npm - @pagopa/io-react-native-wallet - Versions diffs - 1.7.0 → 2.0.0-next.0 - Mend

@pagopa/io-react-native-wallet 1.7.0 → 2.0.0-next.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (438) hide show

package/lib/commonjs/credential/presentation/08-send-authorization-response.js CHANGED Viewed

@@ -3,16 +3,14 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.sendAuthorizationResponseDcql = exports.sendAuthorizationResponse = exports.sendAuthorizationErrorResponse = exports.prepareRemotePresentations = exports.choosePublicKeyToEncrypt = exports.buildDirectPostJwtBody = exports.buildDirectPostBody = exports.AuthorizationResponse = void 0;
+exports.sendLegacyAuthorizationResponse = exports.sendAuthorizationResponse = exports.sendAuthorizationErrorResponse = exports.choosePublicKeyToEncrypt = exports.buildDirectPostJwtBody = exports.buildDirectPostBody = exports.AuthorizationResponse = void 0;
 var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
 var _reactNativeUuid = _interopRequireDefault(require("react-native-uuid"));
+var _retrieveRpJwks = require("./04-retrieve-rp-jwks");
 var _errors = require("./errors");
 var _misc = require("../../utils/misc");
 var z = _interopRequireWildcard(require("zod"));
-var _jsBase = require("js-base64");
-var _mdoc = require("../../mdoc");
-var _crypto = require("../../utils/crypto");
-var _sdJwt = require("../../sd-jwt");
+var _errors2 = require("../../utils/errors");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
@@ -30,25 +28,13 @@ const AuthorizationResponse = z.object({
  * Selects a public key (with `use = enc`) from the set of JWK keys
  * offered by the Relying Party (RP) for encryption.
  *
- * Preference is given to EC keys (P-256 or P-384), followed by RSA keys,
- * based on compatibility and common usage for encryption.
- *
  * @param rpJwkKeys - The array of JWKs retrieved from the RP entity configuration.
  * @returns The first suitable public key found in the list.
  * @throws {NoSuitableKeysFoundInEntityConfiguration} If no suitable encryption key is found.
  */
 exports.AuthorizationResponse = AuthorizationResponse;
 const choosePublicKeyToEncrypt = rpJwkKeys => {
-  // First try to find RSA keys which are more commonly used for encryption
-  const encKeys = rpJwkKeys.filter(jwk => jwk.use === "enc");
-  // Prioritize EC keys first, then fall back to RSA keys if needed
-  // io-react-native-jwt support only EC keys with P-256 or P-384 curves
-  const ecEncKeys = encKeys.filter(jwk => jwk.kty === "EC" && (jwk.crv === "P-256" || jwk.crv === "P-384"));
-  const rsaEncKeys = encKeys.filter(jwk => jwk.kty === "RSA");
-  // Select the first available key based on priority
-  const encKey = ecEncKeys[0] || rsaEncKeys[0] || encKeys[0];
+  const encKey = rpJwkKeys.find(jwk => jwk.use === "enc");
   if (encKey) {
     return encKey;
   }
@@ -57,58 +43,37 @@ const choosePublicKeyToEncrypt = rpJwkKeys => {
   throw new _errors.NoSuitableKeysFoundInEntityConfiguration("No suitable public key found for encryption.");
 };
-/**
- * Builds a URL-encoded form body for a direct POST response without encryption.
- *
- * @param requestObject - Contains state, nonce, and other relevant info.
- * @param payload - Object that contains either the VP token to encrypt and the stringified mapping of the credential disclosures or the error code
- * @returns A URL-encoded string suitable for an `application/x-www-form-urlencoded` POST body.
- */
-exports.choosePublicKeyToEncrypt = choosePublicKeyToEncrypt;
-const buildDirectPostBody = async (requestObject, payload) => {
-  const formUrlEncodedBody = new URLSearchParams({
-    ...(requestObject.state ? {
-      state: requestObject.state
-    } : {}),
-    ...Object.fromEntries(Object.entries(payload).map(_ref => {
-      let [key, value] = _ref;
-      return [key, Array.isArray(value) || typeof value === "object" ? JSON.stringify(value) : value];
-    }))
-  });
-  return formUrlEncodedBody.toString();
-};
 /**
  * Builds a URL-encoded form body for a direct POST response using JWT encryption.
  *
  * @param jwkKeys - Array of JWKs from the Relying Party for encryption.
  * @param requestObject - Contains state, nonce, and other relevant info.
- * @param payload - Object that contains either the VP token to encrypt and the mapping of the credential disclosures or the error code
- * @param generatedNonce - Optional nonce for the `apu` claim in the JWE header, it is used during ISO 18013-7.
- * @returns A URL-encoded string for an `application/x-www-form-urlencoded` POST body,
- *          where `response` contains the encrypted JWE.
+ * @param payload - Object that contains the VP token to encrypt and the mapping of the credential disclosures
+ * @returns A URL-encoded string for an `application/x-www-form-urlencoded` POST body, where `response` contains the encrypted JWE.
  */
-exports.buildDirectPostBody = buildDirectPostBody;
-const buildDirectPostJwtBody = async (jwkKeys, requestObject, payload, generatedNonce) => {
+exports.choosePublicKeyToEncrypt = choosePublicKeyToEncrypt;
+const buildDirectPostJwtBody = async (requestObject, rpConf, payload) => {
   // Prepare the authorization response payload to be encrypted
   const authzResponsePayload = JSON.stringify({
     state: requestObject.state,
     ...payload
   });
-  const encPublicJwk = choosePublicKeyToEncrypt(jwkKeys);
+  // Choose a suitable public key for encryption
+  const {
+    keys
+  } = (0, _retrieveRpJwks.getJwksFromConfig)(rpConf);
+  const encPublicJwk = choosePublicKeyToEncrypt(keys);
   // Encrypt the authorization payload
   const {
-    client_metadata
-  } = requestObject;
+    authorization_encrypted_response_alg,
+    authorization_encrypted_response_enc
+  } = rpConf.openid_credential_verifier;
+  const defaultAlg = encPublicJwk.kty === "EC" ? "ECDH-ES" : "RSA-OAEP-256";
   const encryptedResponse = await new _ioReactNativeJwt.EncryptJwe(authzResponsePayload, {
-    alg: (client_metadata === null || client_metadata === void 0 ? void 0 : client_metadata.authorization_encrypted_response_alg) || "RSA-OAEP-256",
-    enc: (client_metadata === null || client_metadata === void 0 ? void 0 : client_metadata.authorization_encrypted_response_enc) || "A256CBC-HS512",
-    kid: encPublicJwk.kid,
-    /* ISO 18013-7 */
-    apv: _jsBase.Base64.encodeURI(requestObject.nonce),
-    ...(generatedNonce ? {
-      apu: _jsBase.Base64.encodeURI(generatedNonce)
-    } : {})
+    alg: authorization_encrypted_response_alg || defaultAlg,
+    enc: authorization_encrypted_response_enc || "A256CBC-HS512",
+    kid: encPublicJwk.kid
   }).encrypt(encPublicJwk);
   // Build the x-www-form-urlencoded form body
@@ -122,15 +87,36 @@ const buildDirectPostJwtBody = async (jwkKeys, requestObject, payload, generated
 };
 /**
- * Type definition for the function that sends the authorization response
- * to the Relying Party, completing the presentation flow.
+ * Builds a URL-encoded form body for a direct POST response without encryption.
+ *
+ * @param requestObject - Contains state, nonce, and other relevant info.
+ * @param payload - Object that contains either the VP token to encrypt and the stringified mapping of the credential disclosures or the error code
+ * @returns A URL-encoded string suitable for an `application/x-www-form-urlencoded` POST body.
  */
+exports.buildDirectPostJwtBody = buildDirectPostJwtBody;
+const buildDirectPostBody = async (requestObject, payload) => {
+  const formUrlEncodedBody = new URLSearchParams({
+    ...(requestObject.state && {
+      state: requestObject.state
+    }),
+    ...Object.entries(payload).reduce((acc, _ref) => {
+      let [key, value] = _ref;
+      return {
+        ...acc,
+        [key]: Array.isArray(value) || typeof value === "object" ? JSON.stringify(value) : value
+      };
+    }, {})
+  });
+  return formUrlEncodedBody.toString();
+};
 /**
  * Type definition for the function that sends the authorization response
  * to the Relying Party, completing the presentation flow.
+ * Use with `presentation_definition`.
+ * @deprecated Use `sendAuthorizationResponse`
  */
-exports.buildDirectPostJwtBody = buildDirectPostJwtBody;
+exports.buildDirectPostBody = buildDirectPostBody;
 /**
  * Sends the authorization response to the Relying Party (RP) using the specified `response_mode`.
  * This function completes the presentation flow in an OpenID 4 Verifiable Presentations scenario.
@@ -142,175 +128,125 @@ exports.buildDirectPostJwtBody = buildDirectPostJwtBody;
  * @param context - Contains optional custom fetch implementation.
  * @returns Parsed and validated authorization response from the Relying Party.
  */
-const sendAuthorizationResponse = async function (requestObject, presentationDefinitionId, jwkKeys, remotePresentation) {
-  var _presentations$;
+const sendLegacyAuthorizationResponse = async function (requestObject, presentationDefinitionId, remotePresentations, rpConf) {
+  var _remotePresentations$;
   let {
     appFetch = fetch
   } = arguments.length > 4 && arguments[4] !== undefined ? arguments[4] : {};
-  const {
-    generatedNonce,
-    presentations
-  } = remotePresentation;
   /**
    * 1. Prepare the VP token and presentation submission
    * If there is only one credential, `vpToken` is a single string.
    * If there are multiple credential, `vpToken` is an array of string.
    **/
-  const vp_token = (presentations === null || presentations === void 0 ? void 0 : presentations.length) === 1 ? (_presentations$ = presentations[0]) === null || _presentations$ === void 0 ? void 0 : _presentations$.vpToken : presentations.map(presentation => presentation.vpToken);
-  const descriptor_map = presentations.map((presentation, index) => ({
-    id: presentation.credentialId,
-    path: (presentations === null || presentations === void 0 ? void 0 : presentations.length) === 1 ? `$` : `$[${index}]`,
-    format: presentation.format
+  const vp_token = (remotePresentations === null || remotePresentations === void 0 ? void 0 : remotePresentations.length) === 1 ? (_remotePresentations$ = remotePresentations[0]) === null || _remotePresentations$ === void 0 ? void 0 : _remotePresentations$.vpToken : remotePresentations.map(remotePresentation => remotePresentation.vpToken);
+  const descriptor_map = remotePresentations.map((remotePresentation, index) => ({
+    id: remotePresentation.inputDescriptor.id,
+    path: remotePresentations.length === 1 ? `$` : `$[${index}]`,
+    format: remotePresentation.format
   }));
   const presentation_submission = {
     id: _reactNativeUuid.default.v4(),
     definition_id: presentationDefinitionId,
     descriptor_map
   };
-  // 2. Choose the appropriate request body builder based on response mode
-  const requestBody = requestObject.response_mode === "direct_post.jwt" ? await buildDirectPostJwtBody(jwkKeys, requestObject, {
+  const requestBody = await buildDirectPostJwtBody(requestObject, rpConf, {
     vp_token,
     presentation_submission
-  }, generatedNonce) : await buildDirectPostBody(requestObject, {
-    vp_token,
-    presentation_submission: presentation_submission
   });
   // 3. Send the authorization response via HTTP POST and validate the response
-  const authResponse = await appFetch(requestObject.response_uri, {
+  return await appFetch(requestObject.response_uri, {
     method: "POST",
     headers: {
       "Content-Type": "application/x-www-form-urlencoded"
     },
     body: requestBody
-  }).then((0, _misc.hasStatusOrThrow)(200)).then(res => res.json()).then(AuthorizationResponse.safeParse);
-  // Some Relying Parties may return an empty body.
-  return authResponse.success ? authResponse.data : {};
+  }).then((0, _misc.hasStatusOrThrow)(200)).then(res => res.json()).then(AuthorizationResponse.parse);
 };
 /**
  * Type definition for the function that sends the authorization response
  * to the Relying Party, completing the presentation flow.
+ * Use with DCQL queries.
  */
-exports.sendAuthorizationResponse = sendAuthorizationResponse;
-/**
- * Sends the authorization error response to the Relying Party (RP) using the specified `response_mode`.
- * This function completes the presentation flow in an OpenID 4 Verifiable Presentations scenario.
- *
- * @param requestObject - The request details, including presentation requirements.
- * @param error - The response error value
- * @param jwkKeys - Array of JWKs from the Relying Party for optional encryption.
- * @param context - Contains optional custom fetch implementation.
- * @returns Parsed and validated authorization response from the Relying Party.
- */
-const sendAuthorizationErrorResponse = async function (requestObject, error, jwkKeys) {
+exports.sendLegacyAuthorizationResponse = sendLegacyAuthorizationResponse;
+const sendAuthorizationResponse = async function (requestObject, remotePresentations, rpConf) {
   let {
     appFetch = fetch
   } = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : {};
-  // 2. Choose the appropriate request body builder based on response mode
-  const requestBody = requestObject.response_mode === "direct_post.jwt" ? await buildDirectPostJwtBody(jwkKeys, requestObject, {
-    error
-  }) : await buildDirectPostBody(requestObject, {
-    error
+  // 1. Prepare the VP token as a JSON object with keys corresponding to the DCQL query credential IDs
+  const requestBody = await buildDirectPostJwtBody(requestObject, rpConf, {
+    vp_token: remotePresentations.reduce((acc, presentation) => ({
+      ...acc,
+      [presentation.credentialId]: presentation.vpToken
+    }), {})
   });
-  // 3. Send the authorization error response via HTTP POST and validate the response
+  // 2. Send the authorization response via HTTP POST and validate the response
   return await appFetch(requestObject.response_uri, {
     method: "POST",
     headers: {
       "Content-Type": "application/x-www-form-urlencoded"
     },
     body: requestBody
-  }).then((0, _misc.hasStatusOrThrow)(200)).then(res => res.json()).then(AuthorizationResponse.parse);
+  }).then((0, _misc.hasStatusOrThrow)(200)).then(res => res.json()).then(AuthorizationResponse.parse).catch(handleAuthorizationResponseError);
 };
-exports.sendAuthorizationErrorResponse = sendAuthorizationErrorResponse;
-const sendAuthorizationResponseDcql = async function (requestObject, jwkKeys, remotePresentation) {
+/**
+ * Type definition for the function that sends the authorization response
+ * to the Relying Party, completing the presentation flow.
+ */
+exports.sendAuthorizationResponse = sendAuthorizationResponse;
+/**
+ * Sends the authorization error response to the Relying Party (RP) using the specified `response_mode`.
+ * This function completes the presentation flow in an OpenID 4 Verifiable Presentations scenario.
+ *
+ * @param requestObject - The request details, including presentation requirements.
+ * @param error - The response error value, with description
+ * @param context - Contains optional custom fetch implementation.
+ * @returns Parsed and validated authorization response from the Relying Party.
+ */
+const sendAuthorizationErrorResponse = async function (requestObject, _ref2) {
+  let {
+    error,
+    errorDescription
+  } = _ref2;
   let {
     appFetch = fetch
-  } = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : {};
-  const {
-    generatedNonce,
-    presentations
-  } = remotePresentation;
-  // 1. Prepare the VP token as a JSON object with keys corresponding to the DCQL query credential IDs
-  const requestBody = await buildDirectPostJwtBody(jwkKeys, requestObject, {
-    vp_token: presentations.reduce((acc, presentation) => ({
-      ...acc,
-      [presentation.credentialId]: presentation.vpToken
-    }), {})
-  }, generatedNonce);
-  // 2. Send the authorization response via HTTP POST and validate the response
+  } = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : {};
+  const requestBody = await buildDirectPostBody(requestObject, {
+    error,
+    error_description: errorDescription
+  });
   return await appFetch(requestObject.response_uri, {
     method: "POST",
     headers: {
       "Content-Type": "application/x-www-form-urlencoded"
     },
     body: requestBody
-  }).then((0, _misc.hasStatusOrThrow)(200)).then(res => res.json()).then(AuthorizationResponse.parse);
+  }).then((0, _misc.hasStatusOrThrow)(200, _errors2.RelyingPartyResponseError)).then(res => res.json()).then(AuthorizationResponse.parse);
 };
 /**
- * Prepares remote presentations for a set of credentials.
- *
- * For each credential, this function:
- * - Validates the credential format (currently supports 'mso_mdoc' and 'vc+sd-jwt').
- * - Generates a verifiable presentation token (vpToken) using the appropriate method.
- * - For ISO 18013-7, generates a special nonce with minimum entropy of 16.
- *
- * @param credentials - An array of credential items containing format, credential data, requested claims, and key information.
- * @param authRequestObject - The authentication request object containing nonce, clientId, and responseUri.
- * @returns A promise that resolves to an object containing an array of presentations and the generated nonce.
- * @throws {CredentialNotFoundError} When the credential format is unsupported.
+ * Handle the the presentation error by mapping it to a custom exception.
+ * If the error is not an instance of {@link UnexpectedStatusCodeError}, it is thrown as is.
+ * @param e - The error to be handled
+ * @throws {RelyingPartyResponseError} with a specific code for more context
  */
-exports.sendAuthorizationResponseDcql = sendAuthorizationResponseDcql;
-const prepareRemotePresentations = async (credentials, authRequestObject) => {
-  /* In case of ISO 18013-7 we need a nonce, it shall have a minimum entropy of 16  */
-  const generatedNonce = (0, _misc.generateRandomAlphaNumericString)(16);
-  const presentations = await Promise.all(credentials.map(async item => {
-    const {
-      credentialInputId,
-      format
-    } = item;
-    if (format === "mso_mdoc") {
-      const {
-        vp_token
-      } = await (0, _mdoc.prepareVpTokenMdoc)(authRequestObject.nonce, generatedNonce, authRequestObject.clientId, authRequestObject.responseUri, item.doctype, item.keyTag, [item.credential, item.requestedClaims, (0, _crypto.createCryptoContextFor)(item.keyTag)]);
-      return {
-        requestedClaims: [...item.requestedClaims.map(_ref2 => {
-          let {
-            name
-          } = _ref2;
-          return name;
-        })],
-        credentialId: credentialInputId,
-        vpToken: vp_token,
-        format: "mso_mdoc"
-      };
-    }
-    if (format === "vc+sd-jwt") {
-      const {
-        vp_token
-      } = await (0, _sdJwt.prepareVpToken)(authRequestObject.nonce, authRequestObject.clientId, [item.credential, item.requestedClaims, (0, _crypto.createCryptoContextFor)(item.keyTag)]);
-      return {
-        requestedClaims: [...item.requestedClaims.map(_ref3 => {
-          let {
-            name
-          } = _ref3;
-          return name;
-        })],
-        credentialId: credentialInputId,
-        vpToken: vp_token,
-        format: "vc+sd-jwt"
-      };
-    }
-    throw new _errors.CredentialNotFoundError(`${format} format is not supported.`);
-  }));
-  return {
-    presentations,
-    generatedNonce
-  };
+exports.sendAuthorizationErrorResponse = sendAuthorizationErrorResponse;
+const handleAuthorizationResponseError = e => {
+  if (!(e instanceof _errors2.UnexpectedStatusCodeError)) {
+    throw e;
+  }
+  throw new _errors2.ResponseErrorBuilder(_errors2.RelyingPartyResponseError).handle(400, {
+    code: _errors2.RelyingPartyResponseErrorCodes.InvalidAuthorizationResponse,
+    message: "The Authorization Response contains invalid parameters or it is malformed"
+  }).handle(403, {
+    code: _errors2.RelyingPartyResponseErrorCodes.InvalidAuthorizationResponse,
+    message: "The Authorization Response was forbidden"
+  }).handle("*", {
+    code: _errors2.RelyingPartyResponseErrorCodes.RelyingPartyGenericError,
+    message: "Unable to successfully send the Authorization Response"
+  }).buildFrom(e);
 };
-exports.prepareRemotePresentations = prepareRemotePresentations;
 //# sourceMappingURL=08-send-authorization-response.js.map

package/lib/commonjs/credential/presentation/08-send-authorization-response.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"names":["_ioReactNativeJwt","require","_reactNativeUuid","_interopRequireDefault","_errors","_misc","z","_interopRequireWildcard","_jsBase","_mdoc","_crypto","_sdJwt","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","AuthorizationResponse","object","status","string","optional","response_code","redirect_uri","exports","choosePublicKeyToEncrypt","rpJwkKeys","encKeys","filter","jwk","use","ecEncKeys","kty","crv","rsaEncKeys","encKey","NoSuitableKeysFoundInEntityConfiguration","buildDirectPostBody","requestObject","payload","formUrlEncodedBody","URLSearchParams","state","fromEntries","entries","map","_ref","value","Array","isArray","JSON","stringify","toString","buildDirectPostJwtBody","jwkKeys","generatedNonce","authzResponsePayload","encPublicJwk","client_metadata","encryptedResponse","EncryptJwe","alg","authorization_encrypted_response_alg","enc","authorization_encrypted_response_enc","kid","apv","Base64","encodeURI","nonce","apu","encrypt","formBody","response","sendAuthorizationResponse","presentationDefinitionId","remotePresentation","_presentations$","appFetch","fetch","arguments","length","undefined","presentations","vp_token","vpToken","presentation","descriptor_map","index","id","credentialId","path","format","presentation_submission","uuid","v4","definition_id","requestBody","response_mode","authResponse","response_uri","method","headers","body","then","hasStatusOrThrow","res","json","safeParse","success","data","sendAuthorizationErrorResponse","error","parse","sendAuthorizationResponseDcql","reduce","acc","prepareRemotePresentations","credentials","authRequestObject","generateRandomAlphaNumericString","Promise","all","item","credentialInputId","prepareVpTokenMdoc","clientId","responseUri","doctype","keyTag","credential","requestedClaims","createCryptoContextFor","_ref2","name","prepareVpToken","_ref3","CredentialNotFoundError"],"sourceRoot":"../../../../src","sources":["credential/presentation/08-send-authorization-response.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,gBAAA,GAAAC,sBAAA,CAAAF,OAAA;AAGA,IAAAG,OAAA,GAAAH,OAAA;AAIA,IAAAI,KAAA,GAAAJ,OAAA;AAOA,IAAAK,CAAA,GAAAC,uBAAA,CAAAN,OAAA;AAEA,IAAAO,OAAA,GAAAP,OAAA;AAEA,IAAAQ,KAAA,GAAAR,OAAA;AAEA,IAAAS,OAAA,GAAAT,OAAA;AACA,IAAAU,MAAA,GAAAV,OAAA;AAA8C,SAAAW,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAN,wBAAAU,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAAA,SAAApB,uBAAAc,GAAA,WAAAA,GAAA,IAAAA,GAAA,CAAAC,UAAA,GAAAD,GAAA,KAAAE,OAAA,EAAAF,GAAA;AAGvC,MAAMiB,qBAAqB,GAAG5B,CAAC,CAAC6B,MAAM,CAAC;EAC5CC,MAAM,EAAE9B,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC7BC,aAAa,EAAEjC,CAAC,CACb+B,MAAM,CAAC,CAAC,CAAC;AACd;AACA;AACA;AACA,8BAJc,CAKTC,QAAQ,CAAC,CAAC;EACbE,YAAY,EAAElC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC;AACpC,CAAC,CAAC;;AAEF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAVAG,OAAA,CAAAP,qBAAA,GAAAA,qBAAA;AAWO,MAAMQ,wBAAwB,GACnCC,SAAiC,IACzB;EACR;EACA,MAAMC,OAAO,GAAGD,SAAS,CAACE,MAAM,CAAEC,GAAG,IAAKA,GAAG,CAACC,GAAG,KAAK,KAAK,CAAC;;EAE5D;EACA;EACA,MAAMC,SAAS,GAAGJ,OAAO,CAACC,MAAM,CAC7BC,GAAG,IAAKA,GAAG,CAACG,GAAG,KAAK,IAAI,KAAKH,GAAG,CAACI,GAAG,KAAK,OAAO,IAAIJ,GAAG,CAACI,GAAG,KAAK,OAAO,CAC1E,CAAC;EACD,MAAMC,UAAU,GAAGP,OAAO,CAACC,MAAM,CAAEC,GAAG,IAAKA,GAAG,CAACG,GAAG,KAAK,KAAK,CAAC;;EAE7D;EACA,MAAMG,MAAM,GAAGJ,SAAS,CAAC,CAAC,CAAC,IAAIG,UAAU,CAAC,CAAC,CAAC,IAAIP,OAAO,CAAC,CAAC,CAAC;EAE1D,IAAIQ,MAAM,EAAE;IACV,OAAOA,MAAM;EACf;;EAEA;EACA,MAAM,IAAIC,gDAAwC,CAChD,8CACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AANAZ,OAAA,CAAAC,wBAAA,GAAAA,wBAAA;AAOO,MAAMY,mBAAmB,GAAG,MAAAA,CACjCC,aAAiE,EACjEC,OAAuC,KACnB;EACpB,MAAMC,kBAAkB,GAAG,IAAIC,eAAe,CAAC;IAC7C,IAAIH,aAAa,CAACI,KAAK,GAAG;MAAEA,KAAK,EAAEJ,aAAa,CAACI;IAAM,CAAC,GAAG,CAAC,CAAC,CAAC;IAC9D,GAAGlC,MAAM,CAACmC,WAAW,CACnBnC,MAAM,CAACoC,OAAO,CAACL,OAAO,CAAC,CAACM,GAAG,CAACC,IAAA,IAAkB;MAAA,IAAjB,CAACnC,GAAG,EAAEoC,KAAK,CAAC,GAAAD,IAAA;MACvC,OAAO,CACLnC,GAAG,EACHqC,KAAK,CAACC,OAAO,CAACF,KAAK,CAAC,IAAI,OAAOA,KAAK,KAAK,QAAQ,GAC7CG,IAAI,CAACC,SAAS,CAACJ,KAAK,CAAC,GACrBA,KAAK,CACV;IACH,CAAC,CACH;EACF,CAAC,CAAC;EAEF,OAAOP,kBAAkB,CAACY,QAAQ,CAAC,CAAC;AACtC,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AATA5B,OAAA,CAAAa,mBAAA,GAAAA,mBAAA;AAUO,MAAMgB,sBAAsB,GAAG,MAAAA,CACpCC,OAA+B,EAC/BhB,aAAiE,EACjEC,OAAuC,EACvCgB,cAAuB,KACH;EACpB;EACA,MAAMC,oBAAoB,GAAGN,IAAI,CAACC,SAAS,CAAC;IAC1CT,KAAK,EAAEJ,aAAa,CAACI,KAAK;IAC1B,GAAGH;EACL,CAAC,CAAC;EAEF,MAAMkB,YAAY,GAAGhC,wBAAwB,CAAC6B,OAAO,CAAC;EACtD;EACA,MAAM;IAAEI;EAAgB,CAAC,GAAGpB,aAAa;EACzC,MAAMqB,iBAAiB,GAAG,MAAM,IAAIC,4BAAU,CAACJ,oBAAoB,EAAE;IACnEK,GAAG,EACD,CAACH,eAAe,aAAfA,eAAe,uBAAfA,eAAe,CAAEI,oCAAoC,KAEnC,cAAc;IACnCC,GAAG,EACD,CAACL,eAAe,aAAfA,eAAe,uBAAfA,eAAe,CAAEM,oCAAoC,KAE9B,eAAe;IACzCC,GAAG,EAAER,YAAY,CAACQ,GAAG;IACrB;IACAC,GAAG,EAAEC,cAAM,CAACC,SAAS,CAAC9B,aAAa,CAAC+B,KAAK,CAAC;IAC1C,IAAId,cAAc,GAAG;MAAEe,GAAG,EAAEH,cAAM,CAACC,SAAS,CAACb,cAAc;IAAE,CAAC,GAAG,CAAC,CAAC;EACrE,CAAC,CAAC,CAACgB,OAAO,CAACd,YAAY,CAAC;;EAExB;EACA,MAAMe,QAAQ,GAAG,IAAI/B,eAAe,CAAC;IACnCgC,QAAQ,EAAEd,iBAAiB;IAC3B,IAAIrB,aAAa,CAACI,KAAK,GAAG;MAAEA,KAAK,EAAEJ,aAAa,CAACI;IAAM,CAAC,GAAG,CAAC,CAAC;EAC/D,CAAC,CAAC;EACF,OAAO8B,QAAQ,CAACpB,QAAQ,CAAC,CAAC;AAC5B,CAAC;;AAED;AACA;AACA;AACA;;AAWA;AACA;AACA;AACA;AAHA5B,OAAA,CAAA6B,sBAAA,GAAAA,sBAAA;AAaA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMqB,yBAAoD,GAAG,eAAAA,CAClEpC,aAAa,EACbqC,wBAAwB,EACxBrB,OAAO,EACPsB,kBAAkB,EAEiB;EAAA,IAAAC,eAAA;EAAA,IADnC;IAAEC,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB,MAAM;IAAEzB,cAAc;IAAE4B;EAAc,CAAC,GAAGP,kBAAkB;EAC5D;AACF;AACA;AACA;AACA;EACE,MAAMQ,QAAQ,GACZ,CAAAD,aAAa,aAAbA,aAAa,uBAAbA,aAAa,CAAEF,MAAM,MAAK,CAAC,IAAAJ,eAAA,GACvBM,aAAa,CAAC,CAAC,CAAC,cAAAN,eAAA,uBAAhBA,eAAA,CAAkBQ,OAAO,GACzBF,aAAa,CAACtC,GAAG,CAAEyC,YAAY,IAAKA,YAAY,CAACD,OAAO,CAAC;EAE/D,MAAME,cAAc,GAAGJ,aAAa,CAACtC,GAAG,CAAC,CAACyC,YAAY,EAAEE,KAAK,MAAM;IACjEC,EAAE,EAAEH,YAAY,CAACI,YAAY;IAC7BC,IAAI,EAAE,CAAAR,aAAa,aAAbA,aAAa,uBAAbA,aAAa,CAAEF,MAAM,MAAK,CAAC,GAAI,GAAE,GAAI,KAAIO,KAAM,GAAE;IACvDI,MAAM,EAAEN,YAAY,CAACM;EACvB,CAAC,CAAC,CAAC;EAEH,MAAMC,uBAAuB,GAAG;IAC9BJ,EAAE,EAAEK,wBAAI,CAACC,EAAE,CAAC,CAAC;IACbC,aAAa,EAAErB,wBAAwB;IACvCY;EACF,CAAC;;EAED;EACA,MAAMU,WAAW,GACf3D,aAAa,CAAC4D,aAAa,KAAK,iBAAiB,GAC7C,MAAM7C,sBAAsB,CAC1BC,OAAO,EACPhB,aAAa,EACb;IACE8C,QAAQ;IACRS;EACF,CAAC,EACDtC,cACF,CAAC,GACD,MAAMlB,mBAAmB,CAACC,aAAa,EAAE;IACvC8C,QAAQ;IACRS,uBAAuB,EAAEA;EAC3B,CAAC,CAAC;;EAER;EACA,MAAMM,YAAY,GAAG,MAAMrB,QAAQ,CAACxC,aAAa,CAAC8D,YAAY,EAAE;IAC9DC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEN;EACR,CAAC,CAAC,CACCO,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAACvF,qBAAqB,CAAC2F,SAAS,CAAC;;EAExC;EACA,OAAOT,YAAY,CAACU,OAAO,GAAGV,YAAY,CAACW,IAAI,GAAG,CAAC,CAAC;AACtD,CAAC;;AAED;AACA;AACA;AACA;AAHAtF,OAAA,CAAAkD,yBAAA,GAAAA,yBAAA;AAaA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMqC,8BAA8D,GACzE,eAAAA,CACEzE,aAAa,EACb0E,KAAK,EACL1D,OAAO,EAE4B;EAAA,IADnC;IAAEwB,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB;EACA,MAAMiB,WAAW,GACf3D,aAAa,CAAC4D,aAAa,KAAK,iBAAiB,GAC7C,MAAM7C,sBAAsB,CAACC,OAAO,EAAEhB,aAAa,EAAE;IAAE0E;EAAM,CAAC,CAAC,GAC/D,MAAM3E,mBAAmB,CAACC,aAAa,EAAE;IAAE0E;EAAM,CAAC,CAAC;EACzD;EACA,OAAO,MAAMlC,QAAQ,CAACxC,aAAa,CAAC8D,YAAY,EAAE;IAChDC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEN;EACR,CAAC,CAAC,CACCO,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAACvF,qBAAqB,CAACgG,KAAK,CAAC;AACtC,CAAC;AAACzF,OAAA,CAAAuF,8BAAA,GAAAA,8BAAA;AAEG,MAAMG,6BAA4D,GACvE,eAAAA,CACE5E,aAAa,EACbgB,OAAO,EACPsB,kBAAkB,EAEiB;EAAA,IADnC;IAAEE,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB,MAAM;IAAEzB,cAAc;IAAE4B;EAAc,CAAC,GAAGP,kBAAkB;EAC5D;EACA,MAAMqB,WAAW,GAAG,MAAM5C,sBAAsB,CAC9CC,OAAO,EACPhB,aAAa,EACb;IACE8C,QAAQ,EAAED,aAAa,CAACgC,MAAM,CAC5B,CAACC,GAAG,EAAE9B,YAAY,MAAM;MACtB,GAAG8B,GAAG;MACN,CAAC9B,YAAY,CAACI,YAAY,GAAGJ,YAAY,CAACD;IAC5C,CAAC,CAAC,EACF,CAAC,CACH;EACF,CAAC,EACD9B,cACF,CAAC;;EAED;EACA,OAAO,MAAMuB,QAAQ,CAACxC,aAAa,CAAC8D,YAAY,EAAE;IAChDC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEN;EACR,CAAC,CAAC,CACCO,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAACvF,qBAAqB,CAACgG,KAAK,CAAC;AACtC,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAZAzF,OAAA,CAAA0F,6BAAA,GAAAA,6BAAA;AAaO,MAAMG,0BAAsD,GAAG,MAAAA,CACpEC,WAAW,EACXC,iBAAiB,KACd;EACH;EACA,MAAMhE,cAAc,GAAG,IAAAiE,sCAAgC,EAAC,EAAE,CAAC;EAE3D,MAAMrC,aAAa,GAAG,MAAMsC,OAAO,CAACC,GAAG,CACrCJ,WAAW,CAACzE,GAAG,CAAC,MAAO8E,IAAI,IAAK;IAC9B,MAAM;MAAEC,iBAAiB;MAAEhC;IAAO,CAAC,GAAG+B,IAAI;IAE1C,IAAI/B,MAAM,KAAK,UAAU,EAAE;MACzB,MAAM;QAAER;MAAS,CAAC,GAAG,MAAM,IAAAyC,wBAAkB,EAC3CN,iBAAiB,CAAClD,KAAK,EACvBd,cAAc,EACdgE,iBAAiB,CAACO,QAAQ,EAC1BP,iBAAiB,CAACQ,WAAW,EAC7BJ,IAAI,CAACK,OAAO,EACZL,IAAI,CAACM,MAAM,EACX,CACEN,IAAI,CAACO,UAAU,EACfP,IAAI,CAACQ,eAAe,EACpB,IAAAC,8BAAsB,EAACT,IAAI,CAACM,MAAM,CAAC,CAEvC,CAAC;MAED,OAAO;QACLE,eAAe,EAAE,CAAC,GAAGR,IAAI,CAACQ,eAAe,CAACtF,GAAG,CAACwF,KAAA;UAAA,IAAC;YAAEC;UAAK,CAAC,GAAAD,KAAA;UAAA,OAAKC,IAAI;QAAA,EAAC,CAAC;QAClE5C,YAAY,EAAEkC,iBAAiB;QAC/BvC,OAAO,EAAED,QAAQ;QACjBQ,MAAM,EAAE;MACV,CAAC;IACH;IAEA,IAAIA,MAAM,KAAK,WAAW,EAAE;MAC1B,MAAM;QAAER;MAAS,CAAC,GAAG,MAAM,IAAAmD,qBAAc,EACvChB,iBAAiB,CAAClD,KAAK,EACvBkD,iBAAiB,CAACO,QAAQ,EAC1B,CACEH,IAAI,CAACO,UAAU,EACfP,IAAI,CAACQ,eAAe,EACpB,IAAAC,8BAAsB,EAACT,IAAI,CAACM,MAAM,CAAC,CAEvC,CAAC;MAED,OAAO;QACLE,eAAe,EAAE,CAAC,GAAGR,IAAI,CAACQ,eAAe,CAACtF,GAAG,CAAC2F,KAAA;UAAA,IAAC;YAAEF;UAAK,CAAC,GAAAE,KAAA;UAAA,OAAKF,IAAI;QAAA,EAAC,CAAC;QAClE5C,YAAY,EAAEkC,iBAAiB;QAC/BvC,OAAO,EAAED,QAAQ;QACjBQ,MAAM,EAAE;MACV,CAAC;IACH;IAEA,MAAM,IAAI6C,+BAAuB,CAAE,GAAE7C,MAAO,2BAA0B,CAAC;EACzE,CAAC,CACH,CAAC;EAED,OAAO;IACLT,aAAa;IACb5B;EACF,CAAC;AACH,CAAC;AAAC/B,OAAA,CAAA6F,0BAAA,GAAAA,0BAAA"}
1	+ {"version":3,"names":["_ioReactNativeJwt","require","_reactNativeUuid","_interopRequireDefault","_retrieveRpJwks","_errors","_misc","z","_interopRequireWildcard","_errors2","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","AuthorizationResponse","object","status","string","optional","response_code","redirect_uri","exports","choosePublicKeyToEncrypt","rpJwkKeys","encKey","find","jwk","use","NoSuitableKeysFoundInEntityConfiguration","buildDirectPostJwtBody","requestObject","rpConf","payload","authzResponsePayload","JSON","stringify","state","keys","getJwksFromConfig","encPublicJwk","authorization_encrypted_response_alg","authorization_encrypted_response_enc","openid_credential_verifier","defaultAlg","kty","encryptedResponse","EncryptJwe","alg","enc","kid","encrypt","formBody","URLSearchParams","response","toString","buildDirectPostBody","formUrlEncodedBody","entries","reduce","acc","_ref","value","Array","isArray","sendLegacyAuthorizationResponse","presentationDefinitionId","remotePresentations","_remotePresentations$","appFetch","fetch","arguments","length","undefined","vp_token","vpToken","map","remotePresentation","descriptor_map","index","id","inputDescriptor","path","format","presentation_submission","uuid","v4","definition_id","requestBody","response_uri","method","headers","body","then","hasStatusOrThrow","res","json","parse","sendAuthorizationResponse","presentation","credentialId","catch","handleAuthorizationResponseError","sendAuthorizationErrorResponse","_ref2","error","errorDescription","error_description","RelyingPartyResponseError","e","UnexpectedStatusCodeError","ResponseErrorBuilder","handle","code","RelyingPartyResponseErrorCodes","InvalidAuthorizationResponse","message","RelyingPartyGenericError","buildFrom"],"sourceRoot":"../../../../src","sources":["credential/presentation/08-send-authorization-response.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,gBAAA,GAAAC,sBAAA,CAAAF,OAAA;AACA,IAAAG,eAAA,GAAAH,OAAA;AAEA,IAAAI,OAAA,GAAAJ,OAAA;AACA,IAAAK,KAAA,GAAAL,OAAA;AAOA,IAAAM,CAAA,GAAAC,uBAAA,CAAAP,OAAA;AAGA,IAAAQ,QAAA,GAAAR,OAAA;AAK4B,SAAAS,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAH,wBAAAO,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAAA,SAAAlB,uBAAAY,GAAA,WAAAA,GAAA,IAAAA,GAAA,CAAAC,UAAA,GAAAD,GAAA,KAAAE,OAAA,EAAAF,GAAA;AAGrB,MAAMiB,qBAAqB,GAAGzB,CAAC,CAAC0B,MAAM,CAAC;EAC5CC,MAAM,EAAE3B,CAAC,CAAC4B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC7BC,aAAa,EAAE9B,CAAC,CACb4B,MAAM,CAAC,CAAC,CAAC;AACd;AACA;AACA;AACA,8BAJc,CAKTC,QAAQ,CAAC,CAAC;EACbE,YAAY,EAAE/B,CAAC,CAAC4B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC;AACpC,CAAC,CAAC;;AAEF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAPAG,OAAA,CAAAP,qBAAA,GAAAA,qBAAA;AAQO,MAAMQ,wBAAwB,GACnCC,SAAiC,IACzB;EACR,MAAMC,MAAM,GAAGD,SAAS,CAACE,IAAI,CAAEC,GAAG,IAAKA,GAAG,CAACC,GAAG,KAAK,KAAK,CAAC;EAEzD,IAAIH,MAAM,EAAE;IACV,OAAOA,MAAM;EACf;;EAEA;EACA,MAAM,IAAII,gDAAwC,CAChD,8CACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAPAP,OAAA,CAAAC,wBAAA,GAAAA,wBAAA;AAQO,MAAMO,sBAAsB,GAAG,MAAAA,CACpCC,aAAwD,EACxDC,MAA8D,EAC9DC,OAAuC,KACnB;EAGpB;EACA,MAAMC,oBAAoB,GAAGC,IAAI,CAACC,SAAS,CAAC;IAC1CC,KAAK,EAAEN,aAAa,CAACM,KAAK;IAC1B,GAAGJ;EACL,CAAC,CAAC;EACF;EACA,MAAM;IAAEK;EAAK,CAAC,GAAG,IAAAC,iCAAiB,EAACP,MAAM,CAAC;EAC1C,MAAMQ,YAAY,GAAGjB,wBAAwB,CAACe,IAAI,CAAC;;EAEnD;EACA,MAAM;IACJG,oCAAoC;IACpCC;EACF,CAAC,GAAGV,MAAM,CAACW,0BAA0B;EAErC,MAAMC,UAAsB,GAC1BJ,YAAY,CAACK,GAAG,KAAK,IAAI,GAAG,SAAS,GAAG,cAAc;EAExD,MAAMC,iBAAiB,GAAG,MAAM,IAAIC,4BAAU,CAACb,oBAAoB,EAAE;IACnEc,GAAG,EAAGP,oCAAoC,IAAmBG,UAAU;IACvEK,GAAG,EACAP,oCAAoC,IAAmB,eAAe;IACzEQ,GAAG,EAAEV,YAAY,CAACU;EACpB,CAAC,CAAC,CAACC,OAAO,CAACX,YAAY,CAAC;;EAExB;EACA,MAAMY,QAAQ,GAAG,IAAIC,eAAe,CAAC;IACnCC,QAAQ,EAAER,iBAAiB;IAC3B,IAAIf,aAAa,CAACM,KAAK,GAAG;MAAEA,KAAK,EAAEN,aAAa,CAACM;IAAM,CAAC,GAAG,CAAC,CAAC;EAC/D,CAAC,CAAC;EACF,OAAOe,QAAQ,CAACG,QAAQ,CAAC,CAAC;AAC5B,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AANAjC,OAAA,CAAAQ,sBAAA,GAAAA,sBAAA;AAOO,MAAM0B,mBAAmB,GAAG,MAAAA,CACjCzB,aAAwD,EACxDE,OAAuC,KACnB;EACpB,MAAMwB,kBAAkB,GAAG,IAAIJ,eAAe,CAAC;IAC7C,IAAItB,aAAa,CAACM,KAAK,IAAI;MAAEA,KAAK,EAAEN,aAAa,CAACM;IAAM,CAAC,CAAC;IAC1D,GAAG/B,MAAM,CAACoD,OAAO,CAACzB,OAAO,CAAC,CAAC0B,MAAM,CAC/B,CAACC,GAAG,EAAAC,IAAA;MAAA,IAAE,CAACpD,GAAG,EAAEqD,KAAK,CAAC,GAAAD,IAAA;MAAA,OAAM;QACtB,GAAGD,GAAG;QACN,CAACnD,GAAG,GACFsD,KAAK,CAACC,OAAO,CAACF,KAAK,CAAC,IAAI,OAAOA,KAAK,KAAK,QAAQ,GAC7C3B,IAAI,CAACC,SAAS,CAAC0B,KAAK,CAAC,GACrBA;MACR,CAAC;IAAA,CAAC,EACF,CAAC,CACH;EACF,CAAC,CAAC;EAEF,OAAOL,kBAAkB,CAACF,QAAQ,CAAC,CAAC;AACtC,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AALAjC,OAAA,CAAAkC,mBAAA,GAAAA,mBAAA;AAgBA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMS,+BAAgE,GAC3E,eAAAA,CACElC,aAAa,EACbmC,wBAAwB,EACxBC,mBAAmB,EACnBnC,MAAM,EAE6B;EAAA,IAAAoC,qBAAA;EAAA,IADnC;IAAEC,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB;AACJ;AACA;AACA;AACA;EACI,MAAMG,QAAQ,GACZ,CAAAP,mBAAmB,aAAnBA,mBAAmB,uBAAnBA,mBAAmB,CAAEK,MAAM,MAAK,CAAC,IAAAJ,qBAAA,GAC7BD,mBAAmB,CAAC,CAAC,CAAC,cAAAC,qBAAA,uBAAtBA,qBAAA,CAAwBO,OAAO,GAC/BR,mBAAmB,CAACS,GAAG,CACpBC,kBAAkB,IAAKA,kBAAkB,CAACF,OAC7C,CAAC;EAEP,MAAMG,cAAc,GAAGX,mBAAmB,CAACS,GAAG,CAC5C,CAACC,kBAAkB,EAAEE,KAAK,MAAM;IAC9BC,EAAE,EAAEH,kBAAkB,CAACI,eAAe,CAACD,EAAE;IACzCE,IAAI,EAAEf,mBAAmB,CAACK,MAAM,KAAK,CAAC,GAAI,GAAE,GAAI,KAAIO,KAAM,GAAE;IAC5DI,MAAM,EAAEN,kBAAkB,CAACM;EAC7B,CAAC,CACH,CAAC;EAED,MAAMC,uBAAuB,GAAG;IAC9BJ,EAAE,EAAEK,wBAAI,CAACC,EAAE,CAAC,CAAC;IACbC,aAAa,EAAErB,wBAAwB;IACvCY;EACF,CAAC;EAED,MAAMU,WAAW,GAAG,MAAM1D,sBAAsB,CAACC,aAAa,EAAEC,MAAM,EAAE;IACtE0C,QAAQ;IACRU;EACF,CAAC,CAAC;;EAEF;EACA,OAAO,MAAMf,QAAQ,CAACtC,aAAa,CAAC0D,YAAY,EAAE;IAChDC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEJ;EACR,CAAC,CAAC,CACCK,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAAC9E,qBAAqB,CAACkF,KAAK,CAAC;AACtC,CAAC;;AAEH;AACA;AACA;AACA;AACA;AAJA3E,OAAA,CAAA2C,+BAAA,GAAAA,+BAAA;AAcO,MAAMiC,yBAAoD,GAAG,eAAAA,CAClEnE,aAAa,EACboC,mBAAmB,EACnBnC,MAAM,EAE6B;EAAA,IADnC;IAAEqC,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB;EACA,MAAMiB,WAAW,GAAG,MAAM1D,sBAAsB,CAACC,aAAa,EAAEC,MAAM,EAAE;IACtE0C,QAAQ,EAAEP,mBAAmB,CAACR,MAAM,CAClC,CAACC,GAAG,EAAEuC,YAAY,MAAM;MACtB,GAAGvC,GAAG;MACN,CAACuC,YAAY,CAACC,YAAY,GAAGD,YAAY,CAACxB;IAC5C,CAAC,CAAC,EACF,CAAC,CACH;EACF,CAAC,CAAC;;EAEF;EACA,OAAO,MAAMN,QAAQ,CAACtC,aAAa,CAAC0D,YAAY,EAAE;IAChDC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEJ;EACR,CAAC,CAAC,CACCK,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAAC9E,qBAAqB,CAACkF,KAAK,CAAC,CACjCI,KAAK,CAACC,gCAAgC,CAAC;AAC5C,CAAC;;AAED;AACA;AACA;AACA;AAHAhF,OAAA,CAAA4E,yBAAA,GAAAA,yBAAA;AAYA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMK,8BAA8D,GACzE,eAAAA,CACExE,aAAa,EAAAyE,KAAA,EAGsB;EAAA,IAFnC;IAAEC,KAAK;IAAEC;EAAiB,CAAC,GAAAF,KAAA;EAAA,IAC3B;IAAEnC,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB,MAAMiB,WAAW,GAAG,MAAMhC,mBAAmB,CAACzB,aAAa,EAAE;IAC3D0E,KAAK;IACLE,iBAAiB,EAAED;EACrB,CAAC,CAAC;EAEF,OAAO,MAAMrC,QAAQ,CAACtC,aAAa,CAAC0D,YAAY,EAAE;IAChDC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEJ;EACR,CAAC,CAAC,CACCK,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,EAAEc,kCAAyB,CAAC,CAAC,CACtDf,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAAC9E,qBAAqB,CAACkF,KAAK,CAAC;AACtC,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AALA3E,OAAA,CAAAiF,8BAAA,GAAAA,8BAAA;AAMA,MAAMD,gCAAgC,GAAIO,CAAU,IAAK;EACvD,IAAI,EAAEA,CAAC,YAAYC,kCAAyB,CAAC,EAAE;IAC7C,MAAMD,CAAC;EACT;EAEA,MAAM,IAAIE,6BAAoB,CAACH,kCAAyB,CAAC,CACtDI,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,uCAA8B,CAACC,4BAA4B;IACjEC,OAAO,EACL;EACJ,CAAC,CAAC,CACDJ,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,uCAA8B,CAACC,4BAA4B;IACjEC,OAAO,EAAE;EACX,CAAC,CAAC,CACDJ,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,uCAA8B,CAACG,wBAAwB;IAC7DD,OAAO,EAAE;EACX,CAAC,CAAC,CACDE,SAAS,CAACT,CAAC,CAAC;AACjB,CAAC"}