alp-node-auth 5.2.0 → 6.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.eslintrc.json +1 -1
- package/CHANGELOG.md +51 -0
- package/dist/MongoUsersManager.d.ts.map +1 -1
- package/dist/authSocketIO.d.ts.map +1 -1
- package/dist/{index-node12-dev.mjs → index-node14.mjs} +43 -30
- package/dist/index-node14.mjs.map +1 -0
- package/dist/index.d.ts +3 -3
- package/dist/index.d.ts.map +1 -1
- package/dist/services/authentification/AuthenticationService.d.ts.map +1 -1
- package/dist/services/user/UserAccountGoogleService.d.ts.map +1 -1
- package/dist/services/user/UserAccountSlackService.d.ts.map +1 -1
- package/dist/services/user/UserAccountsService.d.ts.map +1 -1
- package/dist/utils/cookies.d.ts.map +1 -1
- package/dist/utils/createFindConnectedAndUser.d.ts +2 -2
- package/dist/utils/createFindConnectedAndUser.d.ts.map +1 -1
- package/package.json +18 -24
- package/rollup.config.mjs +3 -0
- package/src/.eslintrc.json +19 -2
- package/src/MongoUsersManager.ts +2 -1
- package/src/authApolloContext.ts +4 -4
- package/src/authSocketIO.ts +5 -4
- package/src/createAuthController.ts +2 -2
- package/src/index.ts +17 -6
- package/src/services/authentification/AuthenticationService.ts +5 -3
- package/src/services/user/UserAccountGoogleService.ts +8 -5
- package/src/services/user/UserAccountSlackService.ts +7 -5
- package/src/services/user/UserAccountsService.ts +10 -9
- package/src/utils/cookies.ts +2 -1
- package/src/utils/createFindConnectedAndUser.ts +15 -16
- package/strategies/dropbox.js +4 -6
- package/strategies/facebook.js +4 -6
- package/strategies/foursquare.js +4 -6
- package/strategies/github.js +4 -6
- package/strategies/google.js +4 -6
- package/strategies/slack.js +4 -6
- package/dist/index-node12-dev.cjs.js +0 -847
- package/dist/index-node12-dev.cjs.js.map +0 -1
- package/dist/index-node12-dev.mjs.map +0 -1
- package/dist/index-node12.cjs.js +0 -847
- package/dist/index-node12.cjs.js.map +0 -1
- package/dist/index-node12.mjs +0 -831
- package/dist/index-node12.mjs.map +0 -1
- package/index.js +0 -6
- package/strategies/dropbox.mjs +0 -18
- package/strategies/facebook.mjs +0 -18
- package/strategies/foursquare.mjs +0 -18
- package/strategies/github.mjs +0 -18
- package/strategies/google.mjs +0 -18
- package/strategies/slack.mjs +0 -18
package/.eslintrc.json
CHANGED
package/CHANGELOG.md
CHANGED
|
@@ -3,6 +3,57 @@
|
|
|
3
3
|
All notable changes to this project will be documented in this file.
|
|
4
4
|
See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
|
|
5
5
|
|
|
6
|
+
# [6.0.0](https://github.com/christophehurpeau/alp/compare/alp-node-auth@5.3.1...alp-node-auth@6.0.0) (2022-01-02)
|
|
7
|
+
|
|
8
|
+
|
|
9
|
+
### Bug Fixes
|
|
10
|
+
|
|
11
|
+
* update nightingale and fix tests ([3691716](https://github.com/christophehurpeau/alp/commit/36917162d0ee3dccc07384caf018b7760d98b744))
|
|
12
|
+
|
|
13
|
+
|
|
14
|
+
### Features
|
|
15
|
+
|
|
16
|
+
* use ESM and drop node 12 ([f45054e](https://github.com/christophehurpeau/alp/commit/f45054e931eea88451d183722797eba057511236))
|
|
17
|
+
|
|
18
|
+
|
|
19
|
+
### BREAKING CHANGES
|
|
20
|
+
|
|
21
|
+
* requires node 14 and ESM
|
|
22
|
+
|
|
23
|
+
|
|
24
|
+
|
|
25
|
+
|
|
26
|
+
|
|
27
|
+
## [5.3.1](https://github.com/christophehurpeau/alp/compare/alp-node-auth@5.3.0...alp-node-auth@5.3.1) (2021-04-10)
|
|
28
|
+
|
|
29
|
+
|
|
30
|
+
### Bug Fixes
|
|
31
|
+
|
|
32
|
+
* **alp-node-auth:** jwtAudience were not used everywhere ([d935271](https://github.com/christophehurpeau/alp/commit/d9352718d9761efd66a1d67d917ee2f9266c6ac7))
|
|
33
|
+
|
|
34
|
+
|
|
35
|
+
|
|
36
|
+
|
|
37
|
+
|
|
38
|
+
# [5.3.0](https://github.com/christophehurpeau/alp/compare/alp-node-auth@5.2.1...alp-node-auth@5.3.0) (2021-04-10)
|
|
39
|
+
|
|
40
|
+
|
|
41
|
+
### Features
|
|
42
|
+
|
|
43
|
+
* **alp-node-auth:** add jwtAudience audiance to remplace user-agent ([498f64e](https://github.com/christophehurpeau/alp/commit/498f64e90fde9da988d3e177f41f8925e14bddb9))
|
|
44
|
+
|
|
45
|
+
|
|
46
|
+
|
|
47
|
+
|
|
48
|
+
|
|
49
|
+
## [5.2.1](https://github.com/christophehurpeau/alp/compare/alp-node-auth@5.2.0...alp-node-auth@5.2.1) (2021-03-28)
|
|
50
|
+
|
|
51
|
+
**Note:** Version bump only for package alp-node-auth
|
|
52
|
+
|
|
53
|
+
|
|
54
|
+
|
|
55
|
+
|
|
56
|
+
|
|
6
57
|
# [5.2.0](https://github.com/christophehurpeau/alp/compare/alp-node-auth@5.1.2...alp-node-auth@5.2.0) (2021-03-28)
|
|
7
58
|
|
|
8
59
|
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"MongoUsersManager.d.ts","sourceRoot":"","sources":["../src/MongoUsersManager.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,UAAU,EAAU,MAAM,YAAY,CAAC;AACtE,OAAO,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAE/D,MAAM,CAAC,OAAO,OAAO,iBAAiB,CACpC,CAAC,SAAS,IAAI,GAAG,IAAI,EACrB,UAAU,SAAS,aAAa,GAAG,aAAa;IAEhD,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC;gBAET,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC;IAIhC,aAAa,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,GAAG,SAAS,CAAC;IAIxD,SAAS,CAAC,IAAI,EAAE,eAAe,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC;IAIjD,UAAU,CAAC,IAAI,EAAE,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC;IAIjC,QAAQ,CAAC,IAAI,EAAE,CAAC,GAAG,UAAU;IAI7B,wBAAwB,CAAC,EACvB,SAAS,EACT,MAAM,EACN,QAAQ,GACT,EAAE;QACD,SAAS,EAAE,MAAM,GAAG,MAAM,CAAC;QAC3B,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;QAClB,QAAQ,EAAE,MAAM,CAAC;KAClB,GAAG,OAAO,CAAC,CAAC,GAAG,SAAS,CAAC;
|
|
1
|
+
{"version":3,"file":"MongoUsersManager.d.ts","sourceRoot":"","sources":["../src/MongoUsersManager.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,UAAU,EAAU,MAAM,YAAY,CAAC;AACtE,OAAO,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAE/D,MAAM,CAAC,OAAO,OAAO,iBAAiB,CACpC,CAAC,SAAS,IAAI,GAAG,IAAI,EACrB,UAAU,SAAS,aAAa,GAAG,aAAa;IAEhD,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC;gBAET,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC;IAIhC,aAAa,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,GAAG,SAAS,CAAC;IAIxD,SAAS,CAAC,IAAI,EAAE,eAAe,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC;IAIjD,UAAU,CAAC,IAAI,EAAE,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC;IAIjC,QAAQ,CAAC,IAAI,EAAE,CAAC,GAAG,UAAU;IAI7B,wBAAwB,CAAC,EACvB,SAAS,EACT,MAAM,EACN,QAAQ,GACT,EAAE;QACD,SAAS,EAAE,MAAM,GAAG,MAAM,CAAC;QAC3B,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;QAClB,QAAQ,EAAE,MAAM,CAAC;KAClB,GAAG,OAAO,CAAC,CAAC,GAAG,SAAS,CAAC;IAqB1B,aAAa,CAAC,IAAI,EAAE,CAAC,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC;IAapD,SAAS,CAAC,gBAAgB,CAAC,IAAI,EAAE,CAAC,GAAG,aAAa;CAmBnD"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"authSocketIO.d.ts","sourceRoot":"","sources":["../src/authSocketIO.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AACjD,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEtC,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AACvC,OAAO,KAAK,iBAAiB,MAAM,qBAAqB,CAAC;AAMzD,eAAO,MAAM,YAAY,+BAClB,eAAe,
|
|
1
|
+
{"version":3,"file":"authSocketIO.d.ts","sourceRoot":"","sources":["../src/authSocketIO.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AACjD,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEtC,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AACvC,OAAO,KAAK,iBAAiB,MAAM,qBAAqB,CAAC;AAMzD,eAAO,MAAM,YAAY,+BAClB,eAAe,8EAGhB,GAAG,iDAEN,IAgCF,CAAC"}
|
|
@@ -1,10 +1,11 @@
|
|
|
1
1
|
import { promisify } from 'util';
|
|
2
2
|
import jsonwebtoken from 'jsonwebtoken';
|
|
3
|
-
import Logger from 'nightingale-logger';
|
|
3
|
+
import { Logger } from 'nightingale-logger';
|
|
4
4
|
import 'alp-router';
|
|
5
5
|
import { EventEmitter } from 'events';
|
|
6
6
|
import { randomBytes } from 'crypto';
|
|
7
7
|
import Cookies from 'cookies';
|
|
8
|
+
import { fetch } from 'alp-node';
|
|
8
9
|
|
|
9
10
|
function createAuthController({
|
|
10
11
|
usersManager,
|
|
@@ -76,7 +77,7 @@ async function randomHex(size) {
|
|
|
76
77
|
return buffer.toString('hex');
|
|
77
78
|
}
|
|
78
79
|
|
|
79
|
-
/* eslint-disable @typescript-eslint/no-unsafe-
|
|
80
|
+
/* eslint-disable @typescript-eslint/no-unsafe-argument */
|
|
80
81
|
const logger$4 = new Logger('alp:auth:authentication');
|
|
81
82
|
class AuthenticationService extends EventEmitter {
|
|
82
83
|
constructor(config, strategies, userAccountsService) {
|
|
@@ -299,6 +300,7 @@ class AuthenticationService extends EventEmitter {
|
|
|
299
300
|
|
|
300
301
|
}
|
|
301
302
|
|
|
303
|
+
/* eslint-disable @typescript-eslint/no-shadow */
|
|
302
304
|
const logger$3 = new Logger('alp:auth:userAccounts');
|
|
303
305
|
const STATUSES = {
|
|
304
306
|
VALIDATED: 'validated',
|
|
@@ -314,7 +316,7 @@ class UserAccountsService extends EventEmitter {
|
|
|
314
316
|
getScope(strategy, scopeKey, user, accountId) {
|
|
315
317
|
logger$3.debug('getScope', {
|
|
316
318
|
strategy,
|
|
317
|
-
userId: user
|
|
319
|
+
userId: user?._id
|
|
318
320
|
});
|
|
319
321
|
const service = this.strategyToService[strategy];
|
|
320
322
|
|
|
@@ -439,7 +441,8 @@ class UserAccountsService extends EventEmitter {
|
|
|
439
441
|
userEmails.push(email);
|
|
440
442
|
}
|
|
441
443
|
});
|
|
442
|
-
user.emailDomains = [
|
|
444
|
+
user.emailDomains = [// eslint-disable-next-line unicorn/no-array-reduce
|
|
445
|
+
...user.emails.reduce((domains, email) => domains.add(email.split('@', 2)[1]), new Set())];
|
|
443
446
|
const keyPath = this.usersManager.store.keyPath;
|
|
444
447
|
|
|
445
448
|
if (user[keyPath]) {
|
|
@@ -460,6 +463,7 @@ class UserAccountsService extends EventEmitter {
|
|
|
460
463
|
|
|
461
464
|
const COOKIE_NAME = 'connectedUser';
|
|
462
465
|
const getTokenFromRequest = (req, options) => {
|
|
466
|
+
// eslint-disable-next-line @typescript-eslint/no-unsafe-argument
|
|
463
467
|
const cookies = new Cookies(req, null, { ...options,
|
|
464
468
|
secure: true
|
|
465
469
|
});
|
|
@@ -468,22 +472,22 @@ const getTokenFromRequest = (req, options) => {
|
|
|
468
472
|
|
|
469
473
|
const verifyPromisified = promisify(jsonwebtoken.verify);
|
|
470
474
|
|
|
471
|
-
const createDecodeJWT = secretKey => async (token,
|
|
475
|
+
const createDecodeJWT = secretKey => async (token, jwtAudience) => {
|
|
472
476
|
const result = await verifyPromisified(token, secretKey, {
|
|
473
477
|
algorithms: ['HS512'],
|
|
474
|
-
audience:
|
|
478
|
+
audience: jwtAudience
|
|
475
479
|
});
|
|
476
|
-
return result
|
|
480
|
+
return result?.connected;
|
|
477
481
|
};
|
|
478
482
|
|
|
479
483
|
const createFindConnectedAndUser = (secretKey, usersManager, logger) => {
|
|
480
484
|
const decodeJwt = createDecodeJWT(secretKey);
|
|
481
|
-
return async (
|
|
482
|
-
if (!token || !
|
|
485
|
+
return async (jwtAudience, token) => {
|
|
486
|
+
if (!token || !jwtAudience) return [null, null];
|
|
483
487
|
let connected;
|
|
484
488
|
|
|
485
489
|
try {
|
|
486
|
-
connected = await decodeJwt(token,
|
|
490
|
+
connected = await decodeJwt(token, jwtAudience);
|
|
487
491
|
} catch (err) {
|
|
488
492
|
logger.debug('failed to verify authentification', {
|
|
489
493
|
err
|
|
@@ -535,7 +539,8 @@ class MongoUsersManager {
|
|
|
535
539
|
}
|
|
536
540
|
}]
|
|
537
541
|
};
|
|
538
|
-
}
|
|
542
|
+
} // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
|
|
543
|
+
|
|
539
544
|
|
|
540
545
|
return this.store.findOne(query);
|
|
541
546
|
}
|
|
@@ -576,15 +581,16 @@ class MongoUsersManager {
|
|
|
576
581
|
|
|
577
582
|
}
|
|
578
583
|
|
|
579
|
-
/*
|
|
584
|
+
/* eslint-disable @typescript-eslint/no-unsafe-argument */
|
|
580
585
|
class UserAccountGoogleService {
|
|
581
586
|
constructor(scopeKeyToScope) {
|
|
582
|
-
this.providerKey = 'google';
|
|
583
587
|
this.scopeKeyToScope = { ...scopeKeyToScope,
|
|
584
588
|
login: 'openid profile email'
|
|
585
589
|
};
|
|
586
590
|
}
|
|
587
591
|
|
|
592
|
+
providerKey = 'google';
|
|
593
|
+
|
|
588
594
|
getProfile(tokens) {
|
|
589
595
|
return fetch(`https://www.googleapis.com/oauth2/v1/userinfo?access_token=${tokens.accessToken}`).then(response => response.json());
|
|
590
596
|
}
|
|
@@ -623,21 +629,22 @@ class UserAccountGoogleService {
|
|
|
623
629
|
}
|
|
624
630
|
|
|
625
631
|
getScope(oldScope, newScope) {
|
|
626
|
-
return !oldScope ? newScope.split(' ') : oldScope
|
|
632
|
+
return !oldScope ? newScope.split(' ') : [...oldScope, ...newScope.split(' ')].filter((item, i, ar) => ar.indexOf(item) === i);
|
|
627
633
|
}
|
|
628
634
|
|
|
629
635
|
}
|
|
630
636
|
|
|
631
|
-
/*
|
|
637
|
+
/* eslint-disable @typescript-eslint/explicit-module-boundary-types */
|
|
632
638
|
// https://api.slack.com/methods/users.identity
|
|
633
639
|
class UserAccountSlackService {
|
|
634
640
|
constructor(scopeKeyToScope) {
|
|
635
|
-
this.providerKey = 'google';
|
|
636
641
|
this.scopeKeyToScope = { ...scopeKeyToScope,
|
|
637
642
|
login: 'identity.basic identity.email identity.avatar'
|
|
638
643
|
};
|
|
639
644
|
}
|
|
640
645
|
|
|
646
|
+
providerKey = 'google';
|
|
647
|
+
|
|
641
648
|
getProfile(tokens) {
|
|
642
649
|
return fetch(`https://slack.com/api/users.identity?token=${tokens.accessToken}`).then(response => response.json());
|
|
643
650
|
}
|
|
@@ -671,7 +678,7 @@ class UserAccountSlackService {
|
|
|
671
678
|
}
|
|
672
679
|
|
|
673
680
|
getScope(oldScope, newScope) {
|
|
674
|
-
return !oldScope ? newScope.split(' ') : oldScope
|
|
681
|
+
return !oldScope ? newScope.split(' ') : [...oldScope, ...newScope.split(' ')].filter((item, i, ar) => ar.indexOf(item) === i);
|
|
675
682
|
}
|
|
676
683
|
|
|
677
684
|
}
|
|
@@ -682,10 +689,12 @@ const authSocketIO = (app, usersManager, io) => {
|
|
|
682
689
|
const users = new Map();
|
|
683
690
|
io.users = users;
|
|
684
691
|
io.use(async (socket, next) => {
|
|
685
|
-
const handshakeData = socket.request;
|
|
692
|
+
const handshakeData = socket.request; // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
|
|
693
|
+
|
|
686
694
|
const token = getTokenFromRequest(handshakeData);
|
|
687
695
|
if (!token) return next();
|
|
688
|
-
const [connected, user] = await findConnectedAndUser(
|
|
696
|
+
const [connected, user] = await findConnectedAndUser( // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
|
|
697
|
+
handshakeData.headers['user-agent'], token);
|
|
689
698
|
if (!connected || !user) return next();
|
|
690
699
|
socket.user = user;
|
|
691
700
|
users.set(socket.client.id, user);
|
|
@@ -712,18 +721,20 @@ const createAuthApolloContext = (config, usersManager) => {
|
|
|
712
721
|
req,
|
|
713
722
|
connection
|
|
714
723
|
}) => {
|
|
715
|
-
if (connection
|
|
724
|
+
if (connection?.user) {
|
|
716
725
|
return {
|
|
717
726
|
user: connection.user
|
|
718
727
|
};
|
|
719
728
|
}
|
|
720
729
|
|
|
721
|
-
if (!req) return null;
|
|
730
|
+
if (!req) return null; // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
|
|
731
|
+
|
|
722
732
|
const token = getTokenFromReq(req);
|
|
723
733
|
if (!token) return {
|
|
724
734
|
user: undefined
|
|
725
735
|
};
|
|
726
|
-
const [, user] = await findConnectedAndUser(
|
|
736
|
+
const [, user] = await findConnectedAndUser( // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
|
|
737
|
+
req.headers['user-agent'], token);
|
|
727
738
|
return {
|
|
728
739
|
user
|
|
729
740
|
};
|
|
@@ -738,8 +749,10 @@ function init({
|
|
|
738
749
|
strategies,
|
|
739
750
|
defaultStrategy,
|
|
740
751
|
strategyToService,
|
|
741
|
-
authHooks
|
|
752
|
+
authHooks,
|
|
753
|
+
jwtAudience
|
|
742
754
|
}) {
|
|
755
|
+
// eslint-disable-next-line @typescript-eslint/explicit-module-boundary-types
|
|
743
756
|
return app => {
|
|
744
757
|
const userAccountsService = new UserAccountsService(usersManager, strategyToService);
|
|
745
758
|
const authenticationService = new AuthenticationService(app.config, strategies, userAccountsService);
|
|
@@ -767,9 +780,10 @@ function init({
|
|
|
767
780
|
time: Date.now()
|
|
768
781
|
}, this.config.get('authentication').get('secretKey'), {
|
|
769
782
|
algorithm: 'HS512',
|
|
770
|
-
audience: this.request.headers['user-agent'],
|
|
783
|
+
audience: jwtAudience || this.request.headers['user-agent'],
|
|
771
784
|
expiresIn: '30 days'
|
|
772
|
-
});
|
|
785
|
+
}); // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
|
|
786
|
+
|
|
773
787
|
this.cookies.set(COOKIE_NAME, token, {
|
|
774
788
|
httpOnly: true,
|
|
775
789
|
secure: this.config.get('allowHttps')
|
|
@@ -789,7 +803,7 @@ function init({
|
|
|
789
803
|
routes: createRoutes(controller),
|
|
790
804
|
getConnectedAndUserFromRequest: req => {
|
|
791
805
|
const token = getTokenFromRequest(req);
|
|
792
|
-
return getConnectedAndUser(req.headers['user-agent'], token);
|
|
806
|
+
return getConnectedAndUser(jwtAudience || req.headers['user-agent'], token);
|
|
793
807
|
},
|
|
794
808
|
getConnectedAndUser,
|
|
795
809
|
middleware: async (ctx, next) => {
|
|
@@ -806,7 +820,7 @@ function init({
|
|
|
806
820
|
ctx.sanitizedState.user = user && usersManager.sanitize(user);
|
|
807
821
|
};
|
|
808
822
|
|
|
809
|
-
const [connected, user] = await getConnectedAndUser(userAgent, token);
|
|
823
|
+
const [connected, user] = await getConnectedAndUser(jwtAudience || userAgent, token);
|
|
810
824
|
logger.debug('middleware', {
|
|
811
825
|
connected
|
|
812
826
|
});
|
|
@@ -826,6 +840,5 @@ function init({
|
|
|
826
840
|
};
|
|
827
841
|
}
|
|
828
842
|
|
|
829
|
-
export default
|
|
830
|
-
|
|
831
|
-
//# sourceMappingURL=index-node12-dev.mjs.map
|
|
843
|
+
export { AuthenticationService, MongoUsersManager, STATUSES, UserAccountGoogleService, UserAccountSlackService, authSocketIO, createAuthApolloContext, init as default };
|
|
844
|
+
//# sourceMappingURL=index-node14.mjs.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"index-node14.mjs","sources":["../src/createAuthController.ts","../src/createRoutes.ts","../src/utils/generators.ts","../src/services/authentification/AuthenticationService.ts","../src/services/user/UserAccountsService.ts","../src/utils/cookies.ts","../src/utils/createFindConnectedAndUser.ts","../src/MongoUsersManager.ts","../src/services/user/UserAccountGoogleService.ts","../src/services/user/UserAccountSlackService.ts","../src/authSocketIO.ts","../src/authApolloContext.ts","../src/index.ts"],"sourcesContent":["import type { Context } from 'alp-node';\nimport 'alp-router';\nimport type { User, UserSanitized } from '../types.d';\nimport type MongoUsersManager from './MongoUsersManager';\nimport type {\n AuthenticationService,\n AccessResponseHooks,\n} from './services/authentification/AuthenticationService';\nimport type {\n AllowedStrategyKeys,\n AllowedMapParamsStrategy,\n} from './services/authentification/types';\n\nexport interface CreateAuthControllerParams<\n StrategyKeys extends AllowedStrategyKeys,\n U extends User = User,\n USanitized extends UserSanitized = UserSanitized,\n> {\n authenticationService: AuthenticationService<StrategyKeys, U, UserSanitized>;\n homeRouterKey?: string;\n usersManager: MongoUsersManager<U, USanitized>;\n defaultStrategy?: StrategyKeys;\n authHooks?: AuthHooks<StrategyKeys>;\n}\n\nexport interface AuthController {\n login: (ctx: Context) => Promise<void>;\n addScope: (ctx: Context) => Promise<void>;\n loginResponse: (ctx: Context) => Promise<void>;\n logout: (ctx: Context) => Promise<void>;\n}\n\ntype OptionalRecord<K extends keyof any, T> = { [P in K]?: T };\n\nexport interface AuthHooks<StrategyKeys extends AllowedStrategyKeys>\n extends AccessResponseHooks<StrategyKeys> {\n paramsForLogin?: <StrategyKey extends StrategyKeys>(\n strategy: StrategyKey,\n ctx: Context,\n ) => // eslint-disable-next-line @typescript-eslint/no-invalid-void-type\n | void\n | Promise<void>\n | OptionalRecord<AllowedMapParamsStrategy[StrategyKey], any>\n | Promise<OptionalRecord<AllowedMapParamsStrategy[StrategyKey], any>>;\n}\n\nexport function createAuthController<\n StrategyKeys extends AllowedStrategyKeys,\n U extends User = User,\n USanitized extends UserSanitized = UserSanitized,\n>({\n usersManager,\n authenticationService,\n homeRouterKey = '/',\n defaultStrategy,\n authHooks = {},\n}: CreateAuthControllerParams<StrategyKeys, U, USanitized>): AuthController {\n return {\n async login(ctx: Context): Promise<void> {\n const strategy: StrategyKeys = (ctx.namedParam('strategy') ||\n defaultStrategy) as StrategyKeys;\n if (!strategy) throw new Error('Strategy missing');\n const params =\n (authHooks.paramsForLogin &&\n (await authHooks.paramsForLogin(strategy, ctx))) ||\n {};\n await authenticationService.redirectAuthUrl(ctx, strategy, {}, params);\n },\n\n async addScope(ctx: Context): Promise<void> {\n if (ctx.state.connected) {\n await ctx.redirectTo(homeRouterKey);\n return;\n }\n\n const strategy: StrategyKeys = (ctx.namedParam('strategy') ||\n defaultStrategy) as StrategyKeys;\n if (!strategy) throw new Error('Strategy missing');\n const scopeKey = ctx.namedParam('scopeKey');\n if (!scopeKey) throw new Error('Scope missing');\n await authenticationService.redirectAuthUrl(ctx, strategy, { scopeKey });\n },\n\n async loginResponse(ctx: Context): Promise<void> {\n if (ctx.state.connected) {\n await ctx.redirectTo(homeRouterKey);\n return;\n }\n\n const strategy: StrategyKeys = ctx.namedParam('strategy') as StrategyKeys;\n ctx.assert(strategy);\n\n const connectedUser = await authenticationService.accessResponse(\n ctx,\n strategy,\n ctx.state.connected as boolean | undefined,\n {\n afterLoginSuccess: authHooks.afterLoginSuccess,\n afterScopeUpdate: authHooks.afterScopeUpdate,\n },\n );\n const keyPath = usersManager.store.keyPath;\n await ctx.setConnected(connectedUser[keyPath], connectedUser);\n await ctx.redirectTo(homeRouterKey);\n },\n\n async logout(ctx: Context): Promise<void> {\n ctx.logout();\n await ctx.redirectTo(homeRouterKey);\n },\n };\n}\n","import type { AuthController } from './createAuthController';\n\nexport interface AuthRoutes {\n login: [string, (segment: any) => void];\n addScope: [string, AuthController['addScope']];\n logout: [string, AuthController['logout']];\n}\n\nexport const createRoutes = (controller: AuthController): AuthRoutes => ({\n login: [\n '/login/:strategy?',\n (segment: any) => {\n segment.add('/response', controller.loginResponse, 'loginResponse');\n segment.defaultRoute(controller.login, 'login');\n },\n ],\n addScope: ['/auth/add-scope/:strategy/:scopeKey', controller.addScope],\n logout: ['/logout', controller.logout],\n});\n","import { randomBytes } from 'crypto';\nimport { promisify } from 'util';\n\nconst randomBytesPromisified = promisify(randomBytes);\n\nexport async function randomBase64(size: number): Promise<string> {\n const buffer = await randomBytesPromisified(size);\n return buffer.toString('base64');\n}\n\nexport async function randomHex(size: number): Promise<string> {\n const buffer = await randomBytesPromisified(size);\n return buffer.toString('hex');\n}\n","/* eslint-disable @typescript-eslint/no-unsafe-argument */\n/* eslint-disable @typescript-eslint/explicit-module-boundary-types */\n/* eslint-disable @typescript-eslint/no-unsafe-assignment */\n/* eslint-disable camelcase, max-lines */\nimport { EventEmitter } from 'events';\nimport 'alp-router';\nimport type { Context, NodeConfig } from 'alp-types';\nimport { Logger } from 'nightingale-logger';\nimport type { OAuthClient } from 'simple-oauth2';\nimport type { AccountId, User, Account, UserSanitized } from '../../../types.d';\nimport { randomHex } from '../../utils/generators';\nimport type UserAccountsService from '../user/UserAccountsService';\nimport type { AllowedStrategyKeys, Tokens } from './types';\n\nconst logger = new Logger('alp:auth:authentication');\n\nexport interface GenerateAuthUrlOptions {\n accessType?: string;\n grantType?: string;\n includeGrantedScopes?: boolean;\n loginHint?: string;\n prompt?: string;\n redirectUri?: string;\n scope?: string;\n state?: string;\n}\n\nexport interface GetTokensOptions {\n code: string;\n redirectUri: string;\n}\n\nexport interface Strategy {\n type: string;\n}\n\nexport interface Oauth2Strategy<Params extends string> extends Strategy {\n oauth2: OAuthClient<Params>;\n}\n\nexport type Strategies<StrategyKeys extends AllowedStrategyKeys> = Record<\n StrategyKeys,\n Oauth2Strategy<any>\n>;\n\nexport interface AccessResponseHooks<StrategyKeys, U extends User = User> {\n afterLoginSuccess?: <StrategyKey extends StrategyKeys>(\n strategy: StrategyKey,\n connectedUser: U,\n ) => void | Promise<void>;\n\n afterScopeUpdate?: <StrategyKey extends StrategyKeys>(\n strategy: StrategyKey,\n scopeKey: string,\n account: Account,\n user: U,\n ) => void | Promise<void>;\n}\n\nexport class AuthenticationService<\n StrategyKeys extends AllowedStrategyKeys,\n U extends User = User,\n USanitized extends UserSanitized = UserSanitized,\n> extends EventEmitter {\n config: NodeConfig;\n\n strategies: Strategies<StrategyKeys>;\n\n userAccountsService: UserAccountsService<StrategyKeys, U, USanitized>;\n\n constructor(\n config: NodeConfig,\n strategies: Strategies<StrategyKeys>,\n userAccountsService: UserAccountsService<StrategyKeys, U, USanitized>,\n ) {\n super();\n this.config = config;\n this.strategies = strategies;\n this.userAccountsService = userAccountsService;\n }\n\n generateAuthUrl<T extends StrategyKeys>(strategy: T, params: any): string {\n logger.debug('generateAuthUrl', { strategy, params });\n const strategyInstance = this.strategies[strategy];\n switch (strategyInstance.type) {\n case 'oauth2':\n return strategyInstance.oauth2.authorizationCode.authorizeURL(params);\n default:\n throw new Error('Invalid strategy');\n }\n }\n\n async getTokens(\n strategy: StrategyKeys,\n options: GetTokensOptions,\n ): Promise<Tokens> {\n logger.debug('getTokens', { strategy, options });\n const strategyInstance = this.strategies[strategy];\n switch (strategyInstance.type) {\n case 'oauth2': {\n const result = await strategyInstance.oauth2.authorizationCode.getToken(\n {\n code: options.code,\n redirect_uri: options.redirectUri,\n },\n );\n if (!result) return result;\n return {\n accessToken: result.access_token,\n refreshToken: result.refresh_token,\n tokenType: result.token_type,\n expiresIn: result.expires_in,\n expireDate: (() => {\n const d = new Date();\n d.setTime(d.getTime() + result.expires_in * 1000);\n return d;\n })(),\n idToken: result.id_token,\n };\n // return strategyInstance.accessToken.create(result);\n }\n\n default:\n throw new Error('Invalid stategy');\n }\n }\n\n async refreshToken(\n strategy: StrategyKeys,\n tokensParam: { refreshToken: string },\n ): Promise<Tokens> {\n logger.debug('refreshToken', { strategy });\n if (!tokensParam.refreshToken) {\n throw new Error('Missing refresh token');\n }\n const strategyInstance = this.strategies[strategy];\n switch (strategyInstance.type) {\n case 'oauth2': {\n const token = strategyInstance.oauth2.accessToken.create({\n refresh_token: tokensParam.refreshToken,\n });\n const result = await token.refresh();\n const tokens = result.token;\n return {\n accessToken: tokens.access_token,\n tokenType: tokens.token_type,\n expiresIn: tokens.expires_in,\n expireDate: (() => {\n const d = new Date();\n d.setTime(d.getTime() + tokens.expires_in * 1000);\n return d;\n })(),\n idToken: tokens.id_token,\n };\n }\n\n default:\n throw new Error('Invalid stategy');\n }\n }\n\n redirectUri(ctx: Context, strategy: string): string {\n const host = `http${this.config.get('allowHttps') ? 's' : ''}://${\n ctx.request.host\n }`;\n return `${host}${ctx.urlGenerator('loginResponse', { strategy })}`;\n }\n\n async redirectAuthUrl(\n ctx: Context,\n strategy: StrategyKeys,\n {\n refreshToken,\n scopeKey,\n user,\n accountId,\n }: {\n refreshToken?: string | undefined;\n scopeKey?: string | undefined;\n user?: U;\n accountId?: AccountId;\n },\n params?: any,\n ): Promise<void> {\n logger.debug('redirectAuthUrl', { strategy, scopeKey, refreshToken });\n const state = await randomHex(8);\n const isLoginAccess = !scopeKey || scopeKey === 'login';\n const scope = this.userAccountsService.getScope(\n strategy,\n scopeKey || 'login',\n user,\n accountId,\n );\n\n if (!scope) {\n throw new Error('Invalid empty scope');\n }\n\n ctx.cookies.set(\n `auth_${strategy}_${state}`,\n JSON.stringify({\n scopeKey,\n scope,\n isLoginAccess,\n }),\n {\n maxAge: 10 * 60 * 1000,\n httpOnly: true,\n secure: this.config.get('allowHttps'),\n },\n );\n const redirectUri = this.generateAuthUrl(strategy, {\n redirect_uri: this.redirectUri(ctx, strategy),\n scope,\n state,\n access_type: refreshToken ? 'offline' : 'online',\n ...params,\n });\n\n return ctx.redirect(redirectUri);\n }\n\n async accessResponse<StrategyKey extends StrategyKeys>(\n ctx: any,\n strategy: StrategyKey,\n isConnected: undefined | boolean,\n hooks: AccessResponseHooks<StrategyKeys, U>,\n ): Promise<U> {\n if (ctx.query.error) {\n const error: any = new Error(ctx.query.error);\n error.status = 403;\n error.expose = true;\n throw error;\n }\n\n const code = ctx.query.code;\n const state = ctx.query.state;\n const cookieName = `auth_${strategy}_${state as string}`;\n let cookie = ctx.cookies.get(cookieName);\n ctx.cookies.set(cookieName, '', { expires: new Date(1) });\n if (!cookie) {\n throw new Error('No cookie for this state');\n }\n\n cookie = JSON.parse(cookie);\n if (!cookie || !cookie.scope) {\n throw new Error('Unexpected cookie value');\n }\n\n if (!cookie.isLoginAccess) {\n if (!isConnected) {\n throw new Error('You are not connected');\n }\n }\n\n const tokens: Tokens = await this.getTokens(strategy, {\n code,\n redirectUri: this.redirectUri(ctx, strategy),\n });\n\n if (cookie.isLoginAccess) {\n const user = await this.userAccountsService.findOrCreateFromStrategy(\n strategy,\n tokens,\n cookie.scope,\n cookie.scopeKey,\n );\n\n if (hooks.afterLoginSuccess) {\n await hooks.afterLoginSuccess(strategy, user);\n }\n\n return user;\n }\n\n const connectedUser = ctx.state.user;\n const { account, user } = await this.userAccountsService.update(\n connectedUser,\n strategy,\n tokens,\n cookie.scope,\n cookie.scopeKey,\n );\n\n if (hooks.afterScopeUpdate) {\n await hooks.afterScopeUpdate(strategy, cookie.scopeKey, account, user);\n }\n\n return connectedUser;\n }\n\n refreshAccountTokens(user: U, account: Account): Promise<boolean> {\n if (\n account.tokenExpireDate &&\n account.tokenExpireDate.getTime() > Date.now()\n ) {\n return Promise.resolve(false);\n }\n return this.refreshToken(account.provider as StrategyKeys, {\n // accessToken: account.accessToken,\n refreshToken: account.refreshToken!,\n }).then((tokens: Tokens) => {\n if (!tokens) {\n // serviceGoogle.updateFields({ accessToken:null, refreshToken:null, status: .OUTDATED });\n return false;\n }\n account.accessToken = tokens.accessToken;\n account.tokenExpireDate = tokens.expireDate;\n return this.userAccountsService\n .updateAccount(user, account)\n .then(() => true);\n });\n }\n}\n","/* eslint-disable @typescript-eslint/no-shadow */\nimport { EventEmitter } from 'events';\nimport { Logger } from 'nightingale-logger';\nimport type { AccountId, User, Account, UserSanitized } from '../../../types.d';\nimport type MongoUsersManager from '../../MongoUsersManager';\nimport type { AllowedStrategyKeys } from '../authentification/types';\nimport type { AccountService, TokensObject } from './types';\n\nconst logger = new Logger('alp:auth:userAccounts');\n\nexport const STATUSES = {\n VALIDATED: 'validated',\n DELETED: 'deleted',\n};\n\nexport default class UserAccountsService<\n StrategyKeys extends AllowedStrategyKeys,\n U extends User = User,\n USanitized extends UserSanitized = UserSanitized,\n> extends EventEmitter {\n private readonly strategyToService: Record<StrategyKeys, AccountService<any>>;\n\n usersManager: MongoUsersManager<U, USanitized>;\n\n constructor(\n usersManager: MongoUsersManager<U, USanitized>,\n strategyToService: Record<StrategyKeys, AccountService<any>>,\n ) {\n super();\n this.usersManager = usersManager;\n this.strategyToService = strategyToService;\n }\n\n getScope(\n strategy: StrategyKeys,\n scopeKey: string,\n user?: U,\n accountId?: AccountId,\n ): string {\n logger.debug('getScope', { strategy, userId: user?._id });\n const service = this.strategyToService[strategy];\n if (!service) {\n throw new Error('Strategy not supported');\n }\n\n const newScope = service.scopeKeyToScope[scopeKey];\n if (!user || !accountId) {\n return newScope;\n }\n const account = user.accounts.find(\n (account) =>\n account.provider === strategy && account.accountId === accountId,\n );\n\n if (!account) {\n throw new Error('Could not found associated account');\n }\n return service.getScope(account.scope, newScope).join(' ');\n }\n\n async update(\n user: U,\n strategy: StrategyKeys,\n tokens: TokensObject,\n scope: string,\n subservice: string,\n ): Promise<{ user: U; account: U['accounts'][number] }> {\n const service = this.strategyToService[strategy];\n const profile = await service.getProfile(tokens);\n const accountId = service.getId(profile);\n const account = user.accounts.find(\n (account) =>\n account.provider === strategy && account.accountId === accountId,\n );\n if (!account) {\n // TODO check if already exists in other user => merge\n // TODO else add a new account in this user\n throw new Error('Could not found associated account');\n }\n account.status = 'valid';\n account.accessToken = tokens.accessToken;\n if (tokens.refreshToken) {\n account.refreshToken = tokens.refreshToken;\n }\n if (tokens.expireDate) {\n account.tokenExpireDate = tokens.expireDate;\n }\n account.scope = service.getScope(account.scope, scope);\n account.subservices = account.subservices || [];\n if (subservice && !account.subservices.includes(subservice)) {\n account.subservices.push(subservice);\n }\n\n await this.usersManager.replaceOne(user);\n return { user, account };\n }\n\n async findOrCreateFromStrategy(\n strategy: StrategyKeys,\n tokens: TokensObject,\n scope: string,\n subservice: string,\n ): Promise<U> {\n const service = this.strategyToService[strategy];\n if (!service) throw new Error('Strategy not supported');\n\n const profile = await service.getProfile(tokens);\n const accountId = service.getId(profile);\n if (!accountId) throw new Error('Invalid profile: no id found');\n\n const emails = service.getEmails(profile);\n\n let user: Partial<U> | undefined =\n await this.usersManager.findOneByAccountOrEmails({\n provider: service.providerKey,\n accountId,\n emails,\n });\n\n logger.info(!user ? 'create user' : 'existing user', { emails, user });\n\n if (!user) {\n user = {};\n }\n\n Object.assign(user, {\n displayName: service.getDisplayName(profile),\n fullName: service.getFullName(profile),\n status: STATUSES.VALIDATED,\n });\n\n if (!user.accounts) user.accounts = [];\n\n let account: Partial<Account> | undefined = user.accounts.find(\n (account: Account) =>\n account.provider === strategy && account.accountId === accountId,\n );\n\n if (!account) {\n account = { provider: strategy, accountId };\n // @ts-expect-error well...\n user.accounts.push(account);\n }\n\n account.name = service.getAccountName(profile);\n account.status = 'valid';\n account.profile = profile;\n account.accessToken = tokens.accessToken;\n if (tokens.refreshToken) {\n account.refreshToken = tokens.refreshToken;\n }\n if (tokens.expireDate) {\n account.tokenExpireDate = tokens.expireDate;\n }\n account.scope = service.getScope(account.scope, scope);\n\n if (!account.subservices) account.subservices = [];\n if (subservice && !account.subservices.includes(subservice)) {\n account.subservices.push(subservice);\n }\n\n if (!user.emails) user.emails = [];\n const userEmails = user.emails;\n emails.forEach((email: string) => {\n if (!userEmails.includes(email)) {\n userEmails.push(email);\n }\n });\n\n user.emailDomains = [\n // eslint-disable-next-line unicorn/no-array-reduce\n ...user.emails.reduce(\n (domains: Set<string>, email: string) =>\n domains.add(email.split('@', 2)[1]),\n new Set<string>(),\n ),\n ];\n\n const keyPath = this.usersManager.store.keyPath;\n\n if (user[keyPath]) {\n await this.usersManager.replaceOne(user as U);\n } else {\n await this.usersManager.insertOne(user as U);\n }\n\n return user as U;\n }\n\n async updateAccount(user: U, account: Account): Promise<U> {\n await this.usersManager.updateAccount(user, account);\n return user;\n }\n}\n","import type { IncomingMessage } from 'http';\nimport type { Option } from 'cookies';\nimport Cookies from 'cookies';\n\nexport const COOKIE_NAME = 'connectedUser';\n\nexport const getTokenFromRequest = (\n req: IncomingMessage,\n options?: Pick<Option, Exclude<keyof Option, 'secure'>>,\n): string | undefined => {\n // eslint-disable-next-line @typescript-eslint/no-unsafe-argument\n const cookies = new Cookies(req, null as unknown as any, {\n ...options,\n secure: true,\n });\n\n return cookies.get(COOKIE_NAME);\n};\n","import { promisify } from 'util';\nimport type {\n GetPublicKeyOrSecret,\n Secret,\n VerifyCallback,\n VerifyOptions,\n} from 'jsonwebtoken';\nimport jsonwebtoken from 'jsonwebtoken';\nimport type { Logger } from 'nightingale-logger';\nimport type { User, UserSanitized } from '../../types.d';\nimport type MongoUsersManager from '../MongoUsersManager';\n\ntype Verify = (\n token: string,\n secretOrPublicKey: Secret | GetPublicKeyOrSecret,\n options?: VerifyOptions,\n callback?: VerifyCallback,\n) => void;\n\nconst verifyPromisified = promisify<\n Parameters<Verify>[0],\n Parameters<Verify>[1],\n Parameters<Verify>[2],\n Parameters<VerifyCallback>[1]\n>(jsonwebtoken.verify as Verify);\n\nconst createDecodeJWT =\n (secretKey: string) =>\n async (token: string, jwtAudience: string): Promise<string | undefined> => {\n const result = await verifyPromisified(token, secretKey, {\n algorithms: ['HS512'],\n audience: jwtAudience,\n });\n return (result as any)?.connected as string | undefined;\n };\n\nexport type FindConnectedAndUser<U extends User> = (\n jwtAudience?: string,\n token?: string,\n) => Promise<[null | undefined | U['_id'], null | undefined | U]>;\n\nexport const createFindConnectedAndUser = <\n U extends User,\n USanitized extends UserSanitized,\n>(\n secretKey: string,\n usersManager: MongoUsersManager<U, USanitized>,\n logger: Logger,\n): FindConnectedAndUser<U> => {\n const decodeJwt = createDecodeJWT(secretKey);\n\n const findConnectedAndUser: FindConnectedAndUser<U> = async (\n jwtAudience,\n token,\n ) => {\n if (!token || !jwtAudience) return [null, null];\n\n let connected;\n try {\n connected = await decodeJwt(token, jwtAudience);\n } catch (err: unknown) {\n logger.debug('failed to verify authentification', { err });\n }\n\n if (connected == null) return [null, null];\n\n const user = await usersManager.findConnected(connected);\n\n return [connected, user];\n };\n\n return findConnectedAndUser;\n};\n","import type { MongoInsertType, MongoStore, Update } from 'liwi-mongo';\nimport type { User, Account, UserSanitized } from '../types.d';\n\nexport default class MongoUsersManager<\n U extends User = User,\n USanitized extends UserSanitized = UserSanitized,\n> {\n store: MongoStore<U>;\n\n constructor(store: MongoStore<U>) {\n this.store = store;\n }\n\n findConnected(connected: string): Promise<U | undefined> {\n return this.store.findByKey(connected);\n }\n\n insertOne(user: MongoInsertType<U>): Promise<any> {\n return this.store.insertOne(user);\n }\n\n replaceOne(user: U): Promise<any> {\n return this.store.replaceOne(user);\n }\n\n sanitize(user: U): USanitized {\n return this.sanitizeBaseUser(user) as USanitized;\n }\n\n findOneByAccountOrEmails({\n accountId,\n emails,\n provider,\n }: {\n accountId: string | number;\n emails?: string[];\n provider: string;\n }): Promise<U | undefined> {\n let query: any = {\n 'accounts.provider': provider,\n 'accounts.accountId': accountId,\n };\n\n if (emails && emails.length > 0) {\n query = {\n $or: [\n query,\n {\n emails: { $in: emails },\n },\n ],\n };\n }\n\n // eslint-disable-next-line @typescript-eslint/no-unsafe-argument\n return this.store.findOne(query);\n }\n\n updateAccount(user: U, account: Account): Promise<U> {\n const accountIndex = user.accounts.indexOf(account);\n if (accountIndex === -1) {\n throw new Error('Invalid account');\n }\n\n return this.store.partialUpdateOne(user, {\n $set: {\n [`accounts.${accountIndex}`]: account,\n },\n } as Update<U>);\n }\n\n protected sanitizeBaseUser(user: U): UserSanitized {\n return {\n _id: user._id,\n created: user.created,\n updated: user.updated,\n displayName: user.displayName,\n fullName: user.fullName,\n status: user.status,\n emails: user.emails,\n emailDomains: user.emailDomains,\n accounts: user.accounts.map((account: Account) => ({\n provider: account.provider,\n accountId: account.accountId,\n name: account.name,\n status: account.status,\n profile: account.profile,\n })),\n };\n }\n}\n","/* eslint-disable @typescript-eslint/no-unsafe-argument */\n/* eslint-disable @typescript-eslint/explicit-module-boundary-types */\nimport { fetch } from 'alp-node';\nimport type { Tokens } from '../authentification/types';\nimport type { AccountService, FullName } from './types';\n\nexport default class UserAccountGoogleService<ScopeKeys extends 'login'>\n implements AccountService<ScopeKeys>\n{\n scopeKeyToScope: Record<ScopeKeys, string>;\n\n constructor(scopeKeyToScope: Record<Exclude<'login', ScopeKeys>, string>) {\n this.scopeKeyToScope = {\n ...scopeKeyToScope,\n login: 'openid profile email',\n };\n }\n\n providerKey = 'google';\n\n getProfile(tokens: Tokens): Promise<any> {\n return fetch(\n `https://www.googleapis.com/oauth2/v1/userinfo?access_token=${tokens.accessToken}`,\n ).then((response) => response.json());\n }\n\n getId(profile: any): any {\n return profile.id;\n }\n\n getAccountName(profile: any): string | null | undefined {\n return profile.email;\n }\n\n getEmails(profile: any): string[] {\n const emails: string[] = [];\n\n if (profile.email) {\n emails.push(profile.email);\n }\n\n return emails;\n }\n\n getDisplayName(profile: any): string | null | undefined {\n return profile.name;\n }\n\n getFullName(profile: any): FullName {\n return {\n givenName: profile.given_name,\n familyName: profile.family_name,\n };\n }\n\n getDefaultScope(newScope: string): string[] {\n return this.getScope(undefined, newScope);\n }\n\n getScope(oldScope: string[] | undefined, newScope: string): string[] {\n return !oldScope\n ? newScope.split(' ')\n : [...oldScope, ...newScope.split(' ')].filter(\n (item, i, ar) => ar.indexOf(item) === i,\n );\n }\n}\n","/* eslint-disable @typescript-eslint/explicit-module-boundary-types */\nimport { fetch } from 'alp-node';\nimport type { Tokens } from '../authentification/types';\nimport type { AccountService, FullName } from './types';\n\n// https://api.slack.com/methods/users.identity\n\nexport default class UserAccountSlackService<ScopeKeys extends 'login'>\n implements AccountService<ScopeKeys>\n{\n scopeKeyToScope: Record<ScopeKeys, string>;\n\n constructor(scopeKeyToScope: Record<Exclude<'login', ScopeKeys>, string>) {\n this.scopeKeyToScope = {\n ...scopeKeyToScope,\n login: 'identity.basic identity.email identity.avatar',\n };\n }\n\n providerKey = 'google';\n\n getProfile(tokens: Tokens): Promise<any> {\n return fetch(\n `https://slack.com/api/users.identity?token=${tokens.accessToken}`,\n ).then((response) => response.json());\n }\n\n getId(profile: any): string | null {\n if (\n !profile ||\n !profile.team ||\n !profile.team.id ||\n !profile.user ||\n !profile.user.id\n ) {\n return null;\n }\n return `team:${profile.team.id as string};user:${\n profile.user.id as string\n }`;\n }\n\n getAccountName(profile: any): string | null | undefined {\n return profile.user.email;\n }\n\n getEmails(profile: any): string[] {\n return profile.user.email ? [profile.user.email] : [];\n }\n\n getDisplayName(profile: any): string | null | undefined {\n return profile.user.name;\n }\n\n getFullName(profile: any): FullName | null {\n return null;\n }\n\n getDefaultScope(newScope: string): string[] {\n return this.getScope(undefined, newScope);\n }\n\n getScope(oldScope: string[] | undefined, newScope: string): string[] {\n return !oldScope\n ? newScope.split(' ')\n : [...oldScope, ...newScope.split(' ')].filter(\n (item, i, ar) => ar.indexOf(item) === i,\n );\n }\n}\n","import type { NodeApplication } from 'alp-types';\nimport type { Option } from 'cookies';\nimport { Logger } from 'nightingale-logger';\nimport type { User } from '../types.d';\nimport type MongoUsersManager from './MongoUsersManager';\nimport { getTokenFromRequest } from './utils/cookies';\nimport { createFindConnectedAndUser } from './utils/createFindConnectedAndUser';\n\nconst logger = new Logger('alp:auth');\n\nexport const authSocketIO = <U extends User = User>(\n app: NodeApplication,\n usersManager: MongoUsersManager<U>,\n // eslint-disable-next-line @typescript-eslint/explicit-module-boundary-types\n io: any,\n options?: Pick<Option, Exclude<keyof Option, 'secure'>>,\n): void => {\n const findConnectedAndUser = createFindConnectedAndUser(\n app.config.get<Map<string, string>>('authentication').get('secretKey')!,\n usersManager,\n logger,\n );\n\n const users = new Map();\n io.users = users;\n\n io.use(async (socket: any, next: any) => {\n const handshakeData = socket.request;\n // eslint-disable-next-line @typescript-eslint/no-unsafe-argument\n const token = getTokenFromRequest(handshakeData);\n\n if (!token) return next();\n\n const [connected, user] = await findConnectedAndUser(\n // eslint-disable-next-line @typescript-eslint/no-unsafe-argument\n handshakeData.headers['user-agent'],\n token,\n );\n\n if (!connected || !user) return next();\n\n socket.user = user;\n users.set(socket.client.id, user);\n\n socket.on('disconnected', () => users.delete(socket.client.id));\n\n await next();\n });\n};\n","import type { IncomingMessage } from 'http';\nimport type { NodeConfig } from 'alp-types';\nimport { Logger } from 'nightingale-logger';\nimport type { User } from '../types.d';\nimport type MongoUsersManager from './MongoUsersManager';\nimport { getTokenFromRequest, COOKIE_NAME } from './utils/cookies';\nimport { createFindConnectedAndUser } from './utils/createFindConnectedAndUser';\n\nconst logger = new Logger('alp:auth');\n\nconst getTokenFromReq = (\n req: IncomingMessage & { cookies?: Record<string, string> },\n): string | undefined => {\n if (req.cookies) return req.cookies[COOKIE_NAME];\n return getTokenFromRequest(req);\n};\n\n/*\n * Not tested yet.\n * @internal\n */\nexport const createAuthApolloContext = <U extends User = User>(\n config: NodeConfig,\n usersManager: MongoUsersManager<U>,\n): any => {\n const findConnectedAndUser = createFindConnectedAndUser(\n config.get<Map<string, string>>('authentication').get('secretKey')!,\n usersManager,\n logger,\n );\n\n return async ({ req, connection }: { req: any; connection: any }) => {\n if (connection?.user) {\n return { user: connection.user };\n }\n\n if (!req) return null;\n\n // eslint-disable-next-line @typescript-eslint/no-unsafe-argument\n const token = getTokenFromReq(req);\n\n if (!token) return { user: undefined };\n\n const [, user] = await findConnectedAndUser(\n // eslint-disable-next-line @typescript-eslint/no-unsafe-argument\n req.headers['user-agent'],\n token,\n );\n\n return { user };\n };\n};\n","import type { IncomingMessage } from 'http';\nimport { promisify } from 'util';\nimport type { Context } from 'alp-node';\nimport type { ContextState, NodeApplication } from 'alp-types';\nimport jsonwebtoken from 'jsonwebtoken';\nimport { Logger } from 'nightingale-logger';\nimport type { User, UserSanitized } from '../types.d';\nimport type MongoUsersManager from './MongoUsersManager';\nimport type {\n AuthController as AuthControllerType,\n AuthHooks,\n} from './createAuthController';\nimport { createAuthController } from './createAuthController';\nimport type { AuthRoutes as AuthRoutesType } from './createRoutes';\nimport { createRoutes } from './createRoutes';\nimport type { Strategies } from './services/authentification/AuthenticationService';\nimport { AuthenticationService } from './services/authentification/AuthenticationService';\nimport type { AllowedStrategyKeys } from './services/authentification/types';\nimport UserAccountsService from './services/user/UserAccountsService';\nimport type { AccountService } from './services/user/types';\nimport { getTokenFromRequest, COOKIE_NAME } from './utils/cookies';\nimport { createFindConnectedAndUser } from './utils/createFindConnectedAndUser';\n\nexport { default as MongoUsersManager } from './MongoUsersManager';\nexport { default as UserAccountGoogleService } from './services/user/UserAccountGoogleService';\nexport { default as UserAccountSlackService } from './services/user/UserAccountSlackService';\nexport { authSocketIO } from './authSocketIO';\nexport { createAuthApolloContext } from './authApolloContext';\nexport { STATUSES } from './services/user/UserAccountsService';\n\ndeclare module 'alp-types' {\n // eslint-disable-next-line @typescript-eslint/no-shadow\n interface ContextState {\n connected: NonNullable<ContextState['user']>['_id'] | null | undefined;\n user: User | null | undefined;\n }\n\n interface ContextSanitizedState {\n connected:\n | NonNullable<ContextSanitizedState['user']>['_id']\n | null\n | undefined;\n user: UserSanitized | null | undefined;\n }\n\n interface BaseContext {\n setConnected: (\n connected: NonNullable<ContextState['user']>['_id'],\n user: NonNullable<ContextState['user']>,\n ) => Promise<void>;\n logout: () => void;\n }\n}\n\nconst logger = new Logger('alp:auth');\n\nconst signPromisified: any = promisify(jsonwebtoken.sign);\n\nexport type AuthController = AuthControllerType;\nexport type AuthRoutes = AuthRoutesType;\nexport { AuthenticationService } from './services/authentification/AuthenticationService';\n\nexport default function init<\n StrategyKeys extends AllowedStrategyKeys = 'google',\n U extends User = User,\n USanitized extends UserSanitized = UserSanitized,\n>({\n homeRouterKey,\n usersManager,\n strategies,\n defaultStrategy,\n strategyToService,\n authHooks,\n jwtAudience,\n}: {\n homeRouterKey?: string;\n usersManager: MongoUsersManager<U, USanitized>;\n strategies: Strategies<StrategyKeys>;\n defaultStrategy?: StrategyKeys;\n strategyToService: Record<StrategyKeys, AccountService<any>>;\n authHooks?: AuthHooks<StrategyKeys>;\n jwtAudience?: string;\n}) {\n // eslint-disable-next-line @typescript-eslint/explicit-module-boundary-types\n return (app: NodeApplication) => {\n const userAccountsService = new UserAccountsService(\n usersManager,\n strategyToService,\n );\n\n const authenticationService = new AuthenticationService(\n app.config,\n strategies,\n userAccountsService,\n );\n\n const controller = createAuthController({\n usersManager,\n authenticationService,\n homeRouterKey,\n defaultStrategy,\n authHooks,\n });\n\n app.context.setConnected = async function (\n this: Context,\n connected: NonNullable<ContextState['user']>['_id'],\n user: NonNullable<ContextState['user']>,\n ): Promise<void> {\n logger.debug('setConnected', { connected });\n if (!connected) {\n throw new Error('Illegal value for setConnected');\n }\n\n this.state.connected = connected;\n this.state.user = user;\n\n const token = await signPromisified(\n { connected, time: Date.now() },\n this.config\n .get<Map<string, unknown>>('authentication')\n .get('secretKey'),\n {\n algorithm: 'HS512',\n audience: jwtAudience || this.request.headers['user-agent'],\n expiresIn: '30 days',\n },\n );\n\n // eslint-disable-next-line @typescript-eslint/no-unsafe-argument\n this.cookies.set(COOKIE_NAME, token, {\n httpOnly: true,\n secure: this.config.get('allowHttps'),\n });\n };\n\n app.context.logout = function (this: Context): void {\n delete this.state.connected;\n delete this.state.user;\n this.cookies.set(COOKIE_NAME, '', { expires: new Date(1) });\n };\n\n const getConnectedAndUser = createFindConnectedAndUser(\n app.config\n .get<Map<string, unknown>>('authentication')\n .get('secretKey') as string,\n usersManager,\n logger,\n );\n\n return {\n routes: createRoutes(controller),\n\n getConnectedAndUserFromRequest: (\n req: IncomingMessage,\n ): ReturnType<typeof getConnectedAndUser> => {\n const token = getTokenFromRequest(req);\n return getConnectedAndUser(\n jwtAudience || req.headers['user-agent'],\n token,\n );\n },\n getConnectedAndUser,\n\n middleware: async <T>(\n ctx: Context,\n next: () => T | Promise<T>,\n ): Promise<T> => {\n const token = ctx.cookies.get(COOKIE_NAME);\n const userAgent = ctx.request.headers['user-agent'];\n logger.debug('middleware', { token });\n\n const setState = (\n connected: U['_id'] | null | undefined,\n user: U | null | undefined,\n ): void => {\n ctx.state.connected = connected;\n ctx.state.user = user;\n ctx.sanitizedState.connected = connected;\n ctx.sanitizedState.user = user && usersManager.sanitize(user);\n };\n\n const [connected, user] = await getConnectedAndUser(\n jwtAudience || userAgent,\n token,\n );\n logger.debug('middleware', { connected });\n\n if (connected == null || user == null) {\n if (token) ctx.cookies.set(COOKIE_NAME, '', { expires: new Date(1) });\n setState(null, null);\n return next();\n }\n\n setState(connected, user);\n return next();\n },\n };\n };\n}\n"],"names":["createAuthController","usersManager","authenticationService","homeRouterKey","defaultStrategy","authHooks","login","ctx","strategy","namedParam","Error","params","paramsForLogin","redirectAuthUrl","addScope","state","connected","redirectTo","scopeKey","loginResponse","assert","connectedUser","accessResponse","afterLoginSuccess","afterScopeUpdate","keyPath","store","setConnected","logout","createRoutes","controller","segment","add","defaultRoute","randomBytesPromisified","promisify","randomBytes","randomHex","size","buffer","toString","logger","Logger","AuthenticationService","EventEmitter","constructor","config","strategies","userAccountsService","generateAuthUrl","debug","strategyInstance","type","oauth2","authorizationCode","authorizeURL","getTokens","options","result","getToken","code","redirect_uri","redirectUri","accessToken","access_token","refreshToken","refresh_token","tokenType","token_type","expiresIn","expires_in","expireDate","d","Date","setTime","getTime","idToken","id_token","tokensParam","token","create","refresh","tokens","host","get","request","urlGenerator","user","accountId","scope","getScope","cookies","set","JSON","stringify","isLoginAccess","maxAge","httpOnly","secure","access_type","redirect","isConnected","hooks","query","error","status","expose","cookieName","cookie","expires","parse","findOrCreateFromStrategy","account","update","refreshAccountTokens","tokenExpireDate","now","Promise","resolve","provider","then","updateAccount","STATUSES","VALIDATED","DELETED","UserAccountsService","strategyToService","userId","_id","service","newScope","scopeKeyToScope","accounts","find","join","subservice","profile","getProfile","getId","subservices","includes","push","replaceOne","emails","getEmails","findOneByAccountOrEmails","providerKey","info","Object","assign","displayName","getDisplayName","fullName","getFullName","name","getAccountName","userEmails","forEach","email","emailDomains","reduce","domains","split","Set","insertOne","COOKIE_NAME","getTokenFromRequest","req","Cookies","verifyPromisified","jsonwebtoken","verify","createDecodeJWT","secretKey","jwtAudience","algorithms","audience","createFindConnectedAndUser","decodeJwt","err","findConnected","MongoUsersManager","findByKey","sanitize","sanitizeBaseUser","length","$or","$in","findOne","accountIndex","indexOf","partialUpdateOne","$set","created","updated","map","UserAccountGoogleService","fetch","response","json","id","givenName","given_name","familyName","family_name","getDefaultScope","undefined","oldScope","filter","item","i","ar","UserAccountSlackService","team","authSocketIO","app","io","findConnectedAndUser","users","Map","use","socket","next","handshakeData","headers","client","on","delete","getTokenFromReq","createAuthApolloContext","connection","signPromisified","sign","init","context","time","algorithm","getConnectedAndUser","routes","getConnectedAndUserFromRequest","middleware","userAgent","setState","sanitizedState"],"mappings":";;;;;;;;;AA8CO,SAASA,oBAAT,CAIL;AACAC,EAAAA,YADA;AAEAC,EAAAA,qBAFA;AAGAC,EAAAA,aAAa,GAAG,GAHhB;AAIAC,EAAAA,eAJA;AAKAC,EAAAA,SAAS,GAAG;AALZ,CAJK,EAUqE;AAC1E,SAAO;AACL,UAAMC,KAAN,CAAYC,GAAZ,EAAyC;AACvC,YAAMC,QAAsB,GAAID,GAAG,CAACE,UAAJ,CAAe,UAAf,KAC9BL,eADF;AAEA,UAAI,CAACI,QAAL,EAAe,MAAM,IAAIE,KAAJ,CAAU,kBAAV,CAAN;AACf,YAAMC,MAAM,GACTN,SAAS,CAACO,cAAV,KACE,MAAMP,SAAS,CAACO,cAAV,CAAyBJ,QAAzB,EAAmCD,GAAnC,CADR,CAAD,IAEA,EAHF;AAIA,YAAML,qBAAqB,CAACW,eAAtB,CAAsCN,GAAtC,EAA2CC,QAA3C,EAAqD,EAArD,EAAyDG,MAAzD,CAAN;AACD,KAVI;;AAYL,UAAMG,QAAN,CAAeP,GAAf,EAA4C;AAC1C,UAAIA,GAAG,CAACQ,KAAJ,CAAUC,SAAd,EAAyB;AACvB,cAAMT,GAAG,CAACU,UAAJ,CAAed,aAAf,CAAN;AACA;AACD;;AAED,YAAMK,QAAsB,GAAID,GAAG,CAACE,UAAJ,CAAe,UAAf,KAC9BL,eADF;AAEA,UAAI,CAACI,QAAL,EAAe,MAAM,IAAIE,KAAJ,CAAU,kBAAV,CAAN;AACf,YAAMQ,QAAQ,GAAGX,GAAG,CAACE,UAAJ,CAAe,UAAf,CAAjB;AACA,UAAI,CAACS,QAAL,EAAe,MAAM,IAAIR,KAAJ,CAAU,eAAV,CAAN;AACf,YAAMR,qBAAqB,CAACW,eAAtB,CAAsCN,GAAtC,EAA2CC,QAA3C,EAAqD;AAAEU,QAAAA;AAAF,OAArD,CAAN;AACD,KAxBI;;AA0BL,UAAMC,aAAN,CAAoBZ,GAApB,EAAiD;AAC/C,UAAIA,GAAG,CAACQ,KAAJ,CAAUC,SAAd,EAAyB;AACvB,cAAMT,GAAG,CAACU,UAAJ,CAAed,aAAf,CAAN;AACA;AACD;;AAED,YAAMK,QAAsB,GAAGD,GAAG,CAACE,UAAJ,CAAe,UAAf,CAA/B;AACAF,MAAAA,GAAG,CAACa,MAAJ,CAAWZ,QAAX;AAEA,YAAMa,aAAa,GAAG,MAAMnB,qBAAqB,CAACoB,cAAtB,CAC1Bf,GAD0B,EAE1BC,QAF0B,EAG1BD,GAAG,CAACQ,KAAJ,CAAUC,SAHgB,EAI1B;AACEO,QAAAA,iBAAiB,EAAElB,SAAS,CAACkB,iBAD/B;AAEEC,QAAAA,gBAAgB,EAAEnB,SAAS,CAACmB;AAF9B,OAJ0B,CAA5B;AASA,YAAMC,OAAO,GAAGxB,YAAY,CAACyB,KAAb,CAAmBD,OAAnC;AACA,YAAMlB,GAAG,CAACoB,YAAJ,CAAiBN,aAAa,CAACI,OAAD,CAA9B,EAAyCJ,aAAzC,CAAN;AACA,YAAMd,GAAG,CAACU,UAAJ,CAAed,aAAf,CAAN;AACD,KA/CI;;AAiDL,UAAMyB,MAAN,CAAarB,GAAb,EAA0C;AACxCA,MAAAA,GAAG,CAACqB,MAAJ;AACA,YAAMrB,GAAG,CAACU,UAAJ,CAAed,aAAf,CAAN;AACD;;AApDI,GAAP;AAsDD;;ACvGM,MAAM0B,YAAY,GAAIC,UAAD,KAA6C;AACvExB,EAAAA,KAAK,EAAE,CACL,mBADK,EAEJyB,OAAD,IAAkB;AAChBA,IAAAA,OAAO,CAACC,GAAR,CAAY,WAAZ,EAAyBF,UAAU,CAACX,aAApC,EAAmD,eAAnD;AACAY,IAAAA,OAAO,CAACE,YAAR,CAAqBH,UAAU,CAACxB,KAAhC,EAAuC,OAAvC;AACD,GALI,CADgE;AAQvEQ,EAAAA,QAAQ,EAAE,CAAC,qCAAD,EAAwCgB,UAAU,CAAChB,QAAnD,CAR6D;AASvEc,EAAAA,MAAM,EAAE,CAAC,SAAD,EAAYE,UAAU,CAACF,MAAvB;AAT+D,CAA7C,CAArB;;ACLP,MAAMM,sBAAsB,GAAGC,SAAS,CAACC,WAAD,CAAxC;AAOO,eAAeC,SAAf,CAAyBC,IAAzB,EAAwD;AAC7D,QAAMC,MAAM,GAAG,MAAML,sBAAsB,CAACI,IAAD,CAA3C;AACA,SAAOC,MAAM,CAACC,QAAP,CAAgB,KAAhB,CAAP;AACD;;ACbD;AAcA,MAAMC,QAAM,GAAG,IAAIC,MAAJ,CAAW,yBAAX,CAAf;AA6CO,MAAMC,qBAAN,SAIGC,YAJH,CAIgB;AAOrBC,EAAAA,WAAW,CACTC,MADS,EAETC,UAFS,EAGTC,mBAHS,EAIT;AACA;AACA,SAAKF,MAAL,GAAcA,MAAd;AACA,SAAKC,UAAL,GAAkBA,UAAlB;AACA,SAAKC,mBAAL,GAA2BA,mBAA3B;AACD;;AAEDC,EAAAA,eAAe,CAAyBzC,QAAzB,EAAsCG,MAAtC,EAA2D;AACxE8B,IAAAA,QAAM,CAACS,KAAP,CAAa,iBAAb,EAAgC;AAAE1C,MAAAA,QAAF;AAAYG,MAAAA;AAAZ,KAAhC;AACA,UAAMwC,gBAAgB,GAAG,KAAKJ,UAAL,CAAgBvC,QAAhB,CAAzB;;AACA,YAAQ2C,gBAAgB,CAACC,IAAzB;AACE,WAAK,QAAL;AACE,eAAOD,gBAAgB,CAACE,MAAjB,CAAwBC,iBAAxB,CAA0CC,YAA1C,CAAuD5C,MAAvD,CAAP;;AACF;AACE,cAAM,IAAID,KAAJ,CAAU,kBAAV,CAAN;AAJJ;AAMD;;AAEc,QAAT8C,SAAS,CACbhD,QADa,EAEbiD,OAFa,EAGI;AACjBhB,IAAAA,QAAM,CAACS,KAAP,CAAa,WAAb,EAA0B;AAAE1C,MAAAA,QAAF;AAAYiD,MAAAA;AAAZ,KAA1B;AACA,UAAMN,gBAAgB,GAAG,KAAKJ,UAAL,CAAgBvC,QAAhB,CAAzB;;AACA,YAAQ2C,gBAAgB,CAACC,IAAzB;AACE,WAAK,QAAL;AAAe;AACb,gBAAMM,MAAM,GAAG,MAAMP,gBAAgB,CAACE,MAAjB,CAAwBC,iBAAxB,CAA0CK,QAA1C,CACnB;AACEC,YAAAA,IAAI,EAAEH,OAAO,CAACG,IADhB;AAEEC,YAAAA,YAAY,EAAEJ,OAAO,CAACK;AAFxB,WADmB,CAArB;AAMA,cAAI,CAACJ,MAAL,EAAa,OAAOA,MAAP;AACb,iBAAO;AACLK,YAAAA,WAAW,EAAEL,MAAM,CAACM,YADf;AAELC,YAAAA,YAAY,EAAEP,MAAM,CAACQ,aAFhB;AAGLC,YAAAA,SAAS,EAAET,MAAM,CAACU,UAHb;AAILC,YAAAA,SAAS,EAAEX,MAAM,CAACY,UAJb;AAKLC,YAAAA,UAAU,EAAE,CAAC,MAAM;AACjB,oBAAMC,CAAC,GAAG,IAAIC,IAAJ,EAAV;AACAD,cAAAA,CAAC,CAACE,OAAF,CAAUF,CAAC,CAACG,OAAF,KAAcjB,MAAM,CAACY,UAAP,GAAoB,IAA5C;AACA,qBAAOE,CAAP;AACD,aAJW,GALP;AAULI,YAAAA,OAAO,EAAElB,MAAM,CAACmB;AAVX,WAAP,CARa;AAqBd;;AAED;AACE,cAAM,IAAInE,KAAJ,CAAU,iBAAV,CAAN;AAzBJ;AA2BD;;AAEiB,QAAZuD,YAAY,CAChBzD,QADgB,EAEhBsE,WAFgB,EAGC;AACjBrC,IAAAA,QAAM,CAACS,KAAP,CAAa,cAAb,EAA6B;AAAE1C,MAAAA;AAAF,KAA7B;;AACA,QAAI,CAACsE,WAAW,CAACb,YAAjB,EAA+B;AAC7B,YAAM,IAAIvD,KAAJ,CAAU,uBAAV,CAAN;AACD;;AACD,UAAMyC,gBAAgB,GAAG,KAAKJ,UAAL,CAAgBvC,QAAhB,CAAzB;;AACA,YAAQ2C,gBAAgB,CAACC,IAAzB;AACE,WAAK,QAAL;AAAe;AACb,gBAAM2B,KAAK,GAAG5B,gBAAgB,CAACE,MAAjB,CAAwBU,WAAxB,CAAoCiB,MAApC,CAA2C;AACvDd,YAAAA,aAAa,EAAEY,WAAW,CAACb;AAD4B,WAA3C,CAAd;AAGA,gBAAMP,MAAM,GAAG,MAAMqB,KAAK,CAACE,OAAN,EAArB;AACA,gBAAMC,MAAM,GAAGxB,MAAM,CAACqB,KAAtB;AACA,iBAAO;AACLhB,YAAAA,WAAW,EAAEmB,MAAM,CAAClB,YADf;AAELG,YAAAA,SAAS,EAAEe,MAAM,CAACd,UAFb;AAGLC,YAAAA,SAAS,EAAEa,MAAM,CAACZ,UAHb;AAILC,YAAAA,UAAU,EAAE,CAAC,MAAM;AACjB,oBAAMC,CAAC,GAAG,IAAIC,IAAJ,EAAV;AACAD,cAAAA,CAAC,CAACE,OAAF,CAAUF,CAAC,CAACG,OAAF,KAAcO,MAAM,CAACZ,UAAP,GAAoB,IAA5C;AACA,qBAAOE,CAAP;AACD,aAJW,GAJP;AASLI,YAAAA,OAAO,EAAEM,MAAM,CAACL;AATX,WAAP;AAWD;;AAED;AACE,cAAM,IAAInE,KAAJ,CAAU,iBAAV,CAAN;AArBJ;AAuBD;;AAEDoD,EAAAA,WAAW,CAACvD,GAAD,EAAeC,QAAf,EAAyC;AAClD,UAAM2E,IAAI,GAAI,OAAM,KAAKrC,MAAL,CAAYsC,GAAZ,CAAgB,YAAhB,IAAgC,GAAhC,GAAsC,EAAG,MAC3D7E,GAAG,CAAC8E,OAAJ,CAAYF,IACb,EAFD;AAGA,WAAQ,GAAEA,IAAK,GAAE5E,GAAG,CAAC+E,YAAJ,CAAiB,eAAjB,EAAkC;AAAE9E,MAAAA;AAAF,KAAlC,CAAgD,EAAjE;AACD;;AAEoB,QAAfK,eAAe,CACnBN,GADmB,EAEnBC,QAFmB,EAGnB;AACEyD,IAAAA,YADF;AAEE/C,IAAAA,QAFF;AAGEqE,IAAAA,IAHF;AAIEC,IAAAA;AAJF,GAHmB,EAcnB7E,MAdmB,EAeJ;AACf8B,IAAAA,QAAM,CAACS,KAAP,CAAa,iBAAb,EAAgC;AAAE1C,MAAAA,QAAF;AAAYU,MAAAA,QAAZ;AAAsB+C,MAAAA;AAAtB,KAAhC;AACA,UAAMlD,KAAK,GAAG,MAAMsB,SAAS,CAAC,CAAD,CAA7B;AAEA,UAAMoD,KAAK,GAAG,KAAKzC,mBAAL,CAAyB0C,QAAzB,CACZlF,QADY,EAEZU,QAAQ,IAAI,OAFA,EAGZqE,IAHY,EAIZC,SAJY,CAAd;;AAOA,QAAI,CAACC,KAAL,EAAY;AACV,YAAM,IAAI/E,KAAJ,CAAU,qBAAV,CAAN;AACD;;AAEDH,IAAAA,GAAG,CAACoF,OAAJ,CAAYC,GAAZ,CACG,QAAOpF,QAAS,IAAGO,KAAM,EAD5B,EAEE8E,IAAI,CAACC,SAAL,CAAe;AACb5E,MAAAA,QADa;AAEbuE,MAAAA,KAFa;AAGbM,MAAAA,aAAa,EAjBK,CAAC7E,QAAD,IAAaA,QAAQ,KAAK;AAc/B,KAAf,CAFF,EAOE;AACE8E,MAAAA,MAAM,QADR;AAEEC,MAAAA,QAAQ,EAAE,IAFZ;AAGEC,MAAAA,MAAM,EAAE,KAAKpD,MAAL,CAAYsC,GAAZ,CAAgB,YAAhB;AAHV,KAPF;AAaA,UAAMtB,WAAW,GAAG,KAAKb,eAAL,CAAqBzC,QAArB,EAA+B;AACjDqD,MAAAA,YAAY,EAAE,KAAKC,WAAL,CAAiBvD,GAAjB,EAAsBC,QAAtB,CADmC;AAEjDiF,MAAAA,KAFiD;AAGjD1E,MAAAA,KAHiD;AAIjDoF,MAAAA,WAAW,EAAElC,YAAY,GAAG,SAAH,GAAe,QAJS;AAKjD,SAAGtD;AAL8C,KAA/B,CAApB;AAQA,WAAOJ,GAAG,CAAC6F,QAAJ,CAAatC,WAAb,CAAP;AACD;;AAEmB,QAAdxC,cAAc,CAClBf,GADkB,EAElBC,QAFkB,EAGlB6F,WAHkB,EAIlBC,KAJkB,EAKN;AACZ,QAAI/F,GAAG,CAACgG,KAAJ,CAAUC,KAAd,EAAqB;AACnB,YAAMA,KAAU,GAAG,IAAI9F,KAAJ,CAAUH,GAAG,CAACgG,KAAJ,CAAUC,KAApB,CAAnB;AACAA,MAAAA,KAAK,CAACC,MAAN,GAAe,GAAf;AACAD,MAAAA,KAAK,CAACE,MAAN,GAAe,IAAf;AACA,YAAMF,KAAN;AACD;;AAED,UAAM5C,IAAI,GAAGrD,GAAG,CAACgG,KAAJ,CAAU3C,IAAvB;AACA,UAAM7C,KAAK,GAAGR,GAAG,CAACgG,KAAJ,CAAUxF,KAAxB;AACA,UAAM4F,UAAU,GAAI,QAAOnG,QAAS,IAAGO,KAAgB,EAAvD;AACA,QAAI6F,MAAM,GAAGrG,GAAG,CAACoF,OAAJ,CAAYP,GAAZ,CAAgBuB,UAAhB,CAAb;AACApG,IAAAA,GAAG,CAACoF,OAAJ,CAAYC,GAAZ,CAAgBe,UAAhB,EAA4B,EAA5B,EAAgC;AAAEE,MAAAA,OAAO,EAAE,IAAIpC,IAAJ,CAAS,CAAT;AAAX,KAAhC;;AACA,QAAI,CAACmC,MAAL,EAAa;AACX,YAAM,IAAIlG,KAAJ,CAAU,0BAAV,CAAN;AACD;;AAEDkG,IAAAA,MAAM,GAAGf,IAAI,CAACiB,KAAL,CAAWF,MAAX,CAAT;;AACA,QAAI,CAACA,MAAD,IAAW,CAACA,MAAM,CAACnB,KAAvB,EAA8B;AAC5B,YAAM,IAAI/E,KAAJ,CAAU,yBAAV,CAAN;AACD;;AAED,QAAI,CAACkG,MAAM,CAACb,aAAZ,EAA2B;AACzB,UAAI,CAACM,WAAL,EAAkB;AAChB,cAAM,IAAI3F,KAAJ,CAAU,uBAAV,CAAN;AACD;AACF;;AAED,UAAMwE,MAAc,GAAG,MAAM,KAAK1B,SAAL,CAAehD,QAAf,EAAyB;AACpDoD,MAAAA,IADoD;AAEpDE,MAAAA,WAAW,EAAE,KAAKA,WAAL,CAAiBvD,GAAjB,EAAsBC,QAAtB;AAFuC,KAAzB,CAA7B;;AAKA,QAAIoG,MAAM,CAACb,aAAX,EAA0B;AACxB,YAAMR,IAAI,GAAG,MAAM,KAAKvC,mBAAL,CAAyB+D,wBAAzB,CACjBvG,QADiB,EAEjB0E,MAFiB,EAGjB0B,MAAM,CAACnB,KAHU,EAIjBmB,MAAM,CAAC1F,QAJU,CAAnB;;AAOA,UAAIoF,KAAK,CAAC/E,iBAAV,EAA6B;AAC3B,cAAM+E,KAAK,CAAC/E,iBAAN,CAAwBf,QAAxB,EAAkC+E,IAAlC,CAAN;AACD;;AAED,aAAOA,IAAP;AACD;;AAED,UAAMlE,aAAa,GAAGd,GAAG,CAACQ,KAAJ,CAAUwE,IAAhC;AACA,UAAM;AAAEyB,MAAAA,OAAF;AAAWzB,MAAAA;AAAX,QAAoB,MAAM,KAAKvC,mBAAL,CAAyBiE,MAAzB,CAC9B5F,aAD8B,EAE9Bb,QAF8B,EAG9B0E,MAH8B,EAI9B0B,MAAM,CAACnB,KAJuB,EAK9BmB,MAAM,CAAC1F,QALuB,CAAhC;;AAQA,QAAIoF,KAAK,CAAC9E,gBAAV,EAA4B;AAC1B,YAAM8E,KAAK,CAAC9E,gBAAN,CAAuBhB,QAAvB,EAAiCoG,MAAM,CAAC1F,QAAxC,EAAkD8F,OAAlD,EAA2DzB,IAA3D,CAAN;AACD;;AAED,WAAOlE,aAAP;AACD;;AAED6F,EAAAA,oBAAoB,CAAC3B,IAAD,EAAUyB,OAAV,EAA8C;AAChE,QACEA,OAAO,CAACG,eAAR,IACAH,OAAO,CAACG,eAAR,CAAwBxC,OAAxB,KAAoCF,IAAI,CAAC2C,GAAL,EAFtC,EAGE;AACA,aAAOC,OAAO,CAACC,OAAR,CAAgB,KAAhB,CAAP;AACD;;AACD,WAAO,KAAKrD,YAAL,CAAkB+C,OAAO,CAACO,QAA1B,EAAoD;AACzD;AACAtD,MAAAA,YAAY,EAAE+C,OAAO,CAAC/C;AAFmC,KAApD,EAGJuD,IAHI,CAGEtC,MAAD,IAAoB;AAC1B,UAAI,CAACA,MAAL,EAAa;AACX;AACA,eAAO,KAAP;AACD;;AACD8B,MAAAA,OAAO,CAACjD,WAAR,GAAsBmB,MAAM,CAACnB,WAA7B;AACAiD,MAAAA,OAAO,CAACG,eAAR,GAA0BjC,MAAM,CAACX,UAAjC;AACA,aAAO,KAAKvB,mBAAL,CACJyE,aADI,CACUlC,IADV,EACgByB,OADhB,EAEJQ,IAFI,CAEC,MAAM,IAFP,CAAP;AAGD,KAbM,CAAP;AAcD;;AAzPoB;;AC/DvB;AAQA,MAAM/E,QAAM,GAAG,IAAIC,MAAJ,CAAW,uBAAX,CAAf;MAEagF,QAAQ,GAAG;AACtBC,EAAAA,SAAS,EAAE,WADW;AAEtBC,EAAAA,OAAO,EAAE;AAFa;AAKT,MAAMC,mBAAN,SAILjF,YAJK,CAIQ;AAKrBC,EAAAA,WAAW,CACT5C,YADS,EAET6H,iBAFS,EAGT;AACA;AACA,SAAK7H,YAAL,GAAoBA,YAApB;AACA,SAAK6H,iBAAL,GAAyBA,iBAAzB;AACD;;AAEDpC,EAAAA,QAAQ,CACNlF,QADM,EAENU,QAFM,EAGNqE,IAHM,EAINC,SAJM,EAKE;AACR/C,IAAAA,QAAM,CAACS,KAAP,CAAa,UAAb,EAAyB;AAAE1C,MAAAA,QAAF;AAAYuH,MAAAA,MAAM,EAAExC,IAAI,EAAEyC;AAA1B,KAAzB;AACA,UAAMC,OAAO,GAAG,KAAKH,iBAAL,CAAuBtH,QAAvB,CAAhB;;AACA,QAAI,CAACyH,OAAL,EAAc;AACZ,YAAM,IAAIvH,KAAJ,CAAU,wBAAV,CAAN;AACD;;AAED,UAAMwH,QAAQ,GAAGD,OAAO,CAACE,eAAR,CAAwBjH,QAAxB,CAAjB;;AACA,QAAI,CAACqE,IAAD,IAAS,CAACC,SAAd,EAAyB;AACvB,aAAO0C,QAAP;AACD;;AACD,UAAMlB,OAAO,GAAGzB,IAAI,CAAC6C,QAAL,CAAcC,IAAd,CACbrB,OAAD,IACEA,OAAO,CAACO,QAAR,KAAqB/G,QAArB,IAAiCwG,OAAO,CAACxB,SAAR,KAAsBA,SAF3C,CAAhB;;AAKA,QAAI,CAACwB,OAAL,EAAc;AACZ,YAAM,IAAItG,KAAJ,CAAU,oCAAV,CAAN;AACD;;AACD,WAAOuH,OAAO,CAACvC,QAAR,CAAiBsB,OAAO,CAACvB,KAAzB,EAAgCyC,QAAhC,EAA0CI,IAA1C,CAA+C,GAA/C,CAAP;AACD;;AAEW,QAANrB,MAAM,CACV1B,IADU,EAEV/E,QAFU,EAGV0E,MAHU,EAIVO,KAJU,EAKV8C,UALU,EAM4C;AACtD,UAAMN,OAAO,GAAG,KAAKH,iBAAL,CAAuBtH,QAAvB,CAAhB;AACA,UAAMgI,OAAO,GAAG,MAAMP,OAAO,CAACQ,UAAR,CAAmBvD,MAAnB,CAAtB;AACA,UAAMM,SAAS,GAAGyC,OAAO,CAACS,KAAR,CAAcF,OAAd,CAAlB;AACA,UAAMxB,OAAO,GAAGzB,IAAI,CAAC6C,QAAL,CAAcC,IAAd,CACbrB,OAAD,IACEA,OAAO,CAACO,QAAR,KAAqB/G,QAArB,IAAiCwG,OAAO,CAACxB,SAAR,KAAsBA,SAF3C,CAAhB;;AAIA,QAAI,CAACwB,OAAL,EAAc;AACZ;AACA;AACA,YAAM,IAAItG,KAAJ,CAAU,oCAAV,CAAN;AACD;;AACDsG,IAAAA,OAAO,CAACP,MAAR,GAAiB,OAAjB;AACAO,IAAAA,OAAO,CAACjD,WAAR,GAAsBmB,MAAM,CAACnB,WAA7B;;AACA,QAAImB,MAAM,CAACjB,YAAX,EAAyB;AACvB+C,MAAAA,OAAO,CAAC/C,YAAR,GAAuBiB,MAAM,CAACjB,YAA9B;AACD;;AACD,QAAIiB,MAAM,CAACX,UAAX,EAAuB;AACrByC,MAAAA,OAAO,CAACG,eAAR,GAA0BjC,MAAM,CAACX,UAAjC;AACD;;AACDyC,IAAAA,OAAO,CAACvB,KAAR,GAAgBwC,OAAO,CAACvC,QAAR,CAAiBsB,OAAO,CAACvB,KAAzB,EAAgCA,KAAhC,CAAhB;AACAuB,IAAAA,OAAO,CAAC2B,WAAR,GAAsB3B,OAAO,CAAC2B,WAAR,IAAuB,EAA7C;;AACA,QAAIJ,UAAU,IAAI,CAACvB,OAAO,CAAC2B,WAAR,CAAoBC,QAApB,CAA6BL,UAA7B,CAAnB,EAA6D;AAC3DvB,MAAAA,OAAO,CAAC2B,WAAR,CAAoBE,IAApB,CAAyBN,UAAzB;AACD;;AAED,UAAM,KAAKtI,YAAL,CAAkB6I,UAAlB,CAA6BvD,IAA7B,CAAN;AACA,WAAO;AAAEA,MAAAA,IAAF;AAAQyB,MAAAA;AAAR,KAAP;AACD;;AAE6B,QAAxBD,wBAAwB,CAC5BvG,QAD4B,EAE5B0E,MAF4B,EAG5BO,KAH4B,EAI5B8C,UAJ4B,EAKhB;AACZ,UAAMN,OAAO,GAAG,KAAKH,iBAAL,CAAuBtH,QAAvB,CAAhB;AACA,QAAI,CAACyH,OAAL,EAAc,MAAM,IAAIvH,KAAJ,CAAU,wBAAV,CAAN;AAEd,UAAM8H,OAAO,GAAG,MAAMP,OAAO,CAACQ,UAAR,CAAmBvD,MAAnB,CAAtB;AACA,UAAMM,SAAS,GAAGyC,OAAO,CAACS,KAAR,CAAcF,OAAd,CAAlB;AACA,QAAI,CAAChD,SAAL,EAAgB,MAAM,IAAI9E,KAAJ,CAAU,8BAAV,CAAN;AAEhB,UAAMqI,MAAM,GAAGd,OAAO,CAACe,SAAR,CAAkBR,OAAlB,CAAf;AAEA,QAAIjD,IAA4B,GAC9B,MAAM,KAAKtF,YAAL,CAAkBgJ,wBAAlB,CAA2C;AAC/C1B,MAAAA,QAAQ,EAAEU,OAAO,CAACiB,WAD6B;AAE/C1D,MAAAA,SAF+C;AAG/CuD,MAAAA;AAH+C,KAA3C,CADR;AAOAtG,IAAAA,QAAM,CAAC0G,IAAP,CAAY,CAAC5D,IAAD,GAAQ,aAAR,GAAwB,eAApC,EAAqD;AAAEwD,MAAAA,MAAF;AAAUxD,MAAAA;AAAV,KAArD;;AAEA,QAAI,CAACA,IAAL,EAAW;AACTA,MAAAA,IAAI,GAAG,EAAP;AACD;;AAED6D,IAAAA,MAAM,CAACC,MAAP,CAAc9D,IAAd,EAAoB;AAClB+D,MAAAA,WAAW,EAAErB,OAAO,CAACsB,cAAR,CAAuBf,OAAvB,CADK;AAElBgB,MAAAA,QAAQ,EAAEvB,OAAO,CAACwB,WAAR,CAAoBjB,OAApB,CAFQ;AAGlB/B,MAAAA,MAAM,EAAEiB,QAAQ,CAACC;AAHC,KAApB;AAMA,QAAI,CAACpC,IAAI,CAAC6C,QAAV,EAAoB7C,IAAI,CAAC6C,QAAL,GAAgB,EAAhB;AAEpB,QAAIpB,OAAqC,GAAGzB,IAAI,CAAC6C,QAAL,CAAcC,IAAd,CACzCrB,OAAD,IACEA,OAAO,CAACO,QAAR,KAAqB/G,QAArB,IAAiCwG,OAAO,CAACxB,SAAR,KAAsBA,SAFf,CAA5C;;AAKA,QAAI,CAACwB,OAAL,EAAc;AACZA,MAAAA,OAAO,GAAG;AAAEO,QAAAA,QAAQ,EAAE/G,QAAZ;AAAsBgF,QAAAA;AAAtB,OAAV,CADY;;AAGZD,MAAAA,IAAI,CAAC6C,QAAL,CAAcS,IAAd,CAAmB7B,OAAnB;AACD;;AAEDA,IAAAA,OAAO,CAAC0C,IAAR,GAAezB,OAAO,CAAC0B,cAAR,CAAuBnB,OAAvB,CAAf;AACAxB,IAAAA,OAAO,CAACP,MAAR,GAAiB,OAAjB;AACAO,IAAAA,OAAO,CAACwB,OAAR,GAAkBA,OAAlB;AACAxB,IAAAA,OAAO,CAACjD,WAAR,GAAsBmB,MAAM,CAACnB,WAA7B;;AACA,QAAImB,MAAM,CAACjB,YAAX,EAAyB;AACvB+C,MAAAA,OAAO,CAAC/C,YAAR,GAAuBiB,MAAM,CAACjB,YAA9B;AACD;;AACD,QAAIiB,MAAM,CAACX,UAAX,EAAuB;AACrByC,MAAAA,OAAO,CAACG,eAAR,GAA0BjC,MAAM,CAACX,UAAjC;AACD;;AACDyC,IAAAA,OAAO,CAACvB,KAAR,GAAgBwC,OAAO,CAACvC,QAAR,CAAiBsB,OAAO,CAACvB,KAAzB,EAAgCA,KAAhC,CAAhB;AAEA,QAAI,CAACuB,OAAO,CAAC2B,WAAb,EAA0B3B,OAAO,CAAC2B,WAAR,GAAsB,EAAtB;;AAC1B,QAAIJ,UAAU,IAAI,CAACvB,OAAO,CAAC2B,WAAR,CAAoBC,QAApB,CAA6BL,UAA7B,CAAnB,EAA6D;AAC3DvB,MAAAA,OAAO,CAAC2B,WAAR,CAAoBE,IAApB,CAAyBN,UAAzB;AACD;;AAED,QAAI,CAAChD,IAAI,CAACwD,MAAV,EAAkBxD,IAAI,CAACwD,MAAL,GAAc,EAAd;AAClB,UAAMa,UAAU,GAAGrE,IAAI,CAACwD,MAAxB;AACAA,IAAAA,MAAM,CAACc,OAAP,CAAgBC,KAAD,IAAmB;AAChC,UAAI,CAACF,UAAU,CAAChB,QAAX,CAAoBkB,KAApB,CAAL,EAAiC;AAC/BF,QAAAA,UAAU,CAACf,IAAX,CAAgBiB,KAAhB;AACD;AACF,KAJD;AAMAvE,IAAAA,IAAI,CAACwE,YAAL,GAAoB;AAElB,OAAGxE,IAAI,CAACwD,MAAL,CAAYiB,MAAZ,CACD,CAACC,OAAD,EAAuBH,KAAvB,KACEG,OAAO,CAACjI,GAAR,CAAY8H,KAAK,CAACI,KAAN,CAAY,GAAZ,EAAiB,CAAjB,EAAoB,CAApB,CAAZ,CAFD,EAGD,IAAIC,GAAJ,EAHC,CAFe,CAApB;AASA,UAAM1I,OAAO,GAAG,KAAKxB,YAAL,CAAkByB,KAAlB,CAAwBD,OAAxC;;AAEA,QAAI8D,IAAI,CAAC9D,OAAD,CAAR,EAAmB;AACjB,YAAM,KAAKxB,YAAL,CAAkB6I,UAAlB,CAA6BvD,IAA7B,CAAN;AACD,KAFD,MAEO;AACL,YAAM,KAAKtF,YAAL,CAAkBmK,SAAlB,CAA4B7E,IAA5B,CAAN;AACD;;AAED,WAAOA,IAAP;AACD;;AAEkB,QAAbkC,aAAa,CAAClC,IAAD,EAAUyB,OAAV,EAAwC;AACzD,UAAM,KAAK/G,YAAL,CAAkBwH,aAAlB,CAAgClC,IAAhC,EAAsCyB,OAAtC,CAAN;AACA,WAAOzB,IAAP;AACD;;AA7KoB;;ACfhB,MAAM8E,WAAW,GAAG,eAApB;AAEA,MAAMC,mBAAmB,GAAG,CACjCC,GADiC,EAEjC9G,OAFiC,KAGV;AACvB;AACA,QAAMkC,OAAO,GAAG,IAAI6E,OAAJ,CAAYD,GAAZ,EAAiB,IAAjB,EAAyC,EACvD,GAAG9G,OADoD;AAEvDyC,IAAAA,MAAM,EAAE;AAF+C,GAAzC,CAAhB;AAKA,SAAOP,OAAO,CAACP,GAAR,CAAYiF,WAAZ,CAAP;AACD,CAXM;;ACaP,MAAMI,iBAAiB,GAAGtI,SAAS,CAKjCuI,YAAY,CAACC,MALoB,CAAnC;;AAOA,MAAMC,eAAe,GAClBC,SAAD,IACA,OAAO9F,KAAP,EAAsB+F,WAAtB,KAA2E;AACzE,QAAMpH,MAAM,GAAG,MAAM+G,iBAAiB,CAAC1F,KAAD,EAAQ8F,SAAR,EAAmB;AACvDE,IAAAA,UAAU,EAAE,CAAC,OAAD,CAD2C;AAEvDC,IAAAA,QAAQ,EAAEF;AAF6C,GAAnB,CAAtC;AAIA,SAAQpH,MAAD,EAAiB1C,SAAxB;AACD,CARH;;AAeO,MAAMiK,0BAA0B,GAAG,CAIxCJ,SAJwC,EAKxC5K,YALwC,EAMxCwC,MANwC,KAOZ;AAC5B,QAAMyI,SAAS,GAAGN,eAAe,CAACC,SAAD,CAAjC;AAsBA,SApBsD,OACpDC,WADoD,EAEpD/F,KAFoD,KAGjD;AACH,QAAI,CAACA,KAAD,IAAU,CAAC+F,WAAf,EAA4B,OAAO,CAAC,IAAD,EAAO,IAAP,CAAP;AAE5B,QAAI9J,SAAJ;;AACA,QAAI;AACFA,MAAAA,SAAS,GAAG,MAAMkK,SAAS,CAACnG,KAAD,EAAQ+F,WAAR,CAA3B;AACD,KAFD,CAEE,OAAOK,GAAP,EAAqB;AACrB1I,MAAAA,MAAM,CAACS,KAAP,CAAa,mCAAb,EAAkD;AAAEiI,QAAAA;AAAF,OAAlD;AACD;;AAED,QAAInK,SAAS,IAAI,IAAjB,EAAuB,OAAO,CAAC,IAAD,EAAO,IAAP,CAAP;AAEvB,UAAMuE,IAAI,GAAG,MAAMtF,YAAY,CAACmL,aAAb,CAA2BpK,SAA3B,CAAnB;AAEA,WAAO,CAACA,SAAD,EAAYuE,IAAZ,CAAP;AACD,GAED;AACD,CA/BM;;ACtCQ,MAAM8F,iBAAN,CAGb;AAGAxI,EAAAA,WAAW,CAACnB,KAAD,EAAuB;AAChC,SAAKA,KAAL,GAAaA,KAAb;AACD;;AAED0J,EAAAA,aAAa,CAACpK,SAAD,EAA4C;AACvD,WAAO,KAAKU,KAAL,CAAW4J,SAAX,CAAqBtK,SAArB,CAAP;AACD;;AAEDoJ,EAAAA,SAAS,CAAC7E,IAAD,EAAyC;AAChD,WAAO,KAAK7D,KAAL,CAAW0I,SAAX,CAAqB7E,IAArB,CAAP;AACD;;AAEDuD,EAAAA,UAAU,CAACvD,IAAD,EAAwB;AAChC,WAAO,KAAK7D,KAAL,CAAWoH,UAAX,CAAsBvD,IAAtB,CAAP;AACD;;AAEDgG,EAAAA,QAAQ,CAAChG,IAAD,EAAsB;AAC5B,WAAO,KAAKiG,gBAAL,CAAsBjG,IAAtB,CAAP;AACD;;AAED0D,EAAAA,wBAAwB,CAAC;AACvBzD,IAAAA,SADuB;AAEvBuD,IAAAA,MAFuB;AAGvBxB,IAAAA;AAHuB,GAAD,EAQG;AACzB,QAAIhB,KAAU,GAAG;AACf,2BAAqBgB,QADN;AAEf,4BAAsB/B;AAFP,KAAjB;;AAKA,QAAIuD,MAAM,IAAIA,MAAM,CAAC0C,MAAP,GAAgB,CAA9B,EAAiC;AAC/BlF,MAAAA,KAAK,GAAG;AACNmF,QAAAA,GAAG,EAAE,CACHnF,KADG,EAEH;AACEwC,UAAAA,MAAM,EAAE;AAAE4C,YAAAA,GAAG,EAAE5C;AAAP;AADV,SAFG;AADC,OAAR;AAQD,KAfwB;;;AAkBzB,WAAO,KAAKrH,KAAL,CAAWkK,OAAX,CAAmBrF,KAAnB,CAAP;AACD;;AAEDkB,EAAAA,aAAa,CAAClC,IAAD,EAAUyB,OAAV,EAAwC;AACnD,UAAM6E,YAAY,GAAGtG,IAAI,CAAC6C,QAAL,CAAc0D,OAAd,CAAsB9E,OAAtB,CAArB;;AACA,QAAI6E,YAAY,KAAK,CAAC,CAAtB,EAAyB;AACvB,YAAM,IAAInL,KAAJ,CAAU,iBAAV,CAAN;AACD;;AAED,WAAO,KAAKgB,KAAL,CAAWqK,gBAAX,CAA4BxG,IAA5B,EAAkC;AACvCyG,MAAAA,IAAI,EAAE;AACJ,SAAE,YAAWH,YAAa,EAA1B,GAA8B7E;AAD1B;AADiC,KAAlC,CAAP;AAKD;;AAESwE,EAAAA,gBAAgB,CAACjG,IAAD,EAAyB;AACjD,WAAO;AACLyC,MAAAA,GAAG,EAAEzC,IAAI,CAACyC,GADL;AAELiE,MAAAA,OAAO,EAAE1G,IAAI,CAAC0G,OAFT;AAGLC,MAAAA,OAAO,EAAE3G,IAAI,CAAC2G,OAHT;AAIL5C,MAAAA,WAAW,EAAE/D,IAAI,CAAC+D,WAJb;AAKLE,MAAAA,QAAQ,EAAEjE,IAAI,CAACiE,QALV;AAML/C,MAAAA,MAAM,EAAElB,IAAI,CAACkB,MANR;AAOLsC,MAAAA,MAAM,EAAExD,IAAI,CAACwD,MAPR;AAQLgB,MAAAA,YAAY,EAAExE,IAAI,CAACwE,YARd;AASL3B,MAAAA,QAAQ,EAAE7C,IAAI,CAAC6C,QAAL,CAAc+D,GAAd,CAAmBnF,OAAD,KAAuB;AACjDO,QAAAA,QAAQ,EAAEP,OAAO,CAACO,QAD+B;AAEjD/B,QAAAA,SAAS,EAAEwB,OAAO,CAACxB,SAF8B;AAGjDkE,QAAAA,IAAI,EAAE1C,OAAO,CAAC0C,IAHmC;AAIjDjD,QAAAA,MAAM,EAAEO,OAAO,CAACP,MAJiC;AAKjD+B,QAAAA,OAAO,EAAExB,OAAO,CAACwB;AALgC,OAAvB,CAAlB;AATL,KAAP;AAiBD;;AAnFD;;ACNF;AAMe,MAAM4D,wBAAN,CAEf;AAGEvJ,EAAAA,WAAW,CAACsF,eAAD,EAA+D;AACxE,SAAKA,eAAL,GAAuB,EACrB,GAAGA,eADkB;AAErB7H,MAAAA,KAAK,EAAE;AAFc,KAAvB;AAID;;AAED4I,EAAAA,WAAW,GAAG,QAAH;;AAEXT,EAAAA,UAAU,CAACvD,MAAD,EAA+B;AACvC,WAAOmH,KAAK,CACT,8DAA6DnH,MAAM,CAACnB,WAAY,EADvE,CAAL,CAELyD,IAFK,CAEC8E,QAAD,IAAcA,QAAQ,CAACC,IAAT,EAFd,CAAP;AAGD;;AAED7D,EAAAA,KAAK,CAACF,OAAD,EAAoB;AACvB,WAAOA,OAAO,CAACgE,EAAf;AACD;;AAED7C,EAAAA,cAAc,CAACnB,OAAD,EAA0C;AACtD,WAAOA,OAAO,CAACsB,KAAf;AACD;;AAEDd,EAAAA,SAAS,CAACR,OAAD,EAAyB;AAChC,UAAMO,MAAgB,GAAG,EAAzB;;AAEA,QAAIP,OAAO,CAACsB,KAAZ,EAAmB;AACjBf,MAAAA,MAAM,CAACF,IAAP,CAAYL,OAAO,CAACsB,KAApB;AACD;;AAED,WAAOf,MAAP;AACD;;AAEDQ,EAAAA,cAAc,CAACf,OAAD,EAA0C;AACtD,WAAOA,OAAO,CAACkB,IAAf;AACD;;AAEDD,EAAAA,WAAW,CAACjB,OAAD,EAAyB;AAClC,WAAO;AACLiE,MAAAA,SAAS,EAAEjE,OAAO,CAACkE,UADd;AAELC,MAAAA,UAAU,EAAEnE,OAAO,CAACoE;AAFf,KAAP;AAID;;AAEDC,EAAAA,eAAe,CAAC3E,QAAD,EAA6B;AAC1C,WAAO,KAAKxC,QAAL,CAAcoH,SAAd,EAAyB5E,QAAzB,CAAP;AACD;;AAEDxC,EAAAA,QAAQ,CAACqH,QAAD,EAAiC7E,QAAjC,EAA6D;AACnE,WAAO,CAAC6E,QAAD,GACH7E,QAAQ,CAACgC,KAAT,CAAe,GAAf,CADG,GAEH,CAAC,GAAG6C,QAAJ,EAAc,GAAG7E,QAAQ,CAACgC,KAAT,CAAe,GAAf,CAAjB,EAAsC8C,MAAtC,CACE,CAACC,IAAD,EAAOC,CAAP,EAAUC,EAAV,KAAiBA,EAAE,CAACrB,OAAH,CAAWmB,IAAX,MAAqBC,CADxC,CAFJ;AAKD;;AAzDH;;ACRA;AAKA;AAEe,MAAME,uBAAN,CAEf;AAGEvK,EAAAA,WAAW,CAACsF,eAAD,EAA+D;AACxE,SAAKA,eAAL,GAAuB,EACrB,GAAGA,eADkB;AAErB7H,MAAAA,KAAK,EAAE;AAFc,KAAvB;AAID;;AAED4I,EAAAA,WAAW,GAAG,QAAH;;AAEXT,EAAAA,UAAU,CAACvD,MAAD,EAA+B;AACvC,WAAOmH,KAAK,CACT,8CAA6CnH,MAAM,CAACnB,WAAY,EADvD,CAAL,CAELyD,IAFK,CAEC8E,QAAD,IAAcA,QAAQ,CAACC,IAAT,EAFd,CAAP;AAGD;;AAED7D,EAAAA,KAAK,CAACF,OAAD,EAA8B;AACjC,QACE,CAACA,OAAD,IACA,CAACA,OAAO,CAAC6E,IADT,IAEA,CAAC7E,OAAO,CAAC6E,IAAR,CAAab,EAFd,IAGA,CAAChE,OAAO,CAACjD,IAHT,IAIA,CAACiD,OAAO,CAACjD,IAAR,CAAaiH,EALhB,EAME;AACA,aAAO,IAAP;AACD;;AACD,WAAQ,QAAOhE,OAAO,CAAC6E,IAAR,CAAab,EAAa,SACvChE,OAAO,CAACjD,IAAR,CAAaiH,EACd,EAFD;AAGD;;AAED7C,EAAAA,cAAc,CAACnB,OAAD,EAA0C;AACtD,WAAOA,OAAO,CAACjD,IAAR,CAAauE,KAApB;AACD;;AAEDd,EAAAA,SAAS,CAACR,OAAD,EAAyB;AAChC,WAAOA,OAAO,CAACjD,IAAR,CAAauE,KAAb,GAAqB,CAACtB,OAAO,CAACjD,IAAR,CAAauE,KAAd,CAArB,GAA4C,EAAnD;AACD;;AAEDP,EAAAA,cAAc,CAACf,OAAD,EAA0C;AACtD,WAAOA,OAAO,CAACjD,IAAR,CAAamE,IAApB;AACD;;AAEDD,EAAAA,WAAW,GAAgC;AACzC,WAAO,IAAP;AACD;;AAEDoD,EAAAA,eAAe,CAAC3E,QAAD,EAA6B;AAC1C,WAAO,KAAKxC,QAAL,CAAcoH,SAAd,EAAyB5E,QAAzB,CAAP;AACD;;AAEDxC,EAAAA,QAAQ,CAACqH,QAAD,EAAiC7E,QAAjC,EAA6D;AACnE,WAAO,CAAC6E,QAAD,GACH7E,QAAQ,CAACgC,KAAT,CAAe,GAAf,CADG,GAEH,CAAC,GAAG6C,QAAJ,EAAc,GAAG7E,QAAQ,CAACgC,KAAT,CAAe,GAAf,CAAjB,EAAsC8C,MAAtC,CACE,CAACC,IAAD,EAAOC,CAAP,EAAUC,EAAV,KAAiBA,EAAE,CAACrB,OAAH,CAAWmB,IAAX,MAAqBC,CADxC,CAFJ;AAKD;;AA3DH;;ACDA,MAAMzK,QAAM,GAAG,IAAIC,MAAJ,CAAW,UAAX,CAAf;MAEa4K,YAAY,GAAG,CAC1BC,GAD0B,EAE1BtN,YAF0B,EAI1BuN,EAJ0B,KAMjB;AACT,QAAMC,oBAAoB,GAAGxC,0BAA0B,CACrDsC,GAAG,CAACzK,MAAJ,CAAWsC,GAAX,CAAoC,gBAApC,EAAsDA,GAAtD,CAA0D,WAA1D,CADqD,EAErDnF,YAFqD,EAGrDwC,QAHqD,CAAvD;AAMA,QAAMiL,KAAK,GAAG,IAAIC,GAAJ,EAAd;AACAH,EAAAA,EAAE,CAACE,KAAH,GAAWA,KAAX;AAEAF,EAAAA,EAAE,CAACI,GAAH,CAAO,OAAOC,MAAP,EAAoBC,IAApB,KAAkC;AACvC,UAAMC,aAAa,GAAGF,MAAM,CAACxI,OAA7B,CADuC;;AAGvC,UAAMN,KAAK,GAAGuF,mBAAmB,CAACyD,aAAD,CAAjC;AAEA,QAAI,CAAChJ,KAAL,EAAY,OAAO+I,IAAI,EAAX;AAEZ,UAAM,CAAC9M,SAAD,EAAYuE,IAAZ,IAAoB,MAAMkI,oBAAoB;AAElDM,IAAAA,aAAa,CAACC,OAAd,CAAsB,YAAtB,CAFkD,EAGlDjJ,KAHkD,CAApD;AAMA,QAAI,CAAC/D,SAAD,IAAc,CAACuE,IAAnB,EAAyB,OAAOuI,IAAI,EAAX;AAEzBD,IAAAA,MAAM,CAACtI,IAAP,GAAcA,IAAd;AACAmI,IAAAA,KAAK,CAAC9H,GAAN,CAAUiI,MAAM,CAACI,MAAP,CAAczB,EAAxB,EAA4BjH,IAA5B;AAEAsI,IAAAA,MAAM,CAACK,EAAP,CAAU,cAAV,EAA0B,MAAMR,KAAK,CAACS,MAAN,CAAaN,MAAM,CAACI,MAAP,CAAczB,EAA3B,CAAhC;AAEA,UAAMsB,IAAI,EAAV;AACD,GArBD;AAsBD;;ACxCD,MAAMrL,QAAM,GAAG,IAAIC,MAAJ,CAAW,UAAX,CAAf;;AAEA,MAAM0L,eAAe,GACnB7D,GADsB,IAEC;AACvB,MAAIA,GAAG,CAAC5E,OAAR,EAAiB,OAAO4E,GAAG,CAAC5E,OAAJ,CAAY0E,WAAZ,CAAP;AACjB,SAAOC,mBAAmB,CAACC,GAAD,CAA1B;AACD,CALD;AAOA;AACA;AACA;AACA;;;MACa8D,uBAAuB,GAAG,CACrCvL,MADqC,EAErC7C,YAFqC,KAG7B;AACR,QAAMwN,oBAAoB,GAAGxC,0BAA0B,CACrDnI,MAAM,CAACsC,GAAP,CAAgC,gBAAhC,EAAkDA,GAAlD,CAAsD,WAAtD,CADqD,EAErDnF,YAFqD,EAGrDwC,QAHqD,CAAvD;AAMA,SAAO,OAAO;AAAE8H,IAAAA,GAAF;AAAO+D,IAAAA;AAAP,GAAP,KAA8D;AACnE,QAAIA,UAAU,EAAE/I,IAAhB,EAAsB;AACpB,aAAO;AAAEA,QAAAA,IAAI,EAAE+I,UAAU,CAAC/I;AAAnB,OAAP;AACD;;AAED,QAAI,CAACgF,GAAL,EAAU,OAAO,IAAP,CALyD;;AAQnE,UAAMxF,KAAK,GAAGqJ,eAAe,CAAC7D,GAAD,CAA7B;AAEA,QAAI,CAACxF,KAAL,EAAY,OAAO;AAAEQ,MAAAA,IAAI,EAAEuH;AAAR,KAAP;AAEZ,UAAM,GAAGvH,IAAH,IAAW,MAAMkI,oBAAoB;AAEzClD,IAAAA,GAAG,CAACyD,OAAJ,CAAY,YAAZ,CAFyC,EAGzCjJ,KAHyC,CAA3C;AAMA,WAAO;AAAEQ,MAAAA;AAAF,KAAP;AACD,GAnBD;AAoBD;;ACGD,MAAM9C,MAAM,GAAG,IAAIC,MAAJ,CAAW,UAAX,CAAf;AAEA,MAAM6L,eAAoB,GAAGpM,SAAS,CAACuI,YAAY,CAAC8D,IAAd,CAAtC;AAMe,SAASC,IAAT,CAIb;AACAtO,EAAAA,aADA;AAEAF,EAAAA,YAFA;AAGA8C,EAAAA,UAHA;AAIA3C,EAAAA,eAJA;AAKA0H,EAAAA,iBALA;AAMAzH,EAAAA,SANA;AAOAyK,EAAAA;AAPA,CAJa,EAoBZ;AACD;AACA,SAAQyC,GAAD,IAA0B;AAC/B,UAAMvK,mBAAmB,GAAG,IAAI6E,mBAAJ,CAC1B5H,YAD0B,EAE1B6H,iBAF0B,CAA5B;AAKA,UAAM5H,qBAAqB,GAAG,IAAIyC,qBAAJ,CAC5B4K,GAAG,CAACzK,MADwB,EAE5BC,UAF4B,EAG5BC,mBAH4B,CAA9B;AAMA,UAAMlB,UAAU,GAAG9B,oBAAoB,CAAC;AACtCC,MAAAA,YADsC;AAEtCC,MAAAA,qBAFsC;AAGtCC,MAAAA,aAHsC;AAItCC,MAAAA,eAJsC;AAKtCC,MAAAA;AALsC,KAAD,CAAvC;;AAQAkN,IAAAA,GAAG,CAACmB,OAAJ,CAAY/M,YAAZ,GAA2B,gBAEzBX,SAFyB,EAGzBuE,IAHyB,EAIV;AACf9C,MAAAA,MAAM,CAACS,KAAP,CAAa,cAAb,EAA6B;AAAElC,QAAAA;AAAF,OAA7B;;AACA,UAAI,CAACA,SAAL,EAAgB;AACd,cAAM,IAAIN,KAAJ,CAAU,gCAAV,CAAN;AACD;;AAED,WAAKK,KAAL,CAAWC,SAAX,GAAuBA,SAAvB;AACA,WAAKD,KAAL,CAAWwE,IAAX,GAAkBA,IAAlB;AAEA,YAAMR,KAAK,GAAG,MAAMwJ,eAAe,CACjC;AAAEvN,QAAAA,SAAF;AAAa2N,QAAAA,IAAI,EAAElK,IAAI,CAAC2C,GAAL;AAAnB,OADiC,EAEjC,KAAKtE,MAAL,CACGsC,GADH,CAC6B,gBAD7B,EAEGA,GAFH,CAEO,WAFP,CAFiC,EAKjC;AACEwJ,QAAAA,SAAS,EAAE,OADb;AAEE5D,QAAAA,QAAQ,EAAEF,WAAW,IAAI,KAAKzF,OAAL,CAAa2I,OAAb,CAAqB,YAArB,CAF3B;AAGE3J,QAAAA,SAAS,EAAE;AAHb,OALiC,CAAnC,CATe;;AAsBf,WAAKsB,OAAL,CAAaC,GAAb,CAAiByE,WAAjB,EAA8BtF,KAA9B,EAAqC;AACnCkB,QAAAA,QAAQ,EAAE,IADyB;AAEnCC,QAAAA,MAAM,EAAE,KAAKpD,MAAL,CAAYsC,GAAZ,CAAgB,YAAhB;AAF2B,OAArC;AAID,KA9BD;;AAgCAmI,IAAAA,GAAG,CAACmB,OAAJ,CAAY9M,MAAZ,GAAqB,YAA+B;AAClD,aAAO,KAAKb,KAAL,CAAWC,SAAlB;AACA,aAAO,KAAKD,KAAL,CAAWwE,IAAlB;AACA,WAAKI,OAAL,CAAaC,GAAb,CAAiByE,WAAjB,EAA8B,EAA9B,EAAkC;AAAExD,QAAAA,OAAO,EAAE,IAAIpC,IAAJ,CAAS,CAAT;AAAX,OAAlC;AACD,KAJD;;AAMA,UAAMoK,mBAAmB,GAAG5D,0BAA0B,CACpDsC,GAAG,CAACzK,MAAJ,CACGsC,GADH,CAC6B,gBAD7B,EAEGA,GAFH,CAEO,WAFP,CADoD,EAIpDnF,YAJoD,EAKpDwC,MALoD,CAAtD;AAQA,WAAO;AACLqM,MAAAA,MAAM,EAAEjN,YAAY,CAACC,UAAD,CADf;AAGLiN,MAAAA,8BAA8B,EAC5BxE,GAD8B,IAEa;AAC3C,cAAMxF,KAAK,GAAGuF,mBAAmB,CAACC,GAAD,CAAjC;AACA,eAAOsE,mBAAmB,CACxB/D,WAAW,IAAIP,GAAG,CAACyD,OAAJ,CAAY,YAAZ,CADS,EAExBjJ,KAFwB,CAA1B;AAID,OAXI;AAYL8J,MAAAA,mBAZK;AAcLG,MAAAA,UAAU,EAAE,OACVzO,GADU,EAEVuN,IAFU,KAGK;AACf,cAAM/I,KAAK,GAAGxE,GAAG,CAACoF,OAAJ,CAAYP,GAAZ,CAAgBiF,WAAhB,CAAd;AACA,cAAM4E,SAAS,GAAG1O,GAAG,CAAC8E,OAAJ,CAAY2I,OAAZ,CAAoB,YAApB,CAAlB;AACAvL,QAAAA,MAAM,CAACS,KAAP,CAAa,YAAb,EAA2B;AAAE6B,UAAAA;AAAF,SAA3B;;AAEA,cAAMmK,QAAQ,GAAG,CACflO,SADe,EAEfuE,IAFe,KAGN;AACThF,UAAAA,GAAG,CAACQ,KAAJ,CAAUC,SAAV,GAAsBA,SAAtB;AACAT,UAAAA,GAAG,CAACQ,KAAJ,CAAUwE,IAAV,GAAiBA,IAAjB;AACAhF,UAAAA,GAAG,CAAC4O,cAAJ,CAAmBnO,SAAnB,GAA+BA,SAA/B;AACAT,UAAAA,GAAG,CAAC4O,cAAJ,CAAmB5J,IAAnB,GAA0BA,IAAI,IAAItF,YAAY,CAACsL,QAAb,CAAsBhG,IAAtB,CAAlC;AACD,SARD;;AAUA,cAAM,CAACvE,SAAD,EAAYuE,IAAZ,IAAoB,MAAMsJ,mBAAmB,CACjD/D,WAAW,IAAImE,SADkC,EAEjDlK,KAFiD,CAAnD;AAIAtC,QAAAA,MAAM,CAACS,KAAP,CAAa,YAAb,EAA2B;AAAElC,UAAAA;AAAF,SAA3B;;AAEA,YAAIA,SAAS,IAAI,IAAb,IAAqBuE,IAAI,IAAI,IAAjC,EAAuC;AACrC,cAAIR,KAAJ,EAAWxE,GAAG,CAACoF,OAAJ,CAAYC,GAAZ,CAAgByE,WAAhB,EAA6B,EAA7B,EAAiC;AAAExD,YAAAA,OAAO,EAAE,IAAIpC,IAAJ,CAAS,CAAT;AAAX,WAAjC;AACXyK,UAAAA,QAAQ,CAAC,IAAD,EAAO,IAAP,CAAR;AACA,iBAAOpB,IAAI,EAAX;AACD;;AAEDoB,QAAAA,QAAQ,CAAClO,SAAD,EAAYuE,IAAZ,CAAR;AACA,eAAOuI,IAAI,EAAX;AACD;AA9CI,KAAP;AAgDD,GAlHD;AAmHD;;;;"}
|
package/dist/index.d.ts
CHANGED
|
@@ -6,10 +6,8 @@ import type MongoUsersManager from './MongoUsersManager';
|
|
|
6
6
|
import type { AuthController as AuthControllerType, AuthHooks } from './createAuthController';
|
|
7
7
|
import type { AuthRoutes as AuthRoutesType } from './createRoutes';
|
|
8
8
|
import type { Strategies } from './services/authentification/AuthenticationService';
|
|
9
|
-
import { AuthenticationService } from './services/authentification/AuthenticationService';
|
|
10
9
|
import type { AllowedStrategyKeys } from './services/authentification/types';
|
|
11
10
|
import type { AccountService } from './services/user/types';
|
|
12
|
-
export { AuthenticationService };
|
|
13
11
|
export { default as MongoUsersManager } from './MongoUsersManager';
|
|
14
12
|
export { default as UserAccountGoogleService } from './services/user/UserAccountGoogleService';
|
|
15
13
|
export { default as UserAccountSlackService } from './services/user/UserAccountSlackService';
|
|
@@ -32,13 +30,15 @@ declare module 'alp-types' {
|
|
|
32
30
|
}
|
|
33
31
|
export declare type AuthController = AuthControllerType;
|
|
34
32
|
export declare type AuthRoutes = AuthRoutesType;
|
|
35
|
-
export
|
|
33
|
+
export { AuthenticationService } from './services/authentification/AuthenticationService';
|
|
34
|
+
export default function init<StrategyKeys extends AllowedStrategyKeys = 'google', U extends User = User, USanitized extends UserSanitized = UserSanitized>({ homeRouterKey, usersManager, strategies, defaultStrategy, strategyToService, authHooks, jwtAudience, }: {
|
|
36
35
|
homeRouterKey?: string;
|
|
37
36
|
usersManager: MongoUsersManager<U, USanitized>;
|
|
38
37
|
strategies: Strategies<StrategyKeys>;
|
|
39
38
|
defaultStrategy?: StrategyKeys;
|
|
40
39
|
strategyToService: Record<StrategyKeys, AccountService<any>>;
|
|
41
40
|
authHooks?: AuthHooks<StrategyKeys>;
|
|
41
|
+
jwtAudience?: string;
|
|
42
42
|
}): (app: NodeApplication) => {
|
|
43
43
|
routes: AuthRoutesType;
|
|
44
44
|
getConnectedAndUserFromRequest: (req: IncomingMessage) => Promise<[U["_id"] | null | undefined, U | null | undefined]>;
|
package/dist/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,MAAM,CAAC;AAE5C,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,KAAK,EAAgB,eAAe,EAAE,MAAM,WAAW,CAAC;AAG/D,OAAO,KAAK,EAAE,IAAI,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AACtD,OAAO,KAAK,iBAAiB,MAAM,qBAAqB,CAAC;AACzD,OAAO,KAAK,EACV,cAAc,IAAI,kBAAkB,EACpC,SAAS,EACV,MAAM,wBAAwB,CAAC;AAEhC,OAAO,KAAK,EAAE,UAAU,IAAI,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAEnE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,mDAAmD,CAAC;
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,MAAM,CAAC;AAE5C,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,KAAK,EAAgB,eAAe,EAAE,MAAM,WAAW,CAAC;AAG/D,OAAO,KAAK,EAAE,IAAI,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AACtD,OAAO,KAAK,iBAAiB,MAAM,qBAAqB,CAAC;AACzD,OAAO,KAAK,EACV,cAAc,IAAI,kBAAkB,EACpC,SAAS,EACV,MAAM,wBAAwB,CAAC;AAEhC,OAAO,KAAK,EAAE,UAAU,IAAI,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAEnE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,mDAAmD,CAAC;AAEpF,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,mCAAmC,CAAC;AAE7E,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAI5D,OAAO,EAAE,OAAO,IAAI,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AACnE,OAAO,EAAE,OAAO,IAAI,wBAAwB,EAAE,MAAM,0CAA0C,CAAC;AAC/F,OAAO,EAAE,OAAO,IAAI,uBAAuB,EAAE,MAAM,yCAAyC,CAAC;AAC7F,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC9C,OAAO,EAAE,uBAAuB,EAAE,MAAM,qBAAqB,CAAC;AAC9D,OAAO,EAAE,QAAQ,EAAE,MAAM,qCAAqC,CAAC;AAE/D,OAAO,QAAQ,WAAW,CAAC;IAEzB,UAAU,YAAY;QACpB,SAAS,EAAE,WAAW,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,IAAI,GAAG,SAAS,CAAC;QACvE,IAAI,EAAE,IAAI,GAAG,IAAI,GAAG,SAAS,CAAC;KAC/B;IAED,UAAU,qBAAqB;QAC7B,SAAS,EACL,WAAW,CAAC,qBAAqB,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,GACjD,IAAI,GACJ,SAAS,CAAC;QACd,IAAI,EAAE,aAAa,GAAG,IAAI,GAAG,SAAS,CAAC;KACxC;IAED,UAAU,WAAW;QACnB,YAAY,EAAE,CACZ,SAAS,EAAE,WAAW,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EACnD,IAAI,EAAE,WAAW,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,KACpC,OAAO,CAAC,IAAI,CAAC,CAAC;QACnB,MAAM,EAAE,MAAM,IAAI,CAAC;KACpB;CACF;AAMD,oBAAY,cAAc,GAAG,kBAAkB,CAAC;AAChD,oBAAY,UAAU,GAAG,cAAc,CAAC;AACxC,OAAO,EAAE,qBAAqB,EAAE,MAAM,mDAAmD,CAAC;AAE1F,MAAM,CAAC,OAAO,UAAU,IAAI,CAC1B,YAAY,SAAS,mBAAmB,GAAG,QAAQ,EACnD,CAAC,SAAS,IAAI,GAAG,IAAI,EACrB,UAAU,SAAS,aAAa,GAAG,aAAa,EAChD,EACA,aAAa,EACb,YAAY,EACZ,UAAU,EACV,eAAe,EACf,iBAAiB,EACjB,SAAS,EACT,WAAW,GACZ,EAAE;IACD,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,YAAY,EAAE,iBAAiB,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;IAC/C,UAAU,EAAE,UAAU,CAAC,YAAY,CAAC,CAAC;IACrC,eAAe,CAAC,EAAE,YAAY,CAAC;IAC/B,iBAAiB,EAAE,MAAM,CAAC,YAAY,EAAE,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC;IAC7D,SAAS,CAAC,EAAE,SAAS,CAAC,YAAY,CAAC,CAAC;IACpC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB,SAEc,eAAe;;0CAsEjB,eAAe;;yBAWf,OAAO;EAkCnB"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"AuthenticationService.d.ts","sourceRoot":"","sources":["../../../src/services/authentification/AuthenticationService.ts"],"names":[],"mappings":";
|
|
1
|
+
{"version":3,"file":"AuthenticationService.d.ts","sourceRoot":"","sources":["../../../src/services/authentification/AuthenticationService.ts"],"names":[],"mappings":";AAIA,OAAO,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AACtC,OAAO,YAAY,CAAC;AACpB,OAAO,KAAK,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAErD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AACjD,OAAO,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAEhF,OAAO,KAAK,mBAAmB,MAAM,6BAA6B,CAAC;AACnE,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAI3D,MAAM,WAAW,sBAAsB;IACrC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,QAAQ;IACvB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,cAAc,CAAC,MAAM,SAAS,MAAM,CAAE,SAAQ,QAAQ;IACrE,MAAM,EAAE,WAAW,CAAC,MAAM,CAAC,CAAC;CAC7B;AAED,oBAAY,UAAU,CAAC,YAAY,SAAS,mBAAmB,IAAI,MAAM,CACvE,YAAY,EACZ,cAAc,CAAC,GAAG,CAAC,CACpB,CAAC;AAEF,MAAM,WAAW,mBAAmB,CAAC,YAAY,EAAE,CAAC,SAAS,IAAI,GAAG,IAAI;IACtE,iBAAiB,CAAC,EAAE,CAAC,WAAW,SAAS,YAAY,EACnD,QAAQ,EAAE,WAAW,EACrB,aAAa,EAAE,CAAC,KACb,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAE1B,gBAAgB,CAAC,EAAE,CAAC,WAAW,SAAS,YAAY,EAClD,QAAQ,EAAE,WAAW,EACrB,QAAQ,EAAE,MAAM,EAChB,OAAO,EAAE,OAAO,EAChB,IAAI,EAAE,CAAC,KACJ,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CAC3B;AAED,qBAAa,qBAAqB,CAChC,YAAY,SAAS,mBAAmB,EACxC,CAAC,SAAS,IAAI,GAAG,IAAI,EACrB,UAAU,SAAS,aAAa,GAAG,aAAa,CAChD,SAAQ,YAAY;IACpB,MAAM,EAAE,UAAU,CAAC;IAEnB,UAAU,EAAE,UAAU,CAAC,YAAY,CAAC,CAAC;IAErC,mBAAmB,EAAE,mBAAmB,CAAC,YAAY,EAAE,CAAC,EAAE,UAAU,CAAC,CAAC;gBAGpE,MAAM,EAAE,UAAU,EAClB,UAAU,EAAE,UAAU,CAAC,YAAY,CAAC,EACpC,mBAAmB,EAAE,mBAAmB,CAAC,YAAY,EAAE,CAAC,EAAE,UAAU,CAAC;IAQvE,eAAe,CAAC,CAAC,SAAS,YAAY,EAAE,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,GAAG,GAAG,MAAM;IAWnE,SAAS,CACb,QAAQ,EAAE,YAAY,EACtB,OAAO,EAAE,gBAAgB,GACxB,OAAO,CAAC,MAAM,CAAC;IAgCZ,YAAY,CAChB,QAAQ,EAAE,YAAY,EACtB,WAAW,EAAE;QAAE,YAAY,EAAE,MAAM,CAAA;KAAE,GACpC,OAAO,CAAC,MAAM,CAAC;IA+BlB,WAAW,CAAC,GAAG,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM;IAO7C,eAAe,CACnB,GAAG,EAAE,OAAO,EACZ,QAAQ,EAAE,YAAY,EACtB,EACE,YAAY,EACZ,QAAQ,EACR,IAAI,EACJ,SAAS,GACV,EAAE;QACD,YAAY,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;QAClC,QAAQ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;QAC9B,IAAI,CAAC,EAAE,CAAC,CAAC;QACT,SAAS,CAAC,EAAE,SAAS,CAAC;KACvB,EACD,MAAM,CAAC,EAAE,GAAG,GACX,OAAO,CAAC,IAAI,CAAC;IAuCV,cAAc,CAAC,WAAW,SAAS,YAAY,EACnD,GAAG,EAAE,GAAG,EACR,QAAQ,EAAE,WAAW,EACrB,WAAW,EAAE,SAAS,GAAG,OAAO,EAChC,KAAK,EAAE,mBAAmB,CAAC,YAAY,EAAE,CAAC,CAAC,GAC1C,OAAO,CAAC,CAAC,CAAC;IAgEb,oBAAoB,CAAC,IAAI,EAAE,CAAC,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;CAsBlE"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"UserAccountGoogleService.d.ts","sourceRoot":"","sources":["../../../src/services/user/UserAccountGoogleService.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"UserAccountGoogleService.d.ts","sourceRoot":"","sources":["../../../src/services/user/UserAccountGoogleService.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,KAAK,EAAE,cAAc,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAExD,MAAM,CAAC,OAAO,OAAO,wBAAwB,CAAC,SAAS,SAAS,OAAO,CACrE,YAAW,cAAc,CAAC,SAAS,CAAC;IAEpC,eAAe,EAAE,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;gBAE/B,eAAe,EAAE,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,SAAS,CAAC,EAAE,MAAM,CAAC;IAOxE,WAAW,SAAY;IAEvB,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IAMxC,KAAK,CAAC,OAAO,EAAE,GAAG,GAAG,GAAG;IAIxB,cAAc,CAAC,OAAO,EAAE,GAAG,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS;IAIvD,SAAS,CAAC,OAAO,EAAE,GAAG,GAAG,MAAM,EAAE;IAUjC,cAAc,CAAC,OAAO,EAAE,GAAG,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS;IAIvD,WAAW,CAAC,OAAO,EAAE,GAAG,GAAG,QAAQ;IAOnC,eAAe,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,EAAE;IAI3C,QAAQ,CAAC,QAAQ,EAAE,MAAM,EAAE,GAAG,SAAS,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,EAAE;CAOrE"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"UserAccountSlackService.d.ts","sourceRoot":"","sources":["../../../src/services/user/UserAccountSlackService.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"UserAccountSlackService.d.ts","sourceRoot":"","sources":["../../../src/services/user/UserAccountSlackService.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,KAAK,EAAE,cAAc,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAIxD,MAAM,CAAC,OAAO,OAAO,uBAAuB,CAAC,SAAS,SAAS,OAAO,CACpE,YAAW,cAAc,CAAC,SAAS,CAAC;IAEpC,eAAe,EAAE,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;gBAE/B,eAAe,EAAE,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,SAAS,CAAC,EAAE,MAAM,CAAC;IAOxE,WAAW,SAAY;IAEvB,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IAMxC,KAAK,CAAC,OAAO,EAAE,GAAG,GAAG,MAAM,GAAG,IAAI;IAelC,cAAc,CAAC,OAAO,EAAE,GAAG,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS;IAIvD,SAAS,CAAC,OAAO,EAAE,GAAG,GAAG,MAAM,EAAE;IAIjC,cAAc,CAAC,OAAO,EAAE,GAAG,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS;IAIvD,WAAW,CAAC,OAAO,EAAE,GAAG,GAAG,QAAQ,GAAG,IAAI;IAI1C,eAAe,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,EAAE;IAI3C,QAAQ,CAAC,QAAQ,EAAE,MAAM,EAAE,GAAG,SAAS,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,EAAE;CAOrE"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"UserAccountsService.d.ts","sourceRoot":"","sources":["../../../src/services/user/UserAccountsService.ts"],"names":[],"mappings":";
|
|
1
|
+
{"version":3,"file":"UserAccountsService.d.ts","sourceRoot":"","sources":["../../../src/services/user/UserAccountsService.ts"],"names":[],"mappings":";AACA,OAAO,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AAEtC,OAAO,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAChF,OAAO,KAAK,iBAAiB,MAAM,yBAAyB,CAAC;AAC7D,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,2BAA2B,CAAC;AACrE,OAAO,KAAK,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAI5D,eAAO,MAAM,QAAQ;;;CAGpB,CAAC;AAEF,MAAM,CAAC,OAAO,OAAO,mBAAmB,CACtC,YAAY,SAAS,mBAAmB,EACxC,CAAC,SAAS,IAAI,GAAG,IAAI,EACrB,UAAU,SAAS,aAAa,GAAG,aAAa,CAChD,SAAQ,YAAY;IACpB,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAA4C;IAE9E,YAAY,EAAE,iBAAiB,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;gBAG7C,YAAY,EAAE,iBAAiB,CAAC,CAAC,EAAE,UAAU,CAAC,EAC9C,iBAAiB,EAAE,MAAM,CAAC,YAAY,EAAE,cAAc,CAAC,GAAG,CAAC,CAAC;IAO9D,QAAQ,CACN,QAAQ,EAAE,YAAY,EACtB,QAAQ,EAAE,MAAM,EAChB,IAAI,CAAC,EAAE,CAAC,EACR,SAAS,CAAC,EAAE,SAAS,GACpB,MAAM;IAsBH,MAAM,CACV,IAAI,EAAE,CAAC,EACP,QAAQ,EAAE,YAAY,EACtB,MAAM,EAAE,YAAY,EACpB,KAAK,EAAE,MAAM,EACb,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC;QAAE,IAAI,EAAE,CAAC,CAAC;QAAC,OAAO,EAAE,CAAC,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC,CAAA;KAAE,CAAC;IA+BjD,wBAAwB,CAC5B,QAAQ,EAAE,YAAY,EACtB,MAAM,EAAE,YAAY,EACpB,KAAK,EAAE,MAAM,EACb,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,CAAC,CAAC;IAuFP,aAAa,CAAC,IAAI,EAAE,CAAC,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC;CAI3D"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"cookies.d.ts","sourceRoot":"","sources":["../../src/utils/cookies.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,MAAM,CAAC;AAC5C,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,eAAO,MAAM,WAAW,kBAAkB,CAAC;AAE3C,eAAO,MAAM,mBAAmB,QACzB,eAAe,iDAEnB,MAAM,GAAG,
|
|
1
|
+
{"version":3,"file":"cookies.d.ts","sourceRoot":"","sources":["../../src/utils/cookies.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,MAAM,CAAC;AAC5C,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGtC,eAAO,MAAM,WAAW,kBAAkB,CAAC;AAE3C,eAAO,MAAM,mBAAmB,QACzB,eAAe,iDAEnB,MAAM,GAAG,SAQX,CAAC"}
|
|
@@ -1,6 +1,6 @@
|
|
|
1
|
-
import type Logger from 'nightingale-logger';
|
|
1
|
+
import type { Logger } from 'nightingale-logger';
|
|
2
2
|
import type { User, UserSanitized } from '../../types.d';
|
|
3
3
|
import type MongoUsersManager from '../MongoUsersManager';
|
|
4
|
-
export declare type FindConnectedAndUser<U extends User> = (
|
|
4
|
+
export declare type FindConnectedAndUser<U extends User> = (jwtAudience?: string, token?: string) => Promise<[null | undefined | U['_id'], null | undefined | U]>;
|
|
5
5
|
export declare const createFindConnectedAndUser: <U extends User, USanitized extends UserSanitized>(secretKey: string, usersManager: MongoUsersManager<U, USanitized>, logger: Logger) => FindConnectedAndUser<U>;
|
|
6
6
|
//# sourceMappingURL=createFindConnectedAndUser.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"createFindConnectedAndUser.d.ts","sourceRoot":"","sources":["../../src/utils/createFindConnectedAndUser.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,MAAM,MAAM,oBAAoB,CAAC;
|
|
1
|
+
{"version":3,"file":"createFindConnectedAndUser.d.ts","sourceRoot":"","sources":["../../src/utils/createFindConnectedAndUser.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,IAAI,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AACzD,OAAO,KAAK,iBAAiB,MAAM,sBAAsB,CAAC;AA0B1D,oBAAY,oBAAoB,CAAC,CAAC,SAAS,IAAI,IAAI,CACjD,WAAW,CAAC,EAAE,MAAM,EACpB,KAAK,CAAC,EAAE,MAAM,KACX,OAAO,CAAC,CAAC,IAAI,GAAG,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,EAAE,IAAI,GAAG,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC;AAElE,eAAO,MAAM,0BAA0B,gEAI1B,MAAM,0DAET,MAAM,4BAyBf,CAAC"}
|