@supabase/auth-js 2.73.0-rc.3 → 2.73.0-rc.5

package/dist/main/lib/webauthn.errors.d.ts

@@ -0,0 +1,80 @@
+import { StrictOmit } from './types';
+import { PublicKeyCredentialCreationOptionsFuture, PublicKeyCredentialRequestOptionsFuture } from './webauthn.dom';
+/**
+ * A custom Error used to return a more nuanced error detailing _why_ one of the eight documented
+ * errors in the spec was raised after calling `navigator.credentials.create()` or
+ * `navigator.credentials.get()`:
+ *
+ * - `AbortError`
+ * - `ConstraintError`
+ * - `InvalidStateError`
+ * - `NotAllowedError`
+ * - `NotSupportedError`
+ * - `SecurityError`
+ * - `TypeError`
+ * - `UnknownError`
+ *
+ * Error messages were determined through investigation of the spec to determine under which
+ * scenarios a given error would be raised.
+ */
+export declare class WebAuthnError extends Error {
+    code: WebAuthnErrorCode;
+    protected __isWebAuthnError: boolean;
+    constructor({ message, code, cause, name, }: {
+        message: string;
+        code: WebAuthnErrorCode;
+        cause?: Error | unknown;
+        name?: string;
+    });
+}
+/**
+ * Error class for unknown WebAuthn errors.
+ * Wraps unexpected errors that don't match known WebAuthn error conditions.
+ */
+export declare class WebAuthnUnknownError extends WebAuthnError {
+    originalError: unknown;
+    constructor(message: string, originalError: unknown);
+}
+/**
+ * Type guard to check if an error is a WebAuthnError.
+ * @param {unknown} error - The error to check
+ * @returns {boolean} True if the error is a WebAuthnError
+ */
+export declare function isWebAuthnError(error: unknown): error is WebAuthnError;
+/**
+ * Error codes for WebAuthn operations.
+ * These codes provide specific information about why a WebAuthn ceremony failed.
+ * @see {@link https://w3c.github.io/webauthn/#sctn-defined-errors W3C WebAuthn Spec - Defined Errors}
+ */
+export declare type WebAuthnErrorCode = 'ERROR_CEREMONY_ABORTED' | 'ERROR_INVALID_DOMAIN' | 'ERROR_INVALID_RP_ID' | 'ERROR_INVALID_USER_ID_LENGTH' | 'ERROR_MALFORMED_PUBKEYCREDPARAMS' | 'ERROR_AUTHENTICATOR_GENERAL_ERROR' | 'ERROR_AUTHENTICATOR_MISSING_DISCOVERABLE_CREDENTIAL_SUPPORT' | 'ERROR_AUTHENTICATOR_MISSING_USER_VERIFICATION_SUPPORT' | 'ERROR_AUTHENTICATOR_PREVIOUSLY_REGISTERED' | 'ERROR_AUTHENTICATOR_NO_SUPPORTED_PUBKEYCREDPARAMS_ALG' | 'ERROR_AUTO_REGISTER_USER_VERIFICATION_FAILURE' | 'ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY';
+/**
+ * Attempt to intuit _why_ an error was raised after calling `navigator.credentials.create()`.
+ * Maps browser errors to specific WebAuthn error codes for better debugging.
+ * @param {Object} params - Error identification parameters
+ * @param {Error} params.error - The error thrown by the browser
+ * @param {CredentialCreationOptions} params.options - The options passed to credentials.create()
+ * @returns {WebAuthnError} A WebAuthnError with a specific error code
+ * @see {@link https://w3c.github.io/webauthn/#sctn-createCredential W3C WebAuthn Spec - Create Credential}
+ */
+export declare function identifyRegistrationError({ error, options, }: {
+    error: Error;
+    options: StrictOmit<CredentialCreationOptions, 'publicKey'> & {
+        publicKey: PublicKeyCredentialCreationOptionsFuture;
+    };
+}): WebAuthnError;
+/**
+ * Attempt to intuit _why_ an error was raised after calling `navigator.credentials.get()`.
+ * Maps browser errors to specific WebAuthn error codes for better debugging.
+ * @param {Object} params - Error identification parameters
+ * @param {Error} params.error - The error thrown by the browser
+ * @param {CredentialRequestOptions} params.options - The options passed to credentials.get()
+ * @returns {WebAuthnError} A WebAuthnError with a specific error code
+ * @see {@link https://w3c.github.io/webauthn/#sctn-getAssertion W3C WebAuthn Spec - Get Assertion}
+ */
+export declare function identifyAuthenticationError({ error, options, }: {
+    error: Error;
+    options: StrictOmit<CredentialRequestOptions, 'publicKey'> & {
+        publicKey: PublicKeyCredentialRequestOptionsFuture;
+    };
+}): WebAuthnError;
+//# sourceMappingURL=webauthn.errors.d.ts.map

package/dist/main/lib/webauthn.errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"webauthn.errors.d.ts","sourceRoot":"","sources":["../../../src/lib/webauthn.errors.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAA;AAEpC,OAAO,EACL,wCAAwC,EACxC,uCAAuC,EACxC,MAAM,gBAAgB,CAAA;AAEvB;;;;;;;;;;;;;;;;GAgBG;AACH,qBAAa,aAAc,SAAQ,KAAK;IACtC,IAAI,EAAE,iBAAiB,CAAA;IAEvB,SAAS,CAAC,iBAAiB,UAAO;gBAEtB,EACV,OAAO,EACP,IAAI,EACJ,KAAK,EACL,IAAI,GACL,EAAE;QACD,OAAO,EAAE,MAAM,CAAA;QACf,IAAI,EAAE,iBAAiB,CAAA;QACvB,KAAK,CAAC,EAAE,KAAK,GAAG,OAAO,CAAA;QACvB,IAAI,CAAC,EAAE,MAAM,CAAA;KACd;CAMF;AAED;;;GAGG;AACH,qBAAa,oBAAqB,SAAQ,aAAa;IACrD,aAAa,EAAE,OAAO,CAAA;gBAEV,OAAO,EAAE,MAAM,EAAE,aAAa,EAAE,OAAO;CASpD;AAED;;;;GAIG;AACH,wBAAgB,eAAe,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,aAAa,CAEtE;AAED;;;;GAIG;AACH,oBAAY,iBAAiB,GACzB,wBAAwB,GACxB,sBAAsB,GACtB,qBAAqB,GACrB,8BAA8B,GAC9B,kCAAkC,GAClC,mCAAmC,GACnC,6DAA6D,GAC7D,uDAAuD,GACvD,2CAA2C,GAC3C,uDAAuD,GACvD,+CAA+C,GAC/C,sCAAsC,CAAA;AAE1C;;;;;;;;GAQG;AACH,wBAAgB,yBAAyB,CAAC,EACxC,KAAK,EACL,OAAO,GACR,EAAE;IACD,KAAK,EAAE,KAAK,CAAA;IACZ,OAAO,EAAE,UAAU,CAAC,yBAAyB,EAAE,WAAW,CAAC,GAAG;QAC5D,SAAS,EAAE,wCAAwC,CAAA;KACpD,CAAA;CACF,GAAG,aAAa,CA8HhB;AAED;;;;;;;;GAQG;AACH,wBAAgB,2BAA2B,CAAC,EAC1C,KAAK,EACL,OAAO,GACR,EAAE;IACD,KAAK,EAAE,KAAK,CAAA;IACZ,OAAO,EAAE,UAAU,CAAC,wBAAwB,EAAE,WAAW,CAAC,GAAG;QAC3D,SAAS,EAAE,uCAAuC,CAAA;KACnD,CAAA;CACF,GAAG,aAAa,CA2DhB"}

package/dist/main/lib/webauthn.errors.js

@@ -0,0 +1,265 @@
+"use strict";
+/* eslint-disable @typescript-eslint/ban-ts-comment */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.identifyAuthenticationError = exports.identifyRegistrationError = exports.isWebAuthnError = exports.WebAuthnUnknownError = exports.WebAuthnError = void 0;
+const webauthn_1 = require("./webauthn");
+/**
+ * A custom Error used to return a more nuanced error detailing _why_ one of the eight documented
+ * errors in the spec was raised after calling `navigator.credentials.create()` or
+ * `navigator.credentials.get()`:
+ *
+ * - `AbortError`
+ * - `ConstraintError`
+ * - `InvalidStateError`
+ * - `NotAllowedError`
+ * - `NotSupportedError`
+ * - `SecurityError`
+ * - `TypeError`
+ * - `UnknownError`
+ *
+ * Error messages were determined through investigation of the spec to determine under which
+ * scenarios a given error would be raised.
+ */
+class WebAuthnError extends Error {
+    constructor({ message, code, cause, name, }) {
+        var _a;
+        // @ts-ignore: help Rollup understand that `cause` is okay to set
+        super(message, { cause });
+        this.__isWebAuthnError = true;
+        this.name = (_a = name !== null && name !== void 0 ? name : (cause instanceof Error ? cause.name : undefined)) !== null && _a !== void 0 ? _a : 'Unknown Error';
+        this.code = code;
+    }
+}
+exports.WebAuthnError = WebAuthnError;
+/**
+ * Error class for unknown WebAuthn errors.
+ * Wraps unexpected errors that don't match known WebAuthn error conditions.
+ */
+class WebAuthnUnknownError extends WebAuthnError {
+    constructor(message, originalError) {
+        super({
+            code: 'ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY',
+            cause: originalError,
+            message,
+        });
+        this.name = 'WebAuthnUnknownError';
+        this.originalError = originalError;
+    }
+}
+exports.WebAuthnUnknownError = WebAuthnUnknownError;
+/**
+ * Type guard to check if an error is a WebAuthnError.
+ * @param {unknown} error - The error to check
+ * @returns {boolean} True if the error is a WebAuthnError
+ */
+function isWebAuthnError(error) {
+    return typeof error === 'object' && error !== null && '__isWebAuthnError' in error;
+}
+exports.isWebAuthnError = isWebAuthnError;
+/**
+ * Attempt to intuit _why_ an error was raised after calling `navigator.credentials.create()`.
+ * Maps browser errors to specific WebAuthn error codes for better debugging.
+ * @param {Object} params - Error identification parameters
+ * @param {Error} params.error - The error thrown by the browser
+ * @param {CredentialCreationOptions} params.options - The options passed to credentials.create()
+ * @returns {WebAuthnError} A WebAuthnError with a specific error code
+ * @see {@link https://w3c.github.io/webauthn/#sctn-createCredential W3C WebAuthn Spec - Create Credential}
+ */
+function identifyRegistrationError({ error, options, }) {
+    var _a, _b, _c;
+    const { publicKey } = options;
+    if (!publicKey) {
+        throw Error('options was missing required publicKey property');
+    }
+    if (error.name === 'AbortError') {
+        if (options.signal instanceof AbortSignal) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-createCredential (Step 16)
+            return new WebAuthnError({
+                message: 'Registration ceremony was sent an abort signal',
+                code: 'ERROR_CEREMONY_ABORTED',
+                cause: error,
+            });
+        }
+    }
+    else if (error.name === 'ConstraintError') {
+        if (((_a = publicKey.authenticatorSelection) === null || _a === void 0 ? void 0 : _a.requireResidentKey) === true) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-op-make-cred (Step 4)
+            return new WebAuthnError({
+                message: 'Discoverable credentials were required but no available authenticator supported it',
+                code: 'ERROR_AUTHENTICATOR_MISSING_DISCOVERABLE_CREDENTIAL_SUPPORT',
+                cause: error,
+            });
+        }
+        else if (
+        // @ts-ignore: `mediation` doesn't yet exist on CredentialCreationOptions but it's possible as of Sept 2024
+        options.mediation === 'conditional' &&
+            ((_b = publicKey.authenticatorSelection) === null || _b === void 0 ? void 0 : _b.userVerification) === 'required') {
+            // https://w3c.github.io/webauthn/#sctn-createCredential (Step 22.4)
+            return new WebAuthnError({
+                message: 'User verification was required during automatic registration but it could not be performed',
+                code: 'ERROR_AUTO_REGISTER_USER_VERIFICATION_FAILURE',
+                cause: error,
+            });
+        }
+        else if (((_c = publicKey.authenticatorSelection) === null || _c === void 0 ? void 0 : _c.userVerification) === 'required') {
+            // https://www.w3.org/TR/webauthn-2/#sctn-op-make-cred (Step 5)
+            return new WebAuthnError({
+                message: 'User verification was required but no available authenticator supported it',
+                code: 'ERROR_AUTHENTICATOR_MISSING_USER_VERIFICATION_SUPPORT',
+                cause: error,
+            });
+        }
+    }
+    else if (error.name === 'InvalidStateError') {
+        // https://www.w3.org/TR/webauthn-2/#sctn-createCredential (Step 20)
+        // https://www.w3.org/TR/webauthn-2/#sctn-op-make-cred (Step 3)
+        return new WebAuthnError({
+            message: 'The authenticator was previously registered',
+            code: 'ERROR_AUTHENTICATOR_PREVIOUSLY_REGISTERED',
+            cause: error,
+        });
+    }
+    else if (error.name === 'NotAllowedError') {
+        /**
+         * Pass the error directly through. Platforms are overloading this error beyond what the spec
+         * defines and we don't want to overwrite potentially useful error messages.
+         */
+        return new WebAuthnError({
+            message: error.message,
+            code: 'ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY',
+            cause: error,
+        });
+    }
+    else if (error.name === 'NotSupportedError') {
+        const validPubKeyCredParams = publicKey.pubKeyCredParams.filter((param) => param.type === 'public-key');
+        if (validPubKeyCredParams.length === 0) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-createCredential (Step 10)
+            return new WebAuthnError({
+                message: 'No entry in pubKeyCredParams was of type "public-key"',
+                code: 'ERROR_MALFORMED_PUBKEYCREDPARAMS',
+                cause: error,
+            });
+        }
+        // https://www.w3.org/TR/webauthn-2/#sctn-op-make-cred (Step 2)
+        return new WebAuthnError({
+            message: 'No available authenticator supported any of the specified pubKeyCredParams algorithms',
+            code: 'ERROR_AUTHENTICATOR_NO_SUPPORTED_PUBKEYCREDPARAMS_ALG',
+            cause: error,
+        });
+    }
+    else if (error.name === 'SecurityError') {
+        const effectiveDomain = window.location.hostname;
+        if (!(0, webauthn_1.isValidDomain)(effectiveDomain)) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-createCredential (Step 7)
+            return new WebAuthnError({
+                message: `${window.location.hostname} is an invalid domain`,
+                code: 'ERROR_INVALID_DOMAIN',
+                cause: error,
+            });
+        }
+        else if (publicKey.rp.id !== effectiveDomain) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-createCredential (Step 8)
+            return new WebAuthnError({
+                message: `The RP ID "${publicKey.rp.id}" is invalid for this domain`,
+                code: 'ERROR_INVALID_RP_ID',
+                cause: error,
+            });
+        }
+    }
+    else if (error.name === 'TypeError') {
+        if (publicKey.user.id.byteLength < 1 || publicKey.user.id.byteLength > 64) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-createCredential (Step 5)
+            return new WebAuthnError({
+                message: 'User ID was not between 1 and 64 characters',
+                code: 'ERROR_INVALID_USER_ID_LENGTH',
+                cause: error,
+            });
+        }
+    }
+    else if (error.name === 'UnknownError') {
+        // https://www.w3.org/TR/webauthn-2/#sctn-op-make-cred (Step 1)
+        // https://www.w3.org/TR/webauthn-2/#sctn-op-make-cred (Step 8)
+        return new WebAuthnError({
+            message: 'The authenticator was unable to process the specified options, or could not create a new credential',
+            code: 'ERROR_AUTHENTICATOR_GENERAL_ERROR',
+            cause: error,
+        });
+    }
+    return new WebAuthnError({
+        message: 'a Non-Webauthn related error has occurred',
+        code: 'ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY',
+        cause: error,
+    });
+}
+exports.identifyRegistrationError = identifyRegistrationError;
+/**
+ * Attempt to intuit _why_ an error was raised after calling `navigator.credentials.get()`.
+ * Maps browser errors to specific WebAuthn error codes for better debugging.
+ * @param {Object} params - Error identification parameters
+ * @param {Error} params.error - The error thrown by the browser
+ * @param {CredentialRequestOptions} params.options - The options passed to credentials.get()
+ * @returns {WebAuthnError} A WebAuthnError with a specific error code
+ * @see {@link https://w3c.github.io/webauthn/#sctn-getAssertion W3C WebAuthn Spec - Get Assertion}
+ */
+function identifyAuthenticationError({ error, options, }) {
+    const { publicKey } = options;
+    if (!publicKey) {
+        throw Error('options was missing required publicKey property');
+    }
+    if (error.name === 'AbortError') {
+        if (options.signal instanceof AbortSignal) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-createCredential (Step 16)
+            return new WebAuthnError({
+                message: 'Authentication ceremony was sent an abort signal',
+                code: 'ERROR_CEREMONY_ABORTED',
+                cause: error,
+            });
+        }
+    }
+    else if (error.name === 'NotAllowedError') {
+        /**
+         * Pass the error directly through. Platforms are overloading this error beyond what the spec
+         * defines and we don't want to overwrite potentially useful error messages.
+         */
+        return new WebAuthnError({
+            message: error.message,
+            code: 'ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY',
+            cause: error,
+        });
+    }
+    else if (error.name === 'SecurityError') {
+        const effectiveDomain = window.location.hostname;
+        if (!(0, webauthn_1.isValidDomain)(effectiveDomain)) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-discover-from-external-source (Step 5)
+            return new WebAuthnError({
+                message: `${window.location.hostname} is an invalid domain`,
+                code: 'ERROR_INVALID_DOMAIN',
+                cause: error,
+            });
+        }
+        else if (publicKey.rpId !== effectiveDomain) {
+            // https://www.w3.org/TR/webauthn-2/#sctn-discover-from-external-source (Step 6)
+            return new WebAuthnError({
+                message: `The RP ID "${publicKey.rpId}" is invalid for this domain`,
+                code: 'ERROR_INVALID_RP_ID',
+                cause: error,
+            });
+        }
+    }
+    else if (error.name === 'UnknownError') {
+        // https://www.w3.org/TR/webauthn-2/#sctn-op-get-assertion (Step 1)
+        // https://www.w3.org/TR/webauthn-2/#sctn-op-get-assertion (Step 12)
+        return new WebAuthnError({
+            message: 'The authenticator was unable to process the specified options, or could not create a new assertion signature',
+            code: 'ERROR_AUTHENTICATOR_GENERAL_ERROR',
+            cause: error,
+        });
+    }
+    return new WebAuthnError({
+        message: 'a Non-Webauthn related error has occurred',
+        code: 'ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY',
+        cause: error,
+    });
+}
+exports.identifyAuthenticationError = identifyAuthenticationError;
+//# sourceMappingURL=webauthn.errors.js.map

package/dist/main/lib/webauthn.errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"webauthn.errors.js","sourceRoot":"","sources":["../../../src/lib/webauthn.errors.ts"],"names":[],"mappings":";AAAA,sDAAsD;;;AAGtD,yCAA0C;AAM1C;;;;;;;;;;;;;;;;GAgBG;AACH,MAAa,aAAc,SAAQ,KAAK;IAKtC,YAAY,EACV,OAAO,EACP,IAAI,EACJ,KAAK,EACL,IAAI,GAML;;QACC,iEAAiE;QACjE,KAAK,CAAC,OAAO,EAAE,EAAE,KAAK,EAAE,CAAC,CAAA;QAdjB,sBAAiB,GAAG,IAAI,CAAA;QAehC,IAAI,CAAC,IAAI,GAAG,MAAA,IAAI,aAAJ,IAAI,cAAJ,IAAI,GAAI,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,mCAAI,eAAe,CAAA;QACxF,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;IAClB,CAAC;CACF;AArBD,sCAqBC;AAED;;;GAGG;AACH,MAAa,oBAAqB,SAAQ,aAAa;IAGrD,YAAY,OAAe,EAAE,aAAsB;QACjD,KAAK,CAAC;YACJ,IAAI,EAAE,sCAAsC;YAC5C,KAAK,EAAE,aAAa;YACpB,OAAO;SACR,CAAC,CAAA;QACF,IAAI,CAAC,IAAI,GAAG,sBAAsB,CAAA;QAClC,IAAI,CAAC,aAAa,GAAG,aAAa,CAAA;IACpC,CAAC;CACF;AAZD,oDAYC;AAED;;;;GAIG;AACH,SAAgB,eAAe,CAAC,KAAc;IAC5C,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,mBAAmB,IAAI,KAAK,CAAA;AACpF,CAAC;AAFD,0CAEC;AAqBD;;;;;;;;GAQG;AACH,SAAgB,yBAAyB,CAAC,EACxC,KAAK,EACL,OAAO,GAMR;;IACC,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAA;IAE7B,IAAI,CAAC,SAAS,EAAE;QACd,MAAM,KAAK,CAAC,iDAAiD,CAAC,CAAA;KAC/D;IAED,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE;QAC/B,IAAI,OAAO,CAAC,MAAM,YAAY,WAAW,EAAE;YACzC,oEAAoE;YACpE,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,gDAAgD;gBACzD,IAAI,EAAE,wBAAwB;gBAC9B,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;KACF;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,iBAAiB,EAAE;QAC3C,IAAI,CAAA,MAAA,SAAS,CAAC,sBAAsB,0CAAE,kBAAkB,MAAK,IAAI,EAAE;YACjE,+DAA+D;YAC/D,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EACL,oFAAoF;gBACtF,IAAI,EAAE,6DAA6D;gBACnE,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;aAAM;QACL,2GAA2G;QAC3G,OAAO,CAAC,SAAS,KAAK,aAAa;YACnC,CAAA,MAAA,SAAS,CAAC,sBAAsB,0CAAE,gBAAgB,MAAK,UAAU,EACjE;YACA,oEAAoE;YACpE,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EACL,4FAA4F;gBAC9F,IAAI,EAAE,+CAA+C;gBACrD,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;aAAM,IAAI,CAAA,MAAA,SAAS,CAAC,sBAAsB,0CAAE,gBAAgB,MAAK,UAAU,EAAE;YAC5E,+DAA+D;YAC/D,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,4EAA4E;gBACrF,IAAI,EAAE,uDAAuD;gBAC7D,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;KACF;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,mBAAmB,EAAE;QAC7C,oEAAoE;QACpE,+DAA+D;QAC/D,OAAO,IAAI,aAAa,CAAC;YACvB,OAAO,EAAE,6CAA6C;YACtD,IAAI,EAAE,2CAA2C;YACjD,KAAK,EAAE,KAAK;SACb,CAAC,CAAA;KACH;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,iBAAiB,EAAE;QAC3C;;;WAGG;QACH,OAAO,IAAI,aAAa,CAAC;YACvB,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,IAAI,EAAE,sCAAsC;YAC5C,KAAK,EAAE,KAAK;SACb,CAAC,CAAA;KACH;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,mBAAmB,EAAE;QAC7C,MAAM,qBAAqB,GAAG,SAAS,CAAC,gBAAgB,CAAC,MAAM,CAC7D,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,KAAK,YAAY,CACvC,CAAA;QAED,IAAI,qBAAqB,CAAC,MAAM,KAAK,CAAC,EAAE;YACtC,oEAAoE;YACpE,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,uDAAuD;gBAChE,IAAI,EAAE,kCAAkC;gBACxC,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;QAED,+DAA+D;QAC/D,OAAO,IAAI,aAAa,CAAC;YACvB,OAAO,EACL,uFAAuF;YACzF,IAAI,EAAE,uDAAuD;YAC7D,KAAK,EAAE,KAAK;SACb,CAAC,CAAA;KACH;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,eAAe,EAAE;QACzC,MAAM,eAAe,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAA;QAChD,IAAI,CAAC,IAAA,wBAAa,EAAC,eAAe,CAAC,EAAE;YACnC,mEAAmE;YACnE,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,uBAAuB;gBAC3D,IAAI,EAAE,sBAAsB;gBAC5B,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;aAAM,IAAI,SAAS,CAAC,EAAE,CAAC,EAAE,KAAK,eAAe,EAAE;YAC9C,mEAAmE;YACnE,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,cAAc,SAAS,CAAC,EAAE,CAAC,EAAE,8BAA8B;gBACpE,IAAI,EAAE,qBAAqB;gBAC3B,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;KACF;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,WAAW,EAAE;QACrC,IAAI,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,UAAU,GAAG,CAAC,IAAI,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,UAAU,GAAG,EAAE,EAAE;YACzE,mEAAmE;YACnE,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,6CAA6C;gBACtD,IAAI,EAAE,8BAA8B;gBACpC,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;KACF;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,EAAE;QACxC,+DAA+D;QAC/D,+DAA+D;QAC/D,OAAO,IAAI,aAAa,CAAC;YACvB,OAAO,EACL,qGAAqG;YACvG,IAAI,EAAE,mCAAmC;YACzC,KAAK,EAAE,KAAK;SACb,CAAC,CAAA;KACH;IAED,OAAO,IAAI,aAAa,CAAC;QACvB,OAAO,EAAE,2CAA2C;QACpD,IAAI,EAAE,sCAAsC;QAC5C,KAAK,EAAE,KAAK;KACb,CAAC,CAAA;AACJ,CAAC;AAtID,8DAsIC;AAED;;;;;;;;GAQG;AACH,SAAgB,2BAA2B,CAAC,EAC1C,KAAK,EACL,OAAO,GAMR;IACC,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAA;IAE7B,IAAI,CAAC,SAAS,EAAE;QACd,MAAM,KAAK,CAAC,iDAAiD,CAAC,CAAA;KAC/D;IAED,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE;QAC/B,IAAI,OAAO,CAAC,MAAM,YAAY,WAAW,EAAE;YACzC,oEAAoE;YACpE,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,kDAAkD;gBAC3D,IAAI,EAAE,wBAAwB;gBAC9B,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;KACF;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,iBAAiB,EAAE;QAC3C;;;WAGG;QACH,OAAO,IAAI,aAAa,CAAC;YACvB,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,IAAI,EAAE,sCAAsC;YAC5C,KAAK,EAAE,KAAK;SACb,CAAC,CAAA;KACH;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,eAAe,EAAE;QACzC,MAAM,eAAe,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAA;QAChD,IAAI,CAAC,IAAA,wBAAa,EAAC,eAAe,CAAC,EAAE;YACnC,gFAAgF;YAChF,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,uBAAuB;gBAC3D,IAAI,EAAE,sBAAsB;gBAC5B,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;aAAM,IAAI,SAAS,CAAC,IAAI,KAAK,eAAe,EAAE;YAC7C,gFAAgF;YAChF,OAAO,IAAI,aAAa,CAAC;gBACvB,OAAO,EAAE,cAAc,SAAS,CAAC,IAAI,8BAA8B;gBACnE,IAAI,EAAE,qBAAqB;gBAC3B,KAAK,EAAE,KAAK;aACb,CAAC,CAAA;SACH;KACF;SAAM,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,EAAE;QACxC,mEAAmE;QACnE,oEAAoE;QACpE,OAAO,IAAI,aAAa,CAAC;YACvB,OAAO,EACL,8GAA8G;YAChH,IAAI,EAAE,mCAAmC;YACzC,KAAK,EAAE,KAAK;SACb,CAAC,CAAA;KACH;IAED,OAAO,IAAI,aAAa,CAAC;QACvB,OAAO,EAAE,2CAA2C;QACpD,IAAI,EAAE,sCAAsC;QAC5C,KAAK,EAAE,KAAK;KACb,CAAC,CAAA;AACJ,CAAC;AAnED,kEAmEC"}