@nauth-toolkit/core 0.1.14 → 0.1.17

package/dist/services/auth-flow-state-machine.service.d.ts

@@ -1,13 +1,104 @@
 import { AuthFlowState, AuthFlowContext, StateDefinition, ResponseMetadata } from './auth-flow-state-machine.types';
 import { AuthFlowContextBuilder } from './auth-flow-context-builder.service';
 import { NAuthLogger } from '../utils/nauth-logger';
+/**
+ * Authentication Flow State Machine Service
+ *
+ * Core engine for evaluating authentication flow states using declarative rules.
+ * Replaces imperative if/else logic with a rule-based state machine.
+ *
+ * **How it works:**
+ * 1. Build context with pre-computed values
+ * 2. Evaluate states in priority order (1-9)
+ * 3. Select first state whose condition rule evaluates to true
+ * 4. Execute onEnter hook if defined
+ * 5. Return state with metadata
+ *
+ * **Benefits:**
+ * - Declarative and maintainable
+ * - Easy to test (pure functions)
+ * - Extensible (add new states/rules easily)
+ * - Clear priority ordering
+ *
+ * @example
+ * ```typescript
+ * const state = await stateMachine.evaluateState(context);
+ * const definition = stateMachine.getStateDefinition(state);
+ * ```
+ */
 export declare class AuthFlowStateMachineService {
     private readonly contextBuilder;
     private readonly logger?;
     constructor(contextBuilder: AuthFlowContextBuilder, logger?: NAuthLogger | undefined);
+    /**
+     * Evaluate authentication flow state
+     *
+     * Evaluates states in priority order and returns the first matching state.
+     * Executes onEnter hook if defined for the selected state.
+     *
+     * @param context - Authentication flow context
+     * @returns Evaluated state
+     *
+     * @example
+     * ```typescript
+     * const context = await contextBuilder.build({ user, config, authMethod: 'password' });
+     * const state = await stateMachine.evaluateState(context);
+     * // Returns: AuthFlowState.PENDING_EMAIL_VERIFICATION
+     * ```
+     */
     evaluateState(context: AuthFlowContext): Promise<AuthFlowState>;
+    /**
+     * Get state definition by state
+     *
+     * @param state - State to get definition for
+     * @returns State definition or undefined if not found
+     *
+     * @example
+     * ```typescript
+     * const def = stateMachine.getStateDefinition(AuthFlowState.PENDING_EMAIL_VERIFICATION);
+     * ```
+     */
     getStateDefinition(state: AuthFlowState): StateDefinition | undefined;
+    /**
+     * Build metadata for state response
+     *
+     * Calls buildMetadata function if defined for the state.
+     *
+     * @param state - State to build metadata for
+     * @param context - Authentication flow context
+     * @returns Metadata object or undefined
+     *
+     * @example
+     * ```typescript
+     * const metadata = await stateMachine.buildMetadata(state, context);
+     * // Returns: { gracePeriodEndsAt: Date, riskScore: 45, riskLevel: 'medium' }
+     * ```
+     */
     buildMetadata(state: AuthFlowState, context: AuthFlowContext): ResponseMetadata | undefined;
+    /**
+     * Transition after challenge completion
+     *
+     * Re-evaluates state after a challenge is completed.
+     * This is used in the challenge completion flow to determine the next state.
+     *
+     * @param params - Transition parameters
+     * @param params.completedChallenge - Challenge that was just completed
+     * @param params.context - Current authentication flow context
+     * @param params.updateFn - Function to update user data (e.g., mark email as verified)
+     * @returns New state after transition
+     *
+     * @example
+     * ```typescript
+     * const newState = await stateMachine.transitionAfterChallenge({
+     *   completedChallenge: AuthChallenge.VERIFY_EMAIL,
+     *   context,
+     *   updateFn: async (user) => {
+     *     user.isEmailVerified = true;
+     *     await userRepository.save(user);
+     *   }
+     * });
+     * ```
+     */
     transitionAfterChallenge(params: {
         completedChallenge: string;
         context: AuthFlowContext;

package/dist/services/auth-flow-state-machine.service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth-flow-state-machine.service.d.ts","sourceRoot":"","sources":["../../src/services/auth-flow-state-machine.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,eAAe,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACpH,OAAO,EAAE,sBAAsB,EAAE,MAAM,qCAAqC,CAAC;AAC7E,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AA4BpD,qBAAa,2BAA2B;IAEpC,OAAO,CAAC,QAAQ,CAAC,cAAc;IAC/B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;gBADP,cAAc,EAAE,sBAAsB,EACtC,MAAM,CAAC,EAAE,WAAW,YAAA;IAmBjC,aAAa,CAAC,OAAO,EAAE,eAAe,GAAG,OAAO,CAAC,aAAa,CAAC;IAyDrE,kBAAkB,CAAC,KAAK,EAAE,aAAa,GAAG,eAAe,GAAG,SAAS;IAmBrE,aAAa,CAAC,KAAK,EAAE,aAAa,EAAE,OAAO,EAAE,eAAe,GAAG,gBAAgB,GAAG,SAAS;IA2CrF,wBAAwB,CAAC,MAAM,EAAE;QACrC,kBAAkB,EAAE,MAAM,CAAC;QAC3B,OAAO,EAAE,eAAe,CAAC;QACzB,QAAQ,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,CAAC,MAAM,CAAC,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;KAC7D,GAAG,OAAO,CAAC,aAAa,CAAC;CA+B3B"}
+{"version":3,"file":"auth-flow-state-machine.service.d.ts","sourceRoot":"","sources":["../../src/services/auth-flow-state-machine.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,eAAe,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACpH,OAAO,EAAE,sBAAsB,EAAE,MAAM,qCAAqC,CAAC;AAC7E,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAGpD;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,qBAAa,2BAA2B;IAEpC,OAAO,CAAC,QAAQ,CAAC,cAAc;IAC/B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;gBADP,cAAc,EAAE,sBAAsB,EACtC,MAAM,CAAC,EAAE,WAAW,YAAA;IAGvC;;;;;;;;;;;;;;;OAeG;IACG,aAAa,CAAC,OAAO,EAAE,eAAe,GAAG,OAAO,CAAC,aAAa,CAAC;IA8CrE;;;;;;;;;;OAUG;IACH,kBAAkB,CAAC,KAAK,EAAE,aAAa,GAAG,eAAe,GAAG,SAAS;IAIrE;;;;;;;;;;;;;;OAcG;IACH,aAAa,CAAC,KAAK,EAAE,aAAa,EAAE,OAAO,EAAE,eAAe,GAAG,gBAAgB,GAAG,SAAS;IAmB3F;;;;;;;;;;;;;;;;;;;;;;;OAuBG;IACG,wBAAwB,CAAC,MAAM,EAAE;QACrC,kBAAkB,EAAE,MAAM,CAAC;QAC3B,OAAO,EAAE,eAAe,CAAC;QACzB,QAAQ,CAAC,EAAE,CAAC,IAAI,EAAE,eAAe,CAAC,MAAM,CAAC,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;KAC7D,GAAG,OAAO,CAAC,aAAa,CAAC;CA+B3B"}

package/dist/services/auth-flow-state-machine.service.js

@@ -3,6 +3,31 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.AuthFlowStateMachineService = void 0;
 const auth_flow_state_machine_types_1 = require("./auth-flow-state-machine.types");
 const auth_flow_state_definitions_1 = require("./auth-flow-state-definitions");
+/**
+ * Authentication Flow State Machine Service
+ *
+ * Core engine for evaluating authentication flow states using declarative rules.
+ * Replaces imperative if/else logic with a rule-based state machine.
+ *
+ * **How it works:**
+ * 1. Build context with pre-computed values
+ * 2. Evaluate states in priority order (1-9)
+ * 3. Select first state whose condition rule evaluates to true
+ * 4. Execute onEnter hook if defined
+ * 5. Return state with metadata
+ *
+ * **Benefits:**
+ * - Declarative and maintainable
+ * - Easy to test (pure functions)
+ * - Extensible (add new states/rules easily)
+ * - Clear priority ordering
+ *
+ * @example
+ * ```typescript
+ * const state = await stateMachine.evaluateState(context);
+ * const definition = stateMachine.getStateDefinition(state);
+ * ```
+ */
 class AuthFlowStateMachineService {
     contextBuilder;
     logger;
@@ -10,13 +35,33 @@ class AuthFlowStateMachineService {
         this.contextBuilder = contextBuilder;
         this.logger = logger;
     }
+    /**
+     * Evaluate authentication flow state
+     *
+     * Evaluates states in priority order and returns the first matching state.
+     * Executes onEnter hook if defined for the selected state.
+     *
+     * @param context - Authentication flow context
+     * @returns Evaluated state
+     *
+     * @example
+     * ```typescript
+     * const context = await contextBuilder.build({ user, config, authMethod: 'password' });
+     * const state = await stateMachine.evaluateState(context);
+     * // Returns: AuthFlowState.PENDING_EMAIL_VERIFICATION
+     * ```
+     */
     async evaluateState(context) {
+        // Get state definitions sorted by priority
         const stateDefinitions = (0, auth_flow_state_definitions_1.getStateDefinitionsByPriority)();
         this.logger?.debug?.(`[StateMachine] Evaluating states for user ${context.user.sub} (priority 1-9, first match wins)`);
+        // Evaluate states in priority order
         for (const definition of stateDefinitions) {
+            // Evaluate condition rule
             const ruleResult = definition.condition(context);
             this.logger?.debug?.(`[StateMachine] Priority ${definition.priority}: ${definition.state} → ${ruleResult ? 'MATCH' : 'skip'}`);
             if (ruleResult) {
+                // State matches - execute onEnter hook if defined
                 if (definition.onEnter) {
                     this.logger?.debug?.(`[StateMachine] Executing onEnter hook for ${definition.state}`);
                     try {
@@ -29,20 +74,49 @@ class AuthFlowStateMachineService {
                             state: definition.state,
                             userId: context.user.id,
                         });
+                        // Continue with state selection even if hook fails
                     }
                 }
                 this.logger?.debug?.(`[StateMachine] Selected state: ${definition.state} for user ${context.user.sub}`);
                 return definition.state;
             }
         }
+        // Fallback: Should never reach here (AUTHENTICATED always matches)
+        // But return AUTHENTICATED as safe default
         this.logger?.warn?.(`No state matched for user ${context.user.sub} - falling back to AUTHENTICATED`, {
             userId: context.user.id,
         });
         return auth_flow_state_machine_types_1.AuthFlowState.AUTHENTICATED;
     }
+    /**
+     * Get state definition by state
+     *
+     * @param state - State to get definition for
+     * @returns State definition or undefined if not found
+     *
+     * @example
+     * ```typescript
+     * const def = stateMachine.getStateDefinition(AuthFlowState.PENDING_EMAIL_VERIFICATION);
+     * ```
+     */
     getStateDefinition(state) {
         return (0, auth_flow_state_definitions_1.getStateDefinition)(state);
     }
+    /**
+     * Build metadata for state response
+     *
+     * Calls buildMetadata function if defined for the state.
+     *
+     * @param state - State to build metadata for
+     * @param context - Authentication flow context
+     * @returns Metadata object or undefined
+     *
+     * @example
+     * ```typescript
+     * const metadata = await stateMachine.buildMetadata(state, context);
+     * // Returns: { gracePeriodEndsAt: Date, riskScore: 45, riskLevel: 'medium' }
+     * ```
+     */
     buildMetadata(state, context) {
         const definition = this.getStateDefinition(state);
         if (!definition || !definition.buildMetadata) {
@@ -61,8 +135,33 @@ class AuthFlowStateMachineService {
             return undefined;
         }
     }
+    /**
+     * Transition after challenge completion
+     *
+     * Re-evaluates state after a challenge is completed.
+     * This is used in the challenge completion flow to determine the next state.
+     *
+     * @param params - Transition parameters
+     * @param params.completedChallenge - Challenge that was just completed
+     * @param params.context - Current authentication flow context
+     * @param params.updateFn - Function to update user data (e.g., mark email as verified)
+     * @returns New state after transition
+     *
+     * @example
+     * ```typescript
+     * const newState = await stateMachine.transitionAfterChallenge({
+     *   completedChallenge: AuthChallenge.VERIFY_EMAIL,
+     *   context,
+     *   updateFn: async (user) => {
+     *     user.isEmailVerified = true;
+     *     await userRepository.save(user);
+     *   }
+     * });
+     * ```
+     */
     async transitionAfterChallenge(params) {
         const { completedChallenge, context, updateFn } = params;
+        // Update user data if update function provided
         if (updateFn) {
             try {
                 await updateFn(context.user);
@@ -74,8 +173,10 @@ class AuthFlowStateMachineService {
                     challenge: completedChallenge,
                     userId: context.user.id,
                 });
+                // Continue with re-evaluation even if update fails
             }
         }
+        // Re-build context with updated user data
         const newContext = await this.contextBuilder.build({
             user: context.user,
             config: context.config,
@@ -84,6 +185,7 @@ class AuthFlowStateMachineService {
             deviceToken: context.deviceToken,
             skipMFAVerification: context.skipMFAVerification,
         });
+        // Re-evaluate state
         return this.evaluateState(newContext);
     }
 }

package/dist/services/auth-flow-state-machine.service.js.map

@@ -1 +1 @@
-{"version":3,"file":"auth-flow-state-machine.service.js","sourceRoot":"","sources":["../../src/services/auth-flow-state-machine.service.ts"],"names":[],"mappings":";;;AAAA,mFAAoH;AAGpH,+EAAkG;AA2BlG,MAAa,2BAA2B;IAEnB;IACA;IAFnB,YACmB,cAAsC,EACtC,MAAoB;QADpB,mBAAc,GAAd,cAAc,CAAwB;QACtC,WAAM,GAAN,MAAM,CAAc;IACpC,CAAC;IAkBJ,KAAK,CAAC,aAAa,CAAC,OAAwB;QAE1C,MAAM,gBAAgB,GAAG,IAAA,2DAA6B,GAAE,CAAC;QAEzD,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,6CAA6C,OAAO,CAAC,IAAI,CAAC,GAAG,mCAAmC,CACjG,CAAC;QAGF,KAAK,MAAM,UAAU,IAAI,gBAAgB,EAAE,CAAC;YAE1C,MAAM,UAAU,GAAG,UAAU,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YACjD,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,2BAA2B,UAAU,CAAC,QAAQ,KAAK,UAAU,CAAC,KAAK,MAAM,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,CACzG,CAAC;YAEF,IAAI,UAAU,EAAE,CAAC;gBAEf,IAAI,UAAU,CAAC,OAAO,EAAE,CAAC;oBACvB,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,6CAA6C,UAAU,CAAC,KAAK,EAAE,CAAC,CAAC;oBACtF,IAAI,CAAC;wBACH,MAAM,UAAU,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;oBACpC,CAAC;oBAAC,OAAO,KAAK,EAAE,CAAC;wBACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;wBAC9E,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,iCAAiC,UAAU,CAAC,KAAK,KAAK,YAAY,EAAE,EAAE;4BACxF,KAAK;4BACL,KAAK,EAAE,UAAU,CAAC,KAAK;4BACvB,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;yBACxB,CAAC,CAAC;oBAEL,CAAC;gBACH,CAAC;gBAED,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,kCAAkC,UAAU,CAAC,KAAK,aAAa,OAAO,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;gBACxG,OAAO,UAAU,CAAC,KAAK,CAAC;YAC1B,CAAC;QACH,CAAC;QAID,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,6BAA6B,OAAO,CAAC,IAAI,CAAC,GAAG,kCAAkC,EAAE;YACnG,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;SACxB,CAAC,CAAC;QACH,OAAO,6CAAa,CAAC,aAAa,CAAC;IACrC,CAAC;IAaD,kBAAkB,CAAC,KAAoB;QACrC,OAAO,IAAA,gDAAkB,EAAC,KAAK,CAAC,CAAC;IACnC,CAAC;IAiBD,aAAa,CAAC,KAAoB,EAAE,OAAwB;QAC1D,MAAM,UAAU,GAAG,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,CAAC;QAClD,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC7C,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,IAAI,CAAC;YACH,OAAO,UAAU,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC9E,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,kCAAkC,KAAK,KAAK,YAAY,EAAE,EAAE;gBAC9E,KAAK;gBACL,KAAK;gBACL,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;aACxB,CAAC,CAAC;YACH,OAAO,SAAS,CAAC;QACnB,CAAC;IACH,CAAC;IA0BD,KAAK,CAAC,wBAAwB,CAAC,MAI9B;QACC,MAAM,EAAE,kBAAkB,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,MAAM,CAAC;QAGzD,IAAI,QAAQ,EAAE,CAAC;YACb,IAAI,CAAC;gBACH,MAAM,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBAC9E,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,qDAAqD,YAAY,EAAE,EAAE;oBACxF,KAAK;oBACL,SAAS,EAAE,kBAAkB;oBAC7B,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;iBACxB,CAAC,CAAC;YAEL,CAAC;QACH,CAAC;QAGD,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC;YACjD,IAAI,EAAE,OAAO,CAAC,IAAI;YAClB,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,YAAY,EAAE,OAAO,CAAC,YAAY;YAClC,WAAW,EAAE,OAAO,CAAC,WAAW;YAChC,mBAAmB,EAAE,OAAO,CAAC,mBAAmB;SACjD,CAAC,CAAC;QAGH,OAAO,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,CAAC;IACxC,CAAC;CACF;AAhLD,kEAgLC"}
+{"version":3,"file":"auth-flow-state-machine.service.js","sourceRoot":"","sources":["../../src/services/auth-flow-state-machine.service.ts"],"names":[],"mappings":";;;AAAA,mFAAoH;AAGpH,+EAAkG;AAElG;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,MAAa,2BAA2B;IAEnB;IACA;IAFnB,YACmB,cAAsC,EACtC,MAAoB;QADpB,mBAAc,GAAd,cAAc,CAAwB;QACtC,WAAM,GAAN,MAAM,CAAc;IACpC,CAAC;IAEJ;;;;;;;;;;;;;;;OAeG;IACH,KAAK,CAAC,aAAa,CAAC,OAAwB;QAC1C,2CAA2C;QAC3C,MAAM,gBAAgB,GAAG,IAAA,2DAA6B,GAAE,CAAC;QAEzD,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,6CAA6C,OAAO,CAAC,IAAI,CAAC,GAAG,mCAAmC,CACjG,CAAC;QAEF,oCAAoC;QACpC,KAAK,MAAM,UAAU,IAAI,gBAAgB,EAAE,CAAC;YAC1C,0BAA0B;YAC1B,MAAM,UAAU,GAAG,UAAU,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YACjD,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,2BAA2B,UAAU,CAAC,QAAQ,KAAK,UAAU,CAAC,KAAK,MAAM,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,CACzG,CAAC;YAEF,IAAI,UAAU,EAAE,CAAC;gBACf,kDAAkD;gBAClD,IAAI,UAAU,CAAC,OAAO,EAAE,CAAC;oBACvB,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,6CAA6C,UAAU,CAAC,KAAK,EAAE,CAAC,CAAC;oBACtF,IAAI,CAAC;wBACH,MAAM,UAAU,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;oBACpC,CAAC;oBAAC,OAAO,KAAK,EAAE,CAAC;wBACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;wBAC9E,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,iCAAiC,UAAU,CAAC,KAAK,KAAK,YAAY,EAAE,EAAE;4BACxF,KAAK;4BACL,KAAK,EAAE,UAAU,CAAC,KAAK;4BACvB,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;yBACxB,CAAC,CAAC;wBACH,mDAAmD;oBACrD,CAAC;gBACH,CAAC;gBAED,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,kCAAkC,UAAU,CAAC,KAAK,aAAa,OAAO,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;gBACxG,OAAO,UAAU,CAAC,KAAK,CAAC;YAC1B,CAAC;QACH,CAAC;QAED,mEAAmE;QACnE,2CAA2C;QAC3C,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,6BAA6B,OAAO,CAAC,IAAI,CAAC,GAAG,kCAAkC,EAAE;YACnG,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;SACxB,CAAC,CAAC;QACH,OAAO,6CAAa,CAAC,aAAa,CAAC;IACrC,CAAC;IAED;;;;;;;;;;OAUG;IACH,kBAAkB,CAAC,KAAoB;QACrC,OAAO,IAAA,gDAAkB,EAAC,KAAK,CAAC,CAAC;IACnC,CAAC;IAED;;;;;;;;;;;;;;OAcG;IACH,aAAa,CAAC,KAAoB,EAAE,OAAwB;QAC1D,MAAM,UAAU,GAAG,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,CAAC;QAClD,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC7C,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,IAAI,CAAC;YACH,OAAO,UAAU,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC9E,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,kCAAkC,KAAK,KAAK,YAAY,EAAE,EAAE;gBAC9E,KAAK;gBACL,KAAK;gBACL,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;aACxB,CAAC,CAAC;YACH,OAAO,SAAS,CAAC;QACnB,CAAC;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;OAuBG;IACH,KAAK,CAAC,wBAAwB,CAAC,MAI9B;QACC,MAAM,EAAE,kBAAkB,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,MAAM,CAAC;QAEzD,+CAA+C;QAC/C,IAAI,QAAQ,EAAE,CAAC;YACb,IAAI,CAAC;gBACH,MAAM,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBAC9E,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,qDAAqD,YAAY,EAAE,EAAE;oBACxF,KAAK;oBACL,SAAS,EAAE,kBAAkB;oBAC7B,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;iBACxB,CAAC,CAAC;gBACH,mDAAmD;YACrD,CAAC;QACH,CAAC;QAED,0CAA0C;QAC1C,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC;YACjD,IAAI,EAAE,OAAO,CAAC,IAAI;YAClB,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,YAAY,EAAE,OAAO,CAAC,YAAY;YAClC,WAAW,EAAE,OAAO,CAAC,WAAW;YAChC,mBAAmB,EAAE,OAAO,CAAC,mBAAmB;SACjD,CAAC,CAAC;QAEH,oBAAoB;QACpB,OAAO,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,CAAC;IACxC,CAAC;CACF;AAhLD,kEAgLC"}

package/dist/services/auth-flow-state-machine.types.d.ts

@@ -1,55 +1,276 @@
 import { IUser } from '../interfaces/entities.interface';
 import { NAuthConfig } from '../interfaces/config.interface';
 import { AuthChallenge } from '../dto/auth-challenge.dto';
+/**
+ * Authentication flow states
+ *
+ * Represents the current state of the authentication flow.
+ * States are evaluated in priority order (1-9).
+ *
+ * @example
+ * ```typescript
+ * const state = AuthFlowState.PENDING_EMAIL_VERIFICATION;
+ * ```
+ */
 export declare enum AuthFlowState {
+    /**
+     * User must change password before continuing
+     * Priority: 1 (highest)
+     */
     PENDING_PASSWORD_CHANGE = "PENDING_PASSWORD_CHANGE",
+    /**
+     * User must verify email address
+     * Priority: 2
+     */
     PENDING_EMAIL_VERIFICATION = "PENDING_EMAIL_VERIFICATION",
+    /**
+     * User must provide phone number
+     * Priority: 3
+     */
     PENDING_PHONE_COLLECTION = "PENDING_PHONE_COLLECTION",
+    /**
+     * User must verify phone number
+     * Priority: 4
+     */
     PENDING_PHONE_VERIFICATION = "PENDING_PHONE_VERIFICATION",
+    /**
+     * User must set up MFA
+     * Priority: 5
+     */
     PENDING_MFA_SETUP = "PENDING_MFA_SETUP",
+    /**
+     * User must verify MFA
+     * Priority: 6
+     */
     PENDING_MFA_VERIFICATION = "PENDING_MFA_VERIFICATION",
+    /**
+     * Grace period is active (MFA setup optional)
+     * Priority: 7
+     */
     GRACE_PERIOD_ACTIVE = "GRACE_PERIOD_ACTIVE",
+    /**
+     * User is blocked from signing in
+     * Priority: 8
+     */
     BLOCKED = "BLOCKED",
+    /**
+     * Authentication complete - user is fully authenticated
+     * Priority: 9 (lowest - default state)
+     */
     AUTHENTICATED = "AUTHENTICATED"
 }
+/**
+ * Authentication flow context
+ *
+ * Contains all data needed to evaluate authentication flow state.
+ * Pre-computed values are stored in the `computed` property to optimize rule evaluation.
+ *
+ * @example
+ * ```typescript
+ * const context: AuthFlowContext = {
+ *   user,
+ *   config,
+ *   authMethod: 'password',
+ *   computed: {
+ *     isEmailVerificationRequired: true,
+ *     isPhoneVerificationRequired: false,
+ *     isMFAExempt: false,
+ *     // ... other computed values
+ *   }
+ * };
+ * ```
+ */
 export interface AuthFlowContext {
+    /**
+     * User attempting authentication
+     */
     user: IUser;
+    /**
+     * Authentication configuration
+     */
     config: NAuthConfig;
+    /**
+     * Authentication method ('password' or 'social')
+     */
     authMethod?: 'password' | 'social';
+    /**
+     * Social auth provider name (e.g., 'google', 'apple', 'facebook')
+     */
     authProvider?: string;
+    /**
+     * Device token for trusted device check
+     */
     deviceToken?: string;
+    /**
+     * Skip MFA verification flag (used for special cases like phone auto-complete)
+     */
     skipMFAVerification?: boolean;
+    /**
+     * Pre-computed values for rule evaluation
+     * These are calculated once at the beginning of the flow to optimize performance.
+     */
     computed: {
+        /**
+         * Whether email verification is required
+         */
         isEmailVerificationRequired: boolean;
+        /**
+         * Whether phone verification is required
+         */
         isPhoneVerificationRequired: boolean;
+        /**
+         * Whether phone collection is needed (user has no phone)
+         */
         isPhoneCollectionNeeded: boolean;
+        /**
+         * Whether user is exempt from MFA
+         */
         isMFAExempt: boolean;
+        /**
+         * Whether MFA setup is required
+         */
         isMFASetupRequired: boolean;
+        /**
+         * Whether MFA verification is required
+         */
         isMFAVerificationRequired: boolean;
+        /**
+         * Whether device is trusted
+         */
         isDeviceTrusted: boolean;
+        /**
+         * Whether grace period is active
+         */
         isGracePeriodActive: boolean;
+        /**
+         * Grace period end timestamp (if active)
+         */
         gracePeriodEndsAt?: Date;
+        /**
+         * Whether user is blocked
+         */
         isBlocked: boolean;
+        /**
+         * Block expiration timestamp (if blocked)
+         */
         blockedUntil?: Date;
+        /**
+         * Block reason (if blocked)
+         */
         blockReason?: string;
+        /**
+         * Risk score (0-100) for adaptive MFA
+         */
         riskScore?: number;
+        /**
+         * Risk level ('low' | 'medium' | 'high')
+         */
         riskLevel?: 'low' | 'medium' | 'high';
     };
 }
+/**
+ * Rule function type
+ *
+ * A rule is a function that evaluates to true or false based on the context.
+ * Rules can be combined using RuleBuilder combinators (all, any, not).
+ *
+ * @param context - Authentication flow context
+ * @returns True if rule condition is met, false otherwise
+ *
+ * @example
+ * ```typescript
+ * const mustChangePassword: Rule = (context) => {
+ *   return context.user.mustChangePassword === true;
+ * };
+ * ```
+ */
 export type Rule = (context: AuthFlowContext) => boolean;
+/**
+ * Response metadata
+ *
+ * Additional information to include in the authentication response.
+ * Used for special states like grace period and blocked state.
+ *
+ * @example
+ * ```typescript
+ * const metadata: ResponseMetadata = {
+ *   gracePeriodEndsAt: new Date('2024-01-15'),
+ *   riskScore: 45,
+ *   riskLevel: 'medium'
+ * };
+ * ```
+ */
 export interface ResponseMetadata {
+    /**
+     * Grace period end timestamp
+     */
     gracePeriodEndsAt?: Date;
+    /**
+     * Risk score (0-100)
+     */
     riskScore?: number;
+    /**
+     * Risk level
+     */
     riskLevel?: 'low' | 'medium' | 'high';
+    /**
+     * Block expiration timestamp
+     */
     blockedUntil?: Date;
+    /**
+     * Block reason
+     */
     reason?: string;
 }
+/**
+ * State definition
+ *
+ * Defines a state in the authentication flow, including:
+ * - Priority (evaluation order)
+ * - Condition rule (when this state applies)
+ * - Challenge mapping (which AuthChallenge this state maps to)
+ * - Metadata builder (optional additional response data)
+ * - OnEnter hook (optional action when state is entered)
+ *
+ * @example
+ * ```typescript
+ * const stateDef: StateDefinition = {
+ *   state: AuthFlowState.PENDING_EMAIL_VERIFICATION,
+ *   priority: 2,
+ *   condition: Rules.emailVerificationPending,
+ *   challenge: AuthChallenge.VERIFY_EMAIL,
+ * };
+ * ```
+ */
 export interface StateDefinition {
+    /**
+     * State identifier
+     */
     state: AuthFlowState;
+    /**
+     * Priority (1-9, lower = higher priority)
+     * States are evaluated in priority order
+     */
     priority: number;
+    /**
+     * Condition rule that determines if this state applies
+     */
     condition: Rule;
+    /**
+     * Challenge type this state maps to (if applicable)
+     * Undefined for AUTHENTICATED and GRACE_PERIOD_ACTIVE states
+     */
     challenge?: AuthChallenge;
+    /**
+     * Build metadata for response (optional)
+     * Used for states that need to include additional information
+     */
     buildMetadata?: (context: AuthFlowContext) => ResponseMetadata | undefined;
+    /**
+     * OnEnter hook (optional)
+     * Executed when this state is entered
+     * Can modify context (e.g., set skipMFAVerification flag)
+     */
     onEnter?: (context: AuthFlowContext) => Promise<void> | void;
 }
 //# sourceMappingURL=auth-flow-state-machine.types.d.ts.map

package/dist/services/auth-flow-state-machine.types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth-flow-state-machine.types.d.ts","sourceRoot":"","sources":["../../src/services/auth-flow-state-machine.types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,kCAAkC,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAa1D,oBAAY,aAAa;IAKvB,uBAAuB,4BAA4B;IAMnD,0BAA0B,+BAA+B;IAMzD,wBAAwB,6BAA6B;IAMrD,0BAA0B,+BAA+B;IAMzD,iBAAiB,sBAAsB;IAMvC,wBAAwB,6BAA6B;IAMrD,mBAAmB,wBAAwB;IAM3C,OAAO,YAAY;IAMnB,aAAa,kBAAkB;CAChC;AAuBD,MAAM,WAAW,eAAe;IAI9B,IAAI,EAAE,KAAK,CAAC;IAKZ,MAAM,EAAE,WAAW,CAAC;IAKpB,UAAU,CAAC,EAAE,UAAU,GAAG,QAAQ,CAAC;IAKnC,YAAY,CAAC,EAAE,MAAM,CAAC;IAKtB,WAAW,CAAC,EAAE,MAAM,CAAC;IAKrB,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAM9B,QAAQ,EAAE;QAIR,2BAA2B,EAAE,OAAO,CAAC;QAKrC,2BAA2B,EAAE,OAAO,CAAC;QAKrC,uBAAuB,EAAE,OAAO,CAAC;QAKjC,WAAW,EAAE,OAAO,CAAC;QAKrB,kBAAkB,EAAE,OAAO,CAAC;QAK5B,yBAAyB,EAAE,OAAO,CAAC;QAKnC,eAAe,EAAE,OAAO,CAAC;QAKzB,mBAAmB,EAAE,OAAO,CAAC;QAK7B,iBAAiB,CAAC,EAAE,IAAI,CAAC;QAKzB,SAAS,EAAE,OAAO,CAAC;QAKnB,YAAY,CAAC,EAAE,IAAI,CAAC;QAKpB,WAAW,CAAC,EAAE,MAAM,CAAC;QAKrB,SAAS,CAAC,EAAE,MAAM,CAAC;QAKnB,SAAS,CAAC,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;KACvC,CAAC;CACH;AAkBD,MAAM,MAAM,IAAI,GAAG,CAAC,OAAO,EAAE,eAAe,KAAK,OAAO,CAAC;AAiBzD,MAAM,WAAW,gBAAgB;IAI/B,iBAAiB,CAAC,EAAE,IAAI,CAAC;IAKzB,SAAS,CAAC,EAAE,MAAM,CAAC;IAKnB,SAAS,CAAC,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IAKtC,YAAY,CAAC,EAAE,IAAI,CAAC;IAKpB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAsBD,MAAM,WAAW,eAAe;IAI9B,KAAK,EAAE,aAAa,CAAC;IAMrB,QAAQ,EAAE,MAAM,CAAC;IAKjB,SAAS,EAAE,IAAI,CAAC;IAMhB,SAAS,CAAC,EAAE,aAAa,CAAC;IAM1B,aAAa,CAAC,EAAE,CAAC,OAAO,EAAE,eAAe,KAAK,gBAAgB,GAAG,SAAS,CAAC;IAO3E,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,eAAe,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CAC9D"}
+{"version":3,"file":"auth-flow-state-machine.types.d.ts","sourceRoot":"","sources":["../../src/services/auth-flow-state-machine.types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,kCAAkC,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAE1D;;;;;;;;;;GAUG;AACH,oBAAY,aAAa;IACvB;;;OAGG;IACH,uBAAuB,4BAA4B;IAEnD;;;OAGG;IACH,0BAA0B,+BAA+B;IAEzD;;;OAGG;IACH,wBAAwB,6BAA6B;IAErD;;;OAGG;IACH,0BAA0B,+BAA+B;IAEzD;;;OAGG;IACH,iBAAiB,sBAAsB;IAEvC;;;OAGG;IACH,wBAAwB,6BAA6B;IAErD;;;OAGG;IACH,mBAAmB,wBAAwB;IAE3C;;;OAGG;IACH,OAAO,YAAY;IAEnB;;;OAGG;IACH,aAAa,kBAAkB;CAChC;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,MAAM,WAAW,eAAe;IAC9B;;OAEG;IACH,IAAI,EAAE,KAAK,CAAC;IAEZ;;OAEG;IACH,MAAM,EAAE,WAAW,CAAC;IAEpB;;OAEG;IACH,UAAU,CAAC,EAAE,UAAU,GAAG,QAAQ,CAAC;IAEnC;;OAEG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB;;OAEG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAE9B;;;OAGG;IACH,QAAQ,EAAE;QACR;;WAEG;QACH,2BAA2B,EAAE,OAAO,CAAC;QAErC;;WAEG;QACH,2BAA2B,EAAE,OAAO,CAAC;QAErC;;WAEG;QACH,uBAAuB,EAAE,OAAO,CAAC;QAEjC;;WAEG;QACH,WAAW,EAAE,OAAO,CAAC;QAErB;;WAEG;QACH,kBAAkB,EAAE,OAAO,CAAC;QAE5B;;WAEG;QACH,yBAAyB,EAAE,OAAO,CAAC;QAEnC;;WAEG;QACH,eAAe,EAAE,OAAO,CAAC;QAEzB;;WAEG;QACH,mBAAmB,EAAE,OAAO,CAAC;QAE7B;;WAEG;QACH,iBAAiB,CAAC,EAAE,IAAI,CAAC;QAEzB;;WAEG;QACH,SAAS,EAAE,OAAO,CAAC;QAEnB;;WAEG;QACH,YAAY,CAAC,EAAE,IAAI,CAAC;QAEpB;;WAEG;QACH,WAAW,CAAC,EAAE,MAAM,CAAC;QAErB;;WAEG;QACH,SAAS,CAAC,EAAE,MAAM,CAAC;QAEnB;;WAEG;QACH,SAAS,CAAC,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;KACvC,CAAC;CACH;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,MAAM,IAAI,GAAG,CAAC,OAAO,EAAE,eAAe,KAAK,OAAO,CAAC;AAEzD;;;;;;;;;;;;;;GAcG;AACH,MAAM,WAAW,gBAAgB;IAC/B;;OAEG;IACH,iBAAiB,CAAC,EAAE,IAAI,CAAC;IAEzB;;OAEG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,SAAS,CAAC,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IAEtC;;OAEG;IACH,YAAY,CAAC,EAAE,IAAI,CAAC;IAEpB;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,WAAW,eAAe;IAC9B;;OAEG;IACH,KAAK,EAAE,aAAa,CAAC;IAErB;;;OAGG;IACH,QAAQ,EAAE,MAAM,CAAC;IAEjB;;OAEG;IACH,SAAS,EAAE,IAAI,CAAC;IAEhB;;;OAGG;IACH,SAAS,CAAC,EAAE,aAAa,CAAC;IAE1B;;;OAGG;IACH,aAAa,CAAC,EAAE,CAAC,OAAO,EAAE,eAAe,KAAK,gBAAgB,GAAG,SAAS,CAAC;IAE3E;;;;OAIG;IACH,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,eAAe,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CAC9D"}

package/dist/services/auth-flow-state-machine.types.js

@@ -1,16 +1,63 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.AuthFlowState = void 0;
+/**
+ * Authentication flow states
+ *
+ * Represents the current state of the authentication flow.
+ * States are evaluated in priority order (1-9).
+ *
+ * @example
+ * ```typescript
+ * const state = AuthFlowState.PENDING_EMAIL_VERIFICATION;
+ * ```
+ */
 var AuthFlowState;
 (function (AuthFlowState) {
+    /**
+     * User must change password before continuing
+     * Priority: 1 (highest)
+     */
     AuthFlowState["PENDING_PASSWORD_CHANGE"] = "PENDING_PASSWORD_CHANGE";
+    /**
+     * User must verify email address
+     * Priority: 2
+     */
     AuthFlowState["PENDING_EMAIL_VERIFICATION"] = "PENDING_EMAIL_VERIFICATION";
+    /**
+     * User must provide phone number
+     * Priority: 3
+     */
     AuthFlowState["PENDING_PHONE_COLLECTION"] = "PENDING_PHONE_COLLECTION";
+    /**
+     * User must verify phone number
+     * Priority: 4
+     */
     AuthFlowState["PENDING_PHONE_VERIFICATION"] = "PENDING_PHONE_VERIFICATION";
+    /**
+     * User must set up MFA
+     * Priority: 5
+     */
     AuthFlowState["PENDING_MFA_SETUP"] = "PENDING_MFA_SETUP";
+    /**
+     * User must verify MFA
+     * Priority: 6
+     */
     AuthFlowState["PENDING_MFA_VERIFICATION"] = "PENDING_MFA_VERIFICATION";
+    /**
+     * Grace period is active (MFA setup optional)
+     * Priority: 7
+     */
     AuthFlowState["GRACE_PERIOD_ACTIVE"] = "GRACE_PERIOD_ACTIVE";
+    /**
+     * User is blocked from signing in
+     * Priority: 8
+     */
     AuthFlowState["BLOCKED"] = "BLOCKED";
+    /**
+     * Authentication complete - user is fully authenticated
+     * Priority: 9 (lowest - default state)
+     */
     AuthFlowState["AUTHENTICATED"] = "AUTHENTICATED";
 })(AuthFlowState || (exports.AuthFlowState = AuthFlowState = {}));
 //# sourceMappingURL=auth-flow-state-machine.types.js.map

package/dist/services/auth-flow-state-machine.types.js.map

@@ -1 +1 @@
-{"version":3,"file":"auth-flow-state-machine.types.js","sourceRoot":"","sources":["../../src/services/auth-flow-state-machine.types.ts"],"names":[],"mappings":";;;AAeA,IAAY,aAsDX;AAtDD,WAAY,aAAa;IAKvB,oEAAmD,CAAA;IAMnD,0EAAyD,CAAA;IAMzD,sEAAqD,CAAA;IAMrD,0EAAyD,CAAA;IAMzD,wDAAuC,CAAA;IAMvC,sEAAqD,CAAA;IAMrD,4DAA2C,CAAA;IAM3C,oCAAmB,CAAA;IAMnB,gDAA+B,CAAA;AACjC,CAAC,EAtDW,aAAa,6BAAb,aAAa,QAsDxB"}
+{"version":3,"file":"auth-flow-state-machine.types.js","sourceRoot":"","sources":["../../src/services/auth-flow-state-machine.types.ts"],"names":[],"mappings":";;;AAIA;;;;;;;;;;GAUG;AACH,IAAY,aAsDX;AAtDD,WAAY,aAAa;IACvB;;;OAGG;IACH,oEAAmD,CAAA;IAEnD;;;OAGG;IACH,0EAAyD,CAAA;IAEzD;;;OAGG;IACH,sEAAqD,CAAA;IAErD;;;OAGG;IACH,0EAAyD,CAAA;IAEzD;;;OAGG;IACH,wDAAuC,CAAA;IAEvC;;;OAGG;IACH,sEAAqD,CAAA;IAErD;;;OAGG;IACH,4DAA2C,CAAA;IAE3C;;;OAGG;IACH,oCAAmB,CAAA;IAEnB;;;OAGG;IACH,gDAA+B,CAAA;AACjC,CAAC,EAtDW,aAAa,6BAAb,aAAa,QAsDxB"}