@veloxts/auth 0.3.3 → 0.3.4

package/dist/session.d.ts

@@ -0,0 +1,494 @@
+/**
+ * Cookie-based Session Management for @veloxts/auth
+ *
+ * Provides server-side session storage with pluggable backends,
+ * secure session ID generation, and automatic session lifecycle management.
+ *
+ * Alternative to JWT authentication - users choose one or the other.
+ *
+ * @module auth/session
+ */
+import type { BaseContext } from '@veloxts/core';
+import type { MiddlewareFunction } from '@veloxts/router';
+import type { FastifyReply, FastifyRequest } from 'fastify';
+import type { User } from './types.js';
+interface CookieSerializeOptions {
+    domain?: string;
+    path?: string;
+    sameSite?: 'strict' | 'lax' | 'none' | boolean;
+    secure?: boolean;
+    httpOnly?: boolean;
+    maxAge?: number;
+    expires?: Date;
+}
+interface FastifyReplyWithCookies extends FastifyReply {
+    cookie(name: string, value: string, options?: CookieSerializeOptions): FastifyReply;
+    clearCookie(name: string, options?: CookieSerializeOptions): FastifyReply;
+}
+interface FastifyRequestWithCookies extends FastifyRequest {
+    cookies: Record<string, string | undefined>;
+}
+/**
+ * Base session data interface
+ *
+ * Applications should extend this via declaration merging:
+ * @example
+ * ```typescript
+ * declare module '@veloxts/auth' {
+ *   interface SessionData {
+ *     cart: CartItem[];
+ *     preferences: UserPreferences;
+ *   }
+ * }
+ * ```
+ */
+export interface SessionData {
+    /** User ID if authenticated */
+    userId?: string;
+    /** User email if authenticated */
+    userEmail?: string;
+    /** Flash data - persists for one request only */
+    _flash?: Record<string, unknown>;
+    /** Previous flash data being read */
+    _flashOld?: Record<string, unknown>;
+    /** Session creation timestamp (Unix ms) */
+    _createdAt: number;
+    /** Last access timestamp (Unix ms) */
+    _lastAccessedAt: number;
+    /** Allow extension via declaration merging */
+    [key: string]: unknown;
+}
+/**
+ * Stored session entry in the session store
+ */
+export interface StoredSession {
+    /** Session ID (signed) */
+    id: string;
+    /** Session data */
+    data: SessionData;
+    /** Expiration timestamp (Unix ms) */
+    expiresAt: number;
+}
+/**
+ * Pluggable session storage backend interface
+ *
+ * Implementations:
+ * - InMemorySessionStore (default, for development)
+ * - RedisSessionStore (production, distributed)
+ * - DatabaseSessionStore (production, audit trail)
+ *
+ * @example
+ * ```typescript
+ * // Custom Redis implementation
+ * class RedisSessionStore implements SessionStore {
+ *   constructor(private redis: Redis) {}
+ *
+ *   async get(sessionId: string): Promise<StoredSession | null> {
+ *     const data = await this.redis.get(`session:${sessionId}`);
+ *     return data ? JSON.parse(data) : null;
+ *   }
+ *
+ *   async set(sessionId: string, session: StoredSession): Promise<void> {
+ *     const ttl = Math.ceil((session.expiresAt - Date.now()) / 1000);
+ *     await this.redis.setex(`session:${sessionId}`, ttl, JSON.stringify(session));
+ *   }
+ *
+ *   async delete(sessionId: string): Promise<void> {
+ *     await this.redis.del(`session:${sessionId}`);
+ *   }
+ *
+ *   async touch(sessionId: string, expiresAt: number): Promise<void> {
+ *     const session = await this.get(sessionId);
+ *     if (session) {
+ *       session.expiresAt = expiresAt;
+ *       session.data._lastAccessedAt = Date.now();
+ *       await this.set(sessionId, session);
+ *     }
+ *   }
+ *
+ *   async clear(): Promise<void> {
+ *     const keys = await this.redis.keys('session:*');
+ *     if (keys.length > 0) {
+ *       await this.redis.del(...keys);
+ *     }
+ *   }
+ * }
+ * ```
+ */
+export interface SessionStore {
+    /**
+     * Retrieve a session by ID
+     * @param sessionId - The session ID to look up
+     * @returns The stored session or null if not found/expired
+     */
+    get(sessionId: string): Promise<StoredSession | null> | StoredSession | null;
+    /**
+     * Store or update a session
+     * @param sessionId - The session ID
+     * @param session - The session data to store
+     */
+    set(sessionId: string, session: StoredSession): Promise<void> | void;
+    /**
+     * Delete a session
+     * @param sessionId - The session ID to delete
+     */
+    delete(sessionId: string): Promise<void> | void;
+    /**
+     * Refresh session TTL without modifying data
+     * Used for sliding expiration
+     * @param sessionId - The session ID to touch
+     * @param expiresAt - New expiration timestamp (Unix ms)
+     */
+    touch(sessionId: string, expiresAt: number): Promise<void> | void;
+    /**
+     * Clear all sessions (useful for testing and maintenance)
+     */
+    clear(): Promise<void> | void;
+    /**
+     * Get all active session IDs for a user (optional)
+     * Useful for "logout from all devices" functionality
+     * @param userId - The user ID to look up
+     * @returns Array of session IDs for the user
+     */
+    getSessionsByUser?(userId: string): Promise<string[]> | string[];
+    /**
+     * Delete all sessions for a user (optional)
+     * Useful for "logout from all devices" functionality
+     * @param userId - The user ID whose sessions to delete
+     */
+    deleteSessionsByUser?(userId: string): Promise<void> | void;
+}
+/**
+ * In-memory session store for development and testing
+ *
+ * WARNING: NOT suitable for production!
+ * - Sessions are lost on server restart
+ * - Does not work across multiple server instances
+ * - No persistence mechanism
+ *
+ * For production, use Redis or database-backed storage.
+ *
+ * @example
+ * ```typescript
+ * const store = createInMemorySessionStore();
+ *
+ * const sessionManager = createSessionManager({
+ *   store,
+ *   secret: process.env.SESSION_SECRET!,
+ * });
+ * ```
+ */
+export declare function createInMemorySessionStore(): SessionStore;
+/**
+ * Cookie configuration for sessions
+ */
+export interface SessionCookieConfig {
+    /**
+     * Cookie name
+     * @default 'velox.session'
+     */
+    name?: string;
+    /**
+     * Cookie path
+     * @default '/'
+     */
+    path?: string;
+    /**
+     * Cookie domain (optional)
+     */
+    domain?: string;
+    /**
+     * Require HTTPS
+     * @default process.env.NODE_ENV === 'production'
+     */
+    secure?: boolean;
+    /**
+     * HttpOnly flag - prevents JavaScript access
+     * @default true
+     */
+    httpOnly?: boolean;
+    /**
+     * SameSite policy
+     * @default 'lax'
+     */
+    sameSite?: 'strict' | 'lax' | 'none';
+}
+/**
+ * Session expiration configuration
+ */
+export interface SessionExpirationConfig {
+    /**
+     * Session time-to-live in seconds
+     * @default 86400 (24 hours)
+     */
+    ttl?: number;
+    /**
+     * Enable sliding expiration
+     * When true, session TTL is refreshed on each request
+     * @default true
+     */
+    sliding?: boolean;
+    /**
+     * Absolute expiration in seconds (optional)
+     * If set, session cannot extend beyond this time from creation
+     * Useful for requiring periodic re-authentication
+     */
+    absoluteTimeout?: number;
+}
+/**
+ * Complete session manager configuration
+ */
+export interface SessionConfig {
+    /**
+     * Session store backend
+     * @default InMemorySessionStore
+     */
+    store?: SessionStore;
+    /**
+     * Secret key for signing session IDs
+     * Minimum 32 characters
+     */
+    secret: string;
+    /**
+     * Cookie configuration
+     */
+    cookie?: SessionCookieConfig;
+    /**
+     * Expiration configuration
+     */
+    expiration?: SessionExpirationConfig;
+    /**
+     * User loader function (optional)
+     * Called to populate ctx.user from session data
+     */
+    userLoader?: (userId: string) => Promise<User | null>;
+}
+/**
+ * Session handle for accessing and modifying session data
+ */
+export interface Session {
+    /** Session ID */
+    readonly id: string;
+    /** Whether this is a new session */
+    readonly isNew: boolean;
+    /** Whether the session has been modified */
+    readonly isModified: boolean;
+    /** Whether the session has been destroyed */
+    readonly isDestroyed: boolean;
+    /** Session data */
+    readonly data: SessionData;
+    /**
+     * Get a session value
+     */
+    get<K extends keyof SessionData>(key: K): SessionData[K];
+    /**
+     * Set a session value
+     */
+    set<K extends keyof SessionData>(key: K, value: SessionData[K]): void;
+    /**
+     * Delete a session value
+     */
+    delete<K extends keyof SessionData>(key: K): void;
+    /**
+     * Check if a key exists
+     */
+    has<K extends keyof SessionData>(key: K): boolean;
+    /**
+     * Set flash data (persists for one request only)
+     */
+    flash(key: string, value: unknown): void;
+    /**
+     * Get flash data (clears after read)
+     */
+    getFlash<T = unknown>(key: string): T | undefined;
+    /**
+     * Get all flash data
+     */
+    getAllFlash(): Record<string, unknown>;
+    /**
+     * Regenerate session ID (for security after privilege change)
+     * Preserves session data with new ID
+     */
+    regenerate(): Promise<void>;
+    /**
+     * Destroy the session completely
+     */
+    destroy(): Promise<void>;
+    /**
+     * Save session changes
+     * Called automatically by middleware, but can be called manually
+     */
+    save(): Promise<void>;
+    /**
+     * Reload session data from store
+     */
+    reload(): Promise<void>;
+}
+/**
+ * Session manager for creating and managing sessions
+ */
+export interface SessionManager {
+    /**
+     * Create a new session
+     */
+    createSession(reply: FastifyReplyWithCookies): Session;
+    /**
+     * Load existing session from request
+     * @returns Session if found and valid, null otherwise
+     */
+    loadSession(request: FastifyRequestWithCookies): Promise<Session | null>;
+    /**
+     * Load or create session
+     */
+    getOrCreateSession(request: FastifyRequestWithCookies, reply: FastifyReplyWithCookies): Promise<Session>;
+    /**
+     * Destroy a session by ID
+     */
+    destroySession(sessionId: string): Promise<void>;
+    /**
+     * Destroy all sessions for a user
+     */
+    destroyUserSessions(userId: string): Promise<void>;
+    /**
+     * Clear the session cookie
+     */
+    clearCookie(reply: FastifyReplyWithCookies): void;
+    /**
+     * Get the underlying session store
+     */
+    readonly store: SessionStore;
+}
+/**
+ * Creates a session manager
+ *
+ * @example
+ * ```typescript
+ * const sessionManager = createSessionManager({
+ *   secret: process.env.SESSION_SECRET!,
+ *   cookie: {
+ *     name: 'myapp.session',
+ *     secure: true,
+ *     sameSite: 'strict',
+ *   },
+ *   expiration: {
+ *     ttl: 3600, // 1 hour
+ *     sliding: true,
+ *   },
+ * });
+ * ```
+ */
+export declare function createSessionManager(config: SessionConfig): SessionManager;
+/**
+ * Session context added to request context
+ */
+export interface SessionContext {
+    /** Current session */
+    session: Session;
+}
+/**
+ * Extended context with session and optional user
+ */
+export interface SessionAuthContext extends SessionContext {
+    /** Authenticated user (if logged in) */
+    user?: User;
+    /** Whether user is authenticated via session */
+    isAuthenticated: boolean;
+}
+declare module '@veloxts/core' {
+    interface BaseContext {
+        /** Session context - available when session middleware is used */
+        session?: Session;
+    }
+}
+declare module 'fastify' {
+    interface FastifyRequest {
+        /** Session on request */
+        session?: Session;
+    }
+}
+/**
+ * Options for session middleware
+ */
+export interface SessionMiddlewareOptions {
+    /**
+     * Create session lazily (only when data is set)
+     * @default false
+     */
+    lazy?: boolean;
+    /**
+     * Require authentication (session with userId)
+     * @default false
+     */
+    requireAuth?: boolean;
+}
+/**
+ * Creates session middleware for procedures
+ *
+ * @example
+ * ```typescript
+ * const session = createSessionMiddleware({
+ *   secret: process.env.SESSION_SECRET!,
+ *   cookie: { secure: true },
+ * });
+ *
+ * // Use in procedures
+ * const getCart = procedure()
+ *   .use(session.middleware())
+ *   .query(async ({ ctx }) => {
+ *     return ctx.session.get('cart') ?? [];
+ *   });
+ *
+ * // Require authentication
+ * const getProfile = procedure()
+ *   .use(session.requireAuth())
+ *   .query(async ({ ctx }) => {
+ *     return ctx.user;
+ *   });
+ * ```
+ */
+export declare function createSessionMiddleware(config: SessionConfig): {
+    /** Session manager instance */
+    manager: SessionManager;
+    /** Base session middleware */
+    middleware: <TInput, TContext extends BaseContext, TOutput>(options?: SessionMiddlewareOptions) => MiddlewareFunction<TInput, TContext, TContext & SessionContext, TOutput>;
+    /** Authentication required middleware */
+    requireAuth: <TInput, TContext extends BaseContext, TOutput>() => MiddlewareFunction<TInput, TContext, TContext & SessionAuthContext, TOutput>;
+    /** Optional authentication middleware */
+    optionalAuth: <TInput, TContext extends BaseContext, TOutput>() => MiddlewareFunction<TInput, TContext, TContext & SessionAuthContext, TOutput>;
+};
+/**
+ * Login helper - sets user in session and regenerates ID
+ *
+ * @example
+ * ```typescript
+ * const login = procedure()
+ *   .use(session.middleware())
+ *   .input(LoginSchema)
+ *   .mutation(async ({ input, ctx }) => {
+ *     const user = await verifyCredentials(input.email, input.password);
+ *     await loginSession(ctx.session, user);
+ *     return { success: true };
+ *   });
+ * ```
+ */
+export declare function loginSession(session: Session, user: User): Promise<void>;
+/**
+ * Logout helper - destroys session
+ *
+ * @example
+ * ```typescript
+ * const logout = procedure()
+ *   .use(session.requireAuth())
+ *   .mutation(async ({ ctx }) => {
+ *     await logoutSession(ctx.session);
+ *     return { success: true };
+ *   });
+ * ```
+ */
+export declare function logoutSession(session: Session): Promise<void>;
+/**
+ * Check if session is authenticated
+ */
+export declare function isSessionAuthenticated(session: Session): boolean;
+export {};
+//# sourceMappingURL=session.d.ts.map

package/dist/session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../src/session.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAIH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AACjD,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAC;AAC1D,OAAO,KAAK,EAAE,YAAY,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAE5D,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AAOvC,UAAU,sBAAsB;IAC9B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,GAAG,OAAO,CAAC;IAC/C,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,IAAI,CAAC;CAChB;AAED,UAAU,uBAAwB,SAAQ,YAAY;IACpD,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,sBAAsB,GAAG,YAAY,CAAC;IACpF,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,sBAAsB,GAAG,YAAY,CAAC;CAC3E;AAED,UAAU,yBAA0B,SAAQ,cAAc;IACxD,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,CAAC;CAC7C;AA+BD;;;;;;;;;;;;;GAaG;AACH,MAAM,WAAW,WAAW;IAC1B,+BAA+B;IAC/B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,kCAAkC;IAClC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,iDAAiD;IACjD,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,qCAAqC;IACrC,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,2CAA2C;IAC3C,UAAU,EAAE,MAAM,CAAC;IACnB,sCAAsC;IACtC,eAAe,EAAE,MAAM,CAAC;IACxB,8CAA8C;IAC9C,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,0BAA0B;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,mBAAmB;IACnB,IAAI,EAAE,WAAW,CAAC;IAClB,qCAAqC;IACrC,SAAS,EAAE,MAAM,CAAC;CACnB;AAMD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6CG;AACH,MAAM,WAAW,YAAY;IAC3B;;;;OAIG;IACH,GAAG,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC,GAAG,aAAa,GAAG,IAAI,CAAC;IAE7E;;;;OAIG;IACH,GAAG,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAErE;;;OAGG;IACH,MAAM,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAEhD;;;;;OAKG;IACH,KAAK,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAElE;;OAEG;IACH,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAE9B;;;;;OAKG;IACH,iBAAiB,CAAC,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,GAAG,MAAM,EAAE,CAAC;IAEjE;;;;OAIG;IACH,oBAAoB,CAAC,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CAC7D;AAMD;;;;;;;;;;;;;;;;;;;GAmBG;AACH,wBAAgB,0BAA0B,IAAI,YAAY,CAuHzD;AAMD;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC;;;OAGG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IAEd;;;OAGG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;IAEd;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;OAGG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC;IAEjB;;;OAGG;IACH,QAAQ,CAAC,EAAE,OAAO,CAAC;IAEnB;;;OAGG;IACH,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;CACtC;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC;;;OAGG;IACH,GAAG,CAAC,EAAE,MAAM,CAAC;IAEb;;;;OAIG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;IAElB;;;;OAIG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B;;;OAGG;IACH,KAAK,CAAC,EAAE,YAAY,CAAC;IAErB;;;OAGG;IACH,MAAM,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,MAAM,CAAC,EAAE,mBAAmB,CAAC;IAE7B;;OAEG;IACH,UAAU,CAAC,EAAE,uBAAuB,CAAC;IAErC;;;OAGG;IACH,UAAU,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;CACvD;AAMD;;GAEG;AACH,MAAM,WAAW,OAAO;IACtB,iBAAiB;IACjB,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAC;IAEpB,oCAAoC;IACpC,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;IAExB,4CAA4C;IAC5C,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAC;IAE7B,6CAA6C;IAC7C,QAAQ,CAAC,WAAW,EAAE,OAAO,CAAC;IAE9B,mBAAmB;IACnB,QAAQ,CAAC,IAAI,EAAE,WAAW,CAAC;IAE3B;;OAEG;IACH,GAAG,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,GAAG,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;IAEzD;;OAEG;IACH,GAAG,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,GAAG,EAAE,CAAC,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IAEtE;;OAEG;IACH,MAAM,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,GAAG,EAAE,CAAC,GAAG,IAAI,CAAC;IAElD;;OAEG;IACH,GAAG,CAAC,CAAC,SAAS,MAAM,WAAW,EAAE,GAAG,EAAE,CAAC,GAAG,OAAO,CAAC;IAElD;;OAEG;IACH,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,IAAI,CAAC;IAEzC;;OAEG;IACH,QAAQ,CAAC,CAAC,GAAG,OAAO,EAAE,GAAG,EAAE,MAAM,GAAG,CAAC,GAAG,SAAS,CAAC;IAElD;;OAEG;IACH,WAAW,IAAI,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAEvC;;;OAGG;IACH,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAE5B;;OAEG;IACH,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAEzB;;;OAGG;IACH,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAEtB;;OAEG;IACH,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B;;OAEG;IACH,aAAa,CAAC,KAAK,EAAE,uBAAuB,GAAG,OAAO,CAAC;IAEvD;;;OAGG;IACH,WAAW,CAAC,OAAO,EAAE,yBAAyB,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC;IAEzE;;OAEG;IACH,kBAAkB,CAChB,OAAO,EAAE,yBAAyB,EAClC,KAAK,EAAE,uBAAuB,GAC7B,OAAO,CAAC,OAAO,CAAC,CAAC;IAEpB;;OAEG;IACH,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAEjD;;OAEG;IACH,mBAAmB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAEnD;;OAEG;IACH,WAAW,CAAC,KAAK,EAAE,uBAAuB,GAAG,IAAI,CAAC;IAElD;;OAEG;IACH,QAAQ,CAAC,KAAK,EAAE,YAAY,CAAC;CAC9B;AAiFD;;;;;;;;;;;;;;;;;;GAkBG;AACH,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,aAAa,GAAG,cAAc,CAgW1E;AAMD;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,sBAAsB;IACtB,OAAO,EAAE,OAAO,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAmB,SAAQ,cAAc;IACxD,wCAAwC;IACxC,IAAI,CAAC,EAAE,IAAI,CAAC;IACZ,gDAAgD;IAChD,eAAe,EAAE,OAAO,CAAC;CAC1B;AAMD,OAAO,QAAQ,eAAe,CAAC;IAC7B,UAAU,WAAW;QACnB,kEAAkE;QAClE,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB;CACF;AAED,OAAO,QAAQ,SAAS,CAAC;IACvB,UAAU,cAAc;QACtB,yBAAyB;QACzB,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB;CACF;AAMD;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC;;;OAGG;IACH,IAAI,CAAC,EAAE,OAAO,CAAC;IAEf;;;OAGG;IACH,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAMD;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,wBAAgB,uBAAuB,CAAC,MAAM,EAAE,aAAa;IA+MzD,+BAA+B;;IAE/B,8BAA8B;iBA3MZ,MAAM,EAAE,QAAQ,SAAS,WAAW,EAAE,OAAO,YACtD,wBAAwB,KAChC,kBAAkB,CAAC,MAAM,EAAE,QAAQ,EAAE,QAAQ,GAAG,cAAc,EAAE,OAAO,CAAC;IA2MzE,yCAAyC;kBAxItB,MAAM,EAAE,QAAQ,SAAS,WAAW,EAAE,OAAO,OAAK,kBAAkB,CACvF,MAAM,EACN,QAAQ,EACR,QAAQ,GAAG,kBAAkB,EAC7B,OAAO,CACR;IAqIC,yCAAyC;mBArErB,MAAM,EAAE,QAAQ,SAAS,WAAW,EAAE,OAAO,OAAK,kBAAkB,CACxF,MAAM,EACN,QAAQ,EACR,QAAQ,GAAG,kBAAkB,EAC7B,OAAO,CACR;EAmEF;AAMD;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,YAAY,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAU9E;AAED;;;;;;;;;;;;GAYG;AACH,wBAAsB,aAAa,CAAC,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAEnE;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,EAAE,OAAO,GAAG,OAAO,CAEhE"}