@samanhappy/mcphub 0.10.3 → 0.10.4

package/dist/services/oauthServerService.js

@@ -0,0 +1,339 @@
+import OAuth2Server from '@node-oauth/oauth2-server';
+import { loadSettings } from '../config/index.js';
+import { findUserByUsername, verifyPassword } from '../models/User.js';
+import { findOAuthClientById, saveAuthorizationCode, getAuthorizationCode, revokeAuthorizationCode, saveToken, getToken, revokeToken, } from '../models/OAuth.js';
+import crypto from 'crypto';
+const { Request, Response } = OAuth2Server;
+// OAuth2Server model implementation
+const oauthModel = {
+    /**
+     * Get client by client ID
+     */
+    getClient: async (clientId, clientSecret) => {
+        const client = findOAuthClientById(clientId);
+        if (!client) {
+            return false;
+        }
+        // If client secret is provided, verify it
+        if (clientSecret && client.clientSecret) {
+            if (client.clientSecret !== clientSecret) {
+                return false;
+            }
+        }
+        return {
+            id: client.clientId,
+            clientId: client.clientId,
+            clientSecret: client.clientSecret,
+            redirectUris: client.redirectUris,
+            grants: client.grants,
+        };
+    },
+    /**
+     * Save authorization code
+     */
+    saveAuthorizationCode: async (code, client, user) => {
+        const settings = loadSettings();
+        const oauthConfig = settings.systemConfig?.oauthServer;
+        const lifetime = oauthConfig?.authorizationCodeLifetime || 300;
+        const scopeString = Array.isArray(code.scope) ? code.scope.join(' ') : code.scope;
+        const authCode = saveAuthorizationCode({
+            redirectUri: code.redirectUri,
+            scope: scopeString,
+            clientId: client.id,
+            username: user.username,
+            codeChallenge: code.codeChallenge,
+            codeChallengeMethod: code.codeChallengeMethod,
+        }, lifetime);
+        return {
+            authorizationCode: authCode,
+            expiresAt: new Date(Date.now() + lifetime * 1000),
+            redirectUri: code.redirectUri,
+            scope: code.scope,
+            client,
+            user: {
+                username: user.username,
+            },
+            codeChallenge: code.codeChallenge,
+            codeChallengeMethod: code.codeChallengeMethod,
+        };
+    },
+    /**
+     * Get authorization code
+     */
+    getAuthorizationCode: async (authorizationCode) => {
+        const code = getAuthorizationCode(authorizationCode);
+        if (!code) {
+            return false;
+        }
+        const client = findOAuthClientById(code.clientId);
+        if (!client) {
+            return false;
+        }
+        const scopeArray = code.scope ? code.scope.split(' ') : undefined;
+        return {
+            authorizationCode: code.code,
+            expiresAt: code.expiresAt,
+            redirectUri: code.redirectUri,
+            scope: scopeArray,
+            client: {
+                id: client.clientId,
+                clientId: client.clientId,
+                clientSecret: client.clientSecret,
+                redirectUris: client.redirectUris,
+                grants: client.grants,
+            },
+            user: {
+                username: code.username,
+            },
+            codeChallenge: code.codeChallenge,
+            codeChallengeMethod: code.codeChallengeMethod,
+        };
+    },
+    /**
+     * Revoke authorization code
+     */
+    revokeAuthorizationCode: async (code) => {
+        revokeAuthorizationCode(code.authorizationCode);
+        return true;
+    },
+    /**
+     * Save access token and refresh token
+     */
+    saveToken: async (token, client, user) => {
+        const settings = loadSettings();
+        const oauthConfig = settings.systemConfig?.oauthServer;
+        const accessTokenLifetime = oauthConfig?.accessTokenLifetime || 3600;
+        const refreshTokenLifetime = oauthConfig?.refreshTokenLifetime || 1209600;
+        const scopeString = Array.isArray(token.scope) ? token.scope.join(' ') : token.scope;
+        const savedToken = saveToken({
+            scope: scopeString,
+            clientId: client.id,
+            username: user.username,
+        }, accessTokenLifetime, refreshTokenLifetime);
+        const scopeArray = savedToken.scope ? savedToken.scope.split(' ') : undefined;
+        return {
+            accessToken: savedToken.accessToken,
+            accessTokenExpiresAt: savedToken.accessTokenExpiresAt,
+            refreshToken: savedToken.refreshToken,
+            refreshTokenExpiresAt: savedToken.refreshTokenExpiresAt,
+            scope: scopeArray,
+            client,
+            user: {
+                username: user.username,
+            },
+        };
+    },
+    /**
+     * Get access token
+     */
+    getAccessToken: async (accessToken) => {
+        const token = getToken(accessToken);
+        if (!token) {
+            return false;
+        }
+        const client = findOAuthClientById(token.clientId);
+        if (!client) {
+            return false;
+        }
+        const scopeArray = token.scope ? token.scope.split(' ') : undefined;
+        return {
+            accessToken: token.accessToken,
+            accessTokenExpiresAt: token.accessTokenExpiresAt,
+            scope: scopeArray,
+            client: {
+                id: client.clientId,
+                clientId: client.clientId,
+                clientSecret: client.clientSecret,
+                redirectUris: client.redirectUris,
+                grants: client.grants,
+            },
+            user: {
+                username: token.username,
+            },
+        };
+    },
+    /**
+     * Get refresh token
+     */
+    getRefreshToken: async (refreshToken) => {
+        const token = getToken(refreshToken);
+        if (!token || token.refreshToken !== refreshToken) {
+            return false;
+        }
+        const client = findOAuthClientById(token.clientId);
+        if (!client) {
+            return false;
+        }
+        const scopeArray = token.scope ? token.scope.split(' ') : undefined;
+        return {
+            refreshToken: token.refreshToken,
+            refreshTokenExpiresAt: token.refreshTokenExpiresAt,
+            scope: scopeArray,
+            client: {
+                id: client.clientId,
+                clientId: client.clientId,
+                clientSecret: client.clientSecret,
+                redirectUris: client.redirectUris,
+                grants: client.grants,
+            },
+            user: {
+                username: token.username,
+            },
+        };
+    },
+    /**
+     * Revoke token
+     */
+    revokeToken: async (token) => {
+        const refreshToken = 'refreshToken' in token ? token.refreshToken : undefined;
+        if (refreshToken) {
+            revokeToken(refreshToken);
+        }
+        return true;
+    },
+    /**
+     * Verify scope
+     */
+    verifyScope: async (token, scope) => {
+        if (!token.scope) {
+            return false;
+        }
+        const requestedScopes = Array.isArray(scope) ? scope : scope.split(' ');
+        const tokenScopes = Array.isArray(token.scope) ? token.scope : token.scope.split(' ');
+        return requestedScopes.every((s) => tokenScopes.includes(s));
+    },
+    /**
+     * Validate scope
+     */
+    validateScope: async (user, client, scope) => {
+        const settings = loadSettings();
+        const oauthConfig = settings.systemConfig?.oauthServer;
+        const allowedScopes = oauthConfig?.allowedScopes || ['read', 'write'];
+        if (!scope || scope.length === 0) {
+            return allowedScopes;
+        }
+        const validScopes = scope.filter((s) => allowedScopes.includes(s));
+        return validScopes.length > 0 ? validScopes : false;
+    },
+};
+// Create OAuth2 server instance
+let oauth = null;
+/**
+ * Initialize OAuth server
+ */
+export const initOAuthServer = () => {
+    const settings = loadSettings();
+    const oauthConfig = settings.systemConfig?.oauthServer;
+    const requireState = oauthConfig?.requireState === true;
+    if (!oauthConfig || !oauthConfig.enabled) {
+        console.log('OAuth authorization server is disabled or not configured');
+        return;
+    }
+    try {
+        oauth = new OAuth2Server({
+            model: oauthModel,
+            accessTokenLifetime: oauthConfig.accessTokenLifetime || 3600,
+            refreshTokenLifetime: oauthConfig.refreshTokenLifetime || 1209600,
+            authorizationCodeLifetime: oauthConfig.authorizationCodeLifetime || 300,
+            allowEmptyState: !requireState,
+            allowBearerTokensInQueryString: false,
+            // When requireClientSecret is false, allow PKCE without client secret
+            requireClientAuthentication: oauthConfig.requireClientSecret
+                ? { authorization_code: true, refresh_token: true }
+                : { authorization_code: false, refresh_token: false },
+        });
+        console.log('OAuth authorization server initialized successfully');
+    }
+    catch (error) {
+        console.error('Failed to initialize OAuth authorization server:', error);
+        oauth = null;
+    }
+};
+/**
+ * Get OAuth server instance
+ */
+export const getOAuthServer = () => {
+    return oauth;
+};
+/**
+ * Check if OAuth server is enabled
+ */
+export const isOAuthServerEnabled = () => {
+    return oauth !== null;
+};
+/**
+ * Authenticate user for OAuth authorization
+ */
+export const authenticateUser = async (username, password) => {
+    const user = findUserByUsername(username);
+    if (!user) {
+        return null;
+    }
+    const isValid = await verifyPassword(password, user.password);
+    if (!isValid) {
+        return null;
+    }
+    return {
+        username: user.username,
+        isAdmin: user.isAdmin,
+    };
+};
+/**
+ * Generate PKCE code verifier
+ */
+export const generateCodeVerifier = () => {
+    return crypto.randomBytes(32).toString('base64url');
+};
+/**
+ * Generate PKCE code challenge from verifier
+ */
+export const generateCodeChallenge = (verifier) => {
+    return crypto.createHash('sha256').update(verifier).digest('base64url');
+};
+/**
+ * Verify PKCE code challenge
+ */
+export const verifyCodeChallenge = (verifier, challenge, method = 'S256') => {
+    if (method === 'plain') {
+        return verifier === challenge;
+    }
+    if (method === 'S256') {
+        const computed = generateCodeChallenge(verifier);
+        return computed === challenge;
+    }
+    return false;
+};
+/**
+ * Handle OAuth authorize request
+ */
+export const handleAuthorizeRequest = async (req, res) => {
+    if (!oauth) {
+        throw new Error('OAuth server not initialized');
+    }
+    const request = new Request(req);
+    const response = new Response(res);
+    return await oauth.authorize(request, response);
+};
+/**
+ * Handle OAuth token request
+ */
+export const handleTokenRequest = async (req, res) => {
+    if (!oauth) {
+        throw new Error('OAuth server not initialized');
+    }
+    const request = new Request(req);
+    const response = new Response(res);
+    return await oauth.token(request, response);
+};
+/**
+ * Handle OAuth authenticate request (validate access token)
+ */
+export const handleAuthenticateRequest = async (req, res) => {
+    if (!oauth) {
+        throw new Error('OAuth server not initialized');
+    }
+    const request = new Request(req);
+    const response = new Response(res);
+    return await oauth.authenticate(request, response);
+};
+//# sourceMappingURL=oauthServerService.js.map

package/dist/services/oauthServerService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauthServerService.js","sourceRoot":"","sources":["../../src/services/oauthServerService.ts"],"names":[],"mappings":"AAAA,OAAO,YAAY,MAAM,2BAA2B,CAAC;AAErD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,kBAAkB,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AACvE,OAAO,EACL,mBAAmB,EACnB,qBAAqB,EACrB,oBAAoB,EACpB,uBAAuB,EACvB,SAAS,EACT,QAAQ,EACR,WAAW,GACZ,MAAM,oBAAoB,CAAC;AAC5B,OAAO,MAAM,MAAM,QAAQ,CAAC;AAE5B,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,YAAY,CAAC;AAE3C,oCAAoC;AACpC,MAAM,UAAU,GAAyE;IACvF;;OAEG;IACH,SAAS,EAAE,KAAK,EAAE,QAAgB,EAAE,YAAqB,EAAE,EAAE;QAC3D,MAAM,MAAM,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC;QAC7C,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,KAAK,CAAC;QACf,CAAC;QAED,0CAA0C;QAC1C,IAAI,YAAY,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;YACxC,IAAI,MAAM,CAAC,YAAY,KAAK,YAAY,EAAE,CAAC;gBACzC,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;QAED,OAAO;YACL,EAAE,EAAE,MAAM,CAAC,QAAQ;YACnB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,MAAM,EAAE,MAAM,CAAC,MAAM;SACtB,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,qBAAqB,EAAE,KAAK,EAC1B,IAAoC,EACpC,MAA2B,EAC3B,IAAuB,EACvB,EAAE;QACF,MAAM,QAAQ,GAAG,YAAY,EAAE,CAAC;QAChC,MAAM,WAAW,GAAG,QAAQ,CAAC,YAAY,EAAE,WAAW,CAAC;QACvD,MAAM,QAAQ,GAAG,WAAW,EAAE,yBAAyB,IAAI,GAAG,CAAC;QAE/D,MAAM,WAAW,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC;QAElF,MAAM,QAAQ,GAAG,qBAAqB,CACpC;YACE,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,KAAK,EAAE,WAAW;YAClB,QAAQ,EAAE,MAAM,CAAC,EAAE;YACnB,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;SAC9C,EACD,QAAQ,CACT,CAAC;QAEF,OAAO;YACL,iBAAiB,EAAE,QAAQ;YAC3B,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,QAAQ,GAAG,IAAI,CAAC;YACjD,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,MAAM;YACN,IAAI,EAAE;gBACJ,QAAQ,EAAE,IAAI,CAAC,QAAQ;aACxB;YACD,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;SAC9C,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,oBAAoB,EAAE,KAAK,EAAE,iBAAyB,EAAE,EAAE;QACxD,MAAM,IAAI,GAAG,oBAAoB,CAAC,iBAAiB,CAAC,CAAC;QACrD,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,MAAM,GAAG,mBAAmB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAClD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAElE,OAAO;YACL,iBAAiB,EAAE,IAAI,CAAC,IAAI;YAC5B,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,KAAK,EAAE,UAAU;YACjB,MAAM,EAAE;gBACN,EAAE,EAAE,MAAM,CAAC,QAAQ;gBACnB,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,MAAM,EAAE,MAAM,CAAC,MAAM;aACtB;YACD,IAAI,EAAE;gBACJ,QAAQ,EAAE,IAAI,CAAC,QAAQ;aACxB;YACD,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;SAC9C,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,uBAAuB,EAAE,KAAK,EAAE,IAAoC,EAAE,EAAE;QACtE,uBAAuB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAChD,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,SAAS,EAAE,KAAK,EACd,KAAyB,EACzB,MAA2B,EAC3B,IAAuB,EACvB,EAAE;QACF,MAAM,QAAQ,GAAG,YAAY,EAAE,CAAC;QAChC,MAAM,WAAW,GAAG,QAAQ,CAAC,YAAY,EAAE,WAAW,CAAC;QACvD,MAAM,mBAAmB,GAAG,WAAW,EAAE,mBAAmB,IAAI,IAAI,CAAC;QACrE,MAAM,oBAAoB,GAAG,WAAW,EAAE,oBAAoB,IAAI,OAAO,CAAC;QAE1E,MAAM,WAAW,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC;QAErF,MAAM,UAAU,GAAG,SAAS,CAC1B;YACE,KAAK,EAAE,WAAW;YAClB,QAAQ,EAAE,MAAM,CAAC,EAAE;YACnB,QAAQ,EAAE,IAAI,CAAC,QAAQ;SACxB,EACD,mBAAmB,EACnB,oBAAoB,CACrB,CAAC;QAEF,MAAM,UAAU,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAE9E,OAAO;YACL,WAAW,EAAE,UAAU,CAAC,WAAW;YACnC,oBAAoB,EAAE,UAAU,CAAC,oBAAoB;YACrD,YAAY,EAAE,UAAU,CAAC,YAAY;YACrC,qBAAqB,EAAE,UAAU,CAAC,qBAAqB;YACvD,KAAK,EAAE,UAAU;YACjB,MAAM;YACN,IAAI,EAAE;gBACJ,QAAQ,EAAE,IAAI,CAAC,QAAQ;aACxB;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,cAAc,EAAE,KAAK,EAAE,WAAmB,EAAE,EAAE;QAC5C,MAAM,KAAK,GAAG,QAAQ,CAAC,WAAW,CAAC,CAAC;QACpC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,MAAM,GAAG,mBAAmB,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QACnD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAEpE,OAAO;YACL,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,oBAAoB,EAAE,KAAK,CAAC,oBAAoB;YAChD,KAAK,EAAE,UAAU;YACjB,MAAM,EAAE;gBACN,EAAE,EAAE,MAAM,CAAC,QAAQ;gBACnB,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,MAAM,EAAE,MAAM,CAAC,MAAM;aACtB;YACD,IAAI,EAAE;gBACJ,QAAQ,EAAE,KAAK,CAAC,QAAQ;aACzB;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,eAAe,EAAE,KAAK,EAAE,YAAoB,EAAE,EAAE;QAC9C,MAAM,KAAK,GAAG,QAAQ,CAAC,YAAY,CAAC,CAAC;QACrC,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,YAAY,KAAK,YAAY,EAAE,CAAC;YAClD,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,MAAM,GAAG,mBAAmB,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QACnD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAEpE,OAAO;YACL,YAAY,EAAE,KAAK,CAAC,YAAa;YACjC,qBAAqB,EAAE,KAAK,CAAC,qBAAsB;YACnD,KAAK,EAAE,UAAU;YACjB,MAAM,EAAE;gBACN,EAAE,EAAE,MAAM,CAAC,QAAQ;gBACnB,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,MAAM,EAAE,MAAM,CAAC,MAAM;aACtB;YACD,IAAI,EAAE;gBACJ,QAAQ,EAAE,KAAK,CAAC,QAAQ;aACzB;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,WAAW,EAAE,KAAK,EAAE,KAAqD,EAAE,EAAE;QAC3E,MAAM,YAAY,GAAG,cAAc,IAAI,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;QAC9E,IAAI,YAAY,EAAE,CAAC;YACjB,WAAW,CAAC,YAAY,CAAC,CAAC;QAC5B,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,WAAW,EAAE,KAAK,EAAE,KAAyB,EAAE,KAAwB,EAAE,EAAE;QACzE,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;YACjB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,eAAe,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACxE,MAAM,WAAW,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAE,KAAK,CAAC,KAAgB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAElG,OAAO,eAAe,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IAC/D,CAAC;IAED;;OAEG;IACH,aAAa,EAAE,KAAK,EAAE,IAAuB,EAAE,MAA2B,EAAE,KAAgB,EAAE,EAAE;QAC9F,MAAM,QAAQ,GAAG,YAAY,EAAE,CAAC;QAChC,MAAM,WAAW,GAAG,QAAQ,CAAC,YAAY,EAAE,WAAW,CAAC;QACvD,MAAM,aAAa,GAAG,WAAW,EAAE,aAAa,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAEtE,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACjC,OAAO,aAAa,CAAC;QACvB,CAAC;QAED,MAAM,WAAW,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;QAEnE,OAAO,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,KAAK,CAAC;IACtD,CAAC;CACF,CAAC;AAEF,gCAAgC;AAChC,IAAI,KAAK,GAAwB,IAAI,CAAC;AAEtC;;GAEG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,GAAS,EAAE;IACxC,MAAM,QAAQ,GAAG,YAAY,EAAE,CAAC;IAChC,MAAM,WAAW,GAAG,QAAQ,CAAC,YAAY,EAAE,WAAW,CAAC;IACvD,MAAM,YAAY,GAAG,WAAW,EAAE,YAAY,KAAK,IAAI,CAAC;IAExD,IAAI,CAAC,WAAW,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;QACzC,OAAO,CAAC,GAAG,CAAC,0DAA0D,CAAC,CAAC;QACxE,OAAO;IACT,CAAC;IAED,IAAI,CAAC;QACH,KAAK,GAAG,IAAI,YAAY,CAAC;YACvB,KAAK,EAAE,UAAU;YACjB,mBAAmB,EAAE,WAAW,CAAC,mBAAmB,IAAI,IAAI;YAC5D,oBAAoB,EAAE,WAAW,CAAC,oBAAoB,IAAI,OAAO;YACjE,yBAAyB,EAAE,WAAW,CAAC,yBAAyB,IAAI,GAAG;YACvE,eAAe,EAAE,CAAC,YAAY;YAC9B,8BAA8B,EAAE,KAAK;YACrC,sEAAsE;YACtE,2BAA2B,EAAE,WAAW,CAAC,mBAAmB;gBAC1D,CAAC,CAAC,EAAE,kBAAkB,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE;gBACnD,CAAC,CAAC,EAAE,kBAAkB,EAAE,KAAK,EAAE,aAAa,EAAE,KAAK,EAAE;SACxD,CAAC,CAAC;QAEH,OAAO,CAAC,GAAG,CAAC,qDAAqD,CAAC,CAAC;IACrE,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,kDAAkD,EAAE,KAAK,CAAC,CAAC;QACzE,KAAK,GAAG,IAAI,CAAC;IACf,CAAC;AACH,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,cAAc,GAAG,GAAwB,EAAE;IACtD,OAAO,KAAK,CAAC;AACf,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,GAAY,EAAE;IAChD,OAAO,KAAK,KAAK,IAAI,CAAC;AACxB,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,KAAK,EACnC,QAAgB,EAChB,QAAgB,EACmB,EAAE;IACrC,MAAM,IAAI,GAAG,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IAC1C,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,cAAc,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;IAC9D,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO;QACL,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,OAAO,EAAE,IAAI,CAAC,OAAO;KACtB,CAAC;AACJ,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,GAAW,EAAE;IAC/C,OAAO,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;AACtD,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,QAAgB,EAAU,EAAE;IAChE,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;AAC1E,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAG,CACjC,QAAgB,EAChB,SAAiB,EACjB,SAAiB,MAAM,EACd,EAAE;IACX,IAAI,MAAM,KAAK,OAAO,EAAE,CAAC;QACvB,OAAO,QAAQ,KAAK,SAAS,CAAC;IAChC,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,MAAM,QAAQ,GAAG,qBAAqB,CAAC,QAAQ,CAAC,CAAC;QACjD,OAAO,QAAQ,KAAK,SAAS,CAAC;IAChC,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAAG,KAAK,EACzC,GAAmB,EACnB,GAAoB,EACqB,EAAE;IAC3C,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;IAClD,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,OAAO,CAAC,GAAG,CAAC,CAAC;IACjC,MAAM,QAAQ,GAAG,IAAI,QAAQ,CAAC,GAAG,CAAC,CAAC;IAEnC,OAAO,MAAM,KAAK,CAAC,SAAS,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;AAClD,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,KAAK,EACrC,GAAmB,EACnB,GAAoB,EACS,EAAE;IAC/B,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;IAClD,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,OAAO,CAAC,GAAG,CAAC,CAAC;IACjC,MAAM,QAAQ,GAAG,IAAI,QAAQ,CAAC,GAAG,CAAC,CAAC;IAEnC,OAAO,MAAM,KAAK,CAAC,KAAK,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;AAC9C,CAAC,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,yBAAyB,GAAG,KAAK,EAC5C,GAAmB,EACnB,GAAoB,EACS,EAAE;IAC/B,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;IAClD,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,OAAO,CAAC,GAAG,CAAC,CAAC;IACjC,MAAM,QAAQ,GAAG,IAAI,QAAQ,CAAC,GAAG,CAAC,CAAC;IAEnC,OAAO,MAAM,KAAK,CAAC,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;AACrD,CAAC,CAAC"}