@rool-dev/client 0.1.0-dev.1a6a7a3

package/README.md

@@ -0,0 +1,186 @@
+# Rool Client
+
+Generic TypeScript client library for the Rool server API. Framework-agnostic, works with any graph-based application.
+
+## Features
+
+- **Stateful**: Maintains local graph cache with optimistic updates
+- **Real-time sync**: SSE subscriptions with auto-reconnect
+- **Automatic token refresh**: Handles GCIP authentication seamlessly
+- **Event-driven**: EventEmitter pattern for change notifications
+- **Type-safe**: Full TypeScript support with generic node types
+
+## Installation
+
+```bash
+npm install @rool-dev/client
+```
+
+## Quick Start
+
+```typescript
+import { RoolClient } from '@rool-dev/client';
+
+// Create client (API key auto-fetched from server)
+const client = new RoolClient({
+  baseUrl: 'https://use.rool.dev',
+});
+
+// Initialize (processes auth callback if present)
+client.initialize();
+
+// Check authentication
+if (!client.isAuthenticated()) {
+  client.login(); // Redirects to auth page
+}
+
+// Listen for events
+client.on('graphPatched', (graphId, patch, graph) => {
+  console.log(`Graph ${graphId} updated:`, graph);
+});
+
+client.on('authStateChanged', (authenticated) => {
+  console.log('Auth state:', authenticated);
+});
+
+// Subscribe to real-time events
+await client.subscribe();
+
+// Work with graphs
+const graphs = await client.listGraphs();
+const graph = await client.getGraph('my-graph-id');
+
+// Apply patches (optimistic updates)
+await client.patch('my-graph-id', [
+  { op: 'add', path: '/nodes/new-node', value: { type: 'text', content: 'Hello' } }
+]);
+```
+
+## API Reference
+
+### Configuration
+
+```typescript
+interface RoolClientConfig {
+  baseUrl: string;       // e.g., 'https://use.rool.dev'
+  storagePrefix?: string; // localStorage prefix (default: 'rool_')
+}
+```
+
+### Authentication
+
+```typescript
+client.initialize(): boolean    // Initialize client, returns true if auth callback processed
+client.login(): void            // Redirect to login page
+client.logout(): void           // Clear tokens and local state
+client.isAuthenticated(): boolean
+client.getToken(): Promise<string | undefined>
+client.getUser(): { email: string | null; name: string | null }
+```
+
+### Graph Operations
+
+```typescript
+client.listGraphs(): Promise<GraphInfo[]>
+client.getGraph(graphId, options?): Promise<Graph>
+client.getLocalGraph(graphId): Graph | undefined
+client.setGraph(graphId, graph): Promise<void>
+client.deleteGraph(graphId): Promise<void>
+client.renameGraph(graphId, name): Promise<void>
+client.patch(graphId, patch): Promise<void>
+```
+
+### AI Operations
+
+```typescript
+client.promptGraph(graphId, prompt, options?): Promise<string | null>
+```
+
+### Collaboration
+
+```typescript
+client.getCurrentUser(): Promise<CurrentUser>
+client.searchUser(email): Promise<UserResult | null>
+client.listGraphUsers(graphId): Promise<GraphUser[]>
+client.addGraphUser(graphId, userId, role): Promise<void>
+client.removeGraphUser(graphId, userId): Promise<void>
+```
+
+### Media
+
+```typescript
+client.listMedia(graphId): Promise<MediaItem[]>
+client.uploadMedia(graphId, file): Promise<MediaItem>
+client.downloadMedia(graphId, uuid): Promise<Blob>
+client.deleteMedia(graphId, uuid): Promise<void>
+client.getMediaUrl(graphId, uuid): string
+```
+
+### Subscriptions
+
+```typescript
+client.subscribe(): Promise<void>
+client.unsubscribe(): void
+client.isSubscribed(): boolean
+```
+
+### Events
+
+```typescript
+client.on('authStateChanged', (authenticated: boolean) => void)
+client.on('graphPatched', (graphId, patch, graph) => void)
+client.on('graphChanged', (graphId, graph) => void)
+client.on('graphCreated', (graphId) => void)
+client.on('graphDeleted', (graphId) => void)
+client.on('graphNameChanged', (graphId) => void)
+client.on('connectionStateChanged', (state: 'connected' | 'disconnected' | 'reconnecting') => void)
+client.on('error', (error, context?) => void)
+```
+
+### Utilities
+
+```typescript
+client.getConnectionId(): string   // For echo suppression
+client.generateId(): string        // UUID generator
+client.clearCache(): void          // Clear local graph cache
+client.destroy(): void             // Clean up resources
+```
+
+## Graph Structure
+
+Graphs are flexible data structures with typed nodes:
+
+```typescript
+interface Graph {
+  nodes: Record<string, Node>;
+  edges: Record<string, Edge>;
+  _meta?: Record<string, unknown>;  // Client metadata, hidden from AI
+}
+
+interface Node {
+  type: string;           // Required: node type identifier
+  [key: string]: unknown; // Arbitrary additional fields
+}
+
+interface Edge {
+  sources: string[];      // Source node IDs
+  targets: string[];      // Target node IDs  
+  type: string;           // Edge type identifier
+  [key: string]: unknown; // Arbitrary additional fields
+}
+```
+
+## Testing
+
+A test page is provided at `test/index.html`. To use it:
+
+1. Build the library: `npm run build`
+2. Serve the test directory (e.g., `npx serve .`)
+3. Open `test/index.html` in a browser
+4. Enter your base URL and API key
+5. Test authentication and graph operations
+
+## License
+
+Proprietary - © Lightpost One. All rights reserved.
+

package/dist/auth.d.ts

@@ -0,0 +1,75 @@
+import type { UserInfo, AuthProvider } from './types.js';
+export interface AuthManagerConfig {
+    baseUrl: string;
+    storagePrefix: string;
+    onAuthStateChanged?: (authenticated: boolean) => void;
+    /** External auth provider - when set, delegates all auth to this provider */
+    authProvider?: AuthProvider;
+}
+export declare class AuthManager {
+    private config;
+    private apiKey;
+    private apiKeyFetchPromise;
+    private refreshPromise;
+    private refreshTimeoutId;
+    private get storageKeys();
+    /** Check if using external auth provider */
+    private get hasExternalProvider();
+    /** Get the auth base URL (origin only, no path like /rool-server) */
+    private get authBaseUrl();
+    constructor(config: AuthManagerConfig);
+    /**
+     * Initialize auth manager - should be called on app startup.
+     * Processes any auth callback in the URL and sets up auto-refresh.
+     * No-op when using external auth provider.
+     */
+    initialize(): boolean;
+    /**
+     * Check if user is currently authenticated (has valid token).
+     */
+    isAuthenticated(): boolean;
+    /**
+     * Get current access token, refreshing if expired.
+     * Returns undefined if not authenticated.
+     */
+    getToken(): Promise<string | undefined>;
+    /**
+     * Get user info decoded from JWT token.
+     */
+    getUser(): UserInfo;
+    /**
+     * Initiate login by redirecting to auth page.
+     */
+    login(): void;
+    /**
+     * Logout - clear all tokens and state.
+     */
+    logout(): void;
+    /**
+     * Process auth callback from URL fragment.
+     * Should be called on page load.
+     * @returns true if callback was processed
+     */
+    processCallback(): boolean;
+    /**
+     * Destroy auth manager - clear refresh timers.
+     */
+    destroy(): void;
+    /**
+     * Get the API key, fetching from server if not provided in config.
+     */
+    private getApiKey;
+    private tryRefreshToken;
+    private scheduleTokenRefresh;
+    private cancelScheduledRefresh;
+    private readAccessToken;
+    private readExpiresAt;
+    private writeTokens;
+    private clearTokens;
+    private storeState;
+    private readState;
+    private clearState;
+    private generateState;
+    private decodeUserInfo;
+}
+//# sourceMappingURL=auth.d.ts.map

package/dist/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAKzD,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,MAAM,CAAC;IACtB,kBAAkB,CAAC,EAAE,CAAC,aAAa,EAAE,OAAO,KAAK,IAAI,CAAC;IACtD,6EAA6E;IAC7E,YAAY,CAAC,EAAE,YAAY,CAAC;CAC7B;AAED,qBAAa,WAAW;IACtB,OAAO,CAAC,MAAM,CAAoB;IAClC,OAAO,CAAC,MAAM,CAAuB;IACrC,OAAO,CAAC,kBAAkB,CAAuC;IACjE,OAAO,CAAC,cAAc,CAAiC;IACvD,OAAO,CAAC,gBAAgB,CAA8C;IAEtE,OAAO,KAAK,WAAW,GAOtB;IAED,4CAA4C;IAC5C,OAAO,KAAK,mBAAmB,GAE9B;IAED,qEAAqE;IACrE,OAAO,KAAK,WAAW,GAQtB;gBAEW,MAAM,EAAE,iBAAiB;IAIrC;;;;OAIG;IACH,UAAU,IAAI,OAAO;IAOrB;;OAEG;IACH,eAAe,IAAI,OAAO;IAc1B;;;OAGG;IACG,QAAQ,IAAI,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC;IAoB7C;;OAEG;IACH,OAAO,IAAI,QAAQ;IASnB;;OAEG;IACH,KAAK,IAAI,IAAI;IAqBb;;OAEG;IACH,MAAM,IAAI,IAAI;IAiBd;;;;OAIG;IACH,eAAe,IAAI,OAAO;IAyC1B;;OAEG;IACH,OAAO,IAAI,IAAI;IAQf;;OAEG;YACW,SAAS;YAgCT,eAAe;IAyD7B,OAAO,CAAC,oBAAoB;IAmB5B,OAAO,CAAC,sBAAsB;IAO9B,OAAO,CAAC,eAAe;IAIvB,OAAO,CAAC,aAAa;IAOrB,OAAO,CAAC,WAAW;IAwBnB,OAAO,CAAC,WAAW;IAInB,OAAO,CAAC,UAAU;IAQlB,OAAO,CAAC,SAAS;IAQjB,OAAO,CAAC,UAAU;IAQlB,OAAO,CAAC,aAAa;IAUrB,OAAO,CAAC,cAAc;CAYvB"}

package/dist/auth.js

@@ -0,0 +1,375 @@
+// =============================================================================
+// Auth Manager
+// Handles authentication via GCIP redirect flow, token storage, and refresh
+// Supports external auth providers (e.g., Electron) via AuthProvider interface
+// =============================================================================
+const GCIP_REFRESH_ENDPOINT = 'https://securetoken.googleapis.com/v1/token';
+const REFRESH_BUFFER_MS = 5 * 60 * 1000; // Refresh 5 minutes before expiry
+export class AuthManager {
+    config;
+    apiKey = null;
+    apiKeyFetchPromise = null;
+    refreshPromise = null;
+    refreshTimeoutId = null;
+    get storageKeys() {
+        return {
+            access: `${this.config.storagePrefix}access_token`,
+            refresh: `${this.config.storagePrefix}refresh_token`,
+            expiresAt: `${this.config.storagePrefix}token_expires_at`,
+            state: `${this.config.storagePrefix}auth_state`,
+        };
+    }
+    /** Check if using external auth provider */
+    get hasExternalProvider() {
+        return !!this.config.authProvider;
+    }
+    /** Get the auth base URL (origin only, no path like /rool-server) */
+    get authBaseUrl() {
+        try {
+            const url = new URL(this.config.baseUrl);
+            return url.origin;
+        }
+        catch {
+            // Fallback for relative URLs
+            return this.config.baseUrl.replace(/\/rool-server\/?$/, '');
+        }
+    }
+    constructor(config) {
+        this.config = config;
+    }
+    /**
+     * Initialize auth manager - should be called on app startup.
+     * Processes any auth callback in the URL and sets up auto-refresh.
+     * No-op when using external auth provider.
+     */
+    initialize() {
+        if (this.hasExternalProvider)
+            return false;
+        const wasCallback = this.processCallback();
+        this.scheduleTokenRefresh();
+        return wasCallback;
+    }
+    /**
+     * Check if user is currently authenticated (has valid token).
+     */
+    isAuthenticated() {
+        if (this.config.authProvider?.isAuthenticated) {
+            return this.config.authProvider.isAuthenticated();
+        }
+        if (this.hasExternalProvider) {
+            // For external providers without isAuthenticated, assume true if getToken would work
+            return true;
+        }
+        const accessToken = this.readAccessToken();
+        const expiresAt = this.readExpiresAt();
+        if (!accessToken || !expiresAt)
+            return false;
+        return Date.now() < expiresAt;
+    }
+    /**
+     * Get current access token, refreshing if expired.
+     * Returns undefined if not authenticated.
+     */
+    async getToken() {
+        if (this.config.authProvider) {
+            return this.config.authProvider.getToken();
+        }
+        const accessToken = this.readAccessToken();
+        const expiresAt = this.readExpiresAt();
+        if (!accessToken)
+            return undefined;
+        // Token expired or about to expire - try refresh
+        if (expiresAt && Date.now() >= expiresAt - REFRESH_BUFFER_MS) {
+            const refreshed = await this.tryRefreshToken();
+            if (!refreshed)
+                return undefined;
+            return this.readAccessToken() ?? undefined;
+        }
+        return accessToken;
+    }
+    /**
+     * Get user info decoded from JWT token.
+     */
+    getUser() {
+        if (this.config.authProvider) {
+            return this.config.authProvider.getUser();
+        }
+        const accessToken = this.readAccessToken();
+        if (!accessToken)
+            return { email: null, name: null };
+        return this.decodeUserInfo(accessToken);
+    }
+    /**
+     * Initiate login by redirecting to auth page.
+     */
+    login() {
+        if (this.config.authProvider?.login) {
+            this.config.authProvider.login();
+            return;
+        }
+        if (this.hasExternalProvider) {
+            console.warn('[RoolClient] External auth provider does not support login()');
+            return;
+        }
+        const loginUrl = new URL(`${this.authBaseUrl}/auth/`);
+        const redirectTarget = window.location.origin + window.location.pathname + window.location.search;
+        loginUrl.searchParams.set('redirect_uri', redirectTarget);
+        const state = this.generateState();
+        this.storeState(state);
+        loginUrl.searchParams.set('state', state);
+        window.location.href = loginUrl.toString();
+    }
+    /**
+     * Logout - clear all tokens and state.
+     */
+    logout() {
+        if (this.config.authProvider?.logout) {
+            this.config.authProvider.logout();
+            this.config.onAuthStateChanged?.(false);
+            return;
+        }
+        if (this.hasExternalProvider) {
+            console.warn('[RoolClient] External auth provider does not support logout()');
+            return;
+        }
+        this.clearTokens();
+        this.clearState();
+        this.cancelScheduledRefresh();
+        this.config.onAuthStateChanged?.(false);
+    }
+    /**
+     * Process auth callback from URL fragment.
+     * Should be called on page load.
+     * @returns true if callback was processed
+     */
+    processCallback() {
+        const hash = window.location.hash ?? '';
+        const trimmed = hash.startsWith('#') ? hash.slice(1) : hash;
+        if (!trimmed)
+            return false;
+        const params = new URLSearchParams(trimmed);
+        const idToken = params.get('id_token');
+        if (!idToken)
+            return false;
+        const refreshToken = params.get('refresh_token');
+        const expiresIn = params.get('expires_in');
+        const expiresAt = expiresIn ? Date.now() + Number(expiresIn) * 1000 : NaN;
+        const incomingState = params.get('state');
+        const storedState = this.readState();
+        // Validate state
+        if (incomingState && storedState && incomingState !== storedState) {
+            console.error('[RoolClient] Auth state mismatch. Token fragment ignored.');
+            return false;
+        }
+        if (!Number.isFinite(expiresAt)) {
+            console.error('[RoolClient] Auth response missing expires_in. Token ignored.');
+            return false;
+        }
+        // Clear state and store tokens
+        this.clearState();
+        this.writeTokens(idToken, refreshToken, expiresAt);
+        // Clean URL
+        const cleanUrl = window.location.origin + window.location.pathname + window.location.search;
+        window.history.replaceState({}, document.title, cleanUrl);
+        // Schedule refresh and notify
+        this.scheduleTokenRefresh();
+        this.config.onAuthStateChanged?.(true);
+        return true;
+    }
+    /**
+     * Destroy auth manager - clear refresh timers.
+     */
+    destroy() {
+        this.cancelScheduledRefresh();
+    }
+    // ===========================================================================
+    // Private methods
+    // ===========================================================================
+    /**
+     * Get the API key, fetching from server if not provided in config.
+     */
+    async getApiKey() {
+        // Already have it
+        if (this.apiKey)
+            return this.apiKey;
+        // Already fetching
+        if (this.apiKeyFetchPromise)
+            return this.apiKeyFetchPromise;
+        // Fetch from server
+        this.apiKeyFetchPromise = fetch(`${this.authBaseUrl}/auth/config.json`)
+            .then(async (response) => {
+            if (!response.ok) {
+                console.warn('[RoolClient] Failed to fetch API key from server');
+                return null;
+            }
+            const data = await response.json();
+            if (data.apiKey && typeof data.apiKey === 'string') {
+                this.apiKey = data.apiKey;
+                return this.apiKey;
+            }
+            return null;
+        })
+            .catch((error) => {
+            console.warn('[RoolClient] Failed to fetch API key:', error);
+            return null;
+        })
+            .finally(() => {
+            this.apiKeyFetchPromise = null;
+        });
+        return this.apiKeyFetchPromise;
+    }
+    async tryRefreshToken() {
+        // Deduplicate concurrent refresh attempts
+        if (this.refreshPromise) {
+            return this.refreshPromise;
+        }
+        const refreshToken = localStorage.getItem(this.storageKeys.refresh);
+        if (!refreshToken)
+            return false;
+        // Get API key (from config or server)
+        const apiKey = await this.getApiKey();
+        if (!apiKey) {
+            console.warn('[RoolClient] Cannot refresh token: no API key available');
+            return false;
+        }
+        const refreshUrl = new URL(GCIP_REFRESH_ENDPOINT);
+        refreshUrl.searchParams.set('key', apiKey);
+        this.refreshPromise = fetch(refreshUrl.toString(), {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
+            body: new URLSearchParams({
+                grant_type: 'refresh_token',
+                refresh_token: refreshToken,
+            }),
+        })
+            .then(async (response) => {
+            if (!response.ok) {
+                throw new Error(`Refresh failed: ${response.status} ${response.statusText}`);
+            }
+            const data = await response.json();
+            const accessToken = data.id_token ?? data.access_token ?? null;
+            const nextRefreshToken = data.refresh_token ?? refreshToken;
+            const expiresAt = data.expires_in ? Date.now() + data.expires_in * 1000 : NaN;
+            if (!accessToken || !Number.isFinite(expiresAt)) {
+                throw new Error('Refresh response missing access token or expires_in');
+            }
+            this.writeTokens(accessToken, nextRefreshToken, expiresAt);
+            this.scheduleTokenRefresh();
+            return true;
+        })
+            .catch((error) => {
+            console.error('[RoolClient] Token refresh failed:', error);
+            this.clearTokens();
+            this.config.onAuthStateChanged?.(false);
+            return false;
+        })
+            .finally(() => {
+            this.refreshPromise = null;
+        });
+        return this.refreshPromise;
+    }
+    scheduleTokenRefresh() {
+        this.cancelScheduledRefresh();
+        const expiresAt = this.readExpiresAt();
+        if (!expiresAt)
+            return;
+        const refreshAt = expiresAt - REFRESH_BUFFER_MS;
+        const delay = refreshAt - Date.now();
+        if (delay <= 0) {
+            // Already needs refresh
+            void this.tryRefreshToken();
+        }
+        else {
+            this.refreshTimeoutId = setTimeout(() => {
+                void this.tryRefreshToken();
+            }, delay);
+        }
+    }
+    cancelScheduledRefresh() {
+        if (this.refreshTimeoutId !== null) {
+            clearTimeout(this.refreshTimeoutId);
+            this.refreshTimeoutId = null;
+        }
+    }
+    readAccessToken() {
+        return localStorage.getItem(this.storageKeys.access);
+    }
+    readExpiresAt() {
+        const raw = localStorage.getItem(this.storageKeys.expiresAt);
+        if (!raw)
+            return null;
+        const parsed = Number.parseInt(raw, 10);
+        return Number.isFinite(parsed) ? parsed : null;
+    }
+    writeTokens(accessToken, refreshToken, expiresAt) {
+        if (accessToken) {
+            localStorage.setItem(this.storageKeys.access, accessToken);
+        }
+        else {
+            localStorage.removeItem(this.storageKeys.access);
+        }
+        if (refreshToken) {
+            localStorage.setItem(this.storageKeys.refresh, refreshToken);
+        }
+        else {
+            localStorage.removeItem(this.storageKeys.refresh);
+        }
+        if (expiresAt !== null && Number.isFinite(expiresAt)) {
+            localStorage.setItem(this.storageKeys.expiresAt, Math.floor(expiresAt).toString());
+        }
+        else {
+            localStorage.removeItem(this.storageKeys.expiresAt);
+        }
+    }
+    clearTokens() {
+        this.writeTokens(null, null, null);
+    }
+    storeState(value) {
+        try {
+            sessionStorage.setItem(this.storageKeys.state, value);
+        }
+        catch {
+            // Ignore storage restrictions
+        }
+    }
+    readState() {
+        try {
+            return sessionStorage.getItem(this.storageKeys.state);
+        }
+        catch {
+            return null;
+        }
+    }
+    clearState() {
+        try {
+            sessionStorage.removeItem(this.storageKeys.state);
+        }
+        catch {
+            // Ignore storage restrictions
+        }
+    }
+    generateState() {
+        try {
+            const buffer = new Uint8Array(16);
+            window.crypto.getRandomValues(buffer);
+            return Array.from(buffer, (value) => value.toString(16).padStart(2, '0')).join('');
+        }
+        catch {
+            return Math.random().toString(36).slice(2) + Math.random().toString(36).slice(2);
+        }
+    }
+    decodeUserInfo(accessToken) {
+        try {
+            const payload = JSON.parse(atob(accessToken.split('.')[1]));
+            return {
+                email: payload.email || null,
+                name: payload.name || null,
+            };
+        }
+        catch (error) {
+            console.error('[RoolClient] Failed to decode token:', error);
+            return { email: null, name: null };
+        }
+    }
+}
+//# sourceMappingURL=auth.js.map

package/dist/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA,gFAAgF;AAChF,eAAe;AACf,4EAA4E;AAC5E,+EAA+E;AAC/E,gFAAgF;AAIhF,MAAM,qBAAqB,GAAG,6CAA6C,CAAC;AAC5E,MAAM,iBAAiB,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,kCAAkC;AAU3E,MAAM,OAAO,WAAW;IACd,MAAM,CAAoB;IAC1B,MAAM,GAAkB,IAAI,CAAC;IAC7B,kBAAkB,GAAkC,IAAI,CAAC;IACzD,cAAc,GAA4B,IAAI,CAAC;IAC/C,gBAAgB,GAAyC,IAAI,CAAC;IAEtE,IAAY,WAAW;QACrB,OAAO;YACL,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,aAAa,cAAc;YAClD,OAAO,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,aAAa,eAAe;YACpD,SAAS,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,aAAa,kBAAkB;YACzD,KAAK,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,aAAa,YAAY;SACvC,CAAC;IACb,CAAC;IAED,4CAA4C;IAC5C,IAAY,mBAAmB;QAC7B,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC;IACpC,CAAC;IAED,qEAAqE;IACrE,IAAY,WAAW;QACrB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;YACzC,OAAO,GAAG,CAAC,MAAM,CAAC;QACpB,CAAC;QAAC,MAAM,CAAC;YACP,6BAA6B;YAC7B,OAAO,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,mBAAmB,EAAE,EAAE,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC;IAED,YAAY,MAAyB;QACnC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED;;;;OAIG;IACH,UAAU;QACR,IAAI,IAAI,CAAC,mBAAmB;YAAE,OAAO,KAAK,CAAC;QAC3C,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QAC3C,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC5B,OAAO,WAAW,CAAC;IACrB,CAAC;IAED;;OAEG;IACH,eAAe;QACb,IAAI,IAAI,CAAC,MAAM,CAAC,YAAY,EAAE,eAAe,EAAE,CAAC;YAC9C,OAAO,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,eAAe,EAAE,CAAC;QACpD,CAAC;QACD,IAAI,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC7B,qFAAqF;YACrF,OAAO,IAAI,CAAC;QACd,CAAC;QACD,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QAC3C,MAAM,SAAS,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QACvC,IAAI,CAAC,WAAW,IAAI,CAAC,SAAS;YAAE,OAAO,KAAK,CAAC;QAC7C,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IAChC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,QAAQ;QACZ,IAAI,IAAI,CAAC,MAAM,CAAC,YAAY,EAAE,CAAC;YAC7B,OAAO,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,QAAQ,EAAE,CAAC;QAC7C,CAAC;QAED,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QAC3C,MAAM,SAAS,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QAEvC,IAAI,CAAC,WAAW;YAAE,OAAO,SAAS,CAAC;QAEnC,iDAAiD;QACjD,IAAI,SAAS,IAAI,IAAI,CAAC,GAAG,EAAE,IAAI,SAAS,GAAG,iBAAiB,EAAE,CAAC;YAC7D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;YAC/C,IAAI,CAAC,SAAS;gBAAE,OAAO,SAAS,CAAC;YACjC,OAAO,IAAI,CAAC,eAAe,EAAE,IAAI,SAAS,CAAC;QAC7C,CAAC;QAED,OAAO,WAAW,CAAC;IACrB,CAAC;IAED;;OAEG;IACH,OAAO;QACL,IAAI,IAAI,CAAC,MAAM,CAAC,YAAY,EAAE,CAAC;YAC7B,OAAO,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;QAC5C,CAAC;QACD,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QAC3C,IAAI,CAAC,WAAW;YAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC;QACrD,OAAO,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,KAAK;QACH,IAAI,IAAI,CAAC,MAAM,CAAC,YAAY,EAAE,KAAK,EAAE,CAAC;YACpC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;YACjC,OAAO;QACT,CAAC;QACD,IAAI,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC7B,OAAO,CAAC,IAAI,CAAC,8DAA8D,CAAC,CAAC;YAC7E,OAAO;QACT,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,CAAC,WAAW,QAAQ,CAAC,CAAC;QACtD,MAAM,cAAc,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC;QAClG,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,cAAc,CAAC,CAAC;QAE1D,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QACnC,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QACvB,QAAQ,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QAE1C,MAAM,CAAC,QAAQ,CAAC,IAAI,GAAG,QAAQ,CAAC,QAAQ,EAAE,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,MAAM;QACJ,IAAI,IAAI,CAAC,MAAM,CAAC,YAAY,EAAE,MAAM,EAAE,CAAC;YACrC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,MAAM,EAAE,CAAC;YAClC,IAAI,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC,KAAK,CAAC,CAAC;YACxC,OAAO;QACT,CAAC;QACD,IAAI,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC7B,OAAO,CAAC,IAAI,CAAC,+DAA+D,CAAC,CAAC;YAC9E,OAAO;QACT,CAAC;QAED,IAAI,CAAC,WAAW,EAAE,CAAC;QACnB,IAAI,CAAC,UAAU,EAAE,CAAC;QAClB,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAC9B,IAAI,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC,KAAK,CAAC,CAAC;IAC1C,CAAC;IAED;;;;OAIG;IACH,eAAe;QACb,MAAM,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,IAAI,EAAE,CAAC;QACxC,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAC5D,IAAI,CAAC,OAAO;YAAE,OAAO,KAAK,CAAC;QAE3B,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC,OAAO,CAAC,CAAC;QAC5C,MAAM,OAAO,GAAG,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QACvC,IAAI,CAAC,OAAO;YAAE,OAAO,KAAK,CAAC;QAE3B,MAAM,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;QACjD,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAC3C,MAAM,SAAS,GAAG,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC;QAC1E,MAAM,aAAa,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAC1C,MAAM,WAAW,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAErC,iBAAiB;QACjB,IAAI,aAAa,IAAI,WAAW,IAAI,aAAa,KAAK,WAAW,EAAE,CAAC;YAClE,OAAO,CAAC,KAAK,CAAC,2DAA2D,CAAC,CAAC;YAC3E,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YAChC,OAAO,CAAC,KAAK,CAAC,+DAA+D,CAAC,CAAC;YAC/E,OAAO,KAAK,CAAC;QACf,CAAC;QAED,+BAA+B;QAC/B,IAAI,CAAC,UAAU,EAAE,CAAC;QAClB,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,YAAY,EAAE,SAAS,CAAC,CAAC;QAEnD,YAAY;QACZ,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC;QAC5F,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,EAAE,QAAQ,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;QAE1D,8BAA8B;QAC9B,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC5B,IAAI,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC,IAAI,CAAC,CAAC;QAEvC,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,OAAO;QACL,IAAI,CAAC,sBAAsB,EAAE,CAAC;IAChC,CAAC;IAED,8EAA8E;IAC9E,kBAAkB;IAClB,8EAA8E;IAE9E;;OAEG;IACK,KAAK,CAAC,SAAS;QACrB,kBAAkB;QAClB,IAAI,IAAI,CAAC,MAAM;YAAE,OAAO,IAAI,CAAC,MAAM,CAAC;QAEpC,mBAAmB;QACnB,IAAI,IAAI,CAAC,kBAAkB;YAAE,OAAO,IAAI,CAAC,kBAAkB,CAAC;QAE5D,oBAAoB;QACpB,IAAI,CAAC,kBAAkB,GAAG,KAAK,CAAC,GAAG,IAAI,CAAC,WAAW,mBAAmB,CAAC;aACpE,IAAI,CAAC,KAAK,EAAE,QAAQ,EAAE,EAAE;YACvB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,OAAO,CAAC,IAAI,CAAC,kDAAkD,CAAC,CAAC;gBACjE,OAAO,IAAI,CAAC;YACd,CAAC;YACD,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,IAAI,IAAI,CAAC,MAAM,IAAI,OAAO,IAAI,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;gBACnD,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;gBAC1B,OAAO,IAAI,CAAC,MAAM,CAAC;YACrB,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC,CAAC;aACD,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;YACf,OAAO,CAAC,IAAI,CAAC,uCAAuC,EAAE,KAAK,CAAC,CAAC;YAC7D,OAAO,IAAI,CAAC;QACd,CAAC,CAAC;aACD,OAAO,CAAC,GAAG,EAAE;YACZ,IAAI,CAAC,kBAAkB,GAAG,IAAI,CAAC;QACjC,CAAC,CAAC,CAAC;QAEL,OAAO,IAAI,CAAC,kBAAkB,CAAC;IACjC,CAAC;IAEO,KAAK,CAAC,eAAe;QAC3B,0CAA0C;QAC1C,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YACxB,OAAO,IAAI,CAAC,cAAc,CAAC;QAC7B,CAAC;QAED,MAAM,YAAY,GAAG,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QACpE,IAAI,CAAC,YAAY;YAAE,OAAO,KAAK,CAAC;QAEhC,sCAAsC;QACtC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACtC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,CAAC,IAAI,CAAC,yDAAyD,CAAC,CAAC;YACxE,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,qBAAqB,CAAC,CAAC;QAClD,UAAU,CAAC,YAAY,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAE3C,IAAI,CAAC,cAAc,GAAG,KAAK,CAAC,UAAU,CAAC,QAAQ,EAAE,EAAE;YACjD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;YAChE,IAAI,EAAE,IAAI,eAAe,CAAC;gBACxB,UAAU,EAAE,eAAe;gBAC3B,aAAa,EAAE,YAAY;aAC5B,CAAC;SACH,CAAC;aACC,IAAI,CAAC,KAAK,EAAE,QAAQ,EAAE,EAAE;YACvB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,IAAI,KAAK,CAAC,mBAAmB,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;YAC/E,CAAC;YACD,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,MAAM,WAAW,GAAkB,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC;YAC9E,MAAM,gBAAgB,GAAkB,IAAI,CAAC,aAAa,IAAI,YAAY,CAAC;YAC3E,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC;YAE9E,IAAI,CAAC,WAAW,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;gBAChD,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;YACzE,CAAC;YAED,IAAI,CAAC,WAAW,CAAC,WAAW,EAAE,gBAAgB,EAAE,SAAS,CAAC,CAAC;YAC3D,IAAI,CAAC,oBAAoB,EAAE,CAAC;YAC5B,OAAO,IAAI,CAAC;QACd,CAAC,CAAC;aACD,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;YACf,OAAO,CAAC,KAAK,CAAC,oCAAoC,EAAE,KAAK,CAAC,CAAC;YAC3D,IAAI,CAAC,WAAW,EAAE,CAAC;YACnB,IAAI,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC,KAAK,CAAC,CAAC;YACxC,OAAO,KAAK,CAAC;QACf,CAAC,CAAC;aACD,OAAO,CAAC,GAAG,EAAE;YACZ,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEL,OAAO,IAAI,CAAC,cAAc,CAAC;IAC7B,CAAC;IAEO,oBAAoB;QAC1B,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAE9B,MAAM,SAAS,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QACvC,IAAI,CAAC,SAAS;YAAE,OAAO;QAEvB,MAAM,SAAS,GAAG,SAAS,GAAG,iBAAiB,CAAC;QAChD,MAAM,KAAK,GAAG,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAErC,IAAI,KAAK,IAAI,CAAC,EAAE,CAAC;YACf,wBAAwB;YACxB,KAAK,IAAI,CAAC,eAAe,EAAE,CAAC;QAC9B,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,gBAAgB,GAAG,UAAU,CAAC,GAAG,EAAE;gBACtC,KAAK,IAAI,CAAC,eAAe,EAAE,CAAC;YAC9B,CAAC,EAAE,KAAK,CAAC,CAAC;QACZ,CAAC;IACH,CAAC;IAEO,sBAAsB;QAC5B,IAAI,IAAI,CAAC,gBAAgB,KAAK,IAAI,EAAE,CAAC;YACnC,YAAY,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;YACpC,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC;QAC/B,CAAC;IACH,CAAC;IAEO,eAAe;QACrB,OAAO,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;IACvD,CAAC;IAEO,aAAa;QACnB,MAAM,GAAG,GAAG,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;QAC7D,IAAI,CAAC,GAAG;YAAE,OAAO,IAAI,CAAC;QACtB,MAAM,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QACxC,OAAO,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC;IACjD,CAAC;IAEO,WAAW,CACjB,WAA0B,EAC1B,YAA2B,EAC3B,SAAwB;QAExB,IAAI,WAAW,EAAE,CAAC;YAChB,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;QAC7D,CAAC;aAAM,CAAC;YACN,YAAY,CAAC,UAAU,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QACnD,CAAC;QAED,IAAI,YAAY,EAAE,CAAC;YACjB,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;QAC/D,CAAC;aAAM,CAAC;YACN,YAAY,CAAC,UAAU,CAAC,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QACpD,CAAC;QAED,IAAI,SAAS,KAAK,IAAI,IAAI,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YACrD,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;QACrF,CAAC;aAAM,CAAC;YACN,YAAY,CAAC,UAAU,CAAC,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAEO,WAAW;QACjB,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;IACrC,CAAC;IAEO,UAAU,CAAC,KAAa;QAC9B,IAAI,CAAC;YACH,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QACxD,CAAC;QAAC,MAAM,CAAC;YACP,8BAA8B;QAChC,CAAC;IACH,CAAC;IAEO,SAAS;QACf,IAAI,CAAC;YACH,OAAO,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QACxD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAEO,UAAU;QAChB,IAAI,CAAC;YACH,cAAc,CAAC,UAAU,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QACpD,CAAC;QAAC,MAAM,CAAC;YACP,8BAA8B;QAChC,CAAC;IACH,CAAC;IAEO,aAAa;QACnB,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;YAClC,MAAM,CAAC,MAAM,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;YACtC,OAAO,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACrF,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QACnF,CAAC;IACH,CAAC;IAEO,cAAc,CAAC,WAAmB;QACxC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAC5D,OAAO;gBACL,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,IAAI;gBAC5B,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,IAAI;aAC3B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,KAAK,CAAC,sCAAsC,EAAE,KAAK,CAAC,CAAC;YAC7D,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC;QACrC,CAAC;IACH,CAAC;CACF"}