@tellescope/sdk 1.251.0 → 1.252.1

package/lib/esm/tests/api_tests/security/F-0076-self-admin-role-assignment.test.js

@@ -0,0 +1,218 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __generator = (this && this.__generator) || function (thisArg, body) {
+    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g;
+    return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
+    function verb(n) { return function (v) { return step([n, v]); }; }
+    function step(op) {
+        if (f) throw new TypeError("Generator is already executing.");
+        while (g && (g = 0, op[0] && (_ = 0)), _) try {
+            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
+            if (y = 0, t) op = [op[0] & 2, t.value];
+            switch (op[0]) {
+                case 0: case 1: t = op; break;
+                case 4: _.label++; return { value: op[1], done: false };
+                case 5: _.label++; y = op[1]; op = [0]; continue;
+                case 7: op = _.ops.pop(); _.trys.pop(); continue;
+                default:
+                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
+                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
+                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
+                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
+                    if (t[2]) _.ops.pop();
+                    _.trys.pop(); continue;
+            }
+            op = body.call(thisArg, _);
+        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
+        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
+    }
+};
+require('source-map-support').install();
+import { Session } from "../../../sdk";
+import { assert, log_header, wait, } from "@tellescope/testing";
+import { setup_tests } from "../../setup";
+var host = process.env.API_URL || 'http://localhost:8080';
+/**
+ * Self-role privilege-escalation guard (relates to security-audit finding F-0076, which was
+ * investigated and closed as a FALSE POSITIVE — see that file for the full code trace).
+ *
+ * F-0076 hypothesized that a non-admin staff user could `PATCH /v1/users/{their-own-id}` with
+ * `{ roles: ['Admin'] }` and self-promote to Admin, because the FIRST `users` relationship
+ * constraint ("Only admin users can set the admin role",
+ * [schema.ts:3446](packages/public/schema/src/schema.ts#L3446)) has a self-exception
+ * (`if (_id === session.id) return`).
+ *
+ * That analysis missed the SECOND constraint, "Only admin users can update user roles"
+ * ([schema.ts:3486](packages/public/schema/src/schema.ts#L3486)), which has NO self-exception.
+ * Relationship constraints are AND-evaluated — `validateRelationshipConstraints`
+ * ([routing.ts:1240-1252](packages/private/api/api/modules/routing.ts#L1240)) loops the whole
+ * array and throws 400 on the FIRST evaluator that returns a string. So a non-admin self-update
+ * that includes `roles` passes constraint #1 (self-exception) but is rejected by constraint #2.
+ * The self-promotion is blocked.
+ *
+ * This test locks that boundary in place so a future refactor of the role constraints can't
+ * silently reintroduce the escalation. A dedicated throwaway non-admin user is used as the
+ * "attacker" (we never mutate the shared sdkNonAdmin's roles):
+ *   1. Admin creates a throwaway user and assigns it a non-admin role (`['Provider']`).
+ *   2. Authenticate AS that user via a freshly-minted auth token.
+ *   3. As the attacker, attempt four self-role mutations — ['Admin'], ['Provider','Admin'],
+ *      an arbitrary role, and [] — and assert EACH is blocked.       <-- the security assertions
+ *   4. Confirm (as admin) the attacker's roles are still ['Provider'] — nothing slipped through.
+ *   5. Positive control: admin CAN update the throwaway user's roles. <-- guards against an
+ *      over-restrictive regression that would block legitimate admin role management.
+ *
+ * Expected on current (correct) code: all assertions pass. A regression that made the self-update
+ * path role-writable by non-admins would flip the step-3/step-4 assertions to red.
+ */
+export var self_admin_role_assignment_tests = function (_a) {
+    var sdk = _a.sdk;
+    return __awaiter(void 0, void 0, void 0, function () {
+        var stamp, NON_ADMIN_ROLE, expect_blocked, attackerId, attacker, attackerBefore, sdkAttacker_1, _b, attackerAfter, afterAdminUpdate, _c;
+        var _d;
+        var _e;
+        return __generator(this, function (_f) {
+            switch (_f.label) {
+                case 0:
+                    log_header("F-0076: self-admin role assignment privilege-escalation regression");
+                    stamp = Date.now();
+                    NON_ADMIN_ROLE = 'Provider';
+                    expect_blocked = function (fn, description) { return __awaiter(void 0, void 0, void 0, function () {
+                        var e_1;
+                        return __generator(this, function (_a) {
+                            switch (_a.label) {
+                                case 0:
+                                    _a.trys.push([0, 2, , 3]);
+                                    return [4 /*yield*/, fn()];
+                                case 1:
+                                    _a.sent();
+                                    assert(false, "".concat(description, " - SELF-ROLE ESCALATION SUCCEEDED (expected it to be blocked)"));
+                                    return [3 /*break*/, 3];
+                                case 2:
+                                    e_1 = _a.sent();
+                                    // CRUD relationship-constraint failures surface as 400 { message, info } via SDK parseError.
+                                    assert((e_1 === null || e_1 === void 0 ? void 0 : e_1.code) === 400 || (e_1 === null || e_1 === void 0 ? void 0 : e_1.statusCode) === 400 || typeof (e_1 === null || e_1 === void 0 ? void 0 : e_1.message) === 'string', "".concat(description, " - expected a block error, got: ").concat(JSON.stringify(e_1)), description);
+                                    return [3 /*break*/, 3];
+                                case 3: return [2 /*return*/];
+                            }
+                        });
+                    }); };
+                    _f.label = 1;
+                case 1:
+                    _f.trys.push([1, , 15, 20]);
+                    return [4 /*yield*/, sdk.api.users.createOne({
+                            email: "f0076-attacker-".concat(stamp, "@example.com"),
+                            notificationEmailsDisabled: true,
+                            verifiedEmail: true,
+                        })];
+                case 2:
+                    attacker = _f.sent();
+                    attackerId = attacker.id;
+                    return [4 /*yield*/, sdk.api.users.updateOne(attackerId, { roles: [NON_ADMIN_ROLE] }, { replaceObjectFields: true })];
+                case 3:
+                    _f.sent();
+                    return [4 /*yield*/, wait(undefined, 2000)
+                        // Setup sanity: the attacker holds exactly the non-admin role and is NOT an admin.
+                    ]; // role change triggers a logout; let it propagate before minting a token
+                case 4:
+                    _f.sent(); // role change triggers a logout; let it propagate before minting a token
+                    return [4 /*yield*/, sdk.api.users.getOne(attackerId)];
+                case 5:
+                    attackerBefore = _f.sent();
+                    assert(JSON.stringify(attackerBefore.roles) === JSON.stringify([NON_ADMIN_ROLE]), "Setup failed: expected attacker to hold [".concat(NON_ADMIN_ROLE, "], got ").concat(JSON.stringify(attackerBefore.roles)), 'F-0076 setup: attacker holds a non-admin role');
+                    _b = Session.bind;
+                    _d = {
+                        host: host
+                    };
+                    return [4 /*yield*/, sdk.api.users.generate_auth_token({ id: attackerId })];
+                case 6:
+                    sdkAttacker_1 = new (_b.apply(Session, [void 0, (_d.authToken = (_f.sent()).authToken,
+                            _d)]))();
+                    return [4 /*yield*/, sdkAttacker_1.refresh_session()]; // populate userInfo from the freshly-minted token
+                case 7:
+                    _f.sent(); // populate userInfo from the freshly-minted token
+                    assert(sdkAttacker_1.userInfo.id === attackerId && !((_e = sdkAttacker_1.userInfo.roles) !== null && _e !== void 0 ? _e : []).includes('Admin'), "Setup failed: attacker session is not the expected non-admin user", 'F-0076 setup: authenticated as the non-admin attacker');
+                    // 3. SECURITY ASSERTIONS — every self-role mutation by the non-admin must be blocked.
+                    return [4 /*yield*/, expect_blocked(function () { return sdkAttacker_1.api.users.updateOne(attackerId, { roles: ['Admin'] }, { replaceObjectFields: true }); }, 'F-0076: non-admin self-update to [Admin] is blocked')];
+                case 8:
+                    // 3. SECURITY ASSERTIONS — every self-role mutation by the non-admin must be blocked.
+                    _f.sent();
+                    return [4 /*yield*/, expect_blocked(function () { return sdkAttacker_1.api.users.updateOne(attackerId, { roles: [NON_ADMIN_ROLE, 'Admin'] }, { replaceObjectFields: true }); }, 'F-0076: non-admin self-update to [Provider, Admin] is blocked')];
+                case 9:
+                    _f.sent();
+                    return [4 /*yield*/, expect_blocked(function () { return sdkAttacker_1.api.users.updateOne(attackerId, { roles: ["Arbitrary_".concat(stamp)] }, { replaceObjectFields: true }); }, 'F-0076: non-admin self-update to an arbitrary role is blocked')];
+                case 10:
+                    _f.sent();
+                    return [4 /*yield*/, expect_blocked(function () { return sdkAttacker_1.api.users.updateOne(attackerId, { roles: [] }, { replaceObjectFields: true }); }, 'F-0076: non-admin self-update to [] (would grant defaults) is blocked')
+                        // 4. STATE ASSERTION — nothing slipped through; roles are still the original non-admin role.
+                    ];
+                case 11:
+                    _f.sent();
+                    return [4 /*yield*/, sdk.api.users.getOne(attackerId)];
+                case 12:
+                    attackerAfter = _f.sent();
+                    assert(JSON.stringify(attackerAfter.roles) === JSON.stringify([NON_ADMIN_ROLE]), "ESCALATION LEAK: attacker roles changed to ".concat(JSON.stringify(attackerAfter.roles), " ")
+                        + "after self-update attempts. Expected [".concat(NON_ADMIN_ROLE, "]."), 'F-0076: attacker roles unchanged after all self-escalation attempts');
+                    // 5. POSITIVE CONTROL — an Admin CAN update the user's roles (mechanism is not over-restricted).
+                    return [4 /*yield*/, sdk.api.users.updateOne(attackerId, { roles: [NON_ADMIN_ROLE] }, { replaceObjectFields: true })];
+                case 13:
+                    // 5. POSITIVE CONTROL — an Admin CAN update the user's roles (mechanism is not over-restricted).
+                    _f.sent();
+                    return [4 /*yield*/, sdk.api.users.getOne(attackerId)];
+                case 14:
+                    afterAdminUpdate = _f.sent();
+                    assert(JSON.stringify(afterAdminUpdate.roles) === JSON.stringify([NON_ADMIN_ROLE]), "Admin role update failed: roles are ".concat(JSON.stringify(afterAdminUpdate.roles), ", expected [").concat(NON_ADMIN_ROLE, "]"), 'F-0076: admin can manage user roles (positive control)');
+                    return [3 /*break*/, 20];
+                case 15:
+                    if (!attackerId) return [3 /*break*/, 19];
+                    _f.label = 16;
+                case 16:
+                    _f.trys.push([16, 18, , 19]);
+                    return [4 /*yield*/, sdk.api.users.deleteOne(attackerId)];
+                case 17:
+                    _f.sent();
+                    return [3 /*break*/, 19];
+                case 18:
+                    _c = _f.sent();
+                    return [3 /*break*/, 19];
+                case 19: return [7 /*endfinally*/];
+                case 20: return [2 /*return*/];
+            }
+        });
+    });
+};
+// Allow running this test file independently
+if (require.main === module) {
+    console.log("\uD83C\uDF10 Using API URL: ".concat(host));
+    var sdk_1 = new Session({ host: host });
+    var sdkNonAdmin_1 = new Session({ host: host });
+    var runTests = function () { return __awaiter(void 0, void 0, void 0, function () {
+        return __generator(this, function (_a) {
+            switch (_a.label) {
+                case 0: return [4 /*yield*/, setup_tests(sdk_1, sdkNonAdmin_1)];
+                case 1:
+                    _a.sent();
+                    return [4 /*yield*/, self_admin_role_assignment_tests({ sdk: sdk_1, sdkNonAdmin: sdkNonAdmin_1 })];
+                case 2:
+                    _a.sent();
+                    return [2 /*return*/];
+            }
+        });
+    }); };
+    runTests()
+        .then(function () {
+        console.log("✅ F-0076 self-admin role assignment test suite completed successfully");
+        process.exit(0);
+    })
+        .catch(function (error) {
+        console.error("❌ F-0076 self-admin role assignment test suite failed:", error);
+        process.exit(1);
+    });
+}
+//# sourceMappingURL=F-0076-self-admin-role-assignment.test.js.map

package/lib/esm/tests/api_tests/security/F-0076-self-admin-role-assignment.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"F-0076-self-admin-role-assignment.test.js","sourceRoot":"","sources":["../../../../../src/tests/api_tests/security/F-0076-self-admin-role-assignment.test.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,OAAO,CAAC,oBAAoB,CAAC,CAAC,OAAO,EAAE,CAAC;AAExC,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAA;AACtC,OAAO,EACL,MAAM,EACN,UAAU,EACV,IAAI,GACL,MAAM,qBAAqB,CAAA;AAC5B,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAEzC,IAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,uBAAgC,CAAA;AAEpE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,MAAM,CAAC,IAAM,gCAAgC,GAAG,UAAO,EAAgD;QAA9C,GAAG,SAAA;;;;;;;;oBAC1D,UAAU,CAAC,oEAAoE,CAAC,CAAA;oBAE1E,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;oBAClB,cAAc,GAAG,UAAU,CAAA;oBAG3B,cAAc,GAAG,UAAO,EAAsB,EAAE,WAAmB;;;;;;oCAErE,qBAAM,EAAE,EAAE,EAAA;;oCAAV,SAAU,CAAA;oCACV,MAAM,CAAC,KAAK,EAAE,UAAG,WAAW,kEAA+D,CAAC,CAAA;;;;oCAE5F,6FAA6F;oCAC7F,MAAM,CACJ,CAAA,GAAC,aAAD,GAAC,uBAAD,GAAC,CAAE,IAAI,MAAK,GAAG,IAAI,CAAA,GAAC,aAAD,GAAC,uBAAD,GAAC,CAAE,UAAU,MAAK,GAAG,IAAI,OAAO,CAAA,GAAC,aAAD,GAAC,uBAAD,GAAC,CAAE,OAAO,CAAA,KAAK,QAAQ,EAC1E,UAAG,WAAW,6CAAmC,IAAI,CAAC,SAAS,CAAC,GAAC,CAAC,CAAE,EACpE,WAAW,CACZ,CAAA;;;;;yBAEJ,CAAA;;;;oBASkB,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC;4BAC7C,KAAK,EAAE,yBAAkB,KAAK,iBAAc;4BAC5C,0BAA0B,EAAE,IAAI;4BAChC,aAAa,EAAE,IAAI;yBACb,CAAC,EAAA;;oBAJH,QAAQ,GAAG,SAIR;oBACT,UAAU,GAAG,QAAQ,CAAC,EAAE,CAAA;oBACxB,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,KAAK,EAAE,CAAC,cAAc,CAAC,EAAE,EAAE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAAC,EAAA;;oBAArG,SAAqG,CAAA;oBACrG,qBAAM,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC;wBAE3B,mFAAmF;sBAFxD,CAAC,yEAAyE;;oBAArG,SAA2B,CAAA,CAAC,yEAAyE;oBAG9E,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,EAAA;;oBAAvD,cAAc,GAAG,SAAsC;oBAC7D,MAAM,CACJ,IAAI,CAAC,SAAS,CAAC,cAAc,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,SAAS,CAAC,CAAC,cAAc,CAAC,CAAC,EACzE,mDAA4C,cAAc,oBAAU,IAAI,CAAC,SAAS,CAAC,cAAc,CAAC,KAAK,CAAC,CAAE,EAC1G,+CAA+C,CAChD,CAAA;yBAGuB,OAAO;;wBAC7B,IAAI,MAAA;;oBACQ,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,mBAAmB,CAAC,EAAE,EAAE,EAAE,UAAU,EAAE,CAAC,EAAA;;oBAFnE,gBAAc,cAAI,OAAO,YAE7B,YAAS,GAAE,CAAC,SAA2D,CAAC,CAAC,SAAS;oCAClF;oBACF,qBAAM,aAAW,CAAC,eAAe,EAAE,EAAA,CAAC,kDAAkD;;oBAAtF,SAAmC,CAAA,CAAC,kDAAkD;oBACtF,MAAM,CACJ,aAAW,CAAC,QAAQ,CAAC,EAAE,KAAK,UAAU,IAAI,CAAC,CAAC,MAAA,aAAW,CAAC,QAAQ,CAAC,KAAK,mCAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,EAC/F,mEAAmE,EACnE,uDAAuD,CACxD,CAAA;oBAED,sFAAsF;oBACtF,qBAAM,cAAc,CAClB,cAAM,OAAA,aAAW,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,UAAW,EAAE,EAAE,KAAK,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAAC,EAAjG,CAAiG,EACvG,qDAAqD,CACtD,EAAA;;oBAJD,sFAAsF;oBACtF,SAGC,CAAA;oBACD,qBAAM,cAAc,CAClB,cAAM,OAAA,aAAW,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,UAAW,EAAE,EAAE,KAAK,EAAE,CAAC,cAAc,EAAE,OAAO,CAAC,EAAE,EAAE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAAC,EAAjH,CAAiH,EACvH,+DAA+D,CAChE,EAAA;;oBAHD,SAGC,CAAA;oBACD,qBAAM,cAAc,CAClB,cAAM,OAAA,aAAW,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,UAAW,EAAE,EAAE,KAAK,EAAE,CAAC,oBAAa,KAAK,CAAE,CAAC,EAAE,EAAE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAAC,EAA9G,CAA8G,EACpH,+DAA+D,CAChE,EAAA;;oBAHD,SAGC,CAAA;oBACD,qBAAM,cAAc,CAClB,cAAM,OAAA,aAAW,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,UAAW,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAAC,EAA1F,CAA0F,EAChG,uEAAuE,CACxE;wBAED,6FAA6F;sBAF5F;;oBAHD,SAGC,CAAA;oBAGqB,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,EAAA;;oBAAtD,aAAa,GAAG,SAAsC;oBAC5D,MAAM,CACJ,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,SAAS,CAAC,CAAC,cAAc,CAAC,CAAC,EACxE,qDAA8C,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,KAAK,CAAC,MAAG;0BAChF,gDAAyC,cAAc,OAAI,EAC/D,qEAAqE,CACtE,CAAA;oBAED,iGAAiG;oBACjG,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,KAAK,EAAE,CAAC,cAAc,CAAC,EAAE,EAAE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAAC,EAAA;;oBADrG,iGAAiG;oBACjG,SAAqG,CAAA;oBAC5E,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,EAAA;;oBAAzD,gBAAgB,GAAG,SAAsC;oBAC/D,MAAM,CACJ,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,SAAS,CAAC,CAAC,cAAc,CAAC,CAAC,EAC3E,8CAAuC,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC,KAAK,CAAC,yBAAe,cAAc,MAAG,EAC7G,wDAAwD,CACzD,CAAA;;;yBAGG,UAAU,EAAV,yBAAU;;;;oBACN,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,UAAU,CAAC,EAAA;;oBAAzC,SAAyC,CAAA;;;;;;;;;;CAGpD,CAAA;AAED,6CAA6C;AAC7C,IAAI,OAAO,CAAC,IAAI,KAAK,MAAM,EAAE;IAC3B,OAAO,CAAC,GAAG,CAAC,sCAAqB,IAAI,CAAE,CAAC,CAAA;IACxC,IAAM,KAAG,GAAG,IAAI,OAAO,CAAC,EAAE,IAAI,MAAA,EAAE,CAAC,CAAA;IACjC,IAAM,aAAW,GAAG,IAAI,OAAO,CAAC,EAAE,IAAI,MAAA,EAAE,CAAC,CAAA;IAEzC,IAAM,QAAQ,GAAG;;;wBACf,qBAAM,WAAW,CAAC,KAAG,EAAE,aAAW,CAAC,EAAA;;oBAAnC,SAAmC,CAAA;oBACnC,qBAAM,gCAAgC,CAAC,EAAE,GAAG,OAAA,EAAE,WAAW,eAAA,EAAE,CAAC,EAAA;;oBAA5D,SAA4D,CAAA;;;;SAC7D,CAAA;IAED,QAAQ,EAAE;SACP,IAAI,CAAC;QACJ,OAAO,CAAC,GAAG,CAAC,uEAAuE,CAAC,CAAA;QACpF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC,CAAC;SACD,KAAK,CAAC,UAAC,KAAK;QACX,OAAO,CAAC,KAAK,CAAC,wDAAwD,EAAE,KAAK,CAAC,CAAA;QAC9E,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC,CAAC,CAAA;CACL"}

package/lib/esm/tests/api_tests/user_portal_settings.test.d.ts

@@ -0,0 +1,6 @@
+import { Session } from "../../sdk";
+export declare const user_portal_settings_tests: ({ sdk, sdkNonAdmin }: {
+    sdk: Session;
+    sdkNonAdmin: Session;
+}) => Promise<void>;
+//# sourceMappingURL=user_portal_settings.test.d.ts.map

package/lib/esm/tests/api_tests/user_portal_settings.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user_portal_settings.test.d.ts","sourceRoot":"","sources":["../../../../src/tests/api_tests/user_portal_settings.test.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,OAAO,EAAkB,MAAM,WAAW,CAAA;AAanD,eAAO,MAAM,0BAA0B;SAAuC,OAAO;iBAAe,OAAO;mBAmL1G,CAAA"}

package/lib/esm/tests/api_tests/user_portal_settings.test.js

@@ -0,0 +1,297 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __generator = (this && this.__generator) || function (thisArg, body) {
+    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g;
+    return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
+    function verb(n) { return function (v) { return step([n, v]); }; }
+    function step(op) {
+        if (f) throw new TypeError("Generator is already executing.");
+        while (g && (g = 0, op[0] && (_ = 0)), _) try {
+            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
+            if (y = 0, t) op = [op[0] & 2, t.value];
+            switch (op[0]) {
+                case 0: case 1: t = op; break;
+                case 4: _.label++; return { value: op[1], done: false };
+                case 5: _.label++; y = op[1]; op = [0]; continue;
+                case 7: op = _.ops.pop(); _.trys.pop(); continue;
+                default:
+                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
+                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
+                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
+                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
+                    if (t[2]) _.ops.pop();
+                    _.trys.pop(); continue;
+            }
+            op = body.call(thisArg, _);
+        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
+        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
+    }
+};
+require('source-map-support').install();
+import { Session, EnduserSession } from "../../sdk";
+import { async_test, handleAnyError, log_header, } from "@tellescope/testing";
+import { setup_tests } from "../setup";
+var host = process.env.API_URL || 'http://localhost:8080';
+var businessId = '60398b1131a295e64f084ff6';
+// Main test function that can be called independently
+export var user_portal_settings_tests = function (_a) {
+    var sdk = _a.sdk, sdkNonAdmin = _a.sdkNonAdmin;
+    return __awaiter(void 0, void 0, void 0, function () {
+        var testUser, testEnduserId, enduserSDK;
+        return __generator(this, function (_b) {
+            switch (_b.label) {
+                case 0:
+                    log_header("User portalSettings Tests");
+                    return [4 /*yield*/, sdk.api.users.createOne({
+                            email: "portal_settings_test_".concat(Date.now(), "@test.tellescope.com"),
+                        })
+                        // throwaway enduser used to confirm enduser-visibility of portalSettings
+                    ];
+                case 1:
+                    testUser = _b.sent();
+                    _b.label = 2;
+                case 2:
+                    _b.trys.push([2, , 13, 21]);
+                    // ===== Valid: string values =====
+                    return [4 /*yield*/, async_test('portalSettings - string values accepted', function () { return __awaiter(void 0, void 0, void 0, function () {
+                            var updated;
+                            var _a;
+                            return __generator(this, function (_b) {
+                                switch (_b.label) {
+                                    case 0: return [4 /*yield*/, sdk.api.users.updateOne(testUser.id, { portalSettings: { theme: 'dark' } }, { replaceObjectFields: true })];
+                                    case 1:
+                                        _b.sent();
+                                        return [4 /*yield*/, sdk.api.users.getOne(testUser.id)];
+                                    case 2:
+                                        updated = _b.sent();
+                                        return [2 /*return*/, (_a = updated.portalSettings) === null || _a === void 0 ? void 0 : _a.theme];
+                                }
+                            });
+                        }); }, { onResult: function (r) { return r === 'dark'; } })
+                        // ===== Valid: boolean values + round-trip as real booleans =====
+                    ];
+                case 3:
+                    // ===== Valid: string values =====
+                    _b.sent();
+                    // ===== Valid: boolean values + round-trip as real booleans =====
+                    return [4 /*yield*/, async_test('portalSettings - boolean values accepted and round-trip as booleans', function () { return __awaiter(void 0, void 0, void 0, function () {
+                            var updated;
+                            return __generator(this, function (_a) {
+                                switch (_a.label) {
+                                    case 0: return [4 /*yield*/, sdk.api.users.updateOne(testUser.id, { portalSettings: { showNameInSecureMessaging: true, showAvatar: false } }, { replaceObjectFields: true })];
+                                    case 1:
+                                        _a.sent();
+                                        return [4 /*yield*/, sdk.api.users.getOne(testUser.id)];
+                                    case 2:
+                                        updated = _a.sent();
+                                        return [2 /*return*/, updated.portalSettings];
+                                }
+                            });
+                        }); }, {
+                            onResult: function (r) {
+                                return (r === null || r === void 0 ? void 0 : r.showNameInSecureMessaging) === true &&
+                                    (r === null || r === void 0 ? void 0 : r.showAvatar) === false &&
+                                    // assert real booleans, not coerced strings
+                                    typeof (r === null || r === void 0 ? void 0 : r.showNameInSecureMessaging) === 'boolean' &&
+                                    typeof (r === null || r === void 0 ? void 0 : r.showAvatar) === 'boolean';
+                            },
+                        })
+                        // ===== Valid: mixed string + boolean values, strings stay strings =====
+                    ];
+                case 4:
+                    // ===== Valid: boolean values + round-trip as real booleans =====
+                    _b.sent();
+                    // ===== Valid: mixed string + boolean values, strings stay strings =====
+                    return [4 /*yield*/, async_test('portalSettings - mixed string and boolean values', function () { return __awaiter(void 0, void 0, void 0, function () {
+                            var updated;
+                            return __generator(this, function (_a) {
+                                switch (_a.label) {
+                                    case 0: return [4 /*yield*/, sdk.api.users.updateOne(testUser.id, { portalSettings: { theme: 'light', showAvatar: true } }, { replaceObjectFields: true })];
+                                    case 1:
+                                        _a.sent();
+                                        return [4 /*yield*/, sdk.api.users.getOne(testUser.id)];
+                                    case 2:
+                                        updated = _a.sent();
+                                        return [2 /*return*/, updated.portalSettings];
+                                }
+                            });
+                        }); }, {
+                            onResult: function (r) {
+                                return (r === null || r === void 0 ? void 0 : r.theme) === 'light' &&
+                                    typeof (r === null || r === void 0 ? void 0 : r.theme) === 'string' &&
+                                    (r === null || r === void 0 ? void 0 : r.showAvatar) === true &&
+                                    typeof (r === null || r === void 0 ? void 0 : r.showAvatar) === 'boolean';
+                            },
+                        })
+                        // ===== Valid: empty object (zero-iteration loop passes) =====
+                    ];
+                case 5:
+                    // ===== Valid: mixed string + boolean values, strings stay strings =====
+                    _b.sent();
+                    // ===== Valid: empty object (zero-iteration loop passes) =====
+                    return [4 /*yield*/, async_test('portalSettings - empty object accepted', function () { return __awaiter(void 0, void 0, void 0, function () {
+                            var updated;
+                            return __generator(this, function (_a) {
+                                switch (_a.label) {
+                                    case 0: return [4 /*yield*/, sdk.api.users.updateOne(testUser.id, { portalSettings: {} }, { replaceObjectFields: true })];
+                                    case 1:
+                                        _a.sent();
+                                        return [4 /*yield*/, sdk.api.users.getOne(testUser.id)];
+                                    case 2:
+                                        updated = _a.sent();
+                                        return [2 /*return*/, updated.portalSettings];
+                                }
+                            });
+                        }); }, { onResult: function (r) { return !!r && typeof r === 'object' && Object.keys(r).length === 0; } })
+                        // ===== Invalid: value string > 250 chars =====
+                    ];
+                case 6:
+                    // ===== Valid: empty object (zero-iteration loop passes) =====
+                    _b.sent();
+                    // ===== Invalid: value string > 250 chars =====
+                    return [4 /*yield*/, async_test('portalSettings - value string > 250 chars rejected', function () { return sdk.api.users.updateOne(testUser.id, { portalSettings: { tooLong: 'a'.repeat(251) } }, { replaceObjectFields: true }); }, handleAnyError)
+                        // ===== Invalid: key > 250 chars =====
+                    ];
+                case 7:
+                    // ===== Invalid: value string > 250 chars =====
+                    _b.sent();
+                    // ===== Invalid: key > 250 chars =====
+                    return [4 /*yield*/, async_test('portalSettings - key > 250 chars rejected', function () {
+                            var _a;
+                            return sdk.api.users.updateOne(testUser.id, { portalSettings: (_a = {}, _a['a'.repeat(251)] = 'x', _a) }, { replaceObjectFields: true });
+                        }, handleAnyError)
+                        // ===== Invalid: nested object value (disallowed type) =====
+                    ];
+                case 8:
+                    // ===== Invalid: key > 250 chars =====
+                    _b.sent();
+                    // ===== Invalid: nested object value (disallowed type) =====
+                    return [4 /*yield*/, async_test('portalSettings - nested object value rejected', function () { return sdk.api.users.updateOne(testUser.id, { portalSettings: { k: { nested: 1 } } }, { replaceObjectFields: true }); }, handleAnyError)
+                        // ===== Invalid: array value (disallowed type) =====
+                    ];
+                case 9:
+                    // ===== Invalid: nested object value (disallowed type) =====
+                    _b.sent();
+                    // ===== Invalid: array value (disallowed type) =====
+                    return [4 /*yield*/, async_test('portalSettings - array value rejected', function () { return sdk.api.users.updateOne(testUser.id, { portalSettings: { k: [1, 2] } }, { replaceObjectFields: true }); }, handleAnyError)
+                        // ===== Number value (secondary): orValidator tries boolean then string;
+                        // stringValidator250's escapeString throws on non-strings, so a number is
+                        // rejected by both branches => API validation error. =====
+                    ];
+                case 10:
+                    // ===== Invalid: array value (disallowed type) =====
+                    _b.sent();
+                    // ===== Number value (secondary): orValidator tries boolean then string;
+                    // stringValidator250's escapeString throws on non-strings, so a number is
+                    // rejected by both branches => API validation error. =====
+                    return [4 /*yield*/, async_test('portalSettings - number value rejected', function () { return sdk.api.users.updateOne(testUser.id, { portalSettings: { k: 1 } }, { replaceObjectFields: true }); }, handleAnyError)
+                        // ===== Enduser visibility: portalSettings readable by endusers, un-redacted =====
+                    ];
+                case 11:
+                    // ===== Number value (secondary): orValidator tries boolean then string;
+                    // stringValidator250's escapeString throws on non-strings, so a number is
+                    // rejected by both branches => API validation error. =====
+                    _b.sent();
+                    // ===== Enduser visibility: portalSettings readable by endusers, un-redacted =====
+                    return [4 /*yield*/, async_test('portalSettings - readable by enduser (un-redacted)', function () { return __awaiter(void 0, void 0, void 0, function () {
+                            var testEnduser, asEnduser;
+                            return __generator(this, function (_a) {
+                                switch (_a.label) {
+                                    case 0: 
+                                    // set a known value on the throwaway user
+                                    return [4 /*yield*/, sdk.api.users.updateOne(testUser.id, { portalSettings: { showNameInSecureMessaging: true, theme: 'dark' } }, { replaceObjectFields: true })
+                                        // create + authenticate a throwaway enduser to read as a patient
+                                    ];
+                                    case 1:
+                                        // set a known value on the throwaway user
+                                        _a.sent();
+                                        return [4 /*yield*/, sdk.api.endusers.createOne({
+                                                email: "portal_settings_enduser_".concat(Date.now(), "@test.tellescope.com"),
+                                            })];
+                                    case 2:
+                                        testEnduser = _a.sent();
+                                        testEnduserId = testEnduser.id;
+                                        return [4 /*yield*/, sdk.api.endusers.set_password({ id: testEnduser.id, password: 'TestPassword123!' })];
+                                    case 3:
+                                        _a.sent();
+                                        enduserSDK = new EnduserSession({ host: host, businessId: businessId });
+                                        return [4 /*yield*/, enduserSDK.authenticate(testEnduser.email, 'TestPassword123!')];
+                                    case 4:
+                                        _a.sent();
+                                        return [4 /*yield*/, enduserSDK.api.users.getOne(testUser.id)];
+                                    case 5:
+                                        asEnduser = _a.sent();
+                                        return [2 /*return*/, asEnduser.portalSettings];
+                                }
+                            });
+                        }); }, {
+                            onResult: function (r) {
+                                // field is present and un-redacted for endusers
+                                return (r === null || r === void 0 ? void 0 : r.showNameInSecureMessaging) === true && (r === null || r === void 0 ? void 0 : r.theme) === 'dark';
+                            },
+                        })];
+                case 12:
+                    // ===== Enduser visibility: portalSettings readable by endusers, un-redacted =====
+                    _b.sent();
+                    console.log("✅ All User portalSettings tests passed!");
+                    return [3 /*break*/, 21];
+                case 13:
+                    _b.trys.push([13, , 18, 20]);
+                    if (!enduserSDK) return [3 /*break*/, 15];
+                    return [4 /*yield*/, enduserSDK.api.endusers.logout().catch(function () { })];
+                case 14:
+                    _b.sent();
+                    _b.label = 15;
+                case 15:
+                    if (!testEnduserId) return [3 /*break*/, 17];
+                    return [4 /*yield*/, sdk.api.endusers.deleteOne(testEnduserId)];
+                case 16:
+                    _b.sent();
+                    _b.label = 17;
+                case 17: return [3 /*break*/, 20];
+                case 18: return [4 /*yield*/, sdk.api.users.deleteOne(testUser.id)];
+                case 19:
+                    _b.sent();
+                    return [7 /*endfinally*/];
+                case 20: return [7 /*endfinally*/];
+                case 21: return [2 /*return*/];
+            }
+        });
+    });
+};
+// Allow running this test file independently
+if (require.main === module) {
+    console.log("\uD83C\uDF10 Using API URL: ".concat(host));
+    var sdk_1 = new Session({ host: host });
+    var sdkNonAdmin_1 = new Session({ host: host });
+    var runTests = function () { return __awaiter(void 0, void 0, void 0, function () {
+        return __generator(this, function (_a) {
+            switch (_a.label) {
+                case 0: return [4 /*yield*/, setup_tests(sdk_1, sdkNonAdmin_1)];
+                case 1:
+                    _a.sent();
+                    return [4 /*yield*/, user_portal_settings_tests({ sdk: sdk_1, sdkNonAdmin: sdkNonAdmin_1 })];
+                case 2:
+                    _a.sent();
+                    return [2 /*return*/];
+            }
+        });
+    }); };
+    runTests()
+        .then(function () {
+        console.log("✅ User portalSettings test suite completed successfully");
+        process.exit(0);
+    })
+        .catch(function (error) {
+        console.error("❌ User portalSettings test suite failed:", error);
+        process.exit(1);
+    });
+}
+//# sourceMappingURL=user_portal_settings.test.js.map

package/lib/esm/tests/api_tests/user_portal_settings.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user_portal_settings.test.js","sourceRoot":"","sources":["../../../../src/tests/api_tests/user_portal_settings.test.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,OAAO,CAAC,oBAAoB,CAAC,CAAC,OAAO,EAAE,CAAC;AAExC,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AACnD,OAAO,EAEL,UAAU,EACV,cAAc,EACd,UAAU,GACX,MAAM,qBAAqB,CAAA;AAC5B,OAAO,EAAE,WAAW,EAAE,MAAM,UAAU,CAAA;AAEtC,IAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,uBAAgC,CAAA;AACpE,IAAM,UAAU,GAAG,0BAA0B,CAAA;AAE7C,sDAAsD;AACtD,MAAM,CAAC,IAAM,0BAA0B,GAAG,UAAO,EAA4D;QAA1D,GAAG,SAAA,EAAE,WAAW,iBAAA;;;;;;oBACjE,UAAU,CAAC,2BAA2B,CAAC,CAAA;oBAGtB,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC;4BAC7C,KAAK,EAAE,+BAAwB,IAAI,CAAC,GAAG,EAAE,yBAAsB;yBAChE,CAAC;wBAEF,yEAAyE;sBAFvE;;oBAFI,QAAQ,GAAG,SAEf;;;;oBAOA,mCAAmC;oBACnC,qBAAM,UAAU,CACd,yCAAyC,EACzC;;;;;4CACE,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,EAAE,EAAE,cAAc,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,EAAE,EAAE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAAC,EAAA;;wCAAhH,SAAgH,CAAA;wCAChG,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAA;;wCAAjD,OAAO,GAAG,SAAuC;wCACvD,sBAAO,MAAA,OAAO,CAAC,cAAc,0CAAE,KAAK,EAAA;;;6BACrC,EACD,EAAE,QAAQ,EAAE,UAAC,CAAC,IAAK,OAAA,CAAC,KAAK,MAAM,EAAZ,CAAY,EAAE,CAClC;wBAED,kEAAkE;sBAFjE;;oBATD,mCAAmC;oBACnC,SAQC,CAAA;oBAED,kEAAkE;oBAClE,qBAAM,UAAU,CACd,qEAAqE,EACrE;;;;4CACE,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAC3B,QAAQ,CAAC,EAAE,EACX,EAAE,cAAc,EAAE,EAAE,yBAAyB,EAAE,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,EAAE,EAC1E,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAC9B,EAAA;;wCAJD,SAIC,CAAA;wCACe,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAA;;wCAAjD,OAAO,GAAG,SAAuC;wCACvD,sBAAO,OAAO,CAAC,cAAc,EAAA;;;6BAC9B,EACD;4BACE,QAAQ,EAAE,UAAC,CAAC;gCACV,OAAA,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,yBAAyB,MAAK,IAAI;oCACrC,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,UAAU,MAAK,KAAK;oCACvB,4CAA4C;oCAC5C,OAAO,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,yBAAyB,CAAA,KAAK,SAAS;oCACjD,OAAO,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,UAAU,CAAA,KAAK,SAAS;4BAJlC,CAIkC;yBACrC,CACF;wBAED,yEAAyE;sBAFxE;;oBApBD,kEAAkE;oBAClE,SAmBC,CAAA;oBAED,yEAAyE;oBACzE,qBAAM,UAAU,CACd,kDAAkD,EAClD;;;;4CACE,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAC3B,QAAQ,CAAC,EAAE,EACX,EAAE,cAAc,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,EAAE,EACxD,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAC9B,EAAA;;wCAJD,SAIC,CAAA;wCACe,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAA;;wCAAjD,OAAO,GAAG,SAAuC;wCACvD,sBAAO,OAAO,CAAC,cAAc,EAAA;;;6BAC9B,EACD;4BACE,QAAQ,EAAE,UAAC,CAAC;gCACV,OAAA,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,KAAK,MAAK,OAAO;oCACpB,OAAO,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,KAAK,CAAA,KAAK,QAAQ;oCAC5B,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,UAAU,MAAK,IAAI;oCACtB,OAAO,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,UAAU,CAAA,KAAK,SAAS;4BAHlC,CAGkC;yBACrC,CACF;wBAED,+DAA+D;sBAF9D;;oBAnBD,yEAAyE;oBACzE,SAkBC,CAAA;oBAED,+DAA+D;oBAC/D,qBAAM,UAAU,CACd,wCAAwC,EACxC;;;;4CACE,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,EAAE,EAAE,cAAc,EAAE,EAAE,EAAE,EAAE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAAC,EAAA;;wCAAjG,SAAiG,CAAA;wCACjF,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAA;;wCAAjD,OAAO,GAAG,SAAuC;wCACvD,sBAAO,OAAO,CAAC,cAAc,EAAA;;;6BAC9B,EACD,EAAE,QAAQ,EAAE,UAAC,CAAC,IAAK,OAAA,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,KAAK,CAAC,EAA3D,CAA2D,EAAE,CACjF;wBAED,gDAAgD;sBAF/C;;oBATD,+DAA+D;oBAC/D,SAQC,CAAA;oBAED,gDAAgD;oBAChD,qBAAM,UAAU,CACd,oDAAoD,EACpD,cAAM,OAAA,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAC3B,QAAQ,CAAC,EAAE,EACX,EAAE,cAAc,EAAE,EAAE,OAAO,EAAE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,EAAE,EAChD,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAC9B,EAJK,CAIL,EACD,cAAc,CACf;wBAED,uCAAuC;sBAFtC;;oBATD,gDAAgD;oBAChD,SAQC,CAAA;oBAED,uCAAuC;oBACvC,qBAAM,UAAU,CACd,2CAA2C,EAC3C;;4BAAM,OAAA,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAC3B,QAAQ,CAAC,EAAE,EACX,EAAE,cAAc,YAAI,GAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,IAAG,GAAG,KAAE,EAAE,EAC9C,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAC9B;wBAJK,CAIL,EACD,cAAc,CACf;wBAED,6DAA6D;sBAF5D;;oBATD,uCAAuC;oBACvC,SAQC,CAAA;oBAED,6DAA6D;oBAC7D,qBAAM,UAAU,CACd,+CAA+C,EAC/C,cAAM,OAAA,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAC3B,QAAQ,CAAC,EAAE,EACX,EAAE,cAAc,EAAE,EAAE,CAAC,EAAE,EAAE,MAAM,EAAE,CAAC,EAAS,EAAE,EAAE,EAC/C,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAC9B,EAJK,CAIL,EACD,cAAc,CACf;wBAED,qDAAqD;sBAFpD;;oBATD,6DAA6D;oBAC7D,SAQC,CAAA;oBAED,qDAAqD;oBACrD,qBAAM,UAAU,CACd,uCAAuC,EACvC,cAAM,OAAA,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAC3B,QAAQ,CAAC,EAAE,EACX,EAAE,cAAc,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC,CAAQ,EAAE,EAAE,EACxC,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAC9B,EAJK,CAIL,EACD,cAAc,CACf;wBAED,yEAAyE;wBACzE,0EAA0E;wBAC1E,2DAA2D;sBAJ1D;;oBATD,qDAAqD;oBACrD,SAQC,CAAA;oBAED,yEAAyE;oBACzE,0EAA0E;oBAC1E,2DAA2D;oBAC3D,qBAAM,UAAU,CACd,wCAAwC,EACxC,cAAM,OAAA,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAC3B,QAAQ,CAAC,EAAE,EACX,EAAE,cAAc,EAAE,EAAE,CAAC,EAAE,CAAQ,EAAE,EAAE,EACnC,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAC9B,EAJK,CAIL,EACD,cAAc,CACf;wBAED,mFAAmF;sBAFlF;;oBAXD,yEAAyE;oBACzE,0EAA0E;oBAC1E,2DAA2D;oBAC3D,SAQC,CAAA;oBAED,mFAAmF;oBACnF,qBAAM,UAAU,CACd,oDAAoD,EACpD;;;;;oCACE,0CAA0C;oCAC1C,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAC3B,QAAQ,CAAC,EAAE,EACX,EAAE,cAAc,EAAE,EAAE,yBAAyB,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,EAAE,EACtE,EAAE,mBAAmB,EAAE,IAAI,EAAE,CAC9B;wCAED,iEAAiE;sCAFhE;;wCALD,0CAA0C;wCAC1C,SAIC,CAAA;wCAGmB,qBAAM,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC;gDACnD,KAAK,EAAE,kCAA2B,IAAI,CAAC,GAAG,EAAE,yBAAsB;6CACnE,CAAC,EAAA;;wCAFI,WAAW,GAAG,SAElB;wCACF,aAAa,GAAG,WAAW,CAAC,EAAE,CAAA;wCAC9B,qBAAM,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,EAAE,EAAE,WAAW,CAAC,EAAE,EAAE,QAAQ,EAAE,kBAAkB,EAAE,CAAC,EAAA;;wCAAzF,SAAyF,CAAA;wCAEzF,UAAU,GAAG,IAAI,cAAc,CAAC,EAAE,IAAI,MAAA,EAAE,UAAU,YAAA,EAAE,CAAC,CAAA;wCACrD,qBAAM,UAAU,CAAC,YAAY,CAAC,WAAW,CAAC,KAAM,EAAE,kBAAkB,CAAC,EAAA;;wCAArE,SAAqE,CAAA;wCAEnD,qBAAM,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAA;;wCAA1D,SAAS,GAAG,SAA8C;wCAChE,sBAAO,SAAS,CAAC,cAAc,EAAA;;;6BAChC,EACD;4BACE,QAAQ,EAAE,UAAC,CAAC;gCACV,gDAAgD;gCAChD,OAAA,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,yBAAyB,MAAK,IAAI,IAAI,CAAA,CAAC,aAAD,CAAC,uBAAD,CAAC,CAAE,KAAK,MAAK,MAAM;4BAA5D,CAA4D;yBAC/D,CACF,EAAA;;oBA7BD,mFAAmF;oBACnF,SA4BC,CAAA;oBAED,OAAO,CAAC,GAAG,CAAC,yCAAyC,CAAC,CAAA;;;;yBAGhD,UAAU,EAAV,yBAAU;oBACZ,qBAAM,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,cAAO,CAAC,CAAC,EAAA;;oBAAtD,SAAsD,CAAA;;;yBAEpD,aAAa,EAAb,yBAAa;oBACf,qBAAM,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,aAAa,CAAC,EAAA;;oBAA/C,SAA+C,CAAA;;;yBAGjD,qBAAM,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAA;;oBAA1C,SAA0C,CAAA;;;;;;;CAG/C,CAAA;AAED,6CAA6C;AAC7C,IAAI,OAAO,CAAC,IAAI,KAAK,MAAM,EAAE;IAC3B,OAAO,CAAC,GAAG,CAAC,sCAAqB,IAAI,CAAE,CAAC,CAAA;IACxC,IAAM,KAAG,GAAG,IAAI,OAAO,CAAC,EAAE,IAAI,MAAA,EAAE,CAAC,CAAA;IACjC,IAAM,aAAW,GAAG,IAAI,OAAO,CAAC,EAAE,IAAI,MAAA,EAAE,CAAC,CAAA;IAEzC,IAAM,QAAQ,GAAG;;;wBACf,qBAAM,WAAW,CAAC,KAAG,EAAE,aAAW,CAAC,EAAA;;oBAAnC,SAAmC,CAAA;oBACnC,qBAAM,0BAA0B,CAAC,EAAE,GAAG,OAAA,EAAE,WAAW,eAAA,EAAE,CAAC,EAAA;;oBAAtD,SAAsD,CAAA;;;;SACvD,CAAA;IAED,QAAQ,EAAE;SACP,IAAI,CAAC;QACJ,OAAO,CAAC,GAAG,CAAC,yDAAyD,CAAC,CAAA;QACtE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC,CAAC;SACD,KAAK,CAAC,UAAC,KAAK;QACX,OAAO,CAAC,KAAK,CAAC,0CAA0C,EAAE,KAAK,CAAC,CAAA;QAChE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC,CAAC,CAAA;CACL"}

package/lib/esm/tests/tests.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"tests.d.ts","sourceRoot":"","sources":["../../../src/tests/tests.ts"],"names":[],"mappings":"AAqyEA,eAAO,MAAM,kCAAkC,qBAgJ9C,CAAA;AAED,eAAO,MAAM,mCAAmC,qBA2K/C,CAAA;AAGD,eAAO,MAAM,oBAAoB,qBAoHhC,CAAA;AAED,eAAO,MAAM,+BAA+B,qBAsF3C,CAAA;AAID,eAAO,MAAM,0BAA0B,qBAqCtC,CAAA;AA8vED,eAAO,MAAM,cAAc,qBAqC1B,CAAA;AAotBD,eAAO,MAAM,0BAA0B,qBAmFtC,CAAA;AAqED,eAAO,MAAM,eAAe,qBAmD3B,CAAA;AAED,eAAO,MAAM,oBAAoB,6BAsBhC,CAAA;AAED,eAAO,MAAM,oCAAoC,qBAylBhD,CAAA;AAED,eAAO,MAAM,mCAAmC,qBAkE/C,CAAA;AAw7CD,eAAO,MAAM,yBAAyB,qBA0DrC,CAAA;AAED,eAAO,MAAM,kBAAkB,qBAmK9B,CAAA;AAED,eAAO,MAAM,sBAAsB,qBA0BlC,CAAA;AAGD,eAAO,MAAM,mBAAmB,qBAmC/B,CAAA;AAED,eAAO,MAAM,gCAAgC,mCA2C5C,CAAA;AAED,eAAO,MAAM,cAAc,qBAwb1B,CAAA;AAGD,eAAO,MAAM,oBAAoB,uBAuBhC,CAAA;AA4wBD,eAAO,MAAM,4BAA4B,qBAoExC,CAAA;AAED,eAAO,MAAM,+BAA+B,qBA4U3C,CAAA;AAED,eAAO,MAAM,gDAAgD,qBAwC5D,CAAA;AAED,eAAO,MAAM,qBAAqB,qBAwIjC,CAAA"}
+{"version":3,"file":"tests.d.ts","sourceRoot":"","sources":["../../../src/tests/tests.ts"],"names":[],"mappings":"AAgzEA,eAAO,MAAM,kCAAkC,qBAgJ9C,CAAA;AAED,eAAO,MAAM,mCAAmC,qBA2K/C,CAAA;AAGD,eAAO,MAAM,oBAAoB,qBAoHhC,CAAA;AAED,eAAO,MAAM,+BAA+B,qBAsF3C,CAAA;AAID,eAAO,MAAM,0BAA0B,qBAqCtC,CAAA;AA8vED,eAAO,MAAM,cAAc,qBAqC1B,CAAA;AAotBD,eAAO,MAAM,0BAA0B,qBAmFtC,CAAA;AAqED,eAAO,MAAM,eAAe,qBAmD3B,CAAA;AAED,eAAO,MAAM,oBAAoB,6BAsBhC,CAAA;AAED,eAAO,MAAM,oCAAoC,qBAylBhD,CAAA;AAED,eAAO,MAAM,mCAAmC,qBAkE/C,CAAA;AAw7CD,eAAO,MAAM,yBAAyB,qBA0DrC,CAAA;AAED,eAAO,MAAM,kBAAkB,qBAmK9B,CAAA;AAED,eAAO,MAAM,sBAAsB,qBA0BlC,CAAA;AAGD,eAAO,MAAM,mBAAmB,qBAmC/B,CAAA;AAED,eAAO,MAAM,gCAAgC,mCA2C5C,CAAA;AAED,eAAO,MAAM,cAAc,qBAwb1B,CAAA;AAGD,eAAO,MAAM,oBAAoB,uBAuBhC,CAAA;AA4wBD,eAAO,MAAM,4BAA4B,qBAoExC,CAAA;AAED,eAAO,MAAM,+BAA+B,qBA4U3C,CAAA;AAED,eAAO,MAAM,gDAAgD,qBAwC5D,CAAA;AAED,eAAO,MAAM,qBAAqB,qBAwIjC,CAAA"}