@uniforge/platform-shopify 0.1.0-alpha.2

package/dist/rbac/index.d.cts

@@ -0,0 +1,38 @@
+import { Role } from '@uniforge/platform-core/rbac';
+
+/**
+ * Extract user identity from a Shopify online session.
+ *
+ * Maps Shopify's associatedUser fields to the RBAC SessionUser type.
+ * Role mapping: accountOwner → owner, collaborator → collaborator, else → staff.
+ */
+
+/** Shopify user info extracted from a session. */
+interface ShopifyUserInfo {
+    userId: number;
+    email: string;
+    isAccountOwner: boolean;
+    suggestedRole: Role;
+    firstName: string;
+    lastName: string;
+}
+/** Shape of Shopify's onlineAccessInfo from the Session object. */
+interface ShopifyOnlineAccessInfo {
+    associatedUser: {
+        id: number;
+        first_name: string;
+        last_name: string;
+        email: string;
+        account_owner: boolean;
+        collaborator: boolean;
+        email_verified: boolean;
+        locale: string;
+    };
+}
+/**
+ * Extract user info from a Shopify session's online access info.
+ * Returns null if the session has no online access info (offline session).
+ */
+declare function extractShopifyUser(onlineAccessInfo: unknown): ShopifyUserInfo | null;
+
+export { type ShopifyOnlineAccessInfo, type ShopifyUserInfo, extractShopifyUser };

package/dist/rbac/index.d.ts

@@ -0,0 +1,38 @@
+import { Role } from '@uniforge/platform-core/rbac';
+
+/**
+ * Extract user identity from a Shopify online session.
+ *
+ * Maps Shopify's associatedUser fields to the RBAC SessionUser type.
+ * Role mapping: accountOwner → owner, collaborator → collaborator, else → staff.
+ */
+
+/** Shopify user info extracted from a session. */
+interface ShopifyUserInfo {
+    userId: number;
+    email: string;
+    isAccountOwner: boolean;
+    suggestedRole: Role;
+    firstName: string;
+    lastName: string;
+}
+/** Shape of Shopify's onlineAccessInfo from the Session object. */
+interface ShopifyOnlineAccessInfo {
+    associatedUser: {
+        id: number;
+        first_name: string;
+        last_name: string;
+        email: string;
+        account_owner: boolean;
+        collaborator: boolean;
+        email_verified: boolean;
+        locale: string;
+    };
+}
+/**
+ * Extract user info from a Shopify session's online access info.
+ * Returns null if the session has no online access info (offline session).
+ */
+declare function extractShopifyUser(onlineAccessInfo: unknown): ShopifyUserInfo | null;
+
+export { type ShopifyOnlineAccessInfo, type ShopifyUserInfo, extractShopifyUser };

package/dist/rbac/index.js

@@ -0,0 +1,56 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/rbac/index.ts
+var rbac_exports = {};
+__export(rbac_exports, {
+  extractShopifyUser: () => extractShopifyUser
+});
+module.exports = __toCommonJS(rbac_exports);
+
+// src/rbac/user-extractor.ts
+function extractShopifyUser(onlineAccessInfo) {
+  if (!onlineAccessInfo || typeof onlineAccessInfo !== "object") {
+    return null;
+  }
+  const info = onlineAccessInfo;
+  if (!info.associatedUser) {
+    return null;
+  }
+  const user = info.associatedUser;
+  let suggestedRole = "staff";
+  if (user.account_owner) {
+    suggestedRole = "owner";
+  } else if (user.collaborator) {
+    suggestedRole = "collaborator";
+  }
+  return {
+    userId: user.id,
+    email: user.email,
+    isAccountOwner: user.account_owner,
+    suggestedRole,
+    firstName: user.first_name,
+    lastName: user.last_name
+  };
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  extractShopifyUser
+});
+//# sourceMappingURL=index.js.map

package/dist/rbac/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/rbac/index.ts","../../src/rbac/user-extractor.ts"],"sourcesContent":["/**\n * @uniforge/platform-shopify/rbac\n *\n * Shopify-specific RBAC utilities for extracting user identity\n * from Shopify online sessions.\n */\n\nexport { extractShopifyUser } from './user-extractor.js';\nexport type { ShopifyUserInfo, ShopifyOnlineAccessInfo } from './user-extractor.js';\n","/**\n * Extract user identity from a Shopify online session.\n *\n * Maps Shopify's associatedUser fields to the RBAC SessionUser type.\n * Role mapping: accountOwner → owner, collaborator → collaborator, else → staff.\n */\n\nimport type { Role } from '@uniforge/platform-core/rbac';\n\n/** Shopify user info extracted from a session. */\nexport interface ShopifyUserInfo {\n  userId: number;\n  email: string;\n  isAccountOwner: boolean;\n  suggestedRole: Role;\n  firstName: string;\n  lastName: string;\n}\n\n/** Shape of Shopify's onlineAccessInfo from the Session object. */\nexport interface ShopifyOnlineAccessInfo {\n  associatedUser: {\n    id: number;\n    first_name: string;\n    last_name: string;\n    email: string;\n    account_owner: boolean;\n    collaborator: boolean;\n    email_verified: boolean;\n    locale: string;\n  };\n}\n\n/**\n * Extract user info from a Shopify session's online access info.\n * Returns null if the session has no online access info (offline session).\n */\nexport function extractShopifyUser(\n  onlineAccessInfo: unknown,\n): ShopifyUserInfo | null {\n  if (!onlineAccessInfo || typeof onlineAccessInfo !== 'object') {\n    return null;\n  }\n\n  const info = onlineAccessInfo as ShopifyOnlineAccessInfo;\n  if (!info.associatedUser) {\n    return null;\n  }\n\n  const user = info.associatedUser;\n\n  let suggestedRole: Role = 'staff';\n  if (user.account_owner) {\n    suggestedRole = 'owner';\n  } else if (user.collaborator) {\n    suggestedRole = 'collaborator';\n  }\n\n  return {\n    userId: user.id,\n    email: user.email,\n    isAccountOwner: user.account_owner,\n    suggestedRole,\n    firstName: user.first_name,\n    lastName: user.last_name,\n  };\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACqCO,SAAS,mBACd,kBACwB;AACxB,MAAI,CAAC,oBAAoB,OAAO,qBAAqB,UAAU;AAC7D,WAAO;AAAA,EACT;AAEA,QAAM,OAAO;AACb,MAAI,CAAC,KAAK,gBAAgB;AACxB,WAAO;AAAA,EACT;AAEA,QAAM,OAAO,KAAK;AAElB,MAAI,gBAAsB;AAC1B,MAAI,KAAK,eAAe;AACtB,oBAAgB;AAAA,EAClB,WAAW,KAAK,cAAc;AAC5B,oBAAgB;AAAA,EAClB;AAEA,SAAO;AAAA,IACL,QAAQ,KAAK;AAAA,IACb,OAAO,KAAK;AAAA,IACZ,gBAAgB,KAAK;AAAA,IACrB;AAAA,IACA,WAAW,KAAK;AAAA,IAChB,UAAU,KAAK;AAAA,EACjB;AACF;","names":[]}

package/dist/rbac/index.mjs

@@ -0,0 +1,29 @@
+// src/rbac/user-extractor.ts
+function extractShopifyUser(onlineAccessInfo) {
+  if (!onlineAccessInfo || typeof onlineAccessInfo !== "object") {
+    return null;
+  }
+  const info = onlineAccessInfo;
+  if (!info.associatedUser) {
+    return null;
+  }
+  const user = info.associatedUser;
+  let suggestedRole = "staff";
+  if (user.account_owner) {
+    suggestedRole = "owner";
+  } else if (user.collaborator) {
+    suggestedRole = "collaborator";
+  }
+  return {
+    userId: user.id,
+    email: user.email,
+    isAccountOwner: user.account_owner,
+    suggestedRole,
+    firstName: user.first_name,
+    lastName: user.last_name
+  };
+}
+export {
+  extractShopifyUser
+};
+//# sourceMappingURL=index.mjs.map

package/dist/rbac/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/rbac/user-extractor.ts"],"sourcesContent":["/**\n * Extract user identity from a Shopify online session.\n *\n * Maps Shopify's associatedUser fields to the RBAC SessionUser type.\n * Role mapping: accountOwner → owner, collaborator → collaborator, else → staff.\n */\n\nimport type { Role } from '@uniforge/platform-core/rbac';\n\n/** Shopify user info extracted from a session. */\nexport interface ShopifyUserInfo {\n  userId: number;\n  email: string;\n  isAccountOwner: boolean;\n  suggestedRole: Role;\n  firstName: string;\n  lastName: string;\n}\n\n/** Shape of Shopify's onlineAccessInfo from the Session object. */\nexport interface ShopifyOnlineAccessInfo {\n  associatedUser: {\n    id: number;\n    first_name: string;\n    last_name: string;\n    email: string;\n    account_owner: boolean;\n    collaborator: boolean;\n    email_verified: boolean;\n    locale: string;\n  };\n}\n\n/**\n * Extract user info from a Shopify session's online access info.\n * Returns null if the session has no online access info (offline session).\n */\nexport function extractShopifyUser(\n  onlineAccessInfo: unknown,\n): ShopifyUserInfo | null {\n  if (!onlineAccessInfo || typeof onlineAccessInfo !== 'object') {\n    return null;\n  }\n\n  const info = onlineAccessInfo as ShopifyOnlineAccessInfo;\n  if (!info.associatedUser) {\n    return null;\n  }\n\n  const user = info.associatedUser;\n\n  let suggestedRole: Role = 'staff';\n  if (user.account_owner) {\n    suggestedRole = 'owner';\n  } else if (user.collaborator) {\n    suggestedRole = 'collaborator';\n  }\n\n  return {\n    userId: user.id,\n    email: user.email,\n    isAccountOwner: user.account_owner,\n    suggestedRole,\n    firstName: user.first_name,\n    lastName: user.last_name,\n  };\n}\n"],"mappings":";AAqCO,SAAS,mBACd,kBACwB;AACxB,MAAI,CAAC,oBAAoB,OAAO,qBAAqB,UAAU;AAC7D,WAAO;AAAA,EACT;AAEA,QAAM,OAAO;AACb,MAAI,CAAC,KAAK,gBAAgB;AACxB,WAAO;AAAA,EACT;AAEA,QAAM,OAAO,KAAK;AAElB,MAAI,gBAAsB;AAC1B,MAAI,KAAK,eAAe;AACtB,oBAAgB;AAAA,EAClB,WAAW,KAAK,cAAc;AAC5B,oBAAgB;AAAA,EAClB;AAEA,SAAO;AAAA,IACL,QAAQ,KAAK;AAAA,IACb,OAAO,KAAK;AAAA,IACZ,gBAAgB,KAAK;AAAA,IACrB;AAAA,IACA,WAAW,KAAK;AAAA,IAChB,UAAU,KAAK;AAAA,EACjB;AACF;","names":[]}

package/dist/security/index.d.cts

@@ -0,0 +1,26 @@
+import { SecurityHeadersConfig, CSPDirectives, RateLimitConfig, InputValidationRule } from '@uniforge/platform-core/security';
+
+/**
+ * Shopify-specific security defaults.
+ *
+ * Provides pre-configured security headers, CSP directives, and rate limit
+ * settings tuned for Shopify embedded apps.
+ */
+
+declare const SHOPIFY_SECURITY_HEADERS: SecurityHeadersConfig;
+declare const SHOPIFY_CSP_DIRECTIVES: CSPDirectives;
+declare const SHOPIFY_RATE_LIMIT: RateLimitConfig;
+declare const SHOPIFY_GRAPHQL_RATE_LIMIT: RateLimitConfig;
+
+/**
+ * Shopify-specific input validation rules.
+ *
+ * Pre-defined validation rules for common Shopify fields such as
+ * shop domains, API keys, and webhook payloads.
+ */
+
+declare const SHOP_DOMAIN_RULE: InputValidationRule;
+declare const SHOPIFY_API_KEY_RULE: InputValidationRule;
+declare const SHOPIFY_WEBHOOK_VALIDATION_RULES: InputValidationRule[];
+
+export { SHOPIFY_API_KEY_RULE, SHOPIFY_CSP_DIRECTIVES, SHOPIFY_GRAPHQL_RATE_LIMIT, SHOPIFY_RATE_LIMIT, SHOPIFY_SECURITY_HEADERS, SHOPIFY_WEBHOOK_VALIDATION_RULES, SHOP_DOMAIN_RULE };

package/dist/security/index.d.ts

@@ -0,0 +1,26 @@
+import { SecurityHeadersConfig, CSPDirectives, RateLimitConfig, InputValidationRule } from '@uniforge/platform-core/security';
+
+/**
+ * Shopify-specific security defaults.
+ *
+ * Provides pre-configured security headers, CSP directives, and rate limit
+ * settings tuned for Shopify embedded apps.
+ */
+
+declare const SHOPIFY_SECURITY_HEADERS: SecurityHeadersConfig;
+declare const SHOPIFY_CSP_DIRECTIVES: CSPDirectives;
+declare const SHOPIFY_RATE_LIMIT: RateLimitConfig;
+declare const SHOPIFY_GRAPHQL_RATE_LIMIT: RateLimitConfig;
+
+/**
+ * Shopify-specific input validation rules.
+ *
+ * Pre-defined validation rules for common Shopify fields such as
+ * shop domains, API keys, and webhook payloads.
+ */
+
+declare const SHOP_DOMAIN_RULE: InputValidationRule;
+declare const SHOPIFY_API_KEY_RULE: InputValidationRule;
+declare const SHOPIFY_WEBHOOK_VALIDATION_RULES: InputValidationRule[];
+
+export { SHOPIFY_API_KEY_RULE, SHOPIFY_CSP_DIRECTIVES, SHOPIFY_GRAPHQL_RATE_LIMIT, SHOPIFY_RATE_LIMIT, SHOPIFY_SECURITY_HEADERS, SHOPIFY_WEBHOOK_VALIDATION_RULES, SHOP_DOMAIN_RULE };

package/dist/security/index.js

@@ -0,0 +1,102 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/security/index.ts
+var security_exports = {};
+__export(security_exports, {
+  SHOPIFY_API_KEY_RULE: () => SHOPIFY_API_KEY_RULE,
+  SHOPIFY_CSP_DIRECTIVES: () => SHOPIFY_CSP_DIRECTIVES,
+  SHOPIFY_GRAPHQL_RATE_LIMIT: () => SHOPIFY_GRAPHQL_RATE_LIMIT,
+  SHOPIFY_RATE_LIMIT: () => SHOPIFY_RATE_LIMIT,
+  SHOPIFY_SECURITY_HEADERS: () => SHOPIFY_SECURITY_HEADERS,
+  SHOPIFY_WEBHOOK_VALIDATION_RULES: () => SHOPIFY_WEBHOOK_VALIDATION_RULES,
+  SHOP_DOMAIN_RULE: () => SHOP_DOMAIN_RULE
+});
+module.exports = __toCommonJS(security_exports);
+
+// src/security/shopify-security-config.ts
+var SHOPIFY_SECURITY_HEADERS = {
+  hsts: true,
+  hstsMaxAge: 63072e3,
+  // 2 years
+  hstsIncludeSubDomains: true,
+  noSniff: true,
+  frameOptions: "DENY",
+  xssProtection: true,
+  referrerPolicy: "strict-origin-when-cross-origin"
+};
+var SHOPIFY_CSP_DIRECTIVES = {
+  defaultSrc: ["'self'"],
+  scriptSrc: ["'self'", "https://cdn.shopify.com"],
+  styleSrc: ["'self'", "'unsafe-inline'", "https://cdn.shopify.com"],
+  imgSrc: ["'self'", "https:", "data:"],
+  connectSrc: ["'self'", "https://*.shopify.com", "https://*.myshopify.com"],
+  fontSrc: ["'self'", "https://cdn.shopify.com"],
+  frameSrc: ["'self'", "https://*.myshopify.com"],
+  frameAncestors: ["https://admin.shopify.com", "https://*.myshopify.com"]
+};
+var SHOPIFY_RATE_LIMIT = {
+  windowMs: 6e4,
+  // 1 minute
+  maxRequests: 40,
+  // Shopify's REST API limit
+  keyPrefix: "shopify:"
+};
+var SHOPIFY_GRAPHQL_RATE_LIMIT = {
+  windowMs: 1e3,
+  // 1 second
+  maxRequests: 2,
+  // conservative for leaky bucket
+  keyPrefix: "shopify:graphql:"
+};
+
+// src/security/shopify-input-rules.ts
+var SHOP_DOMAIN_RULE = {
+  field: "shopDomain",
+  type: "shopDomain",
+  required: true,
+  message: "Must be a valid .myshopify.com domain"
+};
+var SHOPIFY_API_KEY_RULE = {
+  field: "apiKey",
+  type: "apiKey",
+  required: true,
+  message: "Must be a valid Shopify API key"
+};
+var SHOPIFY_WEBHOOK_VALIDATION_RULES = [
+  SHOP_DOMAIN_RULE,
+  {
+    field: "topic",
+    type: "string",
+    required: true,
+    maxLength: 100,
+    message: "Webhook topic is required"
+  }
+];
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  SHOPIFY_API_KEY_RULE,
+  SHOPIFY_CSP_DIRECTIVES,
+  SHOPIFY_GRAPHQL_RATE_LIMIT,
+  SHOPIFY_RATE_LIMIT,
+  SHOPIFY_SECURITY_HEADERS,
+  SHOPIFY_WEBHOOK_VALIDATION_RULES,
+  SHOP_DOMAIN_RULE
+});
+//# sourceMappingURL=index.js.map

package/dist/security/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/security/index.ts","../../src/security/shopify-security-config.ts","../../src/security/shopify-input-rules.ts"],"sourcesContent":["/**\n * @uniforge/platform-shopify/security\n *\n * Shopify-specific security defaults — pre-configured headers,\n * CSP directives, rate limits, and input validation rules.\n */\n\nexport {\n  SHOPIFY_SECURITY_HEADERS,\n  SHOPIFY_CSP_DIRECTIVES,\n  SHOPIFY_RATE_LIMIT,\n  SHOPIFY_GRAPHQL_RATE_LIMIT,\n} from './shopify-security-config.js';\n\nexport {\n  SHOP_DOMAIN_RULE,\n  SHOPIFY_API_KEY_RULE,\n  SHOPIFY_WEBHOOK_VALIDATION_RULES,\n} from './shopify-input-rules.js';\n","/**\n * Shopify-specific security defaults.\n *\n * Provides pre-configured security headers, CSP directives, and rate limit\n * settings tuned for Shopify embedded apps.\n */\n\nimport type {\n  SecurityHeadersConfig,\n  CSPDirectives,\n  RateLimitConfig,\n} from '@uniforge/platform-core/security';\n\nexport const SHOPIFY_SECURITY_HEADERS: SecurityHeadersConfig = {\n  hsts: true,\n  hstsMaxAge: 63072000, // 2 years\n  hstsIncludeSubDomains: true,\n  noSniff: true,\n  frameOptions: 'DENY',\n  xssProtection: true,\n  referrerPolicy: 'strict-origin-when-cross-origin',\n};\n\nexport const SHOPIFY_CSP_DIRECTIVES: CSPDirectives = {\n  defaultSrc: [\"'self'\"],\n  scriptSrc: [\"'self'\", 'https://cdn.shopify.com'],\n  styleSrc: [\"'self'\", \"'unsafe-inline'\", 'https://cdn.shopify.com'],\n  imgSrc: [\"'self'\", 'https:', 'data:'],\n  connectSrc: [\"'self'\", 'https://*.shopify.com', 'https://*.myshopify.com'],\n  fontSrc: [\"'self'\", 'https://cdn.shopify.com'],\n  frameSrc: [\"'self'\", 'https://*.myshopify.com'],\n  frameAncestors: ['https://admin.shopify.com', 'https://*.myshopify.com'],\n};\n\nexport const SHOPIFY_RATE_LIMIT: RateLimitConfig = {\n  windowMs: 60000, // 1 minute\n  maxRequests: 40, // Shopify's REST API limit\n  keyPrefix: 'shopify:',\n};\n\nexport const SHOPIFY_GRAPHQL_RATE_LIMIT: RateLimitConfig = {\n  windowMs: 1000, // 1 second\n  maxRequests: 2, // conservative for leaky bucket\n  keyPrefix: 'shopify:graphql:',\n};\n","/**\n * Shopify-specific input validation rules.\n *\n * Pre-defined validation rules for common Shopify fields such as\n * shop domains, API keys, and webhook payloads.\n */\n\nimport type { InputValidationRule } from '@uniforge/platform-core/security';\n\nexport const SHOP_DOMAIN_RULE: InputValidationRule = {\n  field: 'shopDomain',\n  type: 'shopDomain',\n  required: true,\n  message: 'Must be a valid .myshopify.com domain',\n};\n\nexport const SHOPIFY_API_KEY_RULE: InputValidationRule = {\n  field: 'apiKey',\n  type: 'apiKey',\n  required: true,\n  message: 'Must be a valid Shopify API key',\n};\n\nexport const SHOPIFY_WEBHOOK_VALIDATION_RULES: InputValidationRule[] = [\n  SHOP_DOMAIN_RULE,\n  {\n    field: 'topic',\n    type: 'string',\n    required: true,\n    maxLength: 100,\n    message: 'Webhook topic is required',\n  },\n];\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACaO,IAAM,2BAAkD;AAAA,EAC7D,MAAM;AAAA,EACN,YAAY;AAAA;AAAA,EACZ,uBAAuB;AAAA,EACvB,SAAS;AAAA,EACT,cAAc;AAAA,EACd,eAAe;AAAA,EACf,gBAAgB;AAClB;AAEO,IAAM,yBAAwC;AAAA,EACnD,YAAY,CAAC,QAAQ;AAAA,EACrB,WAAW,CAAC,UAAU,yBAAyB;AAAA,EAC/C,UAAU,CAAC,UAAU,mBAAmB,yBAAyB;AAAA,EACjE,QAAQ,CAAC,UAAU,UAAU,OAAO;AAAA,EACpC,YAAY,CAAC,UAAU,yBAAyB,yBAAyB;AAAA,EACzE,SAAS,CAAC,UAAU,yBAAyB;AAAA,EAC7C,UAAU,CAAC,UAAU,yBAAyB;AAAA,EAC9C,gBAAgB,CAAC,6BAA6B,yBAAyB;AACzE;AAEO,IAAM,qBAAsC;AAAA,EACjD,UAAU;AAAA;AAAA,EACV,aAAa;AAAA;AAAA,EACb,WAAW;AACb;AAEO,IAAM,6BAA8C;AAAA,EACzD,UAAU;AAAA;AAAA,EACV,aAAa;AAAA;AAAA,EACb,WAAW;AACb;;;ACnCO,IAAM,mBAAwC;AAAA,EACnD,OAAO;AAAA,EACP,MAAM;AAAA,EACN,UAAU;AAAA,EACV,SAAS;AACX;AAEO,IAAM,uBAA4C;AAAA,EACvD,OAAO;AAAA,EACP,MAAM;AAAA,EACN,UAAU;AAAA,EACV,SAAS;AACX;AAEO,IAAM,mCAA0D;AAAA,EACrE;AAAA,EACA;AAAA,IACE,OAAO;AAAA,IACP,MAAM;AAAA,IACN,UAAU;AAAA,IACV,WAAW;AAAA,IACX,SAAS;AAAA,EACX;AACF;","names":[]}

package/dist/security/index.mjs

@@ -0,0 +1,69 @@
+// src/security/shopify-security-config.ts
+var SHOPIFY_SECURITY_HEADERS = {
+  hsts: true,
+  hstsMaxAge: 63072e3,
+  // 2 years
+  hstsIncludeSubDomains: true,
+  noSniff: true,
+  frameOptions: "DENY",
+  xssProtection: true,
+  referrerPolicy: "strict-origin-when-cross-origin"
+};
+var SHOPIFY_CSP_DIRECTIVES = {
+  defaultSrc: ["'self'"],
+  scriptSrc: ["'self'", "https://cdn.shopify.com"],
+  styleSrc: ["'self'", "'unsafe-inline'", "https://cdn.shopify.com"],
+  imgSrc: ["'self'", "https:", "data:"],
+  connectSrc: ["'self'", "https://*.shopify.com", "https://*.myshopify.com"],
+  fontSrc: ["'self'", "https://cdn.shopify.com"],
+  frameSrc: ["'self'", "https://*.myshopify.com"],
+  frameAncestors: ["https://admin.shopify.com", "https://*.myshopify.com"]
+};
+var SHOPIFY_RATE_LIMIT = {
+  windowMs: 6e4,
+  // 1 minute
+  maxRequests: 40,
+  // Shopify's REST API limit
+  keyPrefix: "shopify:"
+};
+var SHOPIFY_GRAPHQL_RATE_LIMIT = {
+  windowMs: 1e3,
+  // 1 second
+  maxRequests: 2,
+  // conservative for leaky bucket
+  keyPrefix: "shopify:graphql:"
+};
+
+// src/security/shopify-input-rules.ts
+var SHOP_DOMAIN_RULE = {
+  field: "shopDomain",
+  type: "shopDomain",
+  required: true,
+  message: "Must be a valid .myshopify.com domain"
+};
+var SHOPIFY_API_KEY_RULE = {
+  field: "apiKey",
+  type: "apiKey",
+  required: true,
+  message: "Must be a valid Shopify API key"
+};
+var SHOPIFY_WEBHOOK_VALIDATION_RULES = [
+  SHOP_DOMAIN_RULE,
+  {
+    field: "topic",
+    type: "string",
+    required: true,
+    maxLength: 100,
+    message: "Webhook topic is required"
+  }
+];
+export {
+  SHOPIFY_API_KEY_RULE,
+  SHOPIFY_CSP_DIRECTIVES,
+  SHOPIFY_GRAPHQL_RATE_LIMIT,
+  SHOPIFY_RATE_LIMIT,
+  SHOPIFY_SECURITY_HEADERS,
+  SHOPIFY_WEBHOOK_VALIDATION_RULES,
+  SHOP_DOMAIN_RULE
+};
+//# sourceMappingURL=index.mjs.map

package/dist/security/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/security/shopify-security-config.ts","../../src/security/shopify-input-rules.ts"],"sourcesContent":["/**\n * Shopify-specific security defaults.\n *\n * Provides pre-configured security headers, CSP directives, and rate limit\n * settings tuned for Shopify embedded apps.\n */\n\nimport type {\n  SecurityHeadersConfig,\n  CSPDirectives,\n  RateLimitConfig,\n} from '@uniforge/platform-core/security';\n\nexport const SHOPIFY_SECURITY_HEADERS: SecurityHeadersConfig = {\n  hsts: true,\n  hstsMaxAge: 63072000, // 2 years\n  hstsIncludeSubDomains: true,\n  noSniff: true,\n  frameOptions: 'DENY',\n  xssProtection: true,\n  referrerPolicy: 'strict-origin-when-cross-origin',\n};\n\nexport const SHOPIFY_CSP_DIRECTIVES: CSPDirectives = {\n  defaultSrc: [\"'self'\"],\n  scriptSrc: [\"'self'\", 'https://cdn.shopify.com'],\n  styleSrc: [\"'self'\", \"'unsafe-inline'\", 'https://cdn.shopify.com'],\n  imgSrc: [\"'self'\", 'https:', 'data:'],\n  connectSrc: [\"'self'\", 'https://*.shopify.com', 'https://*.myshopify.com'],\n  fontSrc: [\"'self'\", 'https://cdn.shopify.com'],\n  frameSrc: [\"'self'\", 'https://*.myshopify.com'],\n  frameAncestors: ['https://admin.shopify.com', 'https://*.myshopify.com'],\n};\n\nexport const SHOPIFY_RATE_LIMIT: RateLimitConfig = {\n  windowMs: 60000, // 1 minute\n  maxRequests: 40, // Shopify's REST API limit\n  keyPrefix: 'shopify:',\n};\n\nexport const SHOPIFY_GRAPHQL_RATE_LIMIT: RateLimitConfig = {\n  windowMs: 1000, // 1 second\n  maxRequests: 2, // conservative for leaky bucket\n  keyPrefix: 'shopify:graphql:',\n};\n","/**\n * Shopify-specific input validation rules.\n *\n * Pre-defined validation rules for common Shopify fields such as\n * shop domains, API keys, and webhook payloads.\n */\n\nimport type { InputValidationRule } from '@uniforge/platform-core/security';\n\nexport const SHOP_DOMAIN_RULE: InputValidationRule = {\n  field: 'shopDomain',\n  type: 'shopDomain',\n  required: true,\n  message: 'Must be a valid .myshopify.com domain',\n};\n\nexport const SHOPIFY_API_KEY_RULE: InputValidationRule = {\n  field: 'apiKey',\n  type: 'apiKey',\n  required: true,\n  message: 'Must be a valid Shopify API key',\n};\n\nexport const SHOPIFY_WEBHOOK_VALIDATION_RULES: InputValidationRule[] = [\n  SHOP_DOMAIN_RULE,\n  {\n    field: 'topic',\n    type: 'string',\n    required: true,\n    maxLength: 100,\n    message: 'Webhook topic is required',\n  },\n];\n"],"mappings":";AAaO,IAAM,2BAAkD;AAAA,EAC7D,MAAM;AAAA,EACN,YAAY;AAAA;AAAA,EACZ,uBAAuB;AAAA,EACvB,SAAS;AAAA,EACT,cAAc;AAAA,EACd,eAAe;AAAA,EACf,gBAAgB;AAClB;AAEO,IAAM,yBAAwC;AAAA,EACnD,YAAY,CAAC,QAAQ;AAAA,EACrB,WAAW,CAAC,UAAU,yBAAyB;AAAA,EAC/C,UAAU,CAAC,UAAU,mBAAmB,yBAAyB;AAAA,EACjE,QAAQ,CAAC,UAAU,UAAU,OAAO;AAAA,EACpC,YAAY,CAAC,UAAU,yBAAyB,yBAAyB;AAAA,EACzE,SAAS,CAAC,UAAU,yBAAyB;AAAA,EAC7C,UAAU,CAAC,UAAU,yBAAyB;AAAA,EAC9C,gBAAgB,CAAC,6BAA6B,yBAAyB;AACzE;AAEO,IAAM,qBAAsC;AAAA,EACjD,UAAU;AAAA;AAAA,EACV,aAAa;AAAA;AAAA,EACb,WAAW;AACb;AAEO,IAAM,6BAA8C;AAAA,EACzD,UAAU;AAAA;AAAA,EACV,aAAa;AAAA;AAAA,EACb,WAAW;AACb;;;ACnCO,IAAM,mBAAwC;AAAA,EACnD,OAAO;AAAA,EACP,MAAM;AAAA,EACN,UAAU;AAAA,EACV,SAAS;AACX;AAEO,IAAM,uBAA4C;AAAA,EACvD,OAAO;AAAA,EACP,MAAM;AAAA,EACN,UAAU;AAAA,EACV,SAAS;AACX;AAEO,IAAM,mCAA0D;AAAA,EACrE;AAAA,EACA;AAAA,IACE,OAAO;AAAA,IACP,MAAM;AAAA,IACN,UAAU;AAAA,IACV,WAAW;AAAA,IACX,SAAS;AAAA,EACX;AACF;","names":[]}

package/dist/webhooks/index.d.cts

@@ -0,0 +1,36 @@
+import { WebhookRegistration } from '@uniforge/platform-core/webhooks';
+
+/**
+ * Shopify webhook registration via GraphQL.
+ *
+ * Uses dependency-injected GraphQL function to register, unregister,
+ * and list webhook subscriptions without importing the full Shopify client.
+ */
+
+/** Dependency-injected GraphQL query function. */
+type GraphQLFn = (query: string, variables?: Record<string, unknown>) => Promise<{
+    data?: unknown;
+    errors?: unknown[];
+}>;
+interface ShopifyWebhookSubscription {
+    id: string;
+    topic: string;
+    endpoint: {
+        callbackUrl?: string;
+    };
+    format: string;
+}
+interface RegisterWebhookResult {
+    success: boolean;
+    webhookSubscriptionId?: string;
+    errors?: string[];
+}
+interface UnregisterWebhookResult {
+    success: boolean;
+    errors?: string[];
+}
+declare function registerShopifyWebhook(graphqlFn: GraphQLFn, registration: WebhookRegistration): Promise<RegisterWebhookResult>;
+declare function unregisterShopifyWebhook(graphqlFn: GraphQLFn, webhookId: string): Promise<UnregisterWebhookResult>;
+declare function listShopifyWebhooks(graphqlFn: GraphQLFn, first?: number): Promise<ShopifyWebhookSubscription[]>;
+
+export { type GraphQLFn, type RegisterWebhookResult, type ShopifyWebhookSubscription, type UnregisterWebhookResult, listShopifyWebhooks, registerShopifyWebhook, unregisterShopifyWebhook };

package/dist/webhooks/index.d.ts

@@ -0,0 +1,36 @@
+import { WebhookRegistration } from '@uniforge/platform-core/webhooks';
+
+/**
+ * Shopify webhook registration via GraphQL.
+ *
+ * Uses dependency-injected GraphQL function to register, unregister,
+ * and list webhook subscriptions without importing the full Shopify client.
+ */
+
+/** Dependency-injected GraphQL query function. */
+type GraphQLFn = (query: string, variables?: Record<string, unknown>) => Promise<{
+    data?: unknown;
+    errors?: unknown[];
+}>;
+interface ShopifyWebhookSubscription {
+    id: string;
+    topic: string;
+    endpoint: {
+        callbackUrl?: string;
+    };
+    format: string;
+}
+interface RegisterWebhookResult {
+    success: boolean;
+    webhookSubscriptionId?: string;
+    errors?: string[];
+}
+interface UnregisterWebhookResult {
+    success: boolean;
+    errors?: string[];
+}
+declare function registerShopifyWebhook(graphqlFn: GraphQLFn, registration: WebhookRegistration): Promise<RegisterWebhookResult>;
+declare function unregisterShopifyWebhook(graphqlFn: GraphQLFn, webhookId: string): Promise<UnregisterWebhookResult>;
+declare function listShopifyWebhooks(graphqlFn: GraphQLFn, first?: number): Promise<ShopifyWebhookSubscription[]>;
+
+export { type GraphQLFn, type RegisterWebhookResult, type ShopifyWebhookSubscription, type UnregisterWebhookResult, listShopifyWebhooks, registerShopifyWebhook, unregisterShopifyWebhook };

package/dist/webhooks/index.js

@@ -0,0 +1,147 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/webhooks/index.ts
+var webhooks_exports = {};
+__export(webhooks_exports, {
+  listShopifyWebhooks: () => listShopifyWebhooks,
+  registerShopifyWebhook: () => registerShopifyWebhook,
+  unregisterShopifyWebhook: () => unregisterShopifyWebhook
+});
+module.exports = __toCommonJS(webhooks_exports);
+
+// src/webhooks/registration.ts
+var WEBHOOK_SUBSCRIPTION_CREATE = `
+  mutation webhookSubscriptionCreate($topic: WebhookSubscriptionTopic!, $webhookSubscription: WebhookSubscriptionInput!) {
+    webhookSubscriptionCreate(topic: $topic, webhookSubscription: $webhookSubscription) {
+      webhookSubscription {
+        id
+      }
+      userErrors {
+        field
+        message
+      }
+    }
+  }
+`;
+var WEBHOOK_SUBSCRIPTION_DELETE = `
+  mutation webhookSubscriptionDelete($id: ID!) {
+    webhookSubscriptionDelete(id: $id) {
+      deletedWebhookSubscriptionId
+      userErrors {
+        field
+        message
+      }
+    }
+  }
+`;
+var WEBHOOK_SUBSCRIPTIONS_QUERY = `
+  query webhookSubscriptions($first: Int!) {
+    webhookSubscriptions(first: $first) {
+      edges {
+        node {
+          id
+          topic
+          endpoint {
+            ... on WebhookHttpEndpoint {
+              callbackUrl
+            }
+          }
+          format
+        }
+      }
+    }
+  }
+`;
+async function registerShopifyWebhook(graphqlFn, registration) {
+  const response = await graphqlFn(WEBHOOK_SUBSCRIPTION_CREATE, {
+    topic: registration.topic,
+    webhookSubscription: {
+      callbackUrl: registration.address,
+      format: (registration.format ?? "json").toUpperCase()
+    }
+  });
+  if (response.errors && response.errors.length > 0) {
+    return {
+      success: false,
+      errors: response.errors.map((e) => String(e))
+    };
+  }
+  const data = response.data;
+  const result = data.webhookSubscriptionCreate;
+  if (result.userErrors.length > 0) {
+    return {
+      success: false,
+      errors: result.userErrors.map((e) => e.message)
+    };
+  }
+  const registerResult = { success: true };
+  const subscriptionId = result.webhookSubscription?.id;
+  if (subscriptionId) {
+    registerResult.webhookSubscriptionId = subscriptionId;
+  }
+  return registerResult;
+}
+async function unregisterShopifyWebhook(graphqlFn, webhookId) {
+  const response = await graphqlFn(WEBHOOK_SUBSCRIPTION_DELETE, {
+    id: webhookId
+  });
+  if (response.errors && response.errors.length > 0) {
+    return {
+      success: false,
+      errors: response.errors.map((e) => String(e))
+    };
+  }
+  const data = response.data;
+  const result = data.webhookSubscriptionDelete;
+  if (result.userErrors.length > 0) {
+    return {
+      success: false,
+      errors: result.userErrors.map((e) => e.message)
+    };
+  }
+  return { success: true };
+}
+async function listShopifyWebhooks(graphqlFn, first = 50) {
+  const response = await graphqlFn(WEBHOOK_SUBSCRIPTIONS_QUERY, { first });
+  if (response.errors && response.errors.length > 0) {
+    return [];
+  }
+  const data = response.data;
+  return data.webhookSubscriptions.edges.map((edge) => {
+    const sub = {
+      id: edge.node.id,
+      topic: edge.node.topic,
+      endpoint: {},
+      format: edge.node.format
+    };
+    const callbackUrl = edge.node.endpoint.callbackUrl;
+    if (callbackUrl) {
+      sub.endpoint.callbackUrl = callbackUrl;
+    }
+    return sub;
+  });
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  listShopifyWebhooks,
+  registerShopifyWebhook,
+  unregisterShopifyWebhook
+});
+//# sourceMappingURL=index.js.map

package/dist/webhooks/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/webhooks/index.ts","../../src/webhooks/registration.ts"],"sourcesContent":["/**\n * @uniforge/platform-shopify - Webhooks\n *\n * Shopify-specific webhook registration via GraphQL mutations.\n */\n\nexport {\n  registerShopifyWebhook,\n  unregisterShopifyWebhook,\n  listShopifyWebhooks,\n} from './registration';\n\nexport type {\n  GraphQLFn,\n  ShopifyWebhookSubscription,\n  RegisterWebhookResult,\n  UnregisterWebhookResult,\n} from './registration';\n","/**\n * Shopify webhook registration via GraphQL.\n *\n * Uses dependency-injected GraphQL function to register, unregister,\n * and list webhook subscriptions without importing the full Shopify client.\n */\n\nimport type { WebhookRegistration } from '@uniforge/platform-core/webhooks';\n\n/** Dependency-injected GraphQL query function. */\nexport type GraphQLFn = (\n  query: string,\n  variables?: Record<string, unknown>,\n) => Promise<{ data?: unknown; errors?: unknown[] }>;\n\nexport interface ShopifyWebhookSubscription {\n  id: string;\n  topic: string;\n  endpoint: {\n    callbackUrl?: string;\n  };\n  format: string;\n}\n\nexport interface RegisterWebhookResult {\n  success: boolean;\n  webhookSubscriptionId?: string;\n  errors?: string[];\n}\n\nexport interface UnregisterWebhookResult {\n  success: boolean;\n  errors?: string[];\n}\n\nconst WEBHOOK_SUBSCRIPTION_CREATE = `\n  mutation webhookSubscriptionCreate($topic: WebhookSubscriptionTopic!, $webhookSubscription: WebhookSubscriptionInput!) {\n    webhookSubscriptionCreate(topic: $topic, webhookSubscription: $webhookSubscription) {\n      webhookSubscription {\n        id\n      }\n      userErrors {\n        field\n        message\n      }\n    }\n  }\n`;\n\nconst WEBHOOK_SUBSCRIPTION_DELETE = `\n  mutation webhookSubscriptionDelete($id: ID!) {\n    webhookSubscriptionDelete(id: $id) {\n      deletedWebhookSubscriptionId\n      userErrors {\n        field\n        message\n      }\n    }\n  }\n`;\n\nconst WEBHOOK_SUBSCRIPTIONS_QUERY = `\n  query webhookSubscriptions($first: Int!) {\n    webhookSubscriptions(first: $first) {\n      edges {\n        node {\n          id\n          topic\n          endpoint {\n            ... on WebhookHttpEndpoint {\n              callbackUrl\n            }\n          }\n          format\n        }\n      }\n    }\n  }\n`;\n\nexport async function registerShopifyWebhook(\n  graphqlFn: GraphQLFn,\n  registration: WebhookRegistration,\n): Promise<RegisterWebhookResult> {\n  const response = await graphqlFn(WEBHOOK_SUBSCRIPTION_CREATE, {\n    topic: registration.topic,\n    webhookSubscription: {\n      callbackUrl: registration.address,\n      format: (registration.format ?? 'json').toUpperCase(),\n    },\n  });\n\n  if (response.errors && response.errors.length > 0) {\n    return {\n      success: false,\n      errors: response.errors.map((e) => String(e)),\n    };\n  }\n\n  const data = response.data as {\n    webhookSubscriptionCreate: {\n      webhookSubscription: { id: string } | null;\n      userErrors: Array<{ field: string[]; message: string }>;\n    };\n  };\n\n  const result = data.webhookSubscriptionCreate;\n  if (result.userErrors.length > 0) {\n    return {\n      success: false,\n      errors: result.userErrors.map((e) => e.message),\n    };\n  }\n\n  const registerResult: RegisterWebhookResult = { success: true };\n  const subscriptionId = result.webhookSubscription?.id;\n  if (subscriptionId) {\n    registerResult.webhookSubscriptionId = subscriptionId;\n  }\n  return registerResult;\n}\n\nexport async function unregisterShopifyWebhook(\n  graphqlFn: GraphQLFn,\n  webhookId: string,\n): Promise<UnregisterWebhookResult> {\n  const response = await graphqlFn(WEBHOOK_SUBSCRIPTION_DELETE, {\n    id: webhookId,\n  });\n\n  if (response.errors && response.errors.length > 0) {\n    return {\n      success: false,\n      errors: response.errors.map((e) => String(e)),\n    };\n  }\n\n  const data = response.data as {\n    webhookSubscriptionDelete: {\n      deletedWebhookSubscriptionId: string | null;\n      userErrors: Array<{ field: string[]; message: string }>;\n    };\n  };\n\n  const result = data.webhookSubscriptionDelete;\n  if (result.userErrors.length > 0) {\n    return {\n      success: false,\n      errors: result.userErrors.map((e) => e.message),\n    };\n  }\n\n  return { success: true };\n}\n\nexport async function listShopifyWebhooks(\n  graphqlFn: GraphQLFn,\n  first = 50,\n): Promise<ShopifyWebhookSubscription[]> {\n  const response = await graphqlFn(WEBHOOK_SUBSCRIPTIONS_QUERY, { first });\n\n  if (response.errors && response.errors.length > 0) {\n    return [];\n  }\n\n  const data = response.data as {\n    webhookSubscriptions: {\n      edges: Array<{\n        node: {\n          id: string;\n          topic: string;\n          endpoint: { callbackUrl?: string };\n          format: string;\n        };\n      }>;\n    };\n  };\n\n  return data.webhookSubscriptions.edges.map((edge) => {\n    const sub: ShopifyWebhookSubscription = {\n      id: edge.node.id,\n      topic: edge.node.topic,\n      endpoint: {},\n      format: edge.node.format,\n    };\n    const callbackUrl = edge.node.endpoint.callbackUrl;\n    if (callbackUrl) {\n      sub.endpoint.callbackUrl = callbackUrl;\n    }\n    return sub;\n  });\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACmCA,IAAM,8BAA8B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAcpC,IAAM,8BAA8B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYpC,IAAM,8BAA8B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAmBpC,eAAsB,uBACpB,WACA,cACgC;AAChC,QAAM,WAAW,MAAM,UAAU,6BAA6B;AAAA,IAC5D,OAAO,aAAa;AAAA,IACpB,qBAAqB;AAAA,MACnB,aAAa,aAAa;AAAA,MAC1B,SAAS,aAAa,UAAU,QAAQ,YAAY;AAAA,IACtD;AAAA,EACF,CAAC;AAED,MAAI,SAAS,UAAU,SAAS,OAAO,SAAS,GAAG;AACjD,WAAO;AAAA,MACL,SAAS;AAAA,MACT,QAAQ,SAAS,OAAO,IAAI,CAAC,MAAM,OAAO,CAAC,CAAC;AAAA,IAC9C;AAAA,EACF;AAEA,QAAM,OAAO,SAAS;AAOtB,QAAM,SAAS,KAAK;AACpB,MAAI,OAAO,WAAW,SAAS,GAAG;AAChC,WAAO;AAAA,MACL,SAAS;AAAA,MACT,QAAQ,OAAO,WAAW,IAAI,CAAC,MAAM,EAAE,OAAO;AAAA,IAChD;AAAA,EACF;AAEA,QAAM,iBAAwC,EAAE,SAAS,KAAK;AAC9D,QAAM,iBAAiB,OAAO,qBAAqB;AACnD,MAAI,gBAAgB;AAClB,mBAAe,wBAAwB;AAAA,EACzC;AACA,SAAO;AACT;AAEA,eAAsB,yBACpB,WACA,WACkC;AAClC,QAAM,WAAW,MAAM,UAAU,6BAA6B;AAAA,IAC5D,IAAI;AAAA,EACN,CAAC;AAED,MAAI,SAAS,UAAU,SAAS,OAAO,SAAS,GAAG;AACjD,WAAO;AAAA,MACL,SAAS;AAAA,MACT,QAAQ,SAAS,OAAO,IAAI,CAAC,MAAM,OAAO,CAAC,CAAC;AAAA,IAC9C;AAAA,EACF;AAEA,QAAM,OAAO,SAAS;AAOtB,QAAM,SAAS,KAAK;AACpB,MAAI,OAAO,WAAW,SAAS,GAAG;AAChC,WAAO;AAAA,MACL,SAAS;AAAA,MACT,QAAQ,OAAO,WAAW,IAAI,CAAC,MAAM,EAAE,OAAO;AAAA,IAChD;AAAA,EACF;AAEA,SAAO,EAAE,SAAS,KAAK;AACzB;AAEA,eAAsB,oBACpB,WACA,QAAQ,IAC+B;AACvC,QAAM,WAAW,MAAM,UAAU,6BAA6B,EAAE,MAAM,CAAC;AAEvE,MAAI,SAAS,UAAU,SAAS,OAAO,SAAS,GAAG;AACjD,WAAO,CAAC;AAAA,EACV;AAEA,QAAM,OAAO,SAAS;AAatB,SAAO,KAAK,qBAAqB,MAAM,IAAI,CAAC,SAAS;AACnD,UAAM,MAAkC;AAAA,MACtC,IAAI,KAAK,KAAK;AAAA,MACd,OAAO,KAAK,KAAK;AAAA,MACjB,UAAU,CAAC;AAAA,MACX,QAAQ,KAAK,KAAK;AAAA,IACpB;AACA,UAAM,cAAc,KAAK,KAAK,SAAS;AACvC,QAAI,aAAa;AACf,UAAI,SAAS,cAAc;AAAA,IAC7B;AACA,WAAO;AAAA,EACT,CAAC;AACH;","names":[]}