create-authenik8-app 2.4.6 → 2.4.8

package/dist/src/steps/prompts.js

@@ -0,0 +1,93 @@
+import inquirer from "inquirer";
+import { hasBun } from "./finalSetup.js";
+export async function runPrompts(state, isProduction) {
+    const bunAvailable = hasBun();
+    return inquirer.prompt([
+        {
+            type: "list",
+            name: "framework",
+            message: "Choose framework:",
+            choices: [
+                "Express",
+                { name: "Fastify (coming soon)", value: "Fastify", disabled: "Coming soon" },
+            ],
+            default: "Express",
+        },
+        {
+            type: "list",
+            name: "authMode",
+            message: "Choose authentication setup:",
+            choices: [
+                { name: "JWT only", value: "base" },
+                { name: "Email + Password Auth", value: "auth" },
+                { name: "Full Auth (Password + OAuth)", value: "auth-oauth" },
+            ],
+            default: "base",
+        },
+        {
+            type: "checkbox",
+            name: "oauthProviders",
+            message: "Choose OAuth providers:",
+            choices: [
+                { name: "Google", value: "google" },
+                { name: "GitHub", value: "github" },
+            ],
+            //default: ["google"],
+            when: (answers) => answers.authMode === "auth-oauth",
+            validate: (choices) => Array.isArray(choices) && choices.length > 0
+                ? true
+                : "Select at least one OAuth provider",
+        },
+        {
+            type: "confirm",
+            name: "usePrisma",
+            message: "Use Prisma?",
+            default: true,
+            when: (answers) => answers.authMode === "base"
+        },
+        {
+            type: "list",
+            name: "database",
+            message: "Choose database:",
+            choices: [
+                { name: "PostgreSQL", value: "postgresql" },
+                { name: "SQLite ", value: "sqlite" },
+            ],
+            when: (answers) => answers.usePrisma || answers.authMode === "auth" || answers.authMode === "auth-oauth",
+            default: "sqlite",
+        },
+        {
+            type: "confirm",
+            name: "useGit",
+            message: "Initialize git?",
+            default: true,
+        },
+        {
+            type: "list",
+            name: "runtime",
+            message: "Choose runtime:",
+            choices: [
+                {
+                    name: bunAvailable
+                        ? "Bun (fast, no build step)"
+                        : "Bun (not installed)",
+                    value: "bun",
+                    disabled: !bunAvailable && "Bun not found",
+                },
+                {
+                    name: "Node (stable, widely supported)",
+                    value: "node",
+                },
+            ],
+            when: () => isProduction,
+            default: bunAvailable ? "bun" : "node"
+        },
+    ])
+        .then((result) => {
+        if (result.runtime === "bun" && !bunAvailable) {
+            result.runtime = "node";
+        }
+        return result;
+    });
+}
+//# sourceMappingURL=prompts.js.map

package/dist/src/steps/prompts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompts.js","sourceRoot":"","sources":["../../../src/steps/prompts.ts"],"names":[],"mappings":"AAAA,OAAO,QAAQ,MAAM,UAAU,CAAC;AAEhC,OAAO,EAAC,MAAM,EAAC,MAAM,iBAAiB,CAAA;AAEtC,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,KAAc,EAAC,YAAqB;IACrE,MAAM,YAAY,GAAG,MAAM,EAAE,CAAC;IAC5B,OAAO,QAAQ,CAAC,MAAM,CAAC;QACrB;YACE,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,WAAW;YACjB,OAAO,EAAE,mBAAmB;YAC5B,OAAO,EAAE;gBACP,SAAS;gBACT,EAAE,IAAI,EAAE,uBAAuB,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,EAAE,aAAa,EAAE;aAC7E;YACD,OAAO,EAAE,SAAS;SACnB;QACD;YACE,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,UAAU;YAChB,OAAO,EAAE,8BAA8B;YACvC,OAAO,EAAE;gBACP,EAAE,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,MAAM,EAAE;gBACnC,EAAE,IAAI,EAAE,uBAAuB,EAAE,KAAK,EAAE,MAAM,EAAE;gBAChD,EAAE,IAAI,EAAE,8BAA8B,EAAE,KAAK,EAAE,YAAY,EAAE;aAC9D;YACD,OAAO,EAAE,MAAM;SAChB;QACD;YACE,IAAI,EAAE,UAAU;YAChB,IAAI,EAAE,gBAAgB;YACtB,OAAO,EAAE,yBAAyB;YAClC,OAAO,EAAE;gBACP,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE;gBACnC,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE;aACpC;YACD,sBAAsB;YACtB,IAAI,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,KAAK,YAAY;YACpD,QAAQ,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC;gBACjE,CAAC,CAAC,IAAI;gBACN,CAAC,CAAC,oCAAoC;SACzC;QACD;YACE,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,WAAW;YACjB,OAAO,EAAE,aAAa;YACtB,OAAO,EAAE,IAAI;YACd,IAAI,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,KAAK,MAAM;SAC9C;QACD;YACE,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,UAAU;YAChB,OAAO,EAAE,kBAAkB;YAC3B,OAAO,EAAE;gBACP,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,YAAY,EAAE;gBAC3C,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,QAAQ,EAAE;aACrC;YACD,IAAI,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,SAAS,IAAI,OAAO,CAAC,QAAQ,KAAK,MAAM,IAAI,OAAO,CAAC,QAAQ,KAAK,YAAY;YACxG,OAAO,EAAE,QAAQ;SAClB;QACD;YACE,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,iBAAiB;YAC1B,OAAO,EAAE,IAAI;SACd;QAEE;YACD,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,OAAO,EAAE,iBAAiB;YAC1B,OAAO,EAAE;gBACP;oBACE,IAAI,EAAE,YAAY;wBAChB,CAAC,CAAC,2BAA2B;wBAC7B,CAAC,CAAC,qBAAqB;oBACzB,KAAK,EAAE,KAAK;oBACZ,QAAQ,EAAE,CAAC,YAAY,IAAI,eAAe;iBAC3C;gBACD;oBACE,IAAI,EAAE,iCAAiC;oBACvC,KAAK,EAAE,MAAM;iBACd;aACF;YACD,IAAI,EAAE,GAAG,EAAE,CAAC,YAAY;YACxB,OAAO,EAAE,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM;SACvC;KACF,CAAC;SACD,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE;QACf,IAAI,MAAM,CAAC,OAAO,KAAK,KAAK,IAAI,CAAC,YAAY,EAAE,CAAC;YAC9C,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC;QAC1B,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC,CAAC,CAAA;AAEJ,CAAC"}

package/dist/src/tests/templated-routes.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=templated-routes.test.d.ts.map

package/dist/src/tests/templated-routes.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"templated-routes.test.d.ts","sourceRoot":"","sources":["../../../src/tests/templated-routes.test.ts"],"names":[],"mappings":""}

package/dist/src/tests/templated-routes.test.js

@@ -0,0 +1,325 @@
+import express from "express";
+import { createRequire } from "node:module";
+import request from "supertest";
+import { beforeEach, describe, expect, it, vi } from "vitest";
+const authenik8CoreMock = vi.hoisted(() => ({
+    createAuthenik8: vi.fn(),
+}));
+const dotenvMock = vi.hoisted(() => ({
+    config: vi.fn(),
+}));
+vi.mock("authenik8-core", () => ({
+    createAuthenik8: authenik8CoreMock.createAuthenik8,
+}));
+vi.mock("dotenv", () => ({
+    default: dotenvMock,
+    config: dotenvMock.config,
+}));
+const require = createRequire(import.meta.url);
+const jwt = require("jsonwebtoken");
+const jwtSecret = "templated-route-test-secret";
+class InMemoryRedis {
+    hashes = new Map();
+    async hset(key, field, value) {
+        const hash = this.hashes.get(key) ?? new Map();
+        hash.set(field, value);
+        this.hashes.set(key, hash);
+        return 1;
+    }
+    async hgetall(key) {
+        return Object.fromEntries(this.hashes.get(key) ?? []);
+    }
+    async hdel(key, field) {
+        const hash = this.hashes.get(key);
+        if (!hash)
+            return 0;
+        return hash.delete(field) ? 1 : 0;
+    }
+    async del(key) {
+        return this.hashes.delete(key) ? 1 : 0;
+    }
+    async expire(_key, _ttl) {
+        return 1;
+    }
+    clear() {
+        this.hashes.clear();
+    }
+    async seedSession(userId, session) {
+        const storedSession = {
+            token: session.token ?? `stored-token-${session.sessionId}`,
+            device: session.device ?? "Chrome on Linux",
+            ip: session.ip ?? "127.0.0.1",
+            sessionId: session.sessionId,
+            createdAt: session.createdAt ?? "2026-05-02T00:00:00.000Z",
+        };
+        await this.hset(`sessions:${userId}`, session.sessionId, JSON.stringify(storedSession));
+        await this.expire(`sessions:${userId}`, 60 * 60);
+        return storedSession;
+    }
+}
+const redis = new InMemoryRedis();
+let redisForAuthFactory;
+const signTestToken = (payload) => jwt.sign(payload, jwtSecret);
+const adminToken = () => signTestToken({ id: "admin-user", role: "admin" });
+const userToken = () => signTestToken({ id: "regular-user", role: "user" });
+const getBearerToken = (authorization) => {
+    if (typeof authorization !== "string")
+        return undefined;
+    const [scheme, token] = authorization.split(" ");
+    return scheme === "Bearer" ? token : undefined;
+};
+const createAdminActions = (sessionStore) => ({
+    async listSessions(userId) {
+        const rawSessions = await sessionStore.hgetall(`sessions:${userId}`);
+        return Object.values(rawSessions).map((serializedSession) => JSON.parse(serializedSession));
+    },
+    async revokeSession(userId, sessionId) {
+        await sessionStore.hdel(`sessions:${userId}`, sessionId);
+    },
+    async revokeAllSessions(userId) {
+        await sessionStore.del(`sessions:${userId}`);
+    },
+});
+const createMockAuth = (sessionStore) => ({
+    requireAdmin(req, res, next) {
+        const token = getBearerToken(req.headers.authorization);
+        if (!token) {
+            return res.status(401).json({ error: "Unauthorized" });
+        }
+        try {
+            const decoded = jwt.verify(token, jwtSecret);
+            if (decoded.role !== "admin") {
+                return res.status(403).json({ error: "Forbidden" });
+            }
+            if (sessionStore) {
+                req.adminActions =
+                    createAdminActions(sessionStore);
+            }
+            next();
+        }
+        catch {
+            res.status(403).json({ error: "Forbidden" });
+        }
+    },
+    authenticateJWT(req, res, next) {
+        const token = getBearerToken(req.headers.authorization);
+        if (!token) {
+            return res.status(401).json({ error: "Unauthorized" });
+        }
+        try {
+            jwt.verify(token, jwtSecret);
+            next();
+        }
+        catch {
+            res.status(403).json({ error: "Forbidden" });
+        }
+    },
+    signToken: (payload) => jwt.sign(payload, jwtSecret),
+    verifyToken: async (token) => jwt.verify(token, jwtSecret),
+    guestToken: async (payload) => jwt.sign(payload, jwtSecret),
+    refreshToken: async () => ({
+        accessToken: jwt.sign({ id: "refreshed-user", role: "user" }, jwtSecret),
+        refreshToken: "next-refresh-token",
+    }),
+    incognito: vi.fn(),
+    rateLimit: (_req, _res, next) => next(),
+    ipWhitelist: (_req, _res, next) => next(),
+    helmet: (_req, _res, next) => next(),
+});
+const appWithRouter = (router) => {
+    const app = express();
+    app.use(express.json());
+    app.use(router);
+    return app;
+};
+const send = (app, method, path) => {
+    if (method === "delete") {
+        return request(app).delete(path);
+    }
+    return request(app).get(path);
+};
+const routeTemplates = [
+    {
+        name: "templates/express-auth/src/routes/protected.routes.ts",
+        guardedRoute: {
+            method: "get",
+            path: "/protected",
+            expectedBody: { message: "Protected route" },
+        },
+        async createApp(sessionStore) {
+            const { createProtectedRoutes } = await import("../../templates/express-auth/src/routes/protected.routes.js");
+            return appWithRouter(createProtectedRoutes(createMockAuth(sessionStore)));
+        },
+    },
+    {
+        name: "templates/express-base/routes/base.routes.ts",
+        guardedRoute: {
+            method: "get",
+            path: "/admin",
+            expectedBody: { message: "Admin only" },
+        },
+        async createApp(sessionStore) {
+            const { createBaseRoutes } = await import("../../templates/express-base/routes/base.routes.js");
+            return appWithRouter(createBaseRoutes(createMockAuth(sessionStore)));
+        },
+    },
+    //{
+    //name: "templates/express-auth+/src/auth/routes/protected.routes.ts",
+    // guardedRoute: {
+    // method: "get",
+    //path: "/protected",
+    //expectedBody: { message: "Protected route" },
+    //},
+    //async createApp(sessionStore?: InMemoryRedis) {
+    //redisForAuthFactory = sessionStore;
+    //const [  { default: protectedRoutes }] = await Promise.all([
+    //import("../../templates/express-auth+/src/auth/auth.js"),
+    //import("../../templates/express-auth+/src/auth/routes/protected.routes.js"),
+    //]);
+    //const authModule = await import("../../templates/express-auth+/src/auth/auth.js");
+    //const routesModule = await import("../../templates/express-auth+/src/auth/routes/protected.routes.js");
+    //await authModule.initAuth();
+    //      await initAuth();
+    // /const protectedRoutes = routesModule.default as unknown as Router ;
+    //  return appWithRouter(protectedRoutes);
+    //},
+    //},
+];
+const sessionRoutes = [
+    {
+        name: "list sessions",
+        method: "get",
+        path: "/admin/sessions/user-a",
+    },
+    {
+        name: "revoke one session",
+        method: "delete",
+        path: "/admin/sessions/user-a/session-a",
+    },
+    {
+        name: "revoke all sessions",
+        method: "delete",
+        path: "/admin/sessions/user-a",
+    },
+];
+beforeEach(() => {
+    vi.resetModules();
+    vi.stubEnv("JWT_SECRET", "templated-route-test-jwt-secret-32");
+    vi.stubEnv("REFRESH_SECRET", "templated-route-test-refresh-secret-32");
+    vi.stubEnv("GOOGLE_CLIENT_ID", "google-client-id");
+    vi.stubEnv("GOOGLE_CLIENT_SECRET", "google-client-secret");
+    vi.stubEnv("GOOGLE_REDIRECT_URI", "https://example.com/auth/google/callback");
+    vi.stubEnv("GITHUB_CLIENT_ID", "github-client-id");
+    vi.stubEnv("GITHUB_CLIENT_SECRET", "github-client-secret");
+    vi.stubEnv("GITHUB_REDIRECT_URI", "https://example.com/auth/github/callback");
+    redis.clear();
+    redisForAuthFactory = undefined;
+    dotenvMock.config.mockReset();
+    authenik8CoreMock.createAuthenik8.mockReset();
+    authenik8CoreMock.createAuthenik8.mockImplementation(async () => createMockAuth(redisForAuthFactory));
+});
+describe.each(routeTemplates)("$name", (template) => {
+    describe("admin guard", () => {
+        const guardedRoutes = [template.guardedRoute, ...sessionRoutes];
+        it.each(guardedRoutes)("returns 401 with no token for $method $path", async (route) => {
+            const app = await template.createApp(redis);
+            const response = await send(app, route.method, route.path);
+            expect(response.status).toBe(401);
+        });
+        it.each(guardedRoutes)("returns 403 for non-admin users on $method $path", async (route) => {
+            const app = await template.createApp(redis);
+            const response = await send(app, route.method, route.path).set("Authorization", `Bearer ${userToken()}`);
+            expect(response.status).toBe(403);
+        });
+        it.each(guardedRoutes)("returns 403 for unauthenticated invalid tokens on $method $path", async (route) => {
+            const app = await template.createApp(redis);
+            const response = await send(app, route.method, route.path).set("Authorization", "Bearer not-a-valid-token");
+            expect(response.status).toBe(403);
+        });
+        it(`returns the happy path response for ${template.guardedRoute.method} ${template.guardedRoute.path}`, async () => {
+            const app = await template.createApp(redis);
+            const response = await send(app, template.guardedRoute.method, template.guardedRoute.path).set("Authorization", `Bearer ${adminToken()}`);
+            expect(response.status).toBe(200);
+            expect(response.body).toEqual(template.guardedRoute.expectedBody);
+        });
+    });
+    describe("session management", () => {
+        it.each(sessionRoutes)("returns 503 for $method $path when Redis is not configured", async (route) => {
+            const app = await template.createApp(undefined);
+            const response = await send(app, route.method, route.path).set("Authorization", `Bearer ${adminToken()}`);
+            expect(response.status).toBe(503);
+            expect(response.body).toEqual({
+                success: false,
+                message: "Session management unavailable",
+            });
+        });
+        it("lists sessions without exposing stored tokens", async () => {
+            const app = await template.createApp(redis);
+            await redis.seedSession("user-a", {
+                sessionId: "session-a",
+                token: "sensitive-token-a",
+                device: "Firefox on macOS",
+                ip: "10.0.0.1",
+            });
+            await redis.seedSession("user-a", {
+                sessionId: "session-b",
+                token: "sensitive-token-b",
+                device: "Safari on iOS",
+                ip: "10.0.0.2",
+            });
+            const response = await request(app)
+                .get("/admin/sessions/user-a")
+                .set("Authorization", `Bearer ${adminToken()}`);
+            expect(response.status).toBe(200);
+            expect(response.body.sessions).toEqual([
+                {
+                    device: "Firefox on macOS",
+                    ip: "10.0.0.1",
+                    sessionId: "session-a",
+                    createdAt: "2026-05-02T00:00:00.000Z",
+                },
+                {
+                    device: "Safari on iOS",
+                    ip: "10.0.0.2",
+                    sessionId: "session-b",
+                    createdAt: "2026-05-02T00:00:00.000Z",
+                },
+            ]);
+            expect(JSON.stringify(response.body)).not.toContain("sensitive-token");
+            expect(response.body.sessions).toEqual(expect.arrayContaining([expect.not.objectContaining({ token: expect.anything() })]));
+        });
+        it("revokes one session without affecting other sessions or users", async () => {
+            const app = await template.createApp(redis);
+            await redis.seedSession("user-a", { sessionId: "session-a", token: "user-a-token-a" });
+            await redis.seedSession("user-a", { sessionId: "session-b", token: "user-a-token-b" });
+            await redis.seedSession("user-b", { sessionId: "session-c", token: "user-b-token-c" });
+            const response = await request(app)
+                .delete("/admin/sessions/user-a/session-a")
+                .set("Authorization", `Bearer ${adminToken()}`);
+            expect(response.status).toBe(200);
+            expect(response.body).toEqual({ success: true, message: "Session revoked" });
+            expect(await redis.hgetall("sessions:user-a")).toEqual({
+                "session-b": expect.any(String),
+            });
+            expect(await redis.hgetall("sessions:user-b")).toEqual({
+                "session-c": expect.any(String),
+            });
+        });
+        it("revokes all sessions for only the targeted user", async () => {
+            const app = await template.createApp(redis);
+            await redis.seedSession("user-a", { sessionId: "session-a", token: "user-a-token-a" });
+            await redis.seedSession("user-a", { sessionId: "session-b", token: "user-a-token-b" });
+            await redis.seedSession("user-b", { sessionId: "session-c", token: "user-b-token-c" });
+            const response = await request(app)
+                .delete("/admin/sessions/user-a")
+                .set("Authorization", `Bearer ${adminToken()}`);
+            expect(response.status).toBe(200);
+            expect(response.body).toEqual({ success: true, message: "All sessions revoked" });
+            expect(await redis.hgetall("sessions:user-a")).toEqual({});
+            expect(await redis.hgetall("sessions:user-b")).toEqual({
+                "session-c": expect.any(String),
+            });
+        });
+    });
+});
+//# sourceMappingURL=templated-routes.test.js.map

package/dist/src/tests/templated-routes.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"templated-routes.test.js","sourceRoot":"","sources":["../../../src/tests/templated-routes.test.ts"],"names":[],"mappings":"AAAA,OAAO,OAAsC,MAAM,SAAS,CAAC;AAC7D,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,OAAO,MAAM,WAAW,CAAC;AAChC,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAE9D,MAAM,iBAAiB,GAAG,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;IAC1C,eAAe,EAAE,EAAE,CAAC,EAAE,EAAE;CACzB,CAAC,CAAC,CAAC;AACJ,MAAM,UAAU,GAAG,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;IACnC,MAAM,EAAE,EAAE,CAAC,EAAE,EAAE;CAChB,CAAC,CAAC,CAAC;AAEJ,EAAE,CAAC,IAAI,CAAC,gBAAgB,EAAE,GAAG,EAAE,CAAC,CAAC;IAC/B,eAAe,EAAE,iBAAiB,CAAC,eAAe;CACnD,CAAC,CAAC,CAAC;AACJ,EAAE,CAAC,IAAI,CAAC,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;IACvB,OAAO,EAAE,UAAU;IACnB,MAAM,EAAE,UAAU,CAAC,MAAM;CAC1B,CAAC,CAAC,CAAC;AAEJ,MAAM,OAAO,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC/C,MAAM,GAAG,GAAG,OAAO,CAAC,cAAc,CAGjC,CAAC;AAEF,MAAM,SAAS,GAAG,6BAA6B,CAAC;AAYhD,MAAM,aAAa;IACA,MAAM,GAAG,IAAI,GAAG,EAA+B,CAAC;IAEjE,KAAK,CAAC,IAAI,CAAC,GAAW,EAAE,KAAa,EAAE,KAAa;QAClD,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,GAAG,EAAkB,CAAC;QAC/D,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QACvB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAC3B,OAAO,CAAC,CAAC;IACX,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,GAAW;QACvB,OAAO,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,GAAW,EAAE,KAAa;QACnC,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClC,IAAI,CAAC,IAAI;YAAE,OAAO,CAAC,CAAC;QACpB,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACpC,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,IAAY,EAAE,IAAY;QACrC,OAAO,CAAC,CAAC;IACX,CAAC;IAED,KAAK;QACH,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;IACtB,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,MAAc,EAAE,OAAuD;QACvF,MAAM,aAAa,GAAkB;YACnC,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,gBAAgB,OAAO,CAAC,SAAS,EAAE;YAC3D,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,iBAAiB;YAC3C,EAAE,EAAE,OAAO,CAAC,EAAE,IAAI,WAAW;YAC7B,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,SAAS,EAAE,OAAO,CAAC,SAAS,IAAI,0BAA0B;SAC3D,CAAC;QAEF,MAAM,IAAI,CAAC,IAAI,CAAC,YAAY,MAAM,EAAE,EAAE,OAAO,CAAC,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC;QACxF,MAAM,IAAI,CAAC,MAAM,CAAC,YAAY,MAAM,EAAE,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,OAAO,aAAa,CAAC;IACvB,CAAC;CACF;AAED,MAAM,KAAK,GAAG,IAAI,aAAa,EAAE,CAAC;AAClC,IAAI,mBAA8C,CAAC;AAEnD,MAAM,aAAa,GAAG,CAAC,OAAqC,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;AAE9F,MAAM,UAAU,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,EAAE,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;AAC5E,MAAM,SAAS,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,EAAE,EAAE,EAAE,cAAc,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;AAE5E,MAAM,cAAc,GAAG,CAAC,aAAsB,EAAE,EAAE;IAChD,IAAI,OAAO,aAAa,KAAK,QAAQ;QAAE,OAAO,SAAS,CAAC;IACxD,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,GAAG,aAAa,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACjD,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;AACjD,CAAC,CAAC;AAEF,MAAM,kBAAkB,GAAG,CAAC,YAA2B,EAAE,EAAE,CAAC,CAAC;IAC3D,KAAK,CAAC,YAAY,CAAC,MAAc;QAC/B,MAAM,WAAW,GAAG,MAAM,YAAY,CAAC,OAAO,CAAC,YAAY,MAAM,EAAE,CAAC,CAAC;QAErE,OAAO,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,GAAG,CACnC,CAAC,iBAAiB,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAkB,CACtE,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,SAAiB;QACnD,MAAM,YAAY,CAAC,IAAI,CAAC,YAAY,MAAM,EAAE,EAAE,SAAS,CAAC,CAAC;IAC3D,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,MAAc;QACpC,MAAM,YAAY,CAAC,GAAG,CAAC,YAAY,MAAM,EAAE,CAAC,CAAC;IAC/C,CAAC;CACF,CAAC,CAAC;AAEH,MAAM,cAAc,GAAG,CAAC,YAA4B,EAAE,EAAE,CAAC,CAAC;IACxD,YAAY,CAAC,GAAoB,EAAE,GAAqB,EAAE,IAA0B;QAClF,MAAM,KAAK,GAAG,cAAc,CAAC,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;QAExD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,CAAC,CAAC;QACzD,CAAC;QAED,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;YAE7C,IAAI,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;gBAC7B,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,CAAC;YACtD,CAAC;YAED,IAAI,YAAY,EAAE,CAAC;gBAChB,GAAkF,CAAC,YAAY;oBAC9F,kBAAkB,CAAC,YAAY,CAAC,CAAC;YACrC,CAAC;YAED,IAAI,EAAE,CAAC;QACT,CAAC;QAAC,MAAM,CAAC;YACP,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,eAAe,CAAC,GAAoB,EAAE,GAAqB,EAAE,IAA0B;QACrF,MAAM,KAAK,GAAG,cAAc,CAAC,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;QAExD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,CAAC,CAAC;QACzD,CAAC;QAED,IAAI,CAAC;YACH,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;YAC7B,IAAI,EAAE,CAAC;QACT,CAAC;QAAC,MAAM,CAAC;YACP,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,SAAS,EAAE,CAAC,OAAgC,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,SAAS,CAAC;IAC7E,WAAW,EAAE,KAAK,EAAE,KAAa,EAAE,EAAE,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,SAAS,CAAC;IAClE,UAAU,EAAE,KAAK,EAAE,OAAgC,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,SAAS,CAAC;IACpF,YAAY,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC;QACzB,WAAW,EAAE,GAAG,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,gBAAgB,EAAE,IAAI,EAAE,MAAM,EAAE,EAAE,SAAS,CAAC;QACxE,YAAY,EAAE,oBAAoB;KACnC,CAAC;IACF,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;IAClB,SAAS,EAAE,CAAC,IAAqB,EAAE,IAAsB,EAAE,IAA0B,EAAE,EAAE,CAAC,IAAI,EAAE;IAChG,WAAW,EAAE,CAAC,IAAqB,EAAE,IAAsB,EAAE,IAA0B,EAAE,EAAE,CAAC,IAAI,EAAE;IAClG,MAAM,EAAE,CAAC,IAAqB,EAAE,IAAsB,EAAE,IAA0B,EAAE,EAAE,CAAC,IAAI,EAAE;CAC9F,CAAC,CAAC;AAEH,MAAM,aAAa,GAAG,CAAC,MAAc,EAAE,EAAE;IACvC,MAAM,GAAG,GAAG,OAAO,EAAE,CAAC;IACtB,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;IACxB,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAChB,OAAO,GAAG,CAAC;AACb,CAAC,CAAC;AAEF,MAAM,IAAI,GAAG,CAAC,GAAY,EAAE,MAAkB,EAAE,IAAY,EAAE,EAAE;IAC9D,IAAI,MAAM,KAAK,QAAQ,EAAE,CAAC;QACxB,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACnC,CAAC;IAED,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;AAChC,CAAC,CAAC;AAQF,MAAM,cAAc,GAAoB;IACtC;QACE,IAAI,EAAE,uDAAuD;QAC7D,YAAY,EAAE;YACZ,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,YAAY;YAClB,YAAY,EAAE,EAAE,OAAO,EAAE,iBAAiB,EAAE;SAC7C;QACD,KAAK,CAAC,SAAS,CAAC,YAA4B;YAC1C,MAAM,EAAE,qBAAqB,EAAE,GAAG,MAAM,MAAM,CAC5C,6DAA6D,CAC9D,CAAC;YAEF,OAAO,aAAa,CAAC,qBAAqB,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAC5E,CAAC;KACF;IACD;QACE,IAAI,EAAE,8CAA8C;QACpD,YAAY,EAAE;YACZ,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,QAAQ;YACd,YAAY,EAAE,EAAE,OAAO,EAAE,YAAY,EAAE;SACxC;QACD,KAAK,CAAC,SAAS,CAAC,YAA4B;YAC1C,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,MAAM,CAAC,oDAAoD,CAAC,CAAC;YAEhG,OAAO,aAAa,CAAC,gBAAgB,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACvE,CAAC;KACF;IACD,GAAG;IACD,sEAAsE;IACvE,kBAAkB;IAChB,iBAAiB;IAChB,qBAAqB;IACrB,+CAA+C;IACjD,IAAI;IACJ,iDAAiD;IAC/C,qCAAqC;IACrC,8DAA8D;IAC5D,2DAA2D;IAC3D,8EAA8E;IAChF,KAAK;IACX,oFAAoF;IAClF,yGAAyG;IAEzG,8BAA8B;IAEhC,yBAAyB;IACrB,uEAAuE;IACvE,0CAA0C;IAC1C,IAAI;IACN,IAAI;CACL,CAAC;AAEF,MAAM,aAAa,GAAG;IACpB;QACE,IAAI,EAAE,eAAe;QACrB,MAAM,EAAE,KAAc;QACtB,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,MAAM,EAAE,QAAiB;QACzB,IAAI,EAAE,kCAAkC;KACzC;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,MAAM,EAAE,QAAiB;QACzB,IAAI,EAAE,wBAAwB;KAC/B;CACF,CAAC;AAEF,UAAU,CAAC,GAAG,EAAE;IACd,EAAE,CAAC,YAAY,EAAE,CAAC;IAClB,EAAE,CAAC,OAAO,CAAC,YAAY,EAAE,oCAAoC,CAAC,CAAC;IAC/D,EAAE,CAAC,OAAO,CAAC,gBAAgB,EAAE,wCAAwC,CAAC,CAAC;IACvE,EAAE,CAAC,OAAO,CAAC,kBAAkB,EAAE,kBAAkB,CAAC,CAAC;IACnD,EAAE,CAAC,OAAO,CAAC,sBAAsB,EAAE,sBAAsB,CAAC,CAAC;IAC3D,EAAE,CAAC,OAAO,CAAC,qBAAqB,EAAE,0CAA0C,CAAC,CAAC;IAC9E,EAAE,CAAC,OAAO,CAAC,kBAAkB,EAAE,kBAAkB,CAAC,CAAC;IACnD,EAAE,CAAC,OAAO,CAAC,sBAAsB,EAAE,sBAAsB,CAAC,CAAC;IAC3D,EAAE,CAAC,OAAO,CAAC,qBAAqB,EAAE,0CAA0C,CAAC,CAAC;IAC9E,KAAK,CAAC,KAAK,EAAE,CAAC;IACd,mBAAmB,GAAG,SAAS,CAAC;IAChC,UAAU,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;IAC9B,iBAAiB,CAAC,eAAe,CAAC,SAAS,EAAE,CAAC;IAC9C,iBAAiB,CAAC,eAAe,CAAC,kBAAkB,CAAC,KAAK,IAAI,EAAE,CAC9D,cAAc,CAAC,mBAAmB,CAAC,CACpC,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE,EAAE;IAClD,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE;QAC3B,MAAM,aAAa,GAAG,CAAC,QAAQ,CAAC,YAAY,EAAE,GAAG,aAAa,CAAC,CAAC;QAEhE,EAAE,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,6CAA6C,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE;YACpF,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YAE5C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;YAE3D,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,kDAAkD,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE;YACzF,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YAE5C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAC5D,eAAe,EACf,UAAU,SAAS,EAAE,EAAE,CACxB,CAAC;YAEF,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,IAAI,CAAC,aAAa,CAAC,CACpB,iEAAiE,EACjE,KAAK,EAAE,KAAK,EAAE,EAAE;YACd,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YAE5C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAC5D,eAAe,EACf,0BAA0B,CAC3B,CAAC;YAEF,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACpC,CAAC,CACF,CAAC;QAEF,EAAE,CAAC,uCAAuC,QAAQ,CAAC,YAAY,CAAC,MAAM,IAAI,QAAQ,CAAC,YAAY,CAAC,IAAI,EAAE,EAAE,KAAK,IAAI,EAAE;YACjH,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YAE5C,MAAM,QAAQ,GAAG,MAAM,IAAI,CACzB,GAAG,EACH,QAAQ,CAAC,YAAY,CAAC,MAAM,EAC5B,QAAQ,CAAC,YAAY,CAAC,IAAI,CAC3B,CAAC,GAAG,CAAC,eAAe,EAAE,UAAU,UAAU,EAAE,EAAE,CAAC,CAAC;YAEjD,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAClC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,YAAY,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,oBAAoB,EAAE,GAAG,EAAE;QAClC,EAAE,CAAC,IAAI,CAAC,aAAa,CAAC,CACpB,4DAA4D,EAC5D,KAAK,EAAE,KAAK,EAAE,EAAE;YACd,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;YAEhD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAC5D,eAAe,EACf,UAAU,UAAU,EAAE,EAAE,CACzB,CAAC;YAEF,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAClC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC;gBAC5B,OAAO,EAAE,KAAK;gBACd,OAAO,EAAE,gCAAgC;aAC1C,CAAC,CAAC;QACL,CAAC,CACF,CAAC;QAEF,EAAE,CAAC,+CAA+C,EAAE,KAAK,IAAI,EAAE;YAC7D,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YAC5C,MAAM,KAAK,CAAC,WAAW,CAAC,QAAQ,EAAE;gBAChC,SAAS,EAAE,WAAW;gBACtB,KAAK,EAAE,mBAAmB;gBAC1B,MAAM,EAAE,kBAAkB;gBAC1B,EAAE,EAAE,UAAU;aACf,CAAC,CAAC;YACH,MAAM,KAAK,CAAC,WAAW,CAAC,QAAQ,EAAE;gBAChC,SAAS,EAAE,WAAW;gBACtB,KAAK,EAAE,mBAAmB;gBAC1B,MAAM,EAAE,eAAe;gBACvB,EAAE,EAAE,UAAU;aACf,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;iBAChC,GAAG,CAAC,wBAAwB,CAAC;iBAC7B,GAAG,CAAC,eAAe,EAAE,UAAU,UAAU,EAAE,EAAE,CAAC,CAAC;YAElD,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAClC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC;gBACrC;oBACE,MAAM,EAAE,kBAAkB;oBAC1B,EAAE,EAAE,UAAU;oBACd,SAAS,EAAE,WAAW;oBACtB,SAAS,EAAE,0BAA0B;iBACtC;gBACD;oBACE,MAAM,EAAE,eAAe;oBACvB,EAAE,EAAE,UAAU;oBACd,SAAS,EAAE,WAAW;oBACtB,SAAS,EAAE,0BAA0B;iBACtC;aACF,CAAC,CAAC;YACH,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,iBAAiB,CAAC,CAAC;YACvE,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,OAAO,CACpC,MAAM,CAAC,eAAe,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,gBAAgB,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,CAAC,CACpF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,+DAA+D,EAAE,KAAK,IAAI,EAAE;YAC7E,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YAC5C,MAAM,KAAK,CAAC,WAAW,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,WAAW,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;YACvF,MAAM,KAAK,CAAC,WAAW,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,WAAW,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;YACvF,MAAM,KAAK,CAAC,WAAW,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,WAAW,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAEvF,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;iBAChC,MAAM,CAAC,kCAAkC,CAAC;iBAC1C,GAAG,CAAC,eAAe,EAAE,UAAU,UAAU,EAAE,EAAE,CAAC,CAAC;YAElD,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAClC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,iBAAiB,EAAE,CAAC,CAAC;YAC7E,MAAM,CAAC,MAAM,KAAK,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC,OAAO,CAAC;gBACrD,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC;aAChC,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,KAAK,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC,OAAO,CAAC;gBACrD,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC;aAChC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iDAAiD,EAAE,KAAK,IAAI,EAAE;YAC/D,MAAM,GAAG,GAAG,MAAM,QAAQ,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YAC5C,MAAM,KAAK,CAAC,WAAW,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,WAAW,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;YACvF,MAAM,KAAK,CAAC,WAAW,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,WAAW,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;YACvF,MAAM,KAAK,CAAC,WAAW,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,WAAW,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAEvF,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;iBAChC,MAAM,CAAC,wBAAwB,CAAC;iBAChC,GAAG,CAAC,eAAe,EAAE,UAAU,UAAU,EAAE,EAAE,CAAC,CAAC;YAElD,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAClC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,sBAAsB,EAAE,CAAC,CAAC;YAClF,MAAM,CAAC,MAAM,KAAK,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YAC3D,MAAM,CAAC,MAAM,KAAK,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC,OAAO,CAAC;gBACrD,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC;aAChC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/src/utils/hash.d.ts

@@ -0,0 +1,4 @@
+import type { PackageManager } from "../steps/installDeps.js";
+export declare function getBestHashLib(_pm: PackageManager): "bcryptjs";
+export declare function generateHashModule(_hashLib: "bcryptjs"): string;
+//# sourceMappingURL=hash.d.ts.map

package/dist/src/utils/hash.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hash.d.ts","sourceRoot":"","sources":["../../../src/utils/hash.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAC;AAE9D,wBAAgB,cAAc,CAAC,GAAG,EAAE,cAAc,GAAG,UAAU,CAE9D;AAED,wBAAgB,kBAAkB,CAAC,QAAQ,EAAE,UAAU,GAAG,MAAM,CAY/D"}

package/dist/src/utils/hash.js

@@ -0,0 +1,17 @@
+export function getBestHashLib(_pm) {
+    return "bcryptjs";
+}
+export function generateHashModule(_hashLib) {
+    return `
+import bcrypt from "bcryptjs";
+
+export const hashPassword = (password: string) => {
+return bcrypt.hash(password, 10);
+};
+
+export const comparePassword = (password: string, hash: string) => {
+return bcrypt.compare(password, hash);
+};
+`;
+}
+//# sourceMappingURL=hash.js.map

package/dist/src/utils/hash.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hash.js","sourceRoot":"","sources":["../../../src/utils/hash.ts"],"names":[],"mappings":"AAEA,MAAM,UAAU,cAAc,CAAC,GAAmB;IAChD,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,QAAoB;IACrD,OAAO;;;;;;;;;;CAUR,CAAC;AACF,CAAC"}

package/dist/src/utils/output.d.ts

@@ -0,0 +1,3 @@
+import type { CliState } from "../lib/types.js";
+export declare function printSummary(state: CliState, isProduction: boolean): void;
+//# sourceMappingURL=output.d.ts.map

package/dist/src/utils/output.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"output.d.ts","sourceRoot":"","sources":["../../../src/utils/output.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAsBhD,wBAAgB,YAAY,CAAC,KAAK,EAAE,QAAQ,EAAE,YAAY,EAAE,OAAO,GAAG,IAAI,CAsEzE"}

package/dist/src/utils/output.js

@@ -0,0 +1,81 @@
+import chalk from "chalk";
+function selectedOAuthProviders(state) {
+    const providers = state.oauthProviders?.filter((provider) => provider === "google" || provider === "github");
+    return providers?.length ? providers : ["google", "github"];
+}
+function oauthProviderLabel(state) {
+    return selectedOAuthProviders(state)
+        .map((provider) => provider === "github" ? "GitHub" : "Google")
+        .join("/");
+}
+function oauthRouteLines(state) {
+    return selectedOAuthProviders(state)
+        .map((provider) => `  GET    /auth/${provider}`)
+        .join("\n");
+}
+export function printSummary(state, isProduction) {
+    console.log(chalk.green.bold("\n🎉 Authenik8 app created successfully!\n"));
+    console.log(chalk.white(`
+Next steps:
+
+cd ${state.projectName}
+${state.usePrisma ? "npm run prisma:migrate\n" : ""}redis-server --daemonize yes
+npm run dev
+
+Before running, review .env and replace generated development values for deployed environments.
+${state.authMode === "auth-oauth" ? `For OAuth, set real ${oauthProviderLabel(state)} client IDs, secrets, and redirect URLs in .env.\n` : ""}
+
+Auth Features:
+${state.authMode === "base"
+        ? "✓ JWT only"
+        : state.authMode === "auth"
+            ? "✓ Email + Password"
+            : `✓ Password + OAuth (${oauthProviderLabel(state)})`}
+
+🛠 Stack:
+✔ Express
+✔ ${state.usePrisma ? (state.database === "postgresql" ? "PostgreSQL" : "SQLite") : "No database"}
+✔ ${state.usePrisma ? "Prisma ORM" : "No ORM"}
+
+📡 API Routes:
+${state.authMode === "base"
+        ? `
+  GET    /public
+  GET    /guest
+  GET    /protected
+  POST   /refresh
+`
+        : state.authMode === "auth"
+            ? `
+  POST   /auth/register
+  POST   /auth/login
+  POST   /auth/refresh
+  GET    /protected
+`
+            : `
+  POST   /auth/register
+  POST   /auth/login
+  POST   /auth/refresh
+${oauthRouteLines(state)}
+  GET    /protected
+`}
+✅ Done! Enjoying authenik8?
+⭐ Star us → github.com/COD434/create-authenik8-app
+💬 Drop feedback → github.com/COD434/create-authenik8-app/discussions
+
+🔥 You're ready to build.
+`));
+    if (isProduction) {
+        console.log(`
+🚀 Production Ready Enabled:
+
+✔ PM2 installed
+✔ Cluster mode enabled
+✔ Memory auto-restart (300MB)
+
+Run:
+npm run pm2:start
+`);
+    }
+}
+//# sourceMappingURL=output.js.map

package/dist/src/utils/output.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"output.js","sourceRoot":"","sources":["../../../src/utils/output.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAG1B,SAAS,sBAAsB,CAAC,KAAe;IAC7C,MAAM,SAAS,GAAG,KAAK,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC,QAAQ,EAAE,EAAE,CAC1D,QAAQ,KAAK,QAAQ,IAAI,QAAQ,KAAK,QAAQ,CAC/C,CAAC;IAEF,OAAO,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;AAC9D,CAAC;AAED,SAAS,kBAAkB,CAAC,KAAe;IACzC,OAAO,sBAAsB,CAAC,KAAK,CAAC;SACjC,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC;SAC9D,IAAI,CAAC,GAAG,CAAC,CAAC;AACf,CAAC;AAED,SAAS,eAAe,CAAC,KAAe;IACtC,OAAO,sBAAsB,CAAC,KAAK,CAAC;SACjC,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,kBAAkB,QAAQ,EAAE,CAAC;SAC/C,IAAI,CAAC,IAAI,CAAC,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,YAAY,CAAC,KAAe,EAAE,YAAqB;IACjE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,4CAA4C,CAAC,CAAC,CAAC;IAE5E,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC;;;KAGrB,KAAK,CAAC,WAAW;EACpB,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,0BAA0B,CAAC,CAAC,CAAC,EAAE;;;;EAIjD,KAAK,CAAC,QAAQ,KAAK,YAAY,CAAC,CAAC,CAAC,uBAAuB,kBAAkB,CAAC,KAAK,CAAC,oDAAoD,CAAC,CAAC,CAAC,EAAE;;;EAI3I,KAAK,CAAC,QAAQ,KAAK,MAAM;QACvB,CAAC,CAAC,YAAY;QACd,CAAC,CAAC,KAAK,CAAC,QAAQ,KAAK,MAAM;YAC3B,CAAC,CAAC,oBAAoB;YACtB,CAAC,CAAC,uBAAuB,kBAAkB,CAAC,KAAK,CAAC,GACtD;;;;IAII,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,KAAK,YAAY,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,aAAa;IAC7F,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,QAAQ;;;EAI3C,KAAK,CAAC,QAAQ,KAAK,MAAM;QACvB,CAAC,CAAC;;;;;CAKL;QACG,CAAC,CAAC,KAAK,CAAC,QAAQ,KAAK,MAAM;YAC3B,CAAC,CAAC;;;;;CAKL;YACG,CAAC,CAAC;;;;EAIJ,eAAe,CAAC,KAAK,CAAC;;CAGxB;;;;;;CAMC,CAAC,CAAC,CAAC;IAEF,IAAI,YAAY,EAAE,CAAC;QACjB,OAAO,CAAC,GAAG,CAAC;;;;;;;;;CASf,CAAC,CAAC;IACD,CAAC;AACH,CAAC"}