@keetanetwork/anchor 0.0.61 → 0.0.63

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (98) hide show
  1. package/lib/anchor-metadata-server.d.ts +54 -0
  2. package/lib/anchor-metadata-server.d.ts.map +1 -0
  3. package/lib/anchor-metadata-server.js +62 -0
  4. package/lib/anchor-metadata-server.js.map +1 -0
  5. package/lib/chaining.d.ts +29 -6
  6. package/lib/chaining.d.ts.map +1 -1
  7. package/lib/chaining.js +61 -24
  8. package/lib/chaining.js.map +1 -1
  9. package/lib/error.d.ts +35 -0
  10. package/lib/error.d.ts.map +1 -1
  11. package/lib/error.generated.d.ts +3 -0
  12. package/lib/error.generated.d.ts.map +1 -0
  13. package/lib/error.generated.js +104 -0
  14. package/lib/error.generated.js.map +1 -0
  15. package/lib/error.js +66 -1
  16. package/lib/error.js.map +1 -1
  17. package/lib/http-server/common.d.ts +20 -2
  18. package/lib/http-server/common.d.ts.map +1 -1
  19. package/lib/http-server/common.js +47 -0
  20. package/lib/http-server/common.js.map +1 -1
  21. package/lib/http-server/index.d.ts +22 -0
  22. package/lib/http-server/index.d.ts.map +1 -1
  23. package/lib/http-server/index.js +23 -0
  24. package/lib/http-server/index.js.map +1 -1
  25. package/lib/metadata.types.d.ts +40 -0
  26. package/lib/metadata.types.d.ts.map +1 -1
  27. package/lib/metadata.types.js.map +1 -1
  28. package/lib/queue/drivers/queue_postgres.d.ts.map +1 -1
  29. package/lib/queue/drivers/queue_postgres.js +47 -43
  30. package/lib/queue/drivers/queue_postgres.js.map +1 -1
  31. package/lib/resolver.d.ts +19 -20
  32. package/lib/resolver.d.ts.map +1 -1
  33. package/lib/resolver.js +1420 -681
  34. package/lib/resolver.js.map +1 -1
  35. package/lib/token-metadata.d.ts.map +1 -1
  36. package/lib/token-metadata.js +1 -1
  37. package/lib/token-metadata.js.map +1 -1
  38. package/lib/utils/certificate-network.d.ts +84 -0
  39. package/lib/utils/certificate-network.d.ts.map +1 -0
  40. package/lib/utils/certificate-network.js +104 -0
  41. package/lib/utils/certificate-network.js.map +1 -0
  42. package/lib/utils/signing.d.ts +12 -0
  43. package/lib/utils/signing.d.ts.map +1 -1
  44. package/lib/utils/signing.js +145 -2
  45. package/lib/utils/signing.js.map +1 -1
  46. package/npm-shrinkwrap.json +18 -18
  47. package/package.json +2 -2
  48. package/services/asset-movement/common.d.ts.map +1 -1
  49. package/services/asset-movement/common.js +7 -53
  50. package/services/asset-movement/common.js.map +1 -1
  51. package/services/asset-movement/server.d.ts +6 -4
  52. package/services/asset-movement/server.d.ts.map +1 -1
  53. package/services/asset-movement/server.js +3 -3
  54. package/services/asset-movement/server.js.map +1 -1
  55. package/services/fx/client.d.ts +2 -1
  56. package/services/fx/client.d.ts.map +1 -1
  57. package/services/fx/client.js +5 -3
  58. package/services/fx/client.js.map +1 -1
  59. package/services/fx/common.js +7 -7
  60. package/services/fx/server.d.ts +9 -7
  61. package/services/fx/server.d.ts.map +1 -1
  62. package/services/fx/server.js +5 -5
  63. package/services/fx/server.js.map +1 -1
  64. package/services/kyc/server.d.ts +6 -4
  65. package/services/kyc/server.d.ts.map +1 -1
  66. package/services/kyc/server.js +3 -3
  67. package/services/kyc/server.js.map +1 -1
  68. package/services/notification/common.d.ts +2 -1
  69. package/services/notification/common.d.ts.map +1 -1
  70. package/services/notification/common.generated.js +20 -20
  71. package/services/notification/common.js +3 -2
  72. package/services/notification/common.js.map +1 -1
  73. package/services/notification/server.d.ts +7 -6
  74. package/services/notification/server.d.ts.map +1 -1
  75. package/services/notification/server.js +25 -62
  76. package/services/notification/server.js.map +1 -1
  77. package/services/storage/clients/contacts.d.ts +5 -11
  78. package/services/storage/clients/contacts.d.ts.map +1 -1
  79. package/services/storage/clients/contacts.js +1 -1
  80. package/services/storage/clients/contacts.js.map +1 -1
  81. package/services/storage/common.d.ts +2 -1
  82. package/services/storage/common.d.ts.map +1 -1
  83. package/services/storage/common.js +7 -2
  84. package/services/storage/common.js.map +1 -1
  85. package/services/storage/server.d.ts +7 -5
  86. package/services/storage/server.d.ts.map +1 -1
  87. package/services/storage/server.js +29 -99
  88. package/services/storage/server.js.map +1 -1
  89. package/services/username/common.d.ts +2 -1
  90. package/services/username/common.d.ts.map +1 -1
  91. package/services/username/common.generated.js +14 -48
  92. package/services/username/common.generated.js.map +1 -1
  93. package/services/username/common.js +3 -2
  94. package/services/username/common.js.map +1 -1
  95. package/services/username/server.d.ts +7 -6
  96. package/services/username/server.d.ts.map +1 -1
  97. package/services/username/server.js +38 -46
  98. package/services/username/server.js.map +1 -1
package/services/storage/common.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"common.js","sourceRoot":"","sources":["../../../src/services/storage/common.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,oBAAoB,EAAE,8BAA8B,EAAE,MAAM,oBAAoB,CAAC;AAC1F,OAAO,EAAE,MAAM,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAC;AAQ5E,2BAA2B;AAE3B,qCAAqC;AACrC,MAAM,CAAC,MAAM,iBAAiB,GAAG,kBAAkB,CAAC;AAEpD,oDAAoD;AACpD,MAAM,CAAC,MAAM,yBAAyB,GAAG,0BAA0B,CAAC;AAEpE,sDAAsD;AACtD,MAAM,CAAC,MAAM,8BAA8B,GAAG,IAAI,CAAC;AAqQnD,MAAM,UAAU,0CAA0C,CACzD,KAA8E;IAE9E,MAAM,UAAU,GAAG,KAAK,CAAC,UAAU,IAAI,SAAS,CAAC;IACjD,MAAM,IAAI,GAAa,KAAK,CAAC,IAAI,IAAI,EAAE,CAAC;IACxC,MAAM,UAAU,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC;IACpC,OAAM,CAAC,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,EAAE,UAAU,EAAE,GAAG,UAAU,CAAC,CAAC,CAAC;AACxD,CAAC;AAiBD;;;GAGG;AACH,MAAM,UAAU,qDAAqD,CACpE,KAA4E;IAE5E,MAAM,UAAU,GAAG,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,UAAS,CAAC,EAAE,CAAC,IAAI,OAAM,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACxF,OAAM,CAAC,CAAC,gBAAgB,EAAE,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,UAAU,EAAE,GAAG,UAAU,CAAC,CAAC,CAAC;AACzE,CAAC;AA4BD,MAAM,UAAU,0CAA0C,CACzD,KAAmC;IAEnC,OAAM,CAAC,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;AAC7B,CAAC;AA+BD,MAAM,UAAU,6CAA6C,CAC5D,KAAsC;IAEtC,OAAM,CAAC,CAAC,QAAQ,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;AAChC,CAAC;AA8BD,MAAM,UAAU,6CAA6C,CAC5D,KAAsC;IAEtC,MAAM,KAAK,GAAG,KAAK,CAAC,UAAU,EAAE,KAAK,IAAI,CAAC,CAAC;IAC3C,MAAM,MAAM,GAAG,KAAK,CAAC,UAAU,EAAE,MAAM,IAAI,EAAE,CAAC;IAC9C,OAAM,CAAC,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC;AACnE,CAAC;AAuBD;;;;;;GAMG;AACH,MAAM,UAAU,4CAA4C,CAC3D,YAA4C;IAE5C,OAAM,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;AACnB,CAAC;AAED,aAAa;AAEb,wBAAwB;AAExB,MAAM,uCAAwC,SAAQ,oBAAoB;IACzE,MAAM,CAAmB,IAAI,GAAW,yCAAyC,CAAC;IACjE,mDAAmD,CAAU;IACtE,MAAM,CAAU,mDAAmD,GAAG,sCAAsC,CAAC;IAErH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,oBAAoB,CAAC,CAAC;QACvC,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,qDAAqD,EAAE;YAClF,KAAK,EAAE,uCAAuC,CAAC,mDAAmD;YAClG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,qDAAqD,EAAE,uCAAuC,CAAC,mDAAmD,CAAC,CAAC,CAAC;IAC1L,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,mCAAoC,SAAQ,oBAAoB;IACrE,MAAM,CAAmB,IAAI,GAAW,qCAAqC,CAAC;IAC7D,+CAA+C,CAAU;IAClE,MAAM,CAAU,+CAA+C,GAAG,sCAAsC,CAAC;IAEjH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,eAAe,CAAC,CAAC;QAClC,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,iDAAiD,EAAE;YAC9E,KAAK,EAAE,mCAAmC,CAAC,+CAA+C;YAC1F,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,iDAAiD,EAAE,mCAAmC,CAAC,+CAA+C,CAAC,CAAC,CAAC;IAC9K,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,kCAAmC,SAAQ,8BAA8B;IAC9E,MAAM,CAAmB,IAAI,GAAW,oCAAoC,CAAC;IAC5D,8CAA8C,CAAU;IACjE,MAAM,CAAU,8CAA8C,GAAG,sCAAsC,CAAC;IAEhH,YAAY,OAAgB;QAC3B,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,IAAI,qBAAqB,EAAE,CAAC,EAAE,EAAE,OAAO,IAAI,qBAAqB,CAAC,CAAC;QAEnH,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,gDAAgD,EAAE;YAC7E,KAAK,EAAE,kCAAkC,CAAC,8CAA8C;YACxF,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAU,UAAU,CAAC,KAAc;QACxC,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,gDAAgD,EAAE,kCAAkC,CAAC,8CAA8C,CAAC,CAAC,CAAC;IAC3K,CAAC;IAED,MAAM,CAAU,KAAK,CAAC,QAAQ,CAAC,KAAc;QAC5C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAKF,MAAM,oCAAqC,SAAQ,oBAAoB;IACtE,MAAM,CAAmB,IAAI,GAAW,sCAAsC,CAAC;IAC9D,gDAAgD,CAAU;IACnE,MAAM,CAAU,gDAAgD,GAAG,sCAAsC,CAAC;IAElH,qCAAqC;IAC5B,SAAS,CAAoB;IAEtC,oDAAoD;IAC3C,KAAK,CAAS;IAEvB,6DAA6D;IACpD,OAAO,CAAS;IAEzB,YAAY,OAA2F;QACtG,KAAK,CAAC,OAAO,CAAC,OAAO,IAAI,mBAAmB,OAAO,CAAC,SAAS,KAAK,OAAO,CAAC,OAAO,qBAAqB,OAAO,CAAC,KAAK,GAAG,CAAC,CAAC;QACxH,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QACtB,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC;QAC3B,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAE/B,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,kDAAkD,EAAE;YAC/E,KAAK,EAAE,oCAAoC,CAAC,gDAAgD;YAC5F,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,kDAAkD,EAAE,oCAAoC,CAAC,gDAAgD,CAAC,CAAC,CAAC;IACjL,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,EAAE,SAAS,EAAE,eAAe,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC;QACtF,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,wCAAyC,SAAQ,oBAAoB;IAC1E,MAAM,CAAmB,IAAI,GAAW,0CAA0C,CAAC;IAClE,oDAAoD,CAAU;IACvE,MAAM,CAAU,oDAAoD,GAAG,sCAAsC,CAAC;IAEtH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,6CAA6C,CAAC,CAAC;QAChE,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,sDAAsD,EAAE;YACnF,KAAK,EAAE,wCAAwC,CAAC,oDAAoD;YACpG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,sDAAsD,EAAE,wCAAwC,CAAC,oDAAoD,CAAC,CAAC,CAAC;IAC7L,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,uCAAwC,SAAQ,8BAA8B;IACnF,MAAM,CAAmB,IAAI,GAAW,yCAAyC,CAAC;IACjE,mDAAmD,CAAU;IACtE,MAAM,CAAU,mDAAmD,GAAG,sCAAsC,CAAC;IAErH,YAAY,OAAgB;QAC3B,MAAM,GAAG,GAAG,OAAO,IAAI,2BAA2B,CAAC;QACnD,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC,EAAE,EAAE,GAAG,CAAC,CAAC;QAE5D,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,qDAAqD,EAAE;YAClF,KAAK,EAAE,uCAAuC,CAAC,mDAAmD;YAClG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,IAAa,UAAU;QACtB,OAAM,CAAC,GAAG,CAAC,CAAC;IACb,CAAC;IAED,MAAM,CAAU,UAAU,CAAC,KAAc;QACxC,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,qDAAqD,EAAE,uCAAuC,CAAC,mDAAmD,CAAC,CAAC,CAAC;IAC1L,CAAC;IAED,MAAM,CAAU,KAAK,CAAC,QAAQ,CAAC,KAAc;QAC5C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,uCAAwC,SAAQ,oBAAoB;IACzE,MAAM,CAAmB,IAAI,GAAW,yCAAyC,CAAC;IACjE,mDAAmD,CAAU;IACtE,MAAM,CAAU,mDAAmD,GAAG,sCAAsC,CAAC;IAErH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,4BAA4B,CAAC,CAAC;QAC/C,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,qDAAqD,EAAE;YAClF,KAAK,EAAE,uCAAuC,CAAC,mDAAmD;YAClG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,qDAAqD,EAAE,uCAAuC,CAAC,mDAAmD,CAAC,CAAC,CAAC;IAC1L,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,uCAAwC,SAAQ,oBAAoB;IACzE,MAAM,CAAmB,IAAI,GAAW,yCAAyC,CAAC;IACjE,mDAAmD,CAAU;IACtE,MAAM,CAAU,mDAAmD,GAAG,sCAAsC,CAAC;IAErH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,8CAA8C,CAAC,CAAC;QACjE,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,qDAAqD,EAAE;YAClF,KAAK,EAAE,uCAAuC,CAAC,mDAAmD;YAClG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,qDAAqD,EAAE,uCAAuC,CAAC,mDAAmD,CAAC,CAAC,CAAC;IAC1L,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,yCAA0C,SAAQ,oBAAoB;IAC3E,MAAM,CAAmB,IAAI,GAAW,2CAA2C,CAAC;IACnE,qDAAqD,CAAU;IACxE,MAAM,CAAU,qDAAqD,GAAG,sCAAsC,CAAC;IAEvH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,sDAAsD,CAAC,CAAC;QACzE,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,uDAAuD,EAAE;YACpF,KAAK,EAAE,yCAAyC,CAAC,qDAAqD;YACtG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,uDAAuD,EAAE,yCAAyC,CAAC,qDAAqD,CAAC,CAAC,CAAC;IAChM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,yCAA0C,SAAQ,oBAAoB;IAC3E,MAAM,CAAmB,IAAI,GAAW,2CAA2C,CAAC;IACnE,qDAAqD,CAAU;IACxE,MAAM,CAAU,qDAAqD,GAAG,sCAAsC,CAAC;IAEvH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,+BAA+B,CAAC,CAAC;QAClD,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,uDAAuD,EAAE;YACpF,KAAK,EAAE,yCAAyC,CAAC,qDAAqD;YACtG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,uDAAuD,EAAE,yCAAyC,CAAC,qDAAqD,CAAC,CAAC,CAAC;IAChM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,qCAAsC,SAAQ,oBAAoB;IACvE,MAAM,CAAmB,IAAI,GAAW,uCAAuC,CAAC;IAC/D,iDAAiD,CAAU;IACpE,MAAM,CAAU,iDAAiD,GAAG,sCAAsC,CAAC;IAEnH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,8DAA8D,CAAC,CAAC;QACjF,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,mDAAmD,EAAE;YAChF,KAAK,EAAE,qCAAqC,CAAC,iDAAiD;YAC9F,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,mDAAmD,EAAE,qCAAqC,CAAC,iDAAiD,CAAC,CAAC,CAAC;IACpL,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,sCAAuC,SAAQ,oBAAoB;IACxE,MAAM,CAAmB,IAAI,GAAW,wCAAwC,CAAC;IAChE,kDAAkD,CAAU;IACrE,MAAM,CAAU,kDAAkD,GAAG,sCAAsC,CAAC;IAEpH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,iEAAiE,CAAC,CAAC;QACpF,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,oDAAoD,EAAE;YACjF,KAAK,EAAE,sCAAsC,CAAC,kDAAkD;YAChG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,oDAAoD,EAAE,sCAAsC,CAAC,kDAAkD,CAAC,CAAC,CAAC;IACvL,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,4CAA6C,SAAQ,oBAAoB;IAC9E,MAAM,CAAmB,IAAI,GAAW,8CAA8C,CAAC;IACtE,wDAAwD,CAAU;IAC3E,MAAM,CAAU,wDAAwD,GAAG,sCAAsC,CAAC;IAE1H,YAAY,SAAkB;QAC7B,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,qCAAqC,SAAS,aAAa,CAAC,CAAC,CAAC,yBAAyB,CAAC,CAAC;QAC3G,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,0DAA0D,EAAE;YACvF,KAAK,EAAE,4CAA4C,CAAC,wDAAwD;YAC5G,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,0DAA0D,EAAE,4CAA4C,CAAC,wDAAwD,CAAC,CAAC,CAAC;IACzM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,4CAA6C,SAAQ,oBAAoB;IAC9E,MAAM,CAAmB,IAAI,GAAW,8CAA8C,CAAC;IACtE,wDAAwD,CAAU;IAC3E,MAAM,CAAU,wDAAwD,GAAG,sCAAsC,CAAC;IAE1H,YAAY,MAAe;QAC1B,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,sCAAsC,MAAM,EAAE,CAAC,CAAC,CAAC,mCAAmC,CAAC,CAAC;QACrG,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,0DAA0D,EAAE;YACvF,KAAK,EAAE,4CAA4C,CAAC,wDAAwD;YAC5G,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,0DAA0D,EAAE,4CAA4C,CAAC,wDAAwD,CAAC,CAAC,CAAC;IACzM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,sCAAuC,SAAQ,oBAAoB;IACxE,MAAM,CAAmB,IAAI,GAAW,wCAAwC,CAAC;IAChE,kDAAkD,CAAU;IACrE,MAAM,CAAU,kDAAkD,GAAG,sCAAsC,CAAC;IAEpH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,0CAA0C,OAAO,EAAE,CAAC,CAAC,CAAC,uCAAuC,CAAC,CAAC;QAC/G,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,oDAAoD,EAAE;YACjF,KAAK,EAAE,sCAAsC,CAAC,kDAAkD;YAChG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,oDAAoD,EAAE,sCAAsC,CAAC,kDAAkD,CAAC,CAAC,CAAC;IACvL,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,2CAA4C,SAAQ,oBAAoB;IAC7E,MAAM,CAAmB,IAAI,GAAW,6CAA6C,CAAC;IACrE,uDAAuD,CAAU;IAC1E,MAAM,CAAU,uDAAuD,GAAG,sCAAsC,CAAC;IAEzH,YAAY,SAAkB;QAC7B,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,sCAAsC,SAAS,EAAE,CAAC,CAAC,CAAC,mCAAmC,CAAC,CAAC;QAC3G,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,yDAAyD,EAAE;YACtF,KAAK,EAAE,2CAA2C,CAAC,uDAAuD;YAC1G,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,yDAAyD,EAAE,2CAA2C,CAAC,uDAAuD,CAAC,CAAC,CAAC;IACtM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,yCAA0C,SAAQ,oBAAoB;IAC3E,MAAM,CAAmB,IAAI,GAAW,2CAA2C,CAAC;IACnE,qDAAqD,CAAU;IACxE,MAAM,CAAU,qDAAqD,GAAG,sCAAsC,CAAC;IAEvH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,8BAA8B,CAAC,CAAC;QACjD,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,uDAAuD,EAAE;YACpF,KAAK,EAAE,yCAAyC,CAAC,qDAAqD;YACtG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,uDAAuD,EAAE,yCAAyC,CAAC,qDAAqD,CAAC,CAAC,CAAC;IAChM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,iCAAkC,SAAQ,8BAA8B;IAC7E,MAAM,CAAmB,IAAI,GAAW,mCAAmC,CAAC;IAC3D,6CAA6C,CAAU;IAChE,MAAM,CAAU,6CAA6C,GAAG,sCAAsC,CAAC;IAE/G,YAAY,OAAgB;QAC3B,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,IAAI,aAAa,EAAE,CAAC,EAAE,EAAE,OAAO,IAAI,aAAa,CAAC,CAAC;QAEnG,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,+CAA+C,EAAE;YAC5E,KAAK,EAAE,iCAAiC,CAAC,6CAA6C;YACtF,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAU,UAAU,CAAC,KAAc;QACxC,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,+CAA+C,EAAE,iCAAiC,CAAC,6CAA6C,CAAC,CAAC,CAAC;IACxK,CAAC;IAED,MAAM,CAAU,KAAK,CAAC,QAAQ,CAAC,KAAc;QAC5C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,sCAAuC,SAAQ,8BAA8B;IAClF,MAAM,CAAmB,IAAI,GAAW,wCAAwC,CAAC;IAChE,kDAAkD,CAAU;IACrE,MAAM,CAAU,kDAAkD,GAAG,sCAAsC,CAAC;IAEpH,YAAY,MAAe;QAC1B,MAAM,OAAO,GAAG,MAAM,CAAC,CAAC,CAAC,qBAAqB,MAAM,EAAE,CAAC,CAAC,CAAC,kBAAkB,CAAC;QAC5E,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,UAAU,EAAE,OAAO,EAAE,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QAE5D,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,oDAAoD,EAAE;YACjF,KAAK,EAAE,sCAAsC,CAAC,kDAAkD;YAChG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAU,UAAU,CAAC,KAAc;QACxC,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,oDAAoD,EAAE,sCAAsC,CAAC,kDAAkD,CAAC,CAAC,CAAC;IACvL,CAAC;IAED,MAAM,CAAU,KAAK,CAAC,QAAQ,CAAC,KAAc;QAC5C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,CAAC,MAAM,MAAM,GAoBf;IACH;;OAEG;IACH,gBAAgB,EAAE,uCAAuC;IAEzD;;OAEG;IACH,YAAY,EAAE,mCAAmC;IAEjD;;OAEG;IACH,WAAW,EAAE,kCAAkC;IAE/C;;OAEG;IACH,aAAa,EAAE,oCAAoC;IAEnD;;OAEG;IACH,uBAAuB,EAAE,wCAAwC;IAEjE;;OAEG;IACH,gBAAgB,EAAE,uCAAuC;IAEzD;;OAEG;IACH,gBAAgB,EAAE,uCAAuC;IAEzD;;OAEG;IACH,gBAAgB,EAAE,uCAAuC;IAEzD;;OAEG;IACH,kBAAkB,EAAE,yCAAyC;IAE7D;;OAEG;IACH,kBAAkB,EAAE,yCAAyC;IAE7D;;OAEG;IACH,cAAc,EAAE,qCAAqC;IAErD;;OAEG;IACH,eAAe,EAAE,sCAAsC;IAEvD;;OAEG;IACH,qBAAqB,EAAE,4CAA4C;IAEnE;;OAEG;IACH,qBAAqB,EAAE,4CAA4C;IAEnE;;OAEG;IACH,eAAe,EAAE,sCAAsC;IAEvD;;OAEG;IACH,oBAAoB,EAAE,2CAA2C;IAEjE;;OAEG;IACH,kBAAkB,EAAE,yCAAyC;IAE7D;;OAEG;IACH,UAAU,EAAE,iCAAiC;IAE7C;;OAEG;IACH,eAAe,EAAE,sCAAsC;CACvD,CAAC;AA0QF,aAAa;AAEb,sCAAsC;AAEtC;;;;;;;;GAQG;AACH,MAAM,UAAU,qBAAqB,CAAC,SAAsB;IAC3D,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IAC5D,IAAI,CAAC;QACJ,MAAM,OAAO,GAAY,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QAChD,IAAI,QAAQ,GAAG,yBAAyB,CAAC;QACzC,IAAI,OAAe,CAAC;QACpB,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,OAAO,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YAChF,MAAM,WAAW,GAAG,UAAU,IAAI,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YACzE,MAAM,WAAW,GAAG,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACjE,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE,CAAC;gBACrC,QAAQ,GAAG,WAAW,CAAC;YACxB,CAAC;YACD,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE,CAAC;gBACrC,OAAO,GAAG,uBAAuB,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC,CAAC;YACvE,CAAC;iBAAM,CAAC;gBACP,OAAO,GAAG,uBAAuB,CAAC,SAAS,CAAC,CAAC;YAC9C,CAAC;QACF,CAAC;aAAM,CAAC;YACP,OAAO,GAAG,uBAAuB,CAAC,SAAS,CAAC,CAAC;QAC9C,CAAC;QACD,OAAM,CAAC,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACR,OAAM,CAAC;YACN,QAAQ,EAAE,yBAAyB;YACnC,OAAO,EAAE,uBAAuB,CAAC,SAAS,CAAC;SAC3C,CAAC,CAAC;IACJ,CAAC;AACF,CAAC","sourcesContent":["import type { lib as KeetaNetLib } from '@keetanetwork/keetanet-client';\nimport type { HTTPSignedField } from '../../lib/http-server/common.js';\nimport type { Signable } from '../../lib/utils/signing.js';\nimport type { EncryptedContainer } from '../../lib/encrypted-container.js';\nimport { KeetaAnchorUserError, KeetaAnchorUserValidationError } from '../../lib/error.js';\nimport { Buffer, arrayBufferLikeToBuffer } from '../../lib/utils/buffer.js';\n\n/**\n * Type alias for a KeetaNet Account instance.\n * Used throughout the storage service for account authentication and signing.\n */\nexport type KeetaNetAccount = InstanceType<typeof KeetaNetLib.Account>;\n\n// #region Shared Constants\n\n/** Content type for JSON payloads */\nexport const CONTENT_TYPE_JSON = 'application/json';\n\n/** Content type for binary/octet-stream payloads */\nexport const CONTENT_TYPE_OCTET_STREAM = 'application/octet-stream';\n\n/** Default TTL for signed URLs in seconds (1 hour) */\nexport const DEFAULT_SIGNED_URL_TTL_SECONDS = 3600;\n\n// #endregion\n\n// #region Common Types\n\n/**\n * Visibility of a storage object\n */\nexport type StorageObjectVisibility = 'public' | 'private';\n\n// #endregion\n\n// #region Object Metadata\n\n/**\n * Metadata for a stored object\n */\nexport type StorageObjectMetadata = {\n\t/**\n\t * Full path (the unique ID)\n\t */\n\tpath: string;\n\n\t/**\n\t * Owner's identifier\n\t */\n\towner: string;\n\n\t/**\n\t * Plaintext tags (searchable)\n\t */\n\ttags: string[];\n\n\t/**\n\t * Visibility setting\n\t */\n\tvisibility: StorageObjectVisibility;\n\n\t/**\n\t * Size in bytes\n\t */\n\tsize: number;\n\n\t/**\n\t * ISO timestamp of creation\n\t */\n\tcreatedAt: string;\n\n\t/**\n\t * ISO timestamp of last update\n\t */\n\tupdatedAt?: string;\n};\n\n// #endregion\n\n// #region Search\n\n/**\n * Criteria for searching storage objects.\n * Note: Content/keyword search is not supported (content is encrypted).\n */\nexport type SearchCriteria = {\n\t/**\n\t * Match objects with paths starting with this prefix\n\t * e.g., \"/user/keeta1abc.../contacts/\"\n\t */\n\tpathPrefix?: string;\n\n\t/**\n\t * Match objects that have ANY of these tags\n\t */\n\ttags?: string[];\n\n\t/**\n\t * Match path segment (filename portion)\n\t */\n\tname?: string;\n\n\t/**\n\t * Filter by owner's identifier\n\t */\n\towner?: string;\n\n\t/**\n\t * Include objects in nested paths (default: false)\n\t */\n\trecursive?: boolean;\n\n\t/**\n\t * Filter by visibility.\n\t * When 'public', allows searching public objects outside caller's namespace.\n\t */\n\tvisibility?: StorageObjectVisibility;\n};\n\n/**\n * Pagination options for search\n */\nexport type SearchPagination = {\n\t/**\n\t * Cursor for pagination (from previous response)\n\t */\n\tcursor?: string;\n\n\t/**\n\t * Maximum number of results to return\n\t */\n\tlimit?: number;\n};\n\n/**\n * Search results with pagination\n */\nexport type SearchResults = {\n\t/**\n\t * Matching objects\n\t */\n\tresults: StorageObjectMetadata[];\n\n\t/**\n\t * Cursor for next page (undefined if no more results)\n\t */\n\tnextCursor?: string;\n};\n\n// #endregion\n\n// #region Quota\n\n/**\n * Quota configuration for the storage service\n */\nexport type QuotaConfig = {\n\t/**\n\t * Maximum size in bytes per object\n\t */\n\tmaxObjectSize: number;\n\n\t/**\n\t * Maximum number of objects per user\n\t */\n\tmaxObjectsPerUser: number;\n\n\t/**\n\t * Maximum total storage in bytes per user\n\t */\n\tmaxStoragePerUser: number;\n\n\t/**\n\t * Maximum number of results per search request\n\t */\n\tmaxSearchLimit: number;\n\n\t/**\n\t * Maximum TTL in seconds for signed URLs\n\t */\n\tmaxSignedUrlTTL: number;\n};\n\n/**\n * Per-user quota limits.\n * Subset of QuotaConfig that can be overridden on a per-user basis.\n */\nexport type QuotaLimits = Pick<QuotaConfig, 'maxObjectsPerUser' | 'maxStoragePerUser' | 'maxObjectSize'>;\n\n/**\n * Current quota status for a user.\n * Backends must provide objectCount and totalSize.\n */\nexport type QuotaStatus = {\n\t/**\n\t * Current number of objects\n\t */\n\tobjectCount: number;\n\n\t/**\n\t * Current total size in bytes\n\t */\n\ttotalSize: number;\n\n\t/**\n\t * Remaining objects allowed (optional, server computes if absent)\n\t */\n\tremainingObjects?: number;\n\n\t/**\n\t * Remaining storage in bytes (optional, server computes if absent)\n\t */\n\tremainingSize?: number;\n};\n\n// #endregion\n\n// #region Request Type Helpers\n\n// #endregion\n\n// #region PUT Object\n\n/**\n * Client-side request to put (create/update) an object\n */\nexport type KeetaStorageAnchorPutClientRequest = {\n\taccount?: KeetaNetAccount;\n\tpath: string;\n\tdata: string; // Base64-encoded EncryptedContainer\n\ttags?: string[];\n\tvisibility?: StorageObjectVisibility;\n};\n\n/**\n * Server-side request to put an object\n */\nexport type KeetaStorageAnchorPutRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\tpath: string;\n\tdata: string;\n\ttags?: string[];\n\tvisibility?: StorageObjectVisibility;\n};\n\n/**\n * Configuration for a contacts client.\n * Contacts are stored in a subdirectory of the account's working directory.\n */\nexport type ContactsClientConfig = {\n\t/**\n\t * The account to use for the contacts client.\n\t */\n\taccount: KeetaNetAccount;\n\t/**\n\t * The base path for the contacts client.\n\t */\n\tbasePath: string;\n};\n\n/**\n * Configuration for an icons client.\n * The icon is stored as a single file under the base path.\n */\nexport type IconsClientConfig = {\n\t/**\n\t * The account to use for the icons client.\n\t */\n\taccount: KeetaNetAccount;\n\t/**\n\t * The base path for the icons client (e.g., `/user/<pubkey>/`).\n\t */\n\tbasePath: string;\n};\n\n/**\n * Generic response type for storage operations.\n */\nexport type StorageResponse<T> = ({ ok: true } & T) | { ok: false; error: string };\n\nexport type KeetaStorageAnchorPutResponse = StorageResponse<{ object: StorageObjectMetadata }>;\n\nexport function getKeetaStorageAnchorPutRequestSigningData(\n\tinput: { path: string; visibility?: StorageObjectVisibility; tags?: string[] }\n): Signable {\n\tconst visibility = input.visibility ?? 'private';\n\tconst tags: string[] = input.tags ?? [];\n\tconst sortedTags = [...tags].sort();\n\treturn(['put', input.path, visibility, ...sortedTags]);\n}\n\n// #endregion\n\n// #region Update Metadata\n\n/**\n * Server-side request to update object metadata.\n * Path is derived from the URL, not the body.\n */\nexport type KeetaStorageAnchorUpdateMetadataRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\ttags: string[];\n\tvisibility: StorageObjectVisibility;\n};\n\n/**\n * Build signing data for an update-metadata request.\n * Tags are sorted with localeCompare for deterministic signatures.\n */\nexport function getKeetaStorageAnchorUpdateMetadataRequestSigningData(\n\tinput: { path: string; visibility: StorageObjectVisibility; tags: string[] }\n): Signable {\n\tconst sortedTags = [...input.tags].sort(function(a, b) { return(a.localeCompare(b)); });\n\treturn(['updateMetadata', input.path, input.visibility, ...sortedTags]);\n}\n\n// #endregion\n\n// #region GET Object\n\n/**\n * Client-side request to get an object\n */\nexport type KeetaStorageAnchorGetClientRequest = {\n\taccount?: KeetaNetAccount;\n\tpath: string;\n};\n\n/**\n * Server-side request to get an object\n */\nexport type KeetaStorageAnchorGetRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\tpath: string;\n};\n\nexport type KeetaStorageAnchorGetResponse = StorageResponse<{\n\tdata: string; // Base64-encoded EncryptedContainer\n\tobject: StorageObjectMetadata;\n}>;\n\nexport function getKeetaStorageAnchorGetRequestSigningData(\n\tinput: KeetaStorageAnchorGetRequest\n): Signable {\n\treturn(['get', input.path]);\n}\n\n// #endregion\n\n// #region DELETE Object\n\n/**\n * Client-side request to delete an object\n */\nexport type KeetaStorageAnchorDeleteClientRequest = {\n\taccount?: KeetaNetAccount;\n\t/**\n\t * Path to the object\n\t */\n\tpath: string;\n};\n\n/**\n * Server-side request to delete an object\n */\nexport type KeetaStorageAnchorDeleteRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\t/**\n\t * Path to the object\n\t */\n\tpath: string;\n};\n\nexport type KeetaStorageAnchorDeleteResponse = StorageResponse<{ deleted: boolean }>;\n\nexport function getKeetaStorageAnchorDeleteRequestSigningData(\n\tinput: KeetaStorageAnchorDeleteRequest\n): Signable {\n\treturn(['delete', input.path]);\n}\n\n// #endregion\n\n// #region SEARCH\n\n/**\n * Client-side request to search objects\n */\nexport type KeetaStorageAnchorSearchClientRequest = {\n\taccount?: KeetaNetAccount;\n\tcriteria: SearchCriteria;\n\tpagination?: SearchPagination;\n};\n\n/**\n * Server-side request to search objects\n */\nexport type KeetaStorageAnchorSearchRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\tcriteria: SearchCriteria;\n\tpagination?: SearchPagination;\n};\n\nexport type KeetaStorageAnchorSearchResponse = StorageResponse<{\n\tresults: StorageObjectMetadata[];\n\tnextCursor?: string;\n}>;\n\nexport function getKeetaStorageAnchorSearchRequestSigningData(\n\tinput: KeetaStorageAnchorSearchRequest\n): Signable {\n\tconst limit = input.pagination?.limit ?? 0;\n\tconst cursor = input.pagination?.cursor ?? '';\n\treturn(['search', JSON.stringify(input.criteria), limit, cursor]);\n}\n\n// #endregion\n\n// #region Quota\n\n/**\n * Client-side request to get quota status\n */\nexport type KeetaStorageAnchorQuotaClientRequest = {\n\taccount?: KeetaNetAccount;\n};\n\n/**\n * Server-side request to get quota status\n */\nexport type KeetaStorageAnchorQuotaRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n};\n\nexport type KeetaStorageAnchorQuotaResponse = StorageResponse<{ quota: QuotaStatus }>;\n\n/**\n * Get signing data for quota requests.\n * The input is unused because quota requests don't need request-specific signing -\n * authentication alone is sufficient.\n *\n * The parameter was kept for API consistency with other signing functions.\n */\nexport function getKeetaStorageAnchorQuotaRequestSigningData(\n\t_ignoreInput: KeetaStorageAnchorQuotaRequest\n): Signable {\n\treturn(['quota']);\n}\n\n// #endregion\n\n// #region Error Classes\n\nclass KeetaStorageAnchorDocumentNotFoundError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorDocumentNotFoundError';\n\tprivate readonly KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID = 'ac137e18-2827-4542-a852-c650610899b5';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Document not found');\n\t\tthis.statusCode = 404;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorDocumentNotFoundError.KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorDocumentNotFoundError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID', KeetaStorageAnchorDocumentNotFoundError.KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorDocumentNotFoundError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorAccessDeniedError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorAccessDeniedError';\n\tprivate readonly KeetaStorageAnchorAccessDeniedErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorAccessDeniedErrorObjectTypeID = 'fb75fa8c-6ef0-47cb-b767-3c2cfbb73617';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Access denied');\n\t\tthis.statusCode = 403;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorAccessDeniedErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorAccessDeniedError.KeetaStorageAnchorAccessDeniedErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorAccessDeniedError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorAccessDeniedErrorObjectTypeID', KeetaStorageAnchorAccessDeniedError.KeetaStorageAnchorAccessDeniedErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorAccessDeniedError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidPathError extends KeetaAnchorUserValidationError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidPathError';\n\tprivate readonly KeetaStorageAnchorInvalidPathErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidPathErrorObjectTypeID = 'eb0e1c0d-2281-4b93-9f78-87bf166a4829';\n\n\tconstructor(message?: string) {\n\t\tsuper({ fields: [{ path: 'path', message: message ?? 'Invalid path format' }] }, message ?? 'Invalid path format');\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidPathErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidPathError.KeetaStorageAnchorInvalidPathErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic override isInstance(input: unknown): input is KeetaStorageAnchorInvalidPathError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidPathErrorObjectTypeID', KeetaStorageAnchorInvalidPathError.KeetaStorageAnchorInvalidPathErrorObjectTypeID));\n\t}\n\n\tstatic override async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidPathError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\ntype QuotaExceededType = 'maxObjectSize' | 'maxObjectsPerUser' | 'maxStoragePerUser';\n\nclass KeetaStorageAnchorQuotaExceededError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorQuotaExceededError';\n\tprivate readonly KeetaStorageAnchorQuotaExceededErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorQuotaExceededErrorObjectTypeID = 'c0b75028-644a-472b-8df4-b0a856814f99';\n\n\t/** Which quota limit was exceeded */\n\treadonly quotaType: QuotaExceededType;\n\n\t/** The configured maximum for the exceeded quota */\n\treadonly limit: number;\n\n\t/** The current or attempted value that exceeded the limit */\n\treadonly current: number;\n\n\tconstructor(options: { quotaType: QuotaExceededType; limit: number; current: number; message?: string }) {\n\t\tsuper(options.message ?? `Quota exceeded: ${options.quotaType} (${options.current} exceeds limit of ${options.limit})`);\n\t\tthis.statusCode = 413;\n\t\tthis.quotaType = options.quotaType;\n\t\tthis.limit = options.limit;\n\t\tthis.current = options.current;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorQuotaExceededErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorQuotaExceededError.KeetaStorageAnchorQuotaExceededErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorQuotaExceededError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorQuotaExceededErrorObjectTypeID', KeetaStorageAnchorQuotaExceededError.KeetaStorageAnchorQuotaExceededErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorQuotaExceededError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this({ quotaType: 'maxObjectSize', limit: 0, current: 0, message });\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorPrincipalRequiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorPrincipalRequiredError';\n\tprivate readonly KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID = '12e42092-d4db-435e-8a01-798e26f653b4';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Validated path requires anchor as principal');\n\t\tthis.statusCode = 400;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorPrincipalRequiredError.KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorPrincipalRequiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID', KeetaStorageAnchorPrincipalRequiredError.KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorPrincipalRequiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorValidationFailedError extends KeetaAnchorUserValidationError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorValidationFailedError';\n\tprivate readonly KeetaStorageAnchorValidationFailedErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorValidationFailedErrorObjectTypeID = '73cadd95-cf39-466b-b9b6-484e1ae1ca9c';\n\n\tconstructor(message?: string) {\n\t\tconst msg = message ?? 'Content validation failed';\n\t\tsuper({ fields: [{ path: 'content', message: msg }] }, msg);\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorValidationFailedErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorValidationFailedError.KeetaStorageAnchorValidationFailedErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\toverride get statusCode() {\n\t\treturn(422);\n\t}\n\n\tstatic override isInstance(input: unknown): input is KeetaStorageAnchorValidationFailedError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorValidationFailedErrorObjectTypeID', KeetaStorageAnchorValidationFailedError.KeetaStorageAnchorValidationFailedErrorObjectTypeID));\n\t}\n\n\tstatic override async fromJSON(input: unknown): Promise<KeetaStorageAnchorValidationFailedError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorSignatureExpiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorSignatureExpiredError';\n\tprivate readonly KeetaStorageAnchorSignatureExpiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorSignatureExpiredErrorObjectTypeID = '3a676e44-882b-4925-bf5f-bc5123cc0b20';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Pre-signed URL has expired');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorSignatureExpiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorSignatureExpiredError.KeetaStorageAnchorSignatureExpiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorSignatureExpiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorSignatureExpiredErrorObjectTypeID', KeetaStorageAnchorSignatureExpiredError.KeetaStorageAnchorSignatureExpiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorSignatureExpiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorSignatureInvalidError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorSignatureInvalidError';\n\tprivate readonly KeetaStorageAnchorSignatureInvalidErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorSignatureInvalidErrorObjectTypeID = '91831c73-31e2-4f27-a9d1-4ab9a5ed5663';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Pre-signed URL signature verification failed');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorSignatureInvalidErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorSignatureInvalidError.KeetaStorageAnchorSignatureInvalidErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorSignatureInvalidError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorSignatureInvalidErrorObjectTypeID', KeetaStorageAnchorSignatureInvalidError.KeetaStorageAnchorSignatureInvalidErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorSignatureInvalidError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorPrivateKeyRequiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorPrivateKeyRequiredError';\n\tprivate readonly KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID = '36eaae98-1b1e-412b-ba5b-b9293cc37156';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Account with private key required for this operation');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorPrivateKeyRequiredError.KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorPrivateKeyRequiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID', KeetaStorageAnchorPrivateKeyRequiredError.KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorPrivateKeyRequiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorServiceUnavailableError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorServiceUnavailableError';\n\tprivate readonly KeetaStorageAnchorServiceUnavailableErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorServiceUnavailableErrorObjectTypeID = 'b2671cd1-6abb-4bd4-9be2-d8d111c17bcf';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Storage service not available');\n\t\tthis.statusCode = 503;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorServiceUnavailableErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorServiceUnavailableError.KeetaStorageAnchorServiceUnavailableErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorServiceUnavailableError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorServiceUnavailableErrorObjectTypeID', KeetaStorageAnchorServiceUnavailableError.KeetaStorageAnchorServiceUnavailableErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorServiceUnavailableError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorSignerRequiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorSignerRequiredError';\n\tprivate readonly KeetaStorageAnchorSignerRequiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorSignerRequiredErrorObjectTypeID = 'ce4a5581-1869-4656-88c6-63f0a29b46ca';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'A Signer or UserClient with an associated Signer is required');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorSignerRequiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorSignerRequiredError.KeetaStorageAnchorSignerRequiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorSignerRequiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorSignerRequiredErrorObjectTypeID', KeetaStorageAnchorSignerRequiredError.KeetaStorageAnchorSignerRequiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorSignerRequiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorAccountRequiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorAccountRequiredError';\n\tprivate readonly KeetaStorageAnchorAccountRequiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorAccountRequiredErrorObjectTypeID = '496e5dbe-535f-4f24-acf4-a44d9d93fb75';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'An Account or UserClient with an associated Account is required');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorAccountRequiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorAccountRequiredError.KeetaStorageAnchorAccountRequiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorAccountRequiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorAccountRequiredErrorObjectTypeID', KeetaStorageAnchorAccountRequiredError.KeetaStorageAnchorAccountRequiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorAccountRequiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorOperationNotSupportedError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorOperationNotSupportedError';\n\tprivate readonly KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID = 'ac491ea6-f656-4eab-a430-051a0f201fff';\n\n\tconstructor(operation?: string) {\n\t\tsuper(operation ? `Storage service does not support '${operation}' operation` : 'Operation not supported');\n\t\tthis.statusCode = 501;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorOperationNotSupportedError.KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorOperationNotSupportedError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID', KeetaStorageAnchorOperationNotSupportedError.KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorOperationNotSupportedError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorUnsupportedAuthMethodError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorUnsupportedAuthMethodError';\n\tprivate readonly KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID = '46cfbab9-934f-44b0-9216-03d397fdd6b6';\n\n\tconstructor(method?: string) {\n\t\tsuper(method ? `Unsupported authentication method: ${method}` : 'Unsupported authentication method');\n\t\tthis.statusCode = 501;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorUnsupportedAuthMethodError.KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorUnsupportedAuthMethodError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID', KeetaStorageAnchorUnsupportedAuthMethodError.KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorUnsupportedAuthMethodError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidResponseError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidResponseError';\n\tprivate readonly KeetaStorageAnchorInvalidResponseErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidResponseErrorObjectTypeID = '02480186-7bc3-4a80-b6a9-23c3a9f606c9';\n\n\tconstructor(details?: string) {\n\t\tsuper(details ? `Invalid response from storage service: ${details}` : 'Invalid response from storage service');\n\t\tthis.statusCode = 502;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidResponseErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidResponseError.KeetaStorageAnchorInvalidResponseErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorInvalidResponseError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidResponseErrorObjectTypeID', KeetaStorageAnchorInvalidResponseError.KeetaStorageAnchorInvalidResponseErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidResponseError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidAnchorAccountError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidAnchorAccountError';\n\tprivate readonly KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID = '82bb0a94-0a5e-4e0a-b5c1-7532bbe09cd6';\n\n\tconstructor(publicKey?: string) {\n\t\tsuper(publicKey ? `Invalid anchor account public key: ${publicKey}` : 'Invalid anchor account public key');\n\t\tthis.statusCode = 502;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidAnchorAccountError.KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorInvalidAnchorAccountError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID', KeetaStorageAnchorInvalidAnchorAccountError.KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidAnchorAccountError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvariantViolationError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvariantViolationError';\n\tprivate readonly KeetaStorageAnchorInvariantViolationErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvariantViolationErrorObjectTypeID = 'a7c5d3e1-8b9f-4c2a-b3d4-e5f6a7b8c9d0';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Internal invariant violation');\n\t\tthis.statusCode = 500;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvariantViolationErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvariantViolationError.KeetaStorageAnchorInvariantViolationErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorInvariantViolationError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvariantViolationErrorObjectTypeID', KeetaStorageAnchorInvariantViolationError.KeetaStorageAnchorInvariantViolationErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvariantViolationError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidTagError extends KeetaAnchorUserValidationError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidTagError';\n\tprivate readonly KeetaStorageAnchorInvalidTagErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidTagErrorObjectTypeID = 'b8d6e4f2-9c0a-5d3b-c4e5-f6a7b8c9d0e1';\n\n\tconstructor(message?: string) {\n\t\tsuper({ fields: [{ path: 'tags', message: message ?? 'Invalid tag' }] }, message ?? 'Invalid tag');\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidTagErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidTagError.KeetaStorageAnchorInvalidTagErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic override isInstance(input: unknown): input is KeetaStorageAnchorInvalidTagError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidTagErrorObjectTypeID', KeetaStorageAnchorInvalidTagError.KeetaStorageAnchorInvalidTagErrorObjectTypeID));\n\t}\n\n\tstatic override async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidTagError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidMetadataError extends KeetaAnchorUserValidationError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidMetadataError';\n\tprivate readonly KeetaStorageAnchorInvalidMetadataErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidMetadataErrorObjectTypeID = 'c9e7f5a3-0d1b-6e4c-d5f6-a7b8c9d0e1f2';\n\n\tconstructor(reason?: string) {\n\t\tconst message = reason ? `Invalid metadata: ${reason}` : 'Invalid metadata';\n\t\tsuper({ fields: [{ path: 'metadata', message }] }, message);\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidMetadataErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidMetadataError.KeetaStorageAnchorInvalidMetadataErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic override isInstance(input: unknown): input is KeetaStorageAnchorInvalidMetadataError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidMetadataErrorObjectTypeID', KeetaStorageAnchorInvalidMetadataError.KeetaStorageAnchorInvalidMetadataErrorObjectTypeID));\n\t}\n\n\tstatic override async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidMetadataError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nexport const Errors: {\n\tDocumentNotFound: typeof KeetaStorageAnchorDocumentNotFoundError;\n\tAccessDenied: typeof KeetaStorageAnchorAccessDeniedError;\n\tInvalidPath: typeof KeetaStorageAnchorInvalidPathError;\n\tQuotaExceeded: typeof KeetaStorageAnchorQuotaExceededError;\n\tAnchorPrincipalRequired: typeof KeetaStorageAnchorPrincipalRequiredError;\n\tValidationFailed: typeof KeetaStorageAnchorValidationFailedError;\n\tSignatureExpired: typeof KeetaStorageAnchorSignatureExpiredError;\n\tSignatureInvalid: typeof KeetaStorageAnchorSignatureInvalidError;\n\tPrivateKeyRequired: typeof KeetaStorageAnchorPrivateKeyRequiredError;\n\tServiceUnavailable: typeof KeetaStorageAnchorServiceUnavailableError;\n\tSignerRequired: typeof KeetaStorageAnchorSignerRequiredError;\n\tAccountRequired: typeof KeetaStorageAnchorAccountRequiredError;\n\tOperationNotSupported: typeof KeetaStorageAnchorOperationNotSupportedError;\n\tUnsupportedAuthMethod: typeof KeetaStorageAnchorUnsupportedAuthMethodError;\n\tInvalidResponse: typeof KeetaStorageAnchorInvalidResponseError;\n\tInvalidAnchorAccount: typeof KeetaStorageAnchorInvalidAnchorAccountError;\n\tInvariantViolation: typeof KeetaStorageAnchorInvariantViolationError;\n\tInvalidTag: typeof KeetaStorageAnchorInvalidTagError;\n\tInvalidMetadata: typeof KeetaStorageAnchorInvalidMetadataError;\n} = {\n\t/**\n\t * The requested document/object was not found\n\t */\n\tDocumentNotFound: KeetaStorageAnchorDocumentNotFoundError,\n\n\t/**\n\t * Access to the document/object was denied\n\t */\n\tAccessDenied: KeetaStorageAnchorAccessDeniedError,\n\n\t/**\n\t * Path doesn't match /user/<pubkey>/... format\n\t */\n\tInvalidPath: KeetaStorageAnchorInvalidPathError,\n\n\t/**\n\t * Object size, count, or total storage limit exceeded\n\t */\n\tQuotaExceeded: KeetaStorageAnchorQuotaExceededError,\n\n\t/**\n\t * Validated path requires anchor as principal\n\t */\n\tAnchorPrincipalRequired: KeetaStorageAnchorPrincipalRequiredError,\n\n\t/**\n\t * Namespace validator rejected content\n\t */\n\tValidationFailed: KeetaStorageAnchorValidationFailedError,\n\n\t/**\n\t * Pre-signed URL has expired\n\t */\n\tSignatureExpired: KeetaStorageAnchorSignatureExpiredError,\n\n\t/**\n\t * Pre-signed URL signature verification failed\n\t */\n\tSignatureInvalid: KeetaStorageAnchorSignatureInvalidError,\n\n\t/**\n\t * Account with private key required for this operation\n\t */\n\tPrivateKeyRequired: KeetaStorageAnchorPrivateKeyRequiredError,\n\n\t/**\n\t * Storage service is not available\n\t */\n\tServiceUnavailable: KeetaStorageAnchorServiceUnavailableError,\n\n\t/**\n\t * A Signer or UserClient with an associated Signer is required\n\t */\n\tSignerRequired: KeetaStorageAnchorSignerRequiredError,\n\n\t/**\n\t * An Account or UserClient with an associated Account is required\n\t */\n\tAccountRequired: KeetaStorageAnchorAccountRequiredError,\n\n\t/**\n\t * The requested operation is not supported by this storage service\n\t */\n\tOperationNotSupported: KeetaStorageAnchorOperationNotSupportedError,\n\n\t/**\n\t * The authentication method is not supported\n\t */\n\tUnsupportedAuthMethod: KeetaStorageAnchorUnsupportedAuthMethodError,\n\n\t/**\n\t * Invalid response received from storage service\n\t */\n\tInvalidResponse: KeetaStorageAnchorInvalidResponseError,\n\n\t/**\n\t * Anchor account public key from service metadata is invalid\n\t */\n\tInvalidAnchorAccount: KeetaStorageAnchorInvalidAnchorAccountError,\n\n\t/**\n\t * Internal invariant violation - indicates a bug in the code\n\t */\n\tInvariantViolation: KeetaStorageAnchorInvariantViolationError,\n\n\t/**\n\t * Tag validation failed (invalid format, too long, or too many tags)\n\t */\n\tInvalidTag: KeetaStorageAnchorInvalidTagError,\n\n\t/**\n\t * Metadata validation failed against path policy constraints\n\t */\n\tInvalidMetadata: KeetaStorageAnchorInvalidMetadataError\n};\n\n// #endregion\n\n// #region Storage Backend Interface\n\n/**\n * Metadata input for put operations.\n * Provided by the client when storing an object.\n */\nexport type StoragePutMetadata = {\n\t/** Owner's identifier */\n\towner: string;\n\t/** Tags for categorization and search */\n\ttags: string[];\n\t/** Access visibility setting */\n\tvisibility: StorageObjectVisibility;\n};\n\n/**\n * Result of a get operation.\n * Contains both the raw encrypted data and the object metadata.\n */\nexport type StorageGetResult = {\n\t/** Raw encrypted data (EncryptedContainer) */\n\tdata: Buffer;\n\t/** Object metadata */\n\tmetadata: StorageObjectMetadata;\n};\n\n/**\n * Represents a pending upload quota reservation.\n * Used to reserve quota before an upload and track in-flight uploads.\n */\nexport interface UploadReservation {\n\t/** Unique identifier for this reservation */\n\tid: string;\n\t/** Owner's identifier */\n\towner: string;\n\t/** Target path for the upload */\n\tpath: string;\n\t/** Reserved size in bytes */\n\tsize: number;\n\t/** When the reservation was created */\n\tcreatedAt: string;\n\t/** When the reservation expires - hint for stale cleanup */\n\texpiresAt: string;\n}\n\n/**\n * Core CRUD operations for storage.\n * All backends must implement these operations.\n */\nexport interface StorageBackend {\n\t/**\n\t * Store/update an object at the given path\n\t */\n\tput(path: string, data: Buffer, metadata: StoragePutMetadata): Promise<StorageObjectMetadata>;\n\n\t/**\n\t * Retrieve an object by path\n\t */\n\tget(path: string): Promise<StorageGetResult | null>;\n\n\t/**\n\t * Delete an object by path\n\t */\n\tdelete(path: string): Promise<boolean>;\n\n\t/**\n\t * Update metadata for an existing object without re-uploading data.\n\t * @returns Updated metadata, or null if the object does not exist\n\t */\n\tupdateMetadata?(path: string, metadata: Omit<StoragePutMetadata, 'owner'>): Promise<StorageObjectMetadata | null>;\n}\n\n/**\n * Search capability interface.\n * Optional for backends that don't support indexing (e.g., simple S3-only backends).\n */\nexport interface SearchableStorage {\n\t/**\n\t * Search for objects matching criteria\n\t */\n\tsearch(criteria: SearchCriteria, pagination: SearchPagination): Promise<SearchResults>;\n}\n\n/**\n * Quota management with upload reservations.\n * Handles quota tracking and reservation-based upload flow.\n */\nexport interface QuotaManagedStorage {\n\t/**\n\t * Get quota status for a user.\n\t * Includes both actual usage and pending reservations.\n\t */\n\tgetQuotaStatus(owner: string): Promise<QuotaStatus>;\n\n\t/**\n\t * Get per-user quota limits.\n\t * Return null to use global defaults.\n\t * @param owner - Owner's identifier\n\t */\n\tgetQuotaLimits?(owner: string): Promise<QuotaLimits | null>;\n\n\t/**\n\t * Reserve quota for an upcoming upload.\n\t *\n\t * @param owner - Owner's identifier\n\t * @param path - Target path for the upload\n\t * @param size - Size in bytes to reserve\n\t * @param options.ttlMs - Optional TTL in milliseconds for the reservation\n\t * @param options.quotaLimits - Optional quota limits to enforce (overrides backend defaults)\n\t *\n\t * @returns Reservation that must be committed or released\n\t *\n\t * @throws QuotaExceeded if reservation would exceed limits\n\t */\n\treserveUpload(owner: string, path: string, size: number, options?: {\n\t\tttlMs?: number;\n\t\tquotaLimits?: Pick<QuotaConfig, 'maxObjectsPerUser' | 'maxStoragePerUser'>;\n\t}): Promise<UploadReservation>;\n\n\t/**\n\t * Commit a reservation after successful upload.\n\t * Call after put() succeeds to finalize the quota usage.\n\t * @param reservationId - ID of the reservation to commit\n\t */\n\tcommitUpload(reservationId: string): Promise<void>;\n\n\t/**\n\t * Release a reservation (upload failed or cancelled).\n\t * Frees the reserved quota.\n\t * @param reservationId - ID of the reservation to release\n\t */\n\treleaseUpload(reservationId: string): Promise<void>;\n}\n\n/**\n * Full storage backend combining all capabilities.\n * Use this type when a backend supports CRUD, search, and quota management.\n */\nexport type FullStorageBackend = StorageBackend & SearchableStorage & QuotaManagedStorage;\n\n// #endregion\n\n// #region Path Policy\n\n/**\n * Operations that can be performed on storage objects.\n */\nexport type StorageOperation = 'get' | 'put' | 'delete' | 'search' | 'metadata' | 'updateMetadata';\n\n/**\n * Shared fields available to all policy context variants.\n */\nexport interface PathPolicyContextBase {\n\taccount: KeetaNetAccount;\n}\n\n/**\n * Context for PUT operations.\n * Contains the metadata being written and the encrypted container.\n */\nexport interface PutPolicyContext extends PathPolicyContextBase {\n\toperation: 'put';\n\tmetadata: StoragePutMetadata;\n\tcontainer: EncryptedContainer;\n}\n\n/**\n * Context for metadata update operations.\n * Contains the new metadata values and the current object metadata before mutation.\n */\nexport interface UpdateMetadataPolicyContext extends PathPolicyContextBase {\n\toperation: 'updateMetadata';\n\tmetadata: StoragePutMetadata;\n\tcurrent: StorageObjectMetadata;\n}\n\n/**\n * Context for GET operations.\n */\nexport interface GetPolicyContext extends PathPolicyContextBase {\n\toperation: 'get';\n}\n\n/**\n * Context for DELETE operations.\n */\nexport interface DeletePolicyContext extends PathPolicyContextBase {\n\toperation: 'delete';\n}\n\n/**\n * Context for metadata read operations.\n */\nexport interface MetadataPolicyContext extends PathPolicyContextBase {\n\toperation: 'metadata';\n}\n\n/**\n * Discriminated union of all policy validation contexts.\n * Narrows on `operation` to access operation-specific fields.\n */\nexport type PathPolicyContext =\n\t| PutPolicyContext\n\t| UpdateMetadataPolicyContext\n\t| GetPolicyContext\n\t| DeletePolicyContext\n\t| MetadataPolicyContext;\n\n/**\n * Generic interface for path policies.\n * Each implementation defines its own parsed type and access control logic.\n * Storage Anchors are free to implement whatever pathname structure they wish.\n */\nexport interface PathPolicy<TPathInfo> {\n\t/**\n\t * Parse a path into its components.\n\t * @returns TPathInfo if valid, null otherwise\n\t */\n\tparse(path: string): TPathInfo | null;\n\n\t/**\n\t * Validate a path and return its components.\n\t * @throws Errors.InvalidPath if the path is invalid\n\t */\n\tvalidate(path: string): TPathInfo;\n\n\t/**\n\t * Check if a path is valid.\n\t */\n\tisValid(path: string): boolean;\n\n\t/**\n\t * Check if the account has access to perform the operation on the parsed path.\n\t * @returns true if access is allowed, false otherwise\n\t */\n\tcheckAccess(account: KeetaNetAccount, parsed: TPathInfo, operation: StorageOperation): boolean;\n\n\t/**\n\t * Get the account authorized to sign pre-signed URLs for this path.\n\t * Used for public object access verification.\n\t *\n\t * @returns The account if only that account can sign (owner-restricted), or `null` if any account can sign\n\t */\n\tgetAuthorizedSigner(parsed: TPathInfo): KeetaNetAccount | null;\n\n\t/**\n\t * Resolve the owner of a path.\n\t *\n\t * @returns The owner's identifier\n\t */\n\tgetOwner(path: string): string;\n\n\t/**\n\t * Validate the request context for a path.\n\t *\n\t * @param parsed - The parsed path info\n\t * @param context - The operation-specific validation context\n\t * @throws Errors.InvalidMetadata if the context violates policy constraints\n\t */\n\tvalidateContext?(parsed: TPathInfo, context: PathPolicyContext): void;\n}\n\n// #endregion\n\n// #region Container Payload Utilities\n\n/**\n * Parse the decrypted plaintext from an EncryptedContainer.\n * The payload is expected to be JSON with mimeType and base64-encoded data,\n * keeping the mimeType encrypted along with the content.\n *\n * @param plaintext - The decrypted plaintext from an EncryptedContainer\n *\n * @returns Object containing mimeType and content Buffer\n */\nexport function parseContainerPayload(plaintext: ArrayBuffer): { mimeType: string; content: Buffer } {\n\tconst payloadStr = Buffer.from(plaintext).toString('utf-8');\n\ttry {\n\t\tconst payload: unknown = JSON.parse(payloadStr);\n\t\tlet mimeType = CONTENT_TYPE_OCTET_STREAM;\n\t\tlet content: Buffer;\n\t\tif (typeof payload === 'object' && payload !== null && !Array.isArray(payload)) {\n\t\t\tconst payloadMime = 'mimeType' in payload ? payload.mimeType : undefined;\n\t\t\tconst payloadData = 'data' in payload ? payload.data : undefined;\n\t\t\tif (typeof payloadMime === 'string') {\n\t\t\t\tmimeType = payloadMime;\n\t\t\t}\n\t\t\tif (typeof payloadData === 'string') {\n\t\t\t\tcontent = arrayBufferLikeToBuffer(Buffer.from(payloadData, 'base64'));\n\t\t\t} else {\n\t\t\t\tcontent = arrayBufferLikeToBuffer(plaintext);\n\t\t\t}\n\t\t} else {\n\t\t\tcontent = arrayBufferLikeToBuffer(plaintext);\n\t\t}\n\t\treturn({ mimeType, content });\n\t} catch {\n\t\treturn({\n\t\t\tmimeType: CONTENT_TYPE_OCTET_STREAM,\n\t\t\tcontent: arrayBufferLikeToBuffer(plaintext)\n\t\t});\n\t}\n}\n\n// #endregion\n"]}
1
+ {"version":3,"file":"common.js","sourceRoot":"","sources":["../../../src/services/storage/common.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,oBAAoB,EAAE,8BAA8B,EAAE,mCAAmC,EAAE,MAAM,oBAAoB,CAAC;AAC/H,OAAO,EAAE,MAAM,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAC;AAQ5E,2BAA2B;AAE3B,qCAAqC;AACrC,MAAM,CAAC,MAAM,iBAAiB,GAAG,kBAAkB,CAAC;AAEpD,oDAAoD;AACpD,MAAM,CAAC,MAAM,yBAAyB,GAAG,0BAA0B,CAAC;AAEpE,sDAAsD;AACtD,MAAM,CAAC,MAAM,8BAA8B,GAAG,IAAI,CAAC;AAqQnD,MAAM,UAAU,0CAA0C,CACzD,KAA8E;IAE9E,MAAM,UAAU,GAAG,KAAK,CAAC,UAAU,IAAI,SAAS,CAAC;IACjD,MAAM,IAAI,GAAa,KAAK,CAAC,IAAI,IAAI,EAAE,CAAC;IACxC,MAAM,UAAU,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC;IACpC,OAAM,CAAC,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,EAAE,UAAU,EAAE,GAAG,UAAU,CAAC,CAAC,CAAC;AACxD,CAAC;AAiBD;;;GAGG;AACH,MAAM,UAAU,qDAAqD,CACpE,KAA4E;IAE5E,MAAM,UAAU,GAAG,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,UAAS,CAAC,EAAE,CAAC,IAAI,OAAM,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACxF,OAAM,CAAC,CAAC,gBAAgB,EAAE,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,UAAU,EAAE,GAAG,UAAU,CAAC,CAAC,CAAC;AACzE,CAAC;AA4BD,MAAM,UAAU,0CAA0C,CACzD,KAAmC;IAEnC,OAAM,CAAC,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;AAC7B,CAAC;AA+BD,MAAM,UAAU,6CAA6C,CAC5D,KAAsC;IAEtC,OAAM,CAAC,CAAC,QAAQ,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;AAChC,CAAC;AA8BD,MAAM,UAAU,6CAA6C,CAC5D,KAAsC;IAEtC,MAAM,KAAK,GAAG,KAAK,CAAC,UAAU,EAAE,KAAK,IAAI,CAAC,CAAC;IAC3C,MAAM,MAAM,GAAG,KAAK,CAAC,UAAU,EAAE,MAAM,IAAI,EAAE,CAAC;IAC9C,OAAM,CAAC,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC;AACnE,CAAC;AAuBD;;;;;;GAMG;AACH,MAAM,UAAU,4CAA4C,CAC3D,YAA4C;IAE5C,OAAM,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;AACnB,CAAC;AAED,aAAa;AAEb,wBAAwB;AAExB,MAAM,uCAAwC,SAAQ,oBAAoB;IACzE,MAAM,CAAmB,IAAI,GAAW,yCAAyC,CAAC;IACjE,mDAAmD,CAAU;IACtE,MAAM,CAAU,mDAAmD,GAAG,sCAAsC,CAAC;IAErH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,oBAAoB,CAAC,CAAC;QACvC,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,qDAAqD,EAAE;YAClF,KAAK,EAAE,uCAAuC,CAAC,mDAAmD;YAClG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,qDAAqD,EAAE,uCAAuC,CAAC,mDAAmD,CAAC,CAAC,CAAC;IAC1L,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,mCAAoC,SAAQ,oBAAoB;IACrE,MAAM,CAAmB,IAAI,GAAW,qCAAqC,CAAC;IAC7D,+CAA+C,CAAU;IAClE,MAAM,CAAU,+CAA+C,GAAG,sCAAsC,CAAC;IAEjH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,eAAe,CAAC,CAAC;QAClC,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,iDAAiD,EAAE;YAC9E,KAAK,EAAE,mCAAmC,CAAC,+CAA+C;YAC1F,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,iDAAiD,EAAE,mCAAmC,CAAC,+CAA+C,CAAC,CAAC,CAAC;IAC9K,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,kCAAmC,SAAQ,8BAA8B;IAC9E,MAAM,CAAmB,IAAI,GAAW,oCAAoC,CAAC;IAC5D,8CAA8C,CAAU;IACjE,MAAM,CAAU,8CAA8C,GAAG,sCAAsC,CAAC;IAEhH,YAAY,OAAgB;QAC3B,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,IAAI,qBAAqB,EAAE,CAAC,EAAE,EAAE,OAAO,IAAI,qBAAqB,CAAC,CAAC;QAEnH,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,gDAAgD,EAAE;YAC7E,KAAK,EAAE,kCAAkC,CAAC,8CAA8C;YACxF,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAU,UAAU,CAAC,KAAc;QACxC,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,gDAAgD,EAAE,kCAAkC,CAAC,8CAA8C,CAAC,CAAC,CAAC;IAC3K,CAAC;IAED,MAAM,CAAU,KAAK,CAAC,QAAQ,CAAC,KAAc;QAC5C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAKF,MAAM,oCAAqC,SAAQ,oBAAoB;IACtE,MAAM,CAAmB,IAAI,GAAW,sCAAsC,CAAC;IAC9D,gDAAgD,CAAU;IACnE,MAAM,CAAU,gDAAgD,GAAG,sCAAsC,CAAC;IAElH,qCAAqC;IAC5B,SAAS,CAAoB;IAEtC,oDAAoD;IAC3C,KAAK,CAAS;IAEvB,6DAA6D;IACpD,OAAO,CAAS;IAEzB,YAAY,OAA2F;QACtG,KAAK,CAAC,OAAO,CAAC,OAAO,IAAI,mBAAmB,OAAO,CAAC,SAAS,KAAK,OAAO,CAAC,OAAO,qBAAqB,OAAO,CAAC,KAAK,GAAG,CAAC,CAAC;QACxH,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QACtB,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC;QAC3B,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAE/B,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,kDAAkD,EAAE;YAC/E,KAAK,EAAE,oCAAoC,CAAC,gDAAgD;YAC5F,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,kDAAkD,EAAE,oCAAoC,CAAC,gDAAgD,CAAC,CAAC,CAAC;IACjL,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,EAAE,SAAS,EAAE,eAAe,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC;QACtF,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,wCAAyC,SAAQ,oBAAoB;IAC1E,MAAM,CAAmB,IAAI,GAAW,0CAA0C,CAAC;IAClE,oDAAoD,CAAU;IACvE,MAAM,CAAU,oDAAoD,GAAG,sCAAsC,CAAC;IAEtH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,6CAA6C,CAAC,CAAC;QAChE,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,sDAAsD,EAAE;YACnF,KAAK,EAAE,wCAAwC,CAAC,oDAAoD;YACpG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,sDAAsD,EAAE,wCAAwC,CAAC,oDAAoD,CAAC,CAAC,CAAC;IAC7L,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,uCAAwC,SAAQ,8BAA8B;IACnF,MAAM,CAAmB,IAAI,GAAW,yCAAyC,CAAC;IACjE,mDAAmD,CAAU;IACtE,MAAM,CAAU,mDAAmD,GAAG,sCAAsC,CAAC;IAErH,YAAY,OAAgB;QAC3B,MAAM,GAAG,GAAG,OAAO,IAAI,2BAA2B,CAAC;QACnD,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC,EAAE,EAAE,GAAG,CAAC,CAAC;QAE5D,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,qDAAqD,EAAE;YAClF,KAAK,EAAE,uCAAuC,CAAC,mDAAmD;YAClG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,IAAa,UAAU;QACtB,OAAM,CAAC,GAAG,CAAC,CAAC;IACb,CAAC;IAED,MAAM,CAAU,UAAU,CAAC,KAAc;QACxC,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,qDAAqD,EAAE,uCAAuC,CAAC,mDAAmD,CAAC,CAAC,CAAC;IAC1L,CAAC;IAED,MAAM,CAAU,KAAK,CAAC,QAAQ,CAAC,KAAc;QAC5C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,uCAAwC,SAAQ,oBAAoB;IACzE,MAAM,CAAmB,IAAI,GAAW,yCAAyC,CAAC;IACjE,mDAAmD,CAAU;IACtE,MAAM,CAAU,mDAAmD,GAAG,sCAAsC,CAAC;IAErH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,4BAA4B,CAAC,CAAC;QAC/C,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,qDAAqD,EAAE;YAClF,KAAK,EAAE,uCAAuC,CAAC,mDAAmD;YAClG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,qDAAqD,EAAE,uCAAuC,CAAC,mDAAmD,CAAC,CAAC,CAAC;IAC1L,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,uCAAwC,SAAQ,oBAAoB;IACzE,MAAM,CAAmB,IAAI,GAAW,yCAAyC,CAAC;IACjE,mDAAmD,CAAU;IACtE,MAAM,CAAU,mDAAmD,GAAG,sCAAsC,CAAC;IAErH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,8CAA8C,CAAC,CAAC;QACjE,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,qDAAqD,EAAE;YAClF,KAAK,EAAE,uCAAuC,CAAC,mDAAmD;YAClG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,qDAAqD,EAAE,uCAAuC,CAAC,mDAAmD,CAAC,CAAC,CAAC;IAC1L,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,yCAA0C,SAAQ,oBAAoB;IAC3E,MAAM,CAAmB,IAAI,GAAW,2CAA2C,CAAC;IACnE,qDAAqD,CAAU;IACxE,MAAM,CAAU,qDAAqD,GAAG,sCAAsC,CAAC;IAEvH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,sDAAsD,CAAC,CAAC;QACzE,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,uDAAuD,EAAE;YACpF,KAAK,EAAE,yCAAyC,CAAC,qDAAqD;YACtG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,uDAAuD,EAAE,yCAAyC,CAAC,qDAAqD,CAAC,CAAC,CAAC;IAChM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,yCAA0C,SAAQ,oBAAoB;IAC3E,MAAM,CAAmB,IAAI,GAAW,2CAA2C,CAAC;IACnE,qDAAqD,CAAU;IACxE,MAAM,CAAU,qDAAqD,GAAG,sCAAsC,CAAC;IAEvH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,+BAA+B,CAAC,CAAC;QAClD,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,uDAAuD,EAAE;YACpF,KAAK,EAAE,yCAAyC,CAAC,qDAAqD;YACtG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,uDAAuD,EAAE,yCAAyC,CAAC,qDAAqD,CAAC,CAAC,CAAC;IAChM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,qCAAsC,SAAQ,oBAAoB;IACvE,MAAM,CAAmB,IAAI,GAAW,uCAAuC,CAAC;IAC/D,iDAAiD,CAAU;IACpE,MAAM,CAAU,iDAAiD,GAAG,sCAAsC,CAAC;IAEnH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,8DAA8D,CAAC,CAAC;QACjF,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,mDAAmD,EAAE;YAChF,KAAK,EAAE,qCAAqC,CAAC,iDAAiD;YAC9F,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,mDAAmD,EAAE,qCAAqC,CAAC,iDAAiD,CAAC,CAAC,CAAC;IACpL,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,sCAAuC,SAAQ,oBAAoB;IACxE,MAAM,CAAmB,IAAI,GAAW,wCAAwC,CAAC;IAChE,kDAAkD,CAAU;IACrE,MAAM,CAAU,kDAAkD,GAAG,sCAAsC,CAAC;IAEpH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,iEAAiE,CAAC,CAAC;QACpF,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,oDAAoD,EAAE;YACjF,KAAK,EAAE,sCAAsC,CAAC,kDAAkD;YAChG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,oDAAoD,EAAE,sCAAsC,CAAC,kDAAkD,CAAC,CAAC,CAAC;IACvL,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,4CAA6C,SAAQ,oBAAoB;IAC9E,MAAM,CAAmB,IAAI,GAAW,8CAA8C,CAAC;IACtE,wDAAwD,CAAU;IAC3E,MAAM,CAAU,wDAAwD,GAAG,sCAAsC,CAAC;IAE1H,YAAY,SAAkB;QAC7B,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,qCAAqC,SAAS,aAAa,CAAC,CAAC,CAAC,yBAAyB,CAAC,CAAC;QAC3G,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,0DAA0D,EAAE;YACvF,KAAK,EAAE,4CAA4C,CAAC,wDAAwD;YAC5G,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,0DAA0D,EAAE,4CAA4C,CAAC,wDAAwD,CAAC,CAAC,CAAC;IACzM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,4CAA6C,SAAQ,oBAAoB;IAC9E,MAAM,CAAmB,IAAI,GAAW,8CAA8C,CAAC;IACtE,wDAAwD,CAAU;IAC3E,MAAM,CAAU,wDAAwD,GAAG,sCAAsC,CAAC;IAE1H,YAAY,MAAe;QAC1B,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,sCAAsC,MAAM,EAAE,CAAC,CAAC,CAAC,mCAAmC,CAAC,CAAC;QACrG,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,0DAA0D,EAAE;YACvF,KAAK,EAAE,4CAA4C,CAAC,wDAAwD;YAC5G,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,0DAA0D,EAAE,4CAA4C,CAAC,wDAAwD,CAAC,CAAC,CAAC;IACzM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,sCAAuC,SAAQ,oBAAoB;IACxE,MAAM,CAAmB,IAAI,GAAW,wCAAwC,CAAC;IAChE,kDAAkD,CAAU;IACrE,MAAM,CAAU,kDAAkD,GAAG,sCAAsC,CAAC;IAEpH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,0CAA0C,OAAO,EAAE,CAAC,CAAC,CAAC,uCAAuC,CAAC,CAAC;QAC/G,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,oDAAoD,EAAE;YACjF,KAAK,EAAE,sCAAsC,CAAC,kDAAkD;YAChG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,oDAAoD,EAAE,sCAAsC,CAAC,kDAAkD,CAAC,CAAC,CAAC;IACvL,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,2CAA4C,SAAQ,oBAAoB;IAC7E,MAAM,CAAmB,IAAI,GAAW,6CAA6C,CAAC;IACrE,uDAAuD,CAAU;IAC1E,MAAM,CAAU,uDAAuD,GAAG,sCAAsC,CAAC;IAEzH,YAAY,SAAkB;QAC7B,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,sCAAsC,SAAS,EAAE,CAAC,CAAC,CAAC,mCAAmC,CAAC,CAAC;QAC3G,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,yDAAyD,EAAE;YACtF,KAAK,EAAE,2CAA2C,CAAC,uDAAuD;YAC1G,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,yDAAyD,EAAE,2CAA2C,CAAC,uDAAuD,CAAC,CAAC,CAAC;IACtM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,yCAA0C,SAAQ,oBAAoB;IAC3E,MAAM,CAAmB,IAAI,GAAW,2CAA2C,CAAC;IACnE,qDAAqD,CAAU;IACxE,MAAM,CAAU,qDAAqD,GAAG,sCAAsC,CAAC;IAEvH,YAAY,OAAgB;QAC3B,KAAK,CAAC,OAAO,IAAI,8BAA8B,CAAC,CAAC;QACjD,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QAEtB,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,uDAAuD,EAAE;YACpF,KAAK,EAAE,yCAAyC,CAAC,qDAAqD;YACtG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,UAAU,CAAC,KAAc;QAC/B,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,uDAAuD,EAAE,yCAAyC,CAAC,qDAAqD,CAAC,CAAC,CAAC;IAChM,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAc;QACnC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,iCAAkC,SAAQ,8BAA8B;IAC7E,MAAM,CAAmB,IAAI,GAAW,mCAAmC,CAAC;IAC3D,6CAA6C,CAAU;IAChE,MAAM,CAAU,6CAA6C,GAAG,sCAAsC,CAAC;IAE/G,YAAY,OAAgB;QAC3B,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,IAAI,aAAa,EAAE,CAAC,EAAE,EAAE,OAAO,IAAI,aAAa,CAAC,CAAC;QAEnG,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,+CAA+C,EAAE;YAC5E,KAAK,EAAE,iCAAiC,CAAC,6CAA6C;YACtF,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAU,UAAU,CAAC,KAAc;QACxC,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,+CAA+C,EAAE,iCAAiC,CAAC,6CAA6C,CAAC,CAAC,CAAC;IACxK,CAAC;IAED,MAAM,CAAU,KAAK,CAAC,QAAQ,CAAC,KAAc;QAC5C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,sCAAuC,SAAQ,8BAA8B;IAClF,MAAM,CAAmB,IAAI,GAAW,wCAAwC,CAAC;IAChE,kDAAkD,CAAU;IACrE,MAAM,CAAU,kDAAkD,GAAG,sCAAsC,CAAC;IAEpH,YAAY,MAAe;QAC1B,MAAM,OAAO,GAAG,MAAM,CAAC,CAAC,CAAC,qBAAqB,MAAM,EAAE,CAAC,CAAC,CAAC,kBAAkB,CAAC;QAC5E,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,UAAU,EAAE,OAAO,EAAE,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QAE5D,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,oDAAoD,EAAE;YACjF,KAAK,EAAE,sCAAsC,CAAC,kDAAkD;YAChG,UAAU,EAAE,KAAK;SACjB,CAAC,CAAC;IACJ,CAAC;IAED,MAAM,CAAU,UAAU,CAAC,KAAc;QACxC,OAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,oDAAoD,EAAE,sCAAsC,CAAC,kDAAkD,CAAC,CAAC,CAAC;IACvL,CAAC;IAED,MAAM,CAAU,KAAK,CAAC,QAAQ,CAAC,KAAc;QAC5C,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAM,CAAC,KAAK,CAAC,CAAC;IACf,CAAC;;AAGF,MAAM,CAAC,MAAM,MAAM,GAqBf;IACH;;OAEG;IACH,gBAAgB,EAAE,uCAAuC;IAEzD;;OAEG;IACH,YAAY,EAAE,mCAAmC;IAEjD;;OAEG;IACH,WAAW,EAAE,kCAAkC;IAE/C;;OAEG;IACH,aAAa,EAAE,oCAAoC;IAEnD;;OAEG;IACH,uBAAuB,EAAE,wCAAwC;IAEjE;;OAEG;IACH,gBAAgB,EAAE,uCAAuC;IAEzD;;OAEG;IACH,gBAAgB,EAAE,uCAAuC;IAEzD;;OAEG;IACH,gBAAgB,EAAE,uCAAuC;IAEzD;;OAEG;IACH,kBAAkB,EAAE,yCAAyC;IAE7D;;OAEG;IACH,kBAAkB,EAAE,yCAAyC;IAE7D;;OAEG;IACH,cAAc,EAAE,qCAAqC;IAErD;;OAEG;IACH,eAAe,EAAE,sCAAsC;IAEvD;;OAEG;IACH,qBAAqB,EAAE,4CAA4C;IAEnE;;OAEG;IACH,qBAAqB,EAAE,4CAA4C;IAEnE;;OAEG;IACH,eAAe,EAAE,sCAAsC;IAEvD;;OAEG;IACH,oBAAoB,EAAE,2CAA2C;IAEjE;;OAEG;IACH,kBAAkB,EAAE,yCAAyC;IAE7D;;OAEG;IACH,UAAU,EAAE,iCAAiC;IAE7C;;OAEG;IACH,eAAe,EAAE,sCAAsC;IAEvD;;;OAGG;IACH,mBAAmB,EAAE,mCAAmC;CACxD,CAAC;AA0QF,aAAa;AAEb,sCAAsC;AAEtC;;;;;;;;GAQG;AACH,MAAM,UAAU,qBAAqB,CAAC,SAAsB;IAC3D,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IAC5D,IAAI,CAAC;QACJ,MAAM,OAAO,GAAY,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QAChD,IAAI,QAAQ,GAAG,yBAAyB,CAAC;QACzC,IAAI,OAAe,CAAC;QACpB,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,OAAO,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YAChF,MAAM,WAAW,GAAG,UAAU,IAAI,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YACzE,MAAM,WAAW,GAAG,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACjE,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE,CAAC;gBACrC,QAAQ,GAAG,WAAW,CAAC;YACxB,CAAC;YACD,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE,CAAC;gBACrC,OAAO,GAAG,uBAAuB,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC,CAAC;YACvE,CAAC;iBAAM,CAAC;gBACP,OAAO,GAAG,uBAAuB,CAAC,SAAS,CAAC,CAAC;YAC9C,CAAC;QACF,CAAC;aAAM,CAAC;YACP,OAAO,GAAG,uBAAuB,CAAC,SAAS,CAAC,CAAC;QAC9C,CAAC;QACD,OAAM,CAAC,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACR,OAAM,CAAC;YACN,QAAQ,EAAE,yBAAyB;YACnC,OAAO,EAAE,uBAAuB,CAAC,SAAS,CAAC;SAC3C,CAAC,CAAC;IACJ,CAAC;AACF,CAAC","sourcesContent":["import type { lib as KeetaNetLib } from '@keetanetwork/keetanet-client';\nimport type { HTTPSignedField } from '../../lib/http-server/common.js';\nimport type { Signable } from '../../lib/utils/signing.js';\nimport type { EncryptedContainer } from '../../lib/encrypted-container.js';\nimport { KeetaAnchorUserError, KeetaAnchorUserValidationError, KeetaAnchorCertificateRequiredError } from '../../lib/error.js';\nimport { Buffer, arrayBufferLikeToBuffer } from '../../lib/utils/buffer.js';\n\n/**\n * Type alias for a KeetaNet Account instance.\n * Used throughout the storage service for account authentication and signing.\n */\nexport type KeetaNetAccount = InstanceType<typeof KeetaNetLib.Account>;\n\n// #region Shared Constants\n\n/** Content type for JSON payloads */\nexport const CONTENT_TYPE_JSON = 'application/json';\n\n/** Content type for binary/octet-stream payloads */\nexport const CONTENT_TYPE_OCTET_STREAM = 'application/octet-stream';\n\n/** Default TTL for signed URLs in seconds (1 hour) */\nexport const DEFAULT_SIGNED_URL_TTL_SECONDS = 3600;\n\n// #endregion\n\n// #region Common Types\n\n/**\n * Visibility of a storage object\n */\nexport type StorageObjectVisibility = 'public' | 'private';\n\n// #endregion\n\n// #region Object Metadata\n\n/**\n * Metadata for a stored object\n */\nexport type StorageObjectMetadata = {\n\t/**\n\t * Full path (the unique ID)\n\t */\n\tpath: string;\n\n\t/**\n\t * Owner's identifier\n\t */\n\towner: string;\n\n\t/**\n\t * Plaintext tags (searchable)\n\t */\n\ttags: string[];\n\n\t/**\n\t * Visibility setting\n\t */\n\tvisibility: StorageObjectVisibility;\n\n\t/**\n\t * Size in bytes\n\t */\n\tsize: number;\n\n\t/**\n\t * ISO timestamp of creation\n\t */\n\tcreatedAt: string;\n\n\t/**\n\t * ISO timestamp of last update\n\t */\n\tupdatedAt?: string;\n};\n\n// #endregion\n\n// #region Search\n\n/**\n * Criteria for searching storage objects.\n * Note: Content/keyword search is not supported (content is encrypted).\n */\nexport type SearchCriteria = {\n\t/**\n\t * Match objects with paths starting with this prefix\n\t * e.g., \"/user/keeta1abc.../contacts/\"\n\t */\n\tpathPrefix?: string;\n\n\t/**\n\t * Match objects that have ANY of these tags\n\t */\n\ttags?: string[];\n\n\t/**\n\t * Match path segment (filename portion)\n\t */\n\tname?: string;\n\n\t/**\n\t * Filter by owner's identifier\n\t */\n\towner?: string;\n\n\t/**\n\t * Include objects in nested paths (default: false)\n\t */\n\trecursive?: boolean;\n\n\t/**\n\t * Filter by visibility.\n\t * When 'public', allows searching public objects outside caller's namespace.\n\t */\n\tvisibility?: StorageObjectVisibility;\n};\n\n/**\n * Pagination options for search\n */\nexport type SearchPagination = {\n\t/**\n\t * Cursor for pagination (from previous response)\n\t */\n\tcursor?: string;\n\n\t/**\n\t * Maximum number of results to return\n\t */\n\tlimit?: number;\n};\n\n/**\n * Search results with pagination\n */\nexport type SearchResults = {\n\t/**\n\t * Matching objects\n\t */\n\tresults: StorageObjectMetadata[];\n\n\t/**\n\t * Cursor for next page (undefined if no more results)\n\t */\n\tnextCursor?: string;\n};\n\n// #endregion\n\n// #region Quota\n\n/**\n * Quota configuration for the storage service\n */\nexport type QuotaConfig = {\n\t/**\n\t * Maximum size in bytes per object\n\t */\n\tmaxObjectSize: number;\n\n\t/**\n\t * Maximum number of objects per user\n\t */\n\tmaxObjectsPerUser: number;\n\n\t/**\n\t * Maximum total storage in bytes per user\n\t */\n\tmaxStoragePerUser: number;\n\n\t/**\n\t * Maximum number of results per search request\n\t */\n\tmaxSearchLimit: number;\n\n\t/**\n\t * Maximum TTL in seconds for signed URLs\n\t */\n\tmaxSignedUrlTTL: number;\n};\n\n/**\n * Per-user quota limits.\n * Subset of QuotaConfig that can be overridden on a per-user basis.\n */\nexport type QuotaLimits = Pick<QuotaConfig, 'maxObjectsPerUser' | 'maxStoragePerUser' | 'maxObjectSize'>;\n\n/**\n * Current quota status for a user.\n * Backends must provide objectCount and totalSize.\n */\nexport type QuotaStatus = {\n\t/**\n\t * Current number of objects\n\t */\n\tobjectCount: number;\n\n\t/**\n\t * Current total size in bytes\n\t */\n\ttotalSize: number;\n\n\t/**\n\t * Remaining objects allowed (optional, server computes if absent)\n\t */\n\tremainingObjects?: number;\n\n\t/**\n\t * Remaining storage in bytes (optional, server computes if absent)\n\t */\n\tremainingSize?: number;\n};\n\n// #endregion\n\n// #region Request Type Helpers\n\n// #endregion\n\n// #region PUT Object\n\n/**\n * Client-side request to put (create/update) an object\n */\nexport type KeetaStorageAnchorPutClientRequest = {\n\taccount?: KeetaNetAccount;\n\tpath: string;\n\tdata: string; // Base64-encoded EncryptedContainer\n\ttags?: string[];\n\tvisibility?: StorageObjectVisibility;\n};\n\n/**\n * Server-side request to put an object\n */\nexport type KeetaStorageAnchorPutRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\tpath: string;\n\tdata: string;\n\ttags?: string[];\n\tvisibility?: StorageObjectVisibility;\n};\n\n/**\n * Configuration for a contacts client.\n * Contacts are stored in a subdirectory of the account's working directory.\n */\nexport type ContactsClientConfig = {\n\t/**\n\t * The account to use for the contacts client.\n\t */\n\taccount: KeetaNetAccount;\n\t/**\n\t * The base path for the contacts client.\n\t */\n\tbasePath: string;\n};\n\n/**\n * Configuration for an icons client.\n * The icon is stored as a single file under the base path.\n */\nexport type IconsClientConfig = {\n\t/**\n\t * The account to use for the icons client.\n\t */\n\taccount: KeetaNetAccount;\n\t/**\n\t * The base path for the icons client (e.g., `/user/<pubkey>/`).\n\t */\n\tbasePath: string;\n};\n\n/**\n * Generic response type for storage operations.\n */\nexport type StorageResponse<T> = ({ ok: true } & T) | { ok: false; error: string };\n\nexport type KeetaStorageAnchorPutResponse = StorageResponse<{ object: StorageObjectMetadata }>;\n\nexport function getKeetaStorageAnchorPutRequestSigningData(\n\tinput: { path: string; visibility?: StorageObjectVisibility; tags?: string[] }\n): Signable {\n\tconst visibility = input.visibility ?? 'private';\n\tconst tags: string[] = input.tags ?? [];\n\tconst sortedTags = [...tags].sort();\n\treturn(['put', input.path, visibility, ...sortedTags]);\n}\n\n// #endregion\n\n// #region Update Metadata\n\n/**\n * Server-side request to update object metadata.\n * Path is derived from the URL, not the body.\n */\nexport type KeetaStorageAnchorUpdateMetadataRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\ttags: string[];\n\tvisibility: StorageObjectVisibility;\n};\n\n/**\n * Build signing data for an update-metadata request.\n * Tags are sorted with localeCompare for deterministic signatures.\n */\nexport function getKeetaStorageAnchorUpdateMetadataRequestSigningData(\n\tinput: { path: string; visibility: StorageObjectVisibility; tags: string[] }\n): Signable {\n\tconst sortedTags = [...input.tags].sort(function(a, b) { return(a.localeCompare(b)); });\n\treturn(['updateMetadata', input.path, input.visibility, ...sortedTags]);\n}\n\n// #endregion\n\n// #region GET Object\n\n/**\n * Client-side request to get an object\n */\nexport type KeetaStorageAnchorGetClientRequest = {\n\taccount?: KeetaNetAccount;\n\tpath: string;\n};\n\n/**\n * Server-side request to get an object\n */\nexport type KeetaStorageAnchorGetRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\tpath: string;\n};\n\nexport type KeetaStorageAnchorGetResponse = StorageResponse<{\n\tdata: string; // Base64-encoded EncryptedContainer\n\tobject: StorageObjectMetadata;\n}>;\n\nexport function getKeetaStorageAnchorGetRequestSigningData(\n\tinput: KeetaStorageAnchorGetRequest\n): Signable {\n\treturn(['get', input.path]);\n}\n\n// #endregion\n\n// #region DELETE Object\n\n/**\n * Client-side request to delete an object\n */\nexport type KeetaStorageAnchorDeleteClientRequest = {\n\taccount?: KeetaNetAccount;\n\t/**\n\t * Path to the object\n\t */\n\tpath: string;\n};\n\n/**\n * Server-side request to delete an object\n */\nexport type KeetaStorageAnchorDeleteRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\t/**\n\t * Path to the object\n\t */\n\tpath: string;\n};\n\nexport type KeetaStorageAnchorDeleteResponse = StorageResponse<{ deleted: boolean }>;\n\nexport function getKeetaStorageAnchorDeleteRequestSigningData(\n\tinput: KeetaStorageAnchorDeleteRequest\n): Signable {\n\treturn(['delete', input.path]);\n}\n\n// #endregion\n\n// #region SEARCH\n\n/**\n * Client-side request to search objects\n */\nexport type KeetaStorageAnchorSearchClientRequest = {\n\taccount?: KeetaNetAccount;\n\tcriteria: SearchCriteria;\n\tpagination?: SearchPagination;\n};\n\n/**\n * Server-side request to search objects\n */\nexport type KeetaStorageAnchorSearchRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n\tcriteria: SearchCriteria;\n\tpagination?: SearchPagination;\n};\n\nexport type KeetaStorageAnchorSearchResponse = StorageResponse<{\n\tresults: StorageObjectMetadata[];\n\tnextCursor?: string;\n}>;\n\nexport function getKeetaStorageAnchorSearchRequestSigningData(\n\tinput: KeetaStorageAnchorSearchRequest\n): Signable {\n\tconst limit = input.pagination?.limit ?? 0;\n\tconst cursor = input.pagination?.cursor ?? '';\n\treturn(['search', JSON.stringify(input.criteria), limit, cursor]);\n}\n\n// #endregion\n\n// #region Quota\n\n/**\n * Client-side request to get quota status\n */\nexport type KeetaStorageAnchorQuotaClientRequest = {\n\taccount?: KeetaNetAccount;\n};\n\n/**\n * Server-side request to get quota status\n */\nexport type KeetaStorageAnchorQuotaRequest = {\n\taccount?: string;\n\tsigned?: HTTPSignedField;\n};\n\nexport type KeetaStorageAnchorQuotaResponse = StorageResponse<{ quota: QuotaStatus }>;\n\n/**\n * Get signing data for quota requests.\n * The input is unused because quota requests don't need request-specific signing -\n * authentication alone is sufficient.\n *\n * The parameter was kept for API consistency with other signing functions.\n */\nexport function getKeetaStorageAnchorQuotaRequestSigningData(\n\t_ignoreInput: KeetaStorageAnchorQuotaRequest\n): Signable {\n\treturn(['quota']);\n}\n\n// #endregion\n\n// #region Error Classes\n\nclass KeetaStorageAnchorDocumentNotFoundError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorDocumentNotFoundError';\n\tprivate readonly KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID = 'ac137e18-2827-4542-a852-c650610899b5';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Document not found');\n\t\tthis.statusCode = 404;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorDocumentNotFoundError.KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorDocumentNotFoundError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID', KeetaStorageAnchorDocumentNotFoundError.KeetaStorageAnchorDocumentNotFoundErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorDocumentNotFoundError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorAccessDeniedError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorAccessDeniedError';\n\tprivate readonly KeetaStorageAnchorAccessDeniedErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorAccessDeniedErrorObjectTypeID = 'fb75fa8c-6ef0-47cb-b767-3c2cfbb73617';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Access denied');\n\t\tthis.statusCode = 403;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorAccessDeniedErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorAccessDeniedError.KeetaStorageAnchorAccessDeniedErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorAccessDeniedError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorAccessDeniedErrorObjectTypeID', KeetaStorageAnchorAccessDeniedError.KeetaStorageAnchorAccessDeniedErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorAccessDeniedError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidPathError extends KeetaAnchorUserValidationError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidPathError';\n\tprivate readonly KeetaStorageAnchorInvalidPathErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidPathErrorObjectTypeID = 'eb0e1c0d-2281-4b93-9f78-87bf166a4829';\n\n\tconstructor(message?: string) {\n\t\tsuper({ fields: [{ path: 'path', message: message ?? 'Invalid path format' }] }, message ?? 'Invalid path format');\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidPathErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidPathError.KeetaStorageAnchorInvalidPathErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic override isInstance(input: unknown): input is KeetaStorageAnchorInvalidPathError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidPathErrorObjectTypeID', KeetaStorageAnchorInvalidPathError.KeetaStorageAnchorInvalidPathErrorObjectTypeID));\n\t}\n\n\tstatic override async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidPathError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\ntype QuotaExceededType = 'maxObjectSize' | 'maxObjectsPerUser' | 'maxStoragePerUser';\n\nclass KeetaStorageAnchorQuotaExceededError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorQuotaExceededError';\n\tprivate readonly KeetaStorageAnchorQuotaExceededErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorQuotaExceededErrorObjectTypeID = 'c0b75028-644a-472b-8df4-b0a856814f99';\n\n\t/** Which quota limit was exceeded */\n\treadonly quotaType: QuotaExceededType;\n\n\t/** The configured maximum for the exceeded quota */\n\treadonly limit: number;\n\n\t/** The current or attempted value that exceeded the limit */\n\treadonly current: number;\n\n\tconstructor(options: { quotaType: QuotaExceededType; limit: number; current: number; message?: string }) {\n\t\tsuper(options.message ?? `Quota exceeded: ${options.quotaType} (${options.current} exceeds limit of ${options.limit})`);\n\t\tthis.statusCode = 413;\n\t\tthis.quotaType = options.quotaType;\n\t\tthis.limit = options.limit;\n\t\tthis.current = options.current;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorQuotaExceededErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorQuotaExceededError.KeetaStorageAnchorQuotaExceededErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorQuotaExceededError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorQuotaExceededErrorObjectTypeID', KeetaStorageAnchorQuotaExceededError.KeetaStorageAnchorQuotaExceededErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorQuotaExceededError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this({ quotaType: 'maxObjectSize', limit: 0, current: 0, message });\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorPrincipalRequiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorPrincipalRequiredError';\n\tprivate readonly KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID = '12e42092-d4db-435e-8a01-798e26f653b4';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Validated path requires anchor as principal');\n\t\tthis.statusCode = 400;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorPrincipalRequiredError.KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorPrincipalRequiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID', KeetaStorageAnchorPrincipalRequiredError.KeetaStorageAnchorPrincipalRequiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorPrincipalRequiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorValidationFailedError extends KeetaAnchorUserValidationError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorValidationFailedError';\n\tprivate readonly KeetaStorageAnchorValidationFailedErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorValidationFailedErrorObjectTypeID = '73cadd95-cf39-466b-b9b6-484e1ae1ca9c';\n\n\tconstructor(message?: string) {\n\t\tconst msg = message ?? 'Content validation failed';\n\t\tsuper({ fields: [{ path: 'content', message: msg }] }, msg);\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorValidationFailedErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorValidationFailedError.KeetaStorageAnchorValidationFailedErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\toverride get statusCode() {\n\t\treturn(422);\n\t}\n\n\tstatic override isInstance(input: unknown): input is KeetaStorageAnchorValidationFailedError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorValidationFailedErrorObjectTypeID', KeetaStorageAnchorValidationFailedError.KeetaStorageAnchorValidationFailedErrorObjectTypeID));\n\t}\n\n\tstatic override async fromJSON(input: unknown): Promise<KeetaStorageAnchorValidationFailedError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorSignatureExpiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorSignatureExpiredError';\n\tprivate readonly KeetaStorageAnchorSignatureExpiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorSignatureExpiredErrorObjectTypeID = '3a676e44-882b-4925-bf5f-bc5123cc0b20';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Pre-signed URL has expired');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorSignatureExpiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorSignatureExpiredError.KeetaStorageAnchorSignatureExpiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorSignatureExpiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorSignatureExpiredErrorObjectTypeID', KeetaStorageAnchorSignatureExpiredError.KeetaStorageAnchorSignatureExpiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorSignatureExpiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorSignatureInvalidError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorSignatureInvalidError';\n\tprivate readonly KeetaStorageAnchorSignatureInvalidErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorSignatureInvalidErrorObjectTypeID = '91831c73-31e2-4f27-a9d1-4ab9a5ed5663';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Pre-signed URL signature verification failed');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorSignatureInvalidErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorSignatureInvalidError.KeetaStorageAnchorSignatureInvalidErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorSignatureInvalidError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorSignatureInvalidErrorObjectTypeID', KeetaStorageAnchorSignatureInvalidError.KeetaStorageAnchorSignatureInvalidErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorSignatureInvalidError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorPrivateKeyRequiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorPrivateKeyRequiredError';\n\tprivate readonly KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID = '36eaae98-1b1e-412b-ba5b-b9293cc37156';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Account with private key required for this operation');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorPrivateKeyRequiredError.KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorPrivateKeyRequiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID', KeetaStorageAnchorPrivateKeyRequiredError.KeetaStorageAnchorPrivateKeyRequiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorPrivateKeyRequiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorServiceUnavailableError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorServiceUnavailableError';\n\tprivate readonly KeetaStorageAnchorServiceUnavailableErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorServiceUnavailableErrorObjectTypeID = 'b2671cd1-6abb-4bd4-9be2-d8d111c17bcf';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Storage service not available');\n\t\tthis.statusCode = 503;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorServiceUnavailableErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorServiceUnavailableError.KeetaStorageAnchorServiceUnavailableErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorServiceUnavailableError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorServiceUnavailableErrorObjectTypeID', KeetaStorageAnchorServiceUnavailableError.KeetaStorageAnchorServiceUnavailableErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorServiceUnavailableError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorSignerRequiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorSignerRequiredError';\n\tprivate readonly KeetaStorageAnchorSignerRequiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorSignerRequiredErrorObjectTypeID = 'ce4a5581-1869-4656-88c6-63f0a29b46ca';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'A Signer or UserClient with an associated Signer is required');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorSignerRequiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorSignerRequiredError.KeetaStorageAnchorSignerRequiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorSignerRequiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorSignerRequiredErrorObjectTypeID', KeetaStorageAnchorSignerRequiredError.KeetaStorageAnchorSignerRequiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorSignerRequiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorAccountRequiredError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorAccountRequiredError';\n\tprivate readonly KeetaStorageAnchorAccountRequiredErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorAccountRequiredErrorObjectTypeID = '496e5dbe-535f-4f24-acf4-a44d9d93fb75';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'An Account or UserClient with an associated Account is required');\n\t\tthis.statusCode = 401;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorAccountRequiredErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorAccountRequiredError.KeetaStorageAnchorAccountRequiredErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorAccountRequiredError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorAccountRequiredErrorObjectTypeID', KeetaStorageAnchorAccountRequiredError.KeetaStorageAnchorAccountRequiredErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorAccountRequiredError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorOperationNotSupportedError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorOperationNotSupportedError';\n\tprivate readonly KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID = 'ac491ea6-f656-4eab-a430-051a0f201fff';\n\n\tconstructor(operation?: string) {\n\t\tsuper(operation ? `Storage service does not support '${operation}' operation` : 'Operation not supported');\n\t\tthis.statusCode = 501;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorOperationNotSupportedError.KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorOperationNotSupportedError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID', KeetaStorageAnchorOperationNotSupportedError.KeetaStorageAnchorOperationNotSupportedErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorOperationNotSupportedError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorUnsupportedAuthMethodError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorUnsupportedAuthMethodError';\n\tprivate readonly KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID = '46cfbab9-934f-44b0-9216-03d397fdd6b6';\n\n\tconstructor(method?: string) {\n\t\tsuper(method ? `Unsupported authentication method: ${method}` : 'Unsupported authentication method');\n\t\tthis.statusCode = 501;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorUnsupportedAuthMethodError.KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorUnsupportedAuthMethodError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID', KeetaStorageAnchorUnsupportedAuthMethodError.KeetaStorageAnchorUnsupportedAuthMethodErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorUnsupportedAuthMethodError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidResponseError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidResponseError';\n\tprivate readonly KeetaStorageAnchorInvalidResponseErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidResponseErrorObjectTypeID = '02480186-7bc3-4a80-b6a9-23c3a9f606c9';\n\n\tconstructor(details?: string) {\n\t\tsuper(details ? `Invalid response from storage service: ${details}` : 'Invalid response from storage service');\n\t\tthis.statusCode = 502;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidResponseErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidResponseError.KeetaStorageAnchorInvalidResponseErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorInvalidResponseError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidResponseErrorObjectTypeID', KeetaStorageAnchorInvalidResponseError.KeetaStorageAnchorInvalidResponseErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidResponseError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidAnchorAccountError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidAnchorAccountError';\n\tprivate readonly KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID = '82bb0a94-0a5e-4e0a-b5c1-7532bbe09cd6';\n\n\tconstructor(publicKey?: string) {\n\t\tsuper(publicKey ? `Invalid anchor account public key: ${publicKey}` : 'Invalid anchor account public key');\n\t\tthis.statusCode = 502;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidAnchorAccountError.KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorInvalidAnchorAccountError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID', KeetaStorageAnchorInvalidAnchorAccountError.KeetaStorageAnchorInvalidAnchorAccountErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidAnchorAccountError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvariantViolationError extends KeetaAnchorUserError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvariantViolationError';\n\tprivate readonly KeetaStorageAnchorInvariantViolationErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvariantViolationErrorObjectTypeID = 'a7c5d3e1-8b9f-4c2a-b3d4-e5f6a7b8c9d0';\n\n\tconstructor(message?: string) {\n\t\tsuper(message ?? 'Internal invariant violation');\n\t\tthis.statusCode = 500;\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvariantViolationErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvariantViolationError.KeetaStorageAnchorInvariantViolationErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic isInstance(input: unknown): input is KeetaStorageAnchorInvariantViolationError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvariantViolationErrorObjectTypeID', KeetaStorageAnchorInvariantViolationError.KeetaStorageAnchorInvariantViolationErrorObjectTypeID));\n\t}\n\n\tstatic async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvariantViolationError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidTagError extends KeetaAnchorUserValidationError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidTagError';\n\tprivate readonly KeetaStorageAnchorInvalidTagErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidTagErrorObjectTypeID = 'b8d6e4f2-9c0a-5d3b-c4e5-f6a7b8c9d0e1';\n\n\tconstructor(message?: string) {\n\t\tsuper({ fields: [{ path: 'tags', message: message ?? 'Invalid tag' }] }, message ?? 'Invalid tag');\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidTagErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidTagError.KeetaStorageAnchorInvalidTagErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic override isInstance(input: unknown): input is KeetaStorageAnchorInvalidTagError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidTagErrorObjectTypeID', KeetaStorageAnchorInvalidTagError.KeetaStorageAnchorInvalidTagErrorObjectTypeID));\n\t}\n\n\tstatic override async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidTagError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nclass KeetaStorageAnchorInvalidMetadataError extends KeetaAnchorUserValidationError {\n\tstatic override readonly name: string = 'KeetaStorageAnchorInvalidMetadataError';\n\tprivate readonly KeetaStorageAnchorInvalidMetadataErrorObjectTypeID!: string;\n\tprivate static readonly KeetaStorageAnchorInvalidMetadataErrorObjectTypeID = 'c9e7f5a3-0d1b-6e4c-d5f6-a7b8c9d0e1f2';\n\n\tconstructor(reason?: string) {\n\t\tconst message = reason ? `Invalid metadata: ${reason}` : 'Invalid metadata';\n\t\tsuper({ fields: [{ path: 'metadata', message }] }, message);\n\n\t\tObject.defineProperty(this, 'KeetaStorageAnchorInvalidMetadataErrorObjectTypeID', {\n\t\t\tvalue: KeetaStorageAnchorInvalidMetadataError.KeetaStorageAnchorInvalidMetadataErrorObjectTypeID,\n\t\t\tenumerable: false\n\t\t});\n\t}\n\n\tstatic override isInstance(input: unknown): input is KeetaStorageAnchorInvalidMetadataError {\n\t\treturn(this.hasPropWithValue(input, 'KeetaStorageAnchorInvalidMetadataErrorObjectTypeID', KeetaStorageAnchorInvalidMetadataError.KeetaStorageAnchorInvalidMetadataErrorObjectTypeID));\n\t}\n\n\tstatic override async fromJSON(input: unknown): Promise<KeetaStorageAnchorInvalidMetadataError> {\n\t\tconst { message, other } = this.extractErrorProperties(input, this);\n\t\tconst error = new this(message);\n\t\terror.restoreFromJSON(other);\n\t\treturn(error);\n\t}\n}\n\nexport const Errors: {\n\tDocumentNotFound: typeof KeetaStorageAnchorDocumentNotFoundError;\n\tAccessDenied: typeof KeetaStorageAnchorAccessDeniedError;\n\tInvalidPath: typeof KeetaStorageAnchorInvalidPathError;\n\tQuotaExceeded: typeof KeetaStorageAnchorQuotaExceededError;\n\tAnchorPrincipalRequired: typeof KeetaStorageAnchorPrincipalRequiredError;\n\tValidationFailed: typeof KeetaStorageAnchorValidationFailedError;\n\tSignatureExpired: typeof KeetaStorageAnchorSignatureExpiredError;\n\tSignatureInvalid: typeof KeetaStorageAnchorSignatureInvalidError;\n\tPrivateKeyRequired: typeof KeetaStorageAnchorPrivateKeyRequiredError;\n\tServiceUnavailable: typeof KeetaStorageAnchorServiceUnavailableError;\n\tSignerRequired: typeof KeetaStorageAnchorSignerRequiredError;\n\tAccountRequired: typeof KeetaStorageAnchorAccountRequiredError;\n\tOperationNotSupported: typeof KeetaStorageAnchorOperationNotSupportedError;\n\tUnsupportedAuthMethod: typeof KeetaStorageAnchorUnsupportedAuthMethodError;\n\tInvalidResponse: typeof KeetaStorageAnchorInvalidResponseError;\n\tInvalidAnchorAccount: typeof KeetaStorageAnchorInvalidAnchorAccountError;\n\tInvariantViolation: typeof KeetaStorageAnchorInvariantViolationError;\n\tInvalidTag: typeof KeetaStorageAnchorInvalidTagError;\n\tInvalidMetadata: typeof KeetaStorageAnchorInvalidMetadataError;\n\tCertificateRequired: typeof KeetaAnchorCertificateRequiredError;\n} = {\n\t/**\n\t * The requested document/object was not found\n\t */\n\tDocumentNotFound: KeetaStorageAnchorDocumentNotFoundError,\n\n\t/**\n\t * Access to the document/object was denied\n\t */\n\tAccessDenied: KeetaStorageAnchorAccessDeniedError,\n\n\t/**\n\t * Path doesn't match /user/<pubkey>/... format\n\t */\n\tInvalidPath: KeetaStorageAnchorInvalidPathError,\n\n\t/**\n\t * Object size, count, or total storage limit exceeded\n\t */\n\tQuotaExceeded: KeetaStorageAnchorQuotaExceededError,\n\n\t/**\n\t * Validated path requires anchor as principal\n\t */\n\tAnchorPrincipalRequired: KeetaStorageAnchorPrincipalRequiredError,\n\n\t/**\n\t * Namespace validator rejected content\n\t */\n\tValidationFailed: KeetaStorageAnchorValidationFailedError,\n\n\t/**\n\t * Pre-signed URL has expired\n\t */\n\tSignatureExpired: KeetaStorageAnchorSignatureExpiredError,\n\n\t/**\n\t * Pre-signed URL signature verification failed\n\t */\n\tSignatureInvalid: KeetaStorageAnchorSignatureInvalidError,\n\n\t/**\n\t * Account with private key required for this operation\n\t */\n\tPrivateKeyRequired: KeetaStorageAnchorPrivateKeyRequiredError,\n\n\t/**\n\t * Storage service is not available\n\t */\n\tServiceUnavailable: KeetaStorageAnchorServiceUnavailableError,\n\n\t/**\n\t * A Signer or UserClient with an associated Signer is required\n\t */\n\tSignerRequired: KeetaStorageAnchorSignerRequiredError,\n\n\t/**\n\t * An Account or UserClient with an associated Account is required\n\t */\n\tAccountRequired: KeetaStorageAnchorAccountRequiredError,\n\n\t/**\n\t * The requested operation is not supported by this storage service\n\t */\n\tOperationNotSupported: KeetaStorageAnchorOperationNotSupportedError,\n\n\t/**\n\t * The authentication method is not supported\n\t */\n\tUnsupportedAuthMethod: KeetaStorageAnchorUnsupportedAuthMethodError,\n\n\t/**\n\t * Invalid response received from storage service\n\t */\n\tInvalidResponse: KeetaStorageAnchorInvalidResponseError,\n\n\t/**\n\t * Anchor account public key from service metadata is invalid\n\t */\n\tInvalidAnchorAccount: KeetaStorageAnchorInvalidAnchorAccountError,\n\n\t/**\n\t * Internal invariant violation - indicates a bug in the code\n\t */\n\tInvariantViolation: KeetaStorageAnchorInvariantViolationError,\n\n\t/**\n\t * Tag validation failed (invalid format, too long, or too many tags)\n\t */\n\tInvalidTag: KeetaStorageAnchorInvalidTagError,\n\n\t/**\n\t * Metadata validation failed against path policy constraints\n\t */\n\tInvalidMetadata: KeetaStorageAnchorInvalidMetadataError,\n\n\t/**\n\t * Caller account does not have a certificate chaining to a configured\n\t * trusted issuer.\n\t */\n\tCertificateRequired: KeetaAnchorCertificateRequiredError\n};\n\n// #endregion\n\n// #region Storage Backend Interface\n\n/**\n * Metadata input for put operations.\n * Provided by the client when storing an object.\n */\nexport type StoragePutMetadata = {\n\t/** Owner's identifier */\n\towner: string;\n\t/** Tags for categorization and search */\n\ttags: string[];\n\t/** Access visibility setting */\n\tvisibility: StorageObjectVisibility;\n};\n\n/**\n * Result of a get operation.\n * Contains both the raw encrypted data and the object metadata.\n */\nexport type StorageGetResult = {\n\t/** Raw encrypted data (EncryptedContainer) */\n\tdata: Buffer;\n\t/** Object metadata */\n\tmetadata: StorageObjectMetadata;\n};\n\n/**\n * Represents a pending upload quota reservation.\n * Used to reserve quota before an upload and track in-flight uploads.\n */\nexport interface UploadReservation {\n\t/** Unique identifier for this reservation */\n\tid: string;\n\t/** Owner's identifier */\n\towner: string;\n\t/** Target path for the upload */\n\tpath: string;\n\t/** Reserved size in bytes */\n\tsize: number;\n\t/** When the reservation was created */\n\tcreatedAt: string;\n\t/** When the reservation expires - hint for stale cleanup */\n\texpiresAt: string;\n}\n\n/**\n * Core CRUD operations for storage.\n * All backends must implement these operations.\n */\nexport interface StorageBackend {\n\t/**\n\t * Store/update an object at the given path\n\t */\n\tput(path: string, data: Buffer, metadata: StoragePutMetadata): Promise<StorageObjectMetadata>;\n\n\t/**\n\t * Retrieve an object by path\n\t */\n\tget(path: string): Promise<StorageGetResult | null>;\n\n\t/**\n\t * Delete an object by path\n\t */\n\tdelete(path: string): Promise<boolean>;\n\n\t/**\n\t * Update metadata for an existing object without re-uploading data.\n\t * @returns Updated metadata, or null if the object does not exist\n\t */\n\tupdateMetadata?(path: string, metadata: Omit<StoragePutMetadata, 'owner'>): Promise<StorageObjectMetadata | null>;\n}\n\n/**\n * Search capability interface.\n * Optional for backends that don't support indexing (e.g., simple S3-only backends).\n */\nexport interface SearchableStorage {\n\t/**\n\t * Search for objects matching criteria\n\t */\n\tsearch(criteria: SearchCriteria, pagination: SearchPagination): Promise<SearchResults>;\n}\n\n/**\n * Quota management with upload reservations.\n * Handles quota tracking and reservation-based upload flow.\n */\nexport interface QuotaManagedStorage {\n\t/**\n\t * Get quota status for a user.\n\t * Includes both actual usage and pending reservations.\n\t */\n\tgetQuotaStatus(owner: string): Promise<QuotaStatus>;\n\n\t/**\n\t * Get per-user quota limits.\n\t * Return null to use global defaults.\n\t * @param owner - Owner's identifier\n\t */\n\tgetQuotaLimits?(owner: string): Promise<QuotaLimits | null>;\n\n\t/**\n\t * Reserve quota for an upcoming upload.\n\t *\n\t * @param owner - Owner's identifier\n\t * @param path - Target path for the upload\n\t * @param size - Size in bytes to reserve\n\t * @param options.ttlMs - Optional TTL in milliseconds for the reservation\n\t * @param options.quotaLimits - Optional quota limits to enforce (overrides backend defaults)\n\t *\n\t * @returns Reservation that must be committed or released\n\t *\n\t * @throws QuotaExceeded if reservation would exceed limits\n\t */\n\treserveUpload(owner: string, path: string, size: number, options?: {\n\t\tttlMs?: number;\n\t\tquotaLimits?: Pick<QuotaConfig, 'maxObjectsPerUser' | 'maxStoragePerUser'>;\n\t}): Promise<UploadReservation>;\n\n\t/**\n\t * Commit a reservation after successful upload.\n\t * Call after put() succeeds to finalize the quota usage.\n\t * @param reservationId - ID of the reservation to commit\n\t */\n\tcommitUpload(reservationId: string): Promise<void>;\n\n\t/**\n\t * Release a reservation (upload failed or cancelled).\n\t * Frees the reserved quota.\n\t * @param reservationId - ID of the reservation to release\n\t */\n\treleaseUpload(reservationId: string): Promise<void>;\n}\n\n/**\n * Full storage backend combining all capabilities.\n * Use this type when a backend supports CRUD, search, and quota management.\n */\nexport type FullStorageBackend = StorageBackend & SearchableStorage & QuotaManagedStorage;\n\n// #endregion\n\n// #region Path Policy\n\n/**\n * Operations that can be performed on storage objects.\n */\nexport type StorageOperation = 'get' | 'put' | 'delete' | 'search' | 'metadata' | 'updateMetadata';\n\n/**\n * Shared fields available to all policy context variants.\n */\nexport interface PathPolicyContextBase {\n\taccount: KeetaNetAccount;\n}\n\n/**\n * Context for PUT operations.\n * Contains the metadata being written and the encrypted container.\n */\nexport interface PutPolicyContext extends PathPolicyContextBase {\n\toperation: 'put';\n\tmetadata: StoragePutMetadata;\n\tcontainer: EncryptedContainer;\n}\n\n/**\n * Context for metadata update operations.\n * Contains the new metadata values and the current object metadata before mutation.\n */\nexport interface UpdateMetadataPolicyContext extends PathPolicyContextBase {\n\toperation: 'updateMetadata';\n\tmetadata: StoragePutMetadata;\n\tcurrent: StorageObjectMetadata;\n}\n\n/**\n * Context for GET operations.\n */\nexport interface GetPolicyContext extends PathPolicyContextBase {\n\toperation: 'get';\n}\n\n/**\n * Context for DELETE operations.\n */\nexport interface DeletePolicyContext extends PathPolicyContextBase {\n\toperation: 'delete';\n}\n\n/**\n * Context for metadata read operations.\n */\nexport interface MetadataPolicyContext extends PathPolicyContextBase {\n\toperation: 'metadata';\n}\n\n/**\n * Discriminated union of all policy validation contexts.\n * Narrows on `operation` to access operation-specific fields.\n */\nexport type PathPolicyContext =\n\t| PutPolicyContext\n\t| UpdateMetadataPolicyContext\n\t| GetPolicyContext\n\t| DeletePolicyContext\n\t| MetadataPolicyContext;\n\n/**\n * Generic interface for path policies.\n * Each implementation defines its own parsed type and access control logic.\n * Storage Anchors are free to implement whatever pathname structure they wish.\n */\nexport interface PathPolicy<TPathInfo> {\n\t/**\n\t * Parse a path into its components.\n\t * @returns TPathInfo if valid, null otherwise\n\t */\n\tparse(path: string): TPathInfo | null;\n\n\t/**\n\t * Validate a path and return its components.\n\t * @throws Errors.InvalidPath if the path is invalid\n\t */\n\tvalidate(path: string): TPathInfo;\n\n\t/**\n\t * Check if a path is valid.\n\t */\n\tisValid(path: string): boolean;\n\n\t/**\n\t * Check if the account has access to perform the operation on the parsed path.\n\t * @returns true if access is allowed, false otherwise\n\t */\n\tcheckAccess(account: KeetaNetAccount, parsed: TPathInfo, operation: StorageOperation): boolean;\n\n\t/**\n\t * Get the account authorized to sign pre-signed URLs for this path.\n\t * Used for public object access verification.\n\t *\n\t * @returns The account if only that account can sign (owner-restricted), or `null` if any account can sign\n\t */\n\tgetAuthorizedSigner(parsed: TPathInfo): KeetaNetAccount | null;\n\n\t/**\n\t * Resolve the owner of a path.\n\t *\n\t * @returns The owner's identifier\n\t */\n\tgetOwner(path: string): string;\n\n\t/**\n\t * Validate the request context for a path.\n\t *\n\t * @param parsed - The parsed path info\n\t * @param context - The operation-specific validation context\n\t * @throws Errors.InvalidMetadata if the context violates policy constraints\n\t */\n\tvalidateContext?(parsed: TPathInfo, context: PathPolicyContext): void;\n}\n\n// #endregion\n\n// #region Container Payload Utilities\n\n/**\n * Parse the decrypted plaintext from an EncryptedContainer.\n * The payload is expected to be JSON with mimeType and base64-encoded data,\n * keeping the mimeType encrypted along with the content.\n *\n * @param plaintext - The decrypted plaintext from an EncryptedContainer\n *\n * @returns Object containing mimeType and content Buffer\n */\nexport function parseContainerPayload(plaintext: ArrayBuffer): { mimeType: string; content: Buffer } {\n\tconst payloadStr = Buffer.from(plaintext).toString('utf-8');\n\ttry {\n\t\tconst payload: unknown = JSON.parse(payloadStr);\n\t\tlet mimeType = CONTENT_TYPE_OCTET_STREAM;\n\t\tlet content: Buffer;\n\t\tif (typeof payload === 'object' && payload !== null && !Array.isArray(payload)) {\n\t\t\tconst payloadMime = 'mimeType' in payload ? payload.mimeType : undefined;\n\t\t\tconst payloadData = 'data' in payload ? payload.data : undefined;\n\t\t\tif (typeof payloadMime === 'string') {\n\t\t\t\tmimeType = payloadMime;\n\t\t\t}\n\t\t\tif (typeof payloadData === 'string') {\n\t\t\t\tcontent = arrayBufferLikeToBuffer(Buffer.from(payloadData, 'base64'));\n\t\t\t} else {\n\t\t\t\tcontent = arrayBufferLikeToBuffer(plaintext);\n\t\t\t}\n\t\t} else {\n\t\t\tcontent = arrayBufferLikeToBuffer(plaintext);\n\t\t}\n\t\treturn({ mimeType, content });\n\t} catch {\n\t\treturn({\n\t\t\tmimeType: CONTENT_TYPE_OCTET_STREAM,\n\t\t\tcontent: arrayBufferLikeToBuffer(plaintext)\n\t\t});\n\t}\n}\n\n// #endregion\n"]}
package/services/storage/server.d.ts CHANGED
@@ -1,8 +1,10 @@
1
1
  import type { ServiceMetadata } from '../../lib/resolver.ts';
2
2
  import type { NamespaceValidator } from './lib/validators.js';
3
- import * as KeetaAnchorHTTPServer from '../../lib/http-server/index.js';
4
- import { KeetaNet } from '../../client/index.js';
3
+ import type { KeetaAnchorMetadataServerConfig } from '../../lib/anchor-metadata-server.js';
4
+ import type { KeetaNet } from '../../client/index.js';
5
5
  import type { FullStorageBackend, QuotaConfig, PathPolicy } from './common.ts';
6
+ import type * as KeetaAnchorHTTPServer from '../../lib/http-server/index.js';
7
+ import { KeetaAnchorMetadataServer } from '../../lib/anchor-metadata-server.js';
6
8
  type Account = InstanceType<typeof KeetaNet.lib.Account>;
7
9
  /**
8
10
  * Configuration for the Storage Anchor
@@ -58,7 +60,7 @@ type Account = InstanceType<typeof KeetaNet.lib.Account>;
58
60
  * | | get(), decrypt ----------------->|
59
61
  * |<--------------------------------- | Plaintext content |
60
62
  */
61
- export interface KeetaAnchorStorageServerConfig extends KeetaAnchorHTTPServer.KeetaAnchorHTTPServerConfig {
63
+ export interface KeetaAnchorStorageServerConfig extends KeetaAnchorMetadataServerConfig {
62
64
  /**
63
65
  * The data to use for the index page (optional)
64
66
  */
@@ -115,7 +117,7 @@ export interface KeetaAnchorStorageServerConfig extends KeetaAnchorHTTPServer.Ke
115
117
  pattern?: RegExp;
116
118
  };
117
119
  }
118
- export declare class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.KeetaNetAnchorHTTPServer<KeetaAnchorStorageServerConfig> {
120
+ export declare class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorMetadataServer<NonNullable<ServiceMetadata['services']['storage']>[string], KeetaAnchorStorageServerConfig> {
119
121
  readonly homepage: NonNullable<KeetaAnchorStorageServerConfig['homepage']>;
120
122
  readonly backend: FullStorageBackend;
121
123
  readonly anchorAccount: Account;
@@ -128,7 +130,7 @@ export declare class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServ
128
130
  readonly tagValidation: Required<NonNullable<KeetaAnchorStorageServerConfig['tagValidation']>>;
129
131
  constructor(config: KeetaAnchorStorageServerConfig);
130
132
  protected initRoutes(_ignoreConfig: KeetaAnchorStorageServerConfig): Promise<KeetaAnchorHTTPServer.Routes>;
131
- serviceMetadata(): Promise<NonNullable<ServiceMetadata['services']['storage']>[string]>;
133
+ protected buildServiceMetadata(): Promise<NonNullable<ServiceMetadata['services']['storage']>[string]>;
132
134
  }
133
135
  export {};
134
136
  //# sourceMappingURL=server.d.ts.map
package/services/storage/server.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../../src/services/storage/server.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAE7D,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAC9D,OAAO,KAAK,qBAAqB,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AAIjD,OAAO,KAAK,EAKX,kBAAkB,EAClB,WAAW,EAKX,UAAU,EAIV,MAAM,aAAa,CAAC;AA6BrB,KAAK,OAAO,GAAG,YAAY,CAAC,OAAO,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;AAiNzD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqDG;AACH,MAAM,WAAW,8BAA+B,SAAQ,qBAAqB,CAAC,2BAA2B;IACxG;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,GAAG,CAAC,MAAM,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC,CAAC;IAErD;;;OAGG;IACH,OAAO,EAAE,kBAAkB,CAAC;IAE5B;;OAEG;IACH,aAAa,EAAE,OAAO,CAAC;IAEvB;;;OAGG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;IAE9B;;OAEG;IACH,UAAU,CAAC,EAAE,kBAAkB,EAAE,CAAC;IAElC;;OAEG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;;;;OAKG;IACH,gBAAgB,CAAC,EAAE,MAAM,GAAG,KAAK,CAAC;IAElC;;;;OAIG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC;IAEjC;;;OAGG;IACH,YAAY,EAAE,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;IAEpC;;OAEG;IACH,aAAa,CAAC,EAAE;QACf,sDAAsD;QACtD,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,+CAA+C;QAC/C,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,qEAAqE;QACrE,OAAO,CAAC,EAAE,MAAM,CAAC;KACjB,CAAC;CACF;AAkBD,qBAAa,+BAAgC,SAAQ,qBAAqB,CAAC,wBAAwB,CAAC,8BAA8B,CAAC;IAClI,QAAQ,CAAC,QAAQ,EAAE,WAAW,CAAC,8BAA8B,CAAC,UAAU,CAAC,CAAC,CAAC;IAC3E,QAAQ,CAAC,OAAO,EAAE,kBAAkB,CAAC;IACrC,QAAQ,CAAC,aAAa,EAAE,OAAO,CAAC;IAChC,QAAQ,CAAC,MAAM,EAAE,WAAW,CAAC;IAC7B,QAAQ,CAAC,UAAU,EAAE,kBAAkB,EAAE,CAAC;IAC1C,QAAQ,CAAC,mBAAmB,EAAE,MAAM,CAAC;IACrC,QAAQ,CAAC,gBAAgB,EAAE,MAAM,GAAG,KAAK,CAAC;IAC1C,QAAQ,CAAC,uBAAuB,EAAE,MAAM,CAAC;IACzC,QAAQ,CAAC,YAAY,EAAE,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;IAC7C,QAAQ,CAAC,aAAa,EAAE,QAAQ,CAAC,WAAW,CAAC,8BAA8B,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;gBAEnF,MAAM,EAAE,8BAA8B;cAwDlC,UAAU,CAAC,aAAa,EAAE,8BAA8B,GAAG,OAAO,CAAC,qBAAqB,CAAC,MAAM,CAAC;IAohB1G,eAAe,IAAI,OAAO,CAAC,WAAW,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;CAqB7F"}
1
+ {"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../../src/services/storage/server.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAE7D,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAE9D,OAAO,KAAK,EAAE,+BAA+B,EAAE,MAAM,qCAAqC,CAAC;AAC3F,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AACtD,OAAO,KAAK,EAKX,kBAAkB,EAClB,WAAW,EAKX,UAAU,EAIV,MAAM,aAAa,CAAC;AACrB,OAAO,KAAK,KAAK,qBAAqB,MAAM,gCAAgC,CAAC;AAsB7E,OAAO,EAAE,yBAAyB,EAAE,MAAM,qCAAqC,CAAC;AAQhF,KAAK,OAAO,GAAG,YAAY,CAAC,OAAO,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;AAyHzD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqDG;AACH,MAAM,WAAW,8BAA+B,SAAQ,+BAA+B;IACtF;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,GAAG,CAAC,MAAM,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC,CAAC;IAErD;;;OAGG;IACH,OAAO,EAAE,kBAAkB,CAAC;IAE5B;;OAEG;IACH,aAAa,EAAE,OAAO,CAAC;IAEvB;;;OAGG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;IAE9B;;OAEG;IACH,UAAU,CAAC,EAAE,kBAAkB,EAAE,CAAC;IAElC;;OAEG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B;;;;;OAKG;IACH,gBAAgB,CAAC,EAAE,MAAM,GAAG,KAAK,CAAC;IAElC;;;;OAIG;IACH,uBAAuB,CAAC,EAAE,MAAM,CAAC;IAEjC;;;OAGG;IACH,YAAY,EAAE,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;IAEpC;;OAEG;IACH,aAAa,CAAC,EAAE;QACf,sDAAsD;QACtD,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,+CAA+C;QAC/C,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,qEAAqE;QACrE,OAAO,CAAC,EAAE,MAAM,CAAC;KACjB,CAAC;CACF;AAkBD,qBAAa,+BAAgC,SAAQ,yBAAyB,CAAC,WAAW,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,8BAA8B,CAAC;IAC1K,QAAQ,CAAC,QAAQ,EAAE,WAAW,CAAC,8BAA8B,CAAC,UAAU,CAAC,CAAC,CAAC;IAC3E,QAAQ,CAAC,OAAO,EAAE,kBAAkB,CAAC;IACrC,QAAQ,CAAC,aAAa,EAAE,OAAO,CAAC;IAChC,QAAQ,CAAC,MAAM,EAAE,WAAW,CAAC;IAC7B,QAAQ,CAAC,UAAU,EAAE,kBAAkB,EAAE,CAAC;IAC1C,QAAQ,CAAC,mBAAmB,EAAE,MAAM,CAAC;IACrC,QAAQ,CAAC,gBAAgB,EAAE,MAAM,GAAG,KAAK,CAAC;IAC1C,QAAQ,CAAC,uBAAuB,EAAE,MAAM,CAAC;IACzC,QAAQ,CAAC,YAAY,EAAE,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;IAC7C,QAAQ,CAAC,aAAa,EAAE,QAAQ,CAAC,WAAW,CAAC,8BAA8B,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;gBACnF,MAAM,EAAE,8BAA8B;cAwDlC,UAAU,CAAC,aAAa,EAAE,8BAA8B,GAAG,OAAO,CAAC,qBAAqB,CAAC,MAAM,CAAC;cAuhBhG,oBAAoB,IAAI,OAAO,CAAC,WAAW,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;CAuB5G"}
package/services/storage/server.js CHANGED
@@ -1,10 +1,8 @@
1
- import * as KeetaAnchorHTTPServer from '../../lib/http-server/index.js';
2
- import { KeetaNet } from '../../client/index.js';
3
- import { KeetaAnchorUserError } from '../../lib/error.js';
4
1
  import { assertKeetaStorageAnchorDeleteResponse, assertKeetaStorageAnchorPutResponse, assertKeetaStorageAnchorGetRequest, assertKeetaStorageAnchorSearchRequest, assertKeetaStorageAnchorSearchResponse, assertKeetaStorageAnchorQuotaResponse, assertKeetaStorageAnchorUpdateMetadataRequest } from './common.generated.js';
5
2
  import { getKeetaStorageAnchorDeleteRequestSigningData, getKeetaStorageAnchorPutRequestSigningData, getKeetaStorageAnchorGetRequestSigningData, getKeetaStorageAnchorSearchRequestSigningData, getKeetaStorageAnchorQuotaRequestSigningData, getKeetaStorageAnchorUpdateMetadataRequestSigningData, parseContainerPayload, Errors, CONTENT_TYPE_OCTET_STREAM, DEFAULT_SIGNED_URL_TTL_SECONDS } from './common.js';
3
+ import { KeetaAnchorMetadataServer } from '../../lib/anchor-metadata-server.js';
6
4
  import { VerifySignedData } from '../../lib/utils/signing.js';
7
- import { assertHTTPSignedField, parseSignatureFromURL } from '../../lib/http-server/common.js';
5
+ import { parseSignatureFromURL, verifyBodyAuth, verifyURLAuth } from '../../lib/http-server/common.js';
8
6
  import { arrayBufferLikeToBuffer, Buffer } from '../../lib/utils/buffer.js';
9
7
  import { requiresValidation, findMatchingValidators } from './lib/validators.js';
10
8
  import { EncryptedContainer, EncryptedContainerError } from '../../lib/encrypted-container.js';
@@ -61,68 +59,6 @@ function parsePath(pathPolicies, path) {
61
59
  }
62
60
  throw (new Errors.InvalidPath('Path does not match any policy'));
63
61
  }
64
- /**
65
- * Verify a signed request from POST body.
66
- * Extracts account and signature from the request, verifies the signature,
67
- * and returns the authenticated account.
68
- *
69
- * @typeParam T - Request type containing optional account and signed fields
70
- *
71
- * @param request - The request object containing account and signed fields
72
- * @param getSigningData - Function to extract signable data from the request
73
- *
74
- * @returns The authenticated account
75
- *
76
- * @throws KeetaAnchorUserError if authentication is missing or invalid
77
- */
78
- async function verifyBodyAuth(request, getSigningData) {
79
- if (!request.account || !request.signed) {
80
- throw (new KeetaAnchorUserError('Authentication required'));
81
- }
82
- const account = KeetaNet.lib.Account.fromPublicKeyString(request.account).assertAccount();
83
- const signable = getSigningData(request);
84
- const signed = assertHTTPSignedField(request.signed);
85
- const valid = await VerifySignedData(account, signable, signed);
86
- if (!valid) {
87
- throw (new KeetaAnchorUserError('Invalid signature'));
88
- }
89
- return (account);
90
- }
91
- /**
92
- * Verify a signed request from URL query parameters.
93
- * Parses signature from URL, builds a request object, verifies the signature,
94
- * and returns the authenticated account.
95
- *
96
- * @typeParam T - Request type to build from the account public key
97
- *
98
- * @param url - The URL containing signature query parameters
99
- * @param getSigningData - Function to extract signable data from the request
100
- * @param buildRequest - Function to build a request object from the account public key
101
- *
102
- * @returns The authenticated account
103
- *
104
- * @throws KeetaAnchorUserError if authentication is missing or invalid
105
- */
106
- async function verifyURLAuth(url, getSigningData, buildRequest) {
107
- let urlString;
108
- if (typeof url === 'string') {
109
- urlString = url;
110
- }
111
- else {
112
- urlString = url.href;
113
- }
114
- const parsed = parseSignatureFromURL(urlString);
115
- if (!parsed.account || !parsed.signedField) {
116
- throw (new KeetaAnchorUserError('Authentication required'));
117
- }
118
- const request = buildRequest(parsed.account.publicKeyString.get());
119
- const signable = getSigningData(request);
120
- const valid = await VerifySignedData(parsed.account, signable, parsed.signedField);
121
- if (!valid) {
122
- throw (new KeetaAnchorUserError('Invalid signature'));
123
- }
124
- return (parsed.account);
125
- }
126
62
  /**
127
63
  * Extract object path from wildcard route parameter.
128
64
  * Prepends a leading slash to create a valid storage path.
@@ -144,27 +80,16 @@ function extractObjectPath(params) {
144
80
  * Authorize access to an object path via URL-signed request.
145
81
  * Combines path validation, signature verification, and access control.
146
82
  *
147
- * @typeParam T - Request type to build from path and account
148
- *
149
- * @param pathPolicies - Array of path policies to check against
150
- * @param params - Route parameters containing the wildcard path
151
- * @param url - The URL containing signature query parameters
152
- * @param operation - The operation being authorized
153
- * @param getSigningData - Function to extract signable data from the request
154
- * @param buildRequest - Function to build a request object from path and account
155
- *
156
- * @returns The authenticated account and validated object path
157
- *
158
83
  * @throws InvalidPath if path is invalid or doesn't match any policy
159
84
  * @throws AccessDenied if user doesn't have access to the path
160
85
  * @throws KeetaAnchorUserError if signature is invalid
161
86
  */
162
- async function authorizeURLAccess(pathPolicies, params, url, operation, getSigningData, buildRequest) {
87
+ async function authorizeURLAccess(pathPolicies, params, url, operation, getSignable, certificateChain) {
163
88
  const objectPath = extractObjectPath(params);
164
89
  const { policy, parsed } = parsePath(pathPolicies, objectPath);
165
- const account = await verifyURLAuth(url, getSigningData, function (pubKey) {
166
- return (buildRequest(objectPath, pubKey));
167
- });
90
+ const account = await verifyURLAuth(url, function (account) {
91
+ return (getSignable(objectPath, account));
92
+ }, certificateChain);
168
93
  if (!policy.checkAccess(account, parsed, operation)) {
169
94
  throw (new Errors.AccessDenied('Can only access your own namespace'));
170
95
  }
@@ -184,7 +109,7 @@ const DEFAULT_TAG_VALIDATION = {
184
109
  maxTagLength: 50,
185
110
  pattern: /^[a-zA-Z0-9_-]+$/
186
111
  };
187
- export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.KeetaNetAnchorHTTPServer {
112
+ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorMetadataServer {
188
113
  homepage;
189
114
  backend;
190
115
  anchorAccount;
@@ -254,6 +179,7 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
254
179
  const publicCorsOrigin = this.publicCorsOrigin;
255
180
  const authenticatedCorsOrigin = this.authenticatedCorsOrigin;
256
181
  const pathPolicies = this.pathPolicies;
182
+ const requireCertificateChain = this.resolvedCertificateChainRequirement;
257
183
  const tagValidation = this.tagValidation;
258
184
  const logger = this.logger;
259
185
  /**
@@ -355,9 +281,9 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
355
281
  return (t.length > 0);
356
282
  });
357
283
  // Verify signature
358
- const account = await verifyURLAuth(url, getKeetaStorageAnchorPutRequestSigningData, function () {
359
- return ({ path: objectPath, visibility, tags: rawTags });
360
- });
284
+ const account = await verifyURLAuth(url, function () {
285
+ return (getKeetaStorageAnchorPutRequestSigningData({ path: objectPath, visibility, tags: rawTags }));
286
+ }, requireCertificateChain);
361
287
  validateTags(rawTags);
362
288
  const tags = rawTags;
363
289
  // Validate path format, metadata, and ownership
@@ -458,9 +384,9 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
458
384
  };
459
385
  // GET /api/object/* - Retrieve an object
460
386
  routes['GET /api/object/**'] = async function (params, _postData, _headers, url) {
461
- const { objectPath, policy, parsed, account } = await authorizeURLAccess(pathPolicies, params, url, 'get', getKeetaStorageAnchorGetRequestSigningData, function (path, pubKey) {
462
- return (assertKeetaStorageAnchorGetRequest({ path, account: pubKey }));
463
- });
387
+ const { objectPath, policy, parsed, account } = await authorizeURLAccess(pathPolicies, params, url, 'get', function (path, signingAccount) {
388
+ return (getKeetaStorageAnchorGetRequestSigningData(assertKeetaStorageAnchorGetRequest({ path, account: signingAccount.publicKeyString.get() })));
389
+ }, requireCertificateChain);
464
390
  if (policy.validateContext) {
465
391
  policy.validateContext(parsed, { operation: 'get', account });
466
392
  }
@@ -477,9 +403,9 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
477
403
  };
478
404
  // DELETE /api/object/* - Delete an object
479
405
  routes['DELETE /api/object/**'] = async function (params, _postData, _headers, url) {
480
- const { objectPath, policy, parsed, account } = await authorizeURLAccess(pathPolicies, params, url, 'delete', getKeetaStorageAnchorDeleteRequestSigningData, function (path, pubKey) {
481
- return ({ path, account: pubKey });
482
- });
406
+ const { objectPath, policy, parsed, account } = await authorizeURLAccess(pathPolicies, params, url, 'delete', function (path, signingAccount) {
407
+ return (getKeetaStorageAnchorDeleteRequestSigningData({ path, account: signingAccount.publicKeyString.get() }));
408
+ }, requireCertificateChain);
483
409
  if (policy.validateContext) {
484
410
  policy.validateContext(parsed, { operation: 'delete', account });
485
411
  }
@@ -492,9 +418,9 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
492
418
  };
493
419
  // GET /api/metadata/* - Get object metadata
494
420
  routes['GET /api/metadata/**'] = async function (params, _postData, _headers, url) {
495
- const { objectPath, policy, parsed, account } = await authorizeURLAccess(pathPolicies, params, url, 'metadata', getKeetaStorageAnchorGetRequestSigningData, function (path, pubKey) {
496
- return (assertKeetaStorageAnchorGetRequest({ path, account: pubKey }));
497
- });
421
+ const { objectPath, policy, parsed, account } = await authorizeURLAccess(pathPolicies, params, url, 'metadata', function (path, signingAccount) {
422
+ return (getKeetaStorageAnchorGetRequestSigningData(assertKeetaStorageAnchorGetRequest({ path, account: signingAccount.publicKeyString.get() })));
423
+ }, requireCertificateChain);
498
424
  if (policy.validateContext) {
499
425
  policy.validateContext(parsed, { operation: 'metadata', account });
500
426
  }
@@ -510,7 +436,9 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
510
436
  visibility: request.visibility,
511
437
  tags: request.tags
512
438
  });
513
- const account = await verifyBodyAuth(request, function () { return (signable); });
439
+ const account = await verifyBodyAuth(request, function () {
440
+ return (signable);
441
+ }, requireCertificateChain);
514
442
  const { policy, parsed } = assertPathAccess(pathPolicies, account, objectPath, 'updateMetadata');
515
443
  validateTags(request.tags);
516
444
  const visibility = assertVisibility(request.visibility);
@@ -532,7 +460,7 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
532
460
  // POST /api/search - Search for objects
533
461
  routes['POST /api/search'] = async function (_params, postData) {
534
462
  const request = assertKeetaStorageAnchorSearchRequest(postData);
535
- const account = await verifyBodyAuth(request, getKeetaStorageAnchorSearchRequestSigningData);
463
+ const account = await verifyBodyAuth(request, getKeetaStorageAnchorSearchRequestSigningData, requireCertificateChain);
536
464
  const accountPubKey = account.publicKeyString.get();
537
465
  // Check if searching for public objects outside namespace
538
466
  const searchingPublic = request.criteria.visibility === 'public';
@@ -558,7 +486,7 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
558
486
  };
559
487
  // GET /api/quota - Get quota status
560
488
  routes['GET /api/quota'] = async function (_params, _postData, _headers, url) {
561
- const account = await verifyURLAuth(url, getKeetaStorageAnchorQuotaRequestSigningData, function () { return ({}); });
489
+ const account = await verifyURLAuth(url, function () { return (getKeetaStorageAnchorQuotaRequestSigningData({})); }, requireCertificateChain);
562
490
  // Get current usage from backend and compute remaining using per-user or global limits
563
491
  const owner = account.publicKeyString.get();
564
492
  let userLimits = null;
@@ -666,8 +594,9 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
666
594
  // #endregion
667
595
  return (routes);
668
596
  }
669
- async serviceMetadata() {
597
+ async buildServiceMetadata() {
670
598
  const authRequired = { options: { authentication: { type: 'required', method: 'keeta-account' } } };
599
+ const acceptedIssuerDNs = this.acceptedIssuerDNs();
671
600
  const operations = {
672
601
  put: { url: (new URL('/api/object', this.url)).toString(), ...authRequired },
673
602
  get: { url: (new URL('/api/object', this.url)).toString(), ...authRequired },
@@ -683,7 +612,8 @@ export class KeetaNetStorageAnchorHTTPServer extends KeetaAnchorHTTPServer.Keeta
683
612
  anchorAccount: this.anchorAccount.publicKeyString.get(),
684
613
  quotas: this.quotas,
685
614
  signedUrlDefaultTTL: this.signedUrlDefaultTTL,
686
- searchableFields: ['owner', 'tags', 'visibility', 'pathPrefix']
615
+ searchableFields: ['owner', 'tags', 'visibility', 'pathPrefix'],
616
+ ...(acceptedIssuerDNs !== undefined && { acceptedIssuerDNs })
687
617
  });
688
618
  }
689
619
  }