@soulcraft/sdk 1.4.12 → 1.5.1

package/dist/modules/auth/middleware.d.ts

@@ -1,31 +1,41 @@
 /**
  * @module modules/auth/middleware
- * @description Hono auth middleware factories and remote session verification
- * for Soulcraft product backends.
+ * @description Hono auth middleware factories, remote session verification, and
+ * dev/guest session utilities for Soulcraft product backends.
  *
- * Provides framework-agnostic middleware that products mount in their Hono server
- * to authenticate requests against a better-auth instance (local or remote IdP).
+ * ## Session verification strategies
  *
- * The middleware pattern is product-agnostic — Workshop, Venue, and Academy all
- * use the same factories, passing their own `auth` instance. This replaces the
- * per-product copies of `requireAuth` / `optionalAuth` in Workshop's better-auth.ts.
+ * All products share the same `createAuthMiddleware` factory, but each product
+ * selects the right session verifier for its deployment context:
  *
- * ## Remote session verification
+ * ```
+ * Production (all products):
+ *   createRemoteSessionVerifier({ idpUrl: 'https://auth.soulcraft.com' })
+ *
+ * Development (all products):
+ *   createDevSessionVerifier({ role: 'owner' })   // auto-login, no OAuth needed
+ *
+ * Workshop standalone (legacy / local OAuth):
+ *   createAuthMiddleware(betterAuthInstance)       // BetterAuthLike overload
+ * ```
+ *
+ * ## Dev and guest endpoint factories
  *
- * `createRemoteSessionVerifier` is used by products that delegate authentication
- * to the central IdP (`auth.soulcraft.com`) but need to verify sessions without
- * running a full better-auth instance. It proxies the session lookup via HTTP with
- * an LRU cache to avoid per-request round-trips to the IdP.
+ * - `createDevLoginHandler` — mounts a `/api/dev/login` endpoint for role-switching
+ *   during development. Issues a signed dev session cookie. No-ops in production.
+ * - `createGuestSessionHandler` — mounts a `/api/guest/session` endpoint so Venue
+ *   visitors can obtain a guest session (platformRole `'guest'`) for anonymous
+ *   browse and booking flows, before they create an account.
  *
- * @example Hono setup (Workshop)
+ * @example Production setup (Venue / Academy)
  * ```typescript
- * import { createAuthMiddleware } from '@soulcraft/sdk/server'
- * import { auth } from './better-auth.js'
+ * import { createAuthMiddleware, createRemoteSessionVerifier } from '@soulcraft/sdk/server'
  *
- * const { requireAuth, optionalAuth } = createAuthMiddleware(auth)
+ * const verifySession = createRemoteSessionVerifier({ idpUrl: process.env.SOULCRAFT_IDP_URL! })
+ * const { requireAuth, optionalAuth } = createAuthMiddleware(verifySession)
  *
- * app.get('/api/workspaces', requireAuth, async (c) => {
- *   const user = c.get('user')! // SoulcraftSessionUser, guaranteed non-null
+ * app.get('/api/bookings', requireAuth, async (c) => {
+ *   const user = c.get('user')! // SoulcraftSessionUser
  * })
  * ```
  */
@@ -54,41 +64,48 @@ export interface BetterAuthLike {
     };
 }
 /**
- * @description Options for createAuthMiddleware().
+ * A session verifier function — the common abstraction for session resolution
+ * across all products in non-standalone auth mode.
+ *
+ * Returned by `createRemoteSessionVerifier` and `createDevSessionVerifier`.
+ * `createAuthMiddleware` accepts either a `BetterAuthLike` instance (Workshop
+ * standalone mode) or a `SessionVerifier` function (all other products and modes).
+ */
+export type SessionVerifier = (cookieHeader: string) => Promise<SoulcraftSession | null>;
+/**
+ * Options for `createAuthMiddleware()`.
  */
 export interface AuthMiddlewareOptions {
     /**
-     * If true, a synthetic dev user is injected in non-production environments,
-     * bypassing the session check entirely. Set to false to disable dev auto-login
-     * (e.g. for integration test servers that need real auth even in dev).
+     * If true, a synthetic dev user is injected in non-production environments
+     * when a `BetterAuthLike` auth instance is provided and session lookup fails.
+     * Not used when a `SessionVerifier` function is provided — use
+     * `createDevSessionVerifier` instead for full dev auto-login in that mode.
      * @default true
      */
     devAutoLogin?: boolean;
 }
 /**
- * @description The object returned by createAuthMiddleware().
+ * The object returned by `createAuthMiddleware()`.
  */
 export interface AuthMiddleware {
     /**
-     * Require authentication. Resolves the better-auth session. If the session is
-     * valid, attaches the typed user to the Hono context and calls next(). Returns
-     * HTTP 401 if unauthenticated.
-     *
-     * In development mode (unless devAutoLogin is disabled), a synthetic dev user
-     * is injected automatically.
+     * Require authentication. Resolves the session from request cookies. If the
+     * session is valid, attaches the typed user to the Hono context under the
+     * `'user'` key and calls `next()`. Returns HTTP 401 if unauthenticated.
      */
     requireAuth: (c: AuthContext, next: Next) => Promise<void | Response>;
     /**
      * Optional authentication. Resolves the session if one exists, but does not
-     * reject unauthenticated requests. User will be null for anonymous requests.
+     * reject unauthenticated requests. User will be `null` for anonymous requests.
      */
     optionalAuth: (c: AuthContext, next: Next) => Promise<void | Response>;
 }
 /**
- * @description Options for createRemoteSessionVerifier().
+ * Options for `createRemoteSessionVerifier()`.
  */
 export interface RemoteSessionVerifierOptions {
-    /** The central IdP base URL, e.g. "https://auth.soulcraft.com". */
+    /** The central IdP base URL, e.g. `"https://auth.soulcraft.com"`. */
     idpUrl: string;
     /** Session cache TTL in milliseconds. Default: 30 000 (30 seconds). */
     cacheTtlMs?: number;
@@ -96,7 +113,7 @@ export interface RemoteSessionVerifierOptions {
     cacheMax?: number;
 }
 /**
- * @description Options for createDevSessionVerifier().
+ * Options for `createDevSessionVerifier()`.
  */
 export interface DevSessionVerifierOptions {
     /**
@@ -116,40 +133,101 @@ export interface DevSessionVerifierOptions {
     name?: string;
 }
 /**
- * @description Creates Hono auth middleware bound to a specific better-auth instance.
+ * Options for `createDevLoginHandler()`.
+ */
+export interface DevLoginHandlerOptions {
+    /**
+     * Allowed platform roles. The role must be in this list for the handler to
+     * issue a session cookie. Defaults to all non-guest platform roles.
+     * @default ['creator','viewer','customer','staff','manager','owner','learner','instructor']
+     */
+    allowedRoles?: SoulcraftSessionUser['platformRole'][];
+    /**
+     * Cookie name for the issued dev session.
+     * @default 'soulcraft_dev_session'
+     */
+    cookieName?: string;
+    /**
+     * Session cookie max-age in seconds.
+     * @default 86400 (24 hours)
+     */
+    maxAgeSeconds?: number;
+}
+/**
+ * Options for `createGuestSessionHandler()`.
+ */
+export interface GuestSessionHandlerOptions {
+    /**
+     * Cookie name for the issued guest session.
+     * @default 'soulcraft_guest_session'
+     */
+    cookieName?: string;
+    /**
+     * Guest session max-age in seconds.
+     * @default 3600 (1 hour)
+     */
+    maxAgeSeconds?: number;
+    /**
+     * An optional callback invoked when a new guest session is created.
+     * Receives the generated guest ID. Useful for analytics or initializing
+     * a guest cart/basket in the product's store.
+     *
+     * @param guestId - The newly generated unique guest ID.
+     */
+    onGuestCreated?: (guestId: string) => Promise<void> | void;
+}
+/**
+ * Creates Hono auth middleware from a `SessionVerifier` function or a `BetterAuthLike`
+ * instance.
+ *
+ * **Preferred form (all products in OIDC-client mode):**
+ * Pass a `SessionVerifier` returned by `createRemoteSessionVerifier` or
+ * `createDevSessionVerifier`. The middleware reads the request cookie header and
+ * passes it to the verifier.
  *
- * Returns `requireAuth` and `optionalAuth` middleware functions. Both functions
- * resolve the session from request cookies/headers using better-auth's `getSession`
- * API and attach the user to the Hono context under the `'user'` variable key.
+ * **Legacy form (Workshop standalone mode):**
+ * Pass a `better-auth` instance directly. The middleware calls `auth.api.getSession`.
+ * In non-production environments and when `devAutoLogin` is enabled, a synthetic dev
+ * user is injected on failed lookups so local dev works without OAuth.
  *
- * In non-production environments (`NODE_ENV !== 'production'`), a synthetic dev
- * user is injected automatically to allow local development without OAuth setup.
- * Disable this with `options.devAutoLogin = false`.
+ * Both forms return identical `{ requireAuth, optionalAuth }` middleware.
  *
- * @param auth - The product's better-auth instance.
- * @param options - Optional middleware configuration.
+ * @param authOrVerifier - A `better-auth` instance or a `SessionVerifier` function.
+ * @param options - Optional middleware configuration (only applies to `BetterAuthLike` form).
  * @returns Middleware pair: `{ requireAuth, optionalAuth }`.
  *
- * @example
+ * @example Verifier form (Venue / Academy / Workshop in OIDC mode)
  * ```typescript
- * const { requireAuth, optionalAuth } = createAuthMiddleware(auth)
- * app.get('/api/me', requireAuth, (c) => c.json(c.get('user')))
+ * const verifySession = createRemoteSessionVerifier({ idpUrl: process.env.SOULCRAFT_IDP_URL! })
+ * const { requireAuth } = createAuthMiddleware(verifySession)
+ * ```
+ *
+ * @example BetterAuth form (Workshop dev standalone)
+ * ```typescript
+ * import { auth } from './better-auth.js'
+ * const { requireAuth } = createAuthMiddleware(auth)
  * ```
  */
-export declare function createAuthMiddleware(auth: BetterAuthLike, options?: AuthMiddlewareOptions): AuthMiddleware;
+export declare function createAuthMiddleware(authOrVerifier: BetterAuthLike | SessionVerifier, options?: AuthMiddlewareOptions): AuthMiddleware;
 /**
- * @description Creates a cached remote session verifier that proxies session lookups
- * to the central IdP at `auth.soulcraft.com`.
+ * Creates a cached remote session verifier that proxies session lookups to
+ * the central IdP at `auth.soulcraft.com`.
  *
- * Used by products that operate as OIDC clients and need to verify sessions without
- * running a full better-auth instance locally. Caches successful lookups to avoid
- * per-request HTTP calls to the IdP.
+ * Used by products that operate as OIDC clients (Venue, Academy, and Workshop
+ * in production). Caches successful lookups in an LRU cache to avoid per-request
+ * HTTP round-trips to the IdP.
  *
  * The verifier sends the cookie header to the IdP's `/api/auth/get-session` endpoint
- * and returns the resolved `SoulcraftSession` or null if the session is invalid.
+ * and returns the resolved `SoulcraftSession` or `null` if the session is invalid.
+ *
+ * Pass the returned function directly to `createAuthMiddleware`:
+ * ```typescript
+ * const verifySession = createRemoteSessionVerifier({ idpUrl: process.env.SOULCRAFT_IDP_URL! })
+ * const { requireAuth } = createAuthMiddleware(verifySession)
+ * ```
  *
  * @param options - IdP URL, cache TTL, and max cache size.
- * @returns An async function that accepts a cookie header string and returns a session or null.
+ * @returns A `SessionVerifier` — async function that accepts a cookie header string.
  *
  * @example
  * ```typescript
@@ -162,35 +240,31 @@ export declare function createAuthMiddleware(auth: BetterAuthLike, options?: Aut
  * if (!session) return c.json({ error: 'Unauthorized' }, 401)
  * ```
  */
-export declare function createRemoteSessionVerifier(options: RemoteSessionVerifierOptions): (cookieHeader: string) => Promise<SoulcraftSession | null>;
+export declare function createRemoteSessionVerifier(options: RemoteSessionVerifierOptions): SessionVerifier;
 /**
- * @description Creates a session verifier that always resolves to a synthetic dev session.
+ * Creates a session verifier that always resolves to a synthetic dev session.
  *
- * Intended for products that run as OIDC clients (`SOULCRAFT_IDP_URL` set) but need
- * local development auth without network calls, SQLite, or real cookies. The returned
- * verifier always succeeds — any non-empty cookie header (or empty) resolves to the
- * configured synthetic user.
+ * Intended for products that run as OIDC clients but need local development auth
+ * without OAuth, network calls, SQLite, or real cookies. The returned verifier always
+ * succeeds — any request resolves to the configured synthetic user.
  *
- * Designed to be a drop-in replacement for `createRemoteSessionVerifier` in local dev:
+ * Designed as a drop-in replacement for `createRemoteSessionVerifier` in local dev:
  *
  * ```typescript
  * const verifySession = process.env.SOULCRAFT_IDP_URL
  *   ? createRemoteSessionVerifier({ idpUrl: process.env.SOULCRAFT_IDP_URL })
  *   : createDevSessionVerifier({ role: 'owner' })
- * ```
  *
- * This eliminates the need for a local `better-auth` instance, SQLite database, and
- * cookie management when iterating on features in OIDC-client mode.
+ * const { requireAuth } = createAuthMiddleware(verifySession)
+ * ```
  *
  * **Never use in production.** The verifier performs no validation whatsoever.
  *
  * @param options - Optional synthetic user configuration.
- * @returns An async function with the same signature as `createRemoteSessionVerifier`.
+ * @returns A `SessionVerifier` with the same signature as `createRemoteSessionVerifier`.
  *
- * @example SvelteKit hooks.server.ts
+ * @example
  * ```typescript
- * import { createRemoteSessionVerifier, createDevSessionVerifier } from '@soulcraft/sdk/server'
- *
  * const verifySession = process.env.SOULCRAFT_IDP_URL
  *   ? createRemoteSessionVerifier({ idpUrl: process.env.SOULCRAFT_IDP_URL })
  *   : createDevSessionVerifier({ role: 'owner' })
@@ -202,5 +276,109 @@ export declare function createRemoteSessionVerifier(options: RemoteSessionVerifi
  * }
  * ```
  */
-export declare function createDevSessionVerifier(options?: DevSessionVerifierOptions): (cookieHeader: string) => Promise<SoulcraftSession | null>;
+export declare function createDevSessionVerifier(options?: DevSessionVerifierOptions): SessionVerifier;
+/**
+ * Creates a Hono request handler for a dev login endpoint.
+ *
+ * Mount at `/api/dev/login` to get a role-switching endpoint for local
+ * development. Accepts `?role=<platformRole>` and optional `?email=` / `?name=`
+ * query params. Issues a signed base64url session cookie that `createAuthMiddleware`
+ * (when used with a `SessionVerifier` that reads dev cookies) can resolve.
+ *
+ * **Guards against production use:** the handler returns HTTP 404 when
+ * `NODE_ENV === 'production'` — it is safe to leave mounted in all environments.
+ *
+ * @param options - Allowed roles, cookie name, and max-age.
+ * @returns A Hono-compatible request handler `(c: Context) => Response`.
+ *
+ * @example
+ * ```typescript
+ * import { createDevLoginHandler } from '@soulcraft/sdk/server'
+ *
+ * // In your Hono server setup:
+ * app.get('/api/dev/login', createDevLoginHandler({ allowedRoles: ['owner', 'staff', 'customer'] }))
+ *
+ * // Usage: GET /api/dev/login?role=staff → sets cookie + redirects to /
+ * ```
+ */
+export declare function createDevLoginHandler(options?: DevLoginHandlerOptions): (c: Context) => Response | Promise<Response>;
+/**
+ * Creates a session verifier that reads the cookie issued by `createDevLoginHandler`.
+ *
+ * Use this together with `createDevLoginHandler` when you want dev role-switching
+ * (e.g. clicking "Login as Staff" in a dev UI) rather than a fixed synthetic user.
+ *
+ * The verifier decodes the base64url cookie value and returns the embedded session.
+ * Falls back to `null` (unauthenticated) if the cookie is absent or expired.
+ *
+ * ```typescript
+ * // Only one of these in dev — pick what fits your workflow:
+ *
+ * // Option A: Fixed dev user, no login UI needed
+ * const verifySession = createDevSessionVerifier({ role: 'owner' })
+ *
+ * // Option B: Role-switching dev login UI
+ * app.get('/api/dev/login', createDevLoginHandler({ allowedRoles: ['owner', 'staff', 'customer'] }))
+ * const verifySession = createDevCookieVerifier()
+ * ```
+ *
+ * @param cookieName - Must match the `cookieName` passed to `createDevLoginHandler`. Default: `'soulcraft_dev_session'`.
+ * @returns A `SessionVerifier` compatible with `createAuthMiddleware`.
+ */
+export declare function createDevCookieVerifier(cookieName?: string): SessionVerifier;
+/**
+ * Creates a Hono request handler that issues a guest session cookie.
+ *
+ * Venue visitors can browse and initiate bookings without creating an account.
+ * This handler mounts at e.g. `/api/guest/session` and issues a session cookie
+ * with `platformRole: 'guest'` and a unique guest ID on each call (if no valid
+ * guest session already exists).
+ *
+ * The guest session cookie can be verified using `createGuestCookieVerifier`,
+ * which returns a `SessionVerifier` compatible with `createAuthMiddleware`.
+ *
+ * @param options - Cookie name, max-age, and optional `onGuestCreated` callback.
+ * @returns A Hono-compatible request handler.
+ *
+ * @example
+ * ```typescript
+ * import { createGuestSessionHandler, createGuestCookieVerifier, createAuthMiddleware } from '@soulcraft/sdk/server'
+ *
+ * // Issue guest sessions
+ * app.post('/api/guest/session', createGuestSessionHandler({
+ *   onGuestCreated: async (guestId) => {
+ *     await db.guests.insert({ id: guestId, createdAt: new Date() })
+ *   },
+ * }))
+ *
+ * // Verify guest sessions in optional auth (guests can browse)
+ * const verifyGuest = createGuestCookieVerifier()
+ * const verifySession = createRemoteSessionVerifier({ idpUrl: process.env.SOULCRAFT_IDP_URL! })
+ *
+ * // Compose: check real session first, fall back to guest
+ * const { optionalAuth } = createAuthMiddleware(async (cookie) =>
+ *   await verifySession(cookie) ?? await verifyGuest(cookie)
+ * )
+ * ```
+ */
+export declare function createGuestSessionHandler(options?: GuestSessionHandlerOptions): (c: Context) => Promise<Response>;
+/**
+ * Creates a session verifier that reads the cookie issued by `createGuestSessionHandler`.
+ *
+ * Returns the guest `SoulcraftSession` or `null` if no valid guest cookie is present.
+ * Compose with `createRemoteSessionVerifier` to allow both authenticated and guest access:
+ *
+ * ```typescript
+ * const verifyReal = createRemoteSessionVerifier({ idpUrl: process.env.SOULCRAFT_IDP_URL! })
+ * const verifyGuest = createGuestCookieVerifier()
+ *
+ * const { optionalAuth } = createAuthMiddleware(async (cookie) =>
+ *   await verifyReal(cookie) ?? await verifyGuest(cookie)
+ * )
+ * ```
+ *
+ * @param cookieName - Must match the `cookieName` passed to `createGuestSessionHandler`. Default: `'soulcraft_guest_session'`.
+ * @returns A `SessionVerifier` compatible with `createAuthMiddleware`.
+ */
+export declare function createGuestCookieVerifier(cookieName?: string): SessionVerifier;
 //# sourceMappingURL=middleware.d.ts.map

package/dist/modules/auth/middleware.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"middleware.d.ts","sourceRoot":"","sources":["../../../src/modules/auth/middleware.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AAIH,OAAO,KAAK,EAAE,oBAAoB,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAA;AACxE,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAA;AAMzC,uEAAuE;AACvE,eAAO,MAAM,aAAa,EAAG,MAAe,CAAA;AAE5C,mEAAmE;AACnE,MAAM,MAAM,WAAW,GAAG,OAAO,CAAC;IAAE,SAAS,EAAE;QAAE,CAAC,aAAa,CAAC,EAAE,oBAAoB,GAAG,IAAI,CAAA;KAAE,CAAA;CAAE,CAAC,CAAA;AAElG,iEAAiE;AACjE,MAAM,WAAW,cAAc;IAC7B,GAAG,EAAE;QACH,UAAU,CAAC,IAAI,EAAE;YAAE,OAAO,EAAE,OAAO,CAAA;SAAE,GAAG,OAAO,CAAC;YAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;YAAC,OAAO,EAAE;gBAAE,EAAE,EAAE,MAAM,CAAC;gBAAC,SAAS,EAAE,IAAI,GAAG,MAAM,GAAG,MAAM,CAAA;aAAE,CAAA;SAAE,GAAG,IAAI,CAAC,CAAA;KACtJ,CAAA;CACF;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC;;;;;OAKG;IACH,YAAY,CAAC,EAAE,OAAO,CAAA;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B;;;;;;;OAOG;IACH,WAAW,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,IAAI,KAAK,OAAO,CAAC,IAAI,GAAG,QAAQ,CAAC,CAAA;IAErE;;;OAGG;IACH,YAAY,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,IAAI,KAAK,OAAO,CAAC,IAAI,GAAG,QAAQ,CAAC,CAAA;CACvE;AAED;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,mEAAmE;IACnE,MAAM,EAAE,MAAM,CAAA;IACd,uEAAuE;IACvE,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,6CAA6C;IAC7C,QAAQ,CAAC,EAAE,MAAM,CAAA;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC;;;OAGG;IACH,IAAI,CAAC,EAAE,oBAAoB,CAAC,cAAc,CAAC,CAAA;IAC3C;;;OAGG;IACH,KAAK,CAAC,EAAE,MAAM,CAAA;IACd;;;OAGG;IACH,IAAI,CAAC,EAAE,MAAM,CAAA;CACd;AAMD;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,oBAAoB,CAClC,IAAI,EAAE,cAAc,EACpB,OAAO,GAAE,qBAA0B,GAClC,cAAc,CA+DhB;AAMD;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,wBAAgB,2BAA2B,CACzC,OAAO,EAAE,4BAA4B,GACpC,CAAC,YAAY,EAAE,MAAM,KAAK,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC,CA4D5D;AAMD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsCG;AACH,wBAAgB,wBAAwB,CACtC,OAAO,GAAE,yBAA8B,GACtC,CAAC,YAAY,EAAE,MAAM,KAAK,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC,CAqB5D"}
+{"version":3,"file":"middleware.d.ts","sourceRoot":"","sources":["../../../src/modules/auth/middleware.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwCG;AAIH,OAAO,KAAK,EAAE,oBAAoB,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAA;AACxE,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAA;AAMzC,uEAAuE;AACvE,eAAO,MAAM,aAAa,EAAG,MAAe,CAAA;AAE5C,mEAAmE;AACnE,MAAM,MAAM,WAAW,GAAG,OAAO,CAAC;IAAE,SAAS,EAAE;QAAE,CAAC,aAAa,CAAC,EAAE,oBAAoB,GAAG,IAAI,CAAA;KAAE,CAAA;CAAE,CAAC,CAAA;AAElG,iEAAiE;AACjE,MAAM,WAAW,cAAc;IAC7B,GAAG,EAAE;QACH,UAAU,CAAC,IAAI,EAAE;YAAE,OAAO,EAAE,OAAO,CAAA;SAAE,GAAG,OAAO,CAAC;YAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;YAAC,OAAO,EAAE;gBAAE,EAAE,EAAE,MAAM,CAAC;gBAAC,SAAS,EAAE,IAAI,GAAG,MAAM,GAAG,MAAM,CAAA;aAAE,CAAA;SAAE,GAAG,IAAI,CAAC,CAAA;KACtJ,CAAA;CACF;AAED;;;;;;;GAOG;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,YAAY,EAAE,MAAM,KAAK,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC,CAAA;AAExF;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC;;;;;;OAMG;IACH,YAAY,CAAC,EAAE,OAAO,CAAA;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B;;;;OAIG;IACH,WAAW,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,IAAI,KAAK,OAAO,CAAC,IAAI,GAAG,QAAQ,CAAC,CAAA;IAErE;;;OAGG;IACH,YAAY,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,IAAI,KAAK,OAAO,CAAC,IAAI,GAAG,QAAQ,CAAC,CAAA;CACvE;AAED;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,qEAAqE;IACrE,MAAM,EAAE,MAAM,CAAA;IACd,uEAAuE;IACvE,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,6CAA6C;IAC7C,QAAQ,CAAC,EAAE,MAAM,CAAA;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC;;;OAGG;IACH,IAAI,CAAC,EAAE,oBAAoB,CAAC,cAAc,CAAC,CAAA;IAC3C;;;OAGG;IACH,KAAK,CAAC,EAAE,MAAM,CAAA;IACd;;;OAGG;IACH,IAAI,CAAC,EAAE,MAAM,CAAA;CACd;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC;;;;OAIG;IACH,YAAY,CAAC,EAAE,oBAAoB,CAAC,cAAc,CAAC,EAAE,CAAA;IACrD;;;OAGG;IACH,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB;;;OAGG;IACH,aAAa,CAAC,EAAE,MAAM,CAAA;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,0BAA0B;IACzC;;;OAGG;IACH,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB;;;OAGG;IACH,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB;;;;;;OAMG;IACH,cAAc,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAA;CAC3D;AAqDD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,wBAAgB,oBAAoB,CAClC,cAAc,EAAE,cAAc,GAAG,eAAe,EAChD,OAAO,GAAE,qBAA0B,GAClC,cAAc,CAyEhB;AAMD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AACH,wBAAgB,2BAA2B,CACzC,OAAO,EAAE,4BAA4B,GACpC,eAAe,CA4DjB;AAMD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkCG;AACH,wBAAgB,wBAAwB,CACtC,OAAO,GAAE,yBAA8B,GACtC,eAAe,CAqBjB;AAMD;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,wBAAgB,qBAAqB,CACnC,OAAO,GAAE,sBAA2B,GACnC,CAAC,CAAC,EAAE,OAAO,KAAK,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC,CA2D9C;AAMD;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,wBAAgB,uBAAuB,CACrC,UAAU,SAA0B,GACnC,eAAe,CAMjB;AAMD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkCG;AACH,wBAAgB,yBAAyB,CACvC,OAAO,GAAE,0BAA+B,GACvC,CAAC,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAkDnC;AAMD;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,yBAAyB,CACvC,UAAU,SAA4B,GACrC,eAAe,CAMjB"}