npm - @liveauth-labs/sdk - Versions diffs - 0.1.2 → 0.2.1 - Mend

@liveauth-labs/sdk 0.1.2 → 0.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/README.md CHANGED Viewed

@@ -1,48 +1,42 @@
-# LiveAuth – Developer Portal Documentation
+# LiveAuth JS SDK
-## Getting Started
+> Human verification through economics, not heuristics.
-LiveAuth verifies humans economically instead of heuristically.
+[![npm version](https://img.shields.io/npm/v/@liveauth-labs/sdk.svg)](https://www.npmjs.com/package/@liveauth-labs/sdk)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+## What is LiveAuth?
-Instead of CAPTCHAs or tracking, LiveAuth asks the browser to perform a short
-cryptographic proof. If that fails or is skipped, it falls back to a small
-Bitcoin Lightning payment.
+LiveAuth verifies humans economically instead of heuristically.
-No cookies.
-No fingerprinting.
-No behavioral profiling.
+Instead of CAPTCHAs or tracking, LiveAuth asks the browser to perform a short cryptographic proof. If that fails or is skipped, it falls back to a small Bitcoin Lightning payment.
----
+- No cookies
+- No fingerprinting
+- No behavioral profiling
-## What LiveAuth Does
+## How It Works
-When a user clicks “Verify”:
+When a user triggers verification:
 1. **Browser attempts Proof-of-Work (PoW)**
-   – Takes ~200–800ms for a real device
-   – Bots pay CPU / battery cost
+   Takes ~200–800ms for a real device. Bots pay CPU/battery cost.
 2. **If PoW fails → Lightning fallback**
-   – Small payment (e.g. 21 sats)
-   – Real economic cost to bots
+   Small payment (e.g. 21 sats). Real economic cost to bots.
 3. **LiveAuth returns a short-lived JWT**
-   – Verifiable on your backend
-   – No user identity required
+   Verifiable on your backend. No user identity required.
 Most humans never see the Lightning step.
----
-## Installation (JavaScript)
+## Installation
 ```bash
 npm install @liveauth-labs/sdk
 ```
----
-## Basic Usage
+## Quick Start
 ```ts
 import { LiveAuth } from '@liveauth-labs/sdk';
@@ -52,52 +46,187 @@ const liveauth = new LiveAuth({
 });
 const result = await liveauth.verify();
+if (result.method === 'pow') {
+  // PoW succeeded - send token to your backend
+  console.log('Verified via PoW:', result.token);
+} else {
+  // Lightning fallback - show invoice to user
+  console.log('Pay invoice:', result.lightning.invoice);
+  // Poll for payment confirmation
+  const token = await liveauth.pollLightning(result.lightning.sessionId);
+  console.log('Verified via Lightning:', token);
+}
 ```
----
+## API Reference
+### `new LiveAuth(config)`
+| Option | Type | Required | Description |
+|--------|------|----------|-------------|
+| `publicKey` | `string` | ✓ | Your LiveAuth public key |
+| `baseUrl` | `string` | | API base URL (default: `https://api.liveauth.app`) |
+### `verify(options?)`
+Attempts verification, starting with PoW and falling back to Lightning if needed.
-## Example Result
+| Option | Type | Default | Description |
+|--------|------|---------|-------------|
+| `forceLightning` | `boolean` | `false` | Skip PoW, go straight to Lightning |
+| `onProgress` | `function` | | Callback: `(hashesPerSec, iterations) => void` |
+| `powTimeoutMs` | `number` | `30000` | Max time for PoW before fallback |
+| `maxPowIterations` | `number` | `50000000` | Max iterations before fallback |
+**Returns:** `Promise<LiveAuthResult>`
 ```ts
+// PoW success
 {
-  token: "eyJhbGciOi...",
-  method: "pow",
+  method: 'pow',
+  token: 'eyJhbGciOi...',
   solveMs: 412,
   difficultyBits: 18
 }
+// Lightning fallback
+{
+  method: 'lightning',
+  lightning: {
+    sessionId: 'sess_xxx',
+    invoice: 'lnbc...',
+    amountSats: 21,
+    expiresAtUnix: 1234567890,
+    mode: 'LIVE'
+  },
+  diagnostics: {
+    reason: 'pow_unsupported'
+  }
+}
 ```
----
+### `pollLightning(sessionId, options?)`
-## Verifying on Your Backend
+Polls for Lightning payment confirmation.
-Send the JWT to your backend and verify it using your LiveAuth secret key.
+| Option | Type | Default | Description |
+|--------|------|---------|-------------|
+| `timeoutMs` | `number` | `300000` | Max wait time (5 min) |
+| `intervalMs` | `number` | `2000` | Poll interval |
+| `signal` | `AbortSignal` | | Cancellation signal |
-The token includes:
+**Returns:** `Promise<string>` - The verification token
-- projectId
-- projectPublicKey
-- authType (pow or lightning)
-- short expiration (default: 10 minutes)
+## Error Handling
----
+```ts
+import {
+  LiveAuth,
+  LiveAuthTimeoutError,
+  LiveAuthCancelledError,
+  LiveAuthNetworkError,
+  LiveAuthPowTimeoutError
+} from '@liveauth-labs/sdk';
+try {
+  const result = await liveauth.verify();
+} catch (err) {
+  if (err instanceof LiveAuthNetworkError) {
+    console.error('Network issue:', err.message);
+  } else if (err instanceof LiveAuthPowTimeoutError) {
+    console.error('PoW took too long');
+  }
+}
+```
-## Why LiveAuth
+## Progress Feedback
-| CAPTCHA | LiveAuth |
-|-------|----------|
-| Tracks behavior | No tracking |
-| ML heuristics | Cryptography |
-| CAPTCHA farms | Real economic cost |
-| Bad UX | Invisible to humans |
+Show users what's happening during PoW:
+```ts
+const result = await liveauth.verify({
+  onProgress: (hashesPerSec, iterations) => {
+    console.log(`${(iterations / 1000).toFixed(0)}k hashes @ ${hashesPerSec}/sec`);
+  }
+});
+```
----
+## Backend Verification
+Send the JWT to your backend and verify it using your LiveAuth secret key.
+### Example (Node.js)
+```ts
+import jwt from 'jsonwebtoken';
+app.post('/api/verify-liveauth', (req, res) => {
+  const { token } = req.body;
+  try {
+    // Verify JWT signature with your LiveAuth secret key
+    const decoded = jwt.verify(token, process.env.LIVEAUTH_SECRET_KEY);
+    // Check expiration (JWT library handles this, but you can also check manually)
+    if (decoded.exp && decoded.exp < Date.now() / 1000) {
+      return res.status(401).json({ error: 'Token expired' });
+    }
+    // Extract claims
+    const { projectId, projectPublicKey, authType, sub } = decoded;
+    // Verify it matches your project
+    if (projectPublicKey !== process.env.LIVEAUTH_PUBLIC_KEY) {
+      return res.status(401).json({ error: 'Invalid project' });
+    }
+    // Success - user is verified
+    res.json({
+      verified: true,
+      authType, // 'pow' or 'lightning'
+      userId: sub
+    });
+  } catch (err) {
+    res.status(401).json({ error: 'Invalid token' });
+  }
+});
+```
+### Token Claims
+The JWT contains:
+- `sub` - Unique user identifier (format: `pow:{projectId}:{challengeHex}` or `lightning:{invoiceId}`)
+- `projectId` - Your project's UUID
+- `projectPublicKey` - Your public API key
+- `authType` - Verification method: `pow` or `lightning`
+- `exp` - Expiration timestamp (default: 10 minutes from issuance)
+- `iat` - Issued at timestamp
+**Security Notes:**
+- Always verify the JWT signature using your secret key
+- Check the `projectPublicKey` claim matches your expected key
+- Respect the `exp` (expiration) claim
+- The `sub` claim is ephemeral - don't use it as a permanent user ID unless you're tracking sessions
 ## Debug Mode
 Add `?liveauth_debug=1` to your URL to see:
+- Verification method used
+- PoW difficulty and solve time
+- Lightning fallback triggers
+## Why LiveAuth?
+| Traditional CAPTCHA | LiveAuth |
+|--------------------|----------|
+| Tracks behavior | No tracking |
+| ML heuristics | Cryptography |
+| CAPTCHA farms | Real economic cost |
+| Bad UX | Invisible to most humans |
+## License
-- Verification method
-- PoW difficulty
-- Solve time
-- Lightning fallback (demo mode)
+MIT

package/dist/index.cjs CHANGED Viewed

@@ -20,26 +20,51 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 // src/index.ts
 var src_exports = {};
 __export(src_exports, {
-  LiveAuth: () => LiveAuth
+  LiveAuth: () => LiveAuth,
+  LiveAuthCancelledError: () => LiveAuthCancelledError,
+  LiveAuthNetworkError: () => LiveAuthNetworkError,
+  LiveAuthPowTimeoutError: () => LiveAuthPowTimeoutError,
+  LiveAuthPowUnsupportedError: () => LiveAuthPowUnsupportedError,
+  LiveAuthTimeoutError: () => LiveAuthTimeoutError
 });
 module.exports = __toCommonJS(src_exports);
 // src/errors.ts
 var LiveAuthTimeoutError = class extends Error {
-  constructor(message = "Lightning verification timed out") {
+  constructor(message = "LiveAuth verification timed out") {
     super(message);
     this.name = "LiveAuthTimeoutError";
   }
 };
 var LiveAuthCancelledError = class extends Error {
-  constructor(message = "Lightning verification cancelled") {
+  constructor(message = "LiveAuth verification cancelled") {
     super(message);
     this.name = "LiveAuthCancelledError";
   }
 };
+var LiveAuthNetworkError = class extends Error {
+  constructor(message = "LiveAuth network request failed", cause) {
+    super(message);
+    this.cause = cause;
+    this.name = "LiveAuthNetworkError";
+  }
+};
+var LiveAuthPowUnsupportedError = class extends Error {
+  constructor(message = "Proof-of-Work is not supported in this environment") {
+    super(message);
+    this.name = "LiveAuthPowUnsupportedError";
+  }
+};
+var LiveAuthPowTimeoutError = class extends Error {
+  constructor(message = "Proof-of-Work timed out") {
+    super(message);
+    this.name = "LiveAuthPowTimeoutError";
+  }
+};
 // src/index.ts
 var import_meta = {};
+var SDK_VERSION = "0.2.0";
 var LiveAuth = class {
   constructor(config) {
     this.config = config;
@@ -49,85 +74,149 @@ var LiveAuth = class {
     this.baseUrl = config.baseUrl ?? "https://api.liveauth.app";
     this.headers = {
       "Content-Type": "application/json",
-      "X-LW-Public": config.publicKey
+      "X-LW-Public": config.publicKey,
+      "X-LW-SDK-Version": SDK_VERSION
     };
   }
   /* ======================================================
    * PUBLIC ENTRYPOINT
    * ====================================================== */
-  async verify() {
-    const startedAt = performance.now();
-    const challenge = await this.getPowChallenge();
-    const solution = await this.solvePow(challenge);
-    const verifyRes = await this.verifyPow({
-      challengeHex: challenge.challengeHex,
-      nonce: solution.nonce,
-      hashHex: solution.hashHex,
-      expiresAtUnix: challenge.expiresAtUnix,
-      sig: challenge.sig
-    });
-    if (verifyRes.verified && verifyRes.token) {
+  async verify(options = {}) {
+    const {
+      forceLightning = false,
+      onProgress,
+      powTimeoutMs = 3e4,
+      maxPowIterations = 5e7
+    } = options;
+    if (forceLightning) {
+      const lightning = await this.startLightning();
       return {
-        method: "pow",
-        token: verifyRes.token,
-        solveMs: Math.round(performance.now() - startedAt),
-        difficultyBits: challenge.difficultyBits
+        method: "lightning",
+        lightning,
+        diagnostics: { reason: "forced_lightning" }
       };
     }
-    if (verifyRes.fallback === "lightning") {
+    if (!this.canUsePow()) {
       const lightning = await this.startLightning();
       return {
         method: "lightning",
-        lightning
+        lightning,
+        diagnostics: { reason: "pow_unsupported" }
       };
     }
-    throw new Error("LiveAuth: verification failed");
+    const startedAt = performance.now();
+    try {
+      const challenge = await this.getPowChallenge();
+      const solution = await this.solvePow(challenge, {
+        onProgress,
+        timeoutMs: powTimeoutMs,
+        maxIterations: maxPowIterations
+      });
+      const verifyRes = await this.verifyPow({
+        challengeHex: challenge.challengeHex,
+        nonce: solution.nonce,
+        hashHex: solution.hashHex,
+        expiresAtUnix: challenge.expiresAtUnix,
+        difficultyBits: challenge.difficultyBits,
+        sig: challenge.sig
+      });
+      if (verifyRes.verified && verifyRes.token) {
+        return {
+          method: "pow",
+          token: verifyRes.token,
+          solveMs: Math.round(performance.now() - startedAt),
+          difficultyBits: challenge.difficultyBits
+        };
+      }
+      if (verifyRes.fallback === "lightning") {
+        const lightning = await this.startLightning();
+        return {
+          method: "lightning",
+          lightning,
+          diagnostics: { reason: "pow_server_fallback" }
+        };
+      }
+      throw new Error("LiveAuth: verification failed");
+    } catch (err) {
+      if (err instanceof LiveAuthPowTimeoutError || err instanceof LiveAuthPowUnsupportedError) {
+        const lightning = await this.startLightning();
+        return {
+          method: "lightning",
+          lightning,
+          diagnostics: {
+            reason: "pow_failed",
+            detail: err.message
+          }
+        };
+      }
+      throw err;
+    }
   }
   /* ======================================================
    * POW FLOW
    * ====================================================== */
   async getPowChallenge() {
-    const res = await fetch(`${this.baseUrl}/api/public/pow/challenge`, {
+    const res = await this.fetchWithRetry(`${this.baseUrl}/api/public/pow/challenge`, {
       headers: this.headers
     });
-    if (!res.ok) throw new Error("PoW challenge failed");
+    if (!res.ok) throw new LiveAuthNetworkError("PoW challenge failed");
     return res.json();
   }
   async verifyPow(req) {
-    const res = await fetch(`${this.baseUrl}/api/public/pow/verify`, {
+    const res = await this.fetchWithRetry(`${this.baseUrl}/api/public/pow/verify`, {
       method: "POST",
       headers: this.headers,
       body: JSON.stringify(req)
     });
-    if (!res.ok) throw new Error("PoW verify failed");
+    if (!res.ok) throw new LiveAuthNetworkError("PoW verify failed");
     return res.json();
   }
   /* ======================================================
    * POW SOLVER (WORKER)
    * ====================================================== */
-  solvePow(challenge) {
+  solvePow(challenge, options = {}) {
+    const { onProgress, timeoutMs = 3e4, maxIterations = 5e7 } = options;
     if (!this.canUsePow()) {
-      return Promise.reject(
-        new Error("LiveAuth: PoW not supported in this environment")
-      );
+      return Promise.reject(new LiveAuthPowUnsupportedError());
     }
     return new Promise((resolve, reject) => {
       const worker = new Worker(
         new URL("./pow.worker.js", import_meta.url),
         { type: "module" }
       );
-      worker.onmessage = (e) => {
+      const timeoutId = setTimeout(() => {
         worker.terminate();
-        resolve(e.data);
+        reject(new LiveAuthPowTimeoutError(`PoW timed out after ${timeoutMs}ms`));
+      }, timeoutMs);
+      worker.onmessage = (e) => {
+        const data = e.data;
+        if (data.type === "progress") {
+          onProgress?.(data.hashesPerSec ?? 0, data.iterations ?? 0);
+          return;
+        }
+        if (data.type === "timeout") {
+          clearTimeout(timeoutId);
+          worker.terminate();
+          reject(new LiveAuthPowTimeoutError(`PoW hit max iterations (${maxIterations})`));
+          return;
+        }
+        if (data.type === "solution" && data.nonce !== void 0 && data.hashHex) {
+          clearTimeout(timeoutId);
+          worker.terminate();
+          resolve({ nonce: data.nonce, hashHex: data.hashHex });
+          return;
+        }
       };
       worker.onerror = (e) => {
+        clearTimeout(timeoutId);
         worker.terminate();
-        reject(e);
+        reject(new LiveAuthPowUnsupportedError(`Worker error: ${e.message}`));
       };
       worker.postMessage({
         projectPublicKey: challenge.projectPublicKey,
         challengeHex: challenge.challengeHex,
-        targetHex: challenge.targetHex
+        targetHex: challenge.targetHex,
+        maxIterations
       });
     });
   }
@@ -135,26 +224,16 @@ var LiveAuth = class {
    * LIGHTNING FALLBACK
    * ====================================================== */
   async startLightning() {
-    const res = await fetch(`${this.baseUrl}/api/public/auth/start`, {
+    const res = await this.fetchWithRetry(`${this.baseUrl}/api/public/auth/start`, {
       method: "POST",
       headers: this.headers,
       body: JSON.stringify({ userHint: "browser" })
     });
     if (!res.ok) {
-      throw new Error("Lightning auth start failed");
+      throw new LiveAuthNetworkError("Lightning auth start failed");
     }
     return res.json();
   }
-  canUsePow() {
-    try {
-      if (typeof window === "undefined") return false;
-      if (typeof Worker === "undefined") return false;
-      if (typeof URL === "undefined") return false;
-      return true;
-    } catch {
-      return false;
-    }
-  }
   async pollLightning(sessionId, options) {
     const timeoutMs = options?.timeoutMs ?? 5 * 6e4;
     const intervalMs = options?.intervalMs ?? 2e3;
@@ -187,7 +266,7 @@ var LiveAuth = class {
           }
         );
         if (!res.ok) {
-          throw new Error("Lightning confirm failed");
+          throw new LiveAuthNetworkError("Lightning confirm failed");
         }
         const json = await res.json();
         if (json.verified && json.token) {
@@ -199,10 +278,47 @@ var LiveAuth = class {
       clearTimeout(timeoutId);
     }
   }
+  /* ======================================================
+   * UTILITIES
+   * ====================================================== */
+  canUsePow() {
+    try {
+      if (typeof window === "undefined") return false;
+      if (typeof Worker === "undefined") return false;
+      if (typeof URL === "undefined") return false;
+      if (typeof crypto === "undefined" || !crypto.subtle) return false;
+      return true;
+    } catch {
+      return false;
+    }
+  }
+  async fetchWithRetry(url, init, retries = 2, backoffMs = 500) {
+    let lastError;
+    for (let attempt = 0; attempt <= retries; attempt++) {
+      try {
+        const res = await fetch(url, init);
+        return res;
+      } catch (err) {
+        lastError = err instanceof Error ? err : new Error(String(err));
+        if (attempt < retries) {
+          await sleep(backoffMs * Math.pow(2, attempt));
+        }
+      }
+    }
+    throw new LiveAuthNetworkError(
+      `Request failed after ${retries + 1} attempts`,
+      lastError
+    );
+  }
 };
 var sleep = (ms) => new Promise((resolve) => setTimeout(resolve, ms));
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
-  LiveAuth
+  LiveAuth,
+  LiveAuthCancelledError,
+  LiveAuthNetworkError,
+  LiveAuthPowTimeoutError,
+  LiveAuthPowUnsupportedError,
+  LiveAuthTimeoutError
 });
 //# sourceMappingURL=index.cjs.map

package/dist/index.cjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../src/index.ts","../src/errors.ts"],"sourcesContent":["import type {\n LiveAuthResult,\n VerifyOptions,\n PowChallengeResponse,\n PowVerifyRequest,\n PowVerifyResponse,\n PowSolution,\n AuthStartResponse,\n AuthConfirmResponse,\n LiveAuthConfig, LightningStart\n} from './types';\nimport {LiveAuthCancelledError, LiveAuthTimeoutError} from \"./errors\";\n\nexport class LiveAuth {\n private readonly baseUrl: string;\n private readonly headers: HeadersInit;\n\n constructor(private readonly config: LiveAuthConfig) {\n if (!config.publicKey) {\n throw new Error('LiveAuth: publicKey is required');\n }\n\n this.baseUrl = config.baseUrl ?? 'https://api.liveauth.app';\n\n this.headers = {\n 'Content-Type': 'application/json',\n 'X-LW-Public': config.publicKey\n };\n }\n\n /* ======================================================\n * PUBLIC ENTRYPOINT\n * ====================================================== /\n\n async verify(): Promise<LiveAuthResult> {\n const startedAt = performance.now();\n\n const challenge = await this.getPowChallenge();\n const solution = await this.solvePow(challenge);\n\n const verifyRes = await this.verifyPow({\n challengeHex: challenge.challengeHex,\n nonce: solution.nonce,\n hashHex: solution.hashHex,\n expiresAtUnix: challenge.expiresAtUnix,\n sig: challenge.sig\n });\n\n if (verifyRes.verified && verifyRes.token) {\n return {\n method: 'pow',\n token: verifyRes.token,\n solveMs: Math.round(performance.now() - startedAt),\n difficultyBits: challenge.difficultyBits\n };\n }\n\n if (verifyRes.fallback === 'lightning') {\n const lightning = await this.startLightning();\n return {\n method: 'lightning',\n lightning\n };\n }\n\n throw new Error('LiveAuth: verification failed');\n }\n\n / ======================================================\n * POW FLOW\n * ====================================================== /\n\n private async getPowChallenge(): Promise<PowChallengeResponse> {\n const res = await fetch(`${this.baseUrl}/api/public/pow/challenge`, {\n headers: this.headers\n });\n\n if (!res.ok) throw new Error('PoW challenge failed');\n return res.json();\n }\n\n private async verifyPow(req: PowVerifyRequest): Promise<PowVerifyResponse> {\n const res = await fetch(`${this.baseUrl}/api/public/pow/verify`, {\n method: 'POST',\n headers: this.headers,\n body: JSON.stringify(req)\n });\n\n if (!res.ok) throw new Error('PoW verify failed');\n return res.json();\n }\n\n / ======================================================\n * POW SOLVER (WORKER)\n * ====================================================== /\n\n private solvePow(challenge: PowChallengeResponse): Promise<PowSolution> {\n if (!this.canUsePow()) {\n return Promise.reject(\n new Error('LiveAuth: PoW not supported in this environment')\n );\n }\n\n return new Promise((resolve, reject) => {\n const worker = new Worker(\n new URL('./pow.worker.js', import.meta.url),\n {type: 'module'}\n );\n\n worker.onmessage = e => {\n worker.terminate();\n resolve(e.data);\n };\n\n worker.onerror = e => {\n worker.terminate();\n reject(e);\n };\n\n worker.postMessage({\n projectPublicKey: challenge.projectPublicKey,\n challengeHex: challenge.challengeHex,\n targetHex: challenge.targetHex\n });\n });\n }\n\n / ======================================================\n * LIGHTNING FALLBACK\n * ====================================================== /\n\n private async startLightning(): Promise<LightningStart> {\n const res = await fetch(`${this.baseUrl}/api/public/auth/start`, {\n method: 'POST',\n headers: this.headers,\n body: JSON.stringify({userHint: 'browser'})\n });\n\n if (!res.ok) {\n throw new Error('Lightning auth start failed');\n }\n\n return res.json();\n }\n\n private canUsePow(): boolean {\n try {\n // SSR / Node guard\n if (typeof window === 'undefined') return false;\n\n // Worker support\n if (typeof Worker === 'undefined') return false;\n\n // Basic URL support (needed for module workers)\n if (typeof URL === 'undefined') return false;\n\n return true;\n } catch {\n return false;\n }\n }\n\n async pollLightning(\n sessionId: string,\n options?: {\n timeoutMs?: number;\n signal?: AbortSignal;\n intervalMs?: number;\n }\n ): Promise<string> {\n const timeoutMs = options?.timeoutMs ?? 5 60_000; // 5 min\n const intervalMs = options?.intervalMs ?? 2000;\n const externalSignal = options?.signal;\n\n const controller = new AbortController();\n const signal = controller.signal;\n\n // If caller passes a signal, bridge it\n if (externalSignal) {\n if (externalSignal.aborted) {\n throw new LiveAuthCancelledError();\n }\n\n externalSignal.addEventListener('abort', () => {\n controller.abort();\n });\n }\n\n // Timeout enforcement\n const timeoutId = setTimeout(() => {\n controller.abort();\n }, timeoutMs);\n\n try {\n while (true) {\n if (signal.aborted) {\n throw externalSignal?.aborted\n ? new LiveAuthCancelledError()\n : new LiveAuthTimeoutError();\n }\n\n const res = await fetch(\n `${this.baseUrl}/api/public/auth/confirm`,\n {\n method: 'POST',\n headers: this.headers,\n body: JSON.stringify({sessionId}),\n signal\n }\n );\n\n if (!res.ok) {\n throw new Error('Lightning confirm failed');\n }\n\n const json = await res.json();\n\n if (json.verified && json.token) {\n return json.token;\n }\n\n await sleep(intervalMs);\n }\n } finally {\n clearTimeout(timeoutId);\n }\n }\n\n\n}\n\n/* ======================================================\n * UTILS\n * ====================================================== */\n\nconst sleep = (ms: number) =>\n new Promise(resolve => setTimeout(resolve, ms));\n","export class LiveAuthTimeoutError extends Error {\n constructor(message = 'Lightning verification timed out') {\n super(message);\n this.name = 'LiveAuthTimeoutError';\n }\n}\n\nexport class LiveAuthCancelledError extends Error {\n constructor(message = 'Lightning verification cancelled') {\n super(message);\n this.name = 'LiveAuthCancelledError';\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAO,IAAM,uBAAN,cAAmC,MAAM;AAAA,EAC5C,YAAY,UAAU,oCAAoC;AACtD,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EAChB;AACJ;AAEO,IAAM,yBAAN,cAAqC,MAAM;AAAA,EAC9C,YAAY,UAAU,oCAAoC;AACtD,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EAChB;AACJ;;;ADZA;AAaO,IAAM,WAAN,MAAe;AAAA,EAIlB,YAA6B,QAAwB;AAAxB;AACzB,QAAI,CAAC,OAAO,WAAW;AACnB,YAAM,IAAI,MAAM,iCAAiC;AAAA,IACrD;AAEA,SAAK,UAAU,OAAO,WAAW;AAEjC,SAAK,UAAU;AAAA,MACX,gBAAgB;AAAA,MAChB,eAAe,OAAO;AAAA,IAC1B;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAkC;AACpC,UAAM,YAAY,YAAY,IAAI;AAElC,UAAM,YAAY,MAAM,KAAK,gBAAgB;AAC7C,UAAM,WAAW,MAAM,KAAK,SAAS,SAAS;AAE9C,UAAM,YAAY,MAAM,KAAK,UAAU;AAAA,MACnC,cAAc,UAAU;AAAA,MACxB,OAAO,SAAS;AAAA,MAChB,SAAS,SAAS;AAAA,MAClB,eAAe,UAAU;AAAA,MACzB,KAAK,UAAU;AAAA,IACnB,CAAC;AAED,QAAI,UAAU,YAAY,UAAU,OAAO;AACvC,aAAO;AAAA,QACH,QAAQ;AAAA,QACR,OAAO,UAAU;AAAA,QACjB,SAAS,KAAK,MAAM,YAAY,IAAI,IAAI,SAAS;AAAA,QACjD,gBAAgB,UAAU;AAAA,MAC9B;AAAA,IACJ;AAEA,QAAI,UAAU,aAAa,aAAa;AACpC,YAAM,YAAY,MAAM,KAAK,eAAe;AAC5C,aAAO;AAAA,QACH,QAAQ;AAAA,QACR;AAAA,MACJ;AAAA,IACJ;AAEA,UAAM,IAAI,MAAM,+BAA+B;AAAA,EACnD;AAAA;AAAA;AAAA;AAAA,EAMA,MAAc,kBAAiD;AAC3D,UAAM,MAAM,MAAM,MAAM,GAAG,KAAK,OAAO,6BAA6B;AAAA,MAChE,SAAS,KAAK;AAAA,IAClB,CAAC;AAED,QAAI,CAAC,IAAI,GAAI,OAAM,IAAI,MAAM,sBAAsB;AACnD,WAAO,IAAI,KAAK;AAAA,EACpB;AAAA,EAEA,MAAc,UAAU,KAAmD;AACvE,UAAM,MAAM,MAAM,MAAM,GAAG,KAAK,OAAO,0BAA0B;AAAA,MAC7D,QAAQ;AAAA,MACR,SAAS,KAAK;AAAA,MACd,MAAM,KAAK,UAAU,GAAG;AAAA,IAC5B,CAAC;AAED,QAAI,CAAC,IAAI,GAAI,OAAM,IAAI,MAAM,mBAAmB;AAChD,WAAO,IAAI,KAAK;AAAA,EACpB;AAAA;AAAA;AAAA;AAAA,EAMQ,SAAS,WAAuD;AACpE,QAAI,CAAC,KAAK,UAAU,GAAG;AACnB,aAAO,QAAQ;AAAA,QACX,IAAI,MAAM,iDAAiD;AAAA,MAC/D;AAAA,IACJ;AAEA,WAAO,IAAI,QAAQ,CAAC,SAAS,WAAW;AACpC,YAAM,SAAS,IAAI;AAAA,QACf,IAAI,IAAI,mBAAmB,YAAY,GAAG;AAAA,QAC1C,EAAC,MAAM,SAAQ;AAAA,MACnB;AAEA,aAAO,YAAY,OAAK;AACpB,eAAO,UAAU;AACjB,gBAAQ,EAAE,IAAI;AAAA,MAClB;AAEA,aAAO,UAAU,OAAK;AAClB,eAAO,UAAU;AACjB,eAAO,CAAC;AAAA,MACZ;AAEA,aAAO,YAAY;AAAA,QACf,kBAAkB,UAAU;AAAA,QAC5B,cAAc,UAAU;AAAA,QACxB,WAAW,UAAU;AAAA,MACzB,CAAC;AAAA,IACL,CAAC;AAAA,EACL;AAAA;AAAA;AAAA;AAAA,EAMA,MAAc,iBAA0C;AACpD,UAAM,MAAM,MAAM,MAAM,GAAG,KAAK,OAAO,0BAA0B;AAAA,MAC7D,QAAQ;AAAA,MACR,SAAS,KAAK;AAAA,MACd,MAAM,KAAK,UAAU,EAAC,UAAU,UAAS,CAAC;AAAA,IAC9C,CAAC;AAED,QAAI,CAAC,IAAI,IAAI;AACT,YAAM,IAAI,MAAM,6BAA6B;AAAA,IACjD;AAEA,WAAO,IAAI,KAAK;AAAA,EACpB;AAAA,EAEQ,YAAqB;AACzB,QAAI;AAEA,UAAI,OAAO,WAAW,YAAa,QAAO;AAG1C,UAAI,OAAO,WAAW,YAAa,QAAO;AAG1C,UAAI,OAAO,QAAQ,YAAa,QAAO;AAEvC,aAAO;AAAA,IACX,QAAQ;AACJ,aAAO;AAAA,IACX;AAAA,EACJ;AAAA,EAEA,MAAM,cACF,WACA,SAKe;AACf,UAAM,YAAY,SAAS,aAAa,IAAI;AAC5C,UAAM,aAAa,SAAS,cAAc;AAC1C,UAAM,iBAAiB,SAAS;AAEhC,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,SAAS,WAAW;AAG1B,QAAI,gBAAgB;AAChB,UAAI,eAAe,SAAS;AACxB,cAAM,IAAI,uBAAuB;AAAA,MACrC;AAEA,qBAAe,iBAAiB,SAAS,MAAM;AAC3C,mBAAW,MAAM;AAAA,MACrB,CAAC;AAAA,IACL;AAGA,UAAM,YAAY,WAAW,MAAM;AAC/B,iBAAW,MAAM;AAAA,IACrB,GAAG,SAAS;AAEZ,QAAI;AACA,aAAO,MAAM;AACT,YAAI,OAAO,SAAS;AAChB,gBAAM,gBAAgB,UAChB,IAAI,uBAAuB,IAC3B,IAAI,qBAAqB;AAAA,QACnC;AAEA,cAAM,MAAM,MAAM;AAAA,UACd,GAAG,KAAK,OAAO;AAAA,UACf;AAAA,YACI,QAAQ;AAAA,YACR,SAAS,KAAK;AAAA,YACd,MAAM,KAAK,UAAU,EAAC,UAAS,CAAC;AAAA,YAChC;AAAA,UACJ;AAAA,QACJ;AAEA,YAAI,CAAC,IAAI,IAAI;AACT,gBAAM,IAAI,MAAM,0BAA0B;AAAA,QAC9C;AAEA,cAAM,OAAO,MAAM,IAAI,KAAK;AAE5B,YAAI,KAAK,YAAY,KAAK,OAAO;AAC7B,iBAAO,KAAK;AAAA,QAChB;AAEA,cAAM,MAAM,UAAU;AAAA,MAC1B;AAAA,IACJ,UAAE;AACE,mBAAa,SAAS;AAAA,IAC1B;AAAA,EACJ;AAGJ;AAMA,IAAM,QAAQ,CAAC,OACX,IAAI,QAAQ,aAAW,WAAW,SAAS,EAAE,CAAC;","names":[]}
1	+ {"version":3,"sources":["../src/index.ts","../src/errors.ts"],"sourcesContent":["import type {\n LiveAuthResult,\n VerifyOptions,\n PowChallengeResponse,\n PowVerifyRequest,\n PowVerifyResponse,\n PowSolution,\n LiveAuthConfig,\n LightningStart\n} from './types';\nimport {\n LiveAuthCancelledError,\n LiveAuthTimeoutError,\n LiveAuthNetworkError,\n LiveAuthPowUnsupportedError,\n LiveAuthPowTimeoutError\n} from './errors';\nimport type { PowWorkerResult } from './pow.worker';\n\n// Re-export for consumers\nexport * from './types';\nexport * from './errors';\n\nconst SDK_VERSION = '0.2.0';\n\nexport class LiveAuth {\n private readonly baseUrl: string;\n private readonly headers: HeadersInit;\n\n constructor(private readonly config: LiveAuthConfig) {\n if (!config.publicKey) {\n throw new Error('LiveAuth: publicKey is required');\n }\n\n this.baseUrl = config.baseUrl ?? 'https://api.liveauth.app';\n\n this.headers = {\n 'Content-Type': 'application/json',\n 'X-LW-Public': config.publicKey,\n 'X-LW-SDK-Version': SDK_VERSION\n };\n }\n\n /* ======================================================\n * PUBLIC ENTRYPOINT\n * ====================================================== /\n\n async verify(options: VerifyOptions = {}): Promise<LiveAuthResult> {\n const { \n forceLightning = false, \n onProgress,\n powTimeoutMs = 30_000,\n maxPowIterations = 50_000_000\n } = options;\n\n // Skip PoW if forced to Lightning or PoW not supported\n if (forceLightning) {\n const lightning = await this.startLightning();\n return {\n method: 'lightning',\n lightning,\n diagnostics: { reason: 'forced_lightning' }\n };\n }\n\n if (!this.canUsePow()) {\n const lightning = await this.startLightning();\n return {\n method: 'lightning',\n lightning,\n diagnostics: { reason: 'pow_unsupported' }\n };\n }\n\n const startedAt = performance.now();\n\n try {\n const challenge = await this.getPowChallenge();\n const solution = await this.solvePow(challenge, { \n onProgress, \n timeoutMs: powTimeoutMs,\n maxIterations: maxPowIterations\n });\n\n const verifyRes = await this.verifyPow({\n challengeHex: challenge.challengeHex,\n nonce: solution.nonce,\n hashHex: solution.hashHex,\n expiresAtUnix: challenge.expiresAtUnix,\n difficultyBits: challenge.difficultyBits,\n sig: challenge.sig\n });\n\n if (verifyRes.verified && verifyRes.token) {\n return {\n method: 'pow',\n token: verifyRes.token,\n solveMs: Math.round(performance.now() - startedAt),\n difficultyBits: challenge.difficultyBits\n };\n }\n\n if (verifyRes.fallback === 'lightning') {\n const lightning = await this.startLightning();\n return {\n method: 'lightning',\n lightning,\n diagnostics: { reason: 'pow_server_fallback' }\n };\n }\n\n throw new Error('LiveAuth: verification failed');\n\n } catch (err) {\n // On PoW failure, fall back to Lightning\n if (err instanceof LiveAuthPowTimeoutError \|\| err instanceof LiveAuthPowUnsupportedError) {\n const lightning = await this.startLightning();\n return {\n method: 'lightning',\n lightning,\n diagnostics: { \n reason: 'pow_failed', \n detail: err.message \n }\n };\n }\n throw err;\n }\n }\n\n / ======================================================\n * POW FLOW\n * ====================================================== /\n\n private async getPowChallenge(): Promise<PowChallengeResponse> {\n const res = await this.fetchWithRetry(`${this.baseUrl}/api/public/pow/challenge`, {\n headers: this.headers\n });\n\n if (!res.ok) throw new LiveAuthNetworkError('PoW challenge failed');\n return res.json();\n }\n\n private async verifyPow(req: PowVerifyRequest): Promise<PowVerifyResponse> {\n const res = await this.fetchWithRetry(`${this.baseUrl}/api/public/pow/verify`, {\n method: 'POST',\n headers: this.headers,\n body: JSON.stringify(req)\n });\n\n if (!res.ok) throw new LiveAuthNetworkError('PoW verify failed');\n return res.json();\n }\n\n / ======================================================\n * POW SOLVER (WORKER)\n * ====================================================== /\n\n private solvePow(\n challenge: PowChallengeResponse, \n options: {\n onProgress?: (hashesPerSec: number, iterations: number) => void;\n timeoutMs?: number;\n maxIterations?: number;\n } = {}\n ): Promise<PowSolution> {\n const { onProgress, timeoutMs = 30_000, maxIterations = 50_000_000 } = options;\n\n if (!this.canUsePow()) {\n return Promise.reject(new LiveAuthPowUnsupportedError());\n }\n\n return new Promise((resolve, reject) => {\n const worker = new Worker(\n new URL('./pow.worker.js', import.meta.url),\n { type: 'module' }\n );\n\n const timeoutId = setTimeout(() => {\n worker.terminate();\n reject(new LiveAuthPowTimeoutError(`PoW timed out after ${timeoutMs}ms`));\n }, timeoutMs);\n\n worker.onmessage = (e: MessageEvent<PowWorkerResult>) => {\n const data = e.data;\n\n if (data.type === 'progress') {\n onProgress?.(data.hashesPerSec ?? 0, data.iterations ?? 0);\n return;\n }\n\n if (data.type === 'timeout') {\n clearTimeout(timeoutId);\n worker.terminate();\n reject(new LiveAuthPowTimeoutError(`PoW hit max iterations (${maxIterations})`));\n return;\n }\n\n if (data.type === 'solution' && data.nonce !== undefined && data.hashHex) {\n clearTimeout(timeoutId);\n worker.terminate();\n resolve({ nonce: data.nonce, hashHex: data.hashHex });\n return;\n }\n };\n\n worker.onerror = e => {\n clearTimeout(timeoutId);\n worker.terminate();\n reject(new LiveAuthPowUnsupportedError(`Worker error: ${e.message}`));\n };\n\n worker.postMessage({\n projectPublicKey: challenge.projectPublicKey,\n challengeHex: challenge.challengeHex,\n targetHex: challenge.targetHex,\n maxIterations\n });\n });\n }\n\n / ======================================================\n * LIGHTNING FALLBACK\n * ====================================================== /\n\n private async startLightning(): Promise<LightningStart> {\n const res = await this.fetchWithRetry(`${this.baseUrl}/api/public/auth/start`, {\n method: 'POST',\n headers: this.headers,\n body: JSON.stringify({ userHint: 'browser' })\n });\n\n if (!res.ok) {\n throw new LiveAuthNetworkError('Lightning auth start failed');\n }\n\n return res.json();\n }\n\n async pollLightning(\n sessionId: string,\n options?: {\n timeoutMs?: number;\n signal?: AbortSignal;\n intervalMs?: number;\n }\n ): Promise<string> {\n const timeoutMs = options?.timeoutMs ?? 5 60_000; // 5 min\n const intervalMs = options?.intervalMs ?? 2000;\n const externalSignal = options?.signal;\n\n const controller = new AbortController();\n const signal = controller.signal;\n\n // If caller passes a signal, bridge it\n if (externalSignal) {\n if (externalSignal.aborted) {\n throw new LiveAuthCancelledError();\n }\n\n externalSignal.addEventListener('abort', () => {\n controller.abort();\n });\n }\n\n // Timeout enforcement\n const timeoutId = setTimeout(() => {\n controller.abort();\n }, timeoutMs);\n\n try {\n while (true) {\n if (signal.aborted) {\n throw externalSignal?.aborted\n ? new LiveAuthCancelledError()\n : new LiveAuthTimeoutError();\n }\n\n const res = await fetch(\n `${this.baseUrl}/api/public/auth/confirm`,\n {\n method: 'POST',\n headers: this.headers,\n body: JSON.stringify({ sessionId }),\n signal\n }\n );\n\n if (!res.ok) {\n throw new LiveAuthNetworkError('Lightning confirm failed');\n }\n\n const json = await res.json();\n\n if (json.verified && json.token) {\n return json.token;\n }\n\n await sleep(intervalMs);\n }\n } finally {\n clearTimeout(timeoutId);\n }\n }\n\n /* ======================================================\n * UTILITIES\n * ====================================================== /\n\n private canUsePow(): boolean {\n try {\n // SSR / Node guard\n if (typeof window === 'undefined') return false;\n\n // Worker support\n if (typeof Worker === 'undefined') return false;\n\n // Basic URL support (needed for module workers)\n if (typeof URL === 'undefined') return false;\n\n // Crypto.subtle required for SHA-256\n if (typeof crypto === 'undefined' \|\| !crypto.subtle) return false;\n\n return true;\n } catch {\n return false;\n }\n }\n\n private async fetchWithRetry(\n url: string,\n init?: RequestInit,\n retries = 2,\n backoffMs = 500\n ): Promise<Response> {\n let lastError: Error \| undefined;\n\n for (let attempt = 0; attempt <= retries; attempt++) {\n try {\n const res = await fetch(url, init);\n return res;\n } catch (err) {\n lastError = err instanceof Error ? err : new Error(String(err));\n \n if (attempt < retries) {\n await sleep(backoffMs Math.pow(2, attempt));\n }\n }\n }\n\n throw new LiveAuthNetworkError(\n `Request failed after ${retries + 1} attempts`,\n lastError\n );\n }\n}\n\n/* ======================================================\n * UTILS\n * ====================================================== */\n\nconst sleep = (ms: number) =>\n new Promise(resolve => setTimeout(resolve, ms));\n","export class LiveAuthTimeoutError extends Error {\n constructor(message = 'LiveAuth verification timed out') {\n super(message);\n this.name = 'LiveAuthTimeoutError';\n }\n}\n\nexport class LiveAuthCancelledError extends Error {\n constructor(message = 'LiveAuth verification cancelled') {\n super(message);\n this.name = 'LiveAuthCancelledError';\n }\n}\n\nexport class LiveAuthNetworkError extends Error {\n constructor(message = 'LiveAuth network request failed', public readonly cause?: Error) {\n super(message);\n this.name = 'LiveAuthNetworkError';\n }\n}\n\nexport class LiveAuthPowUnsupportedError extends Error {\n constructor(message = 'Proof-of-Work is not supported in this environment') {\n super(message);\n this.name = 'LiveAuthPowUnsupportedError';\n }\n}\n\nexport class LiveAuthPowTimeoutError extends Error {\n constructor(message = 'Proof-of-Work timed out') {\n super(message);\n this.name = 'LiveAuthPowTimeoutError';\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAO,IAAM,uBAAN,cAAmC,MAAM;AAAA,EAC5C,YAAY,UAAU,mCAAmC;AACrD,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EAChB;AACJ;AAEO,IAAM,yBAAN,cAAqC,MAAM;AAAA,EAC9C,YAAY,UAAU,mCAAmC;AACrD,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EAChB;AACJ;AAEO,IAAM,uBAAN,cAAmC,MAAM;AAAA,EAC5C,YAAY,UAAU,mCAAmD,OAAe;AACpF,UAAM,OAAO;AADwD;AAErE,SAAK,OAAO;AAAA,EAChB;AACJ;AAEO,IAAM,8BAAN,cAA0C,MAAM;AAAA,EACnD,YAAY,UAAU,sDAAsD;AACxE,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EAChB;AACJ;AAEO,IAAM,0BAAN,cAAsC,MAAM;AAAA,EAC/C,YAAY,UAAU,2BAA2B;AAC7C,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EAChB;AACJ;;;ADjCA;AAuBA,IAAM,cAAc;AAEb,IAAM,WAAN,MAAe;AAAA,EAIlB,YAA6B,QAAwB;AAAxB;AACzB,QAAI,CAAC,OAAO,WAAW;AACnB,YAAM,IAAI,MAAM,iCAAiC;AAAA,IACrD;AAEA,SAAK,UAAU,OAAO,WAAW;AAEjC,SAAK,UAAU;AAAA,MACX,gBAAgB;AAAA,MAChB,eAAe,OAAO;AAAA,MACtB,oBAAoB;AAAA,IACxB;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,OAAO,UAAyB,CAAC,GAA4B;AAC/D,UAAM;AAAA,MACF,iBAAiB;AAAA,MACjB;AAAA,MACA,eAAe;AAAA,MACf,mBAAmB;AAAA,IACvB,IAAI;AAGJ,QAAI,gBAAgB;AAChB,YAAM,YAAY,MAAM,KAAK,eAAe;AAC5C,aAAO;AAAA,QACH,QAAQ;AAAA,QACR;AAAA,QACA,aAAa,EAAE,QAAQ,mBAAmB;AAAA,MAC9C;AAAA,IACJ;AAEA,QAAI,CAAC,KAAK,UAAU,GAAG;AACnB,YAAM,YAAY,MAAM,KAAK,eAAe;AAC5C,aAAO;AAAA,QACH,QAAQ;AAAA,QACR;AAAA,QACA,aAAa,EAAE,QAAQ,kBAAkB;AAAA,MAC7C;AAAA,IACJ;AAEA,UAAM,YAAY,YAAY,IAAI;AAElC,QAAI;AACA,YAAM,YAAY,MAAM,KAAK,gBAAgB;AAC7C,YAAM,WAAW,MAAM,KAAK,SAAS,WAAW;AAAA,QAC5C;AAAA,QACA,WAAW;AAAA,QACX,eAAe;AAAA,MACnB,CAAC;AAED,YAAM,YAAY,MAAM,KAAK,UAAU;AAAA,QACnC,cAAc,UAAU;AAAA,QACxB,OAAO,SAAS;AAAA,QAChB,SAAS,SAAS;AAAA,QAClB,eAAe,UAAU;AAAA,QACzB,gBAAgB,UAAU;AAAA,QAC1B,KAAK,UAAU;AAAA,MACnB,CAAC;AAED,UAAI,UAAU,YAAY,UAAU,OAAO;AACvC,eAAO;AAAA,UACH,QAAQ;AAAA,UACR,OAAO,UAAU;AAAA,UACjB,SAAS,KAAK,MAAM,YAAY,IAAI,IAAI,SAAS;AAAA,UACjD,gBAAgB,UAAU;AAAA,QAC9B;AAAA,MACJ;AAEA,UAAI,UAAU,aAAa,aAAa;AACpC,cAAM,YAAY,MAAM,KAAK,eAAe;AAC5C,eAAO;AAAA,UACH,QAAQ;AAAA,UACR;AAAA,UACA,aAAa,EAAE,QAAQ,sBAAsB;AAAA,QACjD;AAAA,MACJ;AAEA,YAAM,IAAI,MAAM,+BAA+B;AAAA,IAEnD,SAAS,KAAK;AAEV,UAAI,eAAe,2BAA2B,eAAe,6BAA6B;AACtF,cAAM,YAAY,MAAM,KAAK,eAAe;AAC5C,eAAO;AAAA,UACH,QAAQ;AAAA,UACR;AAAA,UACA,aAAa;AAAA,YACT,QAAQ;AAAA,YACR,QAAQ,IAAI;AAAA,UAChB;AAAA,QACJ;AAAA,MACJ;AACA,YAAM;AAAA,IACV;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA,EAMA,MAAc,kBAAiD;AAC3D,UAAM,MAAM,MAAM,KAAK,eAAe,GAAG,KAAK,OAAO,6BAA6B;AAAA,MAC9E,SAAS,KAAK;AAAA,IAClB,CAAC;AAED,QAAI,CAAC,IAAI,GAAI,OAAM,IAAI,qBAAqB,sBAAsB;AAClE,WAAO,IAAI,KAAK;AAAA,EACpB;AAAA,EAEA,MAAc,UAAU,KAAmD;AACvE,UAAM,MAAM,MAAM,KAAK,eAAe,GAAG,KAAK,OAAO,0BAA0B;AAAA,MAC3E,QAAQ;AAAA,MACR,SAAS,KAAK;AAAA,MACd,MAAM,KAAK,UAAU,GAAG;AAAA,IAC5B,CAAC;AAED,QAAI,CAAC,IAAI,GAAI,OAAM,IAAI,qBAAqB,mBAAmB;AAC/D,WAAO,IAAI,KAAK;AAAA,EACpB;AAAA;AAAA;AAAA;AAAA,EAMQ,SACJ,WACA,UAII,CAAC,GACe;AACpB,UAAM,EAAE,YAAY,YAAY,KAAQ,gBAAgB,IAAW,IAAI;AAEvE,QAAI,CAAC,KAAK,UAAU,GAAG;AACnB,aAAO,QAAQ,OAAO,IAAI,4BAA4B,CAAC;AAAA,IAC3D;AAEA,WAAO,IAAI,QAAQ,CAAC,SAAS,WAAW;AACpC,YAAM,SAAS,IAAI;AAAA,QACf,IAAI,IAAI,mBAAmB,YAAY,GAAG;AAAA,QAC1C,EAAE,MAAM,SAAS;AAAA,MACrB;AAEA,YAAM,YAAY,WAAW,MAAM;AAC/B,eAAO,UAAU;AACjB,eAAO,IAAI,wBAAwB,uBAAuB,SAAS,IAAI,CAAC;AAAA,MAC5E,GAAG,SAAS;AAEZ,aAAO,YAAY,CAAC,MAAqC;AACrD,cAAM,OAAO,EAAE;AAEf,YAAI,KAAK,SAAS,YAAY;AAC1B,uBAAa,KAAK,gBAAgB,GAAG,KAAK,cAAc,CAAC;AACzD;AAAA,QACJ;AAEA,YAAI,KAAK,SAAS,WAAW;AACzB,uBAAa,SAAS;AACtB,iBAAO,UAAU;AACjB,iBAAO,IAAI,wBAAwB,2BAA2B,aAAa,GAAG,CAAC;AAC/E;AAAA,QACJ;AAEA,YAAI,KAAK,SAAS,cAAc,KAAK,UAAU,UAAa,KAAK,SAAS;AACtE,uBAAa,SAAS;AACtB,iBAAO,UAAU;AACjB,kBAAQ,EAAE,OAAO,KAAK,OAAO,SAAS,KAAK,QAAQ,CAAC;AACpD;AAAA,QACJ;AAAA,MACJ;AAEA,aAAO,UAAU,OAAK;AAClB,qBAAa,SAAS;AACtB,eAAO,UAAU;AACjB,eAAO,IAAI,4BAA4B,iBAAiB,EAAE,OAAO,EAAE,CAAC;AAAA,MACxE;AAEA,aAAO,YAAY;AAAA,QACf,kBAAkB,UAAU;AAAA,QAC5B,cAAc,UAAU;AAAA,QACxB,WAAW,UAAU;AAAA,QACrB;AAAA,MACJ,CAAC;AAAA,IACL,CAAC;AAAA,EACL;AAAA;AAAA;AAAA;AAAA,EAMA,MAAc,iBAA0C;AACpD,UAAM,MAAM,MAAM,KAAK,eAAe,GAAG,KAAK,OAAO,0BAA0B;AAAA,MAC3E,QAAQ;AAAA,MACR,SAAS,KAAK;AAAA,MACd,MAAM,KAAK,UAAU,EAAE,UAAU,UAAU,CAAC;AAAA,IAChD,CAAC;AAED,QAAI,CAAC,IAAI,IAAI;AACT,YAAM,IAAI,qBAAqB,6BAA6B;AAAA,IAChE;AAEA,WAAO,IAAI,KAAK;AAAA,EACpB;AAAA,EAEA,MAAM,cACF,WACA,SAKe;AACf,UAAM,YAAY,SAAS,aAAa,IAAI;AAC5C,UAAM,aAAa,SAAS,cAAc;AAC1C,UAAM,iBAAiB,SAAS;AAEhC,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,SAAS,WAAW;AAG1B,QAAI,gBAAgB;AAChB,UAAI,eAAe,SAAS;AACxB,cAAM,IAAI,uBAAuB;AAAA,MACrC;AAEA,qBAAe,iBAAiB,SAAS,MAAM;AAC3C,mBAAW,MAAM;AAAA,MACrB,CAAC;AAAA,IACL;AAGA,UAAM,YAAY,WAAW,MAAM;AAC/B,iBAAW,MAAM;AAAA,IACrB,GAAG,SAAS;AAEZ,QAAI;AACA,aAAO,MAAM;AACT,YAAI,OAAO,SAAS;AAChB,gBAAM,gBAAgB,UAChB,IAAI,uBAAuB,IAC3B,IAAI,qBAAqB;AAAA,QACnC;AAEA,cAAM,MAAM,MAAM;AAAA,UACd,GAAG,KAAK,OAAO;AAAA,UACf;AAAA,YACI,QAAQ;AAAA,YACR,SAAS,KAAK;AAAA,YACd,MAAM,KAAK,UAAU,EAAE,UAAU,CAAC;AAAA,YAClC;AAAA,UACJ;AAAA,QACJ;AAEA,YAAI,CAAC,IAAI,IAAI;AACT,gBAAM,IAAI,qBAAqB,0BAA0B;AAAA,QAC7D;AAEA,cAAM,OAAO,MAAM,IAAI,KAAK;AAE5B,YAAI,KAAK,YAAY,KAAK,OAAO;AAC7B,iBAAO,KAAK;AAAA,QAChB;AAEA,cAAM,MAAM,UAAU;AAAA,MAC1B;AAAA,IACJ,UAAE;AACE,mBAAa,SAAS;AAAA,IAC1B;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA,EAMQ,YAAqB;AACzB,QAAI;AAEA,UAAI,OAAO,WAAW,YAAa,QAAO;AAG1C,UAAI,OAAO,WAAW,YAAa,QAAO;AAG1C,UAAI,OAAO,QAAQ,YAAa,QAAO;AAGvC,UAAI,OAAO,WAAW,eAAe,CAAC,OAAO,OAAQ,QAAO;AAE5D,aAAO;AAAA,IACX,QAAQ;AACJ,aAAO;AAAA,IACX;AAAA,EACJ;AAAA,EAEA,MAAc,eACV,KACA,MACA,UAAU,GACV,YAAY,KACK;AACjB,QAAI;AAEJ,aAAS,UAAU,GAAG,WAAW,SAAS,WAAW;AACjD,UAAI;AACA,cAAM,MAAM,MAAM,MAAM,KAAK,IAAI;AACjC,eAAO;AAAA,MACX,SAAS,KAAK;AACV,oBAAY,eAAe,QAAQ,MAAM,IAAI,MAAM,OAAO,GAAG,CAAC;AAE9D,YAAI,UAAU,SAAS;AACnB,gBAAM,MAAM,YAAY,KAAK,IAAI,GAAG,OAAO,CAAC;AAAA,QAChD;AAAA,MACJ;AAAA,IACJ;AAEA,UAAM,IAAI;AAAA,MACN,wBAAwB,UAAU,CAAC;AAAA,MACnC;AAAA,IACJ;AAAA,EACJ;AACJ;AAMA,IAAM,QAAQ,CAAC,OACX,IAAI,QAAQ,aAAW,WAAW,SAAS,EAAE,CAAC;","names":[]}