couchloop-eq-mcp 1.0.0

package/dist/server/oauth/gdpr/consent.js

@@ -0,0 +1,388 @@
+import { logger } from '../../../utils/logger.js';
+import { createHash } from 'crypto';
+/**
+ * Consent types as per GDPR Article 6
+ */
+export var ConsentType;
+(function (ConsentType) {
+    // Lawful basis for processing
+    ConsentType["NECESSARY"] = "necessary";
+    ConsentType["LEGITIMATE_INTEREST"] = "legitimate";
+    ConsentType["CONSENT"] = "consent";
+    ConsentType["LEGAL_OBLIGATION"] = "legal";
+    ConsentType["VITAL_INTERESTS"] = "vital";
+    ConsentType["PUBLIC_TASK"] = "public";
+})(ConsentType || (ConsentType = {}));
+/**
+ * Processing purposes requiring consent
+ */
+export var ProcessingPurpose;
+(function (ProcessingPurpose) {
+    ProcessingPurpose["AUTHENTICATION"] = "authentication";
+    ProcessingPurpose["PROFILE_DATA"] = "profile_data";
+    ProcessingPurpose["ANALYTICS"] = "analytics";
+    ProcessingPurpose["MARKETING"] = "marketing";
+    ProcessingPurpose["THIRD_PARTY_SHARING"] = "third_party";
+    ProcessingPurpose["DATA_RETENTION"] = "data_retention";
+    ProcessingPurpose["COOKIES"] = "cookies";
+    ProcessingPurpose["LOCATION"] = "location";
+    ProcessingPurpose["BIOMETRIC"] = "biometric";
+    ProcessingPurpose["HEALTH_DATA"] = "health_data";
+})(ProcessingPurpose || (ProcessingPurpose = {}));
+/**
+ * GDPR Consent Manager
+ * Manages user consent per GDPR Articles 6, 7, and 8
+ */
+export class ConsentManager {
+    CONSENT_VERSION = '2.0.0';
+    PRIVACY_POLICY_VERSION = '1.5.0';
+    MINIMUM_AGE_EU = 16;
+    MINIMUM_AGE_US = 13;
+    CONSENT_EXPIRY_DAYS = 365; // Re-consent annually
+    // In-memory cache for frequently accessed consents
+    consentCache = new Map();
+    CACHE_TTL = 300000; // 5 minutes
+    /**
+     * Record user consent
+     */
+    async recordConsent(userId, purpose, granted, options) {
+        const consentId = this.generateConsentId(userId, purpose);
+        const now = new Date();
+        const record = {
+            id: consentId,
+            userId,
+            purpose,
+            lawfulBasis: this.determineLawfulBasis(purpose),
+            granted,
+            grantedAt: granted ? now : undefined,
+            revokedAt: !granted ? now : undefined,
+            expiresAt: granted && options?.expiryDays
+                ? new Date(now.getTime() + options.expiryDays * 86400000)
+                : new Date(now.getTime() + this.CONSENT_EXPIRY_DAYS * 86400000),
+            version: this.CONSENT_VERSION,
+            ipAddress: options?.ipAddress,
+            userAgent: options?.userAgent,
+            parentalConsent: options?.parentalConsent,
+            metadata: options?.metadata || {
+                consentText: this.getConsentText(purpose),
+                privacyPolicyVersion: this.PRIVACY_POLICY_VERSION,
+                termsVersion: '1.0.0',
+                language: 'en',
+                channel: 'web',
+            },
+        };
+        // Store in database
+        await this.storeConsentRecord(record);
+        // Invalidate cache
+        this.consentCache.delete(userId);
+        // Log consent event for audit
+        logger.info(`Consent ${granted ? 'granted' : 'revoked'} for user ${userId}, purpose: ${purpose}`);
+        // Send confirmation if required
+        if (this.requiresConfirmation(purpose)) {
+            await this.sendConsentConfirmation(userId, record);
+        }
+        return record;
+    }
+    /**
+     * Bulk consent update
+     */
+    async updateBulkConsent(userId, consents, context) {
+        const records = [];
+        for (const [purpose, granted] of consents) {
+            const record = await this.recordConsent(userId, purpose, granted, context);
+            records.push(record);
+        }
+        return this.getUserConsents(userId);
+    }
+    /**
+     * Check if user has valid consent for purpose
+     */
+    async hasValidConsent(userId, purpose) {
+        // Check cache first
+        const cached = this.consentCache.get(userId);
+        if (cached && Date.now() - cached.lastUpdated.getTime() < this.CACHE_TTL) {
+            const consent = cached.consents.get(purpose);
+            if (consent) {
+                return this.isConsentValid(consent);
+            }
+        }
+        // Some purposes don't require explicit consent
+        const lawfulBasis = this.determineLawfulBasis(purpose);
+        if (lawfulBasis === ConsentType.NECESSARY ||
+            lawfulBasis === ConsentType.LEGITIMATE_INTEREST) {
+            return true; // These don't require explicit consent
+        }
+        // Load from database
+        const consents = await this.getUserConsents(userId);
+        const consent = consents.consents.get(purpose);
+        if (!consent) {
+            return false;
+        }
+        return this.isConsentValid(consent);
+    }
+    /**
+     * Get all user consents
+     */
+    async getUserConsents(userId) {
+        // Check cache
+        const cached = this.consentCache.get(userId);
+        if (cached && Date.now() - cached.lastUpdated.getTime() < this.CACHE_TTL) {
+            return cached;
+        }
+        // Load from database
+        const records = await this.loadUserConsents(userId);
+        const preferences = {
+            userId,
+            consents: new Map(records.map(r => [r.purpose, r])),
+            globalOptOut: false, // Would check database
+            communicationPreferences: {
+                email: true,
+                sms: false,
+                push: true,
+                phone: false,
+            },
+            lastUpdated: new Date(),
+        };
+        // Cache the result
+        this.consentCache.set(userId, preferences);
+        return preferences;
+    }
+    /**
+     * Withdraw consent
+     */
+    async withdrawConsent(userId, purpose, reason) {
+        await this.recordConsent(userId, purpose, false, {
+            metadata: {
+                consentText: `Consent withdrawn: ${reason || 'User request'}`,
+                privacyPolicyVersion: this.PRIVACY_POLICY_VERSION,
+                termsVersion: '1.0.0',
+                language: 'en',
+                channel: 'web',
+            },
+        });
+        // Trigger data deletion if required
+        if (this.requiresDataDeletion(purpose)) {
+            await this.triggerDataDeletion(userId, purpose);
+        }
+        logger.info(`Consent withdrawn for user ${userId}, purpose: ${purpose}`);
+    }
+    /**
+     * Withdraw all consents (global opt-out)
+     */
+    async withdrawAllConsents(userId) {
+        const purposes = Object.values(ProcessingPurpose);
+        for (const purpose of purposes) {
+            // Skip necessary processing
+            if (this.determineLawfulBasis(purpose) !== ConsentType.NECESSARY) {
+                await this.withdrawConsent(userId, purpose, 'Global opt-out');
+            }
+        }
+        logger.info(`All consents withdrawn for user ${userId}`);
+    }
+    /**
+     * Check parental consent requirement
+     */
+    async requiresParentalConsent(birthDate, country) {
+        const age = this.calculateAge(birthDate);
+        // EU countries require parental consent under 16
+        if (this.isEUCountry(country)) {
+            return age < this.MINIMUM_AGE_EU;
+        }
+        // US requires parental consent under 13 (COPPA)
+        if (country === 'US') {
+            return age < this.MINIMUM_AGE_US;
+        }
+        // Default to EU standard
+        return age < this.MINIMUM_AGE_EU;
+    }
+    /**
+     * Verify parental consent
+     */
+    async verifyParentalConsent(childUserId, parentEmail, verificationCode) {
+        // In production, this would verify the parent's identity
+        // and their authorization to consent for the child
+        const verified = await this.checkParentalVerification(parentEmail, verificationCode);
+        if (verified) {
+            // Update all child's consents with parental approval
+            const consents = await this.getUserConsents(childUserId);
+            for (const [purpose, record] of consents.consents) {
+                record.parentalConsent = true;
+                await this.storeConsentRecord(record);
+            }
+            logger.info(`Parental consent verified for child user ${childUserId}`);
+            return true;
+        }
+        return false;
+    }
+    /**
+     * Generate consent request for special category data
+     */
+    async requestSpecialCategoryConsent(userId, dataTypes, justification) {
+        // Special category data requires explicit consent
+        // This includes: racial/ethnic origin, political opinions,
+        // religious beliefs, trade union membership, genetic data,
+        // biometric data, health data, sex life, sexual orientation
+        const requestId = crypto.randomUUID();
+        await this.storeSpecialConsentRequest({
+            requestId,
+            userId,
+            dataTypes,
+            justification,
+            status: 'pending',
+            createdAt: new Date(),
+        });
+        logger.info(`Special category consent requested for user ${userId}: ${dataTypes.join(', ')}`);
+        return requestId;
+    }
+    /**
+     * Export consent history for data portability
+     */
+    async exportConsentHistory(userId) {
+        const consents = await this.loadAllUserConsentHistory(userId);
+        const preferences = await this.getUserConsents(userId);
+        return {
+            consents,
+            preferences,
+            exportDate: new Date(),
+        };
+    }
+    /**
+     * Check consent validity
+     */
+    isConsentValid(consent) {
+        if (!consent.granted) {
+            return false;
+        }
+        if (consent.revokedAt) {
+            return false;
+        }
+        if (consent.expiresAt && new Date() > consent.expiresAt) {
+            return false;
+        }
+        return true;
+    }
+    /**
+     * Determine lawful basis for processing purpose
+     */
+    determineLawfulBasis(purpose) {
+        switch (purpose) {
+            case ProcessingPurpose.AUTHENTICATION:
+            case ProcessingPurpose.PROFILE_DATA:
+                return ConsentType.NECESSARY; // Necessary for service
+            case ProcessingPurpose.ANALYTICS:
+                return ConsentType.LEGITIMATE_INTEREST;
+            case ProcessingPurpose.MARKETING:
+            case ProcessingPurpose.THIRD_PARTY_SHARING:
+            case ProcessingPurpose.COOKIES:
+            case ProcessingPurpose.LOCATION:
+            case ProcessingPurpose.BIOMETRIC:
+            case ProcessingPurpose.HEALTH_DATA:
+                return ConsentType.CONSENT; // Requires explicit consent
+            default:
+                return ConsentType.CONSENT;
+        }
+    }
+    /**
+     * Get consent text for purpose
+     */
+    getConsentText(purpose) {
+        const texts = {
+            [ProcessingPurpose.AUTHENTICATION]: 'Process your data for authentication and security',
+            [ProcessingPurpose.PROFILE_DATA]: 'Store and process your profile information',
+            [ProcessingPurpose.ANALYTICS]: 'Analyze usage patterns to improve our service',
+            [ProcessingPurpose.MARKETING]: 'Send you marketing communications and offers',
+            [ProcessingPurpose.THIRD_PARTY_SHARING]: 'Share your data with third-party partners',
+            [ProcessingPurpose.DATA_RETENTION]: 'Retain your data for the specified period',
+            [ProcessingPurpose.COOKIES]: 'Use cookies and similar tracking technologies',
+            [ProcessingPurpose.LOCATION]: 'Access and process your location data',
+            [ProcessingPurpose.BIOMETRIC]: 'Process your biometric data for identification',
+            [ProcessingPurpose.HEALTH_DATA]: 'Process health-related information',
+        };
+        return texts[purpose] || 'Process your data for the specified purpose';
+    }
+    /**
+     * Check if purpose requires confirmation
+     */
+    requiresConfirmation(purpose) {
+        return [
+            ProcessingPurpose.MARKETING,
+            ProcessingPurpose.THIRD_PARTY_SHARING,
+            ProcessingPurpose.BIOMETRIC,
+            ProcessingPurpose.HEALTH_DATA,
+        ].includes(purpose);
+    }
+    /**
+     * Check if withdrawal requires data deletion
+     */
+    requiresDataDeletion(purpose) {
+        return [
+            ProcessingPurpose.PROFILE_DATA,
+            ProcessingPurpose.THIRD_PARTY_SHARING,
+            ProcessingPurpose.BIOMETRIC,
+            ProcessingPurpose.HEALTH_DATA,
+        ].includes(purpose);
+    }
+    /**
+     * Generate consent ID
+     */
+    generateConsentId(userId, purpose) {
+        const hash = createHash('sha256')
+            .update(`${userId}:${purpose}:${Date.now()}`)
+            .digest('hex');
+        return `consent_${hash.substring(0, 16)}`;
+    }
+    /**
+     * Calculate age from birthdate
+     */
+    calculateAge(birthDate) {
+        const today = new Date();
+        let age = today.getFullYear() - birthDate.getFullYear();
+        const monthDiff = today.getMonth() - birthDate.getMonth();
+        if (monthDiff < 0 || (monthDiff === 0 && today.getDate() < birthDate.getDate())) {
+            age--;
+        }
+        return age;
+    }
+    /**
+     * Check if country is in EU
+     */
+    isEUCountry(country) {
+        const euCountries = [
+            'AT', 'BE', 'BG', 'HR', 'CY', 'CZ', 'DK', 'EE', 'FI', 'FR',
+            'DE', 'GR', 'HU', 'IE', 'IT', 'LV', 'LT', 'LU', 'MT', 'NL',
+            'PL', 'PT', 'RO', 'SK', 'SI', 'ES', 'SE',
+        ];
+        return euCountries.includes(country);
+    }
+    // Database operations (would be implemented with actual DB)
+    async storeConsentRecord(record) {
+        // Store in database
+        logger.debug(`Storing consent record: ${record.id}`);
+    }
+    async loadUserConsents(userId) {
+        // Load from database
+        return [];
+    }
+    async loadAllUserConsentHistory(userId) {
+        // Load all historical records
+        return [];
+    }
+    async storeSpecialConsentRequest(request) {
+        // Store special consent request
+    }
+    async checkParentalVerification(email, code) {
+        // Verify parent identity
+        return true; // Mock
+    }
+    async triggerDataDeletion(userId, purpose) {
+        // Trigger data deletion workflow
+        logger.info(`Data deletion triggered for user ${userId}, purpose: ${purpose}`);
+    }
+    async sendConsentConfirmation(userId, record) {
+        // Send email confirmation
+        logger.info(`Consent confirmation sent to user ${userId}`);
+    }
+}
+// Export singleton instance
+export const consentManager = new ConsentManager();
+//# sourceMappingURL=consent.js.map

package/dist/server/oauth/gdpr/consent.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"consent.js","sourceRoot":"","sources":["../../../../src/server/oauth/gdpr/consent.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,0BAA0B,CAAC;AAElD,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAEpC;;GAEG;AACH,MAAM,CAAN,IAAY,WAQX;AARD,WAAY,WAAW;IACrB,8BAA8B;IAC9B,sCAAuB,CAAA;IACvB,iDAAkC,CAAA;IAClC,kCAAmB,CAAA;IACnB,yCAA0B,CAAA;IAC1B,wCAAyB,CAAA;IACzB,qCAAsB,CAAA;AACxB,CAAC,EARW,WAAW,KAAX,WAAW,QAQtB;AAED;;GAEG;AACH,MAAM,CAAN,IAAY,iBAWX;AAXD,WAAY,iBAAiB;IAC3B,sDAAiC,CAAA;IACjC,kDAA6B,CAAA;IAC7B,4CAAuB,CAAA;IACvB,4CAAuB,CAAA;IACvB,wDAAmC,CAAA;IACnC,sDAAiC,CAAA;IACjC,wCAAmB,CAAA;IACnB,0CAAqB,CAAA;IACrB,4CAAuB,CAAA;IACvB,gDAA2B,CAAA;AAC7B,CAAC,EAXW,iBAAiB,KAAjB,iBAAiB,QAW5B;AA4CD;;;GAGG;AACH,MAAM,OAAO,cAAc;IACR,eAAe,GAAG,OAAO,CAAC;IAC1B,sBAAsB,GAAG,OAAO,CAAC;IACjC,cAAc,GAAG,EAAE,CAAC;IACpB,cAAc,GAAG,EAAE,CAAC;IACpB,mBAAmB,GAAG,GAAG,CAAC,CAAC,sBAAsB;IAElE,mDAAmD;IAC3C,YAAY,GAAG,IAAI,GAAG,EAA8B,CAAC;IAC5C,SAAS,GAAG,MAAM,CAAC,CAAC,YAAY;IAEjD;;OAEG;IACH,KAAK,CAAC,aAAa,CACjB,MAAc,EACd,OAA0B,EAC1B,OAAgB,EAChB,OAMC;QAED,MAAM,SAAS,GAAG,IAAI,CAAC,iBAAiB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC1D,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QAEvB,MAAM,MAAM,GAAkB;YAC5B,EAAE,EAAE,SAAS;YACb,MAAM;YACN,OAAO;YACP,WAAW,EAAE,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC;YAC/C,OAAO;YACP,SAAS,EAAE,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;YACpC,SAAS,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;YACrC,SAAS,EAAE,OAAO,IAAI,OAAO,EAAE,UAAU;gBACvC,CAAC,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,OAAO,CAAC,UAAU,GAAG,QAAQ,CAAC;gBACzD,CAAC,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,mBAAmB,GAAG,QAAQ,CAAC;YACjE,OAAO,EAAE,IAAI,CAAC,eAAe;YAC7B,SAAS,EAAE,OAAO,EAAE,SAAS;YAC7B,SAAS,EAAE,OAAO,EAAE,SAAS;YAC7B,eAAe,EAAE,OAAO,EAAE,eAAe;YACzC,QAAQ,EAAE,OAAO,EAAE,QAAQ,IAAI;gBAC7B,WAAW,EAAE,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC;gBACzC,oBAAoB,EAAE,IAAI,CAAC,sBAAsB;gBACjD,YAAY,EAAE,OAAO;gBACrB,QAAQ,EAAE,IAAI;gBACd,OAAO,EAAE,KAAK;aACf;SACF,CAAC;QAEF,oBAAoB;QACpB,MAAM,IAAI,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC;QAEtC,mBAAmB;QACnB,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAEjC,8BAA8B;QAC9B,MAAM,CAAC,IAAI,CAAC,WAAW,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,aAAa,MAAM,cAAc,OAAO,EAAE,CAAC,CAAC;QAElG,gCAAgC;QAChC,IAAI,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC,EAAE,CAAC;YACvC,MAAM,IAAI,CAAC,uBAAuB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACrD,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CACrB,MAAc,EACd,QAAyC,EACzC,OAGC;QAED,MAAM,OAAO,GAAoB,EAAE,CAAC;QAEpC,KAAK,MAAM,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,QAAQ,EAAE,CAAC;YAC1C,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;YAC3E,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvB,CAAC;QAED,OAAO,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CACnB,MAAc,EACd,OAA0B;QAE1B,oBAAoB;QACpB,MAAM,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAC7C,IAAI,MAAM,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;YACzE,MAAM,OAAO,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC7C,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;YACtC,CAAC;QACH,CAAC;QAED,+CAA+C;QAC/C,MAAM,WAAW,GAAG,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC,CAAC;QACvD,IAAI,WAAW,KAAK,WAAW,CAAC,SAAS;YACrC,WAAW,KAAK,WAAW,CAAC,mBAAmB,EAAE,CAAC;YACpD,OAAO,IAAI,CAAC,CAAC,uCAAuC;QACtD,CAAC;QAED,qBAAqB;QACrB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;QACpD,MAAM,OAAO,GAAG,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAE/C,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CAAC,MAAc;QAClC,cAAc;QACd,MAAM,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAC7C,IAAI,MAAM,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;YACzE,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,qBAAqB;QACrB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC;QAEpD,MAAM,WAAW,GAAuB;YACtC,MAAM;YACN,QAAQ,EAAE,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,CAAC;YACnD,YAAY,EAAE,KAAK,EAAE,uBAAuB;YAC5C,wBAAwB,EAAE;gBACxB,KAAK,EAAE,IAAI;gBACX,GAAG,EAAE,KAAK;gBACV,IAAI,EAAE,IAAI;gBACV,KAAK,EAAE,KAAK;aACb;YACD,WAAW,EAAE,IAAI,IAAI,EAAE;SACxB,CAAC;QAEF,mBAAmB;QACnB,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;QAE3C,OAAO,WAAW,CAAC;IACrB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CACnB,MAAc,EACd,OAA0B,EAC1B,MAAe;QAEf,MAAM,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE;YAC/C,QAAQ,EAAE;gBACR,WAAW,EAAE,sBAAsB,MAAM,IAAI,cAAc,EAAE;gBAC7D,oBAAoB,EAAE,IAAI,CAAC,sBAAsB;gBACjD,YAAY,EAAE,OAAO;gBACrB,QAAQ,EAAE,IAAI;gBACd,OAAO,EAAE,KAAK;aACf;SACF,CAAC,CAAC;QAEH,oCAAoC;QACpC,IAAI,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC,EAAE,CAAC;YACvC,MAAM,IAAI,CAAC,mBAAmB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAClD,CAAC;QAED,MAAM,CAAC,IAAI,CAAC,8BAA8B,MAAM,cAAc,OAAO,EAAE,CAAC,CAAC;IAC3E,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,mBAAmB,CAAC,MAAc;QACtC,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;QAElD,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,4BAA4B;YAC5B,IAAI,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC,KAAK,WAAW,CAAC,SAAS,EAAE,CAAC;gBACjE,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,OAAO,EAAE,gBAAgB,CAAC,CAAC;YAChE,CAAC;QACH,CAAC;QAED,MAAM,CAAC,IAAI,CAAC,mCAAmC,MAAM,EAAE,CAAC,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,uBAAuB,CAC3B,SAAe,EACf,OAAe;QAEf,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC;QAEzC,iDAAiD;QACjD,IAAI,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,EAAE,CAAC;YAC9B,OAAO,GAAG,GAAG,IAAI,CAAC,cAAc,CAAC;QACnC,CAAC;QAED,gDAAgD;QAChD,IAAI,OAAO,KAAK,IAAI,EAAE,CAAC;YACrB,OAAO,GAAG,GAAG,IAAI,CAAC,cAAc,CAAC;QACnC,CAAC;QAED,yBAAyB;QACzB,OAAO,GAAG,GAAG,IAAI,CAAC,cAAc,CAAC;IACnC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,qBAAqB,CACzB,WAAmB,EACnB,WAAmB,EACnB,gBAAwB;QAExB,yDAAyD;QACzD,mDAAmD;QAEnD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,yBAAyB,CACnD,WAAW,EACX,gBAAgB,CACjB,CAAC;QAEF,IAAI,QAAQ,EAAE,CAAC;YACb,qDAAqD;YACrD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;YAEzD,KAAK,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;gBAClD,MAAM,CAAC,eAAe,GAAG,IAAI,CAAC;gBAC9B,MAAM,IAAI,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC;YACxC,CAAC;YAED,MAAM,CAAC,IAAI,CAAC,4CAA4C,WAAW,EAAE,CAAC,CAAC;YACvE,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,6BAA6B,CACjC,MAAc,EACd,SAAmB,EACnB,aAAqB;QAErB,kDAAkD;QAClD,2DAA2D;QAC3D,2DAA2D;QAC3D,4DAA4D;QAE5D,MAAM,SAAS,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAEtC,MAAM,IAAI,CAAC,0BAA0B,CAAC;YACpC,SAAS;YACT,MAAM;YACN,SAAS;YACT,aAAa;YACb,MAAM,EAAE,SAAS;YACjB,SAAS,EAAE,IAAI,IAAI,EAAE;SACtB,CAAC,CAAC;QAEH,MAAM,CAAC,IAAI,CAAC,+CAA+C,MAAM,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAE9F,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,oBAAoB,CAAC,MAAc;QAKvC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,yBAAyB,CAAC,MAAM,CAAC,CAAC;QAC9D,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;QAEvD,OAAO;YACL,QAAQ;YACR,WAAW;YACX,UAAU,EAAE,IAAI,IAAI,EAAE;SACvB,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,cAAc,CAAC,OAAsB;QAC3C,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;YACrB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;YACtB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,OAAO,CAAC,SAAS,IAAI,IAAI,IAAI,EAAE,GAAG,OAAO,CAAC,SAAS,EAAE,CAAC;YACxD,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACK,oBAAoB,CAAC,OAA0B;QACrD,QAAQ,OAAO,EAAE,CAAC;YAChB,KAAK,iBAAiB,CAAC,cAAc,CAAC;YACtC,KAAK,iBAAiB,CAAC,YAAY;gBACjC,OAAO,WAAW,CAAC,SAAS,CAAC,CAAC,wBAAwB;YAExD,KAAK,iBAAiB,CAAC,SAAS;gBAC9B,OAAO,WAAW,CAAC,mBAAmB,CAAC;YAEzC,KAAK,iBAAiB,CAAC,SAAS,CAAC;YACjC,KAAK,iBAAiB,CAAC,mBAAmB,CAAC;YAC3C,KAAK,iBAAiB,CAAC,OAAO,CAAC;YAC/B,KAAK,iBAAiB,CAAC,QAAQ,CAAC;YAChC,KAAK,iBAAiB,CAAC,SAAS,CAAC;YACjC,KAAK,iBAAiB,CAAC,WAAW;gBAChC,OAAO,WAAW,CAAC,OAAO,CAAC,CAAC,4BAA4B;YAE1D;gBACE,OAAO,WAAW,CAAC,OAAO,CAAC;QAC/B,CAAC;IACH,CAAC;IAED;;OAEG;IACK,cAAc,CAAC,OAA0B;QAC/C,MAAM,KAAK,GAAsC;YAC/C,CAAC,iBAAiB,CAAC,cAAc,CAAC,EAAE,mDAAmD;YACvF,CAAC,iBAAiB,CAAC,YAAY,CAAC,EAAE,4CAA4C;YAC9E,CAAC,iBAAiB,CAAC,SAAS,CAAC,EAAE,+CAA+C;YAC9E,CAAC,iBAAiB,CAAC,SAAS,CAAC,EAAE,8CAA8C;YAC7E,CAAC,iBAAiB,CAAC,mBAAmB,CAAC,EAAE,2CAA2C;YACpF,CAAC,iBAAiB,CAAC,cAAc,CAAC,EAAE,2CAA2C;YAC/E,CAAC,iBAAiB,CAAC,OAAO,CAAC,EAAE,+CAA+C;YAC5E,CAAC,iBAAiB,CAAC,QAAQ,CAAC,EAAE,uCAAuC;YACrE,CAAC,iBAAiB,CAAC,SAAS,CAAC,EAAE,gDAAgD;YAC/E,CAAC,iBAAiB,CAAC,WAAW,CAAC,EAAE,oCAAoC;SACtE,CAAC;QAEF,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,6CAA6C,CAAC;IACzE,CAAC;IAED;;OAEG;IACK,oBAAoB,CAAC,OAA0B;QACrD,OAAO;YACL,iBAAiB,CAAC,SAAS;YAC3B,iBAAiB,CAAC,mBAAmB;YACrC,iBAAiB,CAAC,SAAS;YAC3B,iBAAiB,CAAC,WAAW;SAC9B,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACtB,CAAC;IAED;;OAEG;IACK,oBAAoB,CAAC,OAA0B;QACrD,OAAO;YACL,iBAAiB,CAAC,YAAY;YAC9B,iBAAiB,CAAC,mBAAmB;YACrC,iBAAiB,CAAC,SAAS;YAC3B,iBAAiB,CAAC,WAAW;SAC9B,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACtB,CAAC;IAED;;OAEG;IACK,iBAAiB,CAAC,MAAc,EAAE,OAAe;QACvD,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC;aAC9B,MAAM,CAAC,GAAG,MAAM,IAAI,OAAO,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;aAC5C,MAAM,CAAC,KAAK,CAAC,CAAC;QACjB,OAAO,WAAW,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;IAC5C,CAAC;IAED;;OAEG;IACK,YAAY,CAAC,SAAe;QAClC,MAAM,KAAK,GAAG,IAAI,IAAI,EAAE,CAAC;QACzB,IAAI,GAAG,GAAG,KAAK,CAAC,WAAW,EAAE,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC;QACxD,MAAM,SAAS,GAAG,KAAK,CAAC,QAAQ,EAAE,GAAG,SAAS,CAAC,QAAQ,EAAE,CAAC;QAE1D,IAAI,SAAS,GAAG,CAAC,IAAI,CAAC,SAAS,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,EAAE,GAAG,SAAS,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC;YAChF,GAAG,EAAE,CAAC;QACR,CAAC;QAED,OAAO,GAAG,CAAC;IACb,CAAC;IAED;;OAEG;IACK,WAAW,CAAC,OAAe;QACjC,MAAM,WAAW,GAAG;YAClB,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI;YAC1D,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI;YAC1D,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI;SACzC,CAAC;QACF,OAAO,WAAW,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACvC,CAAC;IAED,4DAA4D;IACpD,KAAK,CAAC,kBAAkB,CAAC,MAAqB;QACpD,oBAAoB;QACpB,MAAM,CAAC,KAAK,CAAC,2BAA2B,MAAM,CAAC,EAAE,EAAE,CAAC,CAAC;IACvD,CAAC;IAEO,KAAK,CAAC,gBAAgB,CAAC,MAAc;QAC3C,qBAAqB;QACrB,OAAO,EAAE,CAAC;IACZ,CAAC;IAEO,KAAK,CAAC,yBAAyB,CAAC,MAAc;QACpD,8BAA8B;QAC9B,OAAO,EAAE,CAAC;IACZ,CAAC;IAEO,KAAK,CAAC,0BAA0B,CAAC,OAAY;QACnD,gCAAgC;IAClC,CAAC;IAEO,KAAK,CAAC,yBAAyB,CAAC,KAAa,EAAE,IAAY;QACjE,yBAAyB;QACzB,OAAO,IAAI,CAAC,CAAC,OAAO;IACtB,CAAC;IAEO,KAAK,CAAC,mBAAmB,CAAC,MAAc,EAAE,OAA0B;QAC1E,iCAAiC;QACjC,MAAM,CAAC,IAAI,CAAC,oCAAoC,MAAM,cAAc,OAAO,EAAE,CAAC,CAAC;IACjF,CAAC;IAEO,KAAK,CAAC,uBAAuB,CAAC,MAAc,EAAE,MAAqB;QACzE,0BAA0B;QAC1B,MAAM,CAAC,IAAI,CAAC,qCAAqC,MAAM,EAAE,CAAC,CAAC;IAC7D,CAAC;CACF;AAED,4BAA4B;AAC5B,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,cAAc,EAAE,CAAC"}

package/dist/server/oauth/gdpr/dataPortability.d.ts

@@ -0,0 +1,214 @@
+/**
+ * Data export format options
+ */
+export declare enum ExportFormat {
+    JSON = "json",
+    CSV = "csv",
+    XML = "xml",
+    PDF = "pdf",
+    ARCHIVE = "archive"
+}
+/**
+ * Data categories for export
+ */
+export declare enum DataCategory {
+    PROFILE = "profile",
+    AUTHENTICATION = "authentication",
+    SESSIONS = "sessions",
+    INSIGHTS = "insights",
+    CONSENTS = "consents",
+    ACTIVITY_LOGS = "activity_logs",
+    COMMUNICATIONS = "communications",
+    PREFERENCES = "preferences",
+    THIRD_PARTY_DATA = "third_party",
+    DERIVED_DATA = "derived",
+    ALL = "all"
+}
+/**
+ * Export request status
+ */
+export declare enum ExportStatus {
+    PENDING = "pending",
+    PROCESSING = "processing",
+    COMPLETED = "completed",
+    FAILED = "failed",
+    EXPIRED = "expired",
+    CANCELLED = "cancelled"
+}
+/**
+ * Data export request
+ */
+export interface ExportRequest {
+    id: string;
+    userId: string;
+    requestedAt: Date;
+    requestedBy: string;
+    categories: DataCategory[];
+    format: ExportFormat;
+    status: ExportStatus;
+    completedAt?: Date;
+    expiresAt: Date;
+    downloadUrl?: string;
+    checksum?: string;
+    fileSize?: number;
+    encryptionKey?: string;
+    metadata?: {
+        ipAddress: string;
+        userAgent: string;
+        reason?: string;
+        includeDeleted: boolean;
+        dateRange?: {
+            start: Date;
+            end: Date;
+        };
+    };
+}
+/**
+ * User data structure for export
+ */
+export interface UserDataExport {
+    exportVersion: string;
+    exportDate: Date;
+    userId: string;
+    profile: {
+        id: string;
+        email: string;
+        name?: string;
+        createdAt: Date;
+        lastActive?: Date;
+        metadata?: Record<string, any>;
+    };
+    authentication: {
+        providers: string[];
+        lastLogin?: Date;
+        mfaEnabled: boolean;
+        sessions: Array<{
+            id: string;
+            createdAt: Date;
+            expiresAt: Date;
+            ipAddress?: string;
+            userAgent?: string;
+        }>;
+    };
+    data: {
+        [category: string]: any[];
+    };
+    statistics: {
+        totalSessions: number;
+        totalInsights: number;
+        totalCheckpoints: number;
+        dataPointsExported: number;
+    };
+    legalNotice: string;
+}
+/**
+ * GDPR Data Portability Manager
+ * Implements GDPR Article 20 - Right to data portability
+ */
+export declare class DataPortabilityManager {
+    private readonly EXPORT_VERSION;
+    private readonly EXPORT_EXPIRY_HOURS;
+    private readonly MAX_EXPORT_SIZE_MB;
+    private readonly CHUNK_SIZE;
+    private exportQueue;
+    /**
+     * Request data export
+     */
+    requestExport(userId: string, categories?: DataCategory[], format?: ExportFormat, options?: {
+        requestedBy?: string;
+        reason?: string;
+        dateRange?: {
+            start: Date;
+            end: Date;
+        };
+        includeDeleted?: boolean;
+        encrypted?: boolean;
+        ipAddress?: string;
+        userAgent?: string;
+    }): Promise<ExportRequest>;
+    /**
+     * Process export asynchronously
+     */
+    private processExportAsync;
+    /**
+     * Collect all user data for export
+     */
+    private collectUserData;
+    /**
+     * Collect data for specific category
+     */
+    private collectCategoryData;
+    /**
+     * Generate export file in specified format
+     */
+    private generateExportFile;
+    /**
+     * Generate JSON export
+     */
+    private generateJSONExport;
+    /**
+     * Generate CSV export (flattened data)
+     */
+    private generateCSVExport;
+    /**
+     * Generate XML export
+     */
+    private generateXMLExport;
+    /**
+     * Generate PDF export (human-readable)
+     */
+    private generatePDFExport;
+    /**
+     * Generate archive with all formats
+     */
+    private generateArchiveExport;
+    /**
+     * Import user data (for transfer between services)
+     */
+    importUserData(importData: UserDataExport, options?: {
+        merge?: boolean;
+        validateSchema?: boolean;
+        skipExisting?: boolean;
+    }): Promise<{
+        success: boolean;
+        imported: number;
+        skipped: number;
+        errors: string[];
+    }>;
+    /**
+     * Get export status
+     */
+    getExportStatus(exportId: string): Promise<ExportRequest | null>;
+    /**
+     * Cancel export request
+     */
+    cancelExport(exportId: string, userId: string): Promise<boolean>;
+    /**
+     * Clean up expired exports
+     */
+    cleanupExpiredExports(): Promise<number>;
+    private generateExportId;
+    private estimateDataSize;
+    private calculateChecksum;
+    private convertToCSV;
+    private convertToXML;
+    private generateLegalNotice;
+    private getUserProfile;
+    private getAuthenticationData;
+    private getDataRelationships;
+    private storeExportRequest;
+    private updateExportRequest;
+    private getActiveExport;
+    private uploadToStorage;
+    private deleteFromStorage;
+    private notifyExportComplete;
+    private notifyExportFailed;
+    private encryptExportFile;
+    private validateImportSchema;
+    private checkUserExists;
+    private importCategoryData;
+    private writeFile;
+    private readFile;
+}
+export declare const dataPortabilityManager: DataPortabilityManager;
+//# sourceMappingURL=dataPortability.d.ts.map

package/dist/server/oauth/gdpr/dataPortability.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dataPortability.d.ts","sourceRoot":"","sources":["../../../../src/server/oauth/gdpr/dataPortability.ts"],"names":[],"mappings":"AASA;;GAEG;AACH,oBAAY,YAAY;IACtB,IAAI,SAAS;IACb,GAAG,QAAQ;IACX,GAAG,QAAQ;IACX,GAAG,QAAQ;IACX,OAAO,YAAY;CACpB;AAED;;GAEG;AACH,oBAAY,YAAY;IACtB,OAAO,YAAY;IACnB,cAAc,mBAAmB;IACjC,QAAQ,aAAa;IACrB,QAAQ,aAAa;IACrB,QAAQ,aAAa;IACrB,aAAa,kBAAkB;IAC/B,cAAc,mBAAmB;IACjC,WAAW,gBAAgB;IAC3B,gBAAgB,gBAAgB;IAChC,YAAY,YAAY;IACxB,GAAG,QAAQ;CACZ;AAED;;GAEG;AACH,oBAAY,YAAY;IACtB,OAAO,YAAY;IACnB,UAAU,eAAe;IACzB,SAAS,cAAc;IACvB,MAAM,WAAW;IACjB,OAAO,YAAY;IACnB,SAAS,cAAc;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,IAAI,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,YAAY,EAAE,CAAC;IAC3B,MAAM,EAAE,YAAY,CAAC;IACrB,MAAM,EAAE,YAAY,CAAC;IACrB,WAAW,CAAC,EAAE,IAAI,CAAC;IACnB,SAAS,EAAE,IAAI,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,EAAE;QACT,SAAS,EAAE,MAAM,CAAC;QAClB,SAAS,EAAE,MAAM,CAAC;QAClB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,cAAc,EAAE,OAAO,CAAC;QACxB,SAAS,CAAC,EAAE;YACV,KAAK,EAAE,IAAI,CAAC;YACZ,GAAG,EAAE,IAAI,CAAC;SACX,CAAC;KACH,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,IAAI,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE;QACP,EAAE,EAAE,MAAM,CAAC;QACX,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,SAAS,EAAE,IAAI,CAAC;QAChB,UAAU,CAAC,EAAE,IAAI,CAAC;QAClB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;KAChC,CAAC;IACF,cAAc,EAAE;QACd,SAAS,EAAE,MAAM,EAAE,CAAC;QACpB,SAAS,CAAC,EAAE,IAAI,CAAC;QACjB,UAAU,EAAE,OAAO,CAAC;QACpB,QAAQ,EAAE,KAAK,CAAC;YACd,EAAE,EAAE,MAAM,CAAC;YACX,SAAS,EAAE,IAAI,CAAC;YAChB,SAAS,EAAE,IAAI,CAAC;YAChB,SAAS,CAAC,EAAE,MAAM,CAAC;YACnB,SAAS,CAAC,EAAE,MAAM,CAAC;SACpB,CAAC,CAAC;KACJ,CAAC;IACF,IAAI,EAAE;QACJ,CAAC,QAAQ,EAAE,MAAM,GAAG,GAAG,EAAE,CAAC;KAC3B,CAAC;IACF,UAAU,EAAE;QACV,aAAa,EAAE,MAAM,CAAC;QACtB,aAAa,EAAE,MAAM,CAAC;QACtB,gBAAgB,EAAE,MAAM,CAAC;QACzB,kBAAkB,EAAE,MAAM,CAAC;KAC5B,CAAC;IACF,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;;GAGG;AACH,qBAAa,sBAAsB;IACjC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAW;IAC1C,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAM;IAC1C,OAAO,CAAC,QAAQ,CAAC,kBAAkB,CAAQ;IAC3C,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAe;IAC1C,OAAO,CAAC,WAAW,CAAoC;IAEvD;;OAEG;IACG,aAAa,CACjB,MAAM,EAAE,MAAM,EACd,UAAU,GAAE,YAAY,EAAuB,EAC/C,MAAM,GAAE,YAAgC,EACxC,OAAO,CAAC,EAAE;QACR,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,SAAS,CAAC,EAAE;YAAE,KAAK,EAAE,IAAI,CAAC;YAAC,GAAG,EAAE,IAAI,CAAA;SAAE,CAAC;QACvC,cAAc,CAAC,EAAE,OAAO,CAAC;QACzB,SAAS,CAAC,EAAE,OAAO,CAAC;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,GACA,OAAO,CAAC,aAAa,CAAC;IA+CzB;;OAEG;YACW,kBAAkB;IAyDhC;;OAEG;YACW,eAAe;IAmD7B;;OAEG;YACW,mBAAmB;IAgDjC;;OAEG;YACW,kBAAkB;IA0ChC;;OAEG;YACW,kBAAkB;IAYhC;;OAEG;YACW,iBAAiB;IAe/B;;OAEG;YACW,iBAAiB;IAc/B;;OAEG;YACW,iBAAiB;IAc/B;;OAEG;YACW,qBAAqB;IA4BnC;;OAEG;IACG,cAAc,CAClB,UAAU,EAAE,cAAc,EAC1B,OAAO,CAAC,EAAE;QACR,KAAK,CAAC,EAAE,OAAO,CAAC;QAChB,cAAc,CAAC,EAAE,OAAO,CAAC;QACzB,YAAY,CAAC,EAAE,OAAO,CAAC;KACxB,GACA,OAAO,CAAC;QACT,OAAO,EAAE,OAAO,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,OAAO,EAAE,MAAM,CAAC;QAChB,MAAM,EAAE,MAAM,EAAE,CAAC;KAClB,CAAC;IAqDF;;OAEG;IACG,eAAe,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC;IAItE;;OAEG;IACG,YAAY,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAuBtE;;OAEG;IACG,qBAAqB,IAAI,OAAO,CAAC,MAAM,CAAC;IA2B9C,OAAO,CAAC,gBAAgB;IAIxB,OAAO,CAAC,gBAAgB;YAIV,iBAAiB;IAM/B,OAAO,CAAC,YAAY;IAKpB,OAAO,CAAC,YAAY;IAKpB,OAAO,CAAC,mBAAmB;YAOb,cAAc;YAId,qBAAqB;YAIrB,oBAAoB;YAIpB,kBAAkB;YAIlB,mBAAmB;YAInB,eAAe;YAKf,eAAe;YAKf,iBAAiB;YAIjB,oBAAoB;YAIpB,kBAAkB;YAIlB,iBAAiB;YAKjB,oBAAoB;YAKpB,eAAe;YAKf,kBAAkB;YAUlB,SAAS;YAIT,QAAQ;CAIvB;AAGD,eAAO,MAAM,sBAAsB,wBAA+B,CAAC"}