@igoruehara/canvas-flow 0.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +21 -0
- package/README.md +152 -0
- package/bin/canvas-flow.js +1132 -0
- package/package.json +68 -0
- package/public/assets/index-PCQkqMUe.css +1 -0
- package/public/assets/index-qV8twxcq.js +767 -0
- package/public/index.html +13 -0
- package/server/api-key/api-key-connect-provider.d.ts +104 -0
- package/server/api-key/api-key-connect-provider.js +14 -0
- package/server/api-key/api-key-connect-provider.js.map +1 -0
- package/server/api-key/api-key-constants-model.d.ts +2 -0
- package/server/api-key/api-key-constants-model.js +6 -0
- package/server/api-key/api-key-constants-model.js.map +1 -0
- package/server/api-key/api-key-controller.d.ts +12 -0
- package/server/api-key/api-key-controller.js +86 -0
- package/server/api-key/api-key-controller.js.map +1 -0
- package/server/api-key/api-key-module.d.ts +2 -0
- package/server/api-key/api-key-module.js +27 -0
- package/server/api-key/api-key-module.js.map +1 -0
- package/server/api-key/api-key-schema.d.ts +72 -0
- package/server/api-key/api-key-schema.js +98 -0
- package/server/api-key/api-key-schema.js.map +1 -0
- package/server/api-key/api-key-service.d.ts +45 -0
- package/server/api-key/api-key-service.js +151 -0
- package/server/api-key/api-key-service.js.map +1 -0
- package/server/api-key/dto/create-api-key.dto.d.ts +8 -0
- package/server/api-key/dto/create-api-key.dto.js +7 -0
- package/server/api-key/dto/create-api-key.dto.js.map +1 -0
- package/server/app.module.d.ts +2 -0
- package/server/app.module.js +53 -0
- package/server/app.module.js.map +1 -0
- package/server/auth/auth-connect-provider.d.ts +140 -0
- package/server/auth/auth-connect-provider.js +20 -0
- package/server/auth/auth-connect-provider.js.map +1 -0
- package/server/auth/auth-constants-model.d.ts +4 -0
- package/server/auth/auth-constants-model.js +8 -0
- package/server/auth/auth-constants-model.js.map +1 -0
- package/server/auth/auth-controller.d.ts +25 -0
- package/server/auth/auth-controller.js +96 -0
- package/server/auth/auth-controller.js.map +1 -0
- package/server/auth/auth-module.d.ts +2 -0
- package/server/auth/auth-module.js +26 -0
- package/server/auth/auth-module.js.map +1 -0
- package/server/auth/auth-organization-schema.d.ts +44 -0
- package/server/auth/auth-organization-schema.js +62 -0
- package/server/auth/auth-organization-schema.js.map +1 -0
- package/server/auth/auth-schema.d.ts +56 -0
- package/server/auth/auth-schema.js +77 -0
- package/server/auth/auth-schema.js.map +1 -0
- package/server/auth/auth-service.d.ts +64 -0
- package/server/auth/auth-service.js +343 -0
- package/server/auth/auth-service.js.map +1 -0
- package/server/canvas-flow/canvas-flow-connect-provider.d.ts +278 -0
- package/server/canvas-flow/canvas-flow-connect-provider.js +24 -0
- package/server/canvas-flow/canvas-flow-connect-provider.js.map +1 -0
- package/server/canvas-flow/canvas-flow-constants-model.d.ts +6 -0
- package/server/canvas-flow/canvas-flow-constants-model.js +10 -0
- package/server/canvas-flow/canvas-flow-constants-model.js.map +1 -0
- package/server/canvas-flow/canvas-flow-controller.d.ts +98 -0
- package/server/canvas-flow/canvas-flow-controller.js +423 -0
- package/server/canvas-flow/canvas-flow-controller.js.map +1 -0
- package/server/canvas-flow/canvas-flow-module.d.ts +2 -0
- package/server/canvas-flow/canvas-flow-module.js +27 -0
- package/server/canvas-flow/canvas-flow-module.js.map +1 -0
- package/server/canvas-flow/canvas-flow-schema.d.ts +192 -0
- package/server/canvas-flow/canvas-flow-schema.js +239 -0
- package/server/canvas-flow/canvas-flow-schema.js.map +1 -0
- package/server/canvas-flow/canvas-flow-service.d.ts +250 -0
- package/server/canvas-flow/canvas-flow-service.js +1681 -0
- package/server/canvas-flow/canvas-flow-service.js.map +1 -0
- package/server/canvas-flow/dto/create-canvas-flow.dto.d.ts +11 -0
- package/server/canvas-flow/dto/create-canvas-flow.dto.js +61 -0
- package/server/canvas-flow/dto/create-canvas-flow.dto.js.map +1 -0
- package/server/canvas-flow/dto/update-canvas-flow.dto.d.ts +10 -0
- package/server/canvas-flow/dto/update-canvas-flow.dto.js +56 -0
- package/server/canvas-flow/dto/update-canvas-flow.dto.js.map +1 -0
- package/server/constants-global.d.ts +1 -0
- package/server/constants-global.js +5 -0
- package/server/constants-global.js.map +1 -0
- package/server/database/database.module.d.ts +2 -0
- package/server/database/database.module.js +23 -0
- package/server/database/database.module.js.map +1 -0
- package/server/database/database.providers.d.ts +7 -0
- package/server/database/database.providers.js +26 -0
- package/server/database/database.providers.js.map +1 -0
- package/server/documents/documents-connect-provider.d.ts +140 -0
- package/server/documents/documents-connect-provider.js +14 -0
- package/server/documents/documents-connect-provider.js.map +1 -0
- package/server/documents/documents-constants-model.d.ts +2 -0
- package/server/documents/documents-constants-model.js +6 -0
- package/server/documents/documents-constants-model.js.map +1 -0
- package/server/documents/documents-controller.d.ts +16 -0
- package/server/documents/documents-controller.js +117 -0
- package/server/documents/documents-controller.js.map +1 -0
- package/server/documents/documents-module.d.ts +2 -0
- package/server/documents/documents-module.js +27 -0
- package/server/documents/documents-module.js.map +1 -0
- package/server/documents/documents-schema.d.ts +96 -0
- package/server/documents/documents-schema.js +38 -0
- package/server/documents/documents-schema.js.map +1 -0
- package/server/documents/documents-service.d.ts +164 -0
- package/server/documents/documents-service.js +1417 -0
- package/server/documents/documents-service.js.map +1 -0
- package/server/flow-tag/flow-tag-connect-provider.d.ts +146 -0
- package/server/flow-tag/flow-tag-connect-provider.js +14 -0
- package/server/flow-tag/flow-tag-connect-provider.js.map +1 -0
- package/server/flow-tag/flow-tag-constants-model.d.ts +2 -0
- package/server/flow-tag/flow-tag-constants-model.js +6 -0
- package/server/flow-tag/flow-tag-constants-model.js.map +1 -0
- package/server/flow-tag/flow-tag-module.d.ts +2 -0
- package/server/flow-tag/flow-tag-module.js +24 -0
- package/server/flow-tag/flow-tag-module.js.map +1 -0
- package/server/flow-tag/flow-tag-schema.d.ts +100 -0
- package/server/flow-tag/flow-tag-schema.js +131 -0
- package/server/flow-tag/flow-tag-schema.js.map +1 -0
- package/server/flow-tag/flow-tag-service.d.ts +77 -0
- package/server/flow-tag/flow-tag-service.js +156 -0
- package/server/flow-tag/flow-tag-service.js.map +1 -0
- package/server/health.controller.d.ts +7 -0
- package/server/health.controller.js +33 -0
- package/server/health.controller.js.map +1 -0
- package/server/http-batch/http-batch-controller.d.ts +345 -0
- package/server/http-batch/http-batch-controller.js +40 -0
- package/server/http-batch/http-batch-controller.js.map +1 -0
- package/server/http-batch/http-batch-module.d.ts +2 -0
- package/server/http-batch/http-batch-module.js +25 -0
- package/server/http-batch/http-batch-module.js.map +1 -0
- package/server/http-batch/http-batch-service.d.ts +381 -0
- package/server/http-batch/http-batch-service.js +268 -0
- package/server/http-batch/http-batch-service.js.map +1 -0
- package/server/lambda.d.ts +2 -0
- package/server/lambda.js +115 -0
- package/server/lambda.js.map +1 -0
- package/server/llm/openai-provider.d.ts +8 -0
- package/server/llm/openai-provider.js +256 -0
- package/server/llm/openai-provider.js.map +1 -0
- package/server/main.d.ts +1 -0
- package/server/main.js +80 -0
- package/server/main.js.map +1 -0
- package/server/mcp-oauth/mcp-oauth-connect-provider.d.ts +164 -0
- package/server/mcp-oauth/mcp-oauth-connect-provider.js +14 -0
- package/server/mcp-oauth/mcp-oauth-connect-provider.js.map +1 -0
- package/server/mcp-oauth/mcp-oauth-constants-model.d.ts +2 -0
- package/server/mcp-oauth/mcp-oauth-constants-model.js +6 -0
- package/server/mcp-oauth/mcp-oauth-constants-model.js.map +1 -0
- package/server/mcp-oauth/mcp-oauth-controller.d.ts +66 -0
- package/server/mcp-oauth/mcp-oauth-controller.js +166 -0
- package/server/mcp-oauth/mcp-oauth-controller.js.map +1 -0
- package/server/mcp-oauth/mcp-oauth-module.d.ts +2 -0
- package/server/mcp-oauth/mcp-oauth-module.js +27 -0
- package/server/mcp-oauth/mcp-oauth-module.js.map +1 -0
- package/server/mcp-oauth/mcp-oauth-schema.d.ts +112 -0
- package/server/mcp-oauth/mcp-oauth-schema.js +148 -0
- package/server/mcp-oauth/mcp-oauth-schema.js.map +1 -0
- package/server/mcp-oauth/mcp-oauth-service.d.ts +189 -0
- package/server/mcp-oauth/mcp-oauth-service.js +545 -0
- package/server/mcp-oauth/mcp-oauth-service.js.map +1 -0
- package/server/memory/memory-connect-provider.d.ts +200 -0
- package/server/memory/memory-connect-provider.js +26 -0
- package/server/memory/memory-connect-provider.js.map +1 -0
- package/server/memory/memory-constants-model.d.ts +6 -0
- package/server/memory/memory-constants-model.js +10 -0
- package/server/memory/memory-constants-model.js.map +1 -0
- package/server/memory/memory-controller.d.ts +15 -0
- package/server/memory/memory-controller.js +53 -0
- package/server/memory/memory-controller.js.map +1 -0
- package/server/memory/memory-history-schema.d.ts +48 -0
- package/server/memory/memory-history-schema.js +62 -0
- package/server/memory/memory-history-schema.js.map +1 -0
- package/server/memory/memory-module.d.ts +2 -0
- package/server/memory/memory-module.js +26 -0
- package/server/memory/memory-module.js.map +1 -0
- package/server/memory/memory-schema.d.ts +48 -0
- package/server/memory/memory-schema.js +62 -0
- package/server/memory/memory-schema.js.map +1 -0
- package/server/memory/memory-service.d.ts +134 -0
- package/server/memory/memory-service.js +317 -0
- package/server/memory/memory-service.js.map +1 -0
- package/server/memory/memory-trace-history-schema.d.ts +48 -0
- package/server/memory/memory-trace-history-schema.js +62 -0
- package/server/memory/memory-trace-history-schema.js.map +1 -0
- package/server/observability/observability.d.ts +3 -0
- package/server/observability/observability.js +62 -0
- package/server/observability/observability.js.map +1 -0
- package/server/production-guard.d.ts +9 -0
- package/server/production-guard.js +105 -0
- package/server/production-guard.js.map +1 -0
- package/server/provider-config/provider-config-connect-provider.d.ts +44 -0
- package/server/provider-config/provider-config-connect-provider.js +14 -0
- package/server/provider-config/provider-config-connect-provider.js.map +1 -0
- package/server/provider-config/provider-config-constants-model.d.ts +3 -0
- package/server/provider-config/provider-config-constants-model.js +7 -0
- package/server/provider-config/provider-config-constants-model.js.map +1 -0
- package/server/provider-config/provider-config-controller.d.ts +23 -0
- package/server/provider-config/provider-config-controller.js +80 -0
- package/server/provider-config/provider-config-controller.js.map +1 -0
- package/server/provider-config/provider-config-module.d.ts +2 -0
- package/server/provider-config/provider-config-module.js +27 -0
- package/server/provider-config/provider-config-module.js.map +1 -0
- package/server/provider-config/provider-config-schema.d.ts +32 -0
- package/server/provider-config/provider-config-schema.js +46 -0
- package/server/provider-config/provider-config-schema.js.map +1 -0
- package/server/provider-config/provider-config-service.d.ts +178 -0
- package/server/provider-config/provider-config-service.js +689 -0
- package/server/provider-config/provider-config-service.js.map +1 -0
- package/server/queue/queue-job-connect-provider.d.ts +128 -0
- package/server/queue/queue-job-connect-provider.js +14 -0
- package/server/queue/queue-job-connect-provider.js.map +1 -0
- package/server/queue/queue-job-constants-model.d.ts +2 -0
- package/server/queue/queue-job-constants-model.js +6 -0
- package/server/queue/queue-job-constants-model.js.map +1 -0
- package/server/queue/queue-job-schema.d.ts +88 -0
- package/server/queue/queue-job-schema.js +119 -0
- package/server/queue/queue-job-schema.js.map +1 -0
- package/server/queue/queue-lock-connect-provider.d.ts +44 -0
- package/server/queue/queue-lock-connect-provider.js +14 -0
- package/server/queue/queue-lock-connect-provider.js.map +1 -0
- package/server/queue/queue-lock-constants-model.d.ts +2 -0
- package/server/queue/queue-lock-constants-model.js +6 -0
- package/server/queue/queue-lock-constants-model.js.map +1 -0
- package/server/queue/queue-lock-schema.d.ts +32 -0
- package/server/queue/queue-lock-schema.js +47 -0
- package/server/queue/queue-lock-schema.js.map +1 -0
- package/server/queue/queue-message-dedupe-connect-provider.d.ts +116 -0
- package/server/queue/queue-message-dedupe-connect-provider.js +14 -0
- package/server/queue/queue-message-dedupe-connect-provider.js.map +1 -0
- package/server/queue/queue-message-dedupe-constants-model.d.ts +2 -0
- package/server/queue/queue-message-dedupe-constants-model.js +6 -0
- package/server/queue/queue-message-dedupe-constants-model.js.map +1 -0
- package/server/queue/queue-message-dedupe-schema.d.ts +80 -0
- package/server/queue/queue-message-dedupe-schema.js +108 -0
- package/server/queue/queue-message-dedupe-schema.js.map +1 -0
- package/server/queue/queue-module.d.ts +2 -0
- package/server/queue/queue-module.js +33 -0
- package/server/queue/queue-module.js.map +1 -0
- package/server/queue/queue-rate-limit-connect-provider.d.ts +56 -0
- package/server/queue/queue-rate-limit-connect-provider.js +14 -0
- package/server/queue/queue-rate-limit-connect-provider.js.map +1 -0
- package/server/queue/queue-rate-limit-constants-model.d.ts +2 -0
- package/server/queue/queue-rate-limit-constants-model.js +6 -0
- package/server/queue/queue-rate-limit-constants-model.js.map +1 -0
- package/server/queue/queue-rate-limit-schema.d.ts +40 -0
- package/server/queue/queue-rate-limit-schema.js +57 -0
- package/server/queue/queue-rate-limit-schema.js.map +1 -0
- package/server/queue/sqs-transition-service.d.ts +123 -0
- package/server/queue/sqs-transition-service.js +442 -0
- package/server/queue/sqs-transition-service.js.map +1 -0
- package/server/rag/rag-controller.d.ts +167 -0
- package/server/rag/rag-controller.js +232 -0
- package/server/rag/rag-controller.js.map +1 -0
- package/server/rag/rag-module.d.ts +2 -0
- package/server/rag/rag-module.js +30 -0
- package/server/rag/rag-module.js.map +1 -0
- package/server/rag/rag-service.d.ts +361 -0
- package/server/rag/rag-service.js +2864 -0
- package/server/rag/rag-service.js.map +1 -0
- package/server/runner/flow-templates.d.ts +55 -0
- package/server/runner/flow-templates.js +388 -0
- package/server/runner/flow-templates.js.map +1 -0
- package/server/runner/langgraph-runtime.service.d.ts +77 -0
- package/server/runner/langgraph-runtime.service.js +221 -0
- package/server/runner/langgraph-runtime.service.js.map +1 -0
- package/server/runner/runner-controller.d.ts +1044 -0
- package/server/runner/runner-controller.js +751 -0
- package/server/runner/runner-controller.js.map +1 -0
- package/server/runner/runner-module.d.ts +2 -0
- package/server/runner/runner-module.js +37 -0
- package/server/runner/runner-module.js.map +1 -0
- package/server/runner/runner-queue-processor.d.ts +29 -0
- package/server/runner/runner-queue-processor.js +259 -0
- package/server/runner/runner-queue-processor.js.map +1 -0
- package/server/runner/runner-service.d.ts +1761 -0
- package/server/runner/runner-service.js +14256 -0
- package/server/runner/runner-service.js.map +1 -0
- package/server/scripts/migrate-canvas-flow-versions.d.ts +1 -0
- package/server/scripts/migrate-canvas-flow-versions.js +72 -0
- package/server/scripts/migrate-canvas-flow-versions.js.map +1 -0
- package/server/scripts/migrate-mcp-oauth-user-scope.d.ts +1 -0
- package/server/scripts/migrate-mcp-oauth-user-scope.js +95 -0
- package/server/scripts/migrate-mcp-oauth-user-scope.js.map +1 -0
- package/templates/config.example.json +204 -0
- package/templates/config.production.example.json +206 -0
- package/templates/docker-compose.yml +60 -0
|
@@ -0,0 +1,62 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
|
|
3
|
+
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
|
|
4
|
+
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
|
|
5
|
+
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
|
|
6
|
+
return c > 3 && r && Object.defineProperty(target, key, r), r;
|
|
7
|
+
};
|
|
8
|
+
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
9
|
+
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
10
|
+
};
|
|
11
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
12
|
+
exports.CanvasFlowOrganizationEntity = exports.OrganizationEntitySchema = void 0;
|
|
13
|
+
const mongoose_1 = require("@nestjs/mongoose");
|
|
14
|
+
const mongoose = require("mongoose");
|
|
15
|
+
const mongoose_2 = require("mongoose");
|
|
16
|
+
const auth_constants_model_1 = require("./auth-constants-model");
|
|
17
|
+
exports.OrganizationEntitySchema = new mongoose.Schema({
|
|
18
|
+
organizationId: { type: String, required: true, unique: true, index: true },
|
|
19
|
+
name: { type: String, required: true },
|
|
20
|
+
slug: { type: String, required: true, lowercase: true, trim: true },
|
|
21
|
+
active: { type: Boolean, default: true, index: true },
|
|
22
|
+
ownerUserId: { type: String },
|
|
23
|
+
createdByEmail: { type: String, lowercase: true, trim: true },
|
|
24
|
+
}, {
|
|
25
|
+
collection: auth_constants_model_1.ORGANIZATION_COLLECTION_NAME,
|
|
26
|
+
timestamps: true,
|
|
27
|
+
});
|
|
28
|
+
exports.OrganizationEntitySchema.index({ slug: 1 }, { unique: true });
|
|
29
|
+
let CanvasFlowOrganizationEntity = class CanvasFlowOrganizationEntity extends mongoose_2.Document {
|
|
30
|
+
};
|
|
31
|
+
exports.CanvasFlowOrganizationEntity = CanvasFlowOrganizationEntity;
|
|
32
|
+
__decorate([
|
|
33
|
+
(0, mongoose_1.Prop)({ required: true }),
|
|
34
|
+
__metadata("design:type", String)
|
|
35
|
+
], CanvasFlowOrganizationEntity.prototype, "organizationId", void 0);
|
|
36
|
+
__decorate([
|
|
37
|
+
(0, mongoose_1.Prop)({ required: true }),
|
|
38
|
+
__metadata("design:type", String)
|
|
39
|
+
], CanvasFlowOrganizationEntity.prototype, "name", void 0);
|
|
40
|
+
__decorate([
|
|
41
|
+
(0, mongoose_1.Prop)({ required: true }),
|
|
42
|
+
__metadata("design:type", String)
|
|
43
|
+
], CanvasFlowOrganizationEntity.prototype, "slug", void 0);
|
|
44
|
+
__decorate([
|
|
45
|
+
(0, mongoose_1.Prop)({ default: true }),
|
|
46
|
+
__metadata("design:type", Boolean)
|
|
47
|
+
], CanvasFlowOrganizationEntity.prototype, "active", void 0);
|
|
48
|
+
__decorate([
|
|
49
|
+
(0, mongoose_1.Prop)(),
|
|
50
|
+
__metadata("design:type", String)
|
|
51
|
+
], CanvasFlowOrganizationEntity.prototype, "ownerUserId", void 0);
|
|
52
|
+
__decorate([
|
|
53
|
+
(0, mongoose_1.Prop)(),
|
|
54
|
+
__metadata("design:type", String)
|
|
55
|
+
], CanvasFlowOrganizationEntity.prototype, "createdByEmail", void 0);
|
|
56
|
+
exports.CanvasFlowOrganizationEntity = CanvasFlowOrganizationEntity = __decorate([
|
|
57
|
+
(0, mongoose_1.Schema)({
|
|
58
|
+
collection: auth_constants_model_1.ORGANIZATION_COLLECTION_NAME,
|
|
59
|
+
timestamps: true,
|
|
60
|
+
})
|
|
61
|
+
], CanvasFlowOrganizationEntity);
|
|
62
|
+
//# sourceMappingURL=auth-organization-schema.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"auth-organization-schema.js","sourceRoot":"","sources":["../../src/auth/auth-organization-schema.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,+CAAgD;AAChD,qCAAqC;AACrC,uCAAoC;AACpC,iEAAsE;AAEzD,QAAA,wBAAwB,GAAG,IAAI,QAAQ,CAAC,MAAM,CACzD;IACE,cAAc,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;IAC3E,IAAI,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE;IACtC,IAAI,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE;IACnE,MAAM,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;IACrD,WAAW,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE;IAC7B,cAAc,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE;CAC9D,EACD;IACE,UAAU,EAAE,mDAA4B;IACxC,UAAU,EAAE,IAAI;CACjB,CACF,CAAC;AAEF,gCAAwB,CAAC,KAAK,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;AAMvD,IAAM,4BAA4B,GAAlC,MAAM,4BAA6B,SAAQ,mBAAQ;CAqBzD,CAAA;AArBY,oEAA4B;AAEvC;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;oEACF;AAGvB;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;0DACZ;AAGb;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;0DACZ;AAGb;IADC,IAAA,eAAI,EAAC,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;;4DACR;AAGhB;IADC,IAAA,eAAI,GAAE;;iEACc;AAGrB;IADC,IAAA,eAAI,GAAE;;oEACiB;uCAjBb,4BAA4B;IAJxC,IAAA,iBAAM,EAAC;QACN,UAAU,EAAE,mDAA4B;QACxC,UAAU,EAAE,IAAI;KACjB,CAAC;GACW,4BAA4B,CAqBxC"}
|
|
@@ -0,0 +1,56 @@
|
|
|
1
|
+
import * as mongoose from 'mongoose';
|
|
2
|
+
import { Document } from 'mongoose';
|
|
3
|
+
export declare const EntitySchema: mongoose.Schema<any, mongoose.Model<any, any, any, any, any, any>, {}, {}, {}, {}, {
|
|
4
|
+
collection: string;
|
|
5
|
+
timestamps: true;
|
|
6
|
+
}, {
|
|
7
|
+
organizationId: string;
|
|
8
|
+
name: string;
|
|
9
|
+
active: boolean;
|
|
10
|
+
organizationName: string;
|
|
11
|
+
organizationSlug: string;
|
|
12
|
+
email: string;
|
|
13
|
+
passwordHash: string;
|
|
14
|
+
role: "owner" | "admin" | "member";
|
|
15
|
+
lastLoginAt?: NativeDate;
|
|
16
|
+
} & mongoose.DefaultTimestampProps, mongoose.Document<unknown, {}, mongoose.FlatRecord<{
|
|
17
|
+
organizationId: string;
|
|
18
|
+
name: string;
|
|
19
|
+
active: boolean;
|
|
20
|
+
organizationName: string;
|
|
21
|
+
organizationSlug: string;
|
|
22
|
+
email: string;
|
|
23
|
+
passwordHash: string;
|
|
24
|
+
role: "owner" | "admin" | "member";
|
|
25
|
+
lastLoginAt?: NativeDate;
|
|
26
|
+
} & mongoose.DefaultTimestampProps>, {}, mongoose.MergeType<mongoose.DefaultSchemaOptions, {
|
|
27
|
+
collection: string;
|
|
28
|
+
timestamps: true;
|
|
29
|
+
}>> & mongoose.FlatRecord<{
|
|
30
|
+
organizationId: string;
|
|
31
|
+
name: string;
|
|
32
|
+
active: boolean;
|
|
33
|
+
organizationName: string;
|
|
34
|
+
organizationSlug: string;
|
|
35
|
+
email: string;
|
|
36
|
+
passwordHash: string;
|
|
37
|
+
role: "owner" | "admin" | "member";
|
|
38
|
+
lastLoginAt?: NativeDate;
|
|
39
|
+
} & mongoose.DefaultTimestampProps> & {
|
|
40
|
+
_id: mongoose.Types.ObjectId;
|
|
41
|
+
} & {
|
|
42
|
+
__v: number;
|
|
43
|
+
}>;
|
|
44
|
+
export declare class CanvasFlowUserEntity extends Document {
|
|
45
|
+
organizationId: string;
|
|
46
|
+
organizationName: string;
|
|
47
|
+
organizationSlug: string;
|
|
48
|
+
email: string;
|
|
49
|
+
name: string;
|
|
50
|
+
passwordHash: string;
|
|
51
|
+
role: 'owner' | 'admin' | 'member';
|
|
52
|
+
active: boolean;
|
|
53
|
+
lastLoginAt?: Date;
|
|
54
|
+
createdAt: Date;
|
|
55
|
+
updatedAt: Date;
|
|
56
|
+
}
|
|
@@ -0,0 +1,77 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
|
|
3
|
+
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
|
|
4
|
+
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
|
|
5
|
+
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
|
|
6
|
+
return c > 3 && r && Object.defineProperty(target, key, r), r;
|
|
7
|
+
};
|
|
8
|
+
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
9
|
+
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
10
|
+
};
|
|
11
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
12
|
+
exports.CanvasFlowUserEntity = exports.EntitySchema = void 0;
|
|
13
|
+
const mongoose_1 = require("@nestjs/mongoose");
|
|
14
|
+
const mongoose = require("mongoose");
|
|
15
|
+
const mongoose_2 = require("mongoose");
|
|
16
|
+
const auth_constants_model_1 = require("./auth-constants-model");
|
|
17
|
+
exports.EntitySchema = new mongoose.Schema({
|
|
18
|
+
organizationId: { type: String, required: true, index: true },
|
|
19
|
+
organizationName: { type: String, required: true },
|
|
20
|
+
organizationSlug: { type: String, required: true, index: true },
|
|
21
|
+
email: { type: String, required: true, lowercase: true, trim: true },
|
|
22
|
+
name: { type: String, required: true },
|
|
23
|
+
passwordHash: { type: String, required: true, select: false },
|
|
24
|
+
role: { type: String, enum: ['owner', 'admin', 'member'], default: 'member' },
|
|
25
|
+
active: { type: Boolean, default: true, index: true },
|
|
26
|
+
lastLoginAt: Date,
|
|
27
|
+
}, {
|
|
28
|
+
collection: auth_constants_model_1.COLLECTION_NAME,
|
|
29
|
+
timestamps: true,
|
|
30
|
+
});
|
|
31
|
+
exports.EntitySchema.index({ organizationSlug: 1, email: 1 }, { unique: true });
|
|
32
|
+
let CanvasFlowUserEntity = class CanvasFlowUserEntity extends mongoose_2.Document {
|
|
33
|
+
};
|
|
34
|
+
exports.CanvasFlowUserEntity = CanvasFlowUserEntity;
|
|
35
|
+
__decorate([
|
|
36
|
+
(0, mongoose_1.Prop)({ required: true }),
|
|
37
|
+
__metadata("design:type", String)
|
|
38
|
+
], CanvasFlowUserEntity.prototype, "organizationId", void 0);
|
|
39
|
+
__decorate([
|
|
40
|
+
(0, mongoose_1.Prop)({ required: true }),
|
|
41
|
+
__metadata("design:type", String)
|
|
42
|
+
], CanvasFlowUserEntity.prototype, "organizationName", void 0);
|
|
43
|
+
__decorate([
|
|
44
|
+
(0, mongoose_1.Prop)({ required: true }),
|
|
45
|
+
__metadata("design:type", String)
|
|
46
|
+
], CanvasFlowUserEntity.prototype, "organizationSlug", void 0);
|
|
47
|
+
__decorate([
|
|
48
|
+
(0, mongoose_1.Prop)({ required: true }),
|
|
49
|
+
__metadata("design:type", String)
|
|
50
|
+
], CanvasFlowUserEntity.prototype, "email", void 0);
|
|
51
|
+
__decorate([
|
|
52
|
+
(0, mongoose_1.Prop)({ required: true }),
|
|
53
|
+
__metadata("design:type", String)
|
|
54
|
+
], CanvasFlowUserEntity.prototype, "name", void 0);
|
|
55
|
+
__decorate([
|
|
56
|
+
(0, mongoose_1.Prop)({ required: true, select: false }),
|
|
57
|
+
__metadata("design:type", String)
|
|
58
|
+
], CanvasFlowUserEntity.prototype, "passwordHash", void 0);
|
|
59
|
+
__decorate([
|
|
60
|
+
(0, mongoose_1.Prop)({ default: 'member' }),
|
|
61
|
+
__metadata("design:type", String)
|
|
62
|
+
], CanvasFlowUserEntity.prototype, "role", void 0);
|
|
63
|
+
__decorate([
|
|
64
|
+
(0, mongoose_1.Prop)({ default: true }),
|
|
65
|
+
__metadata("design:type", Boolean)
|
|
66
|
+
], CanvasFlowUserEntity.prototype, "active", void 0);
|
|
67
|
+
__decorate([
|
|
68
|
+
(0, mongoose_1.Prop)(),
|
|
69
|
+
__metadata("design:type", Date)
|
|
70
|
+
], CanvasFlowUserEntity.prototype, "lastLoginAt", void 0);
|
|
71
|
+
exports.CanvasFlowUserEntity = CanvasFlowUserEntity = __decorate([
|
|
72
|
+
(0, mongoose_1.Schema)({
|
|
73
|
+
collection: auth_constants_model_1.COLLECTION_NAME,
|
|
74
|
+
timestamps: true,
|
|
75
|
+
})
|
|
76
|
+
], CanvasFlowUserEntity);
|
|
77
|
+
//# sourceMappingURL=auth-schema.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"auth-schema.js","sourceRoot":"","sources":["../../src/auth/auth-schema.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,+CAAgD;AAChD,qCAAqC;AACrC,uCAAoC;AACpC,iEAAyD;AAE5C,QAAA,YAAY,GAAG,IAAI,QAAQ,CAAC,MAAM,CAC7C;IACE,cAAc,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;IAC7D,gBAAgB,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE;IAClD,gBAAgB,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;IAC/D,KAAK,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE;IACpE,IAAI,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE;IACtC,YAAY,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE;IAC7D,IAAI,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,CAAC,EAAE,OAAO,EAAE,QAAQ,EAAE;IAC7E,MAAM,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;IACrD,WAAW,EAAE,IAAI;CAClB,EACD;IACE,UAAU,EAAE,sCAAe;IAC3B,UAAU,EAAE,IAAI;CACjB,CACF,CAAC;AAEF,oBAAY,CAAC,KAAK,CAAC,EAAE,gBAAgB,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;AAMjE,IAAM,oBAAoB,GAA1B,MAAM,oBAAqB,SAAQ,mBAAQ;CA8BjD,CAAA;AA9BY,oDAAoB;AAE/B;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;4DACF;AAGvB;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;8DACA;AAGzB;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;8DACA;AAGzB;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;mDACX;AAGd;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;kDACZ;AAGb;IADC,IAAA,eAAI,EAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC;;0DACnB;AAGrB;IADC,IAAA,eAAI,EAAC,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC;;kDACO;AAGnC;IADC,IAAA,eAAI,EAAC,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;;oDACR;AAGhB;IADC,IAAA,eAAI,GAAE;8BACO,IAAI;yDAAC;+BA1BR,oBAAoB;IAJhC,IAAA,iBAAM,EAAC;QACN,UAAU,EAAE,sCAAe;QAC3B,UAAU,EAAE,IAAI;KACjB,CAAC;GACW,oBAAoB,CA8BhC"}
|
|
@@ -0,0 +1,64 @@
|
|
|
1
|
+
import { OnModuleInit } from '@nestjs/common';
|
|
2
|
+
import { ConfigService } from '@nestjs/config';
|
|
3
|
+
import { Model } from 'mongoose';
|
|
4
|
+
import { CanvasFlowOrganizationEntity } from './auth-organization-schema';
|
|
5
|
+
import { CanvasFlowUserEntity } from './auth-schema';
|
|
6
|
+
export interface CanvasFlowAuthUser {
|
|
7
|
+
id: string;
|
|
8
|
+
organizationId: string;
|
|
9
|
+
organizationName: string;
|
|
10
|
+
organizationSlug: string;
|
|
11
|
+
email: string;
|
|
12
|
+
name: string;
|
|
13
|
+
role: 'owner' | 'admin' | 'member';
|
|
14
|
+
}
|
|
15
|
+
export declare class AuthService implements OnModuleInit {
|
|
16
|
+
private model;
|
|
17
|
+
private organizationModel;
|
|
18
|
+
private readonly configService;
|
|
19
|
+
private readonly loginAttempts;
|
|
20
|
+
constructor(model: Model<CanvasFlowUserEntity>, organizationModel: Model<CanvasFlowOrganizationEntity>, configService: ConfigService);
|
|
21
|
+
onModuleInit(): void;
|
|
22
|
+
isLoginRequired(): boolean;
|
|
23
|
+
private slugify;
|
|
24
|
+
private hashPassword;
|
|
25
|
+
private verifyPassword;
|
|
26
|
+
private tokenSecret;
|
|
27
|
+
private base64url;
|
|
28
|
+
private signToken;
|
|
29
|
+
private verifyToken;
|
|
30
|
+
private toSafeUser;
|
|
31
|
+
private extractToken;
|
|
32
|
+
private isDuplicateKeyError;
|
|
33
|
+
private loginThrottleWindowMs;
|
|
34
|
+
private loginThrottleMaxAttempts;
|
|
35
|
+
private loginThrottleKey;
|
|
36
|
+
private pruneLoginAttempts;
|
|
37
|
+
private assertLoginAllowed;
|
|
38
|
+
private registerLoginFailure;
|
|
39
|
+
private clearLoginFailures;
|
|
40
|
+
private organizationSlugExists;
|
|
41
|
+
private ensureOrganizationForUser;
|
|
42
|
+
getConfig(): Promise<{
|
|
43
|
+
loginRequired: boolean;
|
|
44
|
+
hasUsers: boolean;
|
|
45
|
+
}>;
|
|
46
|
+
private createOwnerSession;
|
|
47
|
+
bootstrap(body: any): Promise<{
|
|
48
|
+
token: string;
|
|
49
|
+
user: CanvasFlowAuthUser;
|
|
50
|
+
}>;
|
|
51
|
+
createOrganization(body: any): Promise<{
|
|
52
|
+
token: string;
|
|
53
|
+
user: CanvasFlowAuthUser;
|
|
54
|
+
}>;
|
|
55
|
+
login(body: any): Promise<{
|
|
56
|
+
token: string;
|
|
57
|
+
user: CanvasFlowAuthUser;
|
|
58
|
+
}>;
|
|
59
|
+
private createSession;
|
|
60
|
+
resolveUserFromToken(token: string): Promise<CanvasFlowAuthUser | null>;
|
|
61
|
+
resolveUserFromHeaders(authorization?: string, headerToken?: string, xApiKey?: string): Promise<CanvasFlowAuthUser>;
|
|
62
|
+
assertUiAuth(authorization?: string, headerToken?: string, xApiKey?: string): Promise<CanvasFlowAuthUser>;
|
|
63
|
+
createUser(body: any, actor: CanvasFlowAuthUser): Promise<CanvasFlowAuthUser>;
|
|
64
|
+
}
|
|
@@ -0,0 +1,343 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
|
|
3
|
+
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
|
|
4
|
+
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
|
|
5
|
+
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
|
|
6
|
+
return c > 3 && r && Object.defineProperty(target, key, r), r;
|
|
7
|
+
};
|
|
8
|
+
var __metadata = (this && this.__metadata) || function (k, v) {
|
|
9
|
+
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
|
|
10
|
+
};
|
|
11
|
+
var __param = (this && this.__param) || function (paramIndex, decorator) {
|
|
12
|
+
return function (target, key) { decorator(target, key, paramIndex); }
|
|
13
|
+
};
|
|
14
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
15
|
+
exports.AuthService = void 0;
|
|
16
|
+
const common_1 = require("@nestjs/common");
|
|
17
|
+
const config_1 = require("@nestjs/config");
|
|
18
|
+
const crypto_1 = require("crypto");
|
|
19
|
+
const mongoose_1 = require("mongoose");
|
|
20
|
+
const auth_constants_model_1 = require("./auth-constants-model");
|
|
21
|
+
let AuthService = class AuthService {
|
|
22
|
+
constructor(model, organizationModel, configService) {
|
|
23
|
+
this.model = model;
|
|
24
|
+
this.organizationModel = organizationModel;
|
|
25
|
+
this.configService = configService;
|
|
26
|
+
this.loginAttempts = new Map();
|
|
27
|
+
}
|
|
28
|
+
onModuleInit() {
|
|
29
|
+
void this.organizationModel.createIndexes().catch(() => undefined);
|
|
30
|
+
}
|
|
31
|
+
isLoginRequired() {
|
|
32
|
+
return ['true', '1', 'yes', 'sim'].includes(String(this.configService.get('CANVAS_FLOW_LOGIN') || '').toLowerCase());
|
|
33
|
+
}
|
|
34
|
+
slugify(value) {
|
|
35
|
+
return String(value || 'org')
|
|
36
|
+
.normalize('NFD')
|
|
37
|
+
.replace(/[\u0300-\u036f]/g, '')
|
|
38
|
+
.toLowerCase()
|
|
39
|
+
.replace(/[^a-z0-9]+/g, '-')
|
|
40
|
+
.replace(/^-+|-+$/g, '')
|
|
41
|
+
.slice(0, 60) || 'org';
|
|
42
|
+
}
|
|
43
|
+
hashPassword(password) {
|
|
44
|
+
const salt = (0, crypto_1.randomBytes)(16).toString('hex');
|
|
45
|
+
const hash = (0, crypto_1.scryptSync)(password, salt, 64).toString('hex');
|
|
46
|
+
return `scrypt:${salt}:${hash}`;
|
|
47
|
+
}
|
|
48
|
+
verifyPassword(password, stored) {
|
|
49
|
+
const [, salt, expected] = String(stored || '').split(':');
|
|
50
|
+
if (!salt || !expected)
|
|
51
|
+
return false;
|
|
52
|
+
const actual = (0, crypto_1.scryptSync)(password, salt, 64);
|
|
53
|
+
const expectedBuffer = Buffer.from(expected, 'hex');
|
|
54
|
+
return actual.length === expectedBuffer.length && (0, crypto_1.timingSafeEqual)(actual, expectedBuffer);
|
|
55
|
+
}
|
|
56
|
+
tokenSecret() {
|
|
57
|
+
return (this.configService.get('CANVAS_FLOW_JWT_SECRET') ||
|
|
58
|
+
this.configService.get('CANVAS_FLOW_API_TOKEN') ||
|
|
59
|
+
'canvas-flow-dev-secret');
|
|
60
|
+
}
|
|
61
|
+
base64url(value) {
|
|
62
|
+
return Buffer.from(value).toString('base64url');
|
|
63
|
+
}
|
|
64
|
+
signToken(payload) {
|
|
65
|
+
const header = this.base64url(JSON.stringify({ alg: 'HS256', typ: 'JWT' }));
|
|
66
|
+
const body = this.base64url(JSON.stringify(payload));
|
|
67
|
+
const signature = (0, crypto_1.createHmac)('sha256', this.tokenSecret()).update(`${header}.${body}`).digest('base64url');
|
|
68
|
+
return `${header}.${body}.${signature}`;
|
|
69
|
+
}
|
|
70
|
+
verifyToken(token) {
|
|
71
|
+
const parts = String(token || '').split('.');
|
|
72
|
+
if (parts.length !== 3)
|
|
73
|
+
return null;
|
|
74
|
+
const [header, body, signature] = parts;
|
|
75
|
+
const expected = (0, crypto_1.createHmac)('sha256', this.tokenSecret()).update(`${header}.${body}`).digest('base64url');
|
|
76
|
+
const expectedBuffer = Buffer.from(expected);
|
|
77
|
+
const signatureBuffer = Buffer.from(signature);
|
|
78
|
+
if (expectedBuffer.length !== signatureBuffer.length || !(0, crypto_1.timingSafeEqual)(expectedBuffer, signatureBuffer))
|
|
79
|
+
return null;
|
|
80
|
+
const payload = JSON.parse(Buffer.from(body, 'base64url').toString('utf-8'));
|
|
81
|
+
if (payload.exp && Number(payload.exp) < Math.floor(Date.now() / 1000))
|
|
82
|
+
return null;
|
|
83
|
+
return payload;
|
|
84
|
+
}
|
|
85
|
+
toSafeUser(row) {
|
|
86
|
+
return {
|
|
87
|
+
id: String(row?._id || row?.id || ''),
|
|
88
|
+
organizationId: String(row?.organizationId || ''),
|
|
89
|
+
organizationName: String(row?.organizationName || ''),
|
|
90
|
+
organizationSlug: String(row?.organizationSlug || ''),
|
|
91
|
+
email: String(row?.email || ''),
|
|
92
|
+
name: String(row?.name || ''),
|
|
93
|
+
role: row?.role || 'member',
|
|
94
|
+
};
|
|
95
|
+
}
|
|
96
|
+
extractToken(authorization, headerToken, xApiKey) {
|
|
97
|
+
const auth = String(authorization || '').trim();
|
|
98
|
+
const bearerMatch = auth.match(/^Bearer\s+(.+)$/i);
|
|
99
|
+
return String(bearerMatch?.[1] || headerToken || xApiKey || '').trim();
|
|
100
|
+
}
|
|
101
|
+
isDuplicateKeyError(err) {
|
|
102
|
+
return Number(err?.code) === 11000 || String(err?.message || '').includes('E11000');
|
|
103
|
+
}
|
|
104
|
+
loginThrottleWindowMs() {
|
|
105
|
+
return Math.max(Number(this.configService.get('CANVAS_FLOW_LOGIN_THROTTLE_WINDOW_MS') || 10 * 60 * 1000), 60 * 1000);
|
|
106
|
+
}
|
|
107
|
+
loginThrottleMaxAttempts() {
|
|
108
|
+
return Math.max(Number(this.configService.get('CANVAS_FLOW_LOGIN_MAX_ATTEMPTS') || 8), 3);
|
|
109
|
+
}
|
|
110
|
+
loginThrottleKey(email, organizationSlug) {
|
|
111
|
+
return `${organizationSlug || '-'}:${email || '-'}`;
|
|
112
|
+
}
|
|
113
|
+
pruneLoginAttempts(now = Date.now()) {
|
|
114
|
+
for (const [key, attempt] of this.loginAttempts.entries()) {
|
|
115
|
+
if (attempt.resetAt <= now)
|
|
116
|
+
this.loginAttempts.delete(key);
|
|
117
|
+
}
|
|
118
|
+
}
|
|
119
|
+
assertLoginAllowed(email, organizationSlug) {
|
|
120
|
+
const now = Date.now();
|
|
121
|
+
this.pruneLoginAttempts(now);
|
|
122
|
+
const attempt = this.loginAttempts.get(this.loginThrottleKey(email, organizationSlug));
|
|
123
|
+
if (!attempt || attempt.count < this.loginThrottleMaxAttempts())
|
|
124
|
+
return;
|
|
125
|
+
throw new common_1.HttpException('Muitas tentativas de login. Aguarde alguns minutos e tente novamente.', common_1.HttpStatus.TOO_MANY_REQUESTS);
|
|
126
|
+
}
|
|
127
|
+
registerLoginFailure(email, organizationSlug) {
|
|
128
|
+
const now = Date.now();
|
|
129
|
+
const key = this.loginThrottleKey(email, organizationSlug);
|
|
130
|
+
const current = this.loginAttempts.get(key);
|
|
131
|
+
if (!current || current.resetAt <= now) {
|
|
132
|
+
this.loginAttempts.set(key, { count: 1, resetAt: now + this.loginThrottleWindowMs() });
|
|
133
|
+
return;
|
|
134
|
+
}
|
|
135
|
+
this.loginAttempts.set(key, { ...current, count: current.count + 1 });
|
|
136
|
+
}
|
|
137
|
+
clearLoginFailures(email, organizationSlug) {
|
|
138
|
+
this.loginAttempts.delete(this.loginThrottleKey(email, organizationSlug));
|
|
139
|
+
}
|
|
140
|
+
async organizationSlugExists(organizationSlug) {
|
|
141
|
+
const organizationExists = await this.organizationModel.exists({ slug: organizationSlug }).exec();
|
|
142
|
+
if (organizationExists)
|
|
143
|
+
return true;
|
|
144
|
+
const legacyUserWithSlug = await this.model.exists({ organizationSlug }).exec();
|
|
145
|
+
return Boolean(legacyUserWithSlug);
|
|
146
|
+
}
|
|
147
|
+
async ensureOrganizationForUser(user) {
|
|
148
|
+
const organizationId = String(user?.organizationId || '');
|
|
149
|
+
const organizationSlug = String(user?.organizationSlug || '');
|
|
150
|
+
if (!organizationId || !organizationSlug)
|
|
151
|
+
return;
|
|
152
|
+
const insert = {
|
|
153
|
+
organizationId,
|
|
154
|
+
name: String(user?.organizationName || organizationSlug),
|
|
155
|
+
slug: organizationSlug,
|
|
156
|
+
active: true,
|
|
157
|
+
createdByEmail: String(user?.email || '').toLowerCase(),
|
|
158
|
+
};
|
|
159
|
+
if (user?.role === 'owner')
|
|
160
|
+
insert.ownerUserId = String(user?._id || user?.id || '');
|
|
161
|
+
try {
|
|
162
|
+
await this.organizationModel.updateOne({ slug: organizationSlug }, { $setOnInsert: insert }, { upsert: true }).exec();
|
|
163
|
+
}
|
|
164
|
+
catch (err) {
|
|
165
|
+
if (!this.isDuplicateKeyError(err))
|
|
166
|
+
throw err;
|
|
167
|
+
}
|
|
168
|
+
}
|
|
169
|
+
async getConfig() {
|
|
170
|
+
const usersCount = await this.model.countDocuments({ active: true }).exec().catch(() => 0);
|
|
171
|
+
return {
|
|
172
|
+
loginRequired: this.isLoginRequired(),
|
|
173
|
+
hasUsers: usersCount > 0,
|
|
174
|
+
};
|
|
175
|
+
}
|
|
176
|
+
async createOwnerSession(body) {
|
|
177
|
+
const organizationName = String(body?.organizationName || 'Organizacao').trim();
|
|
178
|
+
const organizationSlug = this.slugify(body?.organizationSlug || organizationName);
|
|
179
|
+
const email = String(body?.email || '').trim().toLowerCase();
|
|
180
|
+
const password = String(body?.password || '');
|
|
181
|
+
const name = String(body?.name || email).trim();
|
|
182
|
+
if (!organizationName || !email || !password || password.length < 8) {
|
|
183
|
+
throw new common_1.HttpException('Informe organizacao, email e senha com pelo menos 8 caracteres.', common_1.HttpStatus.BAD_REQUEST);
|
|
184
|
+
}
|
|
185
|
+
if (await this.organizationSlugExists(organizationSlug)) {
|
|
186
|
+
throw new common_1.HttpException('Esta organizacao ja existe. Escolha outro identificador.', common_1.HttpStatus.CONFLICT);
|
|
187
|
+
}
|
|
188
|
+
let organization = null;
|
|
189
|
+
let userCreated = false;
|
|
190
|
+
try {
|
|
191
|
+
organization = await new this.organizationModel({
|
|
192
|
+
organizationId: (0, crypto_1.randomBytes)(12).toString('hex'),
|
|
193
|
+
name: organizationName,
|
|
194
|
+
slug: organizationSlug,
|
|
195
|
+
active: true,
|
|
196
|
+
createdByEmail: email,
|
|
197
|
+
}).save();
|
|
198
|
+
const user = await new this.model({
|
|
199
|
+
organizationId: organization.organizationId,
|
|
200
|
+
organizationName: organization.name,
|
|
201
|
+
organizationSlug: organization.slug,
|
|
202
|
+
email,
|
|
203
|
+
name,
|
|
204
|
+
role: 'owner',
|
|
205
|
+
passwordHash: this.hashPassword(password),
|
|
206
|
+
active: true,
|
|
207
|
+
}).save();
|
|
208
|
+
userCreated = true;
|
|
209
|
+
await this.organizationModel.updateOne({ _id: organization._id }, { $set: { ownerUserId: String(user._id) } }).exec().catch(() => undefined);
|
|
210
|
+
return this.createSession(this.toSafeUser(user.toObject()));
|
|
211
|
+
}
|
|
212
|
+
catch (err) {
|
|
213
|
+
if (organization && !userCreated) {
|
|
214
|
+
await this.organizationModel.deleteOne({ _id: organization._id }).exec().catch(() => undefined);
|
|
215
|
+
}
|
|
216
|
+
if (this.isDuplicateKeyError(err)) {
|
|
217
|
+
throw new common_1.HttpException('Esta organizacao ja existe. Escolha outro identificador.', common_1.HttpStatus.CONFLICT);
|
|
218
|
+
}
|
|
219
|
+
throw err;
|
|
220
|
+
}
|
|
221
|
+
}
|
|
222
|
+
async bootstrap(body) {
|
|
223
|
+
const usersCount = await this.model.countDocuments({}).exec();
|
|
224
|
+
if (usersCount > 0) {
|
|
225
|
+
throw new common_1.HttpException('Login ja foi inicializado.', common_1.HttpStatus.CONFLICT);
|
|
226
|
+
}
|
|
227
|
+
return await this.createOwnerSession(body);
|
|
228
|
+
}
|
|
229
|
+
async createOrganization(body) {
|
|
230
|
+
return await this.createOwnerSession(body);
|
|
231
|
+
}
|
|
232
|
+
async login(body) {
|
|
233
|
+
const email = String(body?.email || '').trim().toLowerCase();
|
|
234
|
+
const password = String(body?.password || '');
|
|
235
|
+
const rawOrganizationSlug = String(body?.organizationSlug || '').trim();
|
|
236
|
+
const organizationSlug = rawOrganizationSlug ? this.slugify(rawOrganizationSlug) : '';
|
|
237
|
+
this.assertLoginAllowed(email, organizationSlug);
|
|
238
|
+
const query = { email, active: true };
|
|
239
|
+
if (organizationSlug) {
|
|
240
|
+
const organization = await this.organizationModel.findOne({ slug: organizationSlug }).lean().exec().catch(() => null);
|
|
241
|
+
if (organization && organization.active === false) {
|
|
242
|
+
this.registerLoginFailure(email, organizationSlug);
|
|
243
|
+
throw new common_1.UnauthorizedException('Email, organizacao ou senha invalidos.');
|
|
244
|
+
}
|
|
245
|
+
if (organization?.organizationId) {
|
|
246
|
+
query.organizationId = organization.organizationId;
|
|
247
|
+
}
|
|
248
|
+
else {
|
|
249
|
+
query.organizationSlug = organizationSlug;
|
|
250
|
+
}
|
|
251
|
+
}
|
|
252
|
+
const candidates = organizationSlug
|
|
253
|
+
? await this.model.find(query).select('+passwordHash').limit(1).lean().exec()
|
|
254
|
+
: await this.model.find(query).select('+passwordHash').limit(2).lean().exec();
|
|
255
|
+
if (!organizationSlug && candidates.length > 1) {
|
|
256
|
+
throw new common_1.HttpException('Informe o identificador da organizacao para continuar.', common_1.HttpStatus.BAD_REQUEST);
|
|
257
|
+
}
|
|
258
|
+
const user = candidates[0];
|
|
259
|
+
if (!user || !this.verifyPassword(password, user.passwordHash)) {
|
|
260
|
+
this.registerLoginFailure(email, organizationSlug);
|
|
261
|
+
throw new common_1.UnauthorizedException('Email, organizacao ou senha invalidos.');
|
|
262
|
+
}
|
|
263
|
+
await this.ensureOrganizationForUser(user);
|
|
264
|
+
await this.model.updateOne({ _id: user._id }, { $set: { lastLoginAt: new Date() } }).exec();
|
|
265
|
+
this.clearLoginFailures(email, organizationSlug);
|
|
266
|
+
return this.createSession(this.toSafeUser(user));
|
|
267
|
+
}
|
|
268
|
+
createSession(user) {
|
|
269
|
+
const ttlHours = Math.max(Number(this.configService.get('CANVAS_FLOW_LOGIN_TTL_HOURS') || 24), 1);
|
|
270
|
+
const token = this.signToken({
|
|
271
|
+
sub: user.id,
|
|
272
|
+
org: user.organizationId,
|
|
273
|
+
role: user.role,
|
|
274
|
+
exp: Math.floor(Date.now() / 1000) + ttlHours * 3600,
|
|
275
|
+
});
|
|
276
|
+
return { token, user };
|
|
277
|
+
}
|
|
278
|
+
async resolveUserFromToken(token) {
|
|
279
|
+
const payload = this.verifyToken(token);
|
|
280
|
+
if (!payload?.sub)
|
|
281
|
+
return null;
|
|
282
|
+
const user = await this.model.findOne({ _id: payload.sub, active: true }).lean().exec();
|
|
283
|
+
if (!user)
|
|
284
|
+
return null;
|
|
285
|
+
if (payload.org && String(payload.org) !== String(user.organizationId))
|
|
286
|
+
return null;
|
|
287
|
+
const organization = await this.organizationModel
|
|
288
|
+
.findOne({ organizationId: user.organizationId })
|
|
289
|
+
.lean()
|
|
290
|
+
.exec()
|
|
291
|
+
.catch(() => null);
|
|
292
|
+
if (organization && organization.active === false)
|
|
293
|
+
return null;
|
|
294
|
+
return this.toSafeUser(user);
|
|
295
|
+
}
|
|
296
|
+
async resolveUserFromHeaders(authorization, headerToken, xApiKey) {
|
|
297
|
+
const token = this.extractToken(authorization, headerToken, xApiKey);
|
|
298
|
+
if (!token)
|
|
299
|
+
return null;
|
|
300
|
+
return await this.resolveUserFromToken(token);
|
|
301
|
+
}
|
|
302
|
+
async assertUiAuth(authorization, headerToken, xApiKey) {
|
|
303
|
+
if (!this.isLoginRequired())
|
|
304
|
+
return null;
|
|
305
|
+
const user = await this.resolveUserFromHeaders(authorization, headerToken, xApiKey);
|
|
306
|
+
if (!user)
|
|
307
|
+
throw new common_1.UnauthorizedException('Login obrigatorio.');
|
|
308
|
+
return user;
|
|
309
|
+
}
|
|
310
|
+
async createUser(body, actor) {
|
|
311
|
+
if (!['owner', 'admin'].includes(actor.role)) {
|
|
312
|
+
throw new common_1.UnauthorizedException('Apenas admins podem criar usuarios.');
|
|
313
|
+
}
|
|
314
|
+
const email = String(body?.email || '').trim().toLowerCase();
|
|
315
|
+
const password = String(body?.password || '');
|
|
316
|
+
const name = String(body?.name || email).trim();
|
|
317
|
+
if (!email || !password || password.length < 8) {
|
|
318
|
+
throw new common_1.HttpException('Informe email e senha com pelo menos 8 caracteres.', common_1.HttpStatus.BAD_REQUEST);
|
|
319
|
+
}
|
|
320
|
+
await this.ensureOrganizationForUser(actor);
|
|
321
|
+
const saved = await new this.model({
|
|
322
|
+
organizationId: actor.organizationId,
|
|
323
|
+
organizationName: actor.organizationName,
|
|
324
|
+
organizationSlug: actor.organizationSlug,
|
|
325
|
+
email,
|
|
326
|
+
name,
|
|
327
|
+
role: body?.role === 'admin' ? 'admin' : 'member',
|
|
328
|
+
passwordHash: this.hashPassword(password),
|
|
329
|
+
active: true,
|
|
330
|
+
}).save();
|
|
331
|
+
return this.toSafeUser(saved.toObject());
|
|
332
|
+
}
|
|
333
|
+
};
|
|
334
|
+
exports.AuthService = AuthService;
|
|
335
|
+
exports.AuthService = AuthService = __decorate([
|
|
336
|
+
(0, common_1.Injectable)(),
|
|
337
|
+
__param(0, (0, common_1.Inject)(auth_constants_model_1.MODEL_NAME)),
|
|
338
|
+
__param(1, (0, common_1.Inject)(auth_constants_model_1.ORGANIZATION_MODEL_NAME)),
|
|
339
|
+
__metadata("design:paramtypes", [mongoose_1.Model,
|
|
340
|
+
mongoose_1.Model,
|
|
341
|
+
config_1.ConfigService])
|
|
342
|
+
], AuthService);
|
|
343
|
+
//# sourceMappingURL=auth-service.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"auth-service.js","sourceRoot":"","sources":["../../src/auth/auth-service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAAoH;AACpH,2CAA+C;AAC/C,mCAA8E;AAC9E,uCAAiC;AACjC,iEAA6E;AAetE,IAAM,WAAW,GAAjB,MAAM,WAAW;IAGtB,YACsB,KAA0C,EAC7B,iBAA8D,EAC9E,aAA4B;QAFjB,UAAK,GAAL,KAAK,CAA6B;QACrB,sBAAiB,GAAjB,iBAAiB,CAAqC;QAC9E,kBAAa,GAAb,aAAa,CAAe;QAL9B,kBAAa,GAAG,IAAI,GAAG,EAA8C,CAAC;IAMpF,CAAC;IAEJ,YAAY;QACV,KAAK,IAAI,CAAC,iBAAiB,CAAC,aAAa,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC;IACrE,CAAC;IAED,eAAe;QACb,OAAO,CAAC,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;IAC/H,CAAC;IAEO,OAAO,CAAC,KAAa;QAC3B,OAAO,MAAM,CAAC,KAAK,IAAI,KAAK,CAAC;aAC1B,SAAS,CAAC,KAAK,CAAC;aAChB,OAAO,CAAC,kBAAkB,EAAE,EAAE,CAAC;aAC/B,WAAW,EAAE;aACb,OAAO,CAAC,aAAa,EAAE,GAAG,CAAC;aAC3B,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC;aACvB,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,KAAK,CAAC;IAC3B,CAAC;IAEO,YAAY,CAAC,QAAgB;QACnC,MAAM,IAAI,GAAG,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC7C,MAAM,IAAI,GAAG,IAAA,mBAAU,EAAC,QAAQ,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC5D,OAAO,UAAU,IAAI,IAAI,IAAI,EAAE,CAAC;IAClC,CAAC;IAEO,cAAc,CAAC,QAAgB,EAAE,MAAc;QACrD,MAAM,CAAC,EAAE,IAAI,EAAE,QAAQ,CAAC,GAAG,MAAM,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC3D,IAAI,CAAC,IAAI,IAAI,CAAC,QAAQ;YAAE,OAAO,KAAK,CAAC;QACrC,MAAM,MAAM,GAAG,IAAA,mBAAU,EAAC,QAAQ,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC;QAC9C,MAAM,cAAc,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QACpD,OAAO,MAAM,CAAC,MAAM,KAAK,cAAc,CAAC,MAAM,IAAI,IAAA,wBAAe,EAAC,MAAM,EAAE,cAAc,CAAC,CAAC;IAC5F,CAAC;IAEO,WAAW;QACjB,OAAO,CACL,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,wBAAwB,CAAC;YACxD,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,uBAAuB,CAAC;YACvD,wBAAwB,CACzB,CAAC;IACJ,CAAC;IAEO,SAAS,CAAC,KAAsB;QACtC,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IAClD,CAAC;IAEO,SAAS,CAAC,OAA4B;QAC5C,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;QAC5E,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;QACrD,MAAM,SAAS,GAAG,IAAA,mBAAU,EAAC,QAAQ,EAAE,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC,MAAM,CAAC,GAAG,MAAM,IAAI,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;QAC3G,OAAO,GAAG,MAAM,IAAI,IAAI,IAAI,SAAS,EAAE,CAAC;IAC1C,CAAC;IAEO,WAAW,CAAC,KAAa;QAC/B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC7C,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QACpC,MAAM,CAAC,MAAM,EAAE,IAAI,EAAE,SAAS,CAAC,GAAG,KAAK,CAAC;QACxC,MAAM,QAAQ,GAAG,IAAA,mBAAU,EAAC,QAAQ,EAAE,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC,MAAM,CAAC,GAAG,MAAM,IAAI,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;QAC1G,MAAM,cAAc,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC7C,MAAM,eAAe,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC/C,IAAI,cAAc,CAAC,MAAM,KAAK,eAAe,CAAC,MAAM,IAAI,CAAC,IAAA,wBAAe,EAAC,cAAc,EAAE,eAAe,CAAC;YAAE,OAAO,IAAI,CAAC;QACvH,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;QAC7E,IAAI,OAAO,CAAC,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;YAAE,OAAO,IAAI,CAAC;QACpF,OAAO,OAAO,CAAC;IACjB,CAAC;IAEO,UAAU,CAAC,GAAQ;QACzB,OAAO;YACL,EAAE,EAAE,MAAM,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,EAAE,EAAE,IAAI,EAAE,CAAC;YACrC,cAAc,EAAE,MAAM,CAAC,GAAG,EAAE,cAAc,IAAI,EAAE,CAAC;YACjD,gBAAgB,EAAE,MAAM,CAAC,GAAG,EAAE,gBAAgB,IAAI,EAAE,CAAC;YACrD,gBAAgB,EAAE,MAAM,CAAC,GAAG,EAAE,gBAAgB,IAAI,EAAE,CAAC;YACrD,KAAK,EAAE,MAAM,CAAC,GAAG,EAAE,KAAK,IAAI,EAAE,CAAC;YAC/B,IAAI,EAAE,MAAM,CAAC,GAAG,EAAE,IAAI,IAAI,EAAE,CAAC;YAC7B,IAAI,EAAE,GAAG,EAAE,IAAI,IAAI,QAAQ;SAC5B,CAAC;IACJ,CAAC;IAEO,YAAY,CAAC,aAAsB,EAAE,WAAoB,EAAE,OAAgB;QACjF,MAAM,IAAI,GAAG,MAAM,CAAC,aAAa,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAChD,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;QACnD,OAAO,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,IAAI,WAAW,IAAI,OAAO,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IACzE,CAAC;IAEO,mBAAmB,CAAC,GAAQ;QAClC,OAAO,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,KAAK,KAAK,IAAI,MAAM,CAAC,GAAG,EAAE,OAAO,IAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACtF,CAAC;IAEO,qBAAqB;QAC3B,OAAO,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,sCAAsC,CAAC,IAAI,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,EAAE,EAAE,GAAG,IAAI,CAAC,CAAC;IAC/H,CAAC;IAEO,wBAAwB;QAC9B,OAAO,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,gCAAgC,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACpG,CAAC;IAEO,gBAAgB,CAAC,KAAa,EAAE,gBAAwB;QAC9D,OAAO,GAAG,gBAAgB,IAAI,GAAG,IAAI,KAAK,IAAI,GAAG,EAAE,CAAC;IACtD,CAAC;IAEO,kBAAkB,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE;QACzC,KAAK,MAAM,CAAC,GAAG,EAAE,OAAO,CAAC,IAAI,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,EAAE,CAAC;YAC1D,IAAI,OAAO,CAAC,OAAO,IAAI,GAAG;gBAAE,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC7D,CAAC;IACH,CAAC;IAEO,kBAAkB,CAAC,KAAa,EAAE,gBAAwB;QAChE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC;QACvF,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,wBAAwB,EAAE;YAAE,OAAO;QAExE,MAAM,IAAI,sBAAa,CAAC,uEAAuE,EAAE,mBAAU,CAAC,iBAAiB,CAAC,CAAC;IACjI,CAAC;IAEO,oBAAoB,CAAC,KAAa,EAAE,gBAAwB;QAClE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,GAAG,GAAG,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;QAC3D,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC5C,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,OAAO,IAAI,GAAG,EAAE,CAAC;YACvC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,IAAI,CAAC,qBAAqB,EAAE,EAAE,CAAC,CAAC;YACvF,OAAO;QACT,CAAC;QACD,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,GAAG,OAAO,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,GAAG,CAAC,EAAE,CAAC,CAAC;IACxE,CAAC;IAEO,kBAAkB,CAAC,KAAa,EAAE,gBAAwB;QAChE,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC;IAC5E,CAAC;IAEO,KAAK,CAAC,sBAAsB,CAAC,gBAAwB;QAC3D,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAClG,IAAI,kBAAkB;YAAE,OAAO,IAAI,CAAC;QACpC,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,gBAAgB,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAChF,OAAO,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACrC,CAAC;IAEO,KAAK,CAAC,yBAAyB,CAAC,IAAS;QAC/C,MAAM,cAAc,GAAG,MAAM,CAAC,IAAI,EAAE,cAAc,IAAI,EAAE,CAAC,CAAC;QAC1D,MAAM,gBAAgB,GAAG,MAAM,CAAC,IAAI,EAAE,gBAAgB,IAAI,EAAE,CAAC,CAAC;QAC9D,IAAI,CAAC,cAAc,IAAI,CAAC,gBAAgB;YAAE,OAAO;QAEjD,MAAM,MAAM,GAAwB;YAClC,cAAc;YACd,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,gBAAgB,IAAI,gBAAgB,CAAC;YACxD,IAAI,EAAE,gBAAgB;YACtB,MAAM,EAAE,IAAI;YACZ,cAAc,EAAE,MAAM,CAAC,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE;SACxD,CAAC;QACF,IAAI,IAAI,EAAE,IAAI,KAAK,OAAO;YAAE,MAAM,CAAC,WAAW,GAAG,MAAM,CAAC,IAAI,EAAE,GAAG,IAAI,IAAI,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;QAErF,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,gBAAgB,EAAE,EAAE,EAAE,YAAY,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QACxH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,CAAC,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC;gBAAE,MAAM,GAAG,CAAC;QAChD,CAAC;IACH,CAAC;IAED,KAAK,CAAC,SAAS;QACb,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC;QAC3F,OAAO;YACL,aAAa,EAAE,IAAI,CAAC,eAAe,EAAE;YACrC,QAAQ,EAAE,UAAU,GAAG,CAAC;SACzB,CAAC;IACJ,CAAC;IAEO,KAAK,CAAC,kBAAkB,CAAC,IAAS;QACxC,MAAM,gBAAgB,GAAG,MAAM,CAAC,IAAI,EAAE,gBAAgB,IAAI,aAAa,CAAC,CAAC,IAAI,EAAE,CAAC;QAChF,MAAM,gBAAgB,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,gBAAgB,IAAI,gBAAgB,CAAC,CAAC;QAClF,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC7D,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,EAAE,QAAQ,IAAI,EAAE,CAAC,CAAC;QAC9C,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,EAAE,IAAI,IAAI,KAAK,CAAC,CAAC,IAAI,EAAE,CAAC;QAChD,IAAI,CAAC,gBAAgB,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpE,MAAM,IAAI,sBAAa,CAAC,iEAAiE,EAAE,mBAAU,CAAC,WAAW,CAAC,CAAC;QACrH,CAAC;QAED,IAAI,MAAM,IAAI,CAAC,sBAAsB,CAAC,gBAAgB,CAAC,EAAE,CAAC;YACxD,MAAM,IAAI,sBAAa,CAAC,0DAA0D,EAAE,mBAAU,CAAC,QAAQ,CAAC,CAAC;QAC3G,CAAC;QAED,IAAI,YAAY,GAAwC,IAAI,CAAC;QAC7D,IAAI,WAAW,GAAG,KAAK,CAAC;QACxB,IAAI,CAAC;YACH,YAAY,GAAG,MAAM,IAAI,IAAI,CAAC,iBAAiB,CAAC;gBAC9C,cAAc,EAAE,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;gBAC/C,IAAI,EAAE,gBAAgB;gBACtB,IAAI,EAAE,gBAAgB;gBACtB,MAAM,EAAE,IAAI;gBACZ,cAAc,EAAE,KAAK;aACtB,CAAC,CAAC,IAAI,EAAE,CAAC;YAEV,MAAM,IAAI,GAAG,MAAM,IAAI,IAAI,CAAC,KAAK,CAAC;gBAChC,cAAc,EAAE,YAAY,CAAC,cAAc;gBAC3C,gBAAgB,EAAE,YAAY,CAAC,IAAI;gBACnC,gBAAgB,EAAE,YAAY,CAAC,IAAI;gBACnC,KAAK;gBACL,IAAI;gBACJ,IAAI,EAAE,OAAO;gBACb,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC;gBACzC,MAAM,EAAE,IAAI;aACb,CAAC,CAAC,IAAI,EAAE,CAAC;YACV,WAAW,GAAG,IAAI,CAAC;YAEnB,MAAM,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,YAAY,CAAC,GAAG,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC;YAC7I,OAAO,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;QAC9D,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,YAAY,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjC,MAAM,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,YAAY,CAAC,GAAG,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC;YAClG,CAAC;YACD,IAAI,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,EAAE,CAAC;gBAClC,MAAM,IAAI,sBAAa,CAAC,0DAA0D,EAAE,mBAAU,CAAC,QAAQ,CAAC,CAAC;YAC3G,CAAC;YACD,MAAM,GAAG,CAAC;QACZ,CAAC;IACH,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,IAAS;QACvB,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAC9D,IAAI,UAAU,GAAG,CAAC,EAAE,CAAC;YACnB,MAAM,IAAI,sBAAa,CAAC,4BAA4B,EAAE,mBAAU,CAAC,QAAQ,CAAC,CAAC;QAC7E,CAAC;QAED,OAAO,MAAM,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAC7C,CAAC;IAED,KAAK,CAAC,kBAAkB,CAAC,IAAS;QAChC,OAAO,MAAM,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAC7C,CAAC;IAED,KAAK,CAAC,KAAK,CAAC,IAAS;QACnB,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC7D,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,EAAE,QAAQ,IAAI,EAAE,CAAC,CAAC;QAC9C,MAAM,mBAAmB,GAAG,MAAM,CAAC,IAAI,EAAE,gBAAgB,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QACxE,MAAM,gBAAgB,GAAG,mBAAmB,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QACtF,IAAI,CAAC,kBAAkB,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;QAEjD,MAAM,KAAK,GAAwB,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC;QAC3D,IAAI,gBAAgB,EAAE,CAAC;YACrB,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC;YACtH,IAAI,YAAY,IAAI,YAAY,CAAC,MAAM,KAAK,KAAK,EAAE,CAAC;gBAClD,IAAI,CAAC,oBAAoB,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;gBACnD,MAAM,IAAI,8BAAqB,CAAC,wCAAwC,CAAC,CAAC;YAC5E,CAAC;YACD,IAAI,YAAY,EAAE,cAAc,EAAE,CAAC;gBACjC,KAAK,CAAC,cAAc,GAAG,YAAY,CAAC,cAAc,CAAC;YACrD,CAAC;iBAAM,CAAC;gBACN,KAAK,CAAC,gBAAgB,GAAG,gBAAgB,CAAC;YAC5C,CAAC;QACH,CAAC;QAED,MAAM,UAAU,GAAG,gBAAgB;YACjC,CAAC,CAAC,MAAM,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE;YAC7E,CAAC,CAAC,MAAM,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC;QAChF,IAAI,CAAC,gBAAgB,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/C,MAAM,IAAI,sBAAa,CAAC,wDAAwD,EAAE,mBAAU,CAAC,WAAW,CAAC,CAAC;QAC5G,CAAC;QAED,MAAM,IAAI,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;QAC3B,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,QAAQ,EAAE,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;YAC/D,IAAI,CAAC,oBAAoB,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;YACnD,MAAM,IAAI,8BAAqB,CAAC,wCAAwC,CAAC,CAAC;QAC5E,CAAC;QAED,MAAM,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC;QAC3C,MAAM,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,WAAW,EAAE,IAAI,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAC5F,IAAI,CAAC,kBAAkB,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;QACjD,OAAO,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;IACnD,CAAC;IAEO,aAAa,CAAC,IAAwB;QAC5C,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAS,6BAA6B,CAAC,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;QAC1G,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC;YAC3B,GAAG,EAAE,IAAI,CAAC,EAAE;YACZ,GAAG,EAAE,IAAI,CAAC,cAAc;YACxB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,QAAQ,GAAG,IAAI;SACrD,CAAC,CAAC;QACH,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;IACzB,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,KAAa;QACtC,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QACxC,IAAI,CAAC,OAAO,EAAE,GAAG;YAAE,OAAO,IAAI,CAAC;QAC/B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC;QACxF,IAAI,CAAC,IAAI;YAAE,OAAO,IAAI,CAAC;QACvB,IAAI,OAAO,CAAC,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC;YAAE,OAAO,IAAI,CAAC;QAEpF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,iBAAiB;aAC9C,OAAO,CAAC,EAAE,cAAc,EAAE,IAAI,CAAC,cAAc,EAAE,CAAC;aAChD,IAAI,EAAE;aACN,IAAI,EAAE;aACN,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC;QACrB,IAAI,YAAY,IAAI,YAAY,CAAC,MAAM,KAAK,KAAK;YAAE,OAAO,IAAI,CAAC;QAE/D,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;IAC/B,CAAC;IAED,KAAK,CAAC,sBAAsB,CAAC,aAAsB,EAAE,WAAoB,EAAE,OAAgB;QACzF,MAAM,KAAK,GAAG,IAAI,CAAC,YAAY,CAAC,aAAa,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;QACrE,IAAI,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC;QACxB,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,aAAsB,EAAE,WAAoB,EAAE,OAAgB;QAC/E,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE;YAAE,OAAO,IAAI,CAAC;QACzC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,aAAa,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;QACpF,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,8BAAqB,CAAC,oBAAoB,CAAC,CAAC;QACjE,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,IAAS,EAAE,KAAyB;QACnD,IAAI,CAAC,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YAC7C,MAAM,IAAI,8BAAqB,CAAC,qCAAqC,CAAC,CAAC;QACzE,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC7D,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,EAAE,QAAQ,IAAI,EAAE,CAAC,CAAC;QAC9C,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,EAAE,IAAI,IAAI,KAAK,CAAC,CAAC,IAAI,EAAE,CAAC;QAChD,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/C,MAAM,IAAI,sBAAa,CAAC,oDAAoD,EAAE,mBAAU,CAAC,WAAW,CAAC,CAAC;QACxG,CAAC;QAED,MAAM,IAAI,CAAC,yBAAyB,CAAC,KAAK,CAAC,CAAC;QAC5C,MAAM,KAAK,GAAG,MAAM,IAAI,IAAI,CAAC,KAAK,CAAC;YACjC,cAAc,EAAE,KAAK,CAAC,cAAc;YACpC,gBAAgB,EAAE,KAAK,CAAC,gBAAgB;YACxC,gBAAgB,EAAE,KAAK,CAAC,gBAAgB;YACxC,KAAK;YACL,IAAI;YACJ,IAAI,EAAE,IAAI,EAAE,IAAI,KAAK,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,QAAQ;YACjD,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC;YACzC,MAAM,EAAE,IAAI;SACb,CAAC,CAAC,IAAI,EAAE,CAAC;QAEV,OAAO,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC3C,CAAC;CACF,CAAA;AAvVY,kCAAW;sBAAX,WAAW;IADvB,IAAA,mBAAU,GAAE;IAKR,WAAA,IAAA,eAAM,EAAC,iCAAU,CAAC,CAAA;IAClB,WAAA,IAAA,eAAM,EAAC,8CAAuB,CAAC,CAAA;qCADG,gBAAK;QACoB,gBAAK;QACjC,sBAAa;GANpC,WAAW,CAuVvB"}
|