.verifyArgon2(recoveryCode, code.hash)) {
+                isValid = true;
+                await this.prisma.user_recovery_code.delete({
+                    where: { id: code.id }
+                });
+                break;
+            }
+        }
+        if (!isValid) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('invalidRecoveryCode', locale, 'Invalid recovery code.'));
+        }
+        const { accessToken, refreshToken, session } = await this.getAuthenticationPayload(locale, user.id, ipAddress, userAgent);
+        await this.user.registerUserActivity(user.id, "login");
+        return { accessToken, refreshToken, session };
+    }
+    async resendMfaCode(locale, mfaToken) {
+        const payload = await this.token.verifyMfaChallengeToken(mfaToken);
+        const mfaMethods = await this.prisma.user_mfa.findMany({
+            where: {
+                user_id: payload.userId,
+                verified_at: { not: null },
+                type: 'email'
+            },
+            include: {
+                user_mfa_email: true
+            }
+        });
+        if (mfaMethods.length === 0) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('noEmailMfaFound', locale, 'No email MFA method found for this user.'));
+        }
+        const emailMfa = mfaMethods[0];
+        if (!emailMfa.user_mfa_email || emailMfa.user_mfa_email.length === 0) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('noEmailMfaFound', locale, 'No email MFA method found for this user.'));
+        }
+        await this.challenge.sendMfaCodeByEmail(locale, payload.userId, emailMfa.user_mfa_email[0].email);
+        return {
+            success: true,
+            hasEmailMfa: true
+        };
+    }
+    async generateWebAuthnAuthenticationOptions(mfaToken) {
+        const { generateAuthenticationOptions } = await Promise.resolve().then(() => __importStar(require('@simplewebauthn/server')));
+        const payload = await this.token.verifyMfaChallengeToken(mfaToken);
+        const user = await this.prisma.user.findFirst({
+            where: { id: payload.userId },
+            include: {
+                user_mfa: {
+                    where: { type: 'webauthn', verified_at: { not: null } },
+                    include: { user_mfa_webauthn: true }
+                }
+            }
+        });
+        if (!user || user.user_mfa.length === 0) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('webauthnNotConfigured', 'en', 'WebAuthn not configured.'));
+        }
+        const rpID = new URL(process.env.FRONTEND_URL || 'http://localhost:3200').hostname;
+        const allowCredentials = user.user_mfa
+            .filter(mfa => mfa.user_mfa_webauthn && mfa.user_mfa_webauthn.length > 0)
+            .map(mfa => ({
+            id: Buffer.from(mfa.user_mfa_webauthn[0].credential_id).toString('base64url'),
+        }));
+        const options = await generateAuthenticationOptions({
+            rpID,
+            allowCredentials,
+            userVerification: 'preferred',
+        });
+        await this.prisma.user_mfa_challenge.create({
+            data: {
+                user_mfa_id: user.user_mfa[0].id,
+                hash: options.challenge,
+                attempts: 0,
+                expires_at: new Date(Date.now() + 5 * 60 * 1000),
+            }
+        });
+        return options;
+    }
+    async verifyWebAuthnAuthentication(locale, mfaToken, assertionResponse, ipAddress, userAgent) {
+        const { verifyAuthenticationResponse } = await Promise.resolve().then(() => __importStar(require('@simplewebauthn/server')));
+        const payload = await this.token.verifyMfaChallengeToken(mfaToken);
+        const userId = payload.userId;
+        const challengeRecord = await this.prisma.user_mfa_challenge.findFirst({
+            where: {
+                user_mfa: {
+                    user_id: userId,
+                    type: 'webauthn',
+                    verified_at: { not: null },
+                },
+                verified_at: null,
+                expires_at: { gt: new Date() }
+            },
+            include: {
+                user_mfa: {
+                    include: { user_mfa_webauthn: true }
+                }
+            },
+            orderBy: { created_at: 'desc' }
+        });
+        if (!challengeRecord || !challengeRecord.user_mfa.user_mfa_webauthn[0]) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('challengeNotFound', locale, 'Challenge not found or expired.'));
+        }
+        const authenticator = challengeRecord.user_mfa.user_mfa_webauthn[0];
+        const rpID = new URL(process.env.FRONTEND_URL || 'http://localhost:3200').hostname;
+        const expectedOrigin = process.env.FRONTEND_URL || 'http://localhost:3200';
+        const verification = await verifyAuthenticationResponse({
+            response: assertionResponse,
+            expectedChallenge: challengeRecord.hash,
+            expectedOrigin,
+            expectedRPID: rpID,
+            credential: {
+                id: Buffer.from(authenticator.credential_id).toString('base64url'),
+                publicKey: authenticator.public_key,
+                counter: authenticator.sign_count,
+            },
+        });
+        if (!verification.verified) {
+            throw new common_1.BadRequestException((0, api_locale_1.getLocaleText)('verificationFailed', locale, 'Verification failed.'));
+        }
+        await this.prisma.user_mfa_webauthn.update({
+            where: { id: authenticator.id },
+            data: {
+                sign_count: verification.authenticationInfo.newCounter,
+                last_used_at: new Date(),
+            }
+        });
+        await this.prisma.user_mfa_challenge.update({
+            where: { id: challengeRecord.id },
+            data: { verified_at: new Date() }
+        });
+        const { accessToken, refreshToken, session } = await this.getAuthenticationPayload(locale, userId, ipAddress, userAgent);
+        const user = await this.prisma.user.findFirst({ where: { id: userId } });
+        this.mail.sendTemplatedMail(locale, {
+            email: payload.email,
+            slug: 'auth-login-new-device',
+            variables: {
+                name: user.name,
+                ipAddress,
+                userAgent,
+                location: 'Unknown',
+            }
+        });
+        await this.user.registerUserActivity(userId, 'login');
+        return { accessToken, refreshToken, session };
+    }
+};
+exports.AuthService = AuthService;
+exports.AuthService = AuthService = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, common_1.Inject)((0, common_1.forwardRef)(() => api_prisma_1.PrismaService))),
+    __param(1, (0, common_1.Inject)((0, common_1.forwardRef)(() => mail_service_1.MailService))),
+    __param(2, (0, common_1.Inject)((0, common_1.forwardRef)(() => setting_service_1.SettingService))),
+    __param(3, (0, common_1.Inject)((0, common_1.forwardRef)(() => security_service_1.SecurityService))),
+    __param(4, (0, common_1.Inject)((0, common_1.forwardRef)(() => token_service_1.TokenService))),
+    __param(5, (0, common_1.Inject)((0, common_1.forwardRef)(() => session_service_1.SessionService))),
+    __param(6, (0, common_1.Inject)((0, common_1.forwardRef)(() => user_service_1.UserService))),
+    __param(7, (0, common_1.Inject)((0, common_1.forwardRef)(() => challenge_service_1.ChallengeService))),
+    __metadata("design:paramtypes", [api_prisma_1.PrismaService,
+        mail_service_1.MailService,
+        setting_service_1.SettingService,
+        security_service_1.SecurityService,
+        token_service_1.TokenService,
+        session_service_1.SessionService,
+        user_service_1.UserService,
+        challenge_service_1.ChallengeService])
+], AuthService);
+//# sourceMappingURL=auth.service.js.map

package/dist/auth/auth.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.service.js","sourceRoot":"","sources":["../../src/auth/auth.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,oDAAoD;AACpD,oDAAoD;AAEpD,2CAMwB;AACxB,sEAAkE;AAClE,uDAAyE;AACzE,mEAA+D;AAC/D,gEAA4D;AAC5D,gEAA4D;AAC5D,0DAAsD;AACtD,uDAAmD;AAK5C,IAAM,WAAW,GAAjB,MAAM,WAAW;IAGtB,YAEE,MAAsC,EAEtC,IAAyC,EAEzC,OAAwC,EAExC,QAA0C,EAE1C,KAAoC,EAEpC,OAAwC,EAExC,IAAkC,EAElC,SAA4C;QAd3B,WAAM,GAAN,MAAM,CAAe;QAErB,SAAI,GAAJ,IAAI,CAAoB;QAExB,YAAO,GAAP,OAAO,CAAgB;QAEvB,aAAQ,GAAR,QAAQ,CAAiB;QAEzB,UAAK,GAAL,KAAK,CAAc;QAEnB,YAAO,GAAP,OAAO,CAAgB;QAEvB,SAAI,GAAJ,IAAI,CAAa;QAEjB,cAAS,GAAT,SAAS,CAAkB;QAlBvC,aAAQ,GAAwB,EAAE,CAAC;IAmBtC,CAAC;IAEL,KAAK,CAAC,YAAY;QAChB,IAAI,CAAC,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,gBAAgB,CAAC;YAClD,YAAY;YACZ,YAAY;YACZ,UAAU;YACV,aAAa;YACb,kBAAkB;YAClB,sBAAsB;YACtB,eAAe;YACf,KAAK;YACL,kCAAkC;YAClC,iCAAiC;SAClC,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,wBAAwB,CAAC,MAAc,EAAE,MAAc,EAAE,SAAiB,EAC9E,SAAiB;QACjB,MAAM,OAAO,GAAG,EAAE,GAAG,EAAE,MAAM,EAAE,CAAC;QAChC,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC;QAChE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;QAEzG,OAAO;YACL,WAAW;YACX,YAAY;YACZ,OAAO;SACR,CAAA;IAEH,CAAC;IAED,KAAK,CAAC,yBAAyB,CAC7B,MAAc,EACd,SAAiB,EACjB,SAAiB,EACjB,EAAE,KAAK,EAAE,QAAQ,EAAY;;QAE7B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;QAC5D,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,cAAc,EAAE,MAAM,EAAE,gBAAgB,CAAC,CAAC,CAAC;QAClG,MAAM,WAAW,GAAG,CAAA,MAAC,IAAwB,CAAC,eAAe,0CAAE,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,UAAU,CAAC,KAAI,EAAE,CAAC;QAE1G,IAAI,CAAC,MAAM,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,MAAM,EAAE,WAAW,EAAE,QAAQ,CAAC,EAAE,CAAC;YACzE,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,cAAc,EAAE,MAAM,EAAE,gBAAgB,CAAC,CAAC,CAAC;QACzF,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC;YACrD,KAAK,EAAE;gBACL,OAAO,EAAE,IAAI,CAAC,EAAE;gBAChB,WAAW,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE;aAC3B;YACD,OAAO,EAAE;gBACP,aAAa,EAAE,IAAI;gBACnB,cAAc,EAAE,IAAI;aACrB;SACF,CAAC,CAAC;QAEH,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC1B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC;gBACxD,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,SAAS;gBACT,SAAS;gBACT,KAAK;aACN,CAAC,CAAC;YAEH,MAAM,SAAS,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,OAAO,IAAI,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YAEhH,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACzB,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;gBACjE,MAAM,IAAI,CAAC,SAAS,CAAC,2BAA2B,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;YAC5E,CAAC;YAED,OAAO;gBACL,WAAW,EAAE,IAAI;gBACjB,QAAQ;gBACR,UAAU,EAAE,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;aAC9D,CAAC;QACJ,CAAC;QAED,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAChF,MAAM,EACN,IAAI,CAAC,EAAE,EACP,SAAS,EACT,SAAS,CACV,CAAC;QAEF,IAAI,CAAC,IAAI,CAAC,iBAAiB,CACzB,MAAM,EACN;YACE,KAAK;YACL,IAAI,EAAE,uBAAuB;YAC7B,SAAS,EAAE;gBACT,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,SAAS;gBACT,SAAS;gBACT,QAAQ,EAAE,SAAS;aACpB;SACF,CACF,CAAC;QAEF,MAAM,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,EAAE,EAAE,OAAO,CAAC,CAAA;QACtD,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,CAAC;IAChD,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,MAAc,EAAE,MAAc;QAC7C,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAC1D,OAAO,IAAI,CAAC,eAAe,CAAC;QAC5B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK,CAAC,kBAAkB,CAAC,MAAc,EAAE,YAAoB,EAAE,SAAiB,EAAE,SAAiB;QAEjG,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,cAAc,EAAE,MAAM,EAAE,gBAAgB,CAAC,CAAC,CAAC;QACzF,CAAC;QAED,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,CACnD,MAAM,EACN,YAAY,EACZ,SAAS,EACT,SAAS,CACV,CAAC;QAEF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC;QACnE,MAAM,OAAO,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC;QACjC,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC;QAEhE,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC;IAEvD,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,MAAc,EAAE,EAAE,KAAK,EAAa;QACvD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;QAC5D,IAAI,IAAI,EAAC,CAAC;YACR,MAAM,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,EAAE,EAAE,gBAAgB,CAAC,CAAA;QAClE,CAAC;QACD,MAAM,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;QAChD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC3B,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAG,EAAE,GAAG,EAAE,YAAoB;;QACzC,MAAM,IAAI,CAAC,OAAO,CAAC,wBAAwB,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;QAC/D,MAAM,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,MAAA,GAAG,CAAC,IAAI,0CAAE,GAAG,EAAE,QAAQ,CAAC,CAAA;QAC7D,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC3B,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,MAAc,EAAE,QAAgB,EAAE,IAAY,EAAE,SAAiB,EAAE,SAAiB;QAC5G,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QACxE,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;QAE9D,MAAM,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,UAAU,CAAC;YAC3C,KAAK,EAAE;gBACL,IAAI,EAAE,UAAU;gBAChB,IAAI,EAAE;oBACJ,QAAQ,EAAE;wBACR,IAAI,EAAE;4BACJ,kBAAkB,EAAE;gCAClB,IAAI,EAAE,EAAE,EAAE,EAAE,SAAS,CAAC,EAAE,EAAE;6BAC3B;yBACF;qBACF;iBACF;aACF;YACD,IAAI,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE;SAC7B,CAAC,CAAC;QAGH,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,SAAS,CAAC;YACjE,KAAK,EAAE;gBACL,IAAI,EAAE,OAAO;gBACb,OAAO,EAAE,SAAS,CAAC,QAAQ,CAAC,OAAO;aACpC;YACD,OAAO,EAAE;gBACP,IAAI,EAAE;oBACJ,MAAM,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;iBACvB;aACF;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,wBAAwB,EAAE,MAAM,EAAE,4BAA4B,CAAC,CAAC,CAAC;QAC/G,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,iBAAiB,CACzB,MAAM,EACN;YACE,KAAK,EAAE,cAAc,CAAC,KAAK;YAC3B,IAAI,EAAE,mCAAmC;YACzC,SAAS,EAAE;gBACT,IAAI,EAAE,cAAc,CAAC,IAAI,CAAC,IAAI;aAC/B;SACF,CACF,CAAC;QAEF,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAAC,MAAM,EAAE,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;QAC7I,MAAM,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,cAAc,CAAC,EAAE,EAAE,eAAe,CAAC,CAAA;QACxE,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,CAAA;IAC/C,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,QAAgB,EAAE,IAAY,EAAE,SAAiB,EAAE,SAAiB,EAAE,UAA0C;;QAClJ,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC;QACnE,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC;YAC7C,KAAK,EAAE,EAAE,EAAE,EAAE,OAAO,CAAC,MAAM,EAAE;YAC7B,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,KAAK,EAAE,EAAE,WAAW,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;oBACrC,OAAO,EAAE;wBACP,aAAa,EAAE,IAAI;wBACnB,cAAc,EAAE,IAAI;qBACrB;iBACF;gBACD,kBAAkB,EAAE,IAAI;aACzB;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,cAAc,EAAE,MAAM,EAAE,gBAAgB,CAAC,CAAC,CAAC;QACzF,CAAC;QAED,IAAI,OAAO,GAAG,KAAK,CAAC;QAEpB,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;YAC1B,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,IAAI,CAAC,CAAC,aAAa,CAAC,CAAC;YAC9E,IAAI,OAAO,IAAI,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC;gBACxC,MAAM,YAAY,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;gBACrD,MAAM,MAAM,GAAG,YAAY,YAAY,UAAU;oBAC/C,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC;oBAC7C,CAAC,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;gBAEzB,MAAM,MAAM,GAAG,MAAA,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,mCAAI,CAAC,CAAC;gBAChD,MAAM,IAAI,GAAG,MAAA,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,mCAAI,EAAE,CAAC;gBAE7C,MAAM,SAAS,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;gBACvC,OAAO,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC;oBAC9B,MAAM;oBACN,QAAQ,EAAE,QAAQ;oBAClB,KAAK,EAAE,IAAI;oBACX,MAAM;oBACN,IAAI;iBACL,CAAC,CAAC;YACL,CAAC;QACH,CAAC;aAAM,IAAI,UAAU,KAAK,OAAO,EAAE,CAAC;YAClC,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,OAAO,CAAC,CAAC;YAC7D,IAAI,QAAQ,EAAE,CAAC;gBACb,OAAO,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;YAC3E,CAAC;QACH,CAAC;aAAM,IAAI,UAAU,KAAK,UAAU,EAAE,CAAC;YACrC,KAAK,MAAM,YAAY,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;gBACnD,IAAI,MAAM,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,EAAE,YAAY,CAAC,IAAI,CAAC,EAAE,CAAC;oBAC9D,OAAO,GAAG,IAAI,CAAC;oBACf,MAAM,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,MAAM,CAAC;wBAC1C,KAAK,EAAE,EAAE,EAAE,EAAE,YAAY,CAAC,EAAE,EAAE;qBAC/B,CAAC,CAAC;oBACH,MAAM;gBACR,CAAC;YACH,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,IAAI,CAAC,CAAC,aAAa,CAAC,CAAC;YAC9E,IAAI,OAAO,IAAI,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC;gBACxC,MAAM,YAAY,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;gBACrD,MAAM,MAAM,GAAG,YAAY,YAAY,UAAU;oBAC/C,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC;oBAC7C,CAAC,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;gBAEzB,MAAM,MAAM,GAAG,MAAA,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,mCAAI,CAAC,CAAC;gBAChD,MAAM,IAAI,GAAG,MAAA,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,mCAAI,EAAE,CAAC;gBAE7C,MAAM,SAAS,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;gBACvC,OAAO,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC;oBAC9B,MAAM;oBACN,QAAQ,EAAE,QAAQ;oBAClB,KAAK,EAAE,IAAI;oBACX,MAAM;oBACN,IAAI;iBACL,CAAC,CAAC;YACL,CAAC;YAED,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,OAAO,CAAC,CAAC;gBAC7D,IAAI,QAAQ,EAAE,CAAC;oBACb,OAAO,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;gBAC3E,CAAC;YACH,CAAC;QACH,CAAC;QAED,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,gBAAgB,EAAE,MAAM,EAAE,mBAAmB,CAAC,CAAC,CAAC;QAC9F,CAAC;QAED,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAChF,MAAM,EACN,IAAI,CAAC,EAAE,EACP,SAAS,EACT,SAAS,CACV,CAAC;QAEF,IAAI,CAAC,IAAI,CAAC,iBAAiB,CACzB,MAAM,EACN;YACE,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,IAAI,EAAE,uBAAuB;YAC7B,SAAS,EAAE;gBACT,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,SAAS;gBACT,SAAS;gBACT,QAAQ,EAAE,SAAS;aACpB;SACF,CACF,CAAC;QAEF,MAAM,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QACvD,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,CAAC;IAChD,CAAC;IAED,KAAK,CAAC,qBAAqB,CAAC,MAAc,EAAE,QAAgB,EAAE,YAAoB,EAAE,SAAiB,EAAE,SAAiB;QACtH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC;QACnE,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC;YAC7C,KAAK,EAAE,EAAE,EAAE,EAAE,OAAO,CAAC,MAAM,EAAE;YAC7B,OAAO,EAAE;gBACP,kBAAkB,EAAE,IAAI;aACzB;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,cAAc,EAAE,MAAM,EAAE,gBAAgB,CAAC,CAAC,CAAC;QACzF,CAAC;QAED,IAAI,OAAO,GAAG,KAAK,CAAC;QACpB,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC3C,IAAI,MAAM,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,YAAY,EAAE,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC9D,OAAO,GAAG,IAAI,CAAC;gBACf,MAAM,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,MAAM,CAAC;oBAC1C,KAAK,EAAE,EAAE,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE;iBACvB,CAAC,CAAC;gBACH,MAAM;YACR,CAAC;QACH,CAAC;QAED,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,qBAAqB,EAAE,MAAM,EAAE,wBAAwB,CAAC,CAAC,CAAC;QACxG,CAAC;QAED,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAChF,MAAM,EACN,IAAI,CAAC,EAAE,EACP,SAAS,EACT,SAAS,CACV,CAAC;QAEF,MAAM,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QACvD,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,CAAC;IAChD,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,QAAgB;QAClD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC;QAEnE,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC;YACrD,KAAK,EAAE;gBACL,OAAO,EAAE,OAAO,CAAC,MAAM;gBACvB,WAAW,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE;gBAC1B,IAAI,EAAE,OAAO;aACd;YACD,OAAO,EAAE;gBACP,cAAc,EAAE,IAAI;aACrB;SACF,CAAC,CAAC;QAEH,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC5B,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,iBAAiB,EAAE,MAAM,EAAE,0CAA0C,CAAC,CAAC,CAAC;QACtH,CAAC;QAED,MAAM,QAAQ,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;QAC/B,IAAI,CAAC,QAAQ,CAAC,cAAc,IAAI,QAAQ,CAAC,cAAc,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACrE,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,iBAAiB,EAAE,MAAM,EAAE,0CAA0C,CAAC,CAAC,CAAC;QACtH,CAAC;QAED,MAAM,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,QAAQ,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;QAElG,OAAO;YACL,OAAO,EAAE,IAAI;YACb,WAAW,EAAE,IAAI;SAClB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,qCAAqC,CAAC,QAAgB;QAC1D,MAAM,EAAE,6BAA6B,EAAE,GAAG,wDAAa,wBAAwB,GAAC,CAAC;QACjF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC;QAEnE,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC;YAC5C,KAAK,EAAE,EAAE,EAAE,EAAE,OAAO,CAAC,MAAM,EAAE;YAC7B,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,KAAK,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,WAAW,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;oBACvD,OAAO,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE;iBACrC;aACF;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxC,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,uBAAuB,EAAE,IAAI,EAAE,0BAA0B,CAAC,CAAC,CAAC;QAC1G,CAAC;QAED,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,IAAI,uBAAuB,CAAC,CAAC,QAAQ,CAAC;QAEnF,MAAM,gBAAgB,GAAG,IAAI,CAAC,QAAQ;aACnC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,iBAAiB,IAAI,GAAG,CAAC,iBAAiB,CAAC,MAAM,GAAG,CAAC,CAAC;aACxE,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YACX,EAAE,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC;SAC9E,CAAC,CAAC,CAAC;QAEN,MAAM,OAAO,GAAG,MAAM,6BAA6B,CAAC;YAClD,IAAI;YACJ,gBAAgB;YAChB,gBAAgB,EAAE,WAAW;SAC9B,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,MAAM,CAAC;YAC1C,IAAI,EAAE;gBACJ,WAAW,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE;gBAChC,IAAI,EAAE,OAAO,CAAC,SAAS;gBACvB,QAAQ,EAAE,CAAC;gBACX,UAAU,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;aACjD;SACF,CAAC,CAAC;QAEH,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,KAAK,CAAC,4BAA4B,CAAC,MAAc,EAAE,QAAgB,EAAE,iBAAsB,EAAE,SAAiB,EAAE,SAAiB;QAC/H,MAAM,EAAE,4BAA4B,EAAE,GAAG,wDAAa,wBAAwB,GAAC,CAAC;QAChF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC;QACnE,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAE9B,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,SAAS,CAAC;YACrE,KAAK,EAAE;gBACL,QAAQ,EAAE;oBACR,OAAO,EAAE,MAAM;oBACf,IAAI,EAAE,UAAU;oBAChB,WAAW,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE;iBAC3B;gBACD,WAAW,EAAE,IAAI;gBACjB,UAAU,EAAE,EAAE,EAAE,EAAE,IAAI,IAAI,EAAE,EAAE;aAC/B;YACD,OAAO,EAAE;gBACP,QAAQ,EAAE;oBACR,OAAO,EAAE,EAAE,iBAAiB,EAAE,IAAI,EAAE;iBACrC;aACF;YACD,OAAO,EAAE,EAAE,UAAU,EAAE,MAAM,EAAE;SAChC,CAAC,CAAC;QAEH,IAAI,CAAC,eAAe,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAC,CAAC,EAAE,CAAC;YACvE,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,mBAAmB,EAAE,MAAM,EAAE,iCAAiC,CAAC,CAAC,CAAC;QAC/G,CAAC;QAED,MAAM,aAAa,GAAG,eAAe,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC;QACpE,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,IAAI,uBAAuB,CAAC,CAAC,QAAQ,CAAC;QACnF,MAAM,cAAc,GAAG,OAAO,CAAC,GAAG,CAAC,YAAY,IAAI,uBAAuB,CAAC;QAE3E,MAAM,YAAY,GAAG,MAAM,4BAA4B,CAAC;YACtD,QAAQ,EAAE,iBAAiB;YAC3B,iBAAiB,EAAE,eAAe,CAAC,IAAI;YACvC,cAAc;YACd,YAAY,EAAE,IAAI;YAClB,UAAU,EAAE;gBACV,EAAE,EAAE,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC;gBAClE,SAAS,EAAE,aAAa,CAAC,UAAU;gBACnC,OAAO,EAAE,aAAa,CAAC,UAAU;aAClC;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,YAAY,CAAC,QAAQ,EAAE,CAAC;YAC3B,MAAM,IAAI,4BAAmB,CAAC,IAAA,0BAAa,EAAC,oBAAoB,EAAE,MAAM,EAAE,sBAAsB,CAAC,CAAC,CAAC;QACrG,CAAC;QAED,MAAM,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC,MAAM,CAAC;YACzC,KAAK,EAAE,EAAE,EAAE,EAAE,aAAa,CAAC,EAAE,EAAE;YAC/B,IAAI,EAAE;gBACJ,UAAU,EAAE,YAAY,CAAC,kBAAkB,CAAC,UAAU;gBACtD,YAAY,EAAE,IAAI,IAAI,EAAE;aACzB;SACF,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,MAAM,CAAC;YAC1C,KAAK,EAAE,EAAE,EAAE,EAAE,eAAe,CAAC,EAAE,EAAE;YACjC,IAAI,EAAE,EAAE,WAAW,EAAE,IAAI,IAAI,EAAE,EAAE;SAClC,CAAC,CAAC;QAEH,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,wBAAwB,CAChF,MAAM,EACN,MAAM,EACN,SAAS,EACT,SAAS,CACV,CAAC;QAEF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,CAAC,CAAC;QACzE,IAAI,CAAC,IAAI,CAAC,iBAAiB,CACzB,MAAM,EACN;YACE,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,IAAI,EAAE,uBAAuB;YAC7B,SAAS,EAAE;gBACT,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,SAAS;gBACT,SAAS;gBACT,QAAQ,EAAE,SAAS;aACpB;SACF,CACF,CAAC;QAEF,MAAM,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QACtD,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,OAAO,EAAE,CAAC;IAChD,CAAC;CACF,CAAA;AAphBY,kCAAW;sBAAX,WAAW;IADvB,IAAA,mBAAU,GAAE;IAKR,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,0BAAa,CAAC,CAAC,CAAA;IAEvC,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,0BAAkB,CAAC,CAAC,CAAA;IAE5C,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,gCAAc,CAAC,CAAC,CAAA;IAExC,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,kCAAe,CAAC,CAAC,CAAA;IAEzC,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,4BAAY,CAAC,CAAC,CAAA;IAEtC,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,gCAAc,CAAC,CAAC,CAAA;IAExC,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,0BAAW,CAAC,CAAC,CAAA;IAErC,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,oCAAgB,CAAC,CAAC,CAAA;qCAblB,0BAAa;QAEf,0BAAkB;QAEf,gCAAc;QAEb,kCAAe;QAElB,4BAAY;QAEV,gCAAc;QAEjB,0BAAW;QAEN,oCAAgB;GAnBnC,WAAW,CAohBvB"}

package/dist/auth/consts/body.d.ts

@@ -0,0 +1,2 @@
+export declare const getBody: (url: string) => string;
+//# sourceMappingURL=body.d.ts.map

package/dist/auth/consts/body.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"body.d.ts","sourceRoot":"","sources":["../../../src/auth/consts/body.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,OAAO,GAAI,KAAK,MAAM,KAAG,MA0BrC,CAAC"}

package/dist/auth/consts/body.js

@@ -0,0 +1,32 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getBody = void 0;
+const getBody = (url) => {
+    return `
+        <body style="font-family: Arial, sans-serif; background-color: #eef2f7; color: #333; margin: 0; padding: 0;">
+                <div style="max-width: 600px; margin: 40px auto; background-color: #ffffff; border: 1px solid #dcdfe6; border-radius: 10px; padding: 40px; box-shadow: 0 4px 12px rgba(0, 0, 0, 0.15);">
+                        <div style="text-align: center; margin-bottom: 30px;">
+                                <img style="margin-bottom: 16px" src="https://coinbitclub.vip/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Fcoinbitclub-logo.b29de722.png&w=640&q=75" alt="Coinbitclub Logo" />
+                                <h1 style="color: #2c3e50; font-size: 26px; margin: 0;">Recuperação de Senha - CoinBitClub</h1>
+                        </div>
+                        <div style="line-height: 1.8; font-size: 16px; color: #555; text-align: justify;">
+                                <p>Olá,</p>
+                                <p>Recebemos uma solicitação para redefinir sua senha em nossa plataforma. Para garantir que você é o proprietário desta conta, criamos um link exclusivo para redefinir sua senha.</p>
+                                <p>Se você não fez essa solicitação, entre em contato conosco imediatamente para garantir a segurança de sua conta.</p>
+                                <p>Para redefinir sua senha, clique no botão abaixo:</p>
+                        </div>
+                        <div style="text-align: center; margin: 30px 0;">
+                                <a href="${url}" style="display: inline-block; padding: 15px 30px; background-color: #3498db; color: #ffffff; text-decoration: none; font-size: 16px; font-weight: bold; border-radius: 8px; box-shadow: 0 2px 5px rgba(0, 0, 0, 0.2);">Redefinir Senha</a>
+                        </div>
+                        <div style="font-size: 14px; line-height: 1.7; color: #666;">
+                                <p>Por razões de segurança, evite compartilhar suas informações de login ou clicar em links suspeitos.</p>
+                                <p>Agradecemos por escolher nossa plataforma!</p>
+                        </div>
+                        <div style="text-align: center; font-size: 13px; color: #95a5a6; margin-top: 40px; border-top: 1px solid #ecf0f1; padding-top: 20px;">
+                                <p>Este email foi enviado automaticamente. Por favor, não responda.</p>
+                        </div>
+                </div>
+        </body>`;
+};
+exports.getBody = getBody;
+//# sourceMappingURL=body.js.map

package/dist/auth/consts/body.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"body.js","sourceRoot":"","sources":["../../../src/auth/consts/body.ts"],"names":[],"mappings":";;;AAAO,MAAM,OAAO,GAAG,CAAC,GAAW,EAAU,EAAE;IAC7C,OAAO;;;;;;;;;;;;;;2CAckC,GAAG;;;;;;;;;;gBAU9B,CAAC;AACjB,CAAC,CAAC;AA1BW,QAAA,OAAO,WA0BlB"}

package/dist/auth/dto/change.dto.d.ts

@@ -0,0 +1,7 @@
+export declare class ChangeDTO {
+    newPassword: string;
+    confirmNewPassword: string;
+    currentPassword: string;
+    email: string;
+}
+//# sourceMappingURL=change.dto.d.ts.map

package/dist/auth/dto/change.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"change.dto.d.ts","sourceRoot":"","sources":["../../../src/auth/dto/change.dto.ts"],"names":[],"mappings":"AAEA,qBAAa,SAAS;IAOpB,WAAW,EAAE,MAAM,CAAC;IAMpB,kBAAkB,EAAE,MAAM,CAAC;IAQ3B,eAAe,EAAE,MAAM,CAAC;IAWxB,KAAK,EAAE,MAAM,CAAC;CACf"}

package/dist/auth/dto/change.dto.js

@@ -0,0 +1,51 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ChangeDTO = void 0;
+const class_validator_1 = require("class-validator");
+class ChangeDTO {
+}
+exports.ChangeDTO = ChangeDTO;
+__decorate([
+    (0, class_validator_1.IsNotEmpty)({
+        message: 'Precisa preencher a nova senha',
+    }),
+    (0, class_validator_1.MinLength)(8, {
+        message: 'A senha deve ter pelo menos 8 caracteres',
+    }),
+    __metadata("design:type", String)
+], ChangeDTO.prototype, "newPassword", void 0);
+__decorate([
+    (0, class_validator_1.IsNotEmpty)({
+        message: 'Precisa confirmar a nova senha',
+    }),
+    (0, class_validator_1.MinLength)(8),
+    __metadata("design:type", String)
+], ChangeDTO.prototype, "confirmNewPassword", void 0);
+__decorate([
+    (0, class_validator_1.IsNotEmpty)({
+        message: 'Precisa preencher a senha atual',
+    }),
+    (0, class_validator_1.MinLength)(8, {
+        message: 'A senha atual deve ter pelo menos 8 caracteres',
+    }),
+    __metadata("design:type", String)
+], ChangeDTO.prototype, "currentPassword", void 0);
+__decorate([
+    (0, class_validator_1.IsNotEmpty)({
+        message: 'Precisa preencher o email',
+    }),
+    (0, class_validator_1.IsEmail)({}, {
+        message: 'O email informado não é válido.',
+    }),
+    __metadata("design:type", String)
+], ChangeDTO.prototype, "email", void 0);
+//# sourceMappingURL=change.dto.js.map

package/dist/auth/dto/change.dto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"change.dto.js","sourceRoot":"","sources":["../../../src/auth/dto/change.dto.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAAiE;AAEjE,MAAa,SAAS;CAiCrB;AAjCD,8BAiCC;AA1BC;IANC,IAAA,4BAAU,EAAC;QACV,OAAO,EAAE,gCAAgC;KAC1C,CAAC;IACD,IAAA,2BAAS,EAAC,CAAC,EAAE;QACZ,OAAO,EAAE,0CAA0C;KACpD,CAAC;;8CACkB;AAMpB;IAJC,IAAA,4BAAU,EAAC;QACV,OAAO,EAAE,gCAAgC;KAC1C,CAAC;IACD,IAAA,2BAAS,EAAC,CAAC,CAAC;;qDACc;AAQ3B;IANC,IAAA,4BAAU,EAAC;QACV,OAAO,EAAE,iCAAiC;KAC3C,CAAC;IACD,IAAA,2BAAS,EAAC,CAAC,EAAE;QACZ,OAAO,EAAE,gDAAgD;KAC1D,CAAC;;kDACsB;AAWxB;IATC,IAAA,4BAAU,EAAC;QACV,OAAO,EAAE,2BAA2B;KACrC,CAAC;IACD,IAAA,yBAAO,EACN,EAAE,EACF;QACE,OAAO,EAAE,iCAAiC;KAC3C,CACF;;wCACa"}

package/dist/auth/dto/create-user.dto.d.ts

@@ -0,0 +1,12 @@
+export declare class CreateUserDTO {
+    code: string;
+    password: string;
+    street: string;
+    number?: string;
+    complement?: string;
+    district: string;
+    city: string;
+    state: string;
+    postal_code: string;
+}
+//# sourceMappingURL=create-user.dto.d.ts.map

package/dist/auth/dto/create-user.dto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"create-user.dto.d.ts","sourceRoot":"","sources":["../../../src/auth/dto/create-user.dto.ts"],"names":[],"mappings":"AAIA,qBAAa,aAAa;IAGxB,IAAI,EAAE,MAAM,CAAC;IAKb,QAAQ,EAAE,MAAM,CAAC;IAGjB,MAAM,EAAE,MAAM,CAAC;IAIf,MAAM,CAAC,EAAE,MAAM,CAAC;IAIhB,UAAU,CAAC,EAAE,MAAM,CAAC;IAGpB,QAAQ,EAAE,MAAM,CAAC;IAGjB,IAAI,EAAE,MAAM,CAAC;IAGb,KAAK,EAAE,MAAM,CAAC;IAGd,WAAW,EAAE,MAAM,CAAC;CACrB"}