npm - @kyro-cms/core - Versions diffs - 0.6.0 → 0.7.0 - Mend

@kyro-cms/core 0.6.0 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (145) hide show

package/dist/api-handler.cjs +75 -35
package/dist/api-handler.cjs.map +1 -1
package/dist/api-handler.d.cts +2 -5
package/dist/api-handler.d.ts +2 -5
package/dist/api-handler.js +75 -36
package/dist/api-handler.js.map +1 -1
package/dist/bootstrap-AKAUP6F6.cjs +32 -0
package/dist/{bootstrap-EE6BJZWL.cjs.map → bootstrap-AKAUP6F6.cjs.map} +1 -1
package/dist/bootstrap-JCML6NFO.js +7 -0
package/dist/{bootstrap-4MH44YKG.js.map → bootstrap-JCML6NFO.js.map} +1 -1
package/dist/{chunk-WVPOPOEQ.cjs → chunk-2KVHZE6O.cjs} +286 -126
package/dist/chunk-2KVHZE6O.cjs.map +1 -0
package/dist/{chunk-RALQO47U.cjs → chunk-2OL4O2TH.cjs} +55 -2
package/dist/chunk-2OL4O2TH.cjs.map +1 -0
package/dist/{chunk-XU7AFF6V.js → chunk-35U3FROB.js} +982 -4
package/dist/chunk-35U3FROB.js.map +1 -0
package/dist/{chunk-WSCJQI2B.js → chunk-3J4MFTI3.js} +27 -11
package/dist/chunk-3J4MFTI3.js.map +1 -0
package/dist/chunk-3ZFYL34R.js +391 -0
package/dist/chunk-3ZFYL34R.js.map +1 -0
package/dist/chunk-4DA7QPLA.cjs +356 -0
package/dist/chunk-4DA7QPLA.cjs.map +1 -0
package/dist/{chunk-TP5YQFIX.js → chunk-57P6MJKC.js} +3 -715
package/dist/chunk-57P6MJKC.js.map +1 -0
package/dist/{chunk-R2YHJN6W.cjs → chunk-5KVM3WEY.cjs} +34 -208
package/dist/chunk-5KVM3WEY.cjs.map +1 -0
package/dist/{chunk-Z2OVHWHB.cjs → chunk-6IMPH6WV.cjs} +28 -11
package/dist/chunk-6IMPH6WV.cjs.map +1 -0
package/dist/{chunk-QKVA2SOG.js → chunk-DXHRBMGB.js} +27 -284
package/dist/chunk-DXHRBMGB.js.map +1 -0
package/dist/{chunk-E3BZLMX6.js → chunk-ES5HNFFT.js} +43 -2
package/dist/chunk-ES5HNFFT.js.map +1 -0
package/dist/{chunk-QYZKIPSD.js → chunk-FXYP2HA6.js} +34 -3
package/dist/chunk-FXYP2HA6.js.map +1 -0
package/dist/chunk-H727JIG7.js +809 -0
package/dist/chunk-H727JIG7.js.map +1 -0
package/dist/{chunk-AM4JKIPP.js → chunk-HXRD4B37.js} +9 -183
package/dist/chunk-HXRD4B37.js.map +1 -0
package/dist/chunk-I7HHI6QV.cjs +816 -0
package/dist/chunk-I7HHI6QV.cjs.map +1 -0
package/dist/{chunk-RDRJVCL5.cjs → chunk-IA6AU5PI.cjs} +2 -720
package/dist/chunk-IA6AU5PI.cjs.map +1 -0
package/dist/{chunk-55BNRTLW.cjs → chunk-LINKCEG4.cjs} +985 -4
package/dist/chunk-LINKCEG4.cjs.map +1 -0
package/dist/{chunk-TVVYZ2TH.js → chunk-OHVB4AJ7.js} +56 -3
package/dist/chunk-OHVB4AJ7.js.map +1 -0
package/dist/{chunk-XAEBVZTI.cjs → chunk-PDYFVNUX.cjs} +26 -289
package/dist/chunk-PDYFVNUX.cjs.map +1 -0
package/dist/{chunk-6WXQRYTW.js → chunk-QPPDLRNR.js} +286 -126
package/dist/chunk-QPPDLRNR.js.map +1 -0
package/dist/{chunk-WBCIEYHC.cjs → chunk-QUW2RZTM.cjs} +35 -4
package/dist/chunk-QUW2RZTM.cjs.map +1 -0
package/dist/chunk-SA7NSSIQ.cjs +397 -0
package/dist/chunk-SA7NSSIQ.cjs.map +1 -0
package/dist/{chunk-H4XCAPA6.cjs → chunk-V3LKPM3O.cjs} +43 -2
package/dist/chunk-V3LKPM3O.cjs.map +1 -0
package/dist/chunk-Y3N7UUDO.js +349 -0
package/dist/chunk-Y3N7UUDO.js.map +1 -0
package/dist/{chunk-S3FG2NY7.js → chunk-Y3QQN7PN.js} +4 -3
package/dist/chunk-Y3QQN7PN.js.map +1 -0
package/dist/{chunk-5HA5OMFH.cjs → chunk-YVUJBEXE.cjs} +7 -6
package/dist/chunk-YVUJBEXE.cjs.map +1 -0
package/dist/cli/index.cjs +103 -20
package/dist/cli/index.cjs.map +1 -1
package/dist/cli/index.js +103 -20
package/dist/cli/index.js.map +1 -1
package/dist/client.d.cts +1 -1
package/dist/client.d.ts +1 -1
package/dist/drizzle/index.cjs +12 -12
package/dist/drizzle/index.d.cts +23 -2
package/dist/drizzle/index.d.ts +23 -2
package/dist/drizzle/index.js +3 -3
package/dist/index.cjs +174 -1054
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +85 -7
package/dist/index.d.ts +85 -7
package/dist/index.js +91 -980
package/dist/index.js.map +1 -1
package/dist/integration.cjs +2 -2
package/dist/integration.d.cts +3 -16
package/dist/integration.d.ts +3 -16
package/dist/integration.js +1 -1
package/dist/mongo-auth-adapter-NHHUJHVH.cjs +17 -0
package/dist/mongo-auth-adapter-NHHUJHVH.cjs.map +1 -0
package/dist/mongo-auth-adapter-NJQUUCTP.js +4 -0
package/dist/mongo-auth-adapter-NJQUUCTP.js.map +1 -0
package/dist/mongodb/index.cjs +9 -8
package/dist/mongodb/index.d.cts +86 -5
package/dist/mongodb/index.d.ts +86 -5
package/dist/mongodb/index.js +3 -2
package/dist/postgres-auth-adapter-3T2NKTSE.js +5 -0
package/dist/{postgres-auth-adapter-B65BULNS.js.map → postgres-auth-adapter-3T2NKTSE.js.map} +1 -1
package/dist/postgres-auth-adapter-7IEENCKQ.cjs +14 -0
package/dist/{postgres-auth-adapter-6742WDCF.cjs.map → postgres-auth-adapter-7IEENCKQ.cjs.map} +1 -1
package/dist/redis-adapter-D2E2S3GB.cjs +13 -0
package/dist/{redis-adapter-LPUWLE4Y.cjs.map → redis-adapter-D2E2S3GB.cjs.map} +1 -1
package/dist/redis-adapter-VQXD7ESY.js +4 -0
package/dist/{redis-adapter-THYDCGQR.js.map → redis-adapter-VQXD7ESY.js.map} +1 -1
package/dist/rest/index.cjs +10 -8
package/dist/rest/index.js +8 -6
package/dist/sqlite-adapter-LVK5PS4T.cjs +13 -0
package/dist/sqlite-adapter-LVK5PS4T.cjs.map +1 -0
package/dist/sqlite-adapter-TR3U3W6Q.js +4 -0
package/dist/sqlite-adapter-TR3U3W6Q.js.map +1 -0
package/dist/templates/index.cjs +31 -27
package/dist/templates/index.d.cts +8 -5
package/dist/templates/index.d.ts +8 -5
package/dist/templates/index.js +1 -1
package/dist/{base-eVegJ_Pr.d.ts → tenant-B1YB0Jy8.d.ts} +10 -1
package/dist/{base-DvvNqnM-.d.cts → tenant-Cpeveji6.d.cts} +10 -1
package/dist/{types-DqN4ckOC.d.cts → types-D6ZLRGbH.d.cts} +19 -1
package/dist/{types-DqN4ckOC.d.ts → types-D6ZLRGbH.d.ts} +19 -1
package/package.json +56 -9
package/dist/adapter-BSvBudTG.d.cts +0 -65
package/dist/adapter-CXGB2Elb.d.ts +0 -65
package/dist/bootstrap-4MH44YKG.js +0 -6
package/dist/bootstrap-EE6BJZWL.cjs +0 -31
package/dist/chunk-55BNRTLW.cjs.map +0 -1
package/dist/chunk-5HA5OMFH.cjs.map +0 -1
package/dist/chunk-6WXQRYTW.js.map +0 -1
package/dist/chunk-A4USRVTQ.js +0 -115
package/dist/chunk-A4USRVTQ.js.map +0 -1
package/dist/chunk-AM4JKIPP.js.map +0 -1
package/dist/chunk-E3BZLMX6.js.map +0 -1
package/dist/chunk-H4XCAPA6.cjs.map +0 -1
package/dist/chunk-KOCTZKPV.cjs +0 -117
package/dist/chunk-KOCTZKPV.cjs.map +0 -1
package/dist/chunk-QKVA2SOG.js.map +0 -1
package/dist/chunk-QYZKIPSD.js.map +0 -1
package/dist/chunk-R2YHJN6W.cjs.map +0 -1
package/dist/chunk-RALQO47U.cjs.map +0 -1
package/dist/chunk-RDRJVCL5.cjs.map +0 -1
package/dist/chunk-S3FG2NY7.js.map +0 -1
package/dist/chunk-TP5YQFIX.js.map +0 -1
package/dist/chunk-TVVYZ2TH.js.map +0 -1
package/dist/chunk-WBCIEYHC.cjs.map +0 -1
package/dist/chunk-WSCJQI2B.js.map +0 -1
package/dist/chunk-WVPOPOEQ.cjs.map +0 -1
package/dist/chunk-XAEBVZTI.cjs.map +0 -1
package/dist/chunk-XU7AFF6V.js.map +0 -1
package/dist/chunk-Z2OVHWHB.cjs.map +0 -1
package/dist/postgres-auth-adapter-6742WDCF.cjs +0 -14
package/dist/postgres-auth-adapter-B65BULNS.js +0 -5
package/dist/redis-adapter-LPUWLE4Y.cjs +0 -13
package/dist/redis-adapter-THYDCGQR.js +0 -4

package/dist/chunk-4DA7QPLA.cjs ADDED Viewed

@@ -0,0 +1,356 @@
+'use strict';
+var bcrypt = require('bcryptjs');
+var crypto = require('crypto');
+function _interopDefault (e) { return e && e.__esModule ? e : { default: e }; }
+var bcrypt__default = /*#__PURE__*/_interopDefault(bcrypt);
+// src/database/mongodb/mongo-auth-adapter.ts
+var MongoDBAuthAdapter = class {
+  db;
+  prefix;
+  sessionTTL;
+  refreshTokenTTL;
+  indexesEnsured = false;
+  constructor(options) {
+    this.db = options.db;
+    this.prefix = options.collectionPrefix || "";
+    this.sessionTTL = options.sessionTTL || 86400;
+    this.refreshTokenTTL = options.refreshTokenTTL || 604800;
+  }
+  col(name) {
+    return this.db.collection(`${this.prefix}${name}`);
+  }
+  async connect() {
+    if (!this.indexesEnsured) {
+      await this.ensureIndexes();
+    }
+  }
+  async disconnect() {
+  }
+  async ensureIndexes() {
+    await this.col("users").createIndex({ email: 1 }, { unique: true });
+    await this.col("users").createIndex({ tenantId: 1 });
+    await this.col("users").createIndex({ role: 1 });
+    await this.col("sessions").createIndex({ token: 1 }, { unique: true });
+    await this.col("sessions").createIndex({ refreshToken: 1 });
+    await this.col("sessions").createIndex({ userId: 1 });
+    await this.col("sessions").createIndex({ expiresAt: 1 }, { expireAfterSeconds: 0 });
+    await this.col("audit_logs").createIndex({ timestamp: -1 });
+    await this.col("audit_logs").createIndex({ userId: 1 });
+    await this.col("audit_logs").createIndex({ action: 1 });
+    await this.col("audit_logs").createIndex({ resource: 1 });
+    await this.col("password_history").createIndex({ userId: 1, createdAt: -1 });
+    await this.col("lockouts").createIndex({ userId: 1 }, { unique: true });
+    await this.col("lockouts").createIndex({ lockedUntil: 1 });
+    this.indexesEnsured = true;
+  }
+  async createUser(data) {
+    const id = crypto.randomUUID();
+    const now = /* @__PURE__ */ new Date();
+    const passwordHash = await this.hashPassword(data.password);
+    const user = {
+      _id: id,
+      name: data.name || null,
+      email: data.email.toLowerCase(),
+      passwordHash,
+      role: data.role || "customer",
+      tenantId: data.tenantId || null,
+      emailVerified: false,
+      locked: false,
+      lastLogin: null,
+      failedLoginAttempts: 0,
+      createdAt: now,
+      updatedAt: now
+    };
+    await this.col("users").insertOne(user);
+    return this.docToAuthUser(user);
+  }
+  async findUserByEmail(email) {
+    const doc = await this.col("users").findOne({ email: email.toLowerCase() });
+    return doc ? this.docToAuthUser(doc) : null;
+  }
+  async findUserById(id) {
+    const doc = await this.col("users").findOne({ _id: id });
+    return doc ? this.docToAuthUser(doc) : null;
+  }
+  async updateUser(id, data) {
+    const setData = { updatedAt: /* @__PURE__ */ new Date() };
+    if (data.name !== void 0) setData.name = data.name;
+    if (data.email !== void 0) setData.email = data.email;
+    if (data.passwordHash !== void 0) setData.passwordHash = data.passwordHash;
+    if (data.role !== void 0) setData.role = data.role;
+    if (data.tenantId !== void 0) setData.tenantId = data.tenantId;
+    if (data.emailVerified !== void 0) setData.emailVerified = data.emailVerified;
+    if (data.locked !== void 0) setData.locked = data.locked;
+    if (data.lastLogin !== void 0) setData.lastLogin = data.lastLogin ? new Date(data.lastLogin) : null;
+    if (data.failedLoginAttempts !== void 0) setData.failedLoginAttempts = data.failedLoginAttempts;
+    const result = await this.col("users").findOneAndUpdate(
+      { _id: id },
+      { $set: setData },
+      { returnDocument: "after" }
+    );
+    return result ? this.docToAuthUser(result) : null;
+  }
+  async deleteUser(id) {
+    const result = await this.col("users").deleteOne({ _id: id });
+    return result.deletedCount > 0;
+  }
+  async verifyPassword(email, password) {
+    const user = await this.findUserByEmail(email);
+    if (!user) return null;
+    const doc = await this.col("users").findOne(
+      { email: email.toLowerCase() },
+      { projection: { passwordHash: 1 } }
+    );
+    if (!doc?.passwordHash) return null;
+    const valid = await bcrypt__default.default.compare(password, doc.passwordHash);
+    return valid ? user : null;
+  }
+  async hashPassword(password) {
+    return bcrypt__default.default.hash(password, 12);
+  }
+  async createSession(userId, data) {
+    const id = crypto.randomUUID();
+    const token = crypto.randomBytes(32).toString("base64url");
+    const refreshToken = crypto.randomBytes(32).toString("base64url");
+    const now = /* @__PURE__ */ new Date();
+    const expiresAt = new Date(now.getTime() + this.sessionTTL * 1e3);
+    const session = {
+      _id: id,
+      userId,
+      token,
+      refreshToken,
+      ipAddress: data?.ipAddress || null,
+      userAgent: data?.userAgent || null,
+      expiresAt,
+      createdAt: now
+    };
+    await this.col("sessions").insertOne(session);
+    return this.docToSession(session);
+  }
+  async findSessionByToken(token) {
+    const doc = await this.col("sessions").findOne({
+      token,
+      expiresAt: { $gt: /* @__PURE__ */ new Date() }
+    });
+    return doc ? this.docToSession(doc) : null;
+  }
+  async findSessionByRefreshToken(refreshToken) {
+    const doc = await this.col("sessions").findOne({
+      refreshToken,
+      expiresAt: { $gt: /* @__PURE__ */ new Date() }
+    });
+    return doc ? this.docToSession(doc) : null;
+  }
+  async deleteSession(sessionId) {
+    const result = await this.col("sessions").deleteOne({ _id: sessionId });
+    return result.deletedCount > 0;
+  }
+  async deleteUserSessions(userId) {
+    const result = await this.col("sessions").deleteMany({ userId });
+    return result.deletedCount;
+  }
+  async hasAnyUsers() {
+    const count = await this.col("users").countDocuments();
+    return count > 0;
+  }
+  async addPasswordToHistory(userId, passwordHash) {
+    await this.col("password_history").insertOne({
+      userId,
+      passwordHash,
+      createdAt: /* @__PURE__ */ new Date()
+    });
+  }
+  async getPasswordHistory(userId, count = 5) {
+    const docs = await this.col("password_history").find({ userId }).sort({ createdAt: -1 }).limit(count).toArray();
+    return docs.map((d) => d.passwordHash);
+  }
+  async isPasswordInHistory(password, userId, historyCount = 5) {
+    const history = await this.getPasswordHistory(userId, historyCount);
+    for (const hash of history) {
+      if (await bcrypt__default.default.compare(password, hash)) {
+        return true;
+      }
+    }
+    return false;
+  }
+  async findAuditLogs(filter) {
+    const {
+      limit = 50,
+      offset = 0,
+      userId,
+      action,
+      resource,
+      resourceId,
+      success,
+      startDate,
+      endDate
+    } = filter;
+    const query = {};
+    if (userId) query.userId = userId;
+    if (action) {
+      if (Array.isArray(action)) {
+        query.action = { $in: action };
+      } else {
+        query.action = action;
+      }
+    }
+    if (resource) query.resource = resource;
+    if (resourceId) query.resourceId = resourceId;
+    if (success !== void 0) query.success = success;
+    if (startDate || endDate) {
+      query.timestamp = {};
+      if (startDate) query.timestamp.$gte = startDate;
+      if (endDate) query.timestamp.$lte = endDate;
+    }
+    const total = await this.col("audit_logs").countDocuments(query);
+    const docs = await this.col("audit_logs").find(query).sort({ timestamp: -1 }).skip(offset).limit(limit).toArray();
+    return {
+      logs: docs.map((doc) => ({
+        id: doc._id,
+        timestamp: doc.timestamp,
+        action: doc.action,
+        userId: doc.userId || void 0,
+        userEmail: doc.userEmail || void 0,
+        role: doc.role || void 0,
+        resource: doc.resource,
+        resourceId: doc.resourceId || void 0,
+        changes: doc.changes || void 0,
+        ipAddress: doc.ipAddress || void 0,
+        userAgent: doc.userAgent || void 0,
+        success: doc.success,
+        error: doc.error || void 0,
+        metadata: doc.metadata || void 0
+      })),
+      total
+    };
+  }
+  async createAuditLog(data) {
+    const id = crypto.randomUUID();
+    const timestamp = /* @__PURE__ */ new Date();
+    await this.col("audit_logs").insertOne({
+      _id: id,
+      action: data.action,
+      userId: data.userId || null,
+      userEmail: data.userEmail || null,
+      role: data.role || null,
+      resource: data.resource,
+      resourceId: data.resourceId || null,
+      changes: data.changes || null,
+      ipAddress: data.ipAddress || null,
+      userAgent: data.userAgent || null,
+      success: data.success,
+      error: data.error || null,
+      metadata: data.metadata || null,
+      timestamp
+    });
+    return {
+      ...data,
+      id,
+      timestamp
+    };
+  }
+  docToAuthUser(doc) {
+    return {
+      id: doc._id,
+      name: doc.name || void 0,
+      email: doc.email,
+      passwordHash: doc.passwordHash || void 0,
+      role: doc.role,
+      tenantId: doc.tenantId || void 0,
+      emailVerified: doc.emailVerified || false,
+      locked: doc.locked || false,
+      lastLogin: doc.lastLogin?.toISOString?.() || doc.lastLogin || void 0,
+      failedLoginAttempts: doc.failedLoginAttempts || 0,
+      createdAt: doc.createdAt?.toISOString?.() || doc.createdAt,
+      updatedAt: doc.updatedAt?.toISOString?.() || doc.updatedAt
+    };
+  }
+  docToSession(doc) {
+    return {
+      id: doc._id,
+      userId: doc.userId,
+      token: doc.token,
+      refreshToken: doc.refreshToken || void 0,
+      expiresAt: doc.expiresAt?.toISOString?.() || doc.expiresAt,
+      createdAt: doc.createdAt?.toISOString?.() || doc.createdAt,
+      ipAddress: doc.ipAddress || void 0,
+      userAgent: doc.userAgent || void 0
+    };
+  }
+  async createEmailVerificationToken(userId) {
+    const token = crypto.randomBytes(32).toString("hex");
+    const expiresAt = new Date(Date.now() + 24 * 60 * 60 * 1e3);
+    await this.db.collection("email_verifications").insertOne({
+      userId: new (await import('mongodb')).ObjectId(userId),
+      token,
+      expiresAt,
+      createdAt: /* @__PURE__ */ new Date()
+    });
+    return { token, expiresAt };
+  }
+  async verifyEmailToken(token) {
+    const verification = await this.db.collection("email_verifications").findOne({ token });
+    if (!verification) {
+      return { success: false, error: "Invalid verification token" };
+    }
+    if (verification.expiresAt < /* @__PURE__ */ new Date()) {
+      return { success: false, error: "Verification token has expired" };
+    }
+    await this.db.collection("users").updateOne(
+      { _id: verification.userId },
+      { $set: { emailVerified: true } }
+    );
+    await this.db.collection("email_verifications").deleteOne({ _id: verification._id });
+    return { success: true, userId: verification.userId.toString() };
+  }
+  async createPasswordResetToken(email) {
+    const user = await this.findUserByEmail(email);
+    if (!user) {
+      return { token: "", expiresAt: /* @__PURE__ */ new Date(), error: "User not found" };
+    }
+    const token = crypto.randomBytes(32).toString("hex");
+    const expiresAt = new Date(Date.now() + 60 * 60 * 1e3);
+    await this.db.collection("password_resets").insertOne({
+      userId: new (await import('mongodb')).ObjectId(user.id),
+      token,
+      expiresAt,
+      createdAt: /* @__PURE__ */ new Date()
+    });
+    return { token, expiresAt };
+  }
+  async resetPasswordWithToken(token, newPassword) {
+    const reset = await this.db.collection("password_resets").findOne({ token });
+    if (!reset) {
+      return { success: false, error: "Invalid reset token" };
+    }
+    if (reset.expiresAt < /* @__PURE__ */ new Date()) {
+      return { success: false, error: "Reset token has expired" };
+    }
+    if (reset.usedAt) {
+      return { success: false, error: "Reset token has already been used" };
+    }
+    const passwordHash = await this.hashPassword(newPassword);
+    await this.db.collection("users").updateOne(
+      { _id: reset.userId },
+      { $set: { passwordHash, updatedAt: /* @__PURE__ */ new Date() } }
+    );
+    await this.db.collection("password_resets").updateOne(
+      { _id: reset._id },
+      { $set: { usedAt: /* @__PURE__ */ new Date() } }
+    );
+    await this.db.collection("sessions").deleteMany({ userId: reset.userId });
+    return { success: true };
+  }
+};
+function createMongoDBAuthAdapter(options) {
+  return new MongoDBAuthAdapter(options);
+}
+exports.MongoDBAuthAdapter = MongoDBAuthAdapter;
+exports.createMongoDBAuthAdapter = createMongoDBAuthAdapter;
+//# sourceMappingURL=chunk-4DA7QPLA.cjs.map
+//# sourceMappingURL=chunk-4DA7QPLA.cjs.map

package/dist/chunk-4DA7QPLA.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/database/mongodb/mongo-auth-adapter.ts"],"names":["randomUUID","bcrypt","randomBytes"],"mappings":";;;;;;;;;;AAoBO,IAAM,qBAAN,MAAgD;AAAA,EAC7C,EAAA;AAAA,EACA,MAAA;AAAA,EACA,UAAA;AAAA,EACA,eAAA;AAAA,EACA,cAAA,GAAiB,KAAA;AAAA,EAEzB,YAAY,OAAA,EAAoC;AAC9C,IAAA,IAAA,CAAK,KAAK,OAAA,CAAQ,EAAA;AAClB,IAAA,IAAA,CAAK,MAAA,GAAS,QAAQ,gBAAA,IAAoB,EAAA;AAC1C,IAAA,IAAA,CAAK,UAAA,GAAa,QAAQ,UAAA,IAAc,KAAA;AACxC,IAAA,IAAA,CAAK,eAAA,GAAkB,QAAQ,eAAA,IAAmB,MAAA;AAAA,EACpD;AAAA,EAEQ,IAAI,IAAA,EAAmB;AAC7B,IAAA,OAAO,IAAA,CAAK,GAAG,UAAA,CAAW,CAAA,EAAG,KAAK,MAAM,CAAA,EAAG,IAAI,CAAA,CAAE,CAAA;AAAA,EACnD;AAAA,EAEA,MAAM,OAAA,GAAyB;AAC7B,IAAA,IAAI,CAAC,KAAK,cAAA,EAAgB;AACxB,MAAA,MAAM,KAAK,aAAA,EAAc;AAAA,IAC3B;AAAA,EACF;AAAA,EAEA,MAAM,UAAA,GAA4B;AAAA,EAClC;AAAA,EAEA,MAAc,aAAA,GAA+B;AAC3C,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA,CAAE,WAAA,CAAY,EAAE,KAAA,EAAO,CAAA,EAAE,EAAG,EAAE,MAAA,EAAQ,IAAA,EAAM,CAAA;AAClE,IAAA,MAAM,IAAA,CAAK,IAAI,OAAO,CAAA,CAAE,YAAY,EAAE,QAAA,EAAU,GAAG,CAAA;AACnD,IAAA,MAAM,IAAA,CAAK,IAAI,OAAO,CAAA,CAAE,YAAY,EAAE,IAAA,EAAM,GAAG,CAAA;AAE/C,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,UAAU,CAAA,CAAE,WAAA,CAAY,EAAE,KAAA,EAAO,CAAA,EAAE,EAAG,EAAE,MAAA,EAAQ,IAAA,EAAM,CAAA;AACrE,IAAA,MAAM,IAAA,CAAK,IAAI,UAAU,CAAA,CAAE,YAAY,EAAE,YAAA,EAAc,GAAG,CAAA;AAC1D,IAAA,MAAM,IAAA,CAAK,IAAI,UAAU,CAAA,CAAE,YAAY,EAAE,MAAA,EAAQ,GAAG,CAAA;AACpD,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,UAAU,CAAA,CAAE,WAAA,CAAY,EAAE,SAAA,EAAW,CAAA,EAAE,EAAG,EAAE,kBAAA,EAAoB,CAAA,EAAG,CAAA;AAElF,IAAA,MAAM,IAAA,CAAK,IAAI,YAAY,CAAA,CAAE,YAAY,EAAE,SAAA,EAAW,IAAI,CAAA;AAC1D,IAAA,MAAM,IAAA,CAAK,IAAI,YAAY,CAAA,CAAE,YAAY,EAAE,MAAA,EAAQ,GAAG,CAAA;AACtD,IAAA,MAAM,IAAA,CAAK,IAAI,YAAY,CAAA,CAAE,YAAY,EAAE,MAAA,EAAQ,GAAG,CAAA;AACtD,IAAA,MAAM,IAAA,CAAK,IAAI,YAAY,CAAA,CAAE,YAAY,EAAE,QAAA,EAAU,GAAG,CAAA;AAExD,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,kBAAkB,CAAA,CAAE,WAAA,CAAY,EAAE,MAAA,EAAQ,CAAA,EAAG,SAAA,EAAW,EAAA,EAAI,CAAA;AAE3E,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,UAAU,CAAA,CAAE,WAAA,CAAY,EAAE,MAAA,EAAQ,CAAA,EAAE,EAAG,EAAE,MAAA,EAAQ,IAAA,EAAM,CAAA;AACtE,IAAA,MAAM,IAAA,CAAK,IAAI,UAAU,CAAA,CAAE,YAAY,EAAE,WAAA,EAAa,GAAG,CAAA;AAEzD,IAAA,IAAA,CAAK,cAAA,GAAiB,IAAA;AAAA,EACxB;AAAA,EAEA,MAAM,WAAW,IAAA,EAMK;AACpB,IAAA,MAAM,KAAKA,iBAAA,EAAW;AACtB,IAAA,MAAM,GAAA,uBAAU,IAAA,EAAK;AACrB,IAAA,MAAM,YAAA,GAAe,MAAM,IAAA,CAAK,YAAA,CAAa,KAAK,QAAQ,CAAA;AAC1D,IAAA,MAAM,IAAA,GAAO;AAAA,MACX,GAAA,EAAK,EAAA;AAAA,MACL,IAAA,EAAM,KAAK,IAAA,IAAQ,IAAA;AAAA,MACnB,KAAA,EAAO,IAAA,CAAK,KAAA,CAAM,WAAA,EAAY;AAAA,MAC9B,YAAA;AAAA,MACA,IAAA,EAAM,KAAK,IAAA,IAAQ,UAAA;AAAA,MACnB,QAAA,EAAU,KAAK,QAAA,IAAY,IAAA;AAAA,MAC3B,aAAA,EAAe,KAAA;AAAA,MACf,MAAA,EAAQ,KAAA;AAAA,MACR,SAAA,EAAW,IAAA;AAAA,MACX,mBAAA,EAAqB,CAAA;AAAA,MACrB,SAAA,EAAW,GAAA;AAAA,MACX,SAAA,EAAW;AAAA,KACb;AACA,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA,CAAE,UAAU,IAAI,CAAA;AACtC,IAAA,OAAO,IAAA,CAAK,cAAc,IAAI,CAAA;AAAA,EAChC;AAAA,EAEA,MAAM,gBAAgB,KAAA,EAAyC;AAC7D,IAAA,MAAM,GAAA,GAAM,MAAM,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA,CAAE,OAAA,CAAQ,EAAE,KAAA,EAAO,KAAA,CAAM,WAAA,EAAY,EAAG,CAAA;AAC1E,IAAA,OAAO,GAAA,GAAM,IAAA,CAAK,aAAA,CAAc,GAAG,CAAA,GAAI,IAAA;AAAA,EACzC;AAAA,EAEA,MAAM,aAAa,EAAA,EAAsC;AACvD,IAAA,MAAM,GAAA,GAAM,MAAM,IAAA,CAAK,GAAA,CAAI,OAAO,EAAE,OAAA,CAAQ,EAAE,GAAA,EAAK,EAAA,EAAI,CAAA;AACvD,IAAA,OAAO,GAAA,GAAM,IAAA,CAAK,aAAA,CAAc,GAAG,CAAA,GAAI,IAAA;AAAA,EACzC;AAAA,EAEA,MAAM,UAAA,CACJ,EAAA,EACA,IAAA,EAC0B;AAC1B,IAAA,MAAM,OAAA,GAAmC,EAAE,SAAA,kBAAW,IAAI,MAAK,EAAE;AACjE,IAAA,IAAI,IAAA,CAAK,IAAA,KAAS,MAAA,EAAW,OAAA,CAAQ,OAAO,IAAA,CAAK,IAAA;AACjD,IAAA,IAAI,IAAA,CAAK,KAAA,KAAU,MAAA,EAAW,OAAA,CAAQ,QAAQ,IAAA,CAAK,KAAA;AACnD,IAAA,IAAI,IAAA,CAAK,YAAA,KAAiB,MAAA,EAAW,OAAA,CAAQ,eAAe,IAAA,CAAK,YAAA;AACjE,IAAA,IAAI,IAAA,CAAK,IAAA,KAAS,MAAA,EAAW,OAAA,CAAQ,OAAO,IAAA,CAAK,IAAA;AACjD,IAAA,IAAI,IAAA,CAAK,QAAA,KAAa,MAAA,EAAW,OAAA,CAAQ,WAAW,IAAA,CAAK,QAAA;AACzD,IAAA,IAAI,IAAA,CAAK,aAAA,KAAkB,MAAA,EAAW,OAAA,CAAQ,gBAAgB,IAAA,CAAK,aAAA;AACnE,IAAA,IAAI,IAAA,CAAK,MAAA,KAAW,MAAA,EAAW,OAAA,CAAQ,SAAS,IAAA,CAAK,MAAA;AACrD,IAAA,IAAI,IAAA,CAAK,SAAA,KAAc,MAAA,EAAW,OAAA,CAAQ,SAAA,GAAY,IAAA,CAAK,SAAA,GAAY,IAAI,IAAA,CAAK,IAAA,CAAK,SAAS,CAAA,GAAI,IAAA;AAClG,IAAA,IAAI,IAAA,CAAK,mBAAA,KAAwB,MAAA,EAAW,OAAA,CAAQ,sBAAsB,IAAA,CAAK,mBAAA;AAE/E,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA,CAAE,gBAAA;AAAA,MACrC,EAAE,KAAK,EAAA,EAAG;AAAA,MACV,EAAE,MAAM,OAAA,EAAQ;AAAA,MAChB,EAAE,gBAAgB,OAAA;AAAQ,KAC5B;AACA,IAAA,OAAO,MAAA,GAAS,IAAA,CAAK,aAAA,CAAc,MAAM,CAAA,GAAI,IAAA;AAAA,EAC/C;AAAA,EAEA,MAAM,WAAW,EAAA,EAA8B;AAC7C,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,GAAA,CAAI,OAAO,EAAE,SAAA,CAAU,EAAE,GAAA,EAAK,EAAA,EAAI,CAAA;AAC5D,IAAA,OAAO,OAAO,YAAA,GAAe,CAAA;AAAA,EAC/B;AAAA,EAEA,MAAM,cAAA,CACJ,KAAA,EACA,QAAA,EAC0B;AAC1B,IAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,eAAA,CAAgB,KAAK,CAAA;AAC7C,IAAA,IAAI,CAAC,MAAM,OAAO,IAAA;AAClB,IAAA,MAAM,GAAA,GAAM,MAAM,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA,CAAE,OAAA;AAAA,MAClC,EAAE,KAAA,EAAO,KAAA,CAAM,WAAA,EAAY,EAAE;AAAA,MAC7B,EAAE,UAAA,EAAY,EAAE,YAAA,EAAc,GAAE;AAAE,KACpC;AACA,IAAA,IAAI,CAAC,GAAA,EAAK,YAAA,EAAc,OAAO,IAAA;AAC/B,IAAA,MAAM,QAAQ,MAAMC,uBAAA,CAAO,OAAA,CAAQ,QAAA,EAAU,IAAI,YAAY,CAAA;AAC7D,IAAA,OAAO,QAAQ,IAAA,GAAO,IAAA;AAAA,EACxB;AAAA,EAEA,MAAM,aAAa,QAAA,EAAmC;AACpD,IAAA,OAAOA,uBAAA,CAAO,IAAA,CAAK,QAAA,EAAU,EAAE,CAAA;AAAA,EACjC;AAAA,EAEA,MAAM,aAAA,CACJ,MAAA,EACA,IAAA,EACkB;AAClB,IAAA,MAAM,KAAKD,iBAAA,EAAW;AACtB,IAAA,MAAM,KAAA,GAAQE,kBAAA,CAAY,EAAE,CAAA,CAAE,SAAS,WAAW,CAAA;AAClD,IAAA,MAAM,YAAA,GAAeA,kBAAA,CAAY,EAAE,CAAA,CAAE,SAAS,WAAW,CAAA;AACzD,IAAA,MAAM,GAAA,uBAAU,IAAA,EAAK;AACrB,IAAA,MAAM,SAAA,GAAY,IAAI,IAAA,CAAK,GAAA,CAAI,SAAQ,GAAI,IAAA,CAAK,aAAa,GAAI,CAAA;AAEjE,IAAA,MAAM,OAAA,GAAU;AAAA,MACd,GAAA,EAAK,EAAA;AAAA,MACL,MAAA;AAAA,MACA,KAAA;AAAA,MACA,YAAA;AAAA,MACA,SAAA,EAAW,MAAM,SAAA,IAAa,IAAA;AAAA,MAC9B,SAAA,EAAW,MAAM,SAAA,IAAa,IAAA;AAAA,MAC9B,SAAA;AAAA,MACA,SAAA,EAAW;AAAA,KACb;AAEA,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,UAAU,CAAA,CAAE,UAAU,OAAO,CAAA;AAC5C,IAAA,OAAO,IAAA,CAAK,aAAa,OAAO,CAAA;AAAA,EAClC;AAAA,EAEA,MAAM,mBAAmB,KAAA,EAAwC;AAC/D,IAAA,MAAM,MAAM,MAAM,IAAA,CAAK,GAAA,CAAI,UAAU,EAAE,OAAA,CAAQ;AAAA,MAC7C,KAAA;AAAA,MACA,SAAA,EAAW,EAAE,GAAA,kBAAK,IAAI,MAAK;AAAE,KAC9B,CAAA;AACD,IAAA,OAAO,GAAA,GAAM,IAAA,CAAK,YAAA,CAAa,GAAG,CAAA,GAAI,IAAA;AAAA,EACxC;AAAA,EAEA,MAAM,0BACJ,YAAA,EACyB;AACzB,IAAA,MAAM,MAAM,MAAM,IAAA,CAAK,GAAA,CAAI,UAAU,EAAE,OAAA,CAAQ;AAAA,MAC7C,YAAA;AAAA,MACA,SAAA,EAAW,EAAE,GAAA,kBAAK,IAAI,MAAK;AAAE,KAC9B,CAAA;AACD,IAAA,OAAO,GAAA,GAAM,IAAA,CAAK,YAAA,CAAa,GAAG,CAAA,GAAI,IAAA;AAAA,EACxC;AAAA,EAEA,MAAM,cAAc,SAAA,EAAqC;AACvD,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,GAAA,CAAI,UAAU,EAAE,SAAA,CAAU,EAAE,GAAA,EAAK,SAAA,EAAW,CAAA;AACtE,IAAA,OAAO,OAAO,YAAA,GAAe,CAAA;AAAA,EAC/B;AAAA,EAEA,MAAM,mBAAmB,MAAA,EAAiC;AACxD,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,GAAA,CAAI,UAAU,CAAA,CAAE,UAAA,CAAW,EAAE,MAAA,EAAQ,CAAA;AAC/D,IAAA,OAAO,MAAA,CAAO,YAAA;AAAA,EAChB;AAAA,EAEA,MAAM,WAAA,GAAgC;AACpC,IAAA,MAAM,QAAQ,MAAM,IAAA,CAAK,GAAA,CAAI,OAAO,EAAE,cAAA,EAAe;AACrD,IAAA,OAAO,KAAA,GAAQ,CAAA;AAAA,EACjB;AAAA,EAEA,MAAM,oBAAA,CACJ,MAAA,EACA,YAAA,EACe;AACf,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,kBAAkB,CAAA,CAAE,SAAA,CAAU;AAAA,MAC3C,MAAA;AAAA,MACA,YAAA;AAAA,MACA,SAAA,sBAAe,IAAA;AAAK,KACrB,CAAA;AAAA,EACH;AAAA,EAEA,MAAM,kBAAA,CACJ,MAAA,EACA,KAAA,GAAgB,CAAA,EACG;AACnB,IAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,GAAA,CAAI,kBAAkB,CAAA,CAC3C,IAAA,CAAK,EAAE,MAAA,EAAQ,EACf,IAAA,CAAK,EAAE,WAAW,EAAA,EAAI,EACtB,KAAA,CAAM,KAAK,EACX,OAAA,EAAQ;AACX,IAAA,OAAO,IAAA,CAAK,GAAA,CAAI,CAAC,CAAA,KAAW,EAAE,YAAY,CAAA;AAAA,EAC5C;AAAA,EAEA,MAAM,mBAAA,CACJ,QAAA,EACA,MAAA,EACA,eAAuB,CAAA,EACL;AAClB,IAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,kBAAA,CAAmB,QAAQ,YAAY,CAAA;AAClE,IAAA,KAAA,MAAW,QAAQ,OAAA,EAAS;AAC1B,MAAA,IAAI,MAAMD,uBAAA,CAAO,OAAA,CAAQ,QAAA,EAAU,IAAI,CAAA,EAAG;AACxC,QAAA,OAAO,IAAA;AAAA,MACT;AAAA,IACF;AACA,IAAA,OAAO,KAAA;AAAA,EACT;AAAA,EAEA,MAAM,cACJ,MAAA,EAC8C;AAC9C,IAAA,MAAM;AAAA,MACJ,KAAA,GAAQ,EAAA;AAAA,MACR,MAAA,GAAS,CAAA;AAAA,MACT,MAAA;AAAA,MACA,MAAA;AAAA,MACA,QAAA;AAAA,MACA,UAAA;AAAA,MACA,OAAA;AAAA,MACA,SAAA;AAAA,MACA;AAAA,KACF,GAAI,MAAA;AAEJ,IAAA,MAAM,QAA6B,EAAC;AACpC,IAAA,IAAI,MAAA,QAAc,MAAA,GAAS,MAAA;AAC3B,IAAA,IAAI,MAAA,EAAQ;AACV,MAAA,IAAI,KAAA,CAAM,OAAA,CAAQ,MAAM,CAAA,EAAG;AACzB,QAAA,KAAA,CAAM,MAAA,GAAS,EAAE,GAAA,EAAK,MAAA,EAAO;AAAA,MAC/B,CAAA,MAAO;AACL,QAAA,KAAA,CAAM,MAAA,GAAS,MAAA;AAAA,MACjB;AAAA,IACF;AACA,IAAA,IAAI,QAAA,QAAgB,QAAA,GAAW,QAAA;AAC/B,IAAA,IAAI,UAAA,QAAkB,UAAA,GAAa,UAAA;AACnC,IAAA,IAAI,OAAA,KAAY,MAAA,EAAW,KAAA,CAAM,OAAA,GAAU,OAAA;AAC3C,IAAA,IAAI,aAAa,OAAA,EAAS;AACxB,MAAA,KAAA,CAAM,YAAY,EAAC;AACnB,MAAA,IAAI,SAAA,EAAW,KAAA,CAAM,SAAA,CAAU,IAAA,GAAO,SAAA;AACtC,MAAA,IAAI,OAAA,EAAS,KAAA,CAAM,SAAA,CAAU,IAAA,GAAO,OAAA;AAAA,IACtC;AAEA,IAAA,MAAM,QAAQ,MAAM,IAAA,CAAK,IAAI,YAAY,CAAA,CAAE,eAAe,KAAK,CAAA;AAC/D,IAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,GAAA,CAAI,YAAY,CAAA,CACrC,IAAA,CAAK,KAAK,CAAA,CACV,IAAA,CAAK,EAAE,SAAA,EAAW,EAAA,EAAI,CAAA,CACtB,IAAA,CAAK,MAAM,CAAA,CACX,KAAA,CAAM,KAAK,CAAA,CACX,OAAA,EAAQ;AAEX,IAAA,OAAO;AAAA,MACL,IAAA,EAAM,IAAA,CAAK,GAAA,CAAI,CAAC,GAAA,MAAc;AAAA,QAC5B,IAAI,GAAA,CAAI,GAAA;AAAA,QACR,WAAW,GAAA,CAAI,SAAA;AAAA,QACf,QAAQ,GAAA,CAAI,MAAA;AAAA,QACZ,MAAA,EAAQ,IAAI,MAAA,IAAU,MAAA;AAAA,QACtB,SAAA,EAAW,IAAI,SAAA,IAAa,MAAA;AAAA,QAC5B,IAAA,EAAM,IAAI,IAAA,IAAQ,MAAA;AAAA,QAClB,UAAU,GAAA,CAAI,QAAA;AAAA,QACd,UAAA,EAAY,IAAI,UAAA,IAAc,MAAA;AAAA,QAC9B,OAAA,EAAS,IAAI,OAAA,IAAW,MAAA;AAAA,QACxB,SAAA,EAAW,IAAI,SAAA,IAAa,MAAA;AAAA,QAC5B,SAAA,EAAW,IAAI,SAAA,IAAa,MAAA;AAAA,QAC5B,SAAS,GAAA,CAAI,OAAA;AAAA,QACb,KAAA,EAAO,IAAI,KAAA,IAAS,MAAA;AAAA,QACpB,QAAA,EAAU,IAAI,QAAA,IAAY;AAAA,OAC5B,CAAE,CAAA;AAAA,MACF;AAAA,KACF;AAAA,EACF;AAAA,EAEA,MAAM,eACJ,IAAA,EACmB;AACnB,IAAA,MAAM,KAAKD,iBAAA,EAAW;AACtB,IAAA,MAAM,SAAA,uBAAgB,IAAA,EAAK;AAE3B,IAAA,MAAM,IAAA,CAAK,GAAA,CAAI,YAAY,CAAA,CAAE,SAAA,CAAU;AAAA,MACrC,GAAA,EAAK,EAAA;AAAA,MACL,QAAQ,IAAA,CAAK,MAAA;AAAA,MACb,MAAA,EAAQ,KAAK,MAAA,IAAU,IAAA;AAAA,MACvB,SAAA,EAAW,KAAK,SAAA,IAAa,IAAA;AAAA,MAC7B,IAAA,EAAM,KAAK,IAAA,IAAQ,IAAA;AAAA,MACnB,UAAU,IAAA,CAAK,QAAA;AAAA,MACf,UAAA,EAAY,KAAK,UAAA,IAAc,IAAA;AAAA,MAC/B,OAAA,EAAS,KAAK,OAAA,IAAW,IAAA;AAAA,MACzB,SAAA,EAAW,KAAK,SAAA,IAAa,IAAA;AAAA,MAC7B,SAAA,EAAW,KAAK,SAAA,IAAa,IAAA;AAAA,MAC7B,SAAS,IAAA,CAAK,OAAA;AAAA,MACd,KAAA,EAAO,KAAK,KAAA,IAAS,IAAA;AAAA,MACrB,QAAA,EAAU,KAAK,QAAA,IAAY,IAAA;AAAA,MAC3B;AAAA,KACD,CAAA;AAED,IAAA,OAAO;AAAA,MACL,GAAG,IAAA;AAAA,MACH,EAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA,EAEQ,cAAc,GAAA,EAAoB;AACxC,IAAA,OAAO;AAAA,MACL,IAAI,GAAA,CAAI,GAAA;AAAA,MACR,IAAA,EAAM,IAAI,IAAA,IAAQ,MAAA;AAAA,MAClB,OAAO,GAAA,CAAI,KAAA;AAAA,MACX,YAAA,EAAc,IAAI,YAAA,IAAgB,MAAA;AAAA,MAClC,MAAM,GAAA,CAAI,IAAA;AAAA,MACV,QAAA,EAAU,IAAI,QAAA,IAAY,MAAA;AAAA,MAC1B,aAAA,EAAe,IAAI,aAAA,IAAiB,KAAA;AAAA,MACpC,MAAA,EAAQ,IAAI,MAAA,IAAU,KAAA;AAAA,MACtB,WAAW,GAAA,CAAI,SAAA,EAAW,WAAA,IAAc,IAAK,IAAI,SAAA,IAAa,MAAA;AAAA,MAC9D,mBAAA,EAAqB,IAAI,mBAAA,IAAuB,CAAA;AAAA,MAChD,SAAA,EAAW,GAAA,CAAI,SAAA,EAAW,WAAA,QAAmB,GAAA,CAAI,SAAA;AAAA,MACjD,SAAA,EAAW,GAAA,CAAI,SAAA,EAAW,WAAA,QAAmB,GAAA,CAAI;AAAA,KACnD;AAAA,EACF;AAAA,EAEQ,aAAa,GAAA,EAAmB;AACtC,IAAA,OAAO;AAAA,MACL,IAAI,GAAA,CAAI,GAAA;AAAA,MACR,QAAQ,GAAA,CAAI,MAAA;AAAA,MACZ,OAAO,GAAA,CAAI,KAAA;AAAA,MACX,YAAA,EAAc,IAAI,YAAA,IAAgB,MAAA;AAAA,MAClC,SAAA,EAAW,GAAA,CAAI,SAAA,EAAW,WAAA,QAAmB,GAAA,CAAI,SAAA;AAAA,MACjD,SAAA,EAAW,GAAA,CAAI,SAAA,EAAW,WAAA,QAAmB,GAAA,CAAI,SAAA;AAAA,MACjD,SAAA,EAAW,IAAI,SAAA,IAAa,MAAA;AAAA,MAC5B,SAAA,EAAW,IAAI,SAAA,IAAa;AAAA,KAC9B;AAAA,EACF;AAAA,EAEA,MAAM,6BAA6B,MAAA,EAA6D;AAC9F,IAAA,MAAM,KAAA,GAAQE,kBAAA,CAAY,EAAE,CAAA,CAAE,SAAS,KAAK,CAAA;AAC5C,IAAA,MAAM,SAAA,GAAY,IAAI,IAAA,CAAK,IAAA,CAAK,KAAI,GAAI,EAAA,GAAK,EAAA,GAAK,EAAA,GAAK,GAAI,CAAA;AAE3D,IAAA,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,qBAAqB,EAAE,SAAA,CAAU;AAAA,MACxD,QAAQ,IAAA,CAAK,MAAM,OAAO,SAAS,CAAA,EAAG,SAAS,MAAM,CAAA;AAAA,MACrD,KAAA;AAAA,MACA,SAAA;AAAA,MACA,SAAA,sBAAe,IAAA;AAAK,KACrB,CAAA;AAED,IAAA,OAAO,EAAE,OAAO,SAAA,EAAU;AAAA,EAC5B;AAAA,EAEA,MAAM,iBAAiB,KAAA,EAA+E;AACpG,IAAA,MAAM,YAAA,GAAe,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,qBAAqB,CAAA,CAAE,OAAA,CAAQ,EAAE,KAAA,EAAO,CAAA;AAEtF,IAAA,IAAI,CAAC,YAAA,EAAc;AACjB,MAAA,OAAO,EAAE,OAAA,EAAS,KAAA,EAAO,KAAA,EAAO,4BAAA,EAA6B;AAAA,IAC/D;AAEA,IAAA,IAAI,YAAA,CAAa,SAAA,mBAAY,IAAI,IAAA,EAAK,EAAG;AACvC,MAAA,OAAO,EAAE,OAAA,EAAS,KAAA,EAAO,KAAA,EAAO,gCAAA,EAAiC;AAAA,IACnE;AAEA,IAAA,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,OAAO,CAAA,CAAE,SAAA;AAAA,MAChC,EAAE,GAAA,EAAK,YAAA,CAAa,MAAA,EAAO;AAAA,MAC3B,EAAE,IAAA,EAAM,EAAE,aAAA,EAAe,MAAK;AAAE,KAClC;AAEA,IAAA,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,qBAAqB,CAAA,CAAE,UAAU,EAAE,GAAA,EAAK,YAAA,CAAa,GAAA,EAAK,CAAA;AAEnF,IAAA,OAAO,EAAE,OAAA,EAAS,IAAA,EAAM,QAAQ,YAAA,CAAa,MAAA,CAAO,UAAS,EAAE;AAAA,EACjE;AAAA,EAEA,MAAM,yBAAyB,KAAA,EAA4E;AACzG,IAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,eAAA,CAAgB,KAAK,CAAA;AAC7C,IAAA,IAAI,CAAC,IAAA,EAAM;AACT,MAAA,OAAO,EAAE,OAAO,EAAA,EAAI,SAAA,sBAAe,IAAA,EAAK,EAAG,OAAO,gBAAA,EAAiB;AAAA,IACrE;AAEA,IAAA,MAAM,KAAA,GAAQA,kBAAA,CAAY,EAAE,CAAA,CAAE,SAAS,KAAK,CAAA;AAC5C,IAAA,MAAM,SAAA,GAAY,IAAI,IAAA,CAAK,IAAA,CAAK,KAAI,GAAI,EAAA,GAAK,KAAK,GAAI,CAAA;AAEtD,IAAA,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,iBAAiB,EAAE,SAAA,CAAU;AAAA,MACpD,MAAA,EAAQ,KAAK,MAAM,OAAO,SAAS,CAAA,EAAG,QAAA,CAAS,KAAK,EAAE,CAAA;AAAA,MACtD,KAAA;AAAA,MACA,SAAA;AAAA,MACA,SAAA,sBAAe,IAAA;AAAK,KACrB,CAAA;AAED,IAAA,OAAO,EAAE,OAAO,SAAA,EAAU;AAAA,EAC5B;AAAA,EAEA,MAAM,sBAAA,CAAuB,KAAA,EAAe,WAAA,EAAoE;AAC9G,IAAA,MAAM,KAAA,GAAQ,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,iBAAiB,CAAA,CAAE,OAAA,CAAQ,EAAE,KAAA,EAAO,CAAA;AAE3E,IAAA,IAAI,CAAC,KAAA,EAAO;AACV,MAAA,OAAO,EAAE,OAAA,EAAS,KAAA,EAAO,KAAA,EAAO,qBAAA,EAAsB;AAAA,IACxD;AAEA,IAAA,IAAI,KAAA,CAAM,SAAA,mBAAY,IAAI,IAAA,EAAK,EAAG;AAChC,MAAA,OAAO,EAAE,OAAA,EAAS,KAAA,EAAO,KAAA,EAAO,yBAAA,EAA0B;AAAA,IAC5D;AAEA,IAAA,IAAI,MAAM,MAAA,EAAQ;AAChB,MAAA,OAAO,EAAE,OAAA,EAAS,KAAA,EAAO,KAAA,EAAO,mCAAA,EAAoC;AAAA,IACtE;AAEA,IAAA,MAAM,YAAA,GAAe,MAAM,IAAA,CAAK,YAAA,CAAa,WAAW,CAAA;AAExD,IAAA,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,OAAO,CAAA,CAAE,SAAA;AAAA,MAChC,EAAE,GAAA,EAAK,KAAA,CAAM,MAAA,EAAO;AAAA,MACpB,EAAE,MAAM,EAAE,YAAA,EAAc,2BAAW,IAAI,IAAA,IAAO;AAAE,KAClD;AAEA,IAAA,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,iBAAiB,CAAA,CAAE,SAAA;AAAA,MAC1C,EAAE,GAAA,EAAK,KAAA,CAAM,GAAA,EAAI;AAAA,MACjB,EAAE,IAAA,EAAM,EAAE,wBAAQ,IAAI,IAAA,IAAO;AAAE,KACjC;AAEA,IAAA,MAAM,IAAA,CAAK,EAAA,CAAG,UAAA,CAAW,UAAU,CAAA,CAAE,WAAW,EAAE,MAAA,EAAQ,KAAA,CAAM,MAAA,EAAQ,CAAA;AAExE,IAAA,OAAO,EAAE,SAAS,IAAA,EAAK;AAAA,EACzB;AACF;AAEO,SAAS,yBACd,OAAA,EACoB;AACpB,EAAA,OAAO,IAAI,mBAAmB,OAAO,CAAA;AACvC","file":"chunk-4DA7QPLA.cjs","sourcesContent":["import bcrypt from \"bcryptjs\";\nimport { randomBytes, randomUUID } from \"crypto\";\nimport type {\n AuthAdapter,\n AuthUser,\n Session,\n UserRole,\n} from \"../../auth/types.js\";\nimport type {\n AuditLog,\n AuditLogFilter,\n} from \"../../auth/security/audit-log.js\";\n\nexport interface MongoDBAuthAdapterOptions {\n db: any;\n collectionPrefix?: string;\n sessionTTL?: number;\n refreshTokenTTL?: number;\n}\n\nexport class MongoDBAuthAdapter implements AuthAdapter {\n private db: any;\n private prefix: string;\n private sessionTTL: number;\n private refreshTokenTTL: number;\n private indexesEnsured = false;\n\n constructor(options: MongoDBAuthAdapterOptions) {\n this.db = options.db;\n this.prefix = options.collectionPrefix || \"\";\n this.sessionTTL = options.sessionTTL || 86400;\n this.refreshTokenTTL = options.refreshTokenTTL || 604800;\n }\n\n private col(name: string): any {\n return this.db.collection(`${this.prefix}${name}`);\n }\n\n async connect(): Promise<void> {\n if (!this.indexesEnsured) {\n await this.ensureIndexes();\n }\n }\n\n async disconnect(): Promise<void> {\n }\n\n private async ensureIndexes(): Promise<void> {\n await this.col(\"users\").createIndex({ email: 1 }, { unique: true });\n await this.col(\"users\").createIndex({ tenantId: 1 });\n await this.col(\"users\").createIndex({ role: 1 });\n\n await this.col(\"sessions\").createIndex({ token: 1 }, { unique: true });\n await this.col(\"sessions\").createIndex({ refreshToken: 1 });\n await this.col(\"sessions\").createIndex({ userId: 1 });\n await this.col(\"sessions\").createIndex({ expiresAt: 1 }, { expireAfterSeconds: 0 });\n\n await this.col(\"audit_logs\").createIndex({ timestamp: -1 });\n await this.col(\"audit_logs\").createIndex({ userId: 1 });\n await this.col(\"audit_logs\").createIndex({ action: 1 });\n await this.col(\"audit_logs\").createIndex({ resource: 1 });\n\n await this.col(\"password_history\").createIndex({ userId: 1, createdAt: -1 });\n\n await this.col(\"lockouts\").createIndex({ userId: 1 }, { unique: true });\n await this.col(\"lockouts\").createIndex({ lockedUntil: 1 });\n\n this.indexesEnsured = true;\n }\n\n async createUser(data: {\n email: string;\n password: string;\n name?: string;\n role?: UserRole;\n tenantId?: string;\n }): Promise<AuthUser> {\n const id = randomUUID();\n const now = new Date();\n const passwordHash = await this.hashPassword(data.password);\n const user = {\n _id: id,\n name: data.name || null,\n email: data.email.toLowerCase(),\n passwordHash,\n role: data.role || \"customer\",\n tenantId: data.tenantId || null,\n emailVerified: false,\n locked: false,\n lastLogin: null,\n failedLoginAttempts: 0,\n createdAt: now,\n updatedAt: now,\n };\n await this.col(\"users\").insertOne(user);\n return this.docToAuthUser(user);\n }\n\n async findUserByEmail(email: string): Promise<AuthUser | null> {\n const doc = await this.col(\"users\").findOne({ email: email.toLowerCase() });\n return doc ? this.docToAuthUser(doc) : null;\n }\n\n async findUserById(id: string): Promise<AuthUser | null> {\n const doc = await this.col(\"users\").findOne({ _id: id });\n return doc ? this.docToAuthUser(doc) : null;\n }\n\n async updateUser(\n id: string,\n data: Partial<AuthUser>,\n ): Promise<AuthUser | null> {\n const setData: Record<string, unknown> = { updatedAt: new Date() };\n if (data.name !== undefined) setData.name = data.name;\n if (data.email !== undefined) setData.email = data.email;\n if (data.passwordHash !== undefined) setData.passwordHash = data.passwordHash;\n if (data.role !== undefined) setData.role = data.role;\n if (data.tenantId !== undefined) setData.tenantId = data.tenantId;\n if (data.emailVerified !== undefined) setData.emailVerified = data.emailVerified;\n if (data.locked !== undefined) setData.locked = data.locked;\n if (data.lastLogin !== undefined) setData.lastLogin = data.lastLogin ? new Date(data.lastLogin) : null;\n if (data.failedLoginAttempts !== undefined) setData.failedLoginAttempts = data.failedLoginAttempts;\n\n const result = await this.col(\"users\").findOneAndUpdate(\n { _id: id },\n { $set: setData },\n { returnDocument: \"after\" },\n );\n return result ? this.docToAuthUser(result) : null;\n }\n\n async deleteUser(id: string): Promise<boolean> {\n const result = await this.col(\"users\").deleteOne({ _id: id });\n return result.deletedCount > 0;\n }\n\n async verifyPassword(\n email: string,\n password: string,\n ): Promise<AuthUser | null> {\n const user = await this.findUserByEmail(email);\n if (!user) return null;\n const doc = await this.col(\"users\").findOne(\n { email: email.toLowerCase() },\n { projection: { passwordHash: 1 } },\n );\n if (!doc?.passwordHash) return null;\n const valid = await bcrypt.compare(password, doc.passwordHash);\n return valid ? user : null;\n }\n\n async hashPassword(password: string): Promise<string> {\n return bcrypt.hash(password, 12);\n }\n\n async createSession(\n userId: string,\n data?: { ipAddress?: string; userAgent?: string },\n ): Promise<Session> {\n const id = randomUUID();\n const token = randomBytes(32).toString(\"base64url\");\n const refreshToken = randomBytes(32).toString(\"base64url\");\n const now = new Date();\n const expiresAt = new Date(now.getTime() + this.sessionTTL * 1000);\n\n const session = {\n _id: id,\n userId,\n token,\n refreshToken,\n ipAddress: data?.ipAddress || null,\n userAgent: data?.userAgent || null,\n expiresAt,\n createdAt: now,\n };\n\n await this.col(\"sessions\").insertOne(session);\n return this.docToSession(session);\n }\n\n async findSessionByToken(token: string): Promise<Session | null> {\n const doc = await this.col(\"sessions\").findOne({\n token,\n expiresAt: { $gt: new Date() },\n });\n return doc ? this.docToSession(doc) : null;\n }\n\n async findSessionByRefreshToken(\n refreshToken: string,\n ): Promise<Session | null> {\n const doc = await this.col(\"sessions\").findOne({\n refreshToken,\n expiresAt: { $gt: new Date() },\n });\n return doc ? this.docToSession(doc) : null;\n }\n\n async deleteSession(sessionId: string): Promise<boolean> {\n const result = await this.col(\"sessions\").deleteOne({ _id: sessionId });\n return result.deletedCount > 0;\n }\n\n async deleteUserSessions(userId: string): Promise<number> {\n const result = await this.col(\"sessions\").deleteMany({ userId });\n return result.deletedCount;\n }\n\n async hasAnyUsers(): Promise<boolean> {\n const count = await this.col(\"users\").countDocuments();\n return count > 0;\n }\n\n async addPasswordToHistory(\n userId: string,\n passwordHash: string,\n ): Promise<void> {\n await this.col(\"password_history\").insertOne({\n userId,\n passwordHash,\n createdAt: new Date(),\n });\n }\n\n async getPasswordHistory(\n userId: string,\n count: number = 5,\n ): Promise<string[]> {\n const docs = await this.col(\"password_history\")\n .find({ userId })\n .sort({ createdAt: -1 })\n .limit(count)\n .toArray();\n return docs.map((d: any) => d.passwordHash);\n }\n\n async isPasswordInHistory(\n password: string,\n userId: string,\n historyCount: number = 5,\n ): Promise<boolean> {\n const history = await this.getPasswordHistory(userId, historyCount);\n for (const hash of history) {\n if (await bcrypt.compare(password, hash)) {\n return true;\n }\n }\n return false;\n }\n\n async findAuditLogs(\n filter: AuditLogFilter,\n ): Promise<{ logs: AuditLog[]; total: number }> {\n const {\n limit = 50,\n offset = 0,\n userId,\n action,\n resource,\n resourceId,\n success,\n startDate,\n endDate,\n } = filter;\n\n const query: Record<string, any> = {};\n if (userId) query.userId = userId;\n if (action) {\n if (Array.isArray(action)) {\n query.action = { $in: action };\n } else {\n query.action = action;\n }\n }\n if (resource) query.resource = resource;\n if (resourceId) query.resourceId = resourceId;\n if (success !== undefined) query.success = success;\n if (startDate || endDate) {\n query.timestamp = {};\n if (startDate) query.timestamp.$gte = startDate;\n if (endDate) query.timestamp.$lte = endDate;\n }\n\n const total = await this.col(\"audit_logs\").countDocuments(query);\n const docs = await this.col(\"audit_logs\")\n .find(query)\n .sort({ timestamp: -1 })\n .skip(offset)\n .limit(limit)\n .toArray();\n\n return {\n logs: docs.map((doc: any) => ({\n id: doc._id,\n timestamp: doc.timestamp,\n action: doc.action as AuditLog[\"action\"],\n userId: doc.userId || undefined,\n userEmail: doc.userEmail || undefined,\n role: doc.role || undefined,\n resource: doc.resource,\n resourceId: doc.resourceId || undefined,\n changes: doc.changes || undefined,\n ipAddress: doc.ipAddress || undefined,\n userAgent: doc.userAgent || undefined,\n success: doc.success,\n error: doc.error || undefined,\n metadata: doc.metadata || undefined,\n })),\n total,\n };\n }\n\n async createAuditLog(\n data: Omit<AuditLog, \"id\" | \"timestamp\">,\n ): Promise<AuditLog> {\n const id = randomUUID();\n const timestamp = new Date();\n\n await this.col(\"audit_logs\").insertOne({\n _id: id,\n action: data.action,\n userId: data.userId || null,\n userEmail: data.userEmail || null,\n role: data.role || null,\n resource: data.resource,\n resourceId: data.resourceId || null,\n changes: data.changes || null,\n ipAddress: data.ipAddress || null,\n userAgent: data.userAgent || null,\n success: data.success,\n error: data.error || null,\n metadata: data.metadata || null,\n timestamp,\n });\n\n return {\n ...data,\n id,\n timestamp,\n };\n }\n\n private docToAuthUser(doc: any): AuthUser {\n return {\n id: doc._id,\n name: doc.name || undefined,\n email: doc.email,\n passwordHash: doc.passwordHash || undefined,\n role: doc.role as UserRole,\n tenantId: doc.tenantId || undefined,\n emailVerified: doc.emailVerified || false,\n locked: doc.locked || false,\n lastLogin: doc.lastLogin?.toISOString?.() || doc.lastLogin || undefined,\n failedLoginAttempts: doc.failedLoginAttempts || 0,\n createdAt: doc.createdAt?.toISOString?.() || doc.createdAt,\n updatedAt: doc.updatedAt?.toISOString?.() || doc.updatedAt,\n };\n }\n\n private docToSession(doc: any): Session {\n return {\n id: doc._id,\n userId: doc.userId,\n token: doc.token,\n refreshToken: doc.refreshToken || undefined,\n expiresAt: doc.expiresAt?.toISOString?.() || doc.expiresAt,\n createdAt: doc.createdAt?.toISOString?.() || doc.createdAt,\n ipAddress: doc.ipAddress || undefined,\n userAgent: doc.userAgent || undefined,\n };\n }\n\n async createEmailVerificationToken(userId: string): Promise<{ token: string; expiresAt: Date }> {\n const token = randomBytes(32).toString(\"hex\");\n const expiresAt = new Date(Date.now() + 24 * 60 * 60 * 1000);\n\n await this.db.collection(\"email_verifications\").insertOne({\n userId: new (await import(\"mongodb\")).ObjectId(userId),\n token,\n expiresAt,\n createdAt: new Date(),\n });\n\n return { token, expiresAt };\n }\n\n async verifyEmailToken(token: string): Promise<{ success: boolean; userId?: string; error?: string }> {\n const verification = await this.db.collection(\"email_verifications\").findOne({ token });\n\n if (!verification) {\n return { success: false, error: \"Invalid verification token\" };\n }\n\n if (verification.expiresAt < new Date()) {\n return { success: false, error: \"Verification token has expired\" };\n }\n\n await this.db.collection(\"users\").updateOne(\n { _id: verification.userId },\n { $set: { emailVerified: true } }\n );\n\n await this.db.collection(\"email_verifications\").deleteOne({ _id: verification._id });\n\n return { success: true, userId: verification.userId.toString() };\n }\n\n async createPasswordResetToken(email: string): Promise<{ token: string; expiresAt: Date; error?: string }> {\n const user = await this.findUserByEmail(email);\n if (!user) {\n return { token: \"\", expiresAt: new Date(), error: \"User not found\" };\n }\n\n const token = randomBytes(32).toString(\"hex\");\n const expiresAt = new Date(Date.now() + 60 * 60 * 1000);\n\n await this.db.collection(\"password_resets\").insertOne({\n userId: new (await import(\"mongodb\")).ObjectId(user.id),\n token,\n expiresAt,\n createdAt: new Date(),\n });\n\n return { token, expiresAt };\n }\n\n async resetPasswordWithToken(token: string, newPassword: string): Promise<{ success: boolean; error?: string }> {\n const reset = await this.db.collection(\"password_resets\").findOne({ token });\n\n if (!reset) {\n return { success: false, error: \"Invalid reset token\" };\n }\n\n if (reset.expiresAt < new Date()) {\n return { success: false, error: \"Reset token has expired\" };\n }\n\n if (reset.usedAt) {\n return { success: false, error: \"Reset token has already been used\" };\n }\n\n const passwordHash = await this.hashPassword(newPassword);\n\n await this.db.collection(\"users\").updateOne(\n { _id: reset.userId },\n { $set: { passwordHash, updatedAt: new Date() } }\n );\n\n await this.db.collection(\"password_resets\").updateOne(\n { _id: reset._id },\n { $set: { usedAt: new Date() } }\n );\n\n await this.db.collection(\"sessions\").deleteMany({ userId: reset.userId });\n\n return { success: true };\n }\n}\n\nexport function createMongoDBAuthAdapter(\n options: MongoDBAuthAdapterOptions,\n): MongoDBAuthAdapter {\n return new MongoDBAuthAdapter(options);\n}\n"]}