npm - @schemavaults/auth-server-sdk - Versions diffs - 0.21.4 → 0.21.5 - Mend

@schemavaults/auth-server-sdk 0.21.4 → 0.21.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (34) hide show

package/dist/cli.cjs CHANGED Viewed

@@ -66,7 +66,7 @@ var init_resolve_codegen_templates_directory = __esm({
 // src/NextjsAppDirectoryPlugin/codegen-marker.ts
 function getCodegenMarkerComment() {
-  const version = true ? "0.21.4" : "unknown";
+  const version = true ? "0.21.5" : "unknown";
   return `${CODEGEN_MARKER_PREFIX}${version}`;
 }
 function hasCodegenMarker(firstLine) {
@@ -248,7 +248,7 @@ async function main() {
     return;
   }
   if (args.includes("--version") || args.includes("-v")) {
-    console.log(`${PACKAGE_NAME}@${"0.21.4"}`);
+    console.log(`${PACKAGE_NAME}@${"0.21.5"}`);
     return;
   }
   const command = args.find((arg) => !arg.startsWith("-")) ?? "codegen";

package/dist/route_guards/withAdminRouteGuard/index.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export { withAdminApiRouteGuard } from "./withAdminApiRouteGuard";
+export type { TProtectedAdminApiRoute, IBaseProtectedAdminApiRouteInputs, } from "./withAdminApiRouteGuard";
+export { withAdminServerComponentRouteGuard } from "./withAdminServerComponentRouteGuard";
+export type { TProtectedAdminPageServerComponent, IBaseProtectedAdminServerComponentPageProps, } from "./withAdminServerComponentRouteGuard";

package/dist/route_guards/withAdminRouteGuard/index.js ADDED Viewed

@@ -0,0 +1,3 @@
+export { withAdminApiRouteGuard } from "./withAdminApiRouteGuard";
+export { withAdminServerComponentRouteGuard } from "./withAdminServerComponentRouteGuard";
+//# sourceMappingURL=index.js.map

package/dist/route_guards/withAdminRouteGuard/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/route_guards/withAdminRouteGuard/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAMlE,OAAO,EAAE,kCAAkC,EAAE,MAAM,sCAAsC,CAAC"}

package/dist/route_guards/withAdminRouteGuard/withAdminApiRouteGuard.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import type { ApiServerId } from "@schemavaults/app-definitions";
+import { type TProtectedAuthenticatedApiRoute, type IBaseProtectedAuthenticatedApiRouteInputs } from "../../route_guards/withAuthenticatedRouteGuard";
+import type { NextRequest, NextResponse } from "next/server";
+import type { IJwtKeyManager } from "../../JwtKeyManager";
+type TAdditionalRouteInputs<TRouteInputs extends IBaseProtectedAuthenticatedApiRouteInputs> = Omit<TRouteInputs, keyof IBaseProtectedAuthenticatedApiRouteInputs>;
+export declare function withAdminApiRouteGuard<TRouteInputs extends IBaseProtectedAuthenticatedApiRouteInputs>(api_route_handler: TProtectedAuthenticatedApiRoute<TRouteInputs>, additional_custom_api_route_inputs?: TAdditionalRouteInputs<TRouteInputs> | undefined, custom_is_authorized_check?: ((route_inputs: TRouteInputs) => Promise<boolean>) | undefined, jwt_keys_manager?: IJwtKeyManager, getApiServerId?: () => ApiServerId): (req: NextRequest) => Promise<NextResponse>;
+export default withAdminApiRouteGuard;
+export type { TProtectedAuthenticatedApiRoute as TProtectedAdminApiRoute, IBaseProtectedAuthenticatedApiRouteInputs as IBaseProtectedAdminApiRouteInputs, } from "../../route_guards/withAuthenticatedRouteGuard";

package/dist/route_guards/withAdminRouteGuard/withAdminApiRouteGuard.js ADDED Viewed

@@ -0,0 +1,7 @@
+import { initDefaultJwtKeyManagerForAuthenticatedRouteGuard, withAuthenticatedApiRouteGuard, } from "../../route_guards/withAuthenticatedRouteGuard";
+import getSchemavaultsApiServerId from "../../get-schemavaults-api-server-id";
+export function withAdminApiRouteGuard(api_route_handler, additional_custom_api_route_inputs = undefined, custom_is_authorized_check = async (inputs) => inputs.user.admin === true, jwt_keys_manager = initDefaultJwtKeyManagerForAuthenticatedRouteGuard(), getApiServerId = getSchemavaultsApiServerId) {
+    return withAuthenticatedApiRouteGuard(api_route_handler, additional_custom_api_route_inputs, "admin", custom_is_authorized_check, jwt_keys_manager, getApiServerId);
+}
+export default withAdminApiRouteGuard;
+//# sourceMappingURL=withAdminApiRouteGuard.js.map

package/dist/route_guards/withAdminRouteGuard/withAdminApiRouteGuard.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"withAdminApiRouteGuard.js","sourceRoot":"","sources":["../../../src/route_guards/withAdminRouteGuard/withAdminApiRouteGuard.ts"],"names":[],"mappings":"AACA,OAAO,EACL,kDAAkD,EAElD,8BAA8B,GAE/B,MAAM,4CAA4C,CAAC;AAEpD,OAAO,0BAA0B,MAAM,kCAAkC,CAAC;AAO1E,MAAM,UAAU,sBAAsB,CAGpC,iBAAgE,EAChE,qCAEgB,SAAS,EACzB,6BAEgB,KAAK,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,KAAK,IAAI,EAC5D,mBAAmC,kDAAkD,EAAE,EACvF,iBAAoC,0BAA0B;IAE9D,OAAO,8BAA8B,CACnC,iBAAiB,EACjB,kCAAkC,EAClC,OAAO,EACP,0BAA0B,EAC1B,gBAAgB,EAChB,cAAc,CACf,CAAC;AACJ,CAAC;AAED,eAAe,sBAAsB,CAAC"}

package/dist/route_guards/withAdminRouteGuard/withAdminServerComponentRouteGuard.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import { type ApiServerId } from "@schemavaults/app-definitions";
+import { type IBaseProtectedAuthenticatedServerComponentPageProps, type TProtectedAuthenticatedPageServerComponent } from "../../route_guards/withAuthenticatedRouteGuard";
+import type { ReactElement } from "react";
+import type { IJwtKeyManager } from "../../JwtKeyManager";
+type TAdditionalProps<TProps extends IBaseProtectedAuthenticatedServerComponentPageProps> = Omit<TProps, keyof IBaseProtectedAuthenticatedServerComponentPageProps>;
+export declare function withAdminServerComponentRouteGuard<TProps extends IBaseProtectedAuthenticatedServerComponentPageProps>(server_component: TProtectedAuthenticatedPageServerComponent<TProps>, additional_custom_server_component_props?: TAdditionalProps<TProps> | undefined, custom_is_authorized_check?: ((props: TProps) => Promise<boolean>) | undefined, jwt_keys_manager?: IJwtKeyManager, getApiServerId?: () => ApiServerId): Promise<ReactElement>;
+export type { TProtectedAuthenticatedPageServerComponent as TProtectedAdminPageServerComponent, IBaseProtectedAuthenticatedServerComponentPageProps as IBaseProtectedAdminServerComponentPageProps, } from "../../route_guards/withAuthenticatedRouteGuard";

package/dist/route_guards/withAdminRouteGuard/withAdminServerComponentRouteGuard.js ADDED Viewed

@@ -0,0 +1,6 @@
+import { initDefaultJwtKeyManagerForAuthenticatedRouteGuard, withAuthenticatedServerComponentRouteGuard, } from "../../route_guards/withAuthenticatedRouteGuard";
+import getSchemavaultsApiServerId from "../../get-schemavaults-api-server-id";
+export async function withAdminServerComponentRouteGuard(server_component, additional_custom_server_component_props = undefined, custom_is_authorized_check = async (props) => props.user.admin === true, jwt_keys_manager = initDefaultJwtKeyManagerForAuthenticatedRouteGuard(), getApiServerId = getSchemavaultsApiServerId) {
+    return await withAuthenticatedServerComponentRouteGuard(server_component, additional_custom_server_component_props, "admin", custom_is_authorized_check, jwt_keys_manager, getApiServerId);
+}
+//# sourceMappingURL=withAdminServerComponentRouteGuard.js.map

package/dist/route_guards/withAdminRouteGuard/withAdminServerComponentRouteGuard.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"withAdminServerComponentRouteGuard.js","sourceRoot":"","sources":["../../../src/route_guards/withAdminRouteGuard/withAdminServerComponentRouteGuard.ts"],"names":[],"mappings":"AACA,OAAO,EACL,kDAAkD,EAClD,0CAA0C,GAG3C,MAAM,4CAA4C,CAAC;AAEpD,OAAO,0BAA0B,MAAM,kCAAkC,CAAC;AAO1E,MAAM,CAAC,KAAK,UAAU,kCAAkC,CAGtD,gBAAoE,EACpE,2CAEgB,SAAS,EACzB,6BAEgB,KAAK,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,KAAK,IAAI,EAC1D,mBAAmC,kDAAkD,EAAE,EACvF,iBAAoC,0BAA0B;IAE9D,OAAO,MAAM,0CAA0C,CACrD,gBAAgB,EAChB,wCAAwC,EACxC,OAAO,EACP,0BAA0B,EAC1B,gBAAgB,EAChB,cAAc,CACf,CAAC;AACJ,CAAC"}

package/dist/route_guards/withAuthenticatedRouteGuard/IBaseProtectedAuthenticatedApiRouteInputs.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import type { NextRequest } from "next/server";
+import type { IBaseProtectedAuthenticatedServerComponentPageProps } from "./IBaseProtectedAuthenticatedServerComponentPageProps";
+export interface IBaseProtectedAuthenticatedApiRouteInputs extends IBaseProtectedAuthenticatedServerComponentPageProps {
+    req: NextRequest;
+}

package/dist/route_guards/withAuthenticatedRouteGuard/IBaseProtectedAuthenticatedApiRouteInputs.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=IBaseProtectedAuthenticatedApiRouteInputs.js.map

package/dist/route_guards/withAuthenticatedRouteGuard/IBaseProtectedAuthenticatedApiRouteInputs.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"IBaseProtectedAuthenticatedApiRouteInputs.js","sourceRoot":"","sources":["../../../src/route_guards/withAuthenticatedRouteGuard/IBaseProtectedAuthenticatedApiRouteInputs.ts"],"names":[],"mappings":""}

package/dist/route_guards/withAuthenticatedRouteGuard/IBaseProtectedAuthenticatedServerComponentPageProps.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import type { SchemaVaultsAppEnvironment } from "@schemavaults/app-definitions";
+import type { OrganizationID, UserData } from "@schemavaults/auth-common";
+export interface IBaseProtectedAuthenticatedServerComponentPageProps {
+    user: UserData;
+    user_organizations: readonly OrganizationID[];
+    environment: SchemaVaultsAppEnvironment;
+}

package/dist/route_guards/withAuthenticatedRouteGuard/IBaseProtectedAuthenticatedServerComponentPageProps.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=IBaseProtectedAuthenticatedServerComponentPageProps.js.map

package/dist/route_guards/withAuthenticatedRouteGuard/IBaseProtectedAuthenticatedServerComponentPageProps.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"IBaseProtectedAuthenticatedServerComponentPageProps.js","sourceRoot":"","sources":["../../../src/route_guards/withAuthenticatedRouteGuard/IBaseProtectedAuthenticatedServerComponentPageProps.ts"],"names":[],"mappings":""}

package/dist/route_guards/withAuthenticatedRouteGuard/index.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+export { withAuthenticatedApiRouteGuard } from "./withAuthenticatedApiRouteGuard";
+export type { TProtectedAuthenticatedApiRoute } from "./withAuthenticatedApiRouteGuard";
+export type { IBaseProtectedAuthenticatedApiRouteInputs } from "./IBaseProtectedAuthenticatedApiRouteInputs";
+export { withAuthenticatedServerComponentRouteGuard } from "./withAuthenticatedServerComponentRouteGuard";
+export type { TProtectedAuthenticatedPageServerComponent } from "./withAuthenticatedServerComponentRouteGuard";
+export type { IBaseProtectedAuthenticatedServerComponentPageProps } from "./IBaseProtectedAuthenticatedServerComponentPageProps";
+export { initDefaultJwtKeyManagerForAuthenticatedRouteGuard } from "./initDefaultJwtKeyManagerForAuthenticatedRouteGuard";

package/dist/route_guards/withAuthenticatedRouteGuard/index.js ADDED Viewed

@@ -0,0 +1,4 @@
+export { withAuthenticatedApiRouteGuard } from "./withAuthenticatedApiRouteGuard";
+export { withAuthenticatedServerComponentRouteGuard } from "./withAuthenticatedServerComponentRouteGuard";
+export { initDefaultJwtKeyManagerForAuthenticatedRouteGuard } from "./initDefaultJwtKeyManagerForAuthenticatedRouteGuard";
+//# sourceMappingURL=index.js.map

package/dist/route_guards/withAuthenticatedRouteGuard/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/route_guards/withAuthenticatedRouteGuard/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,8BAA8B,EAAE,MAAM,kCAAkC,CAAC;AAIlF,OAAO,EAAE,0CAA0C,EAAE,MAAM,8CAA8C,CAAC;AAI1G,OAAO,EAAE,kDAAkD,EAAE,MAAM,sDAAsD,CAAC"}

package/dist/route_guards/withAuthenticatedRouteGuard/initDefaultJwtKeyManagerForAuthenticatedRouteGuard.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { IJwtKeyManager } from "../../JwtKeyManager/IJwtKeyManager";
+export declare function initDefaultJwtKeyManagerForAuthenticatedRouteGuard(debug?: boolean): IJwtKeyManager;
+export default initDefaultJwtKeyManagerForAuthenticatedRouteGuard;

package/dist/route_guards/withAuthenticatedRouteGuard/initDefaultJwtKeyManagerForAuthenticatedRouteGuard.js ADDED Viewed

@@ -0,0 +1,11 @@
+import getSchemaVaultsAuthServerUri from "../../get-schemavaults-auth-server-uri";
+import RemoteJwtKeyManager from "../../JwtKeyManager/RemoteJwtKeyManager";
+// default key manager is RemoteJwtKeyManager-- makes it easier for external apps, we can overwrite this once for the auth server
+export function initDefaultJwtKeyManagerForAuthenticatedRouteGuard(debug = process.env.NODE_ENV === "development") {
+    return new RemoteJwtKeyManager({
+        auth_server_uri: getSchemaVaultsAuthServerUri(),
+        debug,
+    });
+}
+export default initDefaultJwtKeyManagerForAuthenticatedRouteGuard;
+//# sourceMappingURL=initDefaultJwtKeyManagerForAuthenticatedRouteGuard.js.map

package/dist/route_guards/withAuthenticatedRouteGuard/initDefaultJwtKeyManagerForAuthenticatedRouteGuard.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"initDefaultJwtKeyManagerForAuthenticatedRouteGuard.js","sourceRoot":"","sources":["../../../src/route_guards/withAuthenticatedRouteGuard/initDefaultJwtKeyManagerForAuthenticatedRouteGuard.ts"],"names":[],"mappings":"AAAA,OAAO,4BAA4B,MAAM,oCAAoC,CAAC;AAE9E,OAAO,mBAAmB,MAAM,qCAAqC,CAAC;AAEtE,iIAAiI;AACjI,MAAM,UAAU,kDAAkD,CAChE,QAAiB,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,aAAa;IAEvD,OAAO,IAAI,mBAAmB,CAAC;QAC7B,eAAe,EAAE,4BAA4B,EAAE;QAC/C,KAAK;KACN,CAAC,CAAC;AACL,CAAC;AAED,eAAe,kDAAkD,CAAC"}

package/dist/route_guards/withAuthenticatedRouteGuard/withAuthenticatedApiRouteGuard.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { type ApiServerId } from "@schemavaults/app-definitions";
+import type { NextRequest, NextResponse } from "next/server";
+import type { IJwtKeyManager } from "../../JwtKeyManager";
+import type { IBaseProtectedAuthenticatedApiRouteInputs } from "./IBaseProtectedAuthenticatedApiRouteInputs";
+export type TProtectedAuthenticatedApiRoute<TRouteInputs extends IBaseProtectedAuthenticatedApiRouteInputs> = (route_inputs: TRouteInputs) => Promise<NextResponse>;
+type TAdditionalRouteInputs<TRouteInputs extends IBaseProtectedAuthenticatedApiRouteInputs> = Omit<TRouteInputs, keyof IBaseProtectedAuthenticatedApiRouteInputs>;
+export declare function withAuthenticatedApiRouteGuard<TRouteInputs extends IBaseProtectedAuthenticatedApiRouteInputs>(api_route_handler: TProtectedAuthenticatedApiRoute<TRouteInputs>, additional_custom_api_route_inputs?: TAdditionalRouteInputs<TRouteInputs> | undefined, route_guard_type?: "authenticated" | "admin", custom_is_authorized_check?: ((route_inputs: TRouteInputs) => Promise<boolean>) | undefined, jwt_keys_manager?: IJwtKeyManager, getApiServerId?: () => ApiServerId): (req: NextRequest) => Promise<NextResponse>;
+export default withAuthenticatedApiRouteGuard;

package/dist/route_guards/{withAuthenticatedRouteGuard.js → withAuthenticatedRouteGuard/withAuthenticatedApiRouteGuard.js} RENAMED Viewed

@@ -1,122 +1,14 @@
 import { SCHEMAVAULTS_AUTH_APP_ID, getAppEnvironment, } from "@schemavaults/app-definitions";
 import { accessTokenDataSchema, } from "@schemavaults/auth-common";
-import { redirectWithError } from "../redirect-with-error";
-import RouteGuardFactory from "./route-guard-factory";
-import getStringByteSize from "../getStringByteSize";
-import MaximumBrowserCookieSize from "../MaximumBrowserCookieSize";
-import { AccessTokenCookieName } from "../AccessTokenCookieNames";
-import { RefreshTokenCookieName } from "../RefreshTokenCookieNames";
-import getSchemavaultsApiServerId from "../get-schemavaults-api-server-id";
-import { RemoteJwtKeyManager } from "../JwtKeyManager";
-import redirectToLogin from "../redirect-to-login";
-import assertValidRouteGuardType from "./assertValidRouteGuardType";
-import getSchemaVaultsAuthServerUri from "../get-schemavaults-auth-server-uri";
-// default key manager is RemoteJwtKeyManager-- makes it easier for external apps, we can overwrite this once for the auth server
-export function initDefaultJwtKeyManagerForAuthenticatedRouteGuard(debug = process.env.NODE_ENV === "development") {
-    return new RemoteJwtKeyManager({
-        auth_server_uri: getSchemaVaultsAuthServerUri(),
-        debug,
-    });
-}
-export async function withAuthenticatedServerComponentRouteGuard(server_component, additional_custom_server_component_props, route_guard_type = "authenticated", custom_is_authorized_check = undefined, jwt_keys_manager = initDefaultJwtKeyManagerForAuthenticatedRouteGuard(), getApiServerId = getSchemavaultsApiServerId) {
-    assertValidRouteGuardType(route_guard_type);
-    const environment = getAppEnvironment();
-    const api_server_id = getApiServerId();
-    const [loadCookies, redirect] = await Promise.all([
-        import("next/headers").then((mod) => mod.cookies),
-        import("next/navigation").then((mod) => mod.redirect),
-    ]);
-    if (typeof loadCookies !== "function") {
-        throw new TypeError("Expected 'loadCookies' to be a function");
-    }
-    else if (typeof redirect !== "function") {
-        throw new TypeError("Expected 'redirect' to be a function");
-    }
-    const cookies = await loadCookies();
-    if (!("get" in cookies) || typeof cookies.get !== "function") {
-        throw new TypeError("Expected 'cookies' to be a RequestCookies object with a 'get' method!");
-    }
-    const token_sources = [];
-    // Load Refresh Token for Auth Server
-    if (api_server_id === SCHEMAVAULTS_AUTH_APP_ID) {
-        const refresh_token_cookie = cookies.get(RefreshTokenCookieName(SCHEMAVAULTS_AUTH_APP_ID));
-        if (typeof refresh_token_cookie?.value === "string") {
-            token_sources.push({
-                sourceHint: "Auth Server Refresh Token",
-                type: "refresh",
-                token: refresh_token_cookie.value,
-            });
-        }
-    }
-    // Load Access Token from designated cookie for current server
-    const access_token_cookie_name = AccessTokenCookieName(api_server_id);
-    const access_token_cookie = cookies.get(access_token_cookie_name);
-    if (typeof access_token_cookie?.value === "string" &&
-        access_token_cookie.value.length > 64) {
-        let jwt_string = null;
-        try {
-            const parsed = JSON.parse(access_token_cookie.value);
-            if (parsed && typeof parsed.token === "string") {
-                jwt_string = parsed.token;
-            }
-        }
-        catch {
-            // Raw JWT string fallback
-            jwt_string = access_token_cookie.value;
-        }
-        if (jwt_string) {
-            token_sources.push({
-                sourceHint: `Access Token from cookie '${access_token_cookie_name}'`,
-                type: "access",
-                token: jwt_string,
-            });
-        }
-    }
-    if (token_sources.length === 0) {
-        redirectToLogin(redirect);
-    }
-    const route_guard_factory = new RouteGuardFactory({
-        environment,
-        is_auth_server: api_server_id === SCHEMAVAULTS_AUTH_APP_ID,
-        jwt_keys_manager,
-    });
-    const route_guard = await route_guard_factory.createGuardFromTokenSources(route_guard_type, token_sources, api_server_id);
-    if (!route_guard.user) {
-        redirectToLogin(redirect);
-    }
-    const user = route_guard.user;
-    if (!route_guard.isAccessAllowed()) {
-        redirectWithError(redirect, 403, "forbidden");
-    }
-    if (typeof server_component !== "function") {
-        throw new TypeError("Expected 'server_component' passed to withAuthenticatedServerComponentRouteGuard to be a function");
-    }
-    const ProtectedAuthenticatedPageServerComponent = server_component;
-    const base_server_component_props = {
-        user,
-        environment,
-        user_organizations: route_guard.user_organizations,
-    };
-    const server_component_props = {
-        ...base_server_component_props,
-        ...additional_custom_server_component_props,
-    };
-    if (typeof custom_is_authorized_check === "function") {
-        let is_authorized = false;
-        try {
-            is_authorized = await custom_is_authorized_check(server_component_props);
-        }
-        catch (e) {
-            console.error("Error in 'custom_is_authorized_check' handler: ", e);
-            redirectWithError(redirect, 500, "internal_server_error");
-        }
-        if (!is_authorized) {
-            redirectWithError(redirect, 403, "forbidden");
-        }
-    }
-    return (await ProtectedAuthenticatedPageServerComponent(server_component_props));
-}
-export function withAuthenticatedApiRouteGuard(api_route_handler, additional_custom_api_route_inputs, route_guard_type = "authenticated", custom_is_authorized_check = undefined, jwt_keys_manager = initDefaultJwtKeyManagerForAuthenticatedRouteGuard(), getApiServerId = getSchemavaultsApiServerId) {
+import RouteGuardFactory from "../../route_guards/route-guard-factory";
+import getStringByteSize from "../../getStringByteSize";
+import MaximumBrowserCookieSize from "../../MaximumBrowserCookieSize";
+import { AccessTokenCookieName } from "../../AccessTokenCookieNames";
+import { RefreshTokenCookieName } from "../../RefreshTokenCookieNames";
+import getSchemavaultsApiServerId from "../../get-schemavaults-api-server-id";
+import assertValidRouteGuardType from "../../route_guards/assertValidRouteGuardType";
+import initDefaultJwtKeyManagerForAuthenticatedRouteGuard from "./initDefaultJwtKeyManagerForAuthenticatedRouteGuard";
+export function withAuthenticatedApiRouteGuard(api_route_handler, additional_custom_api_route_inputs = undefined, route_guard_type = "authenticated", custom_is_authorized_check = undefined, jwt_keys_manager = initDefaultJwtKeyManagerForAuthenticatedRouteGuard(), getApiServerId = getSchemavaultsApiServerId) {
     assertValidRouteGuardType(route_guard_type);
     const AuthenticatedApiRoute = api_route_handler;
     return async function ProtectedAuthenticatedApiRoute(req) {
@@ -244,14 +136,17 @@ export function withAuthenticatedApiRouteGuard(api_route_handler, additional_cus
             environment,
             user_organizations,
         };
-        const api_route_inputs = {
-            ...base_api_route_inputs,
-            ...additional_custom_api_route_inputs,
-        };
+        const final_route_inputs = typeof additional_custom_api_route_inputs === "object" &&
+            additional_custom_api_route_inputs
+            ? {
+                ...base_api_route_inputs,
+                ...additional_custom_api_route_inputs,
+            }
+            : base_api_route_inputs;
         if (typeof custom_is_authorized_check === "function") {
             let is_authorized = false;
             try {
-                is_authorized = await custom_is_authorized_check(api_route_inputs);
+                is_authorized = await custom_is_authorized_check(final_route_inputs);
             }
             catch (e) {
                 console.error("Error in 'custom_is_authorized_check' handler: ", e);
@@ -269,7 +164,8 @@ export function withAuthenticatedApiRouteGuard(api_route_handler, additional_cus
                 }, { status: 403 });
             }
         }
-        return (await AuthenticatedApiRoute(api_route_inputs));
+        return (await AuthenticatedApiRoute(final_route_inputs));
     };
 }
-//# sourceMappingURL=withAuthenticatedRouteGuard.js.map
+export default withAuthenticatedApiRouteGuard;
+//# sourceMappingURL=withAuthenticatedApiRouteGuard.js.map

package/dist/route_guards/withAuthenticatedRouteGuard/withAuthenticatedApiRouteGuard.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"withAuthenticatedApiRouteGuard.js","sourceRoot":"","sources":["../../../src/route_guards/withAuthenticatedRouteGuard/withAuthenticatedApiRouteGuard.ts"],"names":[],"mappings":"AAAA,OAAO,EAEL,wBAAwB,EAExB,iBAAiB,GAClB,MAAM,+BAA+B,CAAC;AACvC,OAAO,EAEL,qBAAqB,GAItB,MAAM,2BAA2B,CAAC;AAEnC,OAAO,iBAAiB,MAAM,oCAAoC,CAAC;AAEnE,OAAO,iBAAiB,MAAM,qBAAqB,CAAC;AACpD,OAAO,wBAAwB,MAAM,4BAA4B,CAAC;AAClE,OAAO,EAAE,qBAAqB,EAAE,MAAM,0BAA0B,CAAC;AACjE,OAAO,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AACnE,OAAO,0BAA0B,MAAM,kCAAkC,CAAC;AAE1E,OAAO,yBAAyB,MAAM,0CAA0C,CAAC;AAEjF,OAAO,kDAAkD,MAAM,sDAAsD,CAAC;AAUtH,MAAM,UAAU,8BAA8B,CAG5C,iBAAgE,EAChE,qCAEgB,SAAS,EACzB,mBAA8C,eAAe,EAC7D,6BAEgB,SAAS,EACzB,mBAAmC,kDAAkD,EAAE,EACvF,iBAAoC,0BAA0B;IAE9D,yBAAyB,CAAC,gBAAgB,CAAC,CAAC;IAE5C,MAAM,qBAAqB,GACzB,iBAAiB,CAAC;IACpB,OAAO,KAAK,UAAU,8BAA8B,CAClD,GAAgB;QAEhB,MAAM,WAAW,GAA+B,iBAAiB,EAAE,CAAC;QACpE,MAAM,aAAa,GAAgB,cAAc,EAAE,CAAC;QACpD,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC;aACrC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,YAAY,CAAC;aAC/B,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC3B,IAAI,OAAO,IAAI,KAAK,UAAU,EAAE,CAAC;YAC/B,MAAM,IAAI,SAAS,CAAC,mCAAmC,CAAC,CAAC;QAC3D,CAAC;QAED,MAAM,aAAa,GAAkC,EAAE,CAAC;QAExD,4CAA4C;QAC5C,IAAI,aAAa,KAAK,wBAAwB,EAAE,CAAC;YAC/C,MAAM,oBAAoB,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAC1C,sBAAsB,CAAC,wBAAwB,CAAC,CACjD,CAAC;YACF,IACE,OAAO,oBAAoB,EAAE,KAAK,KAAK,QAAQ;gBAC/C,oBAAoB,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE;gBACtC,iBAAiB,CAAC,oBAAoB,CAAC,KAAK,CAAC;oBAC3C,wBAAwB,EAC1B,CAAC;gBACD,aAAa,CAAC,IAAI,CAAC;oBACjB,UAAU,EAAE,2BAA2B;oBACvC,IAAI,EAAE,SAAS;oBACf,KAAK,EAAE,oBAAoB,CAAC,KAAsB;iBACnD,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,IAAI,CACV,yEAAyE,CAC1E,CAAC;YACJ,CAAC;QACH,CAAC;QAED,8CAA8C;QAC9C,gHAAgH;QAChH,MAAM,CAAC,KAAK,UAAU,wCAAwC;YAC5D,MAAM,wBAAwB,GAC5B,qBAAqB,CAAC,aAAa,CAAC,CAAC;YACvC,MAAM,mBAAmB,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;YACtE,IACE,OAAO,mBAAmB,EAAE,KAAK,KAAK,QAAQ;gBAC9C,mBAAmB,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE;gBACrC,iBAAiB,CAAC,mBAAmB,CAAC,KAAK,CAAC,IAAI,wBAAwB,EACxE,CAAC;gBACD,IAAI,UAAU,GAAkB,IAAI,CAAC;gBACrC,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,MAAM,qBAAqB,CAAC,cAAc,CACvD,IAAI,CAAC,KAAK,CAAC,mBAAmB,CAAC,KAAK,CAAC,CACtC,CAAC;oBACF,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;wBACpB,MAAM,MAAM,CAAC,KAAK,CAAC;oBACrB,CAAC;oBACD,MAAM,0BAA0B,GAAgB,MAAM,CAAC,IAAI,CAAC;oBAC5D,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,0BAA0B,CAAC,GAAG,EAAE,CAAC;wBAChD,UAAU,GAAG,0BAA0B,CAAC,KAAK,CAAC;oBAChD,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,0BAA0B;oBAC1B,UAAU,GAAG,mBAAmB,CAAC,KAAK,CAAC;gBACzC,CAAC;gBACD,IAAI,UAAU,EAAE,CAAC;oBACf,aAAa,CAAC,IAAI,CAAC;wBACjB,UAAU,EAAE,6BAA6B,wBAAwB,GAAG;wBACpE,IAAI,EAAE,QAAQ;wBACd,KAAK,EAAE,UAAU;qBAClB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC,CAAC,EAAE,CAAC;QAEL,8CAA8C;QAC9C,CAAC,SAAS,4CAA4C;YACpD,IACE,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;gBAChC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,EAChC,CAAC;gBACD,MAAM,WAAW,GACf,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;gBACvE,IAAI,CAAC,WAAW,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE,CAAC;oBACpD,MAAM,IAAI,KAAK,CACb,yDAAyD,CAC1D,CAAC;gBACJ,CAAC;gBACD,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;oBACvC,MAAM,IAAI,KAAK,CACb,yDAAyD,CAC1D,CAAC;gBACJ,CAAC;gBACD,MAAM,wBAAwB,GAC5B,OAAO,WAAW,KAAK,QAAQ,IAAI,WAAW,CAAC,UAAU,CAAC,SAAS,CAAC;oBAClE,CAAC,CAAC,WAAW,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC;oBACrC,CAAC,CAAC,EAAE,CAAC;gBACT,IAAI,CAAC,wBAAwB,EAAE,CAAC;oBAC9B,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;gBACjE,CAAC;gBACD,aAAa,CAAC,IAAI,CAAC;oBACjB,UAAU,EAAE,+CAA+C;oBAC3D,IAAI,EAAE,QAAQ;oBACd,KAAK,EAAE,wBAAyC;iBACjD,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,EAAE,CAAC;QAEL,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;YAC9D,OAAO,IAAI,CACT;gBACE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,IAAI;gBACX,OAAO,EAAE,2DAA2D;aACrE,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAgB,MAAM,IAAI,iBAAiB,CAAC;YAC3D,WAAW;YACX,cAAc,EAAE,aAAa,KAAK,wBAAwB;YAC1D,gBAAgB;SACjB,CAAC,CAAC,2BAA2B,CAC5B,gBAAgB,EAChB,aAAa,EACb,aAAa,CACd,CAAC;QAEF,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;YACtB,OAAO,IAAI,CACT;gBACE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,IAAI;gBACX,OAAO,EAAE,qCAAqC;aAC/C,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;QACJ,CAAC;QACD,MAAM,IAAI,GAAa,WAAW,CAAC,IAAI,CAAC;QAExC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,kBAAkB,CAAC,EAAE,CAAC;YACnD,OAAO,IAAI,CACT;gBACE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,IAAI;gBACX,OAAO,EACL,qEAAqE;aACxE,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,WAAW,CAAC,eAAe,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;YACxD,OAAO,IAAI,CACT;gBACE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,IAAI;gBACX,OAAO,EAAE,uBAAuB;aACjC,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;QACJ,CAAC;QAED,MAAM,kBAAkB,GACtB,WAAW,CAAC,kBAAkB,CAAC;QAEjC,MAAM,qBAAqB,GAA8C;YACvE,GAAG;YACH,IAAI;YACJ,WAAW;YACX,kBAAkB;SACnB,CAAC;QAEF,MAAM,kBAAkB,GACtB,OAAO,kCAAkC,KAAK,QAAQ;YACtD,kCAAkC;YAChC,CAAC,CAAE;gBACC,GAAG,qBAAqB;gBACxB,GAAG,kCAAkC;aACV;YAC/B,CAAC,CAAE,qBAAiD,CAAC;QAEzD,IAAI,OAAO,0BAA0B,KAAK,UAAU,EAAE,CAAC;YACrD,IAAI,aAAa,GAAY,KAAK,CAAC;YACnC,IAAI,CAAC;gBACH,aAAa,GAAG,MAAM,0BAA0B,CAAC,kBAAkB,CAAC,CAAC;YACvE,CAAC;YAAC,OAAO,CAAU,EAAE,CAAC;gBACpB,OAAO,CAAC,KAAK,CAAC,iDAAiD,EAAE,CAAC,CAAC,CAAC;gBACpE,OAAO,IAAI,CACT;oBACE,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,IAAI;oBACX,OAAO,EAAE,2CAA2C;iBACrD,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;YACJ,CAAC;YACD,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,OAAO,IAAI,CACT;oBACE,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,IAAI;oBACX,OAAO,EAAE,uBAAuB;iBACjC,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,CAAC,MAAM,qBAAqB,CACjC,kBAAkB,CACnB,CAAwB,CAAC;IAC5B,CAAC,CAAC;AACJ,CAAC;AAED,eAAe,8BAA8B,CAAC"}

package/dist/route_guards/withAuthenticatedRouteGuard/withAuthenticatedServerComponentRouteGuard.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { type ApiServerId } from "@schemavaults/app-definitions";
+import type { ReactElement } from "react";
+import type { IJwtKeyManager } from "../../JwtKeyManager";
+import type { IBaseProtectedAuthenticatedServerComponentPageProps } from "./IBaseProtectedAuthenticatedServerComponentPageProps";
+export type TProtectedAuthenticatedPageServerComponent<TProps extends IBaseProtectedAuthenticatedServerComponentPageProps> = (props: TProps) => Promise<ReactElement>;
+type TAdditionalProps<TProps extends IBaseProtectedAuthenticatedServerComponentPageProps> = Omit<TProps, keyof IBaseProtectedAuthenticatedServerComponentPageProps>;
+export declare function withAuthenticatedServerComponentRouteGuard<TProps extends IBaseProtectedAuthenticatedServerComponentPageProps>(server_component: TProtectedAuthenticatedPageServerComponent<TProps>, additional_custom_server_component_props?: TAdditionalProps<TProps> | undefined, route_guard_type?: "authenticated" | "admin", custom_is_authorized_check?: ((props: TProps) => Promise<boolean>) | undefined, jwt_keys_manager?: IJwtKeyManager, getApiServerId?: () => ApiServerId): Promise<ReactElement>;
+export default withAuthenticatedServerComponentRouteGuard;

package/dist/route_guards/withAuthenticatedRouteGuard/withAuthenticatedServerComponentRouteGuard.js ADDED Viewed

@@ -0,0 +1,112 @@
+import { SCHEMAVAULTS_AUTH_APP_ID, getAppEnvironment, } from "@schemavaults/app-definitions";
+import { redirectWithError } from "../../redirect-with-error";
+import RouteGuardFactory from "../../route_guards/route-guard-factory";
+import { AccessTokenCookieName } from "../../AccessTokenCookieNames";
+import { RefreshTokenCookieName } from "../../RefreshTokenCookieNames";
+import getSchemavaultsApiServerId from "../../get-schemavaults-api-server-id";
+import redirectToLogin from "../../redirect-to-login";
+import assertValidRouteGuardType from "../../route_guards/assertValidRouteGuardType";
+import initDefaultJwtKeyManagerForAuthenticatedRouteGuard from "./initDefaultJwtKeyManagerForAuthenticatedRouteGuard";
+export async function withAuthenticatedServerComponentRouteGuard(server_component, additional_custom_server_component_props = undefined, route_guard_type = "authenticated", custom_is_authorized_check = undefined, jwt_keys_manager = initDefaultJwtKeyManagerForAuthenticatedRouteGuard(), getApiServerId = getSchemavaultsApiServerId) {
+    assertValidRouteGuardType(route_guard_type);
+    const environment = getAppEnvironment();
+    const api_server_id = getApiServerId();
+    const [loadCookies, redirect] = await Promise.all([
+        import("next/headers").then((mod) => mod.cookies),
+        import("next/navigation").then((mod) => mod.redirect),
+    ]);
+    if (typeof loadCookies !== "function") {
+        throw new TypeError("Expected 'loadCookies' to be a function");
+    }
+    else if (typeof redirect !== "function") {
+        throw new TypeError("Expected 'redirect' to be a function");
+    }
+    const cookies = await loadCookies();
+    if (!("get" in cookies) || typeof cookies.get !== "function") {
+        throw new TypeError("Expected 'cookies' to be a RequestCookies object with a 'get' method!");
+    }
+    const token_sources = [];
+    // Load Refresh Token for Auth Server
+    if (api_server_id === SCHEMAVAULTS_AUTH_APP_ID) {
+        const refresh_token_cookie = cookies.get(RefreshTokenCookieName(SCHEMAVAULTS_AUTH_APP_ID));
+        if (typeof refresh_token_cookie?.value === "string") {
+            token_sources.push({
+                sourceHint: "Auth Server Refresh Token",
+                type: "refresh",
+                token: refresh_token_cookie.value,
+            });
+        }
+    }
+    // Load Access Token from designated cookie for current server
+    const access_token_cookie_name = AccessTokenCookieName(api_server_id);
+    const access_token_cookie = cookies.get(access_token_cookie_name);
+    if (typeof access_token_cookie?.value === "string" &&
+        access_token_cookie.value.length > 64) {
+        let jwt_string = null;
+        try {
+            const parsed = JSON.parse(access_token_cookie.value);
+            if (parsed && typeof parsed.token === "string") {
+                jwt_string = parsed.token;
+            }
+        }
+        catch {
+            // Raw JWT string fallback
+            jwt_string = access_token_cookie.value;
+        }
+        if (jwt_string) {
+            token_sources.push({
+                sourceHint: `Access Token from cookie '${access_token_cookie_name}'`,
+                type: "access",
+                token: jwt_string,
+            });
+        }
+    }
+    if (token_sources.length === 0) {
+        redirectToLogin(redirect);
+    }
+    const route_guard_factory = new RouteGuardFactory({
+        environment,
+        is_auth_server: api_server_id === SCHEMAVAULTS_AUTH_APP_ID,
+        jwt_keys_manager,
+    });
+    const route_guard = await route_guard_factory.createGuardFromTokenSources(route_guard_type, token_sources, api_server_id);
+    if (!route_guard.user) {
+        redirectToLogin(redirect);
+    }
+    const user = route_guard.user;
+    if (!route_guard.isAccessAllowed()) {
+        redirectWithError(redirect, 403, "forbidden");
+    }
+    if (typeof server_component !== "function") {
+        throw new TypeError("Expected 'server_component' passed to withAuthenticatedServerComponentRouteGuard to be a function");
+    }
+    const ProtectedAuthenticatedPageServerComponent = server_component;
+    const base_server_component_props = {
+        user,
+        environment,
+        user_organizations: route_guard.user_organizations,
+    };
+    const final_server_component_props = typeof additional_custom_server_component_props === "object" &&
+        additional_custom_server_component_props
+        ? {
+            ...base_server_component_props,
+            ...additional_custom_server_component_props,
+        }
+        : base_server_component_props;
+    if (typeof custom_is_authorized_check === "function") {
+        let is_authorized = false;
+        try {
+            is_authorized = await custom_is_authorized_check(final_server_component_props);
+        }
+        catch (e) {
+            console.error("Error in 'custom_is_authorized_check' handler: ", e);
+            redirectWithError(redirect, 500, "internal_server_error");
+        }
+        if (!is_authorized) {
+            redirectWithError(redirect, 403, "forbidden");
+        }
+    }
+    return (await ProtectedAuthenticatedPageServerComponent(final_server_component_props));
+}
+export default withAuthenticatedServerComponentRouteGuard;
+//# sourceMappingURL=withAuthenticatedServerComponentRouteGuard.js.map

package/dist/route_guards/withAuthenticatedRouteGuard/withAuthenticatedServerComponentRouteGuard.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"withAuthenticatedServerComponentRouteGuard.js","sourceRoot":"","sources":["../../../src/route_guards/withAuthenticatedRouteGuard/withAuthenticatedServerComponentRouteGuard.ts"],"names":[],"mappings":"AAAA,OAAO,EAEL,wBAAwB,EAExB,iBAAiB,GAClB,MAAM,+BAA+B,CAAC;AAOvC,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAC1D,OAAO,iBAAiB,MAAM,oCAAoC,CAAC;AACnE,OAAO,EAAE,qBAAqB,EAAE,MAAM,0BAA0B,CAAC;AACjE,OAAO,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AACnE,OAAO,0BAA0B,MAAM,kCAAkC,CAAC;AAE1E,OAAO,eAAe,MAAM,qBAAqB,CAAC;AAClD,OAAO,yBAAyB,MAAM,0CAA0C,CAAC;AAEjF,OAAO,kDAAkD,MAAM,sDAAsD,CAAC;AActH,MAAM,CAAC,KAAK,UAAU,0CAA0C,CAG9D,gBAAoE,EACpE,2CAEgB,SAAS,EACzB,mBAA8C,eAAe,EAC7D,6BAEgB,SAAS,EACzB,mBAAmC,kDAAkD,EAAE,EACvF,iBAAoC,0BAA0B;IAE9D,yBAAyB,CAAC,gBAAgB,CAAC,CAAC;IAE5C,MAAM,WAAW,GAA+B,iBAAiB,EAAE,CAAC;IACpE,MAAM,aAAa,GAAgB,cAAc,EAAE,CAAC;IACpD,MAAM,CAAC,WAAW,EAAE,QAAQ,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;QAChD,MAAM,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC;QACjD,MAAM,CAAC,iBAAiB,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,QAAQ,CAAC;KACtD,CAAC,CAAC;IACH,IAAI,OAAO,WAAW,KAAK,UAAU,EAAE,CAAC;QACtC,MAAM,IAAI,SAAS,CAAC,yCAAyC,CAAC,CAAC;IACjE,CAAC;SAAM,IAAI,OAAO,QAAQ,KAAK,UAAU,EAAE,CAAC;QAC1C,MAAM,IAAI,SAAS,CAAC,sCAAsC,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,OAAO,GAAmB,MAAM,WAAW,EAAE,CAAC;IACpD,IAAI,CAAC,CAAC,KAAK,IAAI,OAAO,CAAC,IAAI,OAAO,OAAO,CAAC,GAAG,KAAK,UAAU,EAAE,CAAC;QAC7D,MAAM,IAAI,SAAS,CACjB,uEAAuE,CACxE,CAAC;IACJ,CAAC;IAED,MAAM,aAAa,GAAkC,EAAE,CAAC;IAExD,qCAAqC;IACrC,IAAI,aAAa,KAAK,wBAAwB,EAAE,CAAC;QAC/C,MAAM,oBAAoB,GAAG,OAAO,CAAC,GAAG,CACtC,sBAAsB,CAAC,wBAAwB,CAAC,CACjD,CAAC;QACF,IAAI,OAAO,oBAAoB,EAAE,KAAK,KAAK,QAAQ,EAAE,CAAC;YACpD,aAAa,CAAC,IAAI,CAAC;gBACjB,UAAU,EAAE,2BAA2B;gBACvC,IAAI,EAAE,SAAS;gBACf,KAAK,EAAE,oBAAoB,CAAC,KAAK;aAClC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,8DAA8D;IAC9D,MAAM,wBAAwB,GAAW,qBAAqB,CAAC,aAAa,CAAC,CAAC;IAC9E,MAAM,mBAAmB,GAAG,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;IAClE,IACE,OAAO,mBAAmB,EAAE,KAAK,KAAK,QAAQ;QAC9C,mBAAmB,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE,EACrC,CAAC;QACD,IAAI,UAAU,GAAkB,IAAI,CAAC;QACrC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC;YACrD,IAAI,MAAM,IAAI,OAAO,MAAM,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAC/C,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC;YAC5B,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,0BAA0B;YAC1B,UAAU,GAAG,mBAAmB,CAAC,KAAK,CAAC;QACzC,CAAC;QACD,IAAI,UAAU,EAAE,CAAC;YACf,aAAa,CAAC,IAAI,CAAC;gBACjB,UAAU,EAAE,6BAA6B,wBAAyC,GAAG;gBACrF,IAAI,EAAE,QAAQ;gBACd,KAAK,EAAE,UAAU;aAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC/B,eAAe,CAAC,QAAQ,CAAC,CAAC;IAC5B,CAAC;IAED,MAAM,mBAAmB,GAAG,IAAI,iBAAiB,CAAC;QAChD,WAAW;QACX,cAAc,EAAE,aAAa,KAAK,wBAAwB;QAC1D,gBAAgB;KACjB,CAAC,CAAC;IACH,MAAM,WAAW,GACf,MAAM,mBAAmB,CAAC,2BAA2B,CACnD,gBAAgB,EAChB,aAAa,EACb,aAAa,CACd,CAAC;IAEJ,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;QACtB,eAAe,CAAC,QAAQ,CAAC,CAAC;IAC5B,CAAC;IACD,MAAM,IAAI,GAAa,WAAW,CAAC,IAAI,CAAC;IAExC,IAAI,CAAC,WAAW,CAAC,eAAe,EAAE,EAAE,CAAC;QACnC,iBAAiB,CAAC,QAAQ,EAAE,GAAG,EAAE,WAAW,CAAC,CAAC;IAChD,CAAC;IAED,IAAI,OAAO,gBAAgB,KAAK,UAAU,EAAE,CAAC;QAC3C,MAAM,IAAI,SAAS,CACjB,mGAAmG,CACpG,CAAC;IACJ,CAAC;IACD,MAAM,yCAAyC,GAAG,gBAAgB,CAAC;IAEnE,MAAM,2BAA2B,GAC/B;QACE,IAAI;QACJ,WAAW;QACX,kBAAkB,EAAE,WAAW,CAAC,kBAAkB;KACnD,CAAC;IAEJ,MAAM,4BAA4B,GAChC,OAAO,wCAAwC,KAAK,QAAQ;QAC5D,wCAAwC;QACtC,CAAC,CAAE;YACC,GAAG,2BAA2B;YAC9B,GAAG,wCAAwC;SACtB;QACzB,CAAC,CAAE,2BAAiD,CAAC;IAEzD,IAAI,OAAO,0BAA0B,KAAK,UAAU,EAAE,CAAC;QACrD,IAAI,aAAa,GAAY,KAAK,CAAC;QACnC,IAAI,CAAC;YACH,aAAa,GAAG,MAAM,0BAA0B,CAC9C,4BAA4B,CAC7B,CAAC;QACJ,CAAC;QAAC,OAAO,CAAU,EAAE,CAAC;YACpB,OAAO,CAAC,KAAK,CAAC,iDAAiD,EAAE,CAAC,CAAC,CAAC;YACpE,iBAAiB,CAAC,QAAQ,EAAE,GAAG,EAAE,uBAAuB,CAAC,CAAC;QAC5D,CAAC;QACD,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,iBAAiB,CAAC,QAAQ,EAAE,GAAG,EAAE,WAAW,CAAC,CAAC;QAChD,CAAC;IACH,CAAC;IAED,OAAO,CAAC,MAAM,yCAAyC,CACrD,4BAA4B,CAC7B,CAAwB,CAAC;AAC5B,CAAC;AAED,eAAe,0CAA0C,CAAC"}

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@schemavaults/auth-server-sdk",
   "description": "TypeScript SDK for building authenticated endpoints/middlewares for the Auth Server and Resource Servers",
-  "version": "0.21.4",
+  "version": "0.21.5",
   "license": "UNLICENSED",
   "private": false,
   "repository": {

package/dist/route_guards/withAdminRouteGuard.d.ts DELETED Viewed

@@ -1,8 +0,0 @@
-import { type ApiServerId } from "@schemavaults/app-definitions";
-import { type TProtectedAuthenticatedApiRoute, type IBaseProtectedAuthenticatedServerComponentPageProps, type TProtectedAuthenticatedPageServerComponent } from "./withAuthenticatedRouteGuard";
-import type { ReactElement } from "react";
-import type { NextRequest, NextResponse } from "next/server";
-import type { IJwtKeyManager } from "../JwtKeyManager";
-export declare function withAdminServerComponentRouteGuard<TAdditionalCustomProps extends object>(server_component: TProtectedAuthenticatedPageServerComponent<TAdditionalCustomProps>, additional_custom_server_component_props: TAdditionalCustomProps, custom_is_authorized_check?: ((props: IBaseProtectedAuthenticatedServerComponentPageProps & TAdditionalCustomProps) => Promise<boolean>) | undefined, jwt_keys_manager?: IJwtKeyManager, getApiServerId?: () => ApiServerId): Promise<ReactElement>;
-export declare function withAdminApiRouteGuard<TAdditionalCustomRouteInputs extends object>(api_route_handler: TProtectedAuthenticatedApiRoute<TAdditionalCustomRouteInputs>, additional_custom_api_route_inputs: TAdditionalCustomRouteInputs, custom_is_authorized_check?: ((route_inputs: IBaseProtectedAuthenticatedServerComponentPageProps & TAdditionalCustomRouteInputs) => Promise<boolean>) | undefined, jwt_keys_manager?: IJwtKeyManager, getApiServerId?: () => ApiServerId): (req: NextRequest) => Promise<NextResponse>;
-export type { TProtectedAuthenticatedPageServerComponent as TProtectedAdminPageServerComponent, TProtectedAuthenticatedApiRoute as TProtectedAdminApiRoute, IBaseProtectedAuthenticatedServerComponentPageProps as IBaseProtectedAdminServerComponentPageProps, IBaseProtectedAuthenticatedApiRouteInputs as IBaseProtectedAdminApiRouteInputs, } from "./withAuthenticatedRouteGuard";

package/dist/route_guards/withAdminRouteGuard.js DELETED Viewed

@@ -1,9 +0,0 @@
-import { initDefaultJwtKeyManagerForAuthenticatedRouteGuard, withAuthenticatedServerComponentRouteGuard, withAuthenticatedApiRouteGuard, } from "./withAuthenticatedRouteGuard";
-import getSchemavaultsApiServerId from "../get-schemavaults-api-server-id";
-export async function withAdminServerComponentRouteGuard(server_component, additional_custom_server_component_props, custom_is_authorized_check = async (props) => props.user.admin === true, jwt_keys_manager = initDefaultJwtKeyManagerForAuthenticatedRouteGuard(), getApiServerId = getSchemavaultsApiServerId) {
-    return await withAuthenticatedServerComponentRouteGuard(server_component, additional_custom_server_component_props, "admin", custom_is_authorized_check, jwt_keys_manager, getApiServerId);
-}
-export function withAdminApiRouteGuard(api_route_handler, additional_custom_api_route_inputs, custom_is_authorized_check = async (inputs) => inputs.user.admin === true, jwt_keys_manager = initDefaultJwtKeyManagerForAuthenticatedRouteGuard(), getApiServerId = getSchemavaultsApiServerId) {
-    return withAuthenticatedApiRouteGuard(api_route_handler, additional_custom_api_route_inputs, "admin", custom_is_authorized_check, jwt_keys_manager, getApiServerId);
-}
-//# sourceMappingURL=withAdminRouteGuard.js.map

package/dist/route_guards/withAdminRouteGuard.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"withAdminRouteGuard.js","sourceRoot":"","sources":["../../src/route_guards/withAdminRouteGuard.ts"],"names":[],"mappings":"AACA,OAAO,EACL,kDAAkD,EAElD,0CAA0C,EAC1C,8BAA8B,GAG/B,MAAM,+BAA+B,CAAC;AAGvC,OAAO,0BAA0B,MAAM,kCAAkC,CAAC;AAG1E,MAAM,CAAC,KAAK,UAAU,kCAAkC,CAGtD,gBAAoF,EACpF,wCAAgE,EAChE,6BAKgB,KAAK,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,KAAK,IAAI,EAC1D,mBAAmC,kDAAkD,EAAE,EACvF,iBAAoC,0BAA0B;IAE9D,OAAO,MAAM,0CAA0C,CACrD,gBAAgB,EAChB,wCAAwC,EACxC,OAAO,EACP,0BAA0B,EAC1B,gBAAgB,EAChB,cAAc,CACf,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,sBAAsB,CAGpC,iBAAgF,EAChF,kCAAgE,EAChE,6BAKgB,KAAK,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,KAAK,IAAI,EAC5D,mBAAmC,kDAAkD,EAAE,EACvF,iBAAoC,0BAA0B;IAE9D,OAAO,8BAA8B,CACnC,iBAAiB,EACjB,kCAAkC,EAClC,OAAO,EACP,0BAA0B,EAC1B,gBAAgB,EAChB,cAAc,CACf,CAAC;AACJ,CAAC"}

package/dist/route_guards/withAuthenticatedRouteGuard.d.ts DELETED Viewed

@@ -1,18 +0,0 @@
-import { type ApiServerId, type SchemaVaultsAppEnvironment } from "@schemavaults/app-definitions";
-import { type OrganizationID, type UserData } from "@schemavaults/auth-common";
-import type { ReactElement } from "react";
-import type { NextRequest, NextResponse } from "next/server";
-import { type IJwtKeyManager } from "../JwtKeyManager";
-export interface IBaseProtectedAuthenticatedServerComponentPageProps {
-    user: UserData;
-    user_organizations: readonly OrganizationID[];
-    environment: SchemaVaultsAppEnvironment;
-}
-export type TProtectedAuthenticatedPageServerComponent<TAdditionalCustomProps extends object> = (props: IBaseProtectedAuthenticatedServerComponentPageProps & TAdditionalCustomProps) => Promise<ReactElement>;
-export interface IBaseProtectedAuthenticatedApiRouteInputs extends IBaseProtectedAuthenticatedServerComponentPageProps {
-    req: NextRequest;
-}
-export type TProtectedAuthenticatedApiRoute<TAdditionalCustomRouteInputs extends object> = (route_inputs: TAdditionalCustomRouteInputs & IBaseProtectedAuthenticatedApiRouteInputs) => Promise<NextResponse>;
-export declare function initDefaultJwtKeyManagerForAuthenticatedRouteGuard(debug?: boolean): IJwtKeyManager;
-export declare function withAuthenticatedServerComponentRouteGuard<TAdditionalCustomProps extends object>(server_component: TProtectedAuthenticatedPageServerComponent<TAdditionalCustomProps>, additional_custom_server_component_props: TAdditionalCustomProps, route_guard_type?: "authenticated" | "admin", custom_is_authorized_check?: ((props: IBaseProtectedAuthenticatedServerComponentPageProps & TAdditionalCustomProps) => Promise<boolean>) | undefined, jwt_keys_manager?: IJwtKeyManager, getApiServerId?: () => ApiServerId): Promise<ReactElement>;
-export declare function withAuthenticatedApiRouteGuard<TAdditionalCustomRouteInputs extends object>(api_route_handler: TProtectedAuthenticatedApiRoute<TAdditionalCustomRouteInputs>, additional_custom_api_route_inputs: TAdditionalCustomRouteInputs, route_guard_type?: "authenticated" | "admin", custom_is_authorized_check?: ((route_inputs: IBaseProtectedAuthenticatedApiRouteInputs & TAdditionalCustomRouteInputs) => Promise<boolean>) | undefined, jwt_keys_manager?: IJwtKeyManager, getApiServerId?: () => ApiServerId): (req: NextRequest) => Promise<NextResponse>;

package/dist/route_guards/withAuthenticatedRouteGuard.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"withAuthenticatedRouteGuard.js","sourceRoot":"","sources":["../../src/route_guards/withAuthenticatedRouteGuard.ts"],"names":[],"mappings":"AAAA,OAAO,EAEL,wBAAwB,EAExB,iBAAiB,GAClB,MAAM,+BAA+B,CAAC;AACvC,OAAO,EAEL,qBAAqB,GAItB,MAAM,2BAA2B,CAAC;AAGnC,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAC1D,OAAO,iBAAiB,MAAM,uBAAuB,CAAC;AAEtD,OAAO,iBAAiB,MAAM,qBAAqB,CAAC;AACpD,OAAO,wBAAwB,MAAM,4BAA4B,CAAC;AAClE,OAAO,EAAE,qBAAqB,EAAE,MAAM,0BAA0B,CAAC;AACjE,OAAO,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AACnE,OAAO,0BAA0B,MAAM,kCAAkC,CAAC;AAC1E,OAAO,EAAE,mBAAmB,EAAuB,MAAM,iBAAiB,CAAC;AAC3E,OAAO,eAAe,MAAM,qBAAqB,CAAC;AAClD,OAAO,yBAAyB,MAAM,6BAA6B,CAAC;AACpE,OAAO,4BAA4B,MAAM,oCAAoC,CAAC;AA+B9E,iIAAiI;AACjI,MAAM,UAAU,kDAAkD,CAChE,QAAiB,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,aAAa;IAEvD,OAAO,IAAI,mBAAmB,CAAC;QAC7B,eAAe,EAAE,4BAA4B,EAAE;QAC/C,KAAK;KACN,CAAC,CAAC;AACL,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,0CAA0C,CAG9D,gBAAoF,EACpF,wCAAgE,EAChE,mBAA8C,eAAe,EAC7D,6BAKgB,SAAS,EACzB,mBAAmC,kDAAkD,EAAE,EACvF,iBAAoC,0BAA0B;IAE9D,yBAAyB,CAAC,gBAAgB,CAAC,CAAC;IAE5C,MAAM,WAAW,GAA+B,iBAAiB,EAAE,CAAC;IACpE,MAAM,aAAa,GAAgB,cAAc,EAAE,CAAC;IACpD,MAAM,CAAC,WAAW,EAAE,QAAQ,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;QAChD,MAAM,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC;QACjD,MAAM,CAAC,iBAAiB,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,QAAQ,CAAC;KACtD,CAAC,CAAC;IACH,IAAI,OAAO,WAAW,KAAK,UAAU,EAAE,CAAC;QACtC,MAAM,IAAI,SAAS,CAAC,yCAAyC,CAAC,CAAC;IACjE,CAAC;SAAM,IAAI,OAAO,QAAQ,KAAK,UAAU,EAAE,CAAC;QAC1C,MAAM,IAAI,SAAS,CAAC,sCAAsC,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,OAAO,GAAmB,MAAM,WAAW,EAAE,CAAC;IACpD,IAAI,CAAC,CAAC,KAAK,IAAI,OAAO,CAAC,IAAI,OAAO,OAAO,CAAC,GAAG,KAAK,UAAU,EAAE,CAAC;QAC7D,MAAM,IAAI,SAAS,CACjB,uEAAuE,CACxE,CAAC;IACJ,CAAC;IAED,MAAM,aAAa,GAAkC,EAAE,CAAC;IAExD,qCAAqC;IACrC,IAAI,aAAa,KAAK,wBAAwB,EAAE,CAAC;QAC/C,MAAM,oBAAoB,GAAG,OAAO,CAAC,GAAG,CACtC,sBAAsB,CAAC,wBAAwB,CAAC,CACjD,CAAC;QACF,IAAI,OAAO,oBAAoB,EAAE,KAAK,KAAK,QAAQ,EAAE,CAAC;YACpD,aAAa,CAAC,IAAI,CAAC;gBACjB,UAAU,EAAE,2BAA2B;gBACvC,IAAI,EAAE,SAAS;gBACf,KAAK,EAAE,oBAAoB,CAAC,KAAK;aAClC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,8DAA8D;IAC9D,MAAM,wBAAwB,GAAW,qBAAqB,CAAC,aAAa,CAAC,CAAC;IAC9E,MAAM,mBAAmB,GAAG,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;IAClE,IACE,OAAO,mBAAmB,EAAE,KAAK,KAAK,QAAQ;QAC9C,mBAAmB,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE,EACrC,CAAC;QACD,IAAI,UAAU,GAAkB,IAAI,CAAC;QACrC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC;YACrD,IAAI,MAAM,IAAI,OAAO,MAAM,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAC/C,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC;YAC5B,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,0BAA0B;YAC1B,UAAU,GAAG,mBAAmB,CAAC,KAAK,CAAC;QACzC,CAAC;QACD,IAAI,UAAU,EAAE,CAAC;YACf,aAAa,CAAC,IAAI,CAAC;gBACjB,UAAU,EAAE,6BAA6B,wBAAyC,GAAG;gBACrF,IAAI,EAAE,QAAQ;gBACd,KAAK,EAAE,UAAU;aAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC/B,eAAe,CAAC,QAAQ,CAAC,CAAC;IAC5B,CAAC;IAED,MAAM,mBAAmB,GAAG,IAAI,iBAAiB,CAAC;QAChD,WAAW;QACX,cAAc,EAAE,aAAa,KAAK,wBAAwB;QAC1D,gBAAgB;KACjB,CAAC,CAAC;IACH,MAAM,WAAW,GACf,MAAM,mBAAmB,CAAC,2BAA2B,CACnD,gBAAgB,EAChB,aAAa,EACb,aAAa,CACd,CAAC;IAEJ,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;QACtB,eAAe,CAAC,QAAQ,CAAC,CAAC;IAC5B,CAAC;IACD,MAAM,IAAI,GAAa,WAAW,CAAC,IAAI,CAAC;IAExC,IAAI,CAAC,WAAW,CAAC,eAAe,EAAE,EAAE,CAAC;QACnC,iBAAiB,CAAC,QAAQ,EAAE,GAAG,EAAE,WAAW,CAAC,CAAC;IAChD,CAAC;IAED,IAAI,OAAO,gBAAgB,KAAK,UAAU,EAAE,CAAC;QAC3C,MAAM,IAAI,SAAS,CACjB,mGAAmG,CACpG,CAAC;IACJ,CAAC;IACD,MAAM,yCAAyC,GAAG,gBAAgB,CAAC;IAEnE,MAAM,2BAA2B,GAC/B;QACE,IAAI;QACJ,WAAW;QACX,kBAAkB,EAAE,WAAW,CAAC,kBAAkB;KACnD,CAAC;IAEJ,MAAM,sBAAsB,GACD;QACzB,GAAG,2BAA2B;QAC9B,GAAG,wCAAwC;KAC5C,CAAC;IAEF,IAAI,OAAO,0BAA0B,KAAK,UAAU,EAAE,CAAC;QACrD,IAAI,aAAa,GAAY,KAAK,CAAC;QACnC,IAAI,CAAC;YACH,aAAa,GAAG,MAAM,0BAA0B,CAAC,sBAAsB,CAAC,CAAC;QAC3E,CAAC;QAAC,OAAO,CAAU,EAAE,CAAC;YACpB,OAAO,CAAC,KAAK,CAAC,iDAAiD,EAAE,CAAC,CAAC,CAAC;YACpE,iBAAiB,CAAC,QAAQ,EAAE,GAAG,EAAE,uBAAuB,CAAC,CAAC;QAC5D,CAAC;QACD,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,iBAAiB,CAAC,QAAQ,EAAE,GAAG,EAAE,WAAW,CAAC,CAAC;QAChD,CAAC;IACH,CAAC;IAED,OAAO,CAAC,MAAM,yCAAyC,CACrD,sBAAsB,CACvB,CAAwB,CAAC;AAC5B,CAAC;AAED,MAAM,UAAU,8BAA8B,CAG5C,iBAAgF,EAChF,kCAAgE,EAChE,mBAA8C,eAAe,EAC7D,6BAKgB,SAAS,EACzB,mBAAmC,kDAAkD,EAAE,EACvF,iBAAoC,0BAA0B;IAE9D,yBAAyB,CAAC,gBAAgB,CAAC,CAAC;IAE5C,MAAM,qBAAqB,GACzB,iBAAiB,CAAC;IACpB,OAAO,KAAK,UAAU,8BAA8B,CAClD,GAAgB;QAEhB,MAAM,WAAW,GAA+B,iBAAiB,EAAE,CAAC;QACpE,MAAM,aAAa,GAAgB,cAAc,EAAE,CAAC;QACpD,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC;aACrC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,YAAY,CAAC;aAC/B,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC3B,IAAI,OAAO,IAAI,KAAK,UAAU,EAAE,CAAC;YAC/B,MAAM,IAAI,SAAS,CAAC,mCAAmC,CAAC,CAAC;QAC3D,CAAC;QAED,MAAM,aAAa,GAAkC,EAAE,CAAC;QAExD,4CAA4C;QAC5C,IAAI,aAAa,KAAK,wBAAwB,EAAE,CAAC;YAC/C,MAAM,oBAAoB,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAC1C,sBAAsB,CAAC,wBAAwB,CAAC,CACjD,CAAC;YACF,IACE,OAAO,oBAAoB,EAAE,KAAK,KAAK,QAAQ;gBAC/C,oBAAoB,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE;gBACtC,iBAAiB,CAAC,oBAAoB,CAAC,KAAK,CAAC;oBAC3C,wBAAwB,EAC1B,CAAC;gBACD,aAAa,CAAC,IAAI,CAAC;oBACjB,UAAU,EAAE,2BAA2B;oBACvC,IAAI,EAAE,SAAS;oBACf,KAAK,EAAE,oBAAoB,CAAC,KAAsB;iBACnD,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,IAAI,CACV,yEAAyE,CAC1E,CAAC;YACJ,CAAC;QACH,CAAC;QAED,8CAA8C;QAC9C,gHAAgH;QAChH,MAAM,CAAC,KAAK,UAAU,wCAAwC;YAC5D,MAAM,wBAAwB,GAC5B,qBAAqB,CAAC,aAAa,CAAC,CAAC;YACvC,MAAM,mBAAmB,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;YACtE,IACE,OAAO,mBAAmB,EAAE,KAAK,KAAK,QAAQ;gBAC9C,mBAAmB,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE;gBACrC,iBAAiB,CAAC,mBAAmB,CAAC,KAAK,CAAC,IAAI,wBAAwB,EACxE,CAAC;gBACD,IAAI,UAAU,GAAkB,IAAI,CAAC;gBACrC,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,MAAM,qBAAqB,CAAC,cAAc,CACvD,IAAI,CAAC,KAAK,CAAC,mBAAmB,CAAC,KAAK,CAAC,CACtC,CAAC;oBACF,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;wBACpB,MAAM,MAAM,CAAC,KAAK,CAAC;oBACrB,CAAC;oBACD,MAAM,0BAA0B,GAAgB,MAAM,CAAC,IAAI,CAAC;oBAC5D,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,0BAA0B,CAAC,GAAG,EAAE,CAAC;wBAChD,UAAU,GAAG,0BAA0B,CAAC,KAAK,CAAC;oBAChD,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,0BAA0B;oBAC1B,UAAU,GAAG,mBAAmB,CAAC,KAAK,CAAC;gBACzC,CAAC;gBACD,IAAI,UAAU,EAAE,CAAC;oBACf,aAAa,CAAC,IAAI,CAAC;wBACjB,UAAU,EAAE,6BAA6B,wBAAwB,GAAG;wBACpE,IAAI,EAAE,QAAQ;wBACd,KAAK,EAAE,UAAU;qBAClB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC,CAAC,EAAE,CAAC;QAEL,8CAA8C;QAC9C,CAAC,SAAS,4CAA4C;YACpD,IACE,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;gBAChC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,EAChC,CAAC;gBACD,MAAM,WAAW,GACf,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;gBACvE,IAAI,CAAC,WAAW,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE,CAAC;oBACpD,MAAM,IAAI,KAAK,CACb,yDAAyD,CAC1D,CAAC;gBACJ,CAAC;gBACD,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;oBACvC,MAAM,IAAI,KAAK,CACb,yDAAyD,CAC1D,CAAC;gBACJ,CAAC;gBACD,MAAM,wBAAwB,GAC5B,OAAO,WAAW,KAAK,QAAQ,IAAI,WAAW,CAAC,UAAU,CAAC,SAAS,CAAC;oBAClE,CAAC,CAAC,WAAW,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC;oBACrC,CAAC,CAAC,EAAE,CAAC;gBACT,IAAI,CAAC,wBAAwB,EAAE,CAAC;oBAC9B,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;gBACjE,CAAC;gBACD,aAAa,CAAC,IAAI,CAAC;oBACjB,UAAU,EAAE,+CAA+C;oBAC3D,IAAI,EAAE,QAAQ;oBACd,KAAK,EAAE,wBAAyC;iBACjD,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,EAAE,CAAC;QAEL,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;YAC9D,OAAO,IAAI,CACT;gBACE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,IAAI;gBACX,OAAO,EAAE,2DAA2D;aACrE,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAgB,MAAM,IAAI,iBAAiB,CAAC;YAC3D,WAAW;YACX,cAAc,EAAE,aAAa,KAAK,wBAAwB;YAC1D,gBAAgB;SACjB,CAAC,CAAC,2BAA2B,CAC5B,gBAAgB,EAChB,aAAa,EACb,aAAa,CACd,CAAC;QAEF,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;YACtB,OAAO,IAAI,CACT;gBACE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,IAAI;gBACX,OAAO,EAAE,qCAAqC;aAC/C,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;QACJ,CAAC;QACD,MAAM,IAAI,GAAa,WAAW,CAAC,IAAI,CAAC;QAExC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,kBAAkB,CAAC,EAAE,CAAC;YACnD,OAAO,IAAI,CACT;gBACE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,IAAI;gBACX,OAAO,EACL,qEAAqE;aACxE,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,WAAW,CAAC,eAAe,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;YACxD,OAAO,IAAI,CACT;gBACE,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,IAAI;gBACX,OAAO,EAAE,uBAAuB;aACjC,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;QACJ,CAAC;QAED,MAAM,kBAAkB,GACtB,WAAW,CAAC,kBAAkB,CAAC;QAEjC,MAAM,qBAAqB,GAA8C;YACvE,GAAG;YACH,IAAI;YACJ,WAAW;YACX,kBAAkB;SACnB,CAAC;QAEF,MAAM,gBAAgB,GACW;YAC/B,GAAG,qBAAqB;YACxB,GAAG,kCAAkC;SACtC,CAAC;QAEF,IAAI,OAAO,0BAA0B,KAAK,UAAU,EAAE,CAAC;YACrD,IAAI,aAAa,GAAY,KAAK,CAAC;YACnC,IAAI,CAAC;gBACH,aAAa,GAAG,MAAM,0BAA0B,CAAC,gBAAgB,CAAC,CAAC;YACrE,CAAC;YAAC,OAAO,CAAU,EAAE,CAAC;gBACpB,OAAO,CAAC,KAAK,CAAC,iDAAiD,EAAE,CAAC,CAAC,CAAC;gBACpE,OAAO,IAAI,CACT;oBACE,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,IAAI;oBACX,OAAO,EAAE,2CAA2C;iBACrD,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;YACJ,CAAC;YACD,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,OAAO,IAAI,CACT;oBACE,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,IAAI;oBACX,OAAO,EAAE,uBAAuB;iBACjC,EACD,EAAE,MAAM,EAAE,GAAG,EAAE,CAChB,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,CAAC,MAAM,qBAAqB,CACjC,gBAAgB,CACjB,CAAwB,CAAC;IAC5B,CAAC,CAAC;AACJ,CAAC"}