@nauth-toolkit/core 0.1.60 → 0.1.62

package/dist/services/hook-registry.service.js

@@ -24,7 +24,17 @@ class HookRegistryService {
     logger;
     preSignupHooks = [];
     postSignupHooks = [];
+    onboardingCompletedHooks = [];
     userProfileUpdatedHooks = [];
+    passwordChangedHooks = [];
+    mfaDeviceRemovedHooks = [];
+    adaptiveMFARiskDetectedHooks = [];
+    accountStatusChangedHooks = [];
+    emailChangedHooks = [];
+    accountLockedHooks = [];
+    sessionsRevokedHooks = [];
+    mfaFirstEnabledHooks = [];
+    mfaMethodAddedHooks = [];
     constructor(logger) {
         this.logger = logger;
     }
@@ -55,6 +65,18 @@ class HookRegistryService {
         this.postSignupHooks.push(provider);
         this.logger?.debug?.(`[HookRegistry] Registered postSignup hook: ${provider.constructor.name}`);
     }
+    /**
+     * Register an onboarding completed hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block user flows (non-blocking).
+     *
+     * @param provider - Onboarding completed hook instance
+     */
+    registerOnboardingCompleted(provider) {
+        this.onboardingCompletedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered onboardingCompleted hook: ${provider.constructor.name}`);
+    }
     /**
      * Register a user profile updated hook
      *
@@ -67,6 +89,114 @@ class HookRegistryService {
         this.userProfileUpdatedHooks.push(provider);
         this.logger?.debug?.(`[HookRegistry] Registered userProfileUpdated hook: ${provider.constructor.name}`);
     }
+    /**
+     * Register a password changed hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block password changes (non-blocking).
+     *
+     * @param provider - Password changed hook instance
+     */
+    registerPasswordChanged(provider) {
+        this.passwordChangedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered passwordChanged hook: ${provider.constructor.name}`);
+    }
+    /**
+     * Register an MFA device removed hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block device removal (non-blocking).
+     *
+     * @param provider - MFA device removed hook instance
+     */
+    registerMFADeviceRemoved(provider) {
+        this.mfaDeviceRemovedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered mfaDeviceRemoved hook: ${provider.constructor.name}`);
+    }
+    /**
+     * Register an adaptive MFA risk detected hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block authentication (non-blocking).
+     *
+     * @param provider - Adaptive MFA risk detected hook instance
+     */
+    registerAdaptiveMFARiskDetected(provider) {
+        this.adaptiveMFARiskDetectedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered adaptiveMFARiskDetected hook: ${provider.constructor.name}`);
+    }
+    /**
+     * Register an account status changed hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block status changes (non-blocking).
+     *
+     * @param provider - Account status changed hook instance
+     */
+    registerAccountStatusChanged(provider) {
+        this.accountStatusChangedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered accountStatusChanged hook: ${provider.constructor.name}`);
+    }
+    /**
+     * Register an email changed hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block email changes (non-blocking).
+     *
+     * @param provider - Email changed hook instance
+     */
+    registerEmailChanged(provider) {
+        this.emailChangedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered emailChanged hook: ${provider.constructor.name}`);
+    }
+    /**
+     * Register an account locked hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block lockout (non-blocking).
+     *
+     * @param provider - Account locked hook instance
+     */
+    registerAccountLocked(provider) {
+        this.accountLockedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered accountLocked hook: ${provider.constructor.name}`);
+    }
+    /**
+     * Register a sessions revoked hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block session revocation (non-blocking).
+     *
+     * @param provider - Sessions revoked hook instance
+     */
+    registerSessionsRevoked(provider) {
+        this.sessionsRevokedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered sessionsRevoked hook: ${provider.constructor.name}`);
+    }
+    /**
+     * Register an MFA first enabled hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block MFA enrollment (non-blocking).
+     *
+     * @param provider - MFA first enabled hook instance
+     */
+    registerMFAFirstEnabled(provider) {
+        this.mfaFirstEnabledHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered mfaFirstEnabled hook: ${provider.constructor.name}`);
+    }
+    /**
+     * Register an MFA method added hook
+     *
+     * Hooks are executed in registration order.
+     * Hook errors are logged but do not block MFA enrollment (non-blocking).
+     *
+     * @param provider - MFA method added hook instance
+     */
+    registerMFAMethodAdded(provider) {
+        this.mfaMethodAddedHooks.push(provider);
+        this.logger?.debug?.(`[HookRegistry] Registered mfaMethodAdded hook: ${provider.constructor.name}`);
+    }
     // ============================================================================
     // Execution Methods
     // ============================================================================
@@ -133,6 +263,33 @@ class HookRegistryService {
             }
         }
     }
+    /**
+     * Execute all registered onboarding completed hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param user - User entity (IUser interface)
+     * @param metadata - Completion metadata (verification method, source, timestamp)
+     *
+     * @internal
+     * @remarks This method is called internally by AuthService, EmailVerificationService, and PhoneVerificationService
+     */
+    async executeOnboardingCompleted(user, metadata) {
+        if (this.onboardingCompletedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.onboardingCompletedHooks) {
+            try {
+                await hook.execute(user, metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] onboardingCompleted hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
     /**
      * Execute all registered user profile updated hooks
      *
@@ -159,6 +316,240 @@ class HookRegistryService {
             }
         }
     }
+    /**
+     * Execute all registered password changed hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - Password change context with user and change details
+     *
+     * @internal
+     * @remarks This method is called internally by AuthServiceInternalHelpers
+     */
+    async executePasswordChanged(metadata) {
+        if (this.passwordChangedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.passwordChangedHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] passwordChanged hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
+    /**
+     * Execute all registered MFA device removed hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - Device removal context with user and device details
+     *
+     * @internal
+     * @remarks This method is called internally by UserService and MFAService
+     */
+    async executeMFADeviceRemoved(metadata) {
+        if (this.mfaDeviceRemovedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.mfaDeviceRemovedHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] mfaDeviceRemoved hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
+    /**
+     * Execute all registered adaptive MFA risk detected hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - Risk evaluation context with user and risk details
+     *
+     * @internal
+     * @remarks This method is called internally by AdaptiveMFADecisionService
+     */
+    async executeAdaptiveMFARiskDetected(metadata) {
+        if (this.adaptiveMFARiskDetectedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.adaptiveMFARiskDetectedHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] adaptiveMFARiskDetected hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
+    /**
+     * Execute all registered account status changed hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - Status change context with user and change details
+     *
+     * @internal
+     * @remarks This method is called internally by UserService
+     */
+    async executeAccountStatusChanged(metadata) {
+        if (this.accountStatusChangedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.accountStatusChangedHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] accountStatusChanged hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
+    /**
+     * Execute all registered email changed hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - Email change context with old and new addresses
+     *
+     * @internal
+     * @remarks This method is called internally by UserService
+     */
+    async executeEmailChanged(metadata) {
+        if (this.emailChangedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.emailChangedHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] emailChanged hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
+    /**
+     * Execute all registered account locked hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - Lockout context with user and lock details
+     *
+     * @internal
+     * @remarks This method is called internally by AuthServiceInternalHelpers
+     */
+    async executeAccountLocked(metadata) {
+        if (this.accountLockedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.accountLockedHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] accountLocked hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
+    /**
+     * Execute all registered sessions revoked hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - Revocation context with user and session details
+     *
+     * @internal
+     * @remarks This method is called internally by SessionService
+     */
+    async executeSessionsRevoked(metadata) {
+        if (this.sessionsRevokedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.sessionsRevokedHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] sessionsRevoked hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
+    /**
+     * Execute all registered MFA first enabled hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - MFA enrollment context with user and device details
+     *
+     * @internal
+     * @remarks This method is called internally by BaseMFAProviderService
+     */
+    async executeMFAFirstEnabled(metadata) {
+        if (this.mfaFirstEnabledHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.mfaFirstEnabledHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] mfaFirstEnabled hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
+    /**
+     * Execute all registered MFA method added hooks
+     *
+     * Hooks are executed sequentially in registration order.
+     * Hook errors are logged but do not stop execution (non-blocking).
+     *
+     * @param metadata - MFA method addition context
+     *
+     * @internal
+     * @remarks This method is called internally by BaseMFAProviderService
+     */
+    async executeMFAMethodAdded(metadata) {
+        if (this.mfaMethodAddedHooks.length === 0) {
+            return; // No hooks registered
+        }
+        for (const hook of this.mfaMethodAddedHooks) {
+            try {
+                await hook.execute(metadata);
+            }
+            catch (hookError) {
+                // Non-blocking: log error and continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`[HookRegistry] mfaMethodAdded hook error: ${hook.constructor.name} - ${errorMessage}`, hookError instanceof Error ? { error: hookError } : undefined);
+            }
+        }
+    }
 }
 exports.HookRegistryService = HookRegistryService;
 //# sourceMappingURL=hook-registry.service.js.map

package/dist/services/hook-registry.service.js.map

@@ -1 +1 @@
-{"version":3,"file":"hook-registry.service.js","sourceRoot":"","sources":["../../src/services/hook-registry.service.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;GAWG;;;AAYH,mEAA+D;AAC/D,gEAA0D;AAE1D;;;;GAIG;AACH,MAAa,mBAAmB;IAKD;IAJZ,cAAc,GAA6B,EAAE,CAAC;IAC9C,eAAe,GAA8B,EAAE,CAAC;IAChD,uBAAuB,GAA8B,EAAE,CAAC;IAEzE,YAA6B,MAAuB;QAAvB,WAAM,GAAN,MAAM,CAAiB;IAAG,CAAC;IAExD,+EAA+E;IAC/E,uBAAuB;IACvB,+EAA+E;IAE/E;;;;;;;OAOG;IACH,iBAAiB,CAAC,QAAgC;QAChD,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,6CAA6C,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACjG,CAAC;IAED;;;;;;;OAOG;IACH,kBAAkB,CAAC,QAAiC;QAClD,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACpC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,8CAA8C,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IAClG,CAAC;IAED;;;;;;;OAOG;IACH,0BAA0B,CAAC,QAAiC;QAC1D,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,sDAAsD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IAC1G,CAAC;IAED,+EAA+E;IAC/E,oBAAoB;IACpB,+EAA+E;IAE/E;;;;;;;;;;;;;;OAcG;IACH,KAAK,CAAC,gBAAgB,CACpB,IAAuB,EACvB,UAAiC,EACjC,QAAiB,EACjB,WAAqB;QAErB,IAAI,IAAI,CAAC,cAAc,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACrC,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YACvC,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;YAC9D,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,sEAAsE;gBACtE,IAAI,SAAS,YAAY,gCAAc,IAAI,SAAS,CAAC,IAAI,KAAK,gCAAa,CAAC,gBAAgB,EAAE,CAAC;oBAC7F,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CACjB,iDAAiD,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,SAAS,CAAC,OAAO,EAAE,CAChG,CAAC;oBACF,MAAM,SAAS,CAAC;gBAClB,CAAC;gBAED,6CAA6C;gBAC7C,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,8BAA8B,CAAC;gBACrG,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,wCAAwC,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACjF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;gBACF,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,gBAAgB,EAAE,YAAY,CAAC,CAAC;YACzE,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,iBAAiB,CAAC,IAAW,EAAE,QAAyB;QAC5D,IAAI,IAAI,CAAC,eAAe,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtC,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACxC,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;YACrC,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,yCAAyC,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EAClF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,yBAAyB,CAAC,QAAoC;QAClE,IAAI,IAAI,CAAC,uBAAuB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC9C,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAChD,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,iDAAiD,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EAC1F,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;CACF;AAlKD,kDAkKC"}
+{"version":3,"file":"hook-registry.service.js","sourceRoot":"","sources":["../../src/services/hook-registry.service.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;GAWG;;;AAgCH,mEAA+D;AAC/D,gEAA0D;AAE1D;;;;GAIG;AACH,MAAa,mBAAmB;IAeD;IAdZ,cAAc,GAA6B,EAAE,CAAC;IAC9C,eAAe,GAA8B,EAAE,CAAC;IAChD,wBAAwB,GAA+B,EAAE,CAAC;IAC1D,uBAAuB,GAA8B,EAAE,CAAC;IACxD,oBAAoB,GAA2B,EAAE,CAAC;IAClD,qBAAqB,GAA4B,EAAE,CAAC;IACpD,4BAA4B,GAAmC,EAAE,CAAC;IAClE,yBAAyB,GAAgC,EAAE,CAAC;IAC5D,iBAAiB,GAAwB,EAAE,CAAC;IAC5C,kBAAkB,GAAyB,EAAE,CAAC;IAC9C,oBAAoB,GAA2B,EAAE,CAAC;IAClD,oBAAoB,GAA2B,EAAE,CAAC;IAClD,mBAAmB,GAA0B,EAAE,CAAC;IAEjE,YAA6B,MAAuB;QAAvB,WAAM,GAAN,MAAM,CAAiB;IAAG,CAAC;IAExD,+EAA+E;IAC/E,uBAAuB;IACvB,+EAA+E;IAE/E;;;;;;;OAOG;IACH,iBAAiB,CAAC,QAAgC;QAChD,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,6CAA6C,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACjG,CAAC;IAED;;;;;;;OAOG;IACH,kBAAkB,CAAC,QAAiC;QAClD,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACpC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,8CAA8C,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IAClG,CAAC;IAED;;;;;;;OAOG;IACH,2BAA2B,CAAC,QAAkC;QAC5D,IAAI,CAAC,wBAAwB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC7C,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,uDAAuD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IAC3G,CAAC;IAED;;;;;;;OAOG;IACH,0BAA0B,CAAC,QAAiC;QAC1D,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,sDAAsD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IAC1G,CAAC;IAED;;;;;;;OAOG;IACH,uBAAuB,CAAC,QAA8B;QACpD,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,mDAAmD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACvG,CAAC;IAED;;;;;;;OAOG;IACH,wBAAwB,CAAC,QAA+B;QACtD,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1C,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,oDAAoD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACxG,CAAC;IAED;;;;;;;OAOG;IACH,+BAA+B,CAAC,QAAsC;QACpE,IAAI,CAAC,4BAA4B,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACjD,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,2DAA2D,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IAC/G,CAAC;IAED;;;;;;;OAOG;IACH,4BAA4B,CAAC,QAAmC;QAC9D,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC9C,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,wDAAwD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IAC5G,CAAC;IAED;;;;;;;OAOG;IACH,oBAAoB,CAAC,QAA2B;QAC9C,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACtC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,gDAAgD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACpG,CAAC;IAED;;;;;;;OAOG;IACH,qBAAqB,CAAC,QAA4B;QAChD,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACvC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,iDAAiD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACrG,CAAC;IAED;;;;;;;OAOG;IACH,uBAAuB,CAAC,QAA8B;QACpD,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,mDAAmD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACvG,CAAC;IAED;;;;;;;OAOG;IACH,uBAAuB,CAAC,QAA8B;QACpD,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,mDAAmD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACvG,CAAC;IAED;;;;;;;OAOG;IACH,sBAAsB,CAAC,QAA6B;QAClD,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACxC,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,kDAAkD,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;IACtG,CAAC;IAED,+EAA+E;IAC/E,oBAAoB;IACpB,+EAA+E;IAE/E;;;;;;;;;;;;;;OAcG;IACH,KAAK,CAAC,gBAAgB,CACpB,IAAuB,EACvB,UAAiC,EACjC,QAAiB,EACjB,WAAqB;QAErB,IAAI,IAAI,CAAC,cAAc,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACrC,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YACvC,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;YAC9D,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,sEAAsE;gBACtE,IAAI,SAAS,YAAY,gCAAc,IAAI,SAAS,CAAC,IAAI,KAAK,gCAAa,CAAC,gBAAgB,EAAE,CAAC;oBAC7F,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,CACjB,iDAAiD,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,SAAS,CAAC,OAAO,EAAE,CAChG,CAAC;oBACF,MAAM,SAAS,CAAC;gBAClB,CAAC;gBAED,6CAA6C;gBAC7C,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,8BAA8B,CAAC;gBACrG,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,wCAAwC,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACjF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;gBACF,MAAM,IAAI,gCAAc,CAAC,gCAAa,CAAC,gBAAgB,EAAE,YAAY,CAAC,CAAC;YACzE,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,iBAAiB,CAAC,IAAW,EAAE,QAAyB;QAC5D,IAAI,IAAI,CAAC,eAAe,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtC,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACxC,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;YACrC,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,yCAAyC,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EAClF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,0BAA0B,CAAC,IAAW,EAAE,QAAqC;QACjF,IAAI,IAAI,CAAC,wBAAwB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/C,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,wBAAwB,EAAE,CAAC;YACjD,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;YACrC,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,kDAAkD,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EAC3F,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,yBAAyB,CAAC,QAAoC;QAClE,IAAI,IAAI,CAAC,uBAAuB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC9C,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,uBAAuB,EAAE,CAAC;YAChD,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,iDAAiD,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EAC1F,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,sBAAsB,CAAC,QAAiC;QAC5D,IAAI,IAAI,CAAC,oBAAoB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3C,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,oBAAoB,EAAE,CAAC;YAC7C,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,8CAA8C,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACvF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,uBAAuB,CAAC,QAAkC;QAC9D,IAAI,IAAI,CAAC,qBAAqB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC5C,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,qBAAqB,EAAE,CAAC;YAC9C,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,+CAA+C,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACxF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,8BAA8B,CAAC,QAAyC;QAC5E,IAAI,IAAI,CAAC,4BAA4B,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACnD,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,4BAA4B,EAAE,CAAC;YACrD,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,sDAAsD,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EAC/F,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,2BAA2B,CAAC,QAAsC;QACtE,IAAI,IAAI,CAAC,yBAAyB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAChD,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,yBAAyB,EAAE,CAAC;YAClD,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,mDAAmD,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EAC5F,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,mBAAmB,CAAC,QAA8B;QACtD,IAAI,IAAI,CAAC,iBAAiB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxC,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC1C,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,2CAA2C,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACpF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,oBAAoB,CAAC,QAA+B;QACxD,IAAI,IAAI,CAAC,kBAAkB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzC,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,4CAA4C,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACrF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,sBAAsB,CAAC,QAAiC;QAC5D,IAAI,IAAI,CAAC,oBAAoB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3C,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,oBAAoB,EAAE,CAAC;YAC7C,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,8CAA8C,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACvF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,sBAAsB,CAAC,QAAiC;QAC5D,IAAI,IAAI,CAAC,oBAAoB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3C,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,oBAAoB,EAAE,CAAC;YAC7C,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,8CAA8C,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACvF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,qBAAqB,CAAC,QAAgC;QAC1D,IAAI,IAAI,CAAC,mBAAmB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1C,OAAO,CAAC,sBAAsB;QAChC,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC5C,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,SAAkB,EAAE,CAAC;gBAC5B,uCAAuC;gBACvC,MAAM,YAAY,GAAG,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBACtF,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,CAClB,6CAA6C,IAAI,CAAC,WAAW,CAAC,IAAI,MAAM,YAAY,EAAE,EACtF,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,SAAS,CAC9D,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;CACF;AA3lBD,kDA2lBC"}

package/dist/services/mfa-base.service.d.ts

@@ -7,6 +7,7 @@ import { InternalAuthAuditService as AuthAuditService } from './auth-audit.servi
 import { ClientInfoService } from './client-info.service';
 import { IMFAProviderService } from '../interfaces/mfa-provider.interface';
 import { ChallengeService } from './challenge.service';
+import { HookRegistryService } from './hook-registry.service';
 /**
  * Base MFA Provider Service
  *
@@ -59,9 +60,10 @@ export declare abstract class BaseMFAProviderService implements IMFAProviderServ
     protected readonly challengeService?: ChallengeService | undefined;
     protected readonly auditService?: AuthAuditService | undefined;
     protected readonly clientInfoService?: ClientInfoService | undefined;
+    protected readonly hookRegistry?: HookRegistryService | undefined;
     abstract readonly methodName: string;
     constructor(mfaDeviceRepository: Repository<BaseMFADevice>, userRepository: Repository<BaseUser>, config: NAuthConfig, logger: NAuthLogger, passwordService?: unknown | undefined, // Optional - from @nauth-toolkit/core
-    challengeService?: ChallengeService | undefined, auditService?: AuthAuditService | undefined, clientInfoService?: ClientInfoService | undefined);
+    challengeService?: ChallengeService | undefined, auditService?: AuthAuditService | undefined, clientInfoService?: ClientInfoService | undefined, hookRegistry?: HookRegistryService | undefined);
     /**
      * Check if this MFA method is allowed by configuration
      *

package/dist/services/mfa-base.service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"mfa-base.service.d.ts","sourceRoot":"","sources":["../../src/services/mfa-base.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAEtD,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACpD,OAAO,EAAE,wBAAwB,IAAI,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAEpF,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAG1D,OAAO,EAAE,mBAAmB,EAAE,MAAM,sCAAsC,CAAC;AAE3E,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAEvD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA0CG;AACH,8BAAsB,sBAAuB,YAAW,mBAAmB;IAIvE,SAAS,CAAC,QAAQ,CAAC,mBAAmB,EAAE,UAAU,CAAC,aAAa,CAAC;IACjE,SAAS,CAAC,QAAQ,CAAC,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC;IACvD,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,WAAW;IACtC,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,WAAW;IACtC,SAAS,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,OAAO;IAC5C,SAAS,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,gBAAgB;IACtD,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,gBAAgB;IAClD,SAAS,CAAC,QAAQ,CAAC,iBAAiB,CAAC,EAAE,iBAAiB;IAV1D,QAAQ,CAAC,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;gBAGhB,mBAAmB,EAAE,UAAU,CAAC,aAAa,CAAC,EAC9C,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC,EACpC,MAAM,EAAE,WAAW,EACnB,MAAM,EAAE,WAAW,EACnB,eAAe,CAAC,EAAE,OAAO,YAAA,EAAE,sCAAsC;IACjE,gBAAgB,CAAC,EAAE,gBAAgB,YAAA,EACnC,YAAY,CAAC,EAAE,gBAAgB,YAAA,EAC/B,iBAAiB,CAAC,EAAE,iBAAiB,YAAA;IAG1D;;;;OAIG;IACH,eAAe,IAAI,OAAO;IAM1B,QAAQ,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,EAAE,SAAS,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IAClE,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,KAAK,EAAE,gBAAgB,EAAE,OAAO,EAAE,UAAU,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAClG,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAQhF;;;;;;;OAOG;cACa,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC;IASrE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAgCG;cACa,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC,UAAU,CAAC,GAAG,OAAO,CAAC,UAAU,CAAC;IA+ElG;;;;;;;OAOG;cACa,UAAU,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAmBzF;;;;;OAKG;cACa,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IASlE;;;;;;;;;OASG;cACa,gBAAgB,CAAC,IAAI,EAAE,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC;IA0E5D;;;;;;;;OAQG;IACG,mBAAmB,CAAC,IAAI,EAAE,KAAK,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAwDzD;;;;;;;;;OASG;cACa,gBAAgB,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAqE7E;;;;;;OAMG;IACH,SAAS,CAAC,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM;IAUpD;;;;;;OAMG;IACH,SAAS,CAAC,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAM1C;;;;;;;;;;;;;;;OAeG;IACH,SAAS,CAAC,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAS1C;;;;;;;;;;;;;;OAcG;cACa,aAAa,CAAC,IAAI,EAAE,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC;CAgD7D"}
+{"version":3,"file":"mfa-base.service.d.ts","sourceRoot":"","sources":["../../src/services/mfa-base.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAEtD,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAC7D,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACpD,OAAO,EAAE,wBAAwB,IAAI,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAEpF,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAG1D,OAAO,EAAE,mBAAmB,EAAE,MAAM,sCAAsC,CAAC;AAE3E,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EAAE,mBAAmB,EAAE,MAAM,yBAAyB,CAAC;AAE9D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA0CG;AACH,8BAAsB,sBAAuB,YAAW,mBAAmB;IAIvE,SAAS,CAAC,QAAQ,CAAC,mBAAmB,EAAE,UAAU,CAAC,aAAa,CAAC;IACjE,SAAS,CAAC,QAAQ,CAAC,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC;IACvD,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,WAAW;IACtC,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,WAAW;IACtC,SAAS,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,OAAO;IAC5C,SAAS,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,gBAAgB;IACtD,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,gBAAgB;IAClD,SAAS,CAAC,QAAQ,CAAC,iBAAiB,CAAC,EAAE,iBAAiB;IACxD,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,mBAAmB;IAXvD,QAAQ,CAAC,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;gBAGhB,mBAAmB,EAAE,UAAU,CAAC,aAAa,CAAC,EAC9C,cAAc,EAAE,UAAU,CAAC,QAAQ,CAAC,EACpC,MAAM,EAAE,WAAW,EACnB,MAAM,EAAE,WAAW,EACnB,eAAe,CAAC,EAAE,OAAO,YAAA,EAAE,sCAAsC;IACjE,gBAAgB,CAAC,EAAE,gBAAgB,YAAA,EACnC,YAAY,CAAC,EAAE,gBAAgB,YAAA,EAC/B,iBAAiB,CAAC,EAAE,iBAAiB,YAAA,EACrC,YAAY,CAAC,EAAE,mBAAmB,YAAA;IAGvD;;;;OAIG;IACH,eAAe,IAAI,OAAO;IAM1B,QAAQ,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,EAAE,SAAS,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IAClE,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,KAAK,EAAE,gBAAgB,EAAE,OAAO,EAAE,UAAU,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAClG,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAQhF;;;;;;;OAOG;cACa,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC;IASrE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAgCG;cACa,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC,UAAU,CAAC,GAAG,OAAO,CAAC,UAAU,CAAC;IA+ElG;;;;;;;OAOG;cACa,UAAU,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAmBzF;;;;;OAKG;cACa,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IASlE;;;;;;;;;OASG;cACa,gBAAgB,CAAC,IAAI,EAAE,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC;IA6I5D;;;;;;;;OAQG;IACG,mBAAmB,CAAC,IAAI,EAAE,KAAK,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAwDzD;;;;;;;;;OASG;cACa,gBAAgB,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAqE7E;;;;;;OAMG;IACH,SAAS,CAAC,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM;IAUpD;;;;;;OAMG;IACH,SAAS,CAAC,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAM1C;;;;;;;;;;;;;;;OAeG;IACH,SAAS,CAAC,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAS1C;;;;;;;;;;;;;;OAcG;cACa,aAAa,CAAC,IAAI,EAAE,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC;CAgD7D"}

package/dist/services/mfa-base.service.js

@@ -58,8 +58,9 @@ class BaseMFAProviderService {
     challengeService;
     auditService;
     clientInfoService;
+    hookRegistry;
     constructor(mfaDeviceRepository, userRepository, config, logger, passwordService, // Optional - from @nauth-toolkit/core
-    challengeService, auditService, clientInfoService) {
+    challengeService, auditService, clientInfoService, hookRegistry) {
         this.mfaDeviceRepository = mfaDeviceRepository;
         this.userRepository = userRepository;
         this.config = config;
@@ -68,6 +69,7 @@ class BaseMFAProviderService {
         this.challengeService = challengeService;
         this.auditService = auditService;
         this.clientInfoService = clientInfoService;
+        this.hookRegistry = hookRegistry;
     }
     /**
      * Check if this MFA method is allowed by configuration
@@ -258,6 +260,9 @@ class BaseMFAProviderService {
         }
         const userEntityRecord = userEntity;
         const isFirstDevice = !userEntityRecord.mfaEnabled;
+        const previousMethods = Array.isArray(userEntityRecord.mfaMethods)
+            ? userEntityRecord.mfaMethods
+            : [];
         if (!userEntityRecord.mfaEnabled) {
             userEntityRecord.mfaEnabled = true;
             userEntityRecord.mfaEnforcedAt = new Date();
@@ -265,6 +270,7 @@ class BaseMFAProviderService {
         // Update mfaMethods array
         const devices = await this.getUserDevices(userId);
         const methods = [...new Set(devices.filter((d) => d.isActive).map((d) => d.type))];
+        const newlyAddedMethods = methods.filter((m) => !previousMethods.includes(m));
         userEntityRecord.mfaMethods = methods;
         // Set preferred method if not set
         if (!userEntityRecord.preferredMfaMethod && methods.length > 0) {
@@ -272,6 +278,41 @@ class BaseMFAProviderService {
             userEntityRecord.preferredMfaMethod = primaryDevice?.type || methods[0];
         }
         await this.userRepository.save(userEntity);
+        // ============================================================================
+        // Lifecycle Hook: MFA Method Added (additional methods only)
+        // ============================================================================
+        // This complements (and avoids duplicating) the "first enabled" hook:
+        // - First ever method → `executeMFAFirstEnabled`
+        // - Subsequent new method → `executeMFAMethodAdded`
+        if (!isFirstDevice && newlyAddedMethods.length > 0 && this.hookRegistry && this.clientInfoService) {
+            try {
+                const clientInfo = this.clientInfoService.get();
+                for (const method of newlyAddedMethods) {
+                    await this.hookRegistry.executeMFAMethodAdded({
+                        user: userEntity,
+                        method: method,
+                        isFirstMethod: false,
+                        enabledMethods: methods,
+                        timestamp: new Date(),
+                        clientInfo: {
+                            ipAddress: clientInfo.ipAddress,
+                            userAgent: clientInfo.userAgent,
+                            ipCountry: clientInfo.ipCountry,
+                            ipCity: clientInfo.ipCity,
+                        },
+                    });
+                }
+            }
+            catch (hookError) {
+                // Non-blocking: Log but continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`Failed to execute mfaMethodAdded hooks: ${errorMessage}`, {
+                    error: hookError,
+                    userId: user.id,
+                    methodName: this.methodName,
+                });
+            }
+        }
         // If this is the first MFA device being set up, clear any MFA_SETUP_REQUIRED challenges
         // This prevents phantom challenges when user sets up MFA while logged in
         // if (isFirstDevice && this.challengeService) {
@@ -309,6 +350,34 @@ class BaseMFAProviderService {
                 });
             }
         }
+        // ============================================================================
+        // Lifecycle Hook: MFA First Enabled (only for first device)
+        // ============================================================================
+        if (isFirstDevice && this.hookRegistry && this.clientInfoService) {
+            try {
+                const clientInfo = this.clientInfoService.get();
+                await this.hookRegistry.executeMFAFirstEnabled({
+                    user: userEntity,
+                    firstMethod: this.methodName,
+                    enforcedAt: new Date(),
+                    clientInfo: {
+                        ipAddress: clientInfo.ipAddress,
+                        userAgent: clientInfo.userAgent,
+                        ipCountry: clientInfo.ipCountry,
+                        ipCity: clientInfo.ipCity,
+                    },
+                });
+            }
+            catch (hookError) {
+                // Non-blocking: Log but continue
+                const errorMessage = hookError instanceof Error ? hookError.message : 'Unknown error';
+                this.logger?.error?.(`Failed to execute mfaFirstEnabled hooks: ${errorMessage}`, {
+                    error: hookError,
+                    userId: user.id,
+                    methodName: this.methodName,
+                });
+            }
+        }
     }
     // ============================================================================
     // Backup Codes (Common Logic)