npm - @tenxyte/core - Versions diffs - 0.1.5 - Mend

@tenxyte/core 0.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (39) hide show

package/dist/index.cjs +497 -0
package/dist/index.cjs.map +1 -0
package/dist/index.d.cts +1265 -0
package/dist/index.d.ts +1265 -0
package/dist/index.js +465 -0
package/dist/index.js.map +1 -0
package/package.json +67 -0
package/patched-schema.json +11388 -0
package/src/client.ts +21 -0
package/src/config.ts +0 -0
package/src/http/client.ts +162 -0
package/src/http/index.ts +1 -0
package/src/http/interceptors.ts +117 -0
package/src/index.ts +7 -0
package/src/modules/ai.ts +0 -0
package/src/modules/auth.ts +95 -0
package/src/modules/b2b.ts +0 -0
package/src/modules/rbac.ts +160 -0
package/src/modules/security.ts +122 -0
package/src/modules/user.ts +80 -0
package/src/storage/cookie.ts +39 -0
package/src/storage/index.ts +29 -0
package/src/storage/localStorage.ts +75 -0
package/src/storage/memory.ts +30 -0
package/src/types/api-schema.d.ts +6590 -0
package/src/types/index.ts +150 -0
package/src/utils/device_info.ts +94 -0
package/src/utils/events.ts +71 -0
package/src/utils/jwt.ts +51 -0
package/tests/http.test.ts +144 -0
package/tests/modules/auth.test.ts +93 -0
package/tests/modules/rbac.test.ts +95 -0
package/tests/modules/security.test.ts +75 -0
package/tests/modules/user.test.ts +76 -0
package/tests/storage.test.ts +96 -0
package/tests/utils.test.ts +71 -0
package/tsconfig.json +26 -0
package/tsup.config.ts +10 -0
package/vitest.config.ts +7 -0

package/dist/index.cjs ADDED Viewed

@@ -0,0 +1,497 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  AuthModule: () => AuthModule,
+  RbacModule: () => RbacModule,
+  SecurityModule: () => SecurityModule,
+  TenxyteClient: () => TenxyteClient,
+  TenxyteHttpClient: () => TenxyteHttpClient,
+  UserModule: () => UserModule
+});
+module.exports = __toCommonJS(index_exports);
+// src/http/client.ts
+var TenxyteHttpClient = class {
+  baseUrl;
+  defaultHeaders;
+  // Interceptors
+  requestInterceptors = [];
+  responseInterceptors = [];
+  constructor(options) {
+    this.baseUrl = options.baseUrl.replace(/\/$/, "");
+    this.defaultHeaders = {
+      "Content-Type": "application/json",
+      Accept: "application/json",
+      ...options.headers
+    };
+  }
+  // Interceptor Registration
+  addRequestInterceptor(interceptor) {
+    this.requestInterceptors.push(interceptor);
+  }
+  addResponseInterceptor(interceptor) {
+    this.responseInterceptors.push(interceptor);
+  }
+  /**
+   * Main request method wrapping fetch
+   */
+  async request(endpoint, config = {}) {
+    const urlStr = endpoint.startsWith("http") ? endpoint : `${this.baseUrl}${endpoint.startsWith("/") ? "" : "/"}${endpoint}`;
+    let urlObj = new URL(urlStr);
+    if (config.params) {
+      Object.entries(config.params).forEach(([key, value]) => {
+        if (value !== void 0 && value !== null) {
+          urlObj.searchParams.append(key, String(value));
+        }
+      });
+    }
+    let requestContext = {
+      url: urlObj.toString(),
+      ...config,
+      headers: { ...this.defaultHeaders, ...config.headers || {} }
+    };
+    if (typeof FormData !== "undefined" && requestContext.body instanceof FormData) {
+      const headers = requestContext.headers;
+      delete headers["Content-Type"];
+      delete headers["content-type"];
+    } else if (requestContext.body && typeof requestContext.body === "object") {
+      const contentType = requestContext.headers["Content-Type"] || "";
+      if (contentType.toLowerCase().includes("application/json")) {
+        requestContext.body = JSON.stringify(requestContext.body);
+      }
+    }
+    for (const interceptor of this.requestInterceptors) {
+      requestContext = await interceptor(requestContext);
+    }
+    const { url, ...fetchConfig } = requestContext;
+    try {
+      let response = await fetch(url, fetchConfig);
+      for (const interceptor of this.responseInterceptors) {
+        response = await interceptor(response, { url, config: fetchConfig });
+      }
+      if (!response.ok) {
+        throw await this.normalizeError(response);
+      }
+      if (response.status === 204) {
+        return {};
+      }
+      const contentType = response.headers.get("content-type");
+      if (contentType && contentType.includes("application/json")) {
+        return await response.json();
+      }
+      return await response.text();
+    } catch (error) {
+      if (error && error.code) {
+        throw error;
+      }
+      throw {
+        error: error.message || "Network request failed",
+        code: "NETWORK_ERROR",
+        details: String(error)
+      };
+    }
+  }
+  async normalizeError(response) {
+    try {
+      const body = await response.json();
+      return {
+        error: body.error || body.detail || "API request failed",
+        code: body.code || `HTTP_${response.status}`,
+        details: body.details || body,
+        retry_after: response.headers.has("Retry-After") ? parseInt(response.headers.get("Retry-After"), 10) : void 0
+      };
+    } catch (e) {
+      return {
+        error: `HTTP Error ${response.status}: ${response.statusText}`,
+        code: `HTTP_${response.status}`
+      };
+    }
+  }
+  // Convenience methods
+  get(endpoint, config) {
+    return this.request(endpoint, { ...config, method: "GET" });
+  }
+  post(endpoint, data, config) {
+    return this.request(endpoint, { ...config, method: "POST", body: data });
+  }
+  put(endpoint, data, config) {
+    return this.request(endpoint, { ...config, method: "PUT", body: data });
+  }
+  patch(endpoint, data, config) {
+    return this.request(endpoint, { ...config, method: "PATCH", body: data });
+  }
+  delete(endpoint, config) {
+    return this.request(endpoint, { ...config, method: "DELETE" });
+  }
+};
+// src/modules/auth.ts
+var AuthModule = class {
+  constructor(client) {
+    this.client = client;
+  }
+  /**
+   * Authenticate user with email and password
+   */
+  async loginWithEmail(data) {
+    return this.client.post("/api/v1/auth/login/email/", data);
+  }
+  /**
+   * Authenticate user with international phone number and password
+   */
+  async loginWithPhone(data) {
+    return this.client.post("/api/v1/auth/login/phone/", data);
+  }
+  /**
+   * Register a new user
+   */
+  async register(data) {
+    return this.client.post("/api/v1/auth/register/", data);
+  }
+  /**
+   * Logout from the current session
+   */
+  async logout(refreshToken) {
+    return this.client.post("/api/v1/auth/logout/", { refresh_token: refreshToken });
+  }
+  /**
+   * Logout from all sessions (revokes all refresh tokens)
+   */
+  async logoutAll() {
+    return this.client.post("/api/v1/auth/logout/all/");
+  }
+  /**
+   * Request a magic link for sign-in
+   */
+  async requestMagicLink(data) {
+    return this.client.post("/api/v1/auth/magic-link/request/", data);
+  }
+  /**
+   * Verify a magic link token
+   */
+  async verifyMagicLink(token) {
+    return this.client.get(`/api/v1/auth/magic-link/verify/`, { params: { token } });
+  }
+  /**
+   * Perform OAuth2 Social Authentication (e.g. Google, GitHub)
+   */
+  async loginWithSocial(provider, data) {
+    return this.client.post(`/api/v1/auth/social/${provider}/`, data);
+  }
+  /**
+   * Handle Social Auth Callback (authorization code flow)
+   */
+  async handleSocialCallback(provider, code, redirectUri) {
+    return this.client.get(`/api/v1/auth/social/${provider}/callback/`, {
+      params: { code, redirect_uri: redirectUri }
+    });
+  }
+};
+// src/modules/security.ts
+var SecurityModule = class {
+  constructor(client) {
+    this.client = client;
+  }
+  // --- OTP Verification --- //
+  async requestOtp(data) {
+    return this.client.post("/api/v1/auth/otp/request/", data);
+  }
+  async verifyOtpEmail(data) {
+    return this.client.post("/api/v1/auth/otp/verify/email/", data);
+  }
+  async verifyOtpPhone(data) {
+    return this.client.post("/api/v1/auth/otp/verify/phone/", data);
+  }
+  // --- TOTP / 2FA --- //
+  async get2FAStatus() {
+    return this.client.get("/api/v1/auth/2fa/status/");
+  }
+  async setup2FA() {
+    return this.client.post("/api/v1/auth/2fa/setup/");
+  }
+  async confirm2FA(totp_code) {
+    return this.client.post("/api/v1/auth/2fa/confirm/", { totp_code });
+  }
+  async disable2FA(totp_code, password) {
+    return this.client.post("/api/v1/auth/2fa/disable/", { totp_code, password });
+  }
+  async regenerateBackupCodes(totp_code) {
+    return this.client.post("/api/v1/auth/2fa/backup-codes/", { totp_code });
+  }
+  // --- Password Management --- //
+  async resetPasswordRequest(data) {
+    return this.client.post("/api/v1/auth/password/reset/request/", data);
+  }
+  async resetPasswordConfirm(data) {
+    return this.client.post("/api/v1/auth/password/reset/confirm/", data);
+  }
+  async changePassword(data) {
+    return this.client.post("/api/v1/auth/password/change/", data);
+  }
+  async checkPasswordStrength(data) {
+    return this.client.post("/api/v1/auth/password/strength/", data);
+  }
+  async getPasswordRequirements() {
+    return this.client.get("/api/v1/auth/password/requirements/");
+  }
+  // --- WebAuthn / Passkeys --- //
+  async registerWebAuthnBegin() {
+    return this.client.post("/api/v1/auth/webauthn/register/begin/");
+  }
+  async registerWebAuthnComplete(data) {
+    return this.client.post("/api/v1/auth/webauthn/register/complete/", data);
+  }
+  async authenticateWebAuthnBegin(data) {
+    return this.client.post("/api/v1/auth/webauthn/authenticate/begin/", data || {});
+  }
+  async authenticateWebAuthnComplete(data) {
+    return this.client.post("/api/v1/auth/webauthn/authenticate/complete/", data);
+  }
+  async listWebAuthnCredentials() {
+    return this.client.get("/api/v1/auth/webauthn/credentials/");
+  }
+  async deleteWebAuthnCredential(credentialId) {
+    return this.client.delete(`/api/v1/auth/webauthn/credentials/${credentialId}/`);
+  }
+};
+// src/utils/jwt.ts
+function decodeJwt(token) {
+  try {
+    const parts = token.split(".");
+    if (parts.length !== 3) {
+      return null;
+    }
+    let base64Url = parts[1];
+    if (!base64Url) return null;
+    let base64 = base64Url.replace(/-/g, "+").replace(/_/g, "/");
+    while (base64.length % 4) {
+      base64 += "=";
+    }
+    const isBrowser = typeof window !== "undefined" && typeof window.atob === "function";
+    let jsonPayload;
+    if (isBrowser) {
+      jsonPayload = decodeURIComponent(
+        window.atob(base64).split("").map((c) => "%" + ("00" + c.charCodeAt(0).toString(16)).slice(-2)).join("")
+      );
+    } else {
+      jsonPayload = Buffer.from(base64, "base64").toString("utf8");
+    }
+    return JSON.parse(jsonPayload);
+  } catch (e) {
+    return null;
+  }
+}
+// src/modules/rbac.ts
+var RbacModule = class {
+  constructor(client) {
+    this.client = client;
+  }
+  cachedToken = null;
+  /**
+   * Cache a token to use for parameter-less synchronous checks.
+   */
+  setToken(token) {
+    this.cachedToken = token;
+  }
+  getDecodedToken(token) {
+    const t = token || this.cachedToken;
+    if (!t) return null;
+    return decodeJwt(t);
+  }
+  // --- Synchronous Checks --- //
+  hasRole(role, token) {
+    const decoded = this.getDecodedToken(token);
+    if (!decoded?.roles) return false;
+    return decoded.roles.includes(role);
+  }
+  hasAnyRole(roles, token) {
+    const decoded = this.getDecodedToken(token);
+    if (!decoded?.roles) return false;
+    return roles.some((r) => decoded.roles.includes(r));
+  }
+  hasAllRoles(roles, token) {
+    const decoded = this.getDecodedToken(token);
+    if (!decoded?.roles) return false;
+    return roles.every((r) => decoded.roles.includes(r));
+  }
+  hasPermission(permission, token) {
+    const decoded = this.getDecodedToken(token);
+    if (!decoded?.permissions) return false;
+    return decoded.permissions.includes(permission);
+  }
+  hasAnyPermission(permissions, token) {
+    const decoded = this.getDecodedToken(token);
+    if (!decoded?.permissions) return false;
+    return permissions.some((p) => decoded.permissions.includes(p));
+  }
+  hasAllPermissions(permissions, token) {
+    const decoded = this.getDecodedToken(token);
+    if (!decoded?.permissions) return false;
+    return permissions.every((p) => decoded.permissions.includes(p));
+  }
+  // --- Roles CRUD --- //
+  async listRoles() {
+    return this.client.get("/api/v1/auth/roles/");
+  }
+  async createRole(data) {
+    return this.client.post("/api/v1/auth/roles/", data);
+  }
+  async getRole(roleId) {
+    return this.client.get(`/api/v1/auth/roles/${roleId}/`);
+  }
+  async updateRole(roleId, data) {
+    return this.client.put(`/api/v1/auth/roles/${roleId}/`, data);
+  }
+  async deleteRole(roleId) {
+    return this.client.delete(`/api/v1/auth/roles/${roleId}/`);
+  }
+  // --- Role Permissions Management --- //
+  async getRolePermissions(roleId) {
+    return this.client.get(`/api/v1/auth/roles/${roleId}/permissions/`);
+  }
+  async addPermissionsToRole(roleId, permission_codes) {
+    return this.client.post(`/api/v1/auth/roles/${roleId}/permissions/`, { permission_codes });
+  }
+  async removePermissionsFromRole(roleId, permission_codes) {
+    return this.client.delete(`/api/v1/auth/roles/${roleId}/permissions/`, {
+      // Note: DELETE request with body is supported via our fetch wrapper if enabled,
+      // or we might need to rely on query strings. The schema specifies body or query.
+      // Let's pass it in body via a custom config or URL params.
+      body: { permission_codes }
+    });
+  }
+  // --- Permissions CRUD --- //
+  async listPermissions() {
+    return this.client.get("/api/v1/auth/permissions/");
+  }
+  async createPermission(data) {
+    return this.client.post("/api/v1/auth/permissions/", data);
+  }
+  async getPermission(permissionId) {
+    return this.client.get(`/api/v1/auth/permissions/${permissionId}/`);
+  }
+  async updatePermission(permissionId, data) {
+    return this.client.put(`/api/v1/auth/permissions/${permissionId}/`, data);
+  }
+  async deletePermission(permissionId) {
+    return this.client.delete(`/api/v1/auth/permissions/${permissionId}/`);
+  }
+  // --- Direct Assignment (Users) --- //
+  async assignRoleToUser(userId, roleCode) {
+    return this.client.post(`/api/v1/auth/users/${userId}/roles/`, { role_code: roleCode });
+  }
+  async removeRoleFromUser(userId, roleCode) {
+    return this.client.delete(`/api/v1/auth/users/${userId}/roles/`, {
+      params: { role_code: roleCode }
+    });
+  }
+  async assignPermissionsToUser(userId, permissionCodes) {
+    return this.client.post(`/api/v1/auth/users/${userId}/permissions/`, { permission_codes: permissionCodes });
+  }
+  async removePermissionsFromUser(userId, permissionCodes) {
+    return this.client.delete(`/api/v1/auth/users/${userId}/permissions/`, {
+      body: { permission_codes: permissionCodes }
+    });
+  }
+};
+// src/modules/user.ts
+var UserModule = class {
+  constructor(client) {
+    this.client = client;
+  }
+  // --- Standard Profile Actions --- //
+  async getProfile() {
+    return this.client.get("/api/v1/auth/me/");
+  }
+  async updateProfile(data) {
+    return this.client.patch("/api/v1/auth/me/", data);
+  }
+  /**
+   * Upload an avatar using FormData.
+   * Ensure the environment supports FormData (browser or Node.js v18+).
+   * @param formData The FormData object containing the 'avatar' field.
+   */
+  async uploadAvatar(formData) {
+    return this.client.patch("/api/v1/auth/me/", formData);
+  }
+  async deleteAccount(password, otpCode) {
+    return this.client.post("/api/v1/auth/request-account-deletion/", {
+      password,
+      otp_code: otpCode
+    });
+  }
+  // --- Admin Actions Mapping --- //
+  async listUsers(params) {
+    return this.client.get("/api/v1/auth/admin/users/", { params });
+  }
+  async getUser(userId) {
+    return this.client.get(`/api/v1/auth/admin/users/${userId}/`);
+  }
+  async adminUpdateUser(userId, data) {
+    return this.client.patch(`/api/v1/auth/admin/users/${userId}/`, data);
+  }
+  async adminDeleteUser(userId) {
+    return this.client.delete(`/api/v1/auth/admin/users/${userId}/`);
+  }
+  async banUser(userId, reason = "") {
+    return this.client.post(`/api/v1/auth/admin/users/${userId}/ban/`, { reason });
+  }
+  async unbanUser(userId) {
+    return this.client.post(`/api/v1/auth/admin/users/${userId}/unban/`);
+  }
+  async lockUser(userId, durationMinutes = 30, reason = "") {
+    return this.client.post(`/api/v1/auth/admin/users/${userId}/lock/`, { duration_minutes: durationMinutes, reason });
+  }
+  async unlockUser(userId) {
+    return this.client.post(`/api/v1/auth/admin/users/${userId}/unlock/`);
+  }
+};
+// src/client.ts
+var TenxyteClient = class {
+  http;
+  auth;
+  security;
+  rbac;
+  user;
+  constructor(options) {
+    this.http = new TenxyteHttpClient(options);
+    this.auth = new AuthModule(this.http);
+    this.security = new SecurityModule(this.http);
+    this.rbac = new RbacModule(this.http);
+    this.user = new UserModule(this.http);
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  AuthModule,
+  RbacModule,
+  SecurityModule,
+  TenxyteClient,
+  TenxyteHttpClient,
+  UserModule
+});
+//# sourceMappingURL=index.cjs.map

package/dist/index.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/http/client.ts","../src/modules/auth.ts","../src/modules/security.ts","../src/utils/jwt.ts","../src/modules/rbac.ts","../src/modules/user.ts","../src/client.ts"],"sourcesContent":["export * from './client';\r\nexport * from './http/client';\r\nexport * from './modules/auth';\r\nexport * from './modules/security';\r\nexport * from './modules/rbac';\r\nexport * from './modules/user';\r\nexport * from './types';\r\n","import type { TenxyteError } from '../types';\r\n\r\nexport interface HttpClientOptions {\r\n baseUrl: string;\r\n timeoutMs?: number;\r\n headers?: Record<string, string>;\r\n}\r\n\r\nexport type RequestConfig = Omit<RequestInit, 'body' | 'headers'> & {\r\n body?: unknown;\r\n headers?: Record<string, string>;\r\n params?: Record<string, string | number | boolean>;\r\n};\r\n\r\n/**\r\n * Core HTTP Client underlying the SDK.\r\n * Handles JSON parsing, standard headers, simple request processing,\r\n * and normalizing errors into TenxyteError format.\r\n */\r\nexport class TenxyteHttpClient {\r\n private baseUrl: string;\r\n private defaultHeaders: Record<string, string>;\r\n\r\n // Interceptors\r\n private requestInterceptors: Array<(config: RequestConfig & { url: string }) => Promise<RequestConfig & { url: string }> | (RequestConfig & { url: string })> = [];\r\n private responseInterceptors: Array<(response: Response, request: { url: string; config: RequestConfig }) => Promise<Response> | Response> = [];\r\n\r\n constructor(options: HttpClientOptions) {\r\n this.baseUrl = options.baseUrl.replace(/\\/$/, ''); // Remove trailing slash\r\n this.defaultHeaders = {\r\n 'Content-Type': 'application/json',\r\n Accept: 'application/json',\r\n ...options.headers,\r\n };\r\n }\r\n\r\n // Interceptor Registration\r\n addRequestInterceptor(interceptor: typeof this.requestInterceptors[0]) {\r\n this.requestInterceptors.push(interceptor);\r\n }\r\n\r\n addResponseInterceptor(interceptor: typeof this.responseInterceptors[0]) {\r\n this.responseInterceptors.push(interceptor);\r\n }\r\n\r\n /**\r\n * Main request method wrapping fetch\r\n */\r\n async request<T>(endpoint: string, config: RequestConfig = {}): Promise<T> {\r\n const urlStr = endpoint.startsWith('http')\r\n ? endpoint\r\n : `${this.baseUrl}${endpoint.startsWith('/') ? '' : '/'}${endpoint}`;\r\n\r\n let urlObj = new URL(urlStr);\r\n\r\n if (config.params) {\r\n Object.entries(config.params).forEach(([key, value]) => {\r\n if (value !== undefined && value !== null) {\r\n urlObj.searchParams.append(key, String(value));\r\n }\r\n });\r\n }\r\n\r\n let requestContext: any = {\r\n url: urlObj.toString(),\r\n ...config,\r\n headers: { ...this.defaultHeaders, ...(config.headers || {}) } as Record<string, string>,\r\n };\r\n\r\n // Handle FormData implicitly for multipart requests\r\n if (typeof FormData !== 'undefined' && requestContext.body instanceof FormData) {\r\n const headers = requestContext.headers as Record<string, string>;\r\n // Explicitly remove Content-Type so fetch can auto-assign the multipart boundary\r\n delete headers['Content-Type'];\r\n delete headers['content-type'];\r\n } else if (requestContext.body && typeof requestContext.body === 'object') {\r\n const contentType = (requestContext.headers as Record<string, string>)['Content-Type'] || '';\r\n if (contentType.toLowerCase().includes('application/json')) {\r\n requestContext.body = JSON.stringify(requestContext.body);\r\n }\r\n }\r\n\r\n // Run Request Interceptors\r\n for (const interceptor of this.requestInterceptors) {\r\n requestContext = await interceptor(requestContext);\r\n }\r\n\r\n const { url, ...fetchConfig } = requestContext as any;\r\n\r\n try {\r\n let response = await fetch(url, fetchConfig as RequestInit);\r\n\r\n // Run Response Interceptors (e.g., token refresh logic)\r\n for (const interceptor of this.responseInterceptors) {\r\n response = await interceptor(response, { url, config: fetchConfig as RequestConfig });\r\n }\r\n\r\n if (!response.ok) {\r\n throw await this.normalizeError(response);\r\n }\r\n\r\n // Handle NoContent\r\n if (response.status === 204) {\r\n return {} as T;\r\n }\r\n\r\n const contentType = response.headers.get('content-type');\r\n if (contentType && contentType.includes('application/json')) {\r\n return (await response.json()) as T;\r\n }\r\n\r\n return (await response.text()) as unknown as T;\r\n } catch (error: any) {\r\n if (error && error.code) {\r\n throw error; // Already normalized\r\n }\r\n throw {\r\n error: error.message || 'Network request failed',\r\n code: 'NETWORK_ERROR' as unknown as import('../types').TenxyteErrorCode,\r\n details: String(error)\r\n } as TenxyteError;\r\n }\r\n }\r\n\r\n private async normalizeError(response: Response): Promise<TenxyteError> {\r\n try {\r\n const body = await response.json();\r\n return {\r\n error: body.error || body.detail || 'API request failed',\r\n code: body.code || `HTTP_${response.status}`,\r\n details: body.details || body,\r\n retry_after: response.headers.has('Retry-After') ? parseInt(response.headers.get('Retry-After')!, 10) : undefined,\r\n } as TenxyteError;\r\n } catch (e) {\r\n return {\r\n error: `HTTP Error ${response.status}: ${response.statusText}`,\r\n code: `HTTP_${response.status}` as unknown as import('../types').TenxyteErrorCode,\r\n } as TenxyteError;\r\n }\r\n }\r\n\r\n // Convenience methods\r\n get<T>(endpoint: string, config?: Omit<RequestConfig, 'method' | 'body'>) {\r\n return this.request<T>(endpoint, { ...config, method: 'GET' });\r\n }\r\n\r\n post<T>(endpoint: string, data?: unknown, config?: Omit<RequestConfig, 'method' | 'body'>) {\r\n return this.request<T>(endpoint, { ...config, method: 'POST', body: data });\r\n }\r\n\r\n put<T>(endpoint: string, data?: unknown, config?: Omit<RequestConfig, 'method' | 'body'>) {\r\n return this.request<T>(endpoint, { ...config, method: 'PUT', body: data });\r\n }\r\n\r\n patch<T>(endpoint: string, data?: unknown, config?: Omit<RequestConfig, 'method' | 'body'>) {\r\n return this.request<T>(endpoint, { ...config, method: 'PATCH', body: data });\r\n }\r\n\r\n delete<T>(endpoint: string, config?: Omit<RequestConfig, 'method' | 'body'>) {\r\n return this.request<T>(endpoint, { ...config, method: 'DELETE' });\r\n }\r\n}\r\n","import { TenxyteHttpClient } from '../http/client';\r\nimport { TokenPair, GeneratedSchema } from '../types';\r\n\r\nexport interface LoginEmailOptions {\r\n totp_code?: string;\r\n}\r\n\r\nexport interface LoginPhoneOptions {\r\n totp_code?: string;\r\n}\r\n\r\nexport type RegisterRequest = any;\r\n\r\nexport interface MagicLinkRequest {\r\n email: string;\r\n}\r\n\r\nexport interface SocialLoginRequest {\r\n access_token?: string;\r\n authorization_code?: string;\r\n id_token?: string;\r\n}\r\n\r\nexport class AuthModule {\r\n constructor(private client: TenxyteHttpClient) { }\r\n\r\n /**\r\n * Authenticate user with email and password\r\n */\r\n async loginWithEmail(\r\n data: GeneratedSchema['LoginEmail'],\r\n ): Promise<TokenPair> {\r\n return this.client.post<TokenPair>('/api/v1/auth/login/email/', data);\r\n }\r\n\r\n /**\r\n * Authenticate user with international phone number and password\r\n */\r\n async loginWithPhone(\r\n data: GeneratedSchema['LoginPhone'],\r\n ): Promise<TokenPair> {\r\n return this.client.post<TokenPair>('/api/v1/auth/login/phone/', data);\r\n }\r\n\r\n /**\r\n * Register a new user\r\n */\r\n async register(data: RegisterRequest): Promise<any> {\r\n return this.client.post<any>('/api/v1/auth/register/', data);\r\n }\r\n\r\n /**\r\n * Logout from the current session\r\n */\r\n async logout(refreshToken: string): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/logout/', { refresh_token: refreshToken });\r\n }\r\n\r\n /**\r\n * Logout from all sessions (revokes all refresh tokens)\r\n */\r\n async logoutAll(): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/logout/all/');\r\n }\r\n\r\n /**\r\n * Request a magic link for sign-in\r\n */\r\n async requestMagicLink(data: MagicLinkRequest): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/magic-link/request/', data);\r\n }\r\n\r\n /**\r\n * Verify a magic link token\r\n */\r\n async verifyMagicLink(token: string): Promise<TokenPair> {\r\n return this.client.get<TokenPair>(`/api/v1/auth/magic-link/verify/`, { params: { token } });\r\n }\r\n\r\n /**\r\n * Perform OAuth2 Social Authentication (e.g. Google, GitHub)\r\n */\r\n async loginWithSocial(provider: 'google' | 'github' | 'microsoft' | 'facebook', data: SocialLoginRequest): Promise<TokenPair> {\r\n return this.client.post<TokenPair>(`/api/v1/auth/social/${provider}/`, data);\r\n }\r\n\r\n /**\r\n * Handle Social Auth Callback (authorization code flow)\r\n */\r\n async handleSocialCallback(provider: 'google' | 'github' | 'microsoft' | 'facebook', code: string, redirectUri: string): Promise<TokenPair> {\r\n return this.client.get<TokenPair>(`/api/v1/auth/social/${provider}/callback/`, {\r\n params: { code, redirect_uri: redirectUri },\r\n });\r\n }\r\n}\r\n","import { TenxyteHttpClient } from '../http/client';\r\nimport { TokenPair } from '../types';\r\n\r\nexport interface OtpRequestParams {\r\n email?: string;\r\n phone_country_code?: string;\r\n phone_number?: string;\r\n type: 'email_verification' | 'phone_verification' | 'password_reset';\r\n}\r\n\r\nexport interface VerifyOtpEmailParams {\r\n email: string;\r\n code: string;\r\n}\r\n\r\nexport interface VerifyOtpPhoneParams {\r\n phone_country_code: string;\r\n phone_number: string;\r\n code: string;\r\n}\r\n\r\nexport interface Setup2FAResponse {\r\n qr_code_url: string;\r\n secret: string;\r\n backup_codes: string[];\r\n}\r\n\r\nexport interface WebAuthnRegisterBeginResponse {\r\n publicKey: any; // CredentialCreationOptions\r\n}\r\n\r\nexport interface WebAuthnAuthenticateBeginResponse {\r\n publicKey: any; // CredentialRequestOptions\r\n}\r\n\r\nexport class SecurityModule {\r\n constructor(private client: TenxyteHttpClient) { }\r\n\r\n // --- OTP Verification --- //\r\n\r\n async requestOtp(data: OtpRequestParams): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/otp/request/', data);\r\n }\r\n\r\n async verifyOtpEmail(data: VerifyOtpEmailParams): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/otp/verify/email/', data);\r\n }\r\n\r\n async verifyOtpPhone(data: VerifyOtpPhoneParams): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/otp/verify/phone/', data);\r\n }\r\n\r\n // --- TOTP / 2FA --- //\r\n\r\n async get2FAStatus(): Promise<{ is_enabled: boolean; backup_codes_remaining: number }> {\r\n return this.client.get('/api/v1/auth/2fa/status/');\r\n }\r\n\r\n async setup2FA(): Promise<Setup2FAResponse> {\r\n return this.client.post<Setup2FAResponse>('/api/v1/auth/2fa/setup/');\r\n }\r\n\r\n async confirm2FA(totp_code: string): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/2fa/confirm/', { totp_code });\r\n }\r\n\r\n async disable2FA(totp_code: string, password?: string): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/2fa/disable/', { totp_code, password });\r\n }\r\n\r\n async regenerateBackupCodes(totp_code: string): Promise<{ backup_codes: string[] }> {\r\n return this.client.post('/api/v1/auth/2fa/backup-codes/', { totp_code });\r\n }\r\n\r\n // --- Password Management --- //\r\n\r\n async resetPasswordRequest(data: { email?: string; phone_country_code?: string; phone_number?: string }): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/password/reset/request/', data);\r\n }\r\n\r\n async resetPasswordConfirm(data: { otp_code: string; new_password: string; email?: string; phone_country_code?: string; phone_number?: string }): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/password/reset/confirm/', data);\r\n }\r\n\r\n async changePassword(data: { current_password: string; new_password: string }): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/password/change/', data);\r\n }\r\n\r\n async checkPasswordStrength(data: { password: string; email?: string }): Promise<{ score: number; feedback: string[] }> {\r\n return this.client.post('/api/v1/auth/password/strength/', data);\r\n }\r\n\r\n async getPasswordRequirements(): Promise<any> {\r\n return this.client.get('/api/v1/auth/password/requirements/');\r\n }\r\n\r\n // --- WebAuthn / Passkeys --- //\r\n\r\n async registerWebAuthnBegin(): Promise<WebAuthnRegisterBeginResponse> {\r\n return this.client.post<WebAuthnRegisterBeginResponse>('/api/v1/auth/webauthn/register/begin/');\r\n }\r\n\r\n async registerWebAuthnComplete(data: any): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/webauthn/register/complete/', data);\r\n }\r\n\r\n async authenticateWebAuthnBegin(data?: { email?: string }): Promise<WebAuthnAuthenticateBeginResponse> {\r\n return this.client.post<WebAuthnAuthenticateBeginResponse>('/api/v1/auth/webauthn/authenticate/begin/', data || {});\r\n }\r\n\r\n async authenticateWebAuthnComplete(data: any): Promise<TokenPair> {\r\n return this.client.post<TokenPair>('/api/v1/auth/webauthn/authenticate/complete/', data);\r\n }\r\n\r\n async listWebAuthnCredentials(): Promise<any[]> {\r\n return this.client.get<any[]>('/api/v1/auth/webauthn/credentials/');\r\n }\r\n\r\n async deleteWebAuthnCredential(credentialId: string): Promise<void> {\r\n return this.client.delete<void>(`/api/v1/auth/webauthn/credentials/${credentialId}/`);\r\n }\r\n}\r\n","export interface DecodedTenxyteToken {\r\n exp?: number;\r\n iat?: number;\r\n sub?: string;\r\n roles?: string[];\r\n permissions?: string[];\r\n [key: string]: any;\r\n}\r\n\r\n/**\r\n * Decodes the payload of a JWT without verifying the signature.\r\n * Suitable for client-side routing and UI state.\r\n */\r\nexport function decodeJwt(token: string): DecodedTenxyteToken | null {\r\n try {\r\n const parts = token.split('.');\r\n if (parts.length !== 3) {\r\n return null;\r\n }\r\n\r\n let base64Url = parts[1];\r\n if (!base64Url) return null;\r\n\r\n let base64 = base64Url.replace(/-/g, '+').replace(/_/g, '/');\r\n\r\n // Pad with standard base64 padding\r\n while (base64.length % 4) {\r\n base64 += '=';\r\n }\r\n\r\n const isBrowser = typeof window !== 'undefined' && typeof window.atob === 'function';\r\n let jsonPayload: string;\r\n\r\n if (isBrowser) {\r\n // Browser decode\r\n jsonPayload = decodeURIComponent(\r\n window.atob(base64)\r\n .split('')\r\n .map((c) => '%' + ('00' + c.charCodeAt(0).toString(16)).slice(-2))\r\n .join('')\r\n );\r\n } else {\r\n // Node.js decode\r\n jsonPayload = Buffer.from(base64, 'base64').toString('utf8');\r\n }\r\n\r\n return JSON.parse(jsonPayload);\r\n } catch (e) {\r\n return null;\r\n }\r\n}\r\n","import { TenxyteHttpClient } from '../http/client';\r\nimport { decodeJwt, DecodedTenxyteToken } from '../utils/jwt';\r\n\r\nexport interface Role {\r\n id: string;\r\n name: string;\r\n description?: string;\r\n is_default?: boolean;\r\n permissions?: string[];\r\n}\r\n\r\nexport interface Permission {\r\n id: string;\r\n code: string;\r\n name: string;\r\n description?: string;\r\n}\r\n\r\nexport class RbacModule {\r\n private cachedToken: string | null = null;\r\n\r\n constructor(private client: TenxyteHttpClient) { }\r\n\r\n /**\r\n * Cache a token to use for parameter-less synchronous checks.\r\n */\r\n setToken(token: string | null) {\r\n this.cachedToken = token;\r\n }\r\n\r\n private getDecodedToken(token?: string): DecodedTenxyteToken | null {\r\n const t = token || this.cachedToken;\r\n if (!t) return null;\r\n return decodeJwt(t);\r\n }\r\n\r\n // --- Synchronous Checks --- //\r\n\r\n hasRole(role: string, token?: string): boolean {\r\n const decoded = this.getDecodedToken(token);\r\n if (!decoded?.roles) return false;\r\n return decoded.roles.includes(role);\r\n }\r\n\r\n hasAnyRole(roles: string[], token?: string): boolean {\r\n const decoded = this.getDecodedToken(token);\r\n if (!decoded?.roles) return false;\r\n return roles.some(r => decoded.roles!.includes(r));\r\n }\r\n\r\n hasAllRoles(roles: string[], token?: string): boolean {\r\n const decoded = this.getDecodedToken(token);\r\n if (!decoded?.roles) return false;\r\n return roles.every(r => decoded.roles!.includes(r));\r\n }\r\n\r\n hasPermission(permission: string, token?: string): boolean {\r\n const decoded = this.getDecodedToken(token);\r\n if (!decoded?.permissions) return false;\r\n // Check exact match or wildcard, assuming backend handles wildcard expansion in JWT\r\n return decoded.permissions.includes(permission);\r\n }\r\n\r\n hasAnyPermission(permissions: string[], token?: string): boolean {\r\n const decoded = this.getDecodedToken(token);\r\n if (!decoded?.permissions) return false;\r\n return permissions.some(p => decoded.permissions!.includes(p));\r\n }\r\n\r\n hasAllPermissions(permissions: string[], token?: string): boolean {\r\n const decoded = this.getDecodedToken(token);\r\n if (!decoded?.permissions) return false;\r\n return permissions.every(p => decoded.permissions!.includes(p));\r\n }\r\n\r\n // --- Roles CRUD --- //\r\n\r\n async listRoles(): Promise<Role[]> {\r\n return this.client.get<Role[]>('/api/v1/auth/roles/');\r\n }\r\n\r\n async createRole(data: { name: string; description?: string; permission_codes?: string[]; is_default?: boolean }): Promise<Role> {\r\n return this.client.post<Role>('/api/v1/auth/roles/', data);\r\n }\r\n\r\n async getRole(roleId: string): Promise<Role> {\r\n return this.client.get<Role>(`/api/v1/auth/roles/${roleId}/`);\r\n }\r\n\r\n async updateRole(roleId: string, data: { name?: string; description?: string; permission_codes?: string[]; is_default?: boolean }): Promise<Role> {\r\n return this.client.put<Role>(`/api/v1/auth/roles/${roleId}/`, data);\r\n }\r\n\r\n async deleteRole(roleId: string): Promise<void> {\r\n return this.client.delete<void>(`/api/v1/auth/roles/${roleId}/`);\r\n }\r\n\r\n // --- Role Permissions Management --- //\r\n\r\n async getRolePermissions(roleId: string): Promise<Permission[]> {\r\n return this.client.get<Permission[]>(`/api/v1/auth/roles/${roleId}/permissions/`);\r\n }\r\n\r\n async addPermissionsToRole(roleId: string, permission_codes: string[]): Promise<void> {\r\n return this.client.post<void>(`/api/v1/auth/roles/${roleId}/permissions/`, { permission_codes });\r\n }\r\n\r\n async removePermissionsFromRole(roleId: string, permission_codes: string[]): Promise<void> {\r\n return this.client.delete<void>(`/api/v1/auth/roles/${roleId}/permissions/`, {\r\n // Note: DELETE request with body is supported via our fetch wrapper if enabled,\r\n // or we might need to rely on query strings. The schema specifies body or query.\r\n // Let's pass it in body via a custom config or URL params.\r\n body: { permission_codes }\r\n } as any);\r\n }\r\n\r\n // --- Permissions CRUD --- //\r\n\r\n async listPermissions(): Promise<Permission[]> {\r\n return this.client.get<Permission[]>('/api/v1/auth/permissions/');\r\n }\r\n\r\n async createPermission(data: { code: string; name: string; description?: string; parent_code?: string }): Promise<Permission> {\r\n return this.client.post<Permission>('/api/v1/auth/permissions/', data);\r\n }\r\n\r\n async getPermission(permissionId: string): Promise<Permission> {\r\n return this.client.get<Permission>(`/api/v1/auth/permissions/${permissionId}/`);\r\n }\r\n\r\n async updatePermission(permissionId: string, data: { name?: string; description?: string }): Promise<Permission> {\r\n return this.client.put<Permission>(`/api/v1/auth/permissions/${permissionId}/`, data);\r\n }\r\n\r\n async deletePermission(permissionId: string): Promise<void> {\r\n return this.client.delete<void>(`/api/v1/auth/permissions/${permissionId}/`);\r\n }\r\n\r\n // --- Direct Assignment (Users) --- //\r\n\r\n async assignRoleToUser(userId: string, roleCode: string): Promise<void> {\r\n return this.client.post<void>(`/api/v1/auth/users/${userId}/roles/`, { role_code: roleCode });\r\n }\r\n\r\n async removeRoleFromUser(userId: string, roleCode: string): Promise<void> {\r\n return this.client.delete<void>(`/api/v1/auth/users/${userId}/roles/`, {\r\n params: { role_code: roleCode }\r\n });\r\n }\r\n\r\n async assignPermissionsToUser(userId: string, permissionCodes: string[]): Promise<void> {\r\n return this.client.post<void>(`/api/v1/auth/users/${userId}/permissions/`, { permission_codes: permissionCodes });\r\n }\r\n\r\n async removePermissionsFromUser(userId: string, permissionCodes: string[]): Promise<void> {\r\n return this.client.delete<void>(`/api/v1/auth/users/${userId}/permissions/`, {\r\n body: { permission_codes: permissionCodes }\r\n } as any);\r\n }\r\n}\r\n","import { TenxyteHttpClient } from '../http/client';\r\n\r\nexport interface UpdateProfileParams {\r\n first_name?: string;\r\n last_name?: string;\r\n [key: string]: any; // Allow custom metadata updates\r\n}\r\n\r\nexport interface AdminUpdateUserParams {\r\n first_name?: string;\r\n last_name?: string;\r\n is_active?: boolean;\r\n is_locked?: boolean;\r\n max_sessions?: number;\r\n max_devices?: number;\r\n}\r\n\r\nexport class UserModule {\r\n constructor(private client: TenxyteHttpClient) { }\r\n\r\n // --- Standard Profile Actions --- //\r\n\r\n async getProfile(): Promise<any> {\r\n return this.client.get('/api/v1/auth/me/');\r\n }\r\n\r\n async updateProfile(data: UpdateProfileParams): Promise<any> {\r\n return this.client.patch('/api/v1/auth/me/', data);\r\n }\r\n\r\n /**\r\n * Upload an avatar using FormData.\r\n * Ensure the environment supports FormData (browser or Node.js v18+).\r\n * @param formData The FormData object containing the 'avatar' field.\r\n */\r\n async uploadAvatar(formData: FormData): Promise<any> {\r\n return this.client.patch('/api/v1/auth/me/', formData);\r\n }\r\n\r\n async deleteAccount(password: string, otpCode?: string): Promise<void> {\r\n return this.client.post<void>('/api/v1/auth/request-account-deletion/', {\r\n password,\r\n otp_code: otpCode\r\n });\r\n }\r\n\r\n // --- Admin Actions Mapping --- //\r\n\r\n async listUsers(params?: Record<string, any>): Promise<any[]> {\r\n return this.client.get<any[]>('/api/v1/auth/admin/users/', { params });\r\n }\r\n\r\n async getUser(userId: string): Promise<any> {\r\n return this.client.get(`/api/v1/auth/admin/users/${userId}/`);\r\n }\r\n\r\n async adminUpdateUser(userId: string, data: AdminUpdateUserParams): Promise<any> {\r\n return this.client.patch(`/api/v1/auth/admin/users/${userId}/`, data);\r\n }\r\n\r\n async adminDeleteUser(userId: string): Promise<void> {\r\n return this.client.delete<void>(`/api/v1/auth/admin/users/${userId}/`);\r\n }\r\n\r\n async banUser(userId: string, reason: string = ''): Promise<void> {\r\n return this.client.post<void>(`/api/v1/auth/admin/users/${userId}/ban/`, { reason });\r\n }\r\n\r\n async unbanUser(userId: string): Promise<void> {\r\n return this.client.post<void>(`/api/v1/auth/admin/users/${userId}/unban/`);\r\n }\r\n\r\n async lockUser(userId: string, durationMinutes: number = 30, reason: string = ''): Promise<void> {\r\n return this.client.post<void>(`/api/v1/auth/admin/users/${userId}/lock/`, { duration_minutes: durationMinutes, reason });\r\n }\r\n\r\n async unlockUser(userId: string): Promise<void> {\r\n return this.client.post<void>(`/api/v1/auth/admin/users/${userId}/unlock/`);\r\n }\r\n}\r\n","import { TenxyteHttpClient, HttpClientOptions } from './http/client';\r\nimport { AuthModule } from './modules/auth';\r\nimport { SecurityModule } from './modules/security';\r\nimport { RbacModule } from './modules/rbac';\r\nimport { UserModule } from './modules/user';\r\n\r\nexport class TenxyteClient {\r\n public http: TenxyteHttpClient;\r\n public auth: AuthModule;\r\n public security: SecurityModule;\r\n public rbac: RbacModule;\r\n public user: UserModule;\r\n\r\n constructor(options: HttpClientOptions) {\r\n this.http = new TenxyteHttpClient(options);\r\n this.auth = new AuthModule(this.http);\r\n this.security = new SecurityModule(this.http);\r\n this.rbac = new RbacModule(this.http);\r\n this.user = new UserModule(this.http);\r\n }\r\n}\r\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACmBO,IAAM,oBAAN,MAAwB;AAAA,EACnB;AAAA,EACA;AAAA;AAAA,EAGA,sBAAwJ,CAAC;AAAA,EACzJ,uBAAqI,CAAC;AAAA,EAE9I,YAAY,SAA4B;AACpC,SAAK,UAAU,QAAQ,QAAQ,QAAQ,OAAO,EAAE;AAChD,SAAK,iBAAiB;AAAA,MAClB,gBAAgB;AAAA,MAChB,QAAQ;AAAA,MACR,GAAG,QAAQ;AAAA,IACf;AAAA,EACJ;AAAA;AAAA,EAGA,sBAAsB,aAAiD;AACnE,SAAK,oBAAoB,KAAK,WAAW;AAAA,EAC7C;AAAA,EAEA,uBAAuB,aAAkD;AACrE,SAAK,qBAAqB,KAAK,WAAW;AAAA,EAC9C;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAW,UAAkB,SAAwB,CAAC,GAAe;AACvE,UAAM,SAAS,SAAS,WAAW,MAAM,IACnC,WACA,GAAG,KAAK,OAAO,GAAG,SAAS,WAAW,GAAG,IAAI,KAAK,GAAG,GAAG,QAAQ;AAEtE,QAAI,SAAS,IAAI,IAAI,MAAM;AAE3B,QAAI,OAAO,QAAQ;AACf,aAAO,QAAQ,OAAO,MAAM,EAAE,QAAQ,CAAC,CAAC,KAAK,KAAK,MAAM;AACpD,YAAI,UAAU,UAAa,UAAU,MAAM;AACvC,iBAAO,aAAa,OAAO,KAAK,OAAO,KAAK,CAAC;AAAA,QACjD;AAAA,MACJ,CAAC;AAAA,IACL;AAEA,QAAI,iBAAsB;AAAA,MACtB,KAAK,OAAO,SAAS;AAAA,MACrB,GAAG;AAAA,MACH,SAAS,EAAE,GAAG,KAAK,gBAAgB,GAAI,OAAO,WAAW,CAAC,EAAG;AAAA,IACjE;AAGA,QAAI,OAAO,aAAa,eAAe,eAAe,gBAAgB,UAAU;AAC5E,YAAM,UAAU,eAAe;AAE/B,aAAO,QAAQ,cAAc;AAC7B,aAAO,QAAQ,cAAc;AAAA,IACjC,WAAW,eAAe,QAAQ,OAAO,eAAe,SAAS,UAAU;AACvE,YAAM,cAAe,eAAe,QAAmC,cAAc,KAAK;AAC1F,UAAI,YAAY,YAAY,EAAE,SAAS,kBAAkB,GAAG;AACxD,uBAAe,OAAO,KAAK,UAAU,eAAe,IAAI;AAAA,MAC5D;AAAA,IACJ;AAGA,eAAW,eAAe,KAAK,qBAAqB;AAChD,uBAAiB,MAAM,YAAY,cAAc;AAAA,IACrD;AAEA,UAAM,EAAE,KAAK,GAAG,YAAY,IAAI;AAEhC,QAAI;AACA,UAAI,WAAW,MAAM,MAAM,KAAK,WAA0B;AAG1D,iBAAW,eAAe,KAAK,sBAAsB;AACjD,mBAAW,MAAM,YAAY,UAAU,EAAE,KAAK,QAAQ,YAA6B,CAAC;AAAA,MACxF;AAEA,UAAI,CAAC,SAAS,IAAI;AACd,cAAM,MAAM,KAAK,eAAe,QAAQ;AAAA,MAC5C;AAGA,UAAI,SAAS,WAAW,KAAK;AACzB,eAAO,CAAC;AAAA,MACZ;AAEA,YAAM,cAAc,SAAS,QAAQ,IAAI,cAAc;AACvD,UAAI,eAAe,YAAY,SAAS,kBAAkB,GAAG;AACzD,eAAQ,MAAM,SAAS,KAAK;AAAA,MAChC;AAEA,aAAQ,MAAM,SAAS,KAAK;AAAA,IAChC,SAAS,OAAY;AACjB,UAAI,SAAS,MAAM,MAAM;AACrB,cAAM;AAAA,MACV;AACA,YAAM;AAAA,QACF,OAAO,MAAM,WAAW;AAAA,QACxB,MAAM;AAAA,QACN,SAAS,OAAO,KAAK;AAAA,MACzB;AAAA,IACJ;AAAA,EACJ;AAAA,EAEA,MAAc,eAAe,UAA2C;AACpE,QAAI;AACA,YAAM,OAAO,MAAM,SAAS,KAAK;AACjC,aAAO;AAAA,QACH,OAAO,KAAK,SAAS,KAAK,UAAU;AAAA,QACpC,MAAM,KAAK,QAAQ,QAAQ,SAAS,MAAM;AAAA,QAC1C,SAAS,KAAK,WAAW;AAAA,QACzB,aAAa,SAAS,QAAQ,IAAI,aAAa,IAAI,SAAS,SAAS,QAAQ,IAAI,aAAa,GAAI,EAAE,IAAI;AAAA,MAC5G;AAAA,IACJ,SAAS,GAAG;AACR,aAAO;AAAA,QACH,OAAO,cAAc,SAAS,MAAM,KAAK,SAAS,UAAU;AAAA,QAC5D,MAAM,QAAQ,SAAS,MAAM;AAAA,MACjC;AAAA,IACJ;AAAA,EACJ;AAAA;AAAA,EAGA,IAAO,UAAkB,QAAiD;AACtE,WAAO,KAAK,QAAW,UAAU,EAAE,GAAG,QAAQ,QAAQ,MAAM,CAAC;AAAA,EACjE;AAAA,EAEA,KAAQ,UAAkB,MAAgB,QAAiD;AACvF,WAAO,KAAK,QAAW,UAAU,EAAE,GAAG,QAAQ,QAAQ,QAAQ,MAAM,KAAK,CAAC;AAAA,EAC9E;AAAA,EAEA,IAAO,UAAkB,MAAgB,QAAiD;AACtF,WAAO,KAAK,QAAW,UAAU,EAAE,GAAG,QAAQ,QAAQ,OAAO,MAAM,KAAK,CAAC;AAAA,EAC7E;AAAA,EAEA,MAAS,UAAkB,MAAgB,QAAiD;AACxF,WAAO,KAAK,QAAW,UAAU,EAAE,GAAG,QAAQ,QAAQ,SAAS,MAAM,KAAK,CAAC;AAAA,EAC/E;AAAA,EAEA,OAAU,UAAkB,QAAiD;AACzE,WAAO,KAAK,QAAW,UAAU,EAAE,GAAG,QAAQ,QAAQ,SAAS,CAAC;AAAA,EACpE;AACJ;;;AC1IO,IAAM,aAAN,MAAiB;AAAA,EACpB,YAAoB,QAA2B;AAA3B;AAAA,EAA6B;AAAA;AAAA;AAAA;AAAA,EAKjD,MAAM,eACF,MACkB;AAClB,WAAO,KAAK,OAAO,KAAgB,6BAA6B,IAAI;AAAA,EACxE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eACF,MACkB;AAClB,WAAO,KAAK,OAAO,KAAgB,6BAA6B,IAAI;AAAA,EACxE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,MAAqC;AAChD,WAAO,KAAK,OAAO,KAAU,0BAA0B,IAAI;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,cAAqC;AAC9C,WAAO,KAAK,OAAO,KAAW,wBAAwB,EAAE,eAAe,aAAa,CAAC;AAAA,EACzF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,YAA2B;AAC7B,WAAO,KAAK,OAAO,KAAW,0BAA0B;AAAA,EAC5D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,iBAAiB,MAAuC;AAC1D,WAAO,KAAK,OAAO,KAAW,oCAAoC,IAAI;AAAA,EAC1E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,gBAAgB,OAAmC;AACrD,WAAO,KAAK,OAAO,IAAe,mCAAmC,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;AAAA,EAC9F;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,gBAAgB,UAA0D,MAA8C;AAC1H,WAAO,KAAK,OAAO,KAAgB,uBAAuB,QAAQ,KAAK,IAAI;AAAA,EAC/E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,qBAAqB,UAA0D,MAAc,aAAyC;AACxI,WAAO,KAAK,OAAO,IAAe,uBAAuB,QAAQ,cAAc;AAAA,MAC3E,QAAQ,EAAE,MAAM,cAAc,YAAY;AAAA,IAC9C,CAAC;AAAA,EACL;AACJ;;;AC3DO,IAAM,iBAAN,MAAqB;AAAA,EACxB,YAAoB,QAA2B;AAA3B;AAAA,EAA6B;AAAA;AAAA,EAIjD,MAAM,WAAW,MAAuC;AACpD,WAAO,KAAK,OAAO,KAAW,6BAA6B,IAAI;AAAA,EACnE;AAAA,EAEA,MAAM,eAAe,MAA2C;AAC5D,WAAO,KAAK,OAAO,KAAW,kCAAkC,IAAI;AAAA,EACxE;AAAA,EAEA,MAAM,eAAe,MAA2C;AAC5D,WAAO,KAAK,OAAO,KAAW,kCAAkC,IAAI;AAAA,EACxE;AAAA;AAAA,EAIA,MAAM,eAAiF;AACnF,WAAO,KAAK,OAAO,IAAI,0BAA0B;AAAA,EACrD;AAAA,EAEA,MAAM,WAAsC;AACxC,WAAO,KAAK,OAAO,KAAuB,yBAAyB;AAAA,EACvE;AAAA,EAEA,MAAM,WAAW,WAAkC;AAC/C,WAAO,KAAK,OAAO,KAAW,6BAA6B,EAAE,UAAU,CAAC;AAAA,EAC5E;AAAA,EAEA,MAAM,WAAW,WAAmB,UAAkC;AAClE,WAAO,KAAK,OAAO,KAAW,6BAA6B,EAAE,WAAW,SAAS,CAAC;AAAA,EACtF;AAAA,EAEA,MAAM,sBAAsB,WAAwD;AAChF,WAAO,KAAK,OAAO,KAAK,kCAAkC,EAAE,UAAU,CAAC;AAAA,EAC3E;AAAA;AAAA,EAIA,MAAM,qBAAqB,MAA6F;AACpH,WAAO,KAAK,OAAO,KAAW,wCAAwC,IAAI;AAAA,EAC9E;AAAA,EAEA,MAAM,qBAAqB,MAAqI;AAC5J,WAAO,KAAK,OAAO,KAAW,wCAAwC,IAAI;AAAA,EAC9E;AAAA,EAEA,MAAM,eAAe,MAAyE;AAC1F,WAAO,KAAK,OAAO,KAAW,iCAAiC,IAAI;AAAA,EACvE;AAAA,EAEA,MAAM,sBAAsB,MAA4F;AACpH,WAAO,KAAK,OAAO,KAAK,mCAAmC,IAAI;AAAA,EACnE;AAAA,EAEA,MAAM,0BAAwC;AAC1C,WAAO,KAAK,OAAO,IAAI,qCAAqC;AAAA,EAChE;AAAA;AAAA,EAIA,MAAM,wBAAgE;AAClE,WAAO,KAAK,OAAO,KAAoC,uCAAuC;AAAA,EAClG;AAAA,EAEA,MAAM,yBAAyB,MAA0B;AACrD,WAAO,KAAK,OAAO,KAAW,4CAA4C,IAAI;AAAA,EAClF;AAAA,EAEA,MAAM,0BAA0B,MAAuE;AACnG,WAAO,KAAK,OAAO,KAAwC,6CAA6C,QAAQ,CAAC,CAAC;AAAA,EACtH;AAAA,EAEA,MAAM,6BAA6B,MAA+B;AAC9D,WAAO,KAAK,OAAO,KAAgB,gDAAgD,IAAI;AAAA,EAC3F;AAAA,EAEA,MAAM,0BAA0C;AAC5C,WAAO,KAAK,OAAO,IAAW,oCAAoC;AAAA,EACtE;AAAA,EAEA,MAAM,yBAAyB,cAAqC;AAChE,WAAO,KAAK,OAAO,OAAa,qCAAqC,YAAY,GAAG;AAAA,EACxF;AACJ;;;AC5GO,SAAS,UAAU,OAA2C;AACjE,MAAI;AACA,UAAM,QAAQ,MAAM,MAAM,GAAG;AAC7B,QAAI,MAAM,WAAW,GAAG;AACpB,aAAO;AAAA,IACX;AAEA,QAAI,YAAY,MAAM,CAAC;AACvB,QAAI,CAAC,UAAW,QAAO;AAEvB,QAAI,SAAS,UAAU,QAAQ,MAAM,GAAG,EAAE,QAAQ,MAAM,GAAG;AAG3D,WAAO,OAAO,SAAS,GAAG;AACtB,gBAAU;AAAA,IACd;AAEA,UAAM,YAAY,OAAO,WAAW,eAAe,OAAO,OAAO,SAAS;AAC1E,QAAI;AAEJ,QAAI,WAAW;AAEX,oBAAc;AAAA,QACV,OAAO,KAAK,MAAM,EACb,MAAM,EAAE,EACR,IAAI,CAAC,MAAM,OAAO,OAAO,EAAE,WAAW,CAAC,EAAE,SAAS,EAAE,GAAG,MAAM,EAAE,CAAC,EAChE,KAAK,EAAE;AAAA,MAChB;AAAA,IACJ,OAAO;AAEH,oBAAc,OAAO,KAAK,QAAQ,QAAQ,EAAE,SAAS,MAAM;AAAA,IAC/D;AAEA,WAAO,KAAK,MAAM,WAAW;AAAA,EACjC,SAAS,GAAG;AACR,WAAO;AAAA,EACX;AACJ;;;AChCO,IAAM,aAAN,MAAiB;AAAA,EAGpB,YAAoB,QAA2B;AAA3B;AAAA,EAA6B;AAAA,EAFzC,cAA6B;AAAA;AAAA;AAAA;AAAA,EAOrC,SAAS,OAAsB;AAC3B,SAAK,cAAc;AAAA,EACvB;AAAA,EAEQ,gBAAgB,OAA4C;AAChE,UAAM,IAAI,SAAS,KAAK;AACxB,QAAI,CAAC,EAAG,QAAO;AACf,WAAO,UAAU,CAAC;AAAA,EACtB;AAAA;AAAA,EAIA,QAAQ,MAAc,OAAyB;AAC3C,UAAM,UAAU,KAAK,gBAAgB,KAAK;AAC1C,QAAI,CAAC,SAAS,MAAO,QAAO;AAC5B,WAAO,QAAQ,MAAM,SAAS,IAAI;AAAA,EACtC;AAAA,EAEA,WAAW,OAAiB,OAAyB;AACjD,UAAM,UAAU,KAAK,gBAAgB,KAAK;AAC1C,QAAI,CAAC,SAAS,MAAO,QAAO;AAC5B,WAAO,MAAM,KAAK,OAAK,QAAQ,MAAO,SAAS,CAAC,CAAC;AAAA,EACrD;AAAA,EAEA,YAAY,OAAiB,OAAyB;AAClD,UAAM,UAAU,KAAK,gBAAgB,KAAK;AAC1C,QAAI,CAAC,SAAS,MAAO,QAAO;AAC5B,WAAO,MAAM,MAAM,OAAK,QAAQ,MAAO,SAAS,CAAC,CAAC;AAAA,EACtD;AAAA,EAEA,cAAc,YAAoB,OAAyB;AACvD,UAAM,UAAU,KAAK,gBAAgB,KAAK;AAC1C,QAAI,CAAC,SAAS,YAAa,QAAO;AAElC,WAAO,QAAQ,YAAY,SAAS,UAAU;AAAA,EAClD;AAAA,EAEA,iBAAiB,aAAuB,OAAyB;AAC7D,UAAM,UAAU,KAAK,gBAAgB,KAAK;AAC1C,QAAI,CAAC,SAAS,YAAa,QAAO;AAClC,WAAO,YAAY,KAAK,OAAK,QAAQ,YAAa,SAAS,CAAC,CAAC;AAAA,EACjE;AAAA,EAEA,kBAAkB,aAAuB,OAAyB;AAC9D,UAAM,UAAU,KAAK,gBAAgB,KAAK;AAC1C,QAAI,CAAC,SAAS,YAAa,QAAO;AAClC,WAAO,YAAY,MAAM,OAAK,QAAQ,YAAa,SAAS,CAAC,CAAC;AAAA,EAClE;AAAA;AAAA,EAIA,MAAM,YAA6B;AAC/B,WAAO,KAAK,OAAO,IAAY,qBAAqB;AAAA,EACxD;AAAA,EAEA,MAAM,WAAW,MAAgH;AAC7H,WAAO,KAAK,OAAO,KAAW,uBAAuB,IAAI;AAAA,EAC7D;AAAA,EAEA,MAAM,QAAQ,QAA+B;AACzC,WAAO,KAAK,OAAO,IAAU,sBAAsB,MAAM,GAAG;AAAA,EAChE;AAAA,EAEA,MAAM,WAAW,QAAgB,MAAiH;AAC9I,WAAO,KAAK,OAAO,IAAU,sBAAsB,MAAM,KAAK,IAAI;AAAA,EACtE;AAAA,EAEA,MAAM,WAAW,QAA+B;AAC5C,WAAO,KAAK,OAAO,OAAa,sBAAsB,MAAM,GAAG;AAAA,EACnE;AAAA;AAAA,EAIA,MAAM,mBAAmB,QAAuC;AAC5D,WAAO,KAAK,OAAO,IAAkB,sBAAsB,MAAM,eAAe;AAAA,EACpF;AAAA,EAEA,MAAM,qBAAqB,QAAgB,kBAA2C;AAClF,WAAO,KAAK,OAAO,KAAW,sBAAsB,MAAM,iBAAiB,EAAE,iBAAiB,CAAC;AAAA,EACnG;AAAA,EAEA,MAAM,0BAA0B,QAAgB,kBAA2C;AACvF,WAAO,KAAK,OAAO,OAAa,sBAAsB,MAAM,iBAAiB;AAAA;AAAA;AAAA;AAAA,MAIzE,MAAM,EAAE,iBAAiB;AAAA,IAC7B,CAAQ;AAAA,EACZ;AAAA;AAAA,EAIA,MAAM,kBAAyC;AAC3C,WAAO,KAAK,OAAO,IAAkB,2BAA2B;AAAA,EACpE;AAAA,EAEA,MAAM,iBAAiB,MAAuG;AAC1H,WAAO,KAAK,OAAO,KAAiB,6BAA6B,IAAI;AAAA,EACzE;AAAA,EAEA,MAAM,cAAc,cAA2C;AAC3D,WAAO,KAAK,OAAO,IAAgB,4BAA4B,YAAY,GAAG;AAAA,EAClF;AAAA,EAEA,MAAM,iBAAiB,cAAsB,MAAoE;AAC7G,WAAO,KAAK,OAAO,IAAgB,4BAA4B,YAAY,KAAK,IAAI;AAAA,EACxF;AAAA,EAEA,MAAM,iBAAiB,cAAqC;AACxD,WAAO,KAAK,OAAO,OAAa,4BAA4B,YAAY,GAAG;AAAA,EAC/E;AAAA;AAAA,EAIA,MAAM,iBAAiB,QAAgB,UAAiC;AACpE,WAAO,KAAK,OAAO,KAAW,sBAAsB,MAAM,WAAW,EAAE,WAAW,SAAS,CAAC;AAAA,EAChG;AAAA,EAEA,MAAM,mBAAmB,QAAgB,UAAiC;AACtE,WAAO,KAAK,OAAO,OAAa,sBAAsB,MAAM,WAAW;AAAA,MACnE,QAAQ,EAAE,WAAW,SAAS;AAAA,IAClC,CAAC;AAAA,EACL;AAAA,EAEA,MAAM,wBAAwB,QAAgB,iBAA0C;AACpF,WAAO,KAAK,OAAO,KAAW,sBAAsB,MAAM,iBAAiB,EAAE,kBAAkB,gBAAgB,CAAC;AAAA,EACpH;AAAA,EAEA,MAAM,0BAA0B,QAAgB,iBAA0C;AACtF,WAAO,KAAK,OAAO,OAAa,sBAAsB,MAAM,iBAAiB;AAAA,MACzE,MAAM,EAAE,kBAAkB,gBAAgB;AAAA,IAC9C,CAAQ;AAAA,EACZ;AACJ;;;AC9IO,IAAM,aAAN,MAAiB;AAAA,EACpB,YAAoB,QAA2B;AAA3B;AAAA,EAA6B;AAAA;AAAA,EAIjD,MAAM,aAA2B;AAC7B,WAAO,KAAK,OAAO,IAAI,kBAAkB;AAAA,EAC7C;AAAA,EAEA,MAAM,cAAc,MAAyC;AACzD,WAAO,KAAK,OAAO,MAAM,oBAAoB,IAAI;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,aAAa,UAAkC;AACjD,WAAO,KAAK,OAAO,MAAM,oBAAoB,QAAQ;AAAA,EACzD;AAAA,EAEA,MAAM,cAAc,UAAkB,SAAiC;AACnE,WAAO,KAAK,OAAO,KAAW,0CAA0C;AAAA,MACpE;AAAA,MACA,UAAU;AAAA,IACd,CAAC;AAAA,EACL;AAAA;AAAA,EAIA,MAAM,UAAU,QAA8C;AAC1D,WAAO,KAAK,OAAO,IAAW,6BAA6B,EAAE,OAAO,CAAC;AAAA,EACzE;AAAA,EAEA,MAAM,QAAQ,QAA8B;AACxC,WAAO,KAAK,OAAO,IAAI,4BAA4B,MAAM,GAAG;AAAA,EAChE;AAAA,EAEA,MAAM,gBAAgB,QAAgB,MAA2C;AAC7E,WAAO,KAAK,OAAO,MAAM,4BAA4B,MAAM,KAAK,IAAI;AAAA,EACxE;AAAA,EAEA,MAAM,gBAAgB,QAA+B;AACjD,WAAO,KAAK,OAAO,OAAa,4BAA4B,MAAM,GAAG;AAAA,EACzE;AAAA,EAEA,MAAM,QAAQ,QAAgB,SAAiB,IAAmB;AAC9D,WAAO,KAAK,OAAO,KAAW,4BAA4B,MAAM,SAAS,EAAE,OAAO,CAAC;AAAA,EACvF;AAAA,EAEA,MAAM,UAAU,QAA+B;AAC3C,WAAO,KAAK,OAAO,KAAW,4BAA4B,MAAM,SAAS;AAAA,EAC7E;AAAA,EAEA,MAAM,SAAS,QAAgB,kBAA0B,IAAI,SAAiB,IAAmB;AAC7F,WAAO,KAAK,OAAO,KAAW,4BAA4B,MAAM,UAAU,EAAE,kBAAkB,iBAAiB,OAAO,CAAC;AAAA,EAC3H;AAAA,EAEA,MAAM,WAAW,QAA+B;AAC5C,WAAO,KAAK,OAAO,KAAW,4BAA4B,MAAM,UAAU;AAAA,EAC9E;AACJ;;;ACzEO,IAAM,gBAAN,MAAoB;AAAA,EAChB;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEP,YAAY,SAA4B;AACpC,SAAK,OAAO,IAAI,kBAAkB,OAAO;AACzC,SAAK,OAAO,IAAI,WAAW,KAAK,IAAI;AACpC,SAAK,WAAW,IAAI,eAAe,KAAK,IAAI;AAC5C,SAAK,OAAO,IAAI,WAAW,KAAK,IAAI;AACpC,SAAK,OAAO,IAAI,WAAW,KAAK,IAAI;AAAA,EACxC;AACJ;","names":[]}