@memberjunction/server 3.4.0 → 4.1.0

package/dist/rest/OAuthCallbackHandler.js

@@ -0,0 +1,634 @@
+/**
+ * @fileoverview OAuth Callback Handler for MCP OAuth flows
+ *
+ * Handles OAuth authorization callbacks from external authorization servers.
+ * This endpoint is unauthenticated since it's called by the auth server after user consent.
+ *
+ * Endpoints:
+ * - GET /api/v1/oauth/callback - Authorization callback
+ * - GET /api/v1/oauth/status/:stateParameter - Poll for authorization status (authenticated)
+ * - POST /api/v1/oauth/initiate - Initiate OAuth flow (authenticated)
+ *
+ * @module @memberjunction/server/rest/OAuthCallbackHandler
+ */
+import express from 'express';
+import { LogError, LogStatus, RunView } from '@memberjunction/core';
+import { UserCache } from '@memberjunction/sqlserver-dataprovider';
+import { OAuthManager, MCPClientManager } from '@memberjunction/ai-mcp-client';
+/** Entity name for MCP Server Connections */
+const ENTITY_MCP_SERVER_CONNECTIONS = 'MJ: MCP Server Connections';
+/** Entity name for MCP Servers */
+const ENTITY_MCP_SERVERS = 'MJ: MCP Servers';
+/** Entity name for OAuth Authorization States */
+const ENTITY_OAUTH_AUTHORIZATION_STATES = 'MJ: O Auth Authorization States';
+/**
+ * Handles OAuth callbacks and related endpoints for MCP server authentication.
+ *
+ * The callback endpoint is unauthenticated because it's called by external auth servers.
+ * It uses the state parameter to look up the authorization context and validate the flow.
+ *
+ * @example
+ * ```typescript
+ * const oauthHandler = new OAuthCallbackHandler({
+ *     publicUrl: 'https://api.example.com'
+ * });
+ *
+ * // Mount unauthenticated callback route
+ * app.use('/api/v1/oauth', oauthHandler.getCallbackRouter());
+ *
+ * // Mount authenticated routes
+ * app.use('/api/v1/oauth', authMiddleware, oauthHandler.getAuthenticatedRouter());
+ * ```
+ */
+export class OAuthCallbackHandler {
+    constructor(options) {
+        this.options = {
+            successRedirectUrl: `${options.publicUrl}/oauth/success`,
+            errorRedirectUrl: `${options.publicUrl}/oauth/error`,
+            ...options
+        };
+        this.oauthManager = new OAuthManager();
+        this.callbackRouter = express.Router();
+        this.authenticatedRouter = express.Router();
+        this.setupRoutes();
+    }
+    /**
+     * Sets up all routes for OAuth handling.
+     */
+    setupRoutes() {
+        // Unauthenticated callback route
+        this.callbackRouter.get('/callback', this.handleCallback.bind(this));
+        // Success and error pages (unauthenticated - user is redirected here after OAuth)
+        this.callbackRouter.get('/success', this.handleSuccessPage.bind(this));
+        this.callbackRouter.get('/error', this.handleErrorPage.bind(this));
+        // Authenticated routes
+        this.authenticatedRouter.get('/status/:stateParameter', this.getStatus.bind(this));
+        this.authenticatedRouter.post('/initiate', this.initiateFlow.bind(this));
+        this.authenticatedRouter.post('/exchange', this.handleExchange.bind(this));
+    }
+    /**
+     * Renders a success page after OAuth authorization completes.
+     */
+    handleSuccessPage(req, res) {
+        const { state, connectionId } = req.query;
+        res.status(200).send(`
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Authorization Successful</title>
+    <style>
+        body { font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; display: flex; justify-content: center; align-items: center; min-height: 100vh; margin: 0; background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); }
+        .container { background: white; padding: 3rem; border-radius: 1rem; box-shadow: 0 20px 60px rgba(0,0,0,0.3); text-align: center; max-width: 400px; }
+        .icon { font-size: 4rem; margin-bottom: 1rem; }
+        h1 { color: #22c55e; margin: 0 0 1rem; }
+        p { color: #64748b; margin: 0 0 1.5rem; line-height: 1.6; }
+        .details { background: #f1f5f9; padding: 1rem; border-radius: 0.5rem; font-size: 0.875rem; color: #475569; word-break: break-all; }
+    </style>
+</head>
+<body>
+    <div class="container">
+        <div class="icon">✅</div>
+        <h1>Authorization Successful</h1>
+        <p>Your MCP server connection has been authorized. You can close this window and return to MemberJunction.</p>
+        ${connectionId ? `<div class="details">Connection ID: ${connectionId}</div>` : ''}
+    </div>
+</body>
+</html>
+        `);
+    }
+    /**
+     * Renders an error page when OAuth authorization fails.
+     */
+    handleErrorPage(req, res) {
+        const { error, error_description } = req.query;
+        const errorCode = error ? String(error) : 'unknown_error';
+        const errorMessage = error_description ? String(error_description) : 'An error occurred during authorization.';
+        res.status(200).send(`
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Authorization Failed</title>
+    <style>
+        body { font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; display: flex; justify-content: center; align-items: center; min-height: 100vh; margin: 0; background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); }
+        .container { background: white; padding: 3rem; border-radius: 1rem; box-shadow: 0 20px 60px rgba(0,0,0,0.3); text-align: center; max-width: 400px; }
+        .icon { font-size: 4rem; margin-bottom: 1rem; }
+        h1 { color: #ef4444; margin: 0 0 1rem; }
+        p { color: #64748b; margin: 0 0 1.5rem; line-height: 1.6; }
+        .error-code { background: #fef2f2; color: #991b1b; padding: 0.5rem 1rem; border-radius: 0.5rem; font-family: monospace; display: inline-block; margin-bottom: 1rem; }
+        .error-message { background: #f1f5f9; padding: 1rem; border-radius: 0.5rem; font-size: 0.875rem; color: #475569; }
+    </style>
+</head>
+<body>
+    <div class="container">
+        <div class="icon">❌</div>
+        <h1>Authorization Failed</h1>
+        <div class="error-code">${errorCode}</div>
+        <div class="error-message">${errorMessage}</div>
+        <p style="margin-top: 1.5rem;">Please close this window and try again.</p>
+    </div>
+</body>
+</html>
+        `);
+    }
+    /**
+     * Handles the OAuth authorization callback.
+     *
+     * This endpoint is unauthenticated - the auth server redirects here after user consent.
+     * We validate the state parameter and exchange the code for tokens.
+     *
+     * @param req - Express request
+     * @param res - Express response
+     */
+    async handleCallback(req, res) {
+        LogStatus(`[OAuth Callback] Received callback: ${req.originalUrl}`);
+        const { code, state, error, error_description } = req.query;
+        LogStatus(`[OAuth Callback] Parameters - state: ${state}, code: ${code ? 'present' : 'missing'}, error: ${error || 'none'}`);
+        // Validate state parameter is present
+        if (!state || typeof state !== 'string') {
+            this.redirectToError(res, 'invalid_request', 'Missing state parameter');
+            return;
+        }
+        try {
+            // Get system user for initial lookup
+            const systemUser = this.getSystemUser();
+            if (!systemUser) {
+                LogError('[OAuth Callback] System user not available');
+                this.redirectToError(res, 'server_error', 'System configuration error');
+                return;
+            }
+            // Look up the authorization state to get the user context
+            const authState = await this.loadAuthorizationState(state, systemUser);
+            if (!authState) {
+                this.redirectToError(res, 'invalid_state', 'Authorization state not found or expired');
+                return;
+            }
+            // Get the actual user from cache
+            const contextUser = UserCache.Users.find(u => u.ID === authState.userId);
+            if (!contextUser) {
+                LogError(`[OAuth Callback] User ${authState.userId} not found in cache`);
+                this.redirectToError(res, 'server_error', 'User context not found', authState.frontendReturnUrl);
+                return;
+            }
+            // Handle error from authorization server
+            if (error) {
+                const errorMessage = error_description ? String(error_description) : 'Authorization denied';
+                await this.oauthManager.handleAuthorizationError(state, String(error), errorMessage, contextUser);
+                this.redirectToError(res, String(error), errorMessage, authState.frontendReturnUrl);
+                return;
+            }
+            // Validate authorization code is present
+            if (!code || typeof code !== 'string') {
+                this.redirectToError(res, 'invalid_request', 'Missing authorization code', authState.frontendReturnUrl);
+                return;
+            }
+            // Exchange code for tokens
+            const result = await this.oauthManager.completeAuthorizationFlow(state, code, contextUser);
+            if (result.success) {
+                LogStatus(`[OAuth Callback] Authorization completed for state ${state}`);
+                // Notify MCPClientManager that authorization has completed
+                MCPClientManager.Instance.notifyOAuthAuthorizationCompleted(authState.connectionId, {
+                    stateParameter: state,
+                    completedAt: new Date().toISOString()
+                });
+                this.redirectToSuccess(res, state, authState.connectionId, authState.frontendReturnUrl);
+            }
+            else {
+                LogError(`[OAuth Callback] Authorization failed: ${result.errorMessage}`);
+                this.redirectToError(res, result.errorCode ?? 'authorization_failed', result.errorMessage ?? 'Authorization failed', authState.frontendReturnUrl);
+            }
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            LogError(`[OAuth Callback] Unexpected error: ${errorMessage}`);
+            this.redirectToError(res, 'server_error', 'An unexpected error occurred');
+        }
+    }
+    /**
+     * Gets the status of an OAuth authorization flow.
+     *
+     * Authenticated endpoint for polling authorization status.
+     *
+     * @param req - Express request
+     * @param res - Express response
+     */
+    async getStatus(req, res) {
+        const stateParam = req.params.stateParameter;
+        const stateParameter = Array.isArray(stateParam) ? stateParam[0] : stateParam || '';
+        const contextUser = req['mjUser'];
+        if (!contextUser) {
+            res.status(401).json({
+                success: false,
+                errorMessage: 'Authentication required'
+            });
+            return;
+        }
+        try {
+            const authState = await this.loadAuthorizationState(stateParameter, contextUser);
+            if (!authState) {
+                res.status(404).json({
+                    success: false,
+                    errorCode: 'not_found',
+                    errorMessage: 'Authorization state not found'
+                });
+                return;
+            }
+            // Verify user owns this state
+            if (authState.userId !== contextUser.ID) {
+                res.status(403).json({
+                    success: false,
+                    errorCode: 'forbidden',
+                    errorMessage: 'Access denied'
+                });
+                return;
+            }
+            // Map status
+            let status;
+            switch (authState.status) {
+                case 'Pending':
+                    status = new Date() >= authState.expiresAt ? 'expired' : 'pending';
+                    break;
+                case 'Completed':
+                    status = 'completed';
+                    break;
+                case 'Failed':
+                    status = 'failed';
+                    break;
+                case 'Expired':
+                    status = 'expired';
+                    break;
+                default:
+                    status = 'pending';
+            }
+            res.json({
+                status,
+                connectionId: authState.connectionId,
+                completedAt: authState.completedAt?.toISOString(),
+                errorCode: authState.errorCode,
+                errorMessage: authState.errorDescription,
+                isRetryable: status === 'failed' || status === 'expired'
+            });
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            LogError(`[OAuth Status] Error: ${errorMessage}`);
+            res.status(500).json({
+                success: false,
+                errorCode: 'server_error',
+                errorMessage: 'Failed to get authorization status'
+            });
+        }
+    }
+    /**
+     * Initiates a new OAuth authorization flow.
+     *
+     * Authenticated endpoint for starting OAuth authorization.
+     *
+     * @param req - Express request
+     * @param res - Express response
+     */
+    async initiateFlow(req, res) {
+        const { connectionId, additionalScopes, frontendReturnUrl } = req.body;
+        const contextUser = req['mjUser'];
+        if (!contextUser) {
+            res.status(401).json({
+                success: false,
+                errorMessage: 'Authentication required'
+            });
+            return;
+        }
+        if (!connectionId) {
+            res.status(400).json({
+                success: false,
+                errorCode: 'invalid_request',
+                errorMessage: 'connectionId is required'
+            });
+            return;
+        }
+        try {
+            // Load connection and server config
+            const config = await this.loadConnectionConfig(connectionId, contextUser);
+            if (!config) {
+                res.status(404).json({
+                    success: false,
+                    errorCode: 'not_found',
+                    errorMessage: 'Connection not found'
+                });
+                return;
+            }
+            // Build OAuth config
+            const oauthConfig = {
+                OAuthIssuerURL: config.OAuthIssuerURL,
+                OAuthScopes: additionalScopes
+                    ? `${config.OAuthScopes ?? ''} ${additionalScopes}`.trim()
+                    : config.OAuthScopes,
+                OAuthMetadataCacheTTLMinutes: config.OAuthMetadataCacheTTLMinutes,
+                OAuthClientID: config.OAuthClientID,
+                OAuthClientSecretEncrypted: config.OAuthClientSecretEncrypted,
+                OAuthRequirePKCE: config.OAuthRequirePKCE
+            };
+            if (!oauthConfig.OAuthIssuerURL) {
+                res.status(400).json({
+                    success: false,
+                    errorCode: 'invalid_configuration',
+                    errorMessage: 'OAuth is not configured for this server'
+                });
+                return;
+            }
+            // Initiate the flow with optional frontend return URL
+            const result = await this.oauthManager.initiateAuthorizationFlow(connectionId, config.serverId, oauthConfig, this.options.publicUrl, contextUser, frontendReturnUrl ? { frontendReturnUrl: String(frontendReturnUrl) } : undefined);
+            if (result.success) {
+                res.json({
+                    success: true,
+                    authorizationUrl: result.authorizationUrl,
+                    stateParameter: result.stateParameter,
+                    expiresAt: result.expiresAt?.toISOString(),
+                    message: 'Please redirect the user to the authorization URL'
+                });
+            }
+            else {
+                res.status(400).json({
+                    success: false,
+                    errorCode: 'initiation_failed',
+                    errorMessage: result.errorMessage
+                });
+            }
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            LogError(`[OAuth Initiate] Error: ${errorMessage}`);
+            res.status(500).json({
+                success: false,
+                errorCode: 'server_error',
+                errorMessage: 'Failed to initiate OAuth flow'
+            });
+        }
+    }
+    /**
+     * Exchanges an authorization code for tokens.
+     *
+     * This endpoint is used when the frontend handles the OAuth callback.
+     * The frontend receives the code and state from the OAuth provider redirect,
+     * then calls this authenticated endpoint to complete the token exchange.
+     *
+     * @param req - Express request with { code, state } in body
+     * @param res - Express response
+     */
+    async handleExchange(req, res) {
+        const { code, state } = req.body;
+        const contextUser = req['mjUser'];
+        if (!contextUser) {
+            res.status(401).json({
+                success: false,
+                errorCode: 'unauthorized',
+                errorMessage: 'Authentication required'
+            });
+            return;
+        }
+        if (!code || typeof code !== 'string') {
+            res.status(400).json({
+                success: false,
+                errorCode: 'invalid_request',
+                errorMessage: 'Missing or invalid code parameter'
+            });
+            return;
+        }
+        if (!state || typeof state !== 'string') {
+            res.status(400).json({
+                success: false,
+                errorCode: 'invalid_request',
+                errorMessage: 'Missing or invalid state parameter'
+            });
+            return;
+        }
+        try {
+            // Load the authorization state to verify user ownership
+            const authState = await this.loadAuthorizationState(state, contextUser);
+            if (!authState) {
+                res.status(404).json({
+                    success: false,
+                    errorCode: 'state_not_found',
+                    errorMessage: 'Authorization state not found or expired'
+                });
+                return;
+            }
+            // Verify the authenticated user owns this authorization state
+            if (authState.userId !== contextUser.ID) {
+                LogError(`[OAuth Exchange] User ${contextUser.ID} attempted to exchange code for state owned by ${authState.userId}`);
+                res.status(403).json({
+                    success: false,
+                    errorCode: 'forbidden',
+                    errorMessage: 'You are not authorized to complete this authorization flow'
+                });
+                return;
+            }
+            // Exchange code for tokens using OAuthManager
+            const result = await this.oauthManager.completeAuthorizationFlow(state, code, contextUser);
+            if (result.success) {
+                LogStatus(`[OAuth Exchange] Successfully exchanged code for connection ${authState.connectionId}`);
+                // Notify MCPClientManager that authorization has completed
+                MCPClientManager.Instance.notifyOAuthAuthorizationCompleted(authState.connectionId, {
+                    stateParameter: state,
+                    completedAt: new Date().toISOString()
+                });
+                res.json({
+                    success: true,
+                    connectionId: authState.connectionId
+                });
+            }
+            else {
+                LogError(`[OAuth Exchange] Token exchange failed: ${result.errorMessage}`);
+                res.status(400).json({
+                    success: false,
+                    errorCode: result.errorCode ?? 'exchange_failed',
+                    errorMessage: result.errorMessage ?? 'Failed to exchange authorization code for tokens',
+                    isRetryable: result.isRetryable ?? false
+                });
+            }
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            LogError(`[OAuth Exchange] Unexpected error: ${errorMessage}`);
+            res.status(500).json({
+                success: false,
+                errorCode: 'server_error',
+                errorMessage: 'An unexpected error occurred during token exchange'
+            });
+        }
+    }
+    // ========================================
+    // Helper Methods
+    // ========================================
+    /**
+     * Gets the system user from cache.
+     */
+    getSystemUser() {
+        try {
+            return UserCache.Instance.GetSystemUser();
+        }
+        catch {
+            return null;
+        }
+    }
+    /**
+     * Loads authorization state from database.
+     */
+    async loadAuthorizationState(stateParameter, contextUser) {
+        try {
+            const rv = new RunView();
+            const result = await rv.RunView({
+                EntityName: ENTITY_OAUTH_AUTHORIZATION_STATES,
+                ExtraFilter: `StateParameter='${stateParameter.replace(/'/g, "''")}'`,
+                Fields: ['MCPServerConnectionID', 'UserID', 'Status', 'ErrorCode', 'ErrorDescription', 'ExpiresAt', 'CompletedAt', 'FrontendReturnURL'],
+                ResultType: 'simple'
+            }, contextUser);
+            if (!result.Success || !result.Results || result.Results.length === 0) {
+                return null;
+            }
+            const record = result.Results[0];
+            return {
+                connectionId: record.MCPServerConnectionID,
+                userId: record.UserID,
+                status: record.Status,
+                errorCode: record.ErrorCode ?? undefined,
+                errorDescription: record.ErrorDescription ?? undefined,
+                expiresAt: new Date(record.ExpiresAt),
+                completedAt: record.CompletedAt ? new Date(record.CompletedAt) : undefined,
+                frontendReturnUrl: record.FrontendReturnURL ?? undefined
+            };
+        }
+        catch (error) {
+            LogError(`[OAuth Callback] Failed to load authorization state: ${error}`);
+            return null;
+        }
+    }
+    /**
+     * Loads connection and server OAuth configuration.
+     */
+    async loadConnectionConfig(connectionId, contextUser) {
+        try {
+            const rv = new RunView();
+            // Get connection to get server ID
+            const connResult = await rv.RunView({
+                EntityName: ENTITY_MCP_SERVER_CONNECTIONS,
+                ExtraFilter: `ID='${connectionId}'`,
+                Fields: ['MCPServerID'],
+                ResultType: 'simple'
+            }, contextUser);
+            if (!connResult.Success || !connResult.Results || connResult.Results.length === 0) {
+                return null;
+            }
+            const serverId = connResult.Results[0].MCPServerID;
+            // Get server OAuth config
+            const serverResult = await rv.RunView({
+                EntityName: ENTITY_MCP_SERVERS,
+                ExtraFilter: `ID='${serverId}'`,
+                Fields: [
+                    'OAuthIssuerURL', 'OAuthScopes', 'OAuthMetadataCacheTTLMinutes',
+                    'OAuthClientID', 'OAuthClientSecretEncrypted', 'OAuthRequirePKCE'
+                ],
+                ResultType: 'simple'
+            }, contextUser);
+            if (!serverResult.Success || !serverResult.Results || serverResult.Results.length === 0) {
+                return null;
+            }
+            const server = serverResult.Results[0];
+            return {
+                serverId,
+                OAuthIssuerURL: server.OAuthIssuerURL ?? undefined,
+                OAuthScopes: server.OAuthScopes ?? undefined,
+                OAuthMetadataCacheTTLMinutes: server.OAuthMetadataCacheTTLMinutes ?? undefined,
+                OAuthClientID: server.OAuthClientID ?? undefined,
+                OAuthClientSecretEncrypted: server.OAuthClientSecretEncrypted ?? undefined,
+                OAuthRequirePKCE: server.OAuthRequirePKCE ?? undefined
+            };
+        }
+        catch (error) {
+            LogError(`[OAuth Callback] Failed to load connection config: ${error}`);
+            return null;
+        }
+    }
+    /**
+     * Redirects to success page with state info.
+     * If a frontend return URL is provided, redirects there instead of the default success page.
+     */
+    redirectToSuccess(res, state, connectionId, frontendReturnUrl) {
+        // If frontend return URL is provided, redirect there with success parameters
+        if (frontendReturnUrl) {
+            try {
+                const url = new URL(frontendReturnUrl);
+                url.searchParams.set('oauth', 'success');
+                url.searchParams.set('state', state);
+                url.searchParams.set('connectionId', connectionId);
+                LogStatus(`[OAuth Callback] Redirecting to frontend URL: ${url.toString()}`);
+                res.redirect(302, url.toString());
+                return;
+            }
+            catch (error) {
+                LogError(`[OAuth Callback] Invalid frontend return URL '${frontendReturnUrl}', falling back to default`);
+                // Fall through to default redirect
+            }
+        }
+        // Default: redirect to built-in success page
+        const url = new URL(this.options.successRedirectUrl);
+        url.searchParams.set('state', state);
+        url.searchParams.set('connectionId', connectionId);
+        res.redirect(302, url.toString());
+    }
+    /**
+     * Redirects to error page with error info.
+     * If a frontend return URL is provided, redirects there instead of the default error page.
+     */
+    redirectToError(res, errorCode, errorMessage, frontendReturnUrl) {
+        // If frontend return URL is provided, redirect there with error parameters
+        if (frontendReturnUrl) {
+            try {
+                const url = new URL(frontendReturnUrl);
+                url.searchParams.set('oauth', 'error');
+                url.searchParams.set('error', errorCode);
+                url.searchParams.set('error_description', errorMessage);
+                LogStatus(`[OAuth Callback] Redirecting to frontend URL with error: ${url.toString()}`);
+                res.redirect(302, url.toString());
+                return;
+            }
+            catch (error) {
+                LogError(`[OAuth Callback] Invalid frontend return URL '${frontendReturnUrl}', falling back to default`);
+                // Fall through to default redirect
+            }
+        }
+        // Default: redirect to built-in error page
+        const url = new URL(this.options.errorRedirectUrl);
+        url.searchParams.set('error', errorCode);
+        url.searchParams.set('error_description', errorMessage);
+        res.redirect(302, url.toString());
+    }
+    /**
+     * Gets the router for unauthenticated callback endpoint.
+     */
+    getCallbackRouter() {
+        return this.callbackRouter;
+    }
+    /**
+     * Gets the router for authenticated OAuth endpoints.
+     */
+    getAuthenticatedRouter() {
+        return this.authenticatedRouter;
+    }
+}
+/**
+ * Creates and configures the OAuth callback handler.
+ *
+ * @param options - Handler configuration
+ * @returns Object with callback and authenticated routers
+ */
+export function createOAuthCallbackHandler(options) {
+    const handler = new OAuthCallbackHandler(options);
+    return {
+        callbackRouter: handler.getCallbackRouter(),
+        authenticatedRouter: handler.getAuthenticatedRouter()
+    };
+}
+//# sourceMappingURL=OAuthCallbackHandler.js.map

package/dist/rest/OAuthCallbackHandler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthCallbackHandler.js","sourceRoot":"","sources":["../../src/rest/OAuthCallbackHandler.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,OAAO,MAAM,SAAS,CAAC;AAC9B,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAY,MAAM,sBAAsB,CAAC;AAC9E,OAAO,EAAE,SAAS,EAAE,MAAM,wCAAwC,CAAC;AACnE,OAAO,EAAE,YAAY,EAAE,gBAAgB,EAAE,MAAM,+BAA+B,CAAC;AAG/E,6CAA6C;AAC7C,MAAM,6BAA6B,GAAG,4BAA4B,CAAC;AAEnE,kCAAkC;AAClC,MAAM,kBAAkB,GAAG,iBAAiB,CAAC;AAE7C,iDAAiD;AACjD,MAAM,iCAAiC,GAAG,iCAAiC,CAAC;AAc5E;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,OAAO,oBAAoB;IAM7B,YAAY,OAAoC;QAC5C,IAAI,CAAC,OAAO,GAAG;YACX,kBAAkB,EAAE,GAAG,OAAO,CAAC,SAAS,gBAAgB;YACxD,gBAAgB,EAAE,GAAG,OAAO,CAAC,SAAS,cAAc;YACpD,GAAG,OAAO;SACb,CAAC;QACF,IAAI,CAAC,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC;QACvC,IAAI,CAAC,cAAc,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;QACvC,IAAI,CAAC,mBAAmB,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;QAC5C,IAAI,CAAC,WAAW,EAAE,CAAC;IACvB,CAAC;IAED;;OAEG;IACK,WAAW;QACf,iCAAiC;QACjC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAErE,kFAAkF;QAClF,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,UAAU,EAAE,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QACvE,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAEnE,uBAAuB;QACvB,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,yBAAyB,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QACnF,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,WAAW,EAAE,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QACzE,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,WAAW,EAAE,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAC/E,CAAC;IAED;;OAEG;IACK,iBAAiB,CAAC,GAAoB,EAAE,GAAqB;QACjE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAC1C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;;;;UAqBnB,YAAY,CAAC,CAAC,CAAC,uCAAuC,YAAY,QAAQ,CAAC,CAAC,CAAC,EAAE;;;;SAIhF,CAAC,CAAC;IACP,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,GAAoB,EAAE,GAAqB;QAC/D,MAAM,EAAE,KAAK,EAAE,iBAAiB,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAC/C,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC;QAC1D,MAAM,YAAY,GAAG,iBAAiB,CAAC,CAAC,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,yCAAyC,CAAC;QAE/G,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;;;;kCAqBK,SAAS;qCACN,YAAY;;;;;SAKxC,CAAC,CAAC;IACP,CAAC;IAED;;;;;;;;OAQG;IACK,KAAK,CAAC,cAAc,CAAC,GAAoB,EAAE,GAAqB;QACpE,SAAS,CAAC,uCAAuC,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC;QACpE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,iBAAiB,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAC5D,SAAS,CAAC,wCAAwC,KAAK,WAAW,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,YAAY,KAAK,IAAI,MAAM,EAAE,CAAC,CAAC;QAE7H,sCAAsC;QACtC,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YACtC,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,iBAAiB,EAAE,yBAAyB,CAAC,CAAC;YACxE,OAAO;QACX,CAAC;QAED,IAAI,CAAC;YACD,qCAAqC;YACrC,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;YACxC,IAAI,CAAC,UAAU,EAAE,CAAC;gBACd,QAAQ,CAAC,4CAA4C,CAAC,CAAC;gBACvD,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,cAAc,EAAE,4BAA4B,CAAC,CAAC;gBACxE,OAAO;YACX,CAAC;YAED,0DAA0D;YAC1D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;YACvE,IAAI,CAAC,SAAS,EAAE,CAAC;gBACb,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,eAAe,EAAE,0CAA0C,CAAC,CAAC;gBACvF,OAAO;YACX,CAAC;YAED,iCAAiC;YACjC,MAAM,WAAW,GAAG,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,SAAS,CAAC,MAAM,CAAC,CAAC;YACzE,IAAI,CAAC,WAAW,EAAE,CAAC;gBACf,QAAQ,CAAC,yBAAyB,SAAS,CAAC,MAAM,qBAAqB,CAAC,CAAC;gBACzE,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,cAAc,EAAE,wBAAwB,EAAE,SAAS,CAAC,iBAAiB,CAAC,CAAC;gBACjG,OAAO;YACX,CAAC;YAED,yCAAyC;YACzC,IAAI,KAAK,EAAE,CAAC;gBACR,MAAM,YAAY,GAAG,iBAAiB,CAAC,CAAC,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,sBAAsB,CAAC;gBAC5F,MAAM,IAAI,CAAC,YAAY,CAAC,wBAAwB,CAC5C,KAAK,EACL,MAAM,CAAC,KAAK,CAAC,EACb,YAAY,EACZ,WAAW,CACd,CAAC;gBACF,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,YAAY,EAAE,SAAS,CAAC,iBAAiB,CAAC,CAAC;gBACpF,OAAO;YACX,CAAC;YAED,yCAAyC;YACzC,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;gBACpC,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,iBAAiB,EAAE,4BAA4B,EAAE,SAAS,CAAC,iBAAiB,CAAC,CAAC;gBACxG,OAAO;YACX,CAAC;YAED,2BAA2B;YAC3B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,yBAAyB,CAAC,KAAK,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;YAE3F,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;gBACjB,SAAS,CAAC,sDAAsD,KAAK,EAAE,CAAC,CAAC;gBACzE,2DAA2D;gBAC3D,gBAAgB,CAAC,QAAQ,CAAC,iCAAiC,CAAC,SAAS,CAAC,YAAY,EAAE;oBAChF,cAAc,EAAE,KAAK;oBACrB,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;iBACxC,CAAC,CAAC;gBACH,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE,KAAK,EAAE,SAAS,CAAC,YAAY,EAAE,SAAS,CAAC,iBAAiB,CAAC,CAAC;YAC5F,CAAC;iBAAM,CAAC;gBACJ,QAAQ,CAAC,0CAA0C,MAAM,CAAC,YAAY,EAAE,CAAC,CAAC;gBAC1E,IAAI,CAAC,eAAe,CAChB,GAAG,EACH,MAAM,CAAC,SAAS,IAAI,sBAAsB,EAC1C,MAAM,CAAC,YAAY,IAAI,sBAAsB,EAC7C,SAAS,CAAC,iBAAiB,CAC9B,CAAC;YACN,CAAC;QAEL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC5E,QAAQ,CAAC,sCAAsC,YAAY,EAAE,CAAC,CAAC;YAC/D,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,cAAc,EAAE,8BAA8B,CAAC,CAAC;QAC9E,CAAC;IACL,CAAC;IAED;;;;;;;OAOG;IACK,KAAK,CAAC,SAAS,CAAC,GAAoB,EAAE,GAAqB;QAC/D,MAAM,UAAU,GAAG,GAAG,CAAC,MAAM,CAAC,cAAc,CAAC;QAC7C,MAAM,cAAc,GAAG,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,UAAU,IAAI,EAAE,CAAC;QACpF,MAAM,WAAW,GAAG,GAAG,CAAC,QAAQ,CAAa,CAAC;QAE9C,IAAI,CAAC,WAAW,EAAE,CAAC;YACf,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,YAAY,EAAE,yBAAyB;aAC1C,CAAC,CAAC;YACH,OAAO;QACX,CAAC;QAED,IAAI,CAAC;YACD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;YAEjF,IAAI,CAAC,SAAS,EAAE,CAAC;gBACb,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,OAAO,EAAE,KAAK;oBACd,SAAS,EAAE,WAAW;oBACtB,YAAY,EAAE,+BAA+B;iBAChD,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,8BAA8B;YAC9B,IAAI,SAAS,CAAC,MAAM,KAAK,WAAW,CAAC,EAAE,EAAE,CAAC;gBACtC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,OAAO,EAAE,KAAK;oBACd,SAAS,EAAE,WAAW;oBACtB,YAAY,EAAE,eAAe;iBAChC,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,aAAa;YACb,IAAI,MAAsD,CAAC;YAC3D,QAAQ,SAAS,CAAC,MAAM,EAAE,CAAC;gBACvB,KAAK,SAAS;oBACV,MAAM,GAAG,IAAI,IAAI,EAAE,IAAI,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;oBACnE,MAAM;gBACV,KAAK,WAAW;oBACZ,MAAM,GAAG,WAAW,CAAC;oBACrB,MAAM;gBACV,KAAK,QAAQ;oBACT,MAAM,GAAG,QAAQ,CAAC;oBAClB,MAAM;gBACV,KAAK,SAAS;oBACV,MAAM,GAAG,SAAS,CAAC;oBACnB,MAAM;gBACV;oBACI,MAAM,GAAG,SAAS,CAAC;YAC3B,CAAC;YAED,GAAG,CAAC,IAAI,CAAC;gBACL,MAAM;gBACN,YAAY,EAAE,SAAS,CAAC,YAAY;gBACpC,WAAW,EAAE,SAAS,CAAC,WAAW,EAAE,WAAW,EAAE;gBACjD,SAAS,EAAE,SAAS,CAAC,SAAS;gBAC9B,YAAY,EAAE,SAAS,CAAC,gBAAgB;gBACxC,WAAW,EAAE,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,SAAS;aAC3D,CAAC,CAAC;QAEP,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC5E,QAAQ,CAAC,yBAAyB,YAAY,EAAE,CAAC,CAAC;YAClD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,SAAS,EAAE,cAAc;gBACzB,YAAY,EAAE,oCAAoC;aACrD,CAAC,CAAC;QACP,CAAC;IACL,CAAC;IAED;;;;;;;OAOG;IACK,KAAK,CAAC,YAAY,CAAC,GAAoB,EAAE,GAAqB;QAClE,MAAM,EAAE,YAAY,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACvE,MAAM,WAAW,GAAG,GAAG,CAAC,QAAQ,CAAa,CAAC;QAE9C,IAAI,CAAC,WAAW,EAAE,CAAC;YACf,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,YAAY,EAAE,yBAAyB;aAC1C,CAAC,CAAC;YACH,OAAO;QACX,CAAC;QAED,IAAI,CAAC,YAAY,EAAE,CAAC;YAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,SAAS,EAAE,iBAAiB;gBAC5B,YAAY,EAAE,0BAA0B;aAC3C,CAAC,CAAC;YACH,OAAO;QACX,CAAC;QAED,IAAI,CAAC;YACD,oCAAoC;YACpC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,YAAY,EAAE,WAAW,CAAC,CAAC;YAC1E,IAAI,CAAC,MAAM,EAAE,CAAC;gBACV,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,OAAO,EAAE,KAAK;oBACd,SAAS,EAAE,WAAW;oBACtB,YAAY,EAAE,sBAAsB;iBACvC,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,qBAAqB;YACrB,MAAM,WAAW,GAAyB;gBACtC,cAAc,EAAE,MAAM,CAAC,cAAc;gBACrC,WAAW,EAAE,gBAAgB;oBACzB,CAAC,CAAC,GAAG,MAAM,CAAC,WAAW,IAAI,EAAE,IAAI,gBAAgB,EAAE,CAAC,IAAI,EAAE;oBAC1D,CAAC,CAAC,MAAM,CAAC,WAAW;gBACxB,4BAA4B,EAAE,MAAM,CAAC,4BAA4B;gBACjE,aAAa,EAAE,MAAM,CAAC,aAAa;gBACnC,0BAA0B,EAAE,MAAM,CAAC,0BAA0B;gBAC7D,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;aAC5C,CAAC;YAEF,IAAI,CAAC,WAAW,CAAC,cAAc,EAAE,CAAC;gBAC9B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,OAAO,EAAE,KAAK;oBACd,SAAS,EAAE,uBAAuB;oBAClC,YAAY,EAAE,yCAAyC;iBAC1D,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,sDAAsD;YACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,yBAAyB,CAC5D,YAAY,EACZ,MAAM,CAAC,QAAQ,EACf,WAAW,EACX,IAAI,CAAC,OAAO,CAAC,SAAS,EACtB,WAAW,EACX,iBAAiB,CAAC,CAAC,CAAC,EAAE,iBAAiB,EAAE,MAAM,CAAC,iBAAiB,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CACnF,CAAC;YAEF,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;gBACjB,GAAG,CAAC,IAAI,CAAC;oBACL,OAAO,EAAE,IAAI;oBACb,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;oBACzC,cAAc,EAAE,MAAM,CAAC,cAAc;oBACrC,SAAS,EAAE,MAAM,CAAC,SAAS,EAAE,WAAW,EAAE;oBAC1C,OAAO,EAAE,mDAAmD;iBAC/D,CAAC,CAAC;YACP,CAAC;iBAAM,CAAC;gBACJ,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,OAAO,EAAE,KAAK;oBACd,SAAS,EAAE,mBAAmB;oBAC9B,YAAY,EAAE,MAAM,CAAC,YAAY;iBACpC,CAAC,CAAC;YACP,CAAC;QAEL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC5E,QAAQ,CAAC,2BAA2B,YAAY,EAAE,CAAC,CAAC;YACpD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,SAAS,EAAE,cAAc;gBACzB,YAAY,EAAE,+BAA+B;aAChD,CAAC,CAAC;QACP,CAAC;IACL,CAAC;IAED;;;;;;;;;OASG;IACK,KAAK,CAAC,cAAc,CAAC,GAAoB,EAAE,GAAqB;QACpE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACjC,MAAM,WAAW,GAAG,GAAG,CAAC,QAAQ,CAAa,CAAC;QAE9C,IAAI,CAAC,WAAW,EAAE,CAAC;YACf,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,SAAS,EAAE,cAAc;gBACzB,YAAY,EAAE,yBAAyB;aAC1C,CAAC,CAAC;YACH,OAAO;QACX,CAAC;QAED,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YACpC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,SAAS,EAAE,iBAAiB;gBAC5B,YAAY,EAAE,mCAAmC;aACpD,CAAC,CAAC;YACH,OAAO;QACX,CAAC;QAED,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YACtC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,SAAS,EAAE,iBAAiB;gBAC5B,YAAY,EAAE,oCAAoC;aACrD,CAAC,CAAC;YACH,OAAO;QACX,CAAC;QAED,IAAI,CAAC;YACD,wDAAwD;YACxD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;YAExE,IAAI,CAAC,SAAS,EAAE,CAAC;gBACb,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,OAAO,EAAE,KAAK;oBACd,SAAS,EAAE,iBAAiB;oBAC5B,YAAY,EAAE,0CAA0C;iBAC3D,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,8DAA8D;YAC9D,IAAI,SAAS,CAAC,MAAM,KAAK,WAAW,CAAC,EAAE,EAAE,CAAC;gBACtC,QAAQ,CAAC,yBAAyB,WAAW,CAAC,EAAE,kDAAkD,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC;gBACtH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,OAAO,EAAE,KAAK;oBACd,SAAS,EAAE,WAAW;oBACtB,YAAY,EAAE,4DAA4D;iBAC7E,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,8CAA8C;YAC9C,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,yBAAyB,CAAC,KAAK,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;YAE3F,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;gBACjB,SAAS,CAAC,+DAA+D,SAAS,CAAC,YAAY,EAAE,CAAC,CAAC;gBAEnG,2DAA2D;gBAC3D,gBAAgB,CAAC,QAAQ,CAAC,iCAAiC,CAAC,SAAS,CAAC,YAAY,EAAE;oBAChF,cAAc,EAAE,KAAK;oBACrB,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;iBACxC,CAAC,CAAC;gBAEH,GAAG,CAAC,IAAI,CAAC;oBACL,OAAO,EAAE,IAAI;oBACb,YAAY,EAAE,SAAS,CAAC,YAAY;iBACvC,CAAC,CAAC;YACP,CAAC;iBAAM,CAAC;gBACJ,QAAQ,CAAC,2CAA2C,MAAM,CAAC,YAAY,EAAE,CAAC,CAAC;gBAC3E,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACjB,OAAO,EAAE,KAAK;oBACd,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,iBAAiB;oBAChD,YAAY,EAAE,MAAM,CAAC,YAAY,IAAI,kDAAkD;oBACvF,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,KAAK;iBAC3C,CAAC,CAAC;YACP,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC5E,QAAQ,CAAC,sCAAsC,YAAY,EAAE,CAAC,CAAC;YAC/D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,SAAS,EAAE,cAAc;gBACzB,YAAY,EAAE,oDAAoD;aACrE,CAAC,CAAC;QACP,CAAC;IACL,CAAC;IAED,2CAA2C;IAC3C,iBAAiB;IACjB,2CAA2C;IAE3C;;OAEG;IACK,aAAa;QACjB,IAAI,CAAC;YACD,OAAO,SAAS,CAAC,QAAQ,CAAC,aAAa,EAAE,CAAC;QAC9C,CAAC;QAAC,MAAM,CAAC;YACL,OAAO,IAAI,CAAC;QAChB,CAAC;IACL,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,sBAAsB,CAChC,cAAsB,EACtB,WAAqB;QAWrB,IAAI,CAAC;YACD,MAAM,EAAE,GAAG,IAAI,OAAO,EAAE,CAAC;YACzB,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC,OAAO,CAS5B;gBACC,UAAU,EAAE,iCAAiC;gBAC7C,WAAW,EAAE,mBAAmB,cAAc,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG;gBACrE,MAAM,EAAE,CAAC,uBAAuB,EAAE,QAAQ,EAAE,QAAQ,EAAE,WAAW,EAAE,kBAAkB,EAAE,WAAW,EAAE,aAAa,EAAE,mBAAmB,CAAC;gBACvI,UAAU,EAAE,QAAQ;aACvB,EAAE,WAAW,CAAC,CAAC;YAEhB,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACpE,OAAO,IAAI,CAAC;YAChB,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YACjC,OAAO;gBACH,YAAY,EAAE,MAAM,CAAC,qBAAqB;gBAC1C,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,SAAS;gBACxC,gBAAgB,EAAE,MAAM,CAAC,gBAAgB,IAAI,SAAS;gBACtD,SAAS,EAAE,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC;gBACrC,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS;gBAC1E,iBAAiB,EAAE,MAAM,CAAC,iBAAiB,IAAI,SAAS;aAC3D,CAAC;QACN,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,QAAQ,CAAC,wDAAwD,KAAK,EAAE,CAAC,CAAC;YAC1E,OAAO,IAAI,CAAC;QAChB,CAAC;IACL,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,oBAAoB,CAC9B,YAAoB,EACpB,WAAqB;QAUrB,IAAI,CAAC;YACD,MAAM,EAAE,GAAG,IAAI,OAAO,EAAE,CAAC;YAEzB,kCAAkC;YAClC,MAAM,UAAU,GAAG,MAAM,EAAE,CAAC,OAAO,CAA0B;gBACzD,UAAU,EAAE,6BAA6B;gBACzC,WAAW,EAAE,OAAO,YAAY,GAAG;gBACnC,MAAM,EAAE,CAAC,aAAa,CAAC;gBACvB,UAAU,EAAE,QAAQ;aACvB,EAAE,WAAW,CAAC,CAAC;YAEhB,IAAI,CAAC,UAAU,CAAC,OAAO,IAAI,CAAC,UAAU,CAAC,OAAO,IAAI,UAAU,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAChF,OAAO,IAAI,CAAC;YAChB,CAAC;YAED,MAAM,QAAQ,GAAG,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC;YAEnD,0BAA0B;YAC1B,MAAM,YAAY,GAAG,MAAM,EAAE,CAAC,OAAO,CAOlC;gBACC,UAAU,EAAE,kBAAkB;gBAC9B,WAAW,EAAE,OAAO,QAAQ,GAAG;gBAC/B,MAAM,EAAE;oBACJ,gBAAgB,EAAE,aAAa,EAAE,8BAA8B;oBAC/D,eAAe,EAAE,4BAA4B,EAAE,kBAAkB;iBACpE;gBACD,UAAU,EAAE,QAAQ;aACvB,EAAE,WAAW,CAAC,CAAC;YAEhB,IAAI,CAAC,YAAY,CAAC,OAAO,IAAI,CAAC,YAAY,CAAC,OAAO,IAAI,YAAY,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACtF,OAAO,IAAI,CAAC;YAChB,CAAC;YAED,MAAM,MAAM,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YACvC,OAAO;gBACH,QAAQ;gBACR,cAAc,EAAE,MAAM,CAAC,cAAc,IAAI,SAAS;gBAClD,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,SAAS;gBAC5C,4BAA4B,EAAE,MAAM,CAAC,4BAA4B,IAAI,SAAS;gBAC9E,aAAa,EAAE,MAAM,CAAC,aAAa,IAAI,SAAS;gBAChD,0BAA0B,EAAE,MAAM,CAAC,0BAA0B,IAAI,SAAS;gBAC1E,gBAAgB,EAAE,MAAM,CAAC,gBAAgB,IAAI,SAAS;aACzD,CAAC;QACN,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,QAAQ,CAAC,sDAAsD,KAAK,EAAE,CAAC,CAAC;YACxE,OAAO,IAAI,CAAC;QAChB,CAAC;IACL,CAAC;IAED;;;OAGG;IACK,iBAAiB,CAAC,GAAqB,EAAE,KAAa,EAAE,YAAoB,EAAE,iBAA0B;QAC5G,6EAA6E;QAC7E,IAAI,iBAAiB,EAAE,CAAC;YACpB,IAAI,CAAC;gBACD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,iBAAiB,CAAC,CAAC;gBACvC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;gBACzC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;gBACrC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,YAAY,CAAC,CAAC;gBACnD,SAAS,CAAC,iDAAiD,GAAG,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;gBAC7E,GAAG,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,CAAC,QAAQ,EAAE,CAAC,CAAC;gBAClC,OAAO;YACX,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACb,QAAQ,CAAC,iDAAiD,iBAAiB,4BAA4B,CAAC,CAAC;gBACzG,mCAAmC;YACvC,CAAC;QACL,CAAC;QAED,6CAA6C;QAC7C,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,kBAAmB,CAAC,CAAC;QACtD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QACrC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,YAAY,CAAC,CAAC;QACnD,GAAG,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,CAAC,QAAQ,EAAE,CAAC,CAAC;IACtC,CAAC;IAED;;;OAGG;IACK,eAAe,CAAC,GAAqB,EAAE,SAAiB,EAAE,YAAoB,EAAE,iBAA0B;QAC9G,2EAA2E;QAC3E,IAAI,iBAAiB,EAAE,CAAC;YACpB,IAAI,CAAC;gBACD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,iBAAiB,CAAC,CAAC;gBACvC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;gBACvC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;gBACzC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,mBAAmB,EAAE,YAAY,CAAC,CAAC;gBACxD,SAAS,CAAC,4DAA4D,GAAG,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;gBACxF,GAAG,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,CAAC,QAAQ,EAAE,CAAC,CAAC;gBAClC,OAAO;YACX,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACb,QAAQ,CAAC,iDAAiD,iBAAiB,4BAA4B,CAAC,CAAC;gBACzG,mCAAmC;YACvC,CAAC;QACL,CAAC;QAED,2CAA2C;QAC3C,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,gBAAiB,CAAC,CAAC;QACpD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;QACzC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,mBAAmB,EAAE,YAAY,CAAC,CAAC;QACxD,GAAG,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,CAAC,QAAQ,EAAE,CAAC,CAAC;IACtC,CAAC;IAED;;OAEG;IACI,iBAAiB;QACpB,OAAO,IAAI,CAAC,cAAc,CAAC;IAC/B,CAAC;IAED;;OAEG;IACI,sBAAsB;QACzB,OAAO,IAAI,CAAC,mBAAmB,CAAC;IACpC,CAAC;CACJ;AAED;;;;;GAKG;AACH,MAAM,UAAU,0BAA0B,CAAC,OAAoC;IAI3E,MAAM,OAAO,GAAG,IAAI,oBAAoB,CAAC,OAAO,CAAC,CAAC;IAClD,OAAO;QACH,cAAc,EAAE,OAAO,CAAC,iBAAiB,EAAE;QAC3C,mBAAmB,EAAE,OAAO,CAAC,sBAAsB,EAAE;KACxD,CAAC;AACN,CAAC"}