npm - codex-multi-auth - Versions diffs - 0.1.0 - Mend

codex-multi-auth 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (327) hide show

package/LICENSE +1 -0
package/README.md +162 -0
package/assets/opencode-logo-ornate-dark.svg +18 -0
package/assets/readme-hero.svg +31 -0
package/config/README.md +87 -0
package/config/minimal-opencode.json +13 -0
package/config/opencode-legacy.json +571 -0
package/config/opencode-modern.json +239 -0
package/dist/index.d.ts +45 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +3160 -0
package/dist/index.js.map +1 -0
package/dist/lib/accounts/rate-limits.d.ts +22 -0
package/dist/lib/accounts/rate-limits.d.ts.map +1 -0
package/dist/lib/accounts/rate-limits.js +63 -0
package/dist/lib/accounts/rate-limits.js.map +1 -0
package/dist/lib/accounts.d.ts +95 -0
package/dist/lib/accounts.d.ts.map +1 -0
package/dist/lib/accounts.js +668 -0
package/dist/lib/accounts.js.map +1 -0
package/dist/lib/audit.d.ts +45 -0
package/dist/lib/audit.d.ts.map +1 -0
package/dist/lib/audit.js +131 -0
package/dist/lib/audit.js.map +1 -0
package/dist/lib/auth/auth.d.ts +56 -0
package/dist/lib/auth/auth.d.ts.map +1 -0
package/dist/lib/auth/auth.js +214 -0
package/dist/lib/auth/auth.js.map +1 -0
package/dist/lib/auth/browser.d.ts +34 -0
package/dist/lib/auth/browser.d.ts.map +1 -0
package/dist/lib/auth/browser.js +185 -0
package/dist/lib/auth/browser.js.map +1 -0
package/dist/lib/auth/server.d.ts +24 -0
package/dist/lib/auth/server.d.ts.map +1 -0
package/dist/lib/auth/server.js +116 -0
package/dist/lib/auth/server.js.map +1 -0
package/dist/lib/auth/token-utils.d.ts +59 -0
package/dist/lib/auth/token-utils.d.ts.map +1 -0
package/dist/lib/auth/token-utils.js +331 -0
package/dist/lib/auth/token-utils.js.map +1 -0
package/dist/lib/auth-rate-limit.d.ts +20 -0
package/dist/lib/auth-rate-limit.d.ts.map +1 -0
package/dist/lib/auth-rate-limit.js +91 -0
package/dist/lib/auth-rate-limit.js.map +1 -0
package/dist/lib/auto-update-checker.d.ts +10 -0
package/dist/lib/auto-update-checker.d.ts.map +1 -0
package/dist/lib/auto-update-checker.js +216 -0
package/dist/lib/auto-update-checker.js.map +1 -0
package/dist/lib/capability-policy.d.ts +18 -0
package/dist/lib/capability-policy.d.ts.map +1 -0
package/dist/lib/capability-policy.js +150 -0
package/dist/lib/capability-policy.js.map +1 -0
package/dist/lib/circuit-breaker.d.ts +34 -0
package/dist/lib/circuit-breaker.d.ts.map +1 -0
package/dist/lib/circuit-breaker.js +124 -0
package/dist/lib/circuit-breaker.js.map +1 -0
package/dist/lib/cli.d.ts +64 -0
package/dist/lib/cli.d.ts.map +1 -0
package/dist/lib/cli.js +274 -0
package/dist/lib/cli.js.map +1 -0
package/dist/lib/codex-cli/observability.d.ts +22 -0
package/dist/lib/codex-cli/observability.d.ts.map +1 -0
package/dist/lib/codex-cli/observability.js +36 -0
package/dist/lib/codex-cli/observability.js.map +1 -0
package/dist/lib/codex-cli/state.d.ts +86 -0
package/dist/lib/codex-cli/state.d.ts.map +1 -0
package/dist/lib/codex-cli/state.js +470 -0
package/dist/lib/codex-cli/state.js.map +1 -0
package/dist/lib/codex-cli/sync.d.ts +27 -0
package/dist/lib/codex-cli/sync.d.ts.map +1 -0
package/dist/lib/codex-cli/sync.js +325 -0
package/dist/lib/codex-cli/sync.js.map +1 -0
package/dist/lib/codex-cli/writer.d.ts +12 -0
package/dist/lib/codex-cli/writer.d.ts.map +1 -0
package/dist/lib/codex-cli/writer.js +388 -0
package/dist/lib/codex-cli/writer.js.map +1 -0
package/dist/lib/codex-manager.d.ts +2 -0
package/dist/lib/codex-manager.d.ts.map +1 -0
package/dist/lib/codex-manager.js +4841 -0
package/dist/lib/codex-manager.js.map +1 -0
package/dist/lib/config.d.ts +269 -0
package/dist/lib/config.d.ts.map +1 -0
package/dist/lib/config.js +789 -0
package/dist/lib/config.js.map +1 -0
package/dist/lib/constants.d.ts +78 -0
package/dist/lib/constants.d.ts.map +1 -0
package/dist/lib/constants.js +78 -0
package/dist/lib/constants.js.map +1 -0
package/dist/lib/context-overflow.d.ts +27 -0
package/dist/lib/context-overflow.d.ts.map +1 -0
package/dist/lib/context-overflow.js +124 -0
package/dist/lib/context-overflow.js.map +1 -0
package/dist/lib/dashboard-settings.d.ts +90 -0
package/dist/lib/dashboard-settings.d.ts.map +1 -0
package/dist/lib/dashboard-settings.js +327 -0
package/dist/lib/dashboard-settings.js.map +1 -0
package/dist/lib/entitlement-cache.d.ts +41 -0
package/dist/lib/entitlement-cache.d.ts.map +1 -0
package/dist/lib/entitlement-cache.js +137 -0
package/dist/lib/entitlement-cache.js.map +1 -0
package/dist/lib/errors.d.ts +113 -0
package/dist/lib/errors.d.ts.map +1 -0
package/dist/lib/errors.js +103 -0
package/dist/lib/errors.js.map +1 -0
package/dist/lib/forecast.d.ts +42 -0
package/dist/lib/forecast.d.ts.map +1 -0
package/dist/lib/forecast.js +256 -0
package/dist/lib/forecast.js.map +1 -0
package/dist/lib/health.d.ts +33 -0
package/dist/lib/health.d.ts.map +1 -0
package/dist/lib/health.js +70 -0
package/dist/lib/health.js.map +1 -0
package/dist/lib/index.d.ts +32 -0
package/dist/lib/index.d.ts.map +1 -0
package/dist/lib/index.js +32 -0
package/dist/lib/index.js.map +1 -0
package/dist/lib/live-account-sync.d.ts +39 -0
package/dist/lib/live-account-sync.d.ts.map +1 -0
package/dist/lib/live-account-sync.js +196 -0
package/dist/lib/live-account-sync.js.map +1 -0
package/dist/lib/logger.d.ts +40 -0
package/dist/lib/logger.d.ts.map +1 -0
package/dist/lib/logger.js +364 -0
package/dist/lib/logger.js.map +1 -0
package/dist/lib/oauth-success.html +338 -0
package/dist/lib/parallel-probe.d.ts +28 -0
package/dist/lib/parallel-probe.d.ts.map +1 -0
package/dist/lib/parallel-probe.js +97 -0
package/dist/lib/parallel-probe.js.map +1 -0
package/dist/lib/preemptive-quota-scheduler.d.ts +53 -0
package/dist/lib/preemptive-quota-scheduler.d.ts.map +1 -0
package/dist/lib/preemptive-quota-scheduler.js +220 -0
package/dist/lib/preemptive-quota-scheduler.js.map +1 -0
package/dist/lib/proactive-refresh.d.ts +66 -0
package/dist/lib/proactive-refresh.d.ts.map +1 -0
package/dist/lib/proactive-refresh.js +143 -0
package/dist/lib/proactive-refresh.js.map +1 -0
package/dist/lib/prompts/codex-opencode-bridge.d.ts +19 -0
package/dist/lib/prompts/codex-opencode-bridge.d.ts.map +1 -0
package/dist/lib/prompts/codex-opencode-bridge.js +169 -0
package/dist/lib/prompts/codex-opencode-bridge.js.map +1 -0
package/dist/lib/prompts/codex.d.ts +41 -0
package/dist/lib/prompts/codex.d.ts.map +1 -0
package/dist/lib/prompts/codex.js +383 -0
package/dist/lib/prompts/codex.js.map +1 -0
package/dist/lib/prompts/opencode-codex.d.ts +25 -0
package/dist/lib/prompts/opencode-codex.d.ts.map +1 -0
package/dist/lib/prompts/opencode-codex.js +270 -0
package/dist/lib/prompts/opencode-codex.js.map +1 -0
package/dist/lib/quota-cache.d.ts +68 -0
package/dist/lib/quota-cache.d.ts.map +1 -0
package/dist/lib/quota-cache.js +224 -0
package/dist/lib/quota-cache.js.map +1 -0
package/dist/lib/quota-probe.d.ts +49 -0
package/dist/lib/quota-probe.d.ts.map +1 -0
package/dist/lib/quota-probe.js +368 -0
package/dist/lib/quota-probe.js.map +1 -0
package/dist/lib/recovery/constants.d.ts +12 -0
package/dist/lib/recovery/constants.d.ts.map +1 -0
package/dist/lib/recovery/constants.js +31 -0
package/dist/lib/recovery/constants.js.map +1 -0
package/dist/lib/recovery/index.d.ts +12 -0
package/dist/lib/recovery/index.d.ts.map +1 -0
package/dist/lib/recovery/index.js +12 -0
package/dist/lib/recovery/index.js.map +1 -0
package/dist/lib/recovery/storage.d.ts +24 -0
package/dist/lib/recovery/storage.d.ts.map +1 -0
package/dist/lib/recovery/storage.js +362 -0
package/dist/lib/recovery/storage.js.map +1 -0
package/dist/lib/recovery/types.d.ts +116 -0
package/dist/lib/recovery/types.d.ts.map +1 -0
package/dist/lib/recovery/types.js +7 -0
package/dist/lib/recovery/types.js.map +1 -0
package/dist/lib/recovery.d.ts +31 -0
package/dist/lib/recovery.d.ts.map +1 -0
package/dist/lib/recovery.js +313 -0
package/dist/lib/recovery.js.map +1 -0
package/dist/lib/refresh-guardian.d.ts +31 -0
package/dist/lib/refresh-guardian.d.ts.map +1 -0
package/dist/lib/refresh-guardian.js +151 -0
package/dist/lib/refresh-guardian.js.map +1 -0
package/dist/lib/refresh-lease.d.ts +37 -0
package/dist/lib/refresh-lease.d.ts.map +1 -0
package/dist/lib/refresh-lease.js +335 -0
package/dist/lib/refresh-lease.js.map +1 -0
package/dist/lib/refresh-queue.d.ts +117 -0
package/dist/lib/refresh-queue.d.ts.map +1 -0
package/dist/lib/refresh-queue.js +297 -0
package/dist/lib/refresh-queue.js.map +1 -0
package/dist/lib/request/failure-policy.d.ts +42 -0
package/dist/lib/request/failure-policy.d.ts.map +1 -0
package/dist/lib/request/failure-policy.js +133 -0
package/dist/lib/request/failure-policy.js.map +1 -0
package/dist/lib/request/fetch-helpers.d.ts +152 -0
package/dist/lib/request/fetch-helpers.d.ts.map +1 -0
package/dist/lib/request/fetch-helpers.js +704 -0
package/dist/lib/request/fetch-helpers.js.map +1 -0
package/dist/lib/request/helpers/input-utils.d.ts +7 -0
package/dist/lib/request/helpers/input-utils.d.ts.map +1 -0
package/dist/lib/request/helpers/input-utils.js +214 -0
package/dist/lib/request/helpers/input-utils.js.map +1 -0
package/dist/lib/request/helpers/model-map.d.ts +28 -0
package/dist/lib/request/helpers/model-map.d.ts.map +1 -0
package/dist/lib/request/helpers/model-map.js +133 -0
package/dist/lib/request/helpers/model-map.js.map +1 -0
package/dist/lib/request/helpers/tool-utils.d.ts +29 -0
package/dist/lib/request/helpers/tool-utils.d.ts.map +1 -0
package/dist/lib/request/helpers/tool-utils.js +117 -0
package/dist/lib/request/helpers/tool-utils.js.map +1 -0
package/dist/lib/request/rate-limit-backoff.d.ts +17 -0
package/dist/lib/request/rate-limit-backoff.d.ts.map +1 -0
package/dist/lib/request/rate-limit-backoff.js +83 -0
package/dist/lib/request/rate-limit-backoff.js.map +1 -0
package/dist/lib/request/request-transformer.d.ts +107 -0
package/dist/lib/request/request-transformer.d.ts.map +1 -0
package/dist/lib/request/request-transformer.js +814 -0
package/dist/lib/request/request-transformer.js.map +1 -0
package/dist/lib/request/response-handler.d.ts +23 -0
package/dist/lib/request/response-handler.d.ts.map +1 -0
package/dist/lib/request/response-handler.js +155 -0
package/dist/lib/request/response-handler.js.map +1 -0
package/dist/lib/request/stream-failover.d.ts +21 -0
package/dist/lib/request/stream-failover.d.ts.map +1 -0
package/dist/lib/request/stream-failover.js +204 -0
package/dist/lib/request/stream-failover.js.map +1 -0
package/dist/lib/rotation.d.ts +146 -0
package/dist/lib/rotation.d.ts.map +1 -0
package/dist/lib/rotation.js +321 -0
package/dist/lib/rotation.js.map +1 -0
package/dist/lib/runtime-paths.d.ts +58 -0
package/dist/lib/runtime-paths.d.ts.map +1 -0
package/dist/lib/runtime-paths.js +164 -0
package/dist/lib/runtime-paths.js.map +1 -0
package/dist/lib/schemas.d.ts +435 -0
package/dist/lib/schemas.d.ts.map +1 -0
package/dist/lib/schemas.js +268 -0
package/dist/lib/schemas.js.map +1 -0
package/dist/lib/session-affinity.d.ts +23 -0
package/dist/lib/session-affinity.d.ts.map +1 -0
package/dist/lib/session-affinity.js +127 -0
package/dist/lib/session-affinity.js.map +1 -0
package/dist/lib/shutdown.d.ts +7 -0
package/dist/lib/shutdown.d.ts.map +1 -0
package/dist/lib/shutdown.js +43 -0
package/dist/lib/shutdown.js.map +1 -0
package/dist/lib/storage/migrations.d.ts +59 -0
package/dist/lib/storage/migrations.d.ts.map +1 -0
package/dist/lib/storage/migrations.js +41 -0
package/dist/lib/storage/migrations.js.map +1 -0
package/dist/lib/storage/paths.d.ts +51 -0
package/dist/lib/storage/paths.d.ts.map +1 -0
package/dist/lib/storage/paths.js +152 -0
package/dist/lib/storage/paths.js.map +1 -0
package/dist/lib/storage.d.ts +106 -0
package/dist/lib/storage.d.ts.map +1 -0
package/dist/lib/storage.js +896 -0
package/dist/lib/storage.js.map +1 -0
package/dist/lib/table-formatter.d.ts +32 -0
package/dist/lib/table-formatter.d.ts.map +1 -0
package/dist/lib/table-formatter.js +44 -0
package/dist/lib/table-formatter.js.map +1 -0
package/dist/lib/tools/hashline-tools.d.ts +51 -0
package/dist/lib/tools/hashline-tools.d.ts.map +1 -0
package/dist/lib/tools/hashline-tools.js +456 -0
package/dist/lib/tools/hashline-tools.js.map +1 -0
package/dist/lib/types.d.ts +130 -0
package/dist/lib/types.d.ts.map +1 -0
package/dist/lib/types.js +2 -0
package/dist/lib/types.js.map +1 -0
package/dist/lib/ui/ansi.d.ts +40 -0
package/dist/lib/ui/ansi.d.ts.map +1 -0
package/dist/lib/ui/ansi.js +68 -0
package/dist/lib/ui/ansi.js.map +1 -0
package/dist/lib/ui/auth-menu.d.ts +76 -0
package/dist/lib/ui/auth-menu.d.ts.map +1 -0
package/dist/lib/ui/auth-menu.js +590 -0
package/dist/lib/ui/auth-menu.js.map +1 -0
package/dist/lib/ui/confirm.d.ts +11 -0
package/dist/lib/ui/confirm.d.ts.map +1 -0
package/dist/lib/ui/confirm.js +29 -0
package/dist/lib/ui/confirm.js.map +1 -0
package/dist/lib/ui/copy.d.ts +123 -0
package/dist/lib/ui/copy.d.ts.map +1 -0
package/dist/lib/ui/copy.js +127 -0
package/dist/lib/ui/copy.js.map +1 -0
package/dist/lib/ui/format.d.ts +62 -0
package/dist/lib/ui/format.d.ts.map +1 -0
package/dist/lib/ui/format.js +205 -0
package/dist/lib/ui/format.js.map +1 -0
package/dist/lib/ui/runtime.d.ts +43 -0
package/dist/lib/ui/runtime.d.ts.map +1 -0
package/dist/lib/ui/runtime.js +69 -0
package/dist/lib/ui/runtime.js.map +1 -0
package/dist/lib/ui/select.d.ts +60 -0
package/dist/lib/ui/select.d.ts.map +1 -0
package/dist/lib/ui/select.js +467 -0
package/dist/lib/ui/select.js.map +1 -0
package/dist/lib/ui/theme.d.ts +56 -0
package/dist/lib/ui/theme.d.ts.map +1 -0
package/dist/lib/ui/theme.js +186 -0
package/dist/lib/ui/theme.js.map +1 -0
package/dist/lib/unified-settings.d.ts +71 -0
package/dist/lib/unified-settings.d.ts.map +1 -0
package/dist/lib/unified-settings.js +299 -0
package/dist/lib/unified-settings.js.map +1 -0
package/dist/lib/utils.d.ts +29 -0
package/dist/lib/utils.d.ts.map +1 -0
package/dist/lib/utils.js +54 -0
package/dist/lib/utils.js.map +1 -0
package/package.json +115 -0
package/scripts/audit-dev-allowlist.js +128 -0
package/scripts/bench-format/hashline-v2.mjs +642 -0
package/scripts/bench-format/models.mjs +105 -0
package/scripts/bench-format/opencode.mjs +205 -0
package/scripts/bench-format/render.mjs +496 -0
package/scripts/bench-format/stats.mjs +54 -0
package/scripts/bench-format/tasks.mjs +151 -0
package/scripts/benchmark-edit-formats.mjs +1161 -0
package/scripts/benchmark-render-dashboard.mjs +49 -0
package/scripts/codex-multi-auth.js +6 -0
package/scripts/codex-routing.js +34 -0
package/scripts/codex.js +122 -0
package/scripts/copy-oauth-success.js +37 -0
package/scripts/install-opencode-codex-auth.js +193 -0
package/scripts/test-all-models.sh +7 -0
package/scripts/test-model-matrix.js +424 -0
package/scripts/validate-model-map.sh +7 -0

package/dist/lib/refresh-queue.js ADDED Viewed

@@ -0,0 +1,297 @@
+/**
+ * Refresh Queue Module
+ *
+ * Prevents race conditions when multiple concurrent requests try to refresh
+ * the same account's token simultaneously. Instead of firing parallel refresh
+ * requests, subsequent callers await the existing in-flight refresh.
+ *
+ * Ported from antigravity-auth refresh-queue.ts pattern.
+ */
+import { refreshAccessToken } from "./auth/auth.js";
+import { createLogger } from "./logger.js";
+import { RefreshLeaseCoordinator } from "./refresh-lease.js";
+const log = createLogger("refresh-queue");
+/**
+ * Manages queued token refresh operations to prevent race conditions.
+ *
+ * When multiple concurrent requests need to refresh the same account's token,
+ * only the first request triggers the actual refresh. Subsequent requests
+ * await the same promise, ensuring:
+ * - No duplicate refresh API calls for the same refresh token
+ * - Consistent token state across all waiting callers
+ * - Reduced load on OpenAI's token endpoint
+ *
+ * Token Rotation Handling:
+ * When OpenAI rotates the refresh token during a refresh operation, we maintain
+ * a mapping from old token → new token. This ensures that requests arriving with
+ * either the old or new token will find the in-flight refresh and not trigger
+ * duplicate refreshes.
+ *
+ * @example
+ * ```typescript
+ * const queue = new RefreshQueue();
+ *
+ * // These three concurrent calls will only trigger ONE actual refresh
+ * const [result1, result2, result3] = await Promise.all([
+ *   queue.refresh(refreshToken),
+ *   queue.refresh(refreshToken),
+ *   queue.refresh(refreshToken),
+ * ]);
+ *
+ * // All three get the same result
+ * console.log(result1 === result2); // true (same object reference)
+ * ```
+ */
+export class RefreshQueue {
+    pending = new Map();
+    leaseCoordinator;
+    /**
+     * Maps old refresh tokens to new tokens after rotation.
+     * This allows lookups with either old or new token to find the same entry.
+     * Format: oldToken → newToken
+     */
+    tokenRotationMap = new Map();
+    /**
+     * Maximum time to keep a refresh entry in the queue (prevents memory leaks
+     * from stuck requests). After this timeout, the entry is removed and new
+     * callers will trigger a fresh refresh.
+     */
+    maxEntryAgeMs;
+    /**
+     * Create a new RefreshQueue instance.
+     * @param maxEntryAgeMs - Maximum age for pending entries before cleanup (default: 30s)
+     */
+    constructor(maxEntryAgeMs = 30_000, leaseCoordinator = RefreshLeaseCoordinator.fromEnvironment()) {
+        this.maxEntryAgeMs = maxEntryAgeMs;
+        this.leaseCoordinator = leaseCoordinator;
+    }
+    /**
+     * Refresh a token, deduplicating concurrent requests for the same refresh token.
+     *
+     * If a refresh is already in-flight for this token, returns the existing promise.
+     * Otherwise, initiates a new refresh and caches the promise for other callers.
+     *
+     * @param refreshToken - The refresh token to use
+     * @returns Token result (success with new tokens, or failure)
+     */
+    async refresh(refreshToken) {
+        this.cleanup();
+        // Check for existing in-flight refresh (direct match)
+        const existing = this.pending.get(refreshToken);
+        if (existing) {
+            log.info("Reusing in-flight refresh for token", {
+                tokenSuffix: refreshToken.slice(-6),
+                waitingMs: Date.now() - existing.startedAt,
+            });
+            return existing.promise;
+        }
+        // Check if this token was rotated FROM another token that's still refreshing
+        // This handles: Request A starts with oldToken, gets newToken, Request B arrives with newToken
+        const rotatedFrom = this.findOriginalToken(refreshToken);
+        if (rotatedFrom) {
+            const originalEntry = this.pending.get(rotatedFrom);
+            if (originalEntry) {
+                log.info("Reusing in-flight refresh via rotation mapping", {
+                    newTokenSuffix: refreshToken.slice(-6),
+                    originalTokenSuffix: rotatedFrom.slice(-6),
+                    waitingMs: Date.now() - originalEntry.startedAt,
+                });
+                return originalEntry.promise;
+            }
+        }
+        // Start a new refresh immediately so local state reflects "in-flight"
+        // without waiting on cross-process lease checks.
+        const startedAt = Date.now();
+        const promise = (async () => {
+            let lease;
+            try {
+                lease = await this.leaseCoordinator.acquire(refreshToken);
+            }
+            catch (error) {
+                log.warn("Refresh lease acquire failed; falling back to local refresh", {
+                    tokenSuffix: refreshToken.slice(-6),
+                    error: error?.message ?? String(error),
+                });
+                return this.executeRefreshWithRotationTracking(refreshToken);
+            }
+            if (lease.role === "follower" && lease.result) {
+                log.info("Using refresh result from cross-process lease", {
+                    tokenSuffix: refreshToken.slice(-6),
+                });
+                return lease.result;
+            }
+            try {
+                const result = await this.executeRefreshWithRotationTracking(refreshToken);
+                try {
+                    await lease.release(result);
+                }
+                catch (error) {
+                    log.warn("Failed to publish lease refresh result", {
+                        tokenSuffix: refreshToken.slice(-6),
+                        error: error?.message ?? String(error),
+                    });
+                }
+                return result;
+            }
+            finally {
+                try {
+                    await lease.release();
+                }
+                catch (error) {
+                    log.warn("Failed to release refresh lease", {
+                        tokenSuffix: refreshToken.slice(-6),
+                        error: error?.message ?? String(error),
+                    });
+                }
+            }
+        })();
+        this.pending.set(refreshToken, { promise, startedAt });
+        try {
+            return await promise;
+        }
+        finally {
+            this.pending.delete(refreshToken);
+            this.cleanupRotationMapping(refreshToken);
+        }
+    }
+    findOriginalToken(newToken) {
+        for (const [oldToken, mappedNewToken] of this.tokenRotationMap.entries()) {
+            if (mappedNewToken === newToken) {
+                return oldToken;
+            }
+        }
+        return undefined;
+    }
+    cleanupRotationMapping(token) {
+        this.tokenRotationMap.delete(token);
+        for (const [oldToken, newToken] of this.tokenRotationMap.entries()) {
+            if (newToken === token) {
+                this.tokenRotationMap.delete(oldToken);
+            }
+        }
+    }
+    async executeRefreshWithRotationTracking(refreshToken) {
+        const result = await this.executeRefresh(refreshToken);
+        if (result.type === "success" && result.refresh !== refreshToken) {
+            this.tokenRotationMap.set(refreshToken, result.refresh);
+            log.info("Token rotated during refresh", {
+                oldTokenSuffix: refreshToken.slice(-6),
+                newTokenSuffix: result.refresh.slice(-6),
+            });
+        }
+        return result;
+    }
+    /**
+     * Execute the actual refresh and log results.
+     */
+    async executeRefresh(refreshToken) {
+        const startTime = Date.now();
+        log.info("Starting token refresh", { tokenSuffix: refreshToken.slice(-6) });
+        try {
+            const result = await refreshAccessToken(refreshToken);
+            const duration = Date.now() - startTime;
+            if (result.type === "success") {
+                log.info("Token refresh succeeded", {
+                    tokenSuffix: refreshToken.slice(-6),
+                    durationMs: duration,
+                });
+            }
+            else {
+                log.warn("Token refresh failed", {
+                    tokenSuffix: refreshToken.slice(-6),
+                    reason: result.reason,
+                    durationMs: duration,
+                });
+            }
+            return result;
+        }
+        catch (error) {
+            const duration = Date.now() - startTime;
+            log.error("Token refresh threw exception", {
+                tokenSuffix: refreshToken.slice(-6),
+                error: error?.message ?? String(error),
+                durationMs: duration,
+            });
+            return {
+                type: "failed",
+                reason: "network_error",
+                message: error?.message ?? "Unknown error during refresh",
+            };
+        }
+    }
+    /**
+     * Remove stale entries that have been pending too long.
+     * This prevents memory leaks from stuck or abandoned refresh operations.
+     */
+    cleanup() {
+        const now = Date.now();
+        const staleTokens = [];
+        for (const [token, entry] of this.pending.entries()) {
+            if (now - entry.startedAt > this.maxEntryAgeMs) {
+                staleTokens.push(token);
+            }
+        }
+        for (const token of staleTokens) {
+            // istanbul ignore next -- defensive: token always exists in pending at this point (not yet deleted)
+            const ageMs = now - (this.pending.get(token)?.startedAt ?? now);
+            log.warn("Removing stale refresh entry", {
+                tokenSuffix: token.slice(-6),
+                ageMs,
+            });
+            this.pending.delete(token);
+        }
+    }
+    /**
+     * Check if there's an in-flight refresh for a given token.
+     * @param refreshToken - The refresh token to check
+     * @returns True if refresh is in progress
+     */
+    isRefreshing(refreshToken) {
+        return this.pending.has(refreshToken);
+    }
+    /**
+     * Get the number of pending refresh operations.
+     * Useful for debugging and monitoring.
+     */
+    get pendingCount() {
+        return this.pending.size;
+    }
+    /**
+     * Clear all pending entries (primarily for testing).
+     */
+    clear() {
+        this.pending.clear();
+        this.tokenRotationMap.clear();
+    }
+}
+// ============================================================================
+// Singleton Instance
+// ============================================================================
+let refreshQueueInstance = null;
+/**
+ * Get the singleton RefreshQueue instance.
+ * @param maxEntryAgeMs - Maximum age for pending entries (only used on first call)
+ * @returns The global RefreshQueue instance
+ */
+export function getRefreshQueue(maxEntryAgeMs) {
+    if (!refreshQueueInstance) {
+        refreshQueueInstance = new RefreshQueue(maxEntryAgeMs);
+    }
+    return refreshQueueInstance;
+}
+/**
+ * Reset the singleton instance (primarily for testing).
+ */
+export function resetRefreshQueue() {
+    refreshQueueInstance?.clear();
+    refreshQueueInstance = null;
+}
+/**
+ * Convenience function to refresh a token using the singleton queue.
+ * @param refreshToken - The refresh token to use
+ * @returns Token result
+ */
+export async function queuedRefresh(refreshToken) {
+    return getRefreshQueue().refresh(refreshToken);
+}
+//# sourceMappingURL=refresh-queue.js.map

package/dist/lib/refresh-queue.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"refresh-queue.js","sourceRoot":"","sources":["../../lib/refresh-queue.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAEpD,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,EAAE,uBAAuB,EAAE,MAAM,oBAAoB,CAAC;AAE7D,MAAM,GAAG,GAAG,YAAY,CAAC,eAAe,CAAC,CAAC;AAU1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AACH,MAAM,OAAO,YAAY;IACf,OAAO,GAA8B,IAAI,GAAG,EAAE,CAAC;IACtC,gBAAgB,CAA0B;IAE3D;;;;OAIG;IACK,gBAAgB,GAAwB,IAAI,GAAG,EAAE,CAAC;IAE1D;;;;OAIG;IACc,aAAa,CAAS;IAEvC;;;OAGG;IACH,YACE,gBAAwB,MAAM,EAC9B,mBAA4C,uBAAuB,CAAC,eAAe,EAAE;QAErF,IAAI,CAAC,aAAa,GAAG,aAAa,CAAC;QACnC,IAAI,CAAC,gBAAgB,GAAG,gBAAgB,CAAC;IAC3C,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,OAAO,CAAC,YAAoB;QAChC,IAAI,CAAC,OAAO,EAAE,CAAC;QAEf,sDAAsD;QACtD,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAChD,IAAI,QAAQ,EAAE,CAAC;YACb,GAAG,CAAC,IAAI,CAAC,qCAAqC,EAAE;gBAC9C,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBACnC,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,QAAQ,CAAC,SAAS;aAC3C,CAAC,CAAC;YACH,OAAO,QAAQ,CAAC,OAAO,CAAC;QAC1B,CAAC;QAED,6EAA6E;QAC7E,+FAA+F;QAC/F,MAAM,WAAW,GAAG,IAAI,CAAC,iBAAiB,CAAC,YAAY,CAAC,CAAC;QACzD,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,aAAa,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;YACpD,IAAI,aAAa,EAAE,CAAC;gBAClB,GAAG,CAAC,IAAI,CAAC,gDAAgD,EAAE;oBACzD,cAAc,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;oBACtC,mBAAmB,EAAE,WAAW,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;oBAC1C,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,aAAa,CAAC,SAAS;iBAChD,CAAC,CAAC;gBACH,OAAO,aAAa,CAAC,OAAO,CAAC;YAC/B,CAAC;QACH,CAAC;QAED,sEAAsE;QACtE,iDAAiD;QACjD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,CAAC,KAAK,IAA0B,EAAE;YAChD,IAAI,KAA8D,CAAC;YACnE,IAAI,CAAC;gBACH,KAAK,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;YAC5D,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,GAAG,CAAC,IAAI,CAAC,6DAA6D,EAAE;oBACtE,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;oBACnC,KAAK,EAAG,KAAe,EAAE,OAAO,IAAI,MAAM,CAAC,KAAK,CAAC;iBAClD,CAAC,CAAC;gBACH,OAAO,IAAI,CAAC,kCAAkC,CAAC,YAAY,CAAC,CAAC;YAC/D,CAAC;YACD,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,IAAI,KAAK,CAAC,MAAM,EAAE,CAAC;gBAC9C,GAAG,CAAC,IAAI,CAAC,+CAA+C,EAAE;oBACxD,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;iBACpC,CAAC,CAAC;gBACH,OAAO,KAAK,CAAC,MAAM,CAAC;YACtB,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kCAAkC,CAAC,YAAY,CAAC,CAAC;gBAC3E,IAAI,CAAC;oBACH,MAAM,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;gBAC9B,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,GAAG,CAAC,IAAI,CAAC,wCAAwC,EAAE;wBACjD,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;wBACnC,KAAK,EAAG,KAAe,EAAE,OAAO,IAAI,MAAM,CAAC,KAAK,CAAC;qBAClD,CAAC,CAAC;gBACL,CAAC;gBACD,OAAO,MAAM,CAAC;YAChB,CAAC;oBAAS,CAAC;gBACT,IAAI,CAAC;oBACH,MAAM,KAAK,CAAC,OAAO,EAAE,CAAC;gBACxB,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,GAAG,CAAC,IAAI,CAAC,iCAAiC,EAAE;wBAC1C,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;wBACnC,KAAK,EAAG,KAAe,EAAE,OAAO,IAAI,MAAM,CAAC,KAAK,CAAC;qBAClD,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC,CAAC,EAAE,CAAC;QACL,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,EAAE,EAAE,OAAO,EAAE,SAAS,EAAE,CAAC,CAAC;QAEvD,IAAI,CAAC;YACH,OAAO,MAAM,OAAO,CAAC;QACvB,CAAC;gBAAS,CAAC;YACT,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;YAClC,IAAI,CAAC,sBAAsB,CAAC,YAAY,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IAEO,iBAAiB,CAAC,QAAgB;QACxC,KAAK,MAAM,CAAC,QAAQ,EAAE,cAAc,CAAC,IAAI,IAAI,CAAC,gBAAgB,CAAC,OAAO,EAAE,EAAE,CAAC;YACzE,IAAI,cAAc,KAAK,QAAQ,EAAE,CAAC;gBAChC,OAAO,QAAQ,CAAC;YAClB,CAAC;QACH,CAAC;QACD,OAAO,SAAS,CAAC;IACnB,CAAC;IAEO,sBAAsB,CAAC,KAAa;QAC1C,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACpC,KAAK,MAAM,CAAC,QAAQ,EAAE,QAAQ,CAAC,IAAI,IAAI,CAAC,gBAAgB,CAAC,OAAO,EAAE,EAAE,CAAC;YACnE,IAAI,QAAQ,KAAK,KAAK,EAAE,CAAC;gBACvB,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;YACzC,CAAC;QACH,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,kCAAkC,CAAC,YAAoB;QACnE,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC;QAEvD,IAAI,MAAM,CAAC,IAAI,KAAK,SAAS,IAAI,MAAM,CAAC,OAAO,KAAK,YAAY,EAAE,CAAC;YACjE,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,YAAY,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;YACxD,GAAG,CAAC,IAAI,CAAC,8BAA8B,EAAE;gBACvC,cAAc,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBACtC,cAAc,EAAE,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;aACzC,CAAC,CAAC;QACL,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,cAAc,CAAC,YAAoB;QAC/C,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,GAAG,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QAE5E,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,kBAAkB,CAAC,YAAY,CAAC,CAAC;YACtD,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAExC,IAAI,MAAM,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;gBAC9B,GAAG,CAAC,IAAI,CAAC,yBAAyB,EAAE;oBAClC,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;oBACnC,UAAU,EAAE,QAAQ;iBACrB,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,IAAI,CAAC,sBAAsB,EAAE;oBAC/B,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;oBACnC,MAAM,EAAE,MAAM,CAAC,MAAM;oBACrB,UAAU,EAAE,QAAQ;iBACrB,CAAC,CAAC;YACL,CAAC;YAED,OAAO,MAAM,CAAC;QAChB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YACxC,GAAG,CAAC,KAAK,CAAC,+BAA+B,EAAE;gBACzC,WAAW,EAAE,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBACnC,KAAK,EAAG,KAAe,EAAE,OAAO,IAAI,MAAM,CAAC,KAAK,CAAC;gBACjD,UAAU,EAAE,QAAQ;aACrB,CAAC,CAAC;YAEH,OAAO;gBACL,IAAI,EAAE,QAAQ;gBACd,MAAM,EAAE,eAAe;gBACvB,OAAO,EAAG,KAAe,EAAE,OAAO,IAAI,8BAA8B;aACrE,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;OAGG;IACK,OAAO;QACb,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,WAAW,GAAa,EAAE,CAAC;QAEjC,KAAK,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC;YACpD,IAAI,GAAG,GAAG,KAAK,CAAC,SAAS,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;gBAC/C,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC1B,CAAC;QACH,CAAC;QAED,KAAK,MAAM,KAAK,IAAI,WAAW,EAAE,CAAC;YAChC,oGAAoG;YACpG,MAAM,KAAK,GAAG,GAAG,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,SAAS,IAAI,GAAG,CAAC,CAAC;YAChE,GAAG,CAAC,IAAI,CAAC,8BAA8B,EAAE;gBACvC,WAAW,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAC5B,KAAK;aACN,CAAC,CAAC;YACH,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC7B,CAAC;IACH,CAAC;IAED;;;;OAIG;IACH,YAAY,CAAC,YAAoB;QAC/B,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;IACxC,CAAC;IAED;;;OAGG;IACH,IAAI,YAAY;QACd,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC;IAC3B,CAAC;IAED;;OAEG;IACH,KAAK;QACH,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACrB,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;IAChC,CAAC;CACF;AAED,+EAA+E;AAC/E,qBAAqB;AACrB,+EAA+E;AAE/E,IAAI,oBAAoB,GAAwB,IAAI,CAAC;AAErD;;;;GAIG;AACH,MAAM,UAAU,eAAe,CAAC,aAAsB;IACpD,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC1B,oBAAoB,GAAG,IAAI,YAAY,CAAC,aAAa,CAAC,CAAC;IACzD,CAAC;IACD,OAAO,oBAAoB,CAAC;AAC9B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB;IAC/B,oBAAoB,EAAE,KAAK,EAAE,CAAC;IAC9B,oBAAoB,GAAG,IAAI,CAAC;AAC9B,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,YAAoB;IACtD,OAAO,eAAe,EAAE,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;AACjD,CAAC"}

package/dist/lib/request/failure-policy.d.ts ADDED Viewed

@@ -0,0 +1,42 @@
+import type { CooldownReason } from "../storage.js";
+export type FailureKind = "auth-refresh" | "network" | "server" | "rate-limit" | "empty-response";
+export type FailoverMode = "aggressive" | "balanced" | "conservative";
+export interface FailurePolicyInput {
+    kind: FailureKind;
+    consecutiveAuthFailures?: number;
+    maxAuthFailuresBeforeRemoval?: number;
+    serverRetryAfterMs?: number;
+    failoverMode?: FailoverMode;
+}
+export interface FailurePolicyDecision {
+    rotateAccount: boolean;
+    refundToken: boolean;
+    recordFailure: boolean;
+    markRateLimited: boolean;
+    removeAccount: boolean;
+    cooldownMs?: number;
+    cooldownReason?: CooldownReason;
+    retrySameAccount: boolean;
+    retryDelayMs?: number;
+    handoffStrategy: "soft" | "hard";
+}
+/**
+ * Compute a FailurePolicyDecision that specifies how to handle a failure described by `input`.
+ *
+ * Evaluates the provided failure kind and related hints to decide whether to rotate or remove an account,
+ * refund a token, record or mark the failure, apply a cooldown, retry on the same account (and with what delay),
+ * and choose a handoff strategy.
+ *
+ * Concurrency assumptions: this function is pure and safe to call concurrently from multiple threads/processes.
+ * Filesystem notes: no filesystem access is performed (no Windows-specific behavior).
+ * Token redaction: decisions may set `refundToken` to true/false but this function does not log or expose token values.
+ *
+ * @param input - Configuration and hints for the failure policy (must include `kind`; may include `consecutiveAuthFailures`, `maxAuthFailuresBeforeRemoval`, `serverRetryAfterMs`, and `failoverMode`).
+ * @param overrides - Optional environment overrides: `networkCooldownMs` and `serverCooldownMs` adjust fallback cooldown values.
+ * @returns A FailurePolicyDecision object describing rotation, refund, recording, rate-limit marking, removal, cooldown and retry behavior, and the chosen handoff strategy.
+ */
+export declare function evaluateFailurePolicy(input: FailurePolicyInput, overrides?: {
+    networkCooldownMs?: number;
+    serverCooldownMs?: number;
+}): FailurePolicyDecision;
+//# sourceMappingURL=failure-policy.d.ts.map

package/dist/lib/request/failure-policy.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"failure-policy.d.ts","sourceRoot":"","sources":["../../../lib/request/failure-policy.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAEpD,MAAM,MAAM,WAAW,GACpB,cAAc,GACd,SAAS,GACT,QAAQ,GACR,YAAY,GACZ,gBAAgB,CAAC;AAEpB,MAAM,MAAM,YAAY,GAAG,YAAY,GAAG,UAAU,GAAG,cAAc,CAAC;AAEtE,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,WAAW,CAAC;IAClB,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,4BAA4B,CAAC,EAAE,MAAM,CAAC;IACtC,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,YAAY,CAAC,EAAE,YAAY,CAAC;CAC5B;AAED,MAAM,WAAW,qBAAqB;IACrC,aAAa,EAAE,OAAO,CAAC;IACvB,WAAW,EAAE,OAAO,CAAC;IACrB,aAAa,EAAE,OAAO,CAAC;IACvB,eAAe,EAAE,OAAO,CAAC;IACzB,aAAa,EAAE,OAAO,CAAC;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,gBAAgB,EAAE,OAAO,CAAC;IAC1B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,eAAe,EAAE,MAAM,GAAG,MAAM,CAAC;CACjC;AA4BD;;;;;;;;;;;;;;GAcG;AACH,wBAAgB,qBAAqB,CACpC,KAAK,EAAE,kBAAkB,EACzB,SAAS,CAAC,EAAE;IACX,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC1B,GACC,qBAAqB,CAoGvB"}

package/dist/lib/request/failure-policy.js ADDED Viewed

@@ -0,0 +1,133 @@
+import { ACCOUNT_LIMITS } from "../constants.js";
+const DEFAULT_NETWORK_COOLDOWN_MS = 6_000;
+const DEFAULT_SERVER_COOLDOWN_MS = 4_000;
+const NETWORK_RETRY_DELAY_MS = {
+    aggressive: 0,
+    balanced: 250,
+    conservative: 900,
+};
+const EMPTY_RESPONSE_RETRY_DELAY_MS = {
+    aggressive: 0,
+    balanced: 200,
+    conservative: 600,
+};
+/**
+ * Selects the failover mode provided on the input or uses `aggressive` when not set.
+ *
+ * This is a pure, concurrency-safe helper with no filesystem side effects (including on Windows)
+ * and does not log or expose tokens from its input.
+ *
+ * @param input - Failure policy input that may contain an optional `failoverMode`
+ * @returns The chosen failover mode: `aggressive`, `balanced`, or `conservative` (defaults to `aggressive`)
+ */
+function getFailoverMode(input) {
+    return input.failoverMode ?? "aggressive";
+}
+/**
+ * Compute a FailurePolicyDecision that specifies how to handle a failure described by `input`.
+ *
+ * Evaluates the provided failure kind and related hints to decide whether to rotate or remove an account,
+ * refund a token, record or mark the failure, apply a cooldown, retry on the same account (and with what delay),
+ * and choose a handoff strategy.
+ *
+ * Concurrency assumptions: this function is pure and safe to call concurrently from multiple threads/processes.
+ * Filesystem notes: no filesystem access is performed (no Windows-specific behavior).
+ * Token redaction: decisions may set `refundToken` to true/false but this function does not log or expose token values.
+ *
+ * @param input - Configuration and hints for the failure policy (must include `kind`; may include `consecutiveAuthFailures`, `maxAuthFailuresBeforeRemoval`, `serverRetryAfterMs`, and `failoverMode`).
+ * @param overrides - Optional environment overrides: `networkCooldownMs` and `serverCooldownMs` adjust fallback cooldown values.
+ * @returns A FailurePolicyDecision object describing rotation, refund, recording, rate-limit marking, removal, cooldown and retry behavior, and the chosen handoff strategy.
+ */
+export function evaluateFailurePolicy(input, overrides) {
+    switch (input.kind) {
+        case "auth-refresh": {
+            const failures = Math.max(0, Math.floor(input.consecutiveAuthFailures ?? 0));
+            const maxFailures = Math.max(1, Math.floor(input.maxAuthFailuresBeforeRemoval ?? ACCOUNT_LIMITS.MAX_AUTH_FAILURES_BEFORE_REMOVAL));
+            return {
+                rotateAccount: true,
+                refundToken: false,
+                recordFailure: false,
+                markRateLimited: false,
+                removeAccount: failures >= maxFailures,
+                cooldownMs: ACCOUNT_LIMITS.AUTH_FAILURE_COOLDOWN_MS,
+                cooldownReason: "auth-failure",
+                retrySameAccount: false,
+                handoffStrategy: "hard",
+            };
+        }
+        case "network": {
+            const mode = getFailoverMode(input);
+            const cooldownMs = Math.max(0, Math.floor(overrides?.networkCooldownMs ?? DEFAULT_NETWORK_COOLDOWN_MS));
+            const retryDelayMs = NETWORK_RETRY_DELAY_MS[mode];
+            const retrySameAccount = retryDelayMs > 0;
+            return {
+                rotateAccount: !retrySameAccount,
+                refundToken: true,
+                recordFailure: true,
+                markRateLimited: false,
+                removeAccount: false,
+                cooldownMs,
+                cooldownReason: cooldownMs > 0 ? "network-error" : undefined,
+                retrySameAccount,
+                retryDelayMs: retrySameAccount ? retryDelayMs : undefined,
+                handoffStrategy: "soft",
+            };
+        }
+        case "server": {
+            const mode = getFailoverMode(input);
+            const retryAfterMs = Math.max(0, Math.floor(input.serverRetryAfterMs ?? 0));
+            const fallbackCooldown = Math.max(0, Math.floor(overrides?.serverCooldownMs ?? DEFAULT_SERVER_COOLDOWN_MS));
+            const cooldownMs = retryAfterMs > 0 ? retryAfterMs : fallbackCooldown;
+            const retrySameAccount = mode === "conservative" && retryAfterMs <= 0;
+            return {
+                rotateAccount: !retrySameAccount,
+                refundToken: true,
+                recordFailure: true,
+                markRateLimited: false,
+                removeAccount: false,
+                cooldownMs,
+                cooldownReason: cooldownMs > 0 ? "network-error" : undefined,
+                retrySameAccount,
+                retryDelayMs: retrySameAccount ? 500 : undefined,
+                handoffStrategy: "hard",
+            };
+        }
+        case "rate-limit": {
+            return {
+                rotateAccount: true,
+                refundToken: false,
+                recordFailure: false,
+                markRateLimited: true,
+                removeAccount: false,
+                retrySameAccount: false,
+                handoffStrategy: "hard",
+            };
+        }
+        case "empty-response": {
+            const mode = getFailoverMode(input);
+            const retryDelayMs = EMPTY_RESPONSE_RETRY_DELAY_MS[mode];
+            const retrySameAccount = retryDelayMs > 0;
+            return {
+                rotateAccount: !retrySameAccount,
+                refundToken: true,
+                recordFailure: true,
+                markRateLimited: false,
+                removeAccount: false,
+                retrySameAccount,
+                retryDelayMs: retrySameAccount ? retryDelayMs : undefined,
+                handoffStrategy: "soft",
+            };
+        }
+        default:
+            return {
+                rotateAccount: true,
+                refundToken: true,
+                recordFailure: true,
+                markRateLimited: false,
+                removeAccount: false,
+                retrySameAccount: false,
+                handoffStrategy: "hard",
+            };
+    }
+}
+//# sourceMappingURL=failure-policy.js.map

package/dist/lib/request/failure-policy.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"failure-policy.js","sourceRoot":"","sources":["../../../lib/request/failure-policy.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AAiCjD,MAAM,2BAA2B,GAAG,KAAK,CAAC;AAC1C,MAAM,0BAA0B,GAAG,KAAK,CAAC;AACzC,MAAM,sBAAsB,GAAiC;IAC5D,UAAU,EAAE,CAAC;IACb,QAAQ,EAAE,GAAG;IACb,YAAY,EAAE,GAAG;CACjB,CAAC;AACF,MAAM,6BAA6B,GAAiC;IACnE,UAAU,EAAE,CAAC;IACb,QAAQ,EAAE,GAAG;IACb,YAAY,EAAE,GAAG;CACjB,CAAC;AAEF;;;;;;;;GAQG;AACH,SAAS,eAAe,CAAC,KAAyB;IACjD,OAAO,KAAK,CAAC,YAAY,IAAI,YAAY,CAAC;AAC3C,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,qBAAqB,CACpC,KAAyB,EACzB,SAGC;IAED,QAAQ,KAAK,CAAC,IAAI,EAAE,CAAC;QACpB,KAAK,cAAc,CAAC,CAAC,CAAC;YACrB,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,uBAAuB,IAAI,CAAC,CAAC,CAAC,CAAC;YAC7E,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,CAC3B,CAAC,EACD,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,4BAA4B,IAAI,cAAc,CAAC,gCAAgC,CAAC,CACjG,CAAC;YACF,OAAO;gBACN,aAAa,EAAE,IAAI;gBACnB,WAAW,EAAE,KAAK;gBAClB,aAAa,EAAE,KAAK;gBACpB,eAAe,EAAE,KAAK;gBACtB,aAAa,EAAE,QAAQ,IAAI,WAAW;gBACtC,UAAU,EAAE,cAAc,CAAC,wBAAwB;gBACnD,cAAc,EAAE,cAAc;gBAC9B,gBAAgB,EAAE,KAAK;gBACvB,eAAe,EAAE,MAAM;aACvB,CAAC;QACH,CAAC;QACD,KAAK,SAAS,CAAC,CAAC,CAAC;YAChB,MAAM,IAAI,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;YACpC,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAC1B,CAAC,EACD,IAAI,CAAC,KAAK,CAAC,SAAS,EAAE,iBAAiB,IAAI,2BAA2B,CAAC,CACvE,CAAC;YACF,MAAM,YAAY,GAAG,sBAAsB,CAAC,IAAI,CAAC,CAAC;YAClD,MAAM,gBAAgB,GAAG,YAAY,GAAG,CAAC,CAAC;YAC1C,OAAO;gBACN,aAAa,EAAE,CAAC,gBAAgB;gBAChC,WAAW,EAAE,IAAI;gBACjB,aAAa,EAAE,IAAI;gBACnB,eAAe,EAAE,KAAK;gBACtB,aAAa,EAAE,KAAK;gBACpB,UAAU;gBACV,cAAc,EAAE,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS;gBAC5D,gBAAgB;gBAChB,YAAY,EAAE,gBAAgB,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS;gBACzD,eAAe,EAAE,MAAM;aACvB,CAAC;QACH,CAAC;QACD,KAAK,QAAQ,CAAC,CAAC,CAAC;YACf,MAAM,IAAI,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;YACpC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,kBAAkB,IAAI,CAAC,CAAC,CAAC,CAAC;YAC5E,MAAM,gBAAgB,GAAG,IAAI,CAAC,GAAG,CAChC,CAAC,EACD,IAAI,CAAC,KAAK,CAAC,SAAS,EAAE,gBAAgB,IAAI,0BAA0B,CAAC,CACrE,CAAC;YACF,MAAM,UAAU,GAAG,YAAY,GAAG,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,gBAAgB,CAAC;YACtE,MAAM,gBAAgB,GAAG,IAAI,KAAK,cAAc,IAAI,YAAY,IAAI,CAAC,CAAC;YACtE,OAAO;gBACN,aAAa,EAAE,CAAC,gBAAgB;gBAChC,WAAW,EAAE,IAAI;gBACjB,aAAa,EAAE,IAAI;gBACnB,eAAe,EAAE,KAAK;gBACtB,aAAa,EAAE,KAAK;gBACpB,UAAU;gBACV,cAAc,EAAE,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS;gBAC5D,gBAAgB;gBAChB,YAAY,EAAE,gBAAgB,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;gBAChD,eAAe,EAAE,MAAM;aACvB,CAAC;QACH,CAAC;QACD,KAAK,YAAY,CAAC,CAAC,CAAC;YACnB,OAAO;gBACN,aAAa,EAAE,IAAI;gBACnB,WAAW,EAAE,KAAK;gBAClB,aAAa,EAAE,KAAK;gBACpB,eAAe,EAAE,IAAI;gBACrB,aAAa,EAAE,KAAK;gBACpB,gBAAgB,EAAE,KAAK;gBACvB,eAAe,EAAE,MAAM;aACvB,CAAC;QACH,CAAC;QACD,KAAK,gBAAgB,CAAC,CAAC,CAAC;YACvB,MAAM,IAAI,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;YACpC,MAAM,YAAY,GAAG,6BAA6B,CAAC,IAAI,CAAC,CAAC;YACzD,MAAM,gBAAgB,GAAG,YAAY,GAAG,CAAC,CAAC;YAC1C,OAAO;gBACN,aAAa,EAAE,CAAC,gBAAgB;gBAChC,WAAW,EAAE,IAAI;gBACjB,aAAa,EAAE,IAAI;gBACnB,eAAe,EAAE,KAAK;gBACtB,aAAa,EAAE,KAAK;gBACpB,gBAAgB;gBAChB,YAAY,EAAE,gBAAgB,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS;gBACzD,eAAe,EAAE,MAAM;aACvB,CAAC;QACH,CAAC;QACD;YACC,OAAO;gBACN,aAAa,EAAE,IAAI;gBACnB,WAAW,EAAE,IAAI;gBACjB,aAAa,EAAE,IAAI;gBACnB,eAAe,EAAE,KAAK;gBACtB,aAAa,EAAE,KAAK;gBACpB,gBAAgB,EAAE,KAAK;gBACvB,eAAe,EAAE,MAAM;aACvB,CAAC;IACJ,CAAC;AACF,CAAC"}

package/dist/lib/request/fetch-helpers.d.ts ADDED Viewed

@@ -0,0 +1,152 @@
+/**
+ * Helper functions for the custom fetch implementation
+ * These functions break down the complex fetch logic into manageable, testable units
+ */
+import type { Auth, OpencodeClient } from "@opencode-ai/sdk";
+import type { UserConfig, RequestBody } from "../types.js";
+export interface RateLimitInfo {
+    retryAfterMs: number;
+    code?: string;
+}
+export interface EntitlementError {
+    isEntitlement: true;
+    code: string;
+    message: string;
+}
+export declare const DEFAULT_UNSUPPORTED_CODEX_FALLBACK_CHAIN: Record<string, string[]>;
+export interface UnsupportedCodexModelInfo {
+    isUnsupported: boolean;
+    code?: string;
+    message?: string;
+    unsupportedModel?: string;
+}
+export interface ResolveUnsupportedCodexFallbackOptions {
+    requestedModel: string | undefined;
+    errorBody: unknown;
+    attemptedModels?: Iterable<string>;
+    fallbackOnUnsupportedCodexModel: boolean;
+    fallbackToGpt52OnUnsupportedGpt53: boolean;
+    customChain?: Record<string, string[]>;
+}
+export declare function extractUnsupportedCodexModelFromText(bodyText: string): string | undefined;
+export declare function getUnsupportedCodexModelInfo(errorBody: unknown): UnsupportedCodexModelInfo;
+export declare function resolveUnsupportedCodexFallbackModel(options: ResolveUnsupportedCodexFallbackOptions): string | undefined;
+/**
+ * Returns true when the legacy `gpt-5.3-codex -> gpt-5.2-codex` edge is available.
+ */
+export declare function shouldFallbackToGpt52OnUnsupportedGpt53(requestedModel: string | undefined, errorBody: unknown): boolean;
+/**
+ * Detects whether an error code or response body indicates an entitlement/subscription issue for Codex models.
+ *
+ * Entitlement errors signal that the requested feature is not included in the user's plan and should not be treated as rate limits.
+ * This function is pure and safe to call concurrently; it performs no filesystem access (including on Windows) and does not read or redact tokens — callers must avoid passing sensitive credentials in `code` or `bodyText`.
+ *
+ * @param code - The error code string returned by the service
+ * @param bodyText - The response body text to inspect for entitlement-related phrases
+ * @returns `true` if the combined `code` or `bodyText` indicates an entitlement/subscription issue, `false` otherwise
+ */
+export declare function isEntitlementError(code: string, bodyText: string): boolean;
+/**
+ * Constructs a standardized 403 entitlement error Response indicating the user lacks access to Codex models.
+ *
+ * This function returns a JSON Response with an `error` payload containing a user-facing message, a
+ * `type` of `"entitlement_error"`, and a `code` of `"usage_not_included"`. The message suggests checking
+ * account/workspace access and re-authenticating with `codex login`.
+ *
+ * Concurrency: stateless and safe to call concurrently from multiple threads or requests.
+ * Windows filesystem behavior: none (function does not access the filesystem).
+ * Token redaction: any tokens are not included in the generated payload; do not pass sensitive tokens in `_bodyText`.
+ *
+ * @param _bodyText - Original response body text (accepted for compatibility; ignored when building the response)
+ * @returns A 403 Response with a JSON body describing the entitlement error and guidance for resolving it
+ */
+export declare function createEntitlementErrorResponse(_bodyText: string): Response;
+export interface ErrorHandlingResult {
+    response: Response;
+    rateLimit?: RateLimitInfo;
+    errorBody?: unknown;
+}
+export interface ErrorHandlingOptions {
+    requestCorrelationId?: string;
+    threadId?: string;
+}
+export interface ErrorDiagnostics {
+    requestId?: string;
+    cfRay?: string;
+    correlationId?: string;
+    threadId?: string;
+    httpStatus?: number;
+}
+/**
+ * Determines if the current auth token needs to be refreshed
+ * @param auth - Current authentication state
+ * @returns True if token is expired or invalid
+ */
+export declare function shouldRefreshToken(auth: Auth, skewMs?: number): boolean;
+/**
+ * Refreshes the OAuth token and updates stored credentials
+ * @param currentAuth - Current auth state
+ * @param client - Opencode client for updating stored credentials
+ * @returns Updated auth (throws on failure)
+ */
+export declare function refreshAndUpdateToken(currentAuth: Auth, client: OpencodeClient): Promise<Auth>;
+/**
+ * Extracts URL string from various request input types
+ * @param input - Request input (string, URL, or Request object)
+ * @returns URL string
+ */
+export declare function extractRequestUrl(input: Request | string | URL): string;
+/**
+ * Rewrites OpenAI API URLs to Codex backend URLs
+ * @param url - Original URL
+ * @returns Rewritten URL for Codex backend
+ */
+export declare function rewriteUrlForCodex(url: string): string;
+/**
+ * Transforms request body and logs the transformation
+ * Fetches model-specific Codex instructions based on the request model
+ *
+ * @param init - Request init options
+ * @param url - Request URL
+ * @param userConfig - User configuration
+ * @param codexMode - Enable CODEX_MODE (bridge prompt instead of tool remap)
+ * @param parsedBody - Pre-parsed body to avoid double JSON.parse (optional)
+ * @returns Transformed body and updated init, or undefined if no body
+ */
+export declare function transformRequestForCodex(init: RequestInit | undefined, url: string, userConfig: UserConfig, codexMode?: boolean, parsedBody?: Record<string, unknown>, options?: {
+    fastSession?: boolean;
+    fastSessionStrategy?: "hybrid" | "always";
+    fastSessionMaxInputItems?: number;
+}): Promise<{
+    body: RequestBody;
+    updatedInit: RequestInit;
+} | undefined>;
+/**
+ * Creates headers for Codex API requests
+ * @param init - Request init options
+ * @param accountId - ChatGPT account ID
+ * @param accessToken - OAuth access token
+ * @returns Headers object with all required Codex headers
+ */
+export declare function createCodexHeaders(init: RequestInit | undefined, accountId: string, accessToken: string, opts?: {
+    model?: string;
+    promptCacheKey?: string;
+}): Headers;
+/**
+ * Handles error responses from the Codex API
+ * @param response - Error response from API
+ * @returns Original response or mapped retryable response
+ */
+export declare function handleErrorResponse(response: Response, options?: ErrorHandlingOptions): Promise<ErrorHandlingResult>;
+/**
+ * Handles successful responses from the Codex API
+ * Converts SSE to JSON for non-streaming requests (generateText)
+ * Passes through SSE for streaming requests (streamText)
+ * @param response - Success response from API
+ * @param isStreaming - Whether this is a streaming request (stream=true in body)
+ * @returns Processed response (SSE→JSON for non-streaming, stream for streaming)
+ */
+export declare function handleSuccessResponse(response: Response, isStreaming: boolean, options?: {
+    streamStallTimeoutMs?: number;
+}): Promise<Response>;
+//# sourceMappingURL=fetch-helpers.d.ts.map

package/dist/lib/request/fetch-helpers.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"fetch-helpers.d.ts","sourceRoot":"","sources":["../../../lib/request/fetch-helpers.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,IAAI,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAM7D,OAAO,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAa3D,MAAM,WAAW,aAAa;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,gBAAgB;IACzB,aAAa,EAAE,IAAI,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACvB;AAaD,eAAO,MAAM,wCAAwC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAK7E,CAAC;AAEF,MAAM,WAAW,yBAAyB;IACzC,aAAa,EAAE,OAAO,CAAC;IACvB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,sCAAsC;IACtD,cAAc,EAAE,MAAM,GAAG,SAAS,CAAC;IACnC,SAAS,EAAE,OAAO,CAAC;IACnB,eAAe,CAAC,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;IACnC,+BAA+B,EAAE,OAAO,CAAC;IACzC,iCAAiC,EAAE,OAAO,CAAC;IAC3C,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;CACvC;AA0CD,wBAAgB,oCAAoC,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAYzF;AAQD,wBAAgB,4BAA4B,CAC3C,SAAS,EAAE,OAAO,GAChB,yBAAyB,CA8B3B;AAED,wBAAgB,oCAAoC,CACnD,OAAO,EAAE,sCAAsC,GAC7C,MAAM,GAAG,SAAS,CAgCpB;AAED;;GAEG;AACH,wBAAgB,uCAAuC,CACtD,cAAc,EAAE,MAAM,GAAG,SAAS,EAClC,SAAS,EAAE,OAAO,GAChB,OAAO,CAgBT;AAED;;;;;;;;;GASG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAK1E;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,8BAA8B,CAAC,SAAS,EAAE,MAAM,GAAG,QAAQ,CAmB1E;AAED,MAAM,WAAW,mBAAmB;IAC5B,QAAQ,EAAE,QAAQ,CAAC;IACnB,SAAS,CAAC,EAAE,aAAa,CAAC;IAC1B,SAAS,CAAC,EAAE,OAAO,CAAC;CAC3B;AAED,MAAM,WAAW,oBAAoB;IACpC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAChC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,IAAI,EAAE,MAAM,SAAI,GAAG,OAAO,CAMlE;AAED;;;;;GAKG;AACH,wBAAsB,qBAAqB,CAC1C,WAAW,EAAE,IAAI,EACjB,MAAM,EAAE,cAAc,GACpB,OAAO,CAAC,IAAI,CAAC,CA2Bf;AAED;;;;GAIG;AACH,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,OAAO,GAAG,MAAM,GAAG,GAAG,GAAG,MAAM,CAIvE;AAED;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAkBtD;AAED;;;;;;;;;;GAUG;AACH,wBAAsB,wBAAwB,CAC7C,IAAI,EAAE,WAAW,GAAG,SAAS,EAC7B,GAAG,EAAE,MAAM,EACX,UAAU,EAAE,UAAU,EACtB,SAAS,UAAO,EAChB,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EACpC,OAAO,CAAC,EAAE;IACT,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,mBAAmB,CAAC,EAAE,QAAQ,GAAG,QAAQ,CAAC;IAC1C,wBAAwB,CAAC,EAAE,MAAM,CAAC;CAClC,GACC,OAAO,CAAC;IAAE,IAAI,EAAE,WAAW,CAAC;IAAC,WAAW,EAAE,WAAW,CAAA;CAAE,GAAG,SAAS,CAAC,CAyEtE;AAED;;;;;;GAMG;AACH,wBAAgB,kBAAkB,CAC9B,IAAI,EAAE,WAAW,GAAG,SAAS,EAC7B,SAAS,EAAE,MAAM,EACjB,WAAW,EAAE,MAAM,EACnB,IAAI,CAAC,EAAE;IAAE,KAAK,CAAC,EAAE,MAAM,CAAC;IAAC,cAAc,CAAC,EAAE,MAAM,CAAA;CAAE,GACnD,OAAO,CAkBT;AAED;;;;GAIG;AACH,wBAAsB,mBAAmB,CACjC,QAAQ,EAAE,QAAQ,EAClB,OAAO,CAAC,EAAE,oBAAoB,GACnC,OAAO,CAAC,mBAAmB,CAAC,CAwC9B;AAED;;;;;;;GAOG;AACH,wBAAsB,qBAAqB,CACvC,QAAQ,EAAE,QAAQ,EAClB,WAAW,EAAE,OAAO,EACpB,OAAO,CAAC,EAAE;IAAE,oBAAoB,CAAC,EAAE,MAAM,CAAA;CAAE,GAC5C,OAAO,CAAC,QAAQ,CAAC,CAqBnB"}