@nauth-toolkit/core 0.1.13 → 0.1.17

package/dist/services/email-verification.service.js

@@ -40,6 +40,17 @@ const nauth_exception_1 = require("../exceptions/nauth.exception");
 const error_codes_enum_1 = require("../enums/error-codes.enum");
 const verify_email_dto_1 = require("../dto/verify-email.dto");
 const crypto = __importStar(require("crypto"));
+/**
+ * Email Verification Service
+ *
+ * Handles email verification workflow:
+ * - Generate verification codes
+ * - Send verification emails
+ * - Verify codes with token generation
+ * - Resend with rate limiting
+ *
+ * Supports both code-based (6-digit OTP) and link-based verification.
+ */
 class EmailVerificationService {
     verificationTokenRepo;
     userRepo;
@@ -59,20 +70,37 @@ class EmailVerificationService {
         this.logger = logger;
         this.auditService = auditService;
     }
+    /**
+     * Send verification email to user
+     * Generates a new verification code and sends it via email
+     *
+     * @param dto - Request DTO containing sub, baseUrl, and skipAlreadyVerifiedCheck
+     * @returns Response DTO with verification token ID
+     */
     async sendVerificationEmail(dto) {
         const { sub, baseUrl, skipAlreadyVerifiedCheck = false, challengeSessionId } = dto;
+        // Get rate limit configuration from config (moved to signup.emailVerification)
         const rateLimitMax = this.config.signup?.emailVerification?.rateLimitMax || 3;
-        const rateLimitWindow = this.config.signup?.emailVerification?.rateLimitWindow || 3600;
+        const rateLimitWindow = this.config.signup?.emailVerification?.rateLimitWindow || 3600; // 1 hour in seconds
+        // Check rate limit - use sub for rate limiting
         const rateLimitKey = `email-verification:${sub}`;
+        // Check if key exists and has valid TTL (not expired)
         const ttlBefore = await this.storageAdapter.ttl(rateLimitKey);
+        // Window is expired if: key doesn't exist (-1), expired (<0), or TTL is longer than configured window (config changed)
         const isWindowExpired = ttlBefore === -1 || ttlBefore < 0 || ttlBefore > rateLimitWindow;
+        // If TTL is longer than configured window (config changed), delete the old key to reset it
+        // This ensures the new window uses the current rateLimitWindow instead of preserving old expiry
         if (ttlBefore > rateLimitWindow) {
             await this.storageAdapter.del(rateLimitKey);
         }
+        // Increment counter (will reset to 1 if key expired or doesn't exist)
+        // Pass TTL so new records are created with correct expiry immediately
         const currentCount = await this.storageAdapter.incr(rateLimitKey, isWindowExpired ? rateLimitWindow : undefined);
+        // If we created a new window, log it
         if (isWindowExpired && currentCount === 1) {
             this.logger?.debug?.(`Rate limit window reset for email verification: sub=${sub}, window=${rateLimitWindow}s, max=${rateLimitMax}`);
         }
+        // Get actual TTL after setting expiry (for error message)
         const actualTtl = await this.storageAdapter.ttl(rateLimitKey);
         if (currentCount > rateLimitMax) {
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.RATE_LIMIT_EMAIL, 'Too many verification emails sent. Please try again later.', {
@@ -81,11 +109,13 @@ class EmailVerificationService {
                 maxAttempts: rateLimitMax,
             });
         }
+        // Check if user already has a pending verification token
         const user = (await this.userRepo.findOne({ where: { sub } }));
         if (!user) {
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.NOT_FOUND, 'User not found');
         }
-        const resendDelay = this.config.signup?.emailVerification?.resendDelay ?? 60;
+        // Check resend delay to prevent abuse
+        const resendDelay = this.config.signup?.emailVerification?.resendDelay ?? 60; // 1 minute default
         const lastToken = (await this.verificationTokenRepo.findOne({
             where: { userId: user.id, type: 'email' },
             order: { createdAt: 'DESC' },
@@ -100,36 +130,48 @@ class EmailVerificationService {
                 });
             }
         }
+        // Only check "already verified" if not skipping (skip for MFA contexts where codes are needed even if email is verified)
         if (!skipAlreadyVerifiedCheck && user.isEmailVerified) {
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.ALREADY_VERIFIED, 'Email already verified');
         }
+        // Invalidate existing tokens - use internal id for database query
         await this.verificationTokenRepo.update({
-            userId: user.id,
+            userId: user.id, // Use internal id for foreign key query
             type: 'email',
-            usedAt: (0, typeorm_1.IsNull)(),
+            usedAt: (0, typeorm_1.IsNull)(), // Only invalidate unused tokens
         }, {
-            usedAt: new Date(),
+            usedAt: new Date(), // Mark as used to invalidate
         });
+        // Generate verification code (6 digits)
         const code = this.generateCode();
+        // Generate verification token (for link-based verification)
         const token = this.generateToken();
         const tokenHash = this.hashToken(token);
+        // Create verification token - use internal id for foreign key
+        // Get client info internally
         const clientInfo = this.clientInfoService.get();
         const ipAddress = clientInfo.ipAddress;
         const userAgent = clientInfo.userAgent;
         const verificationToken = this.verificationTokenRepo.create({
-            userId: user.id,
-            challengeSessionId: challengeSessionId ?? null,
+            userId: user.id, // Use internal id for foreign key
+            challengeSessionId: challengeSessionId ?? null, // Link to challenge session if provided
             type: 'email',
             token: tokenHash,
             code,
-            expiresAt: new Date(Date.now() + (this.config.signup?.emailVerification?.expiresIn || 3600) * 1000),
+            expiresAt: new Date(Date.now() + (this.config.signup?.emailVerification?.expiresIn || 3600) * 1000), // Default: 1 hour
             attempts: 0,
             ipAddress,
             userAgent,
         });
         await this.verificationTokenRepo.save(verificationToken);
+        // Generate verification link only if baseUrl is provided
+        // Consumer apps can build their own verification links if needed
         const verificationLink = baseUrl ? `${baseUrl}/verify-email?token=${token}` : undefined;
+        // Send email (link is optional - only sent if provided)
         await this.emailProvider.sendVerificationEmail(user.email, code, verificationLink);
+        // ============================================================================
+        // Audit: Record email verification request
+        // ============================================================================
         try {
             await this.auditService?.recordEvent({
                 userId: user.id,
@@ -138,9 +180,11 @@ class EmailVerificationService {
                 metadata: {
                     verificationTokenId: verificationToken.id,
                 },
+                // Client info automatically included from context
             });
         }
         catch (auditError) {
+            // Non-blocking: Log but continue
             const errorMessage = auditError instanceof Error ? auditError.message : 'Unknown error';
             this.logger?.error?.(`Failed to record EMAIL_VERIFICATION_REQUESTED audit event: ${errorMessage}`, {
                 error: auditError,
@@ -149,25 +193,45 @@ class EmailVerificationService {
         }
         return { tokenId: verificationToken.id };
     }
+    /**
+     * Verify email with code (6-digit OTP)
+     * Marks email as verified and activates user account
+     *
+     * @param dto - Request DTO containing email and code
+     * @returns Response DTO with success message
+     */
     async verifyEmailWithCode(dto) {
         const { email, code, challengeSessionId } = dto;
+        // ============================================================================
+        // Security: Rate limit configuration
+        // IP-based rate limiting applies only to INVALID attempts to prevent brute force
+        // Valid codes should not be blocked by IP rate limits
+        // ============================================================================
         const maxAttemptsPerIP = this.config.signup?.emailVerification?.maxAttemptsPerIP ?? 20;
-        const attemptWindow = this.config.signup?.emailVerification?.attemptWindow ?? 3600;
+        const attemptWindow = this.config.signup?.emailVerification?.attemptWindow ?? 3600; // 1 hour
         const clientInfo = this.clientInfoService.get();
+        // Find user by email
         const user = await this.userRepo.findOne({ where: { email } });
         if (!user) {
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.NOT_FOUND, 'User not found');
         }
+        // Find active verification token
+        // If challengeSessionId is provided, ensure token belongs to that specific session
+        // This prevents old tokens from being used with new challenge sessions
         const whereClause = {
             userId: user.id,
             type: 'email',
             code,
             usedAt: (0, typeorm_1.IsNull)(),
-            ...(challengeSessionId !== undefined && { challengeSessionId }),
+            ...(challengeSessionId !== undefined && { challengeSessionId }), // Include if provided
         };
         const verificationToken = (await this.verificationTokenRepo.findOne({
             where: whereClause,
         }));
+        // ============================================================================
+        // Security: Increment IP rate limit for invalid attempts only
+        // This prevents brute force attacks while allowing valid codes through
+        // ============================================================================
         const incrementIPRateLimit = async () => {
             if (clientInfo.ipAddress) {
                 const ipRateLimitKey = `verify-attempts:ip:${clientInfo.ipAddress}`;
@@ -181,24 +245,35 @@ class EmailVerificationService {
             }
         };
         if (!verificationToken) {
+            // Invalid attempt - increment IP rate limit
             await incrementIPRateLimit();
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.VERIFICATION_CODE_INVALID, 'Invalid or expired verification code');
         }
+        // Check expiry
         const isExpired = verificationToken.isExpired
             ? verificationToken.isExpired()
             : verificationToken.expiresAt < new Date();
         if (isExpired) {
+            // Expired token - increment IP rate limit
             await incrementIPRateLimit();
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.VERIFICATION_CODE_EXPIRED, 'Verification code has expired');
         }
+        // Check max attempts (3 attempts)
         const maxAttemptsExceeded = verificationToken.maxAttemptsExceeded
             ? verificationToken.maxAttemptsExceeded(3)
             : verificationToken.attempts >= 3;
         if (maxAttemptsExceeded) {
+            // Token exceeded max attempts - increment IP rate limit
             await incrementIPRateLimit();
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.VERIFICATION_TOO_MANY_ATTEMPTS, 'Too many failed attempts. Request a new code.');
         }
+        // ============================================================================
+        // Security: Rate limit verification attempts per user (for invalid attempts only)
+        // This prevents users from exhausting their own tokens through repeated attempts
+        // Valid codes should not be blocked by user rate limits
+        // ============================================================================
         const maxAttemptsPerUser = this.config.signup?.emailVerification?.maxAttemptsPerUser ?? 10;
+        // Helper to increment user rate limit (only for invalid attempts)
         const incrementUserRateLimit = async () => {
             const userRateLimitKey = `verify-attempts:user:${user.id}`;
             const userAttempts = await this.storageAdapter.incr(userRateLimitKey);
@@ -209,11 +284,17 @@ class EmailVerificationService {
                 throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.VERIFICATION_TOO_MANY_ATTEMPTS, 'Too many verification attempts. Please try again later.');
             }
         };
+        // Increment attempts (even on success to prevent reuse)
         verificationToken.attempts += 1;
+        // Invalid code - increment attempts and return false
         if (verificationToken.code !== code) {
+            // Invalid code - increment both IP and user rate limits
             await incrementIPRateLimit();
             await incrementUserRateLimit();
             await this.verificationTokenRepo.save(verificationToken);
+            // ============================================================================
+            // Audit: Record email verification failure
+            // ============================================================================
             try {
                 await this.auditService?.recordEvent({
                     userId: user.id,
@@ -221,6 +302,7 @@ class EmailVerificationService {
                     eventStatus: 'FAILURE',
                     reason: 'invalid_code',
                     description: 'Invalid verification code provided',
+                    // Client info automatically included from context
                     metadata: {
                         verificationTokenId: verificationToken.id,
                         attempts: verificationToken.attempts,
@@ -228,6 +310,7 @@ class EmailVerificationService {
                 });
             }
             catch (auditError) {
+                // Non-blocking: Log but continue
                 const errorMessage = auditError instanceof Error ? auditError.message : 'Unknown error';
                 this.logger?.error?.(`Failed to record EMAIL_VERIFICATION_FAILED audit event: ${errorMessage}`, {
                     error: auditError,
@@ -236,12 +319,22 @@ class EmailVerificationService {
             }
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.VERIFICATION_CODE_INVALID, 'Invalid verification code');
         }
+        // ============================================================================
+        // Code is valid - proceed without rate limit checks
+        // Valid codes should always be allowed through
+        // ============================================================================
+        // Mark token as used
         verificationToken.usedAt = new Date();
         await this.verificationTokenRepo.save(verificationToken);
+        // Update user - use internal id for database update
         await this.userRepo.update(user.id, {
             isEmailVerified: true,
+            // Auto-activate if not already active
             isActive: true,
         });
+        // ============================================================================
+        // Audit: Record email verification success
+        // ============================================================================
         try {
             await this.auditService?.recordEvent({
                 userId: user.id,
@@ -250,23 +343,34 @@ class EmailVerificationService {
                 metadata: {
                     verificationTokenId: verificationToken.id,
                     verificationMethod: 'code',
+                    // Client info automatically included from context
                 },
             });
         }
         catch (auditError) {
+            // Non-blocking: Log but continue
             const errorMessage = auditError instanceof Error ? auditError.message : 'Unknown error';
             this.logger?.error?.(`Failed to record EMAIL_VERIFIED audit event: ${errorMessage}`, {
                 error: auditError,
                 userId: user.id,
             });
         }
+        // TODO: maybe refactor to return user save user query in parent function
         return {
             message: 'Email verified successfully. Please log in to continue.',
         };
     }
+    /**
+     * Verify email with link token
+     * Marks email as verified and activates user account
+     *
+     * @param dto - Request DTO containing token
+     * @returns Response DTO with success message
+     */
     async verifyEmailWithToken(dto) {
         const { token } = dto;
         const tokenHash = this.hashToken(token);
+        // Find verification token
         const verificationToken = (await this.verificationTokenRepo.findOne({
             where: {
                 token: tokenHash,
@@ -277,21 +381,29 @@ class EmailVerificationService {
         if (!verificationToken) {
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.VERIFICATION_CODE_INVALID, 'Invalid or expired verification link');
         }
+        // Check expiry
         const isExpired = verificationToken.isExpired
             ? verificationToken.isExpired()
             : verificationToken.expiresAt < new Date();
         if (isExpired) {
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.VERIFICATION_CODE_EXPIRED, 'Verification link has expired');
         }
+        // Mark token as used
         verificationToken.usedAt = new Date();
         await this.verificationTokenRepo.save(verificationToken);
+        // Get user for audit logging
         const user = (await this.userRepo.findOne({
             where: { id: verificationToken.userId },
         }));
+        // Update user
         await this.userRepo.update(verificationToken.userId, {
             isEmailVerified: true,
+            // Auto-activate if not already active
             isActive: true,
         });
+        // ============================================================================
+        // Audit: Record email verification success (token-based)
+        // ============================================================================
         if (user) {
             try {
                 await this.auditService?.recordEvent({
@@ -301,10 +413,12 @@ class EmailVerificationService {
                     metadata: {
                         verificationTokenId: verificationToken.id,
                         verificationMethod: 'token',
+                        // Client info automatically included from context
                     },
                 });
             }
             catch (auditError) {
+                // Non-blocking: Log but continue
                 const errorMessage = auditError instanceof Error ? auditError.message : 'Unknown error';
                 this.logger?.error?.(`Failed to record EMAIL_VERIFIED audit event (token-based): ${errorMessage}`, {
                     error: auditError,
@@ -316,7 +430,15 @@ class EmailVerificationService {
             message: 'Email verified successfully. Please log in to continue.',
         };
     }
+    /**
+     * Resend verification email
+     * Supports both sub and email-based resend
+     *
+     * @param dto - Request DTO containing sub or email, and optional baseUrl
+     * @returns Response DTO with verification token ID
+     */
     async resendVerificationEmail(dto) {
+        // Validate that either sub or email is provided
         if (!dto.sub && !dto.email) {
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.VALIDATION_FAILED, 'Either sub or email must be provided');
         }
@@ -326,10 +448,12 @@ class EmailVerificationService {
         return this.resendVerificationEmailByEmail(dto.email, dto.baseUrl);
     }
     async resendVerificationEmailBySub(sub, baseUrl) {
+        // Get user by sub to get internal id
         const user = await this.userRepo.findOne({ where: { sub } });
         if (!user) {
             throw new nauth_exception_1.NAuthException(error_codes_enum_1.AuthErrorCode.NOT_FOUND, 'User not found');
         }
+        // Check resend delay - use config value (default 60 seconds)
         const resendDelay = this.config.signup?.emailVerification?.resendDelay ?? 60;
         const lastToken = (await this.verificationTokenRepo.findOne({
             where: { userId: user.id, type: 'email' },
@@ -345,6 +469,8 @@ class EmailVerificationService {
                 });
             }
         }
+        // Send new verification email - use sub (external identifier)
+        // Preserve challengeSessionId from the last token to ensure verification succeeds
         const dto = Object.assign(new verify_email_dto_1.SendVerificationEmailDTO(), {
             sub,
             baseUrl,
@@ -359,12 +485,25 @@ class EmailVerificationService {
         }
         return this.resendVerificationEmailBySub(user.sub, baseUrl);
     }
+    /**
+     * Generate 6-digit verification code
+     * @returns 6-digit numeric code
+     */
     generateCode() {
         return Math.floor(100000 + Math.random() * 900000).toString();
     }
+    /**
+     * Generate secure random token
+     * @returns Random token (32 bytes, hex encoded)
+     */
     generateToken() {
         return crypto.randomBytes(32).toString('hex');
     }
+    /**
+     * Hash token with SHA-256
+     * @param token - Plain token
+     * @returns Hashed token
+     */
     hashToken(token) {
         return crypto.createHash('sha256').update(token).digest('hex');
     }

package/dist/services/email-verification.service.js.map

@@ -1 +1 @@
-{"version":3,"file":"email-verification.service.js","sourceRoot":"","sources":["../../src/services/email-verification.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,qCAA6C;AAQ7C,oFAAyE;AACzE,mEAA+D;AAC/D,gEAA0D;AAE1D,8DAQiC;AACjC,+CAAiC;AAajC,MAAa,wBAAwB;IAEhB;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IARnB,YACmB,qBAAwD,EACxD,QAA8B,EAC9B,aAA4B,EAC5B,cAA8B,EAC9B,MAAmB,EACnB,iBAAoC,EACpC,MAAmB,EACnB,YAA+B;QAP/B,0BAAqB,GAArB,qBAAqB,CAAmC;QACxD,aAAQ,GAAR,QAAQ,CAAsB;QAC9B,kBAAa,GAAb,aAAa,CAAe;QAC5B,mBAAc,GAAd,cAAc,CAAgB;QAC9B,WAAM,GAAN,MAAM,CAAa;QACnB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,WAAM,GAAN,MAAM,CAAa;QACnB,iBAAY,GAAZ,YAAY,CAAmB;IAC/C,CAAC;IASJ,KAAK,CAAC,qBAAqB,CAAC,GAA6B;QACvD,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,wBAAwB,GAAG,KAAK,EAAE,kBAAkB,EAAE,GAAG,GAAG,CAAC;QAEnF,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,YAAY,IAAI,CAAC,CAAC;QAC9E,MAAM,eAAe,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,eAAe,IAAI,IAAI,CAAC;QAGvF,MAAM,YAAY,GAAG,sBAAsB,GAAG,EAAE,CAAC;QAGjD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAE9D,MAAM,eAAe,GAAG,SAAS,KAAK,CAAC,CAAC,IAAI,SAAS,GAAG,CAAC,IAAI,SAAS,GAAG,eAAe,CAAC;QAIzF,IAAI,SAAS,GAAG,eAAe,EAAE,CAAC;YAChC,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAC9C,CAAC;QAID,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,YAAY,EAAE,eAAe,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;QAGjH,IAAI,eAAe,IAAI,YAAY,KAAK,CAAC,EAAE,CAAC;YAC1C,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,uDAAuD,GAAG,YAAY,eAAe,UAAU,YAAY,EAAE,CAC9G,CAAC;QACJ,CAAC;QAGD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAE9D,IAAI,YAAY,GAAG,YAAY,EAAE,CAAC;YAChC,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,gBAAgB,EAC9B,4DAA4D,EAC5D;gBACE,UAAU,EAAE,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,eAAe;gBACvD,YAAY;gBACZ,WAAW,EAAE,YAAY;aAC1B,CACF,CAAC;QACJ,CAAC;QAGD,MAAM,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,EAAE,CAAC,CAAiB,CAAC;QAC/E,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAGD,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,WAAW,IAAI,EAAE,CAAC;QAC7E,MAAM,SAAS,GAAG,CAAC,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC;YAC1D,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE;YACzC,KAAK,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE;SAC7B,CAAC,CAA8B,CAAC;QAEjC,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,oBAAoB,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC,GAAG,IAAI,CAAC;YACjF,IAAI,oBAAoB,GAAG,WAAW,EAAE,CAAC;gBACvC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,GAAG,oBAAoB,CAAC,CAAC;gBAClE,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,iBAAiB,EAC/B,eAAe,WAAW,yCAAyC,EACnE;oBACE,UAAU,EAAE,WAAW;oBACvB,WAAW;iBACZ,CACF,CAAC;YACJ,CAAC;QACH,CAAC;QAGD,IAAI,CAAC,wBAAwB,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACtD,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,gBAAgB,EAAE,wBAAwB,CAAC,CAAC;QACrF,CAAC;QAGD,MAAM,IAAI,CAAC,qBAAqB,CAAC,MAAM,CACrC;YACE,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,IAAI,EAAE,OAAO;YACb,MAAM,EAAE,IAAA,gBAAM,GAAE;SACjB,EACD;YACE,MAAM,EAAE,IAAI,IAAI,EAAE;SACnB,CACF,CAAC;QAGF,MAAM,IAAI,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QAGjC,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QACnC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAIxC,MAAM,UAAU,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE,CAAC;QAChD,MAAM,SAAS,GAAG,UAAU,CAAC,SAAS,CAAC;QACvC,MAAM,SAAS,GAAG,UAAU,CAAC,SAAS,CAAC;QAEvC,MAAM,iBAAiB,GAAG,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC;YAC1D,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,kBAAkB,EAAE,kBAAkB,IAAI,IAAI;YAC9C,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,SAAS;YAChB,IAAI;YACJ,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,SAAS,IAAI,IAAI,CAAC,GAAG,IAAI,CAAC;YACnG,QAAQ,EAAE,CAAC;YACX,SAAS;YACT,SAAS;SACV,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAIzD,MAAM,gBAAgB,GAAG,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,uBAAuB,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;QAGxF,MAAM,IAAI,CAAC,aAAa,CAAC,qBAAqB,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC;QAKnF,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC;gBACnC,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,SAAS,EAAE,+CAAkB,CAAC,4BAA4B;gBAC1D,WAAW,EAAE,MAAM;gBACnB,QAAQ,EAAE;oBACR,mBAAmB,EAAG,iBAAmD,CAAC,EAAE;iBAC7E;aAEF,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,UAAU,EAAE,CAAC;YAEpB,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACxF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,8DAA8D,YAAY,EAAE,EAAE;gBACjG,KAAK,EAAE,UAAU;gBACjB,MAAM,EAAE,IAAI,CAAC,EAAE;aAChB,CAAC,CAAC;QACL,CAAC;QAED,OAAO,EAAE,OAAO,EAAG,iBAAmD,CAAC,EAAE,EAAE,CAAC;IAC9E,CAAC;IASD,KAAK,CAAC,mBAAmB,CAAC,GAA2B;QACnD,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kBAAkB,EAAE,GAAG,GAAG,CAAC;QAMhD,MAAM,gBAAgB,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,gBAAgB,IAAI,EAAE,CAAC;QACvF,MAAM,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,aAAa,IAAI,IAAI,CAAC;QACnF,MAAM,UAAU,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE,CAAC;QAGhD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,EAAE,CAAC,CAAC;QAC/D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAKD,MAAM,WAAW,GAAG;YAClB,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,IAAI,EAAE,OAAgB;YACtB,IAAI;YACJ,MAAM,EAAE,IAAA,gBAAM,GAAE;YAChB,GAAG,CAAC,kBAAkB,KAAK,SAAS,IAAI,EAAE,kBAAkB,EAAE,CAAC;SAChE,CAAC;QAEF,MAAM,iBAAiB,GAAG,CAAC,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC;YAClE,KAAK,EAAE,WAAW;SACnB,CAAC,CAA8B,CAAC;QAMjC,MAAM,oBAAoB,GAAG,KAAK,IAAmB,EAAE;YACrD,IAAI,UAAU,CAAC,SAAS,EAAE,CAAC;gBACzB,MAAM,cAAc,GAAG,sBAAsB,UAAU,CAAC,SAAS,EAAE,CAAC;gBACpE,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;gBAElE,IAAI,UAAU,KAAK,CAAC,EAAE,CAAC;oBACrB,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,cAAc,EAAE,aAAa,CAAC,CAAC;gBAClE,CAAC;gBAED,IAAI,UAAU,GAAG,gBAAgB,EAAE,CAAC;oBAClC,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,8BAA8B,EAC5C,sEAAsE,CACvE,CAAC;gBACJ,CAAC;YACH,CAAC;QACH,CAAC,CAAC;QAEF,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAEvB,MAAM,oBAAoB,EAAE,CAAC;YAC7B,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,sCAAsC,CAAC,CAAC;QAC5G,CAAC;QAGD,MAAM,SAAS,GAAG,iBAAiB,CAAC,SAAS;YAC3C,CAAC,CAAC,iBAAiB,CAAC,SAAS,EAAE;YAC/B,CAAC,CAAC,iBAAiB,CAAC,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC;QAC7C,IAAI,SAAS,EAAE,CAAC;YAEd,MAAM,oBAAoB,EAAE,CAAC;YAC7B,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,+BAA+B,CAAC,CAAC;QACrG,CAAC;QAGD,MAAM,mBAAmB,GAAG,iBAAiB,CAAC,mBAAmB;YAC/D,CAAC,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,CAAC,CAAC;YAC1C,CAAC,CAAC,iBAAiB,CAAC,QAAQ,IAAI,CAAC,CAAC;QACpC,IAAI,mBAAmB,EAAE,CAAC;YAExB,MAAM,oBAAoB,EAAE,CAAC;YAC7B,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,8BAA8B,EAC5C,+CAA+C,CAChD,CAAC;QACJ,CAAC;QAOD,MAAM,kBAAkB,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,kBAAkB,IAAI,EAAE,CAAC;QAG3F,MAAM,sBAAsB,GAAG,KAAK,IAAmB,EAAE;YACvD,MAAM,gBAAgB,GAAG,wBAAwB,IAAI,CAAC,EAAE,EAAE,CAAC;YAC3D,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;YAEtE,IAAI,YAAY,KAAK,CAAC,EAAE,CAAC;gBACvB,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,gBAAgB,EAAE,aAAa,CAAC,CAAC;YACpE,CAAC;YAED,IAAI,YAAY,GAAG,kBAAkB,EAAE,CAAC;gBACtC,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,8BAA8B,EAC5C,yDAAyD,CAC1D,CAAC;YACJ,CAAC;QACH,CAAC,CAAC;QAGF,iBAAiB,CAAC,QAAQ,IAAI,CAAC,CAAC;QAGhC,IAAI,iBAAiB,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;YAEpC,MAAM,oBAAoB,EAAE,CAAC;YAC7B,MAAM,sBAAsB,EAAE,CAAC;YAE/B,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;YAKzD,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC;oBACnC,MAAM,EAAE,IAAI,CAAC,EAAY;oBACzB,SAAS,EAAE,+CAAkB,CAAC,yBAAyB;oBACvD,WAAW,EAAE,SAAS;oBACtB,MAAM,EAAE,cAAc;oBACtB,WAAW,EAAE,oCAAoC;oBAEjD,QAAQ,EAAE;wBACR,mBAAmB,EAAG,iBAAwC,CAAC,EAAE;wBACjE,QAAQ,EAAE,iBAAiB,CAAC,QAAQ;qBACrC;iBACF,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,UAAU,EAAE,CAAC;gBAEpB,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACxF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,2DAA2D,YAAY,EAAE,EAAE;oBAC9F,KAAK,EAAE,UAAU;oBACjB,MAAM,EAAE,IAAI,CAAC,EAAE;iBAChB,CAAC,CAAC;YACL,CAAC;YAED,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,2BAA2B,CAAC,CAAC;QACjG,CAAC;QAQD,iBAAiB,CAAC,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACtC,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAGzD,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE;YAClC,eAAe,EAAE,IAAI;YAErB,QAAQ,EAAE,IAAI;SACf,CAAC,CAAC;QAKH,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC;gBACnC,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,SAAS,EAAE,+CAAkB,CAAC,cAAc;gBAC5C,WAAW,EAAE,SAAS;gBACtB,QAAQ,EAAE;oBACR,mBAAmB,EAAG,iBAAwC,CAAC,EAAE;oBACjE,kBAAkB,EAAE,MAAM;iBAE3B;aACF,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,UAAU,EAAE,CAAC;YAEpB,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACxF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,gDAAgD,YAAY,EAAE,EAAE;gBACnF,KAAK,EAAE,UAAU;gBACjB,MAAM,EAAE,IAAI,CAAC,EAAE;aAChB,CAAC,CAAC;QACL,CAAC;QAGD,OAAO;YACL,OAAO,EAAE,yDAAyD;SACnE,CAAC;IACJ,CAAC;IASD,KAAK,CAAC,oBAAoB,CAAC,GAA4B;QACrD,MAAM,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;QACtB,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAGxC,MAAM,iBAAiB,GAAG,CAAC,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC;YAClE,KAAK,EAAE;gBACL,KAAK,EAAE,SAAS;gBAChB,IAAI,EAAE,OAAO;gBACb,MAAM,EAAE,IAAA,gBAAM,GAAE;aACjB;SACF,CAAC,CAA8B,CAAC;QAEjC,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACvB,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,sCAAsC,CAAC,CAAC;QAC5G,CAAC;QAGD,MAAM,SAAS,GAAG,iBAAiB,CAAC,SAAS;YAC3C,CAAC,CAAC,iBAAiB,CAAC,SAAS,EAAE;YAC/B,CAAC,CAAC,iBAAiB,CAAC,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC;QAC7C,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,+BAA+B,CAAC,CAAC;QACrG,CAAC;QAGD,iBAAiB,CAAC,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACtC,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAGzD,MAAM,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC;YACxC,KAAK,EAAE,EAAE,EAAE,EAAE,iBAAiB,CAAC,MAAM,EAAE;SACxC,CAAC,CAAiB,CAAC;QAGpB,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,iBAAiB,CAAC,MAAM,EAAE;YACnD,eAAe,EAAE,IAAI;YAErB,QAAQ,EAAE,IAAI;SACf,CAAC,CAAC;QAKH,IAAI,IAAI,EAAE,CAAC;YACT,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC;oBACnC,MAAM,EAAE,IAAI,CAAC,EAAE;oBACf,SAAS,EAAE,+CAAkB,CAAC,cAAc;oBAC5C,WAAW,EAAE,SAAS;oBACtB,QAAQ,EAAE;wBACR,mBAAmB,EAAG,iBAAwC,CAAC,EAAE;wBACjE,kBAAkB,EAAE,OAAO;qBAE5B;iBACF,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,UAAU,EAAE,CAAC;gBAEpB,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACxF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,8DAA8D,YAAY,EAAE,EAAE;oBACjG,KAAK,EAAE,UAAU;oBACjB,MAAM,EAAE,IAAI,EAAE,EAAE;iBACjB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,yDAAyD;SACnE,CAAC;IACJ,CAAC;IASD,KAAK,CAAC,uBAAuB,CAAC,GAA+B;QAE3D,IAAI,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC;YAC3B,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,iBAAiB,EAAE,sCAAsC,CAAC,CAAC;QACpG,CAAC;QAED,IAAI,GAAG,CAAC,GAAG,EAAE,CAAC;YACZ,OAAO,IAAI,CAAC,4BAA4B,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;QACjE,CAAC;QAED,OAAO,IAAI,CAAC,8BAA8B,CAAC,GAAG,CAAC,KAAM,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;IACtE,CAAC;IAEO,KAAK,CAAC,4BAA4B,CACxC,GAAW,EACX,OAAgB;QAGhB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;QAC7D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAGD,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,WAAW,IAAI,EAAE,CAAC;QAC7E,MAAM,SAAS,GAAG,CAAC,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC;YAC1D,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE;YACzC,KAAK,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE;SAC7B,CAAC,CAA8B,CAAC;QAEjC,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,oBAAoB,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC,GAAG,IAAI,CAAC;YACjF,IAAI,oBAAoB,GAAG,WAAW,EAAE,CAAC;gBACvC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,GAAG,oBAAoB,CAAC,CAAC;gBAClE,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,iBAAiB,EAC/B,eAAe,WAAW,yCAAyC,EACnE;oBACE,UAAU,EAAE,WAAW;oBACvB,WAAW;iBACZ,CACF,CAAC;YACJ,CAAC;QACH,CAAC;QAID,MAAM,GAAG,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,2CAAwB,EAAE,EAAE;YACxD,GAAG;YACH,OAAO;YACP,kBAAkB,EAAE,SAAS,EAAE,kBAAkB,IAAI,SAAS;SAC/D,CAAC,CAAC;QACH,OAAO,IAAI,CAAC,qBAAqB,CAAC,GAAG,CAAC,CAAC;IACzC,CAAC;IAEO,KAAK,CAAC,8BAA8B,CAC1C,KAAa,EACb,OAAgB;QAEhB,MAAM,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,EAAE,CAAC,CAAiB,CAAC;QACjF,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAED,OAAO,IAAI,CAAC,4BAA4B,CAAC,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAC9D,CAAC;IAMO,YAAY;QAClB,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,MAAM,CAAC,CAAC,QAAQ,EAAE,CAAC;IAChE,CAAC;IAMO,aAAa;QACnB,OAAO,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IAOO,SAAS,CAAC,KAAa;QAC7B,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACjE,CAAC;CACF;AA/hBD,4DA+hBC"}
+{"version":3,"file":"email-verification.service.js","sourceRoot":"","sources":["../../src/services/email-verification.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,qCAA6C;AAQ7C,oFAAyE;AACzE,mEAA+D;AAC/D,gEAA0D;AAE1D,8DAQiC;AACjC,+CAAiC;AAEjC;;;;;;;;;;GAUG;AACH,MAAa,wBAAwB;IAEhB;IACA;IACA;IACA;IACA;IACA;IACA;IACA;IARnB,YACmB,qBAAwD,EACxD,QAA8B,EAC9B,aAA4B,EAC5B,cAA8B,EAC9B,MAAmB,EACnB,iBAAoC,EACpC,MAAmB,EACnB,YAA+B;QAP/B,0BAAqB,GAArB,qBAAqB,CAAmC;QACxD,aAAQ,GAAR,QAAQ,CAAsB;QAC9B,kBAAa,GAAb,aAAa,CAAe;QAC5B,mBAAc,GAAd,cAAc,CAAgB;QAC9B,WAAM,GAAN,MAAM,CAAa;QACnB,sBAAiB,GAAjB,iBAAiB,CAAmB;QACpC,WAAM,GAAN,MAAM,CAAa;QACnB,iBAAY,GAAZ,YAAY,CAAmB;IAC/C,CAAC;IAEJ;;;;;;OAMG;IACH,KAAK,CAAC,qBAAqB,CAAC,GAA6B;QACvD,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,wBAAwB,GAAG,KAAK,EAAE,kBAAkB,EAAE,GAAG,GAAG,CAAC;QACnF,+EAA+E;QAC/E,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,YAAY,IAAI,CAAC,CAAC;QAC9E,MAAM,eAAe,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,eAAe,IAAI,IAAI,CAAC,CAAC,oBAAoB;QAE5G,+CAA+C;QAC/C,MAAM,YAAY,GAAG,sBAAsB,GAAG,EAAE,CAAC;QAEjD,sDAAsD;QACtD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAC9D,uHAAuH;QACvH,MAAM,eAAe,GAAG,SAAS,KAAK,CAAC,CAAC,IAAI,SAAS,GAAG,CAAC,IAAI,SAAS,GAAG,eAAe,CAAC;QAEzF,2FAA2F;QAC3F,gGAAgG;QAChG,IAAI,SAAS,GAAG,eAAe,EAAE,CAAC;YAChC,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAC9C,CAAC;QAED,sEAAsE;QACtE,sEAAsE;QACtE,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,YAAY,EAAE,eAAe,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;QAEjH,qCAAqC;QACrC,IAAI,eAAe,IAAI,YAAY,KAAK,CAAC,EAAE,CAAC;YAC1C,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,uDAAuD,GAAG,YAAY,eAAe,UAAU,YAAY,EAAE,CAC9G,CAAC;QACJ,CAAC;QAED,0DAA0D;QAC1D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAE9D,IAAI,YAAY,GAAG,YAAY,EAAE,CAAC;YAChC,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,gBAAgB,EAC9B,4DAA4D,EAC5D;gBACE,UAAU,EAAE,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,eAAe;gBACvD,YAAY;gBACZ,WAAW,EAAE,YAAY;aAC1B,CACF,CAAC;QACJ,CAAC;QAED,yDAAyD;QACzD,MAAM,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,EAAE,CAAC,CAAiB,CAAC;QAC/E,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAED,sCAAsC;QACtC,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,WAAW,IAAI,EAAE,CAAC,CAAC,mBAAmB;QACjG,MAAM,SAAS,GAAG,CAAC,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC;YAC1D,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE;YACzC,KAAK,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE;SAC7B,CAAC,CAA8B,CAAC;QAEjC,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,oBAAoB,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC,GAAG,IAAI,CAAC;YACjF,IAAI,oBAAoB,GAAG,WAAW,EAAE,CAAC;gBACvC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,GAAG,oBAAoB,CAAC,CAAC;gBAClE,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,iBAAiB,EAC/B,eAAe,WAAW,yCAAyC,EACnE;oBACE,UAAU,EAAE,WAAW;oBACvB,WAAW;iBACZ,CACF,CAAC;YACJ,CAAC;QACH,CAAC;QAED,yHAAyH;QACzH,IAAI,CAAC,wBAAwB,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACtD,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,gBAAgB,EAAE,wBAAwB,CAAC,CAAC;QACrF,CAAC;QAED,kEAAkE;QAClE,MAAM,IAAI,CAAC,qBAAqB,CAAC,MAAM,CACrC;YACE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,wCAAwC;YACzD,IAAI,EAAE,OAAO;YACb,MAAM,EAAE,IAAA,gBAAM,GAAE,EAAE,gCAAgC;SACnD,EACD;YACE,MAAM,EAAE,IAAI,IAAI,EAAE,EAAE,6BAA6B;SAClD,CACF,CAAC;QAEF,wCAAwC;QACxC,MAAM,IAAI,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QAEjC,4DAA4D;QAC5D,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QACnC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAExC,8DAA8D;QAC9D,6BAA6B;QAC7B,MAAM,UAAU,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE,CAAC;QAChD,MAAM,SAAS,GAAG,UAAU,CAAC,SAAS,CAAC;QACvC,MAAM,SAAS,GAAG,UAAU,CAAC,SAAS,CAAC;QAEvC,MAAM,iBAAiB,GAAG,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC;YAC1D,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,kCAAkC;YACnD,kBAAkB,EAAE,kBAAkB,IAAI,IAAI,EAAE,wCAAwC;YACxF,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,SAAS;YAChB,IAAI;YACJ,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,SAAS,IAAI,IAAI,CAAC,GAAG,IAAI,CAAC,EAAE,kBAAkB;YACvH,QAAQ,EAAE,CAAC;YACX,SAAS;YACT,SAAS;SACV,CAAC,CAAC;QAEH,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAEzD,yDAAyD;QACzD,iEAAiE;QACjE,MAAM,gBAAgB,GAAG,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,uBAAuB,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;QAExF,wDAAwD;QACxD,MAAM,IAAI,CAAC,aAAa,CAAC,qBAAqB,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC;QAEnF,+EAA+E;QAC/E,2CAA2C;QAC3C,+EAA+E;QAC/E,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC;gBACnC,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,SAAS,EAAE,+CAAkB,CAAC,4BAA4B;gBAC1D,WAAW,EAAE,MAAM;gBACnB,QAAQ,EAAE;oBACR,mBAAmB,EAAG,iBAAmD,CAAC,EAAE;iBAC7E;gBACD,kDAAkD;aACnD,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,UAAU,EAAE,CAAC;YACpB,iCAAiC;YACjC,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACxF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,8DAA8D,YAAY,EAAE,EAAE;gBACjG,KAAK,EAAE,UAAU;gBACjB,MAAM,EAAE,IAAI,CAAC,EAAE;aAChB,CAAC,CAAC;QACL,CAAC;QAED,OAAO,EAAE,OAAO,EAAG,iBAAmD,CAAC,EAAE,EAAE,CAAC;IAC9E,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,mBAAmB,CAAC,GAA2B;QACnD,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kBAAkB,EAAE,GAAG,GAAG,CAAC;QAChD,+EAA+E;QAC/E,qCAAqC;QACrC,iFAAiF;QACjF,sDAAsD;QACtD,+EAA+E;QAC/E,MAAM,gBAAgB,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,gBAAgB,IAAI,EAAE,CAAC;QACvF,MAAM,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,aAAa,IAAI,IAAI,CAAC,CAAC,SAAS;QAC7F,MAAM,UAAU,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE,CAAC;QAEhD,qBAAqB;QACrB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,EAAE,CAAC,CAAC;QAC/D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAED,iCAAiC;QACjC,mFAAmF;QACnF,uEAAuE;QACvE,MAAM,WAAW,GAAG;YAClB,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,IAAI,EAAE,OAAgB;YACtB,IAAI;YACJ,MAAM,EAAE,IAAA,gBAAM,GAAE;YAChB,GAAG,CAAC,kBAAkB,KAAK,SAAS,IAAI,EAAE,kBAAkB,EAAE,CAAC,EAAE,sBAAsB;SACxF,CAAC;QAEF,MAAM,iBAAiB,GAAG,CAAC,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC;YAClE,KAAK,EAAE,WAAW;SACnB,CAAC,CAA8B,CAAC;QAEjC,+EAA+E;QAC/E,8DAA8D;QAC9D,uEAAuE;QACvE,+EAA+E;QAC/E,MAAM,oBAAoB,GAAG,KAAK,IAAmB,EAAE;YACrD,IAAI,UAAU,CAAC,SAAS,EAAE,CAAC;gBACzB,MAAM,cAAc,GAAG,sBAAsB,UAAU,CAAC,SAAS,EAAE,CAAC;gBACpE,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;gBAElE,IAAI,UAAU,KAAK,CAAC,EAAE,CAAC;oBACrB,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,cAAc,EAAE,aAAa,CAAC,CAAC;gBAClE,CAAC;gBAED,IAAI,UAAU,GAAG,gBAAgB,EAAE,CAAC;oBAClC,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,8BAA8B,EAC5C,sEAAsE,CACvE,CAAC;gBACJ,CAAC;YACH,CAAC;QACH,CAAC,CAAC;QAEF,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACvB,4CAA4C;YAC5C,MAAM,oBAAoB,EAAE,CAAC;YAC7B,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,sCAAsC,CAAC,CAAC;QAC5G,CAAC;QAED,eAAe;QACf,MAAM,SAAS,GAAG,iBAAiB,CAAC,SAAS;YAC3C,CAAC,CAAC,iBAAiB,CAAC,SAAS,EAAE;YAC/B,CAAC,CAAC,iBAAiB,CAAC,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC;QAC7C,IAAI,SAAS,EAAE,CAAC;YACd,0CAA0C;YAC1C,MAAM,oBAAoB,EAAE,CAAC;YAC7B,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,+BAA+B,CAAC,CAAC;QACrG,CAAC;QAED,kCAAkC;QAClC,MAAM,mBAAmB,GAAG,iBAAiB,CAAC,mBAAmB;YAC/D,CAAC,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,CAAC,CAAC;YAC1C,CAAC,CAAC,iBAAiB,CAAC,QAAQ,IAAI,CAAC,CAAC;QACpC,IAAI,mBAAmB,EAAE,CAAC;YACxB,wDAAwD;YACxD,MAAM,oBAAoB,EAAE,CAAC;YAC7B,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,8BAA8B,EAC5C,+CAA+C,CAChD,CAAC;QACJ,CAAC;QAED,+EAA+E;QAC/E,kFAAkF;QAClF,iFAAiF;QACjF,wDAAwD;QACxD,+EAA+E;QAC/E,MAAM,kBAAkB,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,kBAAkB,IAAI,EAAE,CAAC;QAE3F,kEAAkE;QAClE,MAAM,sBAAsB,GAAG,KAAK,IAAmB,EAAE;YACvD,MAAM,gBAAgB,GAAG,wBAAwB,IAAI,CAAC,EAAE,EAAE,CAAC;YAC3D,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;YAEtE,IAAI,YAAY,KAAK,CAAC,EAAE,CAAC;gBACvB,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,gBAAgB,EAAE,aAAa,CAAC,CAAC;YACpE,CAAC;YAED,IAAI,YAAY,GAAG,kBAAkB,EAAE,CAAC;gBACtC,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,8BAA8B,EAC5C,yDAAyD,CAC1D,CAAC;YACJ,CAAC;QACH,CAAC,CAAC;QAEF,wDAAwD;QACxD,iBAAiB,CAAC,QAAQ,IAAI,CAAC,CAAC;QAEhC,qDAAqD;QACrD,IAAI,iBAAiB,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;YACpC,wDAAwD;YACxD,MAAM,oBAAoB,EAAE,CAAC;YAC7B,MAAM,sBAAsB,EAAE,CAAC;YAE/B,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;YAEzD,+EAA+E;YAC/E,2CAA2C;YAC3C,+EAA+E;YAC/E,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC;oBACnC,MAAM,EAAE,IAAI,CAAC,EAAY;oBACzB,SAAS,EAAE,+CAAkB,CAAC,yBAAyB;oBACvD,WAAW,EAAE,SAAS;oBACtB,MAAM,EAAE,cAAc;oBACtB,WAAW,EAAE,oCAAoC;oBACjD,kDAAkD;oBAClD,QAAQ,EAAE;wBACR,mBAAmB,EAAG,iBAAwC,CAAC,EAAE;wBACjE,QAAQ,EAAE,iBAAiB,CAAC,QAAQ;qBACrC;iBACF,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,UAAU,EAAE,CAAC;gBACpB,iCAAiC;gBACjC,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACxF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,2DAA2D,YAAY,EAAE,EAAE;oBAC9F,KAAK,EAAE,UAAU;oBACjB,MAAM,EAAE,IAAI,CAAC,EAAE;iBAChB,CAAC,CAAC;YACL,CAAC;YAED,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,2BAA2B,CAAC,CAAC;QACjG,CAAC;QAED,+EAA+E;QAC/E,oDAAoD;QACpD,+CAA+C;QAC/C,+EAA+E;QAE/E,qBAAqB;QACrB,iBAAiB,CAAC,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACtC,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAEzD,oDAAoD;QACpD,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE;YAClC,eAAe,EAAE,IAAI;YACrB,sCAAsC;YACtC,QAAQ,EAAE,IAAI;SACf,CAAC,CAAC;QAEH,+EAA+E;QAC/E,2CAA2C;QAC3C,+EAA+E;QAC/E,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC;gBACnC,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,SAAS,EAAE,+CAAkB,CAAC,cAAc;gBAC5C,WAAW,EAAE,SAAS;gBACtB,QAAQ,EAAE;oBACR,mBAAmB,EAAG,iBAAwC,CAAC,EAAE;oBACjE,kBAAkB,EAAE,MAAM;oBAC1B,kDAAkD;iBACnD;aACF,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,UAAU,EAAE,CAAC;YACpB,iCAAiC;YACjC,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACxF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,gDAAgD,YAAY,EAAE,EAAE;gBACnF,KAAK,EAAE,UAAU;gBACjB,MAAM,EAAE,IAAI,CAAC,EAAE;aAChB,CAAC,CAAC;QACL,CAAC;QAED,yEAAyE;QACzE,OAAO;YACL,OAAO,EAAE,yDAAyD;SACnE,CAAC;IACJ,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,oBAAoB,CAAC,GAA4B;QACrD,MAAM,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;QACtB,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAExC,0BAA0B;QAC1B,MAAM,iBAAiB,GAAG,CAAC,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC;YAClE,KAAK,EAAE;gBACL,KAAK,EAAE,SAAS;gBAChB,IAAI,EAAE,OAAO;gBACb,MAAM,EAAE,IAAA,gBAAM,GAAE;aACjB;SACF,CAAC,CAA8B,CAAC;QAEjC,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACvB,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,sCAAsC,CAAC,CAAC;QAC5G,CAAC;QAED,eAAe;QACf,MAAM,SAAS,GAAG,iBAAiB,CAAC,SAAS;YAC3C,CAAC,CAAC,iBAAiB,CAAC,SAAS,EAAE;YAC/B,CAAC,CAAC,iBAAiB,CAAC,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC;QAC7C,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,yBAAyB,EAAE,+BAA+B,CAAC,CAAC;QACrG,CAAC;QAED,qBAAqB;QACrB,iBAAiB,CAAC,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACtC,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAEzD,6BAA6B;QAC7B,MAAM,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC;YACxC,KAAK,EAAE,EAAE,EAAE,EAAE,iBAAiB,CAAC,MAAM,EAAE;SACxC,CAAC,CAAiB,CAAC;QAEpB,cAAc;QACd,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,iBAAiB,CAAC,MAAM,EAAE;YACnD,eAAe,EAAE,IAAI;YACrB,sCAAsC;YACtC,QAAQ,EAAE,IAAI;SACf,CAAC,CAAC;QAEH,+EAA+E;QAC/E,yDAAyD;QACzD,+EAA+E;QAC/E,IAAI,IAAI,EAAE,CAAC;YACT,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,YAAY,EAAE,WAAW,CAAC;oBACnC,MAAM,EAAE,IAAI,CAAC,EAAE;oBACf,SAAS,EAAE,+CAAkB,CAAC,cAAc;oBAC5C,WAAW,EAAE,SAAS;oBACtB,QAAQ,EAAE;wBACR,mBAAmB,EAAG,iBAAwC,CAAC,EAAE;wBACjE,kBAAkB,EAAE,OAAO;wBAC3B,kDAAkD;qBACnD;iBACF,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,UAAU,EAAE,CAAC;gBACpB,iCAAiC;gBACjC,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACxF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,8DAA8D,YAAY,EAAE,EAAE;oBACjG,KAAK,EAAE,UAAU;oBACjB,MAAM,EAAE,IAAI,EAAE,EAAE;iBACjB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,yDAAyD;SACnE,CAAC;IACJ,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,uBAAuB,CAAC,GAA+B;QAC3D,gDAAgD;QAChD,IAAI,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC;YAC3B,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,iBAAiB,EAAE,sCAAsC,CAAC,CAAC;QACpG,CAAC;QAED,IAAI,GAAG,CAAC,GAAG,EAAE,CAAC;YACZ,OAAO,IAAI,CAAC,4BAA4B,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;QACjE,CAAC;QAED,OAAO,IAAI,CAAC,8BAA8B,CAAC,GAAG,CAAC,KAAM,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;IACtE,CAAC;IAEO,KAAK,CAAC,4BAA4B,CACxC,GAAW,EACX,OAAgB;QAEhB,qCAAqC;QACrC,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;QAC7D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAED,6DAA6D;QAC7D,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,WAAW,IAAI,EAAE,CAAC;QAC7E,MAAM,SAAS,GAAG,CAAC,MAAM,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC;YAC1D,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE;YACzC,KAAK,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE;SAC7B,CAAC,CAA8B,CAAC;QAEjC,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,oBAAoB,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC,GAAG,IAAI,CAAC;YACjF,IAAI,oBAAoB,GAAG,WAAW,EAAE,CAAC;gBACvC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,GAAG,oBAAoB,CAAC,CAAC;gBAClE,MAAM,IAAI,gCAAc,CACtB,gCAAa,CAAC,iBAAiB,EAC/B,eAAe,WAAW,yCAAyC,EACnE;oBACE,UAAU,EAAE,WAAW;oBACvB,WAAW;iBACZ,CACF,CAAC;YACJ,CAAC;QACH,CAAC;QAED,8DAA8D;QAC9D,kFAAkF;QAClF,MAAM,GAAG,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,2CAAwB,EAAE,EAAE;YACxD,GAAG;YACH,OAAO;YACP,kBAAkB,EAAE,SAAS,EAAE,kBAAkB,IAAI,SAAS;SAC/D,CAAC,CAAC;QACH,OAAO,IAAI,CAAC,qBAAqB,CAAC,GAAG,CAAC,CAAC;IACzC,CAAC;IAEO,KAAK,CAAC,8BAA8B,CAC1C,KAAa,EACb,OAAgB;QAEhB,MAAM,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,EAAE,CAAC,CAAiB,CAAC;QACjF,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACtE,CAAC;QAED,OAAO,IAAI,CAAC,4BAA4B,CAAC,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAC9D,CAAC;IAED;;;OAGG;IACK,YAAY;QAClB,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,MAAM,CAAC,CAAC,QAAQ,EAAE,CAAC;IAChE,CAAC;IAED;;;OAGG;IACK,aAAa;QACnB,OAAO,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IAED;;;;OAIG;IACK,SAAS,CAAC,KAAa;QAC7B,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACjE,CAAC;CACF;AA/hBD,4DA+hBC"}

package/dist/services/geo-location.service.d.ts

@@ -1,6 +1,12 @@
 import { NAuthConfig } from '../interfaces/config.interface';
 import { StorageAdapter } from '../interfaces/storage-adapter.interface';
 import { NAuthLogger } from '../utils/nauth-logger';
+/**
+ * MaxMind GeoIP2 Reader type (optional dependency)
+ * Only available if @maxmind/geoip2-node is installed
+ *
+ * The Reader class has city() and country() methods that return response objects
+ */
 type MaxMindReader = {
     city: (ip: string) => {
         country?: {
@@ -51,11 +57,40 @@ type MaxMindReader = {
         };
     };
 };
+/**
+ * MaxMind library module type (optional peer dependency)
+ * Injected via dependency injection if package is installed
+ */
 type MaxMindModule = {
     Reader: {
         open: (dbPath: string) => Promise<MaxMindReader>;
     };
 };
+/**
+ * GeoLocation Service
+ *
+ * Provides IP geolocation using MaxMind GeoIP2 database files.
+ * Platform-agnostic - works on all platforms where Node.js runs.
+ *
+ * Features:
+ * - IP to country/city lookup from MaxMind .mmdb files
+ * - Distributed locking for database updates (multi-server safe)
+ * - Configurable database path (defaults to system temp directory)
+ * - Graceful degradation if MaxMind not installed
+ *
+ * Requirements:
+ * - @maxmind/geoip2-node peer dependency must be installed
+ * - MaxMind license key and account ID for database downloads
+ * - Storage adapter (for distributed locking)
+ *
+ * @example
+ * ```typescript
+ * // Get geolocation for an IP
+ * const geo = await geoLocationService.getIpGeolocation('8.8.8.8');
+ * console.log(geo.country); // 'US'
+ * console.log(geo.city); // 'Mountain View'
+ * ```
+ */
 export declare class GeoLocationService {
     private readonly storageAdapter;
     private readonly logger?;
@@ -68,17 +103,87 @@ export declare class GeoLocationService {
     private readonly lockKey;
     private readonly lockTtlSeconds;
     constructor(nauthConfig: NAuthConfig, storageAdapter: StorageAdapter, maxMindLib?: MaxMindModule | null, logger?: NAuthLogger | undefined);
+    /**
+     * Initialize service on module startup
+     *
+     * - Loads database files if they exist
+     * - Optionally downloads databases if autoDownloadOnStartup is enabled
+     */
     onModuleInit(): Promise<void>;
+    /**
+     * Get geolocation information for an IP address
+     *
+     * @param ip - IP address to lookup
+     * @returns Geolocation info with country, city, and coordinates (if available)
+     *
+     * @example
+     * ```typescript
+     * const geo = await geoLocationService.getIpGeolocation('8.8.8.8');
+     * // { country: 'US', city: 'Mountain View', latitude: 37.386, longitude: -122.0838 }
+     * ```
+     */
     getIpGeolocation(ip: string): Promise<{
         country?: string;
         city?: string;
         latitude?: number;
         longitude?: number;
     }>;
+    /**
+     * Update MaxMind GeoIP2 database files
+     *
+     * Downloads the latest database files from MaxMind using distributed locking
+     * to prevent concurrent downloads in multi-server deployments.
+     *
+     * Uses storage adapter for distributed locking:
+     * - Lock key: 'maxmind-db-update-lock'
+     * - Lock TTL: 5 minutes (300 seconds)
+     * - Only one server/process can download at a time
+     *
+     * @throws {NAuthException} If MaxMind credentials are missing or download fails
+     *
+     * @example
+     * ```typescript
+     * // Call this method via cron job for periodic updates
+     * await geoLocationService.updateGeoLocationDatabase();
+     * ```
+     */
     updateGeoLocationDatabase(): Promise<void>;
+    /**
+     * Ensure database directory exists
+     *
+     * Creates the directory if it doesn't exist.
+     */
     private ensureDbDirectoryExists;
+    /**
+     * Load database files from disk
+     *
+     * Loads .mmdb files for City and Country databases if they exist.
+     */
     private loadDatabaseFiles;
+    /**
+     * Download a MaxMind database file
+     *
+     * Downloads the specified edition from MaxMind's download API,
+     * extracts the .mmdb file from the tar.gz archive, and saves it.
+     *
+     * Uses Node.js built-in zlib for gzip decompression and implements
+     * basic tar parsing to extract the .mmdb file.
+     *
+     * @param edition - Edition name (e.g., 'GeoLite2-City')
+     * @param accountId - MaxMind account ID
+     * @param licenseKey - MaxMind license key
+     */
     private downloadDatabase;
+    /**
+     * Extract .mmdb file from tar.gz archive
+     *
+     * Uses Node.js built-in zlib for gzip decompression and implements
+     * basic tar parsing to find and extract the .mmdb file.
+     *
+     * @param tarGzPath - Path to the .tar.gz file
+     * @param outputPath - Path where .mmdb file should be saved
+     * @param edition - Edition name (to find correct file in archive)
+     */
     private extractTarGz;
 }
 export {};

package/dist/services/geo-location.service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"geo-location.service.d.ts","sourceRoot":"","sources":["../../src/services/geo-location.service.ts"],"names":[],"mappings":"AAGA,OAAO,EAAqB,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAChF,OAAO,EAAE,cAAc,EAAE,MAAM,yCAAyC,CAAC;AACzE,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAepD,KAAK,aAAa,GAAG;IACnB,IAAI,EAAE,CAAC,EAAE,EAAE,MAAM,KAAK;QACpB,OAAO,CAAC,EAAE;YAAE,OAAO,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAC;YAAC,iBAAiB,CAAC,EAAE,OAAO,CAAA;SAAE,CAAC;QACrF,IAAI,CAAC,EAAE;YAAE,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAA;SAAE,CAAC;QACnC,YAAY,CAAC,EAAE,KAAK,CAAC;YAAE,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAA;SAAE,CAAC,CAAC;QAClD,MAAM,CAAC,EAAE;YAAE,IAAI,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QAC3B,QAAQ,CAAC,EAAE;YAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;YAAC,SAAS,CAAC,EAAE,MAAM,CAAC;YAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QACxE,SAAS,CAAC,EAAE;YAAE,IAAI,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAA;SAAE,CAAC;KACxD,CAAC;IACF,OAAO,EAAE,CAAC,EAAE,EAAE,MAAM,KAAK;QACvB,OAAO,CAAC,EAAE;YAAE,OAAO,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAC;YAAC,iBAAiB,CAAC,EAAE,OAAO,CAAA;SAAE,CAAC;QACrF,SAAS,CAAC,EAAE;YAAE,IAAI,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAA;SAAE,CAAC;KACxD,CAAC;CACH,CAAC;AAMF,KAAK,aAAa,GAAG;IACnB,MAAM,EAAE;QACN,IAAI,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,OAAO,CAAC,aAAa,CAAC,CAAC;KAClD,CAAC;CACH,CAAC;AA2BF,qBAAa,kBAAkB;IAY3B,OAAO,CAAC,QAAQ,CAAC,cAAc;IAE/B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IAb1B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA+B;IACtD,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAuB;IAClD,OAAO,CAAC,UAAU,CAA8B;IAChD,OAAO,CAAC,aAAa,CAA8B;IACnD,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAyC;IACzE,OAAO,CAAC,QAAQ,CAAC,OAAO,CAA4B;IACpD,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAO;gBAGpC,WAAW,EAAE,WAAW,EACP,cAAc,EAAE,cAAc,EAC/C,UAAU,CAAC,EAAE,aAAa,GAAG,IAAI,EAChB,MAAM,CAAC,EAAE,WAAW,YAAA;IAyCjC,YAAY,IAAI,OAAO,CAAC,IAAI,CAAC;IA0C7B,gBAAgB,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC;QAC1C,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC;IAyFI,yBAAyB,IAAI,OAAO,CAAC,IAAI,CAAC;YAyGlC,uBAAuB;YAiBvB,iBAAiB;YAmFjB,gBAAgB;YAoFhB,YAAY;CAkD3B"}
+{"version":3,"file":"geo-location.service.d.ts","sourceRoot":"","sources":["../../src/services/geo-location.service.ts"],"names":[],"mappings":"AAGA,OAAO,EAAqB,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAChF,OAAO,EAAE,cAAc,EAAE,MAAM,yCAAyC,CAAC;AACzE,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AASpD;;;;;GAKG;AACH,KAAK,aAAa,GAAG;IACnB,IAAI,EAAE,CAAC,EAAE,EAAE,MAAM,KAAK;QACpB,OAAO,CAAC,EAAE;YAAE,OAAO,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAC;YAAC,iBAAiB,CAAC,EAAE,OAAO,CAAA;SAAE,CAAC;QACrF,IAAI,CAAC,EAAE;YAAE,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAA;SAAE,CAAC;QACnC,YAAY,CAAC,EAAE,KAAK,CAAC;YAAE,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAA;SAAE,CAAC,CAAC;QAClD,MAAM,CAAC,EAAE;YAAE,IAAI,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QAC3B,QAAQ,CAAC,EAAE;YAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;YAAC,SAAS,CAAC,EAAE,MAAM,CAAC;YAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QACxE,SAAS,CAAC,EAAE;YAAE,IAAI,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAA;SAAE,CAAC;KACxD,CAAC;IACF,OAAO,EAAE,CAAC,EAAE,EAAE,MAAM,KAAK;QACvB,OAAO,CAAC,EAAE;YAAE,OAAO,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAC;YAAC,iBAAiB,CAAC,EAAE,OAAO,CAAA;SAAE,CAAC;QACrF,SAAS,CAAC,EAAE;YAAE,IAAI,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE;gBAAE,EAAE,CAAC,EAAE,MAAM,CAAA;aAAE,CAAA;SAAE,CAAC;KACxD,CAAC;CACH,CAAC;AAEF;;;GAGG;AACH,KAAK,aAAa,GAAG;IACnB,MAAM,EAAE;QACN,IAAI,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,OAAO,CAAC,aAAa,CAAC,CAAC;KAClD,CAAC;CACH,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,qBAAa,kBAAkB;IAY3B,OAAO,CAAC,QAAQ,CAAC,cAAc;IAE/B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IAb1B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA+B;IACtD,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAuB;IAClD,OAAO,CAAC,UAAU,CAA8B;IAChD,OAAO,CAAC,aAAa,CAA8B;IACnD,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAyC;IACzE,OAAO,CAAC,QAAQ,CAAC,OAAO,CAA4B;IACpD,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAO;gBAGpC,WAAW,EAAE,WAAW,EACP,cAAc,EAAE,cAAc,EAC/C,UAAU,CAAC,EAAE,aAAa,GAAG,IAAI,EAChB,MAAM,CAAC,EAAE,WAAW,YAAA;IAmCvC;;;;;OAKG;IACG,YAAY,IAAI,OAAO,CAAC,IAAI,CAAC;IA8BnC;;;;;;;;;;;OAWG;IACG,gBAAgB,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC;QAC1C,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC;IAsEF;;;;;;;;;;;;;;;;;;OAkBG;IACG,yBAAyB,IAAI,OAAO,CAAC,IAAI,CAAC;IAoGhD;;;;OAIG;YACW,uBAAuB;IAYrC;;;;OAIG;YACW,iBAAiB;IAsE/B;;;;;;;;;;;;OAYG;YACW,gBAAgB;IA0E9B;;;;;;;;;OASG;YACW,YAAY;CAkD3B"}