@lifeready/core 0.6.0-beta.1

package/fesm2015/lifeready-core.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"lifeready-core.js","sources":["../../../../projects/core/src/lib/_common/exceptions.ts","../../../../projects/core/src/lib/life-ready.config.ts","../../../../projects/core/src/lib/cryptography/cryptography.types.ts","../../../../projects/core/src/lib/api/time.service.ts","../../../../projects/core/src/lib/cryptography/encryption.service.ts","../../../../projects/core/src/lib/cryptography/web-crypto.service.ts","../../../../projects/core/src/lib/cryptography/key-factory.service.ts","../../../../projects/core/src/lib/api/persist.service.ts","../../../../projects/core/src/lib/cryptography/key.service.ts","../../../../projects/core/src/lib/cryptography/key-graph.service.ts","../../../../projects/core/src/lib/api/lr-apollo.service.ts","../../../../projects/core/src/lib/_common/queries.gql.ts","../../../../projects/core/src/lib/users/profile.gql.ts","../../../../projects/core/src/lib/users/profile.types.ts","../../../../projects/core/src/lib/category/category.gql.ts","../../../../projects/core/src/lib/cryptography/key-meta.service.ts","../../../../projects/core/src/lib/api/contact-card.gql.ts","../../../../projects/core/src/lib/plan/plan.gql.ts","../../../../projects/core/src/lib/plan/plan.service.ts","../../../../projects/core/src/lib/users/profile.service.ts","../../../../projects/core/src/lib/auth/auth.types.ts","../../../../projects/core/src/lib/_common/ast.ts","../../../../projects/core/src/lib/auth/auth.gql.ts","../../../../projects/core/src/lib/auth/idle.types.ts","../../../../projects/core/src/lib/auth/idle.service.ts","../../../../projects/core/src/lib/auth/password.service.ts","../../../../projects/core/src/lib/trusted-parties/tp-password-reset.gql.ts","../../../../projects/core/src/lib/_common/utils.ts","../../../../projects/core/src/lib/_common/run-outside-angular.ts","../../../../projects/core/src/lib/api/query-processor/common-processors.service.ts","../../../../projects/core/src/lib/api/query-processor/tp-password-reset-processor.service.ts","../../../../projects/core/src/lib/api/query-processor/query-processor.service.ts","../../../../projects/core/src/lib/_common/deferred-promise.ts","../../../../projects/core/src/lib/api/lr-graphql/lr-mutation-base.ts","../../../../projects/core/src/lib/api/lr-graphql/lr-mutation.ts","../../../../projects/core/src/lib/api/lr-graphql/lr-merged-mutation.ts","../../../../projects/core/src/lib/api/lr-graphql/lr-graphql.service.ts","../../../../projects/core/src/lib/api/lr-graphql/lr.service.ts","../../../../projects/core/src/lib/auth/life-ready-auth.service.ts","../../../../projects/core/src/lib/api/file.service.ts","../../../../projects/core/src/lib/users/user.gql.ts","../../../../projects/core/src/lib/users/user.service.ts","../../../../projects/core/src/lib/api/key-exchange.gql.ts","../../../../projects/core/src/lib/api/key-exchange.types.ts","../../../../projects/core/src/lib/api/key-exchange.service.ts","../../../../projects/core/src/lib/api/message.service.ts","../../../../projects/core/src/lib/auth/auth.config.ts","../../../../projects/core/src/lib/auth/lbop.service.ts","../../../../projects/core/src/lib/auth/register.service.ts","../../../../projects/core/src/lib/auth/two-factor.service.ts","../../../../projects/core/src/lib/cryptography/slip39.service.ts","../../../../projects/core/src/lib/record/record.gql.ts","../../../../projects/core/src/lib/category/category.types.ts","../../../../projects/core/src/lib/category/category.service.ts","../../../../projects/core/src/lib/category/category-meta.service.ts","../../../../projects/core/src/lib/record/record-attachment.service.ts","../../../../projects/core/src/lib/record/record.types.ts","../../../../projects/core/src/lib/record/record.service.ts","../../../../projects/core/src/lib/record-type/record-type.types.ts","../../../../projects/core/src/lib/record-type/record-type.service.ts","../../../../projects/core/src/lib/trusted-parties/trusted-party.types.ts","../../../../projects/core/src/lib/api/shared-contact-card.service.ts","../../../../projects/core/src/lib/trusted-parties/trusted-party.gql.ts","../../../../projects/core/src/lib/trusted-parties/trusted-party.service.ts","../../../../projects/core/src/lib/scenario/scenario.types.ts","../../../../projects/core/src/lib/scenario/claimants/scenario-claimant.gql.ts","../../../../projects/core/src/lib/scenario/receivers/scenario-receiver.gql.ts","../../../../projects/core/src/lib/scenario/approvals/scenario-approval.gql.ts","../../../../projects/core/src/lib/scenario/scenario.gql.ts","../../../../projects/core/src/lib/scenario/approvals/scenario-approver.service.ts","../../../../projects/core/src/lib/scenario/claimants/scenario-claimant.service.ts","../../../../projects/core/src/lib/scenario/receivers/scenario-receiver.service.ts","../../../../projects/core/src/lib/scenario/scenario.service.ts","../../../../projects/core/src/lib/scenario/scenario-setup.service.ts","../../../../projects/core/src/lib/users/profile-details.service.ts","../../../../projects/core/src/lib/users/user.types.ts","../../../../projects/core/src/lib/life-ready.module.ts","../../../../projects/core/src/lib/plan/plan.types.ts","../../../../projects/core/src/lib/search/search.types.ts","../../../../projects/core/src/lib/search/search.gql.ts","../../../../projects/core/src/lib/search/search.service.ts","../../../../projects/core/src/lib/api/contact-card2.gql.ts","../../../../projects/core/src/lib/api/contact-card2.service.ts","../../../../projects/core/src/lib/api/item2.gql.ts","../../../../projects/core/src/lib/api/item2.service.ts","../../../../projects/core/src/lib/api/key-exchange2.gql.ts","../../../../projects/core/src/lib/api/key-exchange2.service.ts","../../../../projects/core/src/lib/api/shared-contact-card2.gql.ts","../../../../projects/core/src/lib/api/shared-contact-card2.service.ts","../../../../projects/core/src/lib/api/lock.gql.ts","../../../../projects/core/src/lib/api/lock.service.ts","../../../../projects/core/src/lib/trusted-parties/trusted-party2.gql.ts","../../../../projects/core/src/lib/trusted-parties/trusted-party2.service.ts","../../../../projects/core/src/lib/trusted-parties/tp-password-reset.service.ts","../../../../projects/core/src/lib/api/types/graphql.types.ts","../../../../projects/core/src/lib/api/types/lr-graphql.types.ts","../../../../projects/core/src/lib/trusted-parties/tp-password-reset-user.service.ts","../../../../projects/core/src/lib/trusted-parties/tp-password-reset-request.service.ts","../../../../projects/core/src/public-api.ts","../../../../projects/core/src/lifeready-core.ts"],"sourcesContent":["import { GraphQLError } from 'graphql';\r\nimport { debuglog } from 'util';\r\n\r\nexport function handleApolloError(errors: ReadonlyArray<GraphQLError>) {\r\n  if (!errors || !errors.length) return;\r\n\r\n  const lrErrors = errors.map((x) => ({\r\n    code: x.extensions && x.extensions.code,\r\n    source: x.extensions && x.extensions.source,\r\n    message: x.message,\r\n    debug: {\r\n      locations: x.locations as any,\r\n      path: x.path as string[],\r\n    },\r\n  }));\r\n\r\n  throw new LrException(...lrErrors);\r\n}\r\n\r\nexport class LrError {\r\n  code?: string;\r\n  source?: string;\r\n  message: string;\r\n  debug?: {\r\n    locations: {\r\n      line: number;\r\n      column: number;\r\n    }[];\r\n    path: string[];\r\n  };\r\n}\r\n\r\nexport class LrException {\r\n  public errors: LrError[];\r\n\r\n  constructor(...errors: LrError[]) {\r\n    this.errors = errors;\r\n  }\r\n\r\n  public toString() {\r\n    return this.errors.map((t) => JSON.stringify(t, null, 2));\r\n  }\r\n}\r\n\r\nexport enum LrApiErrorCode {\r\n  ARCHIVED_RESOURCE = 'ARCHIVED_RESOURCE',\r\n  BAD_ARGUMENT = 'BAD_ARGUMENT',\r\n  BAD_SIGNATURE = 'BAD_SIGNATURE',\r\n  BAD_STATE = 'BAD_STATE',\r\n  CHANGED_PERMISSIONS = 'CHANGED_PERMISSIONS',\r\n  CONCURRENT_ACCESS = 'CONCURRENT_ACCESS',\r\n  CONFIG_ERROR = 'CONFIG_ERROR',\r\n  CYCLE_DETECTED = 'CYCLE_DETECTED',\r\n  EXPIRED = 'EXPIRED',\r\n  INVALID_TOKEN = 'INVALID_TOKEN',\r\n  INTERNAL_ERROR = 'INTERNAL_ERROR',\r\n  JSON_DECODE_ERROR = 'JSON_DECODE_ERROR',\r\n  KEY_MISMATCH = 'KEY_MISMATCH',\r\n  LIMIT_REACHED = 'LIMIT_REACHED',\r\n  LOCKED = 'LOCKED',\r\n  LOGIC_ERROR = 'LOGIC_ERROR',\r\n  LR_DEBUG_ONLY = 'LR_DEBUG_ONLY',\r\n  MIN_DELAY = 'MIN_DELAY',\r\n  MISSING_FIELD = 'MISSING_FIELD',\r\n  MISSING_FIELD_VALUE = 'MISSING_FIELD_VALUE',\r\n  MISSING_QUERY_PARAM = 'MISSING_QUERY_PARAM',\r\n  NOT_IMPLEMENTED = 'NOT_IMPLEMENTED',\r\n  OBJECT_DOES_NOT_EXIST = 'OBJECT_DOES_NOT_EXIST',\r\n  OBJECT_EXISTS = 'OBJECT_EXISTS',\r\n  RANGE_ERROR = 'RANGE_ERROR',\r\n  TRUSTED_PARTY_NOT_FOUND = 'TRUSTED_PARTY_NOT_FOUND',\r\n  UNAUTHENTICATED_USER = 'UNAUTHENTICATED_USER',\r\n  USER_NOT_FOUND = 'USER_NOT_FOUND',\r\n  VERSION_MISMATCH = 'VERSION_MISMATCH',\r\n  WRONG_PERMISSIONS = 'WRONG_PERMISSIONS',\r\n}\r\n\r\nexport enum LrErrorCode {\r\n  BadTimeSync = 'LrBadTimeSync',\r\n  ReceiveClaimMismatch = 'LrReceiveClaimMismatch',\r\n  BadState = 'LrBadState',\r\n  BadSignature = 'LrBadSignature',\r\n  Auth = 'LrAuth',\r\n  BadArgument = 'LrBadArgument',\r\n  SuspiciousException = 'LrSuspiciousException',\r\n  NotFound = 'LrNotFound',\r\n  BadLogic = 'LrBadLogicException',\r\n  CodeMismatch = 'LrCodeMismatchException',\r\n  ConcurrentAccess = 'LrConcurrentAccessException',\r\n  BadRequest = 'LrBadRequestException',\r\n  Encryption = 'LrEncryptionGoBad',\r\n  Locked = 'LrLockedException',\r\n}\r\n\r\nexport class LrBadArgumentException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.BadArgument, message });\r\n  }\r\n}\r\n\r\nexport class LrSuspiciousException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.BadArgument, message });\r\n  }\r\n}\r\n\r\nexport class LrNotFoundException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.NotFound, message });\r\n  }\r\n}\r\n\r\nexport class LrBadLogicException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.BadLogic, message });\r\n  }\r\n}\r\n\r\nexport class LrCodeMismatchException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.CodeMismatch, message });\r\n  }\r\n}\r\n\r\nexport class LrConcurrentAccessException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.ConcurrentAccess, message });\r\n  }\r\n}\r\n\r\nexport class LrLockedException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.Locked, message });\r\n  }\r\n}\r\n\r\nexport class LrBadRequestException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.BadRequest, message });\r\n  }\r\n}\r\n\r\nexport class LrAuthException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.Auth, message });\r\n  }\r\n}\r\n\r\nexport class LrEncryptionException extends LrException {\r\n  constructor(message) {\r\n    super({ code: LrErrorCode.Encryption, message });\r\n  }\r\n}\r\n\r\nexport class LrUnsupportedException extends LrException {\r\n  constructor(message) {\r\n    super({\r\n      code: 'LrUnsupportedException',\r\n      message,\r\n    });\r\n  }\r\n}\r\n\r\nexport class LrExpiredCodeException extends LrException {\r\n  constructor(message) {\r\n    super({\r\n      code: 'LrExpiredCodeException',\r\n      message,\r\n    });\r\n  }\r\n}\r\n\r\nexport class LrExpiredException extends LrException {\r\n  constructor(message) {\r\n    super({\r\n      code: 'LrExpiredException',\r\n      message,\r\n    });\r\n  }\r\n}\r\n\r\nexport class LrBadStateException extends LrException {\r\n  constructor(message) {\r\n    super({\r\n      code: 'LrBadStateException',\r\n      message,\r\n    });\r\n  }\r\n}\r\n","import { InjectionToken } from '@angular/core';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport {\r\n  ApolloClientOptions,\r\n  ApolloLink,\r\n  createHttpLink,\r\n  DefaultOptions,\r\n  from,\r\n  InMemoryCache,\r\n} from '@apollo/client/core';\r\nimport { setContext } from '@apollo/client/link/context';\r\nimport { RetryLink } from '@apollo/client/link/retry';\r\nimport { LrApiErrorCode } from './_common/exceptions';\r\nimport { GraphQLError } from 'graphql';\r\n\r\nexport const LR_CONFIG = new InjectionToken<LifeReadyConfig>('LR.AUTH');\r\nconst RETRY_ERROR_CODES = [LrApiErrorCode.CONCURRENT_ACCESS];\r\n\r\nexport interface LifeReadyConfig {\r\n  authUrl: string;\r\n  apiUrl: string;\r\n  apolloUrl: string;\r\n  userPoolId: string;\r\n  userPoolWebClientId: string;\r\n  apolloConfig?: ApolloClientOptions<any>;\r\n  // Mainly to allow localhost to not needing this. Default to falsy\r\n  disableSessionEncryptionKey?: boolean;\r\n}\r\n\r\nexport const configureApollo = (\r\n  config: LifeReadyConfig,\r\n  auth: AuthClass\r\n): ApolloClientOptions<any> => {\r\n  const defaultOptions: DefaultOptions = {\r\n    watchQuery: {\r\n      fetchPolicy: 'no-cache',\r\n      errorPolicy: 'all',\r\n    },\r\n    query: {\r\n      fetchPolicy: 'no-cache',\r\n      errorPolicy: 'all',\r\n    },\r\n    mutate: {\r\n      errorPolicy: 'all',\r\n    },\r\n  };\r\n\r\n  const authLink = setContext(async (_, { headers }) => {\r\n    let accessJwt = null;\r\n    try {\r\n      accessJwt = (await auth.currentSession()).getAccessToken();\r\n    } catch {\r\n      console.log('User not signed in');\r\n    }\r\n\r\n    return {\r\n      headers: {\r\n        ...headers,\r\n        authorization: accessJwt ? `Bearer ${accessJwt.jwtToken}` : '',\r\n      },\r\n    };\r\n  });\r\n\r\n  // We are only retrying on certain errors, like the CONCURRENT_ACCESS gql\r\n  // error which indicates DB race condition. So can be safely retried.\r\n  const retryIf = (error, _) => {\r\n    // The RetryLink is called on network error as well, so we need to filter for GraphQL errors.\r\n    if (error instanceof GraphQLErrorException) {\r\n      if (\r\n        error.errors.some((e) => RETRY_ERROR_CODES.includes(e.extensions?.code))\r\n      ) {\r\n        return true;\r\n      }\r\n    }\r\n\r\n    return false;\r\n  };\r\n\r\n  const retryLink = new RetryLink({\r\n    delay: {\r\n      initial: 300,\r\n      max: Infinity,\r\n      jitter: true,\r\n    },\r\n    attempts: {\r\n      max: 3,\r\n      retryIf,\r\n    },\r\n  });\r\n\r\n  class GraphQLErrorException extends Error {\r\n    constructor(public errors: readonly GraphQLError[]) {\r\n      super(errors.map((e) => e.message).join(', '));\r\n    }\r\n  }\r\n\r\n  // Throw exception on gql errors which effectively promotes it to a network\r\n  // error, which can then be handled by the RetryLink.\r\n  const promoteGqlErrors = new ApolloLink((operation, forward) => {\r\n    return forward(operation).map((data) => {\r\n      if (data && data.errors) {\r\n        const errors = data.errors.filter((e) =>\r\n          RETRY_ERROR_CODES.includes(e.extensions?.code)\r\n        );\r\n\r\n        if (errors.length > 0) {\r\n          throw new GraphQLErrorException(data.errors);\r\n        }\r\n      }\r\n      return data;\r\n    });\r\n  });\r\n\r\n  const httpLink = createHttpLink({\r\n    uri: config.apolloUrl,\r\n    // Sending the sessionid cookie so that the server can use session data when needed.\r\n    // eg. setting the session encryption key.\r\n    credentials: 'include',\r\n  });\r\n\r\n  return {\r\n    link: from([retryLink, promoteGqlErrors, authLink, httpLink]),\r\n    cache: new InMemoryCache(),\r\n    defaultOptions,\r\n    ...config.apolloConfig,\r\n  };\r\n};\r\n","import { JWK } from 'node-jose';\r\n\r\nexport interface Key {\r\n  id: string;\r\n  pbk?: string;\r\n  jwk?: JWK.Key;\r\n}\r\n\r\nexport interface PassKeyParams {\r\n  kid: string;\r\n  salt: string;\r\n  iterations: number;\r\n}\r\n\r\nexport interface PassIdpParams {\r\n  salt: string;\r\n  iterations: number;\r\n}\r\n\r\nexport interface LbopKeyParams {\r\n  kid: string;\r\n  salt: string;\r\n  iterations: number;\r\n}\r\n\r\nexport interface PassIdpVerifier {\r\n  wrappedPrK: object;\r\n  pbk: object;\r\n}\r\n\r\nexport interface LbopKeyVerifier {\r\n  wrappedKey: object;\r\n  key: object;\r\n}\r\n\r\nexport interface PassKey {\r\n  id: string;\r\n  passKeyParams?: PassKeyParams;\r\n  passIdpParams?: PassIdpParams;\r\n  wrappedPassIdpVerifierPrk?: object;\r\n  created?: string;\r\n}\r\n\r\nexport interface KeyLink {\r\n  keyId: string;\r\n  wrappingKeyId: string;\r\n  wrappedKey: string; // JWE json string\r\n}\r\n\r\nexport interface PassKeyLink {\r\n  keyId: string;\r\n  passKeyId: string;\r\n  wrappedKey: string; // JWE json string\r\n}\r\n\r\nexport enum NodeType {\r\n  Key = 'key',\r\n  PassKey = 'passKey',\r\n}\r\n\r\nexport interface Node {\r\n  type: NodeType;\r\n  data: Key | PassKey;\r\n}\r\n\r\nexport enum EdgeType {\r\n  KeyLink = 'keyLink',\r\n  PassKeyLink = 'passKeyLink',\r\n}\r\n\r\nexport interface Edge {\r\n  type: EdgeType;\r\n  data: KeyLink | PassKeyLink;\r\n}\r\n\r\nexport interface KeyGraphResponse {\r\n  keys?: Key[];\r\n  keyLinks?: KeyLink[];\r\n  passKeys?: PassKey[];\r\n  passKeyLinks?: PassKeyLink[];\r\n}\r\n\r\nexport interface HasKeyGraph {\r\n  // The name of the keyGraph field returned from both queries and mutations are the same\r\n  keyGraph?: KeyGraphResponse;\r\n}\r\n\r\n// export enum PayloadType {\r\n//   JSON = 'JSON',\r\n//   ArrayBuffer = 'ArrayBuffer',\r\n// }\r\nexport type PayloadType = 'json' | 'ArrayBuffer';\r\n\r\nexport interface DeriveKeyResult {\r\n  jwk: JWK.Key;\r\n}\r\n\r\nexport interface DerivePassIdpParams extends PassIdpParams {\r\n  password: string;\r\n}\r\n\r\nexport interface DerivePassKeyParams extends PassKeyParams {\r\n  password: string;\r\n}\r\n\r\nexport interface DeriveLbopKeyParams extends PassKeyParams {\r\n  password: string;\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport { Apollo } from 'apollo-angular';\r\nimport gql from 'graphql-tag';\r\nimport * as moment_ from 'moment';\r\nimport {\r\n  LrErrorCode,\r\n  LrException,\r\n  handleApolloError,\r\n} from '../_common/exceptions';\r\n// \"why?\" you ask: https://stackoverflow.com/questions/59735280/angular-8-moment-error-cannot-call-a-namespace-moment\r\nconst moment = moment_;\r\n\r\nexport const ServerTimeQuery = gql`\r\n  query {\r\n    serverTime {\r\n      timestamp\r\n    }\r\n  }\r\n`;\r\n\r\ninterface ServerTime {\r\n  timestamp: string;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class TimeService {\r\n  public VERIFY_ENABLED = true;\r\n  private readonly MAX_DIFF_MSEC = moment\r\n    .duration({ seconds: 30 })\r\n    .asMilliseconds();\r\n\r\n  offsetMs: number = null; // Millisecond offset of local clock.\r\n  verified = false; // Verified with independent time source\r\n\r\n  constructor(private auth: AuthClass, private apollo: Apollo) {}\r\n\r\n  private async getAccessToken(): Promise<string> {\r\n    try {\r\n      return (await this.auth.currentAuthenticatedUser())\r\n        .getSignInUserSession()\r\n        .getAccessToken()\r\n        .getJwtToken();\r\n    } catch (error) {\r\n      return ''; // Not authenticated\r\n    }\r\n  }\r\n\r\n  // Get time from independent source to confirm.\r\n  private async verifyCognito(): Promise<void> {\r\n    const accessToken = await this.getAccessToken();\r\n    if (!accessToken) {\r\n      return;\r\n    }\r\n\r\n    // Request headers from AWS Amplify Auth lib\r\n    // accept: */*\r\n    // accept-encoding: gzip, deflate, br\r\n    // accept-language: en-GB,en-US;q=0.9,en;q=0.8\r\n    // cache-control: no-cache\r\n    // content-length: 1089\r\n    // content-type: application/x-amz-json-1.1\r\n    // origin: http://localhost:4200\r\n    // pragma: no-cache\r\n    // referer: http://localhost:4200/\r\n    // sec-fetch-dest: empty\r\n    // sec-fetch-mode: cors\r\n    // sec-fetch-site: cross-site\r\n    // user-agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.132 Safari/537.36\r\n    // x-amz-target: AWSCognitoIdentityProviderService.GetUser\r\n    // x-amz-user-agent: aws-amplify/0.1.x js\r\n\r\n    // We are only interested in the Date field.\r\n    // AZ: I suppose we could use any end-point that provides a reliable Date field in the header. And we don't\r\n    // need to be authenticated. Even a 400 response would have a Date header. But the worry is that AWS might\r\n    // think it's some sort of attack, and block the IP or domain. At least in an authenticated call it can't be\r\n    // seen as illegitimate.\r\n    const response = await fetch(\r\n      'https://cognito-idp.ap-southeast-2.amazonaws.com/',\r\n      {\r\n        method: 'POST', // *GET, POST, PUT, DELETE, etc.\r\n        mode: 'cors', // no-cors, *cors, same-origin\r\n        cache: 'no-cache', // *default, no-cache, reload, force-cache, only-if-cached\r\n        headers: {\r\n          'x-amz-target': 'AWSCognitoIdentityProviderService.GetUser',\r\n          'x-amz-user-agent': 'aws-amplify/0.1.x js',\r\n          'Content-Type': 'application/x-amz-json-1.1',\r\n        },\r\n        // redirect: 'follow', // manual, *follow, error\r\n        // referrerPolicy: 'no-referrer', // no-referrer, *no-referrer-when-downgrade, origin, origin-when-cross-origin, same-origin, strict-origin, strict-origin-when-cross-origin, unsafe-url\r\n        body: JSON.stringify({\r\n          AccessToken: accessToken,\r\n        }), // body data type must match \"Content-Type\" header\r\n      }\r\n    );\r\n\r\n    const now = Date.now();\r\n\r\n    const verifyTime = moment(response.headers.get('Date')).valueOf();\r\n    const serverTime = now + this.offsetMs;\r\n    const diff = Math.abs(serverTime - verifyTime);\r\n\r\n    if (diff > this.MAX_DIFF_MSEC) {\r\n      throw new LrException({\r\n        code: LrErrorCode.BadTimeSync,\r\n        message: `Server time does not match independent source. ServerTime: ${serverTime}, Cognito time: ${verifyTime}`,\r\n      });\r\n    }\r\n\r\n    this.verified = true;\r\n  }\r\n\r\n  private async refresh(): Promise<void> {\r\n    const start = Date.now();\r\n    const res = await this.apollo\r\n      .query<{ serverTime: ServerTime }>({ query: ServerTimeQuery })\r\n      .toPromise();\r\n    const end = Date.now();\r\n\r\n    handleApolloError(res.errors);\r\n\r\n    const serverTime = parseInt(res.data.serverTime.timestamp, 10);\r\n\r\n    const roundtrip = end - start;\r\n    this.offsetMs = serverTime - (start + roundtrip / 2);\r\n\r\n    if (this.VERIFY_ENABLED) {\r\n      await this.verifyCognito();\r\n    }\r\n  }\r\n\r\n  async serverNow(): Promise<number> {\r\n    let needsRefresh = false;\r\n\r\n    // First call\r\n    if (this.offsetMs === null) {\r\n      needsRefresh = true;\r\n    }\r\n\r\n    if (this.VERIFY_ENABLED) {\r\n      // logged in but not yet verified time matches.\r\n      if (!this.verified && (await this.getAccessToken())) {\r\n        needsRefresh = true;\r\n      }\r\n    }\r\n\r\n    if (needsRefresh) {\r\n      await this.refresh();\r\n    }\r\n\r\n    return Date.now() + this.offsetMs;\r\n  }\r\n}\r\n","import {\r\n  LrException,\r\n  LrErrorCode,\r\n  LrBadArgumentException,\r\n} from './../_common/exceptions';\r\nimport { ComponentFactoryResolver, Injectable } from '@angular/core';\r\nimport { JWE, JWK, JWS, util } from 'node-jose';\r\nimport { Key, PayloadType } from './cryptography.types';\r\nimport { TimeService } from '../api/time.service';\r\n\r\nexport enum JoseSerialization {\r\n  JSON = 'JSON',\r\n  COMPACT = 'COMPACT',\r\n}\r\n\r\nexport interface VerifyOptions {\r\n  payloadType?: PayloadType;\r\n  returnOnlyPayload?: boolean; // If true, return only the decoded payload.\r\n}\r\n\r\nexport interface DecryptOptions {\r\n  payloadType?: PayloadType;\r\n  returnOnlyPayload?: boolean; // If true, return only the decoded payload.\r\n  serializations?: JoseSerialization[];\r\n}\r\n\r\nexport const VERIFY_OPTIONS_DEFAULT: VerifyOptions = {\r\n  payloadType: 'json',\r\n  returnOnlyPayload: true,\r\n};\r\n\r\nexport const DECRYPT_OPTIONS_DEFAULT: DecryptOptions = {\r\n  payloadType: 'json',\r\n  returnOnlyPayload: true,\r\n  serializations: [JoseSerialization.JSON],\r\n};\r\n\r\nexport function isSymmetricKey(key: JWK.Key) {\r\n  // TODO: make sure this covers all cases.\r\n  return key.kty === 'oct';\r\n}\r\n\r\nexport function asJwk(key: JWK.Key | Key | any): JWK.Key | null {\r\n  // TODO: make sure this covers all cases.\r\n  // Excluded:\r\n  //   key.use - only for public keys, Ref: https://tools.ietf.org/html/rfc7517#section-4.2\r\n\r\n  if (key.id && key.jwk) {\r\n    return key.jwk;\r\n  } else if (key.keystore && key.length && key.kty && key.kid && key.alg) {\r\n    return key;\r\n  } else {\r\n    return null;\r\n  }\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class EncryptionService {\r\n  constructor(private timeService: TimeService) {}\r\n\r\n  async decrypt(\r\n    key: JWK.Key | Key, // string is assumed to be key.id, will unwrap key.\r\n    jwe: object | string, // string will be JSON.parsed\r\n    options?: DecryptOptions\r\n  ): Promise<JWE.DecryptResult | any> {\r\n    const opt = {\r\n      algorithms: ['dir', 'A*GCM', 'RSA-OAEP-*'],\r\n    };\r\n\r\n    options = {\r\n      ...DECRYPT_OPTIONS_DEFAULT,\r\n      ...options,\r\n    };\r\n\r\n    if ((key as Key).jwk) {\r\n      key = (key as Key).jwk;\r\n    }\r\n\r\n    if (typeof jwe === 'string') {\r\n      if (options.serializations.includes(JoseSerialization.JSON)) {\r\n        try {\r\n          jwe = JSON.parse(jwe);\r\n        } catch (error) {\r\n          if (options.serializations.includes(JoseSerialization.COMPACT)) {\r\n            console.log(\r\n              'Not a JSON-formatted JWE, it maybe compact serialisation format.'\r\n            );\r\n          } else {\r\n            throw error;\r\n          }\r\n        }\r\n      }\r\n    }\r\n\r\n    // {result} is a Object with:\r\n    // *  header: the combined 'protected' and 'unprotected' header members\r\n    // *  protected: an array of the member names from the \"protected\" member\r\n    // *  key: Key used to decrypt\r\n    // *  payload: Buffer of the decrypted content\r\n    // *  plaintext: Buffer of the decrypted content (alternate), just a reference to payload\r\n    const res = await JWE.createDecrypt(key as JWK.Key, opt).decrypt(\r\n      jwe as any\r\n    );\r\n\r\n    res.payload = this.decodePayload(options.payloadType, res.payload);\r\n\r\n    if (options.returnOnlyPayload) {\r\n      return res.payload;\r\n    } else {\r\n      return res;\r\n    }\r\n  }\r\n\r\n  // TODO rename this to encrypt() and use as the most common usecase\r\n  async encryptToString(\r\n    key: JWK.Key,\r\n    content: ArrayBuffer | string | object\r\n  ): Promise<string> {\r\n    return JSON.stringify(await this.encrypt(key, content));\r\n  }\r\n\r\n  // TODO rename this to encryptToJSON() and use this when required.\r\n  async encrypt(\r\n    key: JWK.Key,\r\n    content: ArrayBuffer | string | object\r\n  ): Promise<any> {\r\n    if (!content) {\r\n      throw new Error('Encrypting empty content.');\r\n    }\r\n\r\n    if (!(content instanceof ArrayBuffer)) {\r\n      content = new TextEncoder().encode(JSON.stringify(content));\r\n    }\r\n\r\n    return JWE.createEncrypt(\r\n      {\r\n        contentAlg: 'A256GCM',\r\n        fields: {\r\n          timestamp: await this.timeService.serverNow(),\r\n        },\r\n      } as any,\r\n      key\r\n    )\r\n      .update(content)\r\n      .final() as any;\r\n  }\r\n\r\n  // <AZ> Unlike signContent, the serialised \"content\" variable is contained inside\r\n  // the result. So ordering of fields within \"content\" is not an issue.\r\n  async sign(key: JWK.Key, content: Buffer | string | object): Promise<any> {\r\n    const signer = JWS.createSign(\r\n      {\r\n        fields: {\r\n          timestamp: await this.timeService.serverNow(),\r\n        },\r\n      },\r\n      key\r\n    );\r\n\r\n    if (content instanceof Buffer) {\r\n      signer.update(content);\r\n    } else {\r\n      signer.update(JSON.stringify(content), 'utf8');\r\n    }\r\n\r\n    return signer.final();\r\n  }\r\n\r\n  async signToString(\r\n    key: JWK.Key,\r\n    content: Buffer | string | object\r\n  ): Promise<string> {\r\n    return JSON.stringify(await this.sign(key, content));\r\n  }\r\n\r\n  async verify(\r\n    key: JWK.Key,\r\n    jws: object,\r\n    options?: VerifyOptions\r\n  ): Promise<any> {\r\n    const opt = {\r\n      algorithms: ['RS*'],\r\n    };\r\n\r\n    options = {\r\n      ...VERIFY_OPTIONS_DEFAULT,\r\n      ...options,\r\n    };\r\n\r\n    try {\r\n      const res = await JWS.createVerify(key, opt).verify(jws as any);\r\n\r\n      res.payload = this.decodePayload(options.payloadType, res.payload);\r\n\r\n      if (options.returnOnlyPayload) {\r\n        return res.payload;\r\n      } else {\r\n        return res;\r\n      }\r\n    } catch (error) {\r\n      throw new LrException({\r\n        code: LrErrorCode.BadSignature,\r\n        message: `Bad signature: ${error}`,\r\n      });\r\n    }\r\n  }\r\n\r\n  async encryptThenSign(\r\n    {\r\n      key,\r\n      sigPrk,\r\n    }: {\r\n      key: JWK.Key;\r\n      sigPrk: JWK.Key;\r\n    },\r\n    content: ArrayBuffer | string | object\r\n  ): Promise<{ cipher: string; sig: string }> {\r\n    const cipher = JSON.stringify(await this.encrypt(key, content));\r\n    const sig = await this.sign(sigPrk, cipher);\r\n    delete sig.payload;\r\n\r\n    return {\r\n      cipher,\r\n      sig: JSON.stringify(sig),\r\n    };\r\n  }\r\n\r\n  private decodePayload(\r\n    payloadType: PayloadType,\r\n    payload: ArrayBuffer\r\n  ): ArrayBuffer | any {\r\n    switch (payloadType) {\r\n      case 'json':\r\n        return JSON.parse(new TextDecoder().decode(payload));\r\n      case 'ArrayBuffer':\r\n        return payload;\r\n      default:\r\n        throw new LrBadArgumentException(`Unknown payloadType: ${payloadType}`);\r\n    }\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class WebCryptoService {\r\n  crypto: Crypto = window.crypto;\r\n\r\n  toHex(buffer: ArrayBuffer) {\r\n    // Ref: https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/digest\r\n    const array = Array.from(new Uint8Array(buffer)); // convert buffer to byte array\r\n    const hex = array.map((b) => b.toString(16).padStart(2, '0')).join(''); // convert bytes to hex string\r\n    return hex;\r\n  }\r\n\r\n  async stringDigest(algorithm: string, message: string): Promise<string> {\r\n    const encoder = new TextEncoder();\r\n    const data = encoder.encode(message);\r\n    const hash = await this.crypto.subtle.digest(algorithm, data);\r\n    return this.toHex(hash);\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport {\r\n  LbopKeyParams,\r\n  PassIdpParams,\r\n  PassKeyParams,\r\n  DeriveKeyResult,\r\n  DerivePassIdpParams,\r\n  DerivePassKeyParams,\r\n  DeriveLbopKeyParams,\r\n} from './cryptography.types';\r\nimport { WebCryptoService } from './web-crypto.service';\r\nimport {\r\n  LrBadArgumentException,\r\n  LrSuspiciousException,\r\n} from '../_common/exceptions';\r\n\r\nexport async function sha256(message) {\r\n  // encode as UTF-8\r\n  const msgBuffer = new TextEncoder().encode(message);\r\n\r\n  // hash the message\r\n  const hashBuffer = await crypto.subtle.digest('SHA-256', msgBuffer);\r\n\r\n  // convert ArrayBuffer to Array\r\n  const hashArray = Array.from(new Uint8Array(hashBuffer));\r\n\r\n  // convert bytes to hex string\r\n  const hashHex = hashArray\r\n    .map((b) => ('00' + b.toString(16)).slice(-2))\r\n    .join('');\r\n  return hashHex;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class KeyFactoryService {\r\n  constructor(private webCryptoService: WebCryptoService) {\r\n    this.crypto = this.webCryptoService.crypto;\r\n  }\r\n  private readonly crypto;\r\n  // Global keys store. Otherwise, each call to asKey creates a new keyStore.\r\n  // <AZ> Did not seem to improve speed.\r\n  // public static keyStore = JWK.createKeyStore();\r\n\r\n  // AZ: This can't be change easily. It's basically a PassK or PassIdp rotation.\r\n  // todo: we should eventually increase this periodically to match with Moore's law.\r\n  // The iterations for each key are kept by the server as well but we assume the value\r\n  // from the server is not trustworthy, so need to have minimum thresholds here.\r\n  // If creating new keys, these minimum are used.\r\n  public readonly MIN_PASS_IDP_PBKDF_ITER = 100000;\r\n  public readonly MIN_PASS_KEY_PBKDF_ITER = 100000;\r\n  public readonly MIN_LBOP_KEY_PBKDF_ITER = 100000;\r\n\r\n  // These are used as the default values. They must be larger than the minimum values.\r\n  public readonly DEFAULT_PASS_IDP_PBKDF_ITER = this.MIN_PASS_IDP_PBKDF_ITER;\r\n  public readonly DEFAULT_PASS_KEY_PBKDF_ITER = this.MIN_PASS_KEY_PBKDF_ITER;\r\n  public readonly DEFAULT_LBOP_KEY_PBKDF_ITER = this.MIN_LBOP_KEY_PBKDF_ITER;\r\n\r\n  static asKey(\r\n    key: string | Buffer | object | JWK.RawKey,\r\n    form?:\r\n      | 'json'\r\n      | 'private'\r\n      | 'pkcs8'\r\n      | 'public'\r\n      | 'spki'\r\n      | 'pkix'\r\n      | 'x509'\r\n      | 'pem',\r\n    extras?: Record<string, unknown>\r\n  ): Promise<JWK.Key> {\r\n    // <AZ> Using a single global key store did not seem to improve speed.\r\n    // return KeyFactoryService.keyStore.add(key, form, extras);\r\n    return JWK.asKey(key, form, extras);\r\n  }\r\n\r\n  randomString(digits: number): string {\r\n    if (digits <= 0) {\r\n      throw new LrBadArgumentException('digits <= 0');\r\n    }\r\n    const validChars =\r\n      'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';\r\n    let array = new Uint32Array(digits);\r\n    this.crypto.getRandomValues(array);\r\n    array = array.map((x) => validChars.charCodeAt(x % validChars.length));\r\n    return String.fromCharCode.apply(null, array);\r\n  }\r\n\r\n  randomDigitsNoZeros(digits: number): string {\r\n    return this.randomChoices([1, 2, 3, 4, 5, 6, 7, 8, 9], digits).join('');\r\n  }\r\n\r\n  randomChoices<T>(array: T[], chooseN: number): T[] {\r\n    if (array.length <= 1) {\r\n      throw new LrBadArgumentException('array.length <= 0');\r\n    }\r\n    if (chooseN <= 0) {\r\n      throw new LrBadArgumentException('chooseN <= 0');\r\n    }\r\n    const values = new Uint32Array(chooseN);\r\n    this.crypto.getRandomValues(values);\r\n    const ret: T[] = [];\r\n    values.forEach((v) => ret.push(array[v % array.length]));\r\n    return ret;\r\n  }\r\n\r\n  createSalt(): string {\r\n    return this.randomString(16);\r\n  }\r\n\r\n  async createKey(): Promise<JWK.Key> {\r\n    const key = await this.crypto.subtle.generateKey(\r\n      {\r\n        name: 'AES-GCM',\r\n        length: 256, // can be  128, 192, or 256\r\n      },\r\n      true, // whether the key is extractable (i.e. can be used in exportKey)\r\n      ['encrypt', 'decrypt'] // must be [\"encrypt\", \"decrypt\"] or [\"wrapKey\", \"unwrapKey\"]\r\n    );\r\n\r\n    const jwk = await this.crypto.subtle.exportKey('jwk', key);\r\n\r\n    // Removing the fields not needed by node-jose\r\n    delete jwk.ext;\r\n    delete jwk.key_ops;\r\n\r\n    return KeyFactoryService.asKey(jwk);\r\n  }\r\n\r\n  async createSignKey(): Promise<JWK.Key> {\r\n    const key = await this.crypto.subtle.generateKey(\r\n      {\r\n        name: 'HMAC',\r\n        hash: { name: 'SHA-512' },\r\n      },\r\n      true,\r\n      ['sign', 'verify']\r\n    );\r\n\r\n    const jwk = await this.crypto.subtle.exportKey('jwk', key);\r\n\r\n    // Removing the fields not needed by node-jose\r\n    delete jwk.key_ops;\r\n    delete jwk.ext;\r\n\r\n    return KeyFactoryService.asKey(jwk);\r\n  }\r\n\r\n  async createPkcKey(): Promise<JWK.Key> {\r\n    // node-jose is not using Forge properly. It should be calling the async version of\r\n    // pki.rsa.generateKeyPair() with a callback. Instead it calls the sync version. Webcrypto\r\n    // does not support sync version, so it uses the javascript implementation, which is way too slow.\r\n    // So we generate using webcrypto and import the key.\r\n    // Unfortunately Elliptical Curve is not supported by Webcrypto. So we have to settle for RSA.\r\n    const key = await this.crypto.subtle.generateKey(\r\n      {\r\n        name: 'RSA-OAEP',\r\n        modulusLength: 2048, // can be 1024, 2048, 3072, 4096 ... 16384\r\n        // As per suggestion: https://developer.mozilla.org/en-US/docs/Web/API/RsaHashedKeyGenParams\r\n        publicExponent: new Uint8Array([0x01, 0x00, 0x01]),\r\n        hash: { name: 'SHA-256' }, // can be \"SHA-1\", \"SHA-256\", \"SHA-384\", or \"SHA-512\"\r\n      },\r\n      true, // whether the key is extractable (i.e. can be used in exportKey)\r\n      ['encrypt', 'decrypt'] // must be [\"encrypt\", \"decrypt\"] or [\"wrapKey\", \"unwrapKey\"]\r\n    );\r\n\r\n    const jwk = await this.crypto.subtle.exportKey('jwk', key.privateKey);\r\n    // Removing the fields not needed by node-jose\r\n    delete jwk.key_ops;\r\n    delete jwk.ext;\r\n\r\n    return KeyFactoryService.asKey(jwk);\r\n  }\r\n\r\n  async createPkcSignKey(): Promise<JWK.Key> {\r\n    const key = await this.crypto.subtle.generateKey(\r\n      {\r\n        name: 'RSASSA-PKCS1-v1_5',\r\n        modulusLength: 2048, // can be 1024, 2048, or 4096\r\n        // As per suggestion: https://developer.mozilla.org/en-US/docs/Web/API/RsaHashedKeyGenParams\r\n        publicExponent: new Uint8Array([0x01, 0x00, 0x01]),\r\n        hash: { name: 'SHA-256' }, // can be \"SHA-1\", \"SHA-256\", \"SHA-384\", or \"SHA-512\"\r\n      },\r\n      true, // whether the key is extractable (i.e. can be used in exportKey)\r\n      ['sign', 'verify'] // can be any combination of \"sign\" and \"verify\"\r\n    );\r\n\r\n    const jwk = await this.crypto.subtle.exportKey('jwk', key.privateKey);\r\n\r\n    // Removing the fields not needed by node-jose\r\n    delete jwk.key_ops;\r\n    delete jwk.ext;\r\n\r\n    return KeyFactoryService.asKey(jwk);\r\n  }\r\n\r\n  async deriveKey({\r\n    password,\r\n    salt,\r\n    iterations,\r\n    kid,\r\n  }: {\r\n    password: string;\r\n    salt: string;\r\n    iterations: number;\r\n    kid?: string;\r\n  }): Promise<DeriveKeyResult> {\r\n    const enc = new TextEncoder();\r\n    const rawKey = await this.crypto.subtle.importKey(\r\n      'raw',\r\n      enc.encode(password),\r\n      'PBKDF2',\r\n      false,\r\n      ['deriveBits', 'deriveKey']\r\n    );\r\n\r\n    const passKey = await crypto.subtle.deriveKey(\r\n      {\r\n        name: 'PBKDF2',\r\n        salt: new TextEncoder().encode(salt),\r\n        iterations,\r\n        hash: 'SHA-256',\r\n      },\r\n      rawKey,\r\n      { name: 'AES-GCM', length: 256 },\r\n      true,\r\n      ['encrypt', 'decrypt']\r\n    );\r\n\r\n    const passKeyJson: any = await crypto.subtle.exportKey('jwk', passKey);\r\n    if (kid) {\r\n      passKeyJson.kid = kid;\r\n    }\r\n\r\n    const jwk = await KeyFactoryService.asKey(passKeyJson);\r\n\r\n    return { jwk };\r\n  }\r\n\r\n  async derivePassIdp(params: DerivePassIdpParams): Promise<DeriveKeyResult> {\r\n    if (params.iterations < this.MIN_PASS_IDP_PBKDF_ITER) {\r\n      throw new LrSuspiciousException(\r\n        `The number of PassIdp key derivation iterations sent from the server (${params.iterations}) is lower than the minimum (${this.MIN_PASS_IDP_PBKDF_ITER})`\r\n      );\r\n    }\r\n    return this.deriveKey(params);\r\n  }\r\n\r\n  async derivePassKey(params: DerivePassKeyParams): Promise<DeriveKeyResult> {\r\n    if (params.iterations < this.MIN_PASS_KEY_PBKDF_ITER) {\r\n      throw new LrSuspiciousException(\r\n        `The number of PassKey key derivation iterations sent from the server(${params.iterations}) is lower than the minimum(${this.MIN_PASS_KEY_PBKDF_ITER})`\r\n      );\r\n    }\r\n    return this.deriveKey(params);\r\n  }\r\n\r\n  async deriveLbopKey(params: DeriveLbopKeyParams): Promise<DeriveKeyResult> {\r\n    if (params.iterations < this.MIN_LBOP_KEY_PBKDF_ITER) {\r\n      throw new LrSuspiciousException(\r\n        `The number of LbopKey key derivation iterations sent from the server(${params.iterations}) is lower than the minimum(${this.MIN_LBOP_KEY_PBKDF_ITER})`\r\n      );\r\n    }\r\n    return this.deriveKey(params);\r\n  }\r\n\r\n  async createKid(): Promise<string> {\r\n    // todo: AZ: node-jose source uses node's default UUID() function for kid, so just change to use that.\r\n    // for now, we are just creating a new key to use it's kid.\r\n    // The kid is a part of the JWK system. LR backend maintains the key hierarchy separately with it's own\r\n    // key id. But we just use it here as a double check.\r\n    return (await this.createKey()).kid;\r\n  }\r\n\r\n  async createPassIdpParams(): Promise<PassIdpParams> {\r\n    return {\r\n      salt: this.createSalt(),\r\n      iterations: this.DEFAULT_PASS_IDP_PBKDF_ITER,\r\n    };\r\n  }\r\n\r\n  async createPassKeyParams(): Promise<PassKeyParams> {\r\n    return {\r\n      salt: this.createSalt(),\r\n      kid: await this.createKid(),\r\n      iterations: this.DEFAULT_PASS_KEY_PBKDF_ITER,\r\n    };\r\n  }\r\n\r\n  async createLbopKeyParams(): Promise<LbopKeyParams> {\r\n    return {\r\n      salt: this.createSalt(),\r\n      // todo: AZ: node-jose source uses node's default UUID() function for kid, so just change to use that.\r\n      // for now, we are just creating a new key to use it's kid.\r\n      // The kid is a part of the JWK system. LR backend maintains the key hierarchy separately with it's own\r\n      // key id. But we just use it here as a double check.\r\n      kid: await this.createKid(),\r\n      iterations: this.DEFAULT_PASS_KEY_PBKDF_ITER,\r\n    };\r\n  }\r\n}\r\n","import { JWK } from 'node-jose';\r\nimport { Injectable, Injector } from '@angular/core';\r\nimport { CookieService } from 'ngx-cookie-service';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { isDevMode } from '@angular/core';\r\nimport { LrBadArgumentException } from '../_common/exceptions';\r\nimport { KeyFactoryService as KFS } from '../cryptography/key-factory.service';\r\n\r\ninterface Item {\r\n  data: string;\r\n  expiry?: string; // iso format\r\n  serverSession?: boolean;\r\n}\r\n\r\ninterface CookieItem {\r\n  key: any;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class PersistService {\r\n  private readonly KEY_PREFIX = 'lrSession-';\r\n\r\n  private cookieSecure = true;\r\n  private serverSessionEncryptionKey: JWK.Key = null;\r\n\r\n  constructor(\r\n    private keyFactory: KFS,\r\n    private cookieService: CookieService,\r\n    private encryptionService: EncryptionService,\r\n    private injector: Injector\r\n  ) {\r\n    if (isDevMode()) {\r\n      this.setCookieSecure(false);\r\n    }\r\n  }\r\n\r\n  setServerSessionEncryptionKey(key: JWK.Key) {\r\n    this.serverSessionEncryptionKey = key;\r\n  }\r\n\r\n  clearServerSessionEncryptionKey() {\r\n    this.serverSessionEncryptionKey = null;\r\n  }\r\n\r\n  // It's important that set and delete cookie use exactly the same set of parameters.\r\n  private getCookieParams() {\r\n    return {\r\n      path: '/',\r\n      domain: null, // which means the current domain of the frontend app.\r\n      secure: this.cookieSecure,\r\n      sameSite: 'Lax' as 'Lax' | 'None' | 'Strict',\r\n    };\r\n  }\r\n\r\n  public clear() {\r\n    // Remove all cookies\r\n    Object.keys(this.cookieService.getAll()).forEach((key) => {\r\n      if (key.startsWith(this.KEY_PREFIX)) {\r\n        this.deletePrefixedName(key);\r\n      }\r\n    });\r\n\r\n    // Remove all persisted session variables\r\n    Object.keys(localStorage).forEach((key) => {\r\n      if (key.startsWith(this.KEY_PREFIX)) {\r\n        this.deletePrefixedName(key);\r\n      }\r\n    });\r\n  }\r\n\r\n  public setCookieSecure(value: boolean) {\r\n    this.cookieSecure = value;\r\n    if (!value) {\r\n      if (isDevMode()) {\r\n        console.warn(\r\n          'The cookie secure flag in persistService has been set to false, set it to true in production mode'\r\n        );\r\n      } else {\r\n        throw new LrBadArgumentException(\r\n          'Can not set PersistService cookie secure flag to false in production mode.'\r\n        );\r\n      }\r\n    }\r\n  }\r\n\r\n  private prefixName(name: string): string {\r\n    return this.KEY_PREFIX + name;\r\n  }\r\n\r\n  public delete(name: string): void {\r\n    this.deletePrefixedName(this.prefixName(name));\r\n  }\r\n\r\n  private deletePrefixedName(prefixedName: string): void {\r\n    const params = this.getCookieParams();\r\n    this.cookieService.delete(\r\n      prefixedName, // name: string,\r\n      params.path, // path?: string,\r\n      params.domain, // domain ?: string,\r\n      params.secure, // secure ?: boolean,\r\n      params.sameSite // sameSite ?: 'Lax' | 'None' | 'Strict'): void;\r\n    );\r\n    localStorage.removeItem(prefixedName);\r\n  }\r\n\r\n  public async set({\r\n    name,\r\n    value,\r\n    serverSession,\r\n    expiry,\r\n  }: {\r\n    name: string;\r\n    value: any;\r\n    serverSession: boolean;\r\n    expiry?: Date;\r\n  }): Promise<void> {\r\n    const prefixedName = this.prefixName(name);\r\n\r\n    let item: Item;\r\n\r\n    if (serverSession) {\r\n      item = {\r\n        serverSession: true,\r\n        data: await this.encryptionService.encryptToString(\r\n          this.serverSessionEncryptionKey,\r\n          value\r\n        ),\r\n      };\r\n    } else {\r\n      item = {\r\n        data: value,\r\n      };\r\n    }\r\n\r\n    if (expiry) {\r\n      const key = await this.keyFactory.createKey();\r\n      item.expiry = expiry.toISOString();\r\n      item.data = await this.encryptionService.encryptToString(key, item.data);\r\n\r\n      const cookieItem: CookieItem = {\r\n        key: key.toJSON(true),\r\n      };\r\n\r\n      // If path is set to anything other than \"/\" then the cookie is only\r\n      // accessible by JS if the current URL has the same prefix as the path.\r\n      // Ideally we don't want the encryption key cookie to be sent at all, but\r\n      // since the encrypted content is held in localstorage, it is not a security\r\n      // risk, i.e. it is at least as secure as storing only in localstorage.\r\n      const params = this.getCookieParams();\r\n      this.cookieService.set(\r\n        prefixedName, // name: string,\r\n        JSON.stringify(cookieItem), // value: string,\r\n        expiry, // expires?: number | Date,\r\n        params.path, // path?: string,\r\n        params.domain, // domain?: string,\r\n        params.secure, // secure?: boolean,\r\n        params.sameSite // sameSite?: 'Lax' | 'None' | 'Strict'\r\n      );\r\n    }\r\n\r\n    localStorage.setItem(prefixedName, JSON.stringify(item));\r\n  }\r\n\r\n  public async get(name: string): Promise<any> {\r\n    const prefixedName = this.prefixName(name);\r\n\r\n    try {\r\n      const ret = await this.getImpl(prefixedName);\r\n      if (ret == null) {\r\n        // Clear any cookies to keep things in sync.\r\n        this.deletePrefixedName(prefixedName);\r\n      }\r\n      return ret;\r\n    } catch (error) {\r\n      this.deletePrefixedName(prefixedName);\r\n      throw error;\r\n    }\r\n  }\r\n\r\n  private async getImpl(name: string): Promise<any> {\r\n    const itemString = localStorage.getItem(name);\r\n    if (!itemString) {\r\n      return null;\r\n    }\r\n\r\n    const item: Item = JSON.parse(itemString);\r\n\r\n    let data: any;\r\n\r\n    if (item.expiry) {\r\n      const cookieItemString = this.cookieService.get(name);\r\n      if (!cookieItemString) {\r\n        // Probably expired, but we won't make any interpretations since if we only used\r\n        // cookies we can't tell if it's expired or explicitly removed. So we just make\r\n        // the behaviour here consistent with that.\r\n        console.log('No cookie.');\r\n        return null;\r\n      }\r\n\r\n      const cookieItem = JSON.parse(cookieItemString);\r\n\r\n      const key = await KFS.asKey(cookieItem.key);\r\n\r\n      data = await this.encryptionService.decrypt(key, item.data);\r\n    } else {\r\n      data = item.data;\r\n    }\r\n\r\n    if (item.serverSession) {\r\n      data = await this.encryptionService.decrypt(\r\n        this.serverSessionEncryptionKey,\r\n        data\r\n      );\r\n    }\r\n\r\n    return data;\r\n  }\r\n}\r\n","import { Inject, Injectable } from '@angular/core';\r\nimport { Key, PassKey } from './cryptography.types';\r\nimport { LrNotFoundException } from '../_common/exceptions';\r\nimport { PersistService } from '../api/persist.service';\r\nimport { KeyFactoryService as KFS } from './key-factory.service';\r\nimport { LifeReadyConfig, LR_CONFIG } from '../life-ready.config';\r\n\r\nexport class UserKeys {\r\n  passKey: PassKey;\r\n  masterKey: Key;\r\n  rootKey?: Key;\r\n  pxk?: Key;\r\n  sigPxk?: Key;\r\n}\r\n\r\ninterface StoredPassKey {\r\n  id: string;\r\n  jwk: object;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class KeyService {\r\n  private readonly STORE_MASTER_KEY = 'masterKey';\r\n  // variables\r\n  private keys: UserKeys;\r\n  private masterKey: Key;\r\n\r\n  // AZ: This can't be change easily. It's basically a PassK or PassIdp rotation.\r\n  // todo: we should eventually increase this periodically to match with Moore's law.\r\n  // The iterations for each key are kept by the server as well but we assume the value\r\n  // from the server is not trustworthy, so need to have minimum thresholds here.\r\n  // If creating new keys, these minimum are used.\r\n  public readonly MIN_PASS_IDP_PBKDF_ITER = 100000;\r\n  public readonly MIN_PASS_KEY_PBKDF_ITER = 100000;\r\n  public readonly MIN_LBOP_KEY_PBKDF_ITER = 100000;\r\n\r\n  // These are used as the default values. They must be larger than the minimum values.\r\n  public readonly DEFAULT_PASS_IDP_PBKDF_ITER = this.MIN_PASS_IDP_PBKDF_ITER;\r\n  public readonly DEFAULT_PASS_KEY_PBKDF_ITER = this.MIN_PASS_KEY_PBKDF_ITER;\r\n  public readonly DEFAULT_LBOP_KEY_PBKDF_ITER = this.MIN_LBOP_KEY_PBKDF_ITER;\r\n\r\n  constructor(\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private persistService: PersistService\r\n  ) {\r\n    this.resetKeys();\r\n  }\r\n\r\n  resetKeys() {\r\n    this.keys = null;\r\n    this.masterKey = null;\r\n  }\r\n\r\n  purgeKeys() {\r\n    this.resetKeys();\r\n    this.persistService.clear();\r\n  }\r\n\r\n  populateKeys(keys: UserKeys) {\r\n    this.keys = keys;\r\n  }\r\n\r\n  public getCurrentPassKey(): Key {\r\n    return this.keys.passKey;\r\n  }\r\n\r\n  public getCurrentMasterKey(): Key {\r\n    return this.keys.masterKey;\r\n  }\r\n\r\n  public getCurrentRootKey(): Key {\r\n    return this.keys.rootKey;\r\n  }\r\n\r\n  public getCurrentPxk(): Key {\r\n    return this.keys.pxk;\r\n  }\r\n\r\n  public getCurrentSigPxk(): Key {\r\n    return this.keys.sigPxk;\r\n  }\r\n\r\n  private expiresAfter(seconds: number): Date {\r\n    return new Date(Date.now() + 1000 * seconds);\r\n  }\r\n\r\n  async persistMasterKey(\r\n    masterKey: Key,\r\n    expiresAfterSeconds: number\r\n  ): Promise<void> {\r\n    const storedKey = {\r\n      id: masterKey.id,\r\n      jwk: masterKey.jwk.toJSON(true),\r\n    };\r\n\r\n    this.masterKey = masterKey;\r\n\r\n    // Save in an expirable cookie.\r\n    await this.persistService.set({\r\n      name: this.STORE_MASTER_KEY,\r\n      value: storedKey,\r\n      expiry: this.expiresAfter(expiresAfterSeconds),\r\n      serverSession: !this.config.disableSessionEncryptionKey,\r\n    });\r\n  }\r\n\r\n  async setMasterKeyExpiresAfterSeconds(seconds: number): Promise<void> {\r\n    const storedKey = await this.persistService.get(this.STORE_MASTER_KEY);\r\n    if (storedKey == null) {\r\n      throw new LrNotFoundException(\r\n        `Can not find masterKey in persisted storage using name: ${this.STORE_MASTER_KEY}`\r\n      );\r\n    }\r\n    await this.persistService.set({\r\n      name: this.STORE_MASTER_KEY,\r\n      value: storedKey,\r\n      expiry: this.expiresAfter(seconds),\r\n      serverSession: !this.config.disableSessionEncryptionKey,\r\n    });\r\n  }\r\n\r\n  // There's little benefit in using WebCrypto's none-extractable keys because if there\r\n  // is an XSS attack, then the attacker has control over the js that downloads the keys. The\r\n  // attacker can modify the code to import the keys as extractable. So none-extractable keys\r\n  // are only useful if they are already persisted and the user cannot download any more keys,\r\n  // which is not feasible.\r\n  // So storing the PassKey in localstorage for now, at least till we know what the usage\r\n  // pattern is, i.e. how often do we need to use the RootK, MaterK, and PassK.\r\n  async loadMasterKey(masterKeyId: string): Promise<Key> {\r\n    if (!this.masterKey) {\r\n      const storedKey = await this.persistService.get(this.STORE_MASTER_KEY);\r\n\r\n      if (!storedKey) {\r\n        throw new LrNotFoundException(\r\n          'Could not find masterKey in persisted storage'\r\n        );\r\n      }\r\n\r\n      if (storedKey.id !== masterKeyId) {\r\n        throw new LrNotFoundException(\r\n          `masterKeyId ${storedKey.id} in persisted storage does not match the one requested ${masterKeyId}`\r\n        );\r\n      }\r\n\r\n      storedKey.jwk = await KFS.asKey(storedKey.jwk);\r\n\r\n      this.masterKey = storedKey;\r\n    }\r\n\r\n    return this.masterKey;\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport graphlib, { Graph } from '@dagrejs/graphlib';\r\nimport _ from 'lodash';\r\nimport { JWK } from 'node-jose';\r\nimport { CurrentUserKey } from '../users/profile.types';\r\nimport {\r\n  LrException,\r\n  LrEncryptionException,\r\n  LrNotFoundException,\r\n  LrBadArgumentException,\r\n} from '../_common/exceptions';\r\nimport {\r\n  Edge,\r\n  EdgeType,\r\n  Key,\r\n  KeyGraphResponse,\r\n  Node,\r\n  NodeType,\r\n  PassKey,\r\n} from './cryptography.types';\r\nimport {\r\n  asJwk,\r\n  DecryptOptions,\r\n  EncryptionService,\r\n  isSymmetricKey,\r\n} from './encryption.service';\r\nimport {\r\n  KeyFactoryService,\r\n  KeyFactoryService as KFS,\r\n} from './key-factory.service';\r\nimport { KeyService } from './key.service';\r\n\r\nexport interface GraphKey extends Key {\r\n  task?: Promise<any>;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class KeyGraphService {\r\n  private graph: Graph;\r\n  // private keyCache: {\r\n  //   [id: string]: Key;\r\n  // };\r\n\r\n  constructor(\r\n    private encryptionService: EncryptionService,\r\n    private keyService: KeyService\r\n  ) {\r\n    this.purgeKeys();\r\n  }\r\n\r\n  purgeKeys() {\r\n    this.graph = new Graph();\r\n    // this.keyCache = null;\r\n  }\r\n\r\n  async populateKeys(userKey: CurrentUserKey) {\r\n    this.keyService.populateKeys({\r\n      passKey: userKey.passKey,\r\n      masterKey: await this.keyService.loadMasterKey(userKey.masterKey.id),\r\n      rootKey: await this.unwrapKey(userKey.masterKey.id, userKey.rootKey.id),\r\n      pxk: await this.unwrapKey(userKey.masterKey.id, userKey.pxk.id),\r\n      sigPxk: await this.unwrapKey(userKey.masterKey.id, userKey.sigPxk.id),\r\n    });\r\n  }\r\n\r\n  hasKey(keyId: string) {\r\n    return !!this.graph.node(keyId);\r\n  }\r\n\r\n  private getNode(id, type): GraphKey | PassKey {\r\n    const node = this.graph.node(id);\r\n    if (!node) {\r\n      throw new LrNotFoundException(\r\n        `Key graphs does not contain key id: ${id}`\r\n      );\r\n    }\r\n    if (node.type !== type) {\r\n      throw new LrException({\r\n        message: `Key with id ${id} is not of type ${type}`,\r\n      });\r\n    }\r\n    return node.data;\r\n  }\r\n\r\n  key(id): GraphKey {\r\n    return this.getNode(id, NodeType.Key);\r\n  }\r\n\r\n  passKey(id): PassKey {\r\n    return this.getNode(id, NodeType.PassKey);\r\n  }\r\n\r\n  addKeys(src: KeyGraphResponse) {\r\n    // Keys\r\n    if (src.keys) {\r\n      // What key graph returns can not be customized. So keys are essentially immutable.\r\n      // Therefore, if a key exists, there's no reason to update it.\r\n      for (const key of src.keys) {\r\n        // Note using Relay global id allows us to not worry about clashing node id\r\n        if (this.graph.hasNode(key.id)) {\r\n          continue;\r\n        }\r\n\r\n        const node: Node = {\r\n          type: NodeType.Key,\r\n          data: _.cloneDeep(key),\r\n        };\r\n\r\n        this.graph.setNode(key.id, node);\r\n      }\r\n    }\r\n\r\n    // KeyLinks\r\n    if (src.keyLinks) {\r\n      for (const keyLink of src.keyLinks) {\r\n        if (this.graph.hasEdge(keyLink.wrappingKeyId, keyLink.keyId)) {\r\n          continue;\r\n        }\r\n\r\n        const edge: Edge = {\r\n          type: EdgeType.KeyLink,\r\n          data: _.cloneDeep(keyLink),\r\n        };\r\n        // Edge goes from wrapping key to wrapped key.\r\n        this.graph.setEdge(keyLink.wrappingKeyId, keyLink.keyId, edge);\r\n      }\r\n    }\r\n\r\n    // PassKeyLinks\r\n    if (src.passKeyLinks) {\r\n      for (const passKeyLink of src.passKeyLinks) {\r\n        if (this.graph.hasEdge(passKeyLink.passKeyId, passKeyLink.keyId)) {\r\n          continue;\r\n        }\r\n\r\n        const edge: Edge = {\r\n          type: EdgeType.PassKeyLink,\r\n          data: _.cloneDeep(passKeyLink),\r\n        };\r\n        // Edge goes from wrapping key to wrapped key.\r\n        this.graph.setEdge(passKeyLink.passKeyId, passKeyLink.keyId, edge);\r\n      }\r\n    }\r\n\r\n    // The graph is the single source of truth. These are lazily calculated.\r\n    // this.keyCache = null;\r\n  }\r\n\r\n  tracePath(distances, keyId: string): Edge[] {\r\n    // The node label is the same as the id of the key nodes.\r\n    const ret: Edge[] = [];\r\n    let node = keyId;\r\n    if (!distances[node].predecessor) {\r\n      return null;\r\n    }\r\n\r\n    while (distances[node].predecessor) {\r\n      const child = distances[node].predecessor;\r\n      ret.push(this.graph.edge(child, node));\r\n      node = child;\r\n    }\r\n\r\n    // After reverse, the first element is the passkey\r\n    ret.reverse();\r\n\r\n    return ret;\r\n  }\r\n\r\n  getPath(knownKeyId: string, keyId: string): Edge[] {\r\n    if (!knownKeyId || typeof knownKeyId !== 'string') {\r\n      throw new LrEncryptionException(\r\n        `Param knownKeyId wrong format: ${knownKeyId}`\r\n      );\r\n    }\r\n    if (!keyId || typeof keyId !== 'string') {\r\n      throw new LrEncryptionException(`Param keyId wrong format: ${keyId}`);\r\n    }\r\n\r\n    // => { A: { distance: 0 },\r\n    //      B: { distance: 6, predecessor: 'C' },\r\n    //      C: { distance: 4, predecessor: 'A' },\r\n    //      D: { distance: 2, predecessor: 'A' },\r\n    //      E: { distance: 8, predecessor: 'F' },\r\n    //      F: { distance: 4, predecessor: 'D' } }\r\n    const distances = graphlib.alg.dijkstra(this.graph, knownKeyId);\r\n\r\n    // Trace path from keyId to knownKeyId\r\n    return this.tracePath(distances, keyId);\r\n  }\r\n\r\n  async getJwkKey(\r\n    keyOrId: string | Key,\r\n    getKeyIdCallback?: () => Promise<string> | string\r\n  ): Promise<JWK.Key> {\r\n    return (await this.getKey(keyOrId, getKeyIdCallback)).jwk;\r\n  }\r\n\r\n  // We assume that when a keyId is fetched, the key graph\r\n  // for the key is also returned and merged into the client-side\r\n  // key graph. By insisting a keyId is returned instead of the\r\n  // actual key we ensure key-graph is consistent.\r\n  async getKey(\r\n    keyOrId: string | Key,\r\n    getKeyIdCallback?: () => Promise<string> | string\r\n  ): Promise<Key> {\r\n    let keyId = typeof keyOrId === 'string' ? keyOrId : keyOrId?.id;\r\n\r\n    if (!this.hasKey(keyId) && getKeyIdCallback) {\r\n      keyId = await getKeyIdCallback();\r\n    }\r\n    // else, continue and let it fail.\r\n\r\n    const key = this.key(keyId);\r\n    if (key.jwk) {\r\n      return key;\r\n    } else {\r\n      return this.unwrapKey(this.keyService.getCurrentMasterKey().id, keyId);\r\n    }\r\n  }\r\n\r\n  private async _unwrapLink(wrappingKey, link, dstKey) {\r\n    // console.log(\"_unwrapLink:\", link.data.keyId);\r\n    const wrappedKey = JSON.parse(link.data.wrappedKey);\r\n    // Signatures of keys contain the key itself. This way we only need\r\n    // to access the KeyLinks to decrypt/verify keys.\r\n    let nextRawKey;\r\n    if (wrappedKey.signatures) {\r\n      nextRawKey = await this.encryptionService.verify(wrappingKey, wrappedKey);\r\n    } else {\r\n      nextRawKey = await this.encryptionService.decrypt(\r\n        wrappingKey,\r\n        wrappedKey\r\n      );\r\n    }\r\n    dstKey.jwk = await KFS.asKey(nextRawKey);\r\n    dstKey.task = null;\r\n  }\r\n\r\n  private async _unwrap(key: JWK.Key, path: Edge[]): Promise<JWK.Key> {\r\n    for (const link of path) {\r\n      const dstKey = this.key(link.data.keyId);\r\n      // console.log(\"key: \", link.data.keyId);\r\n      if (dstKey.jwk) {\r\n        key = dstKey.jwk;\r\n        // console.log(\"Returning cached key: \", link.data.keyId);\r\n        continue;\r\n      }\r\n\r\n      if (!dstKey.task) {\r\n        dstKey.task = this._unwrapLink(key, link, dstKey);\r\n      }\r\n\r\n      await dstKey.task;\r\n      key = dstKey.jwk;\r\n    }\r\n\r\n    return key;\r\n  }\r\n\r\n  public async unwrapWithPassKey(\r\n    passKeyId: string,\r\n    passKey: JWK.Key,\r\n    keyId: string\r\n  ): Promise<Key> {\r\n    // Get path of the directory key.\r\n    const path = this.getPath(passKeyId, keyId);\r\n\r\n    return {\r\n      id: keyId,\r\n      jwk: await this._unwrap(passKey, path),\r\n    };\r\n  }\r\n\r\n  async unwrapKey(masterKeyId: string, keyId: string): Promise<Key> {\r\n    // The first key should be a masterKey\r\n    const masterKey = await this.keyService.loadMasterKey(masterKeyId);\r\n\r\n    if (masterKeyId === keyId) {\r\n      return masterKey;\r\n    }\r\n\r\n    // Get path of the directory key.\r\n    const path = this.getPath(masterKey.id, keyId);\r\n\r\n    return {\r\n      id: keyId,\r\n      jwk: await this._unwrap(masterKey.jwk, path),\r\n    };\r\n  }\r\n\r\n  async decryptFromString<T>(\r\n    keyOrId: string | Key,\r\n    cipherData: string,\r\n    options?: DecryptOptions\r\n  ): Promise<T> {\r\n    if (cipherData) {\r\n      const key = await this.getJwkKey(keyOrId);\r\n      return (await this.encryptionService.decrypt(\r\n        key,\r\n        JSON.parse(cipherData),\r\n        options\r\n      )) as any;\r\n    }\r\n    return null;\r\n  }\r\n\r\n  async decryptFile(keyId: string, file: any): Promise<any> {\r\n    const key = await this.getJwkKey(keyId);\r\n    return (await this.encryptionService.decrypt(key, file, {\r\n      payloadType: 'ArrayBuffer',\r\n    })) as any;\r\n  }\r\n\r\n  // TODO rename this to encrypt() and use as the most common usecase\r\n  async encryptToString(\r\n    key: string | Key | JWK.Key,\r\n    content: any\r\n  ): Promise<string> {\r\n    // Empty string should be encrypted since you want to clear the field.\r\n    // Null is not encrypted because it's not valid JSON in the old JSON spec. Use\r\n    // empty string instead. It'll function as a logic false as well.\r\n    // Note that passing in empty string means it'll be encrypted which verifies\r\n    // it's integrity. But we still want to have a way to set the DB field\r\n    // to NULL, so we explicitly return null when content == null. A null\r\n    // variable in graphql mutation on KC server clears the field to NULL.\r\n    if (content == null) {\r\n      return null;\r\n    }\r\n\r\n    const jwk = asJwk(key) || (await this.getJwkKey(key as string | Key));\r\n    return this.encryptionService.encryptToString(jwk, content);\r\n  }\r\n\r\n  // Wraps a symmetric encryption key.\r\n  // Throws exception if wrapping public keys.\r\n  async wrapKey<T>(\r\n    wrappingKey: string | Key | JWK.Key,\r\n    key: JWK.Key\r\n  ): Promise<string> {\r\n    if (!isSymmetricKey(key)) {\r\n      throw new LrBadArgumentException(\r\n        'Only allowing wrapping of symmetric keys.'\r\n      );\r\n    }\r\n\r\n    return this.encryptToString(wrappingKey, key.toJSON(true));\r\n  }\r\n\r\n  // TODO\r\n  // async wrapPublicKey<T>();\r\n  // async wrapPrivateKey<T>();\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { Apollo } from 'apollo-angular';\r\nimport { QueryOptions, MutationOptions } from '@apollo/client/core';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { HasKeyGraph } from '../cryptography/cryptography.types';\r\nimport { handleApolloError } from '../_common/exceptions';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class LrApolloService {\r\n  constructor(private apollo: Apollo, private keyGraph: KeyGraphService) {}\r\n\r\n  private addKeys(response) {\r\n    if ((response.data as HasKeyGraph).keyGraph) {\r\n      this.keyGraph.addKeys((response.data as HasKeyGraph).keyGraph);\r\n    }\r\n  }\r\n\r\n  async query<T, V = { [key: string]: any }>(\r\n    options: QueryOptions<V>\r\n  ): Promise<T> {\r\n    const response = await this.apollo.query<T, V>(options).toPromise();\r\n\r\n    handleApolloError(response.errors);\r\n\r\n    this.addKeys(response);\r\n\r\n    return response.data;\r\n  }\r\n\r\n  async mutate<T extends any, V = { [key: string]: any }>(\r\n    options: MutationOptions<T, V>\r\n  ): Promise<T> {\r\n    const response = await this.apollo.mutate<T>(options).toPromise();\r\n\r\n    handleApolloError(response.errors);\r\n\r\n    this.addKeys(response);\r\n\r\n    return response.data;\r\n  }\r\n}\r\n","import gql from 'graphql-tag';\r\n\r\nconst KeyGraphFragmentBase = `\r\n{\r\n  keys {\r\n    id\r\n  }\r\n  keyLinks {\r\n    keyId\r\n    wrappingKeyId\r\n    wrappedKey\r\n  }\r\n  passKeys {\r\n    id\r\n  }\r\n  passKeyLinks {\r\n    keyId\r\n    passKeyId\r\n    wrappedKey\r\n  }\r\n  __typename\r\n}\r\n`;\r\n\r\nexport const KeyGraphFragment = gql`\r\nfragment KeyGraphFragment on KeyGraphType ${KeyGraphFragmentBase}\r\n`;\r\n\r\nexport const KeyGraphField = `keyGraph ${KeyGraphFragmentBase}`;\r\n\r\nexport const FetchKeyGraphField = `keyGraph: fetchKeyGraph ${KeyGraphFragmentBase}`;\r\n\r\nexport const FileQuery = gql`\r\n  query File($id: LrRelayIdInput!, $cachedKeyIds: [LrRelayIdInput!]) {\r\n    file(id: $id) {\r\n      id\r\n      keyId\r\n      currentVersion {\r\n        id\r\n        operation\r\n        state {\r\n          keyId\r\n          plainMeta\r\n          cipherMeta\r\n          contentResource\r\n        }\r\n      }\r\n      versions {\r\n        edges {\r\n          node {\r\n            id\r\n            state {\r\n              keyId\r\n              plainMeta\r\n              cipherMeta\r\n              contentResource\r\n            }\r\n          }\r\n        }\r\n      }\r\n      parentDirectoryLinks {\r\n        edges {\r\n          node {\r\n            parentDirectory {\r\n              id\r\n              plainMeta\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n    keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n      ...KeyGraphFragment\r\n    }\r\n  }\r\n  ${KeyGraphFragment}\r\n`;\r\n\r\nexport const DirectoryQuery = gql`\r\n  query Directory($id: LrRelayIdInput!, $cachedKeyIds: [LrRelayIdInput!]) {\r\n    directory(id: $id) {\r\n      id\r\n      keyId\r\n      plainMeta\r\n      cipherMeta\r\n    }\r\n    keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n      ...KeyGraphFragment\r\n    }\r\n  }\r\n  ${KeyGraphFragment}\r\n`;\r\n\r\nexport const CreateFileQuery = gql`\r\n  mutation CreateFile($input: CreateFileInput!) {\r\n    createFile(input: $input) {\r\n      file {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateFileQuery = gql`\r\n  mutation UpdateFile($input: UpdateFileInput!) {\r\n    updateFile(input: $input) {\r\n      file {\r\n        id\r\n        currentVersion {\r\n          id\r\n          state {\r\n            id\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const RevertFileQuery = gql`\r\n  mutation RevertFile($input: RevertFileInput!) {\r\n    revertFile(input: $input) {\r\n      file {\r\n        id\r\n        currentVersion {\r\n          id\r\n          state {\r\n            id\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const MoveFileQuery = gql`\r\n  mutation MoveFile(\r\n    $fileId: LrRelayIdInput!\r\n    $fromParentDirectoryId: LrRelayIdInput!\r\n    $toParentDirectoryId: LrRelayIdInput!\r\n    $wrappingKeyId: LrRelayIdInput!\r\n    $wrappedKey: String!\r\n  ) {\r\n    moveFile(\r\n      input: {\r\n        fileId: $fileId\r\n        fromParentDirectoryId: $fromParentDirectoryId\r\n        toParentDirectoryId: $toParentDirectoryId\r\n        wrappingKeyId: $wrappingKeyId\r\n        wrappedKey: $wrappedKey\r\n      }\r\n    ) {\r\n      file {\r\n        id\r\n        parentDirectoryLinks {\r\n          edges {\r\n            node {\r\n              parentDirectory {\r\n                plainMeta\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const MoveDirectoryQuery = gql`\r\n  mutation MoveDirectory(\r\n    $directoryId: LrRelayIdInput!\r\n    $fromParentDirectoryId: LrRelayIdInput\r\n    $toParentDirectoryId: LrRelayIdInput!\r\n    $wrappedKey: String!\r\n    $wrappingKeyId: LrRelayIdInput!\r\n  ) {\r\n    moveDirectory(\r\n      input: {\r\n        directoryId: $directoryId\r\n        fromParentDirectoryId: $fromParentDirectoryId\r\n        toParentDirectoryId: $toParentDirectoryId\r\n        wrappedKey: $wrappedKey\r\n        wrappingKeyId: $wrappingKeyId\r\n      }\r\n    ) {\r\n      directory {\r\n        id\r\n        parentDirectoryLinks {\r\n          edges {\r\n            node {\r\n              parentDirectory {\r\n                plainMeta\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n","import { HasEdges } from './../_common/types';\r\nimport { HasKeyGraph, PassKey } from './../cryptography/cryptography.types';\r\nimport { ApiCurrentUser, ApiContactCard } from './profile.types';\r\nimport gql from 'graphql-tag';\r\nimport { KeyGraphFragment } from '../_common/queries.gql';\r\n\r\nexport interface CurrentUserQueryType extends HasKeyGraph {\r\n  currentUser: ApiCurrentUser;\r\n  contactCards: HasEdges<ApiContactCard>;\r\n  userPlans: any[];\r\n}\r\n\r\nexport const CurrentUserQuery = gql`\r\n  query {\r\n    currentUser {\r\n      id\r\n      username\r\n      currentUserKey {\r\n        passKey {\r\n          id\r\n          passKeyParams\r\n          passIdpParams\r\n          wrappedPassIdpVerifierPrk\r\n          created\r\n        }\r\n        masterKey {\r\n          id\r\n        }\r\n        rootKey {\r\n          id\r\n        }\r\n        pxk {\r\n          id\r\n        }\r\n        sigPxk {\r\n          id\r\n        }\r\n      }\r\n      userDelete {\r\n        id\r\n        created\r\n        state\r\n      }\r\n      features {\r\n        myVault\r\n        tpVault\r\n        shareVault\r\n      }\r\n      sessionEncryptionKey\r\n    }\r\n    userPlans {\r\n      id\r\n      stripe {\r\n        subscriptionId\r\n      }\r\n      plan {\r\n        name\r\n        data\r\n        state\r\n      }\r\n      periodEnd\r\n    }\r\n    contactCards(orderBy: \"created\") {\r\n      edges {\r\n        node {\r\n          id\r\n          key {\r\n            id\r\n          }\r\n          cipherData\r\n          plainData\r\n        }\r\n      }\r\n    }\r\n    keyGraph {\r\n      ...KeyGraphFragment\r\n    }\r\n  }\r\n  ${KeyGraphFragment}\r\n`;\r\n\r\nexport const CreateContactCardMutation = gql`\r\n  mutation CreateContactCardMutation($input: CreateContactCardInput!) {\r\n    createContactCard(input: $input) {\r\n      contactCard {\r\n        id\r\n        key {\r\n          id\r\n        }\r\n        cipherData\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateContactCardMutation = gql`\r\n  mutation UpdateContactCardMutation($input: UpdateContactCardInput!) {\r\n    updateContactCard(input: $input) {\r\n      contactCard {\r\n        id\r\n        key {\r\n          id\r\n        }\r\n        cipherData\r\n      }\r\n    }\r\n  }\r\n`;\r\n","import { ContactCard } from '../api/contact-card.service';\r\nimport { PassIdpParams, PassKey } from '../cryptography/cryptography.types';\r\nimport { UserDelete } from './user.types';\r\n\r\nexport class CurrentUserKey {\r\n  passKey?: PassKey;\r\n  masterKey?: { id: string };\r\n  rootKey?: { id: string };\r\n  pxk?: { id: string };\r\n  sigPxk?: { id: string };\r\n}\r\n\r\nexport class ApiCurrentUser {\r\n  id: string;\r\n  username: string;\r\n  currentUserKey: CurrentUserKey;\r\n  userDelete: UserDelete;\r\n  features: any;\r\n  sessionEncryptionKey: string;\r\n}\r\n\r\nexport class ApiContactCard {\r\n  id: string;\r\n  cipherData: string;\r\n  key: {\r\n    id: string;\r\n  };\r\n}\r\n\r\nexport class ContactCardName {\r\n  name: string;\r\n  title?: string;\r\n  firstName?: string;\r\n  lastName?: string;\r\n\r\n  constructor(input: any) {\r\n    this.name = input.name;\r\n    this.title = input.title;\r\n    this.firstName = input.firstName;\r\n    this.lastName = input.lastName;\r\n  }\r\n}\r\n\r\nexport class ContactCardAddress {\r\n  fullAddress: string;\r\n  streetAddress: string;\r\n  suburb: string;\r\n  state: string;\r\n  postcode: string;\r\n  country: string;\r\n}\r\n\r\nexport class MainContactCardProperty<T> {\r\n  value: T;\r\n  hasMultiple: boolean;\r\n\r\n  values?: { id: string; label: string; value: T }[];\r\n}\r\n\r\nexport class MainContactCardFields {\r\n  name: MainContactCardProperty<ContactCardName>;\r\n  email: MainContactCardProperty<string>;\r\n  image: MainContactCardProperty<string>;\r\n  phone: MainContactCardProperty<string>;\r\n  address: MainContactCardProperty<ContactCardAddress>;\r\n}\r\n\r\nexport class MainContactCard extends MainContactCardFields {\r\n  id: string;\r\n  keyId: string;\r\n}\r\n\r\nexport class MainContactCardPlainFields {\r\n  name: ContactCardName;\r\n}\r\n\r\nexport enum PasswordChangeStatus {\r\n  InProgress = 'IN_PROGRESS',\r\n  Recovery = 'RECOVERY',\r\n}\r\n\r\nexport class PassIdpApiResult {\r\n  passwordChangeStatus?: PasswordChangeStatus;\r\n  currentPassIdpParams: PassIdpParams;\r\n  newPassIdpParams: PassIdpParams;\r\n  tpPasswordReset: {\r\n    passIdpParams: PassIdpParams;\r\n    resetUsername: string;\r\n  };\r\n}\r\n\r\nexport class TrustedPartyDetails {\r\n  name: ContactCardName;\r\n  email?: string;\r\n  image?: string;\r\n  phones?: { label: string; value: string }[];\r\n  addresses?: {\r\n    label: string;\r\n    value: ContactCardAddress;\r\n  }[];\r\n}\r\n","import { HasKeyGraph } from './../cryptography/cryptography.types';\r\nimport { KeyGraphFragment } from '../_common/queries.gql';\r\nimport gql from 'graphql-tag';\r\nimport { HasKeyGraphEdges, HasEdges } from '../_common/types';\r\n\r\nexport const DEFAULT_BREADCRUMB_DEPTH = 5;\r\nexport const DEFAULT_DESCENDANTS_DEPTH = 5;\r\n\r\nexport enum DirectoryType {\r\n  Vault = 'vault',\r\n  Category = 'category',\r\n  Record = 'record',\r\n}\r\n\r\nexport const DefaultVaultFilter = JSON.stringify({\r\n  filter: [\r\n    {\r\n      contains: {\r\n        directoryType: DirectoryType.Vault,\r\n        default: true,\r\n      },\r\n    },\r\n  ],\r\n});\r\n\r\nexport const CategoryFilter = JSON.stringify({\r\n  filter: [\r\n    {\r\n      contains: {\r\n        directoryType: DirectoryType.Category,\r\n      },\r\n    },\r\n  ],\r\n});\r\n\r\nexport const RecordFilter = JSON.stringify({\r\n  filter: [\r\n    {\r\n      contains: {\r\n        directoryType: DirectoryType.Record,\r\n      },\r\n    },\r\n  ],\r\n});\r\n\r\nexport const AccessFields = `\r\naccessRoles {\r\n  role\r\n  method\r\n  inheritedFrom {\r\n    id\r\n  }\r\n  trustedParty {\r\n    id\r\n  }\r\n  isIssuer\r\n}`;\r\n\r\nconst descendantDirectories = `\r\ndescendantDirectories(depth: ${DEFAULT_DESCENDANTS_DEPTH}, plainMeta: $categoryFilter, archived: false) {\r\n  recordsCount: directoriesCount(plainMeta: $recordFilter, archived: false)\r\n}\r\n`;\r\n\r\nexport const CategoryFields = `\r\n  id\r\n  keyId\r\n  archived\r\n  plainMeta\r\n  cipherMeta\r\n  ${AccessFields}\r\n  ${descendantDirectories}\r\n`;\r\n\r\nexport const VaultFields = `\r\n  id\r\n  keyId\r\n  plainMeta\r\n  cipherMeta\r\n`;\r\n\r\nexport const GetRootDirectoryIdsQuery = gql`\r\n  query GetRootDirectoryIdsQuery($archived: Boolean) {\r\n    rootDirectories(archived: $archived) {\r\n      edges {\r\n        node {\r\n          id\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const GetCategoriesQuery = gql`\r\nquery GetCategories($vaultFilter: LrJSONFilter!, $categoryFilter: LrJSONFilter!, $recordFilter: LrJSONFilter!, $archived: Boolean, $cachedKeyIds: [LrRelayIdInput!])\r\n{\r\n  vaults: rootDirectories(plainMeta: $vaultFilter) {\r\n    edges {\r\n      node {\r\n        childDirectoryLinks(plainMeta: $categoryFilter, orderBy: \"created\", archived: $archived) {\r\n          edges {\r\n            node {\r\n              childDirectory {\r\n                ${CategoryFields}\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n  keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n    ...KeyGraphFragment\r\n  }\r\n}\r\n${KeyGraphFragment}\r\n`;\r\n\r\nexport const GetVaultsQuery = gql`\r\nquery GetVaults($plainMetaFilter: LrJSONFilter!, $cachedKeyIds: [LrRelayIdInput!])\r\n{\r\n  list: rootDirectories(plainMeta: $plainMetaFilter, orderBy: \"created\") {\r\n    edges {\r\n      node {\r\n        ${VaultFields}\r\n      }\r\n    }\r\n  }\r\n  keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n    ...KeyGraphFragment\r\n  }\r\n}\r\n${KeyGraphFragment}\r\n`;\r\n\r\nexport interface GetTrustedPartyCategoriesQueryType extends HasKeyGraph {\r\n  tp: {\r\n    sharedItems: {\r\n      list: HasEdges<any>;\r\n      records: HasEdges<any>;\r\n    };\r\n  };\r\n}\r\n\r\nexport const GetTrustedPartyCategoriesQuery = gql`\r\nquery GetTrustedPartyCategoriesQuery($trustedPartyId: LrRelayIdInput!, $categoryFilter: LrJSONFilter!, $recordFilter: LrJSONFilter!, $contentFilter: LrJSONFilter, $cachedKeyIds: [LrRelayIdInput!])\r\n{\r\n  tp(id: $trustedPartyId) {\r\n    sharedItems {\r\n      list: directories(plainMeta: $categoryFilter, orderBy: \"created\") {\r\n        edges {\r\n          node {\r\n            ${CategoryFields}\r\n          }\r\n        }\r\n      }\r\n      records: directories(plainMeta: $recordFilter, orderBy: \"created\") {\r\n        edges {\r\n          node {\r\n            id\r\n            keyId\r\n            archived\r\n            plainMeta\r\n            cipherMeta\r\n            created\r\n            modified\r\n            ${AccessFields}\r\n            content: childFileLinks(plainMeta: $contentFilter) {\r\n              edges {\r\n                node {\r\n                  childFile {\r\n                    id\r\n                    archived\r\n                    currentVersion {\r\n                      state {\r\n                        keyId\r\n                        plainMeta\r\n                        cipherMeta\r\n                        created\r\n                        modified\r\n                      }\r\n                    }\r\n                  }\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n  keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n    ...KeyGraphFragment\r\n  }\r\n}\r\n${KeyGraphFragment}\r\n`;\r\n\r\nexport interface GetMySharedCategoriesQueryType extends HasKeyGraph {\r\n  tp: {\r\n    myItems: {\r\n      list: HasEdges<any>;\r\n      records: HasEdges<any>;\r\n    };\r\n  };\r\n}\r\n\r\nexport const GetMySharedCategoriesQuery = gql`\r\nquery GetMySharedCategoriesQuery($trustedPartyId: LrRelayIdInput!, $categoryFilter: LrJSONFilter!, $recordFilter: LrJSONFilter!, $contentFilter: LrJSONFilter, $cachedKeyIds: [LrRelayIdInput!])\r\n{\r\n  tp(id: $trustedPartyId) {\r\n    myItems {\r\n      list: directories(plainMeta: $categoryFilter, orderBy: \"created\") {\r\n        edges {\r\n          node {\r\n            ${CategoryFields}\r\n          }\r\n        }\r\n      }\r\n      records: directories(plainMeta: $recordFilter, orderBy: \"created\") {\r\n        edges {\r\n          node {\r\n            id\r\n            keyId\r\n            archived\r\n            plainMeta\r\n            cipherMeta\r\n            created\r\n            modified\r\n            ${AccessFields}\r\n            content: childFileLinks(plainMeta: $contentFilter) {\r\n              edges {\r\n                node {\r\n                  childFile {\r\n                    id\r\n                    archived\r\n                    currentVersion {\r\n                      state {\r\n                        keyId\r\n                        plainMeta\r\n                        cipherMeta\r\n                        created\r\n                        modified\r\n                      }\r\n                    }\r\n                  }\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n  keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n    ...KeyGraphFragment\r\n  }\r\n}\r\n${KeyGraphFragment}\r\n`;\r\n\r\nexport const parentCategoriesField = (depth = DEFAULT_BREADCRUMB_DEPTH) => {\r\n  if (!depth) {\r\n    return '';\r\n  }\r\n  return `\r\nparentCategories: parentDirectoryLinks(plainMeta: $categoryFilter) {\r\n  edges {\r\n    node {\r\n      parentDirectory {\r\n        id\r\n        keyId\r\n        archived\r\n        plainMeta\r\n        cipherMeta\r\n        ${parentCategoriesField(depth - 1)}\r\n        ${AccessFields}\r\n      }\r\n    }\r\n  }\r\n}\r\n`;\r\n};\r\n\r\nexport const GetCategoryQuery = (\r\n  depth: number = DEFAULT_BREADCRUMB_DEPTH\r\n) => gql`\r\nquery GetCategory(\r\n  $id: LrRelayIdInput!,\r\n  $categoryFilter: LrJSONFilter!,\r\n  $recordFilter: LrJSONFilter!,\r\n  $contentFilter: LrJSONFilter,\r\n  $cachedKeyIds: [LrRelayIdInput!]) {\r\n  category: directory(id: $id) {\r\n    id\r\n    keyId\r\n    archived\r\n    plainMeta\r\n    cipherMeta\r\n    ${AccessFields}\r\n    ${descendantDirectories}\r\n    ${parentCategoriesField(depth)}\r\n    subCategories: childDirectoryLinks(plainMeta: $categoryFilter, orderBy: \"created\") {\r\n      edges {\r\n        node {\r\n          childDirectory {\r\n            ${CategoryFields}\r\n          }\r\n        }\r\n      }\r\n    }\r\n    records: childDirectoryLinks(plainMeta: $recordFilter, orderBy: \"created\") {\r\n      edges {\r\n        node {\r\n          childDirectory {\r\n            id\r\n            keyId\r\n            archived\r\n            plainMeta\r\n            cipherMeta\r\n            created\r\n            modified\r\n            ${AccessFields}\r\n            content: childFileLinks(plainMeta: $contentFilter) {\r\n              edges {\r\n                node {\r\n                  childFile {\r\n                    id\r\n                    archived\r\n                    currentVersion {\r\n                      state {\r\n                        keyId\r\n                        plainMeta\r\n                        cipherMeta\r\n                        created\r\n                        modified\r\n                      }\r\n                    }\r\n                  }\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n  keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n    ...KeyGraphFragment\r\n  }\r\n}\r\n${KeyGraphFragment} `;\r\n\r\nexport const GetCategoryKeyIdQuery = gql`\r\n  query GetCategoryKeyIdQuery(\r\n    $id: LrRelayIdInput!\r\n    $cachedKeyIds: [LrRelayIdInput!]\r\n  ) {\r\n    category: directory(id: $id) {\r\n      keyId\r\n    }\r\n    keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n      ...KeyGraphFragment\r\n    }\r\n  }\r\n  ${KeyGraphFragment}\r\n`;\r\n\r\nexport const CreateCategoryMutation = gql`\r\n  mutation CreateCategory(\r\n    $plainMeta: LrJSONString\r\n    $cipherMeta: String\r\n    $parentDirectories: [ParentDirectoryInput!]\r\n    $parentRootDirectory: ParentRootDirectoryInput\r\n  ) {\r\n    new: createDirectory(\r\n      input: {\r\n        plainMeta: $plainMeta\r\n        cipherMeta: $cipherMeta\r\n        parentDirectories: $parentDirectories\r\n        parentRootDirectory: $parentRootDirectory\r\n      }\r\n    ) {\r\n      category: directory {\r\n        id\r\n        keyId\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const CreateVaultMutation = gql`\r\n  mutation CreateCategory(\r\n    $plainMeta: LrJSONString\r\n    $cipherMeta: String\r\n    $parentRootDirectory: ParentRootDirectoryInput\r\n  ) {\r\n    new: createDirectory(\r\n      input: {\r\n        plainMeta: $plainMeta\r\n        cipherMeta: $cipherMeta\r\n        parentRootDirectory: $parentRootDirectory\r\n      }\r\n    ) {\r\n      vault: directory {\r\n        id\r\n        keyId\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateCategoryMutation = gql`\r\n  mutation UpdateCategory($input: UpdateDirectoryInput!) {\r\n    updateDirectory(input: $input) {\r\n      directory {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteCategoryMutation = gql`\r\n  mutation DeleteCategory($categoryId: LrRelayIdInput!) {\r\n    deleteDirectory(input: { directoryId: $categoryId }) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport const ArchiveDirectoryMutation = gql`\r\n  mutation ArchiveDirectory($input: ArchiveDirectoryInput!) {\r\n    archiveDirectory(input: $input) {\r\n      directory {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UnarchiveDirectoryMutation = gql`\r\n  mutation UnarchiveDirectory($input: UnarchiveDirectoryInput!) {\r\n    unarchiveDirectory(input: $input) {\r\n      directory {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n","import { Injectable } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport { GetCategoryKeyIdQuery } from '../category/category.gql';\r\nimport { LrBadArgumentException } from '../_common/exceptions';\r\nimport { Key, PayloadType } from './cryptography.types';\r\nimport {\r\n  asJwk,\r\n  DecryptOptions,\r\n  EncryptionService,\r\n  isSymmetricKey,\r\n} from './encryption.service';\r\nimport { KeyFactoryService } from './key-factory.service';\r\nimport { KeyGraphService } from './key-graph.service';\r\nimport { KeyService } from './key.service';\r\n\r\nexport interface HasCipherMeta {\r\n  keyId: string;\r\n  cipherMeta: string;\r\n}\r\n\r\nexport class WrappedContent {\r\n  key: JWK.Key;\r\n  cipherMeta: string;\r\n  wrappedKeys?: WrappingKey[];\r\n  rootKey?: WrappingKey;\r\n}\r\n\r\nexport class WrappingKey {\r\n  directoryId?: string;\r\n  wrappingKeyId: string;\r\n  wrappedKey: string;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class KeyMetaService {\r\n  constructor(\r\n    private encryptionService: EncryptionService,\r\n    private keyGraph: KeyGraphService,\r\n    private lrApollo: LrApolloService,\r\n    private keyService: KeyService,\r\n    private keyFactory: KeyFactoryService\r\n  ) {}\r\n\r\n  // async decryptFromString<T>(\r\n  //   keyOrId: string | Key,\r\n  //   cipherData: string,\r\n  //   options?: DecryptOptions\r\n  // ): Promise<T> {\r\n  //   if (cipherData) {\r\n  //     const key = await this.keyGraphService.getJwkKey(keyOrId);\r\n  //     return (await this.encryptionService.decrypt(\r\n  //       key,\r\n  //       JSON.parse(cipherData),\r\n  //       options\r\n  //     )) as any;\r\n  //   }\r\n  //   return null;\r\n  // }\r\n\r\n  async decryptMeta<T>(metaHaver: HasCipherMeta): Promise<T> {\r\n    if (metaHaver.cipherMeta) {\r\n      const key = await this.keyGraph.getJwkKey(metaHaver.keyId);\r\n      return (await this.encryptionService.decrypt(\r\n        key,\r\n        JSON.parse(metaHaver.cipherMeta)\r\n      )) as any;\r\n    }\r\n    return null;\r\n  }\r\n\r\n  // async decryptFile(keyId: string, file: any): Promise<any> {\r\n  //   const key = await this.keyGraphService.getJwkKey(keyId);\r\n  //   return (await this.encryptionService.decrypt(key, file, {\r\n  //     payloadType: 'ArrayBuffer',\r\n  //   })) as any;\r\n  // }\r\n\r\n  // // TODO rename this to encrypt() and use as the most common usecase\r\n  // async encryptToString(\r\n  //   key: string | Key | JWK.Key,\r\n  //   content: any\r\n  // ): Promise<string> {\r\n  //   // Empty string should be encrypted since you want to clear the field.\r\n  //   // Null is not encrypted because it's not valid JSON in the old JSON spec. Use\r\n  //   // empty string instead. It'll function as a logic false as well.\r\n  //   // Note that passing in empty string means it'll be encrypted which verifies\r\n  //   // it's integrity. But we still want to have a way to set the DB field\r\n  //   // to NULL, so we explicitly return null when content == null. A null\r\n  //   // variable in graphql mutation on KC server clears the field to NULL.\r\n  //   if (content == null) {\r\n  //     return null;\r\n  //   }\r\n\r\n  //   const jwk =\r\n  //     asJwk(key) || (await this.keyGraphService.getJwkKey(key as string | Key));\r\n  //   return JSON.stringify(await this.encryptionService.encrypt(jwk, content));\r\n  // }\r\n\r\n  // // Wraps a symmetric encryption key.\r\n  // // Throws exception if wrapping public keys.\r\n  // async wrapKey<T>(\r\n  //   wrappingKey: string | Key | JWK.Key,\r\n  //   key: JWK.Key\r\n  // ): Promise<string> {\r\n  //   if (!isSymmetricKey(key)) {\r\n  //     throw new LrBadArgumentException(\r\n  //       'Only allowing wrapping of symmetric keys.'\r\n  //     );\r\n  //   }\r\n\r\n  //   return this.encryptToString(wrappingKey, key.toJSON(true));\r\n  // }\r\n\r\n  // // TODO\r\n  // // async wrapPublicKey<T>();\r\n  // // async wrapPrivateKey<T>();\r\n\r\n  async doubleWrapContent(\r\n    secureContent: any,\r\n    categoryIds: string[],\r\n    fileContent?: ArrayBuffer\r\n  ) {\r\n    const key = await this.keyFactory.createKey();\r\n\r\n    const wrappedContent = await this.wrapContent(\r\n      key.toJSON(true),\r\n      categoryIds\r\n    );\r\n\r\n    return {\r\n      rootKey: wrappedContent.rootKey,\r\n      wrappedKeys: wrappedContent.wrappedKeys,\r\n      doubleWrappedKey: wrappedContent.cipherMeta,\r\n      cipherMeta: secureContent\r\n        ? JSON.stringify(\r\n            await this.encryptionService.encrypt(key, secureContent)\r\n          )\r\n        : null,\r\n      cipherFileContent: fileContent\r\n        ? JSON.stringify(await this.encryptionService.encrypt(key, fileContent))\r\n        : null,\r\n    };\r\n  }\r\n\r\n  async reWrapContent(keyId: string, secureContent: any) {\r\n    const key = await this.keyGraph.getJwkKey(keyId);\r\n    const newKey = await this.keyFactory.createKey();\r\n\r\n    return {\r\n      doubleWrappedKey: JSON.stringify(\r\n        await this.encryptionService.encrypt(key, newKey.toJSON(true))\r\n      ),\r\n      cipherMeta: secureContent\r\n        ? JSON.stringify(\r\n            await this.encryptionService.encrypt(newKey, secureContent)\r\n          )\r\n        : null,\r\n    };\r\n  }\r\n\r\n  async wrapContent(\r\n    secureContent: any,\r\n    categoryIds?: string[]\r\n  ): Promise<WrappedContent> {\r\n    const key = await this.keyFactory.createKey();\r\n\r\n    let wrappedKeys: WrappingKey[];\r\n    let rootWrappingKey: WrappingKey;\r\n\r\n    if (categoryIds && categoryIds.length) {\r\n      wrappedKeys = await Promise.all(\r\n        categoryIds.map(async (categoryId) => {\r\n          const parentKey = await this.getCategoryKeyId(categoryId);\r\n          const wrappedKey = JSON.stringify(\r\n            await this.encryptionService.encrypt(\r\n              parentKey.key,\r\n              key.toJSON(true)\r\n            )\r\n          );\r\n          return {\r\n            directoryId: categoryId,\r\n            wrappingKeyId: parentKey.keyId,\r\n            wrappedKey,\r\n          };\r\n        })\r\n      );\r\n    } else {\r\n      // Adding to root directory\r\n      const rootKey = this.keyService.getCurrentRootKey();\r\n      const wrappedKey = JSON.stringify(\r\n        await this.encryptionService.encrypt(rootKey.jwk, key.toJSON(true))\r\n      );\r\n      rootWrappingKey = {\r\n        wrappingKeyId: rootKey.id,\r\n        wrappedKey,\r\n      };\r\n    }\r\n\r\n    return {\r\n      key,\r\n      rootKey: rootWrappingKey,\r\n      wrappedKeys,\r\n      cipherMeta: secureContent\r\n        ? JSON.stringify(\r\n            await this.encryptionService.encrypt(key, secureContent)\r\n          )\r\n        : null,\r\n    };\r\n  }\r\n\r\n  async wrapContentWithKey(\r\n    secureContent: any,\r\n    keyId: string\r\n  ): Promise<WrappedContent> {\r\n    const key = await this.keyFactory.createKey();\r\n\r\n    const wrappedKey = await this.keyGraph.encryptToString(\r\n      keyId,\r\n      key.toJSON(true)\r\n    );\r\n\r\n    return {\r\n      key,\r\n      rootKey: {\r\n        wrappingKeyId: keyId,\r\n        wrappedKey,\r\n      },\r\n      cipherMeta: secureContent\r\n        ? JSON.stringify(\r\n            await this.encryptionService.encrypt(key, secureContent)\r\n          )\r\n        : null,\r\n    };\r\n  }\r\n\r\n  private async getCategoryKeyId(\r\n    categoryId: string\r\n  ): Promise<{ keyId: string; key: any }> {\r\n    const { category } = await this.lrApollo.query<any>({\r\n      query: GetCategoryKeyIdQuery,\r\n      variables: {\r\n        id: categoryId,\r\n      },\r\n    });\r\n\r\n    return {\r\n      keyId: category.keyId,\r\n      key: await this.keyGraph.getJwkKey(category.keyId),\r\n    };\r\n  }\r\n}\r\n","import { KeyGraphField } from '../_common/queries.gql';\r\nimport gql from 'graphql-tag';\r\n\r\nexport const ContactCardFields = `\r\nid\r\npublicData\r\npublicSearchable\r\ncipherData\r\nkey {\r\n  id\r\n}\r\n`;\r\n\r\nexport const ContactCardQuery = gql`\r\nquery ContactCardQuery(\r\n$id: LrRelayIdInput!\r\n) {\r\ncontactCard (\r\n  id: $id\r\n) {\r\n  ${ContactCardFields}\r\n}\r\n${KeyGraphField}\r\n}`;\r\n\r\nexport const SearchContactCardQuery = gql`\r\nquery SearchContactCardQuery(\r\n  $publicSearchable: LrJSONFilter!\r\n) {\r\n  searchContactCards(\r\n    publicSearchable: $publicSearchable\r\n    orderBy: \"created\"\r\n  ) {\r\n    edges {\r\n      node {\r\n        ${ContactCardFields}\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n}`;\r\n\r\nexport const ContactCardListQuery = gql`\r\nquery ContactCardListQuery {\r\n  contactCards(\r\n    orderBy: \"created\"\r\n  ) {\r\n    edges {\r\n      node {\r\n        ${ContactCardFields}\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n}`;\r\n\r\nexport const CreateContactCardMutation = gql`\r\nmutation CreateContactCardMutation(\r\n  $input: CreateContactCardInput!\r\n) {\r\n  createContactCard(input: $input) {\r\n    contactCard {\r\n      ${ContactCardFields}\r\n    }\r\n  }\r\n}`;\r\n\r\nexport const UpdateContactCardMutation = gql`\r\nmutation UpdateContactCardMutation(\r\n  $input: UpdateContactCardInput!\r\n) {\r\n  updateContactCard(input: $input) {\r\n    contactCard {\r\n      ${ContactCardFields}\r\n    }\r\n  }\r\n}`;\r\n\r\nexport const DeleteContactCardMutation = gql`\r\n  mutation DeleteContactCardMutation($input: DeleteContactCardInput!) {\r\n    deleteContactCard(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n","import gql from 'graphql-tag';\r\n\r\nexport const CreateStripeCheckoutSessionMutation = gql`\r\n  mutation CreateStripeCheckoutSession(\r\n    $priceId: String!\r\n    $successUrl: String!\r\n    $cancelUrl: String!\r\n  ) {\r\n    createStripeCheckoutSession(\r\n      input: {\r\n        priceId: $priceId\r\n        successUrl: $successUrl\r\n        cancelUrl: $cancelUrl\r\n      }\r\n    ) {\r\n      sessionId\r\n    }\r\n  }\r\n`;\r\n\r\nexport const CreateStripeBillingPortalSessionMutation = gql`\r\n  mutation CreateStripeBillingPortalSession($returnUrl: String!) {\r\n    createStripeBillingPortalSession(input: { returnUrl: $returnUrl }) {\r\n      sessionUrl\r\n    }\r\n  }\r\n`;\r\n\r\nexport const planFields = `\r\n  name\r\n  data\r\n  state\r\n`;\r\n\r\nexport const CreateUserIssuedPlanMutation = gql`\r\nmutation CreateUserIssuedPlan($input: CreateUserIssuedPlanInput!){\r\n  createUserIssuedPlan(input: $input) {\r\n    userIssuedPlan {\r\n      id\r\n      plan {\r\n        ${planFields}\r\n      }\r\n      token\r\n      tokenExpiryTime\r\n      planPeriodEnd\r\n      planPeriodEndAfterSeconds\r\n    }\r\n  }\r\n}`;\r\n\r\nexport const DeleteUserIssuedPlanMutation = gql`\r\n  mutation DeleteUserIssuedPlan($input: DeleteUserIssuedPlanInput!) {\r\n    deleteUserIssuedPlan(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UserIssuablePlansQuery = gql`\r\nquery UserIssuablePlans {\r\n  userIssuablePlans {\r\n    plan {\r\n      ${planFields}\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\n// Put other fields in as needed.\r\nexport const UserIssuedPlansQuery = gql`\r\n  query UserIssuedPlans {\r\n    userIssuedPlans {\r\n      edges {\r\n        node {\r\n          id\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UserIssuedPlanQuery = gql`\r\nquery UserIssuedPlan(\r\n  $id: LrRelayIdInput!\r\n  $token: String\r\n) {\r\n  userIssuedPlan(\r\n    id: $id\r\n    token: $token\r\n  ) {\r\n    id\r\n    plan {\r\n      ${planFields}\r\n    }\r\n    planPeriodEnd\r\n    planPeriodEndAfterSeconds\r\n  }\r\n}\r\n`;\r\n\r\nexport const AssociateUserIssuedPlanMutation = gql`\r\nmutation AssociateUserIssuedPlan($input: AssociateUserIssuedPlanInput!){\r\n  associateUserIssuedPlan(input: $input) {\r\n    userPlan {\r\n      id\r\n      plan {\r\n        ${planFields}\r\n      }\r\n      periodEnd\r\n    }\r\n  }\r\n}`;\r\n\r\nexport const UserPlansQuery = gql`\r\nquery UserPlans {\r\n  userPlans {\r\n    id\r\n    periodEnd\r\n    plan {\r\n      ${planFields}\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport const StripeQuery = gql`\r\n  query Stripe {\r\n    stripe {\r\n      id\r\n      customer\r\n    }\r\n  }\r\n`;\r\n","import { Injectable } from '@angular/core';\r\nimport {\r\n  CreateStripeCheckoutSessionMutation,\r\n  CreateStripeBillingPortalSessionMutation,\r\n  UserIssuablePlansQuery,\r\n  CreateUserIssuedPlanMutation,\r\n  DeleteUserIssuedPlanMutation,\r\n  UserIssuedPlansQuery,\r\n  AssociateUserIssuedPlanMutation,\r\n  UserPlansQuery,\r\n  StripeQuery,\r\n  UserIssuedPlanQuery,\r\n} from './plan.gql';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport {\r\n  StripeCheckoutSession,\r\n  StripeBillingPortalSession,\r\n  UserIssuablePlan,\r\n  UserIssuedPlan,\r\n  UserPlan,\r\n} from './plan.types';\r\nimport { LrBadArgumentException } from '../_common/exceptions';\r\n\r\nexport function mapUserPlans(userPlans: any[]): UserPlan[] {\r\n  return userPlans.map((t) => ({\r\n    ...t,\r\n    periodEnd: t.periodEnd && new Date(t.periodEnd),\r\n    subscription: { id: t.stripe?.subscriptionId },\r\n  }));\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class PlanService {\r\n  constructor(private lrApollo: LrApolloService) {}\r\n\r\n  async createStripeCheckoutSession(input: {\r\n    priceId: string;\r\n    successUrl: string;\r\n    cancelUrl: string;\r\n  }): Promise<StripeCheckoutSession> {\r\n    const res = await this.lrApollo.mutate<{\r\n      createStripeCheckoutSession: any;\r\n    }>({\r\n      mutation: CreateStripeCheckoutSessionMutation,\r\n      variables: {\r\n        ...input,\r\n      },\r\n    });\r\n    return {\r\n      id: res.createStripeCheckoutSession.sessionId,\r\n    };\r\n  }\r\n\r\n  async createStripeBillingPortalSession(\r\n    returnUrl: string\r\n  ): Promise<StripeBillingPortalSession> {\r\n    const res = await this.lrApollo.mutate<{\r\n      createStripeBillingPortalSession: any;\r\n    }>({\r\n      mutation: CreateStripeBillingPortalSessionMutation,\r\n      variables: {\r\n        returnUrl,\r\n      },\r\n    });\r\n    return {\r\n      url: res.createStripeBillingPortalSession.sessionUrl,\r\n    };\r\n  }\r\n\r\n  async getUserIssuablePlans(): Promise<UserIssuablePlan[]> {\r\n    const { userIssuablePlans } = await this.lrApollo.query<{\r\n      userIssuablePlans: any;\r\n    }>({\r\n      query: UserIssuablePlansQuery,\r\n    });\r\n\r\n    return userIssuablePlans;\r\n  }\r\n\r\n  async createUserIssuedPlan({\r\n    planName,\r\n    tokenExpiryTime,\r\n    planPeriodEnd,\r\n    planPeriodEndAfterSeconds,\r\n  }: {\r\n    planName: string;\r\n    tokenExpiryTime: Date;\r\n    planPeriodEnd?: Date;\r\n    planPeriodEndAfterSeconds?: number;\r\n  }): Promise<UserIssuedPlan> {\r\n    if (planPeriodEnd == null && planPeriodEndAfterSeconds == null) {\r\n      throw new LrBadArgumentException(\r\n        'Must specify either \"planPeriodEnd\" or \"planPeriodEndAfterSeconds\"'\r\n      );\r\n    }\r\n\r\n    const { createUserIssuedPlan } = await this.lrApollo.mutate<any>({\r\n      mutation: CreateUserIssuedPlanMutation,\r\n      variables: {\r\n        input: {\r\n          planName,\r\n          tokenExpiryTime: tokenExpiryTime.toISOString(),\r\n          planPeriodEnd: planPeriodEnd && planPeriodEnd.toISOString(),\r\n          planPeriodEndAfterSeconds,\r\n        },\r\n      },\r\n    });\r\n\r\n    const { userIssuedPlan } = createUserIssuedPlan;\r\n\r\n    return {\r\n      ...userIssuedPlan,\r\n      tokenExpiryTime: new Date(userIssuedPlan.tokenExpiryTime),\r\n      planPeriodEnd: new Date(userIssuedPlan.planPeriodEnd),\r\n    };\r\n  }\r\n\r\n  async deleteUserIssuedPlan(id: string): Promise<void> {\r\n    return await this.lrApollo.mutate<any>({\r\n      mutation: DeleteUserIssuedPlanMutation,\r\n      variables: {\r\n        input: {\r\n          id,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async getUserIssuedPlans(): Promise<any[]> {\r\n    const { userIssuedPlans } = await this.lrApollo.query<any>({\r\n      query: UserIssuedPlansQuery,\r\n    });\r\n\r\n    return userIssuedPlans.edges.map((edge) => edge.node);\r\n  }\r\n\r\n  async getUserIssuedPlan(id: string, token?: string): Promise<any> {\r\n    const { userIssuedPlan } = await this.lrApollo.query<any>({\r\n      query: UserIssuedPlanQuery,\r\n      variables: {\r\n        id,\r\n        token,\r\n      },\r\n    });\r\n\r\n    return userIssuedPlan;\r\n  }\r\n\r\n  async associateUserIssuedPlan({\r\n    id,\r\n    token,\r\n  }: {\r\n    id: string;\r\n    token: string;\r\n  }): Promise<UserPlan> {\r\n    const { associateUserIssuedPlan } = await this.lrApollo.query<any>({\r\n      query: AssociateUserIssuedPlanMutation,\r\n      variables: {\r\n        input: {\r\n          id,\r\n          token,\r\n        },\r\n      },\r\n    });\r\n\r\n    const { userPlan } = associateUserIssuedPlan;\r\n\r\n    return {\r\n      ...userPlan,\r\n      periodEnd: new Date(userPlan.periodEnd),\r\n    };\r\n  }\r\n\r\n  async getUserPlans(): Promise<UserPlan[]> {\r\n    const { userPlans } = await this.lrApollo.query<any>({\r\n      query: UserPlansQuery,\r\n    });\r\n\r\n    return mapUserPlans(userPlans);\r\n  }\r\n\r\n  async getPlanType(subscriptionId: string): Promise<string> {\r\n    const stripe: any = await this.getStripe();\r\n    return stripe.customer.subscriptions.data.filter(\r\n      (sub) => sub.id === subscriptionId\r\n    )[0].items.data[0].plan.interval;\r\n  }\r\n\r\n  async getStripe(): Promise<{ id: string; customer: object }> {\r\n    const { stripe } = await this.lrApollo.query<any>({\r\n      query: StripeQuery,\r\n    });\r\n\r\n    return stripe;\r\n  }\r\n}\r\n","import { HttpClient } from '@angular/common/http';\r\nimport { Inject, Injectable } from '@angular/core';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport { LifeReadyConfig, LR_CONFIG } from '../life-ready.config';\r\nimport {\r\n  CurrentUserQuery,\r\n  CurrentUserQueryType,\r\n  UpdateContactCardMutation,\r\n  CreateContactCardMutation,\r\n} from './profile.gql';\r\nimport {\r\n  ApiCurrentUser,\r\n  PassIdpApiResult,\r\n  MainContactCard,\r\n  ApiContactCard,\r\n  MainContactCardFields,\r\n  MainContactCardPlainFields,\r\n  ContactCardName,\r\n} from './profile.types';\r\nimport { KeyMetaService } from '../cryptography/key-meta.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { ContactCard } from '../api/contact-card.service';\r\nimport {\r\n  ContactCardListQuery,\r\n  DeleteContactCardMutation,\r\n} from '../api/contact-card.gql';\r\nimport { mapUserPlans } from '../plan/plan.service';\r\nimport { UserPlan } from '../plan/plan.types';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class ProfileService {\r\n  constructor(\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private http: HttpClient,\r\n    private lrApollo: LrApolloService,\r\n    private keyService: KeyService,\r\n    private keyMetaService: KeyMetaService,\r\n    private keyGraph: KeyGraphService,\r\n    private encryptionService: EncryptionService\r\n  ) {}\r\n\r\n  async getPassIdpParams(emailOrPhone: string): Promise<PassIdpApiResult> {\r\n    return await this.http\r\n      .get<PassIdpApiResult>(\r\n        `${\r\n          this.config.authUrl\r\n        }users/pass-idp-params/?login_name=${encodeURIComponent(emailOrPhone)}`\r\n      )\r\n      .toPromise();\r\n  }\r\n\r\n  async getCurrentUser(): Promise<{\r\n    currentUser: ApiCurrentUser;\r\n    contactCard: ApiContactCard;\r\n    userPlans: UserPlan[];\r\n  }> {\r\n    const {\r\n      currentUser,\r\n      contactCards,\r\n      userPlans,\r\n    } = await this.lrApollo.query<CurrentUserQueryType>({\r\n      query: CurrentUserQuery,\r\n    });\r\n\r\n    const contactCard = contactCards.edges.map((x) => x.node)[0];\r\n\r\n    return {\r\n      currentUser,\r\n      contactCard,\r\n      userPlans: mapUserPlans(userPlans),\r\n    };\r\n  }\r\n\r\n  async decryptContactCard(\r\n    contactCard: ApiContactCard\r\n  ): Promise<MainContactCard> {\r\n    if (!contactCard) {\r\n      return null;\r\n    }\r\n\r\n    const details = await this.keyGraph.decryptFromString<any>(\r\n      contactCard.key.id,\r\n      contactCard.cipherData\r\n    );\r\n\r\n    return {\r\n      id: contactCard.id,\r\n      keyId: contactCard.key.id,\r\n      ...details,\r\n    };\r\n  }\r\n\r\n  async updateDetails(\r\n    id: string,\r\n    keyId: string,\r\n    fields: MainContactCardFields\r\n  ): Promise<void> {\r\n    await (id\r\n      ? this.updateContactCard(id, keyId, fields)\r\n      : this.createContactCard(fields));\r\n  }\r\n\r\n  private async prepareContactCardInput(\r\n    contactCard: MainContactCardFields\r\n  ): Promise<any> {\r\n    const sigPxk = await this.keyService.getCurrentSigPxk();\r\n\r\n    const publicDataSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, '')\r\n    );\r\n    const publicSearchableSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, '')\r\n    );\r\n\r\n    const plainDataJson: MainContactCardPlainFields = {\r\n      // contactCard.name.value may have additional attributes such as the id of the contact card.\r\n      // So we create a clean version. Otherwise it will fail server checks.\r\n      name: new ContactCardName(contactCard.name.value),\r\n    };\r\n    const plainDataSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, plainDataJson)\r\n    );\r\n\r\n    return {\r\n      sigPxkId: sigPxk.id,\r\n      publicDataSig,\r\n      publicSearchableSig,\r\n      plainDataSig,\r\n    };\r\n  }\r\n\r\n  private async createContactCard(\r\n    contactCard: MainContactCardFields\r\n  ): Promise<ApiContactCard> {\r\n    const input = await this.prepareContactCardInput(contactCard);\r\n\r\n    const { rootKey, cipherMeta } = await this.keyMetaService.wrapContent(\r\n      contactCard\r\n    );\r\n\r\n    const data = await this.lrApollo.mutate<{\r\n      createContactCard: { contactCard: ApiContactCard };\r\n    }>({\r\n      mutation: CreateContactCardMutation,\r\n      variables: {\r\n        input: {\r\n          ...input,\r\n          cipherData: cipherMeta,\r\n          wrappingKeyId: rootKey.wrappingKeyId,\r\n          wrappedKey: rootKey.wrappedKey,\r\n          default: true, // Use this contact card as default contact card.\r\n        },\r\n      },\r\n    });\r\n    return data.createContactCard.contactCard;\r\n  }\r\n\r\n  private async updateContactCard(\r\n    id: string,\r\n    keyId: string,\r\n    contactCard: MainContactCardFields\r\n  ): Promise<ApiContactCard> {\r\n    const input = await this.prepareContactCardInput(contactCard);\r\n\r\n    const cipherData = await this.keyGraph.encryptToString(keyId, contactCard);\r\n\r\n    const data = await this.lrApollo.mutate<{\r\n      updateContactCard: { contactCard: ApiContactCard };\r\n    }>({\r\n      mutation: UpdateContactCardMutation,\r\n      variables: {\r\n        input: {\r\n          ...input,\r\n          id,\r\n          cipherData,\r\n        },\r\n      },\r\n    });\r\n    return data.updateContactCard.contactCard;\r\n  }\r\n\r\n  async decryptContactCardEdges(edges): Promise<ContactCard[]> {\r\n    return Promise.all(\r\n      edges.map(async (edge: any) => {\r\n        const cc = edge.node as ContactCard;\r\n        return await this.decryptContactCard(cc);\r\n      })\r\n    );\r\n  }\r\n\r\n  async getContactCards(): Promise<ContactCard[]> {\r\n    const data = await this.lrApollo.query<any>({\r\n      query: ContactCardListQuery,\r\n    });\r\n\r\n    return await this.decryptContactCardEdges(data.contactCards.edges);\r\n  }\r\n\r\n  async deleteContactCard(id: string): Promise<string> {\r\n    const data = await this.lrApollo.mutate<any>({\r\n      mutation: DeleteContactCardMutation,\r\n      variables: {\r\n        input: {\r\n          id,\r\n        },\r\n      },\r\n    });\r\n\r\n    return data.deleteContactCard.id;\r\n  }\r\n\r\n  async signOut(): Promise<void> {\r\n    await this.http\r\n      .post(`${this.config.authUrl}auth/sign-out/`, null, {\r\n        withCredentials: true,\r\n        responseType: 'text',\r\n      })\r\n      .toPromise();\r\n  }\r\n}\r\n","import { CognitoUser } from '@aws-amplify/auth';\r\nimport { JWK } from 'node-jose';\r\nimport { TpPasswordResetUserNode } from '../api/types';\r\nimport {\r\n  PassIdpParams,\r\n  PassKeyParams,\r\n} from '../cryptography/cryptography.types';\r\nimport { UserPlan } from '../plan/plan.types';\r\nimport { CurrentUserKey, MainContactCard } from '../users/profile.types';\r\nimport { UserDelete } from '../users/user.types';\r\n\r\nexport interface PassKeyBundle {\r\n  passKeyParams: PassKeyParams;\r\n  passKey: JWK.Key;\r\n  passIdpParams: PassIdpParams;\r\n  passIdp: JWK.Key;\r\n  passIdpVerifier: JWK.Key;\r\n  wrappedPassIdpVerifierPrk: object;\r\n}\r\n\r\nexport class CognitoChallengeUser extends CognitoUser {\r\n  recoveryStatus: RecoveryStatus;\r\n  challengeName: 'SMS_MFA' | 'SOFTWARE_TOKEN_MFA';\r\n  challengeParam: any;\r\n  isTpPasswordResetUser = false;\r\n}\r\n\r\nexport enum FeatureAction {\r\n  // Just the one for now\r\n  ACCESS = 'access',\r\n}\r\n\r\nexport class Features {\r\n  myVault: FeatureAction[];\r\n  tpVault: FeatureAction[];\r\n  shareVault: FeatureAction[];\r\n}\r\n\r\nexport class CurrentUser {\r\n  id: string;\r\n  sub: string;\r\n  username: string;\r\n  currentUserKey: CurrentUserKey;\r\n  email: string;\r\n  emailVerified: boolean;\r\n  phone: string;\r\n  phoneVerified: boolean;\r\n  getAccessJwtToken: () => string;\r\n  contactCard: MainContactCard;\r\n  userDelete?: UserDelete;\r\n  userPlans: UserPlan[];\r\n  features: Features;\r\n  hasTPVaultAccess: boolean;\r\n  sessionEncryptionKey: string;\r\n}\r\n\r\nexport interface TpPasswordResetUser extends TpPasswordResetUserNode {\r\n  sub: string;\r\n}\r\n\r\nexport class LoginResult {\r\n  hasChallenge: boolean;\r\n  challenge?: CognitoChallengeUser;\r\n  user?: CurrentUser;\r\n  resetUser?: TpPasswordResetUserNode;\r\n}\r\n\r\nexport class RegisterResult {\r\n  username: string;\r\n  userId: string;\r\n  preSignUpToken: string;\r\n  userSub: string;\r\n}\r\n\r\nexport enum RecoveryStatus {\r\n  NONE = 'none',\r\n  NEW_PASSWORD = 'new-password',\r\n  OLD_PASSWORD = 'old-password',\r\n}\r\n","// Abstract Syntax Tree\r\n\r\nimport {\r\n  DocumentNode,\r\n  FieldNode,\r\n  FragmentDefinitionNode,\r\n  NameNode,\r\n  OperationDefinitionNode,\r\n  OperationTypeNode,\r\n} from 'graphql';\r\nimport gql from 'graphql-tag';\r\nimport { LrBadArgumentException, LrBadLogicException } from './exceptions';\r\n\r\nexport function getAstOperation(\r\n  astDocument,\r\n  operation: OperationTypeNode\r\n): OperationDefinitionNode {\r\n  const operations = astDocument.definitions.filter(\r\n    (def: OperationDefinitionNode) => def.kind === 'OperationDefinition'\r\n  );\r\n\r\n  if (operations.length > 1) {\r\n    throw new LrBadLogicException(\r\n      `There can be only one '${operation}' operation, instead there are ${operations.length}`\r\n    );\r\n  }\r\n\r\n  return operations[0];\r\n}\r\n\r\nexport function getQuery(doc: DocumentNode): OperationDefinitionNode {\r\n  return getAstOperation(doc, 'query');\r\n}\r\n\r\nexport function getMutation(doc: DocumentNode): OperationDefinitionNode {\r\n  return getAstOperation(doc, 'mutation');\r\n}\r\n\r\nexport function getFragments(doc: DocumentNode): FragmentDefinitionNode[] {\r\n  return doc.definitions.filter(\r\n    (def) => def.kind === 'FragmentDefinition'\r\n  ) as FragmentDefinitionNode[];\r\n}\r\n\r\nexport function getFragment(astDocument: DocumentNode): FragmentDefinitionNode {\r\n  const fragments = getFragments(astDocument);\r\n  if (fragments.length > 1) {\r\n    throw new LrBadArgumentException(\r\n      'GraphQL document can only contain one fragment.'\r\n    );\r\n  }\r\n  return fragments[0];\r\n}\r\n\r\nexport function name(value: string): NameNode {\r\n  return {\r\n    kind: 'Name',\r\n    value,\r\n  };\r\n}\r\n\r\nexport function getAliasOrName(field: FieldNode) {\r\n  return field.alias?.value || field.name.value;\r\n}\r\n\r\n// Collocates the type with the document.\r\n/* tslint:disable:no-empty-interface */\r\nexport interface TypedDocumentNode<T> extends DocumentNode {}\r\n\r\nexport function gqlTyped<T = any>(\r\n  literals: ReadonlyArray<string> | Readonly<string>,\r\n  ...placeholders: any[]\r\n): TypedDocumentNode<T> {\r\n  return gql(literals, ...placeholders) as TypedDocumentNode<T>;\r\n}\r\n","import gql from 'graphql-tag';\r\nimport { gqlTyped } from '../_common/ast';\r\n\r\nexport const PasswordChangeRequestMutation = gql`\r\n  mutation {\r\n    passwordChangeRequest(input: {}) {\r\n      challenge\r\n      passKeys {\r\n        id\r\n        passIdpParams\r\n        wrappedPassIdpVerifierPrk\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const PasswordChangeMutation = gql`\r\n  mutation PasswordChange($input: PasswordChangeInput!) {\r\n    passwordChange(input: $input) {\r\n      token\r\n      newPassKey {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const PasswordChangeConfigQuery = gql`\r\n  query PasswordChangeConfigQuery {\r\n    passwordChangeConfig {\r\n      maxAuthAgeSeconds\r\n      authTime\r\n      serverTime\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface SetSessionEncryptionKeyMutation {\r\n  setSessionEncryptionKey: {\r\n    sessionEncryptionKey: string;\r\n  };\r\n}\r\nexport const SetSessionEncryptionKeyMutation = gqlTyped<SetSessionEncryptionKeyMutation>`\r\nmutation SetSessionEncryptionKeyMutation($input: SetSessionEncryptionKeyInput!) {\r\n  setSessionEncryptionKey(input: $input) {\r\n    sessionEncryptionKey\r\n  }\r\n}\r\n`;\r\n\r\nexport interface ClearSessionEncryptionKeyMutation {\r\n  clearSessionEncryptionKey: {\r\n    sessionEncryptionKey: string;\r\n  };\r\n}\r\nexport const ClearSessionEncryptionKeyMutation = gqlTyped<ClearSessionEncryptionKeyMutation>`\r\nmutation ClearSessionEncryptionKeyMutation {\r\n  clearSessionEncryptionKey(input: {}) {\r\n    sessionEncryptionKey\r\n  }\r\n}\r\n`;\r\n","export enum Config {\r\n  TIMEOUT = 0.01, // seconds, min value 0.01, after state is idle, wait for TIMEOUT seconds before taking action\r\n  IDLE = 60 * 20, // seconds, period of inactivity to consider state as idle\r\n  KEEP_ALIVE_INTERVAL = 60 * 1, // seconds, triggered on a regular basis while active (i.e. while not idling)\r\n}\r\n\r\nexport interface KeepaliveResult {\r\n  session: {\r\n    expires_after_seconds: number;\r\n  };\r\n}\r\n","import { Inject, Injectable } from '@angular/core';\r\nimport { Idle, DEFAULT_INTERRUPTSOURCES } from '@ng-idle/core';\r\nimport { Keepalive } from '@ng-idle/keepalive';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport {\r\n  LrBadArgumentException,\r\n  LrBadStateException,\r\n} from '../_common/exceptions';\r\nimport { LifeReadyConfig, LR_CONFIG } from '../life-ready.config';\r\nimport { HttpClient } from '@angular/common/http';\r\nimport { Config, KeepaliveResult } from './idle.types';\r\nimport { Key } from '../cryptography/cryptography.types';\r\nimport { CognitoUser } from '@aws-amplify/auth';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\n\r\nexport interface IdleServiceInit {\r\n  // TODO: this should be EventEmitter instead of a callback.\r\n  onTimeout?: (() => any) | (() => Promise<any>) | null;\r\n  onKeepalive?: (() => any) | (() => Promise<any>) | null;\r\n  idleSec?: number;\r\n  timeoutSec?: number;\r\n  keepAliveIntervalSec?: number;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class IdleService {\r\n  private readonly IDLE_EXPIRY_KEY = 'ng2Idle.main.expiry';\r\n  private readonly IDLING_KEY = 'ng2Idle.main.idling';\r\n\r\n  private initCalled = false;\r\n  private onTimeout: (() => any) | (() => Promise<any>) | null;\r\n  private onKeepalive: (() => any) | (() => Promise<any>) | null;\r\n\r\n  constructor(\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private http: HttpClient,\r\n    private idle: Idle,\r\n    private keepalive: Keepalive,\r\n    private keyService: KeyService,\r\n    private auth: AuthClass\r\n  ) {}\r\n\r\n  private assertInit(): void {\r\n    if (!this.initCalled) {\r\n      throw new LrBadStateException('Call IdleService.init() first.');\r\n    }\r\n  }\r\n\r\n  public async init(params?: IdleServiceInit): Promise<void> {\r\n    if (this.initCalled) {\r\n      throw new LrBadStateException(\r\n        'IdleService.init() can only be called once. IdleService.start() calls init() with default values if init() has not been called yet.'\r\n      );\r\n    }\r\n\r\n    this.initCalled = true;\r\n\r\n    // Defaults\r\n    params = {\r\n      onTimeout: null,\r\n      onKeepalive: null,\r\n      idleSec: Config.IDLE,\r\n      timeoutSec: Config.TIMEOUT,\r\n      keepAliveIntervalSec: Config.KEEP_ALIVE_INTERVAL,\r\n      ...params,\r\n    };\r\n\r\n    // If timeoutSec == 0 then the onTimeout() callback is never called.\r\n    if (params.timeoutSec < 0.01) {\r\n      throw new LrBadArgumentException(\r\n        'Minimum value for IdleService.init({ timeoutSec }) is 0.01'\r\n      );\r\n    }\r\n\r\n    this.onTimeout = params.onTimeout;\r\n    this.onKeepalive = params.onKeepalive;\r\n\r\n    // ------------------------------------------------------------------------\r\n    // Setup Idle\r\n    // ------------------------------------------------------------------------\r\n    // sets an idle timeout of 5 seconds, for testing purposes.\r\n    this.idle.setIdle(params.idleSec);\r\n    // sets a timeout period of 5 seconds. after 10 seconds of inactivity, the user will be considered timed out.\r\n    this.idle.setTimeout(params.timeoutSec);\r\n    // sets the default interrupts, in this case, things like clicks, scrolls, touches to the document\r\n    this.idle.setInterrupts(DEFAULT_INTERRUPTSOURCES);\r\n\r\n    this.idle.onIdleEnd.subscribe(() => console.log('Idle stopped'));\r\n    this.idle.onIdleStart.subscribe(() => console.log('Idle started'));\r\n\r\n    this.idle.onTimeout.subscribe(async () => {\r\n      console.log('Idle timed out');\r\n      this.reset();\r\n      await Promise.resolve(this.onTimeout && this.onTimeout());\r\n    });\r\n    this.idle.onTimeoutWarning.subscribe((countdown: any) =>\r\n      console.log(`Will timeout in ${countdown} seconds!`)\r\n    );\r\n\r\n    // ------------------------------------------------------------------------\r\n    // Setup Keepalive\r\n    // ------------------------------------------------------------------------\r\n    // Ref: https://github.com/moribvndvs/ng2-idle#readme\r\n    // ng-idle will instruct @ng-idle/keepalive to ping while the user is active, and stop once\r\n    // they go idle or time out. When the user resumes activity or the idle state is reset, it will\r\n    // ping immediately and then resume pinging.\r\n    this.keepalive.interval(params.keepAliveIntervalSec);\r\n    console.log(\r\n      `Keep alive interval set at: ${Config.KEEP_ALIVE_INTERVAL} seconds`\r\n    );\r\n\r\n    this.keepalive.onPing.subscribe(() => this.onPing());\r\n\r\n    // If the browser tab has been closed for a period longer thant the inactivity\r\n    // period, then we should logout right from the start.\r\n    const idleExpiry = localStorage.getItem(this.IDLE_EXPIRY_KEY);\r\n    if (\r\n      idleExpiry &&\r\n      parseInt(idleExpiry, 10) + this.idle.getTimeout() * 1000 < Date.now()\r\n    ) {\r\n      this.reset();\r\n      await Promise.resolve(this.onTimeout && this.onTimeout());\r\n    }\r\n  }\r\n\r\n  public async keepalivePost(): Promise<{\r\n    expiresAfterSeconds: number;\r\n    keepaliveResult: KeepaliveResult;\r\n  }> {\r\n    // currentAuthenticatedUser() refreshes the access token if required.\r\n    const cognitoUser: CognitoUser = await this.auth.currentAuthenticatedUser();\r\n\r\n    const keepaliveResult = await this.http\r\n      .post<KeepaliveResult>(`${this.config.authUrl}auth/keepalive/`, null, {\r\n        withCredentials: true, // /auth/keepalive/ will be extending the sessions cookie.\r\n        headers: {\r\n          Authorization: `Bearer ${cognitoUser\r\n            .getSignInUserSession()\r\n            .getAccessToken()\r\n            .getJwtToken()}`,\r\n        },\r\n      })\r\n      .toPromise();\r\n\r\n    return {\r\n      keepaliveResult,\r\n      expiresAfterSeconds:\r\n        this.idle.getIdle() +\r\n        this.idle.getTimeout() +\r\n        this.keepalive.interval(),\r\n    };\r\n  }\r\n\r\n  public async persistMasterKey(masterKey: Key): Promise<void> {\r\n    // The keepalive API call extends the server-side session, the session cookie expiry, refresh key cookie\r\n    // expiry, and returns the session expiry.\r\n    // NOTE Use time delta rather than absolute time, since client clock and server clock maybe\r\n    // out of sync. We can't use the serverTime() functionality because the cookie expiry still\r\n    // run on local clock.\r\n    const { expiresAfterSeconds } = await this.keepalivePost();\r\n\r\n    // Persist the derived passKey\r\n    await this.keyService.persistMasterKey(masterKey, expiresAfterSeconds);\r\n\r\n    console.log('setMasterKey() done');\r\n  }\r\n\r\n  private async onPing(): Promise<void> {\r\n    console.log(\r\n      `Keep alive triggered at time: ${Date.now()}. Interval set at: ${this.keepalive.interval()} seconds`\r\n    );\r\n\r\n    // Keepalive API will extend the session expiry.\r\n    const { expiresAfterSeconds } = await this.keepalivePost();\r\n\r\n    // Extend the expiry of the persisted key\r\n    await this.keyService.setMasterKeyExpiresAfterSeconds(expiresAfterSeconds);\r\n\r\n    await Promise.resolve(this.onKeepalive && this.onKeepalive());\r\n  }\r\n\r\n  public async start(): Promise<void> {\r\n    if (!this.initCalled) {\r\n      await this.init();\r\n    }\r\n\r\n    if (this.idle.isRunning()) {\r\n      return;\r\n    }\r\n\r\n    // Ping does not seem to happen right at the start. So we call it explicitly\r\n    await this.onPing();\r\n\r\n    this.idle.watch();\r\n  }\r\n\r\n  public stop(): void {\r\n    this.idle.stop();\r\n    this.reset();\r\n  }\r\n\r\n  private reset() {\r\n    localStorage.removeItem(this.IDLE_EXPIRY_KEY);\r\n    localStorage.removeItem(this.IDLING_KEY);\r\n  }\r\n}\r\n","import { HttpClient } from '@angular/common/http';\r\nimport { Inject, Injectable } from '@angular/core';\r\nimport { CognitoUser } from '@aws-amplify/auth';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport { JWK, JWS } from 'node-jose';\r\nimport { ProfileService } from '../users/profile.service';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { LifeReadyConfig, LR_CONFIG } from '../life-ready.config';\r\nimport { LrAuthException, LrBadArgumentException } from '../_common/exceptions';\r\nimport { LrApolloService } from './../api/lr-apollo.service';\r\nimport {\r\n  PasswordChangeMutation,\r\n  PasswordChangeRequestMutation,\r\n  PasswordChangeConfigQuery,\r\n} from './auth.gql';\r\nimport { PassKeyBundle } from './auth.types';\r\nimport { WebCryptoService } from '../cryptography/web-crypto.service';\r\nimport { Duration } from 'moment';\r\nimport * as moment_ from 'moment';\r\nimport { ApiCurrentUser } from '../users/profile.types';\r\nimport { IdleService } from '../auth/idle.service';\r\nimport { KeyFactoryService as KFS } from '../cryptography/key-factory.service';\r\n\r\n// \"why?\" you ask: https://stackoverflow.com/questions/59735280/angular-8-moment-error-cannot-call-a-namespace-moment\r\nconst moment = moment_;\r\n\r\ninterface PasswordChangeRequestMutation {\r\n  passwordChangeRequest: {\r\n    challenge: {\r\n      serverNonce: string;\r\n    };\r\n  };\r\n}\r\n\r\ninterface PasswordChangeMutation {\r\n  passwordChange: {\r\n    token: string;\r\n    newPassKey: {\r\n      id: string;\r\n    };\r\n  };\r\n}\r\n\r\nexport interface PasswordChangeConfig {\r\n  maxAuthAgeSeconds: number;\r\n  authTime: string | Date;\r\n  serverTime: string | Date;\r\n}\r\n\r\nexport class PasswordCheck {\r\n  length?: number;\r\n  timeToCrack?: Duration;\r\n  passwordExposed?: number;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class PasswordService {\r\n  private readonly CLIENT_NONCE_LENGTH = 32;\r\n\r\n  constructor(\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private http: HttpClient,\r\n    private apollo: LrApolloService,\r\n    private auth: AuthClass,\r\n    private profileService: ProfileService,\r\n    private keyFactory: KFS,\r\n    private encryptionService: EncryptionService,\r\n    private keyGraph: KeyGraphService,\r\n    private webCryptoService: WebCryptoService,\r\n    private idleService: IdleService\r\n  ) {}\r\n\r\n  public async checkPassword(password: string): Promise<PasswordCheck> {\r\n    const { years } = this.passwordStrength(password);\r\n\r\n    return {\r\n      length: password.length,\r\n      timeToCrack: moment.duration({ years }),\r\n      passwordExposed: await this.getExposureCount(password),\r\n    };\r\n  }\r\n\r\n  public async getExposureCount(password: string): Promise<number> {\r\n    const sha1Password = await this.webCryptoService.stringDigest(\r\n      'SHA-1',\r\n      password\r\n    );\r\n    const first5sha1 = sha1Password.substring(0, 5);\r\n\r\n    const response = await this.http\r\n      .get(`https://api.pwnedpasswords.com/range/${first5sha1}`, {\r\n        responseType: 'text',\r\n      })\r\n      .toPromise();\r\n\r\n    const results = new RegExp(\r\n      `^(?:${sha1Password.substring(5)}:)(?<count>\\\\d+)$`,\r\n      'im'\r\n    ).exec(response);\r\n\r\n    if (results) {\r\n      return +results.groups.count;\r\n    }\r\n    return 0;\r\n  }\r\n\r\n  public getPassIdpString(passIdp: JWK.Key) {\r\n    return (passIdp.toJSON(true) as any).k;\r\n  }\r\n\r\n  public async createPassKeyBundle(password: string): Promise<PassKeyBundle> {\r\n    const passIdpParams = await this.keyFactory.createPassIdpParams();\r\n    const passIdp = (\r\n      await this.keyFactory.derivePassIdp({\r\n        password,\r\n        ...passIdpParams,\r\n      })\r\n    ).jwk;\r\n\r\n    const passKeyParams = await this.keyFactory.createPassKeyParams();\r\n    const passKey = (\r\n      await this.keyFactory.derivePassKey({\r\n        password,\r\n        ...passKeyParams,\r\n      })\r\n    ).jwk;\r\n\r\n    const passIdpVerifier = await this.keyFactory.createPkcSignKey();\r\n\r\n    const wrappedPassIdpVerifierPrk = await this.encryptionService.encrypt(\r\n      passKey,\r\n      passIdpVerifier.toJSON(true)\r\n    );\r\n\r\n    // There are two formats that the private key can be represented in JWK:\r\n    // https://tools.ietf.org/html/rfc8017#page-9\r\n    // The second form is an optimization:\r\n    // https://crypto.stackexchange.com/questions/19413/what-are-dp-and-dq-in-encryption-by-rsa-in-c\r\n\r\n    return {\r\n      passKeyParams,\r\n      passKey,\r\n      passIdpParams,\r\n      passIdp,\r\n      passIdpVerifier,\r\n      wrappedPassIdpVerifierPrk,\r\n    };\r\n  }\r\n\r\n  /**\r\n   * We need to allow for interruption of the process at any point. Each API call can be considered\r\n   * atomic and either succeeds or fails.\r\n   *\r\n   * The LR server APIs use semaphore tokens for locking critical operations, so concurrent calls will\r\n   * fail.\r\n   *\r\n   * We assume the worst case for IdP API calls. So we use the semaphore token from LR to prevent\r\n   * concurrent calls to IdP APIs, but we have to assume that the IdP API calls will either succeed or\r\n   * fail within a reasonable amount of time.\r\n   *\r\n   * Each location where the server state changes can be a potential point of interruption.\r\n   * Potential points of interruption are marked with: --Potential Failure Point--\r\n   *\r\n   * Places for timeout:\r\n   * - Login age too old at call to: verifyPassword()\r\n   * - Login age too old at call to: changePasswordMutation()\r\n   * - Semaphore token expires at call to: changePasswordComplete()\r\n   *\r\n   * Tests:\r\n   * - Potential Failure Point 1: should be able to restart the process, user remains signed in.\r\n   * - Potential Failure Point 2: should enter recovery flow\r\n   * - Potential Failure Point 3: should enter recovery flow\r\n   * - Potential Failure Point 4: should enter recovery flow\r\n   *\r\n   */\r\n\r\n  public async isLoginRequired(): Promise<boolean> {\r\n    const changePasswordConfig = await this.getChangePasswordConfig();\r\n    const authTime = moment(changePasswordConfig.authTime);\r\n    const serverTime = moment(changePasswordConfig.serverTime);\r\n    const duration = moment.duration(serverTime.diff(authTime));\r\n    const seconds = duration.asSeconds();\r\n    if (seconds > changePasswordConfig.maxAuthAgeSeconds) {\r\n      return true;\r\n    } else {\r\n      return false;\r\n    }\r\n  }\r\n\r\n  public async changePassword(password: string, newPassword: string) {\r\n    const cognitoUser: CognitoUser = await this.auth.currentAuthenticatedUser();\r\n\r\n    // Validation\r\n    // todo: Add this back in\r\n    // Note the passIdp will always have a random salt, so will always be different to the current passIdp.\r\n    if (password === newPassword) {\r\n      throw new LrBadArgumentException(\r\n        'New password is the same as the current one.'\r\n      );\r\n    }\r\n\r\n    const { currentUser } = await this.profileService.getCurrentUser();\r\n\r\n    const { passIdp, signedChallenge } = await this.verifyPassword(\r\n      password,\r\n      currentUser\r\n    );\r\n\r\n    // --Potential Failure Point 1--\r\n    // verifyPassword() asks for a current password challenge hence changes server state.\r\n    // Place break points here to test the failure scenarios.\r\n\r\n    // Generate the new passIdp\r\n    const newPassKey = await this.createPassKeyBundle(newPassword);\r\n\r\n    // Re-encrypt master key with new key\r\n    const masterKey = await this.keyGraph.getKey(\r\n      currentUser.currentUserKey.masterKey.id\r\n    );\r\n    const newWrappedMasterKey = await this.encryptionService.encrypt(\r\n      newPassKey.passKey,\r\n      masterKey.jwk.toJSON(true)\r\n    );\r\n\r\n    // If the IdP change password failed, we need to go into recovery mode by forcing\r\n    // a login. We can't logout the user just yet since the IdP password change needs\r\n    // the user to be logged in. We _can_ removed any persisted session values for the IdP\r\n    // but that seems like too much trouble.\r\n\r\n    const { token, newPassKeyId } = await this.changePasswordMutation(\r\n      signedChallenge,\r\n      currentUser.currentUserKey.masterKey.id,\r\n      newWrappedMasterKey,\r\n      newPassKey\r\n    );\r\n\r\n    // --Potential Failure Point 2--\r\n    // changePasswordMutation() uploads new keys and obtains a semaphore lock to prevent any other\r\n    // clients from performing IdP password change.\r\n\r\n    // Now we can do the IdP password change.\r\n    // todo: Add this back in\r\n    await this.auth.changePassword(\r\n      cognitoUser,\r\n      this.getPassIdpString(passIdp),\r\n      this.getPassIdpString(newPassKey.passIdp)\r\n    );\r\n\r\n    // --Potential Failure Point 3--\r\n    // IdP password change\r\n\r\n    // Note that changePassword() could throw an exception for a number of reason. It could throw\r\n    // a network timeout for example. But we don't know if it's the response that timed out and\r\n    // the idp password change was actually carried out. So we have to be extra conservative and\r\n    // only act on a clear success. Otherwise we go into recover mode.\r\n    await this.changePasswordComplete(\r\n      cognitoUser.getSignInUserSession().getAccessToken().getJwtToken(),\r\n      true,\r\n      token\r\n    );\r\n  }\r\n\r\n  public async changePasswordComplete(\r\n    accessToken: string,\r\n    useNewPassword: boolean,\r\n    token: string = null\r\n  ): Promise<any> {\r\n    return this.http\r\n      .post(\r\n        `${this.config.authUrl}users/password-change-complete/`,\r\n        {\r\n          use_new_password: useNewPassword,\r\n          ...(token && { token }),\r\n        },\r\n        {\r\n          headers: {\r\n            Authorization: `Bearer ${accessToken}`,\r\n          },\r\n        }\r\n      )\r\n      .toPromise();\r\n  }\r\n\r\n  private async getVerifierPrK(\r\n    passKey: JWK.Key,\r\n    wrappedPrK: object\r\n  ): Promise<JWK.Key> {\r\n    try {\r\n      const prkJson = await this.encryptionService.decrypt(passKey, wrappedPrK);\r\n      return KFS.asKey(prkJson);\r\n    } catch (error) {\r\n      throw new LrAuthException('Wrong current password');\r\n    }\r\n  }\r\n\r\n  private async verifyPassword(\r\n    password: string,\r\n    currentUser: ApiCurrentUser\r\n  ): Promise<{ passIdp: JWK.Key; signedChallenge: JWS.CreateSignResult }> {\r\n    // Get information from the server to prepare for password change.\r\n    const passwordRequest = await this.apollo.mutate<PasswordChangeRequestMutation>(\r\n      {\r\n        mutation: PasswordChangeRequestMutation,\r\n        variables: {},\r\n      }\r\n    );\r\n\r\n    // Get the old passKey so we can decrypt the old password verifier\r\n    const passKeyResult = await this.keyFactory.derivePassKey({\r\n      password,\r\n      ...currentUser.currentUserKey.passKey.passKeyParams,\r\n    });\r\n\r\n    const verifierPrK = await this.getVerifierPrK(\r\n      passKeyResult.jwk,\r\n      currentUser.currentUserKey.passKey.wrappedPassIdpVerifierPrk\r\n    );\r\n\r\n    // Sign the server challenge to prove to the server we can decrypt the password verifier.\r\n    // Generate\r\n    const clientNonce = this.keyFactory.randomString(this.CLIENT_NONCE_LENGTH);\r\n\r\n    const signedChallenge = await this.encryptionService.sign(verifierPrK, {\r\n      serverNonce: passwordRequest.passwordChangeRequest.challenge.serverNonce,\r\n      clientNonce,\r\n    });\r\n\r\n    const passIdpResult = await this.keyFactory.derivePassIdp({\r\n      password,\r\n      ...currentUser.currentUserKey.passKey.passIdpParams,\r\n    });\r\n\r\n    return {\r\n      passIdp: passIdpResult.jwk,\r\n      signedChallenge,\r\n    };\r\n  }\r\n\r\n  private async changePasswordMutation(\r\n    signedChallenge: JWS.CreateSignResult,\r\n    masterKeyId: string,\r\n    newWrappedMasterKey: object,\r\n    passKeyBundle: PassKeyBundle\r\n  ): Promise<{ token: string; newPassKeyId: string }> {\r\n    const response = await this.apollo.mutate<PasswordChangeMutation>({\r\n      mutation: PasswordChangeMutation,\r\n      variables: {\r\n        input: {\r\n          signedChallenge: JSON.stringify(signedChallenge),\r\n          masterKeyId,\r\n          newWrappedMasterKey: JSON.stringify(newWrappedMasterKey),\r\n          newPassKey: {\r\n            passIdpParams: JSON.stringify(passKeyBundle.passIdpParams),\r\n            passIdpVerifierPbk: JSON.stringify(\r\n              passKeyBundle.passIdpVerifier.toJSON()\r\n            ),\r\n            wrappedPassIdpVerifierPrk: JSON.stringify(\r\n              passKeyBundle.wrappedPassIdpVerifierPrk\r\n            ),\r\n            passKeyParams: JSON.stringify(passKeyBundle.passKeyParams),\r\n          },\r\n        },\r\n      },\r\n    });\r\n    return {\r\n      token: response.passwordChange.token,\r\n      newPassKeyId: response.passwordChange.newPassKey.id,\r\n    };\r\n  }\r\n\r\n  async getChangePasswordConfig(): Promise<PasswordChangeConfig> {\r\n    const res = await this.apollo.query<any>({\r\n      query: PasswordChangeConfigQuery,\r\n    });\r\n\r\n    const ret = res.passwordChangeConfig as PasswordChangeConfig;\r\n\r\n    ret.authTime = new Date(ret.authTime);\r\n    ret.serverTime = new Date(ret.serverTime);\r\n    return ret;\r\n  }\r\n\r\n  public passwordStrength(password): { years: number; bits: number } {\r\n    const upper = /[A-Z]/g;\r\n    const lower = /[a-z]/g;\r\n    const digit = /[0-9]/g;\r\n\r\n    const upperChoices = 26;\r\n    const lowerChoices = 26;\r\n    const digitChoices = 10;\r\n    const specialChoices = 30; // /[!\"#$%&'()*+,-./:;<=>?@[\\]^_`{|}~]/g\r\n\r\n    function instanceCount(str, re) {\r\n      return ((str || '').match(re) || []).length;\r\n    }\r\n\r\n    const uppers = instanceCount(password, upper);\r\n    const lowers = instanceCount(password, lower);\r\n    const digits = instanceCount(password, digit);\r\n    const specials = password.length - uppers - lowers - digits;\r\n\r\n    let choices = 0;\r\n    if (uppers) {\r\n      choices += upperChoices;\r\n    }\r\n    if (lowers) {\r\n      choices += lowerChoices;\r\n    }\r\n    if (digits) {\r\n      choices += digitChoices;\r\n    }\r\n    if (specials) {\r\n      choices += specialChoices;\r\n    }\r\n\r\n    if (password.length === 0) {\r\n      return {\r\n        years: 0,\r\n        // bits of entropy\r\n        bits: 0,\r\n      };\r\n    }\r\n\r\n    const permutations = Math.pow(choices, password.length);\r\n\r\n    const years =\r\n      (54000 * permutations) /\r\n      Math.pow(upperChoices + lowerChoices + digitChoices, 12);\r\n    return {\r\n      years,\r\n      // bits of entropy\r\n      bits: Math.round(Math.log2(permutations)),\r\n    };\r\n  }\r\n}\r\n","import { GenericScalar, ID } from '../api/types';\r\nimport { gqlTyped } from '../_common/ast';\r\nimport {\r\n  TpClaimState,\r\n  TpClaimApproverState,\r\n} from '../api/types/lr-graphql.types';\r\nimport { DateTime } from '../api/types/graphql.types';\r\n\r\nexport interface SharedTpPasswordResetFragmentResult {\r\n  id: ID;\r\n  tp: {\r\n    id: ID;\r\n    other: {\r\n      username: string;\r\n    };\r\n  };\r\n  assembly: {\r\n    asApprovers: {\r\n      edges: {\r\n        node: {\r\n          id: ID;\r\n          sharedKey: {\r\n            id: ID;\r\n          };\r\n          sharedCipherData: string;\r\n          sharedCipherDataClearJson: any;\r\n        };\r\n      }[];\r\n    };\r\n  };\r\n  sharedRequest: {\r\n    id: ID;\r\n    pxk: {\r\n      id: ID;\r\n      pbk: string;\r\n    };\r\n    claim: {\r\n      id: ID;\r\n      state: TpClaimState;\r\n      asClaimApprovers: {\r\n        edges: {\r\n          node: {\r\n            id: ID;\r\n            state: TpClaimApproverState;\r\n            sharedKey: {\r\n              id: ID;\r\n            };\r\n            sharedCipherApprovalData: string;\r\n            sharedCipherApprovalDataClearJson: any;\r\n            sharedCipherPartialAssemblyKey: string;\r\n            sharedCipherPartialAssemblyKeyClearJson: any;\r\n            receiverApprovals: {\r\n              edges: {\r\n                node: {\r\n                  id: ID;\r\n                };\r\n              }[];\r\n            };\r\n          };\r\n        }[];\r\n      };\r\n    };\r\n  };\r\n}\r\nconst SharedTpPasswordResetFragment = gqlTyped<SharedTpPasswordResetFragmentResult>`\r\nfragment SharedTpPasswordResetFragment on SharedTpPasswordResetNode {\r\n  id\r\n  tp {\r\n    id\r\n    other {\r\n      username\r\n    }\r\n  }\r\n  assembly {\r\n    asApprovers {\r\n      edges {\r\n        node {\r\n          id\r\n          sharedKey {\r\n            id\r\n          }\r\n          sharedCipherData\r\n        }\r\n      }\r\n    }\r\n  }\r\n  sharedRequest {\r\n    id\r\n    pxk {\r\n      id\r\n      pbk\r\n    }\r\n    claim {\r\n      id\r\n      state\r\n      asClaimApprovers {\r\n        edges {\r\n          node {\r\n            id\r\n            state\r\n            sharedKey {\r\n              id\r\n            }\r\n            sharedCipherApprovalData\r\n            sharedCipherPartialAssemblyKey\r\n            receiverApprovals {\r\n              edges {\r\n                node {\r\n                  id\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n}`;\r\n\r\nexport interface SharedTpPasswordResetsQueryResult {\r\n  sharedTpPasswordResets: {\r\n    edges: {\r\n      node: SharedTpPasswordResetFragmentResult;\r\n    }[];\r\n  };\r\n}\r\nexport const SharedTpPasswordResetsQuery = gqlTyped<SharedTpPasswordResetsQueryResult>`\r\nquery SharedTpPasswordResetsQuery {\r\n  sharedTpPasswordResets {\r\n    edges {\r\n      node {\r\n        ...SharedTpPasswordResetFragment\r\n      }\r\n    }\r\n  }\r\n}\r\n${SharedTpPasswordResetFragment}\r\n`;\r\n\r\nexport interface SharedTpPasswordResetQueryResult {\r\n  sharedTpPasswordReset: SharedTpPasswordResetFragmentResult;\r\n}\r\nexport const SharedTpPasswordResetQuery = gqlTyped<SharedTpPasswordResetQueryResult>`\r\nquery SharedTpPasswordResetQuery($id: LrRelayIdInput!) {\r\n  sharedTpPasswordReset(id: $id) {\r\n    ...SharedTpPasswordResetFragment\r\n  }\r\n}\r\n${SharedTpPasswordResetFragment}\r\n`;\r\n\r\nexport interface CancelTpPasswordResetRequestMutationResult {\r\n  cancelTpPasswordResetRequest: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const CancelTpPasswordResetRequestMutation = gqlTyped<CancelTpPasswordResetRequestMutationResult>`\r\nmutation CancelTpPasswordResetRequestMutation {\r\n  cancelTpPasswordResetRequest(input: {}) {\r\n    id\r\n  }\r\n}`;\r\n\r\nexport interface CreateTpAssemblyKeyChallengeMutationResult {\r\n  createTpAssemblyKeyChallenge: {\r\n    challenge: any;\r\n  };\r\n}\r\nexport const CreateTpAssemblyKeyChallengeMutation = gqlTyped<CreateTpAssemblyKeyChallengeMutationResult>`\r\nmutation CreateTpAssemblyKeyChallengeMutation(\r\n  $input: CreateTpAssemblyKeyChallengeInput!\r\n) {\r\n  createTpAssemblyKeyChallenge(input: $input) {\r\n    challenge\r\n  }\r\n}`;\r\n\r\nexport interface PreCompleteTpPasswordResetRequestMutationResult {\r\n  preCompleteTpPasswordResetRequest: {\r\n    idpPassword: string;\r\n  };\r\n}\r\nexport const PreCompleteTpPasswordResetRequestMutation = gqlTyped<PreCompleteTpPasswordResetRequestMutationResult>`\r\nmutation PreCompleteTpPasswordResetRequestMutation(\r\n  $input: PreCompleteTpPasswordResetRequestInput!\r\n) {\r\n  preCompleteTpPasswordResetRequest(input: $input) {\r\n    idpPassword\r\n  }\r\n}`;\r\n\r\nexport interface CompleteTpPasswordResetRequestMutationResult {\r\n  completeTpPasswordResetRequest: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const CompleteTpPasswordResetRequestMutation = gqlTyped<CompleteTpPasswordResetRequestMutationResult>`\r\nmutation CompleteTpPasswordResetRequestMutation(\r\n  $input: CompleteTpPasswordResetRequestInput!\r\n) {\r\n  completeTpPasswordResetRequest(input: $input) {\r\n    id\r\n  }\r\n}`;\r\n\r\nexport interface ApproveTpPasswordResetRequestMutationResult {\r\n  approveTpPasswordResetRequest: {\r\n    claimApprover: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const ApproveTpPasswordResetRequestMutation = gqlTyped<ApproveTpPasswordResetRequestMutationResult>`\r\nmutation ApproveTpPasswordResetRequestMutation(\r\n  $input: ApproveTpPasswordResetRequestInput!\r\n) {\r\n  approveTpPasswordResetRequest(input: $input) {\r\n    claimApprover {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n\r\nexport interface RejectTpPasswordResetRequestMutationResult {\r\n  rejectTpPasswordResetRequest: {\r\n    claimApprover: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const RejectTpPasswordResetRequestMutation = gqlTyped<RejectTpPasswordResetRequestMutationResult>`\r\nmutation RejectTpPasswordResetRequestMutation(\r\n  $input: RejectTpPasswordResetRequestInput!\r\n) {\r\n  rejectTpPasswordResetRequest(input: $input) {\r\n    claimApprover {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n\r\nexport interface TpPasswordResetUserQueryResult {\r\n  tpPasswordResetUser: {\r\n    username: string;\r\n    resetUsername: string;\r\n    state: TpClaimState;\r\n    passKey: {\r\n      id: ID;\r\n      passKeyParams: GenericScalar;\r\n      passIdpParams: GenericScalar;\r\n    };\r\n    masterKey: {\r\n      id: ID;\r\n    };\r\n    pxk: {\r\n      id: ID;\r\n    };\r\n    sessionEncryptionKey: string;\r\n    assembly: {\r\n      singleReject: boolean;\r\n      quorum: number;\r\n      subAssemblies: {\r\n        singleReject: boolean;\r\n        quorum: number;\r\n        approvers: {\r\n          name: string;\r\n          email: string;\r\n          state: TpClaimApproverState;\r\n        }[];\r\n      }[];\r\n    };\r\n    approvals: {\r\n      id: ID;\r\n      modified: DateTime;\r\n      approverEmail: string;\r\n      receiverCipher: string;\r\n      receiverCipherPartialAssemblyKey: string;\r\n    }[];\r\n    assemblyCipherData: string;\r\n    wrappedAssemblyKeyVerifierPrk: string;\r\n  };\r\n}\r\nexport const TpPasswordResetUserQuery = gqlTyped<TpPasswordResetUserQueryResult>`\r\nquery TpPasswordResetUserQuery {\r\n  tpPasswordResetUser {\r\n    username\r\n    resetUsername\r\n    state\r\n    passKey {\r\n      id\r\n      passKeyParams\r\n      passIdpParams\r\n    }\r\n    masterKey {\r\n      id\r\n    }\r\n    pxk {\r\n      id\r\n    }\r\n    sessionEncryptionKey\r\n    assembly {\r\n      singleReject\r\n      quorum\r\n      subAssemblies {\r\n        singleReject\r\n        quorum\r\n        approvers {\r\n          name\r\n          email\r\n          state\r\n        }\r\n      }\r\n    }\r\n    approvals {\r\n      id\r\n      modified\r\n      approverEmail\r\n      receiverCipher\r\n      receiverCipherPartialAssemblyKey\r\n    }\r\n    assemblyCipherData\r\n    wrappedAssemblyKeyVerifierPrk\r\n  }\r\n}`;\r\n\r\nexport interface TpPasswordResetQueryResult {\r\n  tpPasswordReset: {\r\n    id: ID;\r\n    applied: boolean;\r\n    assembly: {\r\n      singleReject: boolean;\r\n      quorum: number;\r\n      subjectKey: {\r\n        id: ID;\r\n      };\r\n      assemblyKey: {\r\n        id: ID;\r\n      };\r\n      assemblyCipherData: string;\r\n      subAssemblies: {\r\n        edges: {\r\n          node: {\r\n            id: ID;\r\n            singleReject: boolean;\r\n            quorum: number;\r\n            subjectCipherData: string;\r\n            subjectCipherDataClearJson: any;\r\n            approvers: {\r\n              edges: {\r\n                node: {\r\n                  id: ID;\r\n                  tp: {\r\n                    id: ID;\r\n                  };\r\n                  sharedKey: {\r\n                    id: ID;\r\n                  };\r\n                  sharedCipherData: string;\r\n                };\r\n              }[];\r\n            };\r\n          };\r\n        }[];\r\n      };\r\n    };\r\n  };\r\n}\r\nexport const TpPasswordResetQuery = gqlTyped<TpPasswordResetQueryResult>`\r\nquery TpPasswordResetQuery {\r\n  tpPasswordReset {\r\n    id\r\n    applied\r\n    assembly {\r\n      singleReject\r\n      quorum\r\n      subjectKey {\r\n        id\r\n      }\r\n      assemblyKey {\r\n        id\r\n      }\r\n      assemblyCipherData\r\n      subAssemblies {\r\n        edges {\r\n          node {\r\n            id\r\n            singleReject\r\n            quorum\r\n            subjectCipherData\r\n            approvers {\r\n              edges {\r\n                node {\r\n                  id\r\n                  tp {\r\n                    id\r\n                  }\r\n                  sharedKey {\r\n                    id\r\n                  }\r\n                  sharedCipherData\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n}`;\r\n\r\nexport interface CreateTpPasswordResetMutationResult {\r\n  createTpPasswordReset: {\r\n    tpPasswordReset: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const CreateTpPasswordResetMutation = gqlTyped<CreateTpPasswordResetMutationResult>`\r\nmutation CreateTpPasswordResetMutation($input: CreateTpPasswordResetInput!) {\r\n  createTpPasswordReset(input: $input) {\r\n    tpPasswordReset {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n\r\nexport interface DeleteTpPasswordResetMutationResult {\r\n  deleteTpPasswordReset: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const DeleteTpPasswordResetMutation = gqlTyped<DeleteTpPasswordResetMutationResult>`\r\nmutation DeleteTpPasswordResetMutation {\r\n  deleteTpPasswordReset(input: {}) {\r\n    id\r\n  }\r\n}`;\r\n\r\nexport interface UpdateTpPasswordResetMutationResult {\r\n  updateTpPasswordReset: {\r\n    tpPasswordReset: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const UpdateTpPasswordResetMutation = gqlTyped<UpdateTpPasswordResetMutationResult>`\r\nmutation UpdateTpPasswordResetMutation($input: UpdateTpPasswordResetInput!) {\r\n  updateTpPasswordReset(input: $input) {\r\n    tpPasswordReset {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n","// Promise.all always returns a promise, even if all the values are not async.\r\n// During processing of deep hierarchies of nested objects we don't always need to\r\n\r\n// promote everything to a promise.\r\nexport function promiseAllMayAsync(values: any[]): Promise<any> | any {\r\n  if (!Array.isArray(values)) {\r\n    throw new Error('not array');\r\n  }\r\n  if (values.some((value) => value?.then)) {\r\n    const ret = Promise.all(values);\r\n    return ret;\r\n  } else {\r\n    return values;\r\n  }\r\n}\r\n\r\nfunction remap(obj, values) {\r\n  const ret = {};\r\n  for (const [i, key] of Object.keys(obj).entries()) {\r\n    ret[key] = values[i];\r\n  }\r\n  return ret;\r\n}\r\n\r\nexport function mapValuesMayAsync(\r\n  obj: object,\r\n  // callback can either return a Promise, or a value.\r\n  // The Promise<any> type is redundant but it shows that it can return a promise\r\n  callback: (value: any, key: string, obj: object) => any | Promise<any>\r\n): Promise<any> | any {\r\n  const values = promiseAllMayAsync(\r\n    Object.entries(obj).map(([key, value]) => callback(value, key, obj))\r\n  );\r\n\r\n  if (values.then) {\r\n    return values.then((resolvedValues) => remap(obj, resolvedValues));\r\n  } else {\r\n    return remap(obj, values);\r\n  }\r\n}\r\n\r\nexport function mapValuesAsync(\r\n  obj: object,\r\n  // callback can either return a Promise, or a value.\r\n  // The Promise<any> type is redundant but it shows that it can return a promise\r\n  // By default, it returns the value without any process, so you can use\r\n  // this to simply wait for all promises in an object to resolve.\r\n  callback?: (value: any, key: string, obj: object) => any | Promise<any>\r\n): Promise<any> {\r\n  const values = Promise.all(\r\n    Object.entries(obj).map(([key, value]) =>\r\n      callback ? callback(value, key, obj) : value\r\n    )\r\n  );\r\n\r\n  return values.then((resolvedValues) => remap(obj, resolvedValues));\r\n}\r\n","import { LrBadLogicException } from '../_common/exceptions';\r\n\r\nexport interface RunOutsideAngularConfig {\r\n  ngZoneName: string;\r\n  // If true, a single change detection is triggered on resolve of the Promise returned\r\n  // from the function.\r\n  // else, the entire function is run outside of zone.\r\n  // Note that if this is disabled, then change detection is not triggered even if you\r\n  // use async pipes to subscribe to observables on the resulting promise. This is because\r\n  // async pipes only _marks_ a component for change detection, it doesn't actually _trigger_\r\n  // the change detection cycle.\r\n  exceptLastPromise?: boolean;\r\n  // Any method or property you wish to exclude from patch. The methods in EXCLUDE_METHODS are\r\n  // never patched.\r\n  excludeMethods?: string[];\r\n  // If true, patch the setters as well. Settings are some\r\n  // Note that setters do not return any thing. But they can still issue async calls.\r\n  // These async calls are not visible to the wrapper. So we can't issue change detection\r\n  // for setters when they are running outside angular.\r\n  // Note that getters are not patched because getter and setter must use the same type. So if\r\n  // the getter returns a promise, then the setting must alway take a promise. It doesn't make\r\n  // much sense to use getters and setters this way. And if getter returns a value, then there's\r\n  // no need to patch it to run outside angular.\r\n  patchSetters?: boolean;\r\n}\r\n\r\n/**\r\n * If you wish to change the behaviour of those, you'll need to create a derived\r\n * class and override the methods.\r\n * However, can't figure out a way to call the super() in the derived class ctor, error says\r\n * the super call can't be in tested function.\r\n */\r\nexport const EXCLUDE_METHODS = [\r\n  'constructor',\r\n  'ngOnChanges',\r\n  'ngOnInit',\r\n  'ngDoCheck',\r\n  'ngAfterContentInit',\r\n  'ngAfterContentChecked',\r\n  'ngAfterViewInit',\r\n  'ngAfterViewChecked',\r\n  'ngOnDestroy',\r\n];\r\n\r\n// Patch all methods of the class.\r\n//\r\n// Note, this will not patch functions in the base class, it only\r\n// patches the function defined in the current class because it's\r\n// using getOwnPropertyNames(). You should be using composition for\r\n// services anyway.\r\n//\r\n// Ref: https://stackoverflow.com/a/44409244\r\n// The above approach might be a bit old. Now that we have ngZone.runOutsideAngular(),\r\n// we should probably use that and not touch any angular zone internals. But the approach\r\n// above doesn't require injecting ngZone.\r\n//\r\n// Ref: https://github.com/2ng/run-outside-angular/blob/master/src/run-outside-angular.ts\r\nexport function RunOutsideAngular({\r\n  ngZoneName,\r\n  exceptLastPromise = true,\r\n  excludeMethods = [],\r\n  patchSetters = true,\r\n}: RunOutsideAngularConfig) {\r\n  return (target: any) => {\r\n    function run(original, args) {\r\n      if (!this[ngZoneName]) {\r\n        throw new LrBadLogicException(\r\n          `RunOutsideAngular decorator requires that ${target.name} inject NgZone as ${ngZoneName}`\r\n        );\r\n      }\r\n      // runOutsideAngular() synchronously runs the callback and returns the result.\r\n      const result = this[ngZoneName].runOutsideAngular(() =>\r\n        original.apply(this, args)\r\n      );\r\n\r\n      if (exceptLastPromise && result?.then) {\r\n        // Bring back into zone which will trigger change detection properly.\r\n        // If this doesn't work, then we'll have to trigger change detection explicitly.\r\n        return Promise.resolve(result);\r\n      } else {\r\n        return result;\r\n      }\r\n    }\r\n\r\n    // There should be no reason to run any of the ones in EXCLUDE_METHODS outside angular.\r\n    // So we always exclude them from patching. You can always explicit implement these ones differently.\r\n    excludeMethods = [...excludeMethods, ...EXCLUDE_METHODS];\r\n\r\n    const methods = Object.getOwnPropertyNames(target.prototype);\r\n\r\n    methods\r\n      .filter((method) => !excludeMethods.includes(method))\r\n      .forEach((method) => {\r\n        // Patch setters\r\n        // Note that setters do not return any thing. But they can still issue async calls.\r\n        // These async calls are not visible to the wrapper. So we can't issue change detection\r\n        // for setters when they are running outside angular.\r\n        if (\r\n          patchSetters &&\r\n          Object.getOwnPropertyDescriptor(target.prototype, method).set\r\n        ) {\r\n          const original = Object.getOwnPropertyDescriptor(\r\n            target.prototype,\r\n            method\r\n          ).set;\r\n\r\n          Object.defineProperty(target.prototype, method, {\r\n            set(...args) {\r\n              return run.apply(this, [original, args]);\r\n            },\r\n          });\r\n        }\r\n\r\n        if (typeof target.prototype[method] === 'function') {\r\n          const original = target.prototype[method];\r\n\r\n          target.prototype[method] = function(...args) {\r\n            return run.apply(this, [original, args]);\r\n          };\r\n        }\r\n      });\r\n\r\n    return target;\r\n  };\r\n}\r\n","import { Injectable, NgZone } from '@angular/core';\r\nimport { EncryptionService } from '../../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../../cryptography/key-graph.service';\r\nimport { LrBadLogicException } from '../../_common/exceptions';\r\nimport { RunOutsideAngular } from '../../_common/run-outside-angular';\r\nimport { Connection } from '../types';\r\n\r\nexport interface ProcessorOptions {\r\n  hasKeys: boolean;\r\n}\r\n\r\nexport const DefaultProcessorOptions: ProcessorOptions = {\r\n  hasKeys: true,\r\n};\r\n\r\n// Sent to each processor for context information\r\nexport interface ProcessorContext {\r\n  path: ReadonlyArray<string>;\r\n  // processor can set this to false if child fields should\r\n  // not be processed any further\r\n  processChildren: boolean;\r\n}\r\n\r\nexport interface ProcessorCallbackParams<T = any> {\r\n  field: T;\r\n  context: ProcessorContext;\r\n  options: ProcessorOptions;\r\n}\r\n\r\nexport type ProcessorCallback<T = any> = (\r\n  params: ProcessorCallbackParams<T>\r\n) => T | Promise<T>;\r\n\r\ninterface ParseJsonProcessorOptions {\r\n  plainFieldName?: string;\r\n  jsonFieldSuffix?: string;\r\n}\r\n\r\ninterface DecryptionProcessorOptions {\r\n  cipherFieldName?: string;\r\n  clearFieldSuffix?: string;\r\n  getKeyId?: (params: ProcessorCallbackParams) => Promise<string> | string;\r\n}\r\n\r\nexport async function processConnection<Node>(\r\n  field: Connection<Node>,\r\n  processNode: (node: Node) => Node | Promise<Node>\r\n): Promise<Connection<Node>> {\r\n  return {\r\n    ...field,\r\n    edges: await Promise.all(\r\n      field.edges.map(async (edge) => ({\r\n        ...edge,\r\n        node: await processNode(edge.node),\r\n      }))\r\n    ),\r\n  };\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class CommonProcessorsService {\r\n  constructor(private ngZone: NgZone, private keyGraph: KeyGraphService) {}\r\n\r\n  series(processors: ProcessorCallback[]): ProcessorCallback {\r\n    return async ({ field, context, options }) => {\r\n      for (const processor of processors) {\r\n        field = await processor({ field, context, options });\r\n      }\r\n      return field;\r\n    };\r\n  }\r\n\r\n  makeJsonParseProcessor({\r\n    plainFieldName,\r\n    jsonFieldSuffix = 'Json',\r\n  }: ParseJsonProcessorOptions = {}): ProcessorCallback {\r\n    const jsonFieldName = plainFieldName + jsonFieldSuffix;\r\n\r\n    return ({ field }) => {\r\n      if (field[plainFieldName] == null || jsonFieldName in field) {\r\n        // if plainFieldName is undefined or null, then don't parse it.\r\n        // if you parse it, then JSON.parse(null) and JSON.parse(\"null\") both return null, so\r\n        // you can't distinguish between the two.\r\n        // If clearFieldName already exists in node as a property, then we don't\r\n        // need to process it again, even if it's value can be undefined or null even.\r\n        return field;\r\n      }\r\n\r\n      try {\r\n        return {\r\n          ...field,\r\n          [jsonFieldName]: JSON.parse(field[plainFieldName]),\r\n        };\r\n      } catch (error) {\r\n        return field;\r\n      }\r\n    };\r\n  }\r\n\r\n  makeDecryptionProcessor({\r\n    cipherFieldName,\r\n    clearFieldSuffix = 'ClearJson',\r\n    getKeyId = null,\r\n  }: DecryptionProcessorOptions = {}): ProcessorCallback {\r\n    const clearFieldName = cipherFieldName + clearFieldSuffix;\r\n\r\n    return async (params) => {\r\n      const { field, context, options } = params;\r\n\r\n      // Can't decrypt anything if key graph is not returned\r\n      if (!options.hasKeys) {\r\n        return field;\r\n      }\r\n\r\n      const cipherField = field[cipherFieldName];\r\n\r\n      // cipherField can be empty string, null or undefined.\r\n      if (!cipherField || clearFieldName in field) {\r\n        return field;\r\n      }\r\n\r\n      const keyId = getKeyId\r\n        ? await getKeyId(params)\r\n        : field.keyId || field.key?.id;\r\n\r\n      if (!keyId) {\r\n        const keyIdName = getKeyId ? 'key-id' : 'keyId or key.id';\r\n        throw new LrBadLogicException(\r\n          `Query response does not contain ${keyIdName} field: ${context.path.join(\r\n            '.'\r\n          )}`\r\n        );\r\n      }\r\n\r\n      return this.keyGraph\r\n        .decryptFromString(keyId, cipherField)\r\n        .then((clear) => ({\r\n          ...field,\r\n          [clearFieldName]: clear,\r\n        }));\r\n    };\r\n  }\r\n}\r\n","import { Injectable, NgZone } from '@angular/core';\r\nimport { KeyGraphService } from '../../cryptography/key-graph.service';\r\nimport { RunOutsideAngular } from '../../_common/run-outside-angular';\r\nimport {\r\n  ID,\r\n  SharedTpAssemblyNode,\r\n  TpAssemblyApproverNode,\r\n  TpAssemblyNode,\r\n  TpSubAssemblyNode,\r\n} from '../types';\r\nimport {\r\n  processConnection,\r\n  ProcessorCallbackParams,\r\n} from './common-processors.service';\r\nimport {\r\n  TpPasswordResetUserNode,\r\n  TpPasswordResetUserApprovalNode,\r\n  TpPasswordResetNode,\r\n} from '../types';\r\nimport { Key } from '../../cryptography/cryptography.types';\r\nimport { LrBadRequestException } from '../../_common/exceptions';\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class TpPasswordResetProcessorService {\r\n  constructor(private ngZone: NgZone, private keyGraph: KeyGraphService) {}\r\n\r\n  async processTpPasswordResetUserNode(\r\n    node: TpPasswordResetUserNode\r\n  ): Promise<TpPasswordResetUserNode> {\r\n    const pxk = node.pxk?.id && (await this.keyGraph.getKey(node.pxk.id));\r\n\r\n    const ret = {\r\n      ...node,\r\n    };\r\n\r\n    if (pxk && node.approvals) {\r\n      ret.approvals = await Promise.all(\r\n        node.approvals.map((approval) =>\r\n          this.processTpPasswordResetUserApprovalNode(approval, pxk)\r\n        )\r\n      );\r\n    }\r\n\r\n    return ret;\r\n  }\r\n\r\n  private async processTpPasswordResetUserApprovalNode(\r\n    approval: TpPasswordResetUserApprovalNode,\r\n    pxk: Key\r\n  ) {\r\n    const ret = {\r\n      ...approval,\r\n    };\r\n\r\n    if (approval.receiverCipher) {\r\n      ret.receiverCipherClearJson = this.keyGraph.decryptFromString(\r\n        pxk,\r\n        approval.receiverCipher\r\n      );\r\n    }\r\n\r\n    if (approval.receiverCipherPartialAssemblyKey) {\r\n      ret.receiverCipherPartialAssemblyKeyClearJson = this.keyGraph.decryptFromString(\r\n        pxk,\r\n        approval.receiverCipherPartialAssemblyKey\r\n      );\r\n    }\r\n    return ret;\r\n  }\r\n\r\n  makeTpPasswordResetNodeProcessor() {\r\n    return async ({\r\n      field,\r\n    }: ProcessorCallbackParams): Promise<TpPasswordResetNode> => {\r\n      const ret = {\r\n        ...field,\r\n      };\r\n\r\n      if (field.assembly) {\r\n        if (field.applied == null) {\r\n          throw new LrBadRequestException(\r\n            'If you request for field \"assembly\" in the TpPasswordResetNode, then you must also request the \"applied\" field'\r\n          );\r\n        }\r\n\r\n        ret.assembly = await this.processTpAssemblyNode(\r\n          field.assembly,\r\n          field.applied\r\n        );\r\n      }\r\n\r\n      return ret;\r\n    };\r\n  }\r\n\r\n  private async processTpAssemblyNode(\r\n    assembly: TpAssemblyNode,\r\n    applied: boolean\r\n  ): Promise<TpAssemblyNode> {\r\n    // Subject key is encrypted user the master key. So if reset has been applied, then\r\n    // these keys are not available any more.\r\n    const {\r\n      subjectKey,\r\n      assemblyKey,\r\n      assemblyCipherData,\r\n      subAssemblies,\r\n    } = assembly;\r\n\r\n    const ret: TpAssemblyNode = {\r\n      ...assembly,\r\n      subAssemblies: await processConnection(subAssemblies, (node) =>\r\n        this.processTpSubAssemblyNode(node, subjectKey.id, applied)\r\n      ),\r\n    };\r\n\r\n    if (!applied) {\r\n      if (assemblyCipherData) {\r\n        ret.assemblyCipherDataClearJson = await this.keyGraph.decryptFromString(\r\n          assemblyKey.id,\r\n          assemblyCipherData\r\n        );\r\n      }\r\n    }\r\n\r\n    return ret;\r\n  }\r\n\r\n  private async processTpSubAssemblyNode(\r\n    subAssembly: TpSubAssemblyNode,\r\n    subjectKeyId: ID,\r\n    applied: boolean\r\n  ): Promise<TpSubAssemblyNode> {\r\n    const { subjectCipherData, approvers } = subAssembly;\r\n\r\n    // const ret: TpSubAssemblyNode = {\r\n    //   ...subAssembly,\r\n    //   approvers: {\r\n    //     ...approvers,\r\n    //     edges: await Promise.all(\r\n    //       approvers.edges.map(async (edge) => ({\r\n    //         ...edge,\r\n    //         node: await this.processTpAssemblyApproverNode(edge.node, applied),\r\n    //       }))\r\n    //     ),\r\n    //   },\r\n    // };\r\n    const ret: TpSubAssemblyNode = {\r\n      ...subAssembly,\r\n      approvers: await processConnection(approvers, (node) =>\r\n        this.processTpAssemblyApproverNode(node, applied)\r\n      ),\r\n    };\r\n\r\n    if (!applied) {\r\n      if (subjectCipherData) {\r\n        ret.subjectCipherDataClearJson = await this.keyGraph.decryptFromString(\r\n          subjectKeyId,\r\n          subjectCipherData\r\n        );\r\n      }\r\n    }\r\n\r\n    return ret;\r\n  }\r\n\r\n  private async processTpAssemblyApproverNode(\r\n    approver: TpAssemblyApproverNode,\r\n    applied: boolean\r\n  ) {\r\n    return approver;\r\n  }\r\n}\r\n","import { Injectable, NgZone } from '@angular/core';\r\nimport { LrBadLogicException } from '../../_common/exceptions';\r\nimport { mapValuesMayAsync, promiseAllMayAsync } from '../../_common/utils';\r\nimport { KeyService } from '../../cryptography/key.service';\r\nimport {\r\n  CommonProcessorsService,\r\n  // FieldContext,\r\n  ProcessorCallback,\r\n  ProcessorCallbackParams,\r\n  ProcessorContext,\r\n  ProcessorOptions,\r\n  DefaultProcessorOptions,\r\n} from './common-processors.service';\r\nimport { TpPasswordResetService } from '../../trusted-parties/tp-password-reset.service';\r\nimport { RunOutsideAngular } from '../../_common/run-outside-angular';\r\nimport { TpPasswordResetProcessorService } from './tp-password-reset-processor.service';\r\n\r\nfunction extendPath(context: ProcessorContext, key: string): ProcessorContext {\r\n  return {\r\n    ...context,\r\n    path: [...context.path, key],\r\n  };\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class QueryProcessorService {\r\n  readonly TYPENAME = '__typename';\r\n  private processors: { [key: string]: ProcessorCallback } = {};\r\n\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private keyService: KeyService,\r\n    private common: CommonProcessorsService,\r\n    private tpprProcessor: TpPasswordResetProcessorService\r\n  ) {\r\n    this.registerProcessor(\r\n      'DirectoryNode',\r\n      common.series([\r\n        common.makeJsonParseProcessor({\r\n          plainFieldName: 'plainMeta',\r\n        }),\r\n        common.makeDecryptionProcessor({\r\n          cipherFieldName: 'cipherMeta',\r\n        }),\r\n      ])\r\n    );\r\n    this.registerProcessor(\r\n      'FileStateNode',\r\n      common.series([\r\n        common.makeJsonParseProcessor({\r\n          plainFieldName: 'plainMeta',\r\n        }),\r\n        common.makeDecryptionProcessor({\r\n          cipherFieldName: 'cipherMeta',\r\n        }),\r\n      ])\r\n    );\r\n    this.registerProcessor(\r\n      'ContactCardNode',\r\n      common.makeDecryptionProcessor({\r\n        cipherFieldName: 'cipherData',\r\n      })\r\n    );\r\n    this.registerProcessor(\r\n      'SharedContactCardNode',\r\n      common.series([\r\n        common.makeJsonParseProcessor({\r\n          plainFieldName: 'ownerPlainData',\r\n        }),\r\n        common.makeDecryptionProcessor({\r\n          cipherFieldName: 'ownerCipherData',\r\n          getKeyId: ({ field }) => {\r\n            return field.ownerKey.id;\r\n          },\r\n        }),\r\n        common.makeDecryptionProcessor({\r\n          cipherFieldName: 'receiverCipherData',\r\n          getKeyId: ({ field }) => {\r\n            return field.receiverKey.id;\r\n          },\r\n        }),\r\n        common.makeDecryptionProcessor({\r\n          cipherFieldName: 'sharedCipherData',\r\n          getKeyId: ({ field }) => field.sharedKey.id,\r\n        }),\r\n      ])\r\n    );\r\n    this.registerProcessor(\r\n      'TpPasswordResetNode',\r\n      this.tpprProcessor.makeTpPasswordResetNodeProcessor()\r\n    );\r\n    this.registerProcessor(\r\n      'SharedTpClaimApproverNode',\r\n      common.series([\r\n        common.makeDecryptionProcessor({\r\n          cipherFieldName: 'sharedCipherApprovalData',\r\n          getKeyId: ({ field }) => field.sharedKey.id,\r\n        }),\r\n        common.makeDecryptionProcessor({\r\n          cipherFieldName: 'sharedCipherPartialAssemblyKey',\r\n          getKeyId: ({ field }) => field.sharedKey.id,\r\n        }),\r\n      ])\r\n    );\r\n    this.registerProcessor(\r\n      'TpAssemblyAsApproverNode',\r\n      common.series([\r\n        common.makeDecryptionProcessor({\r\n          cipherFieldName: 'sharedCipherData',\r\n          getKeyId: ({ field }) => field.sharedKey.id,\r\n        }),\r\n      ])\r\n    );\r\n  }\r\n\r\n  async processQuery(\r\n    fields: { [key: string]: any },\r\n    options: ProcessorOptions\r\n  ) {\r\n    options = {\r\n      ...DefaultProcessorOptions,\r\n      ...options,\r\n    };\r\n\r\n    // The top level query does not have __typename\r\n    const ret = mapValuesMayAsync(fields, (field, key) =>\r\n      this.processField({\r\n        field,\r\n        context: {\r\n          path: [key],\r\n          processChildren: true,\r\n        },\r\n        options,\r\n      })\r\n    );\r\n    return ret;\r\n  }\r\n\r\n  // Either returns a Promise, or a value.\r\n  // The Promise<any> type is redundant but it shows that it can return a promise\r\n  // We are not using async on the function because we don't want auto promotion into a Promise, which\r\n  // always defer execution into the event loops. It is costly and unnecessary for objects\r\n  // with only native data types.\r\n  private async processField({\r\n    field,\r\n    context,\r\n    options,\r\n  }: ProcessorCallbackParams) {\r\n    if (field?.then) {\r\n      throw new LrBadLogicException(\r\n        'processField() should not receive thenable.'\r\n      );\r\n    }\r\n\r\n    if (field == null) {\r\n      return null;\r\n    }\r\n\r\n    const newParams: ProcessorCallbackParams = {\r\n      field,\r\n      context: {\r\n        ...context,\r\n        // Processors modifies this field to communicate back to the caller.\r\n        processChildren: true,\r\n      },\r\n      options,\r\n    };\r\n\r\n    // TODO allow registering processors by field name so we can process primitive fields as well.\r\n    // We have common fields like \"created\", \"modified\" that be processed based on name.\r\n    if (field[this.TYPENAME]) {\r\n      // It's a custom object type\r\n      const processor = this.processors[field[this.TYPENAME]];\r\n      if (processor) {\r\n        // Returns either a value or a promise.\r\n        field = processor(newParams);\r\n      }\r\n\r\n      const processChildren = (childField) => {\r\n        if (\r\n          context.processChildren &&\r\n          childField !== null &&\r\n          typeof childField === 'object'\r\n        ) {\r\n          return mapValuesMayAsync(childField, (x, key) =>\r\n            this.processField({\r\n              field: x,\r\n              context: extendPath(context, key),\r\n              options,\r\n            })\r\n          );\r\n        } else {\r\n          return childField;\r\n        }\r\n      };\r\n\r\n      // Keep processing all child fields\r\n      if (field.then) {\r\n        // Wait for field to resolve\r\n        field = field.then((resolvedField) => {\r\n          return processChildren(resolvedField);\r\n        });\r\n      } else {\r\n        // Field is already resolved\r\n        field = processChildren(field);\r\n      }\r\n    } else {\r\n      // Keep processing all child fields\r\n      if (context.processChildren) {\r\n        if (Array.isArray(field)) {\r\n          field = promiseAllMayAsync(\r\n            (field as Array<any>).map((x, i) =>\r\n              this.processField({\r\n                field: x,\r\n                context: extendPath(context, i.toString()),\r\n                options,\r\n              })\r\n            )\r\n          );\r\n        }\r\n      }\r\n    }\r\n\r\n    return field;\r\n  }\r\n\r\n  private registerProcessor(name: string, processor: ProcessorCallback) {\r\n    if (this.processors[name]) {\r\n      throw new LrBadLogicException(\r\n        `Processor for field ${name} already exists.`\r\n      );\r\n    }\r\n    this.processors[name] = processor;\r\n  }\r\n}\r\n","export type ResolvePromise<T> = (value?: T | PromiseLike<T>) => void;\r\nexport type RejectPromise = (reason?: any) => void;\r\n\r\nexport class DeferredPromise<T> {\r\n  public readonly promise: Promise<T>;\r\n  /* tslint:disable: variable-name */\r\n  private _resolve: ResolvePromise<T>;\r\n  /* tslint:disable: variable-name */\r\n  private _reject: RejectPromise;\r\n  /* tslint:disable: variable-name */\r\n  private _fulfilled = false;\r\n\r\n  constructor() {\r\n    this.promise = new Promise<T>((resolve, reject) => {\r\n      this._resolve = resolve;\r\n      this._reject = reject;\r\n    }).finally(() => {\r\n      // finally() simply gets called on both then() and catch(). The promise\r\n      // chain continues on.\r\n      this._fulfilled = true;\r\n    });\r\n  }\r\n\r\n  get resolve() {\r\n    return this._resolve;\r\n  }\r\n\r\n  get reject() {\r\n    return this._reject;\r\n  }\r\n\r\n  get fulfilled() {\r\n    return this._fulfilled;\r\n  }\r\n}\r\n","import { OperationVariables } from '@apollo/client/core';\r\nimport { FragmentSpreadNode } from 'graphql';\r\nimport gql from 'graphql-tag';\r\nimport { getQuery, TypedDocumentNode } from '../../_common/ast';\r\nimport { DeferredPromise } from '../../_common/deferred-promise';\r\nimport { LrBadStateException } from '../../_common/exceptions';\r\n\r\nexport interface LrMutationData<T, TVariables = OperationVariables> {\r\n  mutation: TypedDocumentNode<T>;\r\n  variables?: TVariables;\r\n}\r\n\r\nexport const fragmentSpreadAstSelection = getQuery(gql`\r\n  query {\r\n    ...FragmentName\r\n  }\r\n`).selectionSet.selections[0] as FragmentSpreadNode;\r\n\r\n// const fragmentSpreadAstSelection = () =>\r\n//   lodash.deepClone(_fragmentSpreadAstSelection) as FragmentSpreadNode;\r\n\r\n/**\r\n * DECISION: LrMutationBase does not provide a convenience method to call lrGraphQL.lrMutate()\r\n * because this class could be made independent of what lib is used to call the API. If we\r\n * provided a configurable call back to make the API call, then the typing for that callback\r\n * needs to be known. But since the API lib (eg. Apollo) has it's own unique return type, so\r\n * it's not possible to do in general.\r\n */\r\nexport abstract class LrMutationBase<T, TVariables = OperationVariables> {\r\n  protected mutation: TypedDocumentNode<T>;\r\n  protected variables?: TVariables;\r\n  /* tslint:disable:variable-name */\r\n  protected _executed = false;\r\n\r\n  // protected promises: DeferredPromise<T>[] = [];\r\n  public readonly deferredPromise = new DeferredPromise<T>();\r\n\r\n  get promise(): Promise<T> {\r\n    return this.deferredPromise.promise;\r\n  }\r\n\r\n  resolve(value: T) {\r\n    this.deferredPromise.resolve(value);\r\n  }\r\n\r\n  reject(reason?: any) {\r\n    this.deferredPromise.reject(reason);\r\n  }\r\n\r\n  get lrMutationData(): LrMutationData<T, TVariables> {\r\n    return {\r\n      mutation: this.mutation,\r\n      variables: this.variables,\r\n    };\r\n  }\r\n\r\n  get executed() {\r\n    return this._executed;\r\n  }\r\n\r\n  setExecuted() {\r\n    if (this._executed) {\r\n      throw new LrBadStateException('Already executed');\r\n    }\r\n    this._executed = true;\r\n  }\r\n}\r\n","import * as lodash from 'lodash';\r\nimport { OperationVariables } from '@apollo/client/core';\r\nimport { DocumentNode, FieldNode, FragmentDefinitionNode } from 'graphql';\r\nimport {\r\n  getAliasOrName,\r\n  getFragments,\r\n  getMutation,\r\n  TypedDocumentNode,\r\n} from '../../_common/ast';\r\nimport * as ast from '../../_common/ast';\r\nimport { LrMutationData } from './lr-mutation-base';\r\nimport { fragmentSpreadAstSelection, LrMutationBase } from './lr-mutation-base';\r\n\r\nexport class LrMutation<\r\n  T extends any,\r\n  TVariables = OperationVariables\r\n> extends LrMutationBase<T, TVariables> {\r\n  constructor(options: LrMutationData<T, TVariables>) {\r\n    super();\r\n    this.mutation = options.mutation;\r\n    this.variables = options.variables;\r\n  }\r\n\r\n  select<TResult>(fragments: TypedDocumentNode<TResult>) {\r\n    // Don't touch the original\r\n    const mutationDoc = lodash.cloneDeep(this.mutation) as DocumentNode;\r\n    const mutationNode = getMutation(mutationDoc);\r\n\r\n    const fragmentMap = {} as { [key: string]: FragmentDefinitionNode };\r\n    getFragments(fragments).forEach((fragment: FragmentDefinitionNode) => {\r\n      fragmentMap[fragment.name.value] = fragment;\r\n    });\r\n\r\n    const replaceFieldSelection = (selection: FieldNode) => {\r\n      const field = selection as FieldNode;\r\n      const fieldName = getAliasOrName(field);\r\n      const fragment = fragmentMap[fieldName];\r\n\r\n      if (!fragment) {\r\n        return;\r\n      }\r\n\r\n      // Make the entire selection of the mutation a spread of\r\n      // a fragment using the same name as the mutation field.\r\n      // We will also rename the fragment to the same name.\r\n      field.selectionSet.selections = [\r\n        {\r\n          ...fragmentSpreadAstSelection,\r\n          name: ast.name(fieldName),\r\n        },\r\n      ];\r\n    };\r\n\r\n    mutationNode.selectionSet.selections.forEach((selection) => {\r\n      if (selection.kind === 'Field') {\r\n        replaceFieldSelection(selection);\r\n      }\r\n    });\r\n\r\n    return new LrMutation({\r\n      mutation: {\r\n        ...mutationDoc,\r\n        definitions: [\r\n          // Remove all existing fragments\r\n          ...mutationDoc.definitions.filter(\r\n            (def) => def.kind !== 'FragmentDefinition'\r\n          ),\r\n          ...fragments.definitions,\r\n        ],\r\n      } as TypedDocumentNode<TResult>,\r\n      variables: this.variables,\r\n    });\r\n  }\r\n}\r\n","import {\r\n  ArgumentNode,\r\n  DocumentNode,\r\n  FieldNode,\r\n  FragmentDefinitionNode,\r\n  FragmentSpreadNode,\r\n  SelectionNode,\r\n  SelectionSetNode,\r\n  VariableDefinitionNode,\r\n} from 'graphql';\r\nimport {\r\n  LrBadArgumentException,\r\n  LrBadLogicException,\r\n  LrUnsupportedException,\r\n} from '../../_common/exceptions';\r\nimport { LrMutation } from './lr-mutation';\r\nimport { LrMutationBase } from './lr-mutation-base';\r\nimport { getAliasOrName, getFragments, getMutation } from '../../_common/ast';\r\nimport * as ast from '../../_common/ast';\r\nimport * as lodash from 'lodash';\r\n\r\nconst lrMergedMutationDoc: DocumentNode = {\r\n  kind: 'Document',\r\n  definitions: [\r\n    {\r\n      kind: 'OperationDefinition',\r\n      operation: 'mutation',\r\n      name: {\r\n        kind: 'Name',\r\n        value: 'lrMergedMutation',\r\n      },\r\n      variableDefinitions: [],\r\n      directives: [],\r\n      selectionSet: {\r\n        kind: 'SelectionSet',\r\n        selections: [],\r\n      },\r\n    },\r\n  ],\r\n  // TODO What to do about these? Serialise and reparse?\r\n  // \"loc\": {\r\n  //   \"start\": 0,\r\n  //   \"end\": 204\r\n  // }\r\n};\r\n\r\nexport class LrMergedMutation<T> extends LrMutationBase<T> {\r\n  public readonly descendants: Set<LrMutationBase<any>>;\r\n  protected prefixes: string[];\r\n\r\n  constructor(public readonly lrMutations: LrMutationBase<any>[]) {\r\n    super();\r\n\r\n    const { mutation, variables, prefixes } = this.merge();\r\n    this.mutation = mutation;\r\n    this.variables = variables;\r\n    this.prefixes = prefixes;\r\n    this.descendants = this.getDescendants();\r\n  }\r\n\r\n  static create<T1, T2>(\r\n    lrMutations: [\r\n      LrMutationBase<T1> | LrMergedMutation<T1>,\r\n      LrMutationBase<T2> | LrMergedMutation<T2>\r\n    ]\r\n  ): LrMergedMutation<[T1, T2]>;\r\n\r\n  static create<T1, T2, T3>(\r\n    lrMutations: [\r\n      LrMutationBase<T1> | LrMergedMutation<T1>,\r\n      LrMutationBase<T2> | LrMergedMutation<T2>,\r\n      LrMutationBase<T3> | LrMergedMutation<T3>\r\n    ]\r\n  ): LrMergedMutation<[T1, T2, T3]>;\r\n\r\n  static create<T1, T2, T3, T4>(\r\n    lrMutations: [\r\n      LrMutationBase<T1> | LrMergedMutation<T1>,\r\n      LrMutationBase<T2> | LrMergedMutation<T2>,\r\n      LrMutationBase<T3> | LrMergedMutation<T3>,\r\n      LrMutationBase<T4> | LrMergedMutation<T4>\r\n    ]\r\n  ): LrMergedMutation<[T1, T2, T3, T4]>;\r\n\r\n  static create<T1, T2, T3, T4, T5>(\r\n    lrMutations: [\r\n      LrMutationBase<T1> | LrMergedMutation<T1>,\r\n      LrMutationBase<T2> | LrMergedMutation<T2>,\r\n      LrMutationBase<T3> | LrMergedMutation<T3>,\r\n      LrMutationBase<T4> | LrMergedMutation<T4>,\r\n      LrMutationBase<T5> | LrMergedMutation<T5>\r\n    ]\r\n  ): LrMergedMutation<[T1, T2, T3, T4, T5]>;\r\n\r\n  static create(lrMutations: LrMutationBase<any>[]): LrMergedMutation<any[]>;\r\n\r\n  static create(lrMutations: LrMutationBase<any>[]) {\r\n    return new LrMergedMutation(lrMutations);\r\n  }\r\n\r\n  private getDescendants() {\r\n    const ret = new Set<LrMutationBase<any>>();\r\n\r\n    const addOrThrow = (item) => {\r\n      if (ret.has(item)) {\r\n        throw new LrBadLogicException(\r\n          'Classes that are derived from LrMutationBase can not be used more than once in a merged mutation.'\r\n        );\r\n      }\r\n\r\n      ret.add(item);\r\n    };\r\n\r\n    this.lrMutations.forEach((lrMutation) => {\r\n      if (lrMutation instanceof LrMutation) {\r\n        addOrThrow(lrMutation);\r\n      } else if (lrMutation instanceof LrMergedMutation) {\r\n        lrMutation.descendants.forEach((t) => addOrThrow(t));\r\n      } else {\r\n        throw new LrUnsupportedException(\r\n          `LrMergeMutation can not handle class: ${lrMutation.constructor.name}`\r\n        );\r\n      }\r\n    });\r\n\r\n    return ret;\r\n  }\r\n\r\n  resolve(value: any) {\r\n    // Resolves any promises waiting for the child mutations\r\n    for (let i = 0; i < this.lrMutations.length; ++i) {\r\n      const prefix = this.prefixes[i];\r\n\r\n      // Remove the prefix and resolve child mutation.\r\n      const res: any = {};\r\n      for (const key2 in value) {\r\n        if (key2.startsWith(prefix)) {\r\n          const originalKey = key2.slice(prefix.length);\r\n          res[originalKey] = value[key2];\r\n        }\r\n      }\r\n      this.lrMutations[i].resolve(res);\r\n    }\r\n\r\n    // Resolves to the result of children\r\n    Promise.all(this.lrMutations.map((m) => m.promise)).then(\r\n      (childValues: any) => {\r\n        // Resolves any promises waiting for the current merged mutation\r\n        super.resolve(childValues);\r\n      }\r\n    );\r\n  }\r\n\r\n  reject(reason?: any) {\r\n    super.reject(reason);\r\n    this.lrMutations.forEach((lrMutation) => lrMutation.reject(reason));\r\n  }\r\n\r\n  setExecuted() {\r\n    super.setExecuted();\r\n    this.lrMutations.forEach((lrMutation) => lrMutation.setExecuted());\r\n  }\r\n\r\n  private renameVariableDefinition(varDef: VariableDefinitionNode, prefix) {\r\n    return {\r\n      ...varDef,\r\n      variable: {\r\n        ...varDef.variable,\r\n        name: ast.name(prefix + varDef.variable.name.value),\r\n      },\r\n    };\r\n  }\r\n\r\n  private renameVariableDefinitions(\r\n    varDefs: ReadonlyArray<VariableDefinitionNode>,\r\n    prefix\r\n  ) {\r\n    return varDefs.map((varDef) =>\r\n      this.renameVariableDefinition(varDef, prefix)\r\n    );\r\n  }\r\n\r\n  private renameArgument(arg: ArgumentNode, prefix) {\r\n    if (arg.value.kind !== 'Variable') {\r\n      return arg;\r\n    }\r\n\r\n    return {\r\n      ...arg,\r\n      value: {\r\n        ...arg.value,\r\n        name: ast.name(prefix + arg.value.name.value),\r\n      },\r\n    };\r\n  }\r\n\r\n  private renameField(selection: FieldNode, prefix): FieldNode {\r\n    // Only handling type Field\r\n    if (selection.kind !== 'Field') {\r\n      return selection;\r\n    }\r\n\r\n    const alias = prefix + getAliasOrName(selection);\r\n    const args = selection.arguments.map((arg) =>\r\n      this.renameArgument(arg, prefix)\r\n    );\r\n\r\n    return {\r\n      ...selection,\r\n      alias: {\r\n        kind: 'Name',\r\n        value: alias,\r\n      },\r\n      arguments: args,\r\n    };\r\n  }\r\n\r\n  private renameFragmentSpread(\r\n    selection: FragmentSpreadNode,\r\n    prefix\r\n  ): FragmentSpreadNode {\r\n    return {\r\n      ...selection,\r\n      name: ast.name(prefix + selection.name.value),\r\n    };\r\n  }\r\n\r\n  private processSelection(selection: SelectionNode, prefix): SelectionNode {\r\n    switch (selection.kind) {\r\n      case 'FragmentSpread':\r\n        return this.renameFragmentSpread(selection, prefix);\r\n      case 'Field':\r\n        // Continue to process children for nested selections.\r\n        if (selection.selectionSet) {\r\n          return {\r\n            ...selection,\r\n            selectionSet: this.processSelectionSet(\r\n              selection.selectionSet,\r\n              prefix\r\n            ),\r\n          };\r\n        } else {\r\n          return selection;\r\n        }\r\n      default:\r\n        return selection;\r\n    }\r\n  }\r\n\r\n  private processSelectionSet(\r\n    selectionSet: SelectionSetNode,\r\n    prefix\r\n  ): SelectionSetNode {\r\n    return {\r\n      ...selectionSet,\r\n      selections: selectionSet.selections.map((selection) =>\r\n        this.processSelection(selection, prefix)\r\n      ),\r\n    };\r\n  }\r\n\r\n  private renameSelections(\r\n    selections: ReadonlyArray<SelectionNode>,\r\n    prefix\r\n  ): SelectionNode[] {\r\n    return selections.map((selection) => {\r\n      switch (selection.kind) {\r\n        case 'Field':\r\n          const field = this.renameField(selection, prefix);\r\n          return this.processSelection(field, prefix);\r\n        default:\r\n          return selection;\r\n      }\r\n    });\r\n  }\r\n\r\n  private renameFragmentDefinition(fragment: FragmentDefinitionNode, prefix) {\r\n    const ret = {\r\n      ...fragment,\r\n      name: ast.name(prefix + fragment.name.value),\r\n    };\r\n\r\n    if (fragment.selectionSet) {\r\n      ret.selectionSet = this.processSelectionSet(\r\n        fragment.selectionSet,\r\n        prefix\r\n      );\r\n    }\r\n\r\n    return ret;\r\n  }\r\n\r\n  private renameFragmentDefinitions(\r\n    fragments: FragmentDefinitionNode[],\r\n    prefix\r\n  ) {\r\n    return fragments.map((fragment) =>\r\n      this.renameFragmentDefinition(fragment, prefix)\r\n    );\r\n  }\r\n\r\n  private merge() {\r\n    let variableDefinitions: VariableDefinitionNode[] = [];\r\n    let selections: SelectionNode[] = [];\r\n    const mergedVariables = {};\r\n    let mergedFragments: FragmentDefinitionNode[] = [];\r\n\r\n    const prefixes: string[] = [];\r\n\r\n    // Just wait for everything to resolve because we have to\r\n    // merge the doc synchronously.\r\n    this.lrMutations.forEach((lrMutation, idx) => {\r\n      const { mutation, variables } = lrMutation.lrMutationData;\r\n\r\n      const childMutationNode = getMutation(mutation);\r\n\r\n      // Prefixing all mutation fields so they don't conflict.\r\n      let prefix = `item${idx}_`;\r\n      if (childMutationNode.name) {\r\n        prefix += childMutationNode.name.value + '_';\r\n      }\r\n\r\n      prefixes.push(prefix);\r\n\r\n      // Rename and merge variables\r\n      variableDefinitions = [\r\n        ...variableDefinitions,\r\n        ...this.renameVariableDefinitions(\r\n          childMutationNode.variableDefinitions,\r\n          prefix\r\n        ),\r\n      ];\r\n\r\n      // Rename and merge selections\r\n      selections = [\r\n        ...selections,\r\n        ...this.renameSelections(\r\n          childMutationNode.selectionSet.selections,\r\n          prefix\r\n        ),\r\n      ];\r\n\r\n      // TODO Rename and merge fragments\r\n\r\n      // Rename and merge variables\r\n      for (const key2 of Object.keys(variables)) {\r\n        mergedVariables[prefix + key2] = variables[key2];\r\n      }\r\n\r\n      // Rename and merge fragments\r\n      const fragments = getFragments(mutation);\r\n      mergedFragments = [\r\n        ...mergedFragments,\r\n        ...this.renameFragmentDefinitions(fragments, prefix),\r\n      ];\r\n    });\r\n\r\n    const mergedMutation: DocumentNode = lodash.cloneDeep(lrMergedMutationDoc);\r\n    const mutationNode = getMutation(mergedMutation);\r\n    // Add in the mutation selections\r\n    mutationNode.selectionSet.selections = selections;\r\n    // Add in the variables\r\n    // variableDefinitions is readonly property.\r\n    (mutationNode as any).variableDefinitions = variableDefinitions;\r\n    // Add in the fragments\r\n    (mergedMutation as any).definitions = [\r\n      ...mergedMutation.definitions,\r\n      ...mergedFragments,\r\n    ];\r\n\r\n    return {\r\n      mutation: mergedMutation,\r\n      variables: mergedVariables,\r\n      prefixes,\r\n    };\r\n  }\r\n}\r\n","import * as lodash from 'lodash';\r\nimport { Injectable, NgZone } from '@angular/core';\r\nimport { Apollo } from 'apollo-angular';\r\nimport {\r\n  QueryOptions,\r\n  MutationOptions,\r\n  OperationVariables,\r\n  FetchPolicy,\r\n} from '@apollo/client/core';\r\nimport { MutationBaseOptions } from '@apollo/client/core/watchQueryOptions';\r\nimport { KeyGraphService } from '../../cryptography/key-graph.service';\r\nimport { HasKeyGraph } from '../../cryptography/cryptography.types';\r\nimport {\r\n  handleApolloError,\r\n  LrBadStateException,\r\n  LrUnsupportedException,\r\n} from '../../_common/exceptions';\r\nimport { FetchKeyGraphField, KeyGraphField } from '../../_common/queries.gql';\r\nimport { TypedDocumentNode, getQuery, getMutation } from '../../_common/ast';\r\nimport gql from 'graphql-tag';\r\nimport { ProcessorOptions, QueryProcessorService } from '../query-processor';\r\nimport { RunOutsideAngular } from '../../_common/run-outside-angular';\r\nimport { FieldNode } from 'graphql';\r\nimport { LrMutationBase } from './lr-mutation-base';\r\nimport * as gqlPrinter from 'graphql/language/printer';\r\nimport { LrMergedMutation } from './lr-merged-mutation';\r\n\r\n// Data structures\r\n// --------------------------------------------------------------------------\r\nconst keyGraphFieldAstSelection = getQuery(gql`\r\nquery {\r\n  ${KeyGraphField}\r\n}\r\n`).selectionSet.selections[0] as FieldNode;\r\n\r\nconst fetchKeyGraphFieldAstSelection = getQuery(gql`\r\nquery {\r\n  ${FetchKeyGraphField}\r\n}\r\n`).selectionSet.selections[0] as FieldNode;\r\n\r\n// const keyGraphFieldAstSelection = () =>\r\n//   lodash.deepClone(_keyGraphFieldAstSelection) as FieldNode;\r\n// const fetchKeyGraphFieldAstSelection = () =>\r\n//   lodash.deepClone(_fetchKeyGraphFieldAstSelection) as FieldNode;\r\n\r\nexport interface LrQueryOptions<T, TVariables>\r\n  extends QueryOptions<TVariables> {\r\n  query: TypedDocumentNode<T>;\r\n  includeKeyGraph?: boolean;\r\n  processorOptions?: ProcessorOptions;\r\n}\r\n\r\n// Copied from MutationOptions\r\n// Removed required field \"mutation\". The \"variables\" field is still there\r\n// but it's dynamically checked.\r\nexport interface LrMutationOptions<\r\n  T = {\r\n    [key: string]: any;\r\n  },\r\n  TVariables = OperationVariables\r\n> extends MutationBaseOptions<T, TVariables> {\r\n  context?: any;\r\n  fetchPolicy?: FetchPolicy;\r\n  includeKeyGraph?: boolean;\r\n}\r\n\r\n// The \"mutation\" and \"variable\" fields are inherited but dynamically prohibited because\r\n// they are provided by LrMutation. It's a bit unclean but avoids a lot of typing work.\r\nexport interface LrApolloMutationOptions<T, TVariables = OperationVariables>\r\n  extends MutationOptions<T, TVariables> {\r\n  mutation: TypedDocumentNode<T>;\r\n  includeKeyGraph?: boolean;\r\n  processorOptions?: ProcessorOptions;\r\n}\r\n\r\ninterface LrGraphQLServiceStats {\r\n  queryCount: number;\r\n  mutationCount: number;\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class LrGraphQLService {\r\n  private stats: LrGraphQLServiceStats = {\r\n    queryCount: 0,\r\n    mutationCount: 0,\r\n  };\r\n\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private apollo: Apollo,\r\n    private keyGraph: KeyGraphService,\r\n    private queryProcessor: QueryProcessorService\r\n  ) {}\r\n\r\n  async query<T, V = { [key: string]: any }>(\r\n    options: LrQueryOptions<T, V>\r\n  ): Promise<T> {\r\n    // Make copies to avoid side effect.\r\n    options = lodash.cloneDeep(options);\r\n\r\n    // Append the key graph query\r\n    const includeKeyGraph = this.isIncludeKeyGraph(options.includeKeyGraph);\r\n    if (includeKeyGraph) {\r\n      const operation = getQuery(options.query);\r\n      operation.selectionSet.selections = [\r\n        ...operation.selectionSet.selections,\r\n        keyGraphFieldAstSelection,\r\n      ];\r\n    }\r\n\r\n    const response = await this.apollo.query<T, V>(options).toPromise();\r\n\r\n    this.stats.queryCount++;\r\n\r\n    handleApolloError(response.errors);\r\n\r\n    this.addKeys(response);\r\n\r\n    const data = await this.queryProcessor.processQuery(\r\n      response.data,\r\n      options.processorOptions\r\n    );\r\n\r\n    return data;\r\n  }\r\n\r\n  private async lrMutateImpl(lrMutation, options?) {\r\n    if (options?.variables) {\r\n      throw new LrUnsupportedException(\r\n        'Unsupported field: \"options.variables\"'\r\n      );\r\n    }\r\n\r\n    if (lrMutation.executed) {\r\n      throw new LrBadStateException(\r\n        'LrMutation has already executed. LrMutation can only be used once in a lrMutate() call. Create new instances of LrMutation.'\r\n      );\r\n    }\r\n\r\n    lrMutation.setExecuted();\r\n\r\n    return this.apolloMutate({\r\n      ...options,\r\n      ...lrMutation.lrMutationData,\r\n    })\r\n      .then((res) => {\r\n        // Resolve promises set on the lrMutation rather than the lrMutate() call.\r\n        lrMutation.resolve(res);\r\n        // Still need to return value to the promise waiting for the results of lrMutate().\r\n        return res;\r\n      })\r\n      .catch((error) => {\r\n        lrMutation.reject(error);\r\n        throw error;\r\n      });\r\n  }\r\n\r\n  async apolloMutate<T extends any, TVariables = { [key: string]: any }>(\r\n    options: LrApolloMutationOptions<T, TVariables>\r\n  ): Promise<T> {\r\n    // Make copies to avoid side effect.\r\n    options = {\r\n      ...options,\r\n      mutation: lodash.cloneDeep(options.mutation),\r\n    };\r\n\r\n    // Append the key graph query\r\n    const includeKeyGraph = this.isIncludeKeyGraph(options.includeKeyGraph);\r\n\r\n    if (includeKeyGraph) {\r\n      const operation = getMutation(options.mutation);\r\n      operation.selectionSet.selections = [\r\n        ...operation.selectionSet.selections,\r\n        fetchKeyGraphFieldAstSelection,\r\n      ];\r\n    }\r\n\r\n    // Format to string and parse again. This allows the \"loc\": { \"start\": ... }\r\n    // part of the DocumentNode to be correctly setup. It's extra processing\r\n    // in serialising and parsing, but probably minimal overhead.\r\n    options.mutation = gql(gqlPrinter.print(options.mutation));\r\n\r\n    const response = await this.apollo.mutate<T>(options).toPromise();\r\n\r\n    this.stats.mutationCount++;\r\n\r\n    handleApolloError(response.errors);\r\n\r\n    this.addKeys(response);\r\n\r\n    const data = await this.queryProcessor.processQuery(\r\n      response.data,\r\n      options.processorOptions\r\n    );\r\n\r\n    return data;\r\n  }\r\n\r\n  statsSnapshot(): LrGraphQLServiceStats {\r\n    return lodash.cloneDeep(this.stats);\r\n  }\r\n\r\n  private addKeys(response) {\r\n    if ((response.data as HasKeyGraph).keyGraph) {\r\n      this.keyGraph.addKeys((response.data as HasKeyGraph).keyGraph);\r\n      delete response.data.keyGraph;\r\n    }\r\n  }\r\n\r\n  private isIncludeKeyGraph(includeKeyGraph) {\r\n    // Default to true when null or undefined.\r\n    return includeKeyGraph == null ? true : false;\r\n  }\r\n\r\n  async lrMutate<T1, TVariables1, T2, TVariables2>(\r\n    lrMutations: [\r\n      LrMutationMayAsync<T1, TVariables1>,\r\n      LrMutationMayAsync<T2, TVariables2>\r\n    ],\r\n    options?: LrMutationOptions\r\n  ): Promise<[T1, T2]>;\r\n\r\n  async lrMutate<T1, TVariables1, T2, TVariables2, T3, TVariables3>(\r\n    lrMutations: [\r\n      LrMutationMayAsync<T1, TVariables1>,\r\n      LrMutationMayAsync<T2, TVariables2>,\r\n      LrMutationMayAsync<T3, TVariables3>\r\n    ],\r\n    options?: LrMutationOptions\r\n  ): Promise<[T1, T2, T3]>;\r\n\r\n  async lrMutate<\r\n    T1,\r\n    TVariables1,\r\n    T2,\r\n    TVariables2,\r\n    T3,\r\n    TVariables3,\r\n    T4,\r\n    TVariables4\r\n  >(\r\n    lrMutations: [\r\n      LrMutationMayAsync<T1, TVariables1>,\r\n      LrMutationMayAsync<T2, TVariables2>,\r\n      LrMutationMayAsync<T3, TVariables3>,\r\n      LrMutationMayAsync<T4, TVariables4>\r\n    ],\r\n    options?: LrMutationOptions\r\n  ): Promise<[T1, T2, T3, T4]>;\r\n\r\n  async lrMutate<\r\n    T1,\r\n    TVariables1,\r\n    T2,\r\n    TVariables2,\r\n    T3,\r\n    TVariables3,\r\n    T4,\r\n    TVariables4,\r\n    T5,\r\n    TVariables5\r\n  >(\r\n    lrMutations: [\r\n      LrMutationMayAsync<T1, TVariables1>,\r\n      LrMutationMayAsync<T2, TVariables2>,\r\n      LrMutationMayAsync<T3, TVariables3>,\r\n      LrMutationMayAsync<T4, TVariables4>,\r\n      LrMutationMayAsync<T5, TVariables5>\r\n    ],\r\n    options?: LrMutationOptions\r\n  ): Promise<[T1, T2, T3, T4, T5]>;\r\n\r\n  async lrMutate<T, TVariables = { [key: string]: any }>(\r\n    lrMutation: LrMutationMayAsync<T, TVariables>,\r\n    options?: LrMutationOptions<T, TVariables>\r\n  ): Promise<T>;\r\n\r\n  async lrMutate<T, TVariables = { [key: string]: any }>(\r\n    lrMutations:\r\n      | LrMutationMayAsync<T, TVariables>[]\r\n      | LrMutationMayAsync<T, TVariables>,\r\n    options?: LrMutationOptions\r\n  );\r\n\r\n  async lrMutate<T, TVariables = { [key: string]: any }>(\r\n    lrMutations:\r\n      | LrMutationMayAsync<T, TVariables>[]\r\n      | LrMutationMayAsync<T, TVariables>,\r\n    options?: LrMutationOptions\r\n  ) {\r\n    if (lrMutations instanceof Array) {\r\n      const merged = LrMergedMutation.create(await Promise.all(lrMutations));\r\n      await this.lrMutateImpl(merged, options);\r\n      return merged.promise;\r\n    } else {\r\n      const resolved = await lrMutations;\r\n      await this.lrMutateImpl(resolved, options);\r\n      return resolved.promise;\r\n    }\r\n  }\r\n}\r\n\r\ntype LrMutationMayAsync<T, TVariables> =\r\n  | LrMutationBase<T, TVariables>\r\n  | Promise<LrMutationBase<T, TVariables>>\r\n  | LrMergedMutation<T>\r\n  | Promise<LrMergedMutation<T>>;\r\n","import { Injector } from '@angular/core';\r\nimport {\r\n  LrGraphQLService,\r\n  LrMutationOptions,\r\n  LrQueryOptions,\r\n} from './lr-graphql.service';\r\nimport { LrMutationBase } from './lr-mutation-base';\r\n\r\nexport class LrService {\r\n  protected lrGraphQL: LrGraphQLService;\r\n\r\n  constructor(injector: Injector) {\r\n    this.lrGraphQL = injector.get(LrGraphQLService);\r\n  }\r\n\r\n  protected async mutate<T, TVariables>(\r\n    lrMutation:\r\n      | LrMutationBase<T, TVariables>\r\n      | Promise<LrMutationBase<T, TVariables>>,\r\n    options?: LrMutationOptions<T, TVariables>\r\n  ) {\r\n    return this.lrGraphQL.lrMutate(lrMutation, options);\r\n  }\r\n\r\n  protected async query<T, V>(options: LrQueryOptions<T, V>) {\r\n    return this.lrGraphQL.query(options);\r\n  }\r\n}\r\n","import { Inject, Injectable, isDevMode } from '@angular/core';\r\nimport { CognitoUser } from '@aws-amplify/auth';\r\nimport { Hub } from '@aws-amplify/core';\r\nimport { CognitoUserAttribute } from 'amazon-cognito-identity-js';\r\nimport { Observable, ReplaySubject } from 'rxjs';\r\nimport { PassIdpParams } from '../cryptography/cryptography.types';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { ProfileService } from '../users/profile.service';\r\nimport { PasswordChangeStatus } from '../users/profile.types';\r\nimport {\r\n  LrConcurrentAccessException,\r\n  LrBadRequestException,\r\n} from '../_common/exceptions';\r\nimport {\r\n  CognitoChallengeUser,\r\n  CurrentUser,\r\n  TpPasswordResetUser,\r\n  LoginResult,\r\n  RecoveryStatus,\r\n} from './auth.types';\r\nimport { PasswordService } from './password.service';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport { TpPasswordResetUserQuery } from '../trusted-parties/tp-password-reset.gql';\r\nimport { IdleService } from './idle.service';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { LrGraphQLService, LrMutation } from '../api/lr-graphql';\r\nimport { TpPasswordResetUserNode } from '../api/types';\r\nimport { TpPasswordResetProcessorService } from '../api/query-processor/tp-password-reset-processor.service';\r\nimport { SetSessionEncryptionKeyMutation } from './auth.gql';\r\nimport { PersistService } from '../api/persist.service';\r\nimport { JWK } from 'node-jose';\r\nimport { LifeReadyConfig, LR_CONFIG } from '../life-ready.config';\r\n\r\nexport const initialiseAuth = (authService: LifeReadyAuthService) => {\r\n  return () => authService.initialise();\r\n};\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class LifeReadyAuthService {\r\n  private hubSubject: ReplaySubject<any> = new ReplaySubject<any>(1);\r\n  private currentUser: CurrentUser;\r\n\r\n  constructor(\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private auth: AuthClass,\r\n    private keyFactory: KeyFactoryService,\r\n    private keyService: KeyService,\r\n    private profileService: ProfileService,\r\n    private keyGraphService: KeyGraphService,\r\n    private passwordService: PasswordService,\r\n    private idleService: IdleService,\r\n    private lrGraphQL: LrGraphQLService,\r\n    private tpPasswordResetProcessorService: TpPasswordResetProcessorService,\r\n    private persistService: PersistService\r\n  ) {}\r\n\r\n  public async initialise() {\r\n    Hub.listen('auth', (data) => this.hubSubject.next(data.payload));\r\n  }\r\n\r\n  private async loginIdpImpl(\r\n    emailOrPhone: string,\r\n    password: string,\r\n    passIdpParams: PassIdpParams,\r\n    recoveryStatus: RecoveryStatus\r\n  ): Promise<CognitoChallengeUser> {\r\n    const passIdpResult = await this.keyFactory.derivePassIdp({\r\n      password,\r\n      ...passIdpParams,\r\n    });\r\n    // Use the derived password to signin with cognito\r\n    const user = await this.auth.signIn(\r\n      emailOrPhone,\r\n      this.passwordService.getPassIdpString(passIdpResult.jwk)\r\n    );\r\n\r\n    user.recoveryStatus = recoveryStatus;\r\n\r\n    return user;\r\n  }\r\n\r\n  private async loginIdp(\r\n    emailOrPhone: string,\r\n    password: string\r\n  ): Promise<CognitoChallengeUser> {\r\n    // Download the salt needed to derive the PassIdp\r\n    const passIdpApiResult = await this.profileService.getPassIdpParams(\r\n      emailOrPhone\r\n    );\r\n\r\n    if (\r\n      passIdpApiResult.passwordChangeStatus === PasswordChangeStatus.InProgress\r\n    ) {\r\n      throw new LrConcurrentAccessException('A password change is in progress');\r\n    }\r\n\r\n    if (\r\n      passIdpApiResult.passwordChangeStatus === PasswordChangeStatus.Recovery\r\n    ) {\r\n      console.log('In recovery mode.');\r\n      // Let's say we don't know if the password is the new one or the old one. We just have to try both.\r\n      try {\r\n        const user = await this.loginIdpImpl(\r\n          emailOrPhone,\r\n          password,\r\n          passIdpApiResult.newPassIdpParams,\r\n          RecoveryStatus.NEW_PASSWORD\r\n        );\r\n        // New password worked. Let's set to the current password\r\n\r\n        // --Potential Failure Point 1--\r\n        // if changePasswordComplete() doesn't get called, then it should remain\r\n\r\n        console.log('New password works!');\r\n\r\n        return user;\r\n      } catch (error) {\r\n        // Just bubble up any other type of error.\r\n        if (error.code !== 'NotAuthorizedException') {\r\n          throw error;\r\n        }\r\n        // pass, try again assuming it's the old password\r\n      }\r\n\r\n      // Now assume it's the previous password. Any exception is allowed to bubble up.\r\n      try {\r\n        const user = await this.loginIdpImpl(\r\n          emailOrPhone,\r\n          password,\r\n          passIdpApiResult.currentPassIdpParams,\r\n          RecoveryStatus.OLD_PASSWORD\r\n        );\r\n        // Old password worked.\r\n        console.log('Old password works!');\r\n\r\n        return user;\r\n      } catch (error) {\r\n        // Just bubble up any other type of error.\r\n        throw error.code === 'NotAuthorizedException'\r\n          ? new LrBadRequestException(\r\n              'The password change request was interrupted, please try to login with both your new and old password'\r\n            )\r\n          : error;\r\n      }\r\n    }\r\n\r\n    // Try against as the TP password reset account\r\n    if (passIdpApiResult.tpPasswordReset) {\r\n      try {\r\n        // TP password reset is in process. We need to try the password against both\r\n        // original account and the new reset account.\r\n        const reset = passIdpApiResult.tpPasswordReset;\r\n        const ret = await this.loginIdpImpl(\r\n          reset.resetUsername,\r\n          password,\r\n          reset.passIdpParams,\r\n          RecoveryStatus.NONE\r\n        );\r\n        ret.isTpPasswordResetUser = true;\r\n\r\n        return ret;\r\n      } catch (err) {\r\n        // continue, try again as regular user.\r\n      }\r\n    }\r\n\r\n    // Login as regular user\r\n    return await this.loginIdpImpl(\r\n      emailOrPhone,\r\n      password,\r\n      passIdpApiResult.currentPassIdpParams,\r\n      RecoveryStatus.NONE\r\n    );\r\n  }\r\n\r\n  protected async handleSessionEncryptionKey() {\r\n    if (this.config.disableSessionEncryptionKey) {\r\n      if (!isDevMode()) {\r\n        const msg =\r\n          'You should not set disableSessionEncryptionKey=True in mode prod. It defaults to false.';\r\n        console.error(msg);\r\n        throw new Error(msg);\r\n      } else {\r\n        console.warn(\r\n          'You have set disableSessionEncryptionKey=True. Make sure not to do this in prod mode.'\r\n        );\r\n      }\r\n    } else {\r\n      // Set the session key to a new encryption key for this session\r\n      const sessionEncryptionKey = await this.keyFactory.createKey();\r\n      await this.lrGraphQL.lrMutate(\r\n        new LrMutation({\r\n          mutation: SetSessionEncryptionKeyMutation,\r\n          variables: {\r\n            input: {\r\n              sessionEncryptionKey: JSON.stringify(\r\n                sessionEncryptionKey.toJSON(true)\r\n              ),\r\n            },\r\n          },\r\n        }),\r\n        {\r\n          includeKeyGraph: false,\r\n        }\r\n      );\r\n\r\n      this.persistService.setServerSessionEncryptionKey(sessionEncryptionKey);\r\n    }\r\n  }\r\n\r\n  protected async handlePostAuth(cognitoUser: CognitoChallengeUser) {\r\n    await this.handlePasswordRecovery(cognitoUser);\r\n    await this.handleSessionEncryptionKey();\r\n  }\r\n\r\n  public async login(\r\n    emailOrPhone: string,\r\n    password: string\r\n  ): Promise<LoginResult> {\r\n    const cognitoUser = await this.loginIdp(emailOrPhone, password);\r\n\r\n    // todo: Meet MFA challenges.\r\n    if (['SMS_MFA', 'SOFTWARE_TOKEN_MFA'].includes(cognitoUser.challengeName)) {\r\n      return { hasChallenge: true, challenge: cognitoUser };\r\n    }\r\n\r\n    await this.handlePostAuth(cognitoUser);\r\n\r\n    if (cognitoUser.isTpPasswordResetUser) {\r\n      // Assuming there is no MFA on the TP reset user.\r\n      const resetUser = await this.loadResetUser(password);\r\n      return { hasChallenge: false, resetUser };\r\n    } else {\r\n      const user = await this.loadUser(cognitoUser, password);\r\n      await this.idleService.start(); // Run idleService whenever user is logged in.\r\n      return { hasChallenge: false, user };\r\n    }\r\n  }\r\n\r\n  // TODO <AZ> We need to handle the isTpPasswordResetUser=True case here after MFA as well.\r\n  public async verifyLogin(\r\n    challenge: CognitoChallengeUser,\r\n    password: string,\r\n    rememberMe: boolean,\r\n    code: string\r\n  ): Promise<CurrentUser> {\r\n    await this.auth.confirmSignIn(challenge, code, challenge.challengeName);\r\n\r\n    // TODO: this.auth.confirmSignIn() could return another challenge.\r\n\r\n    const cognitoUser: CognitoUser = await this.auth.currentAuthenticatedUser();\r\n\r\n    await this.handlePostAuth(challenge);\r\n\r\n    const user = await this.loadUser(cognitoUser, password);\r\n\r\n    if (rememberMe) {\r\n      cognitoUser.setDeviceStatusRemembered({\r\n        onSuccess: () => {},\r\n        onFailure: (e) => console.error(e),\r\n      });\r\n    }\r\n\r\n    return user;\r\n  }\r\n\r\n  async handlePasswordRecovery(user: CognitoChallengeUser) {\r\n    if (user.recoveryStatus !== RecoveryStatus.NONE) {\r\n      const jwtToken = user\r\n        .getSignInUserSession()\r\n        .getAccessToken()\r\n        .getJwtToken();\r\n      await this.passwordService.changePasswordComplete(\r\n        jwtToken,\r\n        user.recoveryStatus === RecoveryStatus.NEW_PASSWORD\r\n      );\r\n    }\r\n  }\r\n\r\n  async getUser(reload: boolean = false): Promise<CurrentUser> {\r\n    if (!reload && this.currentUser) {\r\n      return this.currentUser;\r\n    }\r\n    this.currentUser = await this.loadUser(\r\n      await this.auth.currentAuthenticatedUser()\r\n    );\r\n    console.log('Starting idle service.');\r\n    await this.idleService.start(); // Run idleService whenever user is logged in.\r\n    return this.currentUser;\r\n  }\r\n\r\n  private mapTPVaultAccess(features?: any): boolean {\r\n    const tpVaultFeature = features?.tpVault;\r\n    return (\r\n      tpVaultFeature?.length > 0 &&\r\n      tpVaultFeature.some((feature) => feature.toUpperCase() === 'ACCESS')\r\n    );\r\n  }\r\n\r\n  private async loadUser(\r\n    cognitoUser: CognitoUser,\r\n    password?: string\r\n  ): Promise<CurrentUser> {\r\n    const {\r\n      currentUser,\r\n      contactCard,\r\n      userPlans,\r\n    } = await this.profileService.getCurrentUser();\r\n\r\n    if (currentUser.sessionEncryptionKey) {\r\n      this.persistService.setServerSessionEncryptionKey(\r\n        await JWK.asKey(currentUser.sessionEncryptionKey)\r\n      );\r\n    }\r\n\r\n    const userAttributes = await this.auth.userAttributes(cognitoUser);\r\n\r\n    if (password) {\r\n      const passKey = (\r\n        await this.keyFactory.derivePassKey({\r\n          password,\r\n          ...currentUser.currentUserKey.passKey.passKeyParams,\r\n        })\r\n      ).jwk;\r\n\r\n      await this.idleService.persistMasterKey(\r\n        await this.keyGraphService.unwrapWithPassKey(\r\n          currentUser.currentUserKey.passKey.id,\r\n          passKey,\r\n          currentUser.currentUserKey.masterKey.id\r\n        )\r\n      );\r\n    }\r\n    await this.keyGraphService.populateKeys(currentUser.currentUserKey);\r\n\r\n    return {\r\n      id: currentUser.id,\r\n      sub: this.getUserAttribute('sub', userAttributes),\r\n      username: currentUser.username,\r\n      currentUserKey: currentUser.currentUserKey,\r\n      getAccessJwtToken: () =>\r\n        cognitoUser.getSignInUserSession().getAccessToken().getJwtToken(),\r\n      email: this.getUserAttribute('email', userAttributes),\r\n      emailVerified:\r\n        this.getUserAttribute('email_verified', userAttributes) === 'true',\r\n      phone: this.getUserAttribute('phone_number', userAttributes),\r\n      phoneVerified:\r\n        this.getUserAttribute('phone_number_verified', userAttributes) ===\r\n        'true',\r\n      contactCard: {\r\n        ...(await this.profileService.decryptContactCard(contactCard)),\r\n      },\r\n      userDelete: currentUser.userDelete,\r\n      userPlans,\r\n      hasTPVaultAccess: this.mapTPVaultAccess(currentUser.features),\r\n      features: currentUser.features,\r\n      sessionEncryptionKey: currentUser.sessionEncryptionKey,\r\n    };\r\n  }\r\n\r\n  public watchAuth(): Observable<any> {\r\n    return this.hubSubject;\r\n  }\r\n\r\n  public async logout(): Promise<void> {\r\n    this.currentUser = null;\r\n    this.keyService.purgeKeys();\r\n    this.keyGraphService.purgeKeys();\r\n\r\n    await Promise.all([this.auth.signOut(), this.profileService.signOut()]);\r\n  }\r\n\r\n  private getUserAttribute(\r\n    attributeName: string,\r\n    userAttributes: CognitoUserAttribute[]\r\n  ) {\r\n    const userAttribute = userAttributes.find(\r\n      (x) => x.getName() === attributeName\r\n    );\r\n\r\n    return userAttribute ? userAttribute.getValue() : null;\r\n  }\r\n\r\n  public async loadResetUser(password?: string): Promise<TpPasswordResetUser> {\r\n    const { tpPasswordResetUser: resetUser } = await this.lrGraphQL.query({\r\n      query: TpPasswordResetUserQuery,\r\n    });\r\n\r\n    if (resetUser.sessionEncryptionKey) {\r\n      this.persistService.setServerSessionEncryptionKey(\r\n        await JWK.asKey(resetUser.sessionEncryptionKey)\r\n      );\r\n    }\r\n\r\n    // Update the keys\r\n    if (password) {\r\n      const passKey = (\r\n        await this.keyFactory.derivePassKey({\r\n          password,\r\n          ...resetUser.passKey.passKeyParams,\r\n        })\r\n      ).jwk;\r\n\r\n      await this.idleService.persistMasterKey(\r\n        await this.keyGraphService.unwrapWithPassKey(\r\n          resetUser.passKey.id,\r\n          passKey,\r\n          resetUser.masterKey.id\r\n        )\r\n      );\r\n    }\r\n\r\n    this.keyService.populateKeys({\r\n      passKey: {\r\n        id: resetUser.passKey.id,\r\n      },\r\n      masterKey: {\r\n        id: resetUser.masterKey.id,\r\n      },\r\n    });\r\n\r\n    const userAttributes = await this.auth.userAttributes(\r\n      await this.auth.currentAuthenticatedUser()\r\n    );\r\n    const sub = this.getUserAttribute('sub', userAttributes);\r\n\r\n    return {\r\n      ...(await this.tpPasswordResetProcessorService.processTpPasswordResetUserNode(\r\n        resetUser\r\n      )),\r\n      sub,\r\n    };\r\n  }\r\n\r\n  public async refreshAccessToken() {\r\n    const cognitoUser: CognitoUser = await this.auth.currentAuthenticatedUser();\r\n    const refreshToken = cognitoUser.getSignInUserSession().getRefreshToken();\r\n\r\n    return new Promise((resolve, reject) => {\r\n      cognitoUser.refreshSession(refreshToken, (err, data) => {\r\n        if (err) {\r\n          console.error('Error refreshing token: ', err);\r\n          reject(err);\r\n        } else {\r\n          console.log('Token refresh complete: ', data);\r\n          resolve(0);\r\n        }\r\n      });\r\n    });\r\n  }\r\n}\r\n","import { HttpClient } from '@angular/common/http';\r\nimport { Injectable, Inject } from '@angular/core';\r\nimport { LR_CONFIG, LifeReadyConfig } from '../life-ready.config';\r\nimport { LifeReadyAuthService } from '../auth/life-ready-auth.service';\r\n\r\nexport type FileContentContext = 'FILE_STATE';\r\n\r\nexport interface UploadEncryptedFileOptions {\r\n  encryptedContent: string;\r\n  // TODO Add in the context field and make it mandatory\r\n  // context: FileContentContext;\r\n  fileName?: string;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class FileService {\r\n  constructor(\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private http: HttpClient,\r\n    private lrAuth: LifeReadyAuthService\r\n  ) {}\r\n\r\n  async downloadEncryptedFile(fileStateNodeId: string): Promise<any> {\r\n    return JSON.parse(await this.downloadEncryptedFile2(fileStateNodeId));\r\n  }\r\n\r\n  async downloadEncryptedFile2(fileStateNodeId: string): Promise<string> {\r\n    const url = `${this.config.apiUrl}files/download/?file_state_node_id=${fileStateNodeId}`;\r\n\r\n    const content = await this.http\r\n      .get(url, {\r\n        responseType: 'text',\r\n        headers: {\r\n          Authorization: `Bearer ${(\r\n            await this.lrAuth.getUser()\r\n          ).getAccessJwtToken()}`,\r\n        },\r\n      })\r\n      .toPromise();\r\n\r\n    return content;\r\n  }\r\n\r\n  async loadFile(file: File): Promise<ArrayBuffer> {\r\n    return new Promise<ArrayBuffer>((resolve, reject) => {\r\n      const reader = new FileReader();\r\n      reader.onload = () => {\r\n        // OK to type cast here since we are using readAsArrayBuffer.\r\n        resolve(reader.result as ArrayBuffer);\r\n      };\r\n      reader.readAsArrayBuffer(file);\r\n    });\r\n  }\r\n\r\n  async uploadEncryptedFile(\r\n    options: UploadEncryptedFileOptions\r\n  ): Promise<string> {\r\n    const { encryptedContent, fileName } = options;\r\n\r\n    const formData = new FormData();\r\n    formData.append('content', new Blob([encryptedContent]), fileName);\r\n\r\n    const { content_resource } = await this.http\r\n      .post<{ content_resource }>(\r\n        `${this.config.apiUrl}files/upload/`,\r\n        formData,\r\n        {\r\n          headers: {\r\n            Authorization: `Bearer ${(\r\n              await this.lrAuth.getUser()\r\n            ).getAccessJwtToken()}`,\r\n          },\r\n        }\r\n      )\r\n      .toPromise();\r\n\r\n    return content_resource;\r\n  }\r\n}\r\n","import gql from 'graphql-tag';\r\nimport { User } from './user.types';\r\nimport { HasKeyGraph } from '../cryptography/cryptography.types';\r\n\r\nexport interface UserQueryType extends HasKeyGraph {\r\n  user: User;\r\n}\r\n\r\nexport const UserQuery = gql`\r\n  query UserQuery($email: LrEmail, $username: String) {\r\n    user(email: $email, username: $username) {\r\n      id\r\n      username\r\n      haveTp\r\n      isCurrentUser\r\n      contactCards {\r\n        edges {\r\n          node {\r\n            publicData\r\n            publicSearchable\r\n          }\r\n        }\r\n      }\r\n      currentUserKey {\r\n        sigPxk {\r\n          id\r\n          pbk\r\n        }\r\n        pxk {\r\n          id\r\n          pbk\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const RequestUserDeleteMutation = gql`\r\n  mutation RequestUserDelete($input: RequestUserDeleteInput!) {\r\n    requestUserDelete(input: $input) {\r\n      userDelete {\r\n        state\r\n        created\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const CancelUserDeleteMutation = gql`\r\n  mutation CancelUserDelete($input: CancelUserDeleteInput!) {\r\n    cancelUserDelete(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport const LoginHistoryQuery = gql`\r\n  query LoginHistory($first: Int, $after: String) {\r\n    loginHistory(first: $first, after: $after) {\r\n      pageInfo {\r\n        hasNextPage\r\n        hasPreviousPage\r\n        startCursor\r\n        endCursor\r\n      }\r\n      events\r\n    }\r\n  }\r\n`;\r\n","import { Injectable } from '@angular/core';\r\nimport { User, GetUserInput, UserDelete } from './user.types';\r\nimport {\r\n  UserQuery,\r\n  UserQueryType,\r\n  RequestUserDeleteMutation,\r\n  CancelUserDeleteMutation,\r\n  LoginHistoryQuery,\r\n} from './user.gql';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class UserService {\r\n  constructor(private lrApollo: LrApolloService) {}\r\n\r\n  async getUserByEmail(email: string): Promise<User> {\r\n    return this.getUser({ email });\r\n  }\r\n\r\n  async getUserByUsername(username: string): Promise<User> {\r\n    return this.getUser({ username });\r\n  }\r\n\r\n  async getUser({ email, username }: GetUserInput): Promise<User> {\r\n    const { user } = await this.lrApollo.query<UserQueryType>({\r\n      query: UserQuery,\r\n      variables: {\r\n        email,\r\n        username,\r\n      },\r\n    });\r\n    return user;\r\n  }\r\n\r\n  async requestUserDelete(): Promise<UserDelete> {\r\n    const res = await this.lrApollo.mutate<{ requestUserDelete: any }>({\r\n      mutation: RequestUserDeleteMutation,\r\n      variables: {\r\n        input: {},\r\n      },\r\n    });\r\n\r\n    return res.requestUserDelete.userDelete;\r\n  }\r\n\r\n  async cancelUserDelete(): Promise<string> {\r\n    const res = await this.lrApollo.mutate<{ cancelUserDelete: any }>({\r\n      mutation: CancelUserDeleteMutation,\r\n      variables: {\r\n        input: {},\r\n      },\r\n    });\r\n\r\n    return res.cancelUserDelete.id;\r\n  }\r\n\r\n  async loginHistory(first: number = null, after: string = null): Promise<any> {\r\n    // first: return first n entries\r\n    // after: pass in the pageInfo.endCursor to paginate\r\n    const res = await this.lrApollo.query<{ loginHistory: any }>({\r\n      query: LoginHistoryQuery,\r\n      variables: {\r\n        first,\r\n        after,\r\n      },\r\n    });\r\n\r\n    return res.loginHistory;\r\n  }\r\n}\r\n","import gql from 'graphql-tag';\r\nimport { FetchKeyGraphField, KeyGraphFragment } from '../_common/queries.gql';\r\n\r\nexport const KeyExchangeFields = `\r\n  id\r\n  token\r\n  state\r\n  mode\r\n  isInitiator\r\n  initiator {\r\n    id\r\n    username\r\n  }\r\n  responder {\r\n    id\r\n    username\r\n  }\r\n  created\r\n  modified\r\n  tokenExpiryTime\r\n  isExpired\r\n  initiatorRootKeyCipher\r\n  initiatorActionRequired\r\n  responderActionRequired\r\n  responderEmailAddress\r\n  otk {\r\n    state\r\n    otKeyParams\r\n    otKeyCipher\r\n    sharedKey {\r\n      id\r\n    }\r\n    mkSharedKey {\r\n      id\r\n    }\r\n    initiatorSigPxk {\r\n      id\r\n    }\r\n    responderSigPxk {\r\n      id\r\n    }\r\n    initiatorOneTimePbkCipher\r\n    responderPbkCipher\r\n}`;\r\n\r\nexport const UserSharedKeyFields = `\r\n  userSigPrk {\r\n    id\r\n  }\r\n  otherSigPbk {\r\n    id\r\n  }\r\n  sharedKey {\r\n    id\r\n  }\r\n  mkSharedKey {\r\n    id\r\n  }\r\n  mkPxk {\r\n    id\r\n    pbk\r\n  }\r\n  mkReshareRequestCipher\r\n  mkReshareResponseCipher\r\n  mkReshareRequestSent\r\n  mkReshareResponseSent\r\n`;\r\n\r\nexport const CurrentUserSharedKeyQuery = gql`\r\nquery CurrentUserSharedKeyQuery(\r\n  $username: String\r\n  $userId: LrRelayIdInput\r\n  $cachedKeyIds: [LrRelayIdInput!]\r\n) {\r\n  currentUserSharedKey(\r\n    username: $username\r\n    userId: $userId\r\n  ) {\r\n    userSharedKey {\r\n      ${UserSharedKeyFields}\r\n    }\r\n  }\r\n  keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n    ...KeyGraphFragment\r\n  }\r\n}\r\n${KeyGraphFragment}`;\r\n\r\nexport const KeyExchangesQuery = gql`\r\nquery KeyExchangeQuery(\r\n$orderBy: String\r\n$isExpired: Boolean\r\n$initiatorActionRequired: Boolean\r\n$responderActionRequired: Boolean\r\n$initiator: ID\r\n$responder: ID\r\n$state: String\r\n) {\r\nkeyExchanges(\r\n  orderBy: $orderBy\r\n  isExpired: $isExpired\r\n  initiatorActionRequired: $initiatorActionRequired\r\n  responderActionRequired: $responderActionRequired\r\n  initiator: $initiator\r\n  responder: $responder\r\n  state: $state\r\n) {\r\n  edges {\r\n    node {\r\n      ${KeyExchangeFields}\r\n    }\r\n  }\r\n}\r\nkeyGraph {\r\n  ...KeyGraphFragment\r\n}\r\n}\r\n${KeyGraphFragment}\r\n`;\r\n\r\nexport const KeyExchangeQuery = gql`\r\nquery KeyExchangeQuery(\r\n  $id: LrRelayIdInput!\r\n) {\r\n  keyExchange(\r\n    id: $id\r\n  ) {\r\n    ${KeyExchangeFields}\r\n  }\r\n  keyGraph {\r\n    ...KeyGraphFragment\r\n  }\r\n}\r\n${KeyGraphFragment}\r\n`;\r\n\r\n// Key graph is only available for authenticated users. This query\r\n// is for unauthenticated users.\r\nexport const KeyExchangeTokenQuery = gql`\r\nquery KeyExchangeQuery(\r\n  $id: LrRelayIdInput!\r\n  $token: String\r\n) {\r\n  keyExchange(\r\n    id: $id\r\n    token: $token\r\n  ) {\r\n    ${KeyExchangeFields}\r\n  }\r\n}`;\r\n\r\nexport const InitiateOtkMutation = gql`\r\nmutation InitiateKeyExchangeOtk(\r\n$input: InitiateKeyExchangeOtkInput!\r\n) {\r\ninitiateKeyExchangeOtk(input: $input) {\r\n  keyExchange {\r\n    ${KeyExchangeFields}\r\n  }\r\n}\r\n${FetchKeyGraphField}\r\n}`;\r\n\r\nexport const RespondOtkMutation = gql`\r\nmutation RespondKeyExchangeOtk(\r\n  $input: RespondKeyExchangeOtkInput!\r\n) {\r\n  respondKeyExchangeOtk(input: $input) {\r\n    keyExchange {\r\n      ${KeyExchangeFields}\r\n    }\r\n    userSharedKey {\r\n      ${UserSharedKeyFields}\r\n    }\r\n    tp {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n\r\nexport const CompleteOtkMutation = gql`\r\nmutation CompleteKeyExchangeOtk(\r\n  $input: CompleteKeyExchangeOtkInput!\r\n) {\r\n  completeKeyExchangeOtk(input: $input) {\r\n    keyExchange {\r\n      ${KeyExchangeFields}\r\n    }\r\n    userSharedKey {\r\n      ${UserSharedKeyFields}\r\n    }\r\n    tp {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n","import { Key } from '../cryptography/cryptography.types';\r\nimport { AccessLevel } from '../category/category.types';\r\nimport { JWK } from 'node-jose';\r\nimport { ContactCardName, TrustedPartyDetails } from '../users/profile.types';\r\n\r\n// Will be encrypted using the root key of the initiator\r\nexport interface PlainInitiatorRootKeyCipher {\r\n  nonce: string;\r\n  oneTimePrk: object; // onetime public encryption key responder use to send data back to initiator\r\n  otKey: object;\r\n  initiatorContactCard?: {\r\n    // Owner only access to this data\r\n    plainOwnerCipherDataJson: any;\r\n    // Shared read access between owner and receiver. Only the owner has write access.\r\n    plainSharedCipherDataJson: any;\r\n  };\r\n  initiator: {\r\n    message?: KeyExchangeMessage;\r\n    contactCard?: {\r\n      // Shared read access between owner and receiver. Only the owner has write access.\r\n      plainSharedCipherDataJson: TrustedPartyDetails;\r\n    };\r\n  };\r\n}\r\n\r\nexport interface SharedContactCardInput {\r\n  plainCipherDataJson?: any;\r\n  plainSharedCipherDataJson?: any;\r\n  sharedCipherKey?: object;\r\n}\r\n\r\nexport interface PreparedPermissions {\r\n  categories?: { categoryId: string; accessLevel: AccessLevel }[];\r\n  records?: { recordId: string; accessLevel: AccessLevel }[];\r\n}\r\n\r\nexport interface KeyExchangeMessage {\r\n  name?: string;\r\n  email?: string;\r\n  message?: string;\r\n  permissions?: PreparedPermissions;\r\n}\r\n\r\nexport interface PlainOtKeyCipher {\r\n  nonce: string;\r\n  initiator: {\r\n    oneTimePbk: object; // onetime public encryption key responder use to send data back to initiator\r\n    pbk: object; // public encryption key\r\n    sigPbk: object; // public signing key\r\n    profile?: {\r\n      username?: string;\r\n    };\r\n    message?: KeyExchangeMessage;\r\n    contactCard?: {\r\n      // Shared read access between owner and receiver. Only the owner has write access.\r\n      plainSharedCipherDataJson: TrustedPartyDetails;\r\n    };\r\n  };\r\n}\r\n\r\nexport interface DecryptedOtk {\r\n  plainOtKeyCipher: PlainOtKeyCipher;\r\n  otKey: JWK.Key; // The one-time key\r\n}\r\n\r\nexport interface PlainInitiatorOneTimePbkCipher {\r\n  nonce: string;\r\n  sharedKey: object;\r\n  mkSharedKey: object;\r\n  responder: {\r\n    pbk: object;\r\n    sigPbk: object;\r\n    profile?: {\r\n      username?: string;\r\n    };\r\n    message?: KeyExchangeMessage;\r\n    contactCard?: {\r\n      plainSharedCipherDataJson: TrustedPartyDetails;\r\n      // Note that this is _not_ the same key as the sharedKey. The sharedKey wraps\r\n      // this key in the key graph. But because this key has not been entered into\r\n      // the key graph then the responder calls the API, we pass the JWK directly here.\r\n      sharedCipherKey: object;\r\n    };\r\n  };\r\n}\r\n\r\nexport enum OtkState {\r\n  OTK_INITIATED = 'OTK_INITIATED',\r\n  OTK_ACCEPTED = 'OTK_ACCEPTED',\r\n  OTK_COMPLETED = 'OTK_COMPLETED',\r\n}\r\n\r\nexport interface KeyExchangeContactCardInput {\r\n  // Accessible by the server and initiator. Server side notification emails need to know some\r\n  // information about the initiator.\r\n  ownerPlainData?: {\r\n    name: ContactCardName;\r\n  };\r\n  // Owner only access to this data\r\n  plainOwnerCipherDataJson: any;\r\n  // Shared read access between owner and receiver. Only the owner has write access.\r\n  plainSharedCipherDataJson: TrustedPartyDetails;\r\n}\r\n\r\nexport interface InitiateOtkInput {\r\n  email?: string;\r\n  message?: KeyExchangeMessage;\r\n  contactCard?: KeyExchangeContactCardInput;\r\n  upgrade?: boolean;\r\n}\r\n\r\nexport interface RespondOtkInput {\r\n  id: string;\r\n  token: string;\r\n  decryptedOtk: DecryptedOtk;\r\n  message?: KeyExchangeMessage;\r\n  initiatorContactCard?: {\r\n    plainReceiverCipherDataJson: any;\r\n  };\r\n  responderContactCard?: KeyExchangeContactCardInput;\r\n}\r\n\r\nexport enum KeyExchangeState {\r\n  IN_PROGRESS = 'IN_PROGRESS',\r\n  COMPLETED = 'COMPLETED',\r\n  DECLINED = 'DECLINED',\r\n  CANCELLED = 'CANCELLED',\r\n}\r\n\r\nexport enum KeyExchangeMode {\r\n  OTK = 'OTK',\r\n}\r\n\r\nexport interface Otk {\r\n  id: string;\r\n  state: OtkState;\r\n  otKeyParams: string;\r\n  otKeyCipher: string;\r\n  sharedKey: Key;\r\n  mkSharedKey: Key;\r\n  initiatorSigPxk: Key;\r\n  responderSigPxk: Key;\r\n  // Encrypted\r\n  initiatorOneTimePbkCipher: string; // single time use public key created by the initiator.\r\n  responderPbkCipher?: string; // responderPbk is the long lived Pbk of the responder.\r\n}\r\n\r\nexport interface KeyExchange {\r\n  id: string;\r\n  state: KeyExchangeState;\r\n  mode: KeyExchangeMode;\r\n  created: string;\r\n  modified: string;\r\n  isInitiator: boolean;\r\n  initiator: {\r\n    id: string;\r\n    username: string;\r\n  };\r\n  responder: {\r\n    id: string;\r\n    username: string;\r\n  };\r\n  initiatorActionRequired?: boolean;\r\n  responderActionRequired?: boolean;\r\n  responderEmailAddress?: string;\r\n  token?: string;\r\n  tokenExpiryTime?: string;\r\n  isExpired?: boolean;\r\n  otk?: Otk;\r\n  initiatorRootKeyCipher: string;\r\n}\r\n\r\nexport interface DecryptedKeyExchange extends KeyExchange {\r\n  decryptedOtk?: DecryptedOtk;\r\n  message?: KeyExchangeMessage;\r\n  contactCard?: TrustedPartyDetails;\r\n  myMessage?: KeyExchangeMessage;\r\n  myContactCard?: TrustedPartyDetails;\r\n}\r\n\r\nexport interface GetKeyExchangeOptions {\r\n  // The otKey as a raw string. i.e. key.toJSON(true).k\r\n  otKeyK?: string;\r\n  // User need the token if they have not responded to the key exchange yet.\r\n  // Once they've responded (hence proven they have the OOB Key) they become\r\n  // the \"responder\" of this exchange, and can access it when signed in.\r\n  token?: string;\r\n}\r\n\r\nexport interface RespondOtk {\r\n  keyExchange: KeyExchange;\r\n  userSharedKey: UserSharedKey;\r\n  tp: {\r\n    id: string;\r\n  };\r\n}\r\n\r\nexport interface CompleteOtk {\r\n  keyExchange: KeyExchange;\r\n  userSharedKey: UserSharedKey;\r\n  tp: {\r\n    id: string;\r\n  };\r\n}\r\n\r\nexport interface UserSharedKey {\r\n  userSigPrk: Key;\r\n  sharedKey: Key;\r\n  mkSharedKey?: Key;\r\n  mkPxk?: Key;\r\n  mkReshareRequestCipher?: string;\r\n  mkReshareResponseCipher?: string;\r\n  mkReshareRequestSent?: boolean;\r\n  mkReshareResponseSent?: boolean;\r\n}\r\n\r\nexport interface GetKeyExchangeListOptions {\r\n  orderBy?:\r\n    | 'created'\r\n    | '-created'\r\n    | 'modified'\r\n    | '-modified'\r\n    | 'expiry_time'\r\n    | '-expiry_time';\r\n  isExpired?: boolean;\r\n  initiatorActionRequired?: boolean;\r\n  responderActionRequired?: boolean;\r\n  initiator?: string;\r\n  responder?: string;\r\n  state?: 'IN_PROGRESS' | 'COMPLETED' | 'DECLINED' | 'CANCELLED';\r\n}\r\n\r\nexport interface PlainResponderPbkCipher {\r\n  otKey: object;\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport { LifeReadyAuthService } from '../auth/life-ready-auth.service';\r\nimport { KeyGraphResponse } from '../cryptography/cryptography.types';\r\nimport {\r\n  EncryptionService,\r\n  JoseSerialization,\r\n} from '../cryptography/encryption.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { LrCodeMismatchException } from '../_common/exceptions';\r\nimport { UserService } from './../users/user.service';\r\nimport {\r\n  CompleteOtkMutation,\r\n  CurrentUserSharedKeyQuery,\r\n  InitiateOtkMutation,\r\n  KeyExchangeQuery,\r\n  KeyExchangesQuery,\r\n  KeyExchangeTokenQuery,\r\n  RespondOtkMutation,\r\n} from './key-exchange.gql';\r\nimport {\r\n  CompleteOtk,\r\n  DecryptedKeyExchange,\r\n  DecryptedOtk,\r\n  GetKeyExchangeListOptions,\r\n  GetKeyExchangeOptions,\r\n  InitiateOtkInput,\r\n  KeyExchange,\r\n  OtkState,\r\n  PlainInitiatorOneTimePbkCipher,\r\n  PlainInitiatorRootKeyCipher,\r\n  PlainOtKeyCipher,\r\n  PlainResponderPbkCipher,\r\n  RespondOtk,\r\n  RespondOtkInput,\r\n  UserSharedKey,\r\n} from './key-exchange.types';\r\nimport { LrApolloService } from './lr-apollo.service';\r\nimport { KeyFactoryService as KFS } from '../cryptography/key-factory.service';\r\n// Ref: https://stackoverflow.com/questions/59735280/angular-8-moment-error-cannot-call-a-namespace-moment\r\nimport * as moment_ from 'moment';\r\nconst moment = moment_;\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class KeyExchangeService {\r\n  private readonly CLIENT_NONCE_LENGTH = 32;\r\n\r\n  constructor(\r\n    private keyFactory: KFS,\r\n    private keyService: KeyService,\r\n    private lrApollo: LrApolloService,\r\n    private encryptionService: EncryptionService,\r\n    private authService: LifeReadyAuthService,\r\n    private userService: UserService\r\n  ) {}\r\n\r\n  public async getKeyExchangeList(\r\n    input: GetKeyExchangeListOptions = {}\r\n  ): Promise<any> {\r\n    const { keyExchanges } = await this.lrApollo.query<{\r\n      keyExchanges: any;\r\n      keyGraph: KeyGraphResponse;\r\n    }>({\r\n      query: KeyExchangesQuery,\r\n      variables: {\r\n        ...input,\r\n      },\r\n    });\r\n    return keyExchanges;\r\n  }\r\n\r\n  /**\r\n   * @param id If the current user can responder the key exchange if they are either the initiator or the receiver.\r\n   * @param token If not signed in, or not the initiator or responder, 'token' must be given.\r\n   * @param otKeyK Is the raw one-time key (string). If the responder is explicitly specified at time of initiation, then\r\n   *   it's possible to have the otKey wrapped by the public key of the responder. In which case, the otKeyK is not needed.\r\n   */\r\n  public async getKeyExchange(\r\n    id: string,\r\n    { otKeyK, token }: GetKeyExchangeOptions = {}\r\n  ): Promise<DecryptedKeyExchange> {\r\n    const { keyExchange } = await this.lrApollo.query<{\r\n      keyExchange: KeyExchange;\r\n      keyGraph: KeyGraphResponse;\r\n    }>({\r\n      query: token ? KeyExchangeTokenQuery : KeyExchangeQuery,\r\n      variables: {\r\n        id,\r\n        token,\r\n      },\r\n    });\r\n    return await this.decryptKeyExchange(keyExchange, otKeyK);\r\n  }\r\n\r\n  private async decryptResponseCipher(\r\n    otKey: JWK.Key,\r\n    otPrk: JWK.Key,\r\n    content: any\r\n  ): Promise<PlainInitiatorOneTimePbkCipher> {\r\n    // The response could be wrapped by the OtK as well as we the OtPrk\r\n    try {\r\n      content = await this.encryptionService.decrypt(otKey, content);\r\n    } catch (error) {\r\n      if (error.message !== 'no key found') {\r\n        throw error;\r\n      }\r\n      // Do nothing to support older versions where message is not wrapped with otk.\r\n    }\r\n\r\n    // The Prk is single-use and only used to send information from the responder back to the initiator.\r\n    return await this.encryptionService.decrypt(otPrk, content);\r\n  }\r\n\r\n  public async decryptKeyExchange(\r\n    keyExchange: KeyExchange,\r\n    otKeyK?: string\r\n  ): Promise<DecryptedKeyExchange> {\r\n    if (keyExchange.isInitiator) {\r\n      const rootKey = await this.keyService.getCurrentRootKey();\r\n      // Decrypt using the root key to get the Prk\r\n      const plainInitiatorRootKeyCipher = ((await this.encryptionService.decrypt(\r\n        rootKey.jwk,\r\n        keyExchange.initiatorRootKeyCipher\r\n      )) as unknown) as PlainInitiatorRootKeyCipher;\r\n\r\n      const plainInitiatorOneTimePbkCipher = keyExchange.otk\r\n        .initiatorOneTimePbkCipher\r\n        ? await this.decryptResponseCipher(\r\n            await KFS.asKey(plainInitiatorRootKeyCipher.otKey),\r\n            await KFS.asKey(plainInitiatorRootKeyCipher.oneTimePrk),\r\n            keyExchange.otk.initiatorOneTimePbkCipher\r\n          )\r\n        : null;\r\n\r\n      const responder =\r\n        plainInitiatorOneTimePbkCipher &&\r\n        plainInitiatorOneTimePbkCipher.responder;\r\n      const initiator =\r\n        plainInitiatorRootKeyCipher && plainInitiatorRootKeyCipher.initiator;\r\n\r\n      return {\r\n        ...keyExchange,\r\n        message: responder ? responder.message : null,\r\n        contactCard:\r\n          responder && responder.contactCard\r\n            ? responder.contactCard.plainSharedCipherDataJson\r\n            : null,\r\n        myContactCard:\r\n          initiator && initiator.contactCard\r\n            ? initiator.contactCard.plainSharedCipherDataJson\r\n            : null,\r\n        myMessage: initiator && initiator.message,\r\n      };\r\n    } else {\r\n      const decryptedOtk = await this.decryptOtk(keyExchange, otKeyK);\r\n\r\n      const initiator = decryptedOtk && decryptedOtk.plainOtKeyCipher.initiator;\r\n\r\n      return {\r\n        ...keyExchange,\r\n        decryptedOtk,\r\n        message: initiator && initiator.message,\r\n        contactCard:\r\n          initiator &&\r\n          initiator.contactCard &&\r\n          initiator.contactCard.plainSharedCipherDataJson,\r\n      };\r\n    }\r\n  }\r\n\r\n  private async decryptOtk(\r\n    keyExchange: KeyExchange,\r\n    otKeyK?: string\r\n  ): Promise<DecryptedOtk> {\r\n    const otKey = await this.getOtKey(keyExchange, otKeyK);\r\n\r\n    return otKey && keyExchange.otk.otKeyCipher\r\n      ? {\r\n          plainOtKeyCipher: await this.encryptionService.decrypt(\r\n            otKey,\r\n            keyExchange.otk.otKeyCipher\r\n          ),\r\n          otKey,\r\n        }\r\n      : null;\r\n  }\r\n\r\n  private async getOtKey(\r\n    keyExchange: KeyExchange,\r\n    otKeyK?: string\r\n  ): Promise<JWK.Key> {\r\n    if (otKeyK) {\r\n      return await KFS.asKey({\r\n        ...JSON.parse(keyExchange.otk.otKeyParams),\r\n        k: otKeyK,\r\n      });\r\n    } else if (\r\n      keyExchange.otk.state === OtkState.OTK_INITIATED &&\r\n      !keyExchange.isInitiator &&\r\n      keyExchange.otk.responderPbkCipher\r\n    ) {\r\n      // Assuming existing user getting invited where OTK is wrapped in responder's public key.\r\n      const prk = await this.keyService.getCurrentPxk();\r\n      const decryptedCipher: any = await this.encryptionService.decrypt(\r\n        prk.jwk,\r\n        JSON.parse(keyExchange.otk.responderPbkCipher),\r\n        {\r\n          serializations: [JoseSerialization.COMPACT],\r\n        }\r\n      );\r\n      if (decryptedCipher.otKey) {\r\n        return await KFS.asKey(decryptedCipher.otKey);\r\n      }\r\n    }\r\n    return null;\r\n  }\r\n\r\n  async initiateOtk({\r\n    message,\r\n    email,\r\n    contactCard,\r\n    upgrade,\r\n  }: InitiateOtkInput): Promise<{ keyExchange: KeyExchange; otKeyK: string }> {\r\n    const otKey = await this.keyFactory.createKey();\r\n    const nonce = this.keyFactory.randomString(this.CLIENT_NONCE_LENGTH);\r\n    const user = await this.authService.getUser();\r\n\r\n    // New PKC key for encryption. This key is used only once when the responder sends\r\n    // back their signing public key.\r\n    const initiatorOneTimePrk = await this.keyFactory.createPkcKey();\r\n\r\n    // Option 1: New PKC key for signing\r\n    // const initiatorSigPrk = await this.keyService.createPkcSignKey();\r\n\r\n    // Option 2: Use the user's global signing key.\r\n    // This key is used to prove the initiator's identity.\r\n    const initiatorPrk = await this.keyService.getCurrentPxk();\r\n    const initiatorSigPrk = await this.keyService.getCurrentSigPxk();\r\n\r\n    let initiatorPlainDataSig: string = null;\r\n\r\n    if (contactCard && contactCard.ownerPlainData) {\r\n      initiatorPlainDataSig = JSON.stringify(\r\n        await this.encryptionService.sign(\r\n          initiatorSigPrk.jwk,\r\n          contactCard.ownerPlainData\r\n        )\r\n      );\r\n    }\r\n\r\n    const initiator = {\r\n      message,\r\n      contactCard: contactCard\r\n        ? {\r\n            plainSharedCipherDataJson: contactCard.plainSharedCipherDataJson,\r\n          }\r\n        : null,\r\n    };\r\n\r\n    // Content to be encrypted using the OTK.\r\n    const plainOtKeyCipher: PlainOtKeyCipher = {\r\n      nonce,\r\n      initiator: {\r\n        ...initiator,\r\n        oneTimePbk: initiatorOneTimePrk.toJSON(), // onetime public encryption key responder use to send data back to initiator\r\n        pbk: initiatorPrk.jwk.toJSON(), // public encryption key\r\n        sigPbk: initiatorSigPrk.jwk.toJSON(), // public signing key\r\n        profile: {\r\n          username: user.username,\r\n        },\r\n      },\r\n    };\r\n\r\n    const otKeyCipher = await this.encryptionService.encrypt(\r\n      otKey,\r\n      plainOtKeyCipher\r\n    );\r\n\r\n    // Content to be encrypted using the initiator's root key.\r\n    const plainInitiatorRootKeyCipher: PlainInitiatorRootKeyCipher = {\r\n      nonce,\r\n      oneTimePrk: initiatorOneTimePrk.toJSON(true),\r\n      // Should not need to keep this encrypted since we are using the global signing key.\r\n      // sigPrk: initiatorSigPrk.toJSON(true),\r\n\r\n      // Save it in case the initiator want to decode the otKeyCipher.\r\n      // Since the otKey is only used once, and that otKeyCipher contains only\r\n      // the public key of the initiator, it's safe just leave the otKey stored here.\r\n      otKey: otKey.toJSON(true),\r\n      // These should be storing information such as how the fields of the shared contact card is\r\n      // derived from the master contact card.\r\n      initiatorContactCard: contactCard,\r\n      initiator,\r\n    };\r\n\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n    const initiatorRootKeyCipher = await this.encryptionService.encrypt(\r\n      rootKey.jwk,\r\n      plainInitiatorRootKeyCipher\r\n    );\r\n\r\n    // The raw OTK\r\n    const otKeyK: string = (otKey.toJSON(true) as any).k;\r\n\r\n    // API call\r\n    const { initiateKeyExchangeOtk } = await this.lrApollo.mutate<any>({\r\n      mutation: InitiateOtkMutation,\r\n      variables: {\r\n        input: {\r\n          // These will be stored on the server\r\n          initiatorRootKeyCipher: JSON.stringify(initiatorRootKeyCipher),\r\n          initiatorPxkId: initiatorPrk.id,\r\n          initiatorSigPxkId: initiatorSigPrk.id,\r\n          // These will be sent to the responder\r\n          otKeyParams: JSON.stringify(otKey.toJSON()),\r\n          otKeyCipher: JSON.stringify(otKeyCipher),\r\n          sendEmail: email\r\n            ? {\r\n                email,\r\n                rawOtKey: otKeyK,\r\n              }\r\n            : null,\r\n          createTp: true,\r\n          initiatorPlainDataSig,\r\n          upgrade,\r\n        },\r\n      },\r\n    });\r\n    return { keyExchange: initiateKeyExchangeOtk.keyExchange, otKeyK };\r\n  }\r\n\r\n  async respondOtk({\r\n    id,\r\n    token,\r\n    decryptedOtk,\r\n    message,\r\n    initiatorContactCard,\r\n    responderContactCard: sentContactCard,\r\n  }: RespondOtkInput): Promise<RespondOtk> {\r\n    const user = await this.authService.getUser();\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n\r\n    const masterKeyId = this.keyService.getCurrentMasterKey().id;\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n\r\n    const sharedKey = await this.keyFactory.createKey();\r\n    const mkSharedKey = await this.keyFactory.createKey();\r\n\r\n    const rkWrappedSharedKey = await this.encryptionService.encrypt(\r\n      rootKey.jwk,\r\n      sharedKey.toJSON(true)\r\n    );\r\n    const mkWrappedMkSharedKey = await this.encryptionService.encrypt(\r\n      masterKey.jwk,\r\n      mkSharedKey.toJSON(true)\r\n    );\r\n\r\n    const initiatorOneTimePbk = await KFS.asKey(\r\n      decryptedOtk.plainOtKeyCipher.initiator.oneTimePbk\r\n    );\r\n\r\n    const initiatorPbk = await KFS.asKey(\r\n      decryptedOtk.plainOtKeyCipher.initiator.pbk\r\n    );\r\n    const initiatorSigPbk = await KFS.asKey(\r\n      decryptedOtk.plainOtKeyCipher.initiator.sigPbk\r\n    );\r\n\r\n    // Option 1: Using new Prk for each TP pair\r\n    // Create a new public signing key for the responder.\r\n    // const responderSigPrk = await this.keyService.createPkcSignKey()\r\n    // const rkWrappedResponderSigPrk = await this.encrypt(rootKey, responderSigPrk.toJSON(true));\r\n\r\n    // Option 2: Responder already has a signing Prk\r\n    const responderPrk = await this.keyService.getCurrentPxk();\r\n    const responderSigPrk = await this.keyService.getCurrentSigPxk();\r\n\r\n    const signedInitiatorPbk = await this.encryptionService.sign(\r\n      responderSigPrk.jwk,\r\n      initiatorPbk.toJSON()\r\n    );\r\n    const signedInitiatorSigPbk = await this.encryptionService.sign(\r\n      responderSigPrk.jwk,\r\n      initiatorSigPbk.toJSON()\r\n    );\r\n\r\n    const plainInitiatorOneTimePbkCipher: PlainInitiatorOneTimePbkCipher = {\r\n      nonce: decryptedOtk.plainOtKeyCipher.nonce,\r\n      sharedKey: sharedKey.toJSON(true),\r\n      mkSharedKey: mkSharedKey.toJSON(true),\r\n      responder: {\r\n        pbk: responderPrk.jwk.toJSON(), // public key\r\n        sigPbk: responderSigPrk.jwk.toJSON(), // public key\r\n        profile: {\r\n          username: user.username,\r\n        },\r\n        message,\r\n      },\r\n    };\r\n\r\n    let receivedCardInput;\r\n    if (decryptedOtk.plainOtKeyCipher.initiator.contactCard) {\r\n      // Set the info about the initiator to be the ones sent by the initiator. We need th responder to do the encryption here\r\n      // because the initiator does not have the shared key yet, and we want the responder to have a functional contact card after\r\n      // this exchange. The initiator can double check the contact details are correct and sign it when it completes the exchange.\r\n      const plainSharedCipherDataJson =\r\n        decryptedOtk.plainOtKeyCipher.initiator.contactCard\r\n          .plainSharedCipherDataJson;\r\n\r\n      // Create keys\r\n      const receiverKey = await this.keyFactory.createKey();\r\n      const ccSharedKey = await this.keyFactory.createKey();\r\n      const sigPxk = await this.keyService.getCurrentSigPxk();\r\n\r\n      receivedCardInput = {\r\n        receiverWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            rootKey.jwk,\r\n            receiverKey.toJSON(true)\r\n          )\r\n        ),\r\n        receiverWrappingKeyId: rootKey.id,\r\n        receiverCipherData: initiatorContactCard\r\n          ? JSON.stringify(\r\n              await this.encryptionService.encrypt(\r\n                receiverKey,\r\n                initiatorContactCard.plainReceiverCipherDataJson\r\n              )\r\n            )\r\n          : '',\r\n        sharedWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            sharedKey,\r\n            ccSharedKey.toJSON(true)\r\n          )\r\n        ),\r\n      };\r\n\r\n      const sharedCipherData = await this.encryptionService.encrypt(\r\n        ccSharedKey,\r\n        plainSharedCipherDataJson\r\n      );\r\n      receivedCardInput.sharedCipherDataSig = JSON.stringify(\r\n        await this.encryptionService.sign(sigPxk.jwk, sharedCipherData)\r\n      );\r\n      receivedCardInput.sigPxkId = sigPxk.id;\r\n\r\n      plainInitiatorOneTimePbkCipher.responder.contactCard = {\r\n        ...plainInitiatorOneTimePbkCipher.responder.contactCard,\r\n        sharedCipherKey: ccSharedKey.toJSON(true),\r\n      };\r\n    }\r\n\r\n    let sentCardInput;\r\n    if (sentContactCard) {\r\n      // Create keys\r\n      const ownerKey = await this.keyFactory.createKey();\r\n      const ccSharedKey = await this.keyFactory.createKey();\r\n      const sigPxk = await this.keyService.getCurrentSigPxk();\r\n\r\n      sentCardInput = {\r\n        ownerWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            rootKey.jwk,\r\n            ownerKey.toJSON(true)\r\n          )\r\n        ),\r\n        ownerWrappingKeyId: rootKey.id,\r\n        ownerCipherData: sentContactCard.plainOwnerCipherDataJson\r\n          ? JSON.stringify(\r\n              await this.encryptionService.encrypt(\r\n                ownerKey,\r\n                sentContactCard.plainOwnerCipherDataJson\r\n              )\r\n            )\r\n          : '',\r\n\r\n        sharedWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            sharedKey,\r\n            ccSharedKey.toJSON(true)\r\n          )\r\n        ),\r\n      };\r\n\r\n      const sharedCipherData = await this.encryptionService.encrypt(\r\n        ccSharedKey,\r\n        sentContactCard.plainSharedCipherDataJson\r\n      );\r\n      sentCardInput.sharedCipherDataSig = JSON.stringify(\r\n        await this.encryptionService.sign(sigPxk.jwk, sharedCipherData)\r\n      );\r\n      sentCardInput.sigPxkId = sigPxk.id;\r\n\r\n      if (sentContactCard.ownerPlainData) {\r\n        sentCardInput.ownerPlainDataSig = JSON.stringify(\r\n          await this.encryptionService.sign(\r\n            responderSigPrk.jwk,\r\n            sentContactCard.ownerPlainData\r\n          )\r\n        );\r\n      }\r\n\r\n      // Contact card info readable by the initiator\r\n      plainInitiatorOneTimePbkCipher.responder.contactCard = {\r\n        ...plainInitiatorOneTimePbkCipher.responder.contactCard,\r\n        plainSharedCipherDataJson: sentContactCard.plainSharedCipherDataJson,\r\n      };\r\n    }\r\n\r\n    // Encrypt with one-time public key\r\n    let initiatorOneTimePbkCipher = await this.encryptionService.encrypt(\r\n      initiatorOneTimePbk,\r\n      plainInitiatorOneTimePbkCipher\r\n    );\r\n\r\n    // Encrypt with the otk again to keep use of asymmetric keys to a minimum.\r\n    initiatorOneTimePbkCipher = await this.encryptionService.encrypt(\r\n      decryptedOtk.otKey,\r\n      initiatorOneTimePbkCipher\r\n    );\r\n\r\n    const { respondKeyExchangeOtk } = await this.lrApollo.mutate<any>({\r\n      mutation: RespondOtkMutation,\r\n      variables: {\r\n        input: {\r\n          keyExchangeId: id,\r\n          keyExchangeToken: token,\r\n          rootKeyId: rootKey.id,\r\n          masterKeyId,\r\n          // These will be stored on the server\r\n          responderPxkId: responderPrk.id,\r\n          responderSigPxkId: responderSigPrk.id,\r\n          signedInitiatorPbk: JSON.stringify(signedInitiatorPbk),\r\n          signedInitiatorSigPbk: JSON.stringify(signedInitiatorSigPbk),\r\n          // rkWrappedInitiatorSigPbk: JSON.stringify(rkWrappedInitiatorSigPbk),\r\n\r\n          // Option 1: Using new Prk for each TP pair\r\n          // rkWrappedResponderSigPrk: JSON.stringify(rkWrappedResponderSigPrk),\r\n          rkWrappedSharedKey: JSON.stringify(rkWrappedSharedKey),\r\n          mkWrappedMkSharedKey: JSON.stringify(mkWrappedMkSharedKey),\r\n          // These will be sent to the initiator\r\n          initiatorOneTimePbkCipher: JSON.stringify(initiatorOneTimePbkCipher),\r\n          initiatorContactCard: receivedCardInput,\r\n          responderContactCard: sentCardInput,\r\n        },\r\n      },\r\n    });\r\n\r\n    return {\r\n      keyExchange: respondKeyExchangeOtk.keyExchange,\r\n      userSharedKey: respondKeyExchangeOtk.userSharedKey,\r\n      tp: respondKeyExchangeOtk.tp,\r\n    };\r\n  }\r\n\r\n  async completeOtk(\r\n    keyExchangeId: string,\r\n    initiatorRootKeyCipher: string,\r\n    initiatorOneTimePbkCipher: string,\r\n    responderContactCard?: string\r\n  ): Promise<CompleteOtk> {\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n\r\n    // Decrypt using the root key to get the Prk\r\n    const plainInitiatorRootKeyCipher = ((await this.encryptionService.decrypt(\r\n      rootKey.jwk,\r\n      initiatorRootKeyCipher\r\n    )) as unknown) as PlainInitiatorRootKeyCipher;\r\n\r\n    // The Prk is single-use and only used to send information from the responder back to the initiator.\r\n    const plainInitiatorOneTimePbkCipher = await this.decryptResponseCipher(\r\n      await KFS.asKey(plainInitiatorRootKeyCipher.otKey),\r\n      await KFS.asKey(plainInitiatorRootKeyCipher.oneTimePrk),\r\n      initiatorOneTimePbkCipher\r\n    );\r\n\r\n    // Check the nonce match to ensure the responder was the one holding the OTK\r\n    if (\r\n      plainInitiatorRootKeyCipher.nonce !== plainInitiatorOneTimePbkCipher.nonce\r\n    ) {\r\n      throw new LrCodeMismatchException(\r\n        'The nonce returned by responder does not match with the one created by the initiator.'\r\n      );\r\n    }\r\n\r\n    // Option 1: Assuming the signing key is unique between users.\r\n    // const initiatorSigPrk = await KFS.asKey(ke.plainInitiatorRootKeyCipher.sigPrk);\r\n    // const rkWrappedInitiatorSigPrk = await this.encrypt(rootKey, initiatorSigPrk.toJSON(true));\r\n\r\n    // Option 2: Use the user's global signing key.\r\n    // In this case the initiatorSigPrk is already a part of the key graph.\r\n    // So there's nothing to do here.\r\n\r\n    // Protected the signing public key of the responder.\r\n    const initiatorSigPrk = await this.keyService.getCurrentSigPxk();\r\n    const responderSigPbk = await KFS.asKey(\r\n      plainInitiatorOneTimePbkCipher.responder.sigPbk\r\n    );\r\n    const responderPbk = await KFS.asKey(\r\n      plainInitiatorOneTimePbkCipher.responder.pbk\r\n    );\r\n\r\n    const signedResponderPbk = await this.encryptionService.sign(\r\n      initiatorSigPrk.jwk,\r\n      responderPbk.toJSON()\r\n    );\r\n    const signedResponderSigPbk = await this.encryptionService.sign(\r\n      initiatorSigPrk.jwk,\r\n      responderSigPbk.toJSON()\r\n    );\r\n\r\n    const sharedKey = await KFS.asKey(plainInitiatorOneTimePbkCipher.sharedKey);\r\n    const rkWrappedSharedKey = await this.encryptionService.encrypt(\r\n      rootKey.jwk,\r\n      sharedKey.toJSON(true)\r\n    );\r\n\r\n    const mkSharedKey = await KFS.asKey(\r\n      plainInitiatorOneTimePbkCipher.mkSharedKey\r\n    );\r\n    const mkWrappedMkSharedKey = await this.encryptionService.encrypt(\r\n      masterKey.jwk,\r\n      mkSharedKey.toJSON(true)\r\n    );\r\n\r\n    let responderContactCardCipherInput;\r\n    if (responderContactCard) {\r\n      // Create key\r\n      const receiverKey = await this.keyFactory.createKey();\r\n\r\n      responderContactCardCipherInput = {\r\n        receiverWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            rootKey.jwk,\r\n            receiverKey.toJSON(true)\r\n          )\r\n        ),\r\n        receiverWrappingKeyId: rootKey.id,\r\n        receiverCipherData: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            receiverKey,\r\n            responderContactCard\r\n          )\r\n        ),\r\n      };\r\n    }\r\n\r\n    // Get the data needed from the initiator's cipher data.\r\n    let initiatorContactCardCipherInput;\r\n    let initiatorContactCardSharedCipherInput;\r\n    if (plainInitiatorRootKeyCipher.initiatorContactCard) {\r\n      const initiatorContactCard =\r\n        plainInitiatorRootKeyCipher.initiatorContactCard;\r\n      const ownerKey = await this.keyFactory.createKey();\r\n      const sharedCipherKey = await KFS.asKey(\r\n        plainInitiatorOneTimePbkCipher.responder.contactCard.sharedCipherKey\r\n      );\r\n\r\n      const ownerWrappedKey = JSON.stringify(\r\n        await this.encryptionService.encrypt(rootKey.jwk, ownerKey.toJSON(true))\r\n      );\r\n      const ownerCipherData = initiatorContactCard.plainOwnerCipherDataJson\r\n        ? JSON.stringify(\r\n            await this.encryptionService.encrypt(\r\n              ownerKey,\r\n              initiatorContactCard.plainOwnerCipherDataJson\r\n            )\r\n          )\r\n        : '';\r\n\r\n      initiatorContactCardCipherInput = {\r\n        ownerWrappedKey,\r\n        ownerWrappingKeyId: rootKey.id,\r\n        ownerCipherData,\r\n      };\r\n\r\n      initiatorContactCardSharedCipherInput = {\r\n        sigPxkId: initiatorSigPrk.id,\r\n      };\r\n\r\n      const sharedCipherData = await this.encryptionService.encrypt(\r\n        sharedCipherKey,\r\n        initiatorContactCard.plainSharedCipherDataJson\r\n      );\r\n      initiatorContactCardSharedCipherInput.sharedCipherDataSig = JSON.stringify(\r\n        await this.encryptionService.sign(initiatorSigPrk.jwk, sharedCipherData)\r\n      );\r\n    }\r\n\r\n    // TODO ideally we update the shared data in the contact card sent to the responder as well since that\r\n    // CC was created by the responder.\r\n\r\n    const res = await this.lrApollo.mutate<any>({\r\n      mutation: CompleteOtkMutation,\r\n      variables: {\r\n        input: {\r\n          keyExchangeId,\r\n          rootKeyId: rootKey.id,\r\n          masterKeyId: masterKey.id,\r\n          initiatorSigPxkId: initiatorSigPrk.id,\r\n          signedResponderPbk: JSON.stringify(signedResponderPbk),\r\n          signedResponderSigPbk: JSON.stringify(signedResponderSigPbk),\r\n          rkWrappedSharedKey: JSON.stringify(rkWrappedSharedKey),\r\n          mkWrappedMkSharedKey: JSON.stringify(mkWrappedMkSharedKey),\r\n          responderContactCardCipher: responderContactCardCipherInput,\r\n          initiatorContactCardCipher: initiatorContactCardCipherInput,\r\n          initiatorContactCardSharedCipher: initiatorContactCardSharedCipherInput,\r\n        },\r\n      },\r\n    });\r\n    return res.completeKeyExchangeOtk;\r\n  }\r\n\r\n  public async currentUserSharedKey(input: {\r\n    username?: string;\r\n    userId?: string;\r\n  }): Promise<UserSharedKey> {\r\n    const { currentUserSharedKey } = await this.lrApollo.query<any>({\r\n      query: CurrentUserSharedKeyQuery,\r\n      variables: {\r\n        username: input.username,\r\n        userId: input.userId,\r\n      },\r\n    });\r\n    return currentUserSharedKey.userSharedKey;\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport gql from 'graphql-tag';\r\nimport { JWK } from 'node-jose';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyGraphFragment } from '../_common/queries.gql';\r\nimport { KeyExchangeService } from './key-exchange.service';\r\nimport { LrApolloService } from './lr-apollo.service';\r\nimport { KeyFactoryService as KFS } from '../cryptography/key-factory.service';\r\n\r\nexport const SendMessageMutation = gql`\r\n  mutation SendMessage($input: SendMessageInput!) {\r\n    sendMessage(input: $input) {\r\n      message {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const MessageQuery = gql`\r\n  query Message($id: LrRelayIdInput!) {\r\n    message(id: $id) {\r\n      id\r\n      sender {\r\n        username\r\n      }\r\n      receiver {\r\n        username\r\n      }\r\n      plainMessage\r\n      signedCipherMessage\r\n      sharedKey {\r\n        id\r\n      }\r\n      senderSigPbk {\r\n        id\r\n      }\r\n    }\r\n    keyGraph {\r\n      ...KeyGraphFragment\r\n    }\r\n  }\r\n  ${KeyGraphFragment}\r\n`;\r\n\r\nexport interface SendMessage {\r\n  message: {\r\n    id: string;\r\n  };\r\n}\r\n\r\nexport interface SendMessageInput {\r\n  username?: string;\r\n  userId?: string;\r\n  plainMessageJson?: any;\r\n  plainCipherMessageJson?: any;\r\n}\r\n\r\nexport interface Message {\r\n  id: string;\r\n  sender: {\r\n    id: string;\r\n    username: string;\r\n  };\r\n  receiver: {\r\n    id: string;\r\n    username: string;\r\n  };\r\n  plainMessage: string;\r\n  plainMessageJson?: any;\r\n  signedCipherMessage: string;\r\n  plainSignedCipherMessageJson?: any;\r\n  senderSigPbk: {\r\n    id: string;\r\n  };\r\n  sharedKey: {\r\n    id: string;\r\n  };\r\n}\r\n\r\ninterface DecryptMessageOptions {\r\n  sharedKey: JWK.Key;\r\n  senderSigPbk: JWK.Key;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class MessageService {\r\n  private readonly encrypt = this.encryptionService.encrypt.bind(\r\n    this.encryptionService\r\n  );\r\n  private readonly decrypt = this.encryptionService.decrypt.bind(\r\n    this.encryptionService\r\n  );\r\n  private readonly sign = this.encryptionService.sign.bind(\r\n    this.encryptionService\r\n  );\r\n  private readonly verify = this.encryptionService.verify.bind(\r\n    this.encryptionService\r\n  );\r\n\r\n  constructor(\r\n    private lrApollo: LrApolloService,\r\n    private keyGraph: KeyGraphService,\r\n    private encryptionService: EncryptionService,\r\n    private keyExchangeService: KeyExchangeService\r\n  ) {}\r\n\r\n  async sendMessage({\r\n    username,\r\n    userId,\r\n    plainMessageJson,\r\n    plainCipherMessageJson,\r\n  }: SendMessageInput): Promise<SendMessage> {\r\n    const userSharedKey = await this.keyExchangeService.currentUserSharedKey({\r\n      username,\r\n      userId,\r\n    });\r\n\r\n    const input: any = {\r\n      receiverUsername: username,\r\n      receiverId: userId,\r\n      sharedKeyId: userSharedKey.sharedKey.id,\r\n      senderSigPbkId: userSharedKey.userSigPrk.id,\r\n    };\r\n\r\n    if (plainCipherMessageJson) {\r\n      const sharedKey = await this.keyGraph.getJwkKey(\r\n        userSharedKey.sharedKey.id\r\n      );\r\n      const cipherMessage = await this.encrypt(\r\n        sharedKey,\r\n        plainCipherMessageJson\r\n      );\r\n\r\n      const senderSigPrk = await this.keyGraph.getJwkKey(\r\n        userSharedKey.userSigPrk.id\r\n      );\r\n      const signedCipherMessage = await this.sign(senderSigPrk, cipherMessage);\r\n\r\n      input.signedCipherMessage = JSON.stringify(signedCipherMessage);\r\n    }\r\n\r\n    if (plainMessageJson) {\r\n      input.plainMessage = JSON.stringify(plainMessageJson);\r\n    }\r\n\r\n    const res = await this.lrApollo.query<any>({\r\n      query: SendMessageMutation,\r\n      variables: {\r\n        input,\r\n      },\r\n    });\r\n\r\n    return res.sendMessage;\r\n  }\r\n\r\n  async decryptMessage(\r\n    message: Message,\r\n    { sharedKey, senderSigPbk }: DecryptMessageOptions\r\n  ): Promise<void> {\r\n    const signedCipherMessage = await this.verify(\r\n      senderSigPbk,\r\n      JSON.parse(message.signedCipherMessage)\r\n    );\r\n\r\n    message.plainSignedCipherMessageJson = await this.decrypt(\r\n      sharedKey,\r\n      signedCipherMessage\r\n    );\r\n  }\r\n\r\n  async getMessage(id: string): Promise<Message> {\r\n    const res = await this.lrApollo.query<any>({\r\n      query: MessageQuery,\r\n      variables: {\r\n        id,\r\n      },\r\n    });\r\n\r\n    this.keyGraph.addKeys(res.keyGraph);\r\n\r\n    const message = res.message as Message;\r\n\r\n    const sharedKey = await this.keyGraph.getJwkKey(message.sharedKey.id);\r\n\r\n    // The sender would be getting the Prk back. The receiver gets the Pbk back.\r\n    // But only the Pbk is needed here to verify signature.\r\n    // So both sender and receiver can access this message.\r\n    const senderSigPbk = await this.keyGraph.getJwkKey(message.senderSigPbk.id);\r\n\r\n    // Test bad signature\r\n    // senderSigPbk = senderSigPbk.toJSON();\r\n    // senderSigPbk.n = \"x\" + senderSigPbk.n.substring(1);\r\n    // senderSigPbk = await KFS.asKey(senderSigPbk);\r\n\r\n    await this.decryptMessage(message, {\r\n      sharedKey,\r\n      senderSigPbk,\r\n    });\r\n\r\n    if (message.plainMessage) {\r\n      message.plainMessageJson = JSON.parse(message.plainMessage);\r\n    }\r\n\r\n    return res.message;\r\n  }\r\n}\r\n","import { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport { LifeReadyConfig } from '../life-ready.config';\r\n\r\nexport function handleCognitoCallback<T>(\r\n  method: (callback: (err?: Error, result?: T) => void) => void\r\n): Promise<T> {\r\n  return new Promise<T>((resolve, reject) =>\r\n    method((err, result) => (err ? reject(err) : resolve(result)))\r\n  );\r\n}\r\n\r\nexport const awsFetch = (authUrl: string) => {\r\n  const fetch = window.fetch;\r\n\r\n  return (url, options) => {\r\n    const pass = () => fetch(url, options);\r\n\r\n    if (!options || !options.headers || !options.headers['X-Amz-Target']) {\r\n      return pass();\r\n    }\r\n\r\n    const operation = options.headers['X-Amz-Target'].split('.');\r\n    if (\r\n      operation.length < 2 ||\r\n      operation[0] !== 'AWSCognitoIdentityProviderService'\r\n    ) {\r\n      return pass();\r\n    }\r\n\r\n    const body = JSON.parse(options.body);\r\n\r\n    if (body && body.ClientMetadata && body.ClientMetadata.noProxy === 'true') {\r\n      return pass();\r\n    }\r\n\r\n    let custom = false;\r\n\r\n    if (operation[1] === 'RespondToAuthChallenge') {\r\n      if (body && body.ChallengeName === 'NEW_PASSWORD_REQUIRED') {\r\n        return pass();\r\n      }\r\n      custom = true;\r\n    } else if (operation[1] === 'InitiateAuth') {\r\n      if (body.AuthFlow === 'REFRESH_TOKEN_AUTH') {\r\n        custom = true;\r\n      }\r\n    }\r\n\r\n    if (!custom) {\r\n      return pass();\r\n    }\r\n\r\n    return fetch(`${authUrl}auth/proxy/`, {\r\n      ...options,\r\n      credentials: 'include',\r\n    });\r\n  };\r\n};\r\n\r\nexport const configureAmplifyAuth = (\r\n  { authUrl: authUrl, userPoolId, userPoolWebClientId }: LifeReadyConfig,\r\n  auth: AuthClass\r\n) => {\r\n  return () => {\r\n    const tokens = userPoolId.split('_');\r\n    if (tokens.length < 2) {\r\n      throw new Error('userPoolId should have this format: {aws-region}_xxxxx');\r\n    }\r\n\r\n    window.fetch = awsFetch(authUrl);\r\n\r\n    auth.configure({\r\n      // REQUIRED - Amazon Cognito Region\r\n      region: tokens[0],\r\n      // OPTIONAL - Amazon Cognito User Pool ID\r\n      userPoolId,\r\n      // OPTIONAL - Amazon Cognito Web Client ID (26-char alphanumeric string)\r\n      userPoolWebClientId,\r\n      // OPTIONAL - Enforce user authentication prior to accessing AWS resources or not\r\n      mandatorySignIn: false,\r\n    });\r\n  };\r\n};\r\n","import { LrApolloService } from '../api/lr-apollo.service';\r\nimport { HttpClient } from '@angular/common/http';\r\nimport { Inject, Injectable } from '@angular/core';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport gql from 'graphql-tag';\r\nimport { JWK } from 'node-jose';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { LifeReadyConfig, LR_CONFIG } from '../life-ready.config';\r\nimport {\r\n  LrException,\r\n  LrErrorCode,\r\n  LrBadLogicException,\r\n} from '../_common/exceptions';\r\nimport { LifeReadyAuthService } from './life-ready-auth.service';\r\nimport { PasswordService } from './password.service';\r\nimport { Slip39Helper } from 'slip39';\r\nimport { KeyFactoryService as KFS } from '../cryptography/key-factory.service';\r\n\r\ninterface SetPasswordApiResult {\r\n  username: string;\r\n  idpPassword: string;\r\n  setPasswordToken: string;\r\n}\r\n\r\nexport interface SetPasswordParams {\r\n  lbopId: string;\r\n  newPassword: string;\r\n  verifiedToken: string;\r\n  masterKeyId: string;\r\n  masterKey: JWK.Key;\r\n}\r\n\r\nexport interface VerifyContactParams {\r\n  email?: string;\r\n  phone?: string;\r\n}\r\n\r\nexport interface VerifyContactResult {\r\n  // The claim_id identifies the Email/SMS confirmation\r\n  claimId: string;\r\n}\r\n\r\nexport interface ConfirmContactParams {\r\n  claimId: string;\r\n  vCode: string;\r\n}\r\n\r\nexport interface ConfirmContactResult {\r\n  // The token to prove the client had the correct confirmation code.\r\n  token: string;\r\n}\r\n\r\nexport interface VerifyParams {\r\n  claimId: string;\r\n  claimToken: string;\r\n  lbop: string;\r\n}\r\n\r\nexport interface VerifyResult {\r\n  // userId: string;\r\n  lbopId: string;\r\n  verifiedToken: string;\r\n  masterKeyId: string;\r\n  masterKey: JWK.Key;\r\n}\r\n\r\nexport interface ChallengeResult {\r\n  challenge: any;\r\n  lbops: any;\r\n  // userId: string;\r\n}\r\n\r\nexport interface Lbop {\r\n  id: string;\r\n  partial?: string;\r\n  name?: string;\r\n  lbopString?: string;\r\n}\r\n\r\nexport interface CreateLbopParams {\r\n  name?: string;\r\n}\r\n\r\ninterface CreateLbopQuery {\r\n  createLbop: {\r\n    lbop: Lbop;\r\n  };\r\n}\r\n\r\nexport const CreateLbopQuery = gql`\r\n  mutation CreateLbop($input: CreateLbopInput!) {\r\n    createLbop(input: $input) {\r\n      lbop {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\ninterface DeleteLbopQuery {\r\n  deleteLbop: Lbop;\r\n}\r\n\r\nexport const DeleteLbopQuery = gql`\r\n  mutation DeleteLbop($input: DeleteLbopInput!) {\r\n    deleteLbop(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface UpdateLbopParams {\r\n  id: string;\r\n  name: string;\r\n}\r\n\r\ninterface UpdateLbopQuery {\r\n  updateLbop: Lbop;\r\n}\r\n\r\nexport const UpdateLbopQuery = gql`\r\n  mutation UpdateLbop($input: UpdateLbopInput!) {\r\n    updateLbop(input: $input) {\r\n      lbop {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const LbopQuery = gql`\r\n  query Lbop($id: LrRelayIdInput!) {\r\n    lbop(id: $id) {\r\n      id\r\n      cipherMeta\r\n    }\r\n  }\r\n`;\r\n\r\ninterface LbopsQuery {\r\n  lbops: any;\r\n}\r\n\r\nexport const LbopsQuery = gql`\r\n  query Lbops {\r\n    lbops {\r\n      edges {\r\n        node {\r\n          id\r\n          cipherMeta\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class LbopService {\r\n  private readonly CLIENT_NONCE_LENGTH = 32;\r\n  // There are 1024 words (10 bits), so 25 words should give ~256 bits of entropy.\r\n  private readonly LBOP_WORDS = 25;\r\n\r\n  constructor(\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private http: HttpClient,\r\n    private lrApollo: LrApolloService,\r\n    private auth: AuthClass,\r\n    private authService: LifeReadyAuthService,\r\n    private keyFactory: KFS,\r\n    private keyService: KeyService,\r\n    private encryptionService: EncryptionService,\r\n    private keyGraph: KeyGraphService,\r\n    private passwordService: PasswordService\r\n  ) {}\r\n\r\n  private getPartial(lbopString: string): string {\r\n    return lbopString.split(' ')[0];\r\n  }\r\n\r\n  public async remove(id: string): Promise<string> {\r\n    const res = await this.lrApollo.mutate<any>({\r\n      mutation: DeleteLbopQuery,\r\n      variables: {\r\n        input: {\r\n          id,\r\n        },\r\n      },\r\n    });\r\n\r\n    return res.deleteLbop.id;\r\n  }\r\n\r\n  public async update({ id, name }: UpdateLbopParams): Promise<Lbop> {\r\n    const lbop = await this.get(id);\r\n    lbop.name = name;\r\n\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n    const cipherMeta = await this.encryptionService.encrypt(\r\n      masterKey.jwk,\r\n      lbop\r\n    );\r\n\r\n    const res = await this.lrApollo.mutate<UpdateLbopQuery>({\r\n      mutation: UpdateLbopQuery,\r\n      variables: {\r\n        input: {\r\n          id,\r\n          cipherMeta: JSON.stringify(cipherMeta),\r\n        },\r\n      },\r\n    });\r\n\r\n    return res.updateLbop;\r\n  }\r\n\r\n  public async get(id: string): Promise<Lbop> {\r\n    const res = await this.lrApollo.query<any>({\r\n      query: LbopQuery,\r\n      variables: {\r\n        id,\r\n      },\r\n    });\r\n\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n\r\n    const plainCipherMeta = await this.encryptionService.decrypt(\r\n      masterKey.jwk,\r\n      JSON.parse(res.lbop.cipherMeta)\r\n    );\r\n\r\n    return {\r\n      id: res.id,\r\n      ...plainCipherMeta,\r\n    };\r\n  }\r\n\r\n  public async list(): Promise<Lbop[]> {\r\n    const res = await this.lrApollo.query<LbopsQuery>({\r\n      query: LbopsQuery,\r\n    });\r\n\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n\r\n    return Promise.all(\r\n      res.lbops.edges.map(async (edge) => {\r\n        const plainCipherMeta = await this.encryptionService.decrypt(\r\n          masterKey.jwk,\r\n          JSON.parse(edge.node.cipherMeta)\r\n        );\r\n        return {\r\n          id: edge.node.id,\r\n          ...plainCipherMeta,\r\n        };\r\n      })\r\n    );\r\n  }\r\n\r\n  public async create({ name }: CreateLbopParams): Promise<Lbop> {\r\n    if (Slip39Helper.WORD_LIST.length !== 1024) {\r\n      throw new LrBadLogicException('Slip39Helper.WORD_LIST.length != 1024');\r\n    }\r\n\r\n    // Get existing to make sure there are not duplicate first words\r\n    const lbops = await this.list();\r\n\r\n    // Generate new one\r\n    let lbopString;\r\n    while (true) {\r\n      lbopString = this.keyFactory\r\n        .randomChoices(Slip39Helper.WORD_LIST, this.LBOP_WORDS)\r\n        .join(' ');\r\n      const partial = this.getPartial(lbopString);\r\n\r\n      if (!lbops.some((lbop) => lbop.partial === partial)) {\r\n        break;\r\n      }\r\n    }\r\n\r\n    const lbopKeyParams = await this.keyFactory.createLbopKeyParams();\r\n    const lbopKey = (\r\n      await this.keyFactory.deriveLbopKey({\r\n        password: lbopString,\r\n        ...lbopKeyParams,\r\n      })\r\n    ).jwk;\r\n\r\n    const lbopKeyVerifier = await this.keyFactory.createSignKey();\r\n    const wrappedLbopKeyVerifier = await this.encryptionService.encrypt(\r\n      lbopKey,\r\n      lbopKeyVerifier.toJSON(true)\r\n    );\r\n\r\n    // Re-encrypt master key with new key\r\n    const currentUser = await this.authService.getUser();\r\n    const masterKey = await this.keyGraph.getKey(\r\n      currentUser.currentUserKey.masterKey.id\r\n    );\r\n    const wrappedMasterKey = await this.encryptionService.encrypt(\r\n      lbopKey,\r\n      masterKey.jwk.toJSON(true)\r\n    );\r\n\r\n    const meta = {\r\n      ...(name && { name }),\r\n      partial: this.getPartial(lbopString),\r\n    };\r\n    const cipherMeta = await this.encryptionService.encrypt(\r\n      masterKey.jwk,\r\n      meta\r\n    );\r\n\r\n    const res = await this.lrApollo.mutate<CreateLbopQuery>({\r\n      mutation: CreateLbopQuery,\r\n      variables: {\r\n        input: {\r\n          cipherMeta: JSON.stringify(cipherMeta),\r\n          lbopKeyParams: JSON.stringify(lbopKeyParams),\r\n          lbopKeyVerifier: JSON.stringify(lbopKeyVerifier.toJSON(true)),\r\n          wrappedLbopKeyVerifier: JSON.stringify(wrappedLbopKeyVerifier),\r\n          masterKeyId: currentUser.currentUserKey.masterKey.id,\r\n          wrappedMasterKey: JSON.stringify(wrappedMasterKey),\r\n        },\r\n      },\r\n    });\r\n\r\n    return {\r\n      ...res.createLbop.lbop,\r\n      lbopString,\r\n    };\r\n  }\r\n\r\n  // --------------------------------------------------------------------------------------------------------------------\r\n  // --------------------------------------------------------------------------------------------------------------------\r\n  // Flow below are for password reset via LBOP\r\n  //\r\n  // --Potential Failure Point xxx--\r\n  //\r\n  // Look for the above and you can test by interrupting at these points.\r\n  //\r\n  // The LBOP reset process can be restarted at any point before the call to \"set-password/\". Once \"set-password/\" has been\r\n  // called, we assume the client has a short period of time to change the Idp password to the one they've chosen. The \"set-password/\"\r\n  // will set the Idp password to a temporary random password. The user can no longer login using their current password. If the Idp\r\n  // password change process does not complete or takes longer than the lockout period, the account will not be accessible and a new\r\n  // LBOP password reset must be carried out.\r\n  // --------------------------------------------------------------------------------------------------------------------\r\n  // --------------------------------------------------------------------------------------------------------------------\r\n  private async verifyLbops(\r\n    challengeResult: ChallengeResult,\r\n    lbopString: string\r\n  ): Promise<{ lbop: any; signedChallenge: any; lbopKey: JWK.Key }> {\r\n    const clientNonce = this.keyFactory.randomString(this.CLIENT_NONCE_LENGTH);\r\n\r\n    for (const lbop of challengeResult.lbops) {\r\n      const lbopKey = (\r\n        await this.keyFactory.deriveLbopKey({\r\n          password: lbopString,\r\n          ...lbop.lbopKeyParams,\r\n        })\r\n      ).jwk;\r\n\r\n      // If decoding successful then it's the correct lbop\r\n      try {\r\n        const lbopKeyVerifier = (await this.encryptionService.decrypt(\r\n          lbopKey,\r\n          lbop.wrappedLbopKeyVerifier\r\n        )) as any;\r\n\r\n        // Force a bad signature.\r\n        // const serverNonce = challengeResult.challenge.serverNonce + \"1\",\r\n\r\n        const serverNonce = challengeResult.challenge.serverNonce;\r\n\r\n        const signedChallenge = await this.encryptionService.sign(\r\n          lbopKeyVerifier,\r\n          {\r\n            serverNonce,\r\n            clientNonce,\r\n          }\r\n        );\r\n\r\n        return {\r\n          lbop,\r\n          signedChallenge,\r\n          lbopKey,\r\n        };\r\n      } catch (error) {\r\n        continue;\r\n      }\r\n    }\r\n    throw new LrException({\r\n      source: 'LBOP',\r\n      code: 'INVALID_PASSPHRASE',\r\n      message: 'Invalid passphrase.',\r\n    });\r\n  }\r\n\r\n  public async verifyContact(\r\n    params: VerifyContactParams\r\n  ): Promise<VerifyContactResult> {\r\n    const ret = this.http\r\n      .post<VerifyContactResult>(\r\n        `${this.config.authUrl}users/lbop-reset/verify-contact/`,\r\n        params\r\n      )\r\n      .toPromise();\r\n\r\n    // --Potential Failure Point 1 --\r\n    // The contact verifications are throttled. But otherwise harmless.\r\n\r\n    return ret;\r\n  }\r\n\r\n  public async confirmContact(\r\n    params: ConfirmContactParams\r\n  ): Promise<ConfirmContactResult> {\r\n    return this.http\r\n      .post<ConfirmContactResult>(`${this.config.authUrl}cove/respond/`, {\r\n        claim_id: params.claimId,\r\n        v_code: params.vCode,\r\n      })\r\n      .toPromise();\r\n\r\n    // --Potential Failure Point 2 --\r\n    // A verified claim for a contact does not prevent new ones from being generated. So it should be fine to just start again.\r\n  }\r\n\r\n  public async verify(params: VerifyParams): Promise<VerifyResult> {\r\n    const challengeResult = await this.http\r\n      .post<ChallengeResult>(\r\n        `${this.config.authUrl}users/lbop-reset/get-challenge/`,\r\n        {\r\n          claimId: params.claimId,\r\n          claimToken: params.claimToken,\r\n        }\r\n      )\r\n      .toPromise();\r\n\r\n    // --Potential Failure Point 3 --\r\n    // This does not lock anything. A second call to \"get-challenge/\" will create a new challenge amd invalidate the first one.\r\n    const { signedChallenge, lbop, lbopKey } = await this.verifyLbops(\r\n      challengeResult,\r\n      params.lbop\r\n    );\r\n\r\n    const res = await this.http\r\n      .post<any>(`${this.config.authUrl}users/lbop-reset/verify-challenge/`, {\r\n        lbopId: lbop.lbopId,\r\n        signedChallenge,\r\n      })\r\n      .toPromise();\r\n\r\n    // --Potential Failure Point 4 --\r\n    // This does not lock anything. So ok to restart.\r\n\r\n    return {\r\n      lbopId: lbop.lbopId,\r\n      verifiedToken: res.verifiedToken,\r\n      masterKeyId: res.masterKeyId,\r\n      masterKey: await KFS.asKey(\r\n        await this.encryptionService.decrypt(lbopKey, res.wrappedMasterKey)\r\n      ),\r\n    };\r\n  }\r\n\r\n  public async setPassword(params: SetPasswordParams): Promise<any> {\r\n    // Generate the new password derived keys\r\n    const passKeyBundle = await this.passwordService.createPassKeyBundle(\r\n      params.newPassword\r\n    );\r\n\r\n    // Re-encrypt master key with new key\r\n    const newWrappedMasterKey = await this.encryptionService.encrypt(\r\n      passKeyBundle.passKey,\r\n      params.masterKey.toJSON(true)\r\n    );\r\n\r\n    const result = await this.http\r\n      .post<SetPasswordApiResult>(\r\n        `${this.config.authUrl}users/lbop-reset/set-password/`,\r\n        {\r\n          lbopId: params.lbopId,\r\n          verifiedToken: params.verifiedToken,\r\n          masterKeyId: params.masterKeyId,\r\n          newWrappedMasterKey,\r\n          newPassKey: {\r\n            passKeyParams: passKeyBundle.passKeyParams,\r\n            passIdpParams: passKeyBundle.passIdpParams,\r\n            passIdpVerifierPbk: passKeyBundle.passIdpVerifier.toJSON(),\r\n            wrappedPassIdpVerifierPrk: passKeyBundle.wrappedPassIdpVerifierPrk,\r\n          },\r\n        }\r\n      )\r\n      .toPromise();\r\n\r\n    // --Potential Failure Point 5 --\r\n    // A timed mutex is locked. The Idp password change must occur within a period of time.\r\n    // If interrupted here, the user can not login with their old password again. They must\r\n    // start the whole LBOP password reset process again.\r\n\r\n    // This call will go through the LR proxy which is OK since the LR server knows\r\n    // the temporary password anyway.\r\n    let user = await this.auth.signIn(result.username, result.idpPassword, {\r\n      noProxy: 'true',\r\n    });\r\n\r\n    if (user.challengeName !== 'NEW_PASSWORD_REQUIRED') {\r\n      throw new LrException({\r\n        message:\r\n          'Internal error. Expecting Cognito to have done a password reset.',\r\n      });\r\n    }\r\n\r\n    // --Potential Failure Point 6 --\r\n    // Must restart the LBOP password reset process again.\r\n\r\n    // Set new password on Idp\r\n    user = await this.auth.completeNewPassword(\r\n      user,\r\n      this.passwordService.getPassIdpString(passKeyBundle.passIdp),\r\n      {}\r\n    );\r\n\r\n    // --Potential Failure Point 7 --\r\n    // Must restart the LBOP password reset process again.\r\n\r\n    await this.auth.signOut();\r\n\r\n    return await this.http\r\n      .post<any>(`${this.config.authUrl}users/lbop-reset/complete/`, {\r\n        lbopId: params.lbopId,\r\n        setPasswordToken: result.setPasswordToken,\r\n      })\r\n      .toPromise();\r\n  }\r\n}\r\n","import { HttpClient } from '@angular/common/http';\r\nimport { Inject, Injectable } from '@angular/core';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { LifeReadyConfig, LR_CONFIG } from '../life-ready.config';\r\nimport { PasswordService } from './password.service';\r\nimport { RegisterResult } from './auth.types';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class RegisterService {\r\n  constructor(\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private auth: AuthClass,\r\n    private http: HttpClient,\r\n    private keyFactory: KeyFactoryService,\r\n    private encryptionService: EncryptionService,\r\n    private passwordService: PasswordService\r\n  ) {}\r\n\r\n  /**\r\n   * Request a verification code to be sent out to an email.\r\n   * @return Info needed to be submitted along with the verification code\r\n   */\r\n  public async verifyEmail(email: string): Promise<string> {\r\n    const { claim_id } = await this.http\r\n      .post<{ claim_id }>(`${this.config.authUrl}cove/claim/email/`, {\r\n        address: email,\r\n        context: 'signup',\r\n      })\r\n      .toPromise();\r\n    return claim_id;\r\n  }\r\n\r\n  public async verifyPhone(phoneNumber: string): Promise<string> {\r\n    const { claim_id } = await this.http\r\n      .post<{ claim_id }>(`${this.config.authUrl}cove/claim/sms/`, {\r\n        address: phoneNumber,\r\n        context: 'signup',\r\n      })\r\n      .toPromise();\r\n    return claim_id;\r\n  }\r\n\r\n  public async confirmVerificationCode(\r\n    verificationId: string,\r\n    verificationCode: string\r\n  ): Promise<string> {\r\n    const { token } = await this.http\r\n      .post<{ token }>(`${this.config.authUrl}cove/respond/`, {\r\n        claim_id: verificationId,\r\n        v_code: verificationCode,\r\n      })\r\n      .toPromise();\r\n    return token;\r\n  }\r\n\r\n  public async register(\r\n    email: string,\r\n    password: string,\r\n    verificationId: string,\r\n    verificationToken: string,\r\n    verificationType: 'email' | 'phone' = 'email'\r\n  ): Promise<RegisterResult> {\r\n    // Generate the key material needed for PassIdp which will be the password used for Cognito.\r\n    const passKeyBundle = await this.passwordService.createPassKeyBundle(\r\n      password\r\n    );\r\n\r\n    const masterKey = await this.keyFactory.createKey();\r\n    const wrappedMasterKey = await this.encryptionService.encrypt(\r\n      passKeyBundle.passKey,\r\n      masterKey.toJSON(true)\r\n    );\r\n\r\n    const rootKey = await this.keyFactory.createKey();\r\n    const wrappedRootKey = await this.encryptionService.encrypt(\r\n      masterKey,\r\n      rootKey.toJSON(true)\r\n    );\r\n\r\n    // Encryption PKC key\r\n    const prk = await this.keyFactory.createPkcKey();\r\n    const wrappedPrk = await this.encryptionService.encrypt(\r\n      rootKey,\r\n      prk.toJSON(true)\r\n    );\r\n\r\n    // Signing PKC key\r\n    const sigPrk = await this.keyFactory.createPkcSignKey();\r\n    const wrappedSigPrk = await this.encryptionService.encrypt(\r\n      rootKey,\r\n      sigPrk.toJSON(true)\r\n    );\r\n\r\n    // API call to setup profile\r\n    const user = await this.http\r\n      .post<any>(`${this.config.authUrl}users/`, {\r\n        claims: [\r\n          {\r\n            type: verificationType,\r\n            token: verificationToken,\r\n            claim_id: verificationId,\r\n          },\r\n        ],\r\n        pass_idp_params: passKeyBundle.passIdpParams,\r\n        pass_idp_verifier_pbk: passKeyBundle.passIdpVerifier.toJSON(),\r\n        wrapped_pass_idp_verifier_prk: passKeyBundle.wrappedPassIdpVerifierPrk,\r\n        pass_key_params: passKeyBundle.passKeyParams,\r\n        wrapped_master_key: wrappedMasterKey,\r\n        wrapped_root_key: wrappedRootKey,\r\n        pbk: prk.toJSON(), // public encryption key\r\n        wrapped_prk: wrappedPrk,\r\n        sig_pbk: sigPrk.toJSON(), // public signing key\r\n        wrapped_sig_prk: wrappedSigPrk,\r\n      })\r\n      .toPromise();\r\n\r\n    // API call to create user on cognito\r\n    const attributes = {};\r\n    user.claims.forEach((claim) => {\r\n      attributes[claim.type] = claim.value;\r\n    });\r\n\r\n    // Random suffix for uniqueness. If there's a duplicate, then used just needs to\r\n    // sign up again. But chances of collision is low.\r\n    const suffix = this.keyFactory.randomDigitsNoZeros(4);\r\n\r\n    const cognitoUser = await this.auth.signUp({\r\n      username: `${email.split('@')[0]}.${suffix}`,\r\n      password: this.passwordService.getPassIdpString(passKeyBundle.passIdp),\r\n      attributes,\r\n      // Unfortunately, validationData is not passed to the post\r\n      // confirmation cognito trigger. So can can't do the association there.\r\n      // The current workflow will create a new user on LR before signing up\r\n      // with Cognito. Then Cognito can use the user.id and user.pre_sign_up_token to\r\n      // do the validation of the attributes.\r\n      // validationData: [\r\n      //   new CognitoUserAttribute({\r\n      //     Name: \"user_id\",\r\n      //     Value: String(user.id)\r\n      //   }),\r\n      //   new CognitoUserAttribute({\r\n      //     Name: \"user_pre_sign_up_token\",\r\n      //     Value: user.pre_sign_up_token\r\n      //   })\r\n      // ]\r\n      clientMetadata: {\r\n        user_id: String(user.id),\r\n        user_pre_sign_up_token: String(user.pre_sign_up_token),\r\n      },\r\n    });\r\n\r\n    return {\r\n      username: cognitoUser.user.getUsername(),\r\n      userId: user.id,\r\n      preSignUpToken: user.pre_sign_up_token,\r\n      userSub: cognitoUser.userSub,\r\n    };\r\n  }\r\n\r\n  public async hibpBreachedAccounts(account: string): Promise<any> {\r\n    // The account is just the email\r\n    try {\r\n      const response = await this.http\r\n        .get(\r\n          `${this.config.authUrl}users/hibp/breachedaccount/${account}/?truncateResponse=false`\r\n        )\r\n        .toPromise();\r\n      return response;\r\n    } catch (error) {\r\n      if (error.status === 404) {\r\n        return null;\r\n      } else {\r\n        throw error;\r\n      }\r\n    }\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { CognitoUser } from '@aws-amplify/auth';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport { LrBadArgumentException } from '../_common/exceptions';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class TwoFactorService {\r\n  constructor(private auth: AuthClass) {}\r\n\r\n  public async getPreferredMFA(): Promise<string> {\r\n    const cognitoUser: CognitoUser = await this.auth.currentAuthenticatedUser();\r\n\r\n    return await this.auth.getPreferredMFA(cognitoUser);\r\n  }\r\n\r\n  public async setPreferredMFA(\r\n    method: 'TOTP' | 'SMS' | 'NOMFA'\r\n  ): Promise<void> {\r\n    const cognitoUser: CognitoUser = await this.auth.currentAuthenticatedUser();\r\n\r\n    await this.auth.setPreferredMFA(cognitoUser, method);\r\n  }\r\n\r\n  public async setPhoneNumber(phone): Promise<void> {\r\n    const cognitoUser: CognitoUser = await this.auth.currentAuthenticatedUser();\r\n\r\n    await this.auth.updateUserAttributes(cognitoUser, {\r\n      phone_number: phone,\r\n    });\r\n  }\r\n\r\n  public async getSMSCode() {\r\n    await this.auth.verifyCurrentUserAttribute('phone_number');\r\n  }\r\n\r\n  public async verifySMSCode(verificationCode: string) {\r\n    await this.auth.verifyCurrentUserAttributeSubmit(\r\n      'phone_number',\r\n      verificationCode\r\n    );\r\n  }\r\n\r\n  public async getSoftwareToken(): Promise<{ code: string; codeUri: string }> {\r\n    const [cognitoUser, userInfo] = await Promise.all([\r\n      this.auth.currentAuthenticatedUser(),\r\n      this.auth.currentUserInfo(),\r\n    ]);\r\n\r\n    const code = await this.auth.setupTOTP(cognitoUser);\r\n\r\n    const email = userInfo.attributes.email;\r\n    if (!email) {\r\n      throw new LrBadArgumentException('No email associated with user.');\r\n    }\r\n\r\n    return {\r\n      code,\r\n      codeUri: `otpauth://totp/${email}?secret=${code}&issuer=LifeReady`,\r\n    };\r\n  }\r\n\r\n  public async verifySoftwareToken(totpCode: string): Promise<void> {\r\n    const cognitoUser: CognitoUser = await this.auth.currentAuthenticatedUser();\r\n\r\n    await this.auth.verifyTotpToken(cognitoUser, totpCode);\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { Slip39, Slip39Helper } from 'slip39';\r\n\r\nexport class SecretShare {\r\n  constructor(\r\n    public assembly: number = 0,\r\n    public subAssembly: number = 0,\r\n    public mnemonics: string = ''\r\n  ) {}\r\n}\r\n\r\nexport class SubAssembly {\r\n  constructor(\r\n    public index: number,\r\n    public threshold: number = 0,\r\n    public size: number = 0\r\n  ) {\r\n    this.clearShares();\r\n  }\r\n\r\n  shares: SecretShare[];\r\n\r\n  public clearShares() {\r\n    this.shares = Array();\r\n  }\r\n\r\n  public addShare(share: SecretShare) {\r\n    this.shares.push(share);\r\n  }\r\n}\r\n\r\nexport class Assembly {\r\n  constructor(public threshold: number = 0) {\r\n    this.clearSubAssemblies();\r\n  }\r\n\r\n  subAssemblies: SubAssembly[];\r\n\r\n  public size() {\r\n    return this.subAssemblies.length;\r\n  }\r\n\r\n  public clearSubAssemblies() {\r\n    this.subAssemblies = new Array();\r\n  }\r\n\r\n  public addSubAssembly(subAssembly: SubAssembly) {\r\n    this.subAssemblies.push(subAssembly);\r\n  }\r\n}\r\n\r\nexport class SubQuorum {\r\n  shares: string[];\r\n\r\n  constructor(public subAssemblyIndex: number) {\r\n    this.clearShares();\r\n  }\r\n\r\n  public clearShares() {\r\n    this.shares = new Array();\r\n  }\r\n\r\n  public addShare(share: string) {\r\n    this.shares.push(share);\r\n  }\r\n}\r\n\r\nexport class Quorum {\r\n  subQuora: SubQuorum[];\r\n\r\n  constructor() {\r\n    this.clearSubQuora();\r\n  }\r\n\r\n  public clearSubQuora() {\r\n    this.subQuora = new Array();\r\n  }\r\n\r\n  public addSubQuorum(subQuorum: SubQuorum) {\r\n    this.subQuora.push(subQuorum);\r\n  }\r\n\r\n  public serialiseShares() {\r\n    let shares = [];\r\n\r\n    this.subQuora.forEach((subQuorum) => {\r\n      shares = shares.concat(subQuorum.shares);\r\n    });\r\n\r\n    return shares;\r\n  }\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class Slip39Service {\r\n  constructor() {}\r\n\r\n  public async generateShares(secret, passphrase: string, assembly: Assembly) {\r\n    // Hex-encode secret.\r\n    let ems = btoa(secret);\r\n    ems = Slip39Helper.slip39EncodeHex(ems);\r\n\r\n    // Construct group specifications\r\n    const groups = [];\r\n\r\n    for (const sa of assembly.subAssemblies) {\r\n      groups.push([sa.threshold, sa.size]);\r\n    }\r\n\r\n    // Split!\r\n    const slip = await Slip39.fromArray(ems, {\r\n      passphrase,\r\n      threshold: assembly.threshold,\r\n      groups,\r\n      title: '',\r\n    });\r\n\r\n    // Extract shares\r\n    assembly.subAssemblies.forEach((sa, isa) => {\r\n      // Remove any existing shares\r\n      sa.clearShares();\r\n\r\n      for (let im = 0; im < sa.size; im++) {\r\n        // Construct the path to the share, formatted as \"r/<subassembly index>/<member index>\"\r\n        // with <subassembly index> and <member index> being two-digit, zero-padded integers.\r\n        const path =\r\n          'r/' +\r\n          isa.toString().padStart(2, '0') +\r\n          '/' +\r\n          im.toString().padStart(2, '0');\r\n        const mnemonics = slip.fromPath(path).mnemonics[0];\r\n        const share = new SecretShare(isa, im, mnemonics);\r\n\r\n        sa.addShare(share);\r\n      }\r\n    });\r\n  }\r\n\r\n  // Remove all redundant shares. i.e. keep only enough members and groups to satisfy the thresholds.\r\n  private minimalSet(mnemonics: string[]): string[] {\r\n    // Decode the mnemonics and sort then into groups.\r\n    let groupThresh = null;\r\n    const groups = new Map();\r\n    for (const mnemonic of mnemonics) {\r\n      const decoded = Slip39Helper.decodeMnemonic(mnemonic);\r\n\r\n      if (groupThresh && groupThresh !== decoded.groupThreshold) {\r\n        throw new Error('groupThreshold is different in mnemonics');\r\n      }\r\n\r\n      groupThresh = decoded.groupThreshold;\r\n\r\n      // Note that Slip39.recoverSecret() will do all the error checking again. So it's not critical\r\n      // that we error check here. So we just optimistically assume it's all good.\r\n      let g = groups.get(decoded.groupIndex);\r\n      if (g == null) {\r\n        g = {\r\n          memberThreshold: decoded.memberThreshold,\r\n          members: [],\r\n        };\r\n        groups.set(decoded.groupIndex, g);\r\n      }\r\n\r\n      g.members.push({\r\n        mnemonic,\r\n        decoded,\r\n      });\r\n    }\r\n\r\n    // Keep the minimum set of groups that meet threshold.\r\n    const mnemonicsMinSet = [];\r\n    let groupCount = 0;\r\n    for (const g of groups.values()) {\r\n      // Keep only groups that meet threshold\r\n      if (g.members.length < g.memberThreshold) {\r\n        continue;\r\n      }\r\n\r\n      // Keep minimum number of approvals needed for group\r\n      g.members.slice(0, g.memberThreshold).forEach((member) => {\r\n        mnemonicsMinSet.push(member.mnemonic);\r\n      });\r\n\r\n      ++groupCount;\r\n      if (groupCount >= groupThresh) {\r\n        break;\r\n      }\r\n    }\r\n\r\n    return mnemonicsMinSet;\r\n  }\r\n\r\n  public async recoverSecret(shares: string[], passphrase: string) {\r\n    shares = this.minimalSet(shares);\r\n\r\n    const recovered = await Slip39.recoverSecret(shares, passphrase);\r\n\r\n    const secret = Slip39Helper.slip39DecodeHex(recovered);\r\n\r\n    return atob(secret);\r\n  }\r\n}\r\n","import gql from 'graphql-tag';\r\nimport { KeyGraphFragment } from '../_common/queries.gql';\r\nimport {\r\n  DEFAULT_BREADCRUMB_DEPTH,\r\n  parentCategoriesField,\r\n  AccessFields,\r\n} from '../category/category.gql';\r\n\r\nexport enum FileType {\r\n  RecordContent = 'record-content',\r\n  RecordAttachment = 'record-attachment',\r\n}\r\n\r\nexport const RecordContentFilter = JSON.stringify({\r\n  filter: [\r\n    {\r\n      contains: {\r\n        fileType: FileType.RecordContent,\r\n      },\r\n    },\r\n  ],\r\n});\r\n\r\nexport const RecordAttachmentFilter = JSON.stringify({\r\n  filter: [\r\n    {\r\n      contains: {\r\n        fileType: FileType.RecordAttachment,\r\n      },\r\n    },\r\n  ],\r\n});\r\n\r\nexport const GetRecordQuery = (depth = DEFAULT_BREADCRUMB_DEPTH) => gql`\r\nquery Record(\r\n  $id: LrRelayIdInput!,\r\n  $cachedKeyIds: [LrRelayIdInput!],\r\n  $categoryFilter: LrJSONFilter,\r\n  $contentFilter: LrJSONFilter,\r\n  $attachmentsFilter: LrJSONFilter,\r\n) {\r\n  record: directory(id: $id) {\r\n    id\r\n    keyId\r\n    archived\r\n    plainMeta\r\n    cipherMeta\r\n    created\r\n    modified\r\n    ${AccessFields}\r\n    ${parentCategoriesField(depth)}\r\n    content: childFileLinks(plainMeta: $contentFilter) {\r\n      edges {\r\n        node {\r\n          childFile {\r\n            id\r\n            keyId\r\n            archived\r\n            currentVersion {\r\n              state {\r\n                id\r\n                keyId\r\n                plainMeta\r\n                cipherMeta\r\n                created\r\n                modified\r\n              }\r\n            }\r\n            versions {\r\n              edges {\r\n                node {\r\n                  operation\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n    attachments: childFileLinks(plainMeta: $attachmentsFilter) {\r\n      edges {\r\n        node {\r\n          childFile {\r\n            id\r\n            keyId\r\n            archived\r\n            currentVersion {\r\n              state {\r\n                id\r\n                keyId\r\n                plainMeta\r\n                cipherMeta\r\n                contentResource\r\n              }\r\n            }\r\n            versions {\r\n              edges {\r\n                node {\r\n                  operation\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n  keyGraph(cachedKeyIds: $cachedKeyIds) {\r\n    ...KeyGraphFragment\r\n  }\r\n}\r\n${KeyGraphFragment}\r\n`;\r\n\r\nexport const CreateRecordContainerMutation = gql`\r\n  mutation CreateRecordContainer(\r\n    $plainMeta: LrJSONString\r\n    $cipherMeta: String\r\n    $parentDirectories: [ParentDirectoryInput!]\r\n    $parentRootDirectory: ParentRootDirectoryInput\r\n  ) {\r\n    new: createDirectory(\r\n      input: {\r\n        plainMeta: $plainMeta\r\n        cipherMeta: $cipherMeta\r\n        parentDirectories: $parentDirectories\r\n        parentRootDirectory: $parentRootDirectory\r\n      }\r\n    ) {\r\n      category: directory {\r\n        id\r\n        keyId\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const CreateRecordMutation = gql`\r\n  mutation CreateFile($input: CreateFileInput!) {\r\n    createFile(input: $input) {\r\n      file {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateRecordContainerMutation = gql`\r\n  mutation UpdateRecord($input: UpdateDirectoryInput!) {\r\n    updateDirectory(input: $input) {\r\n      directory {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateRecordMutation = gql`\r\n  mutation UpdateFile($input: UpdateFileInput!) {\r\n    updateFile(input: $input) {\r\n      file {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteRecordMutation = gql`\r\n  mutation DeleteRecord($recordId: LrRelayIdInput!) {\r\n    deleteDirectory(input: { directoryId: $recordId }) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport const CreateFileMutation = gql`\r\n  mutation CreateFile($input: CreateFileInput!) {\r\n    createFile(input: $input) {\r\n      file {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteFileMutation = gql`\r\n  mutation DeleteFile($fileId: LrRelayIdInput!) {\r\n    deleteFile(input: { fileId: $fileId }) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n","export enum AccessLevel {\r\n  Owner = 'OWNER',\r\n  Admin = 'ADMIN',\r\n  Writer = 'WRITER',\r\n  Reader = 'READER',\r\n  Deny = 'DENY',\r\n}\r\n\r\nexport class SharedAccess {\r\n  trustedPartyId: string;\r\n  accessLevel: AccessLevel;\r\n  isInherited: boolean;\r\n  inheritedFrom?: string;\r\n}\r\n\r\nexport class DefaultCategory {\r\n  code: string;\r\n  name: string;\r\n  allowRecords: boolean;\r\n  allowCustomCategories: boolean;\r\n  archived: boolean;\r\n  subCategories?: DefaultCategory[];\r\n}\r\n\r\nexport class VaultRecordType {\r\n  id: string;\r\n  name: string;\r\n}\r\n\r\nexport class VaultRecord {\r\n  id: string;\r\n  keyId: string;\r\n  name: string;\r\n  recordType: VaultRecordType;\r\n  createdOn: string | Date;\r\n  lastModified: string | Date;\r\n  isArchived: boolean;\r\n  myAccessLevel: AccessLevel;\r\n  sharedAccess: SharedAccess[];\r\n}\r\n\r\nexport class Category {\r\n  id: string;\r\n  keyId: string;\r\n  code?: string;\r\n  name: string;\r\n  isHidden: boolean;\r\n  isCustom: boolean;\r\n  isEmpty: boolean;\r\n  isArchived: boolean;\r\n  allRecordsCount: number;\r\n  allowRecords: boolean;\r\n  allowCustomCategories: boolean;\r\n  myAccessLevel: AccessLevel;\r\n  sharedAccess: SharedAccess[];\r\n}\r\n\r\nexport class CurrentCategory extends Category {\r\n  parents: Category[];\r\n}\r\n\r\nexport class VaultCategory {\r\n  category?: CurrentCategory;\r\n  subCategories?: Category[];\r\n  records?: VaultRecord[];\r\n}\r\n\r\nexport class NewCategory {\r\n  name: string;\r\n  code?: string;\r\n  isCustom: boolean;\r\n  allowRecords: boolean;\r\n  allowCustomCategories: boolean;\r\n  categoryIds?: string[];\r\n}\r\n\r\nexport class UpdatedCategory {\r\n  name: string;\r\n  code?: string;\r\n  isCustom: boolean;\r\n  allowRecords: boolean;\r\n  allowCustomCategories: boolean;\r\n}\r\n\r\nexport class Vault {\r\n  id: string;\r\n  keyId: string;\r\n  name?: string;\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport { KeyMetaService } from '../cryptography/key-meta.service';\r\nimport { RecordContentFilter } from '../record/record.gql';\r\nimport { HasEdges, HasKeyGraphEdges } from '../_common/types';\r\nimport {\r\n  GetRootDirectoryIdsQuery,\r\n  DefaultVaultFilter,\r\n  CategoryFilter,\r\n  CreateVaultMutation,\r\n  CreateCategoryMutation,\r\n  DeleteCategoryMutation,\r\n  DirectoryType,\r\n  GetCategoriesQuery,\r\n  GetCategoryQuery,\r\n  GetMySharedCategoriesQuery,\r\n  GetMySharedCategoriesQueryType,\r\n  GetTrustedPartyCategoriesQuery,\r\n  GetTrustedPartyCategoriesQueryType,\r\n  RecordFilter,\r\n  UpdateCategoryMutation,\r\n  UnarchiveDirectoryMutation,\r\n  ArchiveDirectoryMutation,\r\n  GetVaultsQuery,\r\n} from './category.gql';\r\nimport {\r\n  AccessLevel,\r\n  Category,\r\n  NewCategory,\r\n  UpdatedCategory,\r\n  VaultCategory,\r\n  VaultRecord,\r\n  Vault,\r\n} from './category.types';\r\nimport { LrBadStateException } from '../_common/exceptions';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class CategoryService {\r\n  constructor(\r\n    private lrApollo: LrApolloService,\r\n    private keyMetaService: KeyMetaService,\r\n    private keyGraph: KeyGraphService\r\n  ) {}\r\n\r\n  public async getRootDirectoryIds(\r\n    input: { archived: boolean } = null\r\n  ): Promise<string[]> {\r\n    const { rootDirectories } = await this.lrApollo.query<any>({\r\n      query: GetRootDirectoryIdsQuery,\r\n      variables: {\r\n        archived: input && input.archived,\r\n      },\r\n    });\r\n    return rootDirectories.edges.map((edge) => edge.node.id);\r\n  }\r\n\r\n  public async getDefaultVault(): Promise<Vault> {\r\n    const { list } = await this.lrApollo.query<HasKeyGraphEdges<any>>({\r\n      query: GetVaultsQuery,\r\n      variables: {\r\n        plainMetaFilter: DefaultVaultFilter,\r\n      },\r\n    });\r\n\r\n    const defaultVaults = await this.mapVaults(list);\r\n    if (defaultVaults.length > 1) {\r\n      throw new LrBadStateException('There are more than one default vaults');\r\n    }\r\n\r\n    return defaultVaults[0] || null;\r\n  }\r\n\r\n  public async getCategories(\r\n    input: { archived: boolean } = null\r\n  ): Promise<Category[]> {\r\n    const res: any = await this.lrApollo.query<HasKeyGraphEdges<any>>({\r\n      query: GetCategoriesQuery,\r\n      variables: {\r\n        vaultFilter: DefaultVaultFilter,\r\n        categoryFilter: CategoryFilter,\r\n        recordFilter: RecordFilter,\r\n        archived: input && input.archived,\r\n      },\r\n    });\r\n\r\n    if (res.vaults.edges.length > 1) {\r\n      throw new LrBadStateException('There is more than one default vault');\r\n    } else if (res.vaults.edges.length < 1) {\r\n      console.error('There is no default vault.');\r\n      return [];\r\n    } else {\r\n      return await this.mapCategories(\r\n        res.vaults.edges[0].node.childDirectoryLinks\r\n      );\r\n    }\r\n  }\r\n\r\n  public async getTrustedPartyCategories(\r\n    trustedPartyId: string\r\n  ): Promise<{ categories: Category[]; records?: VaultRecord[] }> {\r\n    const {\r\n      tp,\r\n    } = await this.lrApollo.query<GetTrustedPartyCategoriesQueryType>({\r\n      query: GetTrustedPartyCategoriesQuery,\r\n      variables: {\r\n        trustedPartyId,\r\n        categoryFilter: CategoryFilter,\r\n        recordFilter: RecordFilter,\r\n        contentFilter: RecordContentFilter,\r\n      },\r\n    });\r\n    return {\r\n      categories: await this.mapCategories(tp.sharedItems.list),\r\n      records: await this.mapRecords(tp.sharedItems.records),\r\n    };\r\n  }\r\n\r\n  public async getMySharedCategories(\r\n    trustedPartyId: string\r\n  ): Promise<{ categories: Category[]; records?: VaultRecord[] }> {\r\n    const { tp } = await this.lrApollo.query<GetMySharedCategoriesQueryType>({\r\n      query: GetMySharedCategoriesQuery,\r\n      variables: {\r\n        trustedPartyId,\r\n        categoryFilter: CategoryFilter,\r\n        recordFilter: RecordFilter,\r\n        contentFilter: RecordContentFilter,\r\n      },\r\n    });\r\n    return {\r\n      categories: await this.mapCategories(tp.myItems.list),\r\n      records: await this.mapRecords(tp.myItems.records),\r\n    };\r\n  }\r\n\r\n  public async getCategory(categoryId: string): Promise<VaultCategory> {\r\n    const { category } = await this.lrApollo.query<any>({\r\n      query: GetCategoryQuery(),\r\n      variables: {\r\n        id: categoryId,\r\n        categoryFilter: CategoryFilter,\r\n        recordFilter: RecordFilter,\r\n        contentFilter: RecordContentFilter,\r\n      },\r\n    });\r\n\r\n    return {\r\n      category: {\r\n        ...(await this.mapCategory(category)),\r\n        parents: await this.mapParentCategories(category),\r\n      },\r\n      subCategories: await this.mapCategories(category.subCategories),\r\n      records: await this.mapRecords(category.records),\r\n    };\r\n  }\r\n\r\n  private async mapVaults(list: HasEdges<any>): Promise<Vault[]> {\r\n    return Promise.all<Vault>(\r\n      list.edges.map((edge) => this.mapVault(edge.node))\r\n    );\r\n  }\r\n\r\n  private async mapCategories(list: HasEdges<any>) {\r\n    return (\r\n      await Promise.all<Category>(\r\n        list.edges\r\n          .map((x) => x.node)\r\n          .map((x) => x.childDirectory || x)\r\n          .map(\r\n            (node: {\r\n              id;\r\n              keyId;\r\n              plainMeta;\r\n              cipherMeta;\r\n              descendantDirectories;\r\n              accessRoles;\r\n              archived;\r\n            }) => this.mapCategory(node)\r\n          )\r\n      )\r\n    )\r\n      .filter((x) => x)\r\n      .sort((x, y) => (x.name === y.name ? 0 : x.name > y.name ? 1 : -1));\r\n  }\r\n\r\n  private async mapRecords(list: HasEdges<any>) {\r\n    return (\r\n      await Promise.all<VaultRecord>(\r\n        list.edges\r\n          .map((x) => x.node)\r\n          .map((x) => x.childDirectory || x)\r\n          .map(\r\n            (node: {\r\n              id;\r\n              keyId;\r\n              plainMeta;\r\n              cipherMeta;\r\n              created;\r\n              modified;\r\n              content;\r\n              accessRoles;\r\n              archived;\r\n            }) => this.mapRecord(node)\r\n          )\r\n      )\r\n    )\r\n      .filter((x) => x)\r\n      .sort((x, y) => (x.name === y.name ? 0 : x.name > y.name ? 1 : -1));\r\n  }\r\n\r\n  public async createDefaultVault(): Promise<string> {\r\n    const secureContent = '';\r\n    const wrappedContent = await this.keyMetaService.wrapContent(secureContent);\r\n\r\n    const response = await this.lrApollo.mutate<any>({\r\n      mutation: CreateVaultMutation,\r\n      variables: {\r\n        plainMeta: JSON.stringify({\r\n          directoryType: DirectoryType.Vault,\r\n          default: true,\r\n        }),\r\n        cipherMeta: wrappedContent.cipherMeta,\r\n        parentRootDirectory: wrappedContent.rootKey,\r\n      },\r\n    });\r\n\r\n    return response.new.vault.id;\r\n  }\r\n\r\n  public async createCategory(newCategory: NewCategory): Promise<string> {\r\n    const secureContent = {\r\n      name: newCategory.name,\r\n      code: newCategory.code,\r\n      isCustom: newCategory.isCustom,\r\n      allowRecords: newCategory.allowRecords,\r\n      allowCustomCategories: newCategory.allowCustomCategories,\r\n    };\r\n    const wrappedContent = await this.keyMetaService.wrapContent(\r\n      secureContent,\r\n      newCategory.categoryIds\r\n    );\r\n\r\n    const response = await this.lrApollo.mutate<any>({\r\n      mutation: CreateCategoryMutation,\r\n      variables: {\r\n        plainMeta: JSON.stringify({\r\n          directoryType: DirectoryType.Category,\r\n          isHidden: false,\r\n        }),\r\n        cipherMeta: wrappedContent.cipherMeta,\r\n        parentDirectories: wrappedContent.wrappedKeys,\r\n        parentRootDirectory: wrappedContent.rootKey,\r\n      },\r\n    });\r\n\r\n    return response.new.category.id;\r\n  }\r\n\r\n  public async updateCategory(\r\n    categoryId: string,\r\n    keyId: string,\r\n    updatedCategory: UpdatedCategory\r\n  ): Promise<void> {\r\n    const secureContent = {\r\n      name: updatedCategory.name,\r\n      code: updatedCategory.code,\r\n      isCustom: updatedCategory.isCustom,\r\n      allowRecords: updatedCategory.allowRecords,\r\n      allowCustomCategories: updatedCategory.allowCustomCategories,\r\n    };\r\n\r\n    const cipherMeta = await this.keyGraph.encryptToString(\r\n      keyId,\r\n      secureContent\r\n    );\r\n\r\n    await this.lrApollo.mutate({\r\n      mutation: UpdateCategoryMutation,\r\n      variables: {\r\n        input: {\r\n          directoryId: categoryId,\r\n          cipherMeta,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async setCategoryVisibility(\r\n    categoryId: string,\r\n    hide: boolean\r\n  ): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: UpdateCategoryMutation,\r\n      variables: {\r\n        input: {\r\n          directoryId: categoryId,\r\n          plainMeta: JSON.stringify({\r\n            directoryType: DirectoryType.Category,\r\n            isHidden: hide,\r\n          }),\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async deleteCategory(categoryId: string): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: DeleteCategoryMutation,\r\n      variables: { categoryId },\r\n    });\r\n  }\r\n\r\n  public async archiveCategory(\r\n    categoryId: string,\r\n    recursive: boolean\r\n  ): Promise<void> {\r\n    return this.archiveDirectory(categoryId, recursive);\r\n  }\r\n\r\n  public async unarchiveCategory(\r\n    categoryId: string,\r\n    recursive: boolean\r\n  ): Promise<void> {\r\n    return this.unarchiveDirectory(categoryId, recursive);\r\n  }\r\n\r\n  public async archiveDirectory(\r\n    directoryId: string,\r\n    recursive: boolean\r\n  ): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: ArchiveDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          directoryId,\r\n          recursive,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async unarchiveDirectory(\r\n    directoryId: string,\r\n    recursive: boolean\r\n  ): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: UnarchiveDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          directoryId,\r\n          recursive,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async mapVault(node: {\r\n    id;\r\n    keyId;\r\n    plainMeta;\r\n    cipherMeta;\r\n  }): Promise<Vault> {\r\n    try {\r\n      const { name } = (await this.keyMetaService.decryptMeta(node)) || {};\r\n      return {\r\n        id: node.id,\r\n        keyId: node.keyId,\r\n        name,\r\n      };\r\n    } catch (e) {\r\n      console.error('Failed to decrypt Vault.', e, node);\r\n      return null;\r\n    }\r\n  }\r\n\r\n  public async mapParentCategories(category: {\r\n    parentCategories: any;\r\n  }): Promise<Category[]> {\r\n    if (\r\n      !category.parentCategories ||\r\n      !category.parentCategories.edges ||\r\n      !category.parentCategories.edges.length\r\n    ) {\r\n      return [];\r\n    }\r\n    const node = category.parentCategories.edges[0].node.parentDirectory;\r\n\r\n    return [\r\n      ...(await this.mapParentCategories(node)),\r\n      await this.mapCategory(node),\r\n    ];\r\n  }\r\n\r\n  public async mapCategory(node: {\r\n    id;\r\n    keyId;\r\n    plainMeta;\r\n    cipherMeta;\r\n    descendantDirectories;\r\n    accessRoles: any[];\r\n    archived;\r\n  }): Promise<Category> {\r\n    try {\r\n      const { name, isCustom, allowRecords, allowCustomCategories, code } =\r\n        (await this.keyMetaService.decryptMeta(node)) || {};\r\n      const { isHidden } = (node.plainMeta && JSON.parse(node.plainMeta)) || {};\r\n\r\n      const isOwner =\r\n        node.accessRoles &&\r\n        node.accessRoles.some((x) => x.role === AccessLevel.Owner);\r\n\r\n      return {\r\n        id: node.id,\r\n        keyId: node.keyId,\r\n        code,\r\n        name,\r\n        isHidden: !!isHidden,\r\n        isCustom: !!isCustom,\r\n        isArchived: !!node.archived,\r\n        allowRecords: !!allowRecords,\r\n        allowCustomCategories: !!allowCustomCategories,\r\n        isEmpty: node.descendantDirectories\r\n          ? node.descendantDirectories.recordsCount === 0\r\n          : null,\r\n        allRecordsCount: node.descendantDirectories?.recordsCount, // Need this for testing.\r\n        myAccessLevel: isOwner ? AccessLevel.Owner : node.accessRoles[0].role,\r\n        sharedAccess: isOwner\r\n          ? node.accessRoles\r\n              .filter((x) => x.role !== AccessLevel.Owner)\r\n              .map((x) => ({\r\n                trustedPartyId: x.trustedParty && x.trustedParty.id,\r\n                accessLevel: x.role,\r\n                isInherited: x.method === 'inherited',\r\n                inheritedFrom: x.inheritedFrom && x.inheritedFrom.id,\r\n              }))\r\n          : [],\r\n      };\r\n    } catch (e) {\r\n      console.error('Failed to decrypt Category.', e, node);\r\n      return null;\r\n    }\r\n  }\r\n\r\n  public async mapRecord(node: {\r\n    id;\r\n    keyId;\r\n    plainMeta;\r\n    cipherMeta;\r\n    created;\r\n    modified;\r\n    content;\r\n    accessRoles: any[];\r\n    archived;\r\n  }): Promise<VaultRecord> {\r\n    try {\r\n      const contents = node.content.edges[0].node.childFile;\r\n      const { name, recordType } =\r\n        (await this.keyMetaService.decryptMeta(\r\n          contents.currentVersion.state\r\n        )) || {};\r\n\r\n      const isOwner =\r\n        node.accessRoles &&\r\n        node.accessRoles.some((x) => x.role === AccessLevel.Owner);\r\n\r\n      return {\r\n        id: node.id,\r\n        keyId: node.keyId,\r\n        name,\r\n        recordType,\r\n        isArchived: !!node.archived,\r\n        createdOn: node.created,\r\n        lastModified:\r\n          new Date(node.modified) >\r\n          new Date(contents.currentVersion.state.modified)\r\n            ? node.modified\r\n            : contents.currentVersion.state.modified,\r\n        myAccessLevel: isOwner ? AccessLevel.Owner : node.accessRoles[0].role,\r\n        sharedAccess: isOwner\r\n          ? node.accessRoles\r\n              .filter((x) => x.role !== AccessLevel.Owner)\r\n              .map((x) => ({\r\n                trustedPartyId: x.trustedParty && x.trustedParty.id,\r\n                accessLevel: x.role,\r\n                isInherited: x.method === 'inherited',\r\n                inheritedFrom: x.inheritedFrom && x.inheritedFrom.id,\r\n              }))\r\n          : [],\r\n      };\r\n    } catch (e) {\r\n      console.error('Failed to decrypt Record.', e);\r\n      return null as VaultRecord;\r\n    }\r\n  }\r\n}\r\n","import { HttpClient } from '@angular/common/http';\r\nimport { Injectable } from '@angular/core';\r\nimport { CategoryService } from './category.service';\r\nimport {\r\n  AccessLevel,\r\n  Category,\r\n  CurrentCategory,\r\n  DefaultCategory,\r\n  VaultCategory,\r\n} from './category.types';\r\n\r\nexport class LoadedCategoryTree {\r\n  categories: CurrentCategory[];\r\n  missingCategories: string[][];\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class CategoryMetaService {\r\n  private categories: DefaultCategory[];\r\n\r\n  constructor(\r\n    private http: HttpClient,\r\n    private categoryService: CategoryService\r\n  ) {}\r\n\r\n  public async getCoreCategories(): Promise<DefaultCategory[]> {\r\n    if (!this.categories) {\r\n      this.categories = await this.http\r\n        .get<DefaultCategory[]>('/assets/meta/categories.json')\r\n        .toPromise();\r\n    }\r\n    return Promise.resolve(this.categories);\r\n  }\r\n\r\n  async loadCategories(\r\n    categoryTrees: string[][],\r\n    selectedCategoryId?: string,\r\n    trustedPartyId?: string\r\n  ): Promise<LoadedCategoryTree> {\r\n    const rootCategories = trustedPartyId\r\n      ? (await this.categoryService.getTrustedPartyCategories(trustedPartyId))\r\n          .categories\r\n      : await this.categoryService.getCategories();\r\n\r\n    const selectedCategory = selectedCategoryId\r\n      ? await this.categoryService.getCategory(selectedCategoryId)\r\n      : null;\r\n\r\n    const categoryPromises = categoryTrees.map(async (x) => ({\r\n      categoryTree: x,\r\n      category: await this.loadCategory(\r\n        [...x],\r\n        rootCategories,\r\n        selectedCategory\r\n      ),\r\n    }));\r\n\r\n    const loadedCategories = await Promise.all(categoryPromises);\r\n\r\n    const loadedCategoryTree: LoadedCategoryTree = {\r\n      categories: [],\r\n      missingCategories: [],\r\n    };\r\n\r\n    loadedCategories.forEach((x) =>\r\n      x.category\r\n        ? loadedCategoryTree.categories.push(x.category)\r\n        : loadedCategoryTree.missingCategories.push(x.categoryTree)\r\n    );\r\n\r\n    return loadedCategoryTree;\r\n  }\r\n\r\n  async loadCategoriesForRole(\r\n    categories: { category: string[]; accessLevel: AccessLevel }[]\r\n  ): Promise<{ category: CurrentCategory; accessLevel: AccessLevel }[]> {\r\n    const rootCategories = await this.categoryService.getCategories();\r\n\r\n    return await Promise.all(\r\n      categories.map(async (x) => ({\r\n        category: await this.loadCategory([...x.category], rootCategories),\r\n        accessLevel: x.accessLevel,\r\n      }))\r\n    );\r\n  }\r\n\r\n  private async loadCategory(\r\n    categoryTree: string[],\r\n    categories: Category[],\r\n    selectedCategory?: VaultCategory\r\n  ): Promise<CurrentCategory> {\r\n    const name = categoryTree.shift();\r\n\r\n    const currentCategory = categories.find(\r\n      (x) => x.code === name && !x.isCustom\r\n    );\r\n\r\n    if (currentCategory) {\r\n      if (categoryTree.length) {\r\n        const { subCategories } = await this.categoryService.getCategory(\r\n          currentCategory.id\r\n        );\r\n        return this.loadCategory(categoryTree, subCategories, selectedCategory);\r\n      } else {\r\n        const { category } = await this.categoryService.getCategory(\r\n          currentCategory.id\r\n        );\r\n\r\n        if (\r\n          selectedCategory &&\r\n          selectedCategory.category.parents.some((x) => x.id === category.id)\r\n        ) {\r\n          return selectedCategory.category;\r\n        }\r\n        return category;\r\n      }\r\n    } else if (categoryTree.length) {\r\n      return this.loadCategory(categoryTree, categories, selectedCategory);\r\n    } else {\r\n      return null;\r\n    }\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { FileType, DeleteFileMutation, CreateFileMutation } from './record.gql';\r\nimport { NewAttachment, NewOrUpdatedAttachment } from './record.types';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport { KeyMetaService } from '../cryptography/key-meta.service';\r\nimport { FileService } from '../api/file.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class RecordAttachmentService {\r\n  constructor(\r\n    private fileService: FileService,\r\n    private lrApollo: LrApolloService,\r\n    private keyMetaService: KeyMetaService,\r\n    private keyGraph: KeyGraphService\r\n  ) {}\r\n\r\n  async downloadAttachment(\r\n    fileStateNodeId: string,\r\n    keyId: string\r\n  ): Promise<any> {\r\n    const encryptedFile = await this.fileService.downloadEncryptedFile(\r\n      fileStateNodeId\r\n    );\r\n\r\n    return await this.keyGraph.decryptFile(keyId, encryptedFile);\r\n  }\r\n\r\n  async uploadAttachments(\r\n    recordId: string,\r\n    attachments: NewOrUpdatedAttachment[]\r\n  ): Promise<string[]> {\r\n    const fileIds = await Promise.all(\r\n      (attachments || []).map(async (x) => {\r\n        if (x.fileId) {\r\n          if (x.isDeleted) {\r\n            await this.deleteAttachment(x.fileId);\r\n            return null;\r\n          } else {\r\n            return x.fileId;\r\n          }\r\n        } else {\r\n          return await this.addAttachment(recordId, x);\r\n        }\r\n      })\r\n    );\r\n    return fileIds.filter((x) => x);\r\n  }\r\n\r\n  private async addAttachment(\r\n    recordId: string,\r\n    attachment: NewAttachment\r\n  ): Promise<string> {\r\n    const secureContent = {\r\n      name: attachment.name,\r\n      fieldId: attachment.fieldId,\r\n      fileType: attachment.file.type,\r\n      fileSize: attachment.file.size,\r\n      lastModified: attachment.file.lastModified,\r\n    };\r\n    const fileContent = await this.fileService.loadFile(attachment.file);\r\n    const doubleWrappedContent = await this.keyMetaService.doubleWrapContent(\r\n      secureContent,\r\n      [recordId],\r\n      fileContent\r\n    );\r\n\r\n    const contentId = await this.fileService.uploadEncryptedFile({\r\n      encryptedContent: doubleWrappedContent.cipherFileContent,\r\n      fileName: attachment.name,\r\n    });\r\n\r\n    // Save file\r\n    const response = await this.lrApollo.mutate<any>({\r\n      mutation: CreateFileMutation,\r\n      variables: {\r\n        input: {\r\n          plainMeta: JSON.stringify({ fileType: FileType.RecordAttachment }),\r\n          wrappedStateKey: doubleWrappedContent.doubleWrappedKey,\r\n          cipherMeta: doubleWrappedContent.cipherMeta,\r\n          parentDirectories: doubleWrappedContent.wrappedKeys.map((x) => ({\r\n            directoryId: x.directoryId,\r\n            wrappingKeyId: x.wrappingKeyId,\r\n            wrappedFileKey: x.wrappedKey,\r\n          })),\r\n          contentResource: contentId,\r\n        },\r\n      },\r\n    });\r\n    return response.createFile.file.id;\r\n  }\r\n\r\n  async deleteAttachment(fileId: string): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: DeleteFileMutation,\r\n      variables: { fileId },\r\n    });\r\n  }\r\n}\r\n","import {\r\n  AccessLevel,\r\n  Category,\r\n  SharedAccess,\r\n} from '../category/category.types';\r\nimport {\r\n  RecordFieldType,\r\n  RecordTypeFieldOption,\r\n  RecordTypeSummary,\r\n} from '../record-type/record-type.types';\r\n\r\nexport type RecordFieldValue =\r\n  | string\r\n  | string[]\r\n  | RecordTypeFieldOption\r\n  | RecordTypeFieldOption[]\r\n  | RecordField[];\r\n\r\nexport class RecordField {\r\n  id?: string;\r\n  label: string;\r\n  type: RecordFieldType;\r\n\r\n  value?: RecordFieldValue;\r\n}\r\n\r\nexport class RecordAttachment {\r\n  fileId: string;\r\n  keyId: string;\r\n  fieldId?: string;\r\n  contentId: string;\r\n\r\n  name: string;\r\n  fileType: string;\r\n  fileSize: number;\r\n  lastModified: number | Date;\r\n}\r\n\r\nexport class LrRecord {\r\n  id: string;\r\n  // This is the key of the directory that represents the record\r\n  keyId: string;\r\n  // This is the key of the file contained in side the record that holds the record's fields.\r\n  updateKeyId: string;\r\n  updateId: string;\r\n\r\n  name: string;\r\n  categories?: Category[][];\r\n  fields?: RecordField[];\r\n  attachments?: RecordAttachment[];\r\n\r\n  recordType: RecordTypeSummary;\r\n  createdOn: string | Date;\r\n  lastModified: string | Date;\r\n  isArchived: boolean;\r\n  myAccessLevel: AccessLevel;\r\n  sharedAccess: SharedAccess[];\r\n}\r\n\r\nexport class NewAttachment {\r\n  fieldId?: string;\r\n  name: string;\r\n  file?: File;\r\n}\r\n\r\nexport class NewRecord {\r\n  name: string;\r\n  recordType: RecordTypeSummary;\r\n  categoryIds: string[];\r\n\r\n  fields?: RecordField[];\r\n  attachments?: NewAttachment[];\r\n}\r\n\r\nexport class NewOrUpdatedAttachment extends NewAttachment {\r\n  fileId?: string;\r\n  isDeleted?: boolean;\r\n}\r\n\r\nexport class UpdatedRecord {\r\n  name: string;\r\n  recordType: RecordTypeSummary;\r\n\r\n  fields?: RecordField[];\r\n  attachments?: NewOrUpdatedAttachment[];\r\n}\r\n","import { RecordAttachmentService } from './record-attachment.service';\r\nimport { Injectable } from '@angular/core';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport { CategoryFilter } from '../category/category.gql';\r\nimport { KeyMetaService } from '../cryptography/key-meta.service';\r\nimport { DirectoryType } from './../category/category.gql';\r\nimport {\r\n  LrRecord,\r\n  NewRecord,\r\n  UpdatedRecord,\r\n  RecordAttachment,\r\n} from './record.types';\r\nimport {\r\n  CreateRecordContainerMutation,\r\n  CreateRecordMutation,\r\n  DeleteRecordMutation,\r\n  FileType,\r\n  GetRecordQuery,\r\n  RecordAttachmentFilter,\r\n  RecordContentFilter,\r\n  UpdateRecordContainerMutation,\r\n  UpdateRecordMutation,\r\n} from './record.gql';\r\nimport { Category, AccessLevel } from '../category/category.types';\r\nimport { CategoryService } from '../category/category.service';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class RecordService {\r\n  constructor(\r\n    private lrApollo: LrApolloService,\r\n    private keyMetaService: KeyMetaService,\r\n    private categoryService: CategoryService,\r\n    private recordAttachmentService: RecordAttachmentService\r\n  ) {}\r\n\r\n  public async getRecord(recordId: string): Promise<LrRecord> {\r\n    const { record } = await this.lrApollo.query<any>({\r\n      query: GetRecordQuery(),\r\n      variables: {\r\n        id: recordId,\r\n        categoryFilter: CategoryFilter,\r\n        contentFilter: RecordContentFilter,\r\n        attachmentsFilter: RecordAttachmentFilter,\r\n      },\r\n    });\r\n    const contents = record.content.edges[0].node.childFile;\r\n    const { name, recordType, fields } =\r\n      (await this.keyMetaService.decryptMeta(contents.currentVersion.state)) ||\r\n      {};\r\n    const categories = await Promise.all<Category[]>(\r\n      record.parentCategories.edges.map(async (x: any) => [\r\n        ...(await this.categoryService.mapParentCategories(\r\n          x.node.parentDirectory\r\n        )),\r\n        await this.categoryService.mapCategory(x.node.parentDirectory),\r\n      ])\r\n    );\r\n    const attachments = await this.mapAttachments(record.attachments.edges);\r\n    const isOwner =\r\n      record.accessRoles &&\r\n      record.accessRoles.some((x) => x.role === AccessLevel.Owner);\r\n\r\n    return {\r\n      id: record.id,\r\n      keyId: record.keyId,\r\n      updateKeyId: contents.keyId,\r\n      updateId: contents.id,\r\n      name,\r\n      recordType,\r\n      fields,\r\n      categories,\r\n      attachments,\r\n      myAccessLevel: isOwner ? AccessLevel.Owner : record.accessRoles[0].role,\r\n      sharedAccess: isOwner\r\n        ? record.accessRoles\r\n            .filter((x) => x.role !== AccessLevel.Owner)\r\n            .map((x) => ({\r\n              trustedPartyId: x.trustedParty && x.trustedParty.id,\r\n              accessLevel: x.role,\r\n              isInherited: x.method === 'inherited',\r\n              inheritedFrom: x.inheritedFrom && x.inheritedFrom.id,\r\n            }))\r\n        : [],\r\n      isArchived: !!record.archived,\r\n      createdOn: record.created,\r\n      lastModified:\r\n        new Date(record.modified) >\r\n        new Date(contents.currentVersion.state.modified)\r\n          ? record.modified\r\n          : contents.currentVersion.state.modified,\r\n    };\r\n  }\r\n\r\n  private async mapAttachments(\r\n    attachments: any[]\r\n  ): Promise<RecordAttachment[]> {\r\n    return await Promise.all<RecordAttachment>(\r\n      attachments\r\n        .map((x) => x.node.childFile)\r\n        .map(async (x: any) => {\r\n          const { name, fieldId, fileType, fileSize, lastModified } =\r\n            (await this.keyMetaService.decryptMeta(x.currentVersion.state)) ||\r\n            {};\r\n\r\n          return {\r\n            fileId: x.id,\r\n            keyId: x.currentVersion.state.keyId,\r\n            contentId: x.currentVersion.state.id,\r\n            fieldId,\r\n            name,\r\n            fileType,\r\n            fileSize,\r\n            lastModified,\r\n          };\r\n        })\r\n    );\r\n  }\r\n\r\n  public async createRecord(\r\n    newRecord: NewRecord\r\n  ): Promise<{ recordId: string; attachmentError?: Error }> {\r\n    // Create directory that holds the record\r\n    const wrappedContent = await this.keyMetaService.wrapContent(\r\n      null,\r\n      newRecord.categoryIds\r\n    );\r\n    const response = await this.lrApollo.mutate<any>({\r\n      mutation: CreateRecordContainerMutation,\r\n      variables: {\r\n        plainMeta: JSON.stringify({\r\n          directoryType: DirectoryType.Record,\r\n          isHidden: false,\r\n        }),\r\n        parentDirectories: wrappedContent.wrappedKeys,\r\n        parentRootDirectory: wrappedContent.rootKey,\r\n      },\r\n    });\r\n    const recordId = response.new.category.id;\r\n    const secureContent = {\r\n      name: newRecord.name,\r\n      recordType: newRecord.recordType,\r\n      fields: newRecord.fields,\r\n    };\r\n    const doubleWrappedContent = await this.keyMetaService.doubleWrapContent(\r\n      secureContent,\r\n      [recordId]\r\n    );\r\n\r\n    // Create the file that holds the record contents\r\n    await this.lrApollo.mutate({\r\n      mutation: CreateRecordMutation,\r\n      variables: {\r\n        input: {\r\n          plainMeta: JSON.stringify({ fileType: FileType.RecordContent }),\r\n          wrappedStateKey: doubleWrappedContent.doubleWrappedKey,\r\n          cipherMeta: doubleWrappedContent.cipherMeta,\r\n          parentDirectories: doubleWrappedContent.wrappedKeys.map((x) => ({\r\n            directoryId: x.directoryId,\r\n            wrappingKeyId: x.wrappingKeyId,\r\n            wrappedFileKey: x.wrappedKey,\r\n          })),\r\n        },\r\n      },\r\n    });\r\n\r\n    try {\r\n      await this.recordAttachmentService.uploadAttachments(\r\n        recordId,\r\n        newRecord.attachments\r\n      );\r\n    } catch (e) {\r\n      console.error(e);\r\n      return { recordId, attachmentError: e };\r\n    }\r\n    return { recordId };\r\n  }\r\n\r\n  public async updateRecord(\r\n    recordId: string,\r\n    updateId: string,\r\n    updateKeyId: string,\r\n    updatedRecord: UpdatedRecord\r\n  ): Promise<{ recordId: string; attachmentError?: Error }> {\r\n    const secureContent = {\r\n      name: updatedRecord.name,\r\n      recordType: updatedRecord.recordType,\r\n      fields: updatedRecord.fields,\r\n    };\r\n    const reWrappedContent = await this.keyMetaService.reWrapContent(\r\n      updateKeyId,\r\n      secureContent\r\n    );\r\n\r\n    await this.lrApollo.mutate({\r\n      mutation: UpdateRecordMutation,\r\n      variables: {\r\n        input: {\r\n          fileId: updateId,\r\n          plainMeta: JSON.stringify({ fileType: FileType.RecordContent }),\r\n          wrappedStateKey: reWrappedContent.doubleWrappedKey,\r\n          cipherMeta: reWrappedContent.cipherMeta,\r\n        },\r\n      },\r\n    });\r\n\r\n    try {\r\n      await this.recordAttachmentService.uploadAttachments(\r\n        recordId,\r\n        updatedRecord.attachments\r\n      );\r\n    } catch (e) {\r\n      console.error(e);\r\n      return { recordId, attachmentError: e };\r\n    }\r\n    return { recordId };\r\n  }\r\n\r\n  public async archiveRecord(recordId: string): Promise<void> {\r\n    // All content of the record should also be archived, hence, recursive=true\r\n    return this.categoryService.archiveDirectory(recordId, true);\r\n  }\r\n\r\n  public async unarchiveRecord(recordId: string): Promise<void> {\r\n    // All content of the record should also be unarchived, hence, recursive=true\r\n    return this.categoryService.unarchiveDirectory(recordId, true);\r\n  }\r\n\r\n  public async deleteRecord(recordId: string): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: DeleteRecordMutation,\r\n      variables: { recordId },\r\n    });\r\n  }\r\n}\r\n","export enum RecordFieldType {\r\n  Text = 'text',\r\n  Email = 'email',\r\n  Url = 'url',\r\n  Phone = 'phone',\r\n  Date = 'date',\r\n  Password = 'password',\r\n  TextArea = 'textArea',\r\n  Select = 'select',\r\n  SingleChoice = 'singleChoice',\r\n  MultiChoice = 'multiChoice',\r\n  File = 'file',\r\n  MultiFile = 'multiFile',\r\n  Record = 'record',\r\n  MultiRecord = 'multiRecord',\r\n  Group = 'group',\r\n  Custom = 'custom',\r\n}\r\n\r\nexport class RecordType {\r\n  id: string;\r\n  version: number;\r\n  name: string;\r\n  tags: string[];\r\n\r\n  allowAttachments: boolean;\r\n  allowCustomFields: boolean;\r\n\r\n  fields: RecordTypeField[];\r\n  categories: string[][];\r\n  categoryNames: string[][];\r\n}\r\n\r\nexport class RecordTypeFieldOption {\r\n  name: string;\r\n\r\n  categories?: string[][];\r\n}\r\n\r\nexport class RecordTypeField {\r\n  id: string;\r\n  label: string;\r\n  type: RecordFieldType;\r\n  placeholder?: string;\r\n  hint?: string;\r\n  isMandatory?: boolean;\r\n\r\n  options?: RecordTypeFieldOption[];\r\n  extensions?: string;\r\n  recordTypeIds?: string[];\r\n  fields?: RecordTypeField[];\r\n}\r\n\r\nexport class RecordTypeSummary {\r\n  id: string;\r\n  version: number;\r\n  name: string;\r\n}\r\n","import { HttpClient } from '@angular/common/http';\r\nimport { Injectable } from '@angular/core';\r\nimport { Category, DefaultCategory } from '../category/category.types';\r\nimport { RecordType } from './record-type.types';\r\n\r\nconst arraysEqual = (a: string[], b: string[]) => {\r\n  if (a === b) return true;\r\n  if (a == null || b == null) return false;\r\n  if (a.length !== b.length) return false;\r\n\r\n  for (let i = 0; i < a.length; ++i) {\r\n    if (a[i] !== b[i]) return false;\r\n  }\r\n  return true;\r\n};\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class RecordTypeService {\r\n  private recordTypes: RecordType[];\r\n  private categories: DefaultCategory[];\r\n\r\n  constructor(private http: HttpClient) {}\r\n\r\n  public async getRecordTypes(): Promise<RecordType[]> {\r\n    if (!this.recordTypes) {\r\n      this.recordTypes = await this.http\r\n        .get<RecordType[]>('/assets/meta/record-types.json')\r\n        .toPromise();\r\n    }\r\n    if (!this.categories) {\r\n      this.categories = await this.http\r\n        .get<DefaultCategory[]>('/assets/meta/categories.json')\r\n        .toPromise();\r\n    }\r\n\r\n    const subCategories = this.categories\r\n      .map((cat) => cat.subCategories)\r\n      .reduce((acc, next) => [...acc, ...next], []);\r\n\r\n    const recordTypesWithCategories = this.recordTypes.map((recordType) => ({\r\n      ...recordType,\r\n      categoryNames: recordType.categories.map((cat) => {\r\n        return cat.map((categoryCode) => {\r\n          const subCat = subCategories.find((c) => c.code === categoryCode);\r\n          if (subCat) {\r\n            return subCat.name;\r\n          } else {\r\n            return this.categories.find((c) => c.code === categoryCode).name;\r\n          }\r\n        });\r\n      }),\r\n    }));\r\n    return Promise.resolve(recordTypesWithCategories);\r\n  }\r\n\r\n  public async getRecordType(recordTypeId: string): Promise<RecordType> {\r\n    return (await this.getRecordTypes()).find((x) => x.id === recordTypeId);\r\n  }\r\n\r\n  public async getRecordTypesForCategory(\r\n    categoryTree: string[]\r\n  ): Promise<RecordType[]> {\r\n    const recordTypes = await this.getRecordTypes();\r\n\r\n    return recordTypes.filter((x) =>\r\n      x.categories.some((y) => arraysEqual(y, categoryTree))\r\n    );\r\n  }\r\n}\r\n","import {\r\n  DecryptedOtk,\r\n  PreparedPermissions,\r\n  UserSharedKey,\r\n} from '../api/key-exchange.types';\r\nimport { KeyExchangeMessage } from './../api/key-exchange.types';\r\nimport { AccessLevel } from './../category/category.types';\r\nimport { TrustedPartyDetails } from './../users/profile.types';\r\nimport { FeatureAction } from '../auth/auth.types';\r\n\r\nexport class TrustedPartyRole {\r\n  id: string;\r\n  name: string;\r\n  roleType: TrustedPartyRoleType;\r\n  categories: {\r\n    category: string[];\r\n    accessLevel: AccessLevel;\r\n  }[];\r\n}\r\n\r\nexport enum TrustedPartyRoleType {\r\n  General = 'general',\r\n  Scenario = 'scenario',\r\n}\r\n\r\nexport enum TrustedPartyType {\r\n  User = 'user',\r\n  Organisation = 'organisation',\r\n}\r\n\r\nexport enum TrustedPartyInviteStatus {\r\n  Invited = 'IN_PROGRESS',\r\n  Cancelled = 'CANCELLED',\r\n  Declined = 'DECLINED',\r\n  Completed = 'COMPLETED',\r\n}\r\n\r\nexport class TrustedParties {\r\n  parties: TrustedParty[];\r\n  invites: TrustedPartyInvite[];\r\n  sentInvites: TrustedPartyInvite[];\r\n}\r\n\r\nexport class SharedTrustedPartyDetails extends TrustedPartyDetails {\r\n  id: string;\r\n  ownedKeyId: string;\r\n  sharedKeyId: string;\r\n}\r\n\r\nexport class TrustedPartyInvite {\r\n  id: string;\r\n  type: TrustedPartyType;\r\n  status: TrustedPartyInviteStatus;\r\n  token: string;\r\n  tokenExpiry: string | Date;\r\n  isExpired: boolean;\r\n  isSender: boolean;\r\n  actionRequired: boolean;\r\n  name: string;\r\n  email: string;\r\n\r\n  details?: TrustedPartyDetails;\r\n  message?: KeyExchangeMessage;\r\n  mySharedDetails?: TrustedPartyDetails;\r\n  mySharedMessage?: KeyExchangeMessage;\r\n\r\n  rootKeyCipher: string;\r\n  pbkCipher: string;\r\n  decryptedOtk: DecryptedOtk;\r\n}\r\n\r\nexport class TPFeatures {\r\n  sharedVault: SharedVaultFeature;\r\n}\r\n\r\nexport class SharedVaultFeature {\r\n  hasAccess: boolean;\r\n}\r\n\r\nexport class TrustedParty {\r\n  id: string;\r\n  type: TrustedPartyType;\r\n  name: string;\r\n\r\n  hasScenarios: boolean;\r\n  hasSharedVault: boolean;\r\n  details: TrustedPartyDetails;\r\n  mySharedDetails: SharedTrustedPartyDetails;\r\n  userSharedKey: UserSharedKey;\r\n  username: string;\r\n  features: TPFeatures;\r\n}\r\n\r\nexport class FoundTrustedParty {\r\n  id: string;\r\n  email: string;\r\n  username: string;\r\n  isTrustedParty: boolean;\r\n  isMe: boolean;\r\n}\r\n\r\nexport class InviteTrustedParty {\r\n  party: { username?: string; email?: string; name?: string; message?: string };\r\n  permissions?: PreparedPermissions;\r\n  mySharedDetails: TrustedPartyDetails;\r\n}\r\n\r\nexport class AcceptTrustedPartyInvite {\r\n  inviteId: string;\r\n  inviteToken: string;\r\n  decryptedOtk: DecryptedOtk;\r\n  mySharedDetails: TrustedPartyDetails;\r\n}\r\n\r\nexport class ConfirmTrustedPartyInvite {\r\n  inviteId: string;\r\n  initiatorRootKeyCipher: string;\r\n  initiatorOneTimePbkCipher: string;\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport gql from 'graphql-tag';\r\nimport { Key } from '../cryptography/cryptography.types';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { SharedTrustedPartyDetails } from '../trusted-parties/trusted-party.types';\r\nimport { ContactCardName, TrustedPartyDetails } from '../users/profile.types';\r\nimport { User } from '../users/user.types';\r\nimport { KeyGraphField } from '../_common/queries.gql';\r\nimport { LrApolloService } from './lr-apollo.service';\r\n\r\nexport const SharedContactCardFields = `\r\n  id\r\n  owner {\r\n    id\r\n    username\r\n  }\r\n  ownerKey {\r\n    id\r\n  }\r\n  ownerCipherData\r\n  receiver {\r\n    id\r\n    username\r\n  }\r\n  receiverKey {\r\n    id\r\n  }\r\n  receiverCipherData\r\n  sharedKey {\r\n    id\r\n  }\r\n  sharedCipherData\r\n  sharedCipherDataSig\r\n  sharedCipherDataSigPxk {\r\n    id\r\n  }\r\n`;\r\n\r\nconst UpdateOwnedContactCard = gql`\r\nmutation UpdateOwnedContactCard(\r\n  $input: UpdateOwnedContactCardInput!\r\n) {\r\n  updateOwnedContactCard(\r\n    input: $input\r\n  ) {\r\n    ownedContactCard {\r\n      ${SharedContactCardFields}\r\n    }\r\n  }\r\n}`;\r\n\r\ninterface UpdateOwnedContactCard {\r\n  updateOwnedContactCard: {\r\n    ownedContactCard: SharedContactCard;\r\n  };\r\n}\r\n\r\nexport interface SharedContactCard {\r\n  id: string;\r\n  owner: User;\r\n  ownerKey: Key;\r\n  ownerCipherData: string;\r\n  receiver: User;\r\n  receiverKey: Key;\r\n  receiverCipherData: string;\r\n  sharedKey: Key;\r\n  sharedCipherData: string;\r\n  // Decrypted\r\n  plainOwnerCipherDataJson: any;\r\n  plainReceiverCipherDataJson: any;\r\n  plainSharedCipherDataJson: any;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class SharedContactCardService {\r\n  constructor(\r\n    private keyService: KeyService,\r\n    private lrApollo: LrApolloService,\r\n    private keyGraph: KeyGraphService,\r\n    private encryptionService: EncryptionService\r\n  ) {}\r\n\r\n  async decryptSharedTrustedPartyDetails(\r\n    cc: SharedContactCard\r\n  ): Promise<SharedTrustedPartyDetails> {\r\n    const details = await this.decryptTrustedPartyDetails(cc);\r\n\r\n    return {\r\n      id: cc.id,\r\n      ownedKeyId: cc.ownerKey.id,\r\n      sharedKeyId: cc.sharedKey.id,\r\n      ...details,\r\n    };\r\n  }\r\n\r\n  async decryptTrustedPartyDetails(\r\n    cc: SharedContactCard\r\n  ): Promise<TrustedPartyDetails> {\r\n    if (cc && cc.sharedKey && cc.sharedCipherData) {\r\n      try {\r\n        return await this.encryptionService.decrypt(\r\n          await this.keyGraph.getJwkKey(cc.sharedKey.id),\r\n          cc.sharedCipherData\r\n        );\r\n      } catch (e) {\r\n        console.error('Cannot decrypt trusted party details', e);\r\n      }\r\n    }\r\n    return null;\r\n  }\r\n\r\n  async updateMySharedContactCard(\r\n    id: string,\r\n    ownedKeyId: string,\r\n    sharedKeyId: string,\r\n    contactCard: TrustedPartyDetails\r\n  ): Promise<void> {\r\n    const ownerKey = await this.keyGraph.getKey(ownedKeyId);\r\n    const sharedKey = await this.keyGraph.getKey(sharedKeyId);\r\n    const sigPxk = await this.keyService.getCurrentSigPxk();\r\n\r\n    const sharedCipherData = await this.encryptionService.encrypt(\r\n      sharedKey.jwk,\r\n      contactCard\r\n    );\r\n    const sharedCipherDataSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, sharedCipherData)\r\n    );\r\n\r\n    const ownerPlainData = {\r\n      name: new ContactCardName(contactCard.name),\r\n    };\r\n    const ownerPlainDataSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, ownerPlainData)\r\n    );\r\n\r\n    await this.lrApollo.mutate<UpdateOwnedContactCard>({\r\n      mutation: UpdateOwnedContactCard,\r\n      variables: {\r\n        input: {\r\n          id,\r\n          ownerCipherData: '',\r\n          ownerKeyId: ownerKey.id,\r\n          sharedCipherDataSig,\r\n          sharedKeyId: sharedKey.id,\r\n          sigPxkId: sigPxk.id,\r\n          ownerPlainDataSig,\r\n        },\r\n      },\r\n    });\r\n  }\r\n}\r\n","import gql from 'graphql-tag';\r\nimport { KeyGraphField } from '../_common/queries.gql';\r\nimport {\r\n  KeyExchangeFields,\r\n  UserSharedKeyFields,\r\n} from '../api/key-exchange.gql';\r\nimport { SharedContactCardFields } from '../api/shared-contact-card.service';\r\n\r\nexport const TrustedPartyProperties = `\r\n  id\r\n  user {\r\n    id\r\n    username\r\n  }\r\n  other{\r\n    id\r\n    username,\r\n    features {\r\n      shareVault\r\n    }\r\n  }\r\n  sharedContactCard {\r\n    ${SharedContactCardFields}\r\n  }\r\n  myContactCard {\r\n    ${SharedContactCardFields}\r\n  }\r\n  sharedScenarios {\r\n    edges {\r\n      node {\r\n        id\r\n      }\r\n    }\r\n  }\r\n  sharedItems {\r\n    directories {\r\n      edges {\r\n        node {\r\n          id\r\n        }\r\n      }\r\n    }\r\n  }\r\n  currentUserSharedKey {\r\n    userSharedKey {\r\n      keyExchange {\r\n        ${KeyExchangeFields}\r\n      }\r\n      ${UserSharedKeyFields}\r\n    }\r\n  }`;\r\n\r\nexport const GetTrustedPartiesQuery = gql`\r\nquery GetTrustedPartiesQuery {\r\n  tps {\r\n    edges {\r\n      node {\r\n        ${TrustedPartyProperties}\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n}`;\r\n\r\nexport const GetAllTrustedPartiesQuery = gql`\r\nquery GetAllTrustedPartiesQuery($userId: ID, $isExpired: Boolean, $inviteState: String, $sentInviteState: String) {\r\n  tps {\r\n    edges {\r\n      node {\r\n        ${TrustedPartyProperties}\r\n      }\r\n    }\r\n  }\r\n  invites: keyExchanges(\r\n    responder: $userId\r\n    isExpired: $isExpired\r\n    state: $inviteState\r\n    orderBy: \"state,-created\"\r\n  ) {\r\n    edges {\r\n      node {\r\n        ${KeyExchangeFields}\r\n      }\r\n    }\r\n  }\r\n  sentInvites: keyExchanges(\r\n    initiator: $userId\r\n    isExpired: $isExpired\r\n    state: $sentInviteState\r\n    orderBy: \"state,-created\"\r\n  ) {\r\n    edges {\r\n      node {\r\n        ${KeyExchangeFields}\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n}`;\r\n\r\nexport const GetTrustedPartyQuery = gql`\r\nquery GetTrustedPartyQuery($partyId: LrRelayIdInput!) {\r\n  tp(id: $partyId) {\r\n    ${TrustedPartyProperties}\r\n  }\r\n  ${KeyGraphField}\r\n}`;\r\n\r\nexport const DeclineTrustedPartyInvitationMutation = gql`\r\n  mutation DeclineKeyExchange($input: DeclineKeyExchangeInput!) {\r\n    declineKeyExchange(input: $input) {\r\n      keyExchange {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const CancelTrustedPartyInvitationMutation = gql`\r\n  mutation CancelKeyExchange($input: CancelKeyExchangeInput!) {\r\n    cancelKeyExchange(input: $input) {\r\n      keyExchange {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteTrustedPartyMutation = gql`\r\n  mutation DeleteTpMutation($input: DeleteTpInput!) {\r\n    deleteTp(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport const ShareCategoryMutation = gql`\r\n  mutation ShareDirectory($input: ShareDirectoryInput!) {\r\n    shareDirectory(input: $input) {\r\n      tpDirectory {\r\n        item {\r\n          plainMeta\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UnshareCategoryMutation = gql`\r\n  mutation UnshareDirectory($input: UnshareDirectoryInput!) {\r\n    unshareDirectory(input: $input) {\r\n      tpDirectory {\r\n        item {\r\n          plainMeta\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n","import { HttpClient } from '@angular/common/http';\r\nimport { Injectable } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport { materialize } from 'rxjs/operators';\r\nimport { KeyExchangeService } from '../api/key-exchange.service';\r\nimport {\r\n  DecryptedKeyExchange,\r\n  RespondOtkInput,\r\n} from '../api/key-exchange.types';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport { SharedContactCardService } from '../api/shared-contact-card.service';\r\nimport { LifeReadyAuthService } from '../auth/life-ready-auth.service';\r\nimport { AccessLevel } from '../category/category.types';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { UserService } from '../users/user.service';\r\nimport { ContactCardName } from '../users/profile.types';\r\nimport {\r\n  CancelTrustedPartyInvitationMutation,\r\n  DeclineTrustedPartyInvitationMutation,\r\n  DeleteTrustedPartyMutation,\r\n  GetAllTrustedPartiesQuery,\r\n  GetTrustedPartiesQuery,\r\n  GetTrustedPartyQuery,\r\n  ShareCategoryMutation,\r\n  UnshareCategoryMutation,\r\n} from './trusted-party.gql';\r\nimport {\r\n  AcceptTrustedPartyInvite,\r\n  ConfirmTrustedPartyInvite,\r\n  FoundTrustedParty,\r\n  InviteTrustedParty,\r\n  TrustedParties,\r\n  TrustedParty,\r\n  TrustedPartyInvite,\r\n  TrustedPartyInviteStatus,\r\n  TrustedPartyRole,\r\n  TrustedPartyType,\r\n  TrustedPartyRoleType,\r\n} from './trusted-party.types';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class TrustedPartyService {\r\n  private trustedPartyRoles: TrustedPartyRole[];\r\n\r\n  constructor(\r\n    private http: HttpClient,\r\n    private lrApollo: LrApolloService,\r\n    private sharedContactCardService: SharedContactCardService,\r\n    private userService: UserService,\r\n    private authService: LifeReadyAuthService,\r\n    private keyExchangeService: KeyExchangeService,\r\n    private keyGraphService: KeyGraphService,\r\n    private keyService: KeyService,\r\n    private keyFactory: KeyFactoryService,\r\n    private encryptionService: EncryptionService\r\n  ) {}\r\n\r\n  public async getTrustedParties(): Promise<TrustedParty[]> {\r\n    const { tps } = await this.lrApollo.query<any>({\r\n      query: GetTrustedPartiesQuery,\r\n    });\r\n    return await Promise.all(\r\n      tps.edges.map((x) => this.mapTrustedParty(x.node))\r\n    );\r\n  }\r\n\r\n  public async getAllTrustedParties(): Promise<TrustedParties> {\r\n    const user = await this.authService.getUser();\r\n    const { tps, invites, sentInvites } = await this.lrApollo.query<any>({\r\n      query: GetAllTrustedPartiesQuery,\r\n      variables: {\r\n        userId: user.id,\r\n        isExpired: false,\r\n      },\r\n    });\r\n\r\n    return {\r\n      parties: (\r\n        await Promise.all<TrustedParty>(\r\n          tps.edges.map((x) => this.mapTrustedParty(x.node))\r\n        )\r\n      ).filter((x) => x),\r\n      invites: (\r\n        await Promise.all<TrustedPartyInvite>(\r\n          invites.edges.map(async (x) =>\r\n            this.mapInvite(\r\n              await this.keyExchangeService.decryptKeyExchange(x.node)\r\n            )\r\n          )\r\n        )\r\n      )\r\n        .filter((x) => x.status !== TrustedPartyInviteStatus.Completed)\r\n        .filter(\r\n          (x) =>\r\n            x.status !== TrustedPartyInviteStatus.Invited || x.actionRequired\r\n        ),\r\n      sentInvites: (\r\n        await Promise.all<TrustedPartyInvite>(\r\n          sentInvites.edges.map(async (x) =>\r\n            this.mapInvite(\r\n              await this.keyExchangeService.decryptKeyExchange(x.node)\r\n            )\r\n          )\r\n        )\r\n      ).filter((x) => x.status !== TrustedPartyInviteStatus.Completed),\r\n    };\r\n  }\r\n\r\n  public async getTrustedParty(partyId: string): Promise<TrustedParty> {\r\n    const { tp } = await this.lrApollo.query<any>({\r\n      query: GetTrustedPartyQuery,\r\n      variables: { partyId },\r\n    });\r\n    return await this.mapTrustedParty(tp);\r\n  }\r\n\r\n  public async getTrustedPartyRoles(\r\n    roleType: TrustedPartyRoleType = TrustedPartyRoleType.General\r\n  ): Promise<TrustedPartyRole[]> {\r\n    if (!this.trustedPartyRoles) {\r\n      this.trustedPartyRoles = await this.http\r\n        .get<TrustedPartyRole[]>('/assets/meta/trusted-party-roles.json')\r\n        .toPromise();\r\n    }\r\n    return Promise.resolve(\r\n      this.trustedPartyRoles.filter((x) => x.roleType === roleType)\r\n    );\r\n  }\r\n\r\n  public async findByEmail(email: string): Promise<FoundTrustedParty> {\r\n    try {\r\n      const user = await this.userService.getUserByEmail(email);\r\n\r\n      return user\r\n        ? {\r\n            id: user.id,\r\n            email,\r\n            username: user.username,\r\n            isTrustedParty: user.haveTp,\r\n            isMe: user.isCurrentUser,\r\n          }\r\n        : null;\r\n    } catch (e) {\r\n      return null;\r\n    }\r\n  }\r\n\r\n  public async inviteTrustedParty(invite: InviteTrustedParty): Promise<void> {\r\n    const params = {\r\n      responderUsername: invite.party.username,\r\n      email: invite.party.email,\r\n      message: {\r\n        name: invite.party.name,\r\n        email: invite.party.email,\r\n        message: invite.party.message,\r\n        permissions: invite.permissions,\r\n      },\r\n      contactCard: {\r\n        plainOwnerCipherDataJson: null,\r\n        plainSharedCipherDataJson: invite.mySharedDetails,\r\n        ownerPlainData: {\r\n          name: new ContactCardName(invite.mySharedDetails.name),\r\n        },\r\n      },\r\n    };\r\n    await this.keyExchangeService.initiateOtk(params);\r\n  }\r\n\r\n  public async cancelInvitation(inviteId: string): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: CancelTrustedPartyInvitationMutation,\r\n      variables: {\r\n        input: {\r\n          id: inviteId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async getInvitation(\r\n    inviteId: string,\r\n    inviteToken: string,\r\n    key: string\r\n  ): Promise<TrustedPartyInvite> {\r\n    const exchange = await this.keyExchangeService.getKeyExchange(inviteId, {\r\n      token: inviteToken,\r\n      otKeyK: key,\r\n    });\r\n\r\n    return this.mapInvite(exchange);\r\n  }\r\n\r\n  public async acceptInvitation(\r\n    invite: AcceptTrustedPartyInvite\r\n  ): Promise<string> {\r\n    const params: RespondOtkInput = {\r\n      id: invite.inviteId,\r\n      token: invite.inviteToken,\r\n      decryptedOtk: invite.decryptedOtk,\r\n      initiatorContactCard: null,\r\n      responderContactCard: {\r\n        plainOwnerCipherDataJson: null,\r\n        plainSharedCipherDataJson: invite.mySharedDetails,\r\n        ownerPlainData: {\r\n          name: new ContactCardName(invite.mySharedDetails.name),\r\n        },\r\n      },\r\n    };\r\n\r\n    const { tp } = await this.keyExchangeService.respondOtk(params);\r\n\r\n    return tp.id;\r\n  }\r\n\r\n  public async declineInvitation(\r\n    inviteId: string,\r\n    inviteToken: string\r\n  ): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: DeclineTrustedPartyInvitationMutation,\r\n      variables: {\r\n        input: {\r\n          id: inviteId,\r\n          token: inviteToken,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async confirmInvitation(\r\n    confirm: ConfirmTrustedPartyInvite\r\n  ): Promise<string> {\r\n    const { tp } = await this.keyExchangeService.completeOtk(\r\n      confirm.inviteId,\r\n      confirm.initiatorRootKeyCipher,\r\n      confirm.initiatorOneTimePbkCipher,\r\n      null\r\n    );\r\n    return tp.id;\r\n  }\r\n\r\n  public async removeTrustedParty(partyId: string): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: DeleteTrustedPartyMutation,\r\n      variables: {\r\n        input: {\r\n          id: partyId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public setCategoryAccessLevel(\r\n    categoryId: string,\r\n    keyId: string,\r\n    trustedParty: TrustedParty,\r\n    accessLevel?: AccessLevel\r\n  ): Promise<void> {\r\n    return accessLevel\r\n      ? this.shareDirectory(categoryId, keyId, trustedParty, accessLevel)\r\n      : this.unshareDirectory(categoryId, trustedParty.id);\r\n  }\r\n\r\n  public setRecordAccessLevel(\r\n    recordId: string,\r\n    keyId: string,\r\n    trustedParty: TrustedParty,\r\n    accessLevel: AccessLevel\r\n  ): Promise<void> {\r\n    return accessLevel\r\n      ? this.shareDirectory(recordId, keyId, trustedParty, accessLevel)\r\n      : this.unshareDirectory(recordId, trustedParty.id);\r\n  }\r\n\r\n  private async shareDirectory(\r\n    directoryId: string,\r\n    keyId: string,\r\n    trustedParty: TrustedParty,\r\n    accessLevel: AccessLevel\r\n  ): Promise<void> {\r\n    const key = await this.keyGraphService.getKey(keyId);\r\n    const wrappingKey = await this.keyGraphService.getKey(\r\n      trustedParty.userSharedKey.sharedKey.id\r\n    );\r\n    const wrappedKey = await this.encryptionService.encrypt(\r\n      wrappingKey.jwk,\r\n      key.jwk.toJSON(true)\r\n    );\r\n\r\n    await this.lrApollo.mutate({\r\n      mutation: ShareCategoryMutation,\r\n      variables: {\r\n        input: {\r\n          id: directoryId,\r\n          tpId: trustedParty.id,\r\n          accessRole: accessLevel,\r\n          keyId: key.id,\r\n          wrappingKeyId: wrappingKey.id,\r\n          wrappedKey: JSON.stringify(wrappedKey),\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  private async unshareDirectory(\r\n    directoryId: string,\r\n    trustedPartyId: string\r\n  ): Promise<void> {\r\n    await this.lrApollo.mutate({\r\n      mutation: UnshareCategoryMutation,\r\n      variables: {\r\n        input: {\r\n          id: directoryId,\r\n          tpId: trustedPartyId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async mapTrustedParty(tp: any): Promise<TrustedParty> {\r\n    try {\r\n      const contactCard =\r\n        tp.sharedContactCard &&\r\n        (await this.sharedContactCardService.decryptTrustedPartyDetails(\r\n          tp.sharedContactCard\r\n        ));\r\n      const myContactCard =\r\n        tp.myContactCard &&\r\n        (await this.sharedContactCardService.decryptSharedTrustedPartyDetails(\r\n          tp.myContactCard\r\n        ));\r\n\r\n      return {\r\n        id: tp.id,\r\n        type: TrustedPartyType.User, // TODO: when partners\r\n        hasScenarios: !!tp.sharedScenarios.edges.length,\r\n        hasSharedVault: !!tp.sharedItems.directories.edges.length,\r\n        name: contactCard && contactCard.name && contactCard.name.name,\r\n        details: contactCard,\r\n        mySharedDetails: myContactCard,\r\n        userSharedKey: tp.currentUserSharedKey.userSharedKey,\r\n        username: tp.other.username,\r\n        features: {\r\n          sharedVault: {\r\n            hasAccess:\r\n              (tp.other.features?.shareVault || ['noaccess'])[0] === 'access',\r\n          },\r\n        },\r\n      };\r\n    } catch (e) {\r\n      console.error('Failed to decrypt Trusted Party.', e, tp);\r\n      return null;\r\n    }\r\n  }\r\n\r\n  private async mapInvite(\r\n    exchange: DecryptedKeyExchange\r\n  ): Promise<TrustedPartyInvite> {\r\n    const contactCard = exchange.contactCard;\r\n    const name = exchange.isInitiator\r\n      ? exchange.myMessage?.name\r\n      : contactCard && contactCard.name && contactCard.name.name;\r\n    const email = exchange.isInitiator\r\n      ? exchange.myMessage?.email\r\n      : (contactCard && contactCard.email) || exchange.responderEmailAddress;\r\n\r\n    return {\r\n      id: exchange.id,\r\n      type: TrustedPartyType.User, // todo when partners\r\n      status: (exchange.state as unknown) as TrustedPartyInviteStatus,\r\n      token: exchange.token,\r\n      tokenExpiry: exchange.tokenExpiryTime,\r\n      decryptedOtk: exchange.decryptedOtk,\r\n      name,\r\n      email,\r\n      isSender: exchange.isInitiator,\r\n      actionRequired: exchange.isInitiator\r\n        ? exchange.initiatorActionRequired\r\n        : exchange.responderActionRequired,\r\n      rootKeyCipher: exchange.initiatorRootKeyCipher,\r\n      pbkCipher: exchange.otk.initiatorOneTimePbkCipher,\r\n      isExpired: exchange.isExpired,\r\n      details: contactCard,\r\n      message: exchange.message,\r\n      mySharedDetails: exchange.myContactCard,\r\n      mySharedMessage: exchange.myMessage,\r\n    };\r\n  }\r\n}\r\n","import { PreparedPermissions } from '../api/key-exchange.types';\r\nimport { Key } from '../cryptography/cryptography.types';\r\nimport { SecretShare } from '../cryptography/slip39.service';\r\nimport { TrustedParty } from '../trusted-parties/trusted-party.types';\r\nimport { ApprovalGroup } from './approvals/scenario-approval.types';\r\nimport { Claimant } from './claimants/scenario-claimant.types';\r\nimport { Receiver } from './receivers/scenario-receiver.types';\r\n\r\n// Glossary\r\n// - Subject: the user that the scenario applies to\r\n// - Approver: the user that can approve a scenario\r\n// - Approver sub-assembly: a group of approvers that must reach quorum for the sub-assembly to be considered approved\r\n// - Approver assembly: a group of sub-assemblies that must reach quorum for the assembly to be considered approved\r\n// - Receiver: a user that will receive the released information\r\n// - Claimant: a user that can start the process of release of information\r\n\r\nexport enum ScenarioState {\r\n  // Can not be claimed when DISABLED. Scenarios can be created in this state, then\r\n  // set to ENABLED once setup is complete.\r\n  DISABLED = 'DISABLED',\r\n  // Can be claimed when ENABLED. It sits in this state until claimed.\r\n  ENABLED = 'ENABLED',\r\n  // Claimant has initiated a claim.\r\n  CLAIMED = 'CLAIMED',\r\n  // Approvers have approved this scenario\r\n  APPROVED = 'APPROVED',\r\n  REJECTED = 'REJECTED',\r\n}\r\n\r\nexport enum ScenarioClaimState {\r\n  Claimed = 'CLAIMED',\r\n  Approved = 'APPROVED',\r\n  Expired = 'EXPIRED',\r\n  Rejected = 'REJECTED',\r\n  Cancelled = 'CANCELLED',\r\n  Reset = 'RESET',\r\n}\r\n\r\nexport enum ApproverClaimState {\r\n  Claimed = 'CLAIMED',\r\n  Approved = 'APPROVED',\r\n  Rejected = 'REJECTED',\r\n}\r\n\r\nexport class NewScenario {\r\n  name: string;\r\n  event: string;\r\n  claimants: NewScenarioClaimant[];\r\n  approvalGroups: NewScenarioApprovalGroup[];\r\n  receivers: NewScenarioReceiver[];\r\n}\r\n\r\nexport class NewScenarioClaimant {\r\n  trustedPartyId: string;\r\n  trustedPartySharedKeyId: string;\r\n  message?: string;\r\n}\r\n\r\nexport class NewScenarioApprovalGroup {\r\n  name: string;\r\n  quorum: number;\r\n  singleReject: boolean;\r\n  approvers: NewScenarioApprover[];\r\n}\r\n\r\nexport class NewScenarioApprover {\r\n  trustedPartyId: string;\r\n  trustedPartySharedKeyId: string;\r\n  message?: string;\r\n}\r\n\r\nexport class NewScenarioReceiver {\r\n  trustedPartyId: string;\r\n  trustedPartySharedKeyId: string;\r\n  permissions: PreparedPermissions;\r\n  message?: string;\r\n}\r\n\r\nexport class UpdateScenario {\r\n  scenarioId: string;\r\n  keyId: string;\r\n  assemblyKeyId: string;\r\n  name: string;\r\n  event: string;\r\n  claimants: UpdatedScenarioClaimant[];\r\n  deletedClaimantIds: string[];\r\n  approvalGroups: UpdatedScenarioApprovalGroup[];\r\n  deletedGroupIds: string[];\r\n  receivers: UpdatedScenarioReceiver[];\r\n  deletedReceiverIds: string[];\r\n}\r\n\r\nexport class UpdatedScenarioClaimant {\r\n  claimantId?: string;\r\n  keyId?: string;\r\n  trustedPartyId: string;\r\n  trustedPartySharedKeyId: string;\r\n  message?: string;\r\n}\r\n\r\nexport class UpdatedScenarioApprovalGroup {\r\n  subAssemblyId?: string;\r\n  name: string;\r\n  quorum: number;\r\n  singleReject: boolean;\r\n  approvers: UpdatedScenarioApprover[];\r\n  deletedApproverIds: string[];\r\n}\r\n\r\nexport class UpdatedScenarioApprover {\r\n  approverId?: string;\r\n  keyId?: string;\r\n  trustedPartyId: string;\r\n  trustedPartySharedKeyId: string;\r\n  message?: string;\r\n}\r\n\r\nexport class UpdatedScenarioReceiver {\r\n  receiverId?: string;\r\n  keyId?: string;\r\n  trustedPartyId: string;\r\n  trustedPartySharedKeyId: string;\r\n  permissions: PreparedPermissions;\r\n  message?: string;\r\n}\r\n\r\nexport class ScenarioSummary {\r\n  id: string;\r\n  status: ScenarioState;\r\n  name: string;\r\n  event: string;\r\n  claimId?: string;\r\n  claimStatus?: ScenarioClaimState;\r\n  createdOn: string | Date;\r\n  lastModified: string | Date;\r\n}\r\n\r\nexport class ScenarioClaim {\r\n  id: string;\r\n  state: ScenarioClaimState;\r\n  triggeredBy: TrustedParty;\r\n  triggeredOn: string;\r\n  lastModified: string;\r\n  scenario: ScenarioSummary;\r\n}\r\n\r\nexport class SharedScenarioSummary {\r\n  id: string;\r\n  status: ScenarioState;\r\n  event: string;\r\n\r\n  trustedParty: TrustedParty;\r\n  claimStatus?: ScenarioClaimState;\r\n}\r\n\r\nexport class SharedScenario {\r\n  id: string;\r\n  status: ScenarioState;\r\n  event: string;\r\n\r\n  trustedParty: TrustedParty;\r\n  isClaimant: boolean;\r\n  claimantMessage?: string;\r\n  isApprover: boolean;\r\n  approverMessages?: string[];\r\n  isReceiver: boolean;\r\n  receiverMessage?: string;\r\n  receiverKeyId?: string;\r\n  receiverPbkId?: string;\r\n  receiverDirectories?: { id: string; wrappedItemKey: string }[];\r\n\r\n  claim?: SharedScenarioClaim;\r\n}\r\n\r\nexport interface SharedScenarioClaim {\r\n  id: string;\r\n  isClaimant: boolean;\r\n  status: ScenarioClaimState;\r\n  asApprovers?: SharedScenarioClaimApprover[];\r\n  asReceiver?: {\r\n    received: boolean;\r\n    ciphers: string[];\r\n  };\r\n}\r\n\r\nexport interface SharedScenarioClaimApprover {\r\n  approverId: string;\r\n  approverKey: string;\r\n  status: ApproverClaimState;\r\n  receivers: {\r\n    id: string;\r\n    pbkId: string;\r\n  }[];\r\n}\r\n\r\nexport interface Scenario {\r\n  id: string;\r\n  keyId: string;\r\n  assemblyKeyId: string;\r\n  assemblyQuorum: number;\r\n  status: ScenarioState;\r\n  name: string;\r\n  event: string;\r\n  claimants: Claimant[];\r\n  approverGroups: ApprovalGroup[];\r\n  receivers: Receiver[];\r\n  claim: {\r\n    id: string;\r\n    status: ScenarioClaimState;\r\n    claimant: Claimant;\r\n  };\r\n}\r\n\r\nexport interface CreateScenarioInput {\r\n  plainSubjectCipherData: object;\r\n}\r\n\r\nexport interface UpdateScenarioInput {\r\n  scenarioId: string;\r\n  keyId: string;\r\n  plainSubjectCipherData: object;\r\n}\r\n\r\nexport interface PartialAssemblyKey {\r\n  slip39: {\r\n    share: SecretShare;\r\n    // Mainly for debugging.\r\n    subAssembly: {\r\n      quorum: number;\r\n      size: number;\r\n    };\r\n  };\r\n  assemblyKeyParams: object;\r\n}\r\n\r\nexport interface SharedClaimReceiver {\r\n  id: string;\r\n  pbk: Key;\r\n}\r\n\r\nexport interface SharedClaimApprover {\r\n  receivers: {\r\n    id: string;\r\n    pbk: Key;\r\n  }[];\r\n}\r\n\r\nexport interface SharedClaimApproval {\r\n  receiverPbkCipher: string;\r\n  plainReceiverPbkCipher: {\r\n    partialAssemblyKey: PartialAssemblyKey;\r\n  };\r\n}\r\n\r\nexport interface SharedClaimReceiver {\r\n  received: boolean;\r\n  approvals: SharedClaimApproval[];\r\n}\r\n","import gql from 'graphql-tag';\r\nimport { KeyGraphField } from '../../_common/queries.gql';\r\nimport { TrustedPartyProperties } from '../../trusted-parties/trusted-party.gql';\r\n\r\nexport const ClaimantFields = `\r\nid\r\ntp {\r\n  ${TrustedPartyProperties}\r\n}\r\nsharedKey {\r\n  id\r\n}\r\nsharedCipherData\r\n`;\r\n\r\nexport const GetScenarioClaimantQuery = gql`\r\nquery GetScenarioClaimantQuery(\r\n  $id: LrRelayIdInput!\r\n) {\r\n  scenarioClaimant(id: $id) {\r\n    ${ClaimantFields}\r\n  }\r\n  ${KeyGraphField}\r\n}`;\r\n\r\nexport const AddScenarioClaimantMutation = gql`\r\n  mutation AddScenarioClaimantMutation($input: AddScenarioClaimantInput!) {\r\n    addScenarioClaimant(input: $input) {\r\n      claimant {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateScenarioClaimantMutation = gql`\r\n  mutation UpdateScenarioClaimantMutation(\r\n    $input: UpdateScenarioClaimantInput!\r\n  ) {\r\n    updateScenarioClaimant(input: $input) {\r\n      claimant {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteScenarioClaimantMutation = gql`\r\n  mutation DeleteScenarioClaimantMutation(\r\n    $input: DeleteScenarioClaimantInput!\r\n  ) {\r\n    deleteScenarioClaimant(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n","import gql from 'graphql-tag';\r\nimport { KeyGraphField } from '../../_common/queries.gql';\r\nimport { TrustedPartyProperties } from '../../trusted-parties/trusted-party.gql';\r\nimport { CategoryFields, AccessFields } from '../../category/category.gql';\r\n\r\nexport const ReceiverFields = `\r\n  id\r\n  tp {\r\n    ${TrustedPartyProperties}\r\n  }\r\n  pbk {\r\n    id\r\n  }\r\n  sharedKey {\r\n    id\r\n  }\r\n  sharedCipherData\r\n  categories: receiverDirectories(plainMeta: $categoryFilter, orderBy: \"created\") {\r\n    edges {\r\n      node {\r\n        id\r\n        sharedKey {\r\n          id\r\n        }\r\n        sharedCipherData\r\n        accessRole\r\n        wrappedItemKey\r\n        directory {\r\n          ${CategoryFields}\r\n        }\r\n      }\r\n    }\r\n  }\r\n  records: receiverDirectories(plainMeta: $recordFilter, orderBy: \"created\") {\r\n    edges {\r\n      node {\r\n        id\r\n        sharedKey {\r\n          id\r\n        }\r\n        sharedCipherData\r\n        accessRole\r\n        wrappedItemKey\r\n        directory {\r\n          id\r\n          keyId\r\n          archived\r\n          plainMeta\r\n          cipherMeta\r\n          created\r\n          modified\r\n          ${AccessFields}\r\n          content: childFileLinks(plainMeta: $contentFilter) {\r\n            edges {\r\n              node {\r\n                childFile {\r\n                  id\r\n                  archived\r\n                  currentVersion {\r\n                    state {\r\n                      keyId\r\n                      plainMeta\r\n                      cipherMeta\r\n                      created\r\n                      modified\r\n                    }\r\n                  }\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const GetScenarioReceiverQuery = gql`\r\nquery GetScenarioReceiverQuery(\r\n  $id: LrRelayIdInput!,\r\n  $categoryFilter: LrJSONFilter!,\r\n  $recordFilter: LrJSONFilter!,\r\n  $contentFilter: LrJSONFilter\r\n) {\r\n  scenarioReceiver(id: $id) {\r\n    ${ReceiverFields}\r\n  }\r\n  ${KeyGraphField}\r\n} `;\r\n\r\nexport const CreateScenarioReceiverMutation = gql`\r\n  mutation CreateScenarioReceiverMutation(\r\n    $input: CreateScenarioReceiverInput!\r\n  ) {\r\n    createScenarioReceiver(input: $input) {\r\n      receiver {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateScenarioReceiverMutation = gql`\r\n  mutation UpdateScenarioReceiverMutation(\r\n    $input: UpdateScenarioReceiverInput!\r\n  ) {\r\n    updateScenarioReceiver(input: $input) {\r\n      receiver {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteScenarioReceiverMutation = gql`\r\n  mutation DeleteScenarioReceiverMutation(\r\n    $input: DeleteScenarioReceiverInput!\r\n  ) {\r\n    deleteScenarioReceiver(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport const AddScenarioReceiverDirectoryMutation = gql`\r\n  mutation AddScenarioReceiverDirectoryMutation(\r\n    $input: AddScenarioReceiverDirectoryInput!\r\n  ) {\r\n    addScenarioReceiverDirectory(input: $input) {\r\n      receiverDirectory {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateScenarioReceiverDirectoryMutation = gql`\r\n  mutation UpdateScenarioReceiverDirectoryMutation(\r\n    $input: UpdateScenarioReceiverDirectoryInput!\r\n  ) {\r\n    updateScenarioReceiverDirectory(input: $input) {\r\n      receiverDirectory {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteScenarioReceiverDirectoryMutation = gql`\r\n  mutation DeleteScenarioReceiverDirectoryMutation(\r\n    $input: DeleteScenarioReceiverDirectoryInput!\r\n  ) {\r\n    deleteScenarioReceiverDirectory(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n","import gql from 'graphql-tag';\r\nimport { TrustedPartyProperties } from '../../trusted-parties/trusted-party.gql';\r\nimport { KeyGraphField, FetchKeyGraphField } from '../../_common/queries.gql';\r\n\r\nconst ApproverFields = `\r\nid\r\ntp {\r\n  ${TrustedPartyProperties}\r\n}\r\nsharedKey {\r\n  id\r\n}\r\nsharedCipherData\r\nsharedCipherApprovalData\r\nsharedCipherPartialAssemblyKey\r\n`;\r\n\r\nexport const SubAssemblyFields = `\r\nid\r\nsingleReject\r\nquorum\r\nassemblyKey {\r\n  id\r\n}\r\nsubAssemblyCipherData\r\napproverCount\r\napprovers {\r\n  edges {\r\n    node {\r\n      ${ApproverFields}\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport const CreateScenarioApproverAssemblyMutation = gql`\r\nmutation CreateScenarioApproverAssemblyMutation(\r\n  $input: CreateScenarioApproverAssemblyInput!\r\n) {\r\n  createScenarioApproverAssembly(input: $input) {\r\n    scenario {\r\n      approverAssembly {\r\n        assemblyKey {\r\n          id\r\n        }\r\n      }\r\n    }\r\n  }\r\n  ${FetchKeyGraphField}\r\n}`;\r\n\r\nexport const UpdateScenarioApproverAssemblyMutation = gql`\r\n  mutation UpdateScenarioApproverAssemblyMutation(\r\n    $input: UpdateScenarioApproverAssemblyInput!\r\n  ) {\r\n    updateScenarioApproverAssembly(input: $input) {\r\n      scenario {\r\n        id\r\n      }\r\n      createdSubAssemblies {\r\n        id\r\n      }\r\n      createdApprovers {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteScenarioApproverAssemblyMutation = gql`\r\n  mutation DeleteScenarioApproverAssemblyMutation(\r\n    $input: DeleteScenarioApproverAssemblyInput!\r\n  ) {\r\n    deleteScenarioApproverAssembly(input: $input) {\r\n      scenario {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const GetScenarioApproverQuery = gql`\r\nquery GetScenarioApproverQuery(\r\n  $id: LrRelayIdInput!\r\n) {\r\n  scenarioApprover(id: $id) {\r\n    ${ApproverFields}\r\n  }\r\n  ${KeyGraphField}\r\n} `;\r\n\r\nexport const AddScenarioApproverMutation = gql`\r\n  mutation AddScenarioApproverMutation($input: AddScenarioApproverInput!) {\r\n    addScenarioApprover(input: $input) {\r\n      approver {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateScenarioApproverMutation = gql`\r\n  mutation UpdateScenarioApproverMutation(\r\n    $input: UpdateScenarioApproverInput!\r\n  ) {\r\n    updateScenarioApprover(input: $input) {\r\n      approver {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n","import gql from 'graphql-tag';\r\nimport { TrustedPartyProperties } from '../trusted-parties/trusted-party.gql';\r\nimport { KeyGraphField } from '../_common/queries.gql';\r\nimport { ClaimantFields } from './claimants/scenario-claimant.gql';\r\nimport { ReceiverFields } from './receivers/scenario-receiver.gql';\r\nimport { SubAssemblyFields } from './approvals/scenario-approval.gql';\r\nimport { gqlTyped } from '../_common/ast';\r\nimport { ID } from '../api/types';\r\n\r\nconst ApproverFields = `\r\n  id\r\n  sharedKey {\r\n    id\r\n  }\r\n  sharedCipherData\r\n  sharedCipherPartialAssemblyKey\r\n`;\r\n\r\nconst SharedClaimFields = `\r\nid\r\nstate\r\nisClaimant\r\nasClaimApprovers {\r\n  edges {\r\n    node {\r\n      state\r\n      approver {\r\n        ${ApproverFields}\r\n      }\r\n      receivers {\r\n        edges {\r\n          node {\r\n            id\r\n            pbk {\r\n              id\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n}\r\nasClaimReceiver {\r\n  received\r\n  approvals {\r\n    edges {\r\n      node {\r\n        receiverPbkCipher\r\n      }\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nconst SharedScenarioFields = `\r\nid\r\nstate\r\ntp {\r\n  ${TrustedPartyProperties}\r\n}\r\nasClaimant {\r\n  sharedKey {\r\n    id\r\n  }\r\n  sharedCipherData\r\n}\r\nasReceiver {\r\n  sharedKey {\r\n    id\r\n  }\r\n  sharedCipherData\r\n  pbk {\r\n    id\r\n  }\r\n  receiverDirectories {\r\n    edges {\r\n      node {\r\n        id\r\n        wrappedItemKey\r\n      }\r\n    }\r\n  }\r\n}\r\nasApprovers {\r\n  edges {\r\n    node {\r\n      ${ApproverFields}\r\n    }\r\n  }\r\n}\r\nsharedClaim {\r\n  ${SharedClaimFields}\r\n}\r\n`;\r\n\r\nexport const GetSharedScenarioQuery = gql`\r\nquery GetSharedScenarioQuery(\r\n  $id: LrRelayIdInput!\r\n) {\r\n  sharedScenario(id: $id) {\r\n    ${SharedScenarioFields}\r\n  }\r\n  ${KeyGraphField}\r\n} `;\r\n\r\nexport const GetAllSharedScenariosQuery = gql`\r\nquery GetAllSharedScenariosQuery {\r\n  sharedScenarios(orderBy: \"-created\") {\r\n    edges {\r\n      node {\r\n        ${SharedScenarioFields}\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n} `;\r\n\r\nexport const GetTrustedPartyScenariosQuery = gql`\r\nquery GetTrustedPartyScenariosQuery($partyId: LrRelayIdInput!)  {\r\n  tp(id: $partyId) {\r\n    myScenarios(orderBy: \"-created\") {\r\n      edges {\r\n        node {\r\n          id\r\n          state\r\n          subjectKey {\r\n            id\r\n          }\r\n          subjectCipherData\r\n          created\r\n          modified\r\n        }\r\n      }\r\n    }\r\n    sharedScenarios(orderBy: \"-created\") {\r\n      edges {\r\n        node {\r\n          ${SharedScenarioFields}\r\n        }\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n} `;\r\n\r\nexport const GetAllScenarioIdsQuery = gql`\r\n  query GetAllScenarioIdsQuery {\r\n    scenarios {\r\n      edges {\r\n        node {\r\n          id\r\n        }\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const GetAllScenariosQuery = gql`\r\nquery GetAllScenariosQuery {\r\n  scenarios(orderBy: \"-created\") {\r\n    edges {\r\n      node {\r\n        id\r\n        state\r\n        subjectKey {\r\n          id\r\n        }\r\n        subjectCipherData\r\n        created\r\n        modified\r\n        claim {\r\n          id\r\n          state\r\n        }\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n} `;\r\n\r\nexport const GetScenarioQuery = gql`\r\nquery GetScenarioQuery(\r\n  $id: LrRelayIdInput!,\r\n  $categoryFilter: LrJSONFilter!,\r\n  $recordFilter: LrJSONFilter!,\r\n  $contentFilter: LrJSONFilter\r\n) {\r\n  scenario(id: $id) {\r\n    id\r\n    state\r\n    subjectKey {\r\n      id\r\n    }\r\n    subjectCipherData\r\n    claimants {\r\n      edges {\r\n        node {\r\n          ${ClaimantFields}\r\n        }\r\n      }\r\n    }\r\n    approverAssembly {\r\n      id\r\n      quorum\r\n      assemblyKey {\r\n        id\r\n      }\r\n      subAssemblies {\r\n        edges {\r\n          node {\r\n            ${SubAssemblyFields}\r\n          }\r\n        }\r\n      }\r\n    }\r\n    receivers {\r\n      edges {\r\n        node {\r\n          ${ReceiverFields}\r\n        }\r\n      }\r\n    }\r\n    claim {\r\n      id\r\n      state\r\n      claimant {\r\n        id\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n} `;\r\n\r\nexport const GetAllScenarioClaimsQuery = gql`\r\nquery GetAllScenariosQuery {\r\n  scenarios {\r\n    edges {\r\n      node {\r\n        id\r\n        state\r\n        subjectKey {\r\n          id\r\n        }\r\n        subjectCipherData\r\n        created\r\n        modified\r\n        claim {\r\n          id\r\n          state\r\n        }\r\n        claims {\r\n          edges {\r\n            node {\r\n              id\r\n              state\r\n              created\r\n              modified\r\n              claimant {\r\n                tp {\r\n                  ${TrustedPartyProperties}\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n  ${KeyGraphField}\r\n} `;\r\n\r\nexport const CreateScenarioMutation = gql`\r\n  mutation CreateScenarioMutation($input: CreateScenarioInput!) {\r\n    createScenario(input: $input) {\r\n      scenario {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateScenarioMutation = gql`\r\n  mutation UpdateScenarioMutation($input: UpdateScenarioInput!) {\r\n    updateScenario(input: $input) {\r\n      scenario {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DeleteScenarioMutation = gql`\r\n  mutation DeleteScenarioMutation($input: DeleteScenarioInput!) {\r\n    deleteScenario(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport const EnableScenarioMutation = gql`\r\n  mutation EnableScenarioMutation($input: EnableScenarioInput!) {\r\n    enableScenario(input: $input) {\r\n      scenario {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const DisableScenarioMutation = gql`\r\n  mutation DisableScenarioMutation($input: DisableScenarioInput!) {\r\n    disableScenario(input: $input) {\r\n      scenario {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const CreateScenarioClaimMutation = gql`\r\n  mutation CreateScenarioClaimMutation($input: CreateScenarioClaimInput!) {\r\n    createScenarioClaim(input: $input) {\r\n      sharedClaim {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const CancelScenarioClaimMutation = gql`\r\n  mutation CancelScenarioClaimMutation($input: CancelScenarioClaimInput!) {\r\n    cancelScenarioClaim(input: $input) {\r\n      sharedClaim {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface ApproveScenarioClaimMutationResult {\r\n  approveScenarioClaim: {\r\n    sharedClaim: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const ApproveScenarioClaimMutation = gqlTyped<ApproveScenarioClaimMutationResult>`\r\nmutation ApproveScenarioClaimMutation($input: ApproveScenarioClaimInput!) {\r\n  approveScenarioClaim(input: $input) {\r\n    sharedClaim {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface RejectScenarioClaimMutationResult {\r\n  rejectScenarioClaim: {\r\n    sharedClaim: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const RejectScenarioClaimMutation = gqlTyped<RejectScenarioClaimMutationResult>`\r\nmutation RejectScenarioClaimMutation($input: RejectScenarioClaimInput!) {\r\n  rejectScenarioClaim(input: $input) {\r\n    sharedClaim {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport const ReceiveScenarioClaimMutation = gql`\r\n  mutation ReceiveScenarioClaimMutation($input: ReceiveScenarioClaimInput!) {\r\n    receiveScenarioClaim(input: $input) {\r\n      sharedClaim {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const ResetScenarioMutation = gql`\r\n  mutation ResetScenarioMutation($input: ResetScenarioInput!) {\r\n    resetScenario(input: $input) {\r\n      scenario {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport const UpdateScenarioApproverSubAssemblyMutation = gql`\r\n  mutation UpdateScenarioApproverSubAssemblyMutation(\r\n    $input: UpdateScenarioApproverSubAssemblyInput!\r\n  ) {\r\n    updateScenarioApproverSubAssembly(input: $input) {\r\n      subAssembly {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n","import { Injectable } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport { LrApolloService } from '../../api/lr-apollo.service';\r\nimport { EncryptionService } from '../../cryptography/encryption.service';\r\nimport { KeyFactoryService } from '../../cryptography/key-factory.service';\r\nimport { KeyGraphService } from '../../cryptography/key-graph.service';\r\nimport { KeyMetaService } from '../../cryptography/key-meta.service';\r\nimport * as slip from '../../cryptography/slip39.service';\r\nimport { TrustedPartyService } from '../../trusted-parties/trusted-party.service';\r\nimport {\r\n  Receiver,\r\n  ReceiverCategory,\r\n  ReceiverRecord,\r\n} from '../receivers/scenario-receiver.types';\r\nimport { PartialAssemblyKey } from '../scenario.types';\r\nimport {\r\n  CreateScenarioApproverAssemblyMutation,\r\n  DeleteScenarioApproverAssemblyMutation,\r\n  GetScenarioApproverQuery,\r\n  UpdateScenarioApproverAssemblyMutation,\r\n  UpdateScenarioApproverMutation,\r\n} from './scenario-approval.gql';\r\nimport {\r\n  ApprovalGroup,\r\n  Approver,\r\n  CreateScenarioApprovalGroups,\r\n  UpdateScenarioApprovalGroup,\r\n  UpdateScenarioApprovalGroups,\r\n  UpdateScenarioApprover,\r\n} from './scenario-approval.types';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class ScenarioApproverService {\r\n  public static SLIP39_PASSPHRASE = 'lifeready';\r\n\r\n  constructor(\r\n    private lrApollo: LrApolloService,\r\n    private keyFactory: KeyFactoryService,\r\n    private keyMetaService: KeyMetaService,\r\n    private keyGraph: KeyGraphService,\r\n    private slip39Service: slip.Slip39Service,\r\n    private encryptionService: EncryptionService,\r\n    private trustedPartyService: TrustedPartyService\r\n  ) {}\r\n\r\n  public async getApprover(approverId: string): Promise<Approver> {\r\n    const { scenarioApprover } = await this.lrApollo.query<any>({\r\n      query: GetScenarioApproverQuery,\r\n      variables: {\r\n        id: approverId,\r\n      },\r\n    });\r\n    return this.mapApprover(scenarioApprover);\r\n  }\r\n\r\n  public async mapApproverGroup(group: any): Promise<ApprovalGroup> {\r\n    const { name } = await this.keyGraph.decryptFromString<{\r\n      name: string;\r\n    }>(group.assemblyKey.id, group.subAssemblyCipherData);\r\n\r\n    return {\r\n      id: group.id,\r\n      keyId: group.assemblyKey.id,\r\n      name,\r\n      quorum: group.quorum,\r\n      singleReject: group.singleReject,\r\n      approvers: await Promise.all(\r\n        group.approvers.edges.map((x) => this.mapApprover(x.node))\r\n      ),\r\n    };\r\n  }\r\n\r\n  private async mapApprover(approver: any): Promise<Approver> {\r\n    const { message } = await this.keyGraph.decryptFromString<{\r\n      message: string;\r\n    }>(approver.sharedKey.id, approver.sharedCipherData);\r\n\r\n    return {\r\n      id: approver.id,\r\n      keyId: approver.sharedKey.id,\r\n      trustedParty: await this.trustedPartyService.mapTrustedParty(approver.tp),\r\n      message,\r\n    };\r\n  }\r\n\r\n  public async updateApprover(approver: UpdateScenarioApprover): Promise<void> {\r\n    const sharedCipherData = await this.keyGraph.encryptToString(\r\n      approver.keyId,\r\n      approver.plainSharedCipherData\r\n    );\r\n\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: UpdateScenarioApproverMutation,\r\n      variables: {\r\n        input: {\r\n          approverId: approver.approverId,\r\n          sharedKeyId: approver.keyId,\r\n          sharedCipherData,\r\n          sharedCipherApprovalData: '',\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async createScenarioApproverAssembly(\r\n    input: CreateScenarioApprovalGroups\r\n  ): Promise<string> {\r\n    const assemblyKey = await this.keyFactory.createKey();\r\n\r\n    const subjectKeyWrappedAssemblyKey = await this.keyGraph.encryptToString(\r\n      input.keyId,\r\n      assemblyKey.toJSON(true)\r\n    );\r\n\r\n    const assemblyCipherData = input.plainAssemblyCipherData\r\n      ? await this.keyGraph.encryptToString(\r\n          assemblyKey,\r\n          input.plainAssemblyCipherData\r\n        )\r\n      : '';\r\n\r\n    const { createScenarioApproverAssembly } = await this.lrApollo.mutate<any>({\r\n      mutation: CreateScenarioApproverAssemblyMutation,\r\n      variables: {\r\n        input: {\r\n          scenarioId: input.scenarioId,\r\n          singleReject: input.singleReject,\r\n          quorum: input.quorum,\r\n          subjectKeyId: input.keyId,\r\n          subjectKeyWrappedAssemblyKey,\r\n          assemblyCipherData,\r\n          createSubAssemblies: (\r\n            await this.mapApprovalGroups(\r\n              input.approvalGroups,\r\n              input.quorum,\r\n              assemblyKey\r\n            )\r\n          ).map((x) => {\r\n            const { updateApprovers, deleteApprovers, ...subAssembly } = x;\r\n            return subAssembly;\r\n          }),\r\n          updateReceivers: await this.rewrapReceivers(\r\n            assemblyKey,\r\n            input.event,\r\n            input.receivers\r\n          ),\r\n        },\r\n      },\r\n    });\r\n    return createScenarioApproverAssembly.scenario.approverAssembly.assemblyKey\r\n      .id;\r\n  }\r\n\r\n  public async updateScenarioApproverAssembly(\r\n    input: UpdateScenarioApprovalGroups\r\n  ): Promise<void> {\r\n    const assemblyKey = await this.keyGraph.getKey(input.assemblyKeyId);\r\n    const assemblyCipherData = input.plainAssemblyCipherData\r\n      ? await this.keyGraph.encryptToString(\r\n          assemblyKey.jwk,\r\n          input.plainAssemblyCipherData\r\n        )\r\n      : '';\r\n\r\n    const approvalGroups = await this.mapApprovalGroups(\r\n      input.approvalGroups,\r\n      input.quorum,\r\n      assemblyKey.jwk\r\n    );\r\n\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: UpdateScenarioApproverAssemblyMutation,\r\n      variables: {\r\n        input: {\r\n          scenarioId: input.scenarioId,\r\n          singleReject: input.singleReject,\r\n          quorum: input.quorum,\r\n          assemblyKeyId: assemblyKey.id,\r\n          assemblyCipherData,\r\n          createSubAssemblies: approvalGroups\r\n            .filter((x) => !x.subAssemblyId)\r\n            .map((x) => {\r\n              const { updateApprovers, deleteApprovers, ...subAssembly } = x;\r\n              return subAssembly;\r\n            }),\r\n          updateSubAssemblies: approvalGroups.filter((x) => x.subAssemblyId),\r\n          deleteSubAssemblies: input.deletedGroupIds,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async deleteScenarioApproverAssembly(\r\n    scenarioId: string,\r\n    event: string,\r\n    receivers: Receiver[]\r\n  ): Promise<void> {\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: DeleteScenarioApproverAssemblyMutation,\r\n      variables: {\r\n        input: {\r\n          scenarioId,\r\n          updateReceivers: await this.rewrapReceivers(null, event, receivers),\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  private async rewrapReceivers(\r\n    assemblyKey: JWK.Key,\r\n    event: string,\r\n    receivers: Receiver[]\r\n  ) {\r\n    if (!receivers || !receivers.length) {\r\n      return [];\r\n    }\r\n\r\n    return await Promise.all(\r\n      receivers.map(async (receiver) => {\r\n        const sharedKey = await this.keyGraph.getKey(receiver.keyId);\r\n\r\n        const prepareReceiverItem = async (\r\n          item: ReceiverCategory | ReceiverRecord,\r\n          itemKeyId: string\r\n        ) => {\r\n          const itemKey = await this.keyGraph.getKey(itemKeyId);\r\n          let wrappedItemKey = await this.keyGraph.encryptToString(\r\n            sharedKey.jwk,\r\n            itemKey.jwk.toJSON(true)\r\n          );\r\n\r\n          if (assemblyKey) {\r\n            wrappedItemKey = await this.keyGraph.encryptToString(\r\n              assemblyKey,\r\n              wrappedItemKey\r\n            );\r\n          }\r\n\r\n          return {\r\n            accessRole: item.accessLevel,\r\n            sharedKeyId: sharedKey.id,\r\n            sharedCipherData: '',\r\n            wrappedItemKey,\r\n          };\r\n        };\r\n\r\n        // For each receiver-directory\r\n        const receiverDirectories = await Promise.all([\r\n          ...receiver.categories.map(async (x) => ({\r\n            ...(await prepareReceiverItem(x, x.category.keyId)),\r\n            receiverDirectoryId: x.id,\r\n          })),\r\n          ...receiver.records.map(async (x) => ({\r\n            ...(await prepareReceiverItem(x, x.record.keyId)),\r\n            receiverDirectoryId: x.id,\r\n          })),\r\n        ]);\r\n\r\n        return {\r\n          receiverId: receiver.id,\r\n          sharedKeyId: receiver.keyId,\r\n          receiverDirectories,\r\n          receiverFiles: [],\r\n          sharedCipherData: await this.keyGraph.encryptToString(sharedKey.jwk, {\r\n            event,\r\n            message: receiver.message,\r\n          }),\r\n        };\r\n      })\r\n    );\r\n  }\r\n\r\n  private async mapApprovalGroups(\r\n    approvalGroups: UpdateScenarioApprovalGroup[],\r\n    quorum: number,\r\n    assemblyKey: JWK.Key\r\n  ) {\r\n    const slipAssembly = await this.createSlipAssembly(\r\n      quorum,\r\n      approvalGroups,\r\n      (assemblyKey.toJSON(true) as any).k\r\n    );\r\n    return await Promise.all(\r\n      approvalGroups.map((x, index) =>\r\n        this.mapApprovalGroup(x, slipAssembly.subAssemblies[index], assemblyKey)\r\n      )\r\n    );\r\n  }\r\n\r\n  private async mapApprovalGroup(\r\n    approvalGroup: UpdateScenarioApprovalGroup,\r\n    subAssembly: slip.SubAssembly,\r\n    assemblyKey: JWK.Key\r\n  ) {\r\n    const approvers = await this.mapApprovers(\r\n      approvalGroup.approvers,\r\n      approvalGroup.quorum,\r\n      subAssembly,\r\n      assemblyKey\r\n    );\r\n\r\n    return {\r\n      subAssemblyId: approvalGroup.subAssemblyId,\r\n      singleReject: approvalGroup.singleReject,\r\n      quorum: approvalGroup.quorum,\r\n      subAssemblyCipherData: await this.keyGraph.encryptToString(\r\n        assemblyKey,\r\n        approvalGroup.plainSubAssemblyCipherData\r\n      ),\r\n      createApprovers: approvers.filter((x) => !x.approverId),\r\n      updateApprovers: approvers.filter((x) => x.approverId),\r\n      deleteApprovers: approvalGroup.deletedApproverIds || [],\r\n    };\r\n  }\r\n\r\n  private async mapApprovers(\r\n    approvers: UpdateScenarioApprover[],\r\n    quorum: number,\r\n    subAssembly: slip.SubAssembly,\r\n    assemblyKey: JWK.Key\r\n  ) {\r\n    const { k: rawAssemblyKey, ...assemblyKeyParams } = assemblyKey.toJSON(\r\n      true\r\n    ) as any;\r\n    let shareIdx = 0;\r\n\r\n    const nextPartialAssemblyKey = async (sharedKeyJwk: JWK.Key) => {\r\n      const share = subAssembly.shares[shareIdx];\r\n      // If quorum is 1, then using the same share for every member.\r\n      if (quorum !== 1) {\r\n        ++shareIdx;\r\n      }\r\n      const partialAssemblyKey: PartialAssemblyKey = {\r\n        slip39: {\r\n          share,\r\n          subAssembly: {\r\n            quorum,\r\n            size: approvers.length,\r\n          },\r\n        },\r\n        assemblyKeyParams,\r\n      };\r\n      return this.keyGraph.encryptToString(sharedKeyJwk, partialAssemblyKey);\r\n    };\r\n\r\n    return await Promise.all(\r\n      approvers.map(async (x) => {\r\n        if (x.approverId) {\r\n          const sharedKey = await this.keyGraph.getKey(x.keyId);\r\n          const sharedCipherData = await this.keyGraph.encryptToString(\r\n            x.keyId,\r\n            x.plainSharedCipherData\r\n          );\r\n          const sharedCipherApprovalData = await this.keyGraph.encryptToString(\r\n            x.keyId,\r\n            x.approvalData\r\n          );\r\n\r\n          return {\r\n            approverId: x.approverId,\r\n            sharedKeyId: x.keyId,\r\n            sharedCipherData: sharedCipherData || '',\r\n            sharedCipherApprovalData: sharedCipherApprovalData || '',\r\n            sharedCipherPartialAssemblyKey: await nextPartialAssemblyKey(\r\n              sharedKey.jwk\r\n            ),\r\n          };\r\n        } else {\r\n          const wrappedContent = await this.keyMetaService.wrapContentWithKey(\r\n            x.plainSharedCipherData,\r\n            x.trustedPartySharedKeyId\r\n          );\r\n\r\n          return {\r\n            tpId: x.trustedPartyId,\r\n            tpSharedKeyId: x.trustedPartySharedKeyId,\r\n            tpSharedKeyWrappedSharedKey: wrappedContent.rootKey.wrappedKey,\r\n            sharedCipherData: wrappedContent.cipherMeta,\r\n            sharedCipherApprovalData: '',\r\n            sharedCipherPartialAssemblyKey: await nextPartialAssemblyKey(\r\n              wrappedContent.key\r\n            ),\r\n          };\r\n        }\r\n      })\r\n    );\r\n  }\r\n\r\n  // Split assembly key between all existing approvers.\r\n  private async createSlipAssembly(\r\n    quorum: number,\r\n    approvalGroups: UpdateScenarioApprovalGroup[],\r\n    rawAssemblyKey: string\r\n  ): Promise<slip.Assembly> {\r\n    const slipAssembly = new slip.Assembly(quorum);\r\n\r\n    approvalGroups.forEach((x, index) => {\r\n      let approverCount = x.approvers.length;\r\n\r\n      // slip39 restricts quorum == 1 to have only 1 member. So we just share the same\r\n      // partial key for all sub assembly members.\r\n      if (x.quorum === 1) {\r\n        approverCount = 1;\r\n      }\r\n      slipAssembly.addSubAssembly(\r\n        new slip.SubAssembly(index, x.quorum, approverCount)\r\n      );\r\n    });\r\n    // Is there enough sub assemblies to meet quorum\r\n    if (slipAssembly.subAssemblies.length < quorum) {\r\n      return null;\r\n    }\r\n    await this.slip39Service.generateShares(\r\n      rawAssemblyKey,\r\n      ScenarioApproverService.SLIP39_PASSPHRASE,\r\n      slipAssembly\r\n    );\r\n    return slipAssembly;\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { LrApolloService } from '../../api/lr-apollo.service';\r\nimport { KeyGraphService } from '../../cryptography/key-graph.service';\r\nimport { KeyMetaService } from '../../cryptography/key-meta.service';\r\nimport { TrustedPartyService } from '../../trusted-parties/trusted-party.service';\r\nimport {\r\n  DeleteScenarioClaimantMutation,\r\n  UpdateScenarioClaimantMutation,\r\n  GetScenarioClaimantQuery,\r\n  AddScenarioClaimantMutation,\r\n} from './scenario-claimant.gql';\r\nimport {\r\n  Claimant,\r\n  AddScenarioClaimant,\r\n  UpdateScenarioClaimant,\r\n} from './scenario-claimant.types';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class ScenarioClaimantService {\r\n  constructor(\r\n    private lrApollo: LrApolloService,\r\n    private keyMetaService: KeyMetaService,\r\n    private keyGraph: KeyGraphService,\r\n    private tpService: TrustedPartyService\r\n  ) {}\r\n\r\n  public async getClaimant(claimantId: string): Promise<Claimant> {\r\n    const { scenarioClaimant } = await this.lrApollo.query<any>({\r\n      query: GetScenarioClaimantQuery,\r\n      variables: {\r\n        id: claimantId,\r\n      },\r\n    });\r\n    return this.mapClaimant(scenarioClaimant);\r\n  }\r\n\r\n  public async mapClaimant(claimant: any): Promise<Claimant> {\r\n    const { message } = await this.keyGraph.decryptFromString<{\r\n      message: string;\r\n    }>(claimant.sharedKey.id, claimant.sharedCipherData);\r\n\r\n    return {\r\n      id: claimant.id,\r\n      keyId: claimant.sharedKey.id,\r\n      trustedParty: await this.tpService.mapTrustedParty(claimant.tp),\r\n      message,\r\n    };\r\n  }\r\n\r\n  public async addClaimant(claimant: AddScenarioClaimant): Promise<string> {\r\n    const wrappedContent = await this.keyMetaService.wrapContentWithKey(\r\n      claimant.plainSharedCipherData,\r\n      claimant.trustedPartySharedKeyId\r\n    );\r\n\r\n    const { addScenarioClaimant } = await this.lrApollo.mutate<any>({\r\n      mutation: AddScenarioClaimantMutation,\r\n      variables: {\r\n        input: {\r\n          scenarioId: claimant.scenarioId,\r\n          tpId: claimant.trustedPartyId,\r\n          tpSharedKeyId: claimant.trustedPartySharedKeyId,\r\n          tpSharedKeyWrappedSharedKey: wrappedContent.rootKey.wrappedKey,\r\n          sharedCipherData: wrappedContent.cipherMeta,\r\n        },\r\n      },\r\n    });\r\n    return addScenarioClaimant.claimant.id;\r\n  }\r\n\r\n  public async updateClaimant(\r\n    claimant: UpdateScenarioClaimant\r\n  ): Promise<string> {\r\n    const sharedCipherData = await this.keyGraph.encryptToString(\r\n      claimant.keyId,\r\n      claimant.plainSharedCipherData\r\n    );\r\n\r\n    const res = await this.lrApollo.mutate<any>({\r\n      mutation: UpdateScenarioClaimantMutation,\r\n      variables: {\r\n        input: {\r\n          claimantId: claimant.id,\r\n          sharedKeyId: claimant.keyId,\r\n          sharedCipherData,\r\n        },\r\n      },\r\n    });\r\n    return res.updateScenarioClaimant.claimant.id;\r\n  }\r\n\r\n  public async deleteClaimant(claimantId: string): Promise<void> {\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: DeleteScenarioClaimantMutation,\r\n      variables: { input: { claimantId } },\r\n    });\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { LrApolloService } from '../../api/lr-apollo.service';\r\nimport { CategoryFilter, RecordFilter } from '../../category/category.gql';\r\nimport { CategoryService } from '../../category/category.service';\r\nimport { KeyGraphService } from '../../cryptography/key-graph.service';\r\nimport { KeyMetaService } from '../../cryptography/key-meta.service';\r\nimport { RecordContentFilter } from '../../record/record.gql';\r\nimport { RecordService } from '../../record/record.service';\r\nimport { TrustedPartyService } from '../../trusted-parties/trusted-party.service';\r\nimport { HasEdges } from '../../_common/types';\r\nimport {\r\n  AddScenarioReceiverDirectoryMutation,\r\n  CreateScenarioReceiverMutation,\r\n  DeleteScenarioReceiverDirectoryMutation,\r\n  DeleteScenarioReceiverMutation,\r\n  GetScenarioReceiverQuery,\r\n  UpdateScenarioReceiverDirectoryMutation,\r\n  UpdateScenarioReceiverMutation,\r\n} from './scenario-receiver.gql';\r\nimport {\r\n  AddScenarioReceiverCategoryInput,\r\n  AddScenarioReceiverItemInput,\r\n  AddScenarioReceiverRecordInput,\r\n  AddScenarioReceiver,\r\n  Receiver,\r\n  ReceiverCategory,\r\n  ReceiverRecord,\r\n  UpdateScenarioReceiver,\r\n  UpdateScenarioReceiverItemInput,\r\n} from './scenario-receiver.types';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class ScenarioReceiverService {\r\n  constructor(\r\n    private lrApollo: LrApolloService,\r\n    private keyGraph: KeyGraphService,\r\n    private keyMetaService: KeyMetaService,\r\n    private tpService: TrustedPartyService,\r\n    private categoryService: CategoryService,\r\n    private recordService: RecordService\r\n  ) {}\r\n\r\n  public async getReceiver(receiverId: string): Promise<Receiver> {\r\n    const { scenarioReceiver } = await this.lrApollo.query<any>({\r\n      query: GetScenarioReceiverQuery,\r\n      variables: {\r\n        id: receiverId,\r\n        categoryFilter: CategoryFilter,\r\n        recordFilter: RecordFilter,\r\n        contentFilter: RecordContentFilter,\r\n      },\r\n    });\r\n    return this.mapReceiver(scenarioReceiver);\r\n  }\r\n\r\n  public async mapReceiver(receiver: any): Promise<Receiver> {\r\n    const { message } = await this.keyGraph.decryptFromString<{\r\n      message: string;\r\n    }>(receiver.sharedKey.id, receiver.sharedCipherData);\r\n    return {\r\n      id: receiver.id,\r\n      keyId: receiver.sharedKey.id,\r\n      trustedParty: await this.tpService.mapTrustedParty(receiver.tp),\r\n      message,\r\n      categories: await this.mapCategories(receiver.categories),\r\n      records: await this.mapRecords(receiver.records),\r\n    };\r\n  }\r\n\r\n  private async mapCategories(list: HasEdges<any>) {\r\n    return (\r\n      await Promise.all<ReceiverCategory>(\r\n        list.edges\r\n          .map((x) => x.node)\r\n          .map((x) => x.childDirectory || x)\r\n          .map((node: any) => this.mapReceiverCategory(node))\r\n      )\r\n    )\r\n      .filter((x) => x)\r\n      .sort((x, y) =>\r\n        x.category.name === y.category.name\r\n          ? 0\r\n          : x.category.name > y.category.name\r\n          ? 1\r\n          : -1\r\n      );\r\n  }\r\n\r\n  private async mapRecords(list: HasEdges<any>) {\r\n    return (\r\n      await Promise.all<ReceiverRecord>(\r\n        list.edges\r\n          .map((x) => x.node)\r\n          .map((x) => x.childDirectory || x)\r\n          .map((node: any) => this.mapReceiverRecord(node))\r\n      )\r\n    )\r\n      .filter((x) => x)\r\n      .sort((x, y) =>\r\n        x.record.name === y.record.name\r\n          ? 0\r\n          : x.record.name > y.record.name\r\n          ? 1\r\n          : -1\r\n      );\r\n  }\r\n\r\n  private async mapReceiverCategory(\r\n    receiverDirectory: any\r\n  ): Promise<ReceiverCategory> {\r\n    return {\r\n      id: receiverDirectory.id,\r\n      keyId: receiverDirectory.sharedKey.id,\r\n      accessLevel: receiverDirectory.accessRole,\r\n      category: await this.categoryService.mapCategory(\r\n        receiverDirectory.directory\r\n      ),\r\n    };\r\n  }\r\n\r\n  private async mapReceiverRecord(\r\n    receiverDirectory: any\r\n  ): Promise<ReceiverRecord> {\r\n    return {\r\n      id: receiverDirectory.id,\r\n      keyId: receiverDirectory.sharedKey.id,\r\n      accessLevel: receiverDirectory.accessRole,\r\n      record: await this.categoryService.mapRecord(receiverDirectory.directory),\r\n    };\r\n  }\r\n\r\n  public async addReceiver(receiver: AddScenarioReceiver): Promise<string> {\r\n    const wrappedContent = await this.keyMetaService.wrapContentWithKey(\r\n      receiver.plainSharedCipherData,\r\n      receiver.trustedPartySharedKeyId\r\n    );\r\n\r\n    const { createScenarioReceiver } = await this.lrApollo.mutate<any>({\r\n      mutation: CreateScenarioReceiverMutation,\r\n      variables: {\r\n        input: {\r\n          scenarioId: receiver.scenarioId,\r\n          tpId: receiver.trustedPartyId,\r\n          tpSharedKeyId: receiver.trustedPartySharedKeyId,\r\n          tpSharedKeyWrappedSharedKey: wrappedContent.rootKey.wrappedKey,\r\n          sharedCipherData: wrappedContent.cipherMeta,\r\n        },\r\n      },\r\n    });\r\n    return createScenarioReceiver.receiver.id;\r\n  }\r\n\r\n  public async updateReceiver(receiver: UpdateScenarioReceiver): Promise<void> {\r\n    const sharedCipherData = await this.keyGraph.encryptToString(\r\n      receiver.keyId,\r\n      receiver.plainSharedCipherData\r\n    );\r\n\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: UpdateScenarioReceiverMutation,\r\n      variables: {\r\n        input: {\r\n          receiverId: receiver.id,\r\n          sharedKeyId: receiver.keyId,\r\n          sharedCipherData,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async deleteReceiver(receiverId: string): Promise<void> {\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: DeleteScenarioReceiverMutation,\r\n      variables: { input: { receiverId } },\r\n    });\r\n  }\r\n\r\n  public async addReceiverCategory(\r\n    input: AddScenarioReceiverCategoryInput\r\n  ): Promise<string> {\r\n    const category = await this.categoryService.getCategory(input.categoryId);\r\n\r\n    const res = await this.lrApollo.mutate<any>({\r\n      mutation: AddScenarioReceiverDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          ...(await this.addReceiverItem(input, category.category.keyId)),\r\n          directoryId: category.category.id,\r\n        },\r\n      },\r\n    });\r\n\r\n    return res.addScenarioReceiverDirectory.receiverDirectory.id;\r\n  }\r\n\r\n  public async addReceiverRecord(\r\n    input: AddScenarioReceiverRecordInput\r\n  ): Promise<string> {\r\n    const record = await this.recordService.getRecord(input.recordId);\r\n\r\n    const { addScenarioReceiverDirectory } = await this.lrApollo.mutate<any>({\r\n      mutation: AddScenarioReceiverDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          ...(await this.addReceiverItem(input, record.keyId)),\r\n          directoryId: record.id,\r\n        },\r\n      },\r\n    });\r\n    return addScenarioReceiverDirectory.receiverDirectory.id;\r\n  }\r\n\r\n  private async addReceiverItem(\r\n    input: AddScenarioReceiverItemInput,\r\n    itemKeyId: string\r\n  ): Promise<any> {\r\n    const sharedCipherData = input.plainSharedCipherData\r\n      ? await this.keyGraph.encryptToString(\r\n          input.receiverKeyId,\r\n          input.plainSharedCipherData\r\n        )\r\n      : '';\r\n\r\n    const itemKey = await this.keyGraph.getKey(itemKeyId);\r\n    let wrappedItemKey = await this.keyGraph.encryptToString(\r\n      input.receiverKeyId,\r\n      itemKey.jwk.toJSON(true)\r\n    );\r\n\r\n    if (input.assemblyKeyId) {\r\n      wrappedItemKey = await this.keyGraph.encryptToString(\r\n        input.assemblyKeyId,\r\n        wrappedItemKey\r\n      );\r\n    }\r\n\r\n    return {\r\n      receiverId: input.receiverId,\r\n      sharedKeyId: input.receiverKeyId,\r\n      assemblyKeyId: input.assemblyKeyId,\r\n      wrappedItemKey,\r\n      accessRole: input.accessRole,\r\n      sharedCipherData,\r\n    };\r\n  }\r\n\r\n  public async updateReceiverItem(\r\n    input: UpdateScenarioReceiverItemInput\r\n  ): Promise<void> {\r\n    const sharedCipherData = input.plainSharedCipherData\r\n      ? await this.keyGraph.encryptToString(\r\n          input.keyId,\r\n          input.plainSharedCipherData\r\n        )\r\n      : '';\r\n\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: UpdateScenarioReceiverDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          receiverDirectoryId: input.id,\r\n          sharedKeyId: input.keyId,\r\n          accessRole: input.accessRole,\r\n          sharedCipherData,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async deleteReceiverItem(receiverCategoryId: string): Promise<void> {\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: DeleteScenarioReceiverDirectoryMutation,\r\n      variables: { input: { receiverDirectoryId: receiverCategoryId } },\r\n    });\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport { CategoryFilter, RecordFilter } from '../category/category.gql';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyMetaService } from '../cryptography/key-meta.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport * as slip from '../cryptography/slip39.service';\r\nimport { RecordContentFilter } from '../record/record.gql';\r\nimport { TrustedPartyService } from '../trusted-parties/trusted-party.service';\r\nimport {\r\n  LrException,\r\n  LrErrorCode,\r\n  LrBadArgumentException,\r\n} from '../_common/exceptions';\r\nimport { ApprovalGroup, Approver } from './approvals/scenario-approval.types';\r\nimport { ScenarioApproverService } from './approvals/scenario-approver.service';\r\nimport { ScenarioClaimantService } from './claimants/scenario-claimant.service';\r\nimport { Claimant } from './claimants/scenario-claimant.types';\r\nimport { ScenarioReceiverService } from './receivers/scenario-receiver.service';\r\nimport { Receiver } from './receivers/scenario-receiver.types';\r\nimport {\r\n  ApproveScenarioClaimMutation,\r\n  CancelScenarioClaimMutation,\r\n  CreateScenarioClaimMutation,\r\n  CreateScenarioMutation,\r\n  DeleteScenarioMutation,\r\n  DisableScenarioMutation,\r\n  EnableScenarioMutation,\r\n  GetAllScenarioClaimsQuery,\r\n  GetAllScenariosQuery,\r\n  GetAllSharedScenariosQuery,\r\n  GetScenarioQuery,\r\n  GetSharedScenarioQuery,\r\n  GetTrustedPartyScenariosQuery,\r\n  ReceiveScenarioClaimMutation,\r\n  RejectScenarioClaimMutation,\r\n  ResetScenarioMutation,\r\n  UpdateScenarioMutation,\r\n  GetAllScenarioIdsQuery,\r\n} from './scenario.gql';\r\nimport {\r\n  CreateScenarioInput,\r\n  PartialAssemblyKey,\r\n  Scenario,\r\n  ScenarioClaim,\r\n  ScenarioState,\r\n  ScenarioSummary,\r\n  SharedScenario,\r\n  UpdateScenarioInput,\r\n  SharedScenarioClaimApprover,\r\n  ApproverClaimState,\r\n  SharedScenarioSummary,\r\n} from './scenario.types';\r\nimport * as moment_ from 'moment';\r\nimport { KeyFactoryService as KFS } from '../cryptography/key-factory.service';\r\nimport {\r\n  LrGraphQLService,\r\n  LrMergedMutation,\r\n  LrMutation,\r\n} from '../api/lr-graphql';\r\n\r\n// Ref: https://stackoverflow.com/questions/59735280/angular-8-moment-error-cannot-call-a-namespace-moment\r\nconst moment = moment_;\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class ScenarioService {\r\n  constructor(\r\n    private lrApollo: LrApolloService,\r\n    private keyMetaService: KeyMetaService,\r\n    private keyFactory: KFS,\r\n    private keyService: KeyService,\r\n    private encryptionService: EncryptionService,\r\n    private keyGraph: KeyGraphService,\r\n    private tpService: TrustedPartyService,\r\n    private slip39Service: slip.Slip39Service,\r\n    private scenarioClaimantService: ScenarioClaimantService,\r\n    private scenarioApproverService: ScenarioApproverService,\r\n    private scenarioReceiverService: ScenarioReceiverService,\r\n    private lrGraphQL: LrGraphQLService\r\n  ) {}\r\n\r\n  public async getMyScenarios(): Promise<ScenarioSummary[]> {\r\n    const { scenarios } = await this.lrApollo.query<any>({\r\n      query: GetAllScenariosQuery,\r\n    });\r\n    return await Promise.all(\r\n      scenarios.edges.map((x: any) => this.mapScenarioSummary(x.node))\r\n    );\r\n  }\r\n\r\n  private async mapScenarioSummary(scenario: any): Promise<ScenarioSummary> {\r\n    const { event, name } = await this.keyGraph.decryptFromString<{\r\n      event: string;\r\n      name: string;\r\n    }>(scenario.subjectKey.id, scenario.subjectCipherData);\r\n\r\n    return {\r\n      id: scenario.id,\r\n      name,\r\n      event,\r\n      status: scenario.state,\r\n      claimId: scenario.claim && scenario.claim.id,\r\n      claimStatus: scenario.claim && scenario.claim.state,\r\n      createdOn: scenario.created,\r\n      lastModified: scenario.modified,\r\n    };\r\n  }\r\n\r\n  public async getSharedScenarios(): Promise<SharedScenarioSummary[]> {\r\n    const { sharedScenarios } = await this.lrApollo.query<any>({\r\n      query: GetAllSharedScenariosQuery,\r\n    });\r\n    return (\r\n      await Promise.all<SharedScenario>(\r\n        sharedScenarios.edges.map((x: any) => this.mapSharedScenario(x.node))\r\n      )\r\n    ).filter((x) => x);\r\n  }\r\n\r\n  private async mapSharedScenarioSummary(\r\n    scenario: any\r\n  ): Promise<ScenarioSummary> {\r\n    const { event, name } = await this.keyGraph.decryptFromString<{\r\n      event: string;\r\n      name: string;\r\n    }>(scenario.subjectKey.id, scenario.subjectCipherData);\r\n\r\n    return {\r\n      id: scenario.id,\r\n      name,\r\n      event,\r\n      status: scenario.state,\r\n      claimId: scenario.claim && scenario.claim.id,\r\n      claimStatus: scenario.claim && scenario.claim.state,\r\n      createdOn: scenario.created,\r\n      lastModified: scenario.modified,\r\n    };\r\n  }\r\n\r\n  public async getSharedScenario(scenarioId: string): Promise<SharedScenario> {\r\n    const { sharedScenario } = await this.lrApollo.query<any>({\r\n      query: GetSharedScenarioQuery,\r\n      variables: {\r\n        id: scenarioId,\r\n      },\r\n    });\r\n    return await this.mapSharedScenario(sharedScenario);\r\n  }\r\n\r\n  private async mapSharedScenario(scenario: any): Promise<SharedScenario> {\r\n    try {\r\n      const claimantData = await this.getCipherData(scenario.asClaimant);\r\n      const receiverData = await this.getCipherData(scenario.asReceiver);\r\n      const approverData = await Promise.all<{\r\n        event?: string;\r\n        message?: string;\r\n      }>(\r\n        scenario.asApprovers.edges.map((x) =>\r\n          this.getCipherData(x.node.approver)\r\n        )\r\n      );\r\n\r\n      return {\r\n        id: scenario.id,\r\n        event:\r\n          claimantData.event ||\r\n          receiverData.event ||\r\n          approverData.map((x) => x.event)[0],\r\n        status: scenario.state,\r\n        trustedParty: await this.tpService.mapTrustedParty(scenario.tp),\r\n        isClaimant: !!scenario.asClaimant,\r\n        claimantMessage: claimantData.message,\r\n        isApprover: scenario.asApprovers.edges.length > 0,\r\n        approverMessages: approverData.map((x) => x.message),\r\n        isReceiver: !!scenario.asReceiver,\r\n        receiverMessage: receiverData.message,\r\n        receiverKeyId: scenario.asReceiver && scenario.asReceiver.sharedKey.id,\r\n        receiverPbkId: scenario.asReceiver && scenario.asReceiver.pbk.id,\r\n        receiverDirectories:\r\n          scenario.asReceiver &&\r\n          scenario.asReceiver.receiverDirectories.edges.map((x) => x.node),\r\n        claim: scenario.sharedClaim\r\n          ? {\r\n              id: scenario.sharedClaim.id,\r\n              isClaimant: scenario.sharedClaim.isClaimant,\r\n              status: scenario.sharedClaim.state,\r\n              asApprovers: await Promise.all<SharedScenarioClaimApprover>(\r\n                scenario.sharedClaim.asClaimApprovers.edges\r\n                  .map((x) => x.node)\r\n                  .map(async (x) => ({\r\n                    approverId: x.approver.id,\r\n                    approverKey: await this.getApproverKey(x.approver),\r\n                    status: x.state,\r\n                    receivers: x.receivers.edges.map((y) => ({\r\n                      id: y.node.id,\r\n                      pbkId: y.node.pbk.id,\r\n                    })),\r\n                  }))\r\n              ),\r\n              asReceiver: scenario.sharedClaim.asClaimReceiver\r\n                ? {\r\n                    received: scenario.sharedClaim.asClaimReceiver.received,\r\n                    ciphers: scenario.sharedClaim.asClaimReceiver.approvals.edges.map(\r\n                      (x) => x.node.receiverPbkCipher\r\n                    ),\r\n                  }\r\n                : null,\r\n            }\r\n          : null,\r\n      };\r\n    } catch (e) {\r\n      console.error('Failed to decrypt shared scenario.', e, scenario);\r\n      return null;\r\n    }\r\n  }\r\n\r\n  public async getTrustedPartyScenarios(\r\n    trustedPartyId: string\r\n  ): Promise<{\r\n    myScenarios: ScenarioSummary[];\r\n    sharedScenarios: SharedScenario[];\r\n  }> {\r\n    const { tp } = await this.lrApollo.query<any>({\r\n      query: GetTrustedPartyScenariosQuery,\r\n      variables: { partyId: trustedPartyId },\r\n    });\r\n    return {\r\n      myScenarios: await Promise.all(\r\n        tp.myScenarios.edges.map((x: any) => this.mapScenarioSummary(x.node))\r\n      ),\r\n      sharedScenarios: await Promise.all(\r\n        tp.sharedScenarios.edges.map((x: any) => this.mapSharedScenario(x.node))\r\n      ),\r\n    };\r\n  }\r\n\r\n  public async getScenarioClaims(): Promise<ScenarioClaim[]> {\r\n    const { scenarios } = await this.lrApollo.query<any>({\r\n      query: GetAllScenarioClaimsQuery,\r\n    });\r\n\r\n    const claims = await Promise.all<ScenarioClaim[]>(\r\n      scenarios.edges.map(async (x: any) => {\r\n        const scenario = await this.mapScenarioSummary(x.node);\r\n\r\n        return await Promise.all<ScenarioClaim>(\r\n          x.node.claims.edges.map(async (y) => ({\r\n            id: y.node.id,\r\n            state: y.node.state,\r\n            triggeredBy: await this.tpService.mapTrustedParty(\r\n              y.node.claimant.tp\r\n            ),\r\n            triggeredOn: y.node.created,\r\n            lastModified: y.node.modified,\r\n            scenario,\r\n          }))\r\n        );\r\n      })\r\n    );\r\n\r\n    return claims\r\n      .reduce((x, y) => [...x, ...y], [])\r\n      .sort(\r\n        (x, y) =>\r\n          -1 *\r\n          moment(new Date(x.lastModified)).diff(\r\n            moment(new Date(y.lastModified))\r\n          )\r\n      );\r\n  }\r\n\r\n  private async getCipherData(cipher?: {\r\n    sharedKey: { id: string };\r\n    sharedCipherData: string;\r\n  }): Promise<{ event?: string; message?: string }> {\r\n    if (!cipher) return {};\r\n\r\n    return await this.keyGraph.decryptFromString<{\r\n      event?: string;\r\n      message?: string;\r\n    }>(cipher.sharedKey.id, cipher.sharedCipherData);\r\n  }\r\n\r\n  private async getApproverKey(cipher?: {\r\n    sharedKey: { id: string };\r\n    sharedCipherPartialAssemblyKey: string;\r\n  }): Promise<string> {\r\n    if (!cipher) return null;\r\n\r\n    return await this.keyGraph.decryptFromString<string>(\r\n      cipher.sharedKey.id,\r\n      cipher.sharedCipherPartialAssemblyKey\r\n    );\r\n  }\r\n\r\n  public async getScenario(scenarioId: string): Promise<Scenario> {\r\n    const { scenario } = await this.lrApollo.query<any>({\r\n      query: GetScenarioQuery,\r\n      variables: {\r\n        id: scenarioId,\r\n        categoryFilter: CategoryFilter,\r\n        recordFilter: RecordFilter,\r\n        contentFilter: RecordContentFilter,\r\n      },\r\n    });\r\n    return await this.mapScenario(scenario);\r\n  }\r\n\r\n  private async mapScenario(scenario: any): Promise<Scenario> {\r\n    const { name, event } = await this.keyGraph.decryptFromString<{\r\n      event: string;\r\n      name: string;\r\n    }>(scenario.subjectKey.id, scenario.subjectCipherData);\r\n    const claimants = await Promise.all<Claimant>(\r\n      scenario.claimants.edges.map((x) =>\r\n        this.scenarioClaimantService.mapClaimant(x.node)\r\n      )\r\n    );\r\n\r\n    return {\r\n      id: scenario.id,\r\n      keyId: scenario.subjectKey.id,\r\n      assemblyKeyId:\r\n        scenario.approverAssembly && scenario.approverAssembly.assemblyKey.id,\r\n      assemblyQuorum:\r\n        scenario.approverAssembly && scenario.approverAssembly.quorum,\r\n      name,\r\n      event,\r\n      status: scenario.state,\r\n      claimants,\r\n      approverGroups: scenario.approverAssembly\r\n        ? await Promise.all(\r\n            scenario.approverAssembly.subAssemblies.edges.map((x) =>\r\n              this.scenarioApproverService.mapApproverGroup(x.node)\r\n            )\r\n          )\r\n        : [],\r\n      receivers: await Promise.all(\r\n        scenario.receivers.edges.map((x) =>\r\n          this.scenarioReceiverService.mapReceiver(x.node)\r\n        )\r\n      ),\r\n      claim: scenario.claim\r\n        ? {\r\n            id: scenario.claim.id,\r\n            status: scenario.claim.state,\r\n            claimant: claimants.find(\r\n              (x) => x.id === scenario.claim.claimant.id\r\n            ),\r\n          }\r\n        : null,\r\n    };\r\n  }\r\n\r\n  public async createScenario(input: CreateScenarioInput): Promise<string> {\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n\r\n    const subjectKey = await this.keyFactory.createKey();\r\n    const rootKeyWrappedSubjectKey = await this.keyGraph.encryptToString(\r\n      rootKey.jwk,\r\n      subjectKey.toJSON(true)\r\n    );\r\n\r\n    const subjectCipherData = await this.keyGraph.encryptToString(\r\n      subjectKey,\r\n      input.plainSubjectCipherData\r\n    );\r\n\r\n    const { createScenario } = await this.lrApollo.mutate<any>({\r\n      mutation: CreateScenarioMutation,\r\n      variables: {\r\n        input: {\r\n          rootKeyId: rootKey.id,\r\n          rootKeyWrappedSubjectKey,\r\n          subjectCipherData,\r\n        },\r\n      },\r\n    });\r\n    return createScenario.scenario.id;\r\n  }\r\n\r\n  public async updateScenario(input: UpdateScenarioInput): Promise<void> {\r\n    await this.lrApollo.mutate<void>({\r\n      mutation: UpdateScenarioMutation,\r\n      variables: {\r\n        input: {\r\n          scenarioId: input.scenarioId,\r\n          subjectKeyId: input.keyId,\r\n          subjectCipherData: await this.keyGraph.encryptToString(\r\n            input.keyId,\r\n            input.plainSubjectCipherData\r\n          ),\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async enableScenario(scenarioId: string): Promise<void> {\r\n    await this.lrApollo.mutate<void>({\r\n      mutation: EnableScenarioMutation,\r\n      variables: { input: { scenarioId } },\r\n    });\r\n  }\r\n\r\n  public async disableScenario(scenarioId: string): Promise<void> {\r\n    await this.lrApollo.mutate<void>({\r\n      mutation: DisableScenarioMutation,\r\n      variables: { input: { scenarioId } },\r\n    });\r\n  }\r\n\r\n  public async deleteScenario(scenarioId: string): Promise<void> {\r\n    await this.lrApollo.mutate<void>({\r\n      mutation: DeleteScenarioMutation,\r\n      variables: { input: { scenarioId } },\r\n    });\r\n  }\r\n\r\n  public async createClaim(scenarioId: string): Promise<string> {\r\n    const res = await this.lrApollo.mutate<any>({\r\n      mutation: CreateScenarioClaimMutation,\r\n      variables: { input: { scenarioId } },\r\n    });\r\n    return res.createScenarioClaim.sharedClaim.id;\r\n  }\r\n\r\n  public async cancelClaim(claimId: string): Promise<void> {\r\n    await this.lrApollo.mutate<void>({\r\n      mutation: CancelScenarioClaimMutation,\r\n      variables: { input: { claimId } },\r\n    });\r\n  }\r\n\r\n  public async approveClaim(scenarioId: string, claimId: string) {\r\n    return this.lrGraphQL.lrMutate(\r\n      this.approveClaimMutation(scenarioId, claimId)\r\n    );\r\n  }\r\n\r\n  public async approveClaimMutation(scenarioId: string, claimId: string) {\r\n    const sharedScenario = await this.getSharedScenario(scenarioId);\r\n\r\n    // Double check the claim matches\r\n    if (sharedScenario.claim.id !== claimId) {\r\n      throw new LrException({\r\n        code: LrErrorCode.ReceiveClaimMismatch,\r\n        message:\r\n          'claimId does not match with the current claimId of the scenario',\r\n      });\r\n    }\r\n\r\n    const createMutation = async (asApprover: SharedScenarioClaimApprover) => {\r\n      return new LrMutation({\r\n        mutation: ApproveScenarioClaimMutation,\r\n        variables: {\r\n          input: {\r\n            claimId,\r\n            approverId: asApprover.approverId,\r\n            receivers: await Promise.all(\r\n              asApprover.receivers.map(async (y) => ({\r\n                receiverId: y.id,\r\n                receiverPbkCipher: await this.keyGraph.encryptToString(\r\n                  y.pbkId,\r\n                  { partialAssemblyKey: asApprover.approverKey }\r\n                ),\r\n              }))\r\n            ),\r\n          },\r\n        },\r\n      });\r\n    };\r\n\r\n    const mutations = sharedScenario.claim.asApprovers\r\n      .filter((asApprover) => asApprover.status === ApproverClaimState.Claimed)\r\n      .map((asApprover) => createMutation(asApprover));\r\n\r\n    return LrMergedMutation.create(await Promise.all(mutations));\r\n  }\r\n\r\n  public async rejectClaim(scenarioId: string, claimId: string) {\r\n    return this.lrGraphQL.lrMutate(\r\n      this.rejectClaimMutation(scenarioId, claimId)\r\n    );\r\n  }\r\n\r\n  public async rejectClaimMutation(scenarioId: string, claimId: string) {\r\n    const sharedScenario = await this.getSharedScenario(scenarioId);\r\n\r\n    // Double check the claim matches\r\n    if (sharedScenario.claim.id !== claimId) {\r\n      throw new LrException({\r\n        code: LrErrorCode.ReceiveClaimMismatch,\r\n        message:\r\n          'ClaimId does not match with the current claimId of the scenario',\r\n      });\r\n    }\r\n\r\n    const createMutation = async (asApprover: SharedScenarioClaimApprover) => {\r\n      return new LrMutation({\r\n        mutation: RejectScenarioClaimMutation,\r\n        variables: { input: { claimId, approverId: asApprover.approverId } },\r\n      });\r\n    };\r\n\r\n    const mutations = sharedScenario.claim.asApprovers\r\n      .filter((asApprover) => asApprover.status === ApproverClaimState.Claimed)\r\n      .map((asApprover) => createMutation(asApprover));\r\n\r\n    return LrMergedMutation.create(await Promise.all(mutations));\r\n  }\r\n\r\n  public async receiveClaim(\r\n    scenarioId: string,\r\n    claimId: string\r\n  ): Promise<void> {\r\n    // Get all the shared items\r\n    const sharedScenario = await this.getSharedScenario(scenarioId);\r\n\r\n    // Double check the claim matches\r\n    if (sharedScenario.claim.id !== claimId) {\r\n      throw new LrException({\r\n        code: LrErrorCode.ReceiveClaimMismatch,\r\n        message:\r\n          'ClaimId does not match with the current claimId of the scenario',\r\n      });\r\n    }\r\n    if (sharedScenario.status !== ScenarioState.APPROVED) {\r\n      throw new LrException({\r\n        code: LrErrorCode.BadState,\r\n        message: 'Scenario claim has not been approved',\r\n      });\r\n    }\r\n\r\n    const assemblyKey = await this.getClaimAssemblyKey(\r\n      sharedScenario.receiverPbkId,\r\n      sharedScenario.claim.asReceiver.ciphers\r\n    );\r\n\r\n    // Decrypt all items\r\n    const receiverDirectories = await Promise.all(\r\n      sharedScenario.receiverDirectories.map(async (x) => {\r\n        const wrappedItemKey = assemblyKey\r\n          ? await this.encryptionService.decrypt(assemblyKey, x.wrappedItemKey)\r\n          : x.wrappedItemKey;\r\n\r\n        return {\r\n          receiverDirectoryId: x.id,\r\n          receiverSharedKeyWrappedItemKey: wrappedItemKey, // the wrappedItemKey is already wrapped by receiverSharedKey\r\n        };\r\n      })\r\n    );\r\n\r\n    await this.lrApollo.mutate<void>({\r\n      mutation: ReceiveScenarioClaimMutation,\r\n      variables: {\r\n        input: {\r\n          claimId,\r\n          receiverDirectories,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  private async getClaimAssemblyKey(keyId: string, ciphers: string[]) {\r\n    if (!ciphers || !ciphers.length) return null;\r\n\r\n    let assemblyKeyParams: object;\r\n\r\n    const shares = await Promise.all(\r\n      ciphers.map(async (x) => {\r\n        const { partialAssemblyKey } = await this.keyGraph.decryptFromString<{\r\n          partialAssemblyKey: PartialAssemblyKey;\r\n        }>(keyId, x);\r\n\r\n        if (assemblyKeyParams) {\r\n          if (\r\n            JSON.stringify(assemblyKeyParams) !==\r\n            JSON.stringify(partialAssemblyKey.assemblyKeyParams)\r\n          ) {\r\n            throw new LrException({\r\n              code: LrErrorCode.BadState,\r\n              message:\r\n                'The assembly key parameters are different between the approvals.',\r\n            });\r\n          }\r\n        } else {\r\n          assemblyKeyParams = partialAssemblyKey.assemblyKeyParams;\r\n        }\r\n        return partialAssemblyKey.slip39.share.mnemonics;\r\n      })\r\n    );\r\n\r\n    const rawAssemblyKey = await this.slip39Service.recoverSecret(\r\n      shares,\r\n      ScenarioApproverService.SLIP39_PASSPHRASE\r\n    );\r\n\r\n    return await KFS.asKey({\r\n      ...assemblyKeyParams,\r\n      k: rawAssemblyKey,\r\n    });\r\n  }\r\n\r\n  public async resetScenario(\r\n    scenarioId: string,\r\n    disable: boolean = false\r\n  ): Promise<void> {\r\n    const prepareReceiverItem = async (\r\n      itemKeyId: string,\r\n      sharedKeyId: string,\r\n      assemblyKey: JWK.Key\r\n    ): Promise<string> => {\r\n      const sharedKey = await this.keyGraph.getKey(sharedKeyId);\r\n      const itemKey = await this.keyGraph.getKey(itemKeyId);\r\n\r\n      let wrappedItemKey = await this.keyGraph.encryptToString(\r\n        sharedKey.jwk,\r\n        itemKey.jwk.toJSON(true)\r\n      );\r\n      if (assemblyKey) {\r\n        wrappedItemKey = await this.keyGraph.encryptToString(\r\n          assemblyKey,\r\n          wrappedItemKey\r\n        );\r\n      }\r\n      return wrappedItemKey;\r\n    };\r\n\r\n    const prepareReceiverDirectories = async (\r\n      receiver: Receiver,\r\n      assemblyKey: JWK.Key\r\n    ) => {\r\n      return Promise.all([\r\n        ...receiver.categories.map(async (receiverDirectory) => ({\r\n          receiverDirectoryId: receiverDirectory.id,\r\n          wrappedItemKey: await prepareReceiverItem(\r\n            receiverDirectory.category.keyId,\r\n            receiver.keyId,\r\n            assemblyKey\r\n          ),\r\n        })),\r\n        ...receiver.records.map(async (receiverDirectory) => ({\r\n          receiverDirectoryId: receiverDirectory.id,\r\n          wrappedItemKey: await prepareReceiverItem(\r\n            receiverDirectory.record.keyId,\r\n            receiver.keyId,\r\n            assemblyKey\r\n          ),\r\n        })),\r\n      ]);\r\n    };\r\n\r\n    const prepareReceivers = async (\r\n      receivers: Receiver[],\r\n      assemblyKey: JWK.Key\r\n    ) => {\r\n      return Promise.all(\r\n        receivers.map(async (receiver) => ({\r\n          receiverId: receiver.id,\r\n          receiverDirectories: await prepareReceiverDirectories(\r\n            receiver,\r\n            assemblyKey\r\n          ),\r\n          receiverFiles: [],\r\n        }))\r\n      );\r\n    };\r\n\r\n    const prepareApprovers = async (approvers: Approver[]) => {\r\n      return Promise.all(\r\n        approvers.map(async (approver) => ({\r\n          approverId: approver.id,\r\n          sharedKeyId: approver.keyId,\r\n        }))\r\n      );\r\n    };\r\n\r\n    const prepareSubAssemblies = async (\r\n      subAssemblies: ApprovalGroup[],\r\n      assemblyKey: JWK.Key\r\n    ) => {\r\n      return Promise.all(\r\n        subAssemblies.map(async (sa) => ({\r\n          subAssemblyId: sa.id,\r\n          subAssemblyCipherData: await this.keyGraph.encryptToString(\r\n            assemblyKey,\r\n            { name: sa.name }\r\n          ),\r\n          approvers: await prepareApprovers(sa.approvers),\r\n        }))\r\n      );\r\n    };\r\n\r\n    // ------------------------------------------------------------------------------\r\n    // ------------------------------------------------------------------------------\r\n    // ------------------------------------------------------------------------------\r\n\r\n    const scenario = await this.getScenario(scenarioId);\r\n    if (scenario.status !== ScenarioState.APPROVED) {\r\n      throw new LrException({\r\n        code: LrErrorCode.BadState,\r\n        message: `Scenario must be in ${ScenarioState.APPROVED} state`,\r\n      });\r\n    }\r\n\r\n    const subjectKey = await this.keyGraph.getKey(scenario.keyId);\r\n    const newAssemblyKey = await this.keyFactory.createKey();\r\n\r\n    const input: any = {\r\n      scenarioId: scenario.id,\r\n      disable,\r\n      receivers: await prepareReceivers(scenario.receivers, newAssemblyKey),\r\n    };\r\n\r\n    // Approver assembly\r\n    const subjectKeyWrappedAssemblyKey = await this.keyGraph.encryptToString(\r\n      subjectKey.jwk,\r\n      newAssemblyKey.toJSON(true)\r\n    );\r\n\r\n    input.approverAssembly = {\r\n      subjectKeyId: subjectKey.id,\r\n      subjectKeyWrappedAssemblyKey,\r\n      assemblyCipherData: '',\r\n      subAssemblies: await prepareSubAssemblies(\r\n        scenario.approverGroups,\r\n        newAssemblyKey\r\n      ),\r\n    };\r\n\r\n    if (scenario.approverGroups.length) {\r\n      const { k: rawAssemblyKey, ...assemblyKeyParams } = newAssemblyKey.toJSON(\r\n        true\r\n      ) as any;\r\n\r\n      // Split the keys. If the scenario has been approved and there is an assembly setup, then\r\n      // that assembly already enough members to meet quorum to approve the claim. So we can assume\r\n      // that we can always do a key split here.\r\n      const slipAssembly = new slip.Assembly(scenario.assemblyQuorum);\r\n\r\n      scenario.approverGroups.forEach((sa, isa) => {\r\n        let approverCount = sa.approvers.length;\r\n        // if quorum is 1, then every approvers in the sub assembly shares the same partial key\r\n        if (sa.quorum === 1) {\r\n          approverCount = 1;\r\n        }\r\n        slipAssembly.addSubAssembly(\r\n          new slip.SubAssembly(isa, sa.quorum, approverCount)\r\n        );\r\n      });\r\n\r\n      await this.slip39Service.generateShares(\r\n        rawAssemblyKey,\r\n        ScenarioApproverService.SLIP39_PASSPHRASE,\r\n        slipAssembly\r\n      );\r\n\r\n      // Copy the partial keys\r\n      await Promise.all(\r\n        scenario.approverGroups.map(async (sa, isa) => {\r\n          const slipSubAssembly = slipAssembly.subAssemblies[isa];\r\n          const inputSubAssembly = input.approverAssembly.subAssemblies[isa];\r\n\r\n          await Promise.all(\r\n            sa.approvers.map(async (approver, ia) => {\r\n              const sharedKey = await this.keyGraph.getKey(approver.keyId);\r\n\r\n              // if quorum is 1, then every approvers in the sub assembly shares the same partial key\r\n              const share =\r\n                sa.quorum === 1\r\n                  ? slipSubAssembly.shares[0]\r\n                  : slipSubAssembly.shares[ia];\r\n\r\n              const partialAssemblyKey: PartialAssemblyKey = {\r\n                slip39: {\r\n                  share,\r\n                  subAssembly: {\r\n                    quorum: sa.quorum,\r\n                    size: sa.approvers.length,\r\n                  },\r\n                },\r\n                assemblyKeyParams,\r\n              };\r\n              inputSubAssembly.approvers[\r\n                ia\r\n              ].sharedCipherPartialAssemblyKey = await this.keyGraph.encryptToString(\r\n                sharedKey.jwk,\r\n                partialAssemblyKey\r\n              );\r\n            })\r\n          );\r\n        })\r\n      );\r\n    }\r\n    await this.lrApollo.mutate<any>({\r\n      mutation: ResetScenarioMutation,\r\n      variables: { input },\r\n    });\r\n  }\r\n\r\n  public async getAllScenarioIds(): Promise<string[]> {\r\n    const { scenarios } = await this.lrApollo.query<any>({\r\n      query: GetAllScenarioIdsQuery,\r\n    });\r\n    return scenarios.edges.map((edge) => edge.node.id);\r\n  }\r\n}\r\n","import { LrException } from './../_common/exceptions';\r\nimport { Injectable } from '@angular/core';\r\nimport { PreparedPermissions } from './../api/key-exchange.types';\r\nimport {\r\n  CreateScenarioApprovalGroups,\r\n  UpdateScenarioApprovalGroups,\r\n} from './approvals/scenario-approval.types';\r\nimport { ScenarioApproverService } from './approvals/scenario-approver.service';\r\nimport { ScenarioClaimantService } from './claimants/scenario-claimant.service';\r\nimport { ScenarioReceiverService } from './receivers/scenario-receiver.service';\r\nimport {\r\n  Receiver,\r\n  UpdateScenarioReceiverItemInput,\r\n} from './receivers/scenario-receiver.types';\r\nimport { ScenarioService } from './scenario.service';\r\nimport {\r\n  NewScenario,\r\n  UpdatedScenarioClaimant,\r\n  UpdatedScenarioReceiver,\r\n  UpdateScenario,\r\n} from './scenario.types';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class ScenarioSetupService {\r\n  constructor(\r\n    private scenarioService: ScenarioService,\r\n    private scenarioClaimantService: ScenarioClaimantService,\r\n    private scenarioApproverService: ScenarioApproverService,\r\n    private scenarioReceiverService: ScenarioReceiverService\r\n  ) {}\r\n\r\n  public async setupScenario(\r\n    newScenario: NewScenario\r\n  ): Promise<{ scenarioId: string; error?: LrException }> {\r\n    const scenarioId = await this.scenarioService.createScenario({\r\n      plainSubjectCipherData: {\r\n        event: newScenario.event,\r\n        name: newScenario.name,\r\n      },\r\n    });\r\n\r\n    try {\r\n      await Promise.all(\r\n        newScenario.claimants.map((x) =>\r\n          this.updateClaimant(scenarioId, newScenario.event, x)\r\n        )\r\n      );\r\n\r\n      const scenario = await this.scenarioService.getScenario(scenarioId);\r\n      if (newScenario.approvalGroups.length) {\r\n        const approvalGroups: CreateScenarioApprovalGroups = {\r\n          scenarioId,\r\n          keyId: scenario.keyId,\r\n          event: scenario.event,\r\n          singleReject: false,\r\n          quorum: 1,\r\n          plainAssemblyCipherData: null,\r\n\r\n          approvalGroups: newScenario.approvalGroups.map((x) => ({\r\n            quorum: x.quorum,\r\n            singleReject: x.singleReject,\r\n            plainSubAssemblyCipherData: { name: x.name },\r\n            approvers: x.approvers.map((y) => ({\r\n              trustedPartyId: y.trustedPartyId,\r\n              trustedPartySharedKeyId: y.trustedPartySharedKeyId,\r\n              plainSharedCipherData: {\r\n                message: y.message,\r\n                event: newScenario.event,\r\n              },\r\n            })),\r\n          })),\r\n        };\r\n        scenario.assemblyKeyId = await this.scenarioApproverService.createScenarioApproverAssembly(\r\n          approvalGroups\r\n        );\r\n      }\r\n      await Promise.all(\r\n        newScenario.receivers.map((x) =>\r\n          this.updateReceiver(\r\n            scenarioId,\r\n            scenario.assemblyKeyId,\r\n            newScenario.event,\r\n            x\r\n          )\r\n        )\r\n      );\r\n    } catch (e) {\r\n      return { scenarioId, error: e };\r\n    }\r\n    return { scenarioId };\r\n  }\r\n\r\n  public async updateScenario(updateScenario: UpdateScenario): Promise<void> {\r\n    const params = {\r\n      scenarioId: updateScenario.scenarioId,\r\n      keyId: updateScenario.keyId,\r\n      plainSubjectCipherData: {\r\n        event: updateScenario.event,\r\n        name: updateScenario.name,\r\n      },\r\n    };\r\n    await this.scenarioService.updateScenario(params);\r\n\r\n    await Promise.all(\r\n      updateScenario.claimants.map((x) =>\r\n        this.updateClaimant(updateScenario.scenarioId, updateScenario.event, x)\r\n      )\r\n    );\r\n    await Promise.all(\r\n      updateScenario.deletedClaimantIds.map((x) =>\r\n        this.scenarioClaimantService.deleteClaimant(x)\r\n      )\r\n    );\r\n\r\n    const assemblyKeyId = await this.updateApprovalGroups(updateScenario);\r\n\r\n    await Promise.all(\r\n      updateScenario.receivers.map((x) =>\r\n        this.updateReceiver(\r\n          updateScenario.scenarioId,\r\n          assemblyKeyId,\r\n          updateScenario.event,\r\n          x\r\n        )\r\n      )\r\n    );\r\n    await Promise.all(\r\n      updateScenario.deletedReceiverIds.map((x) =>\r\n        this.scenarioReceiverService.deleteReceiver(x)\r\n      )\r\n    );\r\n  }\r\n\r\n  private async updateClaimant(\r\n    scenarioId: string,\r\n    event: string,\r\n    claimant: UpdatedScenarioClaimant\r\n  ) {\r\n    if (claimant.claimantId) {\r\n      await this.scenarioClaimantService.updateClaimant({\r\n        id: claimant.claimantId,\r\n        keyId: claimant.keyId,\r\n        plainSharedCipherData: { message: claimant.message, event },\r\n      });\r\n    } else {\r\n      await this.scenarioClaimantService.addClaimant({\r\n        scenarioId,\r\n        trustedPartyId: claimant.trustedPartyId,\r\n        trustedPartySharedKeyId: claimant.trustedPartySharedKeyId,\r\n        plainSharedCipherData: { message: claimant.message, event },\r\n      });\r\n    }\r\n  }\r\n\r\n  private async updateApprovalGroups(\r\n    updateScenario: UpdateScenario\r\n  ): Promise<string> {\r\n    if (updateScenario.assemblyKeyId) {\r\n      if (updateScenario.approvalGroups.length) {\r\n        const approvalGroups: UpdateScenarioApprovalGroups = {\r\n          scenarioId: updateScenario.scenarioId,\r\n          assemblyKeyId: updateScenario.assemblyKeyId,\r\n\r\n          singleReject: false,\r\n          quorum: 1,\r\n\r\n          approvalGroups: updateScenario.approvalGroups.map((x) => ({\r\n            subAssemblyId: x.subAssemblyId,\r\n            quorum: x.quorum,\r\n            singleReject: x.singleReject,\r\n            plainSubAssemblyCipherData: { name: x.name },\r\n            approvers: x.approvers.map((y) => ({\r\n              approverId: y.approverId,\r\n              keyId: y.keyId,\r\n              trustedPartyId: y.trustedPartyId,\r\n              trustedPartySharedKeyId: y.trustedPartySharedKeyId,\r\n              plainSharedCipherData: {\r\n                message: y.message,\r\n                event: updateScenario.event,\r\n              },\r\n            })),\r\n            deletedApproverIds: x.deletedApproverIds,\r\n          })),\r\n          deletedGroupIds: updateScenario.deletedGroupIds,\r\n        };\r\n        await this.scenarioApproverService.updateScenarioApproverAssembly(\r\n          approvalGroups\r\n        );\r\n        return updateScenario.assemblyKeyId;\r\n      } else {\r\n        const { receivers } = await this.scenarioService.getScenario(\r\n          updateScenario.scenarioId\r\n        );\r\n        await this.scenarioApproverService.deleteScenarioApproverAssembly(\r\n          updateScenario.scenarioId,\r\n          updateScenario.event,\r\n          receivers\r\n        );\r\n        return null;\r\n      }\r\n      // update or delete\r\n    } else if (updateScenario.approvalGroups.length) {\r\n      const { receivers } = await this.scenarioService.getScenario(\r\n        updateScenario.scenarioId\r\n      );\r\n\r\n      const approvalGroups: CreateScenarioApprovalGroups = {\r\n        scenarioId: updateScenario.scenarioId,\r\n        keyId: updateScenario.keyId,\r\n        event: updateScenario.event,\r\n        singleReject: false,\r\n        quorum: 1,\r\n        approvalGroups: updateScenario.approvalGroups.map((x) => ({\r\n          quorum: x.quorum,\r\n          singleReject: x.singleReject,\r\n          plainSubAssemblyCipherData: { name: x.name },\r\n          approvers: x.approvers.map((y) => ({\r\n            trustedPartyId: y.trustedPartyId,\r\n            trustedPartySharedKeyId: y.trustedPartySharedKeyId,\r\n            plainSharedCipherData: {\r\n              message: y.message,\r\n              event: updateScenario.event,\r\n            },\r\n          })),\r\n        })),\r\n        receivers,\r\n      };\r\n      return await this.scenarioApproverService.createScenarioApproverAssembly(\r\n        approvalGroups\r\n      );\r\n    }\r\n    return null;\r\n  }\r\n\r\n  private async updateReceiver(\r\n    scenarioId: string,\r\n    assemblyKeyId: string,\r\n    event: string,\r\n    receiver: UpdatedScenarioReceiver\r\n  ) {\r\n    let receiverId = receiver.receiverId;\r\n\r\n    // Currently deleting all receivers below assembly logic.\r\n    if (receiverId) {\r\n      await this.scenarioReceiverService.updateReceiver({\r\n        id: receiver.receiverId,\r\n        keyId: receiver.keyId,\r\n        plainSharedCipherData: { message: receiver.message, event },\r\n      });\r\n    } else {\r\n      const newReceiver = {\r\n        scenarioId,\r\n        trustedPartyId: receiver.trustedPartyId,\r\n        trustedPartySharedKeyId: receiver.trustedPartySharedKeyId,\r\n        plainSharedCipherData: { message: receiver.message, event },\r\n      };\r\n      receiverId = await this.scenarioReceiverService.addReceiver(newReceiver);\r\n    }\r\n    const loadedReceiver = await this.scenarioReceiverService.getReceiver(\r\n      receiverId\r\n    );\r\n    await this.updateReceiverItems(\r\n      scenarioId,\r\n      assemblyKeyId,\r\n      loadedReceiver,\r\n      receiver.permissions\r\n    );\r\n  }\r\n\r\n  private async updateReceiverItems(\r\n    scenarioId: string,\r\n    assemblyKeyId: string,\r\n    receiver: Receiver,\r\n    permissions: PreparedPermissions\r\n  ) {\r\n    permissions = permissions || {};\r\n    permissions.categories = permissions.categories || [];\r\n    permissions.records = permissions.records || [];\r\n\r\n    await Promise.all(\r\n      permissions.categories\r\n        .filter(\r\n          (x) =>\r\n            !receiver.categories.some((y) => y.category.id === x.categoryId)\r\n        )\r\n        .map(async (x) => {\r\n          const params = {\r\n            scenarioId,\r\n            assemblyKeyId,\r\n            receiverId: receiver.id,\r\n            receiverKeyId: receiver.keyId,\r\n            accessRole: x.accessLevel,\r\n            categoryId: x.categoryId,\r\n          };\r\n          await this.scenarioReceiverService.addReceiverCategory(params);\r\n        })\r\n    );\r\n    await Promise.all(\r\n      permissions.records\r\n        .filter(\r\n          (x) => !receiver.records.some((y) => y.record.id === x.recordId)\r\n        )\r\n        .map(async (x) => {\r\n          const params = {\r\n            scenarioId,\r\n            assemblyKeyId,\r\n            receiverId: receiver.id,\r\n            receiverKeyId: receiver.keyId,\r\n            accessRole: x.accessLevel,\r\n            recordId: x.recordId,\r\n          };\r\n          await this.scenarioReceiverService.addReceiverRecord(params);\r\n        })\r\n    );\r\n\r\n    await Promise.all(\r\n      permissions.categories\r\n        .map((x) => ({\r\n          accessLevel: x.accessLevel,\r\n          category: receiver.categories.find(\r\n            (y) => y.category.id === x.categoryId\r\n          ),\r\n        }))\r\n        .filter((x) => x.category)\r\n        .map(async (x) => {\r\n          const params: UpdateScenarioReceiverItemInput = {\r\n            id: x.category.id,\r\n            keyId: x.category.keyId,\r\n            accessRole: x.accessLevel,\r\n          };\r\n          await this.scenarioReceiverService.updateReceiverItem(params);\r\n        })\r\n    );\r\n    await Promise.all(\r\n      permissions.records\r\n        .map((x) => ({\r\n          accessLevel: x.accessLevel,\r\n          record: receiver.records.find((y) => y.record.id === x.recordId),\r\n        }))\r\n        .filter((x) => x.record)\r\n        .map(async (x) => {\r\n          const params: UpdateScenarioReceiverItemInput = {\r\n            id: x.record.id,\r\n            keyId: x.record.keyId,\r\n            accessRole: x.accessLevel,\r\n          };\r\n          await this.scenarioReceiverService.updateReceiverItem(params);\r\n        })\r\n    );\r\n\r\n    await Promise.all(\r\n      receiver.categories\r\n        .filter(\r\n          (x) =>\r\n            !permissions.categories.some((y) => y.categoryId === x.category.id)\r\n        )\r\n        .map((x) => this.scenarioReceiverService.deleteReceiverItem(x.id))\r\n    );\r\n    await Promise.all(\r\n      receiver.records\r\n        .filter(\r\n          (x) => !permissions.records.some((y) => y.recordId === x.record.id)\r\n        )\r\n        .map((x) => this.scenarioReceiverService.deleteReceiverItem(x.id))\r\n    );\r\n  }\r\n}\r\n","import { Injectable } from '@angular/core';\r\nimport { SharedContactCardService } from '../api/shared-contact-card.service';\r\nimport { CurrentUser } from '../auth/auth.types';\r\nimport { LifeReadyAuthService } from '../auth/life-ready-auth.service';\r\nimport { TrustedPartyService } from '../trusted-parties/trusted-party.service';\r\nimport { SharedTrustedPartyDetails } from '../trusted-parties/trusted-party.types';\r\nimport { ProfileService } from './profile.service';\r\nimport {\r\n  MainContactCardFields,\r\n  MainContactCardProperty,\r\n  TrustedPartyDetails,\r\n} from './profile.types';\r\nimport _ from 'lodash';\r\n\r\nenum ContactFields {\r\n  Name = 'name',\r\n  Email = 'email',\r\n  Image = 'image',\r\n  Phone = 'phone',\r\n  Address = 'address',\r\n}\r\n\r\nconst FieldNames = [\r\n  ContactFields.Name,\r\n  ContactFields.Email,\r\n  ContactFields.Image,\r\n  ContactFields.Phone,\r\n  ContactFields.Address,\r\n];\r\n\r\nclass FieldChange {\r\n  field: string;\r\n  id: string;\r\n  label: string;\r\n  oldValue?: any;\r\n  newValue?: any;\r\n}\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class ProfileDetailsService {\r\n  constructor(\r\n    private sharedContactCardService: SharedContactCardService,\r\n    private trustedPartyService: TrustedPartyService,\r\n    private profileService: ProfileService,\r\n    private authService: LifeReadyAuthService\r\n  ) {}\r\n\r\n  public async updateDetails(\r\n    fields: MainContactCardFields\r\n  ): Promise<CurrentUser> {\r\n    const user = await this.authService.getUser();\r\n    await this.profileService.updateDetails(\r\n      user.contactCard.id,\r\n      user.contactCard.keyId,\r\n      fields\r\n    );\r\n    await this.synchronizeContactCards(fields, user.contactCard);\r\n    return await this.authService.getUser(true);\r\n  }\r\n\r\n  private async synchronizeContactCards(\r\n    newFields: MainContactCardFields,\r\n    oldFields: MainContactCardFields\r\n  ): Promise<void> {\r\n    if (!oldFields) return;\r\n\r\n    const changes = this.getChanges(newFields, oldFields);\r\n\r\n    if (changes.length === 0) return;\r\n\r\n    const trustedParties = await this.trustedPartyService.getTrustedParties();\r\n\r\n    if (trustedParties.length === 0) return;\r\n\r\n    for (const details of trustedParties.map((x) => x.mySharedDetails)) {\r\n      await this.synchronizeSharedContactCard(details, changes);\r\n    }\r\n  }\r\n\r\n  private getChanges(\r\n    newFields: MainContactCardFields,\r\n    oldFields: MainContactCardFields\r\n  ): FieldChange[] {\r\n    const changes: FieldChange[] = [];\r\n\r\n    for (const field of FieldNames) {\r\n      const oldField = oldFields[field];\r\n      if (oldField && oldField.values) {\r\n        for (const oldValue of oldField.values) {\r\n          const newValue = (newFields[field].values as any[]).find(\r\n            (x) => x.id === oldValue.id\r\n          );\r\n\r\n          if (!newValue) {\r\n            changes.push({\r\n              field,\r\n              id: oldValue.id,\r\n              label: oldValue.label,\r\n              oldValue: oldValue.value,\r\n            });\r\n          } else if (!_.isEqual(newValue.value, oldValue.value)) {\r\n            changes.push({\r\n              field,\r\n              id: oldValue.id,\r\n              label: oldValue.label,\r\n              oldValue: oldValue.value,\r\n              newValue: newValue.value,\r\n            });\r\n          }\r\n        }\r\n      }\r\n    }\r\n    return changes;\r\n  }\r\n\r\n  private async synchronizeSharedContactCard(\r\n    details: SharedTrustedPartyDetails,\r\n    changes: FieldChange[]\r\n  ): Promise<void> {\r\n    let hasChanged = false;\r\n    for (const change of changes) {\r\n      switch (change.field) {\r\n        case ContactFields.Phone:\r\n          {\r\n            const value =\r\n              details.phones &&\r\n              details.phones.find((x) => x.label === change.label);\r\n\r\n            if (value) {\r\n              hasChanged = true;\r\n              value.value = change.newValue;\r\n            }\r\n          }\r\n          break;\r\n        case ContactFields.Address:\r\n          {\r\n            const value =\r\n              details.addresses &&\r\n              details.addresses.find((x) => x.label === change.label);\r\n\r\n            if (value) {\r\n              hasChanged = true;\r\n              value.value = change.newValue;\r\n            }\r\n          }\r\n          break;\r\n        default: {\r\n          const value = details[change.field];\r\n\r\n          if (_.isEqual(value, change.oldValue)) {\r\n            hasChanged = true;\r\n            details[change.field] = change.newValue;\r\n          }\r\n        }\r\n      }\r\n    }\r\n    if (hasChanged) {\r\n      const { id, ownedKeyId, sharedKeyId, ...contactCard } = details;\r\n\r\n      await this.sharedContactCardService.updateMySharedContactCard(\r\n        id,\r\n        ownedKeyId,\r\n        sharedKeyId,\r\n        contactCard\r\n      );\r\n    }\r\n  }\r\n\r\n  public async updateTrustedPartyDetails(details: SharedTrustedPartyDetails) {\r\n    const { id, ownedKeyId, sharedKeyId, ...contactCard } = details;\r\n\r\n    await this.sharedContactCardService.updateMySharedContactCard(\r\n      id,\r\n      ownedKeyId,\r\n      sharedKeyId,\r\n      contactCard\r\n    );\r\n\r\n    await this.synchronizeSharedDetails(details);\r\n  }\r\n\r\n  public async synchronizeSharedDetails(details: TrustedPartyDetails) {\r\n    let { contactCard } = await this.authService.getUser();\r\n    let hasNewValues = false;\r\n    contactCard = { ...contactCard };\r\n\r\n    if (details.name) {\r\n      const property = this.checkField(details.name, contactCard.name);\r\n\r\n      if (property) {\r\n        contactCard.name = property;\r\n        hasNewValues = true;\r\n      }\r\n    }\r\n\r\n    if (details.email) {\r\n      const property = this.checkField(details.email, contactCard.email);\r\n\r\n      if (property) {\r\n        contactCard.email = property;\r\n        hasNewValues = true;\r\n      }\r\n    }\r\n\r\n    if (details.image) {\r\n      const property = this.checkField(details.image, contactCard.image);\r\n\r\n      if (property) {\r\n        contactCard.image = property;\r\n        hasNewValues = true;\r\n      }\r\n    }\r\n\r\n    if (details.phones && details.phones.length) {\r\n      for (const phone of details.phones) {\r\n        const property = this.checkField(\r\n          phone.value,\r\n          contactCard.phone,\r\n          phone.label\r\n        );\r\n\r\n        if (property) {\r\n          contactCard.phone = property;\r\n          hasNewValues = true;\r\n        }\r\n      }\r\n    }\r\n\r\n    if (details.addresses && details.addresses.length) {\r\n      for (const address of details.addresses) {\r\n        const property = this.checkField(\r\n          address.value,\r\n          contactCard.address,\r\n          address.label\r\n        );\r\n\r\n        if (property) {\r\n          contactCard.address = property;\r\n          hasNewValues = true;\r\n        }\r\n      }\r\n    }\r\n\r\n    if (hasNewValues) {\r\n      await this.profileService.updateDetails(\r\n        contactCard.id,\r\n        contactCard.keyId,\r\n        contactCard\r\n      );\r\n    }\r\n  }\r\n\r\n  private checkField<T>(\r\n    field: T,\r\n    property: MainContactCardProperty<T>,\r\n    label: string = null\r\n  ) {\r\n    property = property || { value: field, hasMultiple: false };\r\n    property.values = property.values || [];\r\n\r\n    if (\r\n      property.values.length === 0 ||\r\n      property.values.every((x) => !_.isEqual(field, x.value))\r\n    ) {\r\n      property.values.push({\r\n        id: `${label}-${new Date().getTime()}`,\r\n        label,\r\n        value: field,\r\n      });\r\n      property.hasMultiple = property.values.length > 1;\r\n      property.value = property.value || field;\r\n      return property;\r\n    }\r\n    return null;\r\n  }\r\n}\r\n","import { Key } from '../cryptography/cryptography.types';\r\n\r\nexport interface GetUserInput {\r\n  email?: string;\r\n  username?: string;\r\n}\r\n\r\nexport interface User {\r\n  id?: string;\r\n  username?: string;\r\n  haveTp: boolean;\r\n  isCurrentUser: boolean;\r\n  contactCards?: any;\r\n  currentUserKey: {\r\n    sigPxk?: Key;\r\n    pxk?: Key;\r\n  };\r\n}\r\n\r\nexport enum UserDeleteState {\r\n  REQUESTED = 'REQUESTED',\r\n}\r\n\r\nexport interface UserDelete {\r\n  created?: string;\r\n  state: UserDeleteState;\r\n}\r\n","import { HttpClientModule } from '@angular/common/http';\r\nimport { APP_INITIALIZER, ModuleWithProviders, NgModule } from '@angular/core';\r\nimport Auth from '@aws-amplify/auth';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport { APOLLO_OPTIONS } from 'apollo-angular';\r\nimport { CookieService } from 'ngx-cookie-service';\r\nimport { FileService } from './api/file.service';\r\nimport { ProfileService } from './users/profile.service';\r\nimport { configureAmplifyAuth } from './auth/auth.config';\r\nimport {\r\n  initialiseAuth,\r\n  LifeReadyAuthService,\r\n} from './auth/life-ready-auth.service';\r\nimport { PasswordService } from './auth/password.service';\r\nimport { RegisterService } from './auth/register.service';\r\nimport { EncryptionService } from './cryptography/encryption.service';\r\nimport { KeyGraphService } from './cryptography/key-graph.service';\r\nimport { KeyService } from './cryptography/key.service';\r\nimport { KeyFactoryService } from './cryptography/key-factory.service';\r\nimport { WebCryptoService } from './cryptography/web-crypto.service';\r\nimport {\r\n  configureApollo,\r\n  LifeReadyConfig,\r\n  LR_CONFIG,\r\n} from './life-ready.config';\r\nimport { TimeService } from './api/time.service';\r\nimport { NgIdleKeepaliveModule } from '@ng-idle/keepalive';\r\n\r\n@NgModule({\r\n  imports: [HttpClientModule, NgIdleKeepaliveModule.forRoot()],\r\n  providers: [\r\n    CookieService,\r\n    TimeService,\r\n    FileService,\r\n    ProfileService,\r\n    RegisterService,\r\n    LifeReadyAuthService,\r\n    PasswordService,\r\n    WebCryptoService,\r\n    EncryptionService,\r\n    KeyGraphService,\r\n    KeyService,\r\n    KeyFactoryService,\r\n  ],\r\n})\r\nexport class LifeReadyModule {\r\n  public static forRoot(\r\n    config: LifeReadyConfig\r\n  ): ModuleWithProviders<LifeReadyModule> {\r\n    return {\r\n      ngModule: LifeReadyModule,\r\n      providers: [\r\n        {\r\n          provide: LR_CONFIG,\r\n          useValue: config,\r\n        },\r\n        {\r\n          provide: AuthClass,\r\n          useValue: Auth,\r\n        },\r\n        {\r\n          provide: APP_INITIALIZER,\r\n          useFactory: configureAmplifyAuth,\r\n          deps: [LR_CONFIG, AuthClass],\r\n          multi: true,\r\n        },\r\n        {\r\n          provide: APP_INITIALIZER,\r\n          useFactory: initialiseAuth,\r\n          deps: [LifeReadyAuthService],\r\n          multi: true,\r\n        },\r\n        {\r\n          provide: APOLLO_OPTIONS,\r\n          useFactory: configureApollo,\r\n          deps: [LR_CONFIG, AuthClass],\r\n        },\r\n      ],\r\n    };\r\n  }\r\n}\r\n","export class Plan {\r\n  name: string;\r\n  data: object;\r\n  state: string;\r\n}\r\n\r\nexport class Subscription {\r\n  id: string;\r\n}\r\n\r\nexport class UserPlan {\r\n  id: string;\r\n  plan: Plan;\r\n  periodEnd: Date;\r\n  subscription: Subscription;\r\n}\r\n\r\nexport class StripeCheckoutSession {\r\n  id: string;\r\n}\r\n\r\nexport class StripeBillingPortalSession {\r\n  url: string;\r\n}\r\n\r\nexport interface UserIssuablePlan {\r\n  plan: Plan;\r\n}\r\n\r\nexport interface UserIssuedPlan {\r\n  id: string;\r\n  plan: Plan;\r\n  token: string;\r\n  tokenExpiryTime: Date;\r\n  planPeriodEnd: Date;\r\n  planPeriodEndAfterSeconds: number;\r\n}\r\n","import Fuse from 'fuse.js';\r\n\r\nexport enum SearchItemType {\r\n  RECORD = 'RECORD',\r\n  CATEGORY = 'CATEGORY',\r\n}\r\n\r\nexport interface SearchRecordAttachment {\r\n  name: string;\r\n}\r\n\r\nexport interface SearchItem {\r\n  id: string;\r\n  type: SearchItemType;\r\n  created: Date;\r\n  modified: Date;\r\n  archived: boolean;\r\n  plainMeta: any;\r\n  plainCipherMeta: any;\r\n  parentCategoryId?: string;\r\n  attachments?: SearchRecordAttachment[];\r\n}\r\n\r\nexport type SearchResults = Fuse.FuseResult<SearchItem>[];\r\n","import gql from 'graphql-tag';\r\nimport { KeyGraphFragment } from '../_common/queries.gql';\r\nconst MAX_CATEGORY_DEPTH = 4;\r\nconst DEFAULT_CATEGORY_DEPTH = 4;\r\n\r\nexport const SearchRecordContentsQuery = gql`\r\n  query GetRecordContents(\r\n    $id: LrRelayIdInput!\r\n    $depth: Int\r\n    $first: Int\r\n    $after: String\r\n    $recordContentFilter: LrJSONFilter!\r\n  ) {\r\n    category: directory(id: $id) {\r\n      descendantDirectories(depth: $depth) {\r\n        recordContents: files(\r\n          first: $first\r\n          after: $after\r\n          plainMeta: $recordContentFilter\r\n          orderBy: \"-created\"\r\n        ) {\r\n          edges {\r\n            node {\r\n              currentVersion {\r\n                state {\r\n                  keyId\r\n                  plainMeta\r\n                  cipherMeta\r\n                  contentResource\r\n                }\r\n              }\r\n              nParentDirectoryLinks(n: 1) {\r\n                list {\r\n                  parentDirectory {\r\n                    id\r\n                    keyId\r\n                    created\r\n                    modified\r\n                    archived\r\n                    plainMeta\r\n                    cipherMeta\r\n                    nParentDirectoryLinks(n: 3) {\r\n                      list {\r\n                        parentDirectory {\r\n                          id\r\n                        }\r\n                      }\r\n                    }\r\n                  }\r\n                }\r\n              }\r\n            }\r\n          }\r\n        }\r\n      }\r\n    }\r\n    keyGraph {\r\n      ...KeyGraphFragment\r\n    }\r\n  }\r\n  ${KeyGraphFragment}\r\n`;\r\n","import { Injectable, NgZone } from '@angular/core';\r\nimport { LrApolloService } from '../api/lr-apollo.service';\r\nimport { CategoryService } from '../category/category.service';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { RecordFieldType } from '../record-type/record-type.types';\r\nimport { RecordContentFilter } from '../record/record.gql';\r\nimport { RecordService } from '../record/record.service';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\nimport { SearchRecordContentsQuery } from './search.gql';\r\nimport { SearchItem, SearchItemType } from './search.types';\r\n\r\nasync function debugPopulateCategory(\r\n  categoryService: CategoryService,\r\n  recordService: RecordService,\r\n  keyFactory: KeyFactoryService,\r\n  categoryId: string,\r\n  recordsPerCategory: number\r\n) {\r\n  const tasks = [];\r\n\r\n  const category = await categoryService.getCategory(categoryId);\r\n\r\n  // Create records\r\n  for (let i = category.records.length; i < recordsPerCategory; ++i) {\r\n    const name = `${category.category.name}+${keyFactory.randomString(16)}`;\r\n    console.log('Creating record: ', name);\r\n    await recordService.createRecord({\r\n      categoryIds: [category.category.id],\r\n      name,\r\n      recordType: {\r\n        id: '1',\r\n        version: 1,\r\n        name: 'Vehicle Details',\r\n      },\r\n      fields: [\r\n        {\r\n          id: '1-vin',\r\n          type: RecordFieldType.Text,\r\n          label: 'VIN Number',\r\n          value: '1234567890',\r\n        },\r\n        {\r\n          id: '1-location',\r\n          type: RecordFieldType.Text,\r\n          label: 'Location',\r\n          value: '10'.repeat(1000),\r\n        },\r\n      ],\r\n      // attachments\r\n    });\r\n  }\r\n\r\n  // Delete records\r\n  for (let i = category.records.length; i > recordsPerCategory; --i) {\r\n    const id = category.records[i - 1].id;\r\n    console.log('Deleting record: ', id);\r\n    await recordService.deleteRecord(id);\r\n  }\r\n}\r\n\r\nexport async function debugPopulateRecords(\r\n  categoryService: CategoryService,\r\n  recordService: RecordService,\r\n  keyFactory: KeyFactoryService,\r\n  recordsPerCategory: number\r\n) {\r\n  const pillars = await categoryService.getCategories();\r\n\r\n  // For each category, added records\r\n  for (const pillar of pillars) {\r\n    const category = await categoryService.getCategory(pillar.id);\r\n    for (const subCategory of category.subCategories) {\r\n      if (subCategory.allowRecords) {\r\n        await debugPopulateCategory(\r\n          categoryService,\r\n          recordService,\r\n          keyFactory,\r\n          subCategory.id,\r\n          recordsPerCategory\r\n        );\r\n      }\r\n    }\r\n  }\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class SearchService {\r\n  vaultItems: { [itemId: string]: SearchItem } = {};\r\n  recordContentsResult: any;\r\n\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private lrApollo: LrApolloService,\r\n    private categoryService: CategoryService,\r\n    private keyGraph: KeyGraphService\r\n  ) {}\r\n\r\n  private async mapRecordContent(recordContent: any): Promise<SearchItem> {\r\n    const record = recordContent.nParentDirectoryLinks.list[0].parentDirectory;\r\n    const state = recordContent.currentVersion.state;\r\n\r\n    const plainCipherMeta =\r\n      state.cipherMeta &&\r\n      (await this.keyGraph.decryptFromString<any>(\r\n        state.keyId,\r\n        state.cipherMeta\r\n      ));\r\n\r\n    return {\r\n      type: SearchItemType.RECORD,\r\n      id: record.id,\r\n      created: new Date(record.created),\r\n      modified: new Date(record.modified),\r\n      archived: record.archived,\r\n      plainMeta:\r\n        state.plainMeta &&\r\n        JSON.parse(recordContent.currentVersion.state.plainMeta),\r\n      plainCipherMeta,\r\n      parentCategoryId: record.nParentDirectoryLinks.list[0].parentDirectory.id,\r\n    };\r\n  }\r\n\r\n  private async mapRecordContents(edges: any[]): Promise<SearchItem[]> {\r\n    return Promise.all(edges.map((edge) => this.mapRecordContent(edge.node)));\r\n  }\r\n\r\n  private async load() {\r\n    const defaultVault = await this.categoryService.getDefaultVault();\r\n    let start;\r\n    let end;\r\n\r\n    start = Date.now();\r\n\r\n    this.recordContentsResult = await this.lrApollo.query<any>({\r\n      query: SearchRecordContentsQuery,\r\n      variables: {\r\n        id: defaultVault.id,\r\n        depth: 5,\r\n        first: null,\r\n        after: null,\r\n        recordContentFilter: RecordContentFilter,\r\n      },\r\n    });\r\n\r\n    end = Date.now();\r\n    console.log('Search API time (s): ', (end - start) / 1000);\r\n\r\n    start = Date.now();\r\n    // try {\r\n    const items = await this.mapRecordContents(\r\n      this.recordContentsResult.category.descendantDirectories.recordContents\r\n        .edges\r\n    );\r\n    for (const item of items) {\r\n      this.vaultItems[item.id] = item;\r\n    }\r\n\r\n    end = Date.now();\r\n    console.log('Search mapCategory time (s): ', (end - start) / 1000);\r\n  }\r\n\r\n  public async refresh() {\r\n    await this.load();\r\n\r\n    console.log(Object.values(this.vaultItems));\r\n    return this.vaultItems;\r\n  }\r\n}\r\n","import { Connection, ContactCardNode, ID } from './types';\r\nimport { gqlTyped } from '../_common/ast';\r\n\r\nexport const ContactCardFragment = gqlTyped<ContactCardNode>`\r\n  fragment ContactCardFragment on ContactCardNode {\r\n    id\r\n    publicData\r\n    publicSearchable\r\n    cipherData\r\n    key {\r\n        id\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface CreateContactCardMutation {\r\n  createContactCard: {\r\n    contactCard: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const CreateContactCardMutation = gqlTyped<CreateContactCardMutation>`\r\n  mutation CreateContactCardMutation(\r\n    $input: CreateContactCardInput!\r\n  ) {\r\n    createContactCard(input: $input) {\r\n      contactCard {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface UpdateContactCardMutation {\r\n  updateContactCard: {\r\n    contactCard: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const UpdateContactCardMutation = gqlTyped<UpdateContactCardMutation>`\r\n  mutation UpdateContactCardMutation($input: UpdateContactCardInput!) {\r\n    updateContactCard(input: $input) {\r\n      contactCard {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface DeleteContactCardMutation {\r\n  deleteContactCard: {\r\n    deleteContactCard: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const DeleteContactCardMutation = gqlTyped<DeleteContactCardMutation>`\r\n  mutation DeleteContactCardMutation($input: DeleteContactCardInput!) {\r\n    deleteContactCard(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface ContactCardsQuery {\r\n  contactCards: Connection<ContactCardNode>;\r\n}\r\nexport const ContactCardsQuery = gqlTyped<ContactCardsQuery>`\r\n  query ContactCardsQuery {\r\n    contactCards(orderBy: \"created\") {\r\n      edges {\r\n        node {\r\n          ...ContactCardFragment\r\n        }\r\n      }\r\n    }\r\n  }\r\n  ${ContactCardFragment}\r\n`;\r\n\r\nexport interface ContactCardQuery {\r\n  contactCard: ContactCardNode;\r\n}\r\nexport const ContactCardQuery = gqlTyped<ContactCardQuery>`\r\n  query ContactCardQuery($id: LrRelayIdInput!) {\r\n    contactCard(id: $id) {\r\n      ...ContactCardFragment\r\n    }\r\n  }\r\n  ${ContactCardFragment}\r\n`;\r\n","import { Injectable, NgZone } from '@angular/core';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyMetaService } from '../cryptography/key-meta.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { MainContactCardPlainFields } from '../users/profile.types';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\nimport {\r\n  CreateContactCardMutation,\r\n  DeleteContactCardMutation,\r\n  UpdateContactCardMutation,\r\n} from './contact-card2.gql';\r\nimport { LrMutation } from './lr-graphql';\r\n\r\nexport interface CreateContactCardInput2 {\r\n  publicDataJson: any;\r\n  publicSearchableJson: any;\r\n  plainCipherDataJson: any;\r\n  plainDataJson: MainContactCardPlainFields;\r\n}\r\n\r\n// These contact name fields are enforced by the server so that it can send out emails with\r\n// appropriate format.\r\nexport interface ContactCardName2 {\r\n  name: string;\r\n  title?: string;\r\n  firstName?: string;\r\n  lastName?: string;\r\n  // additional fields are not allowed by the server\r\n}\r\n\r\nexport class OwnerPlainDataJson {\r\n  name: ContactCardName2;\r\n}\r\n\r\nexport interface UpdateContactCardInput2 extends CreateContactCardInput2 {\r\n  id: string;\r\n  keyId: string;\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class ContactCard2Service {\r\n  constructor(\r\n    private keyFactory: KeyFactoryService,\r\n    private keyService: KeyService,\r\n    private encryptionService: EncryptionService,\r\n    private keyGraph: KeyGraphService,\r\n    private keyMetaService: KeyMetaService,\r\n    private ngZone: NgZone\r\n  ) {}\r\n\r\n  async createContactCard(input: CreateContactCardInput2) {\r\n    // Get encryption key\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n    const key = await this.keyFactory.createKey();\r\n    const wrappedKey = await this.keyGraph.encryptToString(\r\n      rootKey.jwk,\r\n      key.toJSON(true)\r\n    );\r\n    const cipherData = await this.keyGraph.encryptToString(\r\n      key,\r\n      input.plainCipherDataJson\r\n    );\r\n\r\n    const params = await this.prepareContactCardInput(input);\r\n\r\n    return new LrMutation({\r\n      mutation: CreateContactCardMutation,\r\n      variables: {\r\n        input: {\r\n          ...params,\r\n          wrappingKeyId: rootKey.id,\r\n          wrappedKey,\r\n          cipherData,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async updateContactCard(input: UpdateContactCardInput2) {\r\n    // Get encryption key\r\n    const cipherData = await this.keyGraph.encryptToString(\r\n      input.keyId,\r\n      input.plainCipherDataJson\r\n    );\r\n\r\n    const params = await this.prepareContactCardInput(input);\r\n\r\n    return new LrMutation({\r\n      mutation: UpdateContactCardMutation,\r\n      variables: {\r\n        input: {\r\n          ...params,\r\n          id: input.id,\r\n          cipherData,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  deleteContactCard(id: string) {\r\n    return new LrMutation({\r\n      mutation: DeleteContactCardMutation,\r\n      variables: {\r\n        input: {\r\n          id,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  private async prepareContactCardInput(\r\n    input: CreateContactCardInput2\r\n  ): Promise<any> {\r\n    const sigPxk = await this.keyService.getCurrentSigPxk();\r\n    const publicDataSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, input.publicDataJson)\r\n    );\r\n    const publicSearchableSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, input.publicSearchableJson)\r\n    );\r\n    const plainDataSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, input.plainDataJson)\r\n    );\r\n\r\n    return {\r\n      sigPxkId: sigPxk.id,\r\n      publicDataSig,\r\n      publicSearchableSig,\r\n      plainDataSig,\r\n    };\r\n  }\r\n}\r\n","import { gqlTyped } from '../_common/ast';\r\nimport { DateTime, ID } from './types';\r\n\r\n// --------------------------------------------------------------------\r\n// Queries\r\n// --------------------------------------------------------------------\r\nexport interface DirectoryKeyQuery {\r\n  directory: {\r\n    keyId: ID;\r\n  };\r\n}\r\nexport const DirectoryKeyQuery = gqlTyped<DirectoryKeyQuery>`\r\nquery DirectoryKeyQuery($id: LrRelayIdInput!) {\r\n  directory(id: $id) {\r\n    keyId\r\n  }\r\n}\r\n`;\r\n\r\nexport interface FileKeyQuery {\r\n  file: {\r\n    keyId: ID;\r\n  };\r\n}\r\nexport const FileKeyQuery = gqlTyped<FileKeyQuery>`\r\nquery FileKeyQuery($id: LrRelayIdInput!) {\r\n  file(id: $id) {\r\n    keyId\r\n  }\r\n}\r\n`;\r\n\r\nexport interface FileStateKeyQuery {\r\n  fileState: {\r\n    keyId: ID;\r\n  };\r\n}\r\nexport const FileStateKeyQuery = gqlTyped<FileStateKeyQuery>`\r\nquery FileStateKeyQuery($id: LrRelayIdInput!) {\r\n  fileState(id: $id) {\r\n    keyId\r\n  }\r\n}\r\n`;\r\n\r\n// --------------------------------------------------------------------\r\n// Mutations\r\n// --------------------------------------------------------------------\r\nexport interface CreateDirectoryMutation {\r\n  createDirectory: {\r\n    directory: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const CreateDirectoryMutation = gqlTyped<CreateDirectoryMutation>`\r\nmutation CreateDirectoryMutation($input: CreateDirectoryInput!) {\r\n  createDirectory(input: $input) {\r\n    directory {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface UpdateDirectoryMutation {\r\n  updateDirectory: {\r\n    directory: {\r\n      id: ID;\r\n      modified: DateTime;\r\n    };\r\n  };\r\n}\r\nexport const UpdateDirectoryMutation = gqlTyped<UpdateDirectoryMutation>`\r\nmutation UpdateDirectoryMutation($input: UpdateDirectoryInput!) {\r\n  updateDirectory(input: $input) {\r\n    directory {\r\n      id\r\n      modified\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface DeleteDirectoryMutation {\r\n  deleteDirectory: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const DeleteDirectoryMutation = gqlTyped<DeleteDirectoryMutation>`\r\nmutation DeleteDirectoryMutation($input: DeleteDirectoryInput!) {\r\n  deleteDirectory(input: $input) {\r\n    id\r\n  }\r\n}\r\n`;\r\n\r\nexport interface CreateFileMutation {\r\n  createFile: {\r\n    file: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const CreateFileMutation = gqlTyped<CreateFileMutation>`\r\nmutation CreateFileMutation($input: CreateFileInput!) {\r\n  createFile(input: $input) {\r\n    file {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface UpdateFileMutation {\r\n  updateFile: {\r\n    file: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const UpdateFileMutation = gqlTyped<UpdateFileMutation>`\r\nmutation UpdateFileMutation($input: UpdateFileInput!) {\r\n  updateFile(input: $input) {\r\n    file {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface DeleteFileMutation {\r\n  deleteFile: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const DeleteFileMutation = gqlTyped<DeleteFileMutation>`\r\nmutation DeleteFileMutation($input: DeleteFileInput!) {\r\n  deleteFile(input: $input) {\r\n    id\r\n  }\r\n}\r\n`;\r\n\r\nexport interface ArchiveDirectoryMutation {\r\n  archiveDirectory: {\r\n    directory: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const ArchiveDirectoryMutation = gqlTyped<ArchiveDirectoryMutation>`\r\nmutation ArchiveDirectoryMutation($input: ArchiveDirectoryInput!) {\r\n  archiveDirectory(input: $input) {\r\n    directory {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface UnarchiveDirectoryMutation {\r\n  unarchiveDirectory: {\r\n    directory: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const UnarchiveDirectoryMutation = gqlTyped<UnarchiveDirectoryMutation>`\r\nmutation UnarchiveDirectoryMutation($input: UnarchiveDirectoryInput!) {\r\n  unarchiveDirectory(input: $input) {\r\n    directory {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface ChangeDirectoryParentsMutationResult {\r\n  unarchiveDirectory: {\r\n    directory: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const ChangeDirectoryParentsMutation = gqlTyped<ChangeDirectoryParentsMutationResult>`\r\nmutation ChangeDirectoryParentsMutation($input: ChangeDirectoryParentsInput!) {\r\n  changeDirectoryParents(input: $input) {\r\n    directory {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface ChangeFileParentsMutationResult {\r\n  unarchiveDirectory: {\r\n    directory: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const ChangeFileParentsMutation = gqlTyped<ChangeFileParentsMutationResult>`\r\nmutation ChangeFileParentsMutation($input: ChangeFileParentsInput!) {\r\n  changeFileParents(input: $input) {\r\n    file {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n","import { Injectable, Injector, NgZone } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyMetaService } from '../cryptography/key-meta.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { LrBadArgumentException } from '../_common/exceptions';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\nimport { FileService } from './file.service';\r\nimport { LrGraphQLService, LrMutation, LrService } from './lr-graphql';\r\nimport {\r\n  DirectoryKeyQuery,\r\n  CreateDirectoryMutation,\r\n  DeleteDirectoryMutation,\r\n  CreateFileMutation,\r\n  DeleteFileMutation,\r\n  FileKeyQuery,\r\n  FileStateKeyQuery,\r\n  UpdateFileMutation,\r\n  UpdateDirectoryMutation,\r\n  ArchiveDirectoryMutation,\r\n  UnarchiveDirectoryMutation,\r\n  ChangeDirectoryParentsMutation,\r\n  ChangeFileParentsMutation,\r\n} from './item2.gql';\r\nimport { ID, LrRelayIdInput } from './types';\r\n\r\nexport enum DirectoryLinkType {\r\n  HARD = 'HARD',\r\n}\r\n\r\n// Suffix \"Options\" are what's need by the KC client.\r\nexport interface ParentDirectoryOptions {\r\n  directoryId: LrRelayIdInput;\r\n  // If wrapping key provided, then we can try fetching it from the\r\n  // key graph. If not found in key graph, then fetch the directory.\r\n  wrappingKeyId?: LrRelayIdInput;\r\n  // TODO: this can be other types, but server side implementation has not been\r\n  // thoroughly tested. So best not use anything else and just leave it out so\r\n  // server uses the default value of \"HARD\"\r\n  linkType?: DirectoryLinkType.HARD;\r\n}\r\n\r\nexport interface ParentRootDirectoryInput {\r\n  wrappedKey: string;\r\n  wrappingKeyId: LrRelayIdInput;\r\n}\r\n\r\n// Suffix \"Input\" matched with the graphql types\r\n// TODO these should be change to be exactly the same on the server since all that differs\r\n// is the wrappedKey/wrappedFileKey name\r\nexport interface ParentDirectoryInputBase {\r\n  directoryId: LrRelayIdInput;\r\n  wrappingKeyId: LrRelayIdInput;\r\n  linkType?: DirectoryLinkType.HARD;\r\n}\r\n\r\nexport interface ParentDirectoryInput extends ParentDirectoryInputBase {\r\n  wrappedKey: string;\r\n}\r\n\r\nexport interface FileParentDirectoryInput extends ParentDirectoryInputBase {\r\n  wrappedFileKey: string;\r\n}\r\n\r\nexport interface DownloadFileContentOptions {\r\n  fileStateNodeId: LrRelayIdInput;\r\n  fileStateKeyId?: LrRelayIdInput;\r\n}\r\n\r\nexport interface CommonDirectoryOptions {\r\n  plainMetaJson?: any;\r\n  cipherMetaClearJson?: any;\r\n}\r\n\r\nexport interface CreateDirectoryOptions extends CommonDirectoryOptions {\r\n  asRootDirectory?: boolean;\r\n  parentDirectories?: ParentDirectoryOptions[];\r\n}\r\n\r\nexport interface UpdateDirectoryOptions extends CommonDirectoryOptions {\r\n  directoryId: LrRelayIdInput;\r\n  directoryKeyId?: LrRelayIdInput;\r\n}\r\n\r\nexport interface CommonFileOptions {\r\n  plainMetaJson?: any;\r\n  cipherMetaClearJson?: any;\r\n  file?: File;\r\n  // custom uploader\r\n  upload?: (cipherFileContent: string) => Promise<string>;\r\n}\r\n\r\nexport interface CreateFileOptions extends CommonFileOptions {\r\n  parentDirectories: ParentDirectoryOptions[];\r\n}\r\n\r\nexport interface UpdateFileOptions extends CommonFileOptions {\r\n  fileId: LrRelayIdInput;\r\n  fileKeyId?: LrRelayIdInput;\r\n}\r\n\r\ninterface ChangeItemParentsOptions {\r\n  parentsToRemove: LrRelayIdInput[];\r\n  parentsToAdd: ParentDirectoryOptions[];\r\n}\r\n\r\nexport interface ChangeDirectoryParentsOptions\r\n  extends ChangeItemParentsOptions {\r\n  directoryId: LrRelayIdInput;\r\n  directoryKeyId?: LrRelayIdInput;\r\n}\r\n\r\nexport interface ChangeFileParentsOptions extends ChangeItemParentsOptions {\r\n  fileId: LrRelayIdInput;\r\n  fileKeyId?: LrRelayIdInput;\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class Item2Service extends LrService {\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private injector: Injector,\r\n    private fileService: FileService,\r\n    private keyService: KeyService,\r\n    private keyMeta: KeyMetaService,\r\n    private keyFactory: KeyFactoryService,\r\n    private keyGraph: KeyGraphService\r\n  ) {\r\n    super(injector);\r\n  }\r\n\r\n  public async downloadFileContent(\r\n    options: DownloadFileContentOptions\r\n  ): Promise<ArrayBuffer> {\r\n    const fileContent = await this.fileService.downloadEncryptedFile2(\r\n      options.fileStateNodeId\r\n    );\r\n\r\n    const fileStateKey = await this.keyGraph.getKey(\r\n      options.fileStateKeyId,\r\n      () => this.getFileStateKeyId(options.fileStateNodeId)\r\n    );\r\n\r\n    return this.keyGraph.decryptFromString(fileStateKey, fileContent, {\r\n      payloadType: 'ArrayBuffer',\r\n    });\r\n  }\r\n\r\n  public async createDirectory(options: CreateDirectoryOptions) {\r\n    const directoryKey = await this.keyFactory.createKey();\r\n    options.parentDirectories = options.parentDirectories || [];\r\n    if (!options.asRootDirectory && !options.parentDirectories?.length) {\r\n      throw new LrBadArgumentException(\r\n        'A new directory must be either a root directory or a sub-directory. So you must provide either parentDirectories and/or asRootDirectory parameter.'\r\n      );\r\n    }\r\n\r\n    const parentDirectories = await Promise.all(\r\n      options.parentDirectories?.map((t) =>\r\n        this.getParentDirectoryInput(t, directoryKey)\r\n      )\r\n    );\r\n\r\n    // TODO this is rather an unfortunate name, change it to asRootDirectory.\r\n    let parentRootDirectory: ParentRootDirectoryInput;\r\n    if (options.asRootDirectory) {\r\n      const rootKey = this.keyService.getCurrentRootKey();\r\n      parentRootDirectory = {\r\n        wrappingKeyId: rootKey.id,\r\n        wrappedKey: await this.keyGraph.wrapKey(rootKey, directoryKey),\r\n      };\r\n    }\r\n\r\n    const input = {\r\n      ...(await this.getInput(directoryKey, options)),\r\n      parentDirectories,\r\n      parentRootDirectory,\r\n    };\r\n\r\n    return new LrMutation({\r\n      mutation: CreateDirectoryMutation,\r\n      variables: {\r\n        input,\r\n      },\r\n    });\r\n  }\r\n\r\n  updateDirectoryExec(options: UpdateDirectoryOptions) {\r\n    return this.mutate(this.updateDirectoryMutation(options));\r\n  }\r\n\r\n  updateDirectory(options: UpdateDirectoryOptions) {\r\n    return this.updateDirectoryMutation(options);\r\n  }\r\n\r\n  async updateDirectoryMutation(options: UpdateDirectoryOptions) {\r\n    const directoryKey = await this.getDirectoryKey(\r\n      options.directoryId,\r\n      options.directoryKeyId\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: UpdateDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          ...(await this.getInput(directoryKey.jwk, options)),\r\n          directoryId: options.directoryId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public deleteDirectory(id: ID) {\r\n    return new LrMutation({\r\n      mutation: DeleteDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          directoryId: id,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async createFile(options: CreateFileOptions) {\r\n    const fileKey = await this.keyFactory.createKey();\r\n\r\n    const parentDirectories = await Promise.all(\r\n      options.parentDirectories.map(async (t) => {\r\n        const {\r\n          directoryId,\r\n          wrappingKeyId,\r\n          wrappedKey,\r\n        } = await this.getParentDirectoryInput(t, fileKey);\r\n        // remap from ParentDirectoryInput to FileParentDirectoryInput\r\n        // TODO the server should really just use wrappedKey instead of wrappedFileKey\r\n        return {\r\n          directoryId,\r\n          wrappingKeyId,\r\n          wrappedFileKey: wrappedKey,\r\n        } as FileParentDirectoryInput;\r\n      })\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: CreateFileMutation,\r\n      variables: {\r\n        input: {\r\n          ...(await this.createFileState(fileKey, options)),\r\n          parentDirectories,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async updateFile(options: UpdateFileOptions) {\r\n    const fileKey = await this.getFileKey(options.fileId, options.fileKeyId);\r\n\r\n    return new LrMutation({\r\n      mutation: UpdateFileMutation,\r\n      variables: {\r\n        input: {\r\n          ...(await this.createFileState(fileKey.jwk, options)),\r\n          fileId: options.fileId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public deleteFile(id: ID) {\r\n    return new LrMutation({\r\n      mutation: DeleteFileMutation,\r\n      variables: {\r\n        input: {\r\n          fileId: id,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  private async getParentDirectoryInput(\r\n    options: ParentDirectoryOptions,\r\n    newKey: JWK.Key\r\n  ): Promise<ParentDirectoryInput> {\r\n    // If directory's key is not already in the key graph, then need to\r\n    // fetch the directory's key.\r\n    const wrappingKey = await this.getDirectoryKey(\r\n      options.directoryId,\r\n      options.wrappingKeyId\r\n    );\r\n\r\n    return {\r\n      directoryId: options.directoryId,\r\n      wrappingKeyId: wrappingKey.id,\r\n      wrappedKey: await this.keyGraph.wrapKey(wrappingKey, newKey),\r\n    };\r\n  }\r\n\r\n  // async getKey(keyId: LrRelayIdInput, getKeyIdCallback: () => Promise<ID>) {\r\n  //   if (!this.keyGraph.hasKey(keyId)) {\r\n  //     keyId = await getKeyIdCallback();\r\n  //   }\r\n\r\n  //   return this.keyGraph.getKey(keyId);\r\n  // }\r\n\r\n  async getFileStateKeyId(fileStateNodeId: LrRelayIdInput) {\r\n    return (\r\n      await this.query({\r\n        query: FileStateKeyQuery,\r\n        variables: {\r\n          id: fileStateNodeId,\r\n        },\r\n      })\r\n    ).fileState.keyId;\r\n  }\r\n\r\n  async getDirectoryKeyId(directoryId: LrRelayIdInput) {\r\n    return (\r\n      await this.query({\r\n        query: DirectoryKeyQuery,\r\n        variables: {\r\n          id: directoryId,\r\n        },\r\n      })\r\n    ).directory.keyId;\r\n  }\r\n\r\n  async getFileKeyId(fileId: LrRelayIdInput) {\r\n    return (\r\n      await this.query({\r\n        query: FileKeyQuery,\r\n        variables: {\r\n          id: fileId,\r\n        },\r\n      })\r\n    ).file.keyId;\r\n  }\r\n\r\n  async getDirectoryKey(\r\n    directoryId: LrRelayIdInput,\r\n    directoryKeyId?: LrRelayIdInput\r\n  ) {\r\n    return this.keyGraph.getKey(directoryKeyId, () =>\r\n      this.getDirectoryKeyId(directoryId)\r\n    );\r\n  }\r\n\r\n  async getFileKey(fileId: LrRelayIdInput, fileKeyId?: LrRelayIdInput) {\r\n    return this.keyGraph.getKey(fileKeyId, () => this.getFileKeyId(fileId));\r\n  }\r\n\r\n  private async getInput(\r\n    key: JWK.Key,\r\n    options: { plainMetaJson?: any; cipherMetaClearJson?: any }\r\n  ) {\r\n    const { plainMetaJson, cipherMetaClearJson } = options;\r\n\r\n    return {\r\n      plainMeta: plainMetaJson && JSON.stringify(plainMetaJson),\r\n      cipherMeta:\r\n        cipherMetaClearJson &&\r\n        (await this.keyGraph.encryptToString(key, cipherMetaClearJson)),\r\n    };\r\n  }\r\n\r\n  private async createFileState(\r\n    fileKey: JWK.Key,\r\n    options: CreateFileOptions | UpdateFileOptions\r\n  ) {\r\n    // Each version of the file is encrypted using a new key.\r\n    const fileStateKey = await this.keyFactory.createKey();\r\n\r\n    const fileContent =\r\n      options.file && (await this.fileService.loadFile(options.file));\r\n\r\n    let contentResource: string;\r\n    if (fileContent) {\r\n      const cipherFileContent = await this.keyGraph.encryptToString(\r\n        fileStateKey,\r\n        fileContent\r\n      );\r\n      if (options.upload) {\r\n        contentResource = await options.upload(cipherFileContent);\r\n      } else {\r\n        contentResource = await this.fileService.uploadEncryptedFile({\r\n          encryptedContent: cipherFileContent,\r\n        });\r\n      }\r\n      console.log('contentResource', contentResource);\r\n    }\r\n\r\n    return {\r\n      ...(await this.getInput(fileStateKey, options)),\r\n      wrappedStateKey: await this.keyGraph.wrapKey(fileKey, fileStateKey),\r\n      contentResource,\r\n    };\r\n  }\r\n\r\n  archiveDirectory(directoryId: string, recursive: boolean) {\r\n    return new LrMutation({\r\n      mutation: ArchiveDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          directoryId,\r\n          recursive,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  unarchiveDirectory(directoryId: string, recursive: boolean) {\r\n    return new LrMutation({\r\n      mutation: UnarchiveDirectoryMutation,\r\n      variables: {\r\n        input: {\r\n          directoryId,\r\n          recursive,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  protected async getChangeItemParentsInput(\r\n    options: ChangeItemParentsOptions,\r\n    itemKey: JWK.Key\r\n  ) {\r\n    const parentsToAdd = await Promise.all(\r\n      options.parentsToAdd.map((t) => this.getParentDirectoryInput(t, itemKey))\r\n    );\r\n\r\n    return {\r\n      directoriesToRemove: options.parentsToRemove,\r\n      directoriesToAdd: parentsToAdd,\r\n    };\r\n  }\r\n\r\n  changeDirectoryParents(options: ChangeDirectoryParentsOptions) {\r\n    return this.mutate(this.changeDirectoryParentsMutation(options));\r\n  }\r\n\r\n  async changeDirectoryParentsMutation(options: ChangeDirectoryParentsOptions) {\r\n    const directoryKey = await this.getDirectoryKey(\r\n      options.directoryId,\r\n      options.directoryKeyId\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: ChangeDirectoryParentsMutation,\r\n      variables: {\r\n        input: {\r\n          ...(await this.getChangeItemParentsInput(options, directoryKey.jwk)),\r\n          directoryId: options.directoryId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async changeFileParents(options: ChangeFileParentsOptions) {\r\n    return this.mutate(this.changeFileParentsMutation(options));\r\n  }\r\n\r\n  async changeFileParentsMutation(options: ChangeFileParentsOptions) {\r\n    const fileKey = await this.getFileKey(options.fileId, options.fileKeyId);\r\n\r\n    return new LrMutation({\r\n      mutation: ChangeFileParentsMutation,\r\n      variables: {\r\n        input: {\r\n          ...(await this.getChangeItemParentsInput(options, fileKey.jwk)),\r\n          fileId: options.fileId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n}\r\n","import gql from 'graphql-tag';\r\nimport { JWK } from 'node-jose';\r\nimport { gqlTyped } from '../_common/ast';\r\nimport {\r\n  Connection,\r\n  DateTime,\r\n  ID,\r\n  LrEmail,\r\n  OtKeyCipherClearJson2,\r\n} from './types';\r\n\r\nexport type KeyExchangeState2 =\r\n  | 'IN_PROGRESS'\r\n  | 'COMPLETED'\r\n  | 'DECLINED'\r\n  | 'CANCELLED'\r\n  | 'DELETED';\r\n\r\nexport interface KeyExchangeFragment {\r\n  id: ID;\r\n  token: string;\r\n  state: KeyExchangeState2;\r\n  mode: 'OTK';\r\n  isInitiator: boolean;\r\n  initiator: {\r\n    id: ID;\r\n    username: string;\r\n  };\r\n  responder: {\r\n    id: ID;\r\n    username: string;\r\n  };\r\n  created: DateTime;\r\n  modified: DateTime;\r\n  tokenExpiryTime: DateTime;\r\n  isExpired: boolean;\r\n  initiatorRootKeyCipher: string;\r\n  initiatorRootKeyCipherClearJson: any;\r\n  initiatorActionRequired: boolean;\r\n  responderActionRequired: boolean;\r\n  responderEmailAddress: LrEmail;\r\n  otk: {\r\n    state: 'OTK_INITIATED' | 'OTK_ACCEPTED' | 'OTK_COMPLETED';\r\n    otKeyParams: string;\r\n    otKeyCipher: string;\r\n    otKey?: JWK.Key;\r\n    otKeyCipherClearJson?: OtKeyCipherClearJson2;\r\n    sharedKey: {\r\n      id: ID;\r\n    };\r\n    mkSharedKey: {\r\n      id: ID;\r\n    };\r\n    initiatorSigPxk: {\r\n      id: ID;\r\n    };\r\n    responderSigPxk: {\r\n      id: ID;\r\n    };\r\n    initiatorOneTimePbkCipher: string;\r\n    initiatorOneTimePbkCipherClearJson: any;\r\n    responderPbkCipher: string;\r\n  };\r\n}\r\nexport const KeyExchangeFragment = gqlTyped<KeyExchangeFragment>`\r\nfragment KeyExchangeFragment on KeyExchangeNode {\r\n  id\r\n  token\r\n  state\r\n  mode\r\n  isInitiator\r\n  initiator {\r\n    id\r\n    username\r\n  }\r\n  responder {\r\n    id\r\n    username\r\n  }\r\n  created\r\n  modified\r\n  tokenExpiryTime\r\n  isExpired\r\n  initiatorRootKeyCipher\r\n  initiatorActionRequired\r\n  responderActionRequired\r\n  responderEmailAddress\r\n  otk {\r\n    state\r\n    otKeyParams\r\n    otKeyCipher\r\n    sharedKey {\r\n      id\r\n    }\r\n    mkSharedKey {\r\n      id\r\n    }\r\n    initiatorSigPxk {\r\n      id\r\n    }\r\n    responderSigPxk {\r\n      id\r\n    }\r\n    initiatorOneTimePbkCipher\r\n    responderPbkCipher\r\n  }\r\n}\r\n`;\r\n\r\nexport interface UserSharedKeyFragment {\r\n  userSigPrk: {\r\n    id: ID;\r\n  };\r\n  otherSigPbk: {\r\n    id: ID;\r\n  };\r\n  sharedKey: {\r\n    id: ID;\r\n  };\r\n  mkSharedKey: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const UserSharedKeyFragment = gqlTyped<UserSharedKeyFragment>`\r\nfragment UserSharedKeyFragment on UserSharedKeyNode {\r\n  userSigPrk {\r\n    id\r\n  }\r\n  otherSigPbk {\r\n    id\r\n  }\r\n  sharedKey {\r\n    id\r\n  }\r\n  mkSharedKey {\r\n    id\r\n  }\r\n}`;\r\n\r\nexport interface KeyExchangesQuery2 {\r\n  keyExchanges: Connection<KeyExchangeFragment>;\r\n}\r\nexport const KeyExchangesQuery2 = gqlTyped<KeyExchangesQuery2>`\r\nquery KeyExchangesQuery2($state: String) {\r\n  keyExchanges(state: $state) {\r\n    edges {\r\n      node {\r\n        ...KeyExchangeFragment\r\n      }\r\n    }\r\n  }\r\n}\r\n${KeyExchangeFragment}\r\n`;\r\n\r\nexport interface KeyExchangeQuery2 {\r\n  keyExchange: KeyExchangeFragment;\r\n}\r\nexport const KeyExchangeQuery2 = gqlTyped<KeyExchangeQuery2>`\r\nquery KeyExchangeQuery2($id: LrRelayIdInput!) {\r\n  keyExchange(id: $id) {\r\n    ...KeyExchangeFragment\r\n  }\r\n}\r\n${KeyExchangeFragment}\r\n`;\r\n\r\n// Key graph is only available for authenticated users. This query\r\n// is for unauthenticated users.\r\nexport interface KeyExchangeTokenQuery2 {\r\n  keyExchange: KeyExchangeFragment;\r\n}\r\nexport const KeyExchangeTokenQuery2 = gqlTyped<KeyExchangeTokenQuery2>`\r\nquery KeyExchangeTokenQuery2($id: LrRelayIdInput!, $token: String) {\r\n  keyExchange(id: $id, token: $token) {\r\n    ...KeyExchangeFragment\r\n  }\r\n}\r\n${KeyExchangeFragment}\r\n`;\r\n\r\nexport interface CancelKeyExchangeMutation {\r\n  cancelKeyExchange: {\r\n    keyExchange: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const CancelKeyExchangeMutation = gqlTyped<CancelKeyExchangeMutation>`\r\nmutation CancelKeyExchangeMutation($input: CancelKeyExchangeInput!) {\r\n  cancelKeyExchange(input: $input) {\r\n    keyExchange {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface DeclineKeyExchangeMutation {\r\n  declineKeyExchange: {\r\n    keyExchange: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const DeclineKeyExchangeMutation = gqlTyped<DeclineKeyExchangeMutation>`\r\nmutation DeclineKeyExchangeMutation($input: DeclineKeyExchangeInput!) {\r\n  declineKeyExchange(input: $input) {\r\n    keyExchange {\r\n      id\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface InitiateKeyExchangeOtkMutation {\r\n  initiateKeyExchangeOtk: {\r\n    keyExchange: KeyExchangeFragment;\r\n  };\r\n}\r\nexport const InitiateKeyExchangeOtkMutation = gqlTyped<InitiateKeyExchangeOtkMutation>`\r\nmutation InitiateKeyExchangeOtkMutation(\r\n  $input: InitiateKeyExchangeOtkInput!\r\n) {\r\n  initiateKeyExchangeOtk(input: $input) {\r\n    keyExchange {\r\n      ...KeyExchangeFragment\r\n    }\r\n  }\r\n}\r\n${KeyExchangeFragment}\r\n`;\r\n\r\nexport interface RespondKeyExchangeOtkMutation {\r\n  respondKeyExchangeOtk: {\r\n    keyExchange: KeyExchangeFragment;\r\n    userSharedKey: UserSharedKeyFragment;\r\n    tp: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const RespondKeyExchangeOtkMutation = gqlTyped<RespondKeyExchangeOtkMutation>`\r\nmutation RespondKeyExchangeOtkMutation($input: RespondKeyExchangeOtkInput!) {\r\n  respondKeyExchangeOtk(input: $input) {\r\n    keyExchange {\r\n      ...KeyExchangeFragment\r\n    }\r\n    userSharedKey {\r\n      ...UserSharedKeyFragment\r\n    }\r\n    tp {\r\n      id\r\n    }\r\n  }\r\n}\r\n${KeyExchangeFragment}\r\n${UserSharedKeyFragment}\r\n`;\r\n\r\nexport interface CompleteKeyExchangeOtkMutation {\r\n  completeKeyExchangeOtk: {\r\n    keyExchange: KeyExchangeFragment;\r\n    userSharedKey: UserSharedKeyFragment;\r\n    tp: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const CompleteKeyExchangeOtkMutation = gqlTyped<CompleteKeyExchangeOtkMutation>`\r\nmutation CompleteKeyExchangeOtkMutation(\r\n  $input: CompleteKeyExchangeOtkInput!\r\n) {\r\n  completeKeyExchangeOtk(input: $input) {\r\n    keyExchange {\r\n      ...KeyExchangeFragment\r\n    }\r\n    userSharedKey {\r\n      ...UserSharedKeyFragment\r\n    }\r\n    tp {\r\n      id\r\n    }\r\n  }\r\n}\r\n${KeyExchangeFragment}\r\n${UserSharedKeyFragment}\r\n`;\r\n\r\nexport interface CurrentUserSharedKeyQuery2 {\r\n  currentUserSharedKey: {\r\n    userSharedKey: UserSharedKeyFragment;\r\n  };\r\n}\r\nexport const CurrentUserSharedKeyQuery2 = gqlTyped<CurrentUserSharedKeyQuery2>`\r\nquery CurrentUserSharedKeyQuery2(\r\n  $username: String\r\n  $userId: LrRelayIdInput\r\n) {\r\n  currentUserSharedKey(\r\n    username: $username\r\n    userId: $userId\r\n  ) {\r\n    userSharedKey {\r\n      ...UserSharedKeyFragment\r\n    }\r\n  }\r\n}\r\n${UserSharedKeyFragment}\r\n`;\r\n","import { Injectable, NgZone } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport {\r\n  EncryptionService,\r\n  JoseSerialization,\r\n} from '../cryptography/encryption.service';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { LrCodeMismatchException } from '../_common/exceptions';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\nimport { UserService } from './../users/user.service';\r\nimport { OwnerPlainDataJson } from './contact-card2.service';\r\nimport {\r\n  CancelKeyExchangeMutation,\r\n  CompleteKeyExchangeOtkMutation,\r\n  CurrentUserSharedKeyQuery2,\r\n  DeclineKeyExchangeMutation,\r\n  InitiateKeyExchangeOtkMutation,\r\n  KeyExchangeFragment,\r\n  KeyExchangeQuery2,\r\n  KeyExchangesQuery2,\r\n  KeyExchangeState2,\r\n  KeyExchangeTokenQuery2,\r\n  RespondKeyExchangeOtkMutation,\r\n} from './key-exchange2.gql';\r\nimport { LrGraphQLService, LrMutation } from './lr-graphql';\r\nimport { ContactCardSharedCipherData, OtKeyCipherClearJson2 } from './types';\r\n\r\n/**\r\n * The decrypted content of the one-time key cipher;\r\n * When user supplies this information the lib doesn't need to do another API call\r\n * to fetch the key exchange node. And since the typical use case is to display\r\n * some information to the user, the key exchange node would already have been\r\n * fetched and decrypted.\r\n */\r\nexport interface DecryptedOtk2 {\r\n  otKeyCipherClearJson: OtKeyCipherClearJson2;\r\n  otKey: JWK.Key; // The one-time key\r\n}\r\n\r\nexport interface ContactCardReceiverCipherData {\r\n  // The receiver of the contact card keeps a copy\r\n  // of the owner's contact card information, encrypted using the receiver's keys. So that when\r\n  // the owner decides to update their shared contact card at a later date, the receiver can\r\n  // compare against the original contact card sent during key exchange. This way, the owner\r\n  // can't unilaterally update their shared contact card without the receiver knowing about it.\r\n  receiverCipherDataClearJson: any;\r\n}\r\n\r\nexport interface ContactCardOwnerPlainData {\r\n  // Accessible by the server and the owner. Server side notification emails need to know some\r\n  // information about the owner.\r\n  // The owner could either be the initiator or the responder.\r\n  ownerPlainDataJson: OwnerPlainDataJson;\r\n}\r\n\r\nexport interface ContactCardOwnerCipherData {\r\n  // Owner only access to this data\r\n  ownerCipherDataClearJson: any;\r\n}\r\n\r\n/**\r\n * Sending contact card information from the owner to the receiver.\r\n */\r\nexport type SendContactCardInput = ContactCardOwnerPlainData &\r\n  ContactCardOwnerCipherData &\r\n  ContactCardSharedCipherData;\r\n\r\nexport interface InitiateOtkInput2 {\r\n  // Note that if neither email nor responderUsername are given, the one-time key\r\n  // can still be sent to the responder via OOB\r\n  email?: string;\r\n  message?: any;\r\n  contactCard?: SendContactCardInput;\r\n  // If True, to upgrade an email invite to an existing user invite if the email\r\n  // is already associated with an existing user.\r\n  upgrade?: boolean;\r\n}\r\n\r\nexport interface RespondOtkInput2 {\r\n  keyExchangeId: string;\r\n  token: string;\r\n  decryptedOtk: DecryptedOtk2;\r\n  message?: any;\r\n  // The initiator is the owner fo the initiatorContactCard, the responder\r\n  // is the receiver.\r\n  initiatorContactCard?: ContactCardReceiverCipherData;\r\n  responderContactCard?: SendContactCardInput;\r\n}\r\n\r\nexport interface CompleteOtkInput2 {\r\n  keyExchangeId: string;\r\n  // This is a part of the key exchange data. It's encrypted using the root key\r\n  initiatorRootKeyCipher: string;\r\n  // This is a part of the key exchange data. It's encrypted using the one-time key.\r\n  initiatorOneTimePbkCipher: string;\r\n  // The responder is the owner fo the responderContactCard, the initiator\r\n  // is the receiver.\r\n  responderContactCard?: ContactCardReceiverCipherData;\r\n  // The initiator can update the cipher data that are only visible to them. It makes\r\n  // less sense to update the shared data because the responder would have already seen\r\n  // the shared data and accepted that it's legit.\r\n  // But in any case, the initiator can update the shared contact card info at any time.\r\n  initiatorContactCard?: ContactCardOwnerCipherData;\r\n}\r\n\r\nexport interface InitiatorRootKeyCipherClearJson2 {\r\n  nonce: string;\r\n  oneTimePrk: object; // one-time public encryption key responder use to send data back to initiator\r\n  otKey: object; // one-time symmetric key that needs to be shared OOB\r\n  initiatorContactCard?: ContactCardOwnerCipherData &\r\n    ContactCardSharedCipherData;\r\n  initiator: {\r\n    message?: any;\r\n    contactCard?: ContactCardSharedCipherData;\r\n  };\r\n}\r\n\r\nexport interface InitiatorOneTimePbkCipherClearJson {\r\n  nonce: string;\r\n  sharedKey: object;\r\n  mkSharedKey: object;\r\n  responder: {\r\n    pbk: object;\r\n    sigPbk: object;\r\n    message?: any;\r\n    contactCard?: ContactCardSharedCipherData & {\r\n      // Note that this is _not_ the same key as the sharedKey. The sharedKey wraps\r\n      // this key in the key graph. But because this key has not been entered into\r\n      // the key graph when the responder calls the API, we pass the JWK directly here.\r\n      sharedCipherKey: object;\r\n    };\r\n  };\r\n}\r\n\r\nexport interface GetKeyExchangeOptions2 {\r\n  // The otKey as a raw string. i.e. key.toJSON(true).k\r\n  otKeyK?: string;\r\n  // User need the token if they have not responded to the key exchange yet.\r\n  // Once they've responded (hence proven they have the OOB Key) they become\r\n  // the \"responder\" of this exchange, and can access it when signed in.\r\n  token?: string;\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class KeyExchange2Service {\r\n  private readonly CLIENT_NONCE_LENGTH = 32;\r\n\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private keyFactory: KeyFactoryService,\r\n    private keyService: KeyService,\r\n    private encryptionService: EncryptionService,\r\n    private userService: UserService,\r\n    private keyGraph: KeyGraphService,\r\n    private lrGraphQL: LrGraphQLService\r\n  ) {}\r\n\r\n  private async getOtKey(\r\n    keyExchange: KeyExchangeFragment,\r\n    otKeyK?: string\r\n  ): Promise<JWK.Key> {\r\n    if (otKeyK) {\r\n      return await KeyFactoryService.asKey({\r\n        ...JSON.parse(keyExchange.otk.otKeyParams),\r\n        k: otKeyK,\r\n      });\r\n    } else if (\r\n      keyExchange.otk.state === 'OTK_INITIATED' &&\r\n      !keyExchange.isInitiator &&\r\n      keyExchange.otk.responderPbkCipher\r\n    ) {\r\n      // Assuming existing user getting invited where OTK is wrapped in responder's public key.\r\n      const prk = await this.keyService.getCurrentPxk();\r\n      const decryptedCipher: any = await this.encryptionService.decrypt(\r\n        prk.jwk,\r\n        JSON.parse(keyExchange.otk.responderPbkCipher),\r\n        {\r\n          serializations: [JoseSerialization.COMPACT],\r\n        }\r\n      );\r\n      if (decryptedCipher.otKey) {\r\n        return await KeyFactoryService.asKey(decryptedCipher.otKey);\r\n      }\r\n    }\r\n    return null;\r\n  }\r\n\r\n  private async decryptOtk(\r\n    keyExchange: KeyExchangeFragment,\r\n    otKeyK?: string\r\n  ): Promise<KeyExchangeFragment> {\r\n    const otKey = await this.getOtKey(keyExchange, otKeyK);\r\n\r\n    let otk = keyExchange.otk;\r\n\r\n    if (otKey && otk.otKeyCipher) {\r\n      otk = {\r\n        ...otk,\r\n        otKey,\r\n        otKeyCipherClearJson: await this.encryptionService.decrypt(\r\n          otKey,\r\n          keyExchange.otk.otKeyCipher\r\n        ),\r\n      };\r\n    }\r\n\r\n    return {\r\n      ...keyExchange,\r\n      otk,\r\n    };\r\n  }\r\n\r\n  private async decryptResponseCipher(\r\n    otKey: JWK.Key,\r\n    otPrk: JWK.Key,\r\n    content: any\r\n  ): Promise<InitiatorOneTimePbkCipherClearJson> {\r\n    // The response could be wrapped by the OtK in addition to the OtPbk\r\n    try {\r\n      content = await this.encryptionService.decrypt(otKey, content);\r\n    } catch (error) {\r\n      if (error.message !== 'no key found') {\r\n        throw error;\r\n      }\r\n      // Do nothing to support older versions where message is not wrapped with otk.\r\n    }\r\n\r\n    // The Prk is single-use and only used to send information from the responder back to the initiator.\r\n    return await this.encryptionService.decrypt(otPrk, content);\r\n  }\r\n\r\n  private async decryptKeyExchangeAsInitiator(\r\n    keyExchange: KeyExchangeFragment\r\n  ): Promise<KeyExchangeFragment> {\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n\r\n    // Decrypt using the root key to get the Prk\r\n    const initiatorRootKeyCipherClearJson = (await this.encryptionService.decrypt(\r\n      rootKey.jwk,\r\n      keyExchange.initiatorRootKeyCipher\r\n    )) as InitiatorRootKeyCipherClearJson2;\r\n\r\n    const otKey = await KeyFactoryService.asKey(\r\n      initiatorRootKeyCipherClearJson.otKey\r\n    );\r\n\r\n    keyExchange = {\r\n      ...keyExchange,\r\n      initiatorRootKeyCipherClearJson,\r\n    };\r\n\r\n    let otk = keyExchange.otk;\r\n\r\n    if (otk.initiatorOneTimePbkCipher) {\r\n      otk = {\r\n        ...otk,\r\n        initiatorOneTimePbkCipherClearJson: await this.decryptResponseCipher(\r\n          otKey,\r\n          await KeyFactoryService.asKey(\r\n            initiatorRootKeyCipherClearJson.oneTimePrk\r\n          ),\r\n          otk.initiatorOneTimePbkCipher\r\n        ),\r\n      };\r\n    }\r\n\r\n    if (otk.otKeyCipher) {\r\n      otk.otKeyCipherClearJson = await this.encryptionService.decrypt(\r\n        otKey,\r\n        otk.otKeyCipher\r\n      );\r\n    }\r\n\r\n    return {\r\n      ...keyExchange,\r\n      otk,\r\n    };\r\n  }\r\n\r\n  private async decryptKeyExchangeAsResponder(\r\n    keyExchange: KeyExchangeFragment,\r\n    otKeyK?: string\r\n  ) {\r\n    return this.decryptOtk(keyExchange, otKeyK);\r\n  }\r\n\r\n  async decryptKeyExchange(keyExchange: KeyExchangeFragment, otKeyK?: string) {\r\n    if (keyExchange.isInitiator) {\r\n      return this.decryptKeyExchangeAsInitiator(keyExchange);\r\n    } else {\r\n      return this.decryptKeyExchangeAsResponder(keyExchange, otKeyK);\r\n    }\r\n  }\r\n\r\n  async getKeyExchanges({ state }: { state?: KeyExchangeState2 } = {}) {\r\n    const { keyExchanges } = await this.lrGraphQL.query({\r\n      query: KeyExchangesQuery2,\r\n      variables: {\r\n        state,\r\n      },\r\n    });\r\n\r\n    return Promise.all(\r\n      keyExchanges.edges.map((edge) => this.decryptKeyExchange(edge.node))\r\n    );\r\n  }\r\n\r\n  /**\r\n   * @param id If the current user can responder the key exchange if they are either the initiator or the receiver.\r\n   * @param token If not signed in, or not the initiator or responder, 'token' must be given.\r\n   * @param otKeyK Is the raw one-time key (string). If the responder is explicitly specified at time of initiation, then\r\n   *   it's possible to have the otKey wrapped by the public key of the responder. In which case, the otKeyK is not needed.\r\n   */\r\n  async getKeyExchange(\r\n    id: string,\r\n    { otKeyK, token }: GetKeyExchangeOptions2 = {}\r\n  ) {\r\n    const res = await this.lrGraphQL.query({\r\n      query: token ? KeyExchangeTokenQuery2 : KeyExchangeQuery2,\r\n      variables: {\r\n        id,\r\n        token,\r\n      },\r\n      includeKeyGraph: !token, // if !token then we are post auth, so can fetch keyGraph\r\n    });\r\n    return this.decryptKeyExchange(res.keyExchange, otKeyK);\r\n  }\r\n\r\n  public async getCurrentUserSharedKey(input: {\r\n    username?: string;\r\n    userId?: string;\r\n  }) {\r\n    return this.lrGraphQL.query({\r\n      query: CurrentUserSharedKeyQuery2,\r\n      variables: {\r\n        username: input.username,\r\n        userId: input.userId,\r\n      },\r\n    });\r\n  }\r\n\r\n  // TODO: deprecate this\r\n  async cancelKeyExchange(id: string) {\r\n    return this.cancelKeyExchangeMutation(id);\r\n  }\r\n\r\n  cancelKeyExchangeMutation(id: string) {\r\n    return new LrMutation({\r\n      mutation: CancelKeyExchangeMutation,\r\n      variables: {\r\n        input: {\r\n          id,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  // TODO: deprecate this\r\n  async declineKeyExchange(id: string, token: string) {\r\n    return this.declineKeyExchangeMutation(id, token);\r\n  }\r\n\r\n  declineKeyExchangeMutation(id: string, token: string) {\r\n    return new LrMutation({\r\n      mutation: DeclineKeyExchangeMutation,\r\n      variables: {\r\n        input: {\r\n          id,\r\n          token,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async initiateOtk({\r\n    message,\r\n    email,\r\n    contactCard,\r\n    upgrade,\r\n  }: InitiateOtkInput2 = {}) {\r\n    const otKey = await this.keyFactory.createKey();\r\n    const nonce = this.keyFactory.randomString(this.CLIENT_NONCE_LENGTH);\r\n\r\n    // New PKC key for encryption. This key is used only once when the responder sends\r\n    // back their signing public key.\r\n    const initiatorOneTimePrk = await this.keyFactory.createPkcKey();\r\n\r\n    // Option 1: New PKC key for signing\r\n    // const initiatorSigPrk = await this.keyService.createPkcSignKey();\r\n\r\n    // Option 2: Use the user's global signing key.\r\n    // This key is used to prove the initiator's identity.\r\n    const initiatorPrk = await this.keyService.getCurrentPxk();\r\n    const initiatorSigPrk = await this.keyService.getCurrentSigPxk();\r\n\r\n    let initiatorPlainDataSig: string = null;\r\n\r\n    if (contactCard && contactCard.ownerPlainDataJson) {\r\n      initiatorPlainDataSig = await this.encryptionService.signToString(\r\n        initiatorSigPrk.jwk,\r\n        contactCard.ownerPlainDataJson\r\n      );\r\n    }\r\n\r\n    const initiator = {\r\n      message,\r\n      contactCard: contactCard && {\r\n        sharedCipherDataClearJson: contactCard.sharedCipherDataClearJson,\r\n      },\r\n    };\r\n\r\n    // Content to be encrypted using the OTK.\r\n    const plainOtKeyCipher: OtKeyCipherClearJson2 = {\r\n      // TODO Make sure we also put the OOB code in here as well since the OOB code is the\r\n      // _only_ information the KC server does not have access to. The server may have\r\n      // access to OTK and hence the nonce here. It's good to have both the nonce and OOB code\r\n      // since the user may not be using the OOB code. And it's simple to always include\r\n      // the nonce, so why not.\r\n      nonce,\r\n      initiator: {\r\n        ...initiator,\r\n        oneTimePbk: initiatorOneTimePrk.toJSON(), // one-time public encryption key responder use to send data back to initiator\r\n        pbk: initiatorPrk.jwk.toJSON(), // public encryption key\r\n        sigPbk: initiatorSigPrk.jwk.toJSON(), // public signing key\r\n      },\r\n    };\r\n\r\n    const otKeyCipher = await this.keyGraph.encryptToString(\r\n      otKey,\r\n      plainOtKeyCipher\r\n    );\r\n\r\n    // Content to be encrypted using the initiator's root key.\r\n    const initiatorRootKeyCipherClearJson: InitiatorRootKeyCipherClearJson2 = {\r\n      nonce,\r\n      oneTimePrk: initiatorOneTimePrk.toJSON(true),\r\n      // Should not need to keep this encrypted since we are using the global signing key.\r\n      // sigPrk: initiatorSigPrk.toJSON(true),\r\n\r\n      // Save it in case the initiator want to decode the otKeyCipher.\r\n      // Since the otKey is only used once, and that otKeyCipher contains only\r\n      // the public key of the initiator, it's safe just leave the otKey stored here.\r\n      otKey: otKey.toJSON(true),\r\n      // These should be storing information such as how the fields of the shared contact card is\r\n      // derived from the master contact card.\r\n      initiatorContactCard: contactCard,\r\n      initiator,\r\n    };\r\n\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n    const initiatorRootKeyCipher = await this.keyGraph.encryptToString(\r\n      rootKey.jwk,\r\n      initiatorRootKeyCipherClearJson\r\n    );\r\n\r\n    // The raw OTK\r\n    const otKeyK: string = (otKey.toJSON(true) as any).k;\r\n\r\n    // API call\r\n    const lrMutation = new LrMutation({\r\n      mutation: InitiateKeyExchangeOtkMutation,\r\n      variables: {\r\n        input: {\r\n          // These will be stored on the server\r\n          initiatorRootKeyCipher,\r\n          initiatorPxkId: initiatorPrk.id,\r\n          initiatorSigPxkId: initiatorSigPrk.id,\r\n          // These will be sent to the responder\r\n          otKeyParams: JSON.stringify(otKey.toJSON()),\r\n          otKeyCipher,\r\n          sendEmail: email && {\r\n            email,\r\n            rawOtKey: otKeyK,\r\n          },\r\n          createTp: true,\r\n          initiatorPlainDataSig,\r\n          upgrade,\r\n        },\r\n      },\r\n    });\r\n\r\n    return { lrMutation, otKeyK };\r\n  }\r\n\r\n  async respondOtk({\r\n    keyExchangeId,\r\n    token,\r\n    decryptedOtk,\r\n    message,\r\n    initiatorContactCard,\r\n    responderContactCard,\r\n  }: RespondOtkInput2) {\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n\r\n    const masterKeyId = this.keyService.getCurrentMasterKey().id;\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n\r\n    const sharedKey = await this.keyFactory.createKey();\r\n    const mkSharedKey = await this.keyFactory.createKey();\r\n\r\n    const rkWrappedSharedKey = await this.encryptionService.encrypt(\r\n      rootKey.jwk,\r\n      sharedKey.toJSON(true)\r\n    );\r\n    const mkWrappedMkSharedKey = await this.encryptionService.encrypt(\r\n      masterKey.jwk,\r\n      mkSharedKey.toJSON(true)\r\n    );\r\n\r\n    const initiatorOneTimePbk = await KeyFactoryService.asKey(\r\n      decryptedOtk.otKeyCipherClearJson.initiator.oneTimePbk\r\n    );\r\n\r\n    const initiatorPbk = await KeyFactoryService.asKey(\r\n      decryptedOtk.otKeyCipherClearJson.initiator.pbk\r\n    );\r\n    const initiatorSigPbk = await KeyFactoryService.asKey(\r\n      decryptedOtk.otKeyCipherClearJson.initiator.sigPbk\r\n    );\r\n\r\n    // Option 1: Using new Prk for each TP pair\r\n    // Create a new public signing key for the responder.\r\n    // const responderSigPrk = await this.keyService.createPkcSignKey()\r\n    // const rkWrappedResponderSigPrk = await this.encrypt(rootKey, responderSigPrk.toJSON(true));\r\n\r\n    // Option 2: Responder already has a signing Prk\r\n    const responderPrk = await this.keyService.getCurrentPxk();\r\n    const responderSigPrk = await this.keyService.getCurrentSigPxk();\r\n\r\n    const signedInitiatorPbk = await this.encryptionService.sign(\r\n      responderSigPrk.jwk,\r\n      initiatorPbk.toJSON()\r\n    );\r\n    const signedInitiatorSigPbk = await this.encryptionService.sign(\r\n      responderSigPrk.jwk,\r\n      initiatorSigPbk.toJSON()\r\n    );\r\n\r\n    const initiatorOneTimePbkCipherClearJson: InitiatorOneTimePbkCipherClearJson = {\r\n      nonce: decryptedOtk.otKeyCipherClearJson.nonce,\r\n      sharedKey: sharedKey.toJSON(true),\r\n      mkSharedKey: mkSharedKey.toJSON(true),\r\n      responder: {\r\n        pbk: responderPrk.jwk.toJSON(), // public key\r\n        sigPbk: responderSigPrk.jwk.toJSON(), // public key\r\n        message,\r\n      },\r\n    };\r\n\r\n    let receivedCardInput;\r\n    if (decryptedOtk.otKeyCipherClearJson.initiator.contactCard) {\r\n      // Set the info about the initiator to be the ones sent by the initiator. We need th responder to do the encryption here\r\n      // because the initiator does not have the shared key yet, and we want the responder to have a functional contact card after\r\n      // this exchange. The initiator can double check the contact details are correct and sign it when it completes the exchange.\r\n      const sharedCipherDataClearJson =\r\n        decryptedOtk.otKeyCipherClearJson.initiator.contactCard\r\n          .sharedCipherDataClearJson;\r\n\r\n      // Create keys\r\n      const receiverKey = await this.keyFactory.createKey();\r\n      const ccSharedKey = await this.keyFactory.createKey();\r\n      const sigPxk = await this.keyService.getCurrentSigPxk();\r\n\r\n      receivedCardInput = {\r\n        receiverWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            rootKey.jwk,\r\n            receiverKey.toJSON(true)\r\n          )\r\n        ),\r\n        receiverWrappingKeyId: rootKey.id,\r\n        receiverCipherData: initiatorContactCard\r\n          ? JSON.stringify(\r\n              await this.encryptionService.encrypt(\r\n                receiverKey,\r\n                initiatorContactCard.receiverCipherDataClearJson\r\n              )\r\n            )\r\n          : '',\r\n        sharedWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            sharedKey,\r\n            ccSharedKey.toJSON(true)\r\n          )\r\n        ),\r\n      };\r\n\r\n      const sharedCipherData = await this.encryptionService.encrypt(\r\n        ccSharedKey,\r\n        sharedCipherDataClearJson\r\n      );\r\n      receivedCardInput.sharedCipherDataSig = JSON.stringify(\r\n        await this.encryptionService.sign(sigPxk.jwk, sharedCipherData)\r\n      );\r\n      receivedCardInput.sigPxkId = sigPxk.id;\r\n\r\n      initiatorOneTimePbkCipherClearJson.responder.contactCard = {\r\n        ...initiatorOneTimePbkCipherClearJson.responder.contactCard,\r\n        sharedCipherKey: ccSharedKey.toJSON(true),\r\n      };\r\n    }\r\n\r\n    let responderCardInput;\r\n    if (responderContactCard) {\r\n      // Create keys\r\n      const ownerKey = await this.keyFactory.createKey();\r\n      const ccSharedKey = await this.keyFactory.createKey();\r\n      const sigPxk = await this.keyService.getCurrentSigPxk();\r\n\r\n      responderCardInput = {\r\n        ownerWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            rootKey.jwk,\r\n            ownerKey.toJSON(true)\r\n          )\r\n        ),\r\n        ownerWrappingKeyId: rootKey.id,\r\n        ownerCipherData: responderContactCard.ownerCipherDataClearJson\r\n          ? JSON.stringify(\r\n              await this.encryptionService.encrypt(\r\n                ownerKey,\r\n                responderContactCard.ownerCipherDataClearJson\r\n              )\r\n            )\r\n          : '',\r\n\r\n        sharedWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            sharedKey,\r\n            ccSharedKey.toJSON(true)\r\n          )\r\n        ),\r\n      };\r\n\r\n      const sharedCipherData = await this.encryptionService.encrypt(\r\n        ccSharedKey,\r\n        responderContactCard.sharedCipherDataClearJson\r\n      );\r\n      responderCardInput.sharedCipherDataSig = JSON.stringify(\r\n        await this.encryptionService.sign(sigPxk.jwk, sharedCipherData)\r\n      );\r\n      responderCardInput.sigPxkId = sigPxk.id;\r\n\r\n      if (responderContactCard.ownerPlainDataJson) {\r\n        responderCardInput.ownerPlainDataSig = JSON.stringify(\r\n          await this.encryptionService.sign(\r\n            responderSigPrk.jwk,\r\n            responderContactCard.ownerPlainDataJson\r\n          )\r\n        );\r\n      }\r\n\r\n      // Contact card info readable by the initiator\r\n      initiatorOneTimePbkCipherClearJson.responder.contactCard = {\r\n        ...initiatorOneTimePbkCipherClearJson.responder.contactCard,\r\n        sharedCipherDataClearJson:\r\n          responderContactCard.sharedCipherDataClearJson,\r\n      };\r\n    }\r\n\r\n    // Encrypt with one-time public key\r\n    let initiatorOneTimePbkCipher = await this.encryptionService.encrypt(\r\n      initiatorOneTimePbk,\r\n      initiatorOneTimePbkCipherClearJson\r\n    );\r\n\r\n    // Encrypt with the otk again to keep use of asymmetric keys to a minimum.\r\n    initiatorOneTimePbkCipher = await this.encryptionService.encrypt(\r\n      decryptedOtk.otKey,\r\n      initiatorOneTimePbkCipher\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: RespondKeyExchangeOtkMutation,\r\n      variables: {\r\n        input: {\r\n          keyExchangeId,\r\n          keyExchangeToken: token,\r\n          rootKeyId: rootKey.id,\r\n          masterKeyId,\r\n          // These will be stored on the server\r\n          responderPxkId: responderPrk.id,\r\n          responderSigPxkId: responderSigPrk.id,\r\n          signedInitiatorPbk: JSON.stringify(signedInitiatorPbk),\r\n          signedInitiatorSigPbk: JSON.stringify(signedInitiatorSigPbk),\r\n          // rkWrappedInitiatorSigPbk: JSON.stringify(rkWrappedInitiatorSigPbk),\r\n\r\n          // Option 1: Using new Prk for each TP pair\r\n          // rkWrappedResponderSigPrk: JSON.stringify(rkWrappedResponderSigPrk),\r\n          rkWrappedSharedKey: JSON.stringify(rkWrappedSharedKey),\r\n          mkWrappedMkSharedKey: JSON.stringify(mkWrappedMkSharedKey),\r\n          // These will be sent to the initiator\r\n          initiatorOneTimePbkCipher: JSON.stringify(initiatorOneTimePbkCipher),\r\n          initiatorContactCard: receivedCardInput,\r\n          responderContactCard: responderCardInput,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async completeOtk({\r\n    keyExchangeId,\r\n    initiatorRootKeyCipher,\r\n    initiatorOneTimePbkCipher,\r\n    responderContactCard,\r\n    initiatorContactCard,\r\n  }: CompleteOtkInput2) {\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n\r\n    // Decrypt using the root key to get the Prk\r\n    const initiatorRootKeyCipherClearJson = (await this.encryptionService.decrypt(\r\n      rootKey.jwk,\r\n      initiatorRootKeyCipher\r\n    )) as InitiatorRootKeyCipherClearJson2;\r\n\r\n    // The Prk is single-use and only used to send information from the responder back to the initiator.\r\n    const plainInitiatorOneTimePbkCipher = await this.decryptResponseCipher(\r\n      await KeyFactoryService.asKey(initiatorRootKeyCipherClearJson.otKey),\r\n      await KeyFactoryService.asKey(initiatorRootKeyCipherClearJson.oneTimePrk),\r\n      initiatorOneTimePbkCipher\r\n    );\r\n\r\n    // Check the nonce match to ensure the responder was the one holding the OTK\r\n    if (\r\n      initiatorRootKeyCipherClearJson.nonce !==\r\n      plainInitiatorOneTimePbkCipher.nonce\r\n    ) {\r\n      throw new LrCodeMismatchException(\r\n        'The nonce returned by responder does not match with the one created by the initiator.'\r\n      );\r\n    }\r\n\r\n    // Option 1: Assuming the signing key is unique between users.\r\n    // const initiatorSigPrk = await KFS.asKey(ke.plainInitiatorRootKeyCipher.sigPrk);\r\n    // const rkWrappedInitiatorSigPrk = await this.encrypt(rootKey, initiatorSigPrk.toJSON(true));\r\n\r\n    // Option 2: Use the user's global signing key.\r\n    // In this case the initiatorSigPrk is already a part of the key graph.\r\n    // So there's nothing to do here.\r\n\r\n    // Protected the signing public key of the responder.\r\n    const initiatorSigPrk = await this.keyService.getCurrentSigPxk();\r\n    const responderSigPbk = await KeyFactoryService.asKey(\r\n      plainInitiatorOneTimePbkCipher.responder.sigPbk\r\n    );\r\n    const responderPbk = await KeyFactoryService.asKey(\r\n      plainInitiatorOneTimePbkCipher.responder.pbk\r\n    );\r\n\r\n    const signedResponderPbk = await this.encryptionService.sign(\r\n      initiatorSigPrk.jwk,\r\n      responderPbk.toJSON()\r\n    );\r\n    const signedResponderSigPbk = await this.encryptionService.sign(\r\n      initiatorSigPrk.jwk,\r\n      responderSigPbk.toJSON()\r\n    );\r\n\r\n    const sharedKey = await KeyFactoryService.asKey(\r\n      plainInitiatorOneTimePbkCipher.sharedKey\r\n    );\r\n    const rkWrappedSharedKey = await this.encryptionService.encrypt(\r\n      rootKey.jwk,\r\n      sharedKey.toJSON(true)\r\n    );\r\n\r\n    const mkSharedKey = await KeyFactoryService.asKey(\r\n      plainInitiatorOneTimePbkCipher.mkSharedKey\r\n    );\r\n    const mkWrappedMkSharedKey = await this.encryptionService.encrypt(\r\n      masterKey.jwk,\r\n      mkSharedKey.toJSON(true)\r\n    );\r\n\r\n    let responderContactCardCipherInput;\r\n    if (responderContactCard) {\r\n      // Create key\r\n      const receiverKey = await this.keyFactory.createKey();\r\n\r\n      responderContactCardCipherInput = {\r\n        receiverWrappedKey: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            rootKey.jwk,\r\n            receiverKey.toJSON(true)\r\n          )\r\n        ),\r\n        receiverWrappingKeyId: rootKey.id,\r\n        receiverCipherData: JSON.stringify(\r\n          await this.encryptionService.encrypt(\r\n            receiverKey,\r\n            responderContactCard.receiverCipherDataClearJson\r\n          )\r\n        ),\r\n      };\r\n    }\r\n\r\n    // Get the data needed from the initiator's cipher data.\r\n    let initiatorContactCardCipherInput;\r\n    let initiatorContactCardSharedCipherInput;\r\n    if (initiatorRootKeyCipherClearJson.initiatorContactCard) {\r\n      // The initiatorContactCard created during the creation of the invite and encrypted using the initiator's\r\n      // root key\r\n      const initiatorContactCardFromInit =\r\n        initiatorRootKeyCipherClearJson.initiatorContactCard;\r\n      const ownerKey = await this.keyFactory.createKey();\r\n      const sharedCipherKey = await KeyFactoryService.asKey(\r\n        plainInitiatorOneTimePbkCipher.responder.contactCard.sharedCipherKey\r\n      );\r\n\r\n      const ownerWrappedKey = JSON.stringify(\r\n        await this.encryptionService.encrypt(rootKey.jwk, ownerKey.toJSON(true))\r\n      );\r\n\r\n      // Allow the initiatorContactCard parameter to override\r\n      const ownerCipherDataClearJson =\r\n        initiatorContactCard?.ownerCipherDataClearJson ||\r\n        initiatorContactCardFromInit.ownerCipherDataClearJson;\r\n\r\n      const ownerCipherData = ownerCipherDataClearJson\r\n        ? await this.keyGraph.encryptToString(\r\n            ownerKey,\r\n            ownerCipherDataClearJson\r\n          )\r\n        : '';\r\n\r\n      initiatorContactCardCipherInput = {\r\n        ownerWrappedKey,\r\n        ownerWrappingKeyId: rootKey.id,\r\n        ownerCipherData,\r\n      };\r\n\r\n      initiatorContactCardSharedCipherInput = {\r\n        sigPxkId: initiatorSigPrk.id,\r\n      };\r\n\r\n      const sharedCipherData = await this.encryptionService.encrypt(\r\n        sharedCipherKey,\r\n        initiatorContactCardFromInit.sharedCipherDataClearJson\r\n      );\r\n      initiatorContactCardSharedCipherInput.sharedCipherDataSig = JSON.stringify(\r\n        await this.encryptionService.sign(initiatorSigPrk.jwk, sharedCipherData)\r\n      );\r\n    }\r\n\r\n    // TODO ideally we update the shared data in the contact card sent to the responder as well since that\r\n    // CC was created by the responder.\r\n\r\n    return new LrMutation({\r\n      mutation: CompleteKeyExchangeOtkMutation,\r\n      variables: {\r\n        input: {\r\n          keyExchangeId,\r\n          rootKeyId: rootKey.id,\r\n          masterKeyId: masterKey.id,\r\n          initiatorSigPxkId: initiatorSigPrk.id,\r\n          signedResponderPbk: JSON.stringify(signedResponderPbk),\r\n          signedResponderSigPbk: JSON.stringify(signedResponderSigPbk),\r\n          rkWrappedSharedKey: JSON.stringify(rkWrappedSharedKey),\r\n          mkWrappedMkSharedKey: JSON.stringify(mkWrappedMkSharedKey),\r\n          responderContactCardCipher: responderContactCardCipherInput,\r\n          initiatorContactCardCipher: initiatorContactCardCipherInput,\r\n          initiatorContactCardSharedCipher: initiatorContactCardSharedCipherInput,\r\n        },\r\n      },\r\n    });\r\n  }\r\n}\r\n","import { gqlTyped } from '../_common/ast';\r\nimport { ID } from './types';\r\n\r\nexport interface UpdateOwnedContactCardMutation {\r\n  updateOwnedContactCard: {\r\n    ownedContactCard: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const UpdateOwnedContactCardMutation = gqlTyped<UpdateOwnedContactCardMutation>`\r\nmutation UpdateOwnedContactCardMutation(\r\n  $input: UpdateOwnedContactCardInput!\r\n) {\r\n  updateOwnedContactCard(input: $input) {\r\n    ownedContactCard {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n\r\nexport interface UpdateReceivedContactCardMutation {\r\n  updateReceivedContactCard: {\r\n    receivedContactCard: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const UpdateReceivedContactCardMutation = gqlTyped<UpdateReceivedContactCardMutation>`\r\nmutation UpdateReceivedContactCardMutation(\r\n  $input: UpdateReceivedContactCardInput!\r\n) {\r\n  updateReceivedContactCard(input: $input) {\r\n    receivedContactCard {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n\r\nexport interface GetOwnedContactCardKeyIdsQuery {\r\n  ownedContactCard: {\r\n    sharedKey: {\r\n      id: ID;\r\n    };\r\n    ownerKey: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const GetOwnedContactCardKeyIdsQuery = gqlTyped<GetOwnedContactCardKeyIdsQuery>`\r\nquery GetOwnedContactCardKeyIdsQuery($id: LrRelayIdInput!) {\r\n  ownedContactCard(id: $id) {\r\n    sharedKey {\r\n      id\r\n    }\r\n    ownerKey {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n\r\nexport interface GetReceivedContactCardKeyIdQuery {\r\n  receivedContactCard: {\r\n    receiverKey: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const GetReceivedContactCardKeyIdQuery = gqlTyped<GetReceivedContactCardKeyIdQuery>`\r\nquery GetReceivedContactCardKeyIdQuery($id: LrRelayIdInput!) {\r\n  receivedContactCard(id: $id) {\r\n    receiverKey {\r\n      id\r\n    }\r\n  }\r\n}`;\r\n","import { Injectable, NgZone } from '@angular/core';\r\nimport { Key } from '../cryptography/cryptography.types';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\nimport {\r\n  ContactCardReceiverCipherData,\r\n  SendContactCardInput,\r\n} from './key-exchange2.service';\r\nimport { LrGraphQLService, LrMutation } from './lr-graphql';\r\nimport {\r\n  GetOwnedContactCardKeyIdsQuery,\r\n  GetReceivedContactCardKeyIdQuery,\r\n  UpdateOwnedContactCardMutation,\r\n  UpdateReceivedContactCardMutation,\r\n} from './shared-contact-card2.gql';\r\nimport { LrRelayIdInput } from './types';\r\n\r\nexport interface UpdateOwnedContactCardInput extends SendContactCardInput {\r\n  id: LrRelayIdInput;\r\n  ownerKeyId?: LrRelayIdInput;\r\n  sharedKeyId?: LrRelayIdInput;\r\n}\r\n\r\nexport interface UpdateReceivedContactCardInput\r\n  extends ContactCardReceiverCipherData {\r\n  id: LrRelayIdInput;\r\n  receiverKeyId?: LrRelayIdInput;\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class SharedContactCard2Service {\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private keyService: KeyService,\r\n    private keyGraph: KeyGraphService,\r\n    private encryptionService: EncryptionService,\r\n    private lrGraphQL: LrGraphQLService\r\n  ) {}\r\n\r\n  private async getOwnedContactCardKeyIds(id: LrRelayIdInput) {\r\n    const { ownedContactCard: cc } = await this.lrGraphQL.query({\r\n      query: GetOwnedContactCardKeyIdsQuery,\r\n      variables: {\r\n        id,\r\n      },\r\n    });\r\n\r\n    return {\r\n      sharedKeyId: cc.sharedKey.id,\r\n      ownerKeyId: cc.ownerKey.id,\r\n    };\r\n  }\r\n\r\n  private async getReceivedContactCardKeyId(id: LrRelayIdInput) {\r\n    return (\r\n      await this.lrGraphQL.query({\r\n        query: GetReceivedContactCardKeyIdQuery,\r\n        variables: {\r\n          id,\r\n        },\r\n      })\r\n    ).receivedContactCard.receiverKey.id;\r\n  }\r\n\r\n  async updateOwnedContactCard({\r\n    id,\r\n    ownerKeyId,\r\n    sharedKeyId,\r\n    ownerPlainDataJson,\r\n    ownerCipherDataClearJson,\r\n    sharedCipherDataClearJson,\r\n  }: UpdateOwnedContactCardInput) {\r\n    let ownerKey: Key;\r\n    let sharedKey: Key;\r\n\r\n    try {\r\n      ownerKey = await this.keyGraph.getKey(ownerKeyId);\r\n      sharedKey = await this.keyGraph.getKey(sharedKeyId);\r\n    } catch (error) {\r\n      const keys = await this.getOwnedContactCardKeyIds(id);\r\n\r\n      // try again\r\n      ownerKey = await this.keyGraph.getKey(keys.ownerKeyId);\r\n      sharedKey = await this.keyGraph.getKey(keys.sharedKeyId);\r\n    }\r\n\r\n    const sigPxk = await this.keyService.getCurrentSigPxk();\r\n\r\n    const sharedCipherData = await this.encryptionService.encrypt(\r\n      sharedKey.jwk,\r\n      sharedCipherDataClearJson\r\n    );\r\n    const sharedCipherDataSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, sharedCipherData)\r\n    );\r\n\r\n    const ownerPlainDataSig = JSON.stringify(\r\n      await this.encryptionService.sign(sigPxk.jwk, ownerPlainDataJson)\r\n    );\r\n\r\n    const ownerCipherData = await this.encryptionService.encryptToString(\r\n      ownerKey.jwk,\r\n      ownerCipherDataClearJson\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: UpdateOwnedContactCardMutation,\r\n      variables: {\r\n        input: {\r\n          id,\r\n          ownerCipherData,\r\n          ownerKeyId: ownerKey.id,\r\n          sharedCipherDataSig,\r\n          sharedKeyId: sharedKey.id,\r\n          sigPxkId: sigPxk.id,\r\n          ownerPlainDataSig,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async updateReceivedContactCard({\r\n    id,\r\n    receiverKeyId,\r\n    receiverCipherDataClearJson,\r\n  }: UpdateReceivedContactCardInput) {\r\n    const receiverKey = await this.keyGraph.getKey(receiverKeyId, () =>\r\n      this.getReceivedContactCardKeyId(id)\r\n    );\r\n\r\n    const receiverCipherData = await this.encryptionService.encryptToString(\r\n      receiverKey.jwk,\r\n      receiverCipherDataClearJson\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: UpdateReceivedContactCardMutation,\r\n      variables: {\r\n        input: {\r\n          id,\r\n          receiverCipherData,\r\n          receiverKeyId: receiverKey.id,\r\n        },\r\n      },\r\n    });\r\n  }\r\n}\r\n","import { JWK } from 'node-jose';\r\nimport { gqlTyped } from '../_common/ast';\r\nimport { DateTime, LockState, UUID } from './types';\r\n\r\nexport interface LockFragmentResult {\r\n  created: DateTime;\r\n  modified: DateTime;\r\n  version?: UUID;\r\n  expiryTime: DateTime;\r\n  state: LockState;\r\n}\r\nexport const LockFragment = gqlTyped<LockFragmentResult>`\r\nfragment LockFragment on LockField {\r\n  created\r\n  modified\r\n  version\r\n  expiryTime\r\n  state\r\n}`;\r\n\r\nexport interface UpdateLockMutationResult {\r\n  updateLock: {\r\n    lock: LockFragmentResult;\r\n  };\r\n}\r\nexport const UpdateLockMutation = gqlTyped<UpdateLockMutationResult>`\r\nmutation UpdateLockMutation($input: UpdateLockInput!) {\r\n  updateLock(input: $input) {\r\n    lock {\r\n      ...LockFragment\r\n    }\r\n  }\r\n}\r\n${LockFragment}\r\n`;\r\n\r\nexport interface AcquireLockMutationResult {\r\n  acquireLock: {\r\n    lock: LockFragmentResult;\r\n  };\r\n}\r\nexport const AcquireLockMutation = gqlTyped<AcquireLockMutationResult>`\r\nmutation AcquireLockMutation($input: AcquireLockInput!) {\r\n  acquireLock(input: $input) {\r\n    lock {\r\n      ...LockFragment\r\n    }\r\n  }\r\n}\r\n${LockFragment}\r\n`;\r\n\r\nexport interface ReleaseLockMutationResult {\r\n  releaseLock: {\r\n    lock: LockFragmentResult;\r\n  };\r\n}\r\nexport const ReleaseLockMutation = gqlTyped<ReleaseLockMutationResult>`\r\nmutation ReleaseLockMutation($input: ReleaseLockInput!) {\r\n  releaseLock(input: $input) {\r\n    lock {\r\n      ...LockFragment\r\n    }\r\n  }\r\n}\r\n${LockFragment}\r\n`;\r\n","import { Injectable, Injector, NgZone } from '@angular/core';\r\nimport { LrMutation, LrService } from './lr-graphql';\r\nimport {\r\n  AcquireLockMutation,\r\n  ReleaseLockMutation,\r\n  UpdateLockMutation,\r\n} from './lock.gql';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class LockService extends LrService {\r\n  constructor(private ngZone: NgZone, private injector: Injector) {\r\n    super(injector);\r\n  }\r\n\r\n  // Updating the lock version is always to be down along with another mutation.\r\n  updateLockMutation(resourceId: string, version: string) {\r\n    return new LrMutation({\r\n      mutation: UpdateLockMutation,\r\n      variables: {\r\n        input: {\r\n          resourceId,\r\n          version,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  acquireLockMutation(resourceId: string, timeoutMs: number) {\r\n    return new LrMutation({\r\n      mutation: AcquireLockMutation,\r\n      variables: {\r\n        input: {\r\n          resourceId,\r\n          timeoutMs,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  releaseLockMutation(resourceId: string, version: string) {\r\n    return new LrMutation({\r\n      mutation: ReleaseLockMutation,\r\n      variables: {\r\n        input: {\r\n          resourceId,\r\n          version,\r\n        },\r\n      },\r\n    });\r\n  }\r\n}\r\n","import { gqlTyped } from '../_common/ast';\r\nimport { ID } from '../api/types';\r\n\r\nexport interface DeleteTpMutation {\r\n  deleteTp: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const DeleteTpMutation = gqlTyped<DeleteTpMutation>`\r\nmutation DeleteTpMutation($input: DeleteTpInput!) {\r\n  deleteTp(input: $input) {\r\n    id\r\n  }\r\n}\r\n`;\r\n\r\nexport interface ShareDirectoryMutation {\r\n  shareDirectory: {\r\n    tpDirectory: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const ShareDirectoryMutation = gqlTyped<ShareDirectoryMutation>`\r\n  mutation ShareDirectoryMutation($input: ShareDirectoryInput!) {\r\n    shareDirectory(input: $input) {\r\n      tpDirectory {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface UnshareDirectoryMutation {\r\n  unshareDirectory: {\r\n    tpDirectory: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const UnshareDirectoryMutation = gqlTyped<UnshareDirectoryMutation>`\r\n  mutation UnshareDirectoryMutation($input: UnshareDirectoryInput!) {\r\n    unshareDirectory(input: $input) {\r\n      tpDirectory {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface ShareFileMutation {\r\n  shareFile: {\r\n    tpFile: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const ShareFileMutation = gqlTyped<ShareFileMutation>`\r\n  mutation ShareFileMutation($input: ShareFileInput!) {\r\n    shareFile(input: $input) {\r\n      tpFile {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface UnshareFileMutation {\r\n  unshareFile: {\r\n    tpFile: {\r\n      id: ID;\r\n    };\r\n  };\r\n}\r\nexport const UnshareFileMutation = gqlTyped<UnshareFileMutation>`\r\n  mutation UnshareFileMutation($input: UnshareFileInput!) {\r\n    unshareFile(input: $input) {\r\n      tpFile {\r\n        id\r\n      }\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface TpCurrentUserSharedKeyQuery {\r\n  tp: {\r\n    currentUserSharedKey: {\r\n      userSharedKey: {\r\n        sharedKey: {\r\n          id: ID;\r\n        };\r\n        mkSharedKey: {\r\n          id: ID;\r\n        };\r\n        mkPxk: {\r\n          id: ID;\r\n        };\r\n        mkReshareRequestCipher: string;\r\n        mkReshareRequestSent: boolean;\r\n        mkReshareResponseCipher: string;\r\n        mkReshareResponseSent: boolean;\r\n      };\r\n    };\r\n  };\r\n}\r\nexport const TpCurrentUserSharedKeyQuery = gqlTyped<TpCurrentUserSharedKeyQuery>`\r\nquery TpCurrentUserSharedKeyQuery($id: LrRelayIdInput!) {\r\n  tp(id: $id){\r\n    currentUserSharedKey {\r\n      userSharedKey {\r\n        sharedKey {\r\n          id\r\n        }\r\n        mkSharedKey {\r\n          id\r\n        }\r\n        mkPxk {\r\n          id\r\n        }\r\n        mkReshareRequestCipher\r\n        mkReshareRequestSent\r\n        mkReshareResponseCipher\r\n        mkReshareResponseSent\r\n      }\r\n    }\r\n  }\r\n}\r\n`;\r\n\r\nexport interface RequestTpMkReshareMutation {\r\n  requestTpMkReshare: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const RequestTpMkReshareMutation = gqlTyped<RequestTpMkReshareMutation>`\r\nmutation RequestTpMkReshareMutation($input: RequestTpMkReshareInput!) {\r\n  requestTpMkReshare(input: $input) {\r\n    id\r\n  }\r\n}`;\r\n\r\nexport interface RespondTpMkReshareMutation {\r\n  respondTpMkReshare: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const RespondTpMkReshareMutation = gqlTyped<RespondTpMkReshareMutation>`\r\n  mutation RespondTpMkReshareMutation($input: RespondTpMkReshareInput!) {\r\n    respondTpMkReshare(input: $input) {\r\n      id\r\n    }\r\n  }\r\n`;\r\n\r\nexport interface CompleteTpMkReshareMutation {\r\n  completeTpMkReshare: {\r\n    id: ID;\r\n  };\r\n}\r\nexport const CompleteTpMkReshareMutation = gqlTyped<CompleteTpMkReshareMutation>`\r\nmutation CompleteTpMkReshareMutation($input: CompleteTpMkReshareInput!) {\r\n  completeTpMkReshare(input: $input) {\r\n    id\r\n  }\r\n}`;\r\n","import { Injectable, NgZone } from '@angular/core';\r\nimport { min } from 'moment';\r\nimport { JWK } from 'node-jose';\r\nimport { Item2Service } from '../api/item2.service';\r\nimport { LrGraphQLService, LrMutation } from '../api/lr-graphql';\r\nimport { AccessRoleChoice, LrRelayIdInput } from '../api/types';\r\nimport { Key } from '../cryptography/cryptography.types';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { LrBadStateException } from '../_common/exceptions';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\nimport {\r\n  CompleteTpMkReshareMutation,\r\n  DeleteTpMutation,\r\n  RequestTpMkReshareMutation,\r\n  RespondTpMkReshareMutation,\r\n  ShareDirectoryMutation,\r\n  ShareFileMutation,\r\n  TpCurrentUserSharedKeyQuery,\r\n  UnshareDirectoryMutation,\r\n  UnshareFileMutation,\r\n} from './trusted-party2.gql';\r\n\r\n// If xxxKeyId not given, then fetch them with API calls\r\nexport interface ShareItemOptions {\r\n  itemId: LrRelayIdInput;\r\n  itemKeyId?: LrRelayIdInput;\r\n  tpId: LrRelayIdInput;\r\n  tpSharedKeyId?: LrRelayIdInput;\r\n  accessRole: AccessRoleChoice;\r\n}\r\n\r\nexport interface UnshareItemOptions {\r\n  itemId: string;\r\n  tpId: string;\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class TrustedParty2Service {\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private keyGraph: KeyGraphService,\r\n    private lrGraphQL: LrGraphQLService,\r\n    private item2Service: Item2Service,\r\n    private keyService: KeyService,\r\n    private keyFactory: KeyFactoryService,\r\n    private encryptionService: EncryptionService\r\n  ) {}\r\n\r\n  // TODO: deprecate this\r\n  public deleteTp(tpId: LrRelayIdInput) {\r\n    return this.deleteTpMutation(tpId);\r\n  }\r\n\r\n  public deleteTpMutation(tpId: LrRelayIdInput) {\r\n    return new LrMutation({\r\n      mutation: DeleteTpMutation,\r\n      variables: {\r\n        input: {\r\n          id: tpId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async getTpCurrentUserSharedKey(tpId: LrRelayIdInput) {\r\n    return (\r\n      await this.lrGraphQL.query({\r\n        query: TpCurrentUserSharedKeyQuery,\r\n        variables: {\r\n          id: tpId,\r\n        },\r\n      })\r\n    ).tp.currentUserSharedKey.userSharedKey;\r\n  }\r\n\r\n  async shareDirectory(options: ShareItemOptions) {\r\n    return this.shareItem({ ...options, isDirectory: true });\r\n  }\r\n\r\n  async shareFile(options: ShareItemOptions) {\r\n    return this.shareItem({ ...options, isDirectory: false });\r\n  }\r\n\r\n  private async shareItem({\r\n    itemId,\r\n    itemKeyId,\r\n    tpId,\r\n    tpSharedKeyId,\r\n    accessRole,\r\n    isDirectory,\r\n  }: ShareItemOptions & {\r\n    isDirectory: boolean;\r\n  }) {\r\n    const itemKey = await this.keyGraph.getKey(itemKeyId, () =>\r\n      isDirectory\r\n        ? this.item2Service.getDirectoryKeyId(itemId)\r\n        : this.item2Service.getFileKeyId(itemId)\r\n    );\r\n    const wrappingKey = await this.keyGraph.getKey(tpSharedKeyId, () =>\r\n      this.getTpCurrentUserSharedKey(tpId).then((res) => res.sharedKey.id)\r\n    );\r\n    const wrappedKey = await this.keyGraph.wrapKey(wrappingKey, itemKey.jwk);\r\n\r\n    return new LrMutation({\r\n      mutation: isDirectory ? ShareDirectoryMutation : ShareFileMutation,\r\n      variables: {\r\n        input: {\r\n          id: itemId,\r\n          tpId,\r\n          accessRole,\r\n          keyId: itemKey.id,\r\n          wrappingKeyId: wrappingKey.id,\r\n          wrappedKey,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  async unshareDirectory(options: UnshareItemOptions) {\r\n    return this.unshareItem({ ...options, isDirectory: true });\r\n  }\r\n\r\n  async unshareFile(options: UnshareItemOptions) {\r\n    return this.unshareItem({ ...options, isDirectory: false });\r\n  }\r\n\r\n  private async unshareItem({\r\n    itemId,\r\n    tpId,\r\n    isDirectory,\r\n  }: UnshareItemOptions & { isDirectory: boolean }) {\r\n    return new LrMutation({\r\n      mutation: isDirectory ? UnshareDirectoryMutation : UnshareFileMutation,\r\n      variables: {\r\n        input: {\r\n          id: itemId,\r\n          tpId,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async requestMkReshare(tpId: LrRelayIdInput) {\r\n    const userSharedKey = await this.getTpCurrentUserSharedKey(tpId);\r\n\r\n    if (userSharedKey.mkSharedKey) {\r\n      throw new LrBadStateException('TP already has mkSharedKey');\r\n    }\r\n\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n    const prk = await this.keyFactory.createPkcKey();\r\n    const mkWrappedMkPrk = await this.encryptionService.encryptToString(\r\n      masterKey.jwk,\r\n      prk.toJSON(true)\r\n    );\r\n\r\n    const sharedKey = await this.keyGraph.getKey(userSharedKey.sharedKey.id);\r\n    const mkReshareRequestCipher = await this.encryptionService.encryptToString(\r\n      sharedKey.jwk,\r\n      {\r\n        pbk: prk.toJSON(),\r\n      }\r\n    );\r\n\r\n    return await new LrMutation({\r\n      mutation: RequestTpMkReshareMutation,\r\n      variables: {\r\n        input: {\r\n          tpId,\r\n          masterKeyId: masterKey.id,\r\n          mkPbk: JSON.stringify(prk.toJSON()),\r\n          mkWrappedMkPrk,\r\n          sharedKeyId: sharedKey.id,\r\n          mkReshareRequestCipher,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async respondMkReshare(tpId: LrRelayIdInput) {\r\n    const userSharedKey = await this.getTpCurrentUserSharedKey(tpId);\r\n\r\n    if (!userSharedKey.mkSharedKey) {\r\n      throw new LrBadStateException(\r\n        'No access to the mkSharedKey so cannot reshare it with TP'\r\n      );\r\n    }\r\n\r\n    const sharedKey = await this.keyGraph.getKey(userSharedKey.sharedKey.id);\r\n    const plainMkReshareRequestCipher = await this.encryptionService.decrypt(\r\n      sharedKey,\r\n      userSharedKey.mkReshareRequestCipher\r\n    );\r\n    const pbk = await JWK.asKey(plainMkReshareRequestCipher.pbk);\r\n    const mkSharedKey = await this.keyGraph.getKey(\r\n      userSharedKey.mkSharedKey.id\r\n    );\r\n\r\n    const plainMkReshareResponseCipher = {\r\n      mkSharedKey: {\r\n        id: mkSharedKey.id,\r\n        jwk: mkSharedKey.jwk.toJSON(true),\r\n      },\r\n    };\r\n\r\n    // Wrap with sharedKey then again with Pbk\r\n    const mkReshareResponseCipher = await this.encryptionService.encryptToString(\r\n      pbk,\r\n      await this.encryptionService.encryptToString(\r\n        sharedKey.jwk,\r\n        plainMkReshareResponseCipher\r\n      )\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: RespondTpMkReshareMutation,\r\n      variables: {\r\n        input: {\r\n          tpId,\r\n          mkSharedKeyId: mkSharedKey.id,\r\n          mkReshareResponseCipher,\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  public async completeMkReshare(tpId: LrRelayIdInput) {\r\n    const userSharedKey = await this.getTpCurrentUserSharedKey(tpId);\r\n\r\n    const sharedKey = await this.keyGraph.getKey(userSharedKey.sharedKey.id);\r\n    const prk = await this.keyGraph.getKey(userSharedKey.mkPxk.id);\r\n    const plainMkReshareResponseCipher = await this.encryptionService.decrypt(\r\n      sharedKey,\r\n      await this.encryptionService.decrypt(\r\n        prk,\r\n        userSharedKey.mkReshareResponseCipher\r\n      )\r\n    );\r\n\r\n    // Double check it's a valid key.\r\n    const mkSharedKey: Key = {\r\n      id: plainMkReshareResponseCipher.mkSharedKey.id,\r\n      jwk: await JWK.asKey(plainMkReshareResponseCipher.mkSharedKey.jwk),\r\n    };\r\n\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n    const mkWrappedMkSharedKey = await this.encryptionService.encryptToString(\r\n      masterKey.jwk,\r\n      mkSharedKey.jwk.toJSON(true)\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: CompleteTpMkReshareMutation,\r\n      variables: {\r\n        input: {\r\n          tpId,\r\n          masterKeyId: masterKey.id,\r\n          mkSharedKeyId: mkSharedKey.id,\r\n          mkWrappedMkSharedKey,\r\n        },\r\n      },\r\n    });\r\n  }\r\n}\r\n","import { Injectable, Injector, NgZone } from '@angular/core';\r\nimport { KeyService } from '../cryptography/key.service';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport {\r\n  CreateTpPasswordResetMutation,\r\n  DeleteTpPasswordResetMutation,\r\n  TpPasswordResetQuery,\r\n  UpdateTpPasswordResetMutation,\r\n  CancelTpPasswordResetRequestMutation,\r\n} from './tp-password-reset.gql';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport * as slip from '../cryptography/slip39.service';\r\nimport {\r\n  LrBadArgumentException,\r\n  LrBadLogicException,\r\n} from '../_common/exceptions';\r\nimport { PartialAssemblyKey } from '../scenario/scenario.types';\r\nimport { JWK } from 'node-jose';\r\nimport { Key } from '../cryptography/cryptography.types';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { LrGraphQLService, LrMutation, LrService } from '../api/lr-graphql';\r\nimport { TpNode } from '../api/types';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\n\r\nexport class CreateSubAssembliesInput {\r\n  name: string;\r\n  quorum: number;\r\n  singleReject: boolean;\r\n  approverTps: TpNode[];\r\n}\r\n\r\nexport class UpdateSubAssembliesInput extends CreateSubAssembliesInput {\r\n  id: string;\r\n}\r\n\r\nexport class CreateTpPasswordResetInput {\r\n  quorum: number;\r\n  singleReject: boolean;\r\n  createSubAssemblies: CreateSubAssembliesInput[];\r\n}\r\n\r\nexport class UpdateTpPasswordResetInput extends CreateTpPasswordResetInput {\r\n  updateSubAssemblies: UpdateSubAssembliesInput[];\r\n}\r\n\r\nexport interface TpAssemblyApprovers {\r\n  id: string;\r\n  tp: {\r\n    id: string;\r\n  };\r\n  sharedKey: Key;\r\n  sharedCipherData?: string;\r\n  sharedCipherDataClearJson?: any;\r\n  sharedCipherApprovalData?: string;\r\n  sharedCipherApprovalDataClearJson?: any;\r\n}\r\n\r\nexport interface TpSubAssembly {\r\n  id: string;\r\n  singleReject: boolean;\r\n  quorum: number;\r\n  subjectCipherData: string;\r\n  plainSubjectCipherData: any;\r\n  approvers: TpAssemblyApprovers[];\r\n}\r\n\r\nexport interface TpAssembly {\r\n  singleReject: boolean;\r\n  quorum: number;\r\n  subjectKey: Key;\r\n  assemblyKey: Key;\r\n  assemblyCipherData: string;\r\n  plainAssemblyCipherData: any;\r\n  subAssemblies: TpSubAssembly[];\r\n}\r\n\r\nexport interface TpPasswordReset {\r\n  id: string;\r\n  assembly: TpAssembly;\r\n  applied: boolean;\r\n}\r\n\r\nexport interface RequestResetResult {\r\n  id: string;\r\n  associate_reset_user_token: string;\r\n  reset_username: string;\r\n}\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class TpPasswordResetService extends LrService {\r\n  public static SLIP39_PASSPHRASE = 'lifeready';\r\n\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private injector: Injector,\r\n    private keyService: KeyService,\r\n    private keyFactory: KeyFactoryService,\r\n    private encryptionService: EncryptionService,\r\n    private keyGraph: KeyGraphService,\r\n    private slip39Service: slip.Slip39Service\r\n  ) {\r\n    super(injector);\r\n  }\r\n\r\n  async getReset() {\r\n    return (\r\n      await this.query({\r\n        query: TpPasswordResetQuery,\r\n      })\r\n    ).tpPasswordReset;\r\n  }\r\n\r\n  createReset(input: CreateTpPasswordResetInput) {\r\n    return this.mutate(this.createResetMutation(input));\r\n  }\r\n\r\n  async createResetMutation(input: CreateTpPasswordResetInput) {\r\n    const { mutationInput } = await this._createReset(\r\n      input,\r\n      async (rawAssemblyKey) => {\r\n        return this.prepareSlip39(\r\n          input.createSubAssemblies,\r\n          input.quorum,\r\n          rawAssemblyKey\r\n        );\r\n      }\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: CreateTpPasswordResetMutation,\r\n      variables: {\r\n        input: mutationInput,\r\n      },\r\n    });\r\n  }\r\n\r\n  deleteReset() {\r\n    return this.mutate(this.deleteResetMutation());\r\n  }\r\n\r\n  deleteResetMutation() {\r\n    return new LrMutation({\r\n      mutation: DeleteTpPasswordResetMutation,\r\n    });\r\n  }\r\n\r\n  updateReset(input: UpdateTpPasswordResetInput) {\r\n    return this.mutate(this.updateResetMutation(input));\r\n  }\r\n\r\n  async updateResetMutation(input: UpdateTpPasswordResetInput) {\r\n    const passwordReset = await this.getReset();\r\n\r\n    const {\r\n      mutationInput,\r\n      subjectKey,\r\n      slipAssembly,\r\n      assemblyKeyParams,\r\n    } = await this._createReset(input, async (rawAssemblyKey) => {\r\n      return this.prepareSlip39(\r\n        input.createSubAssemblies.concat(input.updateSubAssemblies),\r\n        input.quorum,\r\n        rawAssemblyKey\r\n      );\r\n    });\r\n\r\n    const updateSubAssemblies = await Promise.all(\r\n      input.updateSubAssemblies.map(async (sa, saIndex) => {\r\n        const subjectCipherData = await this.encryptionService.encryptToString(\r\n          subjectKey,\r\n          {\r\n            name: sa.name,\r\n          }\r\n        );\r\n\r\n        // Get the existing sub-assembly\r\n        const existingSa = passwordReset.assembly.subAssemblies.edges.find(\r\n          (edge) => edge.node.id === sa.id\r\n        ).node;\r\n\r\n        // Get approvers that do not exist yet\r\n        const createApprovers = [];\r\n        const updateApprovers = [];\r\n\r\n        sa.approverTps.forEach((tp) => {\r\n          const approver = existingSa.approvers.edges.find(\r\n            (edge) => edge.node.tp.id === tp.id\r\n          )?.node;\r\n          if (approver) {\r\n            updateApprovers.push({\r\n              tp,\r\n              approverId: approver.id,\r\n            });\r\n          } else {\r\n            createApprovers.push({\r\n              tp,\r\n            });\r\n          }\r\n        });\r\n\r\n        return {\r\n          subAssemblyId: sa.id,\r\n          singleReject: sa.singleReject,\r\n          quorum: sa.quorum,\r\n          subjectCipherData,\r\n          createApprovers: await Promise.all(\r\n            createApprovers.map(async ({ tp }, approverIndex) =>\r\n              this.prepareApprover({\r\n                tp,\r\n                approverIndex,\r\n                saIndex: saIndex + input.createSubAssemblies.length, // slipAssembly is all sub-assemblies combined\r\n                slipAssembly,\r\n                assemblyKeyParams,\r\n                subjectKey,\r\n              })\r\n            )\r\n          ),\r\n          updateApprovers: await Promise.all(\r\n            updateApprovers.map(async ({ tp, approverId }, approverIndex) =>\r\n              this.prepareApprover({\r\n                approverId,\r\n                tp,\r\n                approverIndex: approverIndex + createApprovers.length,\r\n                saIndex: saIndex + input.createSubAssemblies.length, // slipAssembly is all sub-assemblies combined\r\n                slipAssembly,\r\n                assemblyKeyParams,\r\n                subjectKey,\r\n              })\r\n            )\r\n          ),\r\n        };\r\n      })\r\n    );\r\n\r\n    return new LrMutation({\r\n      mutation: UpdateTpPasswordResetMutation,\r\n      variables: {\r\n        input: {\r\n          ...mutationInput,\r\n          assembly: {\r\n            ...mutationInput.assembly,\r\n            updateSubAssemblies,\r\n          },\r\n        },\r\n      },\r\n    });\r\n  }\r\n\r\n  cancelResetRequest() {\r\n    return this.mutate(this.cancelResetRequestMutation());\r\n  }\r\n\r\n  cancelResetRequestMutation() {\r\n    return new LrMutation({\r\n      mutation: CancelTpPasswordResetRequestMutation,\r\n    });\r\n  }\r\n\r\n  validateApprovers(approvers: TpNode[]): void {\r\n    // Ensure all approvers have mkSharedKey.\r\n    for (const tp of approvers) {\r\n      if (!tp.currentUserSharedKey.userSharedKey.mkSharedKey) {\r\n        const msg = `tp ${tp.other.username} does not have mkSharedKey`;\r\n        console.log(msg);\r\n        throw new LrBadArgumentException(msg);\r\n      }\r\n    }\r\n  }\r\n\r\n  private async prepareApprover({\r\n    approverId,\r\n    tp,\r\n    approverIndex,\r\n    saIndex,\r\n    slipAssembly,\r\n    assemblyKeyParams,\r\n    subjectKey,\r\n  }: {\r\n    approverId?: string;\r\n    tp: TpNode;\r\n    approverIndex: number;\r\n    saIndex: number;\r\n    slipAssembly: slip.Assembly;\r\n    assemblyKeyParams: object;\r\n    subjectKey: JWK.Key;\r\n  }) {\r\n    if (!tp.currentUserSharedKey.userSharedKey.mkSharedKey) {\r\n      throw new LrBadArgumentException(\r\n        `Tp ${tp.other.username} does not have mkSharedKey. Need to reshared it first.`\r\n      );\r\n    }\r\n\r\n    const sharedKey = await this.keyFactory.createKey();\r\n    const tpMkSharedKey = await this.keyGraph.getKey(\r\n      tp.currentUserSharedKey.userSharedKey.mkSharedKey.id\r\n    );\r\n    // For TP to access shared_key\r\n    const tpMkSharedKeyWrappedSharedKey = await this.encryptionService.encryptToString(\r\n      tpMkSharedKey.jwk,\r\n      sharedKey.toJSON(true)\r\n    );\r\n    // For subject to access shared_key\r\n    const subjectKeyWrappedSharedKey = await this.encryptionService.encryptToString(\r\n      subjectKey,\r\n      sharedKey.toJSON(true)\r\n    );\r\n\r\n    const saSlip = slipAssembly.subAssemblies[saIndex];\r\n    if (saSlip.index !== saIndex) {\r\n      // Paranoia\r\n      throw new LrBadLogicException(\r\n        'slip sub assembly index should match with array index'\r\n      );\r\n    }\r\n\r\n    // If quorum is 1, then using the same share for every member.\r\n    const share =\r\n      saSlip.threshold === 1 ? saSlip.shares[0] : saSlip.shares[approverIndex];\r\n\r\n    const partialAssemblyKey: PartialAssemblyKey = {\r\n      slip39: {\r\n        share,\r\n        subAssembly: {\r\n          quorum: saSlip.threshold,\r\n          size: saSlip.size,\r\n        },\r\n      },\r\n      assemblyKeyParams,\r\n    };\r\n\r\n    console.log('partialAssemblyKey', partialAssemblyKey);\r\n\r\n    return {\r\n      tpMkSharedKeyId: tpMkSharedKey.id,\r\n      tpMkSharedKeyWrappedSharedKey,\r\n      subjectKeyWrappedSharedKey,\r\n      sharedCipherData: await this.encryptionService.encryptToString(\r\n        sharedKey,\r\n        { a: '123' }\r\n      ),\r\n      sharedCipherApprovalData: '',\r\n      sharedCipherPartialAssemblyKey: await this.encryptionService.encryptToString(\r\n        sharedKey,\r\n        partialAssemblyKey\r\n      ),\r\n      approverId: approverId || void 0,\r\n      tpId: approverId ? void 0 : tp.id,\r\n    };\r\n  }\r\n\r\n  // Prepare slip39\r\n  private async prepareSlip39(\r\n    subAssemblies,\r\n    assemblyQuorum: number,\r\n    rawAssemblyKey: string\r\n  ): Promise<slip.Assembly> {\r\n    // Is there enough sub assemblies to meet quorum\r\n    if (subAssemblies.length < assemblyQuorum) {\r\n      throw new LrBadArgumentException(\r\n        'Not enough sub assemblies to meet quorum'\r\n      );\r\n    }\r\n\r\n    const slipAssembly = new slip.Assembly(assemblyQuorum);\r\n\r\n    subAssemblies.forEach((sa, index) => {\r\n      let approverCount = sa.approverTps.length;\r\n\r\n      // slip39 restricts quorum == 1 to have only 1 member. So we just share the same\r\n      // partial key for all sub assembly members.\r\n      if (sa.quorum === 1) {\r\n        approverCount = 1;\r\n      }\r\n      slipAssembly.addSubAssembly(\r\n        new slip.SubAssembly(index, sa.quorum, approverCount)\r\n      );\r\n    });\r\n\r\n    await this.slip39Service.generateShares(\r\n      rawAssemblyKey,\r\n      TpPasswordResetService.SLIP39_PASSPHRASE,\r\n      slipAssembly\r\n    );\r\n    return slipAssembly;\r\n  }\r\n\r\n  private async _createReset(\r\n    input: CreateTpPasswordResetInput,\r\n    createSlipAssembly\r\n  ): Promise<any> {\r\n    // Create subject key\r\n    const masterKey = await this.keyService.getCurrentMasterKey();\r\n    const subjectKey = await this.keyFactory.createKey();\r\n    const assemblyKey = await this.keyFactory.createKey();\r\n    const { k: rawAssemblyKey, ...assemblyKeyParams } = assemblyKey.toJSON(\r\n      true\r\n    ) as any;\r\n    const assemblyKeyVerifierPrk = await this.keyFactory.createPkcSignKey();\r\n    const wrappedAssemblyKeyVerifierPrk = await this.encryptionService.encryptToString(\r\n      assemblyKey,\r\n      assemblyKeyVerifierPrk.toJSON(true)\r\n    );\r\n\r\n    const masterKeyWrappedSubjectKey = await this.encryptionService.encryptToString(\r\n      masterKey.jwk,\r\n      subjectKey.toJSON(true)\r\n    );\r\n    const subjectKeyWrappedAssemblyKey = await this.encryptionService.encryptToString(\r\n      subjectKey,\r\n      assemblyKey.toJSON(true)\r\n    );\r\n\r\n    // Encrypt the rootKey with the assemblyKey\r\n    const rootKey = await this.keyService.getCurrentRootKey();\r\n\r\n    const assemblyCipherData = await this.encryptionService.encryptToString(\r\n      assemblyKey,\r\n      {\r\n        rootKey: rootKey.jwk.toJSON(true),\r\n      }\r\n    );\r\n\r\n    const slipAssembly = await createSlipAssembly(rawAssemblyKey);\r\n    // const slipAssembly = await this.prepareSlip39(input.createSubAssemblies, input.quorum, rawAssemblyKey);\r\n\r\n    const createSubAssemblies = await Promise.all(\r\n      input.createSubAssemblies.map(async (sa, saIndex) => {\r\n        const subjectCipherData = await this.encryptionService.encryptToString(\r\n          subjectKey,\r\n          {\r\n            name: sa.name,\r\n          }\r\n        );\r\n\r\n        return {\r\n          singleReject: sa.singleReject,\r\n          quorum: sa.quorum,\r\n          subjectCipherData,\r\n          createApprovers: await Promise.all(\r\n            sa.approverTps.map(async (approverTp, approverIndex) =>\r\n              this.prepareApprover({\r\n                tp: approverTp,\r\n                approverIndex,\r\n                saIndex,\r\n                slipAssembly,\r\n                assemblyKeyParams,\r\n                subjectKey,\r\n              })\r\n            )\r\n          ),\r\n        };\r\n      })\r\n    );\r\n\r\n    return {\r\n      subjectKey,\r\n      slipAssembly,\r\n      assemblyKeyParams,\r\n      mutationInput: {\r\n        assembly: {\r\n          singleReject: input.singleReject,\r\n          quorum: input.quorum,\r\n          masterKeyId: masterKey.id,\r\n          masterKeyWrappedSubjectKey,\r\n          subjectKeyWrappedAssemblyKey,\r\n          subjectCipherData: '',\r\n          assemblyCipherData,\r\n          createSubAssemblies,\r\n          assemblyKeyVerifierPbk: JSON.stringify(\r\n            assemblyKeyVerifierPrk.toJSON()\r\n          ),\r\n          wrappedAssemblyKeyVerifierPrk,\r\n        },\r\n      },\r\n    };\r\n  }\r\n}\r\n","// ------------------------------------------------------\r\n// Basic types\r\n// ------------------------------------------------------\r\n// These types map directory to types of the same name in graphql.\r\n// We use these aliases in case in the future we wish to reify the types and do\r\n// additional automated conversion.\r\n\r\nexport type ID = string;\r\n// Server requires this to have certain format. But client\r\n// just treats this as an opaque string.\r\nexport type LrRelayIdInput = string;\r\nexport type DateTime = string;\r\n// This is basically the results of: JSON.stringify(obj)\r\n// Server validated to make sure it can JSON.parse() this.\r\nexport type LrJSONString = string;\r\n// JSONString is a type from graphene. DB JSON fields maps to this type\r\n// automatically.\r\n// Where as LrJSONString is out custom implementation for input variables.\r\nexport type JSONString = string;\r\nexport type LrEmail = string;\r\nexport type GenericScalar = any;\r\nexport type UUID = string;\r\n\r\nexport interface Node {\r\n  id?: string;\r\n}\r\n\r\nexport interface TimeStamped {\r\n  created?: DateTime;\r\n  modified?: DateTime;\r\n}\r\n\r\nexport interface Edge<NodeType extends Node> {\r\n  node?: NodeType;\r\n  cursor?: string;\r\n}\r\n\r\nexport interface Connection<NodeType> {\r\n  pageInfo?: PageInfo;\r\n  edges?: Edge<NodeType>[];\r\n}\r\n\r\nexport interface PageInfo {\r\n  hasNextPage?: boolean;\r\n  hasPreviousPage?: boolean;\r\n  startCursor?: string;\r\n  endCursor?: string;\r\n}\r\n","import { Time } from '@angular/common';\r\nimport {\r\n  Connection,\r\n  DateTime,\r\n  GenericScalar,\r\n  ID,\r\n  JSONString,\r\n  LrEmail,\r\n  Node,\r\n  TimeStamped,\r\n} from './graphql.types';\r\n\r\n// TODO: fill these types\r\nexport type UserStripeNode = any;\r\nexport type UserPlanNode = any;\r\nexport type UserDeleteNode = any;\r\nexport type FeaturesNode = any;\r\nexport type ScenarioNode = any;\r\nexport type SharedScenarioNode = any;\r\n\r\nexport type TpPasswordResetRequestNode = any;\r\n\r\nexport interface PassKeyNode extends Node, TimeStamped {\r\n  passKeyParams?: GenericScalar;\r\n  passIdpParams?: GenericScalar;\r\n  wrappedPassIdpVerifierPrk?: GenericScalar;\r\n}\r\n\r\nexport interface CurrentUserKeyNode extends Node, TimeStamped {\r\n  passKeys?: PassKeyNode[];\r\n  passKey?: PassKeyNode;\r\n  rootKey?: KeyNode;\r\n  masterKey?: KeyNode;\r\n  pxk?: KeyNode;\r\n  sigPxk?: KeyNode;\r\n}\r\n\r\n// ------------------------------------------------------\r\n// Node types\r\n// ------------------------------------------------------\r\nexport interface UserNode extends Node {\r\n  username?: string;\r\n  contactCards?: Connection<ContactCardNode>;\r\n  currentUserKey?: CurrentUserKeyNode;\r\n  ownedContactCard?: SharedContactCardNode;\r\n  receivedContactCard?: SharedContactCardNode;\r\n  isCurrentUser?: boolean;\r\n  haveTp?: boolean;\r\n  stripe?: UserStripeNode;\r\n  userPlans?: Connection<UserPlanNode>;\r\n  userDelete?: UserDeleteNode;\r\n  features?: FeaturesNode;\r\n}\r\n\r\nexport interface ServerTime {\r\n  timestamp?: string;\r\n}\r\n\r\nexport interface KeyNode extends Node, TimeStamped {\r\n  pbk?: string;\r\n}\r\n\r\nexport interface ContactCardNode extends Node, TimeStamped {\r\n  owner?: UserNode;\r\n  publicDataSig?: string;\r\n  publicSearchableSig?: string;\r\n  sigPxk?: KeyNode;\r\n  defaultFrom?: DateTime;\r\n  publicData?: string;\r\n  publicSearchable?: string;\r\n  cipherData?: string;\r\n  cipherDataClearJson?: any;\r\n  key?: KeyNode;\r\n  plainData?: string;\r\n  plainDataSig?: string;\r\n}\r\n\r\nexport interface DirectoryNode extends Node, TimeStamped {\r\n  plainMeta?: JSONString;\r\n  plainMetaJson?: any;\r\n  cipherMeta?: string;\r\n  cipherMetaClearJson?: any;\r\n  archived?: boolean;\r\n  keyId?: ID;\r\n  childFileLinks?: Connection<FileLinkNode>;\r\n  childDirectoryLinks?: Connection<DirectoryLinkNode>;\r\n  parentDirectoryLinks?: Connection<DirectoryLinkNode>;\r\n  nParentDirectoryLinks?: DirectoryLinkNodeLrNList;\r\n  descendants?: Descendants;\r\n  accessRoles?: AccessRole[];\r\n}\r\n\r\nexport interface FileNode extends Node, TimeStamped {\r\n  currentVersion?: FileVersionNode;\r\n  archived?: boolean;\r\n  versions?: Connection<FileVersionNode>;\r\n  keyId?: ID;\r\n  parentDirectoryLinks?: Connection<FileLinkNode>;\r\n  nParentDirectoryLinks?: FileLinkNodeLrNList;\r\n  accessRoles?: AccessRole[];\r\n}\r\n\r\nexport interface DirectoryLinkNode extends Node, TimeStamped {\r\n  parentDirectory?: DirectoryNode;\r\n  childDirectory?: DirectoryNode;\r\n}\r\n\r\nexport interface FileLinkNode extends Node, TimeStamped {\r\n  parentDirectory?: DirectoryNode;\r\n  childFile?: FileNode;\r\n}\r\n\r\nexport interface DirectoryLinkNodeLrNList {\r\n  list?: DirectoryLinkNode[];\r\n}\r\n\r\nexport interface FileLinkNodeLrNList {\r\n  list?: FileLinkNode[];\r\n}\r\n\r\nexport interface Descendants {\r\n  directories?: Connection<DirectoryNode>;\r\n  files?: Connection<FileNode>;\r\n  directoriesCount?: number;\r\n  filesCount?: number;\r\n}\r\n\r\nexport enum AccessRoleChoice {\r\n  READER = 'READER',\r\n  WRITER = 'WRITER',\r\n  ADMIN = 'ADMIN',\r\n  DENY = 'DENY',\r\n  OWNER = 'OWNER',\r\n}\r\n\r\nexport enum AccessRoleMethod {\r\n  inherited = 'inherited',\r\n  direct = 'direct',\r\n}\r\n\r\nexport interface AccessRole {\r\n  issuer?: UserNode;\r\n  subject?: UserNode;\r\n  role?: AccessRoleChoice;\r\n  method?: AccessRoleMethod;\r\n  inheritedFrom?: DirectoryNode;\r\n  trustedParty?: TpNode;\r\n  isIssuer?: boolean;\r\n}\r\n\r\nexport enum FileVersionOperation {\r\n  CREATE = 'CREATE',\r\n  READ = 'READ',\r\n  UPDATE = 'UPDATE',\r\n  REVERT = 'REVERT',\r\n  DELETE = 'DELETE',\r\n}\r\n\r\nexport interface FileVersionNode extends Node, TimeStamped {\r\n  file?: FileNode;\r\n  state?: FileStateNode;\r\n  operation?: FileVersionOperation;\r\n  author?: UserNode;\r\n}\r\nexport interface FileStateNode extends Node, TimeStamped {\r\n  plainMeta?: JSONString;\r\n  plainMetaJson?: any;\r\n  cipherMeta?: string;\r\n  cipherMetaClearJson?: any;\r\n  contentResource?: string;\r\n  versions?: Connection<FileVersionNode>;\r\n  keyId: ID;\r\n}\r\n\r\nexport enum KeyExchangeOtkState {\r\n  OTK_INITIATED = 'OTK_INITIATED',\r\n  OTK_ACCEPTED = 'OTK_ACCEPTED',\r\n  OTK_COMPLETED = 'OTK_COMPLETED',\r\n}\r\n\r\nexport interface ContactCardSharedCipherData {\r\n  // Shared read access between initiator and responder. But only the initiator has write access.\r\n  sharedCipherDataClearJson: any;\r\n}\r\n\r\n/**\r\n * The contents of the one-time key cipher\r\n */\r\nexport interface OtKeyCipherClearJson2 {\r\n  // Used to confirm to the initiator that the responder has access to the one-time key.\r\n  nonce: string;\r\n  // Data sent from initiator to the responder\r\n  initiator: {\r\n    oneTimePbk: object; // one-time public encryption key the responder will use to send data back to the initiator\r\n    pbk: object; // public encryption key\r\n    sigPbk: object; // public signing key\r\n    message?: any;\r\n    contactCard?: ContactCardSharedCipherData;\r\n  };\r\n}\r\n\r\nexport interface KeyExchangeOtkNode extends Node, TimeStamped {\r\n  state?: KeyExchangeOtkState;\r\n  sharedKey?: KeyNode;\r\n  mkSharedKey?: KeyNode;\r\n  initiatorSigPxk?: KeyNode;\r\n  responderSigPxk?: KeyNode;\r\n  initiatorOneTimePbkCipher?: string;\r\n  otKeyParams?: string;\r\n  otKeyCipher?: string;\r\n  otKeyCipherClearJson?: OtKeyCipherClearJson2;\r\n  responderPbkCipher?: string;\r\n}\r\n\r\nexport enum KeyExchangeState {\r\n  IN_PROGRESS = 'IN_PROGRESS',\r\n  COMPLETED = 'COMPLETED',\r\n  DECLINED = 'DECLINED',\r\n  CANCELLED = 'CANCELLED',\r\n  DELETED = 'DELETED',\r\n}\r\n\r\nexport enum KeyExchangeMode {\r\n  OTK = 'OTK',\r\n}\r\n\r\nexport interface KeyExchangeNode extends Node, TimeStamped {\r\n  expiryTime?: DateTime;\r\n  token?: string;\r\n  tokenExpiryTime?: DateTime;\r\n  state?: KeyExchangeState;\r\n  mode?: KeyExchangeMode;\r\n  initiator?: UserNode;\r\n  responder?: UserNode;\r\n  initiatorRootKeyCipher?: string;\r\n  responderRootKeyCipher?: string;\r\n  initiatorActionRequired?: boolean;\r\n  responderActionRequired?: boolean;\r\n  createTp?: boolean;\r\n  otk?: KeyExchangeOtkNode;\r\n  isInitiator?: boolean;\r\n  isExpired?: boolean;\r\n  responderEmailAddress?: LrEmail;\r\n}\r\n\r\nexport interface SharedItems {\r\n  directories?: Connection<DirectoryNode>;\r\n  files?: Connection<FileNode>;\r\n}\r\n\r\nexport interface SharedContactCardNode extends Node, TimeStamped {\r\n  owner?: UserNode;\r\n  receiver?: UserNode;\r\n  sharedKey?: KeyNode;\r\n  sharedCipherData?: string;\r\n  sharedCipherDataClearJson?: any;\r\n  sharedCipherDataSig?: string;\r\n  sharedCipherDataSigPxk?: KeyNode;\r\n  ownerCipherData?: string;\r\n  ownerCipherDataClearJson?: any;\r\n  ownerKey?: KeyNode;\r\n  ownerPlainData?: string;\r\n  ownerPlainDataJson?: any;\r\n  ownerPlainDataSig?: string;\r\n  receiverCipherData?: string;\r\n  receiverCipherDataClearJson?: any;\r\n  receiverKey?: KeyNode;\r\n}\r\n\r\nexport interface UserSharedKeyNode extends Node, TimeStamped {\r\n  keyExchange?: KeyExchangeNode;\r\n  user?: UserNode;\r\n  userPrk?: KeyNode;\r\n  userSigPrk?: KeyNode;\r\n  other?: UserNode;\r\n  otherPbk?: KeyNode;\r\n  otherSigPbk?: KeyNode;\r\n  sharedKey?: KeyNode;\r\n  mkSharedKey?: KeyNode;\r\n  mkPxk?: KeyNode;\r\n  mkReshareRequestCipher?: string;\r\n  mkReshareResponseCipher?: string;\r\n  mkReshareRequestCipherClearJson?: any;\r\n  mkReshareResponseCipherClearJson?: any;\r\n  mkReshareRequestSent?: boolean;\r\n  mkReshareResponseSent?: boolean;\r\n}\r\n\r\nexport interface CurrentUserSharedKeyNode extends Node, TimeStamped {\r\n  user?: UserNode;\r\n  other?: UserNode;\r\n  userSharedKey?: UserSharedKeyNode;\r\n}\r\n\r\nexport interface TpNode extends Node, TimeStamped {\r\n  user?: UserNode;\r\n  other?: UserNode;\r\n  currentUserSharedKey?: CurrentUserSharedKeyNode;\r\n  isCompleted?: boolean;\r\n  sharedKey?: KeyNode;\r\n  sharedContactCard?: SharedContactCardNode;\r\n  myContactCard?: SharedContactCardNode;\r\n  myItems?: SharedItems;\r\n  sharedItems?: SharedItems;\r\n  myScenarios?: Connection<ScenarioNode>;\r\n  sharedScenarios?: Connection<SharedScenarioNode>;\r\n}\r\n\r\nexport enum TpAssemblyState {\r\n  DISABLED = 'DISABLED',\r\n  ENABLED = 'ENABLED',\r\n  CLAIMED = 'CLAIMED',\r\n  APPROVED = 'APPROVED',\r\n  REJECTED = 'REJECTED',\r\n  EXPIRED = 'EXPIRED',\r\n  CANCELLED = 'CANCELLED',\r\n  RESET = 'RESET',\r\n}\r\n\r\nexport enum TpClaimState {\r\n  CLAIMED = 'CLAIMED',\r\n  APPROVED = 'APPROVED',\r\n  REJECTED = 'REJECTED',\r\n  EXPIRED = 'EXPIRED',\r\n  CANCELLED = 'CANCELLED',\r\n  RESET = 'RESET',\r\n}\r\n\r\nexport enum TpClaimApproverState {\r\n  CLAIMED = 'CLAIMED',\r\n  APPROVED = 'APPROVED',\r\n  REJECTED = 'REJECTED',\r\n}\r\n\r\nexport interface TpPasswordResetApproval extends Node, TimeStamped {\r\n  approverEmail?: string;\r\n  receiverCipher?: string;\r\n  receiverCipherClearJson?: any;\r\n  receiverCipherPartialAssemblyKey?: string;\r\n  receiverCipherPartialAssemblyKeyClearJson?: any;\r\n}\r\n\r\n// export interface TpPasswordResetUser {\r\n//   username?: string;\r\n//   resetUsername?: string;\r\n//   state?: TpAssemblyState;\r\n//   passKey?: PassKeyNode;\r\n//   masterKey?: KeyNode;\r\n//   pxk?: KeyNode;\r\n//   approvals?: TpPasswordResetApproval[];\r\n//   assemblyCipherData?: string;\r\n//   wrappedAssemblyKeyVerifierPrk?: string;\r\n// }\r\n\r\nexport interface TpPasswordResetUserApprovalNode extends Node, TimeStamped {\r\n  receiverCipher?: string;\r\n  receiverCipherClearJson?: any;\r\n  receiverCipherPartialAssemblyKey?: string;\r\n  receiverCipherPartialAssemblyKeyClearJson?: any;\r\n  approverEmail?: string;\r\n}\r\n\r\nexport interface TpPasswordResetUserApprover {\r\n  name?: string;\r\n  email?: string;\r\n  state?: TpClaimApproverState;\r\n}\r\n\r\nexport interface TpPasswordResetUserSubAssembly {\r\n  singleReject?: boolean;\r\n  quorum?: number;\r\n  approvers?: TpPasswordResetUserApprover[];\r\n}\r\n\r\nexport interface TpPasswordResetUserAssembly {\r\n  singleReject?: boolean;\r\n  quorum?: number;\r\n  subAssemblies?: TpPasswordResetUserSubAssembly[];\r\n}\r\n\r\nexport interface TpPasswordResetUserNode {\r\n  username?: string;\r\n  resetUsername?: string;\r\n  state?: TpClaimState;\r\n  passKey?: PassKeyNode;\r\n  masterKey?: KeyNode;\r\n  pxk?: KeyNode;\r\n  sessionEncryptionKey?: string;\r\n  approvals?: TpPasswordResetUserApprovalNode[];\r\n  assemblyCipherData?: string;\r\n  wrappedAssemblyKeyVerifierPrk?: string;\r\n  assembly?: TpPasswordResetUserAssembly;\r\n}\r\n\r\nexport interface TpPasswordResetNode extends Node, TimeStamped {\r\n  assembly?: TpAssemblyNode;\r\n  request?: TpPasswordResetRequestNode;\r\n  applied?: boolean;\r\n}\r\n\r\nexport interface TpAssemblyNode extends Node, TimeStamped {\r\n  id?: ID;\r\n  singleReject?: boolean;\r\n  quorum?: number;\r\n  subjectKey?: KeyNode;\r\n  assemblyKey?: KeyNode;\r\n  assemblyCipherData?: string;\r\n  assemblyCipherDataClearJson?: any;\r\n  subAssemblies?: Connection<TpSubAssemblyNode>;\r\n}\r\n\r\nexport interface TpSubAssemblyNode extends Node, TimeStamped {\r\n  singleReject?: boolean;\r\n  quorum?: number;\r\n  subjectCipherData?: string;\r\n  subjectCipherDataClearJson?: string;\r\n  approvers?: Connection<TpAssemblyApproverNode>;\r\n}\r\n\r\nexport interface TpAssemblyApproverNode extends Node, TimeStamped {\r\n  sharedKey?: KeyNode;\r\n  sharedCipherData?: string;\r\n  sharedCipherApprovalData?: string;\r\n  tp?: TpNode;\r\n}\r\n\r\nexport interface SharedTpPasswordResetNode extends Node, TimeStamped {\r\n  assembly?: SharedTpAssemblyNode;\r\n  tp?: TpNode;\r\n  sharedRequest?: SharedTpPasswordResetRequestNode;\r\n}\r\n\r\nexport interface SharedTpAssemblyNode extends Node, TimeStamped {\r\n  asApprovers?: Connection<TpAssemblyAsApproverNode>;\r\n}\r\n\r\nexport interface TpAssemblyAsApproverNode extends Node, TimeStamped {\r\n  sharedKey?: KeyNode;\r\n  sharedCipherData?: string;\r\n}\r\n\r\nexport interface SharedTpPasswordResetRequestNode extends Node, TimeStamped {\r\n  claim?: SharedTpClaimNode;\r\n  pxk?: KeyNode;\r\n}\r\n\r\nexport interface SharedTpClaimNode extends Node, TimeStamped {\r\n  state?: TpClaimState;\r\n  asClaimApprovers?: Connection<SharedTpClaimApproverNode>;\r\n}\r\n\r\nexport interface SharedTpClaimApproverNode extends Node, TimeStamped {\r\n  state?: TpClaimApproverState;\r\n  sharedKey?: KeyNode;\r\n  sharedCipherApprovalData?: string;\r\n  sharedCipherPartialAssemblyKey?: string;\r\n  receiverApprovals?: Connection<SharedTpClaimReceiverApprovalNode>;\r\n}\r\n\r\nexport interface SharedTpClaimReceiverApprovalNode extends Node, TimeStamped {\r\n  pxk?: KeyNode;\r\n}\r\n\r\nexport enum LockState {\r\n  UNLOCKED = 'UNLOCKED',\r\n  MUTEX_LOCKED = 'MUTEX_LOCKED',\r\n}\r\n","import { Hub } from '@aws-amplify/core';\r\nimport { Inject, Injectable, Injector, NgZone } from '@angular/core';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { KeyGraphService } from '../cryptography/key-graph.service';\r\nimport { LifeReadyConfig, LR_CONFIG } from '../life-ready.config';\r\nimport * as slip from '../cryptography/slip39.service';\r\nimport { JWK } from 'node-jose';\r\nimport { LrBadStateException, LrException } from '../_common/exceptions';\r\nimport {\r\n  CompleteTpPasswordResetRequestMutation,\r\n  CreateTpAssemblyKeyChallengeMutation,\r\n  PreCompleteTpPasswordResetRequestMutation,\r\n} from './tp-password-reset.gql';\r\nimport { PasswordService } from '../auth/password.service';\r\nimport { HttpClient } from '@angular/common/http';\r\nimport { AuthClass } from '@aws-amplify/auth/lib-esm/Auth';\r\nimport {\r\n  RequestResetResult,\r\n  TpPasswordResetService,\r\n} from './tp-password-reset.service';\r\nimport { ISignUpResult } from 'amazon-cognito-identity-js';\r\nimport { LifeReadyAuthService } from '../auth/life-ready-auth.service';\r\nimport { KeyFactoryService } from '../cryptography/key-factory.service';\r\nimport { TpClaimState, TpPasswordResetUserNode } from '../api/types';\r\nimport { LrMutation, LrService } from '../api/lr-graphql';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class TpPasswordResetUserService extends LrService {\r\n  private readonly CLIENT_NONCE_LENGTH = 32;\r\n  private resetUser: TpPasswordResetUserNode;\r\n\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private injector: Injector,\r\n    @Inject(LR_CONFIG) private config: LifeReadyConfig,\r\n    private keyFactory: KeyFactoryService,\r\n    private encryptionService: EncryptionService,\r\n    private keyGraphService: KeyGraphService,\r\n    private slip39Service: slip.Slip39Service,\r\n    private passwordService: PasswordService,\r\n    private http: HttpClient,\r\n    private auth: AuthClass,\r\n    private lrAuth: LifeReadyAuthService\r\n  ) {\r\n    super(injector);\r\n  }\r\n\r\n  async verifyEmailContact(email): Promise<{ claimId: string }> {\r\n    const params = {\r\n      email,\r\n    };\r\n    return this.http\r\n      .post<any>(\r\n        `${this.config.authUrl}tp/password-reset/verify-contact/`,\r\n        params\r\n      )\r\n      .toPromise();\r\n  }\r\n\r\n  async verifyContactRespond(\r\n    claimId: string,\r\n    claimCode: string\r\n  ): Promise<string> {\r\n    const { token } = await this.http\r\n      .post<{ token }>(`${this.config.authUrl}cove/respond/`, {\r\n        claim_id: claimId,\r\n        v_code: claimCode,\r\n      })\r\n      .toPromise();\r\n    return token;\r\n  }\r\n\r\n  async requestReset(\r\n    password: string,\r\n    claimId: string,\r\n    claimToken: string\r\n  ): Promise<{\r\n    requestResetResult: RequestResetResult;\r\n    signUpResult: ISignUpResult;\r\n  }> {\r\n    // Generate the key materials\r\n    const passKeyBundle = await this.passwordService.createPassKeyBundle(\r\n      password\r\n    );\r\n\r\n    const masterKey = await this.keyFactory.createKey();\r\n    const wrappedMasterKey = await this.encryptionService.encrypt(\r\n      passKeyBundle.passKey,\r\n      masterKey.toJSON(true)\r\n    );\r\n\r\n    // Ephemeral PKC key\r\n    const prk = await this.keyFactory.createPkcKey();\r\n    const masterKeyWrappedPrk = await this.encryptionService.encrypt(\r\n      masterKey,\r\n      prk.toJSON(true)\r\n    );\r\n\r\n    // API call to setup reset request\r\n    const requestResetResult = await this.http\r\n      .post<RequestResetResult>(\r\n        `${this.config.authUrl}tp/password-reset/request/`,\r\n        {\r\n          claimId,\r\n          claimToken,\r\n          pass_key_params: passKeyBundle.passKeyParams,\r\n          pass_idp_params: passKeyBundle.passIdpParams,\r\n          pass_idp_verifier_pbk: passKeyBundle.passIdpVerifier.toJSON(), // public key\r\n          wrapped_pass_idp_verifier_prk:\r\n            passKeyBundle.wrappedPassIdpVerifierPrk,\r\n          wrapped_master_key: wrappedMasterKey,\r\n          pbk: prk.toJSON(), // ephemeral public key\r\n          master_key_wrapped_prk: masterKeyWrappedPrk,\r\n        }\r\n      )\r\n      .toPromise();\r\n\r\n    console.log(requestResetResult);\r\n    console.log(\r\n      'Using new password: ',\r\n      this.passwordService.getPassIdpString(passKeyBundle.passIdp)\r\n    );\r\n\r\n    // API call to create user on cognito\r\n    const signUpResult = await this.auth.signUp({\r\n      username: requestResetResult.reset_username,\r\n      password: this.passwordService.getPassIdpString(passKeyBundle.passIdp),\r\n      clientMetadata: {\r\n        tp_password_reset_request: JSON.stringify({\r\n          id: requestResetResult.id,\r\n          associate_reset_user_token:\r\n            requestResetResult.associate_reset_user_token,\r\n        }),\r\n      },\r\n    });\r\n\r\n    console.log('requestRest done: ', signUpResult);\r\n\r\n    return {\r\n      requestResetResult,\r\n      signUpResult,\r\n    };\r\n  }\r\n\r\n  async getResetUser(\r\n    reload: boolean = false\r\n  ): Promise<TpPasswordResetUserNode> {\r\n    if (!reload && this.resetUser) {\r\n      return this.resetUser;\r\n    }\r\n    this.resetUser = await this.lrAuth.loadResetUser();\r\n    return this.resetUser;\r\n  }\r\n\r\n  private async recoverAssemblyKey(\r\n    resetUser: TpPasswordResetUserNode\r\n  ): Promise<JWK.Key> {\r\n    // Recover the assembly key.\r\n    let assemblyKeyParams: object;\r\n\r\n    const prk = await this.keyGraphService.getKey(resetUser.pxk.id);\r\n\r\n    const shares = await Promise.all(\r\n      resetUser.approvals.map(async (approval) => {\r\n        const partialAssemblyKey = await this.encryptionService.decrypt(\r\n          prk,\r\n          approval.receiverCipherPartialAssemblyKey\r\n        );\r\n\r\n        if (assemblyKeyParams) {\r\n          if (\r\n            JSON.stringify(assemblyKeyParams) !==\r\n            JSON.stringify(partialAssemblyKey.assemblyKeyParams)\r\n          ) {\r\n            throw new LrBadStateException(\r\n              'The assembly key parameters are different between the approvals.'\r\n            );\r\n          }\r\n        } else {\r\n          assemblyKeyParams = partialAssemblyKey.assemblyKeyParams;\r\n        }\r\n        return partialAssemblyKey.slip39.share.mnemonics;\r\n      })\r\n    );\r\n\r\n    console.log('recoverAssemblyKey()', shares);\r\n\r\n    const rawAssemblyKey = await this.slip39Service.recoverSecret(\r\n      shares,\r\n      TpPasswordResetService.SLIP39_PASSPHRASE\r\n    );\r\n\r\n    return JWK.asKey({\r\n      ...assemblyKeyParams,\r\n      k: rawAssemblyKey,\r\n    });\r\n  }\r\n\r\n  async completeRequest(newPassword: string): Promise<void> {\r\n    const resetUser = await this.getResetUser(true);\r\n    if (resetUser.state !== TpClaimState.APPROVED) {\r\n      throw new LrBadStateException(\r\n        'Password reset request has not been approved.'\r\n      );\r\n    }\r\n\r\n    // --------------------------------------------------------------\r\n    // Prepare all materials to ensure there are no errors.\r\n    // --------------------------------------------------------------\r\n    const assemblyKey = await this.recoverAssemblyKey(resetUser);\r\n\r\n    const { rootKey } = await this.encryptionService.decrypt(\r\n      assemblyKey,\r\n      resetUser.assemblyCipherData\r\n    );\r\n    console.log(rootKey);\r\n\r\n    // Making sure it's a valid key.\r\n    const rootKeyJwk = await JWK.asKey(rootKey);\r\n\r\n    const masterKey = await this.keyGraphService.getKey(resetUser.masterKey.id);\r\n\r\n    const masterKeyWrappedRootKey = await this.encryptionService.encryptToString(\r\n      masterKey.jwk,\r\n      rootKeyJwk.toJSON(true)\r\n    );\r\n\r\n    // The new password\r\n    const newPassIdpResult = await this.keyFactory.derivePassIdp({\r\n      password: newPassword,\r\n      ...resetUser.passKey.passIdpParams,\r\n    });\r\n\r\n    const newIdpPassword = this.passwordService.getPassIdpString(\r\n      newPassIdpResult.jwk\r\n    );\r\n\r\n    // --------------------------------------------------------------\r\n    // Get assembly key challenge\r\n    // --------------------------------------------------------------\r\n    const challenge = (\r\n      await this.mutate(\r\n        new LrMutation({\r\n          mutation: CreateTpAssemblyKeyChallengeMutation,\r\n          variables: {\r\n            input: {},\r\n          },\r\n        }),\r\n        {\r\n          includeKeyGraph: false,\r\n        }\r\n      )\r\n    ).createTpAssemblyKeyChallenge.challenge;\r\n\r\n    console.log(challenge);\r\n\r\n    // Sign the challenge\r\n    // Generate a client side nonce that's no in the server's control.\r\n    challenge.clientNonce = this.keyFactory.randomString(\r\n      this.CLIENT_NONCE_LENGTH\r\n    );\r\n    console.log(challenge);\r\n\r\n    const assemblyKeyVerifierPrk = await this.encryptionService.decrypt(\r\n      assemblyKey,\r\n      resetUser.wrappedAssemblyKeyVerifierPrk\r\n    );\r\n    const signedChallenge = await this.encryptionService.sign(\r\n      assemblyKeyVerifierPrk,\r\n      challenge\r\n    );\r\n\r\n    // --------------------------------------------------------------\r\n    // Change password for the original user\r\n    // --------------------------------------------------------------\r\n    const tempIdpPassword = (\r\n      await this.mutate(\r\n        new LrMutation({\r\n          mutation: PreCompleteTpPasswordResetRequestMutation,\r\n          variables: {\r\n            input: {\r\n              signedChallenge: JSON.stringify(signedChallenge),\r\n            },\r\n          },\r\n        }),\r\n        {\r\n          includeKeyGraph: false,\r\n        }\r\n      )\r\n    ).preCompleteTpPasswordResetRequest.idpPassword;\r\n\r\n    // --------------------------------------------------------------\r\n    // Login as the original user using new temporary password\r\n    // --------------------------------------------------------------\r\n    // At this point, the original account's password has been changed\r\n    // to a temporary password. It is no longer possible for the user\r\n    // to use the original password to login. Any successful login\r\n    // can only be using the temporary password. So it's safe to assume\r\n    // that we want to \"complete\" the password reset.\r\n\r\n    // The maybe 2FA so we listen for the auth event from Amplify.\r\n    const retPromise = new Promise<void>((resolve) => {\r\n      const listener = async (data) => {\r\n        if (data.payload.event !== 'signIn') {\r\n          return;\r\n        }\r\n\r\n        Hub.remove('auth', listener);\r\n\r\n        console.log(data.payload);\r\n\r\n        await this.auth.signIn(resetUser.username, newIdpPassword);\r\n\r\n        // Switch over to the new set of keys\r\n        await this.mutate(\r\n          new LrMutation({\r\n            mutation: CompleteTpPasswordResetRequestMutation,\r\n            variables: {\r\n              input: {\r\n                masterKeyWrappedRootKey,\r\n                masterKeyId: masterKey.id,\r\n              },\r\n            },\r\n          })\r\n        );\r\n\r\n        resolve();\r\n      };\r\n\r\n      Hub.listen('auth', listener);\r\n    });\r\n\r\n    // Signin as the original user. Password has been reset to temporary one. It should return\r\n    // with NEW_PASSWORD_REQUIRED\r\n    let user = await this.auth.signIn(resetUser.username, tempIdpPassword, {\r\n      noProxy: 'true',\r\n    });\r\n\r\n    if (user.challengeName !== 'NEW_PASSWORD_REQUIRED') {\r\n      throw new LrException({\r\n        message:\r\n          'Internal error. Expecting Cognito to have done a password reset after call to PreCompleteTpPasswordResetRequestMutation.',\r\n      });\r\n    }\r\n\r\n    // Set new password on Idp\r\n    // the awsFetch() function passes NEW_PASSWORD_REQUIRED directly to AWS without\r\n    // going through the proxy.\r\n    user = await this.auth.completeNewPassword(user, newIdpPassword, {});\r\n\r\n    return retPromise;\r\n  }\r\n}\r\n","import { Injectable, Injector, NgZone } from '@angular/core';\r\nimport { JWK } from 'node-jose';\r\nimport {\r\n  LrGraphQLService,\r\n  LrMergedMutation,\r\n  LrMutation,\r\n  LrMutationBase,\r\n  LrService,\r\n} from '../api/lr-graphql';\r\nimport { TpAssemblyState, TpClaimApproverState } from '../api/types';\r\nimport { EncryptionService } from '../cryptography/encryption.service';\r\nimport { LrBadStateException } from '../_common/exceptions';\r\nimport { RunOutsideAngular } from '../_common/run-outside-angular';\r\nimport {\r\n  ApproveTpPasswordResetRequestMutation,\r\n  RejectTpPasswordResetRequestMutation,\r\n  SharedTpPasswordResetQuery,\r\n  SharedTpPasswordResetsQuery,\r\n} from './tp-password-reset.gql';\r\n\r\n@RunOutsideAngular({\r\n  ngZoneName: 'ngZone',\r\n})\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class TpPasswordResetRequestService extends LrService {\r\n  constructor(\r\n    private ngZone: NgZone,\r\n    private injector: Injector,\r\n    private encryptionService: EncryptionService\r\n  ) {\r\n    super(injector);\r\n  }\r\n\r\n  async getSharedResets() {\r\n    return (\r\n      await this.query({\r\n        query: SharedTpPasswordResetsQuery,\r\n      })\r\n    ).sharedTpPasswordResets;\r\n  }\r\n\r\n  async getSharedReset(id) {\r\n    return (\r\n      await this.query({\r\n        query: SharedTpPasswordResetQuery,\r\n        variables: {\r\n          id,\r\n        },\r\n      })\r\n    ).sharedTpPasswordReset;\r\n  }\r\n\r\n  private activeRequestOrRaise(sharedReset): void {\r\n    const state = sharedReset.sharedRequest.claim.state;\r\n    if (state !== TpAssemblyState.CLAIMED) {\r\n      throw new LrBadStateException(`Claim is already in ${state} state.`);\r\n    }\r\n  }\r\n\r\n  rejectRequest(sharedResetId: string) {\r\n    return this.mutate(this.rejectRequestMutation(sharedResetId));\r\n  }\r\n\r\n  async rejectRequestMutation(sharedResetId: string) {\r\n    const sharedReset = await this.getSharedReset(sharedResetId);\r\n\r\n    this.activeRequestOrRaise(sharedReset);\r\n\r\n    return LrMergedMutation.create(\r\n      sharedReset.sharedRequest.claim.asClaimApprovers.edges\r\n        .filter((edge) => edge.node.state === TpClaimApproverState.CLAIMED)\r\n        .map(\r\n          (edge) =>\r\n            new LrMutation({\r\n              mutation: RejectTpPasswordResetRequestMutation,\r\n              variables: { input: { claimApproverId: edge.node.id } },\r\n            })\r\n        )\r\n    );\r\n  }\r\n\r\n  // ?? TODO The return from this should not be any.\r\n  approveRequest(sharedResetId: string, pbkFingerPrint?: string) {\r\n    return this.mutate(\r\n      this.approveRequestMutation(sharedResetId, pbkFingerPrint)\r\n    );\r\n  }\r\n\r\n  async approveRequestMutation(sharedResetId: string, pbkFingerPrint?: string) {\r\n    const sharedReset = await this.getSharedReset(sharedResetId);\r\n\r\n    this.activeRequestOrRaise(sharedReset);\r\n\r\n    const pbk = await JWK.asKey(JSON.parse(sharedReset.sharedRequest.pxk.pbk));\r\n    console.log(pbk.toJSON());\r\n\r\n    // TODO <AZ> Verify pbk against pbkFingerPrint\r\n\r\n    const claimApprovers = sharedReset.sharedRequest.claim.asClaimApprovers.edges.filter(\r\n      (edge) => edge.node.state === TpClaimApproverState.CLAIMED\r\n    );\r\n\r\n    // A single approver may belong to multiple sub-assemblies. We approve them all here in a single\r\n    // transaction.\r\n    return LrMergedMutation.create(\r\n      await Promise.all(\r\n        claimApprovers.map(async (approverEdge) => {\r\n          const ca = approverEdge.node;\r\n          const input = {\r\n            claimApproverId: ca.id,\r\n            receiverApprovals: await Promise.all(\r\n              ca.receiverApprovals.edges.map(async (receiverEdge) => {\r\n                const ra = receiverEdge.node;\r\n                return {\r\n                  receiverApprovalId: ra.id,\r\n                  receiverCipher: '',\r\n                  receiverCipherPartialAssemblyKey: await this.encryptionService.encryptToString(\r\n                    pbk,\r\n                    ca.sharedCipherPartialAssemblyKeyClearJson\r\n                  ),\r\n                };\r\n              })\r\n            ),\r\n          };\r\n\r\n          console.log(input);\r\n\r\n          return new LrMutation({\r\n            mutation: ApproveTpPasswordResetRequestMutation,\r\n            variables: {\r\n              input,\r\n            },\r\n          });\r\n        })\r\n      )\r\n    );\r\n  }\r\n}\r\n","/*\r\n * Public API Surface of lr-auth\r\n */\r\n\r\nexport * from './lib/_common/exceptions';\r\n\r\nexport * from './lib/api/file.service';\r\nexport * from './lib/api/key-exchange.service';\r\nexport * from './lib/api/key-exchange.types';\r\nexport * from './lib/api/key-exchange.gql';\r\nexport * from './lib/api/lr-apollo.service';\r\nexport * from './lib/api/persist.service';\r\nexport * from './lib/api/message.service';\r\nexport * from './lib/_common/queries.gql';\r\n\r\nexport * from './lib/auth/auth.types';\r\nexport * from './lib/auth/auth.config';\r\nexport * from './lib/auth/lbop.service';\r\nexport * from './lib/auth/life-ready-auth.service';\r\nexport * from './lib/auth/password.service';\r\nexport * from './lib/auth/register.service';\r\nexport * from './lib/auth/two-factor.service';\r\nexport * from './lib/auth/idle.types';\r\nexport * from './lib/auth/idle.service';\r\n\r\nexport * from './lib/cryptography/encryption.service';\r\nexport * from './lib/cryptography/key.service';\r\nexport * from './lib/cryptography/key-factory.service';\r\nexport * from './lib/cryptography/key-graph.service';\r\nexport * from './lib/cryptography/key-meta.service';\r\nexport * from './lib/cryptography/cryptography.types';\r\nexport * from './lib/cryptography/slip39.service';\r\nexport * from './lib/cryptography/web-crypto.service';\r\n\r\nexport * from './lib/category/category-meta.service';\r\nexport * from './lib/category/category.types';\r\nexport * from './lib/category/category.gql';\r\nexport * from './lib/category/category.service';\r\n\r\nexport * from './lib/record/record-attachment.service';\r\nexport * from './lib/record/record.types';\r\nexport * from './lib/record/record.gql';\r\nexport * from './lib/record/record.service';\r\n\r\nexport * from './lib/record-type/record-type.types';\r\nexport * from './lib/record-type/record-type.service';\r\n\r\nexport * from './lib/trusted-parties/trusted-party.types';\r\nexport * from './lib/trusted-parties/trusted-party.gql';\r\nexport * from './lib/trusted-parties/trusted-party.service';\r\n\r\nexport * from './lib/scenario/scenario.types';\r\nexport * from './lib/scenario/scenario.gql';\r\nexport * from './lib/scenario/scenario.service';\r\nexport * from './lib/scenario/scenario-setup.service';\r\n\r\nexport * from './lib/scenario/approvals/scenario-approval.types';\r\nexport * from './lib/scenario/approvals/scenario-approval.gql';\r\nexport * from './lib/scenario/approvals/scenario-approver.service';\r\n\r\nexport * from './lib/scenario/claimants/scenario-claimant.types';\r\nexport * from './lib/scenario/claimants/scenario-claimant.gql';\r\nexport * from './lib/scenario/claimants/scenario-claimant.service';\r\n\r\nexport * from './lib/scenario/receivers/scenario-receiver.types';\r\nexport * from './lib/scenario/receivers/scenario-receiver.gql';\r\nexport * from './lib/scenario/receivers/scenario-receiver.service';\r\n\r\nexport * from './lib/users/profile.gql';\r\nexport * from './lib/users/profile.service';\r\nexport * from './lib/users/profile-details.service';\r\nexport * from './lib/users/profile.types';\r\nexport * from './lib/users/user.gql';\r\nexport * from './lib/users/user.service';\r\nexport * from './lib/users/user.types';\r\n\r\nexport * from './lib/life-ready.config';\r\nexport * from './lib/life-ready.module';\r\nexport * from './lib/plan/plan.types';\r\nexport * from './lib/plan/plan.service';\r\nexport * from './lib/search/search.types';\r\nexport * from './lib/search/search.service';\r\n\r\nexport { gqlTyped } from './lib/_common/ast';\r\n\r\nexport * from './lib/api/lr-graphql';\r\nexport * from './lib/api/query-processor';\r\nexport * from './lib/api/contact-card2.service';\r\nexport * from './lib/api/item2.service';\r\nexport * from './lib/api/key-exchange2.service';\r\nexport * from './lib/api/shared-contact-card2.service';\r\nexport * from './lib/api/lock.service';\r\nexport * from './lib/trusted-parties/trusted-party2.service';\r\nexport * from './lib/trusted-parties/tp-password-reset.service';\r\nexport * from './lib/trusted-parties/tp-password-reset-user.service';\r\nexport * from './lib/trusted-parties/tp-password-reset-request.service';\r\n","/**\n * Generated bundle index. Do not edit.\n */\n\nexport * from './public-api';\n\nexport {RunOutsideAngular as ɵd} from './lib/_common/run-outside-angular';\nexport {LrGraphQLService as ɵb,LrService as ɵg} from './lib/api/lr-graphql';\nexport {TpPasswordResetProcessorService as ɵc} from './lib/api/query-processor/tp-password-reset-processor.service';\nexport {SharedContactCardFields as ɵe,SharedContactCardService as ɵf} from './lib/api/shared-contact-card.service';\nexport {TimeService as ɵa} from './lib/api/time.service';"],"names":["moment","KFS","_","CreateContactCardMutation","UpdateContactCardMutation","ArchiveDirectoryMutation","UnarchiveDirectoryMutation","ContactCardQuery","DeleteContactCardMutation","lodash","ast.name","KeyExchangeState","KeyExchangeMode","CreateFileMutation","DeleteFileMutation","ApproverFields","slip.Assembly","slip.SubAssembly","slip.Slip39Service"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;SAGgB,iBAAiB,CAAC,MAAmC;IACnE,IAAI,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM;QAAE,OAAO;IAEtC,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;QAClC,IAAI,EAAE,CAAC,CAAC,UAAU,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI;QACvC,MAAM,EAAE,CAAC,CAAC,UAAU,IAAI,CAAC,CAAC,UAAU,CAAC,MAAM;QAC3C,OAAO,EAAE,CAAC,CAAC,OAAO;QAClB,KAAK,EAAE;YACL,SAAS,EAAE,CAAC,CAAC,SAAgB;YAC7B,IAAI,EAAE,CAAC,CAAC,IAAgB;SACzB;KACF,CAAC,CAAC,CAAC;IAEJ,MAAM,IAAI,WAAW,CAAC,GAAG,QAAQ,CAAC,CAAC;AACrC,CAAC;MAEY,OAAO;CAWnB;MAEY,WAAW;IAGtB,YAAY,GAAG,MAAiB;QAC9B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;KACtB;IAEM,QAAQ;QACb,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;KAC3D;CACF;IAEW;AAAZ,WAAY,cAAc;IACxB,yDAAuC,CAAA;IACvC,+CAA6B,CAAA;IAC7B,iDAA+B,CAAA;IAC/B,yCAAuB,CAAA;IACvB,6DAA2C,CAAA;IAC3C,yDAAuC,CAAA;IACvC,+CAA6B,CAAA;IAC7B,mDAAiC,CAAA;IACjC,qCAAmB,CAAA;IACnB,iDAA+B,CAAA;IAC/B,mDAAiC,CAAA;IACjC,yDAAuC,CAAA;IACvC,+CAA6B,CAAA;IAC7B,iDAA+B,CAAA;IAC/B,mCAAiB,CAAA;IACjB,6CAA2B,CAAA;IAC3B,iDAA+B,CAAA;IAC/B,yCAAuB,CAAA;IACvB,iDAA+B,CAAA;IAC/B,6DAA2C,CAAA;IAC3C,6DAA2C,CAAA;IAC3C,qDAAmC,CAAA;IACnC,iEAA+C,CAAA;IAC/C,iDAA+B,CAAA;IAC/B,6CAA2B,CAAA;IAC3B,qEAAmD,CAAA;IACnD,+DAA6C,CAAA;IAC7C,mDAAiC,CAAA;IACjC,uDAAqC,CAAA;IACrC,yDAAuC,CAAA;AACzC,CAAC,EA/BW,cAAc,KAAd,cAAc,QA+BzB;IAEW;AAAZ,WAAY,WAAW;IACrB,4CAA6B,CAAA;IAC7B,8DAA+C,CAAA;IAC/C,sCAAuB,CAAA;IACvB,8CAA+B,CAAA;IAC/B,8BAAe,CAAA;IACf,4CAA6B,CAAA;IAC7B,4DAA6C,CAAA;IAC7C,sCAAuB,CAAA;IACvB,+CAAgC,CAAA;IAChC,uDAAwC,CAAA;IACxC,+DAAgD,CAAA;IAChD,mDAAoC,CAAA;IACpC,+CAAgC,CAAA;IAChC,2CAA4B,CAAA;AAC9B,CAAC,EAfW,WAAW,KAAX,WAAW,QAetB;MAEY,sBAAuB,SAAQ,WAAW;IACrD,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,WAAW,EAAE,OAAO,EAAE,CAAC,CAAC;KACnD;CACF;MAEY,qBAAsB,SAAQ,WAAW;IACpD,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,WAAW,EAAE,OAAO,EAAE,CAAC,CAAC;KACnD;CACF;MAEY,mBAAoB,SAAQ,WAAW;IAClD,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;KAChD;CACF;MAEY,mBAAoB,SAAQ,WAAW;IAClD,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;KAChD;CACF;MAEY,uBAAwB,SAAQ,WAAW;IACtD,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,YAAY,EAAE,OAAO,EAAE,CAAC,CAAC;KACpD;CACF;MAEY,2BAA4B,SAAQ,WAAW;IAC1D,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,gBAAgB,EAAE,OAAO,EAAE,CAAC,CAAC;KACxD;CACF;MAEY,iBAAkB,SAAQ,WAAW;IAChD,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;KAC9C;CACF;MAEY,qBAAsB,SAAQ,WAAW;IACpD,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,UAAU,EAAE,OAAO,EAAE,CAAC,CAAC;KAClD;CACF;MAEY,eAAgB,SAAQ,WAAW;IAC9C,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;KAC5C;CACF;MAEY,qBAAsB,SAAQ,WAAW;IACpD,YAAY,OAAO;QACjB,KAAK,CAAC,EAAE,IAAI,EAAE,WAAW,CAAC,UAAU,EAAE,OAAO,EAAE,CAAC,CAAC;KAClD;CACF;MAEY,sBAAuB,SAAQ,WAAW;IACrD,YAAY,OAAO;QACjB,KAAK,CAAC;YACJ,IAAI,EAAE,wBAAwB;YAC9B,OAAO;SACR,CAAC,CAAC;KACJ;CACF;MAEY,sBAAuB,SAAQ,WAAW;IACrD,YAAY,OAAO;QACjB,KAAK,CAAC;YACJ,IAAI,EAAE,wBAAwB;YAC9B,OAAO;SACR,CAAC,CAAC;KACJ;CACF;MAEY,kBAAmB,SAAQ,WAAW;IACjD,YAAY,OAAO;QACjB,KAAK,CAAC;YACJ,IAAI,EAAE,oBAAoB;YAC1B,OAAO;SACR,CAAC,CAAC;KACJ;CACF;MAEY,mBAAoB,SAAQ,WAAW;IAClD,YAAY,OAAO;QACjB,KAAK,CAAC;YACJ,IAAI,EAAE,qBAAqB;YAC3B,OAAO;SACR,CAAC,CAAC;KACJ;;;MC5KU,SAAS,GAAG,IAAI,cAAc,CAAkB,SAAS,EAAE;AACxE,MAAM,iBAAiB,GAAG,CAAC,cAAc,CAAC,iBAAiB,CAAC,CAAC;MAahD,eAAe,GAAG,CAC7B,MAAuB,EACvB,IAAe;IAEf,MAAM,cAAc,GAAmB;QACrC,UAAU,EAAE;YACV,WAAW,EAAE,UAAU;YACvB,WAAW,EAAE,KAAK;SACnB;QACD,KAAK,EAAE;YACL,WAAW,EAAE,UAAU;YACvB,WAAW,EAAE,KAAK;SACnB;QACD,MAAM,EAAE;YACN,WAAW,EAAE,KAAK;SACnB;KACF,CAAC;IAEF,MAAM,QAAQ,GAAG,UAAU,CAAC,CAAO,CAAC,EAAE,EAAE,OAAO,EAAE;QAC/C,IAAI,SAAS,GAAG,IAAI,CAAC;QACrB,IAAI;YACF,SAAS,GAAG,CAAC,MAAM,IAAI,CAAC,cAAc,EAAE,EAAE,cAAc,EAAE,CAAC;SAC5D;QAAC,WAAM;YACN,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC;SACnC;QAED,OAAO;YACL,OAAO,kCACF,OAAO,KACV,aAAa,EAAE,SAAS,GAAG,UAAU,SAAS,CAAC,QAAQ,EAAE,GAAG,EAAE,GAC/D;SACF,CAAC;KACH,CAAA,CAAC,CAAC;;;IAIH,MAAM,OAAO,GAAG,CAAC,KAAK,EAAE,CAAC;;QAEvB,IAAI,KAAK,YAAY,qBAAqB,EAAE;YAC1C,IACE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,eAAK,OAAA,iBAAiB,CAAC,QAAQ,OAAC,CAAC,CAAC,UAAU,0CAAE,IAAI,CAAC,CAAA,EAAA,CAAC,EACxE;gBACA,OAAO,IAAI,CAAC;aACb;SACF;QAED,OAAO,KAAK,CAAC;KACd,CAAC;IAEF,MAAM,SAAS,GAAG,IAAI,SAAS,CAAC;QAC9B,KAAK,EAAE;YACL,OAAO,EAAE,GAAG;YACZ,GAAG,EAAE,QAAQ;YACb,MAAM,EAAE,IAAI;SACb;QACD,QAAQ,EAAE;YACR,GAAG,EAAE,CAAC;YACN,OAAO;SACR;KACF,CAAC,CAAC;IAEH,MAAM,qBAAsB,SAAQ,KAAK;QACvC,YAAmB,MAA+B;YAChD,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;YAD9B,WAAM,GAAN,MAAM,CAAyB;SAEjD;KACF;;;IAID,MAAM,gBAAgB,GAAG,IAAI,UAAU,CAAC,CAAC,SAAS,EAAE,OAAO;QACzD,OAAO,OAAO,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI;YACjC,IAAI,IAAI,IAAI,IAAI,CAAC,MAAM,EAAE;gBACvB,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,eAClC,OAAA,iBAAiB,CAAC,QAAQ,OAAC,CAAC,CAAC,UAAU,0CAAE,IAAI,CAAC,CAAA,EAAA,CAC/C,CAAC;gBAEF,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE;oBACrB,MAAM,IAAI,qBAAqB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;iBAC9C;aACF;YACD,OAAO,IAAI,CAAC;SACb,CAAC,CAAC;KACJ,CAAC,CAAC;IAEH,MAAM,QAAQ,GAAG,cAAc,CAAC;QAC9B,GAAG,EAAE,MAAM,CAAC,SAAS;;;QAGrB,WAAW,EAAE,SAAS;KACvB,CAAC,CAAC;IAEH,uBACE,IAAI,EAAE,IAAI,CAAC,CAAC,SAAS,EAAE,gBAAgB,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC,EAC7D,KAAK,EAAE,IAAI,aAAa,EAAE,EAC1B,cAAc,IACX,MAAM,CAAC,YAAY,EACtB;AACJ;;ICvEY;AAAZ,WAAY,QAAQ;IAClB,uBAAW,CAAA;IACX,+BAAmB,CAAA;AACrB,CAAC,EAHW,QAAQ,KAAR,QAAQ,QAGnB;IAOW;AAAZ,WAAY,QAAQ;IAClB,+BAAmB,CAAA;IACnB,uCAA2B,CAAA;AAC7B,CAAC,EAHW,QAAQ,KAAR,QAAQ;;ACvDpB;AACA,MAAMA,QAAM,GAAG,OAAO,CAAC;AAEhB,MAAM,eAAe,GAAG,GAAG,CAAA;;;;;;CAMjC,CAAC;MASW,WAAW;IAStB,YAAoB,IAAe,EAAU,MAAc;QAAvC,SAAI,GAAJ,IAAI,CAAW;QAAU,WAAM,GAAN,MAAM,CAAQ;QARpD,mBAAc,GAAG,IAAI,CAAC;QACZ,kBAAa,GAAGA,QAAM;aACpC,QAAQ,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC;aACzB,cAAc,EAAE,CAAC;QAEpB,aAAQ,GAAW,IAAI,CAAC;QACxB,aAAQ,GAAG,KAAK,CAAC;KAE8C;IAEjD,cAAc;;YAC1B,IAAI;gBACF,OAAO,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE;qBAC/C,oBAAoB,EAAE;qBACtB,cAAc,EAAE;qBAChB,WAAW,EAAE,CAAC;aAClB;YAAC,OAAO,KAAK,EAAE;gBACd,OAAO,EAAE,CAAC;aACX;SACF;KAAA;;IAGa,aAAa;;YACzB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC;YAChD,IAAI,CAAC,WAAW,EAAE;gBAChB,OAAO;aACR;;;;;;;;;;;;;;;;;;;;;;YAwBD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAC1B,mDAAmD,EACnD;gBACE,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,MAAM;gBACZ,KAAK,EAAE,UAAU;gBACjB,OAAO,EAAE;oBACP,cAAc,EAAE,2CAA2C;oBAC3D,kBAAkB,EAAE,sBAAsB;oBAC1C,cAAc,EAAE,4BAA4B;iBAC7C;;;gBAGD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,WAAW,EAAE,WAAW;iBACzB,CAAC;aACH,CACF,CAAC;YAEF,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAEvB,MAAM,UAAU,GAAGA,QAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YAClE,MAAM,UAAU,GAAG,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC;YACvC,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,UAAU,GAAG,UAAU,CAAC,CAAC;YAE/C,IAAI,IAAI,GAAG,IAAI,CAAC,aAAa,EAAE;gBAC7B,MAAM,IAAI,WAAW,CAAC;oBACpB,IAAI,EAAE,WAAW,CAAC,WAAW;oBAC7B,OAAO,EAAE,8DAA8D,UAAU,mBAAmB,UAAU,EAAE;iBACjH,CAAC,CAAC;aACJ;YAED,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;SACtB;KAAA;IAEa,OAAO;;YACnB,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACzB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM;iBAC1B,KAAK,CAA6B,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC;iBAC7D,SAAS,EAAE,CAAC;YACf,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAEvB,iBAAiB,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAE9B,MAAM,UAAU,GAAG,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;YAE/D,MAAM,SAAS,GAAG,GAAG,GAAG,KAAK,CAAC;YAC9B,IAAI,CAAC,QAAQ,GAAG,UAAU,IAAI,KAAK,GAAG,SAAS,GAAG,CAAC,CAAC,CAAC;YAErD,IAAI,IAAI,CAAC,cAAc,EAAE;gBACvB,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;aAC5B;SACF;KAAA;IAEK,SAAS;;YACb,IAAI,YAAY,GAAG,KAAK,CAAC;;YAGzB,IAAI,IAAI,CAAC,QAAQ,KAAK,IAAI,EAAE;gBAC1B,YAAY,GAAG,IAAI,CAAC;aACrB;YAED,IAAI,IAAI,CAAC,cAAc,EAAE;;gBAEvB,IAAI,CAAC,IAAI,CAAC,QAAQ,KAAK,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC,EAAE;oBACnD,YAAY,GAAG,IAAI,CAAC;iBACrB;aACF;YAED,IAAI,YAAY,EAAE;gBAChB,MAAM,IAAI,CAAC,OAAO,EAAE,CAAC;aACtB;YAED,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,QAAQ,CAAC;SACnC;KAAA;;;;YAhIF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA1BQ,SAAS;YACT,MAAM;;;ICQH;AAAZ,WAAY,iBAAiB;IAC3B,kCAAa,CAAA;IACb,wCAAmB,CAAA;AACrB,CAAC,EAHW,iBAAiB,KAAjB,iBAAiB,QAG5B;MAaY,sBAAsB,GAAkB;IACnD,WAAW,EAAE,MAAM;IACnB,iBAAiB,EAAE,IAAI;EACvB;MAEW,uBAAuB,GAAmB;IACrD,WAAW,EAAE,MAAM;IACnB,iBAAiB,EAAE,IAAI;IACvB,cAAc,EAAE,CAAC,iBAAiB,CAAC,IAAI,CAAC;EACxC;SAEc,cAAc,CAAC,GAAY;;IAEzC,OAAO,GAAG,CAAC,GAAG,KAAK,KAAK,CAAC;AAC3B,CAAC;SAEe,KAAK,CAAC,GAAwB;;;;IAK5C,IAAI,GAAG,CAAC,EAAE,IAAI,GAAG,CAAC,GAAG,EAAE;QACrB,OAAO,GAAG,CAAC,GAAG,CAAC;KAChB;SAAM,IAAI,GAAG,CAAC,QAAQ,IAAI,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,GAAG,EAAE;QACtE,OAAO,GAAG,CAAC;KACZ;SAAM;QACL,OAAO,IAAI,CAAC;KACb;AACH,CAAC;MAKY,iBAAiB;IAC5B,YAAoB,WAAwB;QAAxB,gBAAW,GAAX,WAAW,CAAa;KAAI;IAE1C,OAAO,CACX,GAAkB;IAClB,GAAoB;IACpB,OAAwB;;YAExB,MAAM,GAAG,GAAG;gBACV,UAAU,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,YAAY,CAAC;aAC3C,CAAC;YAEF,OAAO,mCACF,uBAAuB,GACvB,OAAO,CACX,CAAC;YAEF,IAAK,GAAW,CAAC,GAAG,EAAE;gBACpB,GAAG,GAAI,GAAW,CAAC,GAAG,CAAC;aACxB;YAED,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE;gBAC3B,IAAI,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC,iBAAiB,CAAC,IAAI,CAAC,EAAE;oBAC3D,IAAI;wBACF,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;qBACvB;oBAAC,OAAO,KAAK,EAAE;wBACd,IAAI,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC,iBAAiB,CAAC,OAAO,CAAC,EAAE;4BAC9D,OAAO,CAAC,GAAG,CACT,kEAAkE,CACnE,CAAC;yBACH;6BAAM;4BACL,MAAM,KAAK,CAAC;yBACb;qBACF;iBACF;aACF;;;;;;;YAQD,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,aAAa,CAAC,GAAc,EAAE,GAAG,CAAC,CAAC,OAAO,CAC9D,GAAU,CACX,CAAC;YAEF,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;YAEnE,IAAI,OAAO,CAAC,iBAAiB,EAAE;gBAC7B,OAAO,GAAG,CAAC,OAAO,CAAC;aACpB;iBAAM;gBACL,OAAO,GAAG,CAAC;aACZ;SACF;KAAA;;IAGK,eAAe,CACnB,GAAY,EACZ,OAAsC;;YAEtC,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,CAAC;SACzD;KAAA;;IAGK,OAAO,CACX,GAAY,EACZ,OAAsC;;YAEtC,IAAI,CAAC,OAAO,EAAE;gBACZ,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;aAC9C;YAED,IAAI,EAAE,OAAO,YAAY,WAAW,CAAC,EAAE;gBACrC,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;aAC7D;YAED,OAAO,GAAG,CAAC,aAAa,CACtB;gBACE,UAAU,EAAE,SAAS;gBACrB,MAAM,EAAE;oBACN,SAAS,EAAE,MAAM,IAAI,CAAC,WAAW,CAAC,SAAS,EAAE;iBAC9C;aACK,EACR,GAAG,CACJ;iBACE,MAAM,CAAC,OAAO,CAAC;iBACf,KAAK,EAAS,CAAC;SACnB;KAAA;;;IAIK,IAAI,CAAC,GAAY,EAAE,OAAiC;;YACxD,MAAM,MAAM,GAAG,GAAG,CAAC,UAAU,CAC3B;gBACE,MAAM,EAAE;oBACN,SAAS,EAAE,MAAM,IAAI,CAAC,WAAW,CAAC,SAAS,EAAE;iBAC9C;aACF,EACD,GAAG,CACJ,CAAC;YAEF,IAAI,OAAO,YAAY,MAAM,EAAE;gBAC7B,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;aACxB;iBAAM;gBACL,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC,CAAC;aAChD;YAED,OAAO,MAAM,CAAC,KAAK,EAAE,CAAC;SACvB;KAAA;IAEK,YAAY,CAChB,GAAY,EACZ,OAAiC;;YAEjC,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,CAAC;SACtD;KAAA;IAEK,MAAM,CACV,GAAY,EACZ,GAAW,EACX,OAAuB;;YAEvB,MAAM,GAAG,GAAG;gBACV,UAAU,EAAE,CAAC,KAAK,CAAC;aACpB,CAAC;YAEF,OAAO,mCACF,sBAAsB,GACtB,OAAO,CACX,CAAC;YAEF,IAAI;gBACF,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,MAAM,CAAC,GAAU,CAAC,CAAC;gBAEhE,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;gBAEnE,IAAI,OAAO,CAAC,iBAAiB,EAAE;oBAC7B,OAAO,GAAG,CAAC,OAAO,CAAC;iBACpB;qBAAM;oBACL,OAAO,GAAG,CAAC;iBACZ;aACF;YAAC,OAAO,KAAK,EAAE;gBACd,MAAM,IAAI,WAAW,CAAC;oBACpB,IAAI,EAAE,WAAW,CAAC,YAAY;oBAC9B,OAAO,EAAE,kBAAkB,KAAK,EAAE;iBACnC,CAAC,CAAC;aACJ;SACF;KAAA;IAEK,eAAe,CACnB,EACE,GAAG,EACH,MAAM,GAIP,EACD,OAAsC;;YAEtC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,CAAC;YAChE,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;YAC5C,OAAO,GAAG,CAAC,OAAO,CAAC;YAEnB,OAAO;gBACL,MAAM;gBACN,GAAG,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC;aACzB,CAAC;SACH;KAAA;IAEO,aAAa,CACnB,WAAwB,EACxB,OAAoB;QAEpB,QAAQ,WAAW;YACjB,KAAK,MAAM;gBACT,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;YACvD,KAAK,aAAa;gBAChB,OAAO,OAAO,CAAC;YACjB;gBACE,MAAM,IAAI,sBAAsB,CAAC,wBAAwB,WAAW,EAAE,CAAC,CAAC;SAC3E;KACF;;;;YAzLF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAlDQ,WAAW;;;MCHP,gBAAgB;IAH7B;QAIE,WAAM,GAAW,MAAM,CAAC,MAAM,CAAC;KAehC;IAbC,KAAK,CAAC,MAAmB;;QAEvB,MAAM,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;QACjD,MAAM,GAAG,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACvE,OAAO,GAAG,CAAC;KACZ;IAEK,YAAY,CAAC,SAAiB,EAAE,OAAe;;YACnD,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;YAClC,MAAM,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;YACrC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;YAC9D,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;SACzB;KAAA;;;;YAlBF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;SCaqB,MAAM,CAAC,OAAO;;;QAElC,MAAM,SAAS,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;;QAGpD,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;;QAGpE,MAAM,SAAS,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,UAAU,CAAC,UAAU,CAAC,CAAC,CAAC;;QAGzD,MAAM,OAAO,GAAG,SAAS;aACtB,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;aAC7C,IAAI,CAAC,EAAE,CAAC,CAAC;QACZ,OAAO,OAAO,CAAC;KAChB;CAAA;MAKY,iBAAiB;IAC5B,YAAoB,gBAAkC;QAAlC,qBAAgB,GAAhB,gBAAgB,CAAkB;;;;;;;;;QAatC,4BAAuB,GAAG,MAAM,CAAC;QACjC,4BAAuB,GAAG,MAAM,CAAC;QACjC,4BAAuB,GAAG,MAAM,CAAC;;QAGjC,gCAA2B,GAAG,IAAI,CAAC,uBAAuB,CAAC;QAC3D,gCAA2B,GAAG,IAAI,CAAC,uBAAuB,CAAC;QAC3D,gCAA2B,GAAG,IAAI,CAAC,uBAAuB,CAAC;QAnBzE,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC;KAC5C;IAoBD,OAAO,KAAK,CACV,GAA0C,EAC1C,IAQS,EACT,MAAgC;;;QAIhC,OAAO,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;KACrC;IAED,YAAY,CAAC,MAAc;QACzB,IAAI,MAAM,IAAI,CAAC,EAAE;YACf,MAAM,IAAI,sBAAsB,CAAC,aAAa,CAAC,CAAC;SACjD;QACD,MAAM,UAAU,GACd,gEAAgE,CAAC;QACnE,IAAI,KAAK,GAAG,IAAI,WAAW,CAAC,MAAM,CAAC,CAAC;QACpC,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QACnC,KAAK,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,UAAU,CAAC,UAAU,CAAC,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;QACvE,OAAO,MAAM,CAAC,YAAY,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;KAC/C;IAED,mBAAmB,CAAC,MAAc;QAChC,OAAO,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;KACzE;IAED,aAAa,CAAI,KAAU,EAAE,OAAe;QAC1C,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC,EAAE;YACrB,MAAM,IAAI,sBAAsB,CAAC,mBAAmB,CAAC,CAAC;SACvD;QACD,IAAI,OAAO,IAAI,CAAC,EAAE;YAChB,MAAM,IAAI,sBAAsB,CAAC,cAAc,CAAC,CAAC;SAClD;QACD,MAAM,MAAM,GAAG,IAAI,WAAW,CAAC,OAAO,CAAC,CAAC;QACxC,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;QACpC,MAAM,GAAG,GAAQ,EAAE,CAAC;QACpB,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACzD,OAAO,GAAG,CAAC;KACZ;IAED,UAAU;QACR,OAAO,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC;KAC9B;IAEK,SAAS;;YACb,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,WAAW,CAC9C;gBACE,IAAI,EAAE,SAAS;gBACf,MAAM,EAAE,GAAG;aACZ,EACD,IAAI;YACJ,CAAC,SAAS,EAAE,SAAS,CAAC;aACvB,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;;YAG3D,OAAO,GAAG,CAAC,GAAG,CAAC;YACf,OAAO,GAAG,CAAC,OAAO,CAAC;YAEnB,OAAO,iBAAiB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;SACrC;KAAA;IAEK,aAAa;;YACjB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,WAAW,CAC9C;gBACE,IAAI,EAAE,MAAM;gBACZ,IAAI,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;aAC1B,EACD,IAAI,EACJ,CAAC,MAAM,EAAE,QAAQ,CAAC,CACnB,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;;YAG3D,OAAO,GAAG,CAAC,OAAO,CAAC;YACnB,OAAO,GAAG,CAAC,GAAG,CAAC;YAEf,OAAO,iBAAiB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;SACrC;KAAA;IAEK,YAAY;;;;;;;YAMhB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,WAAW,CAC9C;gBACE,IAAI,EAAE,UAAU;gBAChB,aAAa,EAAE,IAAI;;gBAEnB,cAAc,EAAE,IAAI,UAAU,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;gBAClD,IAAI,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;aAC1B,EACD,IAAI;YACJ,CAAC,SAAS,EAAE,SAAS,CAAC;aACvB,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,CAAC,UAAU,CAAC,CAAC;;YAEtE,OAAO,GAAG,CAAC,OAAO,CAAC;YACnB,OAAO,GAAG,CAAC,GAAG,CAAC;YAEf,OAAO,iBAAiB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;SACrC;KAAA;IAEK,gBAAgB;;YACpB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,WAAW,CAC9C;gBACE,IAAI,EAAE,mBAAmB;gBACzB,aAAa,EAAE,IAAI;;gBAEnB,cAAc,EAAE,IAAI,UAAU,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;gBAClD,IAAI,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;aAC1B,EACD,IAAI;YACJ,CAAC,MAAM,EAAE,QAAQ,CAAC;aACnB,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,CAAC,UAAU,CAAC,CAAC;;YAGtE,OAAO,GAAG,CAAC,OAAO,CAAC;YACnB,OAAO,GAAG,CAAC,GAAG,CAAC;YAEf,OAAO,iBAAiB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;SACrC;KAAA;IAEK,SAAS,CAAC,EACd,QAAQ,EACR,IAAI,EACJ,UAAU,EACV,GAAG,GAMJ;;YACC,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC;YAC9B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAC/C,KAAK,EACL,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,EACpB,QAAQ,EACR,KAAK,EACL,CAAC,YAAY,EAAE,WAAW,CAAC,CAC5B,CAAC;YAEF,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAC3C;gBACE,IAAI,EAAE,QAAQ;gBACd,IAAI,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC;gBACpC,UAAU;gBACV,IAAI,EAAE,SAAS;aAChB,EACD,MAAM,EACN,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,EAChC,IAAI,EACJ,CAAC,SAAS,EAAE,SAAS,CAAC,CACvB,CAAC;YAEF,MAAM,WAAW,GAAQ,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;YACvE,IAAI,GAAG,EAAE;gBACP,WAAW,CAAC,GAAG,GAAG,GAAG,CAAC;aACvB;YAED,MAAM,GAAG,GAAG,MAAM,iBAAiB,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;YAEvD,OAAO,EAAE,GAAG,EAAE,CAAC;SAChB;KAAA;IAEK,aAAa,CAAC,MAA2B;;YAC7C,IAAI,MAAM,CAAC,UAAU,GAAG,IAAI,CAAC,uBAAuB,EAAE;gBACpD,MAAM,IAAI,qBAAqB,CAC7B,yEAAyE,MAAM,CAAC,UAAU,gCAAgC,IAAI,CAAC,uBAAuB,GAAG,CAC1J,CAAC;aACH;YACD,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;SAC/B;KAAA;IAEK,aAAa,CAAC,MAA2B;;YAC7C,IAAI,MAAM,CAAC,UAAU,GAAG,IAAI,CAAC,uBAAuB,EAAE;gBACpD,MAAM,IAAI,qBAAqB,CAC7B,wEAAwE,MAAM,CAAC,UAAU,+BAA+B,IAAI,CAAC,uBAAuB,GAAG,CACxJ,CAAC;aACH;YACD,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;SAC/B;KAAA;IAEK,aAAa,CAAC,MAA2B;;YAC7C,IAAI,MAAM,CAAC,UAAU,GAAG,IAAI,CAAC,uBAAuB,EAAE;gBACpD,MAAM,IAAI,qBAAqB,CAC7B,wEAAwE,MAAM,CAAC,UAAU,+BAA+B,IAAI,CAAC,uBAAuB,GAAG,CACxJ,CAAC;aACH;YACD,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;SAC/B;KAAA;IAEK,SAAS;;;;;;YAKb,OAAO,CAAC,MAAM,IAAI,CAAC,SAAS,EAAE,EAAE,GAAG,CAAC;SACrC;KAAA;IAEK,mBAAmB;;YACvB,OAAO;gBACL,IAAI,EAAE,IAAI,CAAC,UAAU,EAAE;gBACvB,UAAU,EAAE,IAAI,CAAC,2BAA2B;aAC7C,CAAC;SACH;KAAA;IAEK,mBAAmB;;YACvB,OAAO;gBACL,IAAI,EAAE,IAAI,CAAC,UAAU,EAAE;gBACvB,GAAG,EAAE,MAAM,IAAI,CAAC,SAAS,EAAE;gBAC3B,UAAU,EAAE,IAAI,CAAC,2BAA2B;aAC7C,CAAC;SACH;KAAA;IAEK,mBAAmB;;YACvB,OAAO;gBACL,IAAI,EAAE,IAAI,CAAC,UAAU,EAAE;;;;;gBAKvB,GAAG,EAAE,MAAM,IAAI,CAAC,SAAS,EAAE;gBAC3B,UAAU,EAAE,IAAI,CAAC,2BAA2B;aAC7C,CAAC;SACH;KAAA;;;;YA3QF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAzBQ,gBAAgB;;;MCUZ,cAAc;IAMzB,YACU,UAAe,EACf,aAA4B,EAC5B,iBAAoC,EACpC,QAAkB;QAHlB,eAAU,GAAV,UAAU,CAAK;QACf,kBAAa,GAAb,aAAa,CAAe;QAC5B,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,aAAQ,GAAR,QAAQ,CAAU;QATX,eAAU,GAAG,YAAY,CAAC;QAEnC,iBAAY,GAAG,IAAI,CAAC;QACpB,+BAA0B,GAAY,IAAI,CAAC;QAQjD,IAAI,SAAS,EAAE,EAAE;YACf,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;SAC7B;KACF;IAED,6BAA6B,CAAC,GAAY;QACxC,IAAI,CAAC,0BAA0B,GAAG,GAAG,CAAC;KACvC;IAED,+BAA+B;QAC7B,IAAI,CAAC,0BAA0B,GAAG,IAAI,CAAC;KACxC;;IAGO,eAAe;QACrB,OAAO;YACL,IAAI,EAAE,GAAG;YACT,MAAM,EAAE,IAAI;YACZ,MAAM,EAAE,IAAI,CAAC,YAAY;YACzB,QAAQ,EAAE,KAAkC;SAC7C,CAAC;KACH;IAEM,KAAK;;QAEV,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG;YACnD,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE;gBACnC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC;aAC9B;SACF,CAAC,CAAC;;QAGH,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG;YACpC,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE;gBACnC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC;aAC9B;SACF,CAAC,CAAC;KACJ;IAEM,eAAe,CAAC,KAAc;QACnC,IAAI,CAAC,YAAY,GAAG,KAAK,CAAC;QAC1B,IAAI,CAAC,KAAK,EAAE;YACV,IAAI,SAAS,EAAE,EAAE;gBACf,OAAO,CAAC,IAAI,CACV,mGAAmG,CACpG,CAAC;aACH;iBAAM;gBACL,MAAM,IAAI,sBAAsB,CAC9B,4EAA4E,CAC7E,CAAC;aACH;SACF;KACF;IAEO,UAAU,CAAC,IAAY;QAC7B,OAAO,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;KAC/B;IAEM,MAAM,CAAC,IAAY;QACxB,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;KAChD;IAEO,kBAAkB,CAAC,YAAoB;QAC7C,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QACtC,IAAI,CAAC,aAAa,CAAC,MAAM,CACvB,YAAY;QACZ,MAAM,CAAC,IAAI;QACX,MAAM,CAAC,MAAM;QACb,MAAM,CAAC,MAAM;QACb,MAAM,CAAC,QAAQ;SAChB,CAAC;QACF,YAAY,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;KACvC;IAEY,GAAG,CAAC,EACf,IAAI,EACJ,KAAK,EACL,aAAa,EACb,MAAM,GAMP;;YACC,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YAE3C,IAAI,IAAU,CAAC;YAEf,IAAI,aAAa,EAAE;gBACjB,IAAI,GAAG;oBACL,aAAa,EAAE,IAAI;oBACnB,IAAI,EAAE,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAChD,IAAI,CAAC,0BAA0B,EAC/B,KAAK,CACN;iBACF,CAAC;aACH;iBAAM;gBACL,IAAI,GAAG;oBACL,IAAI,EAAE,KAAK;iBACZ,CAAC;aACH;YAED,IAAI,MAAM,EAAE;gBACV,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBAC9C,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;gBACnC,IAAI,CAAC,IAAI,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAAC,GAAG,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;gBAEzE,MAAM,UAAU,GAAe;oBAC7B,GAAG,EAAE,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC;iBACtB,CAAC;;;;;;gBAOF,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;gBACtC,IAAI,CAAC,aAAa,CAAC,GAAG,CACpB,YAAY;gBACZ,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC;gBAC1B,MAAM;gBACN,MAAM,CAAC,IAAI;gBACX,MAAM,CAAC,MAAM;gBACb,MAAM,CAAC,MAAM;gBACb,MAAM,CAAC,QAAQ;iBAChB,CAAC;aACH;YAED,YAAY,CAAC,OAAO,CAAC,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;SAC1D;KAAA;IAEY,GAAG,CAAC,IAAY;;YAC3B,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YAE3C,IAAI;gBACF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;gBAC7C,IAAI,GAAG,IAAI,IAAI,EAAE;;oBAEf,IAAI,CAAC,kBAAkB,CAAC,YAAY,CAAC,CAAC;iBACvC;gBACD,OAAO,GAAG,CAAC;aACZ;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,CAAC,kBAAkB,CAAC,YAAY,CAAC,CAAC;gBACtC,MAAM,KAAK,CAAC;aACb;SACF;KAAA;IAEa,OAAO,CAAC,IAAY;;YAChC,MAAM,UAAU,GAAG,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAC9C,IAAI,CAAC,UAAU,EAAE;gBACf,OAAO,IAAI,CAAC;aACb;YAED,MAAM,IAAI,GAAS,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YAE1C,IAAI,IAAS,CAAC;YAEd,IAAI,IAAI,CAAC,MAAM,EAAE;gBACf,MAAM,gBAAgB,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBACtD,IAAI,CAAC,gBAAgB,EAAE;;;;oBAIrB,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;oBAC1B,OAAO,IAAI,CAAC;iBACb;gBAED,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;gBAEhD,MAAM,GAAG,GAAG,MAAMC,iBAAG,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;gBAE5C,IAAI,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,GAAG,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;aAC7D;iBAAM;gBACL,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;aAClB;YAED,IAAI,IAAI,CAAC,aAAa,EAAE;gBACtB,IAAI,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACzC,IAAI,CAAC,0BAA0B,EAC/B,IAAI,CACL,CAAC;aACH;YAED,OAAO,IAAI,CAAC;SACb;KAAA;;;;YAxMF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAd6BA,iBAAG;YAJxB,aAAa;YACb,iBAAiB;YAFL,QAAQ;;;MCMhB,QAAQ;CAMpB;MAUY,UAAU;IAoBrB,YAC6B,MAAuB,EAC1C,cAA8B;QADX,WAAM,GAAN,MAAM,CAAiB;QAC1C,mBAAc,GAAd,cAAc,CAAgB;QArBvB,qBAAgB,GAAG,WAAW,CAAC;;;;;;QAUhC,4BAAuB,GAAG,MAAM,CAAC;QACjC,4BAAuB,GAAG,MAAM,CAAC;QACjC,4BAAuB,GAAG,MAAM,CAAC;;QAGjC,gCAA2B,GAAG,IAAI,CAAC,uBAAuB,CAAC;QAC3D,gCAA2B,GAAG,IAAI,CAAC,uBAAuB,CAAC;QAC3D,gCAA2B,GAAG,IAAI,CAAC,uBAAuB,CAAC;QAMzE,IAAI,CAAC,SAAS,EAAE,CAAC;KAClB;IAED,SAAS;QACP,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;KACvB;IAED,SAAS;QACP,IAAI,CAAC,SAAS,EAAE,CAAC;QACjB,IAAI,CAAC,cAAc,CAAC,KAAK,EAAE,CAAC;KAC7B;IAED,YAAY,CAAC,IAAc;QACzB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;KAClB;IAEM,iBAAiB;QACtB,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC;KAC1B;IAEM,mBAAmB;QACxB,OAAO,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC;KAC5B;IAEM,iBAAiB;QACtB,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC;KAC1B;IAEM,aAAa;QAClB,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;KACtB;IAEM,gBAAgB;QACrB,OAAO,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;KACzB;IAEO,YAAY,CAAC,OAAe;QAClC,OAAO,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,OAAO,CAAC,CAAC;KAC9C;IAEK,gBAAgB,CACpB,SAAc,EACd,mBAA2B;;YAE3B,MAAM,SAAS,GAAG;gBAChB,EAAE,EAAE,SAAS,CAAC,EAAE;gBAChB,GAAG,EAAE,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC;aAChC,CAAC;YAEF,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;;YAG3B,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC;gBAC5B,IAAI,EAAE,IAAI,CAAC,gBAAgB;gBAC3B,KAAK,EAAE,SAAS;gBAChB,MAAM,EAAE,IAAI,CAAC,YAAY,CAAC,mBAAmB,CAAC;gBAC9C,aAAa,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,2BAA2B;aACxD,CAAC,CAAC;SACJ;KAAA;IAEK,+BAA+B,CAAC,OAAe;;YACnD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;YACvE,IAAI,SAAS,IAAI,IAAI,EAAE;gBACrB,MAAM,IAAI,mBAAmB,CAC3B,2DAA2D,IAAI,CAAC,gBAAgB,EAAE,CACnF,CAAC;aACH;YACD,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC;gBAC5B,IAAI,EAAE,IAAI,CAAC,gBAAgB;gBAC3B,KAAK,EAAE,SAAS;gBAChB,MAAM,EAAE,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC;gBAClC,aAAa,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,2BAA2B;aACxD,CAAC,CAAC;SACJ;KAAA;;;;;;;;IASK,aAAa,CAAC,WAAmB;;YACrC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE;gBACnB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;gBAEvE,IAAI,CAAC,SAAS,EAAE;oBACd,MAAM,IAAI,mBAAmB,CAC3B,+CAA+C,CAChD,CAAC;iBACH;gBAED,IAAI,SAAS,CAAC,EAAE,KAAK,WAAW,EAAE;oBAChC,MAAM,IAAI,mBAAmB,CAC3B,eAAe,SAAS,CAAC,EAAE,0DAA0D,WAAW,EAAE,CACnG,CAAC;iBACH;gBAED,SAAS,CAAC,GAAG,GAAG,MAAMA,iBAAG,CAAC,KAAK,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;gBAE/C,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;aAC5B;YAED,OAAO,IAAI,CAAC,SAAS,CAAC;SACvB;KAAA;;;;YApIF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;4CAsBI,MAAM,SAAC,SAAS;YAzCZ,cAAc;;;MCoCV,eAAe;;;;IAM1B,YACU,iBAAoC,EACpC,UAAsB;QADtB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,eAAU,GAAV,UAAU,CAAY;QAE9B,IAAI,CAAC,SAAS,EAAE,CAAC;KAClB;IAED,SAAS;QACP,IAAI,CAAC,KAAK,GAAG,IAAI,KAAK,EAAE,CAAC;;KAE1B;IAEK,YAAY,CAAC,OAAuB;;YACxC,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC;gBAC3B,OAAO,EAAE,OAAO,CAAC,OAAO;gBACxB,SAAS,EAAE,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;gBACpE,OAAO,EAAE,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,EAAE,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;gBACvE,GAAG,EAAE,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,EAAE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC/D,MAAM,EAAE,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,EAAE,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;aACtE,CAAC,CAAC;SACJ;KAAA;IAED,MAAM,CAAC,KAAa;QAClB,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;KACjC;IAEO,OAAO,CAAC,EAAE,EAAE,IAAI;QACtB,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjC,IAAI,CAAC,IAAI,EAAE;YACT,MAAM,IAAI,mBAAmB,CAC3B,uCAAuC,EAAE,EAAE,CAC5C,CAAC;SACH;QACD,IAAI,IAAI,CAAC,IAAI,KAAK,IAAI,EAAE;YACtB,MAAM,IAAI,WAAW,CAAC;gBACpB,OAAO,EAAE,eAAe,EAAE,mBAAmB,IAAI,EAAE;aACpD,CAAC,CAAC;SACJ;QACD,OAAO,IAAI,CAAC,IAAI,CAAC;KAClB;IAED,GAAG,CAAC,EAAE;QACJ,OAAO,IAAI,CAAC,OAAO,CAAC,EAAE,EAAE,QAAQ,CAAC,GAAG,CAAC,CAAC;KACvC;IAED,OAAO,CAAC,EAAE;QACR,OAAO,IAAI,CAAC,OAAO,CAAC,EAAE,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;KAC3C;IAED,OAAO,CAAC,GAAqB;;QAE3B,IAAI,GAAG,CAAC,IAAI,EAAE;;;YAGZ,KAAK,MAAM,GAAG,IAAI,GAAG,CAAC,IAAI,EAAE;;gBAE1B,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE;oBAC9B,SAAS;iBACV;gBAED,MAAM,IAAI,GAAS;oBACjB,IAAI,EAAE,QAAQ,CAAC,GAAG;oBAClB,IAAI,EAAEC,UAAC,CAAC,SAAS,CAAC,GAAG,CAAC;iBACvB,CAAC;gBAEF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;aAClC;SACF;;QAGD,IAAI,GAAG,CAAC,QAAQ,EAAE;YAChB,KAAK,MAAM,OAAO,IAAI,GAAG,CAAC,QAAQ,EAAE;gBAClC,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,aAAa,EAAE,OAAO,CAAC,KAAK,CAAC,EAAE;oBAC5D,SAAS;iBACV;gBAED,MAAM,IAAI,GAAS;oBACjB,IAAI,EAAE,QAAQ,CAAC,OAAO;oBACtB,IAAI,EAAEA,UAAC,CAAC,SAAS,CAAC,OAAO,CAAC;iBAC3B,CAAC;;gBAEF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,aAAa,EAAE,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;aAChE;SACF;;QAGD,IAAI,GAAG,CAAC,YAAY,EAAE;YACpB,KAAK,MAAM,WAAW,IAAI,GAAG,CAAC,YAAY,EAAE;gBAC1C,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,SAAS,EAAE,WAAW,CAAC,KAAK,CAAC,EAAE;oBAChE,SAAS;iBACV;gBAED,MAAM,IAAI,GAAS;oBACjB,IAAI,EAAE,QAAQ,CAAC,WAAW;oBAC1B,IAAI,EAAEA,UAAC,CAAC,SAAS,CAAC,WAAW,CAAC;iBAC/B,CAAC;;gBAEF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,SAAS,EAAE,WAAW,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;aACpE;SACF;;;KAIF;IAED,SAAS,CAAC,SAAS,EAAE,KAAa;;QAEhC,MAAM,GAAG,GAAW,EAAE,CAAC;QACvB,IAAI,IAAI,GAAG,KAAK,CAAC;QACjB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE;YAChC,OAAO,IAAI,CAAC;SACb;QAED,OAAO,SAAS,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE;YAClC,MAAM,KAAK,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC,WAAW,CAAC;YAC1C,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC,CAAC;YACvC,IAAI,GAAG,KAAK,CAAC;SACd;;QAGD,GAAG,CAAC,OAAO,EAAE,CAAC;QAEd,OAAO,GAAG,CAAC;KACZ;IAED,OAAO,CAAC,UAAkB,EAAE,KAAa;QACvC,IAAI,CAAC,UAAU,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE;YACjD,MAAM,IAAI,qBAAqB,CAC7B,kCAAkC,UAAU,EAAE,CAC/C,CAAC;SACH;QACD,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE;YACvC,MAAM,IAAI,qBAAqB,CAAC,6BAA6B,KAAK,EAAE,CAAC,CAAC;SACvE;;;;;;;QAQD,MAAM,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;;QAGhE,OAAO,IAAI,CAAC,SAAS,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;KACzC;IAEK,SAAS,CACb,OAAqB,EACrB,gBAAiD;;YAEjD,OAAO,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,gBAAgB,CAAC,EAAE,GAAG,CAAC;SAC3D;KAAA;;;;;IAMK,MAAM,CACV,OAAqB,EACrB,gBAAiD;;YAEjD,IAAI,KAAK,GAAG,OAAO,OAAO,KAAK,QAAQ,GAAG,OAAO,GAAG,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,EAAE,CAAC;YAEhE,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,gBAAgB,EAAE;gBAC3C,KAAK,GAAG,MAAM,gBAAgB,EAAE,CAAC;aAClC;;YAGD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YAC5B,IAAI,GAAG,CAAC,GAAG,EAAE;gBACX,OAAO,GAAG,CAAC;aACZ;iBAAM;gBACL,OAAO,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;aACxE;SACF;KAAA;IAEa,WAAW,CAAC,WAAW,EAAE,IAAI,EAAE,MAAM;;;YAEjD,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;;;YAGpD,IAAI,UAAU,CAAC;YACf,IAAI,UAAU,CAAC,UAAU,EAAE;gBACzB,UAAU,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC;aAC3E;iBAAM;gBACL,UAAU,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC/C,WAAW,EACX,UAAU,CACX,CAAC;aACH;YACD,MAAM,CAAC,GAAG,GAAG,MAAMD,iBAAG,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC;SACpB;KAAA;IAEa,OAAO,CAAC,GAAY,EAAE,IAAY;;YAC9C,KAAK,MAAM,IAAI,IAAI,IAAI,EAAE;gBACvB,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;;gBAEzC,IAAI,MAAM,CAAC,GAAG,EAAE;oBACd,GAAG,GAAG,MAAM,CAAC,GAAG,CAAC;;oBAEjB,SAAS;iBACV;gBAED,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE;oBAChB,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;iBACnD;gBAED,MAAM,MAAM,CAAC,IAAI,CAAC;gBAClB,GAAG,GAAG,MAAM,CAAC,GAAG,CAAC;aAClB;YAED,OAAO,GAAG,CAAC;SACZ;KAAA;IAEY,iBAAiB,CAC5B,SAAiB,EACjB,OAAgB,EAChB,KAAa;;;YAGb,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;YAE5C,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,GAAG,EAAE,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC;aACvC,CAAC;SACH;KAAA;IAEK,SAAS,CAAC,WAAmB,EAAE,KAAa;;;YAEhD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;YAEnE,IAAI,WAAW,KAAK,KAAK,EAAE;gBACzB,OAAO,SAAS,CAAC;aAClB;;YAGD,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;YAE/C,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,GAAG,EAAE,MAAM,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,GAAG,EAAE,IAAI,CAAC;aAC7C,CAAC;SACH;KAAA;IAEK,iBAAiB,CACrB,OAAqB,EACrB,UAAkB,EAClB,OAAwB;;YAExB,IAAI,UAAU,EAAE;gBACd,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;gBAC1C,QAAQ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC1C,GAAG,EACH,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,EACtB,OAAO,CACR,EAAS;aACX;YACD,OAAO,IAAI,CAAC;SACb;KAAA;IAEK,WAAW,CAAC,KAAa,EAAE,IAAS;;YACxC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YACxC,QAAQ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,GAAG,EAAE,IAAI,EAAE;gBACtD,WAAW,EAAE,aAAa;aAC3B,CAAC,EAAS;SACZ;KAAA;;IAGK,eAAe,CACnB,GAA2B,EAC3B,OAAY;;;;;;;;;YASZ,IAAI,OAAO,IAAI,IAAI,EAAE;gBACnB,OAAO,IAAI,CAAC;aACb;YAED,MAAM,GAAG,GAAG,KAAK,CAAC,GAAG,CAAC,KAAK,MAAM,IAAI,CAAC,SAAS,CAAC,GAAmB,CAAC,CAAC,CAAC;YACtE,OAAO,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;SAC7D;KAAA;;;IAIK,OAAO,CACX,WAAmC,EACnC,GAAY;;YAEZ,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,EAAE;gBACxB,MAAM,IAAI,sBAAsB,CAC9B,2CAA2C,CAC5C,CAAC;aACH;YAED,OAAO,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC;SAC5D;KAAA;;;;YAxTF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAfC,iBAAiB;YAOV,UAAU;;;MCpBN,eAAe;IAC1B,YAAoB,MAAc,EAAU,QAAyB;QAAjD,WAAM,GAAN,MAAM,CAAQ;QAAU,aAAQ,GAAR,QAAQ,CAAiB;KAAI;IAEjE,OAAO,CAAC,QAAQ;QACtB,IAAK,QAAQ,CAAC,IAAoB,CAAC,QAAQ,EAAE;YAC3C,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAE,QAAQ,CAAC,IAAoB,CAAC,QAAQ,CAAC,CAAC;SAChE;KACF;IAEK,KAAK,CACT,OAAwB;;YAExB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,KAAK,CAAO,OAAO,CAAC,CAAC,SAAS,EAAE,CAAC;YAEpE,iBAAiB,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAEnC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAEvB,OAAO,QAAQ,CAAC,IAAI,CAAC;SACtB;KAAA;IAEK,MAAM,CACV,OAA8B;;YAE9B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAI,OAAO,CAAC,CAAC,SAAS,EAAE,CAAC;YAElE,iBAAiB,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAEnC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAEvB,OAAO,QAAQ,CAAC,IAAI,CAAC;SACtB;KAAA;;;;YAlCF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YARQ,MAAM;YAEN,eAAe;;;ACDxB,MAAM,oBAAoB,GAAG;;;;;;;;;;;;;;;;;;;;CAoB5B,CAAC;MAEW,gBAAgB,GAAG,GAAG,CAAA;4CACS,oBAAoB;EAC9D;MAEW,aAAa,GAAG,YAAY,oBAAoB,GAAG;MAEnD,kBAAkB,GAAG,2BAA2B,oBAAoB,GAAG;MAEvE,SAAS,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;IA2CxB,gBAAgB;EAClB;MAEW,cAAc,GAAG,GAAG,CAAA;;;;;;;;;;;;IAY7B,gBAAgB;EAClB;MAEW,eAAe,GAAG,GAAG,CAAA;;;;;;;;EAQhC;MAEW,eAAe,GAAG,GAAG,CAAA;;;;;;;;;;;;;;EAchC;MAEW,eAAe,GAAG,GAAG,CAAA;;;;;;;;;;;;;;EAchC;MAEW,aAAa,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA+B9B;MAEW,kBAAkB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;MC5JxB,gBAAgB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;IAkE/B,gBAAgB;EAClB;MAEWE,2BAAyB,GAAG,GAAG,CAAA;;;;;;;;;;;;EAY1C;MAEWC,2BAAyB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;MC3F/B,cAAc;CAM1B;MAEY,cAAc;CAO1B;MAEY,cAAc;CAM1B;MAEY,eAAe;IAM1B,YAAY,KAAU;QACpB,IAAI,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;QACvB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC;QACzB,IAAI,CAAC,SAAS,GAAG,KAAK,CAAC,SAAS,CAAC;QACjC,IAAI,CAAC,QAAQ,GAAG,KAAK,CAAC,QAAQ,CAAC;KAChC;CACF;MAEY,kBAAkB;CAO9B;MAEY,uBAAuB;CAKnC;MAEY,qBAAqB;CAMjC;MAEY,eAAgB,SAAQ,qBAAqB;CAGzD;MAEY,0BAA0B;CAEtC;IAEW;AAAZ,WAAY,oBAAoB;IAC9B,kDAA0B,CAAA;IAC1B,6CAAqB,CAAA;AACvB,CAAC,EAHW,oBAAoB,KAApB,oBAAoB,QAG/B;MAEY,gBAAgB;CAQ5B;MAEY,mBAAmB;;;MCtFnB,wBAAwB,GAAG,EAAE;MAC7B,yBAAyB,GAAG,EAAE;IAE/B;AAAZ,WAAY,aAAa;IACvB,gCAAe,CAAA;IACf,sCAAqB,CAAA;IACrB,kCAAiB,CAAA;AACnB,CAAC,EAJW,aAAa,KAAb,aAAa,QAIxB;MAEY,kBAAkB,GAAG,IAAI,CAAC,SAAS,CAAC;IAC/C,MAAM,EAAE;QACN;YACE,QAAQ,EAAE;gBACR,aAAa,EAAE,aAAa,CAAC,KAAK;gBAClC,OAAO,EAAE,IAAI;aACd;SACF;KACF;CACF,EAAE;MAEU,cAAc,GAAG,IAAI,CAAC,SAAS,CAAC;IAC3C,MAAM,EAAE;QACN;YACE,QAAQ,EAAE;gBACR,aAAa,EAAE,aAAa,CAAC,QAAQ;aACtC;SACF;KACF;CACF,EAAE;MAEU,YAAY,GAAG,IAAI,CAAC,SAAS,CAAC;IACzC,MAAM,EAAE;QACN;YACE,QAAQ,EAAE;gBACR,aAAa,EAAE,aAAa,CAAC,MAAM;aACpC;SACF;KACF;CACF,EAAE;MAEU,YAAY,GAAG;;;;;;;;;;;GAWzB;AAEH,MAAM,qBAAqB,GAAG;+BACC,yBAAyB;;;CAGvD,CAAC;MAEW,cAAc,GAAG;;;;;;IAM1B,YAAY;IACZ,qBAAqB;EACvB;MAEW,WAAW,GAAG;;;;;EAKzB;MAEW,wBAAwB,GAAG,GAAG,CAAA;;;;;;;;;;EAUzC;MAEW,kBAAkB,GAAG,GAAG,CAAA;;;;;;;;;;kBAUnB,cAAc;;;;;;;;;;;;EAY9B,gBAAgB;EAChB;MAEW,cAAc,GAAG,GAAG,CAAA;;;;;;UAMvB,WAAW;;;;;;;;EAQnB,gBAAgB;EAChB;MAWW,8BAA8B,GAAG,GAAG,CAAA;;;;;;;;cAQnC,cAAc;;;;;;;;;;;;;;cAcd,YAAY;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA6BxB,gBAAgB;EAChB;MAWW,0BAA0B,GAAG,GAAG,CAAA;;;;;;;;cAQ/B,cAAc;;;;;;;;;;;;;;cAcd,YAAY;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA6BxB,gBAAgB;EAChB;MAEW,qBAAqB,GAAG,CAAC,KAAK,GAAG,wBAAwB;IACpE,IAAI,CAAC,KAAK,EAAE;QACV,OAAO,EAAE,CAAC;KACX;IACD,OAAO;;;;;;;;;;UAUC,qBAAqB,CAAC,KAAK,GAAG,CAAC,CAAC;UAChC,YAAY;;;;;CAKrB,CAAC;AACF,EAAE;MAEW,gBAAgB,GAAG,CAC9B,QAAgB,wBAAwB,KACrC,GAAG,CAAA;;;;;;;;;;;;;MAaF,YAAY;MACZ,qBAAqB;MACrB,qBAAqB,CAAC,KAAK,CAAC;;;;;cAKpB,cAAc;;;;;;;;;;;;;;;;cAgBd,YAAY;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA6BxB,gBAAgB,IAAI;MAET,qBAAqB,GAAG,GAAG,CAAA;;;;;;;;;;;;IAYpC,gBAAgB;EAClB;MAEW,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;EAqBvC;MAEW,mBAAmB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;EAmBpC;MAEW,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;EAQvC;MAEW,sBAAsB,GAAG,GAAG,CAAA;;;;;;EAMvC;MAEWC,0BAAwB,GAAG,GAAG,CAAA;;;;;;;;EAQzC;MAEWC,4BAA0B,GAAG,GAAG,CAAA;;;;;;;;;;MCnahC,cAAc;CAK1B;MAEY,WAAW;CAIvB;MAKY,cAAc;IACzB,YACU,iBAAoC,EACpC,QAAyB,EACzB,QAAyB,EACzB,UAAsB,EACtB,UAA6B;QAJ7B,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,aAAQ,GAAR,QAAQ,CAAiB;QACzB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,eAAU,GAAV,UAAU,CAAY;QACtB,eAAU,GAAV,UAAU,CAAmB;KACnC;;;;;;;;;;;;;;;;IAkBE,WAAW,CAAI,SAAwB;;YAC3C,IAAI,SAAS,CAAC,UAAU,EAAE;gBACxB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;gBAC3D,QAAQ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC1C,GAAG,EACH,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,UAAU,CAAC,CACjC,EAAS;aACX;YACD,OAAO,IAAI,CAAC;SACb;KAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;IAiDK,iBAAiB,CACrB,aAAkB,EAClB,WAAqB,EACrB,WAAyB;;YAEzB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAE9C,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,WAAW,CAC3C,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,EAChB,WAAW,CACZ,CAAC;YAEF,OAAO;gBACL,OAAO,EAAE,cAAc,CAAC,OAAO;gBAC/B,WAAW,EAAE,cAAc,CAAC,WAAW;gBACvC,gBAAgB,EAAE,cAAc,CAAC,UAAU;gBAC3C,UAAU,EAAE,aAAa;sBACrB,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,GAAG,EAAE,aAAa,CAAC,CACzD;sBACD,IAAI;gBACR,iBAAiB,EAAE,WAAW;sBAC1B,IAAI,CAAC,SAAS,CAAC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,GAAG,EAAE,WAAW,CAAC,CAAC;sBACtE,IAAI;aACT,CAAC;SACH;KAAA;IAEK,aAAa,CAAC,KAAa,EAAE,aAAkB;;YACnD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YACjD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAEjD,OAAO;gBACL,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAC9B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAC/D;gBACD,UAAU,EAAE,aAAa;sBACrB,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,MAAM,EAAE,aAAa,CAAC,CAC5D;sBACD,IAAI;aACT,CAAC;SACH;KAAA;IAEK,WAAW,CACf,aAAkB,EAClB,WAAsB;;YAEtB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAE9C,IAAI,WAA0B,CAAC;YAC/B,IAAI,eAA4B,CAAC;YAEjC,IAAI,WAAW,IAAI,WAAW,CAAC,MAAM,EAAE;gBACrC,WAAW,GAAG,MAAM,OAAO,CAAC,GAAG,CAC7B,WAAW,CAAC,GAAG,CAAC,CAAO,UAAU;oBAC/B,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,UAAU,CAAC,CAAC;oBAC1D,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAC/B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,SAAS,CAAC,GAAG,EACb,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACjB,CACF,CAAC;oBACF,OAAO;wBACL,WAAW,EAAE,UAAU;wBACvB,aAAa,EAAE,SAAS,CAAC,KAAK;wBAC9B,UAAU;qBACX,CAAC;iBACH,CAAA,CAAC,CACH,CAAC;aACH;iBAAM;;gBAEL,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;gBACpD,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAC/B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CACpE,CAAC;gBACF,eAAe,GAAG;oBAChB,aAAa,EAAE,OAAO,CAAC,EAAE;oBACzB,UAAU;iBACX,CAAC;aACH;YAED,OAAO;gBACL,GAAG;gBACH,OAAO,EAAE,eAAe;gBACxB,WAAW;gBACX,UAAU,EAAE,aAAa;sBACrB,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,GAAG,EAAE,aAAa,CAAC,CACzD;sBACD,IAAI;aACT,CAAC;SACH;KAAA;IAEK,kBAAkB,CACtB,aAAkB,EAClB,KAAa;;YAEb,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAE9C,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACpD,KAAK,EACL,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACjB,CAAC;YAEF,OAAO;gBACL,GAAG;gBACH,OAAO,EAAE;oBACP,aAAa,EAAE,KAAK;oBACpB,UAAU;iBACX;gBACD,UAAU,EAAE,aAAa;sBACrB,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,GAAG,EAAE,aAAa,CAAC,CACzD;sBACD,IAAI;aACT,CAAC;SACH;KAAA;IAEa,gBAAgB,CAC5B,UAAkB;;YAElB,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAClD,KAAK,EAAE,qBAAqB;gBAC5B,SAAS,EAAE;oBACT,EAAE,EAAE,UAAU;iBACf;aACF,CAAC,CAAC;YAEH,OAAO;gBACL,KAAK,EAAE,QAAQ,CAAC,KAAK;gBACrB,GAAG,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;aACnD,CAAC;SACH;KAAA;;;;YA1NF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA3BC,iBAAiB;YAIV,eAAe;YAXf,eAAe;YAYf,UAAU;YAFV,iBAAiB;;;ACTnB,MAAM,iBAAiB,GAAG;;;;;;;;CAQhC,CAAC;AAEK,MAAMC,kBAAgB,GAAG,GAAG,CAAA;;;;;;;IAO/B,iBAAiB;;EAEnB,aAAa;EACb,CAAC;AAEI,MAAM,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;;;UAU/B,iBAAiB;;;;IAIvB,aAAa;EACf,CAAC;AAEI,MAAM,oBAAoB,GAAG,GAAG,CAAA;;;;;;;UAO7B,iBAAiB;;;;IAIvB,aAAa;EACf,CAAC;AAEI,MAAMJ,2BAAyB,GAAG,GAAG,CAAA;;;;;;QAMpC,iBAAiB;;;EAGvB,CAAC;AAEI,MAAMC,2BAAyB,GAAG,GAAG,CAAA;;;;;;QAMpC,iBAAiB;;;EAGvB,CAAC;AAEI,MAAMI,2BAAyB,GAAG,GAAG,CAAA;;;;;;CAM3C;;AClFM,MAAM,mCAAmC,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;CAgBrD,CAAC;AAEK,MAAM,wCAAwC,GAAG,GAAG,CAAA;;;;;;CAM1D,CAAC;AAEK,MAAM,UAAU,GAAG;;;;CAIzB,CAAC;AAEK,MAAM,4BAA4B,GAAG,GAAG,CAAA;;;;;;UAMrC,UAAU;;;;;;;;EAQlB,CAAC;AAEI,MAAM,4BAA4B,GAAG,GAAG,CAAA;;;;;;CAM9C,CAAC;AAEK,MAAM,sBAAsB,GAAG,GAAG,CAAA;;;;QAIjC,UAAU;;;;CAIjB,CAAC;AAEF;AACO,MAAM,oBAAoB,GAAG,GAAG,CAAA;;;;;;;;;;CAUtC,CAAC;AAEK,MAAM,mBAAmB,GAAG,GAAG,CAAA;;;;;;;;;;;QAW9B,UAAU;;;;;;CAMjB,CAAC;AAEK,MAAM,+BAA+B,GAAG,GAAG,CAAA;;;;;;UAMxC,UAAU;;;;;EAKlB,CAAC;AAEI,MAAM,cAAc,GAAG,GAAG,CAAA;;;;;;QAMzB,UAAU;;;;CAIjB,CAAC;AAEK,MAAM,WAAW,GAAG,GAAG,CAAA;;;;;;;CAO7B;;SC7Ge,YAAY,CAAC,SAAgB;IAC3C,OAAO,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC;;QAAK,wCACvB,CAAC,KACJ,SAAS,EAAE,CAAC,CAAC,SAAS,IAAI,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,EAC/C,YAAY,EAAE,EAAE,EAAE,QAAE,CAAC,CAAC,MAAM,0CAAE,cAAc,EAAE,KAC9C;KAAA,CAAC,CAAC;AACN,CAAC;MAKY,WAAW;IACtB,YAAoB,QAAyB;QAAzB,aAAQ,GAAR,QAAQ,CAAiB;KAAI;IAE3C,2BAA2B,CAAC,KAIjC;;YACC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAEnC;gBACD,QAAQ,EAAE,mCAAmC;gBAC7C,SAAS,oBACJ,KAAK,CACT;aACF,CAAC,CAAC;YACH,OAAO;gBACL,EAAE,EAAE,GAAG,CAAC,2BAA2B,CAAC,SAAS;aAC9C,CAAC;SACH;KAAA;IAEK,gCAAgC,CACpC,SAAiB;;YAEjB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAEnC;gBACD,QAAQ,EAAE,wCAAwC;gBAClD,SAAS,EAAE;oBACT,SAAS;iBACV;aACF,CAAC,CAAC;YACH,OAAO;gBACL,GAAG,EAAE,GAAG,CAAC,gCAAgC,CAAC,UAAU;aACrD,CAAC;SACH;KAAA;IAEK,oBAAoB;;YACxB,MAAM,EAAE,iBAAiB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAEpD;gBACD,KAAK,EAAE,sBAAsB;aAC9B,CAAC,CAAC;YAEH,OAAO,iBAAiB,CAAC;SAC1B;KAAA;IAEK,oBAAoB,CAAC,EACzB,QAAQ,EACR,eAAe,EACf,aAAa,EACb,yBAAyB,GAM1B;;YACC,IAAI,aAAa,IAAI,IAAI,IAAI,yBAAyB,IAAI,IAAI,EAAE;gBAC9D,MAAM,IAAI,sBAAsB,CAC9B,oEAAoE,CACrE,CAAC;aACH;YAED,MAAM,EAAE,oBAAoB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC/D,QAAQ,EAAE,4BAA4B;gBACtC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,QAAQ;wBACR,eAAe,EAAE,eAAe,CAAC,WAAW,EAAE;wBAC9C,aAAa,EAAE,aAAa,IAAI,aAAa,CAAC,WAAW,EAAE;wBAC3D,yBAAyB;qBAC1B;iBACF;aACF,CAAC,CAAC;YAEH,MAAM,EAAE,cAAc,EAAE,GAAG,oBAAoB,CAAC;YAEhD,uCACK,cAAc,KACjB,eAAe,EAAE,IAAI,IAAI,CAAC,cAAc,CAAC,eAAe,CAAC,EACzD,aAAa,EAAE,IAAI,IAAI,CAAC,cAAc,CAAC,aAAa,CAAC,IACrD;SACH;KAAA;IAEK,oBAAoB,CAAC,EAAU;;YACnC,OAAO,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBACrC,QAAQ,EAAE,4BAA4B;gBACtC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE;qBACH;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEK,kBAAkB;;YACtB,MAAM,EAAE,eAAe,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACzD,KAAK,EAAE,oBAAoB;aAC5B,CAAC,CAAC;YAEH,OAAO,eAAe,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,CAAC;SACvD;KAAA;IAEK,iBAAiB,CAAC,EAAU,EAAE,KAAc;;YAChD,MAAM,EAAE,cAAc,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACxD,KAAK,EAAE,mBAAmB;gBAC1B,SAAS,EAAE;oBACT,EAAE;oBACF,KAAK;iBACN;aACF,CAAC,CAAC;YAEH,OAAO,cAAc,CAAC;SACvB;KAAA;IAEK,uBAAuB,CAAC,EAC5B,EAAE,EACF,KAAK,GAIN;;YACC,MAAM,EAAE,uBAAuB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACjE,KAAK,EAAE,+BAA+B;gBACtC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE;wBACF,KAAK;qBACN;iBACF;aACF,CAAC,CAAC;YAEH,MAAM,EAAE,QAAQ,EAAE,GAAG,uBAAuB,CAAC;YAE7C,uCACK,QAAQ,KACX,SAAS,EAAE,IAAI,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,IACvC;SACH;KAAA;IAEK,YAAY;;YAChB,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACnD,KAAK,EAAE,cAAc;aACtB,CAAC,CAAC;YAEH,OAAO,YAAY,CAAC,SAAS,CAAC,CAAC;SAChC;KAAA;IAEK,WAAW,CAAC,cAAsB;;YACtC,MAAM,MAAM,GAAQ,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;YAC3C,OAAO,MAAM,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAC9C,CAAC,GAAG,KAAK,GAAG,CAAC,EAAE,KAAK,cAAc,CACnC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC;SAClC;KAAA;IAEK,SAAS;;YACb,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAChD,KAAK,EAAE,WAAW;aACnB,CAAC,CAAC;YAEH,OAAO,MAAM,CAAC;SACf;KAAA;;;;YArKF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YApBQ,eAAe;;;MCqBX,cAAc;IACzB,YAC6B,MAAuB,EAC1C,IAAgB,EAChB,QAAyB,EACzB,UAAsB,EACtB,cAA8B,EAC9B,QAAyB,EACzB,iBAAoC;QANjB,WAAM,GAAN,MAAM,CAAiB;QAC1C,SAAI,GAAJ,IAAI,CAAY;QAChB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,eAAU,GAAV,UAAU,CAAY;QACtB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,aAAQ,GAAR,QAAQ,CAAiB;QACzB,sBAAiB,GAAjB,iBAAiB,CAAmB;KAC1C;IAEE,gBAAgB,CAAC,YAAoB;;YACzC,OAAO,MAAM,IAAI,CAAC,IAAI;iBACnB,GAAG,CACF,GACE,IAAI,CAAC,MAAM,CAAC,OACd,qCAAqC,kBAAkB,CAAC,YAAY,CAAC,EAAE,CACxE;iBACA,SAAS,EAAE,CAAC;SAChB;KAAA;IAEK,cAAc;;YAKlB,MAAM,EACJ,WAAW,EACX,YAAY,EACZ,SAAS,GACV,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAuB;gBAClD,KAAK,EAAE,gBAAgB;aACxB,CAAC,CAAC;YAEH,MAAM,WAAW,GAAG,YAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;YAE7D,OAAO;gBACL,WAAW;gBACX,WAAW;gBACX,SAAS,EAAE,YAAY,CAAC,SAAS,CAAC;aACnC,CAAC;SACH;KAAA;IAEK,kBAAkB,CACtB,WAA2B;;YAE3B,IAAI,CAAC,WAAW,EAAE;gBAChB,OAAO,IAAI,CAAC;aACb;YAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CACnD,WAAW,CAAC,GAAG,CAAC,EAAE,EAClB,WAAW,CAAC,UAAU,CACvB,CAAC;YAEF,uBACE,EAAE,EAAE,WAAW,CAAC,EAAE,EAClB,KAAK,EAAE,WAAW,CAAC,GAAG,CAAC,EAAE,IACtB,OAAO,EACV;SACH;KAAA;IAEK,aAAa,CACjB,EAAU,EACV,KAAa,EACb,MAA6B;;YAE7B,OAAO,EAAE;kBACL,IAAI,CAAC,iBAAiB,CAAC,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC;kBACzC,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAC,CAAC;SACrC;KAAA;IAEa,uBAAuB,CACnC,WAAkC;;YAElC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YAExD,MAAM,aAAa,GAAG,IAAI,CAAC,SAAS,CAClC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,EAAE,CAAC,CAClD,CAAC;YACF,MAAM,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACxC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,EAAE,CAAC,CAClD,CAAC;YAEF,MAAM,aAAa,GAA+B;;;gBAGhD,IAAI,EAAE,IAAI,eAAe,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC;aAClD,CAAC;YACF,MAAM,YAAY,GAAG,IAAI,CAAC,SAAS,CACjC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,aAAa,CAAC,CAC7D,CAAC;YAEF,OAAO;gBACL,QAAQ,EAAE,MAAM,CAAC,EAAE;gBACnB,aAAa;gBACb,mBAAmB;gBACnB,YAAY;aACb,CAAC;SACH;KAAA;IAEa,iBAAiB,CAC7B,WAAkC;;YAElC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,WAAW,CAAC,CAAC;YAE9D,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CACnE,WAAW,CACZ,CAAC;YAEF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAEpC;gBACD,QAAQ,EAAEL,2BAAyB;gBACnC,SAAS,EAAE;oBACT,KAAK,kCACA,KAAK,KACR,UAAU,EAAE,UAAU,EACtB,aAAa,EAAE,OAAO,CAAC,aAAa,EACpC,UAAU,EAAE,OAAO,CAAC,UAAU,EAC9B,OAAO,EAAE,IAAI,GACd;iBACF;aACF,CAAC,CAAC;YACH,OAAO,IAAI,CAAC,iBAAiB,CAAC,WAAW,CAAC;SAC3C;KAAA;IAEa,iBAAiB,CAC7B,EAAU,EACV,KAAa,EACb,WAAkC;;YAElC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,WAAW,CAAC,CAAC;YAE9D,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;YAE3E,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAEpC;gBACD,QAAQ,EAAEC,2BAAyB;gBACnC,SAAS,EAAE;oBACT,KAAK,kCACA,KAAK,KACR,EAAE;wBACF,UAAU,GACX;iBACF;aACF,CAAC,CAAC;YACH,OAAO,IAAI,CAAC,iBAAiB,CAAC,WAAW,CAAC;SAC3C;KAAA;IAEK,uBAAuB,CAAC,KAAK;;YACjC,OAAO,OAAO,CAAC,GAAG,CAChB,KAAK,CAAC,GAAG,CAAC,CAAO,IAAS;gBACxB,MAAM,EAAE,GAAG,IAAI,CAAC,IAAmB,CAAC;gBACpC,OAAO,MAAM,IAAI,CAAC,kBAAkB,CAAC,EAAE,CAAC,CAAC;aAC1C,CAAA,CAAC,CACH,CAAC;SACH;KAAA;IAEK,eAAe;;YACnB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAC1C,KAAK,EAAE,oBAAoB;aAC5B,CAAC,CAAC;YAEH,OAAO,MAAM,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC;SACpE;KAAA;IAEK,iBAAiB,CAAC,EAAU;;YAChC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC3C,QAAQ,EAAEI,2BAAyB;gBACnC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE;qBACH;iBACF;aACF,CAAC,CAAC;YAEH,OAAO,IAAI,CAAC,iBAAiB,CAAC,EAAE,CAAC;SAClC;KAAA;IAEK,OAAO;;YACX,MAAM,IAAI,CAAC,IAAI;iBACZ,IAAI,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,gBAAgB,EAAE,IAAI,EAAE;gBAClD,eAAe,EAAE,IAAI;gBACrB,YAAY,EAAE,MAAM;aACrB,CAAC;iBACD,SAAS,EAAE,CAAC;SAChB;KAAA;;;;YA/LF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;4CAGI,MAAM,SAAC,SAAS;YApCZ,UAAU;YAEV,eAAe;YAkBf,UAAU;YADV,cAAc;YAUd,eAAe;YARf,iBAAiB;;;MCDb,oBAAqB,SAAQ,WAAW;IAArD;;QAIE,0BAAqB,GAAG,KAAK,CAAC;KAC/B;CAAA;IAEW;AAAZ,WAAY,aAAa;;IAEvB,kCAAiB,CAAA;AACnB,CAAC,EAHW,aAAa,KAAb,aAAa,QAGxB;MAEY,QAAQ;CAIpB;MAEY,WAAW;CAgBvB;MAMY,WAAW;CAKvB;MAEY,cAAc;CAK1B;IAEW;AAAZ,WAAY,cAAc;IACxB,+BAAa,CAAA;IACb,+CAA6B,CAAA;IAC7B,+CAA6B,CAAA;AAC/B,CAAC,EAJW,cAAc,KAAd,cAAc;;AC1E1B;SAagB,eAAe,CAC7B,WAAW,EACX,SAA4B;IAE5B,MAAM,UAAU,GAAG,WAAW,CAAC,WAAW,CAAC,MAAM,CAC/C,CAAC,GAA4B,KAAK,GAAG,CAAC,IAAI,KAAK,qBAAqB,CACrE,CAAC;IAEF,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE;QACzB,MAAM,IAAI,mBAAmB,CAC3B,0BAA0B,SAAS,kCAAkC,UAAU,CAAC,MAAM,EAAE,CACzF,CAAC;KACH;IAED,OAAO,UAAU,CAAC,CAAC,CAAC,CAAC;AACvB,CAAC;SAEe,QAAQ,CAAC,GAAiB;IACxC,OAAO,eAAe,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;AACvC,CAAC;SAEe,WAAW,CAAC,GAAiB;IAC3C,OAAO,eAAe,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;AAC1C,CAAC;SAEe,YAAY,CAAC,GAAiB;IAC5C,OAAO,GAAG,CAAC,WAAW,CAAC,MAAM,CAC3B,CAAC,GAAG,KAAK,GAAG,CAAC,IAAI,KAAK,oBAAoB,CACf,CAAC;AAChC,CAAC;SAEe,WAAW,CAAC,WAAyB;IACnD,MAAM,SAAS,GAAG,YAAY,CAAC,WAAW,CAAC,CAAC;IAC5C,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE;QACxB,MAAM,IAAI,sBAAsB,CAC9B,iDAAiD,CAClD,CAAC;KACH;IACD,OAAO,SAAS,CAAC,CAAC,CAAC,CAAC;AACtB,CAAC;SAEe,IAAI,CAAC,KAAa;IAChC,OAAO;QACL,IAAI,EAAE,MAAM;QACZ,KAAK;KACN,CAAC;AACJ,CAAC;SAEe,cAAc,CAAC,KAAgB;;IAC7C,OAAO,OAAA,KAAK,CAAC,KAAK,0CAAE,KAAK,KAAI,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC;AAChD,CAAC;SAMe,QAAQ,CACtB,QAAkD,EAClD,GAAG,YAAmB;IAEtB,OAAO,GAAG,CAAC,QAAQ,EAAE,GAAG,YAAY,CAAyB,CAAC;AAChE;;ACvEO,MAAM,6BAA6B,GAAG,GAAG,CAAA;;;;;;;;;;;CAW/C,CAAC;AAEK,MAAM,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;;CASxC,CAAC;AAEK,MAAM,yBAAyB,GAAG,GAAG,CAAA;;;;;;;;CAQ3C,CAAC;AAOK,MAAM,+BAA+B,GAAG,QAAQ,CAAiC;;;;;;CAMvF,CAAC;AAOK,MAAM,iCAAiC,GAAG,QAAQ,CAAmC;;;;;;CAM3F;;IC7DW;AAAZ,WAAY,MAAM;IAChB,4CAAc,CAAA;IACd,sCAAc,CAAA;IACd,kEAA4B,CAAA;AAC9B,CAAC,EAJW,MAAM,KAAN,MAAM;;MC2BL,WAAW;IAQtB,YAC6B,MAAuB,EAC1C,IAAgB,EAChB,IAAU,EACV,SAAoB,EACpB,UAAsB,EACtB,IAAe;QALI,WAAM,GAAN,MAAM,CAAiB;QAC1C,SAAI,GAAJ,IAAI,CAAY;QAChB,SAAI,GAAJ,IAAI,CAAM;QACV,cAAS,GAAT,SAAS,CAAW;QACpB,eAAU,GAAV,UAAU,CAAY;QACtB,SAAI,GAAJ,IAAI,CAAW;QAbR,oBAAe,GAAG,qBAAqB,CAAC;QACxC,eAAU,GAAG,qBAAqB,CAAC;QAE5C,eAAU,GAAG,KAAK,CAAC;KAWvB;IAEI,UAAU;QAChB,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE;YACpB,MAAM,IAAI,mBAAmB,CAAC,gCAAgC,CAAC,CAAC;SACjE;KACF;IAEY,IAAI,CAAC,MAAwB;;YACxC,IAAI,IAAI,CAAC,UAAU,EAAE;gBACnB,MAAM,IAAI,mBAAmB,CAC3B,qIAAqI,CACtI,CAAC;aACH;YAED,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;;YAGvB,MAAM,mBACJ,SAAS,EAAE,IAAI,EACf,WAAW,EAAE,IAAI,EACjB,OAAO,EAAE,MAAM,CAAC,IAAI,EACpB,UAAU,EAAE,MAAM,CAAC,OAAO,EAC1B,oBAAoB,EAAE,MAAM,CAAC,mBAAmB,IAC7C,MAAM,CACV,CAAC;;YAGF,IAAI,MAAM,CAAC,UAAU,GAAG,IAAI,EAAE;gBAC5B,MAAM,IAAI,sBAAsB,CAC9B,4DAA4D,CAC7D,CAAC;aACH;YAED,IAAI,CAAC,SAAS,GAAG,MAAM,CAAC,SAAS,CAAC;YAClC,IAAI,CAAC,WAAW,GAAG,MAAM,CAAC,WAAW,CAAC;;;;;YAMtC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;;YAElC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;;YAExC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,wBAAwB,CAAC,CAAC;YAElD,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,MAAM,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC;YACjE,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,MAAM,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC;YAEnE,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC;gBAC5B,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;gBAC9B,IAAI,CAAC,KAAK,EAAE,CAAC;gBACb,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;aAC3D,CAAA,CAAC,CAAC;YACH,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,CAAC,SAAc,KAClD,OAAO,CAAC,GAAG,CAAC,mBAAmB,SAAS,WAAW,CAAC,CACrD,CAAC;;;;;;;;YASF,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,oBAAoB,CAAC,CAAC;YACrD,OAAO,CAAC,GAAG,CACT,+BAA+B,MAAM,CAAC,mBAAmB,UAAU,CACpE,CAAC;YAEF,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;;;YAIrD,MAAM,UAAU,GAAG,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YAC9D,IACE,UAAU;gBACV,QAAQ,CAAC,UAAU,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,EACrE;gBACA,IAAI,CAAC,KAAK,EAAE,CAAC;gBACb,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;aAC3D;SACF;KAAA;IAEY,aAAa;;;YAKxB,MAAM,WAAW,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAAC;YAE5E,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,IAAI;iBACpC,IAAI,CAAkB,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,iBAAiB,EAAE,IAAI,EAAE;gBACpE,eAAe,EAAE,IAAI;gBACrB,OAAO,EAAE;oBACP,aAAa,EAAE,UAAU,WAAW;yBACjC,oBAAoB,EAAE;yBACtB,cAAc,EAAE;yBAChB,WAAW,EAAE,EAAE;iBACnB;aACF,CAAC;iBACD,SAAS,EAAE,CAAC;YAEf,OAAO;gBACL,eAAe;gBACf,mBAAmB,EACjB,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE;oBACnB,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE;oBACtB,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE;aAC5B,CAAC;SACH;KAAA;IAEY,gBAAgB,CAAC,SAAc;;;;;;;YAM1C,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;;YAG3D,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,CAAC,SAAS,EAAE,mBAAmB,CAAC,CAAC;YAEvE,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;SACpC;KAAA;IAEa,MAAM;;YAClB,OAAO,CAAC,GAAG,CACT,iCAAiC,IAAI,CAAC,GAAG,EAAE,sBAAsB,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,UAAU,CACrG,CAAC;;YAGF,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;;YAG3D,MAAM,IAAI,CAAC,UAAU,CAAC,+BAA+B,CAAC,mBAAmB,CAAC,CAAC;YAE3E,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;SAC/D;KAAA;IAEY,KAAK;;YAChB,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE;gBACpB,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;aACnB;YAED,IAAI,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,EAAE;gBACzB,OAAO;aACR;;YAGD,MAAM,IAAI,CAAC,MAAM,EAAE,CAAC;YAEpB,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;SACnB;KAAA;IAEM,IAAI;QACT,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;QACjB,IAAI,CAAC,KAAK,EAAE,CAAC;KACd;IAEO,KAAK;QACX,YAAY,CAAC,UAAU,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAC9C,YAAY,CAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;KAC1C;;;;YAtLF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;4CAUI,MAAM,SAAC,SAAS;YA3BZ,UAAU;YARV,IAAI;YACJ,SAAS;YACT,UAAU;YAUV,SAAS;;;ACWlB;AACA,MAAMR,QAAM,GAAG,OAAO,CAAC;MAyBV,aAAa;CAIzB;MAKY,eAAe;IAG1B,YAC6B,MAAuB,EAC1C,IAAgB,EAChB,MAAuB,EACvB,IAAe,EACf,cAA8B,EAC9B,UAAe,EACf,iBAAoC,EACpC,QAAyB,EACzB,gBAAkC,EAClC,WAAwB;QATL,WAAM,GAAN,MAAM,CAAiB;QAC1C,SAAI,GAAJ,IAAI,CAAY;QAChB,WAAM,GAAN,MAAM,CAAiB;QACvB,SAAI,GAAJ,IAAI,CAAW;QACf,mBAAc,GAAd,cAAc,CAAgB;QAC9B,eAAU,GAAV,UAAU,CAAK;QACf,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,aAAQ,GAAR,QAAQ,CAAiB;QACzB,qBAAgB,GAAhB,gBAAgB,CAAkB;QAClC,gBAAW,GAAX,WAAW,CAAa;QAZjB,wBAAmB,GAAG,EAAE,CAAC;KAatC;IAES,aAAa,CAAC,QAAgB;;YACzC,MAAM,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC;YAElD,OAAO;gBACL,MAAM,EAAE,QAAQ,CAAC,MAAM;gBACvB,WAAW,EAAEA,QAAM,CAAC,QAAQ,CAAC,EAAE,KAAK,EAAE,CAAC;gBACvC,eAAe,EAAE,MAAM,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC;aACvD,CAAC;SACH;KAAA;IAEY,gBAAgB,CAAC,QAAgB;;YAC5C,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,YAAY,CAC3D,OAAO,EACP,QAAQ,CACT,CAAC;YACF,MAAM,UAAU,GAAG,YAAY,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YAEhD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,IAAI;iBAC7B,GAAG,CAAC,wCAAwC,UAAU,EAAE,EAAE;gBACzD,YAAY,EAAE,MAAM;aACrB,CAAC;iBACD,SAAS,EAAE,CAAC;YAEf,MAAM,OAAO,GAAG,IAAI,MAAM,CACxB,OAAO,YAAY,CAAC,SAAS,CAAC,CAAC,CAAC,mBAAmB,EACnD,IAAI,CACL,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAEjB,IAAI,OAAO,EAAE;gBACX,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC;aAC9B;YACD,OAAO,CAAC,CAAC;SACV;KAAA;IAEM,gBAAgB,CAAC,OAAgB;QACtC,OAAQ,OAAO,CAAC,MAAM,CAAC,IAAI,CAAS,CAAC,CAAC,CAAC;KACxC;IAEY,mBAAmB,CAAC,QAAgB;;YAC/C,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAClE,MAAM,OAAO,GAAG,CACd,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACjC,QAAQ,IACL,aAAa,EAChB,EACF,GAAG,CAAC;YAEN,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAClE,MAAM,OAAO,GAAG,CACd,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACjC,QAAQ,IACL,aAAa,EAChB,EACF,GAAG,CAAC;YAEN,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YAEjE,MAAM,yBAAyB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACpE,OAAO,EACP,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,CAC7B,CAAC;;;;;YAOF,OAAO;gBACL,aAAa;gBACb,OAAO;gBACP,aAAa;gBACb,OAAO;gBACP,eAAe;gBACf,yBAAyB;aAC1B,CAAC;SACH;KAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;IA6BY,eAAe;;YAC1B,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAClE,MAAM,QAAQ,GAAGA,QAAM,CAAC,oBAAoB,CAAC,QAAQ,CAAC,CAAC;YACvD,MAAM,UAAU,GAAGA,QAAM,CAAC,oBAAoB,CAAC,UAAU,CAAC,CAAC;YAC3D,MAAM,QAAQ,GAAGA,QAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;YAC5D,MAAM,OAAO,GAAG,QAAQ,CAAC,SAAS,EAAE,CAAC;YACrC,IAAI,OAAO,GAAG,oBAAoB,CAAC,iBAAiB,EAAE;gBACpD,OAAO,IAAI,CAAC;aACb;iBAAM;gBACL,OAAO,KAAK,CAAC;aACd;SACF;KAAA;IAEY,cAAc,CAAC,QAAgB,EAAE,WAAmB;;YAC/D,MAAM,WAAW,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAAC;;;;YAK5E,IAAI,QAAQ,KAAK,WAAW,EAAE;gBAC5B,MAAM,IAAI,sBAAsB,CAC9B,8CAA8C,CAC/C,CAAC;aACH;YAED,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,cAAc,EAAE,CAAC;YAEnE,MAAM,EAAE,OAAO,EAAE,eAAe,EAAE,GAAG,MAAM,IAAI,CAAC,cAAc,CAC5D,QAAQ,EACR,WAAW,CACZ,CAAC;;;;;YAOF,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,WAAW,CAAC,CAAC;;YAG/D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAC1C,WAAW,CAAC,cAAc,CAAC,SAAS,CAAC,EAAE,CACxC,CAAC;YACF,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC9D,UAAU,CAAC,OAAO,EAClB,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAC3B,CAAC;;;;;YAOF,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAC/D,eAAe,EACf,WAAW,CAAC,cAAc,CAAC,SAAS,CAAC,EAAE,EACvC,mBAAmB,EACnB,UAAU,CACX,CAAC;;;;;;YAQF,MAAM,IAAI,CAAC,IAAI,CAAC,cAAc,CAC5B,WAAW,EACX,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,EAC9B,IAAI,CAAC,gBAAgB,CAAC,UAAU,CAAC,OAAO,CAAC,CAC1C,CAAC;;;;;;;YASF,MAAM,IAAI,CAAC,sBAAsB,CAC/B,WAAW,CAAC,oBAAoB,EAAE,CAAC,cAAc,EAAE,CAAC,WAAW,EAAE,EACjE,IAAI,EACJ,KAAK,CACN,CAAC;SACH;KAAA;IAEY,sBAAsB,CACjC,WAAmB,EACnB,cAAuB,EACvB,QAAgB,IAAI;;YAEpB,OAAO,IAAI,CAAC,IAAI;iBACb,IAAI,CACH,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,iCAAiC,kBAErD,gBAAgB,EAAE,cAAc,KAC5B,KAAK,IAAI,EAAE,KAAK,EAAE,IAExB;gBACE,OAAO,EAAE;oBACP,aAAa,EAAE,UAAU,WAAW,EAAE;iBACvC;aACF,CACF;iBACA,SAAS,EAAE,CAAC;SAChB;KAAA;IAEa,cAAc,CAC1B,OAAgB,EAChB,UAAkB;;YAElB,IAAI;gBACF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;gBAC1E,OAAOC,iBAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;aAC3B;YAAC,OAAO,KAAK,EAAE;gBACd,MAAM,IAAI,eAAe,CAAC,wBAAwB,CAAC,CAAC;aACrD;SACF;KAAA;IAEa,cAAc,CAC1B,QAAgB,EAChB,WAA2B;;;YAG3B,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAC9C;gBACE,QAAQ,EAAE,6BAA6B;gBACvC,SAAS,EAAE,EAAE;aACd,CACF,CAAC;;YAGF,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACvD,QAAQ,IACL,WAAW,CAAC,cAAc,CAAC,OAAO,CAAC,aAAa,EACnD,CAAC;YAEH,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,CAC3C,aAAa,CAAC,GAAG,EACjB,WAAW,CAAC,cAAc,CAAC,OAAO,CAAC,yBAAyB,CAC7D,CAAC;;;YAIF,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;YAE3E,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,WAAW,EAAE;gBACrE,WAAW,EAAE,eAAe,CAAC,qBAAqB,CAAC,SAAS,CAAC,WAAW;gBACxE,WAAW;aACZ,CAAC,CAAC;YAEH,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACvD,QAAQ,IACL,WAAW,CAAC,cAAc,CAAC,OAAO,CAAC,aAAa,EACnD,CAAC;YAEH,OAAO;gBACL,OAAO,EAAE,aAAa,CAAC,GAAG;gBAC1B,eAAe;aAChB,CAAC;SACH;KAAA;IAEa,sBAAsB,CAClC,eAAqC,EACrC,WAAmB,EACnB,mBAA2B,EAC3B,aAA4B;;YAE5B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAyB;gBAChE,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,eAAe,EAAE,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC;wBAChD,WAAW;wBACX,mBAAmB,EAAE,IAAI,CAAC,SAAS,CAAC,mBAAmB,CAAC;wBACxD,UAAU,EAAE;4BACV,aAAa,EAAE,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,aAAa,CAAC;4BAC1D,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAChC,aAAa,CAAC,eAAe,CAAC,MAAM,EAAE,CACvC;4BACD,yBAAyB,EAAE,IAAI,CAAC,SAAS,CACvC,aAAa,CAAC,yBAAyB,CACxC;4BACD,aAAa,EAAE,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,aAAa,CAAC;yBAC3D;qBACF;iBACF;aACF,CAAC,CAAC;YACH,OAAO;gBACL,KAAK,EAAE,QAAQ,CAAC,cAAc,CAAC,KAAK;gBACpC,YAAY,EAAE,QAAQ,CAAC,cAAc,CAAC,UAAU,CAAC,EAAE;aACpD,CAAC;SACH;KAAA;IAEK,uBAAuB;;YAC3B,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,KAAK,CAAM;gBACvC,KAAK,EAAE,yBAAyB;aACjC,CAAC,CAAC;YAEH,MAAM,GAAG,GAAG,GAAG,CAAC,oBAA4C,CAAC;YAE7D,GAAG,CAAC,QAAQ,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACtC,GAAG,CAAC,UAAU,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;YAC1C,OAAO,GAAG,CAAC;SACZ;KAAA;IAEM,gBAAgB,CAAC,QAAQ;QAC9B,MAAM,KAAK,GAAG,QAAQ,CAAC;QACvB,MAAM,KAAK,GAAG,QAAQ,CAAC;QACvB,MAAM,KAAK,GAAG,QAAQ,CAAC;QAEvB,MAAM,YAAY,GAAG,EAAE,CAAC;QACxB,MAAM,YAAY,GAAG,EAAE,CAAC;QACxB,MAAM,YAAY,GAAG,EAAE,CAAC;QACxB,MAAM,cAAc,GAAG,EAAE,CAAC;QAE1B,SAAS,aAAa,CAAC,GAAG,EAAE,EAAE;YAC5B,OAAO,CAAC,CAAC,GAAG,IAAI,EAAE,EAAE,KAAK,CAAC,EAAE,CAAC,IAAI,EAAE,EAAE,MAAM,CAAC;SAC7C;QAED,MAAM,MAAM,GAAG,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QAC9C,MAAM,MAAM,GAAG,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QAC9C,MAAM,MAAM,GAAG,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QAC9C,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,CAAC;QAE5D,IAAI,OAAO,GAAG,CAAC,CAAC;QAChB,IAAI,MAAM,EAAE;YACV,OAAO,IAAI,YAAY,CAAC;SACzB;QACD,IAAI,MAAM,EAAE;YACV,OAAO,IAAI,YAAY,CAAC;SACzB;QACD,IAAI,MAAM,EAAE;YACV,OAAO,IAAI,YAAY,CAAC;SACzB;QACD,IAAI,QAAQ,EAAE;YACZ,OAAO,IAAI,cAAc,CAAC;SAC3B;QAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE;YACzB,OAAO;gBACL,KAAK,EAAE,CAAC;;gBAER,IAAI,EAAE,CAAC;aACR,CAAC;SACH;QAED,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;QAExD,MAAM,KAAK,GACT,CAAC,KAAK,GAAG,YAAY;YACrB,IAAI,CAAC,GAAG,CAAC,YAAY,GAAG,YAAY,GAAG,YAAY,EAAE,EAAE,CAAC,CAAC;QAC3D,OAAO;YACL,KAAK;;YAEL,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;SAC1C,CAAC;KACH;;;;YA5XF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;4CAKI,MAAM,SAAC,SAAS;YA/DZ,UAAU;YAUV,eAAe;YAPf,SAAS;YAET,cAAc;YAiBOA,iBAAG;YAhBxB,iBAAiB;YACjB,eAAe;YAUf,gBAAgB;YAIhB,WAAW;;;AC2CpB,MAAM,6BAA6B,GAAG,QAAQ,CAAqC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAqDjF,CAAC;AASI,MAAM,2BAA2B,GAAG,QAAQ,CAAmC;;;;;;;;;;EAUpF,6BAA6B;CAC9B,CAAC;AAKK,MAAM,0BAA0B,GAAG,QAAQ,CAAkC;;;;;;EAMlF,6BAA6B;CAC9B,CAAC;AAOK,MAAM,oCAAoC,GAAG,QAAQ,CAA4C;;;;;EAKtG,CAAC;AAOI,MAAM,oCAAoC,GAAG,QAAQ,CAA4C;;;;;;;EAOtG,CAAC;AAOI,MAAM,yCAAyC,GAAG,QAAQ,CAAiD;;;;;;;EAOhH,CAAC;AAOI,MAAM,sCAAsC,GAAG,QAAQ,CAA8C;;;;;;;EAO1G,CAAC;AASI,MAAM,qCAAqC,GAAG,QAAQ,CAA6C;;;;;;;;;EASxG,CAAC;AASI,MAAM,oCAAoC,GAAG,QAAQ,CAA4C;;;;;;;;;EAStG,CAAC;AA2CI,MAAM,wBAAwB,GAAG,QAAQ,CAAgC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAyC9E,CAAC;AA4CI,MAAM,oBAAoB,GAAG,QAAQ,CAA4B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAyCtE,CAAC;AASI,MAAM,6BAA6B,GAAG,QAAQ,CAAqC;;;;;;;EAOxF,CAAC;AAOI,MAAM,6BAA6B,GAAG,QAAQ,CAAqC;;;;;EAKxF,CAAC;AASI,MAAM,6BAA6B,GAAG,QAAQ,CAAqC;;;;;;;EAOxF;;ACpcF;AACA;AAEA;SACgB,kBAAkB,CAAC,MAAa;IAC9C,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;QAC1B,MAAM,IAAI,KAAK,CAAC,WAAW,CAAC,CAAC;KAC9B;IACD,IAAI,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,KAAK,KAAK,aAAL,KAAK,uBAAL,KAAK,CAAE,IAAI,CAAC,EAAE;QACvC,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAChC,OAAO,GAAG,CAAC;KACZ;SAAM;QACL,OAAO,MAAM,CAAC;KACf;AACH,CAAC;AAED,SAAS,KAAK,CAAC,GAAG,EAAE,MAAM;IACxB,MAAM,GAAG,GAAG,EAAE,CAAC;IACf,KAAK,MAAM,CAAC,CAAC,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE;QACjD,GAAG,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;KACtB;IACD,OAAO,GAAG,CAAC;AACb,CAAC;SAEe,iBAAiB,CAC/B,GAAW;AACX;AACA;AACA,QAAsE;IAEtE,MAAM,MAAM,GAAG,kBAAkB,CAC/B,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,KAAK,QAAQ,CAAC,KAAK,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CACrE,CAAC;IAEF,IAAI,MAAM,CAAC,IAAI,EAAE;QACf,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC,cAAc,KAAK,KAAK,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC,CAAC;KACpE;SAAM;QACL,OAAO,KAAK,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;KAC3B;AACH,CAAC;SAEe,cAAc,CAC5B,GAAW;AACX;AACA;AACA;AACA;AACA,QAAuE;IAEvE,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CACxB,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,KACnC,QAAQ,GAAG,QAAQ,CAAC,KAAK,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,KAAK,CAC7C,CACF,CAAC;IAEF,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC,cAAc,KAAK,KAAK,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC,CAAC;AACrE;;AC9BA;;;;;;AAMO,MAAM,eAAe,GAAG;IAC7B,aAAa;IACb,aAAa;IACb,UAAU;IACV,WAAW;IACX,oBAAoB;IACpB,uBAAuB;IACvB,iBAAiB;IACjB,oBAAoB;IACpB,aAAa;CACd,CAAC;AAEF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;SACgB,iBAAiB,CAAC,EAChC,UAAU,EACV,iBAAiB,GAAG,IAAI,EACxB,cAAc,GAAG,EAAE,EACnB,YAAY,GAAG,IAAI,GACK;IACxB,OAAO,CAAC,MAAW;QACjB,SAAS,GAAG,CAAC,QAAQ,EAAE,IAAI;YACzB,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE;gBACrB,MAAM,IAAI,mBAAmB,CAC3B,6CAA6C,MAAM,CAAC,IAAI,qBAAqB,UAAU,EAAE,CAC1F,CAAC;aACH;;YAED,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC,iBAAiB,CAAC,MAChD,QAAQ,CAAC,KAAK,CAAC,IAAI,EAAE,IAAI,CAAC,CAC3B,CAAC;YAEF,IAAI,iBAAiB,KAAI,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,IAAI,CAAA,EAAE;;;gBAGrC,OAAO,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;aAChC;iBAAM;gBACL,OAAO,MAAM,CAAC;aACf;SACF;;;QAID,cAAc,GAAG,CAAC,GAAG,cAAc,EAAE,GAAG,eAAe,CAAC,CAAC;QAEzD,MAAM,OAAO,GAAG,MAAM,CAAC,mBAAmB,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAE7D,OAAO;aACJ,MAAM,CAAC,CAAC,MAAM,KAAK,CAAC,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;aACpD,OAAO,CAAC,CAAC,MAAM;;;;;YAKd,IACE,YAAY;gBACZ,MAAM,CAAC,wBAAwB,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,GAAG,EAC7D;gBACA,MAAM,QAAQ,GAAG,MAAM,CAAC,wBAAwB,CAC9C,MAAM,CAAC,SAAS,EAChB,MAAM,CACP,CAAC,GAAG,CAAC;gBAEN,MAAM,CAAC,cAAc,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE;oBAC9C,GAAG,CAAC,GAAG,IAAI;wBACT,OAAO,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,CAAC;qBAC1C;iBACF,CAAC,CAAC;aACJ;YAED,IAAI,OAAO,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,KAAK,UAAU,EAAE;gBAClD,MAAM,QAAQ,GAAG,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;gBAE1C,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,GAAG,UAAS,GAAG,IAAI;oBACzC,OAAO,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,CAAC;iBAC1C,CAAC;aACH;SACF,CAAC,CAAC;QAEL,OAAO,MAAM,CAAC;KACf,CAAC;AACJ;;MCjHa,uBAAuB,GAAqB;IACvD,OAAO,EAAE,IAAI;EACb;SA+BoB,iBAAiB,CACrC,KAAuB,EACvB,WAAiD;;QAEjD,uCACK,KAAK,KACR,KAAK,EAAE,MAAM,OAAO,CAAC,GAAG,CACtB,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAO,IAAI;gBAAK,wCAC3B,IAAI,KACP,IAAI,EAAE,MAAM,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,KAClC;cAAA,CAAC,CACJ,IACD;KACH;CAAA;IAQY,uBAAuB,SAAvB,uBAAuB;IAClC,YAAoB,MAAc,EAAU,QAAyB;QAAjD,WAAM,GAAN,MAAM,CAAQ;QAAU,aAAQ,GAAR,QAAQ,CAAiB;KAAI;IAEzE,MAAM,CAAC,UAA+B;QACpC,OAAO,CAAO,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE;YACvC,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE;gBAClC,KAAK,GAAG,MAAM,SAAS,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC,CAAC;aACtD;YACD,OAAO,KAAK,CAAC;SACd,CAAA,CAAC;KACH;IAED,sBAAsB,CAAC,EACrB,cAAc,EACd,eAAe,GAAG,MAAM,MACK,EAAE;QAC/B,MAAM,aAAa,GAAG,cAAc,GAAG,eAAe,CAAC;QAEvD,OAAO,CAAC,EAAE,KAAK,EAAE;YACf,IAAI,KAAK,CAAC,cAAc,CAAC,IAAI,IAAI,IAAI,aAAa,IAAI,KAAK,EAAE;;;;;;gBAM3D,OAAO,KAAK,CAAC;aACd;YAED,IAAI;gBACF,uCACK,KAAK,KACR,CAAC,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,IAClD;aACH;YAAC,OAAO,KAAK,EAAE;gBACd,OAAO,KAAK,CAAC;aACd;SACF,CAAC;KACH;IAED,uBAAuB,CAAC,EACtB,eAAe,EACf,gBAAgB,GAAG,WAAW,EAC9B,QAAQ,GAAG,IAAI,MACe,EAAE;QAChC,MAAM,cAAc,GAAG,eAAe,GAAG,gBAAgB,CAAC;QAE1D,OAAO,CAAO,MAAM;;YAClB,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,MAAM,CAAC;;YAG3C,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE;gBACpB,OAAO,KAAK,CAAC;aACd;YAED,MAAM,WAAW,GAAG,KAAK,CAAC,eAAe,CAAC,CAAC;;YAG3C,IAAI,CAAC,WAAW,IAAI,cAAc,IAAI,KAAK,EAAE;gBAC3C,OAAO,KAAK,CAAC;aACd;YAED,MAAM,KAAK,GAAG,QAAQ;kBAClB,MAAM,QAAQ,CAAC,MAAM,CAAC;kBACtB,KAAK,CAAC,KAAK,WAAI,KAAK,CAAC,GAAG,0CAAE,EAAE,CAAA,CAAC;YAEjC,IAAI,CAAC,KAAK,EAAE;gBACV,MAAM,SAAS,GAAG,QAAQ,GAAG,QAAQ,GAAG,iBAAiB,CAAC;gBAC1D,MAAM,IAAI,mBAAmB,CAC3B,mCAAmC,SAAS,WAAW,OAAO,CAAC,IAAI,CAAC,IAAI,CACtE,GAAG,CACJ,EAAE,CACJ,CAAC;aACH;YAED,OAAO,IAAI,CAAC,QAAQ;iBACjB,iBAAiB,CAAC,KAAK,EAAE,WAAW,CAAC;iBACrC,IAAI,CAAC,CAAC,KAAK,sCACP,KAAK,KACR,CAAC,cAAc,GAAG,KAAK,IACvB,CAAC,CAAC;SACP,CAAA,CAAC;KACH;EACF;;;YArFA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAhEoB,MAAM;YAElB,eAAe;;AA+DX,uBAAuB;IANnC,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,uBAAuB,CAkFnC;;ICvHY,+BAA+B,SAA/B,+BAA+B;IAC1C,YAAoB,MAAc,EAAU,QAAyB;QAAjD,WAAM,GAAN,MAAM,CAAQ;QAAU,aAAQ,GAAR,QAAQ,CAAiB;KAAI;IAEnE,8BAA8B,CAClC,IAA6B;;;YAE7B,MAAM,GAAG,GAAG,OAAA,IAAI,CAAC,GAAG,0CAAE,EAAE,MAAK,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;YAEtE,MAAM,GAAG,qBACJ,IAAI,CACR,CAAC;YAEF,IAAI,GAAG,IAAI,IAAI,CAAC,SAAS,EAAE;gBACzB,GAAG,CAAC,SAAS,GAAG,MAAM,OAAO,CAAC,GAAG,CAC/B,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,QAAQ,KAC1B,IAAI,CAAC,sCAAsC,CAAC,QAAQ,EAAE,GAAG,CAAC,CAC3D,CACF,CAAC;aACH;YAED,OAAO,GAAG,CAAC;;KACZ;IAEa,sCAAsC,CAClD,QAAyC,EACzC,GAAQ;;YAER,MAAM,GAAG,qBACJ,QAAQ,CACZ,CAAC;YAEF,IAAI,QAAQ,CAAC,cAAc,EAAE;gBAC3B,GAAG,CAAC,uBAAuB,GAAG,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAC3D,GAAG,EACH,QAAQ,CAAC,cAAc,CACxB,CAAC;aACH;YAED,IAAI,QAAQ,CAAC,gCAAgC,EAAE;gBAC7C,GAAG,CAAC,yCAAyC,GAAG,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAC7E,GAAG,EACH,QAAQ,CAAC,gCAAgC,CAC1C,CAAC;aACH;YACD,OAAO,GAAG,CAAC;SACZ;KAAA;IAED,gCAAgC;QAC9B,OAAO,CAAO,EACZ,KAAK,GACmB;YACxB,MAAM,GAAG,qBACJ,KAAK,CACT,CAAC;YAEF,IAAI,KAAK,CAAC,QAAQ,EAAE;gBAClB,IAAI,KAAK,CAAC,OAAO,IAAI,IAAI,EAAE;oBACzB,MAAM,IAAI,qBAAqB,CAC7B,gHAAgH,CACjH,CAAC;iBACH;gBAED,GAAG,CAAC,QAAQ,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAC7C,KAAK,CAAC,QAAQ,EACd,KAAK,CAAC,OAAO,CACd,CAAC;aACH;YAED,OAAO,GAAG,CAAC;SACZ,CAAA,CAAC;KACH;IAEa,qBAAqB,CACjC,QAAwB,EACxB,OAAgB;;;;YAIhB,MAAM,EACJ,UAAU,EACV,WAAW,EACX,kBAAkB,EAClB,aAAa,GACd,GAAG,QAAQ,CAAC;YAEb,MAAM,GAAG,mCACJ,QAAQ,KACX,aAAa,EAAE,MAAM,iBAAiB,CAAC,aAAa,EAAE,CAAC,IAAI,KACzD,IAAI,CAAC,wBAAwB,CAAC,IAAI,EAAE,UAAU,CAAC,EAAE,EAAE,OAAO,CAAC,CAC5D,GACF,CAAC;YAEF,IAAI,CAAC,OAAO,EAAE;gBACZ,IAAI,kBAAkB,EAAE;oBACtB,GAAG,CAAC,2BAA2B,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CACrE,WAAW,CAAC,EAAE,EACd,kBAAkB,CACnB,CAAC;iBACH;aACF;YAED,OAAO,GAAG,CAAC;SACZ;KAAA;IAEa,wBAAwB,CACpC,WAA8B,EAC9B,YAAgB,EAChB,OAAgB;;YAEhB,MAAM,EAAE,iBAAiB,EAAE,SAAS,EAAE,GAAG,WAAW,CAAC;;;;;;;;;;;;;YAcrD,MAAM,GAAG,mCACJ,WAAW,KACd,SAAS,EAAE,MAAM,iBAAiB,CAAC,SAAS,EAAE,CAAC,IAAI,KACjD,IAAI,CAAC,6BAA6B,CAAC,IAAI,EAAE,OAAO,CAAC,CAClD,GACF,CAAC;YAEF,IAAI,CAAC,OAAO,EAAE;gBACZ,IAAI,iBAAiB,EAAE;oBACrB,GAAG,CAAC,0BAA0B,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CACpE,YAAY,EACZ,iBAAiB,CAClB,CAAC;iBACH;aACF;YAED,OAAO,GAAG,CAAC;SACZ;KAAA;IAEa,6BAA6B,CACzC,QAAgC,EAChC,OAAgB;;YAEhB,OAAO,QAAQ,CAAC;SACjB;KAAA;EACF;;;YAvJA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA3BoB,MAAM;YAClB,eAAe;;AA2BX,+BAA+B;IAN3C,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,+BAA+B,CAoJ3C;;AC/JD,SAAS,UAAU,CAAC,OAAyB,EAAE,GAAW;IACxD,uCACK,OAAO,KACV,IAAI,EAAE,CAAC,GAAG,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,IAC5B;AACJ,CAAC;IAQY,qBAAqB,SAArB,qBAAqB;IAIhC,YACU,MAAc,EACd,UAAsB,EACtB,MAA+B,EAC/B,aAA8C;QAH9C,WAAM,GAAN,MAAM,CAAQ;QACd,eAAU,GAAV,UAAU,CAAY;QACtB,WAAM,GAAN,MAAM,CAAyB;QAC/B,kBAAa,GAAb,aAAa,CAAiC;QAP/C,aAAQ,GAAG,YAAY,CAAC;QACzB,eAAU,GAAyC,EAAE,CAAC;QAQ5D,IAAI,CAAC,iBAAiB,CACpB,eAAe,EACf,MAAM,CAAC,MAAM,CAAC;YACZ,MAAM,CAAC,sBAAsB,CAAC;gBAC5B,cAAc,EAAE,WAAW;aAC5B,CAAC;YACF,MAAM,CAAC,uBAAuB,CAAC;gBAC7B,eAAe,EAAE,YAAY;aAC9B,CAAC;SACH,CAAC,CACH,CAAC;QACF,IAAI,CAAC,iBAAiB,CACpB,eAAe,EACf,MAAM,CAAC,MAAM,CAAC;YACZ,MAAM,CAAC,sBAAsB,CAAC;gBAC5B,cAAc,EAAE,WAAW;aAC5B,CAAC;YACF,MAAM,CAAC,uBAAuB,CAAC;gBAC7B,eAAe,EAAE,YAAY;aAC9B,CAAC;SACH,CAAC,CACH,CAAC;QACF,IAAI,CAAC,iBAAiB,CACpB,iBAAiB,EACjB,MAAM,CAAC,uBAAuB,CAAC;YAC7B,eAAe,EAAE,YAAY;SAC9B,CAAC,CACH,CAAC;QACF,IAAI,CAAC,iBAAiB,CACpB,uBAAuB,EACvB,MAAM,CAAC,MAAM,CAAC;YACZ,MAAM,CAAC,sBAAsB,CAAC;gBAC5B,cAAc,EAAE,gBAAgB;aACjC,CAAC;YACF,MAAM,CAAC,uBAAuB,CAAC;gBAC7B,eAAe,EAAE,iBAAiB;gBAClC,QAAQ,EAAE,CAAC,EAAE,KAAK,EAAE;oBAClB,OAAO,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC;iBAC1B;aACF,CAAC;YACF,MAAM,CAAC,uBAAuB,CAAC;gBAC7B,eAAe,EAAE,oBAAoB;gBACrC,QAAQ,EAAE,CAAC,EAAE,KAAK,EAAE;oBAClB,OAAO,KAAK,CAAC,WAAW,CAAC,EAAE,CAAC;iBAC7B;aACF,CAAC;YACF,MAAM,CAAC,uBAAuB,CAAC;gBAC7B,eAAe,EAAE,kBAAkB;gBACnC,QAAQ,EAAE,CAAC,EAAE,KAAK,EAAE,KAAK,KAAK,CAAC,SAAS,CAAC,EAAE;aAC5C,CAAC;SACH,CAAC,CACH,CAAC;QACF,IAAI,CAAC,iBAAiB,CACpB,qBAAqB,EACrB,IAAI,CAAC,aAAa,CAAC,gCAAgC,EAAE,CACtD,CAAC;QACF,IAAI,CAAC,iBAAiB,CACpB,2BAA2B,EAC3B,MAAM,CAAC,MAAM,CAAC;YACZ,MAAM,CAAC,uBAAuB,CAAC;gBAC7B,eAAe,EAAE,0BAA0B;gBAC3C,QAAQ,EAAE,CAAC,EAAE,KAAK,EAAE,KAAK,KAAK,CAAC,SAAS,CAAC,EAAE;aAC5C,CAAC;YACF,MAAM,CAAC,uBAAuB,CAAC;gBAC7B,eAAe,EAAE,gCAAgC;gBACjD,QAAQ,EAAE,CAAC,EAAE,KAAK,EAAE,KAAK,KAAK,CAAC,SAAS,CAAC,EAAE;aAC5C,CAAC;SACH,CAAC,CACH,CAAC;QACF,IAAI,CAAC,iBAAiB,CACpB,0BAA0B,EAC1B,MAAM,CAAC,MAAM,CAAC;YACZ,MAAM,CAAC,uBAAuB,CAAC;gBAC7B,eAAe,EAAE,kBAAkB;gBACnC,QAAQ,EAAE,CAAC,EAAE,KAAK,EAAE,KAAK,KAAK,CAAC,SAAS,CAAC,EAAE;aAC5C,CAAC;SACH,CAAC,CACH,CAAC;KACH;IAEK,YAAY,CAChB,MAA8B,EAC9B,OAAyB;;YAEzB,OAAO,mCACF,uBAAuB,GACvB,OAAO,CACX,CAAC;;YAGF,MAAM,GAAG,GAAG,iBAAiB,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,GAAG,KAC/C,IAAI,CAAC,YAAY,CAAC;gBAChB,KAAK;gBACL,OAAO,EAAE;oBACP,IAAI,EAAE,CAAC,GAAG,CAAC;oBACX,eAAe,EAAE,IAAI;iBACtB;gBACD,OAAO;aACR,CAAC,CACH,CAAC;YACF,OAAO,GAAG,CAAC;SACZ;KAAA;;;;;;IAOa,YAAY,CAAC,EACzB,KAAK,EACL,OAAO,EACP,OAAO,GACiB;;YACxB,IAAI,KAAK,aAAL,KAAK,uBAAL,KAAK,CAAE,IAAI,EAAE;gBACf,MAAM,IAAI,mBAAmB,CAC3B,6CAA6C,CAC9C,CAAC;aACH;YAED,IAAI,KAAK,IAAI,IAAI,EAAE;gBACjB,OAAO,IAAI,CAAC;aACb;YAED,MAAM,SAAS,GAA4B;gBACzC,KAAK;gBACL,OAAO,kCACF,OAAO;;oBAEV,eAAe,EAAE,IAAI,GACtB;gBACD,OAAO;aACR,CAAC;;;YAIF,IAAI,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE;;gBAExB,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;gBACxD,IAAI,SAAS,EAAE;;oBAEb,KAAK,GAAG,SAAS,CAAC,SAAS,CAAC,CAAC;iBAC9B;gBAED,MAAM,eAAe,GAAG,CAAC,UAAU;oBACjC,IACE,OAAO,CAAC,eAAe;wBACvB,UAAU,KAAK,IAAI;wBACnB,OAAO,UAAU,KAAK,QAAQ,EAC9B;wBACA,OAAO,iBAAiB,CAAC,UAAU,EAAE,CAAC,CAAC,EAAE,GAAG,KAC1C,IAAI,CAAC,YAAY,CAAC;4BAChB,KAAK,EAAE,CAAC;4BACR,OAAO,EAAE,UAAU,CAAC,OAAO,EAAE,GAAG,CAAC;4BACjC,OAAO;yBACR,CAAC,CACH,CAAC;qBACH;yBAAM;wBACL,OAAO,UAAU,CAAC;qBACnB;iBACF,CAAC;;gBAGF,IAAI,KAAK,CAAC,IAAI,EAAE;;oBAEd,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,aAAa;wBAC/B,OAAO,eAAe,CAAC,aAAa,CAAC,CAAC;qBACvC,CAAC,CAAC;iBACJ;qBAAM;;oBAEL,KAAK,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;iBAChC;aACF;iBAAM;;gBAEL,IAAI,OAAO,CAAC,eAAe,EAAE;oBAC3B,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE;wBACxB,KAAK,GAAG,kBAAkB,CACvB,KAAoB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,KAC7B,IAAI,CAAC,YAAY,CAAC;4BAChB,KAAK,EAAE,CAAC;4BACR,OAAO,EAAE,UAAU,CAAC,OAAO,EAAE,CAAC,CAAC,QAAQ,EAAE,CAAC;4BAC1C,OAAO;yBACR,CAAC,CACH,CACF,CAAC;qBACH;iBACF;aACF;YAED,OAAO,KAAK,CAAC;SACd;KAAA;IAEO,iBAAiB,CAAC,IAAY,EAAE,SAA4B;QAClE,IAAI,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE;YACzB,MAAM,IAAI,mBAAmB,CAC3B,uBAAuB,IAAI,kBAAkB,CAC9C,CAAC;SACH;QACD,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,SAAS,CAAC;KACnC;EACF;;;YApNA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA7BoB,MAAM;YAGlB,UAAU;YAEjB,uBAAuB;YAUhB,+BAA+B;;AAe3B,qBAAqB;IANjC,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,qBAAqB,CAiNjC;;MC5OY,eAAe;IAS1B;;QAFQ,eAAU,GAAG,KAAK,CAAC;QAGzB,IAAI,CAAC,OAAO,GAAG,IAAI,OAAO,CAAI,CAAC,OAAO,EAAE,MAAM;YAC5C,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;YACxB,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;SACvB,CAAC,CAAC,OAAO,CAAC;;;YAGT,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;SACxB,CAAC,CAAC;KACJ;IAED,IAAI,OAAO;QACT,OAAO,IAAI,CAAC,QAAQ,CAAC;KACtB;IAED,IAAI,MAAM;QACR,OAAO,IAAI,CAAC,OAAO,CAAC;KACrB;IAED,IAAI,SAAS;QACX,OAAO,IAAI,CAAC,UAAU,CAAC;KACxB;;;MCrBU,0BAA0B,GAAG,QAAQ,CAAC,GAAG,CAAA;;;;CAIrD,CAAC,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC,EAAwB;AAEpD;AACA;AAEA;;;;;;;MAOsB,cAAc;IAApC;;QAIY,cAAS,GAAG,KAAK,CAAC;;QAGZ,oBAAe,GAAG,IAAI,eAAe,EAAK,CAAC;KA+B5D;IA7BC,IAAI,OAAO;QACT,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC;KACrC;IAED,OAAO,CAAC,KAAQ;QACd,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;KACrC;IAED,MAAM,CAAC,MAAY;QACjB,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;KACrC;IAED,IAAI,cAAc;QAChB,OAAO;YACL,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,SAAS,EAAE,IAAI,CAAC,SAAS;SAC1B,CAAC;KACH;IAED,IAAI,QAAQ;QACV,OAAO,IAAI,CAAC,SAAS,CAAC;KACvB;IAED,WAAW;QACT,IAAI,IAAI,CAAC,SAAS,EAAE;YAClB,MAAM,IAAI,mBAAmB,CAAC,kBAAkB,CAAC,CAAC;SACnD;QACD,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;KACvB;;;MCpDU,UAGX,SAAQ,cAA6B;IACrC,YAAY,OAAsC;QAChD,KAAK,EAAE,CAAC;QACR,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;QACjC,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;KACpC;IAED,MAAM,CAAU,SAAqC;;QAEnD,MAAM,WAAW,GAAGQ,CAAM,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,CAAiB,CAAC;QACpE,MAAM,YAAY,GAAG,WAAW,CAAC,WAAW,CAAC,CAAC;QAE9C,MAAM,WAAW,GAAG,EAA+C,CAAC;QACpE,YAAY,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,CAAC,QAAgC;YAC/D,WAAW,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,QAAQ,CAAC;SAC7C,CAAC,CAAC;QAEH,MAAM,qBAAqB,GAAG,CAAC,SAAoB;YACjD,MAAM,KAAK,GAAG,SAAsB,CAAC;YACrC,MAAM,SAAS,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;YACxC,MAAM,QAAQ,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC;YAExC,IAAI,CAAC,QAAQ,EAAE;gBACb,OAAO;aACR;;;;YAKD,KAAK,CAAC,YAAY,CAAC,UAAU,GAAG;gDAEzB,0BAA0B,KAC7B,IAAI,EAAEC,IAAQ,CAAC,SAAS,CAAC;aAE5B,CAAC;SACH,CAAC;QAEF,YAAY,CAAC,YAAY,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,SAAS;YACrD,IAAI,SAAS,CAAC,IAAI,KAAK,OAAO,EAAE;gBAC9B,qBAAqB,CAAC,SAAS,CAAC,CAAC;aAClC;SACF,CAAC,CAAC;QAEH,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,gCACL,WAAW,KACd,WAAW,EAAE;;oBAEX,GAAG,WAAW,CAAC,WAAW,CAAC,MAAM,CAC/B,CAAC,GAAG,KAAK,GAAG,CAAC,IAAI,KAAK,oBAAoB,CAC3C;oBACD,GAAG,SAAS,CAAC,WAAW;iBACzB,GAC4B;YAC/B,SAAS,EAAE,IAAI,CAAC,SAAS;SAC1B,CAAC,CAAC;KACJ;;;ACnDH,MAAM,mBAAmB,GAAiB;IACxC,IAAI,EAAE,UAAU;IAChB,WAAW,EAAE;QACX;YACE,IAAI,EAAE,qBAAqB;YAC3B,SAAS,EAAE,UAAU;YACrB,IAAI,EAAE;gBACJ,IAAI,EAAE,MAAM;gBACZ,KAAK,EAAE,kBAAkB;aAC1B;YACD,mBAAmB,EAAE,EAAE;YACvB,UAAU,EAAE,EAAE;YACd,YAAY,EAAE;gBACZ,IAAI,EAAE,cAAc;gBACpB,UAAU,EAAE,EAAE;aACf;SACF;KACF;CAMF,CAAC;MAEW,gBAAoB,SAAQ,cAAiB;IAIxD,YAA4B,WAAkC;QAC5D,KAAK,EAAE,CAAC;QADkB,gBAAW,GAAX,WAAW,CAAuB;QAG5D,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC,KAAK,EAAE,CAAC;QACvD,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;QAC3B,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;KAC1C;IAsCD,OAAO,MAAM,CAAC,WAAkC;QAC9C,OAAO,IAAI,gBAAgB,CAAC,WAAW,CAAC,CAAC;KAC1C;IAEO,cAAc;QACpB,MAAM,GAAG,GAAG,IAAI,GAAG,EAAuB,CAAC;QAE3C,MAAM,UAAU,GAAG,CAAC,IAAI;YACtB,IAAI,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE;gBACjB,MAAM,IAAI,mBAAmB,CAC3B,mGAAmG,CACpG,CAAC;aACH;YAED,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;SACf,CAAC;QAEF,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,UAAU;YAClC,IAAI,UAAU,YAAY,UAAU,EAAE;gBACpC,UAAU,CAAC,UAAU,CAAC,CAAC;aACxB;iBAAM,IAAI,UAAU,YAAY,gBAAgB,EAAE;gBACjD,UAAU,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;aACtD;iBAAM;gBACL,MAAM,IAAI,sBAAsB,CAC9B,yCAAyC,UAAU,CAAC,WAAW,CAAC,IAAI,EAAE,CACvE,CAAC;aACH;SACF,CAAC,CAAC;QAEH,OAAO,GAAG,CAAC;KACZ;IAED,OAAO,CAAC,KAAU;;QAEhB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,EAAE,CAAC,EAAE;YAChD,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;;YAGhC,MAAM,GAAG,GAAQ,EAAE,CAAC;YACpB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE;gBACxB,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE;oBAC3B,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;oBAC9C,GAAG,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC;iBAChC;aACF;YACD,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;SAClC;;QAGD,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CACtD,CAAC,WAAgB;;YAEf,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;SAC5B,CACF,CAAC;KACH;IAED,MAAM,CAAC,MAAY;QACjB,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QACrB,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,UAAU,KAAK,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;KACrE;IAED,WAAW;QACT,KAAK,CAAC,WAAW,EAAE,CAAC;QACpB,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,UAAU,KAAK,UAAU,CAAC,WAAW,EAAE,CAAC,CAAC;KACpE;IAEO,wBAAwB,CAAC,MAA8B,EAAE,MAAM;QACrE,uCACK,MAAM,KACT,QAAQ,kCACH,MAAM,CAAC,QAAQ,KAClB,IAAI,EAAEA,IAAQ,CAAC,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,OAErD;KACH;IAEO,yBAAyB,CAC/B,OAA8C,EAC9C,MAAM;QAEN,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,KACxB,IAAI,CAAC,wBAAwB,CAAC,MAAM,EAAE,MAAM,CAAC,CAC9C,CAAC;KACH;IAEO,cAAc,CAAC,GAAiB,EAAE,MAAM;QAC9C,IAAI,GAAG,CAAC,KAAK,CAAC,IAAI,KAAK,UAAU,EAAE;YACjC,OAAO,GAAG,CAAC;SACZ;QAED,uCACK,GAAG,KACN,KAAK,kCACA,GAAG,CAAC,KAAK,KACZ,IAAI,EAAEA,IAAQ,CAAC,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,OAE/C;KACH;IAEO,WAAW,CAAC,SAAoB,EAAE,MAAM;;QAE9C,IAAI,SAAS,CAAC,IAAI,KAAK,OAAO,EAAE;YAC9B,OAAO,SAAS,CAAC;SAClB;QAED,MAAM,KAAK,GAAG,MAAM,GAAG,cAAc,CAAC,SAAS,CAAC,CAAC;QACjD,MAAM,IAAI,GAAG,SAAS,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,KACvC,IAAI,CAAC,cAAc,CAAC,GAAG,EAAE,MAAM,CAAC,CACjC,CAAC;QAEF,uCACK,SAAS,KACZ,KAAK,EAAE;gBACL,IAAI,EAAE,MAAM;gBACZ,KAAK,EAAE,KAAK;aACb,EACD,SAAS,EAAE,IAAI,IACf;KACH;IAEO,oBAAoB,CAC1B,SAA6B,EAC7B,MAAM;QAEN,uCACK,SAAS,KACZ,IAAI,EAAEA,IAAQ,CAAC,MAAM,GAAG,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,IAC7C;KACH;IAEO,gBAAgB,CAAC,SAAwB,EAAE,MAAM;QACvD,QAAQ,SAAS,CAAC,IAAI;YACpB,KAAK,gBAAgB;gBACnB,OAAO,IAAI,CAAC,oBAAoB,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;YACtD,KAAK,OAAO;;gBAEV,IAAI,SAAS,CAAC,YAAY,EAAE;oBAC1B,uCACK,SAAS,KACZ,YAAY,EAAE,IAAI,CAAC,mBAAmB,CACpC,SAAS,CAAC,YAAY,EACtB,MAAM,CACP,IACD;iBACH;qBAAM;oBACL,OAAO,SAAS,CAAC;iBAClB;YACH;gBACE,OAAO,SAAS,CAAC;SACpB;KACF;IAEO,mBAAmB,CACzB,YAA8B,EAC9B,MAAM;QAEN,uCACK,YAAY,KACf,UAAU,EAAE,YAAY,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,SAAS,KAChD,IAAI,CAAC,gBAAgB,CAAC,SAAS,EAAE,MAAM,CAAC,CACzC,IACD;KACH;IAEO,gBAAgB,CACtB,UAAwC,EACxC,MAAM;QAEN,OAAO,UAAU,CAAC,GAAG,CAAC,CAAC,SAAS;YAC9B,QAAQ,SAAS,CAAC,IAAI;gBACpB,KAAK,OAAO;oBACV,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;oBAClD,OAAO,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;gBAC9C;oBACE,OAAO,SAAS,CAAC;aACpB;SACF,CAAC,CAAC;KACJ;IAEO,wBAAwB,CAAC,QAAgC,EAAE,MAAM;QACvE,MAAM,GAAG,mCACJ,QAAQ,KACX,IAAI,EAAEA,IAAQ,CAAC,MAAM,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,GAC7C,CAAC;QAEF,IAAI,QAAQ,CAAC,YAAY,EAAE;YACzB,GAAG,CAAC,YAAY,GAAG,IAAI,CAAC,mBAAmB,CACzC,QAAQ,CAAC,YAAY,EACrB,MAAM,CACP,CAAC;SACH;QAED,OAAO,GAAG,CAAC;KACZ;IAEO,yBAAyB,CAC/B,SAAmC,EACnC,MAAM;QAEN,OAAO,SAAS,CAAC,GAAG,CAAC,CAAC,QAAQ,KAC5B,IAAI,CAAC,wBAAwB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAChD,CAAC;KACH;IAEO,KAAK;QACX,IAAI,mBAAmB,GAA6B,EAAE,CAAC;QACvD,IAAI,UAAU,GAAoB,EAAE,CAAC;QACrC,MAAM,eAAe,GAAG,EAAE,CAAC;QAC3B,IAAI,eAAe,GAA6B,EAAE,CAAC;QAEnD,MAAM,QAAQ,GAAa,EAAE,CAAC;;;QAI9B,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,UAAU,EAAE,GAAG;YACvC,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,GAAG,UAAU,CAAC,cAAc,CAAC;YAE1D,MAAM,iBAAiB,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAC;;YAGhD,IAAI,MAAM,GAAG,OAAO,GAAG,GAAG,CAAC;YAC3B,IAAI,iBAAiB,CAAC,IAAI,EAAE;gBAC1B,MAAM,IAAI,iBAAiB,CAAC,IAAI,CAAC,KAAK,GAAG,GAAG,CAAC;aAC9C;YAED,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;;YAGtB,mBAAmB,GAAG;gBACpB,GAAG,mBAAmB;gBACtB,GAAG,IAAI,CAAC,yBAAyB,CAC/B,iBAAiB,CAAC,mBAAmB,EACrC,MAAM,CACP;aACF,CAAC;;YAGF,UAAU,GAAG;gBACX,GAAG,UAAU;gBACb,GAAG,IAAI,CAAC,gBAAgB,CACtB,iBAAiB,CAAC,YAAY,CAAC,UAAU,EACzC,MAAM,CACP;aACF,CAAC;;;YAKF,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE;gBACzC,eAAe,CAAC,MAAM,GAAG,IAAI,CAAC,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;aAClD;;YAGD,MAAM,SAAS,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC;YACzC,eAAe,GAAG;gBAChB,GAAG,eAAe;gBAClB,GAAG,IAAI,CAAC,yBAAyB,CAAC,SAAS,EAAE,MAAM,CAAC;aACrD,CAAC;SACH,CAAC,CAAC;QAEH,MAAM,cAAc,GAAiBD,CAAM,CAAC,SAAS,CAAC,mBAAmB,CAAC,CAAC;QAC3E,MAAM,YAAY,GAAG,WAAW,CAAC,cAAc,CAAC,CAAC;;QAEjD,YAAY,CAAC,YAAY,CAAC,UAAU,GAAG,UAAU,CAAC;;;QAGjD,YAAoB,CAAC,mBAAmB,GAAG,mBAAmB,CAAC;;QAE/D,cAAsB,CAAC,WAAW,GAAG;YACpC,GAAG,cAAc,CAAC,WAAW;YAC7B,GAAG,eAAe;SACnB,CAAC;QAEF,OAAO;YACL,QAAQ,EAAE,cAAc;YACxB,SAAS,EAAE,eAAe;YAC1B,QAAQ;SACT,CAAC;KACH;;;AC5VH;AACA;AACA,MAAM,yBAAyB,GAAG,QAAQ,CAAC,GAAG,CAAA;;IAE1C,aAAa;;CAEhB,CAAC,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC,CAAc,CAAC;AAE3C,MAAM,8BAA8B,GAAG,QAAQ,CAAC,GAAG,CAAA;;IAE/C,kBAAkB;;CAErB,CAAC,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC,CAAc,CAAC;IAgD9B,gBAAgB,SAAhB,gBAAgB;IAM3B,YACU,MAAc,EACd,MAAc,EACd,QAAyB,EACzB,cAAqC;QAHrC,WAAM,GAAN,MAAM,CAAQ;QACd,WAAM,GAAN,MAAM,CAAQ;QACd,aAAQ,GAAR,QAAQ,CAAiB;QACzB,mBAAc,GAAd,cAAc,CAAuB;QATvC,UAAK,GAA0B;YACrC,UAAU,EAAE,CAAC;YACb,aAAa,EAAE,CAAC;SACjB,CAAC;KAOE;IAEE,KAAK,CACT,OAA6B;;;YAG7B,OAAO,GAAGA,CAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;;YAGpC,MAAM,eAAe,GAAG,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;YACxE,IAAI,eAAe,EAAE;gBACnB,MAAM,SAAS,GAAG,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;gBAC1C,SAAS,CAAC,YAAY,CAAC,UAAU,GAAG;oBAClC,GAAG,SAAS,CAAC,YAAY,CAAC,UAAU;oBACpC,yBAAyB;iBAC1B,CAAC;aACH;YAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,KAAK,CAAO,OAAO,CAAC,CAAC,SAAS,EAAE,CAAC;YAEpE,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;YAExB,iBAAiB,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAEnC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAEvB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,YAAY,CACjD,QAAQ,CAAC,IAAI,EACb,OAAO,CAAC,gBAAgB,CACzB,CAAC;YAEF,OAAO,IAAI,CAAC;SACb;KAAA;IAEa,YAAY,CAAC,UAAU,EAAE,OAAQ;;YAC7C,IAAI,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,SAAS,EAAE;gBACtB,MAAM,IAAI,sBAAsB,CAC9B,wCAAwC,CACzC,CAAC;aACH;YAED,IAAI,UAAU,CAAC,QAAQ,EAAE;gBACvB,MAAM,IAAI,mBAAmB,CAC3B,6HAA6H,CAC9H,CAAC;aACH;YAED,UAAU,CAAC,WAAW,EAAE,CAAC;YAEzB,OAAO,IAAI,CAAC,YAAY,iCACnB,OAAO,GACP,UAAU,CAAC,cAAc,EAC5B;iBACC,IAAI,CAAC,CAAC,GAAG;;gBAER,UAAU,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;;gBAExB,OAAO,GAAG,CAAC;aACZ,CAAC;iBACD,KAAK,CAAC,CAAC,KAAK;gBACX,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;gBACzB,MAAM,KAAK,CAAC;aACb,CAAC,CAAC;SACN;KAAA;IAEK,YAAY,CAChB,OAA+C;;;YAG/C,OAAO,mCACF,OAAO,KACV,QAAQ,EAAEA,CAAM,CAAC,SAAS,CAAC,OAAO,CAAC,QAAQ,CAAC,GAC7C,CAAC;;YAGF,MAAM,eAAe,GAAG,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;YAExE,IAAI,eAAe,EAAE;gBACnB,MAAM,SAAS,GAAG,WAAW,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;gBAChD,SAAS,CAAC,YAAY,CAAC,UAAU,GAAG;oBAClC,GAAG,SAAS,CAAC,YAAY,CAAC,UAAU;oBACpC,8BAA8B;iBAC/B,CAAC;aACH;;;;YAKD,OAAO,CAAC,QAAQ,GAAG,GAAG,CAAC,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC;YAE3D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAI,OAAO,CAAC,CAAC,SAAS,EAAE,CAAC;YAElE,IAAI,CAAC,KAAK,CAAC,aAAa,EAAE,CAAC;YAE3B,iBAAiB,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAEnC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAEvB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,YAAY,CACjD,QAAQ,CAAC,IAAI,EACb,OAAO,CAAC,gBAAgB,CACzB,CAAC;YAEF,OAAO,IAAI,CAAC;SACb;KAAA;IAED,aAAa;QACX,OAAOA,CAAM,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;KACrC;IAEO,OAAO,CAAC,QAAQ;QACtB,IAAK,QAAQ,CAAC,IAAoB,CAAC,QAAQ,EAAE;YAC3C,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAE,QAAQ,CAAC,IAAoB,CAAC,QAAQ,CAAC,CAAC;YAC/D,OAAO,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC;SAC/B;KACF;IAEO,iBAAiB,CAAC,eAAe;;QAEvC,OAAO,eAAe,IAAI,IAAI,GAAG,IAAI,GAAG,KAAK,CAAC;KAC/C;IAwEK,QAAQ,CACZ,WAEqC,EACrC,OAA2B;;YAE3B,IAAI,WAAW,YAAY,KAAK,EAAE;gBAChC,MAAM,MAAM,GAAG,gBAAgB,CAAC,MAAM,CAAC,MAAM,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC;gBACvE,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;gBACzC,OAAO,MAAM,CAAC,OAAO,CAAC;aACvB;iBAAM;gBACL,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC;gBACnC,MAAM,IAAI,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;gBAC3C,OAAO,QAAQ,CAAC,OAAO,CAAC;aACzB;SACF;KAAA;EACF;;;YA9NA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YArFoB,MAAM;YAClB,MAAM;YAQN,eAAe;YAUG,qBAAqB;;AAmEnC,gBAAgB;IAN5B,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,gBAAgB,CA2N5B;;MC1SY,SAAS;IAGpB,YAAY,QAAkB;QAC5B,IAAI,CAAC,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;KACjD;IAEe,MAAM,CACpB,UAE0C,EAC1C,OAA0C;;YAE1C,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;SACrD;KAAA;IAEe,KAAK,CAAO,OAA6B;;YACvD,OAAO,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;SACtC;KAAA;;;MCQU,cAAc,GAAG,CAAC,WAAiC;IAC9D,OAAO,MAAM,WAAW,CAAC,UAAU,EAAE,CAAC;AACxC,EAAE;MAKW,oBAAoB;IAI/B,YAC6B,MAAuB,EAC1C,IAAe,EACf,UAA6B,EAC7B,UAAsB,EACtB,cAA8B,EAC9B,eAAgC,EAChC,eAAgC,EAChC,WAAwB,EACxB,SAA2B,EAC3B,+BAAgE,EAChE,cAA8B;QAVX,WAAM,GAAN,MAAM,CAAiB;QAC1C,SAAI,GAAJ,IAAI,CAAW;QACf,eAAU,GAAV,UAAU,CAAmB;QAC7B,eAAU,GAAV,UAAU,CAAY;QACtB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,oBAAe,GAAf,eAAe,CAAiB;QAChC,oBAAe,GAAf,eAAe,CAAiB;QAChC,gBAAW,GAAX,WAAW,CAAa;QACxB,cAAS,GAAT,SAAS,CAAkB;QAC3B,oCAA+B,GAA/B,+BAA+B,CAAiC;QAChE,mBAAc,GAAd,cAAc,CAAgB;QAdhC,eAAU,GAAuB,IAAI,aAAa,CAAM,CAAC,CAAC,CAAC;KAe/D;IAES,UAAU;;YACrB,GAAG,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,IAAI,KAAK,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;SAClE;KAAA;IAEa,YAAY,CACxB,YAAoB,EACpB,QAAgB,EAChB,aAA4B,EAC5B,cAA8B;;YAE9B,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACvD,QAAQ,IACL,aAAa,EAChB,CAAC;;YAEH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CACjC,YAAY,EACZ,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,aAAa,CAAC,GAAG,CAAC,CACzD,CAAC;YAEF,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;YAErC,OAAO,IAAI,CAAC;SACb;KAAA;IAEa,QAAQ,CACpB,YAAoB,EACpB,QAAgB;;;YAGhB,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,gBAAgB,CACjE,YAAY,CACb,CAAC;YAEF,IACE,gBAAgB,CAAC,oBAAoB,KAAK,oBAAoB,CAAC,UAAU,EACzE;gBACA,MAAM,IAAI,2BAA2B,CAAC,kCAAkC,CAAC,CAAC;aAC3E;YAED,IACE,gBAAgB,CAAC,oBAAoB,KAAK,oBAAoB,CAAC,QAAQ,EACvE;gBACA,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;;gBAEjC,IAAI;oBACF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAClC,YAAY,EACZ,QAAQ,EACR,gBAAgB,CAAC,gBAAgB,EACjC,cAAc,CAAC,YAAY,CAC5B,CAAC;;;;oBAMF,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;oBAEnC,OAAO,IAAI,CAAC;iBACb;gBAAC,OAAO,KAAK,EAAE;;oBAEd,IAAI,KAAK,CAAC,IAAI,KAAK,wBAAwB,EAAE;wBAC3C,MAAM,KAAK,CAAC;qBACb;;iBAEF;;gBAGD,IAAI;oBACF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,YAAY,CAClC,YAAY,EACZ,QAAQ,EACR,gBAAgB,CAAC,oBAAoB,EACrC,cAAc,CAAC,YAAY,CAC5B,CAAC;;oBAEF,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;oBAEnC,OAAO,IAAI,CAAC;iBACb;gBAAC,OAAO,KAAK,EAAE;;oBAEd,MAAM,KAAK,CAAC,IAAI,KAAK,wBAAwB;0BACzC,IAAI,qBAAqB,CACvB,sGAAsG,CACvG;0BACD,KAAK,CAAC;iBACX;aACF;;YAGD,IAAI,gBAAgB,CAAC,eAAe,EAAE;gBACpC,IAAI;;;oBAGF,MAAM,KAAK,GAAG,gBAAgB,CAAC,eAAe,CAAC;oBAC/C,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,YAAY,CACjC,KAAK,CAAC,aAAa,EACnB,QAAQ,EACR,KAAK,CAAC,aAAa,EACnB,cAAc,CAAC,IAAI,CACpB,CAAC;oBACF,GAAG,CAAC,qBAAqB,GAAG,IAAI,CAAC;oBAEjC,OAAO,GAAG,CAAC;iBACZ;gBAAC,OAAO,GAAG,EAAE;;iBAEb;aACF;;YAGD,OAAO,MAAM,IAAI,CAAC,YAAY,CAC5B,YAAY,EACZ,QAAQ,EACR,gBAAgB,CAAC,oBAAoB,EACrC,cAAc,CAAC,IAAI,CACpB,CAAC;SACH;KAAA;IAEe,0BAA0B;;YACxC,IAAI,IAAI,CAAC,MAAM,CAAC,2BAA2B,EAAE;gBAC3C,IAAI,CAAC,SAAS,EAAE,EAAE;oBAChB,MAAM,GAAG,GACP,yFAAyF,CAAC;oBAC5F,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;oBACnB,MAAM,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC;iBACtB;qBAAM;oBACL,OAAO,CAAC,IAAI,CACV,uFAAuF,CACxF,CAAC;iBACH;aACF;iBAAM;;gBAEL,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBAC/D,MAAM,IAAI,CAAC,SAAS,CAAC,QAAQ,CAC3B,IAAI,UAAU,CAAC;oBACb,QAAQ,EAAE,+BAA+B;oBACzC,SAAS,EAAE;wBACT,KAAK,EAAE;4BACL,oBAAoB,EAAE,IAAI,CAAC,SAAS,CAClC,oBAAoB,CAAC,MAAM,CAAC,IAAI,CAAC,CAClC;yBACF;qBACF;iBACF,CAAC,EACF;oBACE,eAAe,EAAE,KAAK;iBACvB,CACF,CAAC;gBAEF,IAAI,CAAC,cAAc,CAAC,6BAA6B,CAAC,oBAAoB,CAAC,CAAC;aACzE;SACF;KAAA;IAEe,cAAc,CAAC,WAAiC;;YAC9D,MAAM,IAAI,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC;YAC/C,MAAM,IAAI,CAAC,0BAA0B,EAAE,CAAC;SACzC;KAAA;IAEY,KAAK,CAChB,YAAoB,EACpB,QAAgB;;YAEhB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAC;;YAGhE,IAAI,CAAC,SAAS,EAAE,oBAAoB,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,aAAa,CAAC,EAAE;gBACzE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,SAAS,EAAE,WAAW,EAAE,CAAC;aACvD;YAED,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;YAEvC,IAAI,WAAW,CAAC,qBAAqB,EAAE;;gBAErC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;gBACrD,OAAO,EAAE,YAAY,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC;aAC3C;iBAAM;gBACL,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;gBACxD,MAAM,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC;gBAC/B,OAAO,EAAE,YAAY,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;aACtC;SACF;KAAA;;IAGY,WAAW,CACtB,SAA+B,EAC/B,QAAgB,EAChB,UAAmB,EACnB,IAAY;;YAEZ,MAAM,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,SAAS,EAAE,IAAI,EAAE,SAAS,CAAC,aAAa,CAAC,CAAC;;YAIxE,MAAM,WAAW,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAAC;YAE5E,MAAM,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC;YAErC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;YAExD,IAAI,UAAU,EAAE;gBACd,WAAW,CAAC,yBAAyB,CAAC;oBACpC,SAAS,EAAE,SAAQ;oBACnB,SAAS,EAAE,CAAC,CAAC,KAAK,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC;iBACnC,CAAC,CAAC;aACJ;YAED,OAAO,IAAI,CAAC;SACb;KAAA;IAEK,sBAAsB,CAAC,IAA0B;;YACrD,IAAI,IAAI,CAAC,cAAc,KAAK,cAAc,CAAC,IAAI,EAAE;gBAC/C,MAAM,QAAQ,GAAG,IAAI;qBAClB,oBAAoB,EAAE;qBACtB,cAAc,EAAE;qBAChB,WAAW,EAAE,CAAC;gBACjB,MAAM,IAAI,CAAC,eAAe,CAAC,sBAAsB,CAC/C,QAAQ,EACR,IAAI,CAAC,cAAc,KAAK,cAAc,CAAC,YAAY,CACpD,CAAC;aACH;SACF;KAAA;IAEK,OAAO,CAAC,SAAkB,KAAK;;YACnC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,WAAW,EAAE;gBAC/B,OAAO,IAAI,CAAC,WAAW,CAAC;aACzB;YACD,IAAI,CAAC,WAAW,GAAG,MAAM,IAAI,CAAC,QAAQ,CACpC,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAC3C,CAAC;YACF,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;YACtC,MAAM,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC;YAC/B,OAAO,IAAI,CAAC,WAAW,CAAC;SACzB;KAAA;IAEO,gBAAgB,CAAC,QAAc;QACrC,MAAM,cAAc,GAAG,QAAQ,aAAR,QAAQ,uBAAR,QAAQ,CAAE,OAAO,CAAC;QACzC,QACE,CAAA,cAAc,aAAd,cAAc,uBAAd,cAAc,CAAE,MAAM,IAAG,CAAC;YAC1B,cAAc,CAAC,IAAI,CAAC,CAAC,OAAO,KAAK,OAAO,CAAC,WAAW,EAAE,KAAK,QAAQ,CAAC,EACpE;KACH;IAEa,QAAQ,CACpB,WAAwB,EACxB,QAAiB;;YAEjB,MAAM,EACJ,WAAW,EACX,WAAW,EACX,SAAS,GACV,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,cAAc,EAAE,CAAC;YAE/C,IAAI,WAAW,CAAC,oBAAoB,EAAE;gBACpC,IAAI,CAAC,cAAc,CAAC,6BAA6B,CAC/C,MAAM,GAAG,CAAC,KAAK,CAAC,WAAW,CAAC,oBAAoB,CAAC,CAClD,CAAC;aACH;YAED,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;YAEnE,IAAI,QAAQ,EAAE;gBACZ,MAAM,OAAO,GAAG,CACd,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACjC,QAAQ,IACL,WAAW,CAAC,cAAc,CAAC,OAAO,CAAC,aAAa,EACnD,EACF,GAAG,CAAC;gBAEN,MAAM,IAAI,CAAC,WAAW,CAAC,gBAAgB,CACrC,MAAM,IAAI,CAAC,eAAe,CAAC,iBAAiB,CAC1C,WAAW,CAAC,cAAc,CAAC,OAAO,CAAC,EAAE,EACrC,OAAO,EACP,WAAW,CAAC,cAAc,CAAC,SAAS,CAAC,EAAE,CACxC,CACF,CAAC;aACH;YACD,MAAM,IAAI,CAAC,eAAe,CAAC,YAAY,CAAC,WAAW,CAAC,cAAc,CAAC,CAAC;YAEpE,OAAO;gBACL,EAAE,EAAE,WAAW,CAAC,EAAE;gBAClB,GAAG,EAAE,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,cAAc,CAAC;gBACjD,QAAQ,EAAE,WAAW,CAAC,QAAQ;gBAC9B,cAAc,EAAE,WAAW,CAAC,cAAc;gBAC1C,iBAAiB,EAAE,MACjB,WAAW,CAAC,oBAAoB,EAAE,CAAC,cAAc,EAAE,CAAC,WAAW,EAAE;gBACnE,KAAK,EAAE,IAAI,CAAC,gBAAgB,CAAC,OAAO,EAAE,cAAc,CAAC;gBACrD,aAAa,EACX,IAAI,CAAC,gBAAgB,CAAC,gBAAgB,EAAE,cAAc,CAAC,KAAK,MAAM;gBACpE,KAAK,EAAE,IAAI,CAAC,gBAAgB,CAAC,cAAc,EAAE,cAAc,CAAC;gBAC5D,aAAa,EACX,IAAI,CAAC,gBAAgB,CAAC,uBAAuB,EAAE,cAAc,CAAC;oBAC9D,MAAM;gBACR,WAAW,qBACL,MAAM,IAAI,CAAC,cAAc,CAAC,kBAAkB,CAAC,WAAW,CAAC,EAC9D;gBACD,UAAU,EAAE,WAAW,CAAC,UAAU;gBAClC,SAAS;gBACT,gBAAgB,EAAE,IAAI,CAAC,gBAAgB,CAAC,WAAW,CAAC,QAAQ,CAAC;gBAC7D,QAAQ,EAAE,WAAW,CAAC,QAAQ;gBAC9B,oBAAoB,EAAE,WAAW,CAAC,oBAAoB;aACvD,CAAC;SACH;KAAA;IAEM,SAAS;QACd,OAAO,IAAI,CAAC,UAAU,CAAC;KACxB;IAEY,MAAM;;YACjB,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;YACxB,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAC5B,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,CAAC;YAEjC,MAAM,OAAO,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,EAAE,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;SACzE;KAAA;IAEO,gBAAgB,CACtB,aAAqB,EACrB,cAAsC;QAEtC,MAAM,aAAa,GAAG,cAAc,CAAC,IAAI,CACvC,CAAC,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,KAAK,aAAa,CACrC,CAAC;QAEF,OAAO,aAAa,GAAG,aAAa,CAAC,QAAQ,EAAE,GAAG,IAAI,CAAC;KACxD;IAEY,aAAa,CAAC,QAAiB;;YAC1C,MAAM,EAAE,mBAAmB,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;gBACpE,KAAK,EAAE,wBAAwB;aAChC,CAAC,CAAC;YAEH,IAAI,SAAS,CAAC,oBAAoB,EAAE;gBAClC,IAAI,CAAC,cAAc,CAAC,6BAA6B,CAC/C,MAAM,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,oBAAoB,CAAC,CAChD,CAAC;aACH;;YAGD,IAAI,QAAQ,EAAE;gBACZ,MAAM,OAAO,GAAG,CACd,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACjC,QAAQ,IACL,SAAS,CAAC,OAAO,CAAC,aAAa,EAClC,EACF,GAAG,CAAC;gBAEN,MAAM,IAAI,CAAC,WAAW,CAAC,gBAAgB,CACrC,MAAM,IAAI,CAAC,eAAe,CAAC,iBAAiB,CAC1C,SAAS,CAAC,OAAO,CAAC,EAAE,EACpB,OAAO,EACP,SAAS,CAAC,SAAS,CAAC,EAAE,CACvB,CACF,CAAC;aACH;YAED,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC;gBAC3B,OAAO,EAAE;oBACP,EAAE,EAAE,SAAS,CAAC,OAAO,CAAC,EAAE;iBACzB;gBACD,SAAS,EAAE;oBACT,EAAE,EAAE,SAAS,CAAC,SAAS,CAAC,EAAE;iBAC3B;aACF,CAAC,CAAC;YAEH,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,cAAc,CACnD,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAC3C,CAAC;YACF,MAAM,GAAG,GAAG,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;YAEzD,wCACM,MAAM,IAAI,CAAC,+BAA+B,CAAC,8BAA8B,CAC3E,SAAS,CACV,MACD,GAAG,IACH;SACH;KAAA;IAEY,kBAAkB;;YAC7B,MAAM,WAAW,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAAC;YAC5E,MAAM,YAAY,GAAG,WAAW,CAAC,oBAAoB,EAAE,CAAC,eAAe,EAAE,CAAC;YAE1E,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM;gBACjC,WAAW,CAAC,cAAc,CAAC,YAAY,EAAE,CAAC,GAAG,EAAE,IAAI;oBACjD,IAAI,GAAG,EAAE;wBACP,OAAO,CAAC,KAAK,CAAC,0BAA0B,EAAE,GAAG,CAAC,CAAC;wBAC/C,MAAM,CAAC,GAAG,CAAC,CAAC;qBACb;yBAAM;wBACL,OAAO,CAAC,GAAG,CAAC,0BAA0B,EAAE,IAAI,CAAC,CAAC;wBAC9C,OAAO,CAAC,CAAC,CAAC,CAAC;qBACZ;iBACF,CAAC,CAAC;aACJ,CAAC,CAAC;SACJ;KAAA;;;;YA9ZF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;4CAMI,MAAM,SAAC,SAAS;YAxBZ,SAAS;YAGT,iBAAiB;YAlBjB,UAAU;YACV,cAAc;YAFd,eAAe;YAef,eAAe;YAGf,WAAW;YAEX,gBAAgB;YAEhB,+BAA+B;YAE/B,cAAc;;;MCbV,WAAW;IACtB,YAC6B,MAAuB,EAC1C,IAAgB,EAChB,MAA4B;QAFT,WAAM,GAAN,MAAM,CAAiB;QAC1C,SAAI,GAAJ,IAAI,CAAY;QAChB,WAAM,GAAN,MAAM,CAAsB;KAClC;IAEE,qBAAqB,CAAC,eAAuB;;YACjD,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,IAAI,CAAC,sBAAsB,CAAC,eAAe,CAAC,CAAC,CAAC;SACvE;KAAA;IAEK,sBAAsB,CAAC,eAAuB;;YAClD,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,sCAAsC,eAAe,EAAE,CAAC;YAEzF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,IAAI;iBAC5B,GAAG,CAAC,GAAG,EAAE;gBACR,YAAY,EAAE,MAAM;gBACpB,OAAO,EAAE;oBACP,aAAa,EAAE,UAAU,CACvB,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,EAC3B,iBAAiB,EAAE,EAAE;iBACxB;aACF,CAAC;iBACD,SAAS,EAAE,CAAC;YAEf,OAAO,OAAO,CAAC;SAChB;KAAA;IAEK,QAAQ,CAAC,IAAU;;YACvB,OAAO,IAAI,OAAO,CAAc,CAAC,OAAO,EAAE,MAAM;gBAC9C,MAAM,MAAM,GAAG,IAAI,UAAU,EAAE,CAAC;gBAChC,MAAM,CAAC,MAAM,GAAG;;oBAEd,OAAO,CAAC,MAAM,CAAC,MAAqB,CAAC,CAAC;iBACvC,CAAC;gBACF,MAAM,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC;aAChC,CAAC,CAAC;SACJ;KAAA;IAEK,mBAAmB,CACvB,OAAmC;;YAEnC,MAAM,EAAE,gBAAgB,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC;YAE/C,MAAM,QAAQ,GAAG,IAAI,QAAQ,EAAE,CAAC;YAChC,QAAQ,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,IAAI,CAAC,CAAC,gBAAgB,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;YAEnE,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,IAAI,CAAC,IAAI;iBACzC,IAAI,CACH,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,eAAe,EACpC,QAAQ,EACR;gBACE,OAAO,EAAE;oBACP,aAAa,EAAE,UAAU,CACvB,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,EAC3B,iBAAiB,EAAE,EAAE;iBACxB;aACF,CACF;iBACA,SAAS,EAAE,CAAC;YAEf,OAAO,gBAAgB,CAAC;SACzB;KAAA;;;;YAjEF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;4CAGI,MAAM,SAAC,SAAS;YAnBZ,UAAU;YAGV,oBAAoB;;;MCKhB,SAAS,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;EA2B1B;MAEW,yBAAyB,GAAG,GAAG,CAAA;;;;;;;;;EAS1C;MAEW,wBAAwB,GAAG,GAAG,CAAA;;;;;;EAMzC;MAEW,iBAAiB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;MC1CvB,WAAW;IACtB,YAAoB,QAAyB;QAAzB,aAAQ,GAAR,QAAQ,CAAiB;KAAI;IAE3C,cAAc,CAAC,KAAa;;YAChC,OAAO,IAAI,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;SAChC;KAAA;IAEK,iBAAiB,CAAC,QAAgB;;YACtC,OAAO,IAAI,CAAC,OAAO,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC;SACnC;KAAA;IAEK,OAAO,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAgB;;YAC7C,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAgB;gBACxD,KAAK,EAAE,SAAS;gBAChB,SAAS,EAAE;oBACT,KAAK;oBACL,QAAQ;iBACT;aACF,CAAC,CAAC;YACH,OAAO,IAAI,CAAC;SACb;KAAA;IAEK,iBAAiB;;YACrB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAA6B;gBACjE,QAAQ,EAAE,yBAAyB;gBACnC,SAAS,EAAE;oBACT,KAAK,EAAE,EAAE;iBACV;aACF,CAAC,CAAC;YAEH,OAAO,GAAG,CAAC,iBAAiB,CAAC,UAAU,CAAC;SACzC;KAAA;IAEK,gBAAgB;;YACpB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAA4B;gBAChE,QAAQ,EAAE,wBAAwB;gBAClC,SAAS,EAAE;oBACT,KAAK,EAAE,EAAE;iBACV;aACF,CAAC,CAAC;YAEH,OAAO,GAAG,CAAC,gBAAgB,CAAC,EAAE,CAAC;SAChC;KAAA;IAEK,YAAY,CAAC,QAAgB,IAAI,EAAE,QAAgB,IAAI;;;;YAG3D,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAwB;gBAC3D,KAAK,EAAE,iBAAiB;gBACxB,SAAS,EAAE;oBACT,KAAK;oBACL,KAAK;iBACN;aACF,CAAC,CAAC;YAEH,OAAO,GAAG,CAAC,YAAY,CAAC;SACzB;KAAA;;;;YA3DF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAJQ,eAAe;;;MCNX,iBAAiB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwC9B;MAEU,mBAAmB,GAAG;;;;;;;;;;;;;;;;;;;;;EAqBjC;MAEW,yBAAyB,GAAG,GAAG,CAAA;;;;;;;;;;;QAWpC,mBAAmB;;;;;;;EAOzB,gBAAgB,GAAG;MAER,iBAAiB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;QAqB5B,iBAAiB;;;;;;;;EAQvB,gBAAgB;EAChB;MAEW,gBAAgB,GAAG,GAAG,CAAA;;;;;;;MAO7B,iBAAiB;;;;;;EAMrB,gBAAgB;EAChB;AAEF;AACA;MACa,qBAAqB,GAAG,GAAG,CAAA;;;;;;;;;MASlC,iBAAiB;;GAEpB;MAEU,mBAAmB,GAAG,GAAG,CAAA;;;;;;MAMhC,iBAAiB;;;EAGrB,kBAAkB;GACjB;MAEU,kBAAkB,GAAG,GAAG,CAAA;;;;;;QAM7B,iBAAiB;;;QAGjB,mBAAmB;;;;;;GAMxB;MAEU,mBAAmB,GAAG,GAAG,CAAA;;;;;;QAM9B,iBAAiB;;;QAGjB,mBAAmB;;;;;;;;ICvGf;AAAZ,WAAY,QAAQ;IAClB,2CAA+B,CAAA;IAC/B,yCAA6B,CAAA;IAC7B,2CAA+B,CAAA;AACjC,CAAC,EAJW,QAAQ,KAAR,QAAQ,QAInB;IAgCWE;AAAZ,WAAY,gBAAgB;IAC1B,+CAA2B,CAAA;IAC3B,2CAAuB,CAAA;IACvB,yCAAqB,CAAA;IACrB,2CAAuB,CAAA;AACzB,CAAC,EALWA,kBAAgB,KAAhBA,kBAAgB,QAK3B;IAEWC;AAAZ,WAAY,eAAe;IACzB,8BAAW,CAAA;AACb,CAAC,EAFWA,iBAAe,KAAfA,iBAAe;;ACxF3B,MAAMZ,QAAM,GAAG,OAAO,CAAC;MAKV,kBAAkB;IAG7B,YACU,UAAe,EACf,UAAsB,EACtB,QAAyB,EACzB,iBAAoC,EACpC,WAAiC,EACjC,WAAwB;QALxB,eAAU,GAAV,UAAU,CAAK;QACf,eAAU,GAAV,UAAU,CAAY;QACtB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,gBAAW,GAAX,WAAW,CAAsB;QACjC,gBAAW,GAAX,WAAW,CAAa;QARjB,wBAAmB,GAAG,EAAE,CAAC;KAStC;IAES,kBAAkB,CAC7B,QAAmC,EAAE;;YAErC,MAAM,EAAE,YAAY,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAG/C;gBACD,KAAK,EAAE,iBAAiB;gBACxB,SAAS,oBACJ,KAAK,CACT;aACF,CAAC,CAAC;YACH,OAAO,YAAY,CAAC;SACrB;KAAA;;;;;;;IAQY,cAAc,CACzB,EAAU,EACV,EAAE,MAAM,EAAE,KAAK,KAA4B,EAAE;;YAE7C,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAG9C;gBACD,KAAK,EAAE,KAAK,GAAG,qBAAqB,GAAG,gBAAgB;gBACvD,SAAS,EAAE;oBACT,EAAE;oBACF,KAAK;iBACN;aACF,CAAC,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,kBAAkB,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;SAC3D;KAAA;IAEa,qBAAqB,CACjC,KAAc,EACd,KAAc,EACd,OAAY;;;YAGZ,IAAI;gBACF,OAAO,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;aAChE;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,KAAK,CAAC,OAAO,KAAK,cAAc,EAAE;oBACpC,MAAM,KAAK,CAAC;iBACb;;aAEF;;YAGD,OAAO,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;SAC7D;KAAA;IAEY,kBAAkB,CAC7B,WAAwB,EACxB,MAAe;;YAEf,IAAI,WAAW,CAAC,WAAW,EAAE;gBAC3B,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;;gBAE1D,MAAM,2BAA2B,IAAK,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACxE,OAAO,CAAC,GAAG,EACX,WAAW,CAAC,sBAAsB,CACnC,CAA4C,CAAC;gBAE9C,MAAM,8BAA8B,GAAG,WAAW,CAAC,GAAG;qBACnD,yBAAyB;sBACxB,MAAM,IAAI,CAAC,qBAAqB,CAC9B,MAAMC,iBAAG,CAAC,KAAK,CAAC,2BAA2B,CAAC,KAAK,CAAC,EAClD,MAAMA,iBAAG,CAAC,KAAK,CAAC,2BAA2B,CAAC,UAAU,CAAC,EACvD,WAAW,CAAC,GAAG,CAAC,yBAAyB,CAC1C;sBACD,IAAI,CAAC;gBAET,MAAM,SAAS,GACb,8BAA8B;oBAC9B,8BAA8B,CAAC,SAAS,CAAC;gBAC3C,MAAM,SAAS,GACb,2BAA2B,IAAI,2BAA2B,CAAC,SAAS,CAAC;gBAEvE,uCACK,WAAW,KACd,OAAO,EAAE,SAAS,GAAG,SAAS,CAAC,OAAO,GAAG,IAAI,EAC7C,WAAW,EACT,SAAS,IAAI,SAAS,CAAC,WAAW;0BAC9B,SAAS,CAAC,WAAW,CAAC,yBAAyB;0BAC/C,IAAI,EACV,aAAa,EACX,SAAS,IAAI,SAAS,CAAC,WAAW;0BAC9B,SAAS,CAAC,WAAW,CAAC,yBAAyB;0BAC/C,IAAI,EACV,SAAS,EAAE,SAAS,IAAI,SAAS,CAAC,OAAO,IACzC;aACH;iBAAM;gBACL,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;gBAEhE,MAAM,SAAS,GAAG,YAAY,IAAI,YAAY,CAAC,gBAAgB,CAAC,SAAS,CAAC;gBAE1E,uCACK,WAAW,KACd,YAAY,EACZ,OAAO,EAAE,SAAS,IAAI,SAAS,CAAC,OAAO,EACvC,WAAW,EACT,SAAS;wBACT,SAAS,CAAC,WAAW;wBACrB,SAAS,CAAC,WAAW,CAAC,yBAAyB,IACjD;aACH;SACF;KAAA;IAEa,UAAU,CACtB,WAAwB,EACxB,MAAe;;YAEf,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;YAEvD,OAAO,KAAK,IAAI,WAAW,CAAC,GAAG,CAAC,WAAW;kBACvC;oBACE,gBAAgB,EAAE,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACpD,KAAK,EACL,WAAW,CAAC,GAAG,CAAC,WAAW,CAC5B;oBACD,KAAK;iBACN;kBACD,IAAI,CAAC;SACV;KAAA;IAEa,QAAQ,CACpB,WAAwB,EACxB,MAAe;;YAEf,IAAI,MAAM,EAAE;gBACV,OAAO,MAAMA,iBAAG,CAAC,KAAK,iCACjB,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,WAAW,CAAC,KAC1C,CAAC,EAAE,MAAM,IACT,CAAC;aACJ;iBAAM,IACL,WAAW,CAAC,GAAG,CAAC,KAAK,KAAK,QAAQ,CAAC,aAAa;gBAChD,CAAC,WAAW,CAAC,WAAW;gBACxB,WAAW,CAAC,GAAG,CAAC,kBAAkB,EAClC;;gBAEA,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;gBAClD,MAAM,eAAe,GAAQ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC/D,GAAG,CAAC,GAAG,EACP,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,kBAAkB,CAAC,EAC9C;oBACE,cAAc,EAAE,CAAC,iBAAiB,CAAC,OAAO,CAAC;iBAC5C,CACF,CAAC;gBACF,IAAI,eAAe,CAAC,KAAK,EAAE;oBACzB,OAAO,MAAMA,iBAAG,CAAC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;iBAC/C;aACF;YACD,OAAO,IAAI,CAAC;SACb;KAAA;IAEK,WAAW,CAAC,EAChB,OAAO,EACP,KAAK,EACL,WAAW,EACX,OAAO,GACU;;YACjB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAChD,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;YACrE,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;;;YAI9C,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;;;;;YAOjE,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC3D,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YAEjE,IAAI,qBAAqB,GAAW,IAAI,CAAC;YAEzC,IAAI,WAAW,IAAI,WAAW,CAAC,cAAc,EAAE;gBAC7C,qBAAqB,GAAG,IAAI,CAAC,SAAS,CACpC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC/B,eAAe,CAAC,GAAG,EACnB,WAAW,CAAC,cAAc,CAC3B,CACF,CAAC;aACH;YAED,MAAM,SAAS,GAAG;gBAChB,OAAO;gBACP,WAAW,EAAE,WAAW;sBACpB;wBACE,yBAAyB,EAAE,WAAW,CAAC,yBAAyB;qBACjE;sBACD,IAAI;aACT,CAAC;;YAGF,MAAM,gBAAgB,GAAqB;gBACzC,KAAK;gBACL,SAAS,kCACJ,SAAS,KACZ,UAAU,EAAE,mBAAmB,CAAC,MAAM,EAAE,EACxC,GAAG,EAAE,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,EAC9B,MAAM,EAAE,eAAe,CAAC,GAAG,CAAC,MAAM,EAAE,EACpC,OAAO,EAAE;wBACP,QAAQ,EAAE,IAAI,CAAC,QAAQ;qBACxB,GACF;aACF,CAAC;YAEF,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACtD,KAAK,EACL,gBAAgB,CACjB,CAAC;;YAGF,MAAM,2BAA2B,GAAgC;gBAC/D,KAAK;gBACL,UAAU,EAAE,mBAAmB,CAAC,MAAM,CAAC,IAAI,CAAC;;;;;;gBAO5C,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC;;;gBAGzB,oBAAoB,EAAE,WAAW;gBACjC,SAAS;aACV,CAAC;YAEF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAC1D,MAAM,sBAAsB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACjE,OAAO,CAAC,GAAG,EACX,2BAA2B,CAC5B,CAAC;;YAGF,MAAM,MAAM,GAAY,KAAK,CAAC,MAAM,CAAC,IAAI,CAAS,CAAC,CAAC,CAAC;;YAGrD,MAAM,EAAE,sBAAsB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBACjE,QAAQ,EAAE,mBAAmB;gBAC7B,SAAS,EAAE;oBACT,KAAK,EAAE;;wBAEL,sBAAsB,EAAE,IAAI,CAAC,SAAS,CAAC,sBAAsB,CAAC;wBAC9D,cAAc,EAAE,YAAY,CAAC,EAAE;wBAC/B,iBAAiB,EAAE,eAAe,CAAC,EAAE;;wBAErC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;wBAC3C,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;wBACxC,SAAS,EAAE,KAAK;8BACZ;gCACE,KAAK;gCACL,QAAQ,EAAE,MAAM;6BACjB;8BACD,IAAI;wBACR,QAAQ,EAAE,IAAI;wBACd,qBAAqB;wBACrB,OAAO;qBACR;iBACF;aACF,CAAC,CAAC;YACH,OAAO,EAAE,WAAW,EAAE,sBAAsB,CAAC,WAAW,EAAE,MAAM,EAAE,CAAC;SACpE;KAAA;IAEK,UAAU,CAAC,EACf,EAAE,EACF,KAAK,EACL,YAAY,EACZ,OAAO,EACP,oBAAoB,EACpB,oBAAoB,EAAE,eAAe,GACrB;;YAChB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YAC9C,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAE1D,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC,EAAE,CAAC;YAC7D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAE9D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACpD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAEtD,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC7D,OAAO,CAAC,GAAG,EACX,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CACvB,CAAC;YACF,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC/D,SAAS,CAAC,GAAG,EACb,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;YAEF,MAAM,mBAAmB,GAAG,MAAMA,iBAAG,CAAC,KAAK,CACzC,YAAY,CAAC,gBAAgB,CAAC,SAAS,CAAC,UAAU,CACnD,CAAC;YAEF,MAAM,YAAY,GAAG,MAAMA,iBAAG,CAAC,KAAK,CAClC,YAAY,CAAC,gBAAgB,CAAC,SAAS,CAAC,GAAG,CAC5C,CAAC;YACF,MAAM,eAAe,GAAG,MAAMA,iBAAG,CAAC,KAAK,CACrC,YAAY,CAAC,gBAAgB,CAAC,SAAS,CAAC,MAAM,CAC/C,CAAC;;;;;;YAQF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC3D,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YAEjE,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC1D,eAAe,CAAC,GAAG,EACnB,YAAY,CAAC,MAAM,EAAE,CACtB,CAAC;YACF,MAAM,qBAAqB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC7D,eAAe,CAAC,GAAG,EACnB,eAAe,CAAC,MAAM,EAAE,CACzB,CAAC;YAEF,MAAM,8BAA8B,GAAmC;gBACrE,KAAK,EAAE,YAAY,CAAC,gBAAgB,CAAC,KAAK;gBAC1C,SAAS,EAAE,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC;gBACjC,WAAW,EAAE,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC;gBACrC,SAAS,EAAE;oBACT,GAAG,EAAE,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE;oBAC9B,MAAM,EAAE,eAAe,CAAC,GAAG,CAAC,MAAM,EAAE;oBACpC,OAAO,EAAE;wBACP,QAAQ,EAAE,IAAI,CAAC,QAAQ;qBACxB;oBACD,OAAO;iBACR;aACF,CAAC;YAEF,IAAI,iBAAiB,CAAC;YACtB,IAAI,YAAY,CAAC,gBAAgB,CAAC,SAAS,CAAC,WAAW,EAAE;;;;gBAIvD,MAAM,yBAAyB,GAC7B,YAAY,CAAC,gBAAgB,CAAC,SAAS,CAAC,WAAW;qBAChD,yBAAyB,CAAC;;gBAG/B,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACtD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;gBAExD,iBAAiB,GAAG;oBAClB,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAChC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,OAAO,CAAC,GAAG,EACX,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CACF;oBACD,qBAAqB,EAAE,OAAO,CAAC,EAAE;oBACjC,kBAAkB,EAAE,oBAAoB;0BACpC,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,WAAW,EACX,oBAAoB,CAAC,2BAA2B,CACjD,CACF;0BACD,EAAE;oBACN,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAC9B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,SAAS,EACT,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CACF;iBACF,CAAC;gBAEF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,WAAW,EACX,yBAAyB,CAC1B,CAAC;gBACF,iBAAiB,CAAC,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACpD,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,gBAAgB,CAAC,CAChE,CAAC;gBACF,iBAAiB,CAAC,QAAQ,GAAG,MAAM,CAAC,EAAE,CAAC;gBAEvC,8BAA8B,CAAC,SAAS,CAAC,WAAW,mCAC/C,8BAA8B,CAAC,SAAS,CAAC,WAAW,KACvD,eAAe,EAAE,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,GAC1C,CAAC;aACH;YAED,IAAI,aAAa,CAAC;YAClB,IAAI,eAAe,EAAE;;gBAEnB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACnD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;gBAExD,aAAa,GAAG;oBACd,eAAe,EAAE,IAAI,CAAC,SAAS,CAC7B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,OAAO,CAAC,GAAG,EACX,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,CACtB,CACF;oBACD,kBAAkB,EAAE,OAAO,CAAC,EAAE;oBAC9B,eAAe,EAAE,eAAe,CAAC,wBAAwB;0BACrD,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,QAAQ,EACR,eAAe,CAAC,wBAAwB,CACzC,CACF;0BACD,EAAE;oBAEN,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAC9B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,SAAS,EACT,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CACF;iBACF,CAAC;gBAEF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,WAAW,EACX,eAAe,CAAC,yBAAyB,CAC1C,CAAC;gBACF,aAAa,CAAC,mBAAmB,GAAG,IAAI,CAAC,SAAS,CAChD,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,gBAAgB,CAAC,CAChE,CAAC;gBACF,aAAa,CAAC,QAAQ,GAAG,MAAM,CAAC,EAAE,CAAC;gBAEnC,IAAI,eAAe,CAAC,cAAc,EAAE;oBAClC,aAAa,CAAC,iBAAiB,GAAG,IAAI,CAAC,SAAS,CAC9C,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC/B,eAAe,CAAC,GAAG,EACnB,eAAe,CAAC,cAAc,CAC/B,CACF,CAAC;iBACH;;gBAGD,8BAA8B,CAAC,SAAS,CAAC,WAAW,mCAC/C,8BAA8B,CAAC,SAAS,CAAC,WAAW,KACvD,yBAAyB,EAAE,eAAe,CAAC,yBAAyB,GACrE,CAAC;aACH;;YAGD,IAAI,yBAAyB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClE,mBAAmB,EACnB,8BAA8B,CAC/B,CAAC;;YAGF,yBAAyB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC9D,YAAY,CAAC,KAAK,EAClB,yBAAyB,CAC1B,CAAC;YAEF,MAAM,EAAE,qBAAqB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAChE,QAAQ,EAAE,kBAAkB;gBAC5B,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,aAAa,EAAE,EAAE;wBACjB,gBAAgB,EAAE,KAAK;wBACvB,SAAS,EAAE,OAAO,CAAC,EAAE;wBACrB,WAAW;;wBAEX,cAAc,EAAE,YAAY,CAAC,EAAE;wBAC/B,iBAAiB,EAAE,eAAe,CAAC,EAAE;wBACrC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC;wBACtD,qBAAqB,EAAE,IAAI,CAAC,SAAS,CAAC,qBAAqB,CAAC;;;;wBAK5D,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC;wBACtD,oBAAoB,EAAE,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC;;wBAE1D,yBAAyB,EAAE,IAAI,CAAC,SAAS,CAAC,yBAAyB,CAAC;wBACpE,oBAAoB,EAAE,iBAAiB;wBACvC,oBAAoB,EAAE,aAAa;qBACpC;iBACF;aACF,CAAC,CAAC;YAEH,OAAO;gBACL,WAAW,EAAE,qBAAqB,CAAC,WAAW;gBAC9C,aAAa,EAAE,qBAAqB,CAAC,aAAa;gBAClD,EAAE,EAAE,qBAAqB,CAAC,EAAE;aAC7B,CAAC;SACH;KAAA;IAEK,WAAW,CACf,aAAqB,EACrB,sBAA8B,EAC9B,yBAAiC,EACjC,oBAA6B;;YAE7B,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAC1D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;;YAG9D,MAAM,2BAA2B,IAAK,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACxE,OAAO,CAAC,GAAG,EACX,sBAAsB,CACvB,CAA4C,CAAC;;YAG9C,MAAM,8BAA8B,GAAG,MAAM,IAAI,CAAC,qBAAqB,CACrE,MAAMA,iBAAG,CAAC,KAAK,CAAC,2BAA2B,CAAC,KAAK,CAAC,EAClD,MAAMA,iBAAG,CAAC,KAAK,CAAC,2BAA2B,CAAC,UAAU,CAAC,EACvD,yBAAyB,CAC1B,CAAC;;YAGF,IACE,2BAA2B,CAAC,KAAK,KAAK,8BAA8B,CAAC,KAAK,EAC1E;gBACA,MAAM,IAAI,uBAAuB,CAC/B,uFAAuF,CACxF,CAAC;aACH;;;;;;;;YAWD,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YACjE,MAAM,eAAe,GAAG,MAAMA,iBAAG,CAAC,KAAK,CACrC,8BAA8B,CAAC,SAAS,CAAC,MAAM,CAChD,CAAC;YACF,MAAM,YAAY,GAAG,MAAMA,iBAAG,CAAC,KAAK,CAClC,8BAA8B,CAAC,SAAS,CAAC,GAAG,CAC7C,CAAC;YAEF,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC1D,eAAe,CAAC,GAAG,EACnB,YAAY,CAAC,MAAM,EAAE,CACtB,CAAC;YACF,MAAM,qBAAqB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC7D,eAAe,CAAC,GAAG,EACnB,eAAe,CAAC,MAAM,EAAE,CACzB,CAAC;YAEF,MAAM,SAAS,GAAG,MAAMA,iBAAG,CAAC,KAAK,CAAC,8BAA8B,CAAC,SAAS,CAAC,CAAC;YAC5E,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC7D,OAAO,CAAC,GAAG,EACX,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CACvB,CAAC;YAEF,MAAM,WAAW,GAAG,MAAMA,iBAAG,CAAC,KAAK,CACjC,8BAA8B,CAAC,WAAW,CAC3C,CAAC;YACF,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC/D,SAAS,CAAC,GAAG,EACb,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;YAEF,IAAI,+BAA+B,CAAC;YACpC,IAAI,oBAAoB,EAAE;;gBAExB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBAEtD,+BAA+B,GAAG;oBAChC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAChC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,OAAO,CAAC,GAAG,EACX,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CACF;oBACD,qBAAqB,EAAE,OAAO,CAAC,EAAE;oBACjC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAChC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,WAAW,EACX,oBAAoB,CACrB,CACF;iBACF,CAAC;aACH;;YAGD,IAAI,+BAA+B,CAAC;YACpC,IAAI,qCAAqC,CAAC;YAC1C,IAAI,2BAA2B,CAAC,oBAAoB,EAAE;gBACpD,MAAM,oBAAoB,GACxB,2BAA2B,CAAC,oBAAoB,CAAC;gBACnD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACnD,MAAM,eAAe,GAAG,MAAMA,iBAAG,CAAC,KAAK,CACrC,8BAA8B,CAAC,SAAS,CAAC,WAAW,CAAC,eAAe,CACrE,CAAC;gBAEF,MAAM,eAAe,GAAG,IAAI,CAAC,SAAS,CACpC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CACzE,CAAC;gBACF,MAAM,eAAe,GAAG,oBAAoB,CAAC,wBAAwB;sBACjE,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,QAAQ,EACR,oBAAoB,CAAC,wBAAwB,CAC9C,CACF;sBACD,EAAE,CAAC;gBAEP,+BAA+B,GAAG;oBAChC,eAAe;oBACf,kBAAkB,EAAE,OAAO,CAAC,EAAE;oBAC9B,eAAe;iBAChB,CAAC;gBAEF,qCAAqC,GAAG;oBACtC,QAAQ,EAAE,eAAe,CAAC,EAAE;iBAC7B,CAAC;gBAEF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,eAAe,EACf,oBAAoB,CAAC,yBAAyB,CAC/C,CAAC;gBACF,qCAAqC,CAAC,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACxE,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,gBAAgB,CAAC,CACzE,CAAC;aACH;;;YAKD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC1C,QAAQ,EAAE,mBAAmB;gBAC7B,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,aAAa;wBACb,SAAS,EAAE,OAAO,CAAC,EAAE;wBACrB,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,iBAAiB,EAAE,eAAe,CAAC,EAAE;wBACrC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC;wBACtD,qBAAqB,EAAE,IAAI,CAAC,SAAS,CAAC,qBAAqB,CAAC;wBAC5D,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC;wBACtD,oBAAoB,EAAE,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC;wBAC1D,0BAA0B,EAAE,+BAA+B;wBAC3D,0BAA0B,EAAE,+BAA+B;wBAC3D,gCAAgC,EAAE,qCAAqC;qBACxE;iBACF;aACF,CAAC,CAAC;YACH,OAAO,GAAG,CAAC,sBAAsB,CAAC;SACnC;KAAA;IAEY,oBAAoB,CAAC,KAGjC;;YACC,MAAM,EAAE,oBAAoB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAC9D,KAAK,EAAE,yBAAyB;gBAChC,SAAS,EAAE;oBACT,QAAQ,EAAE,KAAK,CAAC,QAAQ;oBACxB,MAAM,EAAE,KAAK,CAAC,MAAM;iBACrB;aACF,CAAC,CAAC;YACH,OAAO,oBAAoB,CAAC,aAAa,CAAC;SAC3C;KAAA;;;;YA9qBF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAP6BA,iBAAG;YA9BxB,UAAU;YA6BV,eAAe;YAhCtB,iBAAiB;YAHV,oBAAoB;YAQpB,WAAW;;;MCAP,mBAAmB,GAAG,GAAG,CAAA;;;;;;;;EAQpC;MAEW,YAAY,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;;;IAuB3B,gBAAgB;EAClB;MA6CW,cAAc;IAczB,YACU,QAAyB,EACzB,QAAyB,EACzB,iBAAoC,EACpC,kBAAsC;QAHtC,aAAQ,GAAR,QAAQ,CAAiB;QACzB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,uBAAkB,GAAlB,kBAAkB,CAAoB;QAjB/B,YAAO,GAAG,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,IAAI,CAC5D,IAAI,CAAC,iBAAiB,CACvB,CAAC;QACe,YAAO,GAAG,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,IAAI,CAC5D,IAAI,CAAC,iBAAiB,CACvB,CAAC;QACe,SAAI,GAAG,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,IAAI,CACtD,IAAI,CAAC,iBAAiB,CACvB,CAAC;QACe,WAAM,GAAG,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,IAAI,CAC1D,IAAI,CAAC,iBAAiB,CACvB,CAAC;KAOE;IAEE,WAAW,CAAC,EAChB,QAAQ,EACR,MAAM,EACN,gBAAgB,EAChB,sBAAsB,GACL;;YACjB,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,oBAAoB,CAAC;gBACvE,QAAQ;gBACR,MAAM;aACP,CAAC,CAAC;YAEH,MAAM,KAAK,GAAQ;gBACjB,gBAAgB,EAAE,QAAQ;gBAC1B,UAAU,EAAE,MAAM;gBAClB,WAAW,EAAE,aAAa,CAAC,SAAS,CAAC,EAAE;gBACvC,cAAc,EAAE,aAAa,CAAC,UAAU,CAAC,EAAE;aAC5C,CAAC;YAEF,IAAI,sBAAsB,EAAE;gBAC1B,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAC7C,aAAa,CAAC,SAAS,CAAC,EAAE,CAC3B,CAAC;gBACF,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,OAAO,CACtC,SAAS,EACT,sBAAsB,CACvB,CAAC;gBAEF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAChD,aAAa,CAAC,UAAU,CAAC,EAAE,CAC5B,CAAC;gBACF,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,aAAa,CAAC,CAAC;gBAEzE,KAAK,CAAC,mBAAmB,GAAG,IAAI,CAAC,SAAS,CAAC,mBAAmB,CAAC,CAAC;aACjE;YAED,IAAI,gBAAgB,EAAE;gBACpB,KAAK,CAAC,YAAY,GAAG,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC,CAAC;aACvD;YAED,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACzC,KAAK,EAAE,mBAAmB;gBAC1B,SAAS,EAAE;oBACT,KAAK;iBACN;aACF,CAAC,CAAC;YAEH,OAAO,GAAG,CAAC,WAAW,CAAC;SACxB;KAAA;IAEK,cAAc,CAClB,OAAgB,EAChB,EAAE,SAAS,EAAE,YAAY,EAAyB;;YAElD,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,MAAM,CAC3C,YAAY,EACZ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,mBAAmB,CAAC,CACxC,CAAC;YAEF,OAAO,CAAC,4BAA4B,GAAG,MAAM,IAAI,CAAC,OAAO,CACvD,SAAS,EACT,mBAAmB,CACpB,CAAC;SACH;KAAA;IAEK,UAAU,CAAC,EAAU;;YACzB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACzC,KAAK,EAAE,YAAY;gBACnB,SAAS,EAAE;oBACT,EAAE;iBACH;aACF,CAAC,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YAEpC,MAAM,OAAO,GAAG,GAAG,CAAC,OAAkB,CAAC;YAEvC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;;;;YAKtE,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC;;;;;YAO5E,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE;gBACjC,SAAS;gBACT,YAAY;aACb,CAAC,CAAC;YAEH,IAAI,OAAO,CAAC,YAAY,EAAE;gBACxB,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;aAC7D;YAED,OAAO,GAAG,CAAC,OAAO,CAAC;SACpB;KAAA;;;;YA1HF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAjFQ,eAAe;YAHf,eAAe;YADf,iBAAiB;YAGjB,kBAAkB;;;SCHX,qBAAqB,CACnC,MAA6D;IAE7D,OAAO,IAAI,OAAO,CAAI,CAAC,OAAO,EAAE,MAAM,KACpC,MAAM,CAAC,CAAC,GAAG,EAAE,MAAM,MAAM,GAAG,GAAG,MAAM,CAAC,GAAG,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAC/D,CAAC;AACJ,CAAC;MAEY,QAAQ,GAAG,CAAC,OAAe;IACtC,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;IAE3B,OAAO,CAAC,GAAG,EAAE,OAAO;QAClB,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;QAEvC,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,cAAc,CAAC,EAAE;YACpE,OAAO,IAAI,EAAE,CAAC;SACf;QAED,MAAM,SAAS,GAAG,OAAO,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC7D,IACE,SAAS,CAAC,MAAM,GAAG,CAAC;YACpB,SAAS,CAAC,CAAC,CAAC,KAAK,mCAAmC,EACpD;YACA,OAAO,IAAI,EAAE,CAAC;SACf;QAED,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QAEtC,IAAI,IAAI,IAAI,IAAI,CAAC,cAAc,IAAI,IAAI,CAAC,cAAc,CAAC,OAAO,KAAK,MAAM,EAAE;YACzE,OAAO,IAAI,EAAE,CAAC;SACf;QAED,IAAI,MAAM,GAAG,KAAK,CAAC;QAEnB,IAAI,SAAS,CAAC,CAAC,CAAC,KAAK,wBAAwB,EAAE;YAC7C,IAAI,IAAI,IAAI,IAAI,CAAC,aAAa,KAAK,uBAAuB,EAAE;gBAC1D,OAAO,IAAI,EAAE,CAAC;aACf;YACD,MAAM,GAAG,IAAI,CAAC;SACf;aAAM,IAAI,SAAS,CAAC,CAAC,CAAC,KAAK,cAAc,EAAE;YAC1C,IAAI,IAAI,CAAC,QAAQ,KAAK,oBAAoB,EAAE;gBAC1C,MAAM,GAAG,IAAI,CAAC;aACf;SACF;QAED,IAAI,CAAC,MAAM,EAAE;YACX,OAAO,IAAI,EAAE,CAAC;SACf;QAED,OAAO,KAAK,CAAC,GAAG,OAAO,aAAa,kCAC/B,OAAO,KACV,WAAW,EAAE,SAAS,IACtB,CAAC;KACJ,CAAC;AACJ,EAAE;MAEW,oBAAoB,GAAG,CAClC,EAAE,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,mBAAmB,EAAmB,EACtE,IAAe;IAEf,OAAO;QACL,MAAM,MAAM,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACrC,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE;YACrB,MAAM,IAAI,KAAK,CAAC,wDAAwD,CAAC,CAAC;SAC3E;QAED,MAAM,CAAC,KAAK,GAAG,QAAQ,CAAC,OAAO,CAAC,CAAC;QAEjC,IAAI,CAAC,SAAS,CAAC;;YAEb,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;;YAEjB,UAAU;;YAEV,mBAAmB;;YAEnB,eAAe,EAAE,KAAK;SACvB,CAAC,CAAC;KACJ,CAAC;AACJ;;MCSa,eAAe,GAAG,GAAG,CAAA;;;;;;;;EAQhC;MAMW,eAAe,GAAG,GAAG,CAAA;;;;;;EAMhC;MAWW,eAAe,GAAG,GAAG,CAAA;;;;;;;;EAQhC;MAEW,SAAS,GAAG,GAAG,CAAA;;;;;;;EAO1B;MAMW,UAAU,GAAG,GAAG,CAAA;;;;;;;;;;;EAW3B;MAKW,WAAW;IAKtB,YAC6B,MAAuB,EAC1C,IAAgB,EAChB,QAAyB,EACzB,IAAe,EACf,WAAiC,EACjC,UAAe,EACf,UAAsB,EACtB,iBAAoC,EACpC,QAAyB,EACzB,eAAgC;QATb,WAAM,GAAN,MAAM,CAAiB;QAC1C,SAAI,GAAJ,IAAI,CAAY;QAChB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,SAAI,GAAJ,IAAI,CAAW;QACf,gBAAW,GAAX,WAAW,CAAsB;QACjC,eAAU,GAAV,UAAU,CAAK;QACf,eAAU,GAAV,UAAU,CAAY;QACtB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,aAAQ,GAAR,QAAQ,CAAiB;QACzB,oBAAe,GAAf,eAAe,CAAiB;QAdzB,wBAAmB,GAAG,EAAE,CAAC;;QAEzB,eAAU,GAAG,EAAE,CAAC;KAa7B;IAEI,UAAU,CAAC,UAAkB;QACnC,OAAO,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;KACjC;IAEY,MAAM,CAAC,EAAU;;YAC5B,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC1C,QAAQ,EAAE,eAAe;gBACzB,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE;qBACH;iBACF;aACF,CAAC,CAAC;YAEH,OAAO,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;SAC1B;KAAA;IAEY,MAAM,CAAC,EAAE,EAAE,EAAE,IAAI,EAAoB;;YAChD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;YAEjB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAC9D,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACrD,SAAS,CAAC,GAAG,EACb,IAAI,CACL,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAkB;gBACtD,QAAQ,EAAE,eAAe;gBACzB,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE;wBACF,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC;qBACvC;iBACF;aACF,CAAC,CAAC;YAEH,OAAO,GAAG,CAAC,UAAU,CAAC;SACvB;KAAA;IAEY,GAAG,CAAC,EAAU;;YACzB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACzC,KAAK,EAAE,SAAS;gBAChB,SAAS,EAAE;oBACT,EAAE;iBACH;aACF,CAAC,CAAC;YAEH,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAE9D,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC1D,SAAS,CAAC,GAAG,EACb,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAChC,CAAC;YAEF,uBACE,EAAE,EAAE,GAAG,CAAC,EAAE,IACP,eAAe,EAClB;SACH;KAAA;IAEY,IAAI;;YACf,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAa;gBAChD,KAAK,EAAE,UAAU;aAClB,CAAC,CAAC;YAEH,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAE9D,OAAO,OAAO,CAAC,GAAG,CAChB,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAO,IAAI;gBAC7B,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC1D,SAAS,CAAC,GAAG,EACb,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CACjC,CAAC;gBACF,uBACE,EAAE,EAAE,IAAI,CAAC,IAAI,CAAC,EAAE,IACb,eAAe,EAClB;aACH,CAAA,CAAC,CACH,CAAC;SACH;KAAA;IAEY,MAAM,CAAC,EAAE,IAAI,EAAoB;;YAC5C,IAAI,YAAY,CAAC,SAAS,CAAC,MAAM,KAAK,IAAI,EAAE;gBAC1C,MAAM,IAAI,mBAAmB,CAAC,uCAAuC,CAAC,CAAC;aACxE;;YAGD,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;;YAGhC,IAAI,UAAU,CAAC;YACf,OAAO,IAAI,EAAE;gBACX,UAAU,GAAG,IAAI,CAAC,UAAU;qBACzB,aAAa,CAAC,YAAY,CAAC,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC;qBACtD,IAAI,CAAC,GAAG,CAAC,CAAC;gBACb,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC;gBAE5C,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,OAAO,KAAK,OAAO,CAAC,EAAE;oBACnD,MAAM;iBACP;aACF;YAED,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAClE,MAAM,OAAO,GAAG,CACd,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACjC,QAAQ,EAAE,UAAU,IACjB,aAAa,EAChB,EACF,GAAG,CAAC;YAEN,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC9D,MAAM,sBAAsB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACjE,OAAO,EACP,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,CAC7B,CAAC;;YAGF,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YACrD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAC1C,WAAW,CAAC,cAAc,CAAC,SAAS,CAAC,EAAE,CACxC,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,OAAO,EACP,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAC3B,CAAC;YAEF,MAAM,IAAI,oCACJ,IAAI,IAAI,EAAE,IAAI,EAAE,MACpB,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,GACrC,CAAC;YACF,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACrD,SAAS,CAAC,GAAG,EACb,IAAI,CACL,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAkB;gBACtD,QAAQ,EAAE,eAAe;gBACzB,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC;wBACtC,aAAa,EAAE,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC;wBAC5C,eAAe,EAAE,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;wBAC7D,sBAAsB,EAAE,IAAI,CAAC,SAAS,CAAC,sBAAsB,CAAC;wBAC9D,WAAW,EAAE,WAAW,CAAC,cAAc,CAAC,SAAS,CAAC,EAAE;wBACpD,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC;qBACnD;iBACF;aACF,CAAC,CAAC;YAEH,uCACK,GAAG,CAAC,UAAU,CAAC,IAAI,KACtB,UAAU,IACV;SACH;KAAA;;;;;;;;;;;;;;;;IAiBa,WAAW,CACvB,eAAgC,EAChC,UAAkB;;YAElB,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;YAE3E,KAAK,MAAM,IAAI,IAAI,eAAe,CAAC,KAAK,EAAE;gBACxC,MAAM,OAAO,GAAG,CACd,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBACjC,QAAQ,EAAE,UAAU,IACjB,IAAI,CAAC,aAAa,EACrB,EACF,GAAG,CAAC;;gBAGN,IAAI;oBACF,MAAM,eAAe,IAAI,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,OAAO,EACP,IAAI,CAAC,sBAAsB,CAC5B,CAAQ,CAAC;;;oBAKV,MAAM,WAAW,GAAG,eAAe,CAAC,SAAS,CAAC,WAAW,CAAC;oBAE1D,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CACvD,eAAe,EACf;wBACE,WAAW;wBACX,WAAW;qBACZ,CACF,CAAC;oBAEF,OAAO;wBACL,IAAI;wBACJ,eAAe;wBACf,OAAO;qBACR,CAAC;iBACH;gBAAC,OAAO,KAAK,EAAE;oBACd,SAAS;iBACV;aACF;YACD,MAAM,IAAI,WAAW,CAAC;gBACpB,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,oBAAoB;gBAC1B,OAAO,EAAE,qBAAqB;aAC/B,CAAC,CAAC;SACJ;KAAA;IAEY,aAAa,CACxB,MAA2B;;YAE3B,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI;iBAClB,IAAI,CACH,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,kCAAkC,EACxD,MAAM,CACP;iBACA,SAAS,EAAE,CAAC;;;YAKf,OAAO,GAAG,CAAC;SACZ;KAAA;IAEY,cAAc,CACzB,MAA4B;;YAE5B,OAAO,IAAI,CAAC,IAAI;iBACb,IAAI,CAAuB,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,eAAe,EAAE;gBACjE,QAAQ,EAAE,MAAM,CAAC,OAAO;gBACxB,MAAM,EAAE,MAAM,CAAC,KAAK;aACrB,CAAC;iBACD,SAAS,EAAE,CAAC;;;SAIhB;KAAA;IAEY,MAAM,CAAC,MAAoB;;YACtC,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,IAAI;iBACpC,IAAI,CACH,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,iCAAiC,EACvD;gBACE,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,UAAU,EAAE,MAAM,CAAC,UAAU;aAC9B,CACF;iBACA,SAAS,EAAE,CAAC;;;YAIf,MAAM,EAAE,eAAe,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,WAAW,CAC/D,eAAe,EACf,MAAM,CAAC,IAAI,CACZ,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,IAAI;iBACxB,IAAI,CAAM,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,oCAAoC,EAAE;gBACrE,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,eAAe;aAChB,CAAC;iBACD,SAAS,EAAE,CAAC;;;YAKf,OAAO;gBACL,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,aAAa,EAAE,GAAG,CAAC,aAAa;gBAChC,WAAW,EAAE,GAAG,CAAC,WAAW;gBAC5B,SAAS,EAAE,MAAMA,iBAAG,CAAC,KAAK,CACxB,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,OAAO,EAAE,GAAG,CAAC,gBAAgB,CAAC,CACpE;aACF,CAAC;SACH;KAAA;IAEY,WAAW,CAAC,MAAyB;;;YAEhD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAClE,MAAM,CAAC,WAAW,CACnB,CAAC;;YAGF,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC9D,aAAa,CAAC,OAAO,EACrB,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CAC9B,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI;iBAC3B,IAAI,CACH,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,gCAAgC,EACtD;gBACE,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,aAAa,EAAE,MAAM,CAAC,aAAa;gBACnC,WAAW,EAAE,MAAM,CAAC,WAAW;gBAC/B,mBAAmB;gBACnB,UAAU,EAAE;oBACV,aAAa,EAAE,aAAa,CAAC,aAAa;oBAC1C,aAAa,EAAE,aAAa,CAAC,aAAa;oBAC1C,kBAAkB,EAAE,aAAa,CAAC,eAAe,CAAC,MAAM,EAAE;oBAC1D,yBAAyB,EAAE,aAAa,CAAC,yBAAyB;iBACnE;aACF,CACF;iBACA,SAAS,EAAE,CAAC;;;;;;;YASf,IAAI,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,WAAW,EAAE;gBACrE,OAAO,EAAE,MAAM;aAChB,CAAC,CAAC;YAEH,IAAI,IAAI,CAAC,aAAa,KAAK,uBAAuB,EAAE;gBAClD,MAAM,IAAI,WAAW,CAAC;oBACpB,OAAO,EACL,kEAAkE;iBACrE,CAAC,CAAC;aACJ;;;;YAMD,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,mBAAmB,CACxC,IAAI,EACJ,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,aAAa,CAAC,OAAO,CAAC,EAC5D,EAAE,CACH,CAAC;;;YAKF,MAAM,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAE1B,OAAO,MAAM,IAAI,CAAC,IAAI;iBACnB,IAAI,CAAM,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,4BAA4B,EAAE;gBAC7D,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;aAC1C,CAAC;iBACD,SAAS,EAAE,CAAC;SAChB;KAAA;;;;YA3XF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;4CAOI,MAAM,SAAC,SAAS;YAtKZ,UAAU;YADV,eAAe;YAGf,SAAS;YAYT,oBAAoB;YAGCA,iBAAG;YAVxB,UAAU;YAFV,iBAAiB;YACjB,eAAe;YASf,eAAe;;;MCJX,eAAe;IAC1B,YAC6B,MAAuB,EAC1C,IAAe,EACf,IAAgB,EAChB,UAA6B,EAC7B,iBAAoC,EACpC,eAAgC;QALb,WAAM,GAAN,MAAM,CAAiB;QAC1C,SAAI,GAAJ,IAAI,CAAW;QACf,SAAI,GAAJ,IAAI,CAAY;QAChB,eAAU,GAAV,UAAU,CAAmB;QAC7B,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,oBAAe,GAAf,eAAe,CAAiB;KACtC;;;;;IAMS,WAAW,CAAC,KAAa;;YACpC,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,IAAI;iBACjC,IAAI,CAAe,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,mBAAmB,EAAE;gBAC7D,OAAO,EAAE,KAAK;gBACd,OAAO,EAAE,QAAQ;aAClB,CAAC;iBACD,SAAS,EAAE,CAAC;YACf,OAAO,QAAQ,CAAC;SACjB;KAAA;IAEY,WAAW,CAAC,WAAmB;;YAC1C,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,IAAI;iBACjC,IAAI,CAAe,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,iBAAiB,EAAE;gBAC3D,OAAO,EAAE,WAAW;gBACpB,OAAO,EAAE,QAAQ;aAClB,CAAC;iBACD,SAAS,EAAE,CAAC;YACf,OAAO,QAAQ,CAAC;SACjB;KAAA;IAEY,uBAAuB,CAClC,cAAsB,EACtB,gBAAwB;;YAExB,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,IAAI;iBAC9B,IAAI,CAAY,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,eAAe,EAAE;gBACtD,QAAQ,EAAE,cAAc;gBACxB,MAAM,EAAE,gBAAgB;aACzB,CAAC;iBACD,SAAS,EAAE,CAAC;YACf,OAAO,KAAK,CAAC;SACd;KAAA;IAEY,QAAQ,CACnB,KAAa,EACb,QAAgB,EAChB,cAAsB,EACtB,iBAAyB,EACzB,mBAAsC,OAAO;;;YAG7C,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAClE,QAAQ,CACT,CAAC;YAEF,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACpD,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,aAAa,CAAC,OAAO,EACrB,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CACvB,CAAC;YAEF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAClD,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACzD,SAAS,EACT,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CACrB,CAAC;;YAGF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;YACjD,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACrD,OAAO,EACP,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACjB,CAAC;;YAGF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YACxD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACxD,OAAO,EACP,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CACpB,CAAC;;YAGF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI;iBACzB,IAAI,CAAM,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,QAAQ,EAAE;gBACzC,MAAM,EAAE;oBACN;wBACE,IAAI,EAAE,gBAAgB;wBACtB,KAAK,EAAE,iBAAiB;wBACxB,QAAQ,EAAE,cAAc;qBACzB;iBACF;gBACD,eAAe,EAAE,aAAa,CAAC,aAAa;gBAC5C,qBAAqB,EAAE,aAAa,CAAC,eAAe,CAAC,MAAM,EAAE;gBAC7D,6BAA6B,EAAE,aAAa,CAAC,yBAAyB;gBACtE,eAAe,EAAE,aAAa,CAAC,aAAa;gBAC5C,kBAAkB,EAAE,gBAAgB;gBACpC,gBAAgB,EAAE,cAAc;gBAChC,GAAG,EAAE,GAAG,CAAC,MAAM,EAAE;gBACjB,WAAW,EAAE,UAAU;gBACvB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE;gBACxB,eAAe,EAAE,aAAa;aAC/B,CAAC;iBACD,SAAS,EAAE,CAAC;;YAGf,MAAM,UAAU,GAAG,EAAE,CAAC;YACtB,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,KAAK;gBACxB,UAAU,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,KAAK,CAAC;aACtC,CAAC,CAAC;;;YAIH,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,mBAAmB,CAAC,CAAC,CAAC,CAAC;YAEtD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;gBACzC,QAAQ,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,MAAM,EAAE;gBAC5C,QAAQ,EAAE,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,aAAa,CAAC,OAAO,CAAC;gBACtE,UAAU;;;;;;;;;;;;;;;;gBAgBV,cAAc,EAAE;oBACd,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;oBACxB,sBAAsB,EAAE,MAAM,CAAC,IAAI,CAAC,iBAAiB,CAAC;iBACvD;aACF,CAAC,CAAC;YAEH,OAAO;gBACL,QAAQ,EAAE,WAAW,CAAC,IAAI,CAAC,WAAW,EAAE;gBACxC,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,cAAc,EAAE,IAAI,CAAC,iBAAiB;gBACtC,OAAO,EAAE,WAAW,CAAC,OAAO;aAC7B,CAAC;SACH;KAAA;IAEY,oBAAoB,CAAC,OAAe;;;YAE/C,IAAI;gBACF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,IAAI;qBAC7B,GAAG,CACF,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,8BAA8B,OAAO,0BAA0B,CACtF;qBACA,SAAS,EAAE,CAAC;gBACf,OAAO,QAAQ,CAAC;aACjB;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,KAAK,CAAC,MAAM,KAAK,GAAG,EAAE;oBACxB,OAAO,IAAI,CAAC;iBACb;qBAAM;oBACL,MAAM,KAAK,CAAC;iBACb;aACF;SACF;KAAA;;;;YA1KF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;4CAGI,MAAM,SAAC,SAAS;YAZZ,SAAS;YAFT,UAAU;YAIV,iBAAiB;YADjB,iBAAiB;YAGjB,eAAe;;;MCEX,gBAAgB;IAC3B,YAAoB,IAAe;QAAf,SAAI,GAAJ,IAAI,CAAW;KAAI;IAE1B,eAAe;;YAC1B,MAAM,WAAW,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAAC;YAE5E,OAAO,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;SACrD;KAAA;IAEY,eAAe,CAC1B,MAAgC;;YAEhC,MAAM,WAAW,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAAC;YAE5E,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;SACtD;KAAA;IAEY,cAAc,CAAC,KAAK;;YAC/B,MAAM,WAAW,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAAC;YAE5E,MAAM,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,WAAW,EAAE;gBAChD,YAAY,EAAE,KAAK;aACpB,CAAC,CAAC;SACJ;KAAA;IAEY,UAAU;;YACrB,MAAM,IAAI,CAAC,IAAI,CAAC,0BAA0B,CAAC,cAAc,CAAC,CAAC;SAC5D;KAAA;IAEY,aAAa,CAAC,gBAAwB;;YACjD,MAAM,IAAI,CAAC,IAAI,CAAC,gCAAgC,CAC9C,cAAc,EACd,gBAAgB,CACjB,CAAC;SACH;KAAA;IAEY,gBAAgB;;YAC3B,MAAM,CAAC,WAAW,EAAE,QAAQ,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;gBAChD,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE;gBACpC,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE;aAC5B,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;YAEpD,MAAM,KAAK,GAAG,QAAQ,CAAC,UAAU,CAAC,KAAK,CAAC;YACxC,IAAI,CAAC,KAAK,EAAE;gBACV,MAAM,IAAI,sBAAsB,CAAC,gCAAgC,CAAC,CAAC;aACpE;YAED,OAAO;gBACL,IAAI;gBACJ,OAAO,EAAE,kBAAkB,KAAK,WAAW,IAAI,mBAAmB;aACnE,CAAC;SACH;KAAA;IAEY,mBAAmB,CAAC,QAAgB;;YAC/C,MAAM,WAAW,GAAgB,MAAM,IAAI,CAAC,IAAI,CAAC,wBAAwB,EAAE,CAAC;YAE5E,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;SACxD;KAAA;;;;YA9DF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YALQ,SAAS;;;MCCL,WAAW;IACtB,YACS,WAAmB,CAAC,EACpB,cAAsB,CAAC,EACvB,YAAoB,EAAE;QAFtB,aAAQ,GAAR,QAAQ,CAAY;QACpB,gBAAW,GAAX,WAAW,CAAY;QACvB,cAAS,GAAT,SAAS,CAAa;KAC3B;CACL;MAEY,WAAW;IACtB,YACS,KAAa,EACb,YAAoB,CAAC,EACrB,OAAe,CAAC;QAFhB,UAAK,GAAL,KAAK,CAAQ;QACb,cAAS,GAAT,SAAS,CAAY;QACrB,SAAI,GAAJ,IAAI,CAAY;QAEvB,IAAI,CAAC,WAAW,EAAE,CAAC;KACpB;IAIM,WAAW;QAChB,IAAI,CAAC,MAAM,GAAG,KAAK,EAAE,CAAC;KACvB;IAEM,QAAQ,CAAC,KAAkB;QAChC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;KACzB;CACF;MAEY,QAAQ;IACnB,YAAmB,YAAoB,CAAC;QAArB,cAAS,GAAT,SAAS,CAAY;QACtC,IAAI,CAAC,kBAAkB,EAAE,CAAC;KAC3B;IAIM,IAAI;QACT,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC;KAClC;IAEM,kBAAkB;QACvB,IAAI,CAAC,aAAa,GAAG,IAAI,KAAK,EAAE,CAAC;KAClC;IAEM,cAAc,CAAC,WAAwB;QAC5C,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;KACtC;CACF;MAEY,SAAS;IAGpB,YAAmB,gBAAwB;QAAxB,qBAAgB,GAAhB,gBAAgB,CAAQ;QACzC,IAAI,CAAC,WAAW,EAAE,CAAC;KACpB;IAEM,WAAW;QAChB,IAAI,CAAC,MAAM,GAAG,IAAI,KAAK,EAAE,CAAC;KAC3B;IAEM,QAAQ,CAAC,KAAa;QAC3B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;KACzB;CACF;MAEY,MAAM;IAGjB;QACE,IAAI,CAAC,aAAa,EAAE,CAAC;KACtB;IAEM,aAAa;QAClB,IAAI,CAAC,QAAQ,GAAG,IAAI,KAAK,EAAE,CAAC;KAC7B;IAEM,YAAY,CAAC,SAAoB;QACtC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;KAC/B;IAEM,eAAe;QACpB,IAAI,MAAM,GAAG,EAAE,CAAC;QAEhB,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,SAAS;YAC9B,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;SAC1C,CAAC,CAAC;QAEH,OAAO,MAAM,CAAC;KACf;CACF;MAKY,aAAa;IACxB,iBAAgB;IAEH,cAAc,CAAC,MAAM,EAAE,UAAkB,EAAE,QAAkB;;;YAExE,IAAI,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;YACvB,GAAG,GAAG,YAAY,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC;;YAGxC,MAAM,MAAM,GAAG,EAAE,CAAC;YAElB,KAAK,MAAM,EAAE,IAAI,QAAQ,CAAC,aAAa,EAAE;gBACvC,MAAM,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC,SAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC;aACtC;;YAGD,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,GAAG,EAAE;gBACvC,UAAU;gBACV,SAAS,EAAE,QAAQ,CAAC,SAAS;gBAC7B,MAAM;gBACN,KAAK,EAAE,EAAE;aACV,CAAC,CAAC;;YAGH,QAAQ,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC,EAAE,EAAE,GAAG;;gBAErC,EAAE,CAAC,WAAW,EAAE,CAAC;gBAEjB,KAAK,IAAI,EAAE,GAAG,CAAC,EAAE,EAAE,GAAG,EAAE,CAAC,IAAI,EAAE,EAAE,EAAE,EAAE;;;oBAGnC,MAAM,IAAI,GACR,IAAI;wBACJ,GAAG,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC;wBAC/B,GAAG;wBACH,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;oBACjC,MAAM,SAAS,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;oBACnD,MAAM,KAAK,GAAG,IAAI,WAAW,CAAC,GAAG,EAAE,EAAE,EAAE,SAAS,CAAC,CAAC;oBAElD,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;iBACpB;aACF,CAAC,CAAC;SACJ;KAAA;;IAGO,UAAU,CAAC,SAAmB;;QAEpC,IAAI,WAAW,GAAG,IAAI,CAAC;QACvB,MAAM,MAAM,GAAG,IAAI,GAAG,EAAE,CAAC;QACzB,KAAK,MAAM,QAAQ,IAAI,SAAS,EAAE;YAChC,MAAM,OAAO,GAAG,YAAY,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;YAEtD,IAAI,WAAW,IAAI,WAAW,KAAK,OAAO,CAAC,cAAc,EAAE;gBACzD,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;aAC7D;YAED,WAAW,GAAG,OAAO,CAAC,cAAc,CAAC;;;YAIrC,IAAI,CAAC,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;YACvC,IAAI,CAAC,IAAI,IAAI,EAAE;gBACb,CAAC,GAAG;oBACF,eAAe,EAAE,OAAO,CAAC,eAAe;oBACxC,OAAO,EAAE,EAAE;iBACZ,CAAC;gBACF,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;aACnC;YAED,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC;gBACb,QAAQ;gBACR,OAAO;aACR,CAAC,CAAC;SACJ;;QAGD,MAAM,eAAe,GAAG,EAAE,CAAC;QAC3B,IAAI,UAAU,GAAG,CAAC,CAAC;QACnB,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,EAAE,EAAE;;YAE/B,IAAI,CAAC,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,eAAe,EAAE;gBACxC,SAAS;aACV;;YAGD,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,eAAe,CAAC,CAAC,OAAO,CAAC,CAAC,MAAM;gBACnD,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;aACvC,CAAC,CAAC;YAEH,EAAE,UAAU,CAAC;YACb,IAAI,UAAU,IAAI,WAAW,EAAE;gBAC7B,MAAM;aACP;SACF;QAED,OAAO,eAAe,CAAC;KACxB;IAEY,aAAa,CAAC,MAAgB,EAAE,UAAkB;;YAC7D,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;YAEjC,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;YAEjE,MAAM,MAAM,GAAG,YAAY,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC;YAEvD,OAAO,IAAI,CAAC,MAAM,CAAC,CAAC;SACrB;KAAA;;;;YA7GF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;;ICvFW;AAAZ,WAAY,QAAQ;IAClB,4CAAgC,CAAA;IAChC,kDAAsC,CAAA;AACxC,CAAC,EAHW,QAAQ,KAAR,QAAQ,QAGnB;MAEY,mBAAmB,GAAG,IAAI,CAAC,SAAS,CAAC;IAChD,MAAM,EAAE;QACN;YACE,QAAQ,EAAE;gBACR,QAAQ,EAAE,QAAQ,CAAC,aAAa;aACjC;SACF;KACF;CACF,EAAE;MAEU,sBAAsB,GAAG,IAAI,CAAC,SAAS,CAAC;IACnD,MAAM,EAAE;QACN;YACE,QAAQ,EAAE;gBACR,QAAQ,EAAE,QAAQ,CAAC,gBAAgB;aACpC;SACF;KACF;CACF,EAAE;MAEU,cAAc,GAAG,CAAC,KAAK,GAAG,wBAAwB,KAAK,GAAG,CAAA;;;;;;;;;;;;;;;;MAgBjE,YAAY;MACZ,qBAAqB,CAAC,KAAK,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA6DhC,gBAAgB;EAChB;MAEW,6BAA6B,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;EAqB9C;MAEW,oBAAoB,GAAG,GAAG,CAAA;;;;;;;;EAQrC;MAEW,6BAA6B,GAAG,GAAG,CAAA;;;;;;;;EAQ9C;MAEW,oBAAoB,GAAG,GAAG,CAAA;;;;;;;;EAQrC;MAEW,oBAAoB,GAAG,GAAG,CAAA;;;;;;EAMrC;MAEWY,oBAAkB,GAAG,GAAG,CAAA;;;;;;;;EAQnC;MAEWC,oBAAkB,GAAG,GAAG,CAAA;;;;;;;;ICzLzB;AAAZ,WAAY,WAAW;IACrB,8BAAe,CAAA;IACf,8BAAe,CAAA;IACf,gCAAiB,CAAA;IACjB,gCAAiB,CAAA;IACjB,4BAAa,CAAA;AACf,CAAC,EANW,WAAW,KAAX,WAAW,QAMtB;MAEY,YAAY;CAKxB;MAEY,eAAe;CAO3B;MAEY,eAAe;CAG3B;MAEY,WAAW;CAUvB;MAEY,QAAQ;CAcpB;MAEY,eAAgB,SAAQ,QAAQ;CAE5C;MAEY,aAAa;CAIzB;MAEY,WAAW;CAOvB;MAEY,eAAe;CAM3B;MAEY,KAAK;;;MC5CL,eAAe;IAC1B,YACU,QAAyB,EACzB,cAA8B,EAC9B,QAAyB;QAFzB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,aAAQ,GAAR,QAAQ,CAAiB;KAC/B;IAES,mBAAmB,CAC9B,QAA+B,IAAI;;YAEnC,MAAM,EAAE,eAAe,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACzD,KAAK,EAAE,wBAAwB;gBAC/B,SAAS,EAAE;oBACT,QAAQ,EAAE,KAAK,IAAI,KAAK,CAAC,QAAQ;iBAClC;aACF,CAAC,CAAC;YACH,OAAO,eAAe,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;SAC1D;KAAA;IAEY,eAAe;;YAC1B,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAwB;gBAChE,KAAK,EAAE,cAAc;gBACrB,SAAS,EAAE;oBACT,eAAe,EAAE,kBAAkB;iBACpC;aACF,CAAC,CAAC;YAEH,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YACjD,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE;gBAC5B,MAAM,IAAI,mBAAmB,CAAC,wCAAwC,CAAC,CAAC;aACzE;YAED,OAAO,aAAa,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;SACjC;KAAA;IAEY,aAAa,CACxB,QAA+B,IAAI;;YAEnC,MAAM,GAAG,GAAQ,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAwB;gBAChE,KAAK,EAAE,kBAAkB;gBACzB,SAAS,EAAE;oBACT,WAAW,EAAE,kBAAkB;oBAC/B,cAAc,EAAE,cAAc;oBAC9B,YAAY,EAAE,YAAY;oBAC1B,QAAQ,EAAE,KAAK,IAAI,KAAK,CAAC,QAAQ;iBAClC;aACF,CAAC,CAAC;YAEH,IAAI,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE;gBAC/B,MAAM,IAAI,mBAAmB,CAAC,sCAAsC,CAAC,CAAC;aACvE;iBAAM,IAAI,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE;gBACtC,OAAO,CAAC,KAAK,CAAC,4BAA4B,CAAC,CAAC;gBAC5C,OAAO,EAAE,CAAC;aACX;iBAAM;gBACL,OAAO,MAAM,IAAI,CAAC,aAAa,CAC7B,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAC7C,CAAC;aACH;SACF;KAAA;IAEY,yBAAyB,CACpC,cAAsB;;YAEtB,MAAM,EACJ,EAAE,GACH,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAqC;gBAChE,KAAK,EAAE,8BAA8B;gBACrC,SAAS,EAAE;oBACT,cAAc;oBACd,cAAc,EAAE,cAAc;oBAC9B,YAAY,EAAE,YAAY;oBAC1B,aAAa,EAAE,mBAAmB;iBACnC;aACF,CAAC,CAAC;YACH,OAAO;gBACL,UAAU,EAAE,MAAM,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC;gBACzD,OAAO,EAAE,MAAM,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC,WAAW,CAAC,OAAO,CAAC;aACvD,CAAC;SACH;KAAA;IAEY,qBAAqB,CAChC,cAAsB;;YAEtB,MAAM,EAAE,EAAE,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAiC;gBACvE,KAAK,EAAE,0BAA0B;gBACjC,SAAS,EAAE;oBACT,cAAc;oBACd,cAAc,EAAE,cAAc;oBAC9B,YAAY,EAAE,YAAY;oBAC1B,aAAa,EAAE,mBAAmB;iBACnC;aACF,CAAC,CAAC;YACH,OAAO;gBACL,UAAU,EAAE,MAAM,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC;gBACrD,OAAO,EAAE,MAAM,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC,OAAO,CAAC,OAAO,CAAC;aACnD,CAAC;SACH;KAAA;IAEY,WAAW,CAAC,UAAkB;;YACzC,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAClD,KAAK,EAAE,gBAAgB,EAAE;gBACzB,SAAS,EAAE;oBACT,EAAE,EAAE,UAAU;oBACd,cAAc,EAAE,cAAc;oBAC9B,YAAY,EAAE,YAAY;oBAC1B,aAAa,EAAE,mBAAmB;iBACnC;aACF,CAAC,CAAC;YAEH,OAAO;gBACL,QAAQ,mCACF,MAAM,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,MACpC,OAAO,EAAE,MAAM,IAAI,CAAC,mBAAmB,CAAC,QAAQ,CAAC,GAClD;gBACD,aAAa,EAAE,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,aAAa,CAAC;gBAC/D,OAAO,EAAE,MAAM,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC;aACjD,CAAC;SACH;KAAA;IAEa,SAAS,CAAC,IAAmB;;YACzC,OAAO,OAAO,CAAC,GAAG,CAChB,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CACnD,CAAC;SACH;KAAA;IAEa,aAAa,CAAC,IAAmB;;YAC7C,OAAO,CACL,MAAM,OAAO,CAAC,GAAG,CACf,IAAI,CAAC,KAAK;iBACP,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC;iBAClB,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC;iBACjC,GAAG,CACF,CAAC,IAQA,KAAK,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAC7B,CACJ;iBAEA,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;iBAChB,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;SACvE;KAAA;IAEa,UAAU,CAAC,IAAmB;;YAC1C,OAAO,CACL,MAAM,OAAO,CAAC,GAAG,CACf,IAAI,CAAC,KAAK;iBACP,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC;iBAClB,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC;iBACjC,GAAG,CACF,CAAC,IAUA,KAAK,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAC3B,CACJ;iBAEA,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;iBAChB,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;SACvE;KAAA;IAEY,kBAAkB;;YAC7B,MAAM,aAAa,GAAG,EAAE,CAAC;YACzB,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YAE5E,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC/C,QAAQ,EAAE,mBAAmB;gBAC7B,SAAS,EAAE;oBACT,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC;wBACxB,aAAa,EAAE,aAAa,CAAC,KAAK;wBAClC,OAAO,EAAE,IAAI;qBACd,CAAC;oBACF,UAAU,EAAE,cAAc,CAAC,UAAU;oBACrC,mBAAmB,EAAE,cAAc,CAAC,OAAO;iBAC5C;aACF,CAAC,CAAC;YAEH,OAAO,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;SAC9B;KAAA;IAEY,cAAc,CAAC,WAAwB;;YAClD,MAAM,aAAa,GAAG;gBACpB,IAAI,EAAE,WAAW,CAAC,IAAI;gBACtB,IAAI,EAAE,WAAW,CAAC,IAAI;gBACtB,QAAQ,EAAE,WAAW,CAAC,QAAQ;gBAC9B,YAAY,EAAE,WAAW,CAAC,YAAY;gBACtC,qBAAqB,EAAE,WAAW,CAAC,qBAAqB;aACzD,CAAC;YACF,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAC1D,aAAa,EACb,WAAW,CAAC,WAAW,CACxB,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC/C,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE;oBACT,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC;wBACxB,aAAa,EAAE,aAAa,CAAC,QAAQ;wBACrC,QAAQ,EAAE,KAAK;qBAChB,CAAC;oBACF,UAAU,EAAE,cAAc,CAAC,UAAU;oBACrC,iBAAiB,EAAE,cAAc,CAAC,WAAW;oBAC7C,mBAAmB,EAAE,cAAc,CAAC,OAAO;iBAC5C;aACF,CAAC,CAAC;YAEH,OAAO,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;SACjC;KAAA;IAEY,cAAc,CACzB,UAAkB,EAClB,KAAa,EACb,eAAgC;;YAEhC,MAAM,aAAa,GAAG;gBACpB,IAAI,EAAE,eAAe,CAAC,IAAI;gBAC1B,IAAI,EAAE,eAAe,CAAC,IAAI;gBAC1B,QAAQ,EAAE,eAAe,CAAC,QAAQ;gBAClC,YAAY,EAAE,eAAe,CAAC,YAAY;gBAC1C,qBAAqB,EAAE,eAAe,CAAC,qBAAqB;aAC7D,CAAC;YAEF,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACpD,KAAK,EACL,aAAa,CACd,CAAC;YAEF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,WAAW,EAAE,UAAU;wBACvB,UAAU;qBACX;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,qBAAqB,CAChC,UAAkB,EAClB,IAAa;;YAEb,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,WAAW,EAAE,UAAU;wBACvB,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC;4BACxB,aAAa,EAAE,aAAa,CAAC,QAAQ;4BACrC,QAAQ,EAAE,IAAI;yBACf,CAAC;qBACH;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,cAAc,CAAC,UAAkB;;YAC5C,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE,EAAE,UAAU,EAAE;aAC1B,CAAC,CAAC;SACJ;KAAA;IAEY,eAAe,CAC1B,UAAkB,EAClB,SAAkB;;YAElB,OAAO,IAAI,CAAC,gBAAgB,CAAC,UAAU,EAAE,SAAS,CAAC,CAAC;SACrD;KAAA;IAEY,iBAAiB,CAC5B,UAAkB,EAClB,SAAkB;;YAElB,OAAO,IAAI,CAAC,kBAAkB,CAAC,UAAU,EAAE,SAAS,CAAC,CAAC;SACvD;KAAA;IAEY,gBAAgB,CAC3B,WAAmB,EACnB,SAAkB;;YAElB,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAET,0BAAwB;gBAClC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,WAAW;wBACX,SAAS;qBACV;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,kBAAkB,CAC7B,WAAmB,EACnB,SAAkB;;YAElB,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAEC,4BAA0B;gBACpC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,WAAW;wBACX,SAAS;qBACV;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,QAAQ,CAAC,IAKrB;;YACC,IAAI;gBACF,MAAM,EAAE,IAAI,EAAE,GAAG,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACrE,OAAO;oBACL,EAAE,EAAE,IAAI,CAAC,EAAE;oBACX,KAAK,EAAE,IAAI,CAAC,KAAK;oBACjB,IAAI;iBACL,CAAC;aACH;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,CAAC,KAAK,CAAC,0BAA0B,EAAE,CAAC,EAAE,IAAI,CAAC,CAAC;gBACnD,OAAO,IAAI,CAAC;aACb;SACF;KAAA;IAEY,mBAAmB,CAAC,QAEhC;;YACC,IACE,CAAC,QAAQ,CAAC,gBAAgB;gBAC1B,CAAC,QAAQ,CAAC,gBAAgB,CAAC,KAAK;gBAChC,CAAC,QAAQ,CAAC,gBAAgB,CAAC,KAAK,CAAC,MAAM,EACvC;gBACA,OAAO,EAAE,CAAC;aACX;YACD,MAAM,IAAI,GAAG,QAAQ,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC;YAErE,OAAO;gBACL,IAAI,MAAM,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC;gBACzC,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC;aAC7B,CAAC;SACH;KAAA;IAEY,WAAW,CAAC,IAQxB;;;YACC,IAAI;gBACF,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,YAAY,EAAE,qBAAqB,EAAE,IAAI,EAAE,GACjE,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACtD,MAAM,EAAE,QAAQ,EAAE,GAAG,CAAC,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;gBAE1E,MAAM,OAAO,GACX,IAAI,CAAC,WAAW;oBAChB,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,KAAK,CAAC,CAAC;gBAE7D,OAAO;oBACL,EAAE,EAAE,IAAI,CAAC,EAAE;oBACX,KAAK,EAAE,IAAI,CAAC,KAAK;oBACjB,IAAI;oBACJ,IAAI;oBACJ,QAAQ,EAAE,CAAC,CAAC,QAAQ;oBACpB,QAAQ,EAAE,CAAC,CAAC,QAAQ;oBACpB,UAAU,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ;oBAC3B,YAAY,EAAE,CAAC,CAAC,YAAY;oBAC5B,qBAAqB,EAAE,CAAC,CAAC,qBAAqB;oBAC9C,OAAO,EAAE,IAAI,CAAC,qBAAqB;0BAC/B,IAAI,CAAC,qBAAqB,CAAC,YAAY,KAAK,CAAC;0BAC7C,IAAI;oBACR,eAAe,QAAE,IAAI,CAAC,qBAAqB,0CAAE,YAAY;oBACzD,aAAa,EAAE,OAAO,GAAG,WAAW,CAAC,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,IAAI;oBACrE,YAAY,EAAE,OAAO;0BACjB,IAAI,CAAC,WAAW;6BACb,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,KAAK,CAAC;6BAC3C,GAAG,CAAC,CAAC,CAAC,MAAM;4BACX,cAAc,EAAE,CAAC,CAAC,YAAY,IAAI,CAAC,CAAC,YAAY,CAAC,EAAE;4BACnD,WAAW,EAAE,CAAC,CAAC,IAAI;4BACnB,WAAW,EAAE,CAAC,CAAC,MAAM,KAAK,WAAW;4BACrC,aAAa,EAAE,CAAC,CAAC,aAAa,IAAI,CAAC,CAAC,aAAa,CAAC,EAAE;yBACrD,CAAC,CAAC;0BACL,EAAE;iBACP,CAAC;aACH;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,CAAC,KAAK,CAAC,6BAA6B,EAAE,CAAC,EAAE,IAAI,CAAC,CAAC;gBACtD,OAAO,IAAI,CAAC;aACb;;KACF;IAEY,SAAS,CAAC,IAUtB;;YACC,IAAI;gBACF,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC;gBACtD,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,GACxB,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CACpC,QAAQ,CAAC,cAAc,CAAC,KAAK,CAC9B,KAAK,EAAE,CAAC;gBAEX,MAAM,OAAO,GACX,IAAI,CAAC,WAAW;oBAChB,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,KAAK,CAAC,CAAC;gBAE7D,OAAO;oBACL,EAAE,EAAE,IAAI,CAAC,EAAE;oBACX,KAAK,EAAE,IAAI,CAAC,KAAK;oBACjB,IAAI;oBACJ,UAAU;oBACV,UAAU,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ;oBAC3B,SAAS,EAAE,IAAI,CAAC,OAAO;oBACvB,YAAY,EACV,IAAI,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC;wBACvB,IAAI,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC,QAAQ,CAAC;0BAC5C,IAAI,CAAC,QAAQ;0BACb,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC,QAAQ;oBAC5C,aAAa,EAAE,OAAO,GAAG,WAAW,CAAC,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,IAAI;oBACrE,YAAY,EAAE,OAAO;0BACjB,IAAI,CAAC,WAAW;6BACb,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,KAAK,CAAC;6BAC3C,GAAG,CAAC,CAAC,CAAC,MAAM;4BACX,cAAc,EAAE,CAAC,CAAC,YAAY,IAAI,CAAC,CAAC,YAAY,CAAC,EAAE;4BACnD,WAAW,EAAE,CAAC,CAAC,IAAI;4BACnB,WAAW,EAAE,CAAC,CAAC,MAAM,KAAK,WAAW;4BACrC,aAAa,EAAE,CAAC,CAAC,aAAa,IAAI,CAAC,CAAC,aAAa,CAAC,EAAE;yBACrD,CAAC,CAAC;0BACL,EAAE;iBACP,CAAC;aACH;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,CAAC,KAAK,CAAC,2BAA2B,EAAE,CAAC,CAAC,CAAC;gBAC9C,OAAO,IAAmB,CAAC;aAC5B;SACF;KAAA;;;;YA3cF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAtCQ,eAAe;YACf,cAAc;YAiCd,eAAe;;;MCxBX,kBAAkB;CAG9B;MAKY,mBAAmB;IAG9B,YACU,IAAgB,EAChB,eAAgC;QADhC,SAAI,GAAJ,IAAI,CAAY;QAChB,oBAAe,GAAf,eAAe,CAAiB;KACtC;IAES,iBAAiB;;YAC5B,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE;gBACpB,IAAI,CAAC,UAAU,GAAG,MAAM,IAAI,CAAC,IAAI;qBAC9B,GAAG,CAAoB,8BAA8B,CAAC;qBACtD,SAAS,EAAE,CAAC;aAChB;YACD,OAAO,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;SACzC;KAAA;IAEK,cAAc,CAClB,aAAyB,EACzB,kBAA2B,EAC3B,cAAuB;;YAEvB,MAAM,cAAc,GAAG,cAAc;kBACjC,CAAC,MAAM,IAAI,CAAC,eAAe,CAAC,yBAAyB,CAAC,cAAc,CAAC;qBAClE,UAAU;kBACb,MAAM,IAAI,CAAC,eAAe,CAAC,aAAa,EAAE,CAAC;YAE/C,MAAM,gBAAgB,GAAG,kBAAkB;kBACvC,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,kBAAkB,CAAC;kBAC1D,IAAI,CAAC;YAET,MAAM,gBAAgB,GAAG,aAAa,CAAC,GAAG,CAAC,CAAO,CAAC;gBAAK,QAAC;oBACvD,YAAY,EAAE,CAAC;oBACf,QAAQ,EAAE,MAAM,IAAI,CAAC,YAAY,CAC/B,CAAC,GAAG,CAAC,CAAC,EACN,cAAc,EACd,gBAAgB,CACjB;iBACF,EAAC;cAAA,CAAC,CAAC;YAEJ,MAAM,gBAAgB,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;YAE7D,MAAM,kBAAkB,GAAuB;gBAC7C,UAAU,EAAE,EAAE;gBACd,iBAAiB,EAAE,EAAE;aACtB,CAAC;YAEF,gBAAgB,CAAC,OAAO,CAAC,CAAC,CAAC,KACzB,CAAC,CAAC,QAAQ;kBACN,kBAAkB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC;kBAC9C,kBAAkB,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,YAAY,CAAC,CAC9D,CAAC;YAEF,OAAO,kBAAkB,CAAC;SAC3B;KAAA;IAEK,qBAAqB,CACzB,UAA8D;;YAE9D,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,aAAa,EAAE,CAAC;YAElE,OAAO,MAAM,OAAO,CAAC,GAAG,CACtB,UAAU,CAAC,GAAG,CAAC,CAAO,CAAC;gBAAK,QAAC;oBAC3B,QAAQ,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,EAAE,cAAc,CAAC;oBAClE,WAAW,EAAE,CAAC,CAAC,WAAW;iBAC3B,EAAC;cAAA,CAAC,CACJ,CAAC;SACH;KAAA;IAEa,YAAY,CACxB,YAAsB,EACtB,UAAsB,EACtB,gBAAgC;;YAEhC,MAAM,IAAI,GAAG,YAAY,CAAC,KAAK,EAAE,CAAC;YAElC,MAAM,eAAe,GAAG,UAAU,CAAC,IAAI,CACrC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,IAAI,IAAI,CAAC,CAAC,CAAC,QAAQ,CACtC,CAAC;YAEF,IAAI,eAAe,EAAE;gBACnB,IAAI,YAAY,CAAC,MAAM,EAAE;oBACvB,MAAM,EAAE,aAAa,EAAE,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAC9D,eAAe,CAAC,EAAE,CACnB,CAAC;oBACF,OAAO,IAAI,CAAC,YAAY,CAAC,YAAY,EAAE,aAAa,EAAE,gBAAgB,CAAC,CAAC;iBACzE;qBAAM;oBACL,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CACzD,eAAe,CAAC,EAAE,CACnB,CAAC;oBAEF,IACE,gBAAgB;wBAChB,gBAAgB,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,QAAQ,CAAC,EAAE,CAAC,EACnE;wBACA,OAAO,gBAAgB,CAAC,QAAQ,CAAC;qBAClC;oBACD,OAAO,QAAQ,CAAC;iBACjB;aACF;iBAAM,IAAI,YAAY,CAAC,MAAM,EAAE;gBAC9B,OAAO,IAAI,CAAC,YAAY,CAAC,YAAY,EAAE,UAAU,EAAE,gBAAgB,CAAC,CAAC;aACtE;iBAAM;gBACL,OAAO,IAAI,CAAC;aACb;SACF;KAAA;;;;YA3GF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAlBQ,UAAU;YAEV,eAAe;;;MCSX,uBAAuB;IAClC,YACU,WAAwB,EACxB,QAAyB,EACzB,cAA8B,EAC9B,QAAyB;QAHzB,gBAAW,GAAX,WAAW,CAAa;QACxB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,aAAQ,GAAR,QAAQ,CAAiB;KAC/B;IAEE,kBAAkB,CACtB,eAAuB,EACvB,KAAa;;YAEb,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,qBAAqB,CAChE,eAAe,CAChB,CAAC;YAEF,OAAO,MAAM,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,KAAK,EAAE,aAAa,CAAC,CAAC;SAC9D;KAAA;IAEK,iBAAiB,CACrB,QAAgB,EAChB,WAAqC;;YAErC,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAC/B,CAAC,WAAW,IAAI,EAAE,EAAE,GAAG,CAAC,CAAO,CAAC;gBAC9B,IAAI,CAAC,CAAC,MAAM,EAAE;oBACZ,IAAI,CAAC,CAAC,SAAS,EAAE;wBACf,MAAM,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;wBACtC,OAAO,IAAI,CAAC;qBACb;yBAAM;wBACL,OAAO,CAAC,CAAC,MAAM,CAAC;qBACjB;iBACF;qBAAM;oBACL,OAAO,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;iBAC9C;aACF,CAAA,CAAC,CACH,CAAC;YACF,OAAO,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC;SACjC;KAAA;IAEa,aAAa,CACzB,QAAgB,EAChB,UAAyB;;YAEzB,MAAM,aAAa,GAAG;gBACpB,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,OAAO,EAAE,UAAU,CAAC,OAAO;gBAC3B,QAAQ,EAAE,UAAU,CAAC,IAAI,CAAC,IAAI;gBAC9B,QAAQ,EAAE,UAAU,CAAC,IAAI,CAAC,IAAI;gBAC9B,YAAY,EAAE,UAAU,CAAC,IAAI,CAAC,YAAY;aAC3C,CAAC;YACF,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YACrE,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,CACtE,aAAa,EACb,CAAC,QAAQ,CAAC,EACV,WAAW,CACZ,CAAC;YAEF,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,mBAAmB,CAAC;gBAC3D,gBAAgB,EAAE,oBAAoB,CAAC,iBAAiB;gBACxD,QAAQ,EAAE,UAAU,CAAC,IAAI;aAC1B,CAAC,CAAC;;YAGH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC/C,QAAQ,EAAEO,oBAAkB;gBAC5B,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,QAAQ,EAAE,QAAQ,CAAC,gBAAgB,EAAE,CAAC;wBAClE,eAAe,EAAE,oBAAoB,CAAC,gBAAgB;wBACtD,UAAU,EAAE,oBAAoB,CAAC,UAAU;wBAC3C,iBAAiB,EAAE,oBAAoB,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;4BAC9D,WAAW,EAAE,CAAC,CAAC,WAAW;4BAC1B,aAAa,EAAE,CAAC,CAAC,aAAa;4BAC9B,cAAc,EAAE,CAAC,CAAC,UAAU;yBAC7B,CAAC,CAAC;wBACH,eAAe,EAAE,SAAS;qBAC3B;iBACF;aACF,CAAC,CAAC;YACH,OAAO,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;SACpC;KAAA;IAEK,gBAAgB,CAAC,MAAc;;YACnC,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAEC,oBAAkB;gBAC5B,SAAS,EAAE,EAAE,MAAM,EAAE;aACtB,CAAC,CAAC;SACJ;KAAA;;;;YA3FF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YALQ,WAAW;YAFX,eAAe;YACf,cAAc;YAEd,eAAe;;;MCYX,WAAW;CAMvB;MAEY,gBAAgB;CAU5B;MAEY,QAAQ;CAmBpB;MAEY,aAAa;CAIzB;MAEY,SAAS;CAOrB;MAEY,sBAAuB,SAAQ,aAAa;CAGxD;MAEY,aAAa;;;MClDb,aAAa;IACxB,YACU,QAAyB,EACzB,cAA8B,EAC9B,eAAgC,EAChC,uBAAgD;QAHhD,aAAQ,GAAR,QAAQ,CAAiB;QACzB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,oBAAe,GAAf,eAAe,CAAiB;QAChC,4BAAuB,GAAvB,uBAAuB,CAAyB;KACtD;IAES,SAAS,CAAC,QAAgB;;YACrC,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAChD,KAAK,EAAE,cAAc,EAAE;gBACvB,SAAS,EAAE;oBACT,EAAE,EAAE,QAAQ;oBACZ,cAAc,EAAE,cAAc;oBAC9B,aAAa,EAAE,mBAAmB;oBAClC,iBAAiB,EAAE,sBAAsB;iBAC1C;aACF,CAAC,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC;YACxD,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,MAAM,EAAE,GAChC,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC;gBACrE,EAAE,CAAC;YACL,MAAM,UAAU,GAAG,MAAM,OAAO,CAAC,GAAG,CAClC,MAAM,CAAC,gBAAgB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAO,CAAM;gBAAK,OAAA;oBAClD,IAAI,MAAM,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAChD,CAAC,CAAC,IAAI,CAAC,eAAe,CACvB,CAAC;oBACF,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC;iBAC/D,CAAA;cAAA,CAAC,CACH,CAAC;YACF,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;YACxE,MAAM,OAAO,GACX,MAAM,CAAC,WAAW;gBAClB,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,KAAK,CAAC,CAAC;YAE/D,OAAO;gBACL,EAAE,EAAE,MAAM,CAAC,EAAE;gBACb,KAAK,EAAE,MAAM,CAAC,KAAK;gBACnB,WAAW,EAAE,QAAQ,CAAC,KAAK;gBAC3B,QAAQ,EAAE,QAAQ,CAAC,EAAE;gBACrB,IAAI;gBACJ,UAAU;gBACV,MAAM;gBACN,UAAU;gBACV,WAAW;gBACX,aAAa,EAAE,OAAO,GAAG,WAAW,CAAC,KAAK,GAAG,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,IAAI;gBACvE,YAAY,EAAE,OAAO;sBACjB,MAAM,CAAC,WAAW;yBACf,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,KAAK,CAAC;yBAC3C,GAAG,CAAC,CAAC,CAAC,MAAM;wBACX,cAAc,EAAE,CAAC,CAAC,YAAY,IAAI,CAAC,CAAC,YAAY,CAAC,EAAE;wBACnD,WAAW,EAAE,CAAC,CAAC,IAAI;wBACnB,WAAW,EAAE,CAAC,CAAC,MAAM,KAAK,WAAW;wBACrC,aAAa,EAAE,CAAC,CAAC,aAAa,IAAI,CAAC,CAAC,aAAa,CAAC,EAAE;qBACrD,CAAC,CAAC;sBACL,EAAE;gBACN,UAAU,EAAE,CAAC,CAAC,MAAM,CAAC,QAAQ;gBAC7B,SAAS,EAAE,MAAM,CAAC,OAAO;gBACzB,YAAY,EACV,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC;oBACzB,IAAI,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC,QAAQ,CAAC;sBAC5C,MAAM,CAAC,QAAQ;sBACf,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC,QAAQ;aAC7C,CAAC;SACH;KAAA;IAEa,cAAc,CAC1B,WAAkB;;YAElB,OAAO,MAAM,OAAO,CAAC,GAAG,CACtB,WAAW;iBACR,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC;iBAC5B,GAAG,CAAC,CAAO,CAAM;gBAChB,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,YAAY,EAAE,GACvD,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC,CAAC,cAAc,CAAC,KAAK,CAAC;oBAC9D,EAAE,CAAC;gBAEL,OAAO;oBACL,MAAM,EAAE,CAAC,CAAC,EAAE;oBACZ,KAAK,EAAE,CAAC,CAAC,cAAc,CAAC,KAAK,CAAC,KAAK;oBACnC,SAAS,EAAE,CAAC,CAAC,cAAc,CAAC,KAAK,CAAC,EAAE;oBACpC,OAAO;oBACP,IAAI;oBACJ,QAAQ;oBACR,QAAQ;oBACR,YAAY;iBACb,CAAC;aACH,CAAA,CAAC,CACL,CAAC;SACH;KAAA;IAEY,YAAY,CACvB,SAAoB;;;YAGpB,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,WAAW,CAC1D,IAAI,EACJ,SAAS,CAAC,WAAW,CACtB,CAAC;YACF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC/C,QAAQ,EAAE,6BAA6B;gBACvC,SAAS,EAAE;oBACT,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC;wBACxB,aAAa,EAAE,aAAa,CAAC,MAAM;wBACnC,QAAQ,EAAE,KAAK;qBAChB,CAAC;oBACF,iBAAiB,EAAE,cAAc,CAAC,WAAW;oBAC7C,mBAAmB,EAAE,cAAc,CAAC,OAAO;iBAC5C;aACF,CAAC,CAAC;YACH,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC1C,MAAM,aAAa,GAAG;gBACpB,IAAI,EAAE,SAAS,CAAC,IAAI;gBACpB,UAAU,EAAE,SAAS,CAAC,UAAU;gBAChC,MAAM,EAAE,SAAS,CAAC,MAAM;aACzB,CAAC;YACF,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,iBAAiB,CACtE,aAAa,EACb,CAAC,QAAQ,CAAC,CACX,CAAC;;YAGF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,oBAAoB;gBAC9B,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,QAAQ,EAAE,QAAQ,CAAC,aAAa,EAAE,CAAC;wBAC/D,eAAe,EAAE,oBAAoB,CAAC,gBAAgB;wBACtD,UAAU,EAAE,oBAAoB,CAAC,UAAU;wBAC3C,iBAAiB,EAAE,oBAAoB,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;4BAC9D,WAAW,EAAE,CAAC,CAAC,WAAW;4BAC1B,aAAa,EAAE,CAAC,CAAC,aAAa;4BAC9B,cAAc,EAAE,CAAC,CAAC,UAAU;yBAC7B,CAAC,CAAC;qBACJ;iBACF;aACF,CAAC,CAAC;YAEH,IAAI;gBACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,iBAAiB,CAClD,QAAQ,EACR,SAAS,CAAC,WAAW,CACtB,CAAC;aACH;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBACjB,OAAO,EAAE,QAAQ,EAAE,eAAe,EAAE,CAAC,EAAE,CAAC;aACzC;YACD,OAAO,EAAE,QAAQ,EAAE,CAAC;SACrB;KAAA;IAEY,YAAY,CACvB,QAAgB,EAChB,QAAgB,EAChB,WAAmB,EACnB,aAA4B;;YAE5B,MAAM,aAAa,GAAG;gBACpB,IAAI,EAAE,aAAa,CAAC,IAAI;gBACxB,UAAU,EAAE,aAAa,CAAC,UAAU;gBACpC,MAAM,EAAE,aAAa,CAAC,MAAM;aAC7B,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,aAAa,CAC9D,WAAW,EACX,aAAa,CACd,CAAC;YAEF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,oBAAoB;gBAC9B,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,MAAM,EAAE,QAAQ;wBAChB,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,QAAQ,EAAE,QAAQ,CAAC,aAAa,EAAE,CAAC;wBAC/D,eAAe,EAAE,gBAAgB,CAAC,gBAAgB;wBAClD,UAAU,EAAE,gBAAgB,CAAC,UAAU;qBACxC;iBACF;aACF,CAAC,CAAC;YAEH,IAAI;gBACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,iBAAiB,CAClD,QAAQ,EACR,aAAa,CAAC,WAAW,CAC1B,CAAC;aACH;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBACjB,OAAO,EAAE,QAAQ,EAAE,eAAe,EAAE,CAAC,EAAE,CAAC;aACzC;YACD,OAAO,EAAE,QAAQ,EAAE,CAAC;SACrB;KAAA;IAEY,aAAa,CAAC,QAAgB;;;YAEzC,OAAO,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;SAC9D;KAAA;IAEY,eAAe,CAAC,QAAgB;;;YAE3C,OAAO,IAAI,CAAC,eAAe,CAAC,kBAAkB,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;SAChE;KAAA;IAEY,YAAY,CAAC,QAAgB;;YACxC,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,oBAAoB;gBAC9B,SAAS,EAAE,EAAE,QAAQ,EAAE;aACxB,CAAC,CAAC;SACJ;KAAA;;;;YAhNF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA1BQ,eAAe;YAEf,cAAc;YAoBd,eAAe;YAxBf,uBAAuB;;;ICApB;AAAZ,WAAY,eAAe;IACzB,gCAAa,CAAA;IACb,kCAAe,CAAA;IACf,8BAAW,CAAA;IACX,kCAAe,CAAA;IACf,gCAAa,CAAA;IACb,wCAAqB,CAAA;IACrB,wCAAqB,CAAA;IACrB,oCAAiB,CAAA;IACjB,gDAA6B,CAAA;IAC7B,8CAA2B,CAAA;IAC3B,gCAAa,CAAA;IACb,0CAAuB,CAAA;IACvB,oCAAiB,CAAA;IACjB,8CAA2B,CAAA;IAC3B,kCAAe,CAAA;IACf,oCAAiB,CAAA;AACnB,CAAC,EAjBW,eAAe,KAAf,eAAe,QAiB1B;MAEY,UAAU;CAYtB;MAEY,qBAAqB;CAIjC;MAEY,eAAe;CAY3B;MAEY,iBAAiB;;;AChD9B,MAAM,WAAW,GAAG,CAAC,CAAW,EAAE,CAAW;IAC3C,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACzB,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,IAAI;QAAE,OAAO,KAAK,CAAC;IACzC,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IAExC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,EAAE;QACjC,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAAE,OAAO,KAAK,CAAC;KACjC;IACD,OAAO,IAAI,CAAC;AACd,CAAC,CAAC;;MAKW,iBAAiB;IAI5B,YAAoB,IAAgB;QAAhB,SAAI,GAAJ,IAAI,CAAY;KAAI;IAE3B,cAAc;;YACzB,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE;gBACrB,IAAI,CAAC,WAAW,GAAG,MAAM,IAAI,CAAC,IAAI;qBAC/B,GAAG,CAAe,gCAAgC,CAAC;qBACnD,SAAS,EAAE,CAAC;aAChB;YACD,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE;gBACpB,IAAI,CAAC,UAAU,GAAG,MAAM,IAAI,CAAC,IAAI;qBAC9B,GAAG,CAAoB,8BAA8B,CAAC;qBACtD,SAAS,EAAE,CAAC;aAChB;YAED,MAAM,aAAa,GAAG,IAAI,CAAC,UAAU;iBAClC,GAAG,CAAC,CAAC,GAAG,KAAK,GAAG,CAAC,aAAa,CAAC;iBAC/B,MAAM,CAAC,CAAC,GAAG,EAAE,IAAI,KAAK,CAAC,GAAG,GAAG,EAAE,GAAG,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;YAEhD,MAAM,yBAAyB,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,UAAU,sCAC7D,UAAU,KACb,aAAa,EAAE,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,GAAG;oBAC3C,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC,YAAY;wBAC1B,MAAM,MAAM,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,YAAY,CAAC,CAAC;wBAClE,IAAI,MAAM,EAAE;4BACV,OAAO,MAAM,CAAC,IAAI,CAAC;yBACpB;6BAAM;4BACL,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,YAAY,CAAC,CAAC,IAAI,CAAC;yBAClE;qBACF,CAAC,CAAC;iBACJ,CAAC,IACF,CAAC,CAAC;YACJ,OAAO,OAAO,CAAC,OAAO,CAAC,yBAAyB,CAAC,CAAC;SACnD;KAAA;IAEY,aAAa,CAAC,YAAoB;;YAC7C,OAAO,CAAC,MAAM,IAAI,CAAC,cAAc,EAAE,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,YAAY,CAAC,CAAC;SACzE;KAAA;IAEY,yBAAyB,CACpC,YAAsB;;YAEtB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC;YAEhD,OAAO,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,KAC1B,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,WAAW,CAAC,CAAC,EAAE,YAAY,CAAC,CAAC,CACvD,CAAC;SACH;KAAA;;;;YArDF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAlBQ,UAAU;;;MCUN,gBAAgB;CAQ5B;IAEW;AAAZ,WAAY,oBAAoB;IAC9B,2CAAmB,CAAA;IACnB,6CAAqB,CAAA;AACvB,CAAC,EAHW,oBAAoB,KAApB,oBAAoB,QAG/B;IAEW;AAAZ,WAAY,gBAAgB;IAC1B,iCAAa,CAAA;IACb,iDAA6B,CAAA;AAC/B,CAAC,EAHW,gBAAgB,KAAhB,gBAAgB,QAG3B;IAEW;AAAZ,WAAY,wBAAwB;IAClC,mDAAuB,CAAA;IACvB,mDAAuB,CAAA;IACvB,iDAAqB,CAAA;IACrB,mDAAuB,CAAA;AACzB,CAAC,EALW,wBAAwB,KAAxB,wBAAwB,QAKnC;MAEY,cAAc;CAI1B;MAEY,yBAA0B,SAAQ,mBAAmB;CAIjE;MAEY,kBAAkB;CAoB9B;MAEY,UAAU;CAEtB;MAEY,kBAAkB;CAE9B;MAEY,YAAY;CAYxB;MAEY,iBAAiB;CAM7B;MAEY,kBAAkB;CAI9B;MAEY,wBAAwB;CAKpC;MAEY,yBAAyB;;;MCtGzB,uBAAuB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;EA0BrC;AAEF,MAAM,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;QAQ1B,uBAAuB;;;EAG7B,CAAC;MA2BU,wBAAwB;IACnC,YACU,UAAsB,EACtB,QAAyB,EACzB,QAAyB,EACzB,iBAAoC;QAHpC,eAAU,GAAV,UAAU,CAAY;QACtB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,sBAAiB,GAAjB,iBAAiB,CAAmB;KAC1C;IAEE,gCAAgC,CACpC,EAAqB;;YAErB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAAC,EAAE,CAAC,CAAC;YAE1D,uBACE,EAAE,EAAE,EAAE,CAAC,EAAE,EACT,UAAU,EAAE,EAAE,CAAC,QAAQ,CAAC,EAAE,EAC1B,WAAW,EAAE,EAAE,CAAC,SAAS,CAAC,EAAE,IACzB,OAAO,EACV;SACH;KAAA;IAEK,0BAA0B,CAC9B,EAAqB;;YAErB,IAAI,EAAE,IAAI,EAAE,CAAC,SAAS,IAAI,EAAE,CAAC,gBAAgB,EAAE;gBAC7C,IAAI;oBACF,OAAO,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACzC,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC,SAAS,CAAC,EAAE,CAAC,EAC9C,EAAE,CAAC,gBAAgB,CACpB,CAAC;iBACH;gBAAC,OAAO,CAAC,EAAE;oBACV,OAAO,CAAC,KAAK,CAAC,sCAAsC,EAAE,CAAC,CAAC,CAAC;iBAC1D;aACF;YACD,OAAO,IAAI,CAAC;SACb;KAAA;IAEK,yBAAyB,CAC7B,EAAU,EACV,UAAkB,EAClB,WAAmB,EACnB,WAAgC;;YAEhC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;YACxD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;YAC1D,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YAExD,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,SAAS,CAAC,GAAG,EACb,WAAW,CACZ,CAAC;YACF,MAAM,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACxC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,gBAAgB,CAAC,CAChE,CAAC;YAEF,MAAM,cAAc,GAAG;gBACrB,IAAI,EAAE,IAAI,eAAe,CAAC,WAAW,CAAC,IAAI,CAAC;aAC5C,CAAC;YACF,MAAM,iBAAiB,GAAG,IAAI,CAAC,SAAS,CACtC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,cAAc,CAAC,CAC9D,CAAC;YAEF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAyB;gBACjD,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE;wBACF,eAAe,EAAE,EAAE;wBACnB,UAAU,EAAE,QAAQ,CAAC,EAAE;wBACvB,mBAAmB;wBACnB,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,QAAQ,EAAE,MAAM,CAAC,EAAE;wBACnB,iBAAiB;qBAClB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;;;;YA/EF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAxEQ,UAAU;YAKV,eAAe;YANf,eAAe;YADf,iBAAiB;;;MCKb,sBAAsB,GAAG;;;;;;;;;;;;;;MAchC,uBAAuB;;;MAGvB,uBAAuB;;;;;;;;;;;;;;;;;;;;;UAqBnB,iBAAiB;;QAEnB,mBAAmB;;KAEtB;MAEQ,sBAAsB,GAAG,GAAG,CAAA;;;;;UAK/B,sBAAsB;;;;IAI5B,aAAa;GACd;MAEU,yBAAyB,GAAG,GAAG,CAAA;;;;;UAKlC,sBAAsB;;;;;;;;;;;;UAYtB,iBAAiB;;;;;;;;;;;;UAYjB,iBAAiB;;;;IAIvB,aAAa;GACd;MAEU,oBAAoB,GAAG,GAAG,CAAA;;;MAGjC,sBAAsB;;IAExB,aAAa;GACd;MAEU,qCAAqC,GAAG,GAAG,CAAA;;;;;;;;EAQtD;MAEW,oCAAoC,GAAG,GAAG,CAAA;;;;;;;;EAQrD;MAEW,0BAA0B,GAAG,GAAG,CAAA;;;;;;EAM3C;MAEW,qBAAqB,GAAG,GAAG,CAAA;;;;;;;;;;EAUtC;MAEW,uBAAuB,GAAG,GAAG,CAAA;;;;;;;;;;;;MCtG7B,mBAAmB;IAG9B,YACU,IAAgB,EAChB,QAAyB,EACzB,wBAAkD,EAClD,WAAwB,EACxB,WAAiC,EACjC,kBAAsC,EACtC,eAAgC,EAChC,UAAsB,EACtB,UAA6B,EAC7B,iBAAoC;QATpC,SAAI,GAAJ,IAAI,CAAY;QAChB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,6BAAwB,GAAxB,wBAAwB,CAA0B;QAClD,gBAAW,GAAX,WAAW,CAAa;QACxB,gBAAW,GAAX,WAAW,CAAsB;QACjC,uBAAkB,GAAlB,kBAAkB,CAAoB;QACtC,oBAAe,GAAf,eAAe,CAAiB;QAChC,eAAU,GAAV,UAAU,CAAY;QACtB,eAAU,GAAV,UAAU,CAAmB;QAC7B,sBAAiB,GAAjB,iBAAiB,CAAmB;KAC1C;IAES,iBAAiB;;YAC5B,MAAM,EAAE,GAAG,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAC7C,KAAK,EAAE,sBAAsB;aAC9B,CAAC,CAAC;YACH,OAAO,MAAM,OAAO,CAAC,GAAG,CACtB,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CACnD,CAAC;SACH;KAAA;IAEY,oBAAoB;;YAC/B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YAC9C,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,WAAW,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACnE,KAAK,EAAE,yBAAyB;gBAChC,SAAS,EAAE;oBACT,MAAM,EAAE,IAAI,CAAC,EAAE;oBACf,SAAS,EAAE,KAAK;iBACjB;aACF,CAAC,CAAC;YAEH,OAAO;gBACL,OAAO,EAAE,CACP,MAAM,OAAO,CAAC,GAAG,CACf,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CACnD,EACD,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;gBAClB,OAAO,EAAE,CACP,MAAM,OAAO,CAAC,GAAG,CACf,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAO,CAAC;oBACxB,OAAA,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,kBAAkB,CAAC,kBAAkB,CAAC,CAAC,CAAC,IAAI,CAAC,CACzD,CAAA;kBAAA,CACF,CACF;qBAEA,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,MAAM,KAAK,wBAAwB,CAAC,SAAS,CAAC;qBAC9D,MAAM,CACL,CAAC,CAAC,KACA,CAAC,CAAC,MAAM,KAAK,wBAAwB,CAAC,OAAO,IAAI,CAAC,CAAC,cAAc,CACpE;gBACH,WAAW,EAAE,CACX,MAAM,OAAO,CAAC,GAAG,CACf,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAO,CAAC;oBAC5B,OAAA,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,kBAAkB,CAAC,kBAAkB,CAAC,CAAC,CAAC,IAAI,CAAC,CACzD,CAAA;kBAAA,CACF,CACF,EACD,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,MAAM,KAAK,wBAAwB,CAAC,SAAS,CAAC;aACjE,CAAC;SACH;KAAA;IAEY,eAAe,CAAC,OAAe;;YAC1C,MAAM,EAAE,EAAE,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAC5C,KAAK,EAAE,oBAAoB;gBAC3B,SAAS,EAAE,EAAE,OAAO,EAAE;aACvB,CAAC,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC;SACvC;KAAA;IAEY,oBAAoB,CAC/B,WAAiC,oBAAoB,CAAC,OAAO;;YAE7D,IAAI,CAAC,IAAI,CAAC,iBAAiB,EAAE;gBAC3B,IAAI,CAAC,iBAAiB,GAAG,MAAM,IAAI,CAAC,IAAI;qBACrC,GAAG,CAAqB,uCAAuC,CAAC;qBAChE,SAAS,EAAE,CAAC;aAChB;YACD,OAAO,OAAO,CAAC,OAAO,CACpB,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAC9D,CAAC;SACH;KAAA;IAEY,WAAW,CAAC,KAAa;;YACpC,IAAI;gBACF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;gBAE1D,OAAO,IAAI;sBACP;wBACE,EAAE,EAAE,IAAI,CAAC,EAAE;wBACX,KAAK;wBACL,QAAQ,EAAE,IAAI,CAAC,QAAQ;wBACvB,cAAc,EAAE,IAAI,CAAC,MAAM;wBAC3B,IAAI,EAAE,IAAI,CAAC,aAAa;qBACzB;sBACD,IAAI,CAAC;aACV;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,IAAI,CAAC;aACb;SACF;KAAA;IAEY,kBAAkB,CAAC,MAA0B;;YACxD,MAAM,MAAM,GAAG;gBACb,iBAAiB,EAAE,MAAM,CAAC,KAAK,CAAC,QAAQ;gBACxC,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,KAAK;gBACzB,OAAO,EAAE;oBACP,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,IAAI;oBACvB,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,KAAK;oBACzB,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO;oBAC7B,WAAW,EAAE,MAAM,CAAC,WAAW;iBAChC;gBACD,WAAW,EAAE;oBACX,wBAAwB,EAAE,IAAI;oBAC9B,yBAAyB,EAAE,MAAM,CAAC,eAAe;oBACjD,cAAc,EAAE;wBACd,IAAI,EAAE,IAAI,eAAe,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC;qBACvD;iBACF;aACF,CAAC;YACF,MAAM,IAAI,CAAC,kBAAkB,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;SACnD;KAAA;IAEY,gBAAgB,CAAC,QAAgB;;YAC5C,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,oCAAoC;gBAC9C,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE,EAAE,QAAQ;qBACb;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,aAAa,CACxB,QAAgB,EAChB,WAAmB,EACnB,GAAW;;YAEX,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,cAAc,CAAC,QAAQ,EAAE;gBACtE,KAAK,EAAE,WAAW;gBAClB,MAAM,EAAE,GAAG;aACZ,CAAC,CAAC;YAEH,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;SACjC;KAAA;IAEY,gBAAgB,CAC3B,MAAgC;;YAEhC,MAAM,MAAM,GAAoB;gBAC9B,EAAE,EAAE,MAAM,CAAC,QAAQ;gBACnB,KAAK,EAAE,MAAM,CAAC,WAAW;gBACzB,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,oBAAoB,EAAE,IAAI;gBAC1B,oBAAoB,EAAE;oBACpB,wBAAwB,EAAE,IAAI;oBAC9B,yBAAyB,EAAE,MAAM,CAAC,eAAe;oBACjD,cAAc,EAAE;wBACd,IAAI,EAAE,IAAI,eAAe,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC;qBACvD;iBACF;aACF,CAAC;YAEF,MAAM,EAAE,EAAE,EAAE,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;YAEhE,OAAO,EAAE,CAAC,EAAE,CAAC;SACd;KAAA;IAEY,iBAAiB,CAC5B,QAAgB,EAChB,WAAmB;;YAEnB,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,qCAAqC;gBAC/C,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE,EAAE,QAAQ;wBACZ,KAAK,EAAE,WAAW;qBACnB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,iBAAiB,CAC5B,OAAkC;;YAElC,MAAM,EAAE,EAAE,EAAE,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,WAAW,CACtD,OAAO,CAAC,QAAQ,EAChB,OAAO,CAAC,sBAAsB,EAC9B,OAAO,CAAC,yBAAyB,EACjC,IAAI,CACL,CAAC;YACF,OAAO,EAAE,CAAC,EAAE,CAAC;SACd;KAAA;IAEY,kBAAkB,CAAC,OAAe;;YAC7C,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,0BAA0B;gBACpC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE,EAAE,OAAO;qBACZ;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEM,sBAAsB,CAC3B,UAAkB,EAClB,KAAa,EACb,YAA0B,EAC1B,WAAyB;QAEzB,OAAO,WAAW;cACd,IAAI,CAAC,cAAc,CAAC,UAAU,EAAE,KAAK,EAAE,YAAY,EAAE,WAAW,CAAC;cACjE,IAAI,CAAC,gBAAgB,CAAC,UAAU,EAAE,YAAY,CAAC,EAAE,CAAC,CAAC;KACxD;IAEM,oBAAoB,CACzB,QAAgB,EAChB,KAAa,EACb,YAA0B,EAC1B,WAAwB;QAExB,OAAO,WAAW;cACd,IAAI,CAAC,cAAc,CAAC,QAAQ,EAAE,KAAK,EAAE,YAAY,EAAE,WAAW,CAAC;cAC/D,IAAI,CAAC,gBAAgB,CAAC,QAAQ,EAAE,YAAY,CAAC,EAAE,CAAC,CAAC;KACtD;IAEa,cAAc,CAC1B,WAAmB,EACnB,KAAa,EACb,YAA0B,EAC1B,WAAwB;;YAExB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACrD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CACnD,YAAY,CAAC,aAAa,CAAC,SAAS,CAAC,EAAE,CACxC,CAAC;YACF,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACrD,WAAW,CAAC,GAAG,EACf,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACrB,CAAC;YAEF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,qBAAqB;gBAC/B,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE,EAAE,WAAW;wBACf,IAAI,EAAE,YAAY,CAAC,EAAE;wBACrB,UAAU,EAAE,WAAW;wBACvB,KAAK,EAAE,GAAG,CAAC,EAAE;wBACb,aAAa,EAAE,WAAW,CAAC,EAAE;wBAC7B,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC;qBACvC;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEa,gBAAgB,CAC5B,WAAmB,EACnB,cAAsB;;YAEtB,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC;gBACzB,QAAQ,EAAE,uBAAuB;gBACjC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE,EAAE,WAAW;wBACf,IAAI,EAAE,cAAc;qBACrB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,eAAe,CAAC,EAAO;;;YAClC,IAAI;gBACF,MAAM,WAAW,GACf,EAAE,CAAC,iBAAiB;qBACnB,MAAM,IAAI,CAAC,wBAAwB,CAAC,0BAA0B,CAC7D,EAAE,CAAC,iBAAiB,CACrB,CAAC,CAAC;gBACL,MAAM,aAAa,GACjB,EAAE,CAAC,aAAa;qBACf,MAAM,IAAI,CAAC,wBAAwB,CAAC,gCAAgC,CACnE,EAAE,CAAC,aAAa,CACjB,CAAC,CAAC;gBAEL,OAAO;oBACL,EAAE,EAAE,EAAE,CAAC,EAAE;oBACT,IAAI,EAAE,gBAAgB,CAAC,IAAI;oBAC3B,YAAY,EAAE,CAAC,CAAC,EAAE,CAAC,eAAe,CAAC,KAAK,CAAC,MAAM;oBAC/C,cAAc,EAAE,CAAC,CAAC,EAAE,CAAC,WAAW,CAAC,WAAW,CAAC,KAAK,CAAC,MAAM;oBACzD,IAAI,EAAE,WAAW,IAAI,WAAW,CAAC,IAAI,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI;oBAC9D,OAAO,EAAE,WAAW;oBACpB,eAAe,EAAE,aAAa;oBAC9B,aAAa,EAAE,EAAE,CAAC,oBAAoB,CAAC,aAAa;oBACpD,QAAQ,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ;oBAC3B,QAAQ,EAAE;wBACR,WAAW,EAAE;4BACX,SAAS,EACP,CAAC,OAAA,EAAE,CAAC,KAAK,CAAC,QAAQ,0CAAE,UAAU,KAAI,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC,KAAK,QAAQ;yBAClE;qBACF;iBACF,CAAC;aACH;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,CAAC,KAAK,CAAC,kCAAkC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;gBACzD,OAAO,IAAI,CAAC;aACb;;KACF;IAEa,SAAS,CACrB,QAA8B;;;YAE9B,MAAM,WAAW,GAAG,QAAQ,CAAC,WAAW,CAAC;YACzC,MAAM,IAAI,GAAG,QAAQ,CAAC,WAAW;wBAC7B,QAAQ,CAAC,SAAS,0CAAE,IAAI,GACxB,WAAW,IAAI,WAAW,CAAC,IAAI,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC;YAC7D,MAAM,KAAK,GAAG,QAAQ,CAAC,WAAW;wBAC9B,QAAQ,CAAC,SAAS,0CAAE,KAAK,GACzB,CAAC,WAAW,IAAI,WAAW,CAAC,KAAK,KAAK,QAAQ,CAAC,qBAAqB,CAAC;YAEzE,OAAO;gBACL,EAAE,EAAE,QAAQ,CAAC,EAAE;gBACf,IAAI,EAAE,gBAAgB,CAAC,IAAI;gBAC3B,MAAM,EAAG,QAAQ,CAAC,KAA6C;gBAC/D,KAAK,EAAE,QAAQ,CAAC,KAAK;gBACrB,WAAW,EAAE,QAAQ,CAAC,eAAe;gBACrC,YAAY,EAAE,QAAQ,CAAC,YAAY;gBACnC,IAAI;gBACJ,KAAK;gBACL,QAAQ,EAAE,QAAQ,CAAC,WAAW;gBAC9B,cAAc,EAAE,QAAQ,CAAC,WAAW;sBAChC,QAAQ,CAAC,uBAAuB;sBAChC,QAAQ,CAAC,uBAAuB;gBACpC,aAAa,EAAE,QAAQ,CAAC,sBAAsB;gBAC9C,SAAS,EAAE,QAAQ,CAAC,GAAG,CAAC,yBAAyB;gBACjD,SAAS,EAAE,QAAQ,CAAC,SAAS;gBAC7B,OAAO,EAAE,WAAW;gBACpB,OAAO,EAAE,QAAQ,CAAC,OAAO;gBACzB,eAAe,EAAE,QAAQ,CAAC,aAAa;gBACvC,eAAe,EAAE,QAAQ,CAAC,SAAS;aACpC,CAAC;;KACH;;;;YA7VF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA7CQ,UAAU;YASV,eAAe;YACf,wBAAwB;YAMxB,WAAW;YALX,oBAAoB;YAPpB,kBAAkB;YAUlB,eAAe;YACf,UAAU;YA0BV,iBAAiB;YA5BjB,iBAAiB;;;ACL1B;AACA;AACA;AACA;AACA;AACA;AACA;IAEY;AAAZ,WAAY,aAAa;;;IAGvB,sCAAqB,CAAA;;IAErB,oCAAmB,CAAA;;IAEnB,oCAAmB,CAAA;;IAEnB,sCAAqB,CAAA;IACrB,sCAAqB,CAAA;AACvB,CAAC,EAXW,aAAa,KAAb,aAAa,QAWxB;IAEW;AAAZ,WAAY,kBAAkB;IAC5B,yCAAmB,CAAA;IACnB,2CAAqB,CAAA;IACrB,yCAAmB,CAAA;IACnB,2CAAqB,CAAA;IACrB,6CAAuB,CAAA;IACvB,qCAAe,CAAA;AACjB,CAAC,EAPW,kBAAkB,KAAlB,kBAAkB,QAO7B;IAEW;AAAZ,WAAY,kBAAkB;IAC5B,yCAAmB,CAAA;IACnB,2CAAqB,CAAA;IACrB,2CAAqB,CAAA;AACvB,CAAC,EAJW,kBAAkB,KAAlB,kBAAkB,QAI7B;MAEY,WAAW;CAMvB;MAEY,mBAAmB;CAI/B;MAEY,wBAAwB;CAKpC;MAEY,mBAAmB;CAI/B;MAEY,mBAAmB;CAK/B;MAEY,cAAc;CAY1B;MAEY,uBAAuB;CAMnC;MAEY,4BAA4B;CAOxC;MAEY,uBAAuB;CAMnC;MAEY,uBAAuB;CAOnC;MAEY,eAAe;CAS3B;MAEY,aAAa;CAOzB;MAEY,qBAAqB;CAOjC;MAEY,cAAc;;;MCvJd,cAAc,GAAG;;;IAG1B,sBAAsB;;;;;;EAMxB;MAEW,wBAAwB,GAAG,GAAG,CAAA;;;;;MAKrC,cAAc;;IAEhB,aAAa;GACd;MAEU,2BAA2B,GAAG,GAAG,CAAA;;;;;;;;EAQ5C;MAEW,8BAA8B,GAAG,GAAG,CAAA;;;;;;;;;;EAU/C;MAEW,8BAA8B,GAAG,GAAG,CAAA;;;;;;;;;;MC1CpC,cAAc,GAAG;;;MAGxB,sBAAsB;;;;;;;;;;;;;;;;;;;;YAoBhB,cAAc;;;;;;;;;;;;;;;;;;;;;;;YAuBd,YAAY;;;;;;;;;;;;;;;;;;;;;;;;EAwBtB;MAEW,wBAAwB,GAAG,GAAG,CAAA;;;;;;;;MAQrC,cAAc;;IAEhB,aAAa;IACb;MAES,8BAA8B,GAAG,GAAG,CAAA;;;;;;;;;;EAU/C;MAEW,8BAA8B,GAAG,GAAG,CAAA;;;;;;;;;;EAU/C;MAEW,8BAA8B,GAAG,GAAG,CAAA;;;;;;;;EAQ/C;MAEW,oCAAoC,GAAG,GAAG,CAAA;;;;;;;;;;EAUrD;MAEW,uCAAuC,GAAG,GAAG,CAAA;;;;;;;;;;EAUxD;MAEW,uCAAuC,GAAG,GAAG,CAAA;;;;;;;;;;AChJ1D,MAAMC,gBAAc,GAAG;;;IAGnB,sBAAsB;;;;;;;;CAQzB,CAAC;MAEW,iBAAiB,GAAG;;;;;;;;;;;;QAYzBA,gBAAc;;;;EAIpB;MAEW,sCAAsC,GAAG,GAAG,CAAA;;;;;;;;;;;;;IAarD,kBAAkB;GACnB;MAEU,sCAAsC,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;EAgBvD;MAEW,sCAAsC,GAAG,GAAG,CAAA;;;;;;;;;;EAUvD;MAEW,wBAAwB,GAAG,GAAG,CAAA;;;;;MAKrCA,gBAAc;;IAEhB,aAAa;IACb;MAES,2BAA2B,GAAG,GAAG,CAAA;;;;;;;;EAQ5C;MAEW,8BAA8B,GAAG,GAAG,CAAA;;;;;;;;;;;;AC5FjD,MAAM,cAAc,GAAG;;;;;;;CAOtB,CAAC;AAEF,MAAM,iBAAiB,GAAG;;;;;;;;;UAShB,cAAc;;;;;;;;;;;;;;;;;;;;;;;;;CAyBvB,CAAC;AAEF,MAAM,oBAAoB,GAAG;;;;IAIzB,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;;;;;;QA4BlB,cAAc;;;;;IAKlB,iBAAiB;;CAEpB,CAAC;MAEW,sBAAsB,GAAG,GAAG,CAAA;;;;;MAKnC,oBAAoB;;IAEtB,aAAa;IACb;MAES,0BAA0B,GAAG,GAAG,CAAA;;;;;UAKnC,oBAAoB;;;;IAI1B,aAAa;IACb;MAES,6BAA6B,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;YAoBpC,oBAAoB;;;;;IAK5B,aAAa;IACb;MAES,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;;;EAUvC;MAEW,oBAAoB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;IAoBnC,aAAa;IACb;MAES,gBAAgB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;YAiBvB,cAAc;;;;;;;;;;;;;cAaZ,iBAAiB;;;;;;;;YAQnB,cAAc;;;;;;;;;;;;IAYtB,aAAa;IACb;MAES,yBAAyB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;oBA0BxB,sBAAsB;;;;;;;;;IAStC,aAAa;IACb;MAES,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;EAQvC;MAEW,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;EAQvC;MAEW,sBAAsB,GAAG,GAAG,CAAA;;;;;;EAMvC;MAEW,sBAAsB,GAAG,GAAG,CAAA;;;;;;;;EAQvC;MAEW,uBAAuB,GAAG,GAAG,CAAA;;;;;;;;EAQxC;MAEW,2BAA2B,GAAG,GAAG,CAAA;;;;;;;;EAQ5C;MAEW,2BAA2B,GAAG,GAAG,CAAA;;;;;;;;EAQ5C;MASW,4BAA4B,GAAG,QAAQ,CAAoC;;;;;;;;EAQtF;MASW,2BAA2B,GAAG,QAAQ,CAAmC;;;;;;;;EAQpF;MAEW,4BAA4B,GAAG,GAAG,CAAA;;;;;;;;EAQ7C;MAEW,qBAAqB,GAAG,GAAG,CAAA;;;;;;;;EAQtC;MAEW,yCAAyC,GAAG,GAAG,CAAA;;;;;;;;;;;;MCvW/C,uBAAuB;IAGlC,YACU,QAAyB,EACzB,UAA6B,EAC7B,cAA8B,EAC9B,QAAyB,EACzB,aAAiC,EACjC,iBAAoC,EACpC,mBAAwC;QANxC,aAAQ,GAAR,QAAQ,CAAiB;QACzB,eAAU,GAAV,UAAU,CAAmB;QAC7B,mBAAc,GAAd,cAAc,CAAgB;QAC9B,aAAQ,GAAR,QAAQ,CAAiB;QACzB,kBAAa,GAAb,aAAa,CAAoB;QACjC,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,wBAAmB,GAAnB,mBAAmB,CAAqB;KAC9C;IAES,WAAW,CAAC,UAAkB;;YACzC,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAC1D,KAAK,EAAE,wBAAwB;gBAC/B,SAAS,EAAE;oBACT,EAAE,EAAE,UAAU;iBACf;aACF,CAAC,CAAC;YACH,OAAO,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAAC;SAC3C;KAAA;IAEY,gBAAgB,CAAC,KAAU;;YACtC,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAEnD,KAAK,CAAC,WAAW,CAAC,EAAE,EAAE,KAAK,CAAC,qBAAqB,CAAC,CAAC;YAEtD,OAAO;gBACL,EAAE,EAAE,KAAK,CAAC,EAAE;gBACZ,KAAK,EAAE,KAAK,CAAC,WAAW,CAAC,EAAE;gBAC3B,IAAI;gBACJ,MAAM,EAAE,KAAK,CAAC,MAAM;gBACpB,YAAY,EAAE,KAAK,CAAC,YAAY;gBAChC,SAAS,EAAE,MAAM,OAAO,CAAC,GAAG,CAC1B,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAC3D;aACF,CAAC;SACH;KAAA;IAEa,WAAW,CAAC,QAAa;;YACrC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAEtD,QAAQ,CAAC,SAAS,CAAC,EAAE,EAAE,QAAQ,CAAC,gBAAgB,CAAC,CAAC;YAErD,OAAO;gBACL,EAAE,EAAE,QAAQ,CAAC,EAAE;gBACf,KAAK,EAAE,QAAQ,CAAC,SAAS,CAAC,EAAE;gBAC5B,YAAY,EAAE,MAAM,IAAI,CAAC,mBAAmB,CAAC,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACzE,OAAO;aACR,CAAC;SACH;KAAA;IAEY,cAAc,CAAC,QAAgC;;YAC1D,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAC1D,QAAQ,CAAC,KAAK,EACd,QAAQ,CAAC,qBAAqB,CAC/B,CAAC;YAEF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,QAAQ,CAAC,UAAU;wBAC/B,WAAW,EAAE,QAAQ,CAAC,KAAK;wBAC3B,gBAAgB;wBAChB,wBAAwB,EAAE,EAAE;qBAC7B;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,8BAA8B,CACzC,KAAmC;;YAEnC,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAEtD,MAAM,4BAA4B,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACtE,KAAK,CAAC,KAAK,EACX,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;YAEF,MAAM,kBAAkB,GAAG,KAAK,CAAC,uBAAuB;kBACpD,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACjC,WAAW,EACX,KAAK,CAAC,uBAAuB,CAC9B;kBACD,EAAE,CAAC;YAEP,MAAM,EAAE,8BAA8B,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBACzE,QAAQ,EAAE,sCAAsC;gBAChD,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,KAAK,CAAC,UAAU;wBAC5B,YAAY,EAAE,KAAK,CAAC,YAAY;wBAChC,MAAM,EAAE,KAAK,CAAC,MAAM;wBACpB,YAAY,EAAE,KAAK,CAAC,KAAK;wBACzB,4BAA4B;wBAC5B,kBAAkB;wBAClB,mBAAmB,EAAE,CACnB,MAAM,IAAI,CAAC,iBAAiB,CAC1B,KAAK,CAAC,cAAc,EACpB,KAAK,CAAC,MAAM,EACZ,WAAW,CACZ,EACD,GAAG,CAAC,CAAC,CAAC;4BACN,MAAM,EAAE,eAAe,EAAE,eAAe,KAAqB,CAAC,EAAjB,WAAW,UAAK,CAAC,EAAxD,sCAAoD,CAAI,CAAC;4BAC/D,OAAO,WAAW,CAAC;yBACpB,CAAC;wBACF,eAAe,EAAE,MAAM,IAAI,CAAC,eAAe,CACzC,WAAW,EACX,KAAK,CAAC,KAAK,EACX,KAAK,CAAC,SAAS,CAChB;qBACF;iBACF;aACF,CAAC,CAAC;YACH,OAAO,8BAA8B,CAAC,QAAQ,CAAC,gBAAgB,CAAC,WAAW;iBACxE,EAAE,CAAC;SACP;KAAA;IAEY,8BAA8B,CACzC,KAAmC;;YAEnC,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;YACpE,MAAM,kBAAkB,GAAG,KAAK,CAAC,uBAAuB;kBACpD,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACjC,WAAW,CAAC,GAAG,EACf,KAAK,CAAC,uBAAuB,CAC9B;kBACD,EAAE,CAAC;YAEP,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CACjD,KAAK,CAAC,cAAc,EACpB,KAAK,CAAC,MAAM,EACZ,WAAW,CAAC,GAAG,CAChB,CAAC;YAEF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,sCAAsC;gBAChD,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,KAAK,CAAC,UAAU;wBAC5B,YAAY,EAAE,KAAK,CAAC,YAAY;wBAChC,MAAM,EAAE,KAAK,CAAC,MAAM;wBACpB,aAAa,EAAE,WAAW,CAAC,EAAE;wBAC7B,kBAAkB;wBAClB,mBAAmB,EAAE,cAAc;6BAChC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa,CAAC;6BAC/B,GAAG,CAAC,CAAC,CAAC;4BACL,MAAM,EAAE,eAAe,EAAE,eAAe,KAAqB,CAAC,EAAjB,WAAW,UAAK,CAAC,EAAxD,sCAAoD,CAAI,CAAC;4BAC/D,OAAO,WAAW,CAAC;yBACpB,CAAC;wBACJ,mBAAmB,EAAE,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,aAAa,CAAC;wBAClE,mBAAmB,EAAE,KAAK,CAAC,eAAe;qBAC3C;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,8BAA8B,CACzC,UAAkB,EAClB,KAAa,EACb,SAAqB;;YAErB,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,sCAAsC;gBAChD,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU;wBACV,eAAe,EAAE,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,KAAK,EAAE,SAAS,CAAC;qBACpE;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEa,eAAe,CAC3B,WAAoB,EACpB,KAAa,EACb,SAAqB;;YAErB,IAAI,CAAC,SAAS,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE;gBACnC,OAAO,EAAE,CAAC;aACX;YAED,OAAO,MAAM,OAAO,CAAC,GAAG,CACtB,SAAS,CAAC,GAAG,CAAC,CAAO,QAAQ;gBAC3B,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;gBAE7D,MAAM,mBAAmB,GAAG,CAC1B,IAAuC,EACvC,SAAiB;oBAEjB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;oBACtD,IAAI,cAAc,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACtD,SAAS,CAAC,GAAG,EACb,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;oBAEF,IAAI,WAAW,EAAE;wBACf,cAAc,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAClD,WAAW,EACX,cAAc,CACf,CAAC;qBACH;oBAED,OAAO;wBACL,UAAU,EAAE,IAAI,CAAC,WAAW;wBAC5B,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,gBAAgB,EAAE,EAAE;wBACpB,cAAc;qBACf,CAAC;iBACH,CAAA,CAAC;;gBAGF,MAAM,mBAAmB,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;oBAC5C,GAAG,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,CAAO,CAAC;wBAAK,yCAClC,MAAM,mBAAmB,CAAC,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,MAClD,mBAAmB,EAAE,CAAC,CAAC,EAAE,KACzB;sBAAA,CAAC;oBACH,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,CAAO,CAAC;wBAAK,yCAC/B,MAAM,mBAAmB,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,MAChD,mBAAmB,EAAE,CAAC,CAAC,EAAE,KACzB;sBAAA,CAAC;iBACJ,CAAC,CAAC;gBAEH,OAAO;oBACL,UAAU,EAAE,QAAQ,CAAC,EAAE;oBACvB,WAAW,EAAE,QAAQ,CAAC,KAAK;oBAC3B,mBAAmB;oBACnB,aAAa,EAAE,EAAE;oBACjB,gBAAgB,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,SAAS,CAAC,GAAG,EAAE;wBACnE,KAAK;wBACL,OAAO,EAAE,QAAQ,CAAC,OAAO;qBAC1B,CAAC;iBACH,CAAC;aACH,CAAA,CAAC,CACH,CAAC;SACH;KAAA;IAEa,iBAAiB,CAC7B,cAA6C,EAC7C,MAAc,EACd,WAAoB;;YAEpB,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAChD,MAAM,EACN,cAAc,EACb,WAAW,CAAC,MAAM,CAAC,IAAI,CAAS,CAAC,CAAC,CACpC,CAAC;YACF,OAAO,MAAM,OAAO,CAAC,GAAG,CACtB,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,KAAK,KAC1B,IAAI,CAAC,gBAAgB,CAAC,CAAC,EAAE,YAAY,CAAC,aAAa,CAAC,KAAK,CAAC,EAAE,WAAW,CAAC,CACzE,CACF,CAAC;SACH;KAAA;IAEa,gBAAgB,CAC5B,aAA0C,EAC1C,WAA6B,EAC7B,WAAoB;;YAEpB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,YAAY,CACvC,aAAa,CAAC,SAAS,EACvB,aAAa,CAAC,MAAM,EACpB,WAAW,EACX,WAAW,CACZ,CAAC;YAEF,OAAO;gBACL,aAAa,EAAE,aAAa,CAAC,aAAa;gBAC1C,YAAY,EAAE,aAAa,CAAC,YAAY;gBACxC,MAAM,EAAE,aAAa,CAAC,MAAM;gBAC5B,qBAAqB,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACxD,WAAW,EACX,aAAa,CAAC,0BAA0B,CACzC;gBACD,eAAe,EAAE,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC;gBACvD,eAAe,EAAE,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,UAAU,CAAC;gBACtD,eAAe,EAAE,aAAa,CAAC,kBAAkB,IAAI,EAAE;aACxD,CAAC;SACH;KAAA;IAEa,YAAY,CACxB,SAAmC,EACnC,MAAc,EACd,WAA6B,EAC7B,WAAoB;;YAEpB,MAAM,KAA8C,WAAW,CAAC,MAAM,CACpE,IAAI,CACE,EAFF,EAAE,CAAC,EAAE,cAAc,OAEjB,EAFsB,iBAAiB,cAAzC,KAA2C,CAEzC,CAAC;YACT,IAAI,QAAQ,GAAG,CAAC,CAAC;YAEjB,MAAM,sBAAsB,GAAG,CAAO,YAAqB;gBACzD,MAAM,KAAK,GAAG,WAAW,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;;gBAE3C,IAAI,MAAM,KAAK,CAAC,EAAE;oBAChB,EAAE,QAAQ,CAAC;iBACZ;gBACD,MAAM,kBAAkB,GAAuB;oBAC7C,MAAM,EAAE;wBACN,KAAK;wBACL,WAAW,EAAE;4BACX,MAAM;4BACN,IAAI,EAAE,SAAS,CAAC,MAAM;yBACvB;qBACF;oBACD,iBAAiB;iBAClB,CAAC;gBACF,OAAO,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,YAAY,EAAE,kBAAkB,CAAC,CAAC;aACxE,CAAA,CAAC;YAEF,OAAO,MAAM,OAAO,CAAC,GAAG,CACtB,SAAS,CAAC,GAAG,CAAC,CAAO,CAAC;gBACpB,IAAI,CAAC,CAAC,UAAU,EAAE;oBAChB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;oBACtD,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAC1D,CAAC,CAAC,KAAK,EACP,CAAC,CAAC,qBAAqB,CACxB,CAAC;oBACF,MAAM,wBAAwB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAClE,CAAC,CAAC,KAAK,EACP,CAAC,CAAC,YAAY,CACf,CAAC;oBAEF,OAAO;wBACL,UAAU,EAAE,CAAC,CAAC,UAAU;wBACxB,WAAW,EAAE,CAAC,CAAC,KAAK;wBACpB,gBAAgB,EAAE,gBAAgB,IAAI,EAAE;wBACxC,wBAAwB,EAAE,wBAAwB,IAAI,EAAE;wBACxD,8BAA8B,EAAE,MAAM,sBAAsB,CAC1D,SAAS,CAAC,GAAG,CACd;qBACF,CAAC;iBACH;qBAAM;oBACL,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,kBAAkB,CACjE,CAAC,CAAC,qBAAqB,EACvB,CAAC,CAAC,uBAAuB,CAC1B,CAAC;oBAEF,OAAO;wBACL,IAAI,EAAE,CAAC,CAAC,cAAc;wBACtB,aAAa,EAAE,CAAC,CAAC,uBAAuB;wBACxC,2BAA2B,EAAE,cAAc,CAAC,OAAO,CAAC,UAAU;wBAC9D,gBAAgB,EAAE,cAAc,CAAC,UAAU;wBAC3C,wBAAwB,EAAE,EAAE;wBAC5B,8BAA8B,EAAE,MAAM,sBAAsB,CAC1D,cAAc,CAAC,GAAG,CACnB;qBACF,CAAC;iBACH;aACF,CAAA,CAAC,CACH,CAAC;SACH;KAAA;;IAGa,kBAAkB,CAC9B,MAAc,EACd,cAA6C,EAC7C,cAAsB;;YAEtB,MAAM,YAAY,GAAG,IAAIC,QAAa,CAAC,MAAM,CAAC,CAAC;YAE/C,cAAc,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,KAAK;gBAC9B,IAAI,aAAa,GAAG,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC;;;gBAIvC,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE;oBAClB,aAAa,GAAG,CAAC,CAAC;iBACnB;gBACD,YAAY,CAAC,cAAc,CACzB,IAAIC,WAAgB,CAAC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,aAAa,CAAC,CACrD,CAAC;aACH,CAAC,CAAC;;YAEH,IAAI,YAAY,CAAC,aAAa,CAAC,MAAM,GAAG,MAAM,EAAE;gBAC9C,OAAO,IAAI,CAAC;aACb;YACD,MAAM,IAAI,CAAC,aAAa,CAAC,cAAc,CACrC,cAAc,EACd,uBAAuB,CAAC,iBAAiB,EACzC,YAAY,CACb,CAAC;YACF,OAAO,YAAY,CAAC;SACrB;KAAA;;AAjYa,yCAAiB,GAAG,WAAW,CAAC;;;YAJ/C,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA/BQ,eAAe;YAEf,iBAAiB;YAEjB,cAAc;YADd,eAAe;YAEZC,aAmCiC;YAvCpC,iBAAiB;YAKjB,mBAAmB;;;MCYf,uBAAuB;IAClC,YACU,QAAyB,EACzB,cAA8B,EAC9B,QAAyB,EACzB,SAA8B;QAH9B,aAAQ,GAAR,QAAQ,CAAiB;QACzB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,aAAQ,GAAR,QAAQ,CAAiB;QACzB,cAAS,GAAT,SAAS,CAAqB;KACpC;IAES,WAAW,CAAC,UAAkB;;YACzC,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAC1D,KAAK,EAAE,wBAAwB;gBAC/B,SAAS,EAAE;oBACT,EAAE,EAAE,UAAU;iBACf;aACF,CAAC,CAAC;YACH,OAAO,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAAC;SAC3C;KAAA;IAEY,WAAW,CAAC,QAAa;;YACpC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAEtD,QAAQ,CAAC,SAAS,CAAC,EAAE,EAAE,QAAQ,CAAC,gBAAgB,CAAC,CAAC;YAErD,OAAO;gBACL,EAAE,EAAE,QAAQ,CAAC,EAAE;gBACf,KAAK,EAAE,QAAQ,CAAC,SAAS,CAAC,EAAE;gBAC5B,YAAY,EAAE,MAAM,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC/D,OAAO;aACR,CAAC;SACH;KAAA;IAEY,WAAW,CAAC,QAA6B;;YACpD,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,kBAAkB,CACjE,QAAQ,CAAC,qBAAqB,EAC9B,QAAQ,CAAC,uBAAuB,CACjC,CAAC;YAEF,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9D,QAAQ,EAAE,2BAA2B;gBACrC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,QAAQ,CAAC,UAAU;wBAC/B,IAAI,EAAE,QAAQ,CAAC,cAAc;wBAC7B,aAAa,EAAE,QAAQ,CAAC,uBAAuB;wBAC/C,2BAA2B,EAAE,cAAc,CAAC,OAAO,CAAC,UAAU;wBAC9D,gBAAgB,EAAE,cAAc,CAAC,UAAU;qBAC5C;iBACF;aACF,CAAC,CAAC;YACH,OAAO,mBAAmB,CAAC,QAAQ,CAAC,EAAE,CAAC;SACxC;KAAA;IAEY,cAAc,CACzB,QAAgC;;YAEhC,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAC1D,QAAQ,CAAC,KAAK,EACd,QAAQ,CAAC,qBAAqB,CAC/B,CAAC;YAEF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC1C,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,QAAQ,CAAC,EAAE;wBACvB,WAAW,EAAE,QAAQ,CAAC,KAAK;wBAC3B,gBAAgB;qBACjB;iBACF;aACF,CAAC,CAAC;YACH,OAAO,GAAG,CAAC,sBAAsB,CAAC,QAAQ,CAAC,EAAE,CAAC;SAC/C;KAAA;IAEY,cAAc,CAAC,UAAkB;;YAC5C,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,UAAU,EAAE,EAAE;aACrC,CAAC,CAAC;SACJ;KAAA;;;;YAjFF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAlBQ,eAAe;YAEf,cAAc;YADd,eAAe;YAEf,mBAAmB;;;MC8Bf,uBAAuB;IAClC,YACU,QAAyB,EACzB,QAAyB,EACzB,cAA8B,EAC9B,SAA8B,EAC9B,eAAgC,EAChC,aAA4B;QAL5B,aAAQ,GAAR,QAAQ,CAAiB;QACzB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,cAAS,GAAT,SAAS,CAAqB;QAC9B,oBAAe,GAAf,eAAe,CAAiB;QAChC,kBAAa,GAAb,aAAa,CAAe;KAClC;IAES,WAAW,CAAC,UAAkB;;YACzC,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAC1D,KAAK,EAAE,wBAAwB;gBAC/B,SAAS,EAAE;oBACT,EAAE,EAAE,UAAU;oBACd,cAAc,EAAE,cAAc;oBAC9B,YAAY,EAAE,YAAY;oBAC1B,aAAa,EAAE,mBAAmB;iBACnC;aACF,CAAC,CAAC;YACH,OAAO,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAAC;SAC3C;KAAA;IAEY,WAAW,CAAC,QAAa;;YACpC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAEtD,QAAQ,CAAC,SAAS,CAAC,EAAE,EAAE,QAAQ,CAAC,gBAAgB,CAAC,CAAC;YACrD,OAAO;gBACL,EAAE,EAAE,QAAQ,CAAC,EAAE;gBACf,KAAK,EAAE,QAAQ,CAAC,SAAS,CAAC,EAAE;gBAC5B,YAAY,EAAE,MAAM,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC/D,OAAO;gBACP,UAAU,EAAE,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,UAAU,CAAC;gBACzD,OAAO,EAAE,MAAM,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC;aACjD,CAAC;SACH;KAAA;IAEa,aAAa,CAAC,IAAmB;;YAC7C,OAAO,CACL,MAAM,OAAO,CAAC,GAAG,CACf,IAAI,CAAC,KAAK;iBACP,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC;iBAClB,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC;iBACjC,GAAG,CAAC,CAAC,IAAS,KAAK,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CACtD;iBAEA,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;iBAChB,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,KACT,CAAC,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,CAAC,QAAQ,CAAC,IAAI;kBAC/B,CAAC;kBACD,CAAC,CAAC,QAAQ,CAAC,IAAI,GAAG,CAAC,CAAC,QAAQ,CAAC,IAAI;sBACjC,CAAC;sBACD,CAAC,CAAC,CACP,CAAC;SACL;KAAA;IAEa,UAAU,CAAC,IAAmB;;YAC1C,OAAO,CACL,MAAM,OAAO,CAAC,GAAG,CACf,IAAI,CAAC,KAAK;iBACP,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC;iBAClB,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC;iBACjC,GAAG,CAAC,CAAC,IAAS,KAAK,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,CACpD;iBAEA,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;iBAChB,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,KACT,CAAC,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,CAAC,MAAM,CAAC,IAAI;kBAC3B,CAAC;kBACD,CAAC,CAAC,MAAM,CAAC,IAAI,GAAG,CAAC,CAAC,MAAM,CAAC,IAAI;sBAC7B,CAAC;sBACD,CAAC,CAAC,CACP,CAAC;SACL;KAAA;IAEa,mBAAmB,CAC/B,iBAAsB;;YAEtB,OAAO;gBACL,EAAE,EAAE,iBAAiB,CAAC,EAAE;gBACxB,KAAK,EAAE,iBAAiB,CAAC,SAAS,CAAC,EAAE;gBACrC,WAAW,EAAE,iBAAiB,CAAC,UAAU;gBACzC,QAAQ,EAAE,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAC9C,iBAAiB,CAAC,SAAS,CAC5B;aACF,CAAC;SACH;KAAA;IAEa,iBAAiB,CAC7B,iBAAsB;;YAEtB,OAAO;gBACL,EAAE,EAAE,iBAAiB,CAAC,EAAE;gBACxB,KAAK,EAAE,iBAAiB,CAAC,SAAS,CAAC,EAAE;gBACrC,WAAW,EAAE,iBAAiB,CAAC,UAAU;gBACzC,MAAM,EAAE,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,iBAAiB,CAAC,SAAS,CAAC;aAC1E,CAAC;SACH;KAAA;IAEY,WAAW,CAAC,QAA6B;;YACpD,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,kBAAkB,CACjE,QAAQ,CAAC,qBAAqB,EAC9B,QAAQ,CAAC,uBAAuB,CACjC,CAAC;YAEF,MAAM,EAAE,sBAAsB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBACjE,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,QAAQ,CAAC,UAAU;wBAC/B,IAAI,EAAE,QAAQ,CAAC,cAAc;wBAC7B,aAAa,EAAE,QAAQ,CAAC,uBAAuB;wBAC/C,2BAA2B,EAAE,cAAc,CAAC,OAAO,CAAC,UAAU;wBAC9D,gBAAgB,EAAE,cAAc,CAAC,UAAU;qBAC5C;iBACF;aACF,CAAC,CAAC;YACH,OAAO,sBAAsB,CAAC,QAAQ,CAAC,EAAE,CAAC;SAC3C;KAAA;IAEY,cAAc,CAAC,QAAgC;;YAC1D,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAC1D,QAAQ,CAAC,KAAK,EACd,QAAQ,CAAC,qBAAqB,CAC/B,CAAC;YAEF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,QAAQ,CAAC,EAAE;wBACvB,WAAW,EAAE,QAAQ,CAAC,KAAK;wBAC3B,gBAAgB;qBACjB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,cAAc,CAAC,UAAkB;;YAC5C,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,UAAU,EAAE,EAAE;aACrC,CAAC,CAAC;SACJ;KAAA;IAEY,mBAAmB,CAC9B,KAAuC;;YAEvC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YAE1E,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC1C,QAAQ,EAAE,oCAAoC;gBAC9C,SAAS,EAAE;oBACT,KAAK,mCACC,MAAM,IAAI,CAAC,eAAe,CAAC,KAAK,EAAE,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,MAC9D,WAAW,EAAE,QAAQ,CAAC,QAAQ,CAAC,EAAE,GAClC;iBACF;aACF,CAAC,CAAC;YAEH,OAAO,GAAG,CAAC,4BAA4B,CAAC,iBAAiB,CAAC,EAAE,CAAC;SAC9D;KAAA;IAEY,iBAAiB,CAC5B,KAAqC;;YAErC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;YAElE,MAAM,EAAE,4BAA4B,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBACvE,QAAQ,EAAE,oCAAoC;gBAC9C,SAAS,EAAE;oBACT,KAAK,mCACC,MAAM,IAAI,CAAC,eAAe,CAAC,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,MACnD,WAAW,EAAE,MAAM,CAAC,EAAE,GACvB;iBACF;aACF,CAAC,CAAC;YACH,OAAO,4BAA4B,CAAC,iBAAiB,CAAC,EAAE,CAAC;SAC1D;KAAA;IAEa,eAAe,CAC3B,KAAmC,EACnC,SAAiB;;YAEjB,MAAM,gBAAgB,GAAG,KAAK,CAAC,qBAAqB;kBAChD,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACjC,KAAK,CAAC,aAAa,EACnB,KAAK,CAAC,qBAAqB,CAC5B;kBACD,EAAE,CAAC;YAEP,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YACtD,IAAI,cAAc,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACtD,KAAK,CAAC,aAAa,EACnB,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;YAEF,IAAI,KAAK,CAAC,aAAa,EAAE;gBACvB,cAAc,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAClD,KAAK,CAAC,aAAa,EACnB,cAAc,CACf,CAAC;aACH;YAED,OAAO;gBACL,UAAU,EAAE,KAAK,CAAC,UAAU;gBAC5B,WAAW,EAAE,KAAK,CAAC,aAAa;gBAChC,aAAa,EAAE,KAAK,CAAC,aAAa;gBAClC,cAAc;gBACd,UAAU,EAAE,KAAK,CAAC,UAAU;gBAC5B,gBAAgB;aACjB,CAAC;SACH;KAAA;IAEY,kBAAkB,CAC7B,KAAsC;;YAEtC,MAAM,gBAAgB,GAAG,KAAK,CAAC,qBAAqB;kBAChD,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACjC,KAAK,CAAC,KAAK,EACX,KAAK,CAAC,qBAAqB,CAC5B;kBACD,EAAE,CAAC;YAEP,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,uCAAuC;gBACjD,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,mBAAmB,EAAE,KAAK,CAAC,EAAE;wBAC7B,WAAW,EAAE,KAAK,CAAC,KAAK;wBACxB,UAAU,EAAE,KAAK,CAAC,UAAU;wBAC5B,gBAAgB;qBACjB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,kBAAkB,CAAC,kBAA0B;;YACxD,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,uCAAuC;gBACjD,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,EAAE;aAClE,CAAC,CAAC;SACJ;KAAA;;;;YArPF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAhCQ,eAAe;YAGf,eAAe;YACf,cAAc;YAGd,mBAAmB;YALnB,eAAe;YAIf,aAAa;;;ACwDtB;AACA,MAAM,MAAM,GAAG,OAAO,CAAC;MAKV,eAAe;IAC1B,YACU,QAAyB,EACzB,cAA8B,EAC9B,UAAe,EACf,UAAsB,EACtB,iBAAoC,EACpC,QAAyB,EACzB,SAA8B,EAC9B,aAAiC,EACjC,uBAAgD,EAChD,uBAAgD,EAChD,uBAAgD,EAChD,SAA2B;QAX3B,aAAQ,GAAR,QAAQ,CAAiB;QACzB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,eAAU,GAAV,UAAU,CAAK;QACf,eAAU,GAAV,UAAU,CAAY;QACtB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,aAAQ,GAAR,QAAQ,CAAiB;QACzB,cAAS,GAAT,SAAS,CAAqB;QAC9B,kBAAa,GAAb,aAAa,CAAoB;QACjC,4BAAuB,GAAvB,uBAAuB,CAAyB;QAChD,4BAAuB,GAAvB,uBAAuB,CAAyB;QAChD,4BAAuB,GAAvB,uBAAuB,CAAyB;QAChD,cAAS,GAAT,SAAS,CAAkB;KACjC;IAES,cAAc;;YACzB,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACnD,KAAK,EAAE,oBAAoB;aAC5B,CAAC,CAAC;YACH,OAAO,MAAM,OAAO,CAAC,GAAG,CACtB,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAM,KAAK,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CACjE,CAAC;SACH;KAAA;IAEa,kBAAkB,CAAC,QAAa;;YAC5C,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAG1D,QAAQ,CAAC,UAAU,CAAC,EAAE,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CAAC;YAEvD,OAAO;gBACL,EAAE,EAAE,QAAQ,CAAC,EAAE;gBACf,IAAI;gBACJ,KAAK;gBACL,MAAM,EAAE,QAAQ,CAAC,KAAK;gBACtB,OAAO,EAAE,QAAQ,CAAC,KAAK,IAAI,QAAQ,CAAC,KAAK,CAAC,EAAE;gBAC5C,WAAW,EAAE,QAAQ,CAAC,KAAK,IAAI,QAAQ,CAAC,KAAK,CAAC,KAAK;gBACnD,SAAS,EAAE,QAAQ,CAAC,OAAO;gBAC3B,YAAY,EAAE,QAAQ,CAAC,QAAQ;aAChC,CAAC;SACH;KAAA;IAEY,kBAAkB;;YAC7B,MAAM,EAAE,eAAe,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACzD,KAAK,EAAE,0BAA0B;aAClC,CAAC,CAAC;YACH,OAAO,CACL,MAAM,OAAO,CAAC,GAAG,CACf,eAAe,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAM,KAAK,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CACtE,EACD,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC;SACpB;KAAA;IAEa,wBAAwB,CACpC,QAAa;;YAEb,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAG1D,QAAQ,CAAC,UAAU,CAAC,EAAE,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CAAC;YAEvD,OAAO;gBACL,EAAE,EAAE,QAAQ,CAAC,EAAE;gBACf,IAAI;gBACJ,KAAK;gBACL,MAAM,EAAE,QAAQ,CAAC,KAAK;gBACtB,OAAO,EAAE,QAAQ,CAAC,KAAK,IAAI,QAAQ,CAAC,KAAK,CAAC,EAAE;gBAC5C,WAAW,EAAE,QAAQ,CAAC,KAAK,IAAI,QAAQ,CAAC,KAAK,CAAC,KAAK;gBACnD,SAAS,EAAE,QAAQ,CAAC,OAAO;gBAC3B,YAAY,EAAE,QAAQ,CAAC,QAAQ;aAChC,CAAC;SACH;KAAA;IAEY,iBAAiB,CAAC,UAAkB;;YAC/C,MAAM,EAAE,cAAc,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACxD,KAAK,EAAE,sBAAsB;gBAC7B,SAAS,EAAE;oBACT,EAAE,EAAE,UAAU;iBACf;aACF,CAAC,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,iBAAiB,CAAC,cAAc,CAAC,CAAC;SACrD;KAAA;IAEa,iBAAiB,CAAC,QAAa;;YAC3C,IAAI;gBACF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;gBACnE,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;gBACnE,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,GAAG,CAIpC,QAAQ,CAAC,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAC/B,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CACpC,CACF,CAAC;gBAEF,OAAO;oBACL,EAAE,EAAE,QAAQ,CAAC,EAAE;oBACf,KAAK,EACH,YAAY,CAAC,KAAK;wBAClB,YAAY,CAAC,KAAK;wBAClB,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;oBACrC,MAAM,EAAE,QAAQ,CAAC,KAAK;oBACtB,YAAY,EAAE,MAAM,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAC/D,UAAU,EAAE,CAAC,CAAC,QAAQ,CAAC,UAAU;oBACjC,eAAe,EAAE,YAAY,CAAC,OAAO;oBACrC,UAAU,EAAE,QAAQ,CAAC,WAAW,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC;oBACjD,gBAAgB,EAAE,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC;oBACpD,UAAU,EAAE,CAAC,CAAC,QAAQ,CAAC,UAAU;oBACjC,eAAe,EAAE,YAAY,CAAC,OAAO;oBACrC,aAAa,EAAE,QAAQ,CAAC,UAAU,IAAI,QAAQ,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE;oBACtE,aAAa,EAAE,QAAQ,CAAC,UAAU,IAAI,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE;oBAChE,mBAAmB,EACjB,QAAQ,CAAC,UAAU;wBACnB,QAAQ,CAAC,UAAU,CAAC,mBAAmB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC;oBAClE,KAAK,EAAE,QAAQ,CAAC,WAAW;0BACvB;4BACE,EAAE,EAAE,QAAQ,CAAC,WAAW,CAAC,EAAE;4BAC3B,UAAU,EAAE,QAAQ,CAAC,WAAW,CAAC,UAAU;4BAC3C,MAAM,EAAE,QAAQ,CAAC,WAAW,CAAC,KAAK;4BAClC,WAAW,EAAE,MAAM,OAAO,CAAC,GAAG,CAC5B,QAAQ,CAAC,WAAW,CAAC,gBAAgB,CAAC,KAAK;iCACxC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC;iCAClB,GAAG,CAAC,CAAO,CAAC;gCAAK,QAAC;oCACjB,UAAU,EAAE,CAAC,CAAC,QAAQ,CAAC,EAAE;oCACzB,WAAW,EAAE,MAAM,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC;oCAClD,MAAM,EAAE,CAAC,CAAC,KAAK;oCACf,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;wCACvC,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,EAAE;wCACb,KAAK,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;qCACrB,CAAC,CAAC;iCACJ,EAAC;8BAAA,CAAC,CACN;4BACD,UAAU,EAAE,QAAQ,CAAC,WAAW,CAAC,eAAe;kCAC5C;oCACE,QAAQ,EAAE,QAAQ,CAAC,WAAW,CAAC,eAAe,CAAC,QAAQ;oCACvD,OAAO,EAAE,QAAQ,CAAC,WAAW,CAAC,eAAe,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAC/D,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAChC;iCACF;kCACD,IAAI;yBACT;0BACD,IAAI;iBACT,CAAC;aACH;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,CAAC,KAAK,CAAC,oCAAoC,EAAE,CAAC,EAAE,QAAQ,CAAC,CAAC;gBACjE,OAAO,IAAI,CAAC;aACb;SACF;KAAA;IAEY,wBAAwB,CACnC,cAAsB;;YAKtB,MAAM,EAAE,EAAE,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAC5C,KAAK,EAAE,6BAA6B;gBACpC,SAAS,EAAE,EAAE,OAAO,EAAE,cAAc,EAAE;aACvC,CAAC,CAAC;YACH,OAAO;gBACL,WAAW,EAAE,MAAM,OAAO,CAAC,GAAG,CAC5B,EAAE,CAAC,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAM,KAAK,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CACtE;gBACD,eAAe,EAAE,MAAM,OAAO,CAAC,GAAG,CAChC,EAAE,CAAC,eAAe,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAM,KAAK,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CACzE;aACF,CAAC;SACH;KAAA;IAEY,iBAAiB;;YAC5B,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACnD,KAAK,EAAE,yBAAyB;aACjC,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAC9B,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAO,CAAM;gBAC/B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;gBAEvD,OAAO,MAAM,OAAO,CAAC,GAAG,CACtB,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAO,CAAC;oBAAK,QAAC;wBACpC,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,EAAE;wBACb,KAAK,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK;wBACnB,WAAW,EAAE,MAAM,IAAI,CAAC,SAAS,CAAC,eAAe,CAC/C,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CACnB;wBACD,WAAW,EAAE,CAAC,CAAC,IAAI,CAAC,OAAO;wBAC3B,YAAY,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ;wBAC7B,QAAQ;qBACT,EAAC;kBAAA,CAAC,CACJ,CAAC;aACH,CAAA,CAAC,CACH,CAAC;YAEF,OAAO,MAAM;iBACV,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC;iBAClC,IAAI,CACH,CAAC,CAAC,EAAE,CAAC,KACH,CAAC,CAAC;gBACF,MAAM,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CACnC,MAAM,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CACjC,CACJ,CAAC;SACL;KAAA;IAEa,aAAa,CAAC,MAG3B;;YACC,IAAI,CAAC,MAAM;gBAAE,OAAO,EAAE,CAAC;YAEvB,OAAO,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAGzC,MAAM,CAAC,SAAS,CAAC,EAAE,EAAE,MAAM,CAAC,gBAAgB,CAAC,CAAC;SAClD;KAAA;IAEa,cAAc,CAAC,MAG5B;;YACC,IAAI,CAAC,MAAM;gBAAE,OAAO,IAAI,CAAC;YAEzB,OAAO,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAC1C,MAAM,CAAC,SAAS,CAAC,EAAE,EACnB,MAAM,CAAC,8BAA8B,CACtC,CAAC;SACH;KAAA;IAEY,WAAW,CAAC,UAAkB;;YACzC,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBAClD,KAAK,EAAE,gBAAgB;gBACvB,SAAS,EAAE;oBACT,EAAE,EAAE,UAAU;oBACd,cAAc,EAAE,cAAc;oBAC9B,YAAY,EAAE,YAAY;oBAC1B,aAAa,EAAE,mBAAmB;iBACnC;aACF,CAAC,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;SACzC;KAAA;IAEa,WAAW,CAAC,QAAa;;YACrC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAG1D,QAAQ,CAAC,UAAU,CAAC,EAAE,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CAAC;YACvD,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,GAAG,CACjC,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAC7B,IAAI,CAAC,uBAAuB,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,CACjD,CACF,CAAC;YAEF,OAAO;gBACL,EAAE,EAAE,QAAQ,CAAC,EAAE;gBACf,KAAK,EAAE,QAAQ,CAAC,UAAU,CAAC,EAAE;gBAC7B,aAAa,EACX,QAAQ,CAAC,gBAAgB,IAAI,QAAQ,CAAC,gBAAgB,CAAC,WAAW,CAAC,EAAE;gBACvE,cAAc,EACZ,QAAQ,CAAC,gBAAgB,IAAI,QAAQ,CAAC,gBAAgB,CAAC,MAAM;gBAC/D,IAAI;gBACJ,KAAK;gBACL,MAAM,EAAE,QAAQ,CAAC,KAAK;gBACtB,SAAS;gBACT,cAAc,EAAE,QAAQ,CAAC,gBAAgB;sBACrC,MAAM,OAAO,CAAC,GAAG,CACf,QAAQ,CAAC,gBAAgB,CAAC,aAAa,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAClD,IAAI,CAAC,uBAAuB,CAAC,gBAAgB,CAAC,CAAC,CAAC,IAAI,CAAC,CACtD,CACF;sBACD,EAAE;gBACN,SAAS,EAAE,MAAM,OAAO,CAAC,GAAG,CAC1B,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAC7B,IAAI,CAAC,uBAAuB,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,CACjD,CACF;gBACD,KAAK,EAAE,QAAQ,CAAC,KAAK;sBACjB;wBACE,EAAE,EAAE,QAAQ,CAAC,KAAK,CAAC,EAAE;wBACrB,MAAM,EAAE,QAAQ,CAAC,KAAK,CAAC,KAAK;wBAC5B,QAAQ,EAAE,SAAS,CAAC,IAAI,CACtB,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,QAAQ,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,CAC3C;qBACF;sBACD,IAAI;aACT,CAAC;SACH;KAAA;IAEY,cAAc,CAAC,KAA0B;;YACpD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAE1D,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACrD,MAAM,wBAAwB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAClE,OAAO,CAAC,GAAG,EACX,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CACxB,CAAC;YAEF,MAAM,iBAAiB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAC3D,UAAU,EACV,KAAK,CAAC,sBAAsB,CAC7B,CAAC;YAEF,MAAM,EAAE,cAAc,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBACzD,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,SAAS,EAAE,OAAO,CAAC,EAAE;wBACrB,wBAAwB;wBACxB,iBAAiB;qBAClB;iBACF;aACF,CAAC,CAAC;YACH,OAAO,cAAc,CAAC,QAAQ,CAAC,EAAE,CAAC;SACnC;KAAA;IAEY,cAAc,CAAC,KAA0B;;YACpD,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAO;gBAC/B,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,UAAU,EAAE,KAAK,CAAC,UAAU;wBAC5B,YAAY,EAAE,KAAK,CAAC,KAAK;wBACzB,iBAAiB,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACpD,KAAK,CAAC,KAAK,EACX,KAAK,CAAC,sBAAsB,CAC7B;qBACF;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,cAAc,CAAC,UAAkB;;YAC5C,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAO;gBAC/B,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,UAAU,EAAE,EAAE;aACrC,CAAC,CAAC;SACJ;KAAA;IAEY,eAAe,CAAC,UAAkB;;YAC7C,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAO;gBAC/B,QAAQ,EAAE,uBAAuB;gBACjC,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,UAAU,EAAE,EAAE;aACrC,CAAC,CAAC;SACJ;KAAA;IAEY,cAAc,CAAC,UAAkB;;YAC5C,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAO;gBAC/B,QAAQ,EAAE,sBAAsB;gBAChC,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,UAAU,EAAE,EAAE;aACrC,CAAC,CAAC;SACJ;KAAA;IAEY,WAAW,CAAC,UAAkB;;YACzC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC1C,QAAQ,EAAE,2BAA2B;gBACrC,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,UAAU,EAAE,EAAE;aACrC,CAAC,CAAC;YACH,OAAO,GAAG,CAAC,mBAAmB,CAAC,WAAW,CAAC,EAAE,CAAC;SAC/C;KAAA;IAEY,WAAW,CAAC,OAAe;;YACtC,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAO;gBAC/B,QAAQ,EAAE,2BAA2B;gBACrC,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE;aAClC,CAAC,CAAC;SACJ;KAAA;IAEY,YAAY,CAAC,UAAkB,EAAE,OAAe;;YAC3D,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,CAC5B,IAAI,CAAC,oBAAoB,CAAC,UAAU,EAAE,OAAO,CAAC,CAC/C,CAAC;SACH;KAAA;IAEY,oBAAoB,CAAC,UAAkB,EAAE,OAAe;;YACnE,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;;YAGhE,IAAI,cAAc,CAAC,KAAK,CAAC,EAAE,KAAK,OAAO,EAAE;gBACvC,MAAM,IAAI,WAAW,CAAC;oBACpB,IAAI,EAAE,WAAW,CAAC,oBAAoB;oBACtC,OAAO,EACL,iEAAiE;iBACpE,CAAC,CAAC;aACJ;YAED,MAAM,cAAc,GAAG,CAAO,UAAuC;gBACnE,OAAO,IAAI,UAAU,CAAC;oBACpB,QAAQ,EAAE,4BAA4B;oBACtC,SAAS,EAAE;wBACT,KAAK,EAAE;4BACL,OAAO;4BACP,UAAU,EAAE,UAAU,CAAC,UAAU;4BACjC,SAAS,EAAE,MAAM,OAAO,CAAC,GAAG,CAC1B,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC,CAAO,CAAC;gCAAK,QAAC;oCACrC,UAAU,EAAE,CAAC,CAAC,EAAE;oCAChB,iBAAiB,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACpD,CAAC,CAAC,KAAK,EACP,EAAE,kBAAkB,EAAE,UAAU,CAAC,WAAW,EAAE,CAC/C;iCACF,EAAC;8BAAA,CAAC,CACJ;yBACF;qBACF;iBACF,CAAC,CAAC;aACJ,CAAA,CAAC;YAEF,MAAM,SAAS,GAAG,cAAc,CAAC,KAAK,CAAC,WAAW;iBAC/C,MAAM,CAAC,CAAC,UAAU,KAAK,UAAU,CAAC,MAAM,KAAK,kBAAkB,CAAC,OAAO,CAAC;iBACxE,GAAG,CAAC,CAAC,UAAU,KAAK,cAAc,CAAC,UAAU,CAAC,CAAC,CAAC;YAEnD,OAAO,gBAAgB,CAAC,MAAM,CAAC,MAAM,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC;SAC9D;KAAA;IAEY,WAAW,CAAC,UAAkB,EAAE,OAAe;;YAC1D,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,CAC5B,IAAI,CAAC,mBAAmB,CAAC,UAAU,EAAE,OAAO,CAAC,CAC9C,CAAC;SACH;KAAA;IAEY,mBAAmB,CAAC,UAAkB,EAAE,OAAe;;YAClE,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;;YAGhE,IAAI,cAAc,CAAC,KAAK,CAAC,EAAE,KAAK,OAAO,EAAE;gBACvC,MAAM,IAAI,WAAW,CAAC;oBACpB,IAAI,EAAE,WAAW,CAAC,oBAAoB;oBACtC,OAAO,EACL,iEAAiE;iBACpE,CAAC,CAAC;aACJ;YAED,MAAM,cAAc,GAAG,CAAO,UAAuC;gBACnE,OAAO,IAAI,UAAU,CAAC;oBACpB,QAAQ,EAAE,2BAA2B;oBACrC,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,UAAU,EAAE,UAAU,CAAC,UAAU,EAAE,EAAE;iBACrE,CAAC,CAAC;aACJ,CAAA,CAAC;YAEF,MAAM,SAAS,GAAG,cAAc,CAAC,KAAK,CAAC,WAAW;iBAC/C,MAAM,CAAC,CAAC,UAAU,KAAK,UAAU,CAAC,MAAM,KAAK,kBAAkB,CAAC,OAAO,CAAC;iBACxE,GAAG,CAAC,CAAC,UAAU,KAAK,cAAc,CAAC,UAAU,CAAC,CAAC,CAAC;YAEnD,OAAO,gBAAgB,CAAC,MAAM,CAAC,MAAM,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC;SAC9D;KAAA;IAEY,YAAY,CACvB,UAAkB,EAClB,OAAe;;;YAGf,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;;YAGhE,IAAI,cAAc,CAAC,KAAK,CAAC,EAAE,KAAK,OAAO,EAAE;gBACvC,MAAM,IAAI,WAAW,CAAC;oBACpB,IAAI,EAAE,WAAW,CAAC,oBAAoB;oBACtC,OAAO,EACL,iEAAiE;iBACpE,CAAC,CAAC;aACJ;YACD,IAAI,cAAc,CAAC,MAAM,KAAK,aAAa,CAAC,QAAQ,EAAE;gBACpD,MAAM,IAAI,WAAW,CAAC;oBACpB,IAAI,EAAE,WAAW,CAAC,QAAQ;oBAC1B,OAAO,EAAE,sCAAsC;iBAChD,CAAC,CAAC;aACJ;YAED,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAChD,cAAc,CAAC,aAAa,EAC5B,cAAc,CAAC,KAAK,CAAC,UAAU,CAAC,OAAO,CACxC,CAAC;;YAGF,MAAM,mBAAmB,GAAG,MAAM,OAAO,CAAC,GAAG,CAC3C,cAAc,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAO,CAAC;gBAC7C,MAAM,cAAc,GAAG,WAAW;sBAC9B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC,cAAc,CAAC;sBACnE,CAAC,CAAC,cAAc,CAAC;gBAErB,OAAO;oBACL,mBAAmB,EAAE,CAAC,CAAC,EAAE;oBACzB,+BAA+B,EAAE,cAAc;iBAChD,CAAC;aACH,CAAA,CAAC,CACH,CAAC;YAEF,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAO;gBAC/B,QAAQ,EAAE,4BAA4B;gBACtC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,OAAO;wBACP,mBAAmB;qBACpB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEa,mBAAmB,CAAC,KAAa,EAAE,OAAiB;;YAChE,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM;gBAAE,OAAO,IAAI,CAAC;YAE7C,IAAI,iBAAyB,CAAC;YAE9B,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAC9B,OAAO,CAAC,GAAG,CAAC,CAAO,CAAC;gBAClB,MAAM,EAAE,kBAAkB,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAEjE,KAAK,EAAE,CAAC,CAAC,CAAC;gBAEb,IAAI,iBAAiB,EAAE;oBACrB,IACE,IAAI,CAAC,SAAS,CAAC,iBAAiB,CAAC;wBACjC,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,EACpD;wBACA,MAAM,IAAI,WAAW,CAAC;4BACpB,IAAI,EAAE,WAAW,CAAC,QAAQ;4BAC1B,OAAO,EACL,kEAAkE;yBACrE,CAAC,CAAC;qBACJ;iBACF;qBAAM;oBACL,iBAAiB,GAAG,kBAAkB,CAAC,iBAAiB,CAAC;iBAC1D;gBACD,OAAO,kBAAkB,CAAC,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC;aAClD,CAAA,CAAC,CACH,CAAC;YAEF,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,aAAa,CAC3D,MAAM,EACN,uBAAuB,CAAC,iBAAiB,CAC1C,CAAC;YAEF,OAAO,MAAMjB,iBAAG,CAAC,KAAK,iCACjB,iBAAiB,KACpB,CAAC,EAAE,cAAc,IACjB,CAAC;SACJ;KAAA;IAEY,aAAa,CACxB,UAAkB,EAClB,UAAmB,KAAK;;YAExB,MAAM,mBAAmB,GAAG,CAC1B,SAAiB,EACjB,WAAmB,EACnB,WAAoB;gBAEpB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;gBAC1D,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;gBAEtD,IAAI,cAAc,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACtD,SAAS,CAAC,GAAG,EACb,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;gBACF,IAAI,WAAW,EAAE;oBACf,cAAc,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAClD,WAAW,EACX,cAAc,CACf,CAAC;iBACH;gBACD,OAAO,cAAc,CAAC;aACvB,CAAA,CAAC;YAEF,MAAM,0BAA0B,GAAG,CACjC,QAAkB,EAClB,WAAoB;gBAEpB,OAAO,OAAO,CAAC,GAAG,CAAC;oBACjB,GAAG,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,CAAO,iBAAiB;wBAAK,QAAC;4BACvD,mBAAmB,EAAE,iBAAiB,CAAC,EAAE;4BACzC,cAAc,EAAE,MAAM,mBAAmB,CACvC,iBAAiB,CAAC,QAAQ,CAAC,KAAK,EAChC,QAAQ,CAAC,KAAK,EACd,WAAW,CACZ;yBACF,EAAC;sBAAA,CAAC;oBACH,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,CAAO,iBAAiB;wBAAK,QAAC;4BACpD,mBAAmB,EAAE,iBAAiB,CAAC,EAAE;4BACzC,cAAc,EAAE,MAAM,mBAAmB,CACvC,iBAAiB,CAAC,MAAM,CAAC,KAAK,EAC9B,QAAQ,CAAC,KAAK,EACd,WAAW,CACZ;yBACF,EAAC;sBAAA,CAAC;iBACJ,CAAC,CAAC;aACJ,CAAA,CAAC;YAEF,MAAM,gBAAgB,GAAG,CACvB,SAAqB,EACrB,WAAoB;gBAEpB,OAAO,OAAO,CAAC,GAAG,CAChB,SAAS,CAAC,GAAG,CAAC,CAAO,QAAQ;oBAAK,QAAC;wBACjC,UAAU,EAAE,QAAQ,CAAC,EAAE;wBACvB,mBAAmB,EAAE,MAAM,0BAA0B,CACnD,QAAQ,EACR,WAAW,CACZ;wBACD,aAAa,EAAE,EAAE;qBAClB,EAAC;kBAAA,CAAC,CACJ,CAAC;aACH,CAAA,CAAC;YAEF,MAAM,gBAAgB,GAAG,CAAO,SAAqB;gBACnD,OAAO,OAAO,CAAC,GAAG,CAChB,SAAS,CAAC,GAAG,CAAC,CAAO,QAAQ;oBAAK,QAAC;wBACjC,UAAU,EAAE,QAAQ,CAAC,EAAE;wBACvB,WAAW,EAAE,QAAQ,CAAC,KAAK;qBAC5B,EAAC;kBAAA,CAAC,CACJ,CAAC;aACH,CAAA,CAAC;YAEF,MAAM,oBAAoB,GAAG,CAC3B,aAA8B,EAC9B,WAAoB;gBAEpB,OAAO,OAAO,CAAC,GAAG,CAChB,aAAa,CAAC,GAAG,CAAC,CAAO,EAAE;oBAAK,QAAC;wBAC/B,aAAa,EAAE,EAAE,CAAC,EAAE;wBACpB,qBAAqB,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACxD,WAAW,EACX,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,EAAE,CAClB;wBACD,SAAS,EAAE,MAAM,gBAAgB,CAAC,EAAE,CAAC,SAAS,CAAC;qBAChD,EAAC;kBAAA,CAAC,CACJ,CAAC;aACH,CAAA,CAAC;;;;YAMF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;YACpD,IAAI,QAAQ,CAAC,MAAM,KAAK,aAAa,CAAC,QAAQ,EAAE;gBAC9C,MAAM,IAAI,WAAW,CAAC;oBACpB,IAAI,EAAE,WAAW,CAAC,QAAQ;oBAC1B,OAAO,EAAE,uBAAuB,aAAa,CAAC,QAAQ,QAAQ;iBAC/D,CAAC,CAAC;aACJ;YAED,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;YAC9D,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAEzD,MAAM,KAAK,GAAQ;gBACjB,UAAU,EAAE,QAAQ,CAAC,EAAE;gBACvB,OAAO;gBACP,SAAS,EAAE,MAAM,gBAAgB,CAAC,QAAQ,CAAC,SAAS,EAAE,cAAc,CAAC;aACtE,CAAC;;YAGF,MAAM,4BAA4B,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACtE,UAAU,CAAC,GAAG,EACd,cAAc,CAAC,MAAM,CAAC,IAAI,CAAC,CAC5B,CAAC;YAEF,KAAK,CAAC,gBAAgB,GAAG;gBACvB,YAAY,EAAE,UAAU,CAAC,EAAE;gBAC3B,4BAA4B;gBAC5B,kBAAkB,EAAE,EAAE;gBACtB,aAAa,EAAE,MAAM,oBAAoB,CACvC,QAAQ,CAAC,cAAc,EACvB,cAAc,CACf;aACF,CAAC;YAEF,IAAI,QAAQ,CAAC,cAAc,CAAC,MAAM,EAAE;gBAClC,MAAM,KAA8C,cAAc,CAAC,MAAM,CACvE,IAAI,CACE,EAFF,EAAE,CAAC,EAAE,cAAc,OAEjB,EAFsB,iBAAiB,cAAzC,KAA2C,CAEzC,CAAC;;;;gBAKT,MAAM,YAAY,GAAG,IAAIe,QAAa,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;gBAEhE,QAAQ,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,EAAE,EAAE,GAAG;oBACtC,IAAI,aAAa,GAAG,EAAE,CAAC,SAAS,CAAC,MAAM,CAAC;;oBAExC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE;wBACnB,aAAa,GAAG,CAAC,CAAC;qBACnB;oBACD,YAAY,CAAC,cAAc,CACzB,IAAIC,WAAgB,CAAC,GAAG,EAAE,EAAE,CAAC,MAAM,EAAE,aAAa,CAAC,CACpD,CAAC;iBACH,CAAC,CAAC;gBAEH,MAAM,IAAI,CAAC,aAAa,CAAC,cAAc,CACrC,cAAc,EACd,uBAAuB,CAAC,iBAAiB,EACzC,YAAY,CACb,CAAC;;gBAGF,MAAM,OAAO,CAAC,GAAG,CACf,QAAQ,CAAC,cAAc,CAAC,GAAG,CAAC,CAAO,EAAE,EAAE,GAAG;oBACxC,MAAM,eAAe,GAAG,YAAY,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC;oBACxD,MAAM,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC;oBAEnE,MAAM,OAAO,CAAC,GAAG,CACf,EAAE,CAAC,SAAS,CAAC,GAAG,CAAC,CAAO,QAAQ,EAAE,EAAE;wBAClC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;;wBAG7D,MAAM,KAAK,GACT,EAAE,CAAC,MAAM,KAAK,CAAC;8BACX,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC;8BACzB,eAAe,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;wBAEjC,MAAM,kBAAkB,GAAuB;4BAC7C,MAAM,EAAE;gCACN,KAAK;gCACL,WAAW,EAAE;oCACX,MAAM,EAAE,EAAE,CAAC,MAAM;oCACjB,IAAI,EAAE,EAAE,CAAC,SAAS,CAAC,MAAM;iCAC1B;6BACF;4BACD,iBAAiB;yBAClB,CAAC;wBACF,gBAAgB,CAAC,SAAS,CACxB,EAAE,CACH,CAAC,8BAA8B,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACpE,SAAS,CAAC,GAAG,EACb,kBAAkB,CACnB,CAAC;qBACH,CAAA,CAAC,CACH,CAAC;iBACH,CAAA,CAAC,CACH,CAAC;aACH;YACD,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAM;gBAC9B,QAAQ,EAAE,qBAAqB;gBAC/B,SAAS,EAAE,EAAE,KAAK,EAAE;aACrB,CAAC,CAAC;SACJ;KAAA;IAEY,iBAAiB;;YAC5B,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACnD,KAAK,EAAE,sBAAsB;aAC9B,CAAC,CAAC;YACH,OAAO,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;SACpD;KAAA;;;;YAvuBF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAlEQ,eAAe;YAIf,cAAc;YAkDOhB,iBAAG;YAjDxB,UAAU;YAHV,iBAAiB;YACjB,eAAe;YAKf,mBAAmB;YAFhBiB,aAsEiC;YA5DpC,uBAAuB;YADvB,uBAAuB;YAGvB,uBAAuB;YAsC9B,gBAAgB;;;MCjCL,oBAAoB;IAC/B,YACU,eAAgC,EAChC,uBAAgD,EAChD,uBAAgD,EAChD,uBAAgD;QAHhD,oBAAe,GAAf,eAAe,CAAiB;QAChC,4BAAuB,GAAvB,uBAAuB,CAAyB;QAChD,4BAAuB,GAAvB,uBAAuB,CAAyB;QAChD,4BAAuB,GAAvB,uBAAuB,CAAyB;KACtD;IAES,aAAa,CACxB,WAAwB;;YAExB,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,cAAc,CAAC;gBAC3D,sBAAsB,EAAE;oBACtB,KAAK,EAAE,WAAW,CAAC,KAAK;oBACxB,IAAI,EAAE,WAAW,CAAC,IAAI;iBACvB;aACF,CAAC,CAAC;YAEH,IAAI;gBACF,MAAM,OAAO,CAAC,GAAG,CACf,WAAW,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,KAC1B,IAAI,CAAC,cAAc,CAAC,UAAU,EAAE,WAAW,CAAC,KAAK,EAAE,CAAC,CAAC,CACtD,CACF,CAAC;gBAEF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;gBACpE,IAAI,WAAW,CAAC,cAAc,CAAC,MAAM,EAAE;oBACrC,MAAM,cAAc,GAAiC;wBACnD,UAAU;wBACV,KAAK,EAAE,QAAQ,CAAC,KAAK;wBACrB,KAAK,EAAE,QAAQ,CAAC,KAAK;wBACrB,YAAY,EAAE,KAAK;wBACnB,MAAM,EAAE,CAAC;wBACT,uBAAuB,EAAE,IAAI;wBAE7B,cAAc,EAAE,WAAW,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;4BACrD,MAAM,EAAE,CAAC,CAAC,MAAM;4BAChB,YAAY,EAAE,CAAC,CAAC,YAAY;4BAC5B,0BAA0B,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE;4BAC5C,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;gCACjC,cAAc,EAAE,CAAC,CAAC,cAAc;gCAChC,uBAAuB,EAAE,CAAC,CAAC,uBAAuB;gCAClD,qBAAqB,EAAE;oCACrB,OAAO,EAAE,CAAC,CAAC,OAAO;oCAClB,KAAK,EAAE,WAAW,CAAC,KAAK;iCACzB;6BACF,CAAC,CAAC;yBACJ,CAAC,CAAC;qBACJ,CAAC;oBACF,QAAQ,CAAC,aAAa,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,8BAA8B,CACxF,cAAc,CACf,CAAC;iBACH;gBACD,MAAM,OAAO,CAAC,GAAG,CACf,WAAW,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,KAC1B,IAAI,CAAC,cAAc,CACjB,UAAU,EACV,QAAQ,CAAC,aAAa,EACtB,WAAW,CAAC,KAAK,EACjB,CAAC,CACF,CACF,CACF,CAAC;aACH;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC;aACjC;YACD,OAAO,EAAE,UAAU,EAAE,CAAC;SACvB;KAAA;IAEY,cAAc,CAAC,cAA8B;;YACxD,MAAM,MAAM,GAAG;gBACb,UAAU,EAAE,cAAc,CAAC,UAAU;gBACrC,KAAK,EAAE,cAAc,CAAC,KAAK;gBAC3B,sBAAsB,EAAE;oBACtB,KAAK,EAAE,cAAc,CAAC,KAAK;oBAC3B,IAAI,EAAE,cAAc,CAAC,IAAI;iBAC1B;aACF,CAAC;YACF,MAAM,IAAI,CAAC,eAAe,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC;YAElD,MAAM,OAAO,CAAC,GAAG,CACf,cAAc,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,KAC7B,IAAI,CAAC,cAAc,CAAC,cAAc,CAAC,UAAU,EAAE,cAAc,CAAC,KAAK,EAAE,CAAC,CAAC,CACxE,CACF,CAAC;YACF,MAAM,OAAO,CAAC,GAAG,CACf,cAAc,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC,CAAC,KACtC,IAAI,CAAC,uBAAuB,CAAC,cAAc,CAAC,CAAC,CAAC,CAC/C,CACF,CAAC;YAEF,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,cAAc,CAAC,CAAC;YAEtE,MAAM,OAAO,CAAC,GAAG,CACf,cAAc,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,KAC7B,IAAI,CAAC,cAAc,CACjB,cAAc,CAAC,UAAU,EACzB,aAAa,EACb,cAAc,CAAC,KAAK,EACpB,CAAC,CACF,CACF,CACF,CAAC;YACF,MAAM,OAAO,CAAC,GAAG,CACf,cAAc,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC,CAAC,KACtC,IAAI,CAAC,uBAAuB,CAAC,cAAc,CAAC,CAAC,CAAC,CAC/C,CACF,CAAC;SACH;KAAA;IAEa,cAAc,CAC1B,UAAkB,EAClB,KAAa,EACb,QAAiC;;YAEjC,IAAI,QAAQ,CAAC,UAAU,EAAE;gBACvB,MAAM,IAAI,CAAC,uBAAuB,CAAC,cAAc,CAAC;oBAChD,EAAE,EAAE,QAAQ,CAAC,UAAU;oBACvB,KAAK,EAAE,QAAQ,CAAC,KAAK;oBACrB,qBAAqB,EAAE,EAAE,OAAO,EAAE,QAAQ,CAAC,OAAO,EAAE,KAAK,EAAE;iBAC5D,CAAC,CAAC;aACJ;iBAAM;gBACL,MAAM,IAAI,CAAC,uBAAuB,CAAC,WAAW,CAAC;oBAC7C,UAAU;oBACV,cAAc,EAAE,QAAQ,CAAC,cAAc;oBACvC,uBAAuB,EAAE,QAAQ,CAAC,uBAAuB;oBACzD,qBAAqB,EAAE,EAAE,OAAO,EAAE,QAAQ,CAAC,OAAO,EAAE,KAAK,EAAE;iBAC5D,CAAC,CAAC;aACJ;SACF;KAAA;IAEa,oBAAoB,CAChC,cAA8B;;YAE9B,IAAI,cAAc,CAAC,aAAa,EAAE;gBAChC,IAAI,cAAc,CAAC,cAAc,CAAC,MAAM,EAAE;oBACxC,MAAM,cAAc,GAAiC;wBACnD,UAAU,EAAE,cAAc,CAAC,UAAU;wBACrC,aAAa,EAAE,cAAc,CAAC,aAAa;wBAE3C,YAAY,EAAE,KAAK;wBACnB,MAAM,EAAE,CAAC;wBAET,cAAc,EAAE,cAAc,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;4BACxD,aAAa,EAAE,CAAC,CAAC,aAAa;4BAC9B,MAAM,EAAE,CAAC,CAAC,MAAM;4BAChB,YAAY,EAAE,CAAC,CAAC,YAAY;4BAC5B,0BAA0B,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE;4BAC5C,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;gCACjC,UAAU,EAAE,CAAC,CAAC,UAAU;gCACxB,KAAK,EAAE,CAAC,CAAC,KAAK;gCACd,cAAc,EAAE,CAAC,CAAC,cAAc;gCAChC,uBAAuB,EAAE,CAAC,CAAC,uBAAuB;gCAClD,qBAAqB,EAAE;oCACrB,OAAO,EAAE,CAAC,CAAC,OAAO;oCAClB,KAAK,EAAE,cAAc,CAAC,KAAK;iCAC5B;6BACF,CAAC,CAAC;4BACH,kBAAkB,EAAE,CAAC,CAAC,kBAAkB;yBACzC,CAAC,CAAC;wBACH,eAAe,EAAE,cAAc,CAAC,eAAe;qBAChD,CAAC;oBACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,8BAA8B,CAC/D,cAAc,CACf,CAAC;oBACF,OAAO,cAAc,CAAC,aAAa,CAAC;iBACrC;qBAAM;oBACL,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAC1D,cAAc,CAAC,UAAU,CAC1B,CAAC;oBACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,8BAA8B,CAC/D,cAAc,CAAC,UAAU,EACzB,cAAc,CAAC,KAAK,EACpB,SAAS,CACV,CAAC;oBACF,OAAO,IAAI,CAAC;iBACb;;aAEF;iBAAM,IAAI,cAAc,CAAC,cAAc,CAAC,MAAM,EAAE;gBAC/C,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAC1D,cAAc,CAAC,UAAU,CAC1B,CAAC;gBAEF,MAAM,cAAc,GAAiC;oBACnD,UAAU,EAAE,cAAc,CAAC,UAAU;oBACrC,KAAK,EAAE,cAAc,CAAC,KAAK;oBAC3B,KAAK,EAAE,cAAc,CAAC,KAAK;oBAC3B,YAAY,EAAE,KAAK;oBACnB,MAAM,EAAE,CAAC;oBACT,cAAc,EAAE,cAAc,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;wBACxD,MAAM,EAAE,CAAC,CAAC,MAAM;wBAChB,YAAY,EAAE,CAAC,CAAC,YAAY;wBAC5B,0BAA0B,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE;wBAC5C,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM;4BACjC,cAAc,EAAE,CAAC,CAAC,cAAc;4BAChC,uBAAuB,EAAE,CAAC,CAAC,uBAAuB;4BAClD,qBAAqB,EAAE;gCACrB,OAAO,EAAE,CAAC,CAAC,OAAO;gCAClB,KAAK,EAAE,cAAc,CAAC,KAAK;6BAC5B;yBACF,CAAC,CAAC;qBACJ,CAAC,CAAC;oBACH,SAAS;iBACV,CAAC;gBACF,OAAO,MAAM,IAAI,CAAC,uBAAuB,CAAC,8BAA8B,CACtE,cAAc,CACf,CAAC;aACH;YACD,OAAO,IAAI,CAAC;SACb;KAAA;IAEa,cAAc,CAC1B,UAAkB,EAClB,aAAqB,EACrB,KAAa,EACb,QAAiC;;YAEjC,IAAI,UAAU,GAAG,QAAQ,CAAC,UAAU,CAAC;;YAGrC,IAAI,UAAU,EAAE;gBACd,MAAM,IAAI,CAAC,uBAAuB,CAAC,cAAc,CAAC;oBAChD,EAAE,EAAE,QAAQ,CAAC,UAAU;oBACvB,KAAK,EAAE,QAAQ,CAAC,KAAK;oBACrB,qBAAqB,EAAE,EAAE,OAAO,EAAE,QAAQ,CAAC,OAAO,EAAE,KAAK,EAAE;iBAC5D,CAAC,CAAC;aACJ;iBAAM;gBACL,MAAM,WAAW,GAAG;oBAClB,UAAU;oBACV,cAAc,EAAE,QAAQ,CAAC,cAAc;oBACvC,uBAAuB,EAAE,QAAQ,CAAC,uBAAuB;oBACzD,qBAAqB,EAAE,EAAE,OAAO,EAAE,QAAQ,CAAC,OAAO,EAAE,KAAK,EAAE;iBAC5D,CAAC;gBACF,UAAU,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,WAAW,CAAC,WAAW,CAAC,CAAC;aAC1E;YACD,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,WAAW,CACnE,UAAU,CACX,CAAC;YACF,MAAM,IAAI,CAAC,mBAAmB,CAC5B,UAAU,EACV,aAAa,EACb,cAAc,EACd,QAAQ,CAAC,WAAW,CACrB,CAAC;SACH;KAAA;IAEa,mBAAmB,CAC/B,UAAkB,EAClB,aAAqB,EACrB,QAAkB,EAClB,WAAgC;;YAEhC,WAAW,GAAG,WAAW,IAAI,EAAE,CAAC;YAChC,WAAW,CAAC,UAAU,GAAG,WAAW,CAAC,UAAU,IAAI,EAAE,CAAC;YACtD,WAAW,CAAC,OAAO,GAAG,WAAW,CAAC,OAAO,IAAI,EAAE,CAAC;YAEhD,MAAM,OAAO,CAAC,GAAG,CACf,WAAW,CAAC,UAAU;iBACnB,MAAM,CACL,CAAC,CAAC,KACA,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,EAAE,KAAK,CAAC,CAAC,UAAU,CAAC,CACnE;iBACA,GAAG,CAAC,CAAO,CAAC;gBACX,MAAM,MAAM,GAAG;oBACb,UAAU;oBACV,aAAa;oBACb,UAAU,EAAE,QAAQ,CAAC,EAAE;oBACvB,aAAa,EAAE,QAAQ,CAAC,KAAK;oBAC7B,UAAU,EAAE,CAAC,CAAC,WAAW;oBACzB,UAAU,EAAE,CAAC,CAAC,UAAU;iBACzB,CAAC;gBACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAC;aAChE,CAAA,CAAC,CACL,CAAC;YACF,MAAM,OAAO,CAAC,GAAG,CACf,WAAW,CAAC,OAAO;iBAChB,MAAM,CACL,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,CACjE;iBACA,GAAG,CAAC,CAAO,CAAC;gBACX,MAAM,MAAM,GAAG;oBACb,UAAU;oBACV,aAAa;oBACb,UAAU,EAAE,QAAQ,CAAC,EAAE;oBACvB,aAAa,EAAE,QAAQ,CAAC,KAAK;oBAC7B,UAAU,EAAE,CAAC,CAAC,WAAW;oBACzB,QAAQ,EAAE,CAAC,CAAC,QAAQ;iBACrB,CAAC;gBACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAC;aAC9D,CAAA,CAAC,CACL,CAAC;YAEF,MAAM,OAAO,CAAC,GAAG,CACf,WAAW,CAAC,UAAU;iBACnB,GAAG,CAAC,CAAC,CAAC,MAAM;gBACX,WAAW,EAAE,CAAC,CAAC,WAAW;gBAC1B,QAAQ,EAAE,QAAQ,CAAC,UAAU,CAAC,IAAI,CAChC,CAAC,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,EAAE,KAAK,CAAC,CAAC,UAAU,CACtC;aACF,CAAC,CAAC;iBACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC;iBACzB,GAAG,CAAC,CAAO,CAAC;gBACX,MAAM,MAAM,GAAoC;oBAC9C,EAAE,EAAE,CAAC,CAAC,QAAQ,CAAC,EAAE;oBACjB,KAAK,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK;oBACvB,UAAU,EAAE,CAAC,CAAC,WAAW;iBAC1B,CAAC;gBACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC;aAC/D,CAAA,CAAC,CACL,CAAC;YACF,MAAM,OAAO,CAAC,GAAG,CACf,WAAW,CAAC,OAAO;iBAChB,GAAG,CAAC,CAAC,CAAC,MAAM;gBACX,WAAW,EAAE,CAAC,CAAC,WAAW;gBAC1B,MAAM,EAAE,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC;aACjE,CAAC,CAAC;iBACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC;iBACvB,GAAG,CAAC,CAAO,CAAC;gBACX,MAAM,MAAM,GAAoC;oBAC9C,EAAE,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE;oBACf,KAAK,EAAE,CAAC,CAAC,MAAM,CAAC,KAAK;oBACrB,UAAU,EAAE,CAAC,CAAC,WAAW;iBAC1B,CAAC;gBACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC;aAC/D,CAAA,CAAC,CACL,CAAC;YAEF,MAAM,OAAO,CAAC,GAAG,CACf,QAAQ,CAAC,UAAU;iBAChB,MAAM,CACL,CAAC,CAAC,KACA,CAAC,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,UAAU,KAAK,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CACtE;iBACA,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,uBAAuB,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CACrE,CAAC;YACF,MAAM,OAAO,CAAC,GAAG,CACf,QAAQ,CAAC,OAAO;iBACb,MAAM,CACL,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CACpE;iBACA,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,uBAAuB,CAAC,kBAAkB,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CACrE,CAAC;SACH;KAAA;;;;YAzVF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAVQ,eAAe;YANf,uBAAuB;YADvB,uBAAuB;YAEvB,uBAAuB;;;ACKhC,IAAK,aAMJ;AAND,WAAK,aAAa;IAChB,8BAAa,CAAA;IACb,gCAAe,CAAA;IACf,gCAAe,CAAA;IACf,gCAAe,CAAA;IACf,oCAAmB,CAAA;AACrB,CAAC,EANI,aAAa,KAAb,aAAa,QAMjB;AAED,MAAM,UAAU,GAAG;IACjB,aAAa,CAAC,IAAI;IAClB,aAAa,CAAC,KAAK;IACnB,aAAa,CAAC,KAAK;IACnB,aAAa,CAAC,KAAK;IACnB,aAAa,CAAC,OAAO;CACtB,CAAC;AAEF,MAAM,WAAW;CAMhB;MAKY,qBAAqB;IAChC,YACU,wBAAkD,EAClD,mBAAwC,EACxC,cAA8B,EAC9B,WAAiC;QAHjC,6BAAwB,GAAxB,wBAAwB,CAA0B;QAClD,wBAAmB,GAAnB,mBAAmB,CAAqB;QACxC,mBAAc,GAAd,cAAc,CAAgB;QAC9B,gBAAW,GAAX,WAAW,CAAsB;KACvC;IAES,aAAa,CACxB,MAA6B;;YAE7B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YAC9C,MAAM,IAAI,CAAC,cAAc,CAAC,aAAa,CACrC,IAAI,CAAC,WAAW,CAAC,EAAE,EACnB,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,MAAM,CACP,CAAC;YACF,MAAM,IAAI,CAAC,uBAAuB,CAAC,MAAM,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;YAC7D,OAAO,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;SAC7C;KAAA;IAEa,uBAAuB,CACnC,SAAgC,EAChC,SAAgC;;YAEhC,IAAI,CAAC,SAAS;gBAAE,OAAO;YAEvB,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;YAEtD,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;gBAAE,OAAO;YAEjC,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,iBAAiB,EAAE,CAAC;YAE1E,IAAI,cAAc,CAAC,MAAM,KAAK,CAAC;gBAAE,OAAO;YAExC,KAAK,MAAM,OAAO,IAAI,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,eAAe,CAAC,EAAE;gBAClE,MAAM,IAAI,CAAC,4BAA4B,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;aAC3D;SACF;KAAA;IAEO,UAAU,CAChB,SAAgC,EAChC,SAAgC;QAEhC,MAAM,OAAO,GAAkB,EAAE,CAAC;QAElC,KAAK,MAAM,KAAK,IAAI,UAAU,EAAE;YAC9B,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;YAClC,IAAI,QAAQ,IAAI,QAAQ,CAAC,MAAM,EAAE;gBAC/B,KAAK,MAAM,QAAQ,IAAI,QAAQ,CAAC,MAAM,EAAE;oBACtC,MAAM,QAAQ,GAAI,SAAS,CAAC,KAAK,CAAC,CAAC,MAAgB,CAAC,IAAI,CACtD,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,QAAQ,CAAC,EAAE,CAC5B,CAAC;oBAEF,IAAI,CAAC,QAAQ,EAAE;wBACb,OAAO,CAAC,IAAI,CAAC;4BACX,KAAK;4BACL,EAAE,EAAE,QAAQ,CAAC,EAAE;4BACf,KAAK,EAAE,QAAQ,CAAC,KAAK;4BACrB,QAAQ,EAAE,QAAQ,CAAC,KAAK;yBACzB,CAAC,CAAC;qBACJ;yBAAM,IAAI,CAAChB,UAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,KAAK,EAAE,QAAQ,CAAC,KAAK,CAAC,EAAE;wBACrD,OAAO,CAAC,IAAI,CAAC;4BACX,KAAK;4BACL,EAAE,EAAE,QAAQ,CAAC,EAAE;4BACf,KAAK,EAAE,QAAQ,CAAC,KAAK;4BACrB,QAAQ,EAAE,QAAQ,CAAC,KAAK;4BACxB,QAAQ,EAAE,QAAQ,CAAC,KAAK;yBACzB,CAAC,CAAC;qBACJ;iBACF;aACF;SACF;QACD,OAAO,OAAO,CAAC;KAChB;IAEa,4BAA4B,CACxC,OAAkC,EAClC,OAAsB;;YAEtB,IAAI,UAAU,GAAG,KAAK,CAAC;YACvB,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE;gBAC5B,QAAQ,MAAM,CAAC,KAAK;oBAClB,KAAK,aAAa,CAAC,KAAK;wBACtB;4BACE,MAAM,KAAK,GACT,OAAO,CAAC,MAAM;gCACd,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,KAAK,MAAM,CAAC,KAAK,CAAC,CAAC;4BAEvD,IAAI,KAAK,EAAE;gCACT,UAAU,GAAG,IAAI,CAAC;gCAClB,KAAK,CAAC,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC;6BAC/B;yBACF;wBACD,MAAM;oBACR,KAAK,aAAa,CAAC,OAAO;wBACxB;4BACE,MAAM,KAAK,GACT,OAAO,CAAC,SAAS;gCACjB,OAAO,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,KAAK,MAAM,CAAC,KAAK,CAAC,CAAC;4BAE1D,IAAI,KAAK,EAAE;gCACT,UAAU,GAAG,IAAI,CAAC;gCAClB,KAAK,CAAC,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC;6BAC/B;yBACF;wBACD,MAAM;oBACR,SAAS;wBACP,MAAM,KAAK,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;wBAEpC,IAAIA,UAAC,CAAC,OAAO,CAAC,KAAK,EAAE,MAAM,CAAC,QAAQ,CAAC,EAAE;4BACrC,UAAU,GAAG,IAAI,CAAC;4BAClB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC;yBACzC;qBACF;iBACF;aACF;YACD,IAAI,UAAU,EAAE;gBACd,MAAM,EAAE,EAAE,EAAE,UAAU,EAAE,WAAW,KAAqB,OAAO,EAAvB,WAAW,UAAK,OAAO,EAAzD,mCAA+C,CAAU,CAAC;gBAEhE,MAAM,IAAI,CAAC,wBAAwB,CAAC,yBAAyB,CAC3D,EAAE,EACF,UAAU,EACV,WAAW,EACX,WAAW,CACZ,CAAC;aACH;SACF;KAAA;IAEY,yBAAyB,CAAC,OAAkC;;YACvE,MAAM,EAAE,EAAE,EAAE,UAAU,EAAE,WAAW,KAAqB,OAAO,EAAvB,WAAW,UAAK,OAAO,EAAzD,mCAA+C,CAAU,CAAC;YAEhE,MAAM,IAAI,CAAC,wBAAwB,CAAC,yBAAyB,CAC3D,EAAE,EACF,UAAU,EACV,WAAW,EACX,WAAW,CACZ,CAAC;YAEF,MAAM,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC;SAC9C;KAAA;IAEY,wBAAwB,CAAC,OAA4B;;YAChE,IAAI,EAAE,WAAW,EAAE,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YACvD,IAAI,YAAY,GAAG,KAAK,CAAC;YACzB,WAAW,qBAAQ,WAAW,CAAE,CAAC;YAEjC,IAAI,OAAO,CAAC,IAAI,EAAE;gBAChB,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,EAAE,WAAW,CAAC,IAAI,CAAC,CAAC;gBAEjE,IAAI,QAAQ,EAAE;oBACZ,WAAW,CAAC,IAAI,GAAG,QAAQ,CAAC;oBAC5B,YAAY,GAAG,IAAI,CAAC;iBACrB;aACF;YAED,IAAI,OAAO,CAAC,KAAK,EAAE;gBACjB,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,KAAK,EAAE,WAAW,CAAC,KAAK,CAAC,CAAC;gBAEnE,IAAI,QAAQ,EAAE;oBACZ,WAAW,CAAC,KAAK,GAAG,QAAQ,CAAC;oBAC7B,YAAY,GAAG,IAAI,CAAC;iBACrB;aACF;YAED,IAAI,OAAO,CAAC,KAAK,EAAE;gBACjB,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,KAAK,EAAE,WAAW,CAAC,KAAK,CAAC,CAAC;gBAEnE,IAAI,QAAQ,EAAE;oBACZ,WAAW,CAAC,KAAK,GAAG,QAAQ,CAAC;oBAC7B,YAAY,GAAG,IAAI,CAAC;iBACrB;aACF;YAED,IAAI,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE;gBAC3C,KAAK,MAAM,KAAK,IAAI,OAAO,CAAC,MAAM,EAAE;oBAClC,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAC9B,KAAK,CAAC,KAAK,EACX,WAAW,CAAC,KAAK,EACjB,KAAK,CAAC,KAAK,CACZ,CAAC;oBAEF,IAAI,QAAQ,EAAE;wBACZ,WAAW,CAAC,KAAK,GAAG,QAAQ,CAAC;wBAC7B,YAAY,GAAG,IAAI,CAAC;qBACrB;iBACF;aACF;YAED,IAAI,OAAO,CAAC,SAAS,IAAI,OAAO,CAAC,SAAS,CAAC,MAAM,EAAE;gBACjD,KAAK,MAAM,OAAO,IAAI,OAAO,CAAC,SAAS,EAAE;oBACvC,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAC9B,OAAO,CAAC,KAAK,EACb,WAAW,CAAC,OAAO,EACnB,OAAO,CAAC,KAAK,CACd,CAAC;oBAEF,IAAI,QAAQ,EAAE;wBACZ,WAAW,CAAC,OAAO,GAAG,QAAQ,CAAC;wBAC/B,YAAY,GAAG,IAAI,CAAC;qBACrB;iBACF;aACF;YAED,IAAI,YAAY,EAAE;gBAChB,MAAM,IAAI,CAAC,cAAc,CAAC,aAAa,CACrC,WAAW,CAAC,EAAE,EACd,WAAW,CAAC,KAAK,EACjB,WAAW,CACZ,CAAC;aACH;SACF;KAAA;IAEO,UAAU,CAChB,KAAQ,EACR,QAAoC,EACpC,QAAgB,IAAI;QAEpB,QAAQ,GAAG,QAAQ,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,CAAC;QAC5D,QAAQ,CAAC,MAAM,GAAG,QAAQ,CAAC,MAAM,IAAI,EAAE,CAAC;QAExC,IACE,QAAQ,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC;YAC5B,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAACA,UAAC,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EACxD;YACA,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,GAAG,KAAK,IAAI,IAAI,IAAI,EAAE,CAAC,OAAO,EAAE,EAAE;gBACtC,KAAK;gBACL,KAAK,EAAE,KAAK;aACb,CAAC,CAAC;YACH,QAAQ,CAAC,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC;YAClD,QAAQ,CAAC,KAAK,GAAG,QAAQ,CAAC,KAAK,IAAI,KAAK,CAAC;YACzC,OAAO,QAAQ,CAAC;SACjB;QACD,OAAO,IAAI,CAAC;KACb;;;;YA9OF,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAvCQ,wBAAwB;YAGxB,mBAAmB;YAEnB,cAAc;YAHd,oBAAoB;;;ICgBjB;AAAZ,WAAY,eAAe;IACzB,0CAAuB,CAAA;AACzB,CAAC,EAFW,eAAe,KAAf,eAAe;;MC0Bd,eAAe;IACnB,OAAO,OAAO,CACnB,MAAuB;QAEvB,OAAO;YACL,QAAQ,EAAE,eAAe;YACzB,SAAS,EAAE;gBACT;oBACE,OAAO,EAAE,SAAS;oBAClB,QAAQ,EAAE,MAAM;iBACjB;gBACD;oBACE,OAAO,EAAE,SAAS;oBAClB,QAAQ,EAAE,IAAI;iBACf;gBACD;oBACE,OAAO,EAAE,eAAe;oBACxB,UAAU,EAAE,oBAAoB;oBAChC,IAAI,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;oBAC5B,KAAK,EAAE,IAAI;iBACZ;gBACD;oBACE,OAAO,EAAE,eAAe;oBACxB,UAAU,EAAE,cAAc;oBAC1B,IAAI,EAAE,CAAC,oBAAoB,CAAC;oBAC5B,KAAK,EAAE,IAAI;iBACZ;gBACD;oBACE,OAAO,EAAE,cAAc;oBACvB,UAAU,EAAE,eAAe;oBAC3B,IAAI,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;iBAC7B;aACF;SACF,CAAC;KACH;;;YAnDF,QAAQ,SAAC;gBACR,OAAO,EAAE,CAAC,gBAAgB,EAAE,qBAAqB,CAAC,OAAO,EAAE,CAAC;gBAC5D,SAAS,EAAE;oBACT,aAAa;oBACb,WAAW;oBACX,WAAW;oBACX,cAAc;oBACd,eAAe;oBACf,oBAAoB;oBACpB,eAAe;oBACf,gBAAgB;oBAChB,iBAAiB;oBACjB,eAAe;oBACf,UAAU;oBACV,iBAAiB;iBAClB;aACF;;;MC5CY,IAAI;CAIhB;MAEY,YAAY;CAExB;MAEY,QAAQ;CAKpB;MAEY,qBAAqB;CAEjC;MAEY,0BAA0B;;;ICnB3B;AAAZ,WAAY,cAAc;IACxB,mCAAiB,CAAA;IACjB,uCAAqB,CAAA;AACvB,CAAC,EAHW,cAAc,KAAd,cAAc;;ACA1B,MAAM,kBAAkB,GAAG,CAAC,CAAC;AAC7B,MAAM,sBAAsB,GAAG,CAAC,CAAC;AAE1B,MAAM,yBAAyB,GAAG,GAAG,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;IAuDxC,gBAAgB;CACnB;;ACjDD,SAAe,qBAAqB,CAClC,eAAgC,EAChC,aAA4B,EAC5B,UAA6B,EAC7B,UAAkB,EAClB,kBAA0B;;QAE1B,MAAM,KAAK,GAAG,EAAE,CAAC;QAEjB,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;;QAG/D,KAAK,IAAI,CAAC,GAAG,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,GAAG,kBAAkB,EAAE,EAAE,CAAC,EAAE;YACjE,MAAM,IAAI,GAAG,GAAG,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC,EAAE,CAAC;YACxE,OAAO,CAAC,GAAG,CAAC,mBAAmB,EAAE,IAAI,CAAC,CAAC;YACvC,MAAM,aAAa,CAAC,YAAY,CAAC;gBAC/B,WAAW,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACnC,IAAI;gBACJ,UAAU,EAAE;oBACV,EAAE,EAAE,GAAG;oBACP,OAAO,EAAE,CAAC;oBACV,IAAI,EAAE,iBAAiB;iBACxB;gBACD,MAAM,EAAE;oBACN;wBACE,EAAE,EAAE,OAAO;wBACX,IAAI,EAAE,eAAe,CAAC,IAAI;wBAC1B,KAAK,EAAE,YAAY;wBACnB,KAAK,EAAE,YAAY;qBACpB;oBACD;wBACE,EAAE,EAAE,YAAY;wBAChB,IAAI,EAAE,eAAe,CAAC,IAAI;wBAC1B,KAAK,EAAE,UAAU;wBACjB,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC;qBACzB;iBACF;aAEF,CAAC,CAAC;SACJ;;QAGD,KAAK,IAAI,CAAC,GAAG,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,GAAG,kBAAkB,EAAE,EAAE,CAAC,EAAE;YACjE,MAAM,EAAE,GAAG,QAAQ,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;YACtC,OAAO,CAAC,GAAG,CAAC,mBAAmB,EAAE,EAAE,CAAC,CAAC;YACrC,MAAM,aAAa,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC;SACtC;KACF;CAAA;SAEqB,oBAAoB,CACxC,eAAgC,EAChC,aAA4B,EAC5B,UAA6B,EAC7B,kBAA0B;;QAE1B,MAAM,OAAO,GAAG,MAAM,eAAe,CAAC,aAAa,EAAE,CAAC;;QAGtD,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE;YAC5B,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YAC9D,KAAK,MAAM,WAAW,IAAI,QAAQ,CAAC,aAAa,EAAE;gBAChD,IAAI,WAAW,CAAC,YAAY,EAAE;oBAC5B,MAAM,qBAAqB,CACzB,eAAe,EACf,aAAa,EACb,UAAU,EACV,WAAW,CAAC,EAAE,EACd,kBAAkB,CACnB,CAAC;iBACH;aACF;SACF;KACF;CAAA;IAQY,aAAa,SAAb,aAAa;IAIxB,YACU,MAAc,EACd,QAAyB,EACzB,eAAgC,EAChC,QAAyB;QAHzB,WAAM,GAAN,MAAM,CAAQ;QACd,aAAQ,GAAR,QAAQ,CAAiB;QACzB,oBAAe,GAAf,eAAe,CAAiB;QAChC,aAAQ,GAAR,QAAQ,CAAiB;QAPnC,eAAU,GAAqC,EAAE,CAAC;KAQ9C;IAEU,gBAAgB,CAAC,aAAkB;;YAC/C,MAAM,MAAM,GAAG,aAAa,CAAC,qBAAqB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC;YAC3E,MAAM,KAAK,GAAG,aAAa,CAAC,cAAc,CAAC,KAAK,CAAC;YAEjD,MAAM,eAAe,GACnB,KAAK,CAAC,UAAU;iBACf,MAAM,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CACpC,KAAK,CAAC,KAAK,EACX,KAAK,CAAC,UAAU,CACjB,CAAC,CAAC;YAEL,OAAO;gBACL,IAAI,EAAE,cAAc,CAAC,MAAM;gBAC3B,EAAE,EAAE,MAAM,CAAC,EAAE;gBACb,OAAO,EAAE,IAAI,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC;gBACjC,QAAQ,EAAE,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC;gBACnC,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,SAAS,EACP,KAAK,CAAC,SAAS;oBACf,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,cAAc,CAAC,KAAK,CAAC,SAAS,CAAC;gBAC1D,eAAe;gBACf,gBAAgB,EAAE,MAAM,CAAC,qBAAqB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,EAAE;aAC1E,CAAC;SACH;KAAA;IAEa,iBAAiB,CAAC,KAAY;;YAC1C,OAAO,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;SAC3E;KAAA;IAEa,IAAI;;YAChB,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,eAAe,EAAE,CAAC;YAClE,IAAI,KAAK,CAAC;YACV,IAAI,GAAG,CAAC;YAER,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAEnB,IAAI,CAAC,oBAAoB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAM;gBACzD,KAAK,EAAE,yBAAyB;gBAChC,SAAS,EAAE;oBACT,EAAE,EAAE,YAAY,CAAC,EAAE;oBACnB,KAAK,EAAE,CAAC;oBACR,KAAK,EAAE,IAAI;oBACX,KAAK,EAAE,IAAI;oBACX,mBAAmB,EAAE,mBAAmB;iBACzC;aACF,CAAC,CAAC;YAEH,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,uBAAuB,EAAE,CAAC,GAAG,GAAG,KAAK,IAAI,IAAI,CAAC,CAAC;YAE3D,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;;YAEnB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,iBAAiB,CACxC,IAAI,CAAC,oBAAoB,CAAC,QAAQ,CAAC,qBAAqB,CAAC,cAAc;iBACpE,KAAK,CACT,CAAC;YACF,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE;gBACxB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC;aACjC;YAED,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,+BAA+B,EAAE,CAAC,GAAG,GAAG,KAAK,IAAI,IAAI,CAAC,CAAC;SACpE;KAAA;IAEY,OAAO;;YAClB,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;YAElB,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC;YAC5C,OAAO,IAAI,CAAC,UAAU,CAAC;SACxB;KAAA;EACF;;;YApFA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA3FoB,MAAM;YAClB,eAAe;YACf,eAAe;YAEf,eAAe;;AAwFX,aAAa;IANzB,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,aAAa,CAiFzB;;AC1KM,MAAM,mBAAmB,GAAG,QAAQ,CAAiB;;;;;;;;;;CAU3D,CAAC;AASK,MAAM,yBAAyB,GAAG,QAAQ,CAA2B;;;;;;;;;;CAU3E,CAAC;AASK,MAAM,yBAAyB,GAAG,QAAQ,CAA2B;;;;;;;;CAQ3E,CAAC;AASK,MAAM,yBAAyB,GAAG,QAAQ,CAA2B;;;;;;CAM3E,CAAC;AAKK,MAAM,iBAAiB,GAAG,QAAQ,CAAmB;;;;;;;;;;IAUxD,mBAAmB;CACtB,CAAC;AAKK,MAAM,gBAAgB,GAAG,QAAQ,CAAkB;;;;;;IAMtD,mBAAmB;CACtB;;MC5DY,kBAAkB;CAE9B;IAaY,mBAAmB,SAAnB,mBAAmB;IAC9B,YACU,UAA6B,EAC7B,UAAsB,EACtB,iBAAoC,EACpC,QAAyB,EACzB,cAA8B,EAC9B,MAAc;QALd,eAAU,GAAV,UAAU,CAAmB;QAC7B,eAAU,GAAV,UAAU,CAAY;QACtB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,aAAQ,GAAR,QAAQ,CAAiB;QACzB,mBAAc,GAAd,cAAc,CAAgB;QAC9B,WAAM,GAAN,MAAM,CAAQ;KACpB;IAEE,iBAAiB,CAAC,KAA8B;;;YAEpD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAC1D,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAC9C,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACpD,OAAO,CAAC,GAAG,EACX,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACjB,CAAC;YACF,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACpD,GAAG,EACH,KAAK,CAAC,mBAAmB,CAC1B,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,KAAK,CAAC,CAAC;YAEzD,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,yBAAyB;gBACnC,SAAS,EAAE;oBACT,KAAK,kCACA,MAAM,KACT,aAAa,EAAE,OAAO,CAAC,EAAE,EACzB,UAAU;wBACV,UAAU,GACX;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEK,iBAAiB,CAAC,KAA8B;;;YAEpD,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACpD,KAAK,CAAC,KAAK,EACX,KAAK,CAAC,mBAAmB,CAC1B,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,KAAK,CAAC,CAAC;YAEzD,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,yBAAyB;gBACnC,SAAS,EAAE;oBACT,KAAK,kCACA,MAAM,KACT,EAAE,EAAE,KAAK,CAAC,EAAE,EACZ,UAAU,GACX;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAED,iBAAiB,CAAC,EAAU;QAC1B,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,yBAAyB;YACnC,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,EAAE;iBACH;aACF;SACF,CAAC,CAAC;KACJ;IAEa,uBAAuB,CACnC,KAA8B;;YAE9B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YACxD,MAAM,aAAa,GAAG,IAAI,CAAC,SAAS,CAClC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,cAAc,CAAC,CACpE,CAAC;YACF,MAAM,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACxC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,oBAAoB,CAAC,CAC1E,CAAC;YACF,MAAM,YAAY,GAAG,IAAI,CAAC,SAAS,CACjC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,aAAa,CAAC,CACnE,CAAC;YAEF,OAAO;gBACL,QAAQ,EAAE,MAAM,CAAC,EAAE;gBACnB,aAAa;gBACb,mBAAmB;gBACnB,YAAY;aACb,CAAC;SACH;KAAA;EACF;;;YA9FA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA5CQ,iBAAiB;YAGjB,UAAU;YAJV,iBAAiB;YAEjB,eAAe;YACf,cAAc;YAJF,MAAM;;AA+Cd,mBAAmB;IAN/B,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,mBAAmB,CA2F/B;;AC/HM,MAAM,iBAAiB,GAAG,QAAQ,CAAmB;;;;;;CAM3D,CAAC;AAOK,MAAM,YAAY,GAAG,QAAQ,CAAc;;;;;;CAMjD,CAAC;AAOK,MAAM,iBAAiB,GAAG,QAAQ,CAAmB;;;;;;CAM3D,CAAC;AAYK,MAAM,uBAAuB,GAAG,QAAQ,CAAyB;;;;;;;;CAQvE,CAAC;AAUK,MAAM,uBAAuB,GAAG,QAAQ,CAAyB;;;;;;;;;CASvE,CAAC;AAOK,MAAM,uBAAuB,GAAG,QAAQ,CAAyB;;;;;;CAMvE,CAAC;AASK,MAAM,kBAAkB,GAAG,QAAQ,CAAoB;;;;;;;;CAQ7D,CAAC;AASK,MAAM,kBAAkB,GAAG,QAAQ,CAAoB;;;;;;;;CAQ7D,CAAC;AAOK,MAAM,kBAAkB,GAAG,QAAQ,CAAoB;;;;;;CAM7D,CAAC;AASK,MAAM,wBAAwB,GAAG,QAAQ,CAA0B;;;;;;;;CAQzE,CAAC;AASK,MAAM,0BAA0B,GAAG,QAAQ,CAA4B;;;;;;;;CAQ7E,CAAC;AASK,MAAM,8BAA8B,GAAG,QAAQ,CAAsC;;;;;;;;CAQ3F,CAAC;AASK,MAAM,yBAAyB,GAAG,QAAQ,CAAiC;;;;;;;;CAQjF;;ICvLW;AAAZ,WAAY,iBAAiB;IAC3B,kCAAa,CAAA;AACf,CAAC,EAFW,iBAAiB,KAAjB,iBAAiB,QAE5B;IA+FY,YAAY,SAAZ,YAAa,SAAQ,SAAS;IACzC,YACU,MAAc,EACd,QAAkB,EAClB,WAAwB,EACxB,UAAsB,EACtB,OAAuB,EACvB,UAA6B,EAC7B,QAAyB;QAEjC,KAAK,CAAC,QAAQ,CAAC,CAAC;QARR,WAAM,GAAN,MAAM,CAAQ;QACd,aAAQ,GAAR,QAAQ,CAAU;QAClB,gBAAW,GAAX,WAAW,CAAa;QACxB,eAAU,GAAV,UAAU,CAAY;QACtB,YAAO,GAAP,OAAO,CAAgB;QACvB,eAAU,GAAV,UAAU,CAAmB;QAC7B,aAAQ,GAAR,QAAQ,CAAiB;KAGlC;IAEY,mBAAmB,CAC9B,OAAmC;;YAEnC,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,sBAAsB,CAC/D,OAAO,CAAC,eAAe,CACxB,CAAC;YAEF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAC7C,OAAO,CAAC,cAAc,EACtB,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,eAAe,CAAC,CACtD,CAAC;YAEF,OAAO,IAAI,CAAC,QAAQ,CAAC,iBAAiB,CAAC,YAAY,EAAE,WAAW,EAAE;gBAChE,WAAW,EAAE,aAAa;aAC3B,CAAC,CAAC;SACJ;KAAA;IAEY,eAAe,CAAC,OAA+B;;;YAC1D,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACvD,OAAO,CAAC,iBAAiB,GAAG,OAAO,CAAC,iBAAiB,IAAI,EAAE,CAAC;YAC5D,IAAI,CAAC,OAAO,CAAC,eAAe,IAAI,QAAC,OAAO,CAAC,iBAAiB,0CAAE,MAAM,CAAA,EAAE;gBAClE,MAAM,IAAI,sBAAsB,CAC9B,oJAAoJ,CACrJ,CAAC;aACH;YAED,MAAM,iBAAiB,GAAG,MAAM,OAAO,CAAC,GAAG,OACzC,OAAO,CAAC,iBAAiB,0CAAE,GAAG,CAAC,CAAC,CAAC,KAC/B,IAAI,CAAC,uBAAuB,CAAC,CAAC,EAAE,YAAY,CAAC,EAEhD,CAAC;;YAGF,IAAI,mBAA6C,CAAC;YAClD,IAAI,OAAO,CAAC,eAAe,EAAE;gBAC3B,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;gBACpD,mBAAmB,GAAG;oBACpB,aAAa,EAAE,OAAO,CAAC,EAAE;oBACzB,UAAU,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,YAAY,CAAC;iBAC/D,CAAC;aACH;YAED,MAAM,KAAK,oCACL,MAAM,IAAI,CAAC,QAAQ,CAAC,YAAY,EAAE,OAAO,CAAC,MAC9C,iBAAiB;gBACjB,mBAAmB,GACpB,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,uBAAuB;gBACjC,SAAS,EAAE;oBACT,KAAK;iBACN;aACF,CAAC,CAAC;;KACJ;IAED,mBAAmB,CAAC,OAA+B;QACjD,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,OAAO,CAAC,CAAC,CAAC;KAC3D;IAED,eAAe,CAAC,OAA+B;QAC7C,OAAO,IAAI,CAAC,uBAAuB,CAAC,OAAO,CAAC,CAAC;KAC9C;IAEK,uBAAuB,CAAC,OAA+B;;YAC3D,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,eAAe,CAC7C,OAAO,CAAC,WAAW,EACnB,OAAO,CAAC,cAAc,CACvB,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,uBAAuB;gBACjC,SAAS,EAAE;oBACT,KAAK,mCACC,MAAM,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,GAAG,EAAE,OAAO,CAAC,MAClD,WAAW,EAAE,OAAO,CAAC,WAAW,GACjC;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEM,eAAe,CAAC,EAAM;QAC3B,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,uBAAuB;YACjC,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,WAAW,EAAE,EAAE;iBAChB;aACF;SACF,CAAC,CAAC;KACJ;IAEK,UAAU,CAAC,OAA0B;;YACzC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAElD,MAAM,iBAAiB,GAAG,MAAM,OAAO,CAAC,GAAG,CACzC,OAAO,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAO,CAAC;gBACpC,MAAM,EACJ,WAAW,EACX,aAAa,EACb,UAAU,GACX,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;;;gBAGnD,OAAO;oBACL,WAAW;oBACX,aAAa;oBACb,cAAc,EAAE,UAAU;iBACC,CAAC;aAC/B,CAAA,CAAC,CACH,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,kBAAkB;gBAC5B,SAAS,EAAE;oBACT,KAAK,mCACC,MAAM,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,MAChD,iBAAiB,GAClB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEK,UAAU,CAAC,OAA0B;;YACzC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;YAEzE,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,kBAAkB;gBAC5B,SAAS,EAAE;oBACT,KAAK,mCACC,MAAM,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,GAAG,EAAE,OAAO,CAAC,MACpD,MAAM,EAAE,OAAO,CAAC,MAAM,GACvB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEM,UAAU,CAAC,EAAM;QACtB,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,kBAAkB;YAC5B,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,MAAM,EAAE,EAAE;iBACX;aACF;SACF,CAAC,CAAC;KACJ;IAEa,uBAAuB,CACnC,OAA+B,EAC/B,MAAe;;;;YAIf,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,eAAe,CAC5C,OAAO,CAAC,WAAW,EACnB,OAAO,CAAC,aAAa,CACtB,CAAC;YAEF,OAAO;gBACL,WAAW,EAAE,OAAO,CAAC,WAAW;gBAChC,aAAa,EAAE,WAAW,CAAC,EAAE;gBAC7B,UAAU,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,WAAW,EAAE,MAAM,CAAC;aAC7D,CAAC;SACH;KAAA;;;;;;;IAUK,iBAAiB,CAAC,eAA+B;;YACrD,OAAO,CACL,MAAM,IAAI,CAAC,KAAK,CAAC;gBACf,KAAK,EAAE,iBAAiB;gBACxB,SAAS,EAAE;oBACT,EAAE,EAAE,eAAe;iBACpB;aACF,CAAC,EACF,SAAS,CAAC,KAAK,CAAC;SACnB;KAAA;IAEK,iBAAiB,CAAC,WAA2B;;YACjD,OAAO,CACL,MAAM,IAAI,CAAC,KAAK,CAAC;gBACf,KAAK,EAAE,iBAAiB;gBACxB,SAAS,EAAE;oBACT,EAAE,EAAE,WAAW;iBAChB;aACF,CAAC,EACF,SAAS,CAAC,KAAK,CAAC;SACnB;KAAA;IAEK,YAAY,CAAC,MAAsB;;YACvC,OAAO,CACL,MAAM,IAAI,CAAC,KAAK,CAAC;gBACf,KAAK,EAAE,YAAY;gBACnB,SAAS,EAAE;oBACT,EAAE,EAAE,MAAM;iBACX;aACF,CAAC,EACF,IAAI,CAAC,KAAK,CAAC;SACd;KAAA;IAEK,eAAe,CACnB,WAA2B,EAC3B,cAA+B;;YAE/B,OAAO,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,cAAc,EAAE,MAC1C,IAAI,CAAC,iBAAiB,CAAC,WAAW,CAAC,CACpC,CAAC;SACH;KAAA;IAEK,UAAU,CAAC,MAAsB,EAAE,SAA0B;;YACjE,OAAO,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC;SACzE;KAAA;IAEa,QAAQ,CACpB,GAAY,EACZ,OAA2D;;YAE3D,MAAM,EAAE,aAAa,EAAE,mBAAmB,EAAE,GAAG,OAAO,CAAC;YAEvD,OAAO;gBACL,SAAS,EAAE,aAAa,IAAI,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC;gBACzD,UAAU,EACR,mBAAmB;qBAClB,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,GAAG,EAAE,mBAAmB,CAAC,CAAC;aAClE,CAAC;SACH;KAAA;IAEa,eAAe,CAC3B,OAAgB,EAChB,OAA8C;;;YAG9C,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAEvD,MAAM,WAAW,GACf,OAAO,CAAC,IAAI,KAAK,MAAM,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;YAElE,IAAI,eAAuB,CAAC;YAC5B,IAAI,WAAW,EAAE;gBACf,MAAM,iBAAiB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAC3D,YAAY,EACZ,WAAW,CACZ,CAAC;gBACF,IAAI,OAAO,CAAC,MAAM,EAAE;oBAClB,eAAe,GAAG,MAAM,OAAO,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;iBAC3D;qBAAM;oBACL,eAAe,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,mBAAmB,CAAC;wBAC3D,gBAAgB,EAAE,iBAAiB;qBACpC,CAAC,CAAC;iBACJ;gBACD,OAAO,CAAC,GAAG,CAAC,iBAAiB,EAAE,eAAe,CAAC,CAAC;aACjD;YAED,wCACM,MAAM,IAAI,CAAC,QAAQ,CAAC,YAAY,EAAE,OAAO,CAAC,MAC9C,eAAe,EAAE,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,YAAY,CAAC,EACnE,eAAe,IACf;SACH;KAAA;IAED,gBAAgB,CAAC,WAAmB,EAAE,SAAkB;QACtD,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,wBAAwB;YAClC,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,WAAW;oBACX,SAAS;iBACV;aACF;SACF,CAAC,CAAC;KACJ;IAED,kBAAkB,CAAC,WAAmB,EAAE,SAAkB;QACxD,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,0BAA0B;YACpC,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,WAAW;oBACX,SAAS;iBACV;aACF;SACF,CAAC,CAAC;KACJ;IAEe,yBAAyB,CACvC,OAAiC,EACjC,OAAgB;;YAEhB,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,GAAG,CACpC,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,uBAAuB,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,CAC1E,CAAC;YAEF,OAAO;gBACL,mBAAmB,EAAE,OAAO,CAAC,eAAe;gBAC5C,gBAAgB,EAAE,YAAY;aAC/B,CAAC;SACH;KAAA;IAED,sBAAsB,CAAC,OAAsC;QAC3D,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,8BAA8B,CAAC,OAAO,CAAC,CAAC,CAAC;KAClE;IAEK,8BAA8B,CAAC,OAAsC;;YACzE,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,eAAe,CAC7C,OAAO,CAAC,WAAW,EACnB,OAAO,CAAC,cAAc,CACvB,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE;oBACT,KAAK,mCACC,MAAM,IAAI,CAAC,yBAAyB,CAAC,OAAO,EAAE,YAAY,CAAC,GAAG,CAAC,MACnE,WAAW,EAAE,OAAO,CAAC,WAAW,GACjC;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEK,iBAAiB,CAAC,OAAiC;;YACvD,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,yBAAyB,CAAC,OAAO,CAAC,CAAC,CAAC;SAC7D;KAAA;IAEK,yBAAyB,CAAC,OAAiC;;YAC/D,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;YAEzE,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,yBAAyB;gBACnC,SAAS,EAAE;oBACT,KAAK,mCACC,MAAM,IAAI,CAAC,yBAAyB,CAAC,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,MAC9D,MAAM,EAAE,OAAO,CAAC,MAAM,GACvB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;EACF;;;YAvWA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA3H8B,MAAM;YAAhB,QAAQ;YAQpB,WAAW;YAHX,UAAU;YADV,cAAc;YAFd,iBAAiB;YACjB,eAAe;;AAyHX,YAAY;IANxB,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,YAAY,CAoWxB;;AChaM,MAAM,mBAAmB,GAAG,QAAQ,CAAqB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA2C/D,CAAC;AAgBK,MAAM,qBAAqB,GAAG,QAAQ,CAAuB;;;;;;;;;;;;;;EAclE,CAAC;AAKI,MAAM,kBAAkB,GAAG,QAAQ,CAAoB;;;;;;;;;;EAU5D,mBAAmB;CACpB,CAAC;AAKK,MAAM,iBAAiB,GAAG,QAAQ,CAAmB;;;;;;EAM1D,mBAAmB;CACpB,CAAC;AAOK,MAAM,sBAAsB,GAAG,QAAQ,CAAwB;;;;;;EAMpE,mBAAmB;CACpB,CAAC;AASK,MAAM,yBAAyB,GAAG,QAAQ,CAA2B;;;;;;;;CAQ3E,CAAC;AASK,MAAM,0BAA0B,GAAG,QAAQ,CAA4B;;;;;;;;CAQ7E,CAAC;AAOK,MAAM,8BAA8B,GAAG,QAAQ,CAAgC;;;;;;;;;;EAUpF,mBAAmB;CACpB,CAAC;AAWK,MAAM,6BAA6B,GAAG,QAAQ,CAA+B;;;;;;;;;;;;;;EAclF,mBAAmB;EACnB,qBAAqB;CACtB,CAAC;AAWK,MAAM,8BAA8B,GAAG,QAAQ,CAAgC;;;;;;;;;;;;;;;;EAgBpF,mBAAmB;EACnB,qBAAqB;CACtB,CAAC;AAOK,MAAM,0BAA0B,GAAG,QAAQ,CAA4B;;;;;;;;;;;;;;EAc5E,qBAAqB;CACtB;;IC9JY,mBAAmB,SAAnB,mBAAmB;IAG9B,YACU,MAAc,EACd,UAA6B,EAC7B,UAAsB,EACtB,iBAAoC,EACpC,WAAwB,EACxB,QAAyB,EACzB,SAA2B;QAN3B,WAAM,GAAN,MAAM,CAAQ;QACd,eAAU,GAAV,UAAU,CAAmB;QAC7B,eAAU,GAAV,UAAU,CAAY;QACtB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,gBAAW,GAAX,WAAW,CAAa;QACxB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,cAAS,GAAT,SAAS,CAAkB;QATpB,wBAAmB,GAAG,EAAE,CAAC;KAUtC;IAEU,QAAQ,CACpB,WAAgC,EAChC,MAAe;;YAEf,IAAI,MAAM,EAAE;gBACV,OAAO,MAAM,iBAAiB,CAAC,KAAK,iCAC/B,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,WAAW,CAAC,KAC1C,CAAC,EAAE,MAAM,IACT,CAAC;aACJ;iBAAM,IACL,WAAW,CAAC,GAAG,CAAC,KAAK,KAAK,eAAe;gBACzC,CAAC,WAAW,CAAC,WAAW;gBACxB,WAAW,CAAC,GAAG,CAAC,kBAAkB,EAClC;;gBAEA,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;gBAClD,MAAM,eAAe,GAAQ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC/D,GAAG,CAAC,GAAG,EACP,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,kBAAkB,CAAC,EAC9C;oBACE,cAAc,EAAE,CAAC,iBAAiB,CAAC,OAAO,CAAC;iBAC5C,CACF,CAAC;gBACF,IAAI,eAAe,CAAC,KAAK,EAAE;oBACzB,OAAO,MAAM,iBAAiB,CAAC,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;iBAC7D;aACF;YACD,OAAO,IAAI,CAAC;SACb;KAAA;IAEa,UAAU,CACtB,WAAgC,EAChC,MAAe;;YAEf,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;YAEvD,IAAI,GAAG,GAAG,WAAW,CAAC,GAAG,CAAC;YAE1B,IAAI,KAAK,IAAI,GAAG,CAAC,WAAW,EAAE;gBAC5B,GAAG,mCACE,GAAG,KACN,KAAK,EACL,oBAAoB,EAAE,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACxD,KAAK,EACL,WAAW,CAAC,GAAG,CAAC,WAAW,CAC5B,GACF,CAAC;aACH;YAED,uCACK,WAAW,KACd,GAAG,IACH;SACH;KAAA;IAEa,qBAAqB,CACjC,KAAc,EACd,KAAc,EACd,OAAY;;;YAGZ,IAAI;gBACF,OAAO,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;aAChE;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,KAAK,CAAC,OAAO,KAAK,cAAc,EAAE;oBACpC,MAAM,KAAK,CAAC;iBACb;;aAEF;;YAGD,OAAO,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;SAC7D;KAAA;IAEa,6BAA6B,CACzC,WAAgC;;YAEhC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;;YAG1D,MAAM,+BAA+B,IAAI,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3E,OAAO,CAAC,GAAG,EACX,WAAW,CAAC,sBAAsB,CACnC,CAAqC,CAAC;YAEvC,MAAM,KAAK,GAAG,MAAM,iBAAiB,CAAC,KAAK,CACzC,+BAA+B,CAAC,KAAK,CACtC,CAAC;YAEF,WAAW,mCACN,WAAW,KACd,+BAA+B,GAChC,CAAC;YAEF,IAAI,GAAG,GAAG,WAAW,CAAC,GAAG,CAAC;YAE1B,IAAI,GAAG,CAAC,yBAAyB,EAAE;gBACjC,GAAG,mCACE,GAAG,KACN,kCAAkC,EAAE,MAAM,IAAI,CAAC,qBAAqB,CAClE,KAAK,EACL,MAAM,iBAAiB,CAAC,KAAK,CAC3B,+BAA+B,CAAC,UAAU,CAC3C,EACD,GAAG,CAAC,yBAAyB,CAC9B,GACF,CAAC;aACH;YAED,IAAI,GAAG,CAAC,WAAW,EAAE;gBACnB,GAAG,CAAC,oBAAoB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC7D,KAAK,EACL,GAAG,CAAC,WAAW,CAChB,CAAC;aACH;YAED,uCACK,WAAW,KACd,GAAG,IACH;SACH;KAAA;IAEa,6BAA6B,CACzC,WAAgC,EAChC,MAAe;;YAEf,OAAO,IAAI,CAAC,UAAU,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;SAC7C;KAAA;IAEK,kBAAkB,CAAC,WAAgC,EAAE,MAAe;;YACxE,IAAI,WAAW,CAAC,WAAW,EAAE;gBAC3B,OAAO,IAAI,CAAC,6BAA6B,CAAC,WAAW,CAAC,CAAC;aACxD;iBAAM;gBACL,OAAO,IAAI,CAAC,6BAA6B,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;aAChE;SACF;KAAA;IAEK,eAAe,CAAC,EAAE,KAAK,KAAoC,EAAE;;YACjE,MAAM,EAAE,YAAY,EAAE,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;gBAClD,KAAK,EAAE,kBAAkB;gBACzB,SAAS,EAAE;oBACT,KAAK;iBACN;aACF,CAAC,CAAC;YAEH,OAAO,OAAO,CAAC,GAAG,CAChB,YAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CACrE,CAAC;SACH;KAAA;;;;;;;IAQK,cAAc,CAClB,EAAU,EACV,EAAE,MAAM,EAAE,KAAK,KAA6B,EAAE;;YAE9C,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;gBACrC,KAAK,EAAE,KAAK,GAAG,sBAAsB,GAAG,iBAAiB;gBACzD,SAAS,EAAE;oBACT,EAAE;oBACF,KAAK;iBACN;gBACD,eAAe,EAAE,CAAC,KAAK;aACxB,CAAC,CAAC;YACH,OAAO,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;SACzD;KAAA;IAEY,uBAAuB,CAAC,KAGpC;;YACC,OAAO,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;gBAC1B,KAAK,EAAE,0BAA0B;gBACjC,SAAS,EAAE;oBACT,QAAQ,EAAE,KAAK,CAAC,QAAQ;oBACxB,MAAM,EAAE,KAAK,CAAC,MAAM;iBACrB;aACF,CAAC,CAAC;SACJ;KAAA;;IAGK,iBAAiB,CAAC,EAAU;;YAChC,OAAO,IAAI,CAAC,yBAAyB,CAAC,EAAE,CAAC,CAAC;SAC3C;KAAA;IAED,yBAAyB,CAAC,EAAU;QAClC,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,yBAAyB;YACnC,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,EAAE;iBACH;aACF;SACF,CAAC,CAAC;KACJ;;IAGK,kBAAkB,CAAC,EAAU,EAAE,KAAa;;YAChD,OAAO,IAAI,CAAC,0BAA0B,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;SACnD;KAAA;IAED,0BAA0B,CAAC,EAAU,EAAE,KAAa;QAClD,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,0BAA0B;YACpC,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,EAAE;oBACF,KAAK;iBACN;aACF;SACF,CAAC,CAAC;KACJ;IAEK,WAAW,CAAC,EAChB,OAAO,EACP,KAAK,EACL,WAAW,EACX,OAAO,MACc,EAAE;;YACvB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAChD,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;;;YAIrE,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;;;;;YAOjE,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC3D,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YAEjE,IAAI,qBAAqB,GAAW,IAAI,CAAC;YAEzC,IAAI,WAAW,IAAI,WAAW,CAAC,kBAAkB,EAAE;gBACjD,qBAAqB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,YAAY,CAC/D,eAAe,CAAC,GAAG,EACnB,WAAW,CAAC,kBAAkB,CAC/B,CAAC;aACH;YAED,MAAM,SAAS,GAAG;gBAChB,OAAO;gBACP,WAAW,EAAE,WAAW,IAAI;oBAC1B,yBAAyB,EAAE,WAAW,CAAC,yBAAyB;iBACjE;aACF,CAAC;;YAGF,MAAM,gBAAgB,GAA0B;;;;;;gBAM9C,KAAK;gBACL,SAAS,kCACJ,SAAS,KACZ,UAAU,EAAE,mBAAmB,CAAC,MAAM,EAAE,EACxC,GAAG,EAAE,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,EAC9B,MAAM,EAAE,eAAe,CAAC,GAAG,CAAC,MAAM,EAAE,GACrC;aACF,CAAC;YAEF,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACrD,KAAK,EACL,gBAAgB,CACjB,CAAC;;YAGF,MAAM,+BAA+B,GAAqC;gBACxE,KAAK;gBACL,UAAU,EAAE,mBAAmB,CAAC,MAAM,CAAC,IAAI,CAAC;;;;;;gBAO5C,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC;;;gBAGzB,oBAAoB,EAAE,WAAW;gBACjC,SAAS;aACV,CAAC;YAEF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAC1D,MAAM,sBAAsB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAChE,OAAO,CAAC,GAAG,EACX,+BAA+B,CAChC,CAAC;;YAGF,MAAM,MAAM,GAAY,KAAK,CAAC,MAAM,CAAC,IAAI,CAAS,CAAC,CAAC,CAAC;;YAGrD,MAAM,UAAU,GAAG,IAAI,UAAU,CAAC;gBAChC,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE;oBACT,KAAK,EAAE;;wBAEL,sBAAsB;wBACtB,cAAc,EAAE,YAAY,CAAC,EAAE;wBAC/B,iBAAiB,EAAE,eAAe,CAAC,EAAE;;wBAErC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;wBAC3C,WAAW;wBACX,SAAS,EAAE,KAAK,IAAI;4BAClB,KAAK;4BACL,QAAQ,EAAE,MAAM;yBACjB;wBACD,QAAQ,EAAE,IAAI;wBACd,qBAAqB;wBACrB,OAAO;qBACR;iBACF;aACF,CAAC,CAAC;YAEH,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC;SAC/B;KAAA;IAEK,UAAU,CAAC,EACf,aAAa,EACb,KAAK,EACL,YAAY,EACZ,OAAO,EACP,oBAAoB,EACpB,oBAAoB,GACH;;YACjB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAE1D,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC,EAAE,CAAC;YAC7D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAE9D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACpD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAEtD,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC7D,OAAO,CAAC,GAAG,EACX,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CACvB,CAAC;YACF,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC/D,SAAS,CAAC,GAAG,EACb,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;YAEF,MAAM,mBAAmB,GAAG,MAAM,iBAAiB,CAAC,KAAK,CACvD,YAAY,CAAC,oBAAoB,CAAC,SAAS,CAAC,UAAU,CACvD,CAAC;YAEF,MAAM,YAAY,GAAG,MAAM,iBAAiB,CAAC,KAAK,CAChD,YAAY,CAAC,oBAAoB,CAAC,SAAS,CAAC,GAAG,CAChD,CAAC;YACF,MAAM,eAAe,GAAG,MAAM,iBAAiB,CAAC,KAAK,CACnD,YAAY,CAAC,oBAAoB,CAAC,SAAS,CAAC,MAAM,CACnD,CAAC;;;;;;YAQF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC3D,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YAEjE,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC1D,eAAe,CAAC,GAAG,EACnB,YAAY,CAAC,MAAM,EAAE,CACtB,CAAC;YACF,MAAM,qBAAqB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC7D,eAAe,CAAC,GAAG,EACnB,eAAe,CAAC,MAAM,EAAE,CACzB,CAAC;YAEF,MAAM,kCAAkC,GAAuC;gBAC7E,KAAK,EAAE,YAAY,CAAC,oBAAoB,CAAC,KAAK;gBAC9C,SAAS,EAAE,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC;gBACjC,WAAW,EAAE,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC;gBACrC,SAAS,EAAE;oBACT,GAAG,EAAE,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE;oBAC9B,MAAM,EAAE,eAAe,CAAC,GAAG,CAAC,MAAM,EAAE;oBACpC,OAAO;iBACR;aACF,CAAC;YAEF,IAAI,iBAAiB,CAAC;YACtB,IAAI,YAAY,CAAC,oBAAoB,CAAC,SAAS,CAAC,WAAW,EAAE;;;;gBAI3D,MAAM,yBAAyB,GAC7B,YAAY,CAAC,oBAAoB,CAAC,SAAS,CAAC,WAAW;qBACpD,yBAAyB,CAAC;;gBAG/B,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACtD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;gBAExD,iBAAiB,GAAG;oBAClB,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAChC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,OAAO,CAAC,GAAG,EACX,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CACF;oBACD,qBAAqB,EAAE,OAAO,CAAC,EAAE;oBACjC,kBAAkB,EAAE,oBAAoB;0BACpC,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,WAAW,EACX,oBAAoB,CAAC,2BAA2B,CACjD,CACF;0BACD,EAAE;oBACN,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAC9B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,SAAS,EACT,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CACF;iBACF,CAAC;gBAEF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,WAAW,EACX,yBAAyB,CAC1B,CAAC;gBACF,iBAAiB,CAAC,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACpD,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,gBAAgB,CAAC,CAChE,CAAC;gBACF,iBAAiB,CAAC,QAAQ,GAAG,MAAM,CAAC,EAAE,CAAC;gBAEvC,kCAAkC,CAAC,SAAS,CAAC,WAAW,mCACnD,kCAAkC,CAAC,SAAS,CAAC,WAAW,KAC3D,eAAe,EAAE,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,GAC1C,CAAC;aACH;YAED,IAAI,kBAAkB,CAAC;YACvB,IAAI,oBAAoB,EAAE;;gBAExB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACnD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;gBAExD,kBAAkB,GAAG;oBACnB,eAAe,EAAE,IAAI,CAAC,SAAS,CAC7B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,OAAO,CAAC,GAAG,EACX,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,CACtB,CACF;oBACD,kBAAkB,EAAE,OAAO,CAAC,EAAE;oBAC9B,eAAe,EAAE,oBAAoB,CAAC,wBAAwB;0BAC1D,IAAI,CAAC,SAAS,CACZ,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,QAAQ,EACR,oBAAoB,CAAC,wBAAwB,CAC9C,CACF;0BACD,EAAE;oBAEN,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAC9B,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,SAAS,EACT,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CACF;iBACF,CAAC;gBAEF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,WAAW,EACX,oBAAoB,CAAC,yBAAyB,CAC/C,CAAC;gBACF,kBAAkB,CAAC,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACrD,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,gBAAgB,CAAC,CAChE,CAAC;gBACF,kBAAkB,CAAC,QAAQ,GAAG,MAAM,CAAC,EAAE,CAAC;gBAExC,IAAI,oBAAoB,CAAC,kBAAkB,EAAE;oBAC3C,kBAAkB,CAAC,iBAAiB,GAAG,IAAI,CAAC,SAAS,CACnD,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC/B,eAAe,CAAC,GAAG,EACnB,oBAAoB,CAAC,kBAAkB,CACxC,CACF,CAAC;iBACH;;gBAGD,kCAAkC,CAAC,SAAS,CAAC,WAAW,mCACnD,kCAAkC,CAAC,SAAS,CAAC,WAAW,KAC3D,yBAAyB,EACvB,oBAAoB,CAAC,yBAAyB,GACjD,CAAC;aACH;;YAGD,IAAI,yBAAyB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClE,mBAAmB,EACnB,kCAAkC,CACnC,CAAC;;YAGF,yBAAyB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC9D,YAAY,CAAC,KAAK,EAClB,yBAAyB,CAC1B,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,6BAA6B;gBACvC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,aAAa;wBACb,gBAAgB,EAAE,KAAK;wBACvB,SAAS,EAAE,OAAO,CAAC,EAAE;wBACrB,WAAW;;wBAEX,cAAc,EAAE,YAAY,CAAC,EAAE;wBAC/B,iBAAiB,EAAE,eAAe,CAAC,EAAE;wBACrC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC;wBACtD,qBAAqB,EAAE,IAAI,CAAC,SAAS,CAAC,qBAAqB,CAAC;;;;wBAK5D,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC;wBACtD,oBAAoB,EAAE,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC;;wBAE1D,yBAAyB,EAAE,IAAI,CAAC,SAAS,CAAC,yBAAyB,CAAC;wBACpE,oBAAoB,EAAE,iBAAiB;wBACvC,oBAAoB,EAAE,kBAAkB;qBACzC;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEK,WAAW,CAAC,EAChB,aAAa,EACb,sBAAsB,EACtB,yBAAyB,EACzB,oBAAoB,EACpB,oBAAoB,GACF;;YAClB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAC1D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;;YAG9D,MAAM,+BAA+B,IAAI,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3E,OAAO,CAAC,GAAG,EACX,sBAAsB,CACvB,CAAqC,CAAC;;YAGvC,MAAM,8BAA8B,GAAG,MAAM,IAAI,CAAC,qBAAqB,CACrE,MAAM,iBAAiB,CAAC,KAAK,CAAC,+BAA+B,CAAC,KAAK,CAAC,EACpE,MAAM,iBAAiB,CAAC,KAAK,CAAC,+BAA+B,CAAC,UAAU,CAAC,EACzE,yBAAyB,CAC1B,CAAC;;YAGF,IACE,+BAA+B,CAAC,KAAK;gBACrC,8BAA8B,CAAC,KAAK,EACpC;gBACA,MAAM,IAAI,uBAAuB,CAC/B,uFAAuF,CACxF,CAAC;aACH;;;;;;;;YAWD,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YACjE,MAAM,eAAe,GAAG,MAAM,iBAAiB,CAAC,KAAK,CACnD,8BAA8B,CAAC,SAAS,CAAC,MAAM,CAChD,CAAC;YACF,MAAM,YAAY,GAAG,MAAM,iBAAiB,CAAC,KAAK,CAChD,8BAA8B,CAAC,SAAS,CAAC,GAAG,CAC7C,CAAC;YAEF,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC1D,eAAe,CAAC,GAAG,EACnB,YAAY,CAAC,MAAM,EAAE,CACtB,CAAC;YACF,MAAM,qBAAqB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAC7D,eAAe,CAAC,GAAG,EACnB,eAAe,CAAC,MAAM,EAAE,CACzB,CAAC;YAEF,MAAM,SAAS,GAAG,MAAM,iBAAiB,CAAC,KAAK,CAC7C,8BAA8B,CAAC,SAAS,CACzC,CAAC;YACF,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC7D,OAAO,CAAC,GAAG,EACX,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CACvB,CAAC;YAEF,MAAM,WAAW,GAAG,MAAM,iBAAiB,CAAC,KAAK,CAC/C,8BAA8B,CAAC,WAAW,CAC3C,CAAC;YACF,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC/D,SAAS,CAAC,GAAG,EACb,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;YAEF,IAAI,+BAA+B,CAAC;YACpC,IAAI,oBAAoB,EAAE;;gBAExB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBAEtD,+BAA+B,GAAG;oBAChC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAChC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,OAAO,CAAC,GAAG,EACX,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CACF;oBACD,qBAAqB,EAAE,OAAO,CAAC,EAAE;oBACjC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAChC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,WAAW,EACX,oBAAoB,CAAC,2BAA2B,CACjD,CACF;iBACF,CAAC;aACH;;YAGD,IAAI,+BAA+B,CAAC;YACpC,IAAI,qCAAqC,CAAC;YAC1C,IAAI,+BAA+B,CAAC,oBAAoB,EAAE;;;gBAGxD,MAAM,4BAA4B,GAChC,+BAA+B,CAAC,oBAAoB,CAAC;gBACvD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;gBACnD,MAAM,eAAe,GAAG,MAAM,iBAAiB,CAAC,KAAK,CACnD,8BAA8B,CAAC,SAAS,CAAC,WAAW,CAAC,eAAe,CACrE,CAAC;gBAEF,MAAM,eAAe,GAAG,IAAI,CAAC,SAAS,CACpC,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CACzE,CAAC;;gBAGF,MAAM,wBAAwB,GAC5B,CAAA,oBAAoB,aAApB,oBAAoB,uBAApB,oBAAoB,CAAE,wBAAwB;oBAC9C,4BAA4B,CAAC,wBAAwB,CAAC;gBAExD,MAAM,eAAe,GAAG,wBAAwB;sBAC5C,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CACjC,QAAQ,EACR,wBAAwB,CACzB;sBACD,EAAE,CAAC;gBAEP,+BAA+B,GAAG;oBAChC,eAAe;oBACf,kBAAkB,EAAE,OAAO,CAAC,EAAE;oBAC9B,eAAe;iBAChB,CAAC;gBAEF,qCAAqC,GAAG;oBACtC,QAAQ,EAAE,eAAe,CAAC,EAAE;iBAC7B,CAAC;gBAEF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,eAAe,EACf,4BAA4B,CAAC,yBAAyB,CACvD,CAAC;gBACF,qCAAqC,CAAC,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACxE,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,gBAAgB,CAAC,CACzE,CAAC;aACH;;;YAKD,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,aAAa;wBACb,SAAS,EAAE,OAAO,CAAC,EAAE;wBACrB,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,iBAAiB,EAAE,eAAe,CAAC,EAAE;wBACrC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC;wBACtD,qBAAqB,EAAE,IAAI,CAAC,SAAS,CAAC,qBAAqB,CAAC;wBAC5D,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC;wBACtD,oBAAoB,EAAE,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC;wBAC1D,0BAA0B,EAAE,+BAA+B;wBAC3D,0BAA0B,EAAE,+BAA+B;wBAC3D,gCAAgC,EAAE,qCAAqC;qBACxE;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;EACF;;;YAttBA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAtJoB,MAAM;YAMlB,iBAAiB;YAEjB,UAAU;YALjB,iBAAiB;YAQV,WAAW;YAJX,eAAe;YAmBf,gBAAgB;;AA6HZ,mBAAmB;IAN/B,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,mBAAmB,CAmtB/B;;ACh2BM,MAAM,8BAA8B,GAAG,QAAQ,CAAgC;;;;;;;;;EASpF,CAAC;AASI,MAAM,iCAAiC,GAAG,QAAQ,CAAmC;;;;;;;;;EAS1F,CAAC;AAYI,MAAM,8BAA8B,GAAG,QAAQ,CAAgC;;;;;;;;;;EAUpF,CAAC;AASI,MAAM,gCAAgC,GAAG,QAAQ,CAAkC;;;;;;;EAOxF;;ICtCW,yBAAyB,SAAzB,yBAAyB;IACpC,YACU,MAAc,EACd,UAAsB,EACtB,QAAyB,EACzB,iBAAoC,EACpC,SAA2B;QAJ3B,WAAM,GAAN,MAAM,CAAQ;QACd,eAAU,GAAV,UAAU,CAAY;QACtB,aAAQ,GAAR,QAAQ,CAAiB;QACzB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,cAAS,GAAT,SAAS,CAAkB;KACjC;IAEU,yBAAyB,CAAC,EAAkB;;YACxD,MAAM,EAAE,gBAAgB,EAAE,EAAE,EAAE,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;gBAC1D,KAAK,EAAE,8BAA8B;gBACrC,SAAS,EAAE;oBACT,EAAE;iBACH;aACF,CAAC,CAAC;YAEH,OAAO;gBACL,WAAW,EAAE,EAAE,CAAC,SAAS,CAAC,EAAE;gBAC5B,UAAU,EAAE,EAAE,CAAC,QAAQ,CAAC,EAAE;aAC3B,CAAC;SACH;KAAA;IAEa,2BAA2B,CAAC,EAAkB;;YAC1D,OAAO,CACL,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;gBACzB,KAAK,EAAE,gCAAgC;gBACvC,SAAS,EAAE;oBACT,EAAE;iBACH;aACF,CAAC,EACF,mBAAmB,CAAC,WAAW,CAAC,EAAE,CAAC;SACtC;KAAA;IAEK,sBAAsB,CAAC,EAC3B,EAAE,EACF,UAAU,EACV,WAAW,EACX,kBAAkB,EAClB,wBAAwB,EACxB,yBAAyB,GACG;;YAC5B,IAAI,QAAa,CAAC;YAClB,IAAI,SAAc,CAAC;YAEnB,IAAI;gBACF,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;gBAClD,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;aACrD;YAAC,OAAO,KAAK,EAAE;gBACd,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,yBAAyB,CAAC,EAAE,CAAC,CAAC;;gBAGtD,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;gBACvD,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;aAC1D;YAED,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YAExD,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,SAAS,CAAC,GAAG,EACb,yBAAyB,CAC1B,CAAC;YACF,MAAM,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACxC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,gBAAgB,CAAC,CAChE,CAAC;YAEF,MAAM,iBAAiB,GAAG,IAAI,CAAC,SAAS,CACtC,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,kBAAkB,CAAC,CAClE,CAAC;YAEF,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAClE,QAAQ,CAAC,GAAG,EACZ,wBAAwB,CACzB,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,8BAA8B;gBACxC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE;wBACF,eAAe;wBACf,UAAU,EAAE,QAAQ,CAAC,EAAE;wBACvB,mBAAmB;wBACnB,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,QAAQ,EAAE,MAAM,CAAC,EAAE;wBACnB,iBAAiB;qBAClB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEK,yBAAyB,CAAC,EAC9B,EAAE,EACF,aAAa,EACb,2BAA2B,GACI;;YAC/B,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,aAAa,EAAE,MAC5D,IAAI,CAAC,2BAA2B,CAAC,EAAE,CAAC,CACrC,CAAC;YAEF,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CACrE,WAAW,CAAC,GAAG,EACf,2BAA2B,CAC5B,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,iCAAiC;gBAC3C,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE;wBACF,kBAAkB;wBAClB,aAAa,EAAE,WAAW,CAAC,EAAE;qBAC9B;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;EACF;;;YAvHA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YApCoB,MAAM;YAIlB,UAAU;YADV,eAAe;YADf,iBAAiB;YAQjB,gBAAgB;;AA2BZ,yBAAyB;IANrC,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,yBAAyB,CAoHrC;;AC9IM,MAAM,YAAY,GAAG,QAAQ,CAAoB;;;;;;;EAOtD,CAAC;AAOI,MAAM,kBAAkB,GAAG,QAAQ,CAA0B;;;;;;;;EAQlE,YAAY;CACb,CAAC;AAOK,MAAM,mBAAmB,GAAG,QAAQ,CAA2B;;;;;;;;EAQpE,YAAY;CACb,CAAC;AAOK,MAAM,mBAAmB,GAAG,QAAQ,CAA2B;;;;;;;;EAQpE,YAAY;CACb;;ICnDY,WAAW,SAAX,WAAY,SAAQ,SAAS;IACxC,YAAoB,MAAc,EAAU,QAAkB;QAC5D,KAAK,CAAC,QAAQ,CAAC,CAAC;QADE,WAAM,GAAN,MAAM,CAAQ;QAAU,aAAQ,GAAR,QAAQ,CAAU;KAE7D;;IAGD,kBAAkB,CAAC,UAAkB,EAAE,OAAe;QACpD,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,kBAAkB;YAC5B,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,UAAU;oBACV,OAAO;iBACR;aACF;SACF,CAAC,CAAC;KACJ;IAED,mBAAmB,CAAC,UAAkB,EAAE,SAAiB;QACvD,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,mBAAmB;YAC7B,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,UAAU;oBACV,SAAS;iBACV;aACF;SACF,CAAC,CAAC;KACJ;IAED,mBAAmB,CAAC,UAAkB,EAAE,OAAe;QACrD,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,mBAAmB;YAC7B,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,UAAU;oBACV,OAAO;iBACR;aACF;SACF,CAAC,CAAC;KACJ;EACF;;;YA5CA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAd8B,MAAM;YAAhB,QAAQ;;AAehB,WAAW;IANvB,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,WAAW,CAyCvB;;AChDM,MAAM,gBAAgB,GAAG,QAAQ,CAAkB;;;;;;CAMzD,CAAC;AASK,MAAM,sBAAsB,GAAG,QAAQ,CAAwB;;;;;;;;CAQrE,CAAC;AASK,MAAM,wBAAwB,GAAG,QAAQ,CAA0B;;;;;;;;CAQzE,CAAC;AASK,MAAM,iBAAiB,GAAG,QAAQ,CAAmB;;;;;;;;CAQ3D,CAAC;AASK,MAAM,mBAAmB,GAAG,QAAQ,CAAqB;;;;;;;;CAQ/D,CAAC;AAuBK,MAAM,2BAA2B,GAAG,QAAQ,CAA6B;;;;;;;;;;;;;;;;;;;;;;CAsB/E,CAAC;AAOK,MAAM,0BAA0B,GAAG,QAAQ,CAA4B;;;;;EAK5E,CAAC;AAOI,MAAM,0BAA0B,GAAG,QAAQ,CAA4B;;;;;;CAM7E,CAAC;AAOK,MAAM,2BAA2B,GAAG,QAAQ,CAA6B;;;;;EAK9E;;ICvHW,oBAAoB,SAApB,oBAAoB;IAC/B,YACU,MAAc,EACd,QAAyB,EACzB,SAA2B,EAC3B,YAA0B,EAC1B,UAAsB,EACtB,UAA6B,EAC7B,iBAAoC;QANpC,WAAM,GAAN,MAAM,CAAQ;QACd,aAAQ,GAAR,QAAQ,CAAiB;QACzB,cAAS,GAAT,SAAS,CAAkB;QAC3B,iBAAY,GAAZ,YAAY,CAAc;QAC1B,eAAU,GAAV,UAAU,CAAY;QACtB,eAAU,GAAV,UAAU,CAAmB;QAC7B,sBAAiB,GAAjB,iBAAiB,CAAmB;KAC1C;;IAGG,QAAQ,CAAC,IAAoB;QAClC,OAAO,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC;KACpC;IAEM,gBAAgB,CAAC,IAAoB;QAC1C,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,gBAAgB;YAC1B,SAAS,EAAE;gBACT,KAAK,EAAE;oBACL,EAAE,EAAE,IAAI;iBACT;aACF;SACF,CAAC,CAAC;KACJ;IAEK,yBAAyB,CAAC,IAAoB;;YAClD,OAAO,CACL,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;gBACzB,KAAK,EAAE,2BAA2B;gBAClC,SAAS,EAAE;oBACT,EAAE,EAAE,IAAI;iBACT;aACF,CAAC,EACF,EAAE,CAAC,oBAAoB,CAAC,aAAa,CAAC;SACzC;KAAA;IAEK,cAAc,CAAC,OAAyB;;YAC5C,OAAO,IAAI,CAAC,SAAS,iCAAM,OAAO,KAAE,WAAW,EAAE,IAAI,IAAG,CAAC;SAC1D;KAAA;IAEK,SAAS,CAAC,OAAyB;;YACvC,OAAO,IAAI,CAAC,SAAS,iCAAM,OAAO,KAAE,WAAW,EAAE,KAAK,IAAG,CAAC;SAC3D;KAAA;IAEa,SAAS,CAAC,EACtB,MAAM,EACN,SAAS,EACT,IAAI,EACJ,aAAa,EACb,UAAU,EACV,WAAW,GAGZ;;YACC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,EAAE,MACpD,WAAW;kBACP,IAAI,CAAC,YAAY,CAAC,iBAAiB,CAAC,MAAM,CAAC;kBAC3C,IAAI,CAAC,YAAY,CAAC,YAAY,CAAC,MAAM,CAAC,CAC3C,CAAC;YACF,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,aAAa,EAAE,MAC5D,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,KAAK,GAAG,CAAC,SAAS,CAAC,EAAE,CAAC,CACrE,CAAC;YACF,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC;YAEzE,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,WAAW,GAAG,sBAAsB,GAAG,iBAAiB;gBAClE,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE,EAAE,MAAM;wBACV,IAAI;wBACJ,UAAU;wBACV,KAAK,EAAE,OAAO,CAAC,EAAE;wBACjB,aAAa,EAAE,WAAW,CAAC,EAAE;wBAC7B,UAAU;qBACX;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEK,gBAAgB,CAAC,OAA2B;;YAChD,OAAO,IAAI,CAAC,WAAW,iCAAM,OAAO,KAAE,WAAW,EAAE,IAAI,IAAG,CAAC;SAC5D;KAAA;IAEK,WAAW,CAAC,OAA2B;;YAC3C,OAAO,IAAI,CAAC,WAAW,iCAAM,OAAO,KAAE,WAAW,EAAE,KAAK,IAAG,CAAC;SAC7D;KAAA;IAEa,WAAW,CAAC,EACxB,MAAM,EACN,IAAI,EACJ,WAAW,GACmC;;YAC9C,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,WAAW,GAAG,wBAAwB,GAAG,mBAAmB;gBACtE,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,EAAE,EAAE,MAAM;wBACV,IAAI;qBACL;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,gBAAgB,CAAC,IAAoB;;YAChD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC;YAEjE,IAAI,aAAa,CAAC,WAAW,EAAE;gBAC7B,MAAM,IAAI,mBAAmB,CAAC,4BAA4B,CAAC,CAAC;aAC7D;YAED,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAC9D,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;YACjD,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CACjE,SAAS,CAAC,GAAG,EACb,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACjB,CAAC;YAEF,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YACzE,MAAM,sBAAsB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CACzE,SAAS,CAAC,GAAG,EACb;gBACE,GAAG,EAAE,GAAG,CAAC,MAAM,EAAE;aAClB,CACF,CAAC;YAEF,OAAO,MAAM,IAAI,UAAU,CAAC;gBAC1B,QAAQ,EAAE,0BAA0B;gBACpC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,IAAI;wBACJ,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC;wBACnC,cAAc;wBACd,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,sBAAsB;qBACvB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,gBAAgB,CAAC,IAAoB;;YAChD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC;YAEjE,IAAI,CAAC,aAAa,CAAC,WAAW,EAAE;gBAC9B,MAAM,IAAI,mBAAmB,CAC3B,2DAA2D,CAC5D,CAAC;aACH;YAED,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YACzE,MAAM,2BAA2B,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACtE,SAAS,EACT,aAAa,CAAC,sBAAsB,CACrC,CAAC;YACF,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,2BAA2B,CAAC,GAAG,CAAC,CAAC;YAC7D,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAC5C,aAAa,CAAC,WAAW,CAAC,EAAE,CAC7B,CAAC;YAEF,MAAM,4BAA4B,GAAG;gBACnC,WAAW,EAAE;oBACX,EAAE,EAAE,WAAW,CAAC,EAAE;oBAClB,GAAG,EAAE,WAAW,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC;iBAClC;aACF,CAAC;;YAGF,MAAM,uBAAuB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC1E,GAAG,EACH,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC1C,SAAS,CAAC,GAAG,EACb,4BAA4B,CAC7B,CACF,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,0BAA0B;gBACpC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,IAAI;wBACJ,aAAa,EAAE,WAAW,CAAC,EAAE;wBAC7B,uBAAuB;qBACxB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAEY,iBAAiB,CAAC,IAAoB;;YACjD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC;YAEjE,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YACzE,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,aAAa,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAC/D,MAAM,4BAA4B,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACvE,SAAS,EACT,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAClC,GAAG,EACH,aAAa,CAAC,uBAAuB,CACtC,CACF,CAAC;;YAGF,MAAM,WAAW,GAAQ;gBACvB,EAAE,EAAE,4BAA4B,CAAC,WAAW,CAAC,EAAE;gBAC/C,GAAG,EAAE,MAAM,GAAG,CAAC,KAAK,CAAC,4BAA4B,CAAC,WAAW,CAAC,GAAG,CAAC;aACnE,CAAC;YAEF,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAC9D,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CACvE,SAAS,CAAC,GAAG,EACb,WAAW,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAC7B,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,2BAA2B;gBACrC,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,IAAI;wBACJ,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,aAAa,EAAE,WAAW,CAAC,EAAE;wBAC7B,oBAAoB;qBACrB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;EACF;;;YArOA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA5CoB,MAAM;YASlB,eAAe;YALf,gBAAgB;YADhB,YAAY;YAOZ,UAAU;YAFV,iBAAiB;YADjB,iBAAiB;;AAsCb,oBAAoB;IANhC,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,oBAAoB,CAkOhC;;;MCvPY,wBAAwB;CAKpC;MAEY,wBAAyB,SAAQ,wBAAwB;CAErE;MAEY,0BAA0B;CAItC;MAEY,0BAA2B,SAAQ,0BAA0B;CAEzE;IAmDY,sBAAsB,oCAAtB,sBAAuB,SAAQ,SAAS;IAGnD,YACU,MAAc,EACd,QAAkB,EAClB,UAAsB,EACtB,UAA6B,EAC7B,iBAAoC,EACpC,QAAyB,EACzB,aAAiC;QAEzC,KAAK,CAAC,QAAQ,CAAC,CAAC;QARR,WAAM,GAAN,MAAM,CAAQ;QACd,aAAQ,GAAR,QAAQ,CAAU;QAClB,eAAU,GAAV,UAAU,CAAY;QACtB,eAAU,GAAV,UAAU,CAAmB;QAC7B,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,aAAQ,GAAR,QAAQ,CAAiB;QACzB,kBAAa,GAAb,aAAa,CAAoB;KAG1C;IAEK,QAAQ;;YACZ,OAAO,CACL,MAAM,IAAI,CAAC,KAAK,CAAC;gBACf,KAAK,EAAE,oBAAoB;aAC5B,CAAC,EACF,eAAe,CAAC;SACnB;KAAA;IAED,WAAW,CAAC,KAAiC;QAC3C,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC,CAAC;KACrD;IAEK,mBAAmB,CAAC,KAAiC;;YACzD,MAAM,EAAE,aAAa,EAAE,GAAG,MAAM,IAAI,CAAC,YAAY,CAC/C,KAAK,EACL,CAAO,cAAc;gBACnB,OAAO,IAAI,CAAC,aAAa,CACvB,KAAK,CAAC,mBAAmB,EACzB,KAAK,CAAC,MAAM,EACZ,cAAc,CACf,CAAC;aACH,CAAA,CACF,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,6BAA6B;gBACvC,SAAS,EAAE;oBACT,KAAK,EAAE,aAAa;iBACrB;aACF,CAAC,CAAC;SACJ;KAAA;IAED,WAAW;QACT,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,EAAE,CAAC,CAAC;KAChD;IAED,mBAAmB;QACjB,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,6BAA6B;SACxC,CAAC,CAAC;KACJ;IAED,WAAW,CAAC,KAAiC;QAC3C,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC,CAAC;KACrD;IAEK,mBAAmB,CAAC,KAAiC;;YACzD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,QAAQ,EAAE,CAAC;YAE5C,MAAM,EACJ,aAAa,EACb,UAAU,EACV,YAAY,EACZ,iBAAiB,GAClB,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAO,cAAc;gBACtD,OAAO,IAAI,CAAC,aAAa,CACvB,KAAK,CAAC,mBAAmB,CAAC,MAAM,CAAC,KAAK,CAAC,mBAAmB,CAAC,EAC3D,KAAK,CAAC,MAAM,EACZ,cAAc,CACf,CAAC;aACH,CAAA,CAAC,CAAC;YAEH,MAAM,mBAAmB,GAAG,MAAM,OAAO,CAAC,GAAG,CAC3C,KAAK,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAO,EAAE,EAAE,OAAO;gBAC9C,MAAM,iBAAiB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CACpE,UAAU,EACV;oBACE,IAAI,EAAE,EAAE,CAAC,IAAI;iBACd,CACF,CAAC;;gBAGF,MAAM,UAAU,GAAG,aAAa,CAAC,QAAQ,CAAC,aAAa,CAAC,KAAK,CAAC,IAAI,CAChE,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CACjC,CAAC,IAAI,CAAC;;gBAGP,MAAM,eAAe,GAAG,EAAE,CAAC;gBAC3B,MAAM,eAAe,GAAG,EAAE,CAAC;gBAE3B,EAAE,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,EAAE;;oBACxB,MAAM,QAAQ,SAAG,UAAU,CAAC,SAAS,CAAC,KAAK,CAAC,IAAI,CAC9C,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CACpC,0CAAE,IAAI,CAAC;oBACR,IAAI,QAAQ,EAAE;wBACZ,eAAe,CAAC,IAAI,CAAC;4BACnB,EAAE;4BACF,UAAU,EAAE,QAAQ,CAAC,EAAE;yBACxB,CAAC,CAAC;qBACJ;yBAAM;wBACL,eAAe,CAAC,IAAI,CAAC;4BACnB,EAAE;yBACH,CAAC,CAAC;qBACJ;iBACF,CAAC,CAAC;gBAEH,OAAO;oBACL,aAAa,EAAE,EAAE,CAAC,EAAE;oBACpB,YAAY,EAAE,EAAE,CAAC,YAAY;oBAC7B,MAAM,EAAE,EAAE,CAAC,MAAM;oBACjB,iBAAiB;oBACjB,eAAe,EAAE,MAAM,OAAO,CAAC,GAAG,CAChC,eAAe,CAAC,GAAG,CAAC,CAAO,EAAE,EAAE,EAAE,EAAE,aAAa;wBAC9C,OAAA,IAAI,CAAC,eAAe,CAAC;4BACnB,EAAE;4BACF,aAAa;4BACb,OAAO,EAAE,OAAO,GAAG,KAAK,CAAC,mBAAmB,CAAC,MAAM;4BACnD,YAAY;4BACZ,iBAAiB;4BACjB,UAAU;yBACX,CAAC,CAAA;sBAAA,CACH,CACF;oBACD,eAAe,EAAE,MAAM,OAAO,CAAC,GAAG,CAChC,eAAe,CAAC,GAAG,CAAC,CAAO,EAAE,EAAE,EAAE,UAAU,EAAE,EAAE,aAAa;wBAC1D,OAAA,IAAI,CAAC,eAAe,CAAC;4BACnB,UAAU;4BACV,EAAE;4BACF,aAAa,EAAE,aAAa,GAAG,eAAe,CAAC,MAAM;4BACrD,OAAO,EAAE,OAAO,GAAG,KAAK,CAAC,mBAAmB,CAAC,MAAM;4BACnD,YAAY;4BACZ,iBAAiB;4BACjB,UAAU;yBACX,CAAC,CAAA;sBAAA,CACH,CACF;iBACF,CAAC;aACH,CAAA,CAAC,CACH,CAAC;YAEF,OAAO,IAAI,UAAU,CAAC;gBACpB,QAAQ,EAAE,6BAA6B;gBACvC,SAAS,EAAE;oBACT,KAAK,kCACA,aAAa,KAChB,QAAQ,kCACH,aAAa,CAAC,QAAQ,KACzB,mBAAmB,MAEtB;iBACF;aACF,CAAC,CAAC;SACJ;KAAA;IAED,kBAAkB;QAChB,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,CAAC,CAAC;KACvD;IAED,0BAA0B;QACxB,OAAO,IAAI,UAAU,CAAC;YACpB,QAAQ,EAAE,oCAAoC;SAC/C,CAAC,CAAC;KACJ;IAED,iBAAiB,CAAC,SAAmB;;QAEnC,KAAK,MAAM,EAAE,IAAI,SAAS,EAAE;YAC1B,IAAI,CAAC,EAAE,CAAC,oBAAoB,CAAC,aAAa,CAAC,WAAW,EAAE;gBACtD,MAAM,GAAG,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,QAAQ,4BAA4B,CAAC;gBAChE,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBACjB,MAAM,IAAI,sBAAsB,CAAC,GAAG,CAAC,CAAC;aACvC;SACF;KACF;IAEa,eAAe,CAAC,EAC5B,UAAU,EACV,EAAE,EACF,aAAa,EACb,OAAO,EACP,YAAY,EACZ,iBAAiB,EACjB,UAAU,GASX;;YACC,IAAI,CAAC,EAAE,CAAC,oBAAoB,CAAC,aAAa,CAAC,WAAW,EAAE;gBACtD,MAAM,IAAI,sBAAsB,CAC9B,MAAM,EAAE,CAAC,KAAK,CAAC,QAAQ,wDAAwD,CAChF,CAAC;aACH;YAED,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACpD,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAC9C,EAAE,CAAC,oBAAoB,CAAC,aAAa,CAAC,WAAW,CAAC,EAAE,CACrD,CAAC;;YAEF,MAAM,6BAA6B,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAChF,aAAa,CAAC,GAAG,EACjB,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CACvB,CAAC;;YAEF,MAAM,0BAA0B,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC7E,UAAU,EACV,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CACvB,CAAC;YAEF,MAAM,MAAM,GAAG,YAAY,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;YACnD,IAAI,MAAM,CAAC,KAAK,KAAK,OAAO,EAAE;;gBAE5B,MAAM,IAAI,mBAAmB,CAC3B,uDAAuD,CACxD,CAAC;aACH;;YAGD,MAAM,KAAK,GACT,MAAM,CAAC,SAAS,KAAK,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;YAE3E,MAAM,kBAAkB,GAAuB;gBAC7C,MAAM,EAAE;oBACN,KAAK;oBACL,WAAW,EAAE;wBACX,MAAM,EAAE,MAAM,CAAC,SAAS;wBACxB,IAAI,EAAE,MAAM,CAAC,IAAI;qBAClB;iBACF;gBACD,iBAAiB;aAClB,CAAC;YAEF,OAAO,CAAC,GAAG,CAAC,oBAAoB,EAAE,kBAAkB,CAAC,CAAC;YAEtD,OAAO;gBACL,eAAe,EAAE,aAAa,CAAC,EAAE;gBACjC,6BAA6B;gBAC7B,0BAA0B;gBAC1B,gBAAgB,EAAE,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC5D,SAAS,EACT,EAAE,CAAC,EAAE,KAAK,EAAE,CACb;gBACD,wBAAwB,EAAE,EAAE;gBAC5B,8BAA8B,EAAE,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC1E,SAAS,EACT,kBAAkB,CACnB;gBACD,UAAU,EAAE,UAAU,IAAI,KAAK,CAAC;gBAChC,IAAI,EAAE,UAAU,GAAG,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE;aAClC,CAAC;SACH;KAAA;;IAGa,aAAa,CACzB,aAAa,EACb,cAAsB,EACtB,cAAsB;;;YAGtB,IAAI,aAAa,CAAC,MAAM,GAAG,cAAc,EAAE;gBACzC,MAAM,IAAI,sBAAsB,CAC9B,0CAA0C,CAC3C,CAAC;aACH;YAED,MAAM,YAAY,GAAG,IAAIc,QAAa,CAAC,cAAc,CAAC,CAAC;YAEvD,aAAa,CAAC,OAAO,CAAC,CAAC,EAAE,EAAE,KAAK;gBAC9B,IAAI,aAAa,GAAG,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC;;;gBAI1C,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE;oBACnB,aAAa,GAAG,CAAC,CAAC;iBACnB;gBACD,YAAY,CAAC,cAAc,CACzB,IAAIC,WAAgB,CAAC,KAAK,EAAE,EAAE,CAAC,MAAM,EAAE,aAAa,CAAC,CACtD,CAAC;aACH,CAAC,CAAC;YAEH,MAAM,IAAI,CAAC,aAAa,CAAC,cAAc,CACrC,cAAc,EACd,wBAAsB,CAAC,iBAAiB,EACxC,YAAY,CACb,CAAC;YACF,OAAO,YAAY,CAAC;SACrB;KAAA;IAEa,YAAY,CACxB,KAAiC,EACjC,kBAAkB;;;YAGlB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;YAC9D,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACrD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACtD,MAAM,KAA8C,WAAW,CAAC,MAAM,CACpE,IAAI,CACE,EAFF,EAAE,CAAC,EAAE,cAAc,OAEjB,EAFsB,iBAAiB,cAAzC,KAA2C,CAEzC,CAAC;YACT,MAAM,sBAAsB,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,gBAAgB,EAAE,CAAC;YACxE,MAAM,6BAA6B,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAChF,WAAW,EACX,sBAAsB,CAAC,MAAM,CAAC,IAAI,CAAC,CACpC,CAAC;YAEF,MAAM,0BAA0B,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC7E,SAAS,CAAC,GAAG,EACb,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CACxB,CAAC;YACF,MAAM,4BAA4B,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC/E,UAAU,EACV,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CACzB,CAAC;;YAGF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,EAAE,CAAC;YAE1D,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CACrE,WAAW,EACX;gBACE,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC;aAClC,CACF,CAAC;YAEF,MAAM,YAAY,GAAG,MAAM,kBAAkB,CAAC,cAAc,CAAC,CAAC;;YAG9D,MAAM,mBAAmB,GAAG,MAAM,OAAO,CAAC,GAAG,CAC3C,KAAK,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAO,EAAE,EAAE,OAAO;gBAC9C,MAAM,iBAAiB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CACpE,UAAU,EACV;oBACE,IAAI,EAAE,EAAE,CAAC,IAAI;iBACd,CACF,CAAC;gBAEF,OAAO;oBACL,YAAY,EAAE,EAAE,CAAC,YAAY;oBAC7B,MAAM,EAAE,EAAE,CAAC,MAAM;oBACjB,iBAAiB;oBACjB,eAAe,EAAE,MAAM,OAAO,CAAC,GAAG,CAChC,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,CAAO,UAAU,EAAE,aAAa;wBACjD,OAAA,IAAI,CAAC,eAAe,CAAC;4BACnB,EAAE,EAAE,UAAU;4BACd,aAAa;4BACb,OAAO;4BACP,YAAY;4BACZ,iBAAiB;4BACjB,UAAU;yBACX,CAAC,CAAA;sBAAA,CACH,CACF;iBACF,CAAC;aACH,CAAA,CAAC,CACH,CAAC;YAEF,OAAO;gBACL,UAAU;gBACV,YAAY;gBACZ,iBAAiB;gBACjB,aAAa,EAAE;oBACb,QAAQ,EAAE;wBACR,YAAY,EAAE,KAAK,CAAC,YAAY;wBAChC,MAAM,EAAE,KAAK,CAAC,MAAM;wBACpB,WAAW,EAAE,SAAS,CAAC,EAAE;wBACzB,0BAA0B;wBAC1B,4BAA4B;wBAC5B,iBAAiB,EAAE,EAAE;wBACrB,kBAAkB;wBAClB,mBAAmB;wBACnB,sBAAsB,EAAE,IAAI,CAAC,SAAS,CACpC,sBAAsB,CAAC,MAAM,EAAE,CAChC;wBACD,6BAA6B;qBAC9B;iBACF;aACF,CAAC;SACH;KAAA;EACF;AAlYe,wCAAiB,GAAG,WAAW,CAAC;;;YAJ/C,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA7F8B,MAAM;YAAhB,QAAQ;YACpB,UAAU;YAkBV,iBAAiB;YAjBjB,iBAAiB;YAQjB,eAAe;YACZC,aA6FiC;;AAVhC,sBAAsB;IANlC,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,sBAAsB,CAmYlC;;ACjeD;AACA;AACA;AACA;AACA;AACA;;AC0HA,IAAY,gBAMX;AAND,WAAY,gBAAgB;IAC1B,qCAAiB,CAAA;IACjB,qCAAiB,CAAA;IACjB,mCAAe,CAAA;IACf,iCAAa,CAAA;IACb,mCAAe,CAAA;AACjB,CAAC,EANW,gBAAgB,KAAhB,gBAAgB,QAM3B;AAED,IAAY,gBAGX;AAHD,WAAY,gBAAgB;IAC1B,2CAAuB,CAAA;IACvB,qCAAiB,CAAA;AACnB,CAAC,EAHW,gBAAgB,KAAhB,gBAAgB,QAG3B;AAYD,IAAY,oBAMX;AAND,WAAY,oBAAoB;IAC9B,yCAAiB,CAAA;IACjB,qCAAa,CAAA;IACb,yCAAiB,CAAA;IACjB,yCAAiB,CAAA;IACjB,yCAAiB,CAAA;AACnB,CAAC,EANW,oBAAoB,KAApB,oBAAoB,QAM/B;AAkBD,IAAY,mBAIX;AAJD,WAAY,mBAAmB;IAC7B,sDAA+B,CAAA;IAC/B,oDAA6B,CAAA;IAC7B,sDAA+B,CAAA;AACjC,CAAC,EAJW,mBAAmB,KAAnB,mBAAmB,QAI9B;AAoCD,IAAY,gBAMX;AAND,WAAY,gBAAgB;IAC1B,+CAA2B,CAAA;IAC3B,2CAAuB,CAAA;IACvB,yCAAqB,CAAA;IACrB,2CAAuB,CAAA;IACvB,uCAAmB,CAAA;AACrB,CAAC,EANW,gBAAgB,KAAhB,gBAAgB,QAM3B;AAED,IAAY,eAEX;AAFD,WAAY,eAAe;IACzB,8BAAW,CAAA;AACb,CAAC,EAFW,eAAe,KAAf,eAAe,QAE1B;AAoFD,IAAY,eASX;AATD,WAAY,eAAe;IACzB,wCAAqB,CAAA;IACrB,sCAAmB,CAAA;IACnB,sCAAmB,CAAA;IACnB,wCAAqB,CAAA;IACrB,wCAAqB,CAAA;IACrB,sCAAmB,CAAA;IACnB,0CAAuB,CAAA;IACvB,kCAAe,CAAA;AACjB,CAAC,EATW,eAAe,KAAf,eAAe,QAS1B;AAED,IAAY,YAOX;AAPD,WAAY,YAAY;IACtB,mCAAmB,CAAA;IACnB,qCAAqB,CAAA;IACrB,qCAAqB,CAAA;IACrB,mCAAmB,CAAA;IACnB,uCAAuB,CAAA;IACvB,+BAAe,CAAA;AACjB,CAAC,EAPW,YAAY,KAAZ,YAAY,QAOvB;AAED,IAAY,oBAIX;AAJD,WAAY,oBAAoB;IAC9B,2CAAmB,CAAA;IACnB,6CAAqB,CAAA;IACrB,6CAAqB,CAAA;AACvB,CAAC,EAJW,oBAAoB,KAApB,oBAAoB,QAI/B;AAmID,IAAY,SAGX;AAHD,WAAY,SAAS;IACnB,kCAAqB,CAAA;IACrB,0CAA6B,CAAA;AAC/B,CAAC,EAHW,SAAS,KAAT,SAAS;;IC9aR,0BAA0B,SAA1B,0BAA2B,SAAQ,SAAS;IAIvD,YACU,MAAc,EACd,QAAkB,EACC,MAAuB,EAC1C,UAA6B,EAC7B,iBAAoC,EACpC,eAAgC,EAChC,aAAiC,EACjC,eAAgC,EAChC,IAAgB,EAChB,IAAe,EACf,MAA4B;QAEpC,KAAK,CAAC,QAAQ,CAAC,CAAC;QAZR,WAAM,GAAN,MAAM,CAAQ;QACd,aAAQ,GAAR,QAAQ,CAAU;QACC,WAAM,GAAN,MAAM,CAAiB;QAC1C,eAAU,GAAV,UAAU,CAAmB;QAC7B,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,oBAAe,GAAf,eAAe,CAAiB;QAChC,kBAAa,GAAb,aAAa,CAAoB;QACjC,oBAAe,GAAf,eAAe,CAAiB;QAChC,SAAI,GAAJ,IAAI,CAAY;QAChB,SAAI,GAAJ,IAAI,CAAW;QACf,WAAM,GAAN,MAAM,CAAsB;QAdrB,wBAAmB,GAAG,EAAE,CAAC;KAiBzC;IAEK,kBAAkB,CAAC,KAAK;;YAC5B,MAAM,MAAM,GAAG;gBACb,KAAK;aACN,CAAC;YACF,OAAO,IAAI,CAAC,IAAI;iBACb,IAAI,CACH,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,mCAAmC,EACzD,MAAM,CACP;iBACA,SAAS,EAAE,CAAC;SAChB;KAAA;IAEK,oBAAoB,CACxB,OAAe,EACf,SAAiB;;YAEjB,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,IAAI;iBAC9B,IAAI,CAAY,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,eAAe,EAAE;gBACtD,QAAQ,EAAE,OAAO;gBACjB,MAAM,EAAE,SAAS;aAClB,CAAC;iBACD,SAAS,EAAE,CAAC;YACf,OAAO,KAAK,CAAC;SACd;KAAA;IAEK,YAAY,CAChB,QAAgB,EAChB,OAAe,EACf,UAAkB;;;YAMlB,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAClE,QAAQ,CACT,CAAC;YAEF,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YACpD,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC3D,aAAa,CAAC,OAAO,EACrB,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CACvB,CAAC;;YAGF,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,CAAC;YACjD,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC9D,SAAS,EACT,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CACjB,CAAC;;YAGF,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,IAAI;iBACvC,IAAI,CACH,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,4BAA4B,EAClD;gBACE,OAAO;gBACP,UAAU;gBACV,eAAe,EAAE,aAAa,CAAC,aAAa;gBAC5C,eAAe,EAAE,aAAa,CAAC,aAAa;gBAC5C,qBAAqB,EAAE,aAAa,CAAC,eAAe,CAAC,MAAM,EAAE;gBAC7D,6BAA6B,EAC3B,aAAa,CAAC,yBAAyB;gBACzC,kBAAkB,EAAE,gBAAgB;gBACpC,GAAG,EAAE,GAAG,CAAC,MAAM,EAAE;gBACjB,sBAAsB,EAAE,mBAAmB;aAC5C,CACF;iBACA,SAAS,EAAE,CAAC;YAEf,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;YAChC,OAAO,CAAC,GAAG,CACT,sBAAsB,EACtB,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,aAAa,CAAC,OAAO,CAAC,CAC7D,CAAC;;YAGF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;gBAC1C,QAAQ,EAAE,kBAAkB,CAAC,cAAc;gBAC3C,QAAQ,EAAE,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,aAAa,CAAC,OAAO,CAAC;gBACtE,cAAc,EAAE;oBACd,yBAAyB,EAAE,IAAI,CAAC,SAAS,CAAC;wBACxC,EAAE,EAAE,kBAAkB,CAAC,EAAE;wBACzB,0BAA0B,EACxB,kBAAkB,CAAC,0BAA0B;qBAChD,CAAC;iBACH;aACF,CAAC,CAAC;YAEH,OAAO,CAAC,GAAG,CAAC,oBAAoB,EAAE,YAAY,CAAC,CAAC;YAEhD,OAAO;gBACL,kBAAkB;gBAClB,YAAY;aACb,CAAC;SACH;KAAA;IAEK,YAAY,CAChB,SAAkB,KAAK;;YAEvB,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,SAAS,EAAE;gBAC7B,OAAO,IAAI,CAAC,SAAS,CAAC;aACvB;YACD,IAAI,CAAC,SAAS,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,aAAa,EAAE,CAAC;YACnD,OAAO,IAAI,CAAC,SAAS,CAAC;SACvB;KAAA;IAEa,kBAAkB,CAC9B,SAAkC;;;YAGlC,IAAI,iBAAyB,CAAC;YAE9B,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhE,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAC9B,SAAS,CAAC,SAAS,CAAC,GAAG,CAAC,CAAO,QAAQ;gBACrC,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAC7D,GAAG,EACH,QAAQ,CAAC,gCAAgC,CAC1C,CAAC;gBAEF,IAAI,iBAAiB,EAAE;oBACrB,IACE,IAAI,CAAC,SAAS,CAAC,iBAAiB,CAAC;wBACjC,IAAI,CAAC,SAAS,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,EACpD;wBACA,MAAM,IAAI,mBAAmB,CAC3B,kEAAkE,CACnE,CAAC;qBACH;iBACF;qBAAM;oBACL,iBAAiB,GAAG,kBAAkB,CAAC,iBAAiB,CAAC;iBAC1D;gBACD,OAAO,kBAAkB,CAAC,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC;aAClD,CAAA,CAAC,CACH,CAAC;YAEF,OAAO,CAAC,GAAG,CAAC,sBAAsB,EAAE,MAAM,CAAC,CAAC;YAE5C,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,aAAa,CAC3D,MAAM,EACN,sBAAsB,CAAC,iBAAiB,CACzC,CAAC;YAEF,OAAO,GAAG,CAAC,KAAK,iCACX,iBAAiB,KACpB,CAAC,EAAE,cAAc,IACjB,CAAC;SACJ;KAAA;IAEK,eAAe,CAAC,WAAmB;;YACvC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;YAChD,IAAI,SAAS,CAAC,KAAK,KAAK,YAAY,CAAC,QAAQ,EAAE;gBAC7C,MAAM,IAAI,mBAAmB,CAC3B,+CAA+C,CAChD,CAAC;aACH;;;;YAKD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;YAE7D,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACtD,WAAW,EACX,SAAS,CAAC,kBAAkB,CAC7B,CAAC;YACF,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;;YAGrB,MAAM,UAAU,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAE5C,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,SAAS,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YAE5E,MAAM,uBAAuB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC1E,SAAS,CAAC,GAAG,EACb,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CACxB,CAAC;;YAGF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,aAAa,iBAC1D,QAAQ,EAAE,WAAW,IAClB,SAAS,CAAC,OAAO,CAAC,aAAa,EAClC,CAAC;YAEH,MAAM,cAAc,GAAG,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAC1D,gBAAgB,CAAC,GAAG,CACrB,CAAC;;;;YAKF,MAAM,SAAS,GAAG,CAChB,MAAM,IAAI,CAAC,MAAM,CACf,IAAI,UAAU,CAAC;gBACb,QAAQ,EAAE,oCAAoC;gBAC9C,SAAS,EAAE;oBACT,KAAK,EAAE,EAAE;iBACV;aACF,CAAC,EACF;gBACE,eAAe,EAAE,KAAK;aACvB,CACF,EACD,4BAA4B,CAAC,SAAS,CAAC;YAEzC,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;;;YAIvB,SAAS,CAAC,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,YAAY,CAClD,IAAI,CAAC,mBAAmB,CACzB,CAAC;YACF,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;YAEvB,MAAM,sBAAsB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CACjE,WAAW,EACX,SAAS,CAAC,6BAA6B,CACxC,CAAC;YACF,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,IAAI,CACvD,sBAAsB,EACtB,SAAS,CACV,CAAC;;;;YAKF,MAAM,eAAe,GAAG,CACtB,MAAM,IAAI,CAAC,MAAM,CACf,IAAI,UAAU,CAAC;gBACb,QAAQ,EAAE,yCAAyC;gBACnD,SAAS,EAAE;oBACT,KAAK,EAAE;wBACL,eAAe,EAAE,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC;qBACjD;iBACF;aACF,CAAC,EACF;gBACE,eAAe,EAAE,KAAK;aACvB,CACF,EACD,iCAAiC,CAAC,WAAW,CAAC;;;;;;;;;;YAYhD,MAAM,UAAU,GAAG,IAAI,OAAO,CAAO,CAAC,OAAO;gBAC3C,MAAM,QAAQ,GAAG,CAAO,IAAI;oBAC1B,IAAI,IAAI,CAAC,OAAO,CAAC,KAAK,KAAK,QAAQ,EAAE;wBACnC,OAAO;qBACR;oBAED,GAAG,CAAC,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;oBAE7B,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;oBAE1B,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,QAAQ,EAAE,cAAc,CAAC,CAAC;;oBAG3D,MAAM,IAAI,CAAC,MAAM,CACf,IAAI,UAAU,CAAC;wBACb,QAAQ,EAAE,sCAAsC;wBAChD,SAAS,EAAE;4BACT,KAAK,EAAE;gCACL,uBAAuB;gCACvB,WAAW,EAAE,SAAS,CAAC,EAAE;6BAC1B;yBACF;qBACF,CAAC,CACH,CAAC;oBAEF,OAAO,EAAE,CAAC;iBACX,CAAA,CAAC;gBAEF,GAAG,CAAC,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;aAC9B,CAAC,CAAC;;;YAIH,IAAI,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,QAAQ,EAAE,eAAe,EAAE;gBACrE,OAAO,EAAE,MAAM;aAChB,CAAC,CAAC;YAEH,IAAI,IAAI,CAAC,aAAa,KAAK,uBAAuB,EAAE;gBAClD,MAAM,IAAI,WAAW,CAAC;oBACpB,OAAO,EACL,0HAA0H;iBAC7H,CAAC,CAAC;aACJ;;;;YAKD,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,EAAE,cAAc,EAAE,EAAE,CAAC,CAAC;YAErE,OAAO,UAAU,CAAC;SACnB;KAAA;EACF;;;YAxUA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YA/BsC,MAAM;YAAhB,QAAQ;4CAuChC,MAAM,SAAC,SAAS;YAlBZ,iBAAiB;YApBjB,iBAAiB;YACjB,eAAe;YAEZA,aAuCiC;YA/BpC,eAAe;YACf,UAAU;YACV,SAAS;YAMT,oBAAoB;;AAYhB,0BAA0B;IANtC,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,0BAA0B,CAqUtC;;IC5UY,6BAA6B,SAA7B,6BAA8B,SAAQ,SAAS;IAC1D,YACU,MAAc,EACd,QAAkB,EAClB,iBAAoC;QAE5C,KAAK,CAAC,QAAQ,CAAC,CAAC;QAJR,WAAM,GAAN,MAAM,CAAQ;QACd,aAAQ,GAAR,QAAQ,CAAU;QAClB,sBAAiB,GAAjB,iBAAiB,CAAmB;KAG7C;IAEK,eAAe;;YACnB,OAAO,CACL,MAAM,IAAI,CAAC,KAAK,CAAC;gBACf,KAAK,EAAE,2BAA2B;aACnC,CAAC,EACF,sBAAsB,CAAC;SAC1B;KAAA;IAEK,cAAc,CAAC,EAAE;;YACrB,OAAO,CACL,MAAM,IAAI,CAAC,KAAK,CAAC;gBACf,KAAK,EAAE,0BAA0B;gBACjC,SAAS,EAAE;oBACT,EAAE;iBACH;aACF,CAAC,EACF,qBAAqB,CAAC;SACzB;KAAA;IAEO,oBAAoB,CAAC,WAAW;QACtC,MAAM,KAAK,GAAG,WAAW,CAAC,aAAa,CAAC,KAAK,CAAC,KAAK,CAAC;QACpD,IAAI,KAAK,KAAK,eAAe,CAAC,OAAO,EAAE;YACrC,MAAM,IAAI,mBAAmB,CAAC,uBAAuB,KAAK,SAAS,CAAC,CAAC;SACtE;KACF;IAED,aAAa,CAAC,aAAqB;QACjC,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,CAAC,CAAC;KAC/D;IAEK,qBAAqB,CAAC,aAAqB;;YAC/C,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,aAAa,CAAC,CAAC;YAE7D,IAAI,CAAC,oBAAoB,CAAC,WAAW,CAAC,CAAC;YAEvC,OAAO,gBAAgB,CAAC,MAAM,CAC5B,WAAW,CAAC,aAAa,CAAC,KAAK,CAAC,gBAAgB,CAAC,KAAK;iBACnD,MAAM,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,KAAK,KAAK,oBAAoB,CAAC,OAAO,CAAC;iBAClE,GAAG,CACF,CAAC,IAAI,KACH,IAAI,UAAU,CAAC;gBACb,QAAQ,EAAE,oCAAoC;gBAC9C,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,eAAe,EAAE,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE;aACxD,CAAC,CACL,CACJ,CAAC;SACH;KAAA;;IAGD,cAAc,CAAC,aAAqB,EAAE,cAAuB;QAC3D,OAAO,IAAI,CAAC,MAAM,CAChB,IAAI,CAAC,sBAAsB,CAAC,aAAa,EAAE,cAAc,CAAC,CAC3D,CAAC;KACH;IAEK,sBAAsB,CAAC,aAAqB,EAAE,cAAuB;;YACzE,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,aAAa,CAAC,CAAC;YAE7D,IAAI,CAAC,oBAAoB,CAAC,WAAW,CAAC,CAAC;YAEvC,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;YAC3E,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;;YAI1B,MAAM,cAAc,GAAG,WAAW,CAAC,aAAa,CAAC,KAAK,CAAC,gBAAgB,CAAC,KAAK,CAAC,MAAM,CAClF,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,KAAK,KAAK,oBAAoB,CAAC,OAAO,CAC3D,CAAC;;;YAIF,OAAO,gBAAgB,CAAC,MAAM,CAC5B,MAAM,OAAO,CAAC,GAAG,CACf,cAAc,CAAC,GAAG,CAAC,CAAO,YAAY;gBACpC,MAAM,EAAE,GAAG,YAAY,CAAC,IAAI,CAAC;gBAC7B,MAAM,KAAK,GAAG;oBACZ,eAAe,EAAE,EAAE,CAAC,EAAE;oBACtB,iBAAiB,EAAE,MAAM,OAAO,CAAC,GAAG,CAClC,EAAE,CAAC,iBAAiB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAO,YAAY;wBAChD,MAAM,EAAE,GAAG,YAAY,CAAC,IAAI,CAAC;wBAC7B,OAAO;4BACL,kBAAkB,EAAE,EAAE,CAAC,EAAE;4BACzB,cAAc,EAAE,EAAE;4BAClB,gCAAgC,EAAE,MAAM,IAAI,CAAC,iBAAiB,CAAC,eAAe,CAC5E,GAAG,EACH,EAAE,CAAC,uCAAuC,CAC3C;yBACF,CAAC;qBACH,CAAA,CAAC,CACH;iBACF,CAAC;gBAEF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;gBAEnB,OAAO,IAAI,UAAU,CAAC;oBACpB,QAAQ,EAAE,qCAAqC;oBAC/C,SAAS,EAAE;wBACT,KAAK;qBACN;iBACF,CAAC,CAAC;aACJ,CAAA,CAAC,CACH,CACF,CAAC;SACH;KAAA;EACF;;;YApHA,UAAU,SAAC;gBACV,UAAU,EAAE,MAAM;aACnB;;;YAzB8B,MAAM;YAAhB,QAAQ;YAUpB,iBAAiB;;AAgBb,6BAA6B;IANzC,iBAAiB,CAAC;QACjB,UAAU,EAAE,QAAQ;KACrB,CAAC;GAIW,6BAA6B,CAiHzC;;AC3ID;;;;ACAA;;;;;;"}