@versini/auth-provider 5.4.0 → 6.1.0

package/dist/index.js

@@ -1,124 +1,124 @@
-var dt = Object.defineProperty;
-var ht = (e, t, r) => t in e ? dt(e, t, { enumerable: !0, configurable: !0, writable: !0, value: r }) : e[t] = r;
-var M = (e, t, r) => ht(e, typeof t != "symbol" ? t + "" : t, r);
-import { jsx as Te } from "react/jsx-runtime";
-import pt, { useSyncExternalStore as ft, useCallback as x, useEffect as Ke, createContext as yt, useReducer as mt, useRef as Et, useContext as wt } from "react";
+var Ot = Object.defineProperty;
+var Nt = (e, t, r) => t in e ? Ot(e, t, { enumerable: !0, configurable: !0, writable: !0, value: r }) : e[t] = r;
+var Q = (e, t, r) => Nt(e, typeof t != "symbol" ? t + "" : t, r);
+import { jsx as Ue } from "react/jsx-runtime";
+import Dt, { useSyncExternalStore as Ut, useCallback as Y, useEffect as Xe, createContext as $t, useReducer as Kt, useRef as Lt, useContext as Mt } from "react";
 /*!
-  @versini/auth-provider v5.4.0
+  @versini/auth-provider v6.1.0
   © 2024 gizmette.com
 */
 try {
   window.__VERSINI_AUTH_CLIENT__ || (window.__VERSINI_AUTH_CLIENT__ = {
-    version: "5.4.0",
-    buildTime: "07/15/2024 11:26 AM EDT",
+    version: "6.1.0",
+    buildTime: "07/16/2024 05:03 PM EDT",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
 } catch {
 }
-function _(e) {
+function P(e) {
   const t = new Uint8Array(e);
   let r = "";
   for (const a of t)
     r += String.fromCharCode(a);
   return btoa(r).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
 }
-function te(e) {
-  const t = e.replace(/-/g, "+").replace(/_/g, "/"), r = (4 - t.length % 4) % 4, n = t.padEnd(t.length + r, "="), a = atob(n), o = new ArrayBuffer(a.length), s = new Uint8Array(o);
-  for (let i = 0; i < a.length; i++)
-    s[i] = a.charCodeAt(i);
-  return o;
+function ue(e) {
+  const t = e.replace(/-/g, "+").replace(/_/g, "/"), r = (4 - t.length % 4) % 4, n = t.padEnd(t.length + r, "="), a = atob(n), i = new ArrayBuffer(a.length), o = new Uint8Array(i);
+  for (let s = 0; s < a.length; s++)
+    o[s] = a.charCodeAt(s);
+  return i;
 }
-function Ee() {
+function Pe() {
   return (window == null ? void 0 : window.PublicKeyCredential) !== void 0 && typeof window.PublicKeyCredential == "function";
 }
-function He(e) {
+function Ze(e) {
   const { id: t } = e;
   return {
     ...e,
-    id: te(t),
+    id: ue(t),
     transports: e.transports
   };
 }
-function $e(e) {
+function et(e) {
   return e === "localhost" || /^([a-z0-9]+(-[a-z0-9]+)*\.)+[a-z]{2,}$/i.test(e);
 }
-class A extends Error {
+class v extends Error {
   constructor({ message: t, code: r, cause: n, name: a }) {
     super(t, { cause: n }), this.name = a ?? n.name, this.code = r;
   }
 }
-function gt({ error: e, options: t }) {
+function Ht({ error: e, options: t }) {
   var n, a;
   const { publicKey: r } = t;
   if (!r)
     throw Error("options was missing required publicKey property");
   if (e.name === "AbortError") {
     if (t.signal instanceof AbortSignal)
-      return new A({
+      return new v({
         message: "Registration ceremony was sent an abort signal",
         code: "ERROR_CEREMONY_ABORTED",
         cause: e
       });
   } else if (e.name === "ConstraintError") {
     if (((n = r.authenticatorSelection) == null ? void 0 : n.requireResidentKey) === !0)
-      return new A({
+      return new v({
         message: "Discoverable credentials were required but no available authenticator supported it",
         code: "ERROR_AUTHENTICATOR_MISSING_DISCOVERABLE_CREDENTIAL_SUPPORT",
         cause: e
       });
     if (((a = r.authenticatorSelection) == null ? void 0 : a.userVerification) === "required")
-      return new A({
+      return new v({
         message: "User verification was required but no available authenticator supported it",
         code: "ERROR_AUTHENTICATOR_MISSING_USER_VERIFICATION_SUPPORT",
         cause: e
       });
   } else {
     if (e.name === "InvalidStateError")
-      return new A({
+      return new v({
         message: "The authenticator was previously registered",
         code: "ERROR_AUTHENTICATOR_PREVIOUSLY_REGISTERED",
         cause: e
       });
     if (e.name === "NotAllowedError")
-      return new A({
+      return new v({
         message: e.message,
         code: "ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY",
         cause: e
       });
     if (e.name === "NotSupportedError")
-      return r.pubKeyCredParams.filter((s) => s.type === "public-key").length === 0 ? new A({
+      return r.pubKeyCredParams.filter((o) => o.type === "public-key").length === 0 ? new v({
         message: 'No entry in pubKeyCredParams was of type "public-key"',
         code: "ERROR_MALFORMED_PUBKEYCREDPARAMS",
         cause: e
-      }) : new A({
+      }) : new v({
         message: "No available authenticator supported any of the specified pubKeyCredParams algorithms",
         code: "ERROR_AUTHENTICATOR_NO_SUPPORTED_PUBKEYCREDPARAMS_ALG",
         cause: e
       });
     if (e.name === "SecurityError") {
-      const o = window.location.hostname;
-      if ($e(o)) {
-        if (r.rp.id !== o)
-          return new A({
+      const i = window.location.hostname;
+      if (et(i)) {
+        if (r.rp.id !== i)
+          return new v({
             message: `The RP ID "${r.rp.id}" is invalid for this domain`,
             code: "ERROR_INVALID_RP_ID",
             cause: e
           });
-      } else return new A({
+      } else return new v({
         message: `${window.location.hostname} is an invalid domain`,
         code: "ERROR_INVALID_DOMAIN",
         cause: e
       });
     } else if (e.name === "TypeError") {
       if (r.user.id.byteLength < 1 || r.user.id.byteLength > 64)
-        return new A({
+        return new v({
           message: "User ID was not between 1 and 64 characters",
           code: "ERROR_INVALID_USER_ID_LENGTH",
           cause: e
         });
     } else if (e.name === "UnknownError")
-      return new A({
+      return new v({
         message: "The authenticator was unable to process the specified options, or could not create a new credential",
         code: "ERROR_AUTHENTICATOR_GENERAL_ERROR",
         cause: e
@@ -126,7 +126,7 @@ function gt({ error: e, options: t }) {
   }
   return e;
 }
-class At {
+class xt {
   createNewAbortSignal() {
     if (this.controller) {
       const r = new Error("Cancelling existing WebAuthn API call for new one");
@@ -142,118 +142,118 @@ class At {
     }
   }
 }
-const Le = new At(), St = ["cross-platform", "platform"];
-function We(e) {
-  if (e && !(St.indexOf(e) < 0))
+const tt = new xt(), Wt = ["cross-platform", "platform"];
+function rt(e) {
+  if (e && !(Wt.indexOf(e) < 0))
     return e;
 }
-async function Tt(e) {
-  var m;
-  if (!Ee())
+async function Gt(e) {
+  var g;
+  if (!Pe())
     throw new Error("WebAuthn is not supported in this browser");
   const r = { publicKey: {
     ...e,
-    challenge: te(e.challenge),
+    challenge: ue(e.challenge),
     user: {
       ...e.user,
-      id: te(e.user.id)
+      id: ue(e.user.id)
     },
-    excludeCredentials: (m = e.excludeCredentials) == null ? void 0 : m.map(He)
+    excludeCredentials: (g = e.excludeCredentials) == null ? void 0 : g.map(Ze)
   } };
-  r.signal = Le.createNewAbortSignal();
+  r.signal = tt.createNewAbortSignal();
   let n;
   try {
     n = await navigator.credentials.create(r);
-  } catch (d) {
-    throw gt({ error: d, options: r });
+  } catch (p) {
+    throw Ht({ error: p, options: r });
   }
   if (!n)
     throw new Error("Registration was not completed");
-  const { id: a, rawId: o, response: s, type: i } = n;
+  const { id: a, rawId: i, response: o, type: s } = n;
   let u;
-  typeof s.getTransports == "function" && (u = s.getTransports());
+  typeof o.getTransports == "function" && (u = o.getTransports());
   let h;
-  if (typeof s.getPublicKeyAlgorithm == "function")
+  if (typeof o.getPublicKeyAlgorithm == "function")
     try {
-      h = s.getPublicKeyAlgorithm();
-    } catch (d) {
-      ce("getPublicKeyAlgorithm()", d);
+      h = o.getPublicKeyAlgorithm();
+    } catch (p) {
+      ge("getPublicKeyAlgorithm()", p);
     }
-  let l;
-  if (typeof s.getPublicKey == "function")
+  let c;
+  if (typeof o.getPublicKey == "function")
     try {
-      const d = s.getPublicKey();
-      d !== null && (l = _(d));
-    } catch (d) {
-      ce("getPublicKey()", d);
+      const p = o.getPublicKey();
+      p !== null && (c = P(p));
+    } catch (p) {
+      ge("getPublicKey()", p);
     }
   let f;
-  if (typeof s.getAuthenticatorData == "function")
+  if (typeof o.getAuthenticatorData == "function")
     try {
-      f = _(s.getAuthenticatorData());
-    } catch (d) {
-      ce("getAuthenticatorData()", d);
+      f = P(o.getAuthenticatorData());
+    } catch (p) {
+      ge("getAuthenticatorData()", p);
     }
   return {
     id: a,
-    rawId: _(o),
+    rawId: P(i),
     response: {
-      attestationObject: _(s.attestationObject),
-      clientDataJSON: _(s.clientDataJSON),
+      attestationObject: P(o.attestationObject),
+      clientDataJSON: P(o.clientDataJSON),
       transports: u,
       publicKeyAlgorithm: h,
-      publicKey: l,
+      publicKey: c,
       authenticatorData: f
     },
-    type: i,
+    type: s,
     clientExtensionResults: n.getClientExtensionResults(),
-    authenticatorAttachment: We(n.authenticatorAttachment)
+    authenticatorAttachment: rt(n.authenticatorAttachment)
   };
 }
-function ce(e, t) {
+function ge(e, t) {
   console.warn(`The browser extension that intercepted this WebAuthn API call incorrectly implemented ${e}. You should report this error to them.
 `, t);
 }
-function Rt() {
-  if (!Ee())
+function Vt() {
+  if (!Pe())
     return new Promise((t) => t(!1));
   const e = window.PublicKeyCredential;
   return e.isConditionalMediationAvailable === void 0 ? new Promise((t) => t(!1)) : e.isConditionalMediationAvailable();
 }
-function It({ error: e, options: t }) {
+function jt({ error: e, options: t }) {
   const { publicKey: r } = t;
   if (!r)
     throw Error("options was missing required publicKey property");
   if (e.name === "AbortError") {
     if (t.signal instanceof AbortSignal)
-      return new A({
+      return new v({
         message: "Authentication ceremony was sent an abort signal",
         code: "ERROR_CEREMONY_ABORTED",
         cause: e
       });
   } else {
     if (e.name === "NotAllowedError")
-      return new A({
+      return new v({
         message: e.message,
         code: "ERROR_PASSTHROUGH_SEE_CAUSE_PROPERTY",
         cause: e
       });
     if (e.name === "SecurityError") {
       const n = window.location.hostname;
-      if ($e(n)) {
+      if (et(n)) {
         if (r.rpId !== n)
-          return new A({
+          return new v({
             message: `The RP ID "${r.rpId}" is invalid for this domain`,
             code: "ERROR_INVALID_RP_ID",
             cause: e
           });
-      } else return new A({
+      } else return new v({
         message: `${window.location.hostname} is an invalid domain`,
         code: "ERROR_INVALID_DOMAIN",
         cause: e
       });
     } else if (e.name === "UnknownError")
-      return new A({
+      return new v({
         message: "The authenticator was unable to process the specified options, or could not create a new assertion signature",
         code: "ERROR_AUTHENTICATOR_GENERAL_ERROR",
         cause: e
@@ -261,47 +261,47 @@ function It({ error: e, options: t }) {
   }
   return e;
 }
-async function _t(e, t = !1) {
-  var f, m;
-  if (!Ee())
+async function Bt(e, t = !1) {
+  var f, g;
+  if (!Pe())
     throw new Error("WebAuthn is not supported in this browser");
   let r;
-  ((f = e.allowCredentials) == null ? void 0 : f.length) !== 0 && (r = (m = e.allowCredentials) == null ? void 0 : m.map(He));
+  ((f = e.allowCredentials) == null ? void 0 : f.length) !== 0 && (r = (g = e.allowCredentials) == null ? void 0 : g.map(Ze));
   const n = {
     ...e,
-    challenge: te(e.challenge),
+    challenge: ue(e.challenge),
     allowCredentials: r
   }, a = {};
   if (t) {
-    if (!await Rt())
+    if (!await Vt())
       throw Error("Browser does not support WebAuthn autofill");
     if (document.querySelectorAll("input[autocomplete$='webauthn']").length < 1)
       throw Error('No <input> with "webauthn" as the only or last value in its `autocomplete` attribute was detected');
     a.mediation = "conditional", n.allowCredentials = [];
   }
-  a.publicKey = n, a.signal = Le.createNewAbortSignal();
-  let o;
+  a.publicKey = n, a.signal = tt.createNewAbortSignal();
+  let i;
   try {
-    o = await navigator.credentials.get(a);
-  } catch (d) {
-    throw It({ error: d, options: a });
+    i = await navigator.credentials.get(a);
+  } catch (p) {
+    throw jt({ error: p, options: a });
   }
-  if (!o)
+  if (!i)
     throw new Error("Authentication was not completed");
-  const { id: s, rawId: i, response: u, type: h } = o;
-  let l;
-  return u.userHandle && (l = _(u.userHandle)), {
-    id: s,
-    rawId: _(i),
+  const { id: o, rawId: s, response: u, type: h } = i;
+  let c;
+  return u.userHandle && (c = P(u.userHandle)), {
+    id: o,
+    rawId: P(s),
     response: {
-      authenticatorData: _(u.authenticatorData),
-      clientDataJSON: _(u.clientDataJSON),
-      signature: _(u.signature),
-      userHandle: l
+      authenticatorData: P(u.authenticatorData),
+      clientDataJSON: P(u.clientDataJSON),
+      signature: P(u.signature),
+      userHandle: c
     },
     type: h,
-    clientExtensionResults: o.getClientExtensionResults(),
-    authenticatorAttachment: We(o.authenticatorAttachment)
+    clientExtensionResults: i.getClientExtensionResults(),
+    authenticatorAttachment: rt(i.authenticatorAttachment)
   };
 }
 /*!
@@ -311,22 +311,22 @@ async function _t(e, t = !1) {
 try {
   window.__VERSINI_AUTH_COMMON__ || (window.__VERSINI_AUTH_COMMON__ = {
     version: "2.12.1",
-    buildTime: "07/15/2024 11:26 AM EDT",
+    buildTime: "07/16/2024 05:03 PM EDT",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
 } catch {
 }
-const Y = {
+const J = {
   ID_TOKEN: "id_token",
   ACCESS_TOKEN: "token",
   ID_AND_ACCESS_TOKEN: "id_token token",
   CODE: "code",
   REFRESH_TOKEN: "refresh_token",
   PASSKEY: "passkey"
-}, xe = {
+}, nt = {
   CLIENT_ID: "X-Auth-ClientId"
-}, S = {
+}, b = {
   ALG: "RS256",
   USER_ID_KEY: "sub",
   TOKEN_ID_KEY: "__raw",
@@ -334,7 +334,7 @@ const Y = {
   USERNAME_KEY: "username",
   AUTH_TYPE_KEY: "auth_type",
   ISSUER: "gizmette.com"
-}, bt = `-----BEGIN PUBLIC KEY-----
+}, Ft = `-----BEGIN PUBLIC KEY-----
 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF6i3Jd9fY/3COqCw/m7
 w5PKyTYLGAI2I6SIIdpe6i6DOCbEkmDz7LdVsBqwNtVi8gvWYIj+8ol6rU3qu1v5
 i1Jd45GSK4kzkVdgCmQZbM5ak0KI99q5wsrAIzUd+LRJ2HRvWtr5IYdsIiXaQjle
@@ -342,33 +342,33 @@ aMwPFOIcJH+rKfFgNcHLcaS5syp7zU1ANwZ+trgR+DifBr8TLVkBynmNeTyhDm2+
 l0haqjMk0UoNPPE8iYBWUHQJJE1Dqstj65d6Eh5g64Pao25y4cmYJbKjiblIGEkE
 sjqybA9mARAqh9k/eiIopecWSiffNQTwVQVd2I9ZH3BalhEXHlqFgrjz51kFqg81
 awIDAQAB
------END PUBLIC KEY-----`, ae = {
+-----END PUBLIC KEY-----`, he = {
   AUTHENTICATE: "authenticate",
   CODE: "code",
   LOGOUT: "logout"
-}, se = crypto, Ye = (e) => e instanceof CryptoKey, V = new TextEncoder(), oe = new TextDecoder();
-function kt(...e) {
-  const t = e.reduce((a, { length: o }) => a + o, 0), r = new Uint8Array(t);
+}, fe = crypto, at = (e) => e instanceof CryptoKey, X = new TextEncoder(), pe = new TextDecoder();
+function Yt(...e) {
+  const t = e.reduce((a, { length: i }) => a + i, 0), r = new Uint8Array(t);
   let n = 0;
   for (const a of e)
     r.set(a, n), n += a.length;
   return r;
 }
-const Ot = (e) => {
+const Jt = (e) => {
   const t = atob(e), r = new Uint8Array(t.length);
   for (let n = 0; n < t.length; n++)
     r[n] = t.charCodeAt(n);
   return r;
-}, Z = (e) => {
+}, se = (e) => {
   let t = e;
-  t instanceof Uint8Array && (t = oe.decode(t)), t = t.replace(/-/g, "+").replace(/_/g, "/").replace(/\s/g, "");
+  t instanceof Uint8Array && (t = pe.decode(t)), t = t.replace(/-/g, "+").replace(/_/g, "/").replace(/\s/g, "");
   try {
-    return Ot(t);
+    return Jt(t);
   } catch {
     throw new TypeError("The input to be decoded is not correctly encoded.");
   }
 };
-class v extends Error {
+let M = class extends Error {
   static get code() {
     return "ERR_JOSE_GENERIC";
   }
@@ -376,16 +376,15 @@ class v extends Error {
     var r;
     super(t), this.code = "ERR_JOSE_GENERIC", this.name = this.constructor.name, (r = Error.captureStackTrace) == null || r.call(Error, this, this.constructor);
   }
-}
-class I extends v {
+}, _ = class extends M {
   static get code() {
     return "ERR_JWT_CLAIM_VALIDATION_FAILED";
   }
   constructor(t, r, n = "unspecified", a = "unspecified") {
     super(t), this.code = "ERR_JWT_CLAIM_VALIDATION_FAILED", this.claim = n, this.reason = a, this.payload = r;
   }
-}
-class Re extends v {
+};
+class $e extends M {
   static get code() {
     return "ERR_JWT_EXPIRED";
   }
@@ -393,7 +392,7 @@ class Re extends v {
     super(t), this.code = "ERR_JWT_EXPIRED", this.claim = n, this.reason = a, this.payload = r;
   }
 }
-class Pt extends v {
+class qt extends M {
   constructor() {
     super(...arguments), this.code = "ERR_JOSE_ALG_NOT_ALLOWED";
   }
@@ -401,23 +400,21 @@ class Pt extends v {
     return "ERR_JOSE_ALG_NOT_ALLOWED";
   }
 }
-class O extends v {
+let U = class extends M {
   constructor() {
     super(...arguments), this.code = "ERR_JOSE_NOT_SUPPORTED";
   }
   static get code() {
     return "ERR_JOSE_NOT_SUPPORTED";
   }
-}
-class g extends v {
+}, S = class extends M {
   constructor() {
     super(...arguments), this.code = "ERR_JWS_INVALID";
   }
   static get code() {
     return "ERR_JWS_INVALID";
   }
-}
-let Ge = class extends v {
+}, ot = class extends M {
   constructor() {
     super(...arguments), this.code = "ERR_JWT_INVALID";
   }
@@ -425,7 +422,7 @@ let Ge = class extends v {
     return "ERR_JWT_INVALID";
   }
 };
-class vt extends v {
+class zt extends M {
   constructor() {
     super(...arguments), this.code = "ERR_JWS_SIGNATURE_VERIFICATION_FAILED", this.message = "signature verification failed";
   }
@@ -433,16 +430,16 @@ class vt extends v {
     return "ERR_JWS_SIGNATURE_VERIFICATION_FAILED";
   }
 }
-function b(e, t = "algorithm.name") {
+function C(e, t = "algorithm.name") {
   return new TypeError(`CryptoKey does not support this operation, its ${t} must be ${e}`);
 }
-function J(e, t) {
+function Z(e, t) {
   return e.name === t;
 }
-function ue(e) {
+function ye(e) {
   return parseInt(e.name.slice(4), 10);
 }
-function Ct(e) {
+function Qt(e) {
   switch (e) {
     case "ES256":
       return "P-256";
@@ -454,7 +451,7 @@ function Ct(e) {
       throw new Error("unreachable");
   }
 }
-function Nt(e, t) {
+function Xt(e, t) {
   if (t.length && !t.some((r) => e.usages.includes(r))) {
     let r = "CryptoKey does not support this operation, its usages must include ";
     if (t.length > 2) {
@@ -464,59 +461,59 @@ function Nt(e, t) {
     throw new TypeError(r);
   }
 }
-function Dt(e, t, ...r) {
+function Zt(e, t, ...r) {
   switch (t) {
     case "HS256":
     case "HS384":
     case "HS512": {
-      if (!J(e.algorithm, "HMAC"))
-        throw b("HMAC");
+      if (!Z(e.algorithm, "HMAC"))
+        throw C("HMAC");
       const n = parseInt(t.slice(2), 10);
-      if (ue(e.algorithm.hash) !== n)
-        throw b(`SHA-${n}`, "algorithm.hash");
+      if (ye(e.algorithm.hash) !== n)
+        throw C(`SHA-${n}`, "algorithm.hash");
       break;
     }
     case "RS256":
     case "RS384":
     case "RS512": {
-      if (!J(e.algorithm, "RSASSA-PKCS1-v1_5"))
-        throw b("RSASSA-PKCS1-v1_5");
+      if (!Z(e.algorithm, "RSASSA-PKCS1-v1_5"))
+        throw C("RSASSA-PKCS1-v1_5");
       const n = parseInt(t.slice(2), 10);
-      if (ue(e.algorithm.hash) !== n)
-        throw b(`SHA-${n}`, "algorithm.hash");
+      if (ye(e.algorithm.hash) !== n)
+        throw C(`SHA-${n}`, "algorithm.hash");
       break;
     }
     case "PS256":
     case "PS384":
     case "PS512": {
-      if (!J(e.algorithm, "RSA-PSS"))
-        throw b("RSA-PSS");
+      if (!Z(e.algorithm, "RSA-PSS"))
+        throw C("RSA-PSS");
       const n = parseInt(t.slice(2), 10);
-      if (ue(e.algorithm.hash) !== n)
-        throw b(`SHA-${n}`, "algorithm.hash");
+      if (ye(e.algorithm.hash) !== n)
+        throw C(`SHA-${n}`, "algorithm.hash");
       break;
     }
     case "EdDSA": {
       if (e.algorithm.name !== "Ed25519" && e.algorithm.name !== "Ed448")
-        throw b("Ed25519 or Ed448");
+        throw C("Ed25519 or Ed448");
       break;
     }
     case "ES256":
     case "ES384":
     case "ES512": {
-      if (!J(e.algorithm, "ECDSA"))
-        throw b("ECDSA");
-      const n = Ct(t);
+      if (!Z(e.algorithm, "ECDSA"))
+        throw C("ECDSA");
+      const n = Qt(t);
       if (e.algorithm.namedCurve !== n)
-        throw b(n, "algorithm.namedCurve");
+        throw C(n, "algorithm.namedCurve");
       break;
     }
     default:
       throw new TypeError("CryptoKey does not support this operation");
   }
-  Nt(e, r);
+  Xt(e, r);
 }
-function Me(e, t, ...r) {
+function it(e, t, ...r) {
   var n;
   if (r.length > 2) {
     const a = r.pop();
@@ -524,11 +521,11 @@ function Me(e, t, ...r) {
   } else r.length === 2 ? e += `one of type ${r[0]} or ${r[1]}.` : e += `of type ${r[0]}.`;
   return t == null ? e += ` Received ${t}` : typeof t == "function" && t.name ? e += ` Received function ${t.name}` : typeof t == "object" && t != null && (n = t.constructor) != null && n.name && (e += ` Received an instance of ${t.constructor.name}`), e;
 }
-const Ie = (e, ...t) => Me("Key must be ", e, ...t);
-function Ve(e, t, ...r) {
-  return Me(`Key for the ${e} algorithm must be `, t, ...r);
+const Ke = (e, ...t) => it("Key must be ", e, ...t);
+function st(e, t, ...r) {
+  return it(`Key for the ${e} algorithm must be `, t, ...r);
 }
-const Je = (e) => Ye(e) ? !0 : (e == null ? void 0 : e[Symbol.toStringTag]) === "KeyObject", re = ["CryptoKey"], Ut = (...e) => {
+const ct = (e) => at(e) ? !0 : (e == null ? void 0 : e[Symbol.toStringTag]) === "KeyObject", le = ["CryptoKey"], er = (...e) => {
   const t = e.filter(Boolean);
   if (t.length === 0 || t.length === 1)
     return !0;
@@ -539,19 +536,19 @@ const Je = (e) => Ye(e) ? !0 : (e == null ? void 0 : e[Symbol.toStringTag]) ===
       r = new Set(a);
       continue;
     }
-    for (const o of a) {
-      if (r.has(o))
+    for (const i of a) {
+      if (r.has(i))
         return !1;
-      r.add(o);
+      r.add(i);
     }
   }
   return !0;
 };
-function Kt(e) {
+function tr(e) {
   return typeof e == "object" && e !== null;
 }
-function me(e) {
-  if (!Kt(e) || Object.prototype.toString.call(e) !== "[object Object]")
+function _e(e) {
+  if (!tr(e) || Object.prototype.toString.call(e) !== "[object Object]")
     return !1;
   if (Object.getPrototypeOf(e) === null)
     return !0;
@@ -560,14 +557,14 @@ function me(e) {
     t = Object.getPrototypeOf(t);
   return Object.getPrototypeOf(e) === t;
 }
-const Ht = (e, t) => {
+const rr = (e, t) => {
   if (e.startsWith("RS") || e.startsWith("PS")) {
     const { modulusLength: r } = t.algorithm;
     if (typeof r != "number" || r < 2048)
       throw new TypeError(`${e} requires key modulusLength to be 2048 bits or larger`);
   }
 };
-function $t(e) {
+function nr(e) {
   let t, r;
   switch (e.kty) {
     case "RSA": {
@@ -592,7 +589,7 @@ function $t(e) {
           }, r = e.d ? ["decrypt", "unwrapKey"] : ["encrypt", "wrapKey"];
           break;
         default:
-          throw new O('Invalid or unsupported JWK "alg" (Algorithm) Parameter value');
+          throw new U('Invalid or unsupported JWK "alg" (Algorithm) Parameter value');
       }
       break;
     }
@@ -614,7 +611,7 @@ function $t(e) {
           t = { name: "ECDH", namedCurve: e.crv }, r = e.d ? ["deriveBits"] : [];
           break;
         default:
-          throw new O('Invalid or unsupported JWK "alg" (Algorithm) Parameter value');
+          throw new U('Invalid or unsupported JWK "alg" (Algorithm) Parameter value');
       }
       break;
     }
@@ -630,168 +627,168 @@ function $t(e) {
           t = { name: e.crv }, r = e.d ? ["deriveBits"] : [];
           break;
         default:
-          throw new O('Invalid or unsupported JWK "alg" (Algorithm) Parameter value');
+          throw new U('Invalid or unsupported JWK "alg" (Algorithm) Parameter value');
       }
       break;
     }
     default:
-      throw new O('Invalid or unsupported JWK "kty" (Key Type) Parameter value');
+      throw new U('Invalid or unsupported JWK "kty" (Key Type) Parameter value');
   }
   return { algorithm: t, keyUsages: r };
 }
-const Lt = async (e) => {
+const ar = async (e) => {
   if (!e.alg)
     throw new TypeError('"alg" argument is required when "jwk.alg" is not present');
-  const { algorithm: t, keyUsages: r } = $t(e), n = [
+  const { algorithm: t, keyUsages: r } = nr(e), n = [
     t,
     e.ext ?? !1,
     e.key_ops ?? r
   ], a = { ...e };
-  return delete a.alg, delete a.use, se.subtle.importKey("jwk", a, ...n);
-}, je = (e) => Z(e);
-let le, de;
-const Fe = (e) => (e == null ? void 0 : e[Symbol.toStringTag]) === "KeyObject", Be = async (e, t, r, n) => {
+  return delete a.alg, delete a.use, fe.subtle.importKey("jwk", a, ...n);
+}, ut = (e) => se(e);
+let we, Ee;
+const lt = (e) => (e == null ? void 0 : e[Symbol.toStringTag]) === "KeyObject", dt = async (e, t, r, n) => {
   let a = e.get(t);
   if (a != null && a[n])
     return a[n];
-  const o = await Lt({ ...r, alg: n });
-  return a ? a[n] = o : e.set(t, { [n]: o }), o;
-}, Wt = (e, t) => {
-  if (Fe(e)) {
+  const i = await ar({ ...r, alg: n });
+  return a ? a[n] = i : e.set(t, { [n]: i }), i;
+}, or = (e, t) => {
+  if (lt(e)) {
     let r = e.export({ format: "jwk" });
-    return delete r.d, delete r.dp, delete r.dq, delete r.p, delete r.q, delete r.qi, r.k ? je(r.k) : (de || (de = /* @__PURE__ */ new WeakMap()), Be(de, e, r, t));
+    return delete r.d, delete r.dp, delete r.dq, delete r.p, delete r.q, delete r.qi, r.k ? ut(r.k) : (Ee || (Ee = /* @__PURE__ */ new WeakMap()), dt(Ee, e, r, t));
   }
   return e;
-}, xt = (e, t) => {
-  if (Fe(e)) {
+}, ir = (e, t) => {
+  if (lt(e)) {
     let r = e.export({ format: "jwk" });
-    return r.k ? je(r.k) : (le || (le = /* @__PURE__ */ new WeakMap()), Be(le, e, r, t));
+    return r.k ? ut(r.k) : (we || (we = /* @__PURE__ */ new WeakMap()), dt(we, e, r, t));
   }
   return e;
-}, Yt = { normalizePublicKey: Wt, normalizePrivateKey: xt }, k = (e, t, r = 0) => {
+}, sr = { normalizePublicKey: or, normalizePrivateKey: ir }, D = (e, t, r = 0) => {
   r === 0 && (t.unshift(t.length), t.unshift(6));
   const n = e.indexOf(t[0], r);
   if (n === -1)
     return !1;
   const a = e.subarray(n, n + t.length);
-  return a.length !== t.length ? !1 : a.every((o, s) => o === t[s]) || k(e, t, n + 1);
-}, _e = (e) => {
+  return a.length !== t.length ? !1 : a.every((i, o) => i === t[o]) || D(e, t, n + 1);
+}, Le = (e) => {
   switch (!0) {
-    case k(e, [42, 134, 72, 206, 61, 3, 1, 7]):
+    case D(e, [42, 134, 72, 206, 61, 3, 1, 7]):
       return "P-256";
-    case k(e, [43, 129, 4, 0, 34]):
+    case D(e, [43, 129, 4, 0, 34]):
       return "P-384";
-    case k(e, [43, 129, 4, 0, 35]):
+    case D(e, [43, 129, 4, 0, 35]):
       return "P-521";
-    case k(e, [43, 101, 110]):
+    case D(e, [43, 101, 110]):
       return "X25519";
-    case k(e, [43, 101, 111]):
+    case D(e, [43, 101, 111]):
       return "X448";
-    case k(e, [43, 101, 112]):
+    case D(e, [43, 101, 112]):
       return "Ed25519";
-    case k(e, [43, 101, 113]):
+    case D(e, [43, 101, 113]):
       return "Ed448";
     default:
-      throw new O("Invalid or unsupported EC Key Curve or OKP Key Sub Type");
+      throw new U("Invalid or unsupported EC Key Curve or OKP Key Sub Type");
   }
-}, Gt = async (e, t, r, n, a) => {
-  let o, s;
-  const i = new Uint8Array(atob(r.replace(e, "")).split("").map((u) => u.charCodeAt(0)));
+}, cr = async (e, t, r, n, a) => {
+  let i, o;
+  const s = new Uint8Array(atob(r.replace(e, "")).split("").map((u) => u.charCodeAt(0)));
   switch (n) {
     case "PS256":
     case "PS384":
     case "PS512":
-      o = { name: "RSA-PSS", hash: `SHA-${n.slice(-3)}` }, s = ["verify"];
+      i = { name: "RSA-PSS", hash: `SHA-${n.slice(-3)}` }, o = ["verify"];
       break;
     case "RS256":
     case "RS384":
     case "RS512":
-      o = { name: "RSASSA-PKCS1-v1_5", hash: `SHA-${n.slice(-3)}` }, s = ["verify"];
+      i = { name: "RSASSA-PKCS1-v1_5", hash: `SHA-${n.slice(-3)}` }, o = ["verify"];
       break;
     case "RSA-OAEP":
     case "RSA-OAEP-256":
     case "RSA-OAEP-384":
     case "RSA-OAEP-512":
-      o = {
+      i = {
         name: "RSA-OAEP",
         hash: `SHA-${parseInt(n.slice(-3), 10) || 1}`
-      }, s = ["encrypt", "wrapKey"];
+      }, o = ["encrypt", "wrapKey"];
       break;
     case "ES256":
-      o = { name: "ECDSA", namedCurve: "P-256" }, s = ["verify"];
+      i = { name: "ECDSA", namedCurve: "P-256" }, o = ["verify"];
       break;
     case "ES384":
-      o = { name: "ECDSA", namedCurve: "P-384" }, s = ["verify"];
+      i = { name: "ECDSA", namedCurve: "P-384" }, o = ["verify"];
       break;
     case "ES512":
-      o = { name: "ECDSA", namedCurve: "P-521" }, s = ["verify"];
+      i = { name: "ECDSA", namedCurve: "P-521" }, o = ["verify"];
       break;
     case "ECDH-ES":
     case "ECDH-ES+A128KW":
     case "ECDH-ES+A192KW":
     case "ECDH-ES+A256KW": {
-      const u = _e(i);
-      o = u.startsWith("P-") ? { name: "ECDH", namedCurve: u } : { name: u }, s = [];
+      const u = Le(s);
+      i = u.startsWith("P-") ? { name: "ECDH", namedCurve: u } : { name: u }, o = [];
       break;
     }
     case "EdDSA":
-      o = { name: _e(i) }, s = ["verify"];
+      i = { name: Le(s) }, o = ["verify"];
       break;
     default:
-      throw new O('Invalid or unsupported "alg" (Algorithm) value');
+      throw new U('Invalid or unsupported "alg" (Algorithm) value');
   }
-  return se.subtle.importKey(t, i, o, !1, s);
-}, Mt = (e, t, r) => Gt(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
-async function Vt(e, t, r) {
+  return fe.subtle.importKey(t, s, i, !1, o);
+}, ur = (e, t, r) => cr(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
+async function lr(e, t, r) {
   if (e.indexOf("-----BEGIN PUBLIC KEY-----") !== 0)
     throw new TypeError('"spki" must be SPKI formatted string');
-  return Mt(e, t);
+  return ur(e, t);
 }
-const ee = (e) => e == null ? void 0 : e[Symbol.toStringTag], Jt = (e, t) => {
+const ce = (e) => e == null ? void 0 : e[Symbol.toStringTag], dr = (e, t) => {
   if (!(t instanceof Uint8Array)) {
-    if (!Je(t))
-      throw new TypeError(Ve(e, t, ...re, "Uint8Array"));
+    if (!ct(t))
+      throw new TypeError(st(e, t, ...le, "Uint8Array"));
     if (t.type !== "secret")
-      throw new TypeError(`${ee(t)} instances for symmetric algorithms must be of type "secret"`);
+      throw new TypeError(`${ce(t)} instances for symmetric algorithms must be of type "secret"`);
   }
-}, jt = (e, t, r) => {
-  if (!Je(t))
-    throw new TypeError(Ve(e, t, ...re));
+}, hr = (e, t, r) => {
+  if (!ct(t))
+    throw new TypeError(st(e, t, ...le));
   if (t.type === "secret")
-    throw new TypeError(`${ee(t)} instances for asymmetric algorithms must not be of type "secret"`);
+    throw new TypeError(`${ce(t)} instances for asymmetric algorithms must not be of type "secret"`);
   if (t.algorithm && r === "verify" && t.type === "private")
-    throw new TypeError(`${ee(t)} instances for asymmetric algorithm verifying must be of type "public"`);
+    throw new TypeError(`${ce(t)} instances for asymmetric algorithm verifying must be of type "public"`);
   if (t.algorithm && r === "encrypt" && t.type === "private")
-    throw new TypeError(`${ee(t)} instances for asymmetric algorithm encryption must be of type "public"`);
-}, Ft = (e, t, r) => {
-  e.startsWith("HS") || e === "dir" || e.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(e) ? Jt(e, t) : jt(e, t, r);
+    throw new TypeError(`${ce(t)} instances for asymmetric algorithm encryption must be of type "public"`);
+}, fr = (e, t, r) => {
+  e.startsWith("HS") || e === "dir" || e.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(e) ? dr(e, t) : hr(e, t, r);
 };
-function Bt(e, t, r, n, a) {
+function pr(e, t, r, n, a) {
   if (a.crit !== void 0 && (n == null ? void 0 : n.crit) === void 0)
     throw new e('"crit" (Critical) Header Parameter MUST be integrity protected');
   if (!n || n.crit === void 0)
     return /* @__PURE__ */ new Set();
-  if (!Array.isArray(n.crit) || n.crit.length === 0 || n.crit.some((s) => typeof s != "string" || s.length === 0))
+  if (!Array.isArray(n.crit) || n.crit.length === 0 || n.crit.some((o) => typeof o != "string" || o.length === 0))
     throw new e('"crit" (Critical) Header Parameter MUST be an array of non-empty strings when present');
-  let o;
-  r !== void 0 ? o = new Map([...Object.entries(r), ...t.entries()]) : o = t;
-  for (const s of n.crit) {
-    if (!o.has(s))
-      throw new O(`Extension Header Parameter "${s}" is not recognized`);
-    if (a[s] === void 0)
-      throw new e(`Extension Header Parameter "${s}" is missing`);
-    if (o.get(s) && n[s] === void 0)
-      throw new e(`Extension Header Parameter "${s}" MUST be integrity protected`);
+  let i;
+  r !== void 0 ? i = new Map([...Object.entries(r), ...t.entries()]) : i = t;
+  for (const o of n.crit) {
+    if (!i.has(o))
+      throw new U(`Extension Header Parameter "${o}" is not recognized`);
+    if (a[o] === void 0)
+      throw new e(`Extension Header Parameter "${o}" is missing`);
+    if (i.get(o) && n[o] === void 0)
+      throw new e(`Extension Header Parameter "${o}" MUST be integrity protected`);
   }
   return new Set(n.crit);
 }
-const qt = (e, t) => {
+const mr = (e, t) => {
   if (t !== void 0 && (!Array.isArray(t) || t.some((r) => typeof r != "string")))
     throw new TypeError(`"${e}" option must be an array of strings`);
   if (t)
     return new Set(t);
 };
-function zt(e, t) {
+function gr(e, t) {
   const r = `SHA-${e.slice(-3)}`;
   switch (e) {
     case "HS256":
@@ -813,103 +810,103 @@ function zt(e, t) {
     case "EdDSA":
       return { name: t.name };
     default:
-      throw new O(`alg ${e} is not supported either by JOSE or your javascript runtime`);
+      throw new U(`alg ${e} is not supported either by JOSE or your javascript runtime`);
   }
 }
-async function Qt(e, t, r) {
-  if (t = await Yt.normalizePublicKey(t, e), Ye(t))
-    return Dt(t, e, r), t;
+async function yr(e, t, r) {
+  if (t = await sr.normalizePublicKey(t, e), at(t))
+    return Zt(t, e, r), t;
   if (t instanceof Uint8Array) {
     if (!e.startsWith("HS"))
-      throw new TypeError(Ie(t, ...re));
-    return se.subtle.importKey("raw", t, { hash: `SHA-${e.slice(-3)}`, name: "HMAC" }, !1, [r]);
+      throw new TypeError(Ke(t, ...le));
+    return fe.subtle.importKey("raw", t, { hash: `SHA-${e.slice(-3)}`, name: "HMAC" }, !1, [r]);
   }
-  throw new TypeError(Ie(t, ...re, "Uint8Array"));
+  throw new TypeError(Ke(t, ...le, "Uint8Array"));
 }
-const Xt = async (e, t, r, n) => {
-  const a = await Qt(e, t, "verify");
-  Ht(e, a);
-  const o = zt(e, a.algorithm);
+const wr = async (e, t, r, n) => {
+  const a = await yr(e, t, "verify");
+  rr(e, a);
+  const i = gr(e, a.algorithm);
   try {
-    return await se.subtle.verify(o, a, r, n);
+    return await fe.subtle.verify(i, a, r, n);
   } catch {
     return !1;
   }
 };
-async function Zt(e, t, r) {
-  if (!me(e))
-    throw new g("Flattened JWS must be an object");
+async function Er(e, t, r) {
+  if (!_e(e))
+    throw new S("Flattened JWS must be an object");
   if (e.protected === void 0 && e.header === void 0)
-    throw new g('Flattened JWS must have either of the "protected" or "header" members');
+    throw new S('Flattened JWS must have either of the "protected" or "header" members');
   if (e.protected !== void 0 && typeof e.protected != "string")
-    throw new g("JWS Protected Header incorrect type");
+    throw new S("JWS Protected Header incorrect type");
   if (e.payload === void 0)
-    throw new g("JWS Payload missing");
+    throw new S("JWS Payload missing");
   if (typeof e.signature != "string")
-    throw new g("JWS Signature missing or incorrect type");
-  if (e.header !== void 0 && !me(e.header))
-    throw new g("JWS Unprotected Header incorrect type");
+    throw new S("JWS Signature missing or incorrect type");
+  if (e.header !== void 0 && !_e(e.header))
+    throw new S("JWS Unprotected Header incorrect type");
   let n = {};
   if (e.protected)
     try {
-      const T = Z(e.protected);
-      n = JSON.parse(oe.decode(T));
+      const A = se(e.protected);
+      n = JSON.parse(pe.decode(A));
     } catch {
-      throw new g("JWS Protected Header is invalid");
+      throw new S("JWS Protected Header is invalid");
     }
-  if (!Ut(n, e.header))
-    throw new g("JWS Protected and JWS Unprotected Header Parameter names must be disjoint");
+  if (!er(n, e.header))
+    throw new S("JWS Protected and JWS Unprotected Header Parameter names must be disjoint");
   const a = {
     ...n,
     ...e.header
-  }, o = Bt(g, /* @__PURE__ */ new Map([["b64", !0]]), r == null ? void 0 : r.crit, n, a);
-  let s = !0;
-  if (o.has("b64") && (s = n.b64, typeof s != "boolean"))
-    throw new g('The "b64" (base64url-encode payload) Header Parameter must be a boolean');
-  const { alg: i } = a;
-  if (typeof i != "string" || !i)
-    throw new g('JWS "alg" (Algorithm) Header Parameter missing or invalid');
-  const u = r && qt("algorithms", r.algorithms);
-  if (u && !u.has(i))
-    throw new Pt('"alg" (Algorithm) Header Parameter value not allowed');
-  if (s) {
+  }, i = pr(S, /* @__PURE__ */ new Map([["b64", !0]]), r == null ? void 0 : r.crit, n, a);
+  let o = !0;
+  if (i.has("b64") && (o = n.b64, typeof o != "boolean"))
+    throw new S('The "b64" (base64url-encode payload) Header Parameter must be a boolean');
+  const { alg: s } = a;
+  if (typeof s != "string" || !s)
+    throw new S('JWS "alg" (Algorithm) Header Parameter missing or invalid');
+  const u = r && mr("algorithms", r.algorithms);
+  if (u && !u.has(s))
+    throw new qt('"alg" (Algorithm) Header Parameter value not allowed');
+  if (o) {
     if (typeof e.payload != "string")
-      throw new g("JWS Payload must be a string");
+      throw new S("JWS Payload must be a string");
   } else if (typeof e.payload != "string" && !(e.payload instanceof Uint8Array))
-    throw new g("JWS Payload must be a string or an Uint8Array instance");
+    throw new S("JWS Payload must be a string or an Uint8Array instance");
   let h = !1;
-  typeof t == "function" && (t = await t(n, e), h = !0), Ft(i, t, "verify");
-  const l = kt(V.encode(e.protected ?? ""), V.encode("."), typeof e.payload == "string" ? V.encode(e.payload) : e.payload);
+  typeof t == "function" && (t = await t(n, e), h = !0), fr(s, t, "verify");
+  const c = Yt(X.encode(e.protected ?? ""), X.encode("."), typeof e.payload == "string" ? X.encode(e.payload) : e.payload);
   let f;
   try {
-    f = Z(e.signature);
+    f = se(e.signature);
   } catch {
-    throw new g("Failed to base64url decode the signature");
+    throw new S("Failed to base64url decode the signature");
   }
-  if (!await Xt(i, t, f, l))
-    throw new vt();
-  let m;
-  if (s)
+  if (!await wr(s, t, f, c))
+    throw new zt();
+  let g;
+  if (o)
     try {
-      m = Z(e.payload);
+      g = se(e.payload);
     } catch {
-      throw new g("Failed to base64url decode the payload");
+      throw new S("Failed to base64url decode the payload");
     }
-  else typeof e.payload == "string" ? m = V.encode(e.payload) : m = e.payload;
-  const d = { payload: m };
-  return e.protected !== void 0 && (d.protectedHeader = n), e.header !== void 0 && (d.unprotectedHeader = e.header), h ? { ...d, key: t } : d;
-}
-async function er(e, t, r) {
-  if (e instanceof Uint8Array && (e = oe.decode(e)), typeof e != "string")
-    throw new g("Compact JWS must be a string or Uint8Array");
-  const { 0: n, 1: a, 2: o, length: s } = e.split(".");
-  if (s !== 3)
-    throw new g("Invalid Compact JWS");
-  const i = await Zt({ payload: a, protected: n, signature: o }, t, r), u = { payload: i.payload, protectedHeader: i.protectedHeader };
-  return typeof t == "function" ? { ...u, key: i.key } : u;
-}
-const tr = (e) => Math.floor(e.getTime() / 1e3), qe = 60, ze = qe * 60, we = ze * 24, rr = we * 7, nr = we * 365.25, ar = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, be = (e) => {
-  const t = ar.exec(e);
+  else typeof e.payload == "string" ? g = X.encode(e.payload) : g = e.payload;
+  const p = { payload: g };
+  return e.protected !== void 0 && (p.protectedHeader = n), e.header !== void 0 && (p.unprotectedHeader = e.header), h ? { ...p, key: t } : p;
+}
+async function Sr(e, t, r) {
+  if (e instanceof Uint8Array && (e = pe.decode(e)), typeof e != "string")
+    throw new S("Compact JWS must be a string or Uint8Array");
+  const { 0: n, 1: a, 2: i, length: o } = e.split(".");
+  if (o !== 3)
+    throw new S("Invalid Compact JWS");
+  const s = await Er({ payload: a, protected: n, signature: i }, t, r), u = { payload: s.payload, protectedHeader: s.protectedHeader };
+  return typeof t == "function" ? { ...u, key: s.key } : u;
+}
+const Ar = (e) => Math.floor(e.getTime() / 1e3), ht = 60, ft = ht * 60, Ce = ft * 24, vr = Ce * 7, Tr = Ce * 365.25, br = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, Me = (e) => {
+  const t = br.exec(e);
   if (!t || t[4] && t[1])
     throw new TypeError("Invalid time period format");
   const r = parseFloat(t[2]), n = t[3].toLowerCase();
@@ -927,56 +924,56 @@ const tr = (e) => Math.floor(e.getTime() / 1e3), qe = 60, ze = qe * 60, we = ze
     case "min":
     case "mins":
     case "m":
-      a = Math.round(r * qe);
+      a = Math.round(r * ht);
       break;
     case "hour":
     case "hours":
     case "hr":
     case "hrs":
     case "h":
-      a = Math.round(r * ze);
+      a = Math.round(r * ft);
       break;
     case "day":
     case "days":
     case "d":
-      a = Math.round(r * we);
+      a = Math.round(r * Ce);
       break;
     case "week":
     case "weeks":
     case "w":
-      a = Math.round(r * rr);
+      a = Math.round(r * vr);
       break;
     default:
-      a = Math.round(r * nr);
+      a = Math.round(r * Tr);
       break;
   }
   return t[1] === "-" || t[4] === "ago" ? -a : a;
-}, ke = (e) => e.toLowerCase().replace(/^application\//, ""), sr = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, or = (e, t, r = {}) => {
+}, He = (e) => e.toLowerCase().replace(/^application\//, ""), Rr = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, Ir = (e, t, r = {}) => {
   let n;
   try {
-    n = JSON.parse(oe.decode(t));
+    n = JSON.parse(pe.decode(t));
   } catch {
   }
-  if (!me(n))
-    throw new Ge("JWT Claims Set must be a top-level JSON object");
+  if (!_e(n))
+    throw new ot("JWT Claims Set must be a top-level JSON object");
   const { typ: a } = r;
-  if (a && (typeof e.typ != "string" || ke(e.typ) !== ke(a)))
-    throw new I('unexpected "typ" JWT header value', n, "typ", "check_failed");
-  const { requiredClaims: o = [], issuer: s, subject: i, audience: u, maxTokenAge: h } = r, l = [...o];
-  h !== void 0 && l.push("iat"), u !== void 0 && l.push("aud"), i !== void 0 && l.push("sub"), s !== void 0 && l.push("iss");
-  for (const T of new Set(l.reverse()))
-    if (!(T in n))
-      throw new I(`missing required "${T}" claim`, n, T, "missing");
-  if (s && !(Array.isArray(s) ? s : [s]).includes(n.iss))
-    throw new I('unexpected "iss" claim value', n, "iss", "check_failed");
-  if (i && n.sub !== i)
-    throw new I('unexpected "sub" claim value', n, "sub", "check_failed");
-  if (u && !sr(n.aud, typeof u == "string" ? [u] : u))
-    throw new I('unexpected "aud" claim value', n, "aud", "check_failed");
+  if (a && (typeof e.typ != "string" || He(e.typ) !== He(a)))
+    throw new _('unexpected "typ" JWT header value', n, "typ", "check_failed");
+  const { requiredClaims: i = [], issuer: o, subject: s, audience: u, maxTokenAge: h } = r, c = [...i];
+  h !== void 0 && c.push("iat"), u !== void 0 && c.push("aud"), s !== void 0 && c.push("sub"), o !== void 0 && c.push("iss");
+  for (const A of new Set(c.reverse()))
+    if (!(A in n))
+      throw new _(`missing required "${A}" claim`, n, A, "missing");
+  if (o && !(Array.isArray(o) ? o : [o]).includes(n.iss))
+    throw new _('unexpected "iss" claim value', n, "iss", "check_failed");
+  if (s && n.sub !== s)
+    throw new _('unexpected "sub" claim value', n, "sub", "check_failed");
+  if (u && !Rr(n.aud, typeof u == "string" ? [u] : u))
+    throw new _('unexpected "aud" claim value', n, "aud", "check_failed");
   let f;
   switch (typeof r.clockTolerance) {
     case "string":
-      f = be(r.clockTolerance);
+      f = Me(r.clockTolerance);
       break;
     case "number":
       f = r.clockTolerance;
@@ -987,201 +984,669 @@ const tr = (e) => Math.floor(e.getTime() / 1e3), qe = 60, ze = qe * 60, we = ze
     default:
       throw new TypeError("Invalid clockTolerance option type");
   }
-  const { currentDate: m } = r, d = tr(m || /* @__PURE__ */ new Date());
+  const { currentDate: g } = r, p = Ar(g || /* @__PURE__ */ new Date());
   if ((n.iat !== void 0 || h) && typeof n.iat != "number")
-    throw new I('"iat" claim must be a number', n, "iat", "invalid");
+    throw new _('"iat" claim must be a number', n, "iat", "invalid");
   if (n.nbf !== void 0) {
     if (typeof n.nbf != "number")
-      throw new I('"nbf" claim must be a number', n, "nbf", "invalid");
-    if (n.nbf > d + f)
-      throw new I('"nbf" claim timestamp check failed', n, "nbf", "check_failed");
+      throw new _('"nbf" claim must be a number', n, "nbf", "invalid");
+    if (n.nbf > p + f)
+      throw new _('"nbf" claim timestamp check failed', n, "nbf", "check_failed");
   }
   if (n.exp !== void 0) {
     if (typeof n.exp != "number")
-      throw new I('"exp" claim must be a number', n, "exp", "invalid");
-    if (n.exp <= d - f)
-      throw new Re('"exp" claim timestamp check failed', n, "exp", "check_failed");
+      throw new _('"exp" claim must be a number', n, "exp", "invalid");
+    if (n.exp <= p - f)
+      throw new $e('"exp" claim timestamp check failed', n, "exp", "check_failed");
   }
   if (h) {
-    const T = d - n.iat, C = typeof h == "number" ? h : be(h);
-    if (T - f > C)
-      throw new Re('"iat" claim timestamp check failed (too far in the past)', n, "iat", "check_failed");
-    if (T < 0 - f)
-      throw new I('"iat" claim timestamp check failed (it should be in the past)', n, "iat", "check_failed");
+    const A = p - n.iat, $ = typeof h == "number" ? h : Me(h);
+    if (A - f > $)
+      throw new $e('"iat" claim timestamp check failed (too far in the past)', n, "iat", "check_failed");
+    if (A < 0 - f)
+      throw new _('"iat" claim timestamp check failed (it should be in the past)', n, "iat", "check_failed");
   }
   return n;
 };
-async function ir(e, t, r) {
+async function _r(e, t, r) {
   var n;
-  const a = await er(e, t, r);
+  const a = await Sr(e, t, r);
   if ((n = a.protectedHeader.crit) != null && n.includes("b64") && a.protectedHeader.b64 === !1)
-    throw new Ge("JWTs MUST NOT use unencoded payload");
-  const o = { payload: or(a.protectedHeader, a.payload, r), protectedHeader: a.protectedHeader };
-  return typeof t == "function" ? { ...o, key: a.key } : o;
+    throw new ot("JWTs MUST NOT use unencoded payload");
+  const i = { payload: Ir(a.protectedHeader, a.payload, r), protectedHeader: a.protectedHeader };
+  return typeof t == "function" ? { ...i, key: a.key } : i;
 }
-const G = async (e) => {
+const q = async (e) => {
   try {
-    const t = S.ALG, r = await Vt(bt, t);
-    return await ir(e, r, {
-      issuer: S.ISSUER
+    const t = b.ALG, r = await lr(Ft, t);
+    return await _r(e, r, {
+      issuer: b.ISSUER
     });
   } catch {
     return;
   }
 };
-var E = [];
-for (var he = 0; he < 256; ++he)
-  E.push((he + 256).toString(16).slice(1));
-function cr(e, t = 0) {
-  return (E[e[t + 0]] + E[e[t + 1]] + E[e[t + 2]] + E[e[t + 3]] + "-" + E[e[t + 4]] + E[e[t + 5]] + "-" + E[e[t + 6]] + E[e[t + 7]] + "-" + E[e[t + 8]] + E[e[t + 9]] + "-" + E[e[t + 10]] + E[e[t + 11]] + E[e[t + 12]] + E[e[t + 13]] + E[e[t + 14]] + E[e[t + 15]]).toLowerCase();
+var w = [];
+for (var Se = 0; Se < 256; ++Se)
+  w.push((Se + 256).toString(16).slice(1));
+function Pr(e, t = 0) {
+  return (w[e[t + 0]] + w[e[t + 1]] + w[e[t + 2]] + w[e[t + 3]] + "-" + w[e[t + 4]] + w[e[t + 5]] + "-" + w[e[t + 6]] + w[e[t + 7]] + "-" + w[e[t + 8]] + w[e[t + 9]] + "-" + w[e[t + 10]] + w[e[t + 11]] + w[e[t + 12]] + w[e[t + 13]] + w[e[t + 14]] + w[e[t + 15]]).toLowerCase();
 }
-var j, ur = new Uint8Array(16);
-function lr() {
-  if (!j && (j = typeof crypto < "u" && crypto.getRandomValues && crypto.getRandomValues.bind(crypto), !j))
+var ee, Cr = new Uint8Array(16);
+function kr() {
+  if (!ee && (ee = typeof crypto < "u" && crypto.getRandomValues && crypto.getRandomValues.bind(crypto), !ee))
     throw new Error("crypto.getRandomValues() not supported. See https://github.com/uuidjs/uuid#getrandomvalues-not-supported");
-  return j(ur);
+  return ee(Cr);
 }
-var dr = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto);
-const Oe = {
-  randomUUID: dr
+var Or = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto);
+const xe = {
+  randomUUID: Or
 };
-function Pe(e, t, r) {
-  if (Oe.randomUUID && !t && !e)
-    return Oe.randomUUID();
+function We(e, t, r) {
+  if (xe.randomUUID && !t && !e)
+    return xe.randomUUID();
   e = e || {};
-  var n = e.random || (e.rng || lr)();
-  return n[6] = n[6] & 15 | 64, n[8] = n[8] & 63 | 128, cr(n);
+  var n = e.random || (e.rng || kr)();
+  return n[6] = n[6] & 15 | 64, n[8] = n[8] & 63 | 128, Pr(n);
 }
-const ve = globalThis.crypto, hr = (e) => `${Pe()}${Pe()}`.slice(0, e), pr = (e) => btoa(
+const Ge = globalThis.crypto, Nr = (e) => `${We()}${We()}`.slice(0, e), Dr = (e) => btoa(
   [...new Uint8Array(e)].map((t) => String.fromCharCode(t)).join("")
 );
-async function fr(e) {
-  if (!ve.subtle)
+async function Ur(e) {
+  if (!Ge.subtle)
     throw new Error(
       "crypto.subtle is available only in secure contexts (HTTPS)."
     );
-  const t = new TextEncoder().encode(e), r = await ve.subtle.digest("SHA-256", t);
-  return pr(r).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+  const t = new TextEncoder().encode(e), r = await Ge.subtle.digest("SHA-256", t);
+  return Dr(r).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
 }
-async function yr(e) {
-  const r = hr(43), n = await fr(r);
+async function $r(e) {
+  const r = Nr(43), n = await Ur(r);
   return {
     code_verifier: r,
     code_challenge: n
   };
 }
-function Qe(e, t) {
+function pt(e, t) {
   window.dispatchEvent(new StorageEvent("storage", { key: e, newValue: t }));
 }
-const Ce = (e, t) => {
+const Ve = (e, t) => {
   const r = JSON.stringify(
     typeof t == "function" ? t() : t
   );
-  window.localStorage.setItem(e, r), Qe(e, r);
-}, mr = (e) => {
-  window.localStorage.removeItem(e), Qe(e, null);
-}, Ne = (e) => window.localStorage.getItem(e), Er = (e) => (window.addEventListener("storage", e), () => window.removeEventListener("storage", e));
-function F({
+  window.localStorage.setItem(e, r), pt(e, r);
+}, Kr = (e) => {
+  window.localStorage.removeItem(e), pt(e, null);
+}, je = (e) => window.localStorage.getItem(e), Lr = (e) => (window.addEventListener("storage", e), () => window.removeEventListener("storage", e));
+function te({
   key: e,
   initialValue: t
 }) {
-  const r = ft(Er, () => Ne(e)), n = x(
-    (s) => {
+  const r = Ut(Lr, () => je(e)), n = Y(
+    (o) => {
       try {
-        const i = typeof s == "function" ? s(JSON.parse(r)) : s;
-        i == null ? mr(e) : Ce(e, i);
-      } catch (i) {
-        console.warn(i);
+        const s = typeof o == "function" ? o(JSON.parse(r)) : o;
+        s == null ? Kr(e) : Ve(e, s);
+      } catch (s) {
+        console.warn(s);
       }
     },
     [e, r]
-  ), a = x(() => {
+  ), a = Y(() => {
     n(t);
-  }, [t, n]), o = x(() => {
+  }, [t, n]), i = Y(() => {
     n(null);
   }, [n]);
-  return Ke(() => {
+  return Xe(() => {
     try {
-      Ne(e) === null && typeof t < "u" && Ce(e, t);
-    } catch (s) {
-      console.warn(s);
+      je(e) === null && typeof t < "u" && Ve(e, t);
+    } catch (o) {
+      console.warn(o);
     }
-  }, [e, t]), [r ? JSON.parse(r) : null, n, a, o];
+  }, [e, t]), [r ? JSON.parse(r) : null, n, a, i];
 }
-var w = [];
-for (var pe = 0; pe < 256; ++pe)
-  w.push((pe + 256).toString(16).slice(1));
-function wr(e, t = 0) {
-  return (w[e[t + 0]] + w[e[t + 1]] + w[e[t + 2]] + w[e[t + 3]] + "-" + w[e[t + 4]] + w[e[t + 5]] + "-" + w[e[t + 6]] + w[e[t + 7]] + "-" + w[e[t + 8]] + w[e[t + 9]] + "-" + w[e[t + 10]] + w[e[t + 11]] + w[e[t + 12]] + w[e[t + 13]] + w[e[t + 14]] + w[e[t + 15]]).toLowerCase();
+var E = [];
+for (var Ae = 0; Ae < 256; ++Ae)
+  E.push((Ae + 256).toString(16).slice(1));
+function Mr(e, t = 0) {
+  return (E[e[t + 0]] + E[e[t + 1]] + E[e[t + 2]] + E[e[t + 3]] + "-" + E[e[t + 4]] + E[e[t + 5]] + "-" + E[e[t + 6]] + E[e[t + 7]] + "-" + E[e[t + 8]] + E[e[t + 9]] + "-" + E[e[t + 10]] + E[e[t + 11]] + E[e[t + 12]] + E[e[t + 13]] + E[e[t + 14]] + E[e[t + 15]]).toLowerCase();
 }
-var B, gr = new Uint8Array(16);
-function Ar() {
-  if (!B && (B = typeof crypto < "u" && crypto.getRandomValues && crypto.getRandomValues.bind(crypto), !B))
+var re, Hr = new Uint8Array(16);
+function xr() {
+  if (!re && (re = typeof crypto < "u" && crypto.getRandomValues && crypto.getRandomValues.bind(crypto), !re))
     throw new Error("crypto.getRandomValues() not supported. See https://github.com/uuidjs/uuid#getrandomvalues-not-supported");
-  return B(gr);
+  return re(Hr);
 }
-var Sr = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto);
-const De = {
-  randomUUID: Sr
+var Wr = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto);
+const Be = {
+  randomUUID: Wr
 };
-function fe(e, t, r) {
-  if (De.randomUUID && !t && !e)
-    return De.randomUUID();
+function ve(e, t, r) {
+  if (Be.randomUUID && !t && !e)
+    return Be.randomUUID();
   e = e || {};
-  var n = e.random || (e.rng || Ar)();
-  return n[6] = n[6] & 15 | 64, n[8] = n[8] & 63 | 128, wr(n);
+  var n = e.random || (e.rng || xr)();
+  return n[6] = n[6] & 15 | 64, n[8] = n[8] & 63 | 128, Mr(n);
+}
+function k(e, t, r, n) {
+  return new (r || (r = Promise))(function(a, i) {
+    function o(h) {
+      try {
+        u(n.next(h));
+      } catch (c) {
+        i(c);
+      }
+    }
+    function s(h) {
+      try {
+        u(n.throw(h));
+      } catch (c) {
+        i(c);
+      }
+    }
+    function u(h) {
+      var c;
+      h.done ? a(h.value) : (c = h.value, c instanceof r ? c : new r(function(f) {
+        f(c);
+      })).then(o, s);
+    }
+    u((n = n.apply(e, [])).next());
+  });
+}
+function O(e, t) {
+  var r, n, a, i, o = { label: 0, sent: function() {
+    if (1 & a[0]) throw a[1];
+    return a[1];
+  }, trys: [], ops: [] };
+  return i = { next: s(0), throw: s(1), return: s(2) }, typeof Symbol == "function" && (i[Symbol.iterator] = function() {
+    return this;
+  }), i;
+  function s(u) {
+    return function(h) {
+      return function(c) {
+        if (r) throw new TypeError("Generator is already executing.");
+        for (; i && (i = 0, c[0] && (o = 0)), o; ) try {
+          if (r = 1, n && (a = 2 & c[0] ? n.return : c[0] ? n.throw || ((a = n.return) && a.call(n), 0) : n.next) && !(a = a.call(n, c[1])).done) return a;
+          switch (n = 0, a && (c = [2 & c[0], a.value]), c[0]) {
+            case 0:
+            case 1:
+              a = c;
+              break;
+            case 4:
+              return o.label++, { value: c[1], done: !1 };
+            case 5:
+              o.label++, n = c[1], c = [0];
+              continue;
+            case 7:
+              c = o.ops.pop(), o.trys.pop();
+              continue;
+            default:
+              if (a = o.trys, !((a = a.length > 0 && a[a.length - 1]) || c[0] !== 6 && c[0] !== 2)) {
+                o = 0;
+                continue;
+              }
+              if (c[0] === 3 && (!a || c[1] > a[0] && c[1] < a[3])) {
+                o.label = c[1];
+                break;
+              }
+              if (c[0] === 6 && o.label < a[1]) {
+                o.label = a[1], a = c;
+                break;
+              }
+              if (a && o.label < a[2]) {
+                o.label = a[2], o.ops.push(c);
+                break;
+              }
+              a[2] && o.ops.pop(), o.trys.pop();
+              continue;
+          }
+          c = t.call(e, o);
+        } catch (f) {
+          c = [6, f], n = 0;
+        } finally {
+          r = a = 0;
+        }
+        if (5 & c[0]) throw c[1];
+        return { value: c[0] ? c[1] : void 0, done: !0 };
+      }([u, h]);
+    };
+  }
+}
+var N = { exclude: [] }, mt = {}, Gr = { timeout: "true" }, R = function(e, t) {
+  typeof window < "u" && (mt[e] = t);
+}, Vr = function() {
+  return Object.fromEntries(Object.entries(mt).filter(function(e) {
+    var t, r = e[0];
+    return !(!((t = N == null ? void 0 : N.exclude) === null || t === void 0) && t.includes(r));
+  }).map(function(e) {
+    return [e[0], (0, e[1])()];
+  }));
+}, Fe = 3432918353, Ye = 461845907, jr = 3864292196, Br = 2246822507, Fr = 3266489909;
+function Te(e, t) {
+  return e << t | e >>> 32 - t;
+}
+function ke(e, t) {
+  t === void 0 && (t = 0);
+  for (var r = t, n = 0, a = 3 & e.length, i = e.length - a, o = 0; o < i; ) n = 255 & e.charCodeAt(o) | (255 & e.charCodeAt(++o)) << 8 | (255 & e.charCodeAt(++o)) << 16 | (255 & e.charCodeAt(++o)) << 24, ++o, n = Te(n = Math.imul(n, Fe), 15), r = Te(r ^= n = Math.imul(n, Ye), 13), r = Math.imul(r, 5) + jr;
+  switch (n = 0, a) {
+    case 3:
+      n ^= (255 & e.charCodeAt(o + 2)) << 16;
+    case 2:
+      n ^= (255 & e.charCodeAt(o + 1)) << 8;
+    case 1:
+      n ^= 255 & e.charCodeAt(o), n = Te(n = Math.imul(n, Fe), 15), r ^= n = Math.imul(n, Ye);
+  }
+  return ((r = function(s) {
+    return s ^= s >>> 16, s = Math.imul(s, Br), s ^= s >>> 13, s = Math.imul(s, Fr), s ^ s >>> 16;
+  }(r ^= e.length)) >>> 0).toString(36);
+}
+function Yr(e, t) {
+  return new Promise(function(r) {
+    setTimeout(function() {
+      return r(t);
+    }, e);
+  });
+}
+function Jr(e, t, r) {
+  return Promise.all(e.map(function(n) {
+    return Promise.race([n, Yr(t, r)]);
+  }));
+}
+function qr() {
+  return k(this, void 0, void 0, function() {
+    var e, t, r, n, a;
+    return O(this, function(i) {
+      switch (i.label) {
+        case 0:
+          return i.trys.push([0, 2, , 3]), e = Vr(), t = Object.keys(e), [4, Jr(Object.values(e), (N == null ? void 0 : N.timeout) || 1e3, Gr)];
+        case 1:
+          return r = i.sent(), n = r.filter(function(o) {
+            return o !== void 0;
+          }), a = {}, n.forEach(function(o, s) {
+            a[t[s]] = o;
+          }), [2, gt(a, N.exclude || [])];
+        case 2:
+          throw i.sent();
+        case 3:
+          return [2];
+      }
+    });
+  });
+}
+function gt(e, t) {
+  var r = {}, n = function(i) {
+    if (e.hasOwnProperty(i)) {
+      var o = e[i];
+      if (typeof o != "object" || Array.isArray(o)) t.includes(i) || (r[i] = o);
+      else {
+        var s = gt(o, t.map(function(u) {
+          return u.startsWith(i + ".") ? u.slice(i.length + 1) : u;
+        }));
+        Object.keys(s).length > 0 && (r[i] = s);
+      }
+    }
+  };
+  for (var a in e) n(a);
+  return r;
+}
+function zr(e) {
+  return k(this, void 0, void 0, function() {
+    var t, r;
+    return O(this, function(n) {
+      switch (n.label) {
+        case 0:
+          return n.trys.push([0, 2, , 3]), [4, qr()];
+        case 1:
+          return t = n.sent(), r = ke(JSON.stringify(t)), [2, r.toString()];
+        case 2:
+          throw n.sent();
+        case 3:
+          return [2];
+      }
+    });
+  });
+}
+function Qr(e) {
+  for (var t = 0, r = 0; r < e.length; ++r) t += Math.abs(e[r]);
+  return t;
+}
+function yt(e, t, r) {
+  for (var n = [], a = 0; a < e[0].data.length; a++) {
+    for (var i = [], o = 0; o < e.length; o++) i.push(e[o].data[a]);
+    n.push(Xr(i));
+  }
+  var s = new Uint8ClampedArray(n);
+  return new ImageData(s, t, r);
 }
-const q = "Oops! It looks like your session has expired. For your security, please log in again to continue.", Tr = "Your session has been successfully terminated.", z = "Login failed. Please try again.", ye = "Error getting access token, please re-authenticate.", Rr = "You forgot to wrap your component in <AuthProvider>.", ne = {
+function Xr(e) {
+  if (e.length === 0) return 0;
+  for (var t = {}, r = 0, n = e; r < n.length; r++)
+    t[i = n[r]] = (t[i] || 0) + 1;
+  var a = e[0];
+  for (var i in t) t[i] > t[a] && (a = parseInt(i, 10));
+  return a;
+}
+function z() {
+  if (typeof navigator > "u") return { name: "unknown", version: "unknown" };
+  for (var e = navigator.userAgent, t = { Edg: "Edge", OPR: "Opera" }, r = 0, n = [/(?<name>Edge|Edg)\/(?<version>\d+(?:\.\d+)?)/, /(?<name>(?:Chrome|Chromium|OPR|Opera|Vivaldi|Brave))\/(?<version>\d+(?:\.\d+)?)/, /(?<name>(?:Firefox|Waterfox|Iceweasel|IceCat))\/(?<version>\d+(?:\.\d+)?)/, /(?<name>Safari)\/(?<version>\d+(?:\.\d+)?)/, /(?<name>MSIE|Trident|IEMobile).+?(?<version>\d+(?:\.\d+)?)/, /(?<name>[A-Za-z]+)\/(?<version>\d+(?:\.\d+)?)/, /(?<name>SamsungBrowser)\/(?<version>\d+(?:\.\d+)?)/]; r < n.length; r++) {
+    var a = n[r], i = e.match(a);
+    if (i && i.groups) return { name: t[i.groups.name] || i.groups.name, version: i.groups.version };
+  }
+  return { name: "unknown", version: "unknown" };
+}
+R("audio", function() {
+  return k(this, void 0, void 0, function() {
+    return O(this, function(e) {
+      return [2, new Promise(function(t, r) {
+        try {
+          var n = new (window.OfflineAudioContext || window.webkitOfflineAudioContext)(1, 5e3, 44100), a = n.createBufferSource(), i = n.createOscillator();
+          i.frequency.value = 1e3;
+          var o, s = n.createDynamicsCompressor();
+          s.threshold.value = -50, s.knee.value = 40, s.ratio.value = 12, s.attack.value = 0, s.release.value = 0.2, i.connect(s), s.connect(n.destination), i.start(), n.oncomplete = function(u) {
+            o = u.renderedBuffer.getChannelData(0), t({ sampleHash: Qr(o), oscillator: i.type, maxChannels: n.destination.maxChannelCount, channelCountMode: a.channelCountMode });
+          }, n.startRendering();
+        } catch (u) {
+          console.error("Error creating audio fingerprint:", u), r(u);
+        }
+      })];
+    });
+  });
+});
+var Zr = z().name !== "SamsungBrowser" ? 1 : 3, Je = 280, qe = 20;
+z().name != "Firefox" && R("canvas", function() {
+  return document.createElement("canvas").getContext("2d"), new Promise(function(e) {
+    var t = Array.from({ length: Zr }, function() {
+      return function() {
+        var r = document.createElement("canvas"), n = r.getContext("2d");
+        if (!n) return new ImageData(1, 1);
+        r.width = Je, r.height = qe;
+        var a = n.createLinearGradient(0, 0, r.width, r.height);
+        a.addColorStop(0, "red"), a.addColorStop(0.16666666666666666, "orange"), a.addColorStop(0.3333333333333333, "yellow"), a.addColorStop(0.5, "green"), a.addColorStop(0.6666666666666666, "blue"), a.addColorStop(0.8333333333333334, "indigo"), a.addColorStop(1, "violet"), n.fillStyle = a, n.fillRect(0, 0, r.width, r.height);
+        var i = "Random Text WMwmil10Oo";
+        n.font = "23.123px Arial", n.fillStyle = "black", n.fillText(i, -5, 15), n.fillStyle = "rgba(0, 0, 255, 0.5)", n.fillText(i, -3.3, 17.7), n.beginPath(), n.moveTo(0, 0), n.lineTo(2 * r.width / 7, r.height), n.strokeStyle = "white", n.lineWidth = 2, n.stroke();
+        var o = n.getImageData(0, 0, r.width, r.height);
+        return o;
+      }();
+    });
+    e({ commonImageDataHash: ke(yt(t, Je, qe).data.toString()).toString() });
+  });
+});
+var be, en = ["Arial", "Arial Black", "Arial Narrow", "Arial Rounded MT", "Arimo", "Archivo", "Barlow", "Bebas Neue", "Bitter", "Bookman", "Calibri", "Cabin", "Candara", "Century", "Century Gothic", "Comic Sans MS", "Constantia", "Courier", "Courier New", "Crimson Text", "DM Mono", "DM Sans", "DM Serif Display", "DM Serif Text", "Dosis", "Droid Sans", "Exo", "Fira Code", "Fira Sans", "Franklin Gothic Medium", "Garamond", "Geneva", "Georgia", "Gill Sans", "Helvetica", "Impact", "Inconsolata", "Indie Flower", "Inter", "Josefin Sans", "Karla", "Lato", "Lexend", "Lucida Bright", "Lucida Console", "Lucida Sans Unicode", "Manrope", "Merriweather", "Merriweather Sans", "Montserrat", "Myriad", "Noto Sans", "Nunito", "Nunito Sans", "Open Sans", "Optima", "Orbitron", "Oswald", "Pacifico", "Palatino", "Perpetua", "PT Sans", "PT Serif", "Poppins", "Prompt", "Public Sans", "Quicksand", "Rajdhani", "Recursive", "Roboto", "Roboto Condensed", "Rockwell", "Rubik", "Segoe Print", "Segoe Script", "Segoe UI", "Sora", "Source Sans Pro", "Space Mono", "Tahoma", "Taviraj", "Times", "Times New Roman", "Titillium Web", "Trebuchet MS", "Ubuntu", "Varela Round", "Verdana", "Work Sans"], tn = ["monospace", "sans-serif", "serif"];
+function ze(e, t) {
+  if (!e) throw new Error("Canvas context not supported");
+  return e.font = "72px ".concat(t), e.measureText("WwMmLli0Oo").width;
+}
+function rn() {
+  var e, t = document.createElement("canvas"), r = (e = t.getContext("webgl")) !== null && e !== void 0 ? e : t.getContext("experimental-webgl");
+  if (r && "getParameter" in r) {
+    var n = r.getExtension("WEBGL_debug_renderer_info");
+    return { vendor: (r.getParameter(r.VENDOR) || "").toString(), vendorUnmasked: n ? (r.getParameter(n.UNMASKED_VENDOR_WEBGL) || "").toString() : "", renderer: (r.getParameter(r.RENDERER) || "").toString(), rendererUnmasked: n ? (r.getParameter(n.UNMASKED_RENDERER_WEBGL) || "").toString() : "", version: (r.getParameter(r.VERSION) || "").toString(), shadingLanguageVersion: (r.getParameter(r.SHADING_LANGUAGE_VERSION) || "").toString() };
+  }
+  return "undefined";
+}
+function nn() {
+  var e = new Float32Array(1), t = new Uint8Array(e.buffer);
+  return e[0] = 1 / 0, e[0] = e[0] - e[0], t[3];
+}
+function an(e, t) {
+  var r = {};
+  return t.forEach(function(n) {
+    var a = function(i) {
+      if (i.length === 0) return null;
+      var o = {};
+      i.forEach(function(h) {
+        var c = String(h);
+        o[c] = (o[c] || 0) + 1;
+      });
+      var s = i[0], u = 1;
+      return Object.keys(o).forEach(function(h) {
+        o[h] > u && (s = h, u = o[h]);
+      }), s;
+    }(e.map(function(i) {
+      return n in i ? i[n] : void 0;
+    }).filter(function(i) {
+      return i !== void 0;
+    }));
+    a && (r[n] = a);
+  }), r;
+}
+function on() {
+  var e = [], t = { "prefers-contrast": ["high", "more", "low", "less", "forced", "no-preference"], "any-hover": ["hover", "none"], "any-pointer": ["none", "coarse", "fine"], pointer: ["none", "coarse", "fine"], hover: ["hover", "none"], update: ["fast", "slow"], "inverted-colors": ["inverted", "none"], "prefers-reduced-motion": ["reduce", "no-preference"], "prefers-reduced-transparency": ["reduce", "no-preference"], scripting: ["none", "initial-only", "enabled"], "forced-colors": ["active", "none"] };
+  return Object.keys(t).forEach(function(r) {
+    t[r].forEach(function(n) {
+      matchMedia("(".concat(r, ": ").concat(n, ")")).matches && e.push("".concat(r, ": ").concat(n));
+    });
+  }), e;
+}
+function sn() {
+  if (window.location.protocol === "https:" && typeof window.ApplePaySession == "function") try {
+    for (var e = window.ApplePaySession.supportsVersion, t = 15; t > 0; t--) if (e(t)) return t;
+  } catch {
+    return 0;
+  }
+  return 0;
+}
+z().name != "Firefox" && R("fonts", function() {
+  var e = this;
+  return new Promise(function(t, r) {
+    try {
+      (function(n) {
+        var a;
+        k(this, void 0, void 0, function() {
+          var i, o, s;
+          return O(this, function(u) {
+            switch (u.label) {
+              case 0:
+                return document.body ? [3, 2] : [4, (h = 50, new Promise(function(f) {
+                  return setTimeout(f, h, c);
+                }))];
+              case 1:
+                return u.sent(), [3, 0];
+              case 2:
+                if ((i = document.createElement("iframe")).setAttribute("frameBorder", "0"), (o = i.style).setProperty("position", "fixed"), o.setProperty("display", "block", "important"), o.setProperty("visibility", "visible"), o.setProperty("border", "0"), o.setProperty("opacity", "0"), i.src = "about:blank", document.body.appendChild(i), !(s = i.contentDocument || ((a = i.contentWindow) === null || a === void 0 ? void 0 : a.document))) throw new Error("Iframe document is not accessible");
+                return n({ iframe: s }), setTimeout(function() {
+                  document.body.removeChild(i);
+                }, 0), [2];
+            }
+            var h, c;
+          });
+        });
+      })(function(n) {
+        var a = n.iframe;
+        return k(e, void 0, void 0, function() {
+          var i, o, s, u;
+          return O(this, function(h) {
+            return i = a.createElement("canvas"), o = i.getContext("2d"), s = tn.map(function(c) {
+              return ze(o, c);
+            }), u = {}, en.forEach(function(c) {
+              var f = ze(o, c);
+              s.includes(f) || (u[c] = f);
+            }), t(u), [2];
+          });
+        });
+      });
+    } catch {
+      r({ error: "unsupported" });
+    }
+  });
+}), R("hardware", function() {
+  return new Promise(function(e, t) {
+    var r = navigator.deviceMemory !== void 0 ? navigator.deviceMemory : 0, n = window.performance && window.performance.memory ? window.performance.memory : 0;
+    e({ videocard: rn(), architecture: nn(), deviceMemory: r.toString() || "undefined", jsHeapSizeLimit: n.jsHeapSizeLimit || 0 });
+  });
+}), R("locales", function() {
+  return new Promise(function(e) {
+    e({ languages: navigator.language, timezone: Intl.DateTimeFormat().resolvedOptions().timeZone });
+  });
+}), R("permissions", function() {
+  return k(this, void 0, void 0, function() {
+    var e;
+    return O(this, function(t) {
+      return be = (N == null ? void 0 : N.permissions_to_check) || ["accelerometer", "accessibility", "accessibility-events", "ambient-light-sensor", "background-fetch", "background-sync", "bluetooth", "camera", "clipboard-read", "clipboard-write", "device-info", "display-capture", "gyroscope", "geolocation", "local-fonts", "magnetometer", "microphone", "midi", "nfc", "notifications", "payment-handler", "persistent-storage", "push", "speaker", "storage-access", "top-level-storage-access", "window-management", "query"], e = Array.from({ length: (N == null ? void 0 : N.retries) || 3 }, function() {
+        return function() {
+          return k(this, void 0, void 0, function() {
+            var r, n, a, i, o;
+            return O(this, function(s) {
+              switch (s.label) {
+                case 0:
+                  r = {}, n = 0, a = be, s.label = 1;
+                case 1:
+                  if (!(n < a.length)) return [3, 6];
+                  i = a[n], s.label = 2;
+                case 2:
+                  return s.trys.push([2, 4, , 5]), [4, navigator.permissions.query({ name: i })];
+                case 3:
+                  return o = s.sent(), r[i] = o.state.toString(), [3, 5];
+                case 4:
+                  return s.sent(), [3, 5];
+                case 5:
+                  return n++, [3, 1];
+                case 6:
+                  return [2, r];
+              }
+            });
+          });
+        }();
+      }), [2, Promise.all(e).then(function(r) {
+        return an(r, be);
+      })];
+    });
+  });
+}), R("plugins", function() {
+  var e = [];
+  if (navigator.plugins) for (var t = 0; t < navigator.plugins.length; t++) {
+    var r = navigator.plugins[t];
+    e.push([r.name, r.filename, r.description].join("|"));
+  }
+  return new Promise(function(n) {
+    n({ plugins: e });
+  });
+}), R("screen", function() {
+  return new Promise(function(e) {
+    e({ is_touchscreen: navigator.maxTouchPoints > 0, maxTouchPoints: navigator.maxTouchPoints, colorDepth: screen.colorDepth, mediaMatches: on() });
+  });
+}), R("system", function() {
+  return new Promise(function(e) {
+    var t = z();
+    e({ platform: window.navigator.platform, cookieEnabled: window.navigator.cookieEnabled, productSub: navigator.productSub, product: navigator.product, useragent: navigator.userAgent, browser: { name: t.name, version: t.version }, applePayVersion: sn() });
+  });
+});
+var T, cn = z().name !== "SamsungBrowser" ? 1 : 3, l = null;
+typeof document < "u" && ((T = document.createElement("canvas")).width = 200, T.height = 100, l = T.getContext("webgl")), R("webgl", function() {
+  return k(this, void 0, void 0, function() {
+    var e;
+    return O(this, function(t) {
+      try {
+        if (!l) throw new Error("WebGL not supported");
+        return e = Array.from({ length: cn }, function() {
+          return function() {
+            try {
+              if (!l) throw new Error("WebGL not supported");
+              var r = `
+          attribute vec2 position;
+          void main() {
+              gl_Position = vec4(position, 0.0, 1.0);
+          }
+      `, n = `
+          precision mediump float;
+          void main() {
+              gl_FragColor = vec4(0.812, 0.195, 0.553, 0.921); // Set line color
+          }
+      `, a = l.createShader(l.VERTEX_SHADER), i = l.createShader(l.FRAGMENT_SHADER);
+              if (!a || !i) throw new Error("Failed to create shaders");
+              if (l.shaderSource(a, r), l.shaderSource(i, n), l.compileShader(a), !l.getShaderParameter(a, l.COMPILE_STATUS)) throw new Error("Vertex shader compilation failed: " + l.getShaderInfoLog(a));
+              if (l.compileShader(i), !l.getShaderParameter(i, l.COMPILE_STATUS)) throw new Error("Fragment shader compilation failed: " + l.getShaderInfoLog(i));
+              var o = l.createProgram();
+              if (!o) throw new Error("Failed to create shader program");
+              if (l.attachShader(o, a), l.attachShader(o, i), l.linkProgram(o), !l.getProgramParameter(o, l.LINK_STATUS)) throw new Error("Shader program linking failed: " + l.getProgramInfoLog(o));
+              l.useProgram(o);
+              for (var s = 137, u = new Float32Array(4 * s), h = 2 * Math.PI / s, c = 0; c < s; c++) {
+                var f = c * h;
+                u[4 * c] = 0, u[4 * c + 1] = 0, u[4 * c + 2] = Math.cos(f) * (T.width / 2), u[4 * c + 3] = Math.sin(f) * (T.height / 2);
+              }
+              var g = l.createBuffer();
+              l.bindBuffer(l.ARRAY_BUFFER, g), l.bufferData(l.ARRAY_BUFFER, u, l.STATIC_DRAW);
+              var p = l.getAttribLocation(o, "position");
+              l.enableVertexAttribArray(p), l.vertexAttribPointer(p, 2, l.FLOAT, !1, 0, 0), l.viewport(0, 0, T.width, T.height), l.clearColor(0, 0, 0, 1), l.clear(l.COLOR_BUFFER_BIT), l.drawArrays(l.LINES, 0, 2 * s);
+              var A = new Uint8ClampedArray(T.width * T.height * 4);
+              return l.readPixels(0, 0, T.width, T.height, l.RGBA, l.UNSIGNED_BYTE, A), new ImageData(A, T.width, T.height);
+            } catch {
+              return new ImageData(1, 1);
+            } finally {
+              l && (l.bindBuffer(l.ARRAY_BUFFER, null), l.useProgram(null), l.viewport(0, 0, l.drawingBufferWidth, l.drawingBufferHeight), l.clearColor(0, 0, 0, 0));
+            }
+          }();
+        }), [2, { commonImageHash: ke(yt(e, T.width, T.height).data.toString()).toString() }];
+      } catch {
+        return [2, { webgl: "unsupported" }];
+      }
+      return [2];
+    });
+  });
+});
+var L = function(e, t, r, n) {
+  for (var a = (r - t) / n, i = 0, o = 0; o < n; o++)
+    i += e(t + (o + 0.5) * a);
+  return i * a;
+};
+R("math", function() {
+  return k(void 0, void 0, void 0, function() {
+    return O(this, function(e) {
+      return [2, { acos: Math.acos(0.5), asin: L(Math.asin, -1, 1, 97), atan: L(Math.atan, -1, 1, 97), cos: L(Math.cos, 0, Math.PI, 97), cosh: Math.cosh(9 / 7), e: Math.E, largeCos: Math.cos(1e20), largeSin: Math.sin(1e20), largeTan: Math.tan(1e20), log: Math.log(1e3), pi: Math.PI, sin: L(Math.sin, -Math.PI, Math.PI, 97), sinh: L(Math.sinh, -9 / 7, 7 / 9, 97), sqrt: Math.sqrt(2), tan: L(Math.tan, 0, 2 * Math.PI, 97), tanh: L(Math.tanh, -9 / 7, 7 / 9, 97) }];
+    });
+  });
+});
+const ne = "Oops! It looks like your session has expired. For your security, please log in again to continue.", un = "Your session has been successfully terminated.", ae = "Login failed. Please try again.", Re = "Error getting access token, please re-authenticate.", ln = "You forgot to wrap your component in <AuthProvider>.", de = {
   dev: "https://auth.gizmette.local.com:3003",
-  prod: "https://mylogin.gizmette.com"
-}, Q = "@@auth@@", L = "LOADING", W = "LOGIN", Xe = "LOGOUT", Ir = process.env.NODE_ENV === "production", Ze = !Ir, ie = async ({
+  prod: "https://mylogin.gizmette.com/auth"
+}, oe = "@@auth@@", B = "LOADING", F = "LOGIN", wt = "LOGOUT", dn = process.env.NODE_ENV === "production", Et = !dn, me = async ({
   type: e,
   clientId: t,
   params: r = {}
 }) => {
   try {
     const n = await fetch(
-      Ze ? `${ne.dev}/${e}` : `${ne.prod}/${e}`,
+      Et ? `${de.dev}/${e}` : `${de.prod}/${e}`,
       {
         credentials: "include",
         method: "POST",
         headers: {
           "Content-Type": "application/json",
-          [xe.CLIENT_ID]: `${t}`
+          [nt.CLIENT_ID]: `${t}`
         },
         body: JSON.stringify(r)
       }
     );
     if (n.status !== 200)
       return { status: n.status, data: [] };
-    const { data: a, errors: o } = await n.json();
+    const { data: a, errors: i } = await n.json();
     return {
       status: n.status,
       data: a,
-      errors: o
+      errors: i
     };
   } catch (n) {
     return console.error(n), { status: 500, data: [] };
   }
-}, _r = async ({
+}, hn = async ({
   userId: e,
   idToken: t,
   accessToken: r,
   refreshToken: n,
   clientId: a,
-  domain: o
+  domain: i
 }) => {
   try {
     return {
-      status: (await ie({
-        type: ae.LOGOUT,
+      status: (await me({
+        type: he.LOGOUT,
         clientId: a,
         params: {
           userId: e,
           idToken: t,
           accessToken: r,
           refreshToken: n,
-          domain: o
+          domain: i
         }
       })).status === 200
     };
@@ -1190,37 +1655,39 @@ const q = "Oops! It looks like your session has expired. For your security, plea
       status: !1
     };
   }
-}, Ue = async ({
+}, Qe = async ({
   username: e,
   password: t,
   clientId: r,
   nonce: n,
   type: a,
-  sessionExpiration: o,
-  code: s,
-  code_verifier: i,
-  domain: u
+  sessionExpiration: i,
+  code: o,
+  code_verifier: s,
+  domain: u,
+  fingerprint: h
 }) => {
   try {
-    const h = await ie({
-      type: ae.AUTHENTICATE,
+    const c = await me({
+      type: he.AUTHENTICATE,
       clientId: r,
       params: {
-        type: a || Y.ID_AND_ACCESS_TOKEN,
+        type: a || J.ID_AND_ACCESS_TOKEN,
         username: e,
         password: t,
-        sessionExpiration: o,
+        sessionExpiration: i,
         nonce: n,
-        code: s,
-        code_verifier: i,
-        domain: u
+        code: o,
+        code_verifier: s,
+        domain: u,
+        fingerprint: h
       }
-    }), l = await G(h.data.idToken);
-    return l && l.payload[S.USER_ID_KEY] !== "" && l.payload[S.NONCE_KEY] === n ? {
-      idToken: h.data.idToken,
-      accessToken: h.data.accessToken,
-      refreshToken: h.data.refreshToken,
-      userId: l.payload[S.USER_ID_KEY],
+    }), f = await q(c.data.idToken);
+    return f && f.payload[b.USER_ID_KEY] !== "" && f.payload[b.NONCE_KEY] === n ? {
+      idToken: c.data.idToken,
+      accessToken: c.data.accessToken,
+      refreshToken: c.data.refreshToken,
+      userId: f.payload[b.USER_ID_KEY],
       status: !0
     } : {
       status: !1
@@ -1230,17 +1697,17 @@ const q = "Oops! It looks like your session has expired. For your security, plea
       status: !1
     };
   }
-}, br = async ({
+}, fn = async ({
   nonce: e,
   clientId: t,
   code_challenge: r
 }) => {
   try {
-    const n = await ie({
-      type: ae.CODE,
+    const n = await me({
+      type: he.CODE,
       clientId: t,
       params: {
-        type: Y.CODE,
+        type: J.CODE,
         nonce: e,
         code_challenge: r
       }
@@ -1256,31 +1723,31 @@ const q = "Oops! It looks like your session has expired. For your security, plea
       status: !1
     };
   }
-}, kr = async ({
+}, pn = async ({
   clientId: e,
   userId: t,
   nonce: r,
   refreshToken: n,
   accessToken: a,
-  domain: o
+  domain: i
 }) => {
   try {
-    const s = await ie({
-      type: ae.AUTHENTICATE,
+    const o = await me({
+      type: he.AUTHENTICATE,
       clientId: e,
       params: {
-        type: Y.REFRESH_TOKEN,
+        type: J.REFRESH_TOKEN,
         userId: t,
         nonce: r,
         refreshToken: n,
         accessToken: a,
-        domain: o
+        domain: i
       }
-    }), i = await G(s.data.accessToken);
-    return i && i.payload[S.USER_ID_KEY] !== "" && i.payload[S.NONCE_KEY] === r ? {
-      accessToken: s.data.accessToken,
-      refreshToken: s.data.refreshToken,
-      userId: i.payload[S.USER_ID_KEY],
+    }), s = await q(o.data.accessToken);
+    return s && s.payload[b.USER_ID_KEY] !== "" && s.payload[b.NONCE_KEY] === r ? {
+      accessToken: o.data.accessToken,
+      refreshToken: o.data.refreshToken,
+      userId: s.payload[b.USER_ID_KEY],
       status: !0
     } : {
       status: !1
@@ -1290,7 +1757,7 @@ const q = "Oops! It looks like your session has expired. For your security, plea
       status: !1
     };
   }
-}, X = {
+}, ie = {
   GET_REGISTRATION_OPTIONS: `mutation GetPasskeyRegistrationOptions(
 	$clientId: String!,
 	$username: String!,
@@ -1348,13 +1815,15 @@ const q = "Oops! It looks like your session has expired. For your security, plea
 		$id: String!,
 		$authentication: AuthenticationOptionsInput!,
 		$nonce: String!,
-		$domain: String) {
+		$domain: String,
+		$fingerprint: String) {
 		verifyPasskeyAuthentication(
 			clientId: $clientId,
 			id: $id,
 			authentication: $authentication,
 			nonce: $nonce,
-			domain: $domain) {
+			domain: $domain,
+			fingerprint: $fingerprint) {
 				status,
 				idToken,
 				accessToken,
@@ -1363,40 +1832,40 @@ const q = "Oops! It looks like your session has expired. For your security, plea
 				username,
 		}
 	}`
-}, D = {
+}, x = {
   GET_REGISTRATION_OPTIONS: {
-    schema: X.GET_REGISTRATION_OPTIONS,
+    schema: ie.GET_REGISTRATION_OPTIONS,
     method: "getPasskeyRegistrationOptions"
   },
   VERIFY_REGISTRATION: {
-    schema: X.VERIFY_REGISTRATION,
+    schema: ie.VERIFY_REGISTRATION,
     method: "verifyPasskeyRegistration"
   },
   GET_AUTHENTICATION_OPTIONS: {
-    schema: X.GET_AUTHENTICATION_OPTIONS,
+    schema: ie.GET_AUTHENTICATION_OPTIONS,
     method: "getPasskeyAuthenticationOptions"
   },
   VERIFY_AUTHENTICATION: {
-    schema: X.VERIFY_AUTHENTICATION,
+    schema: ie.VERIFY_AUTHENTICATION,
     method: "verifyPasskeyAuthentication"
   }
-}, U = async ({
+}, W = async ({
   accessToken: e,
   type: t,
   clientId: r,
   params: n = {}
 }) => {
   try {
-    const a = t != null && t.data ? t.data(n) : n, o = `Bearer ${e}`, s = await fetch(
-      Ze ? `${ne.dev}/graphql` : `${ne.prod}/graphql`,
+    const a = t != null && t.data ? t.data(n) : n, i = `Bearer ${e}`, o = await fetch(
+      Et ? `${de.dev}/graphql` : `${de.prod}/graphql`,
       {
         method: "POST",
         credentials: "include",
         headers: {
-          authorization: o,
+          authorization: i,
           "Content-Type": "application/json",
           Accept: "application/json",
-          [xe.CLIENT_ID]: `${r}`
+          [nt.CLIENT_ID]: `${r}`
         },
         body: JSON.stringify({
           query: t.schema,
@@ -1404,23 +1873,30 @@ const q = "Oops! It looks like your session has expired. For your security, plea
         })
       }
     );
-    if (s.status !== 200)
-      return { status: s.status, data: [] };
-    const { data: i, errors: u } = await s.json();
+    if (o.status !== 200)
+      return { status: o.status, data: [] };
+    const { data: s, errors: u } = await o.json();
     return {
-      status: s.status,
-      data: i[t.method],
+      status: o.status,
+      data: s[t.method],
       errors: u
     };
   } catch (a) {
     return console.error(a), { status: 500, data: [] };
   }
+}, Ie = async () => {
+  try {
+    const e = await zr();
+    return typeof e == "string" ? e : e.hash && typeof e.hash == "string" ? e.hash : "";
+  } catch {
+    return "";
+  }
 };
-class Or {
+class mn {
   constructor(t = null, r = null) {
-    M(this, "refreshTokenPromise", null);
-    M(this, "accessToken");
-    M(this, "refreshToken");
+    Q(this, "refreshTokenPromise", null);
+    Q(this, "accessToken");
+    Q(this, "refreshToken");
     this.accessToken = t || "", this.refreshToken = r || "";
   }
   async refreshtoken({
@@ -1447,9 +1923,9 @@ class Or {
     nonce: n,
     domain: a
   }) {
-    const o = await G(this.refreshToken);
-    if (o && o.payload[S.USER_ID_KEY] !== "") {
-      const s = await kr({
+    const i = await q(this.refreshToken);
+    if (i && i.payload[b.USER_ID_KEY] !== "") {
+      const o = await pn({
         clientId: t,
         userId: r,
         nonce: n,
@@ -1457,10 +1933,10 @@ class Or {
         accessToken: this.accessToken,
         domain: a
       });
-      return s.status ? (this.accessToken = s.accessToken, this.refreshToken = s.refreshToken, {
+      return o.status ? (this.accessToken = o.accessToken, this.refreshToken = o.refreshToken, {
         status: "success",
-        newAccessToken: s.accessToken,
-        newRefreshToken: s.refreshToken
+        newAccessToken: o.accessToken,
+        newRefreshToken: o.refreshToken
       }) : {
         status: "failure"
       };
@@ -1470,20 +1946,20 @@ class Or {
       };
   }
 }
-const K = () => {
-  throw new Error(Rr);
-}, et = yt({
+const G = () => {
+  throw new Error(ln);
+}, St = $t({
   isAuthenticated: !1,
   isLoading: !1,
   authenticationType: null,
-  login: K,
-  logout: K,
-  getAccessToken: K,
-  getIdToken: K,
-  registeringForPasskey: K,
-  loginWithPasskey: K,
+  login: G,
+  logout: G,
+  getAccessToken: G,
+  getIdToken: G,
+  registeringForPasskey: G,
+  loginWithPasskey: G,
   logoutReason: ""
-}), Pr = pt.createContext({
+}), gn = Dt.createContext({
   state: {
     isLoading: !0,
     isAuthenticated: !1,
@@ -1493,286 +1969,289 @@ const K = () => {
   },
   dispatch: () => {
   }
-}), vr = (e, t) => (t == null ? void 0 : t.type) === L ? {
+}), yn = (e, t) => (t == null ? void 0 : t.type) === B ? {
   ...e,
   isLoading: t.payload.isLoading
-} : (t == null ? void 0 : t.type) === W ? {
+} : (t == null ? void 0 : t.type) === F ? {
   ...e,
   isLoading: !1,
   isAuthenticated: !0,
   user: t.payload.user,
   authenticationType: t.payload.authenticationType,
   logoutReason: ""
-} : (t == null ? void 0 : t.type) === Xe ? {
+} : (t == null ? void 0 : t.type) === wt ? {
   ...e,
   isLoading: !1,
   isAuthenticated: !1,
   user: void 0,
   authenticationType: null,
   logoutReason: t.payload.logoutReason
-} : e, Kr = ({
+} : e, In = ({
   children: e,
   sessionExpiration: t,
   clientId: r,
   domain: n = ""
 }) => {
-  const [a, o] = mt(vr, {
+  const [a, i] = Kt(yn, {
     isLoading: !0,
     isAuthenticated: !1,
     authenticationType: null,
     user: void 0,
     logoutReason: ""
-  }), s = Et(!1), [i, u, , h] = F({
-    key: `${Q}::${r}::@@user@@`
-  }), [l, f, , m] = F({
-    key: `${Q}::${r}::@@access@@`
-  }), [d, T, , C] = F(
+  }), o = Lt(!1), [s, u, , h] = te({
+    key: `${oe}::${r}::@@user@@`
+  }), [c, f, , g] = te({
+    key: `${oe}::${r}::@@access@@`
+  }), [p, A, , $] = te(
     {
-      key: `${Q}::${r}::@@refresh@@`
+      key: `${oe}::${r}::@@refresh@@`
     }
-  ), [tt, ge, , Ae] = F({
-    key: `${Q}::${r}::@@nonce@@`
-  }), rt = new Or(l, d), N = x(
-    (c) => {
-      console.warn(c), o({
-        type: Xe,
+  ), [At, Oe, , Ne] = te({
+    key: `${oe}::${r}::@@nonce@@`
+  }), vt = new mn(c, p), H = Y(
+    (d) => {
+      console.warn(d), i({
+        type: wt,
         payload: {
-          logoutReason: c || q
+          logoutReason: d || ne
         }
-      }), h(), m(), C(), Ae(), o({ type: L, payload: { isLoading: !1 } });
+      }), h(), g(), $(), Ne(), i({ type: B, payload: { isLoading: !1 } });
     },
-    [m, h, Ae, C]
-  ), P = x(
-    async (c) => {
+    [g, h, Ne, $]
+  ), K = Y(
+    async (d) => {
       const { user: y } = a;
-      await _r({
+      await hn({
         userId: (y == null ? void 0 : y.userId) || "",
-        idToken: i,
-        accessToken: l,
-        refreshToken: d,
+        idToken: s,
+        accessToken: c,
+        refreshToken: p,
         clientId: r,
         domain: n
-      }), N(c || q);
+      }), H(d || ne);
     },
     [
-      l,
+      c,
       a,
       r,
       n,
-      i,
-      d,
-      N
+      s,
+      p,
+      H
     ]
   );
-  Ke(() => {
-    if (!s.current)
-      return a.isLoading && i !== null ? (async () => {
+  Xe(() => {
+    if (!o.current)
+      return a.isLoading && s !== null ? (async () => {
         try {
-          const c = await G(i);
-          c && c.payload[S.USER_ID_KEY] !== "" ? o({
-            type: W,
+          const d = await q(s);
+          d && d.payload[b.USER_ID_KEY] !== "" ? i({
+            type: F,
             payload: {
-              authenticationType: c.payload[S.AUTH_TYPE_KEY],
+              authenticationType: d.payload[b.AUTH_TYPE_KEY],
               user: {
-                userId: c.payload[S.USER_ID_KEY],
-                username: c.payload[S.USERNAME_KEY]
+                userId: d.payload[b.USER_ID_KEY],
+                username: d.payload[b.USERNAME_KEY]
               }
             }
-          }) : await P(q);
+          }) : await K(ne);
         } catch {
-          await P(q);
+          await K(ne);
         }
-      })() : o({ type: L, payload: { isLoading: !1 } }), () => {
-        s.current = !0;
+      })() : i({ type: B, payload: { isLoading: !1 } }), () => {
+        o.current = !0;
       };
-  }, [a.isLoading, i, P]);
-  const nt = async (c, y, p) => {
-    const R = fe();
-    if (ge(R), o({ type: L, payload: { isLoading: !0 } }), h(), m(), C(), p === Y.CODE) {
-      const { code_verifier: ut, code_challenge: lt } = await yr(), Se = await br({
-        nonce: R,
+  }, [a.isLoading, s, K]);
+  const Tt = async (d, y, m) => {
+    const I = ve();
+    if (Oe(I), i({ type: B, payload: { isLoading: !0 } }), h(), g(), $(), m === J.CODE) {
+      const { code_verifier: Ct, code_challenge: kt } = await $r(), De = await fn({
+        nonce: I,
         clientId: r,
-        code_challenge: lt
+        code_challenge: kt
       });
-      if (Se.status) {
-        const $ = await Ue({
-          username: c,
+      if (De.status) {
+        const j = await Qe({
+          username: d,
           password: y,
           clientId: r,
           sessionExpiration: t,
-          nonce: R,
-          type: p,
-          code: Se.code,
-          code_verifier: ut,
-          domain: n
+          nonce: I,
+          type: m,
+          code: De.code,
+          code_verifier: Ct,
+          domain: n,
+          fingerprint: await Ie()
         });
-        return $.status ? (u($.idToken), f($.accessToken), T($.refreshToken), o({
-          type: W,
+        return j.status ? (u(j.idToken), f(j.accessToken), A(j.refreshToken), i({
+          type: F,
           payload: {
-            authenticationType: p,
+            authenticationType: m,
             user: {
-              userId: $.userId,
-              username: c
+              userId: j.userId,
+              username: d
             }
           }
-        }), !0) : (N(z), !1);
+        }), !0) : (H(ae), !1);
       }
       return !1;
     }
-    const H = await Ue({
-      username: c,
+    const V = await Qe({
+      username: d,
       password: y,
       clientId: r,
       sessionExpiration: t,
-      nonce: R,
-      type: p,
-      domain: n
+      nonce: I,
+      type: m,
+      domain: n,
+      fingerprint: await Ie()
     });
-    return H.status ? (u(H.idToken), f(H.accessToken), T(H.refreshToken), o({
-      type: W,
+    return V.status ? (u(V.idToken), f(V.accessToken), A(V.refreshToken), i({
+      type: F,
       payload: {
-        authenticationType: p,
+        authenticationType: m,
         user: {
-          userId: H.userId,
-          username: c
+          userId: V.userId,
+          username: d
         }
       }
-    }), !0) : (N(z), !1);
-  }, at = async (c) => {
-    c == null || c.preventDefault(), await P(Tr);
-  }, st = async () => {
-    const { isAuthenticated: c, user: y } = a;
+    }), !0) : (H(ae), !1);
+  }, bt = async (d) => {
+    d == null || d.preventDefault(), await K(un);
+  }, Rt = async () => {
+    const { isAuthenticated: d, user: y } = a;
     try {
-      if (c && y && y.userId) {
-        if (l) {
-          const R = await G(l);
-          if (R && R.payload[S.USER_ID_KEY] !== "")
-            return l;
+      if (d && y && y.userId) {
+        if (c) {
+          const I = await q(c);
+          if (I && I.payload[b.USER_ID_KEY] !== "")
+            return c;
         }
-        const p = await rt.refreshtoken({
+        const m = await vt.refreshtoken({
           clientId: r,
           userId: y.userId,
-          nonce: tt,
+          nonce: At,
           domain: n
         });
-        return p.status && p.status === "success" ? (f(p.newAccessToken), T(p.newRefreshToken), p.newAccessToken) : (await P(ye), "");
+        return m.status && m.status === "success" ? (f(m.newAccessToken), A(m.newRefreshToken), m.newAccessToken) : (await K(Re), "");
       }
-      return await P(ye), "";
+      return await K(Re), "";
     } catch {
-      return await P(ye), "";
+      return await K(Re), "";
     }
-  }, ot = () => {
-    if (a.isAuthenticated && i)
-      return i;
-  }, it = async () => {
-    const { user: c } = a;
-    let y = await U({
-      accessToken: l,
+  }, It = () => {
+    if (a.isAuthenticated && s)
+      return s;
+  }, _t = async () => {
+    const { user: d } = a;
+    let y = await W({
+      accessToken: c,
       clientId: r,
-      type: D.GET_REGISTRATION_OPTIONS,
+      type: x.GET_REGISTRATION_OPTIONS,
       params: {
         clientId: r,
-        id: c == null ? void 0 : c.userId,
-        username: c == null ? void 0 : c.username
+        id: d == null ? void 0 : d.userId,
+        username: d == null ? void 0 : d.username
       }
     });
     if (y.status)
       try {
-        const p = await Tt(y.data);
-        y = await U({
-          accessToken: l,
+        const m = await Gt(y.data);
+        y = await W({
+          accessToken: c,
           clientId: r,
-          type: D.VERIFY_REGISTRATION,
+          type: x.VERIFY_REGISTRATION,
           params: {
             clientId: r,
-            id: c == null ? void 0 : c.userId,
-            username: c == null ? void 0 : c.username,
-            registration: p
+            id: d == null ? void 0 : d.userId,
+            username: d == null ? void 0 : d.username,
+            registration: m
           }
         });
       } catch {
-        return await U({
-          accessToken: l,
+        return await W({
+          accessToken: c,
           clientId: r,
-          type: D.VERIFY_REGISTRATION,
+          type: x.VERIFY_REGISTRATION,
           params: {
             clientId: r,
-            id: c == null ? void 0 : c.userId,
-            username: c == null ? void 0 : c.username,
+            id: d == null ? void 0 : d.userId,
+            username: d == null ? void 0 : d.username,
             registration: {}
           }
         }), !1;
       }
-  }, ct = async () => {
-    const c = fe();
-    ge(c), o({ type: L, payload: { isLoading: !0 } }), h(), m(), C();
-    const y = fe();
-    let p = await U({
-      accessToken: l,
+  }, Pt = async () => {
+    const d = ve();
+    Oe(d), i({ type: B, payload: { isLoading: !0 } }), h(), g(), $();
+    const y = ve();
+    let m = await W({
+      accessToken: c,
       clientId: r,
-      type: D.GET_AUTHENTICATION_OPTIONS,
+      type: x.GET_AUTHENTICATION_OPTIONS,
       params: {
         id: y,
         clientId: r
       }
     });
-    if (p.status)
+    if (m.status)
       try {
-        const R = await _t(p.data);
-        return p = await U({
-          accessToken: l,
+        const I = await Bt(m.data);
+        return m = await W({
+          accessToken: c,
           clientId: r,
-          type: D.VERIFY_AUTHENTICATION,
+          type: x.VERIFY_AUTHENTICATION,
           params: {
             clientId: r,
             id: y,
-            authentication: R,
-            nonce: c,
-            domain: n
+            authentication: I,
+            nonce: d,
+            domain: n,
+            fingerprint: await Ie()
           }
-        }), p.data.status === "success" ? (u(p.data.idToken), f(p.data.accessToken), T(p.data.refreshToken), o({
-          type: W,
+        }), m.data.status === "success" ? (u(m.data.idToken), f(m.data.accessToken), A(m.data.refreshToken), i({
+          type: F,
           payload: {
-            authenticationType: Y.PASSKEY,
+            authenticationType: J.PASSKEY,
             user: {
-              userId: p.data.userId,
-              username: p.data.username
+              userId: m.data.userId,
+              username: m.data.username
             }
           }
-        }), !0) : (N(z), !1);
+        }), !0) : (H(ae), !1);
       } catch {
-        return await U({
-          accessToken: l,
+        return await W({
+          accessToken: c,
           clientId: r,
-          type: D.VERIFY_AUTHENTICATION,
+          type: x.VERIFY_AUTHENTICATION,
           params: {
             clientId: r,
             id: y,
             authentication: {},
-            nonce: c,
+            nonce: d,
             domain: n
           }
-        }), N(z), !1;
+        }), H(ae), !1;
       }
   };
-  return /* @__PURE__ */ Te(Pr.Provider, { value: { state: a, dispatch: o }, children: /* @__PURE__ */ Te(
-    et.Provider,
+  return /* @__PURE__ */ Ue(gn.Provider, { value: { state: a, dispatch: i }, children: /* @__PURE__ */ Ue(
+    St.Provider,
     {
       value: {
         ...a,
-        login: nt,
-        logout: at,
-        getAccessToken: st,
-        getIdToken: ot,
-        registeringForPasskey: it,
-        loginWithPasskey: ct
+        login: Tt,
+        logout: bt,
+        getAccessToken: Rt,
+        getIdToken: It,
+        registeringForPasskey: _t,
+        loginWithPasskey: Pt
       },
       children: e
     }
   ) });
-}, Hr = (e = et) => wt(e);
+}, _n = (e = St) => Mt(e);
 export {
-  Y as AUTH_TYPES,
-  Kr as AuthProvider,
-  Hr as useAuth
+  J as AUTH_TYPES,
+  In as AuthProvider,
+  _n as useAuth
 };