oidc-spa 8.4.8 → 8.5.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +2 -5
- package/core/createOidc.js +3 -1
- package/core/createOidc.js.map +1 -1
- package/core/earlyInit.d.ts +45 -7
- package/core/earlyInit.js +69 -153
- package/core/earlyInit.js.map +1 -1
- package/core/oidcClientTsUserToTokens.d.ts +1 -0
- package/core/oidcClientTsUserToTokens.js +11 -1
- package/core/oidcClientTsUserToTokens.js.map +1 -1
- package/core/tokenExfiltrationDefense.d.ts +6 -0
- package/core/tokenExfiltrationDefense.js +616 -0
- package/core/tokenExfiltrationDefense.js.map +1 -0
- package/core/tokenExfiltrationDefense_legacy.d.ts +8 -0
- package/core/tokenExfiltrationDefense_legacy.js +133 -0
- package/core/tokenExfiltrationDefense_legacy.js.map +1 -0
- package/core/tokenPlaceholderSubstitution.d.ts +13 -0
- package/core/tokenPlaceholderSubstitution.js +79 -0
- package/core/tokenPlaceholderSubstitution.js.map +1 -0
- package/esm/core/createOidc.js +3 -1
- package/esm/core/createOidc.js.map +1 -1
- package/esm/core/earlyInit.d.ts +45 -7
- package/esm/core/earlyInit.js +69 -153
- package/esm/core/earlyInit.js.map +1 -1
- package/esm/core/oidcClientTsUserToTokens.d.ts +1 -0
- package/esm/core/oidcClientTsUserToTokens.js +11 -1
- package/esm/core/oidcClientTsUserToTokens.js.map +1 -1
- package/esm/core/tokenExfiltrationDefense.d.ts +6 -0
- package/esm/core/tokenExfiltrationDefense.js +613 -0
- package/esm/core/tokenExfiltrationDefense.js.map +1 -0
- package/esm/core/tokenExfiltrationDefense_legacy.d.ts +8 -0
- package/esm/core/tokenExfiltrationDefense_legacy.js +130 -0
- package/esm/core/tokenExfiltrationDefense_legacy.js.map +1 -0
- package/esm/core/tokenPlaceholderSubstitution.d.ts +13 -0
- package/esm/core/tokenPlaceholderSubstitution.js +73 -0
- package/esm/core/tokenPlaceholderSubstitution.js.map +1 -0
- package/esm/tools/isDomain.d.ts +1 -0
- package/esm/tools/isDomain.js +16 -0
- package/esm/tools/isDomain.js.map +1 -0
- package/esm/tools/isHostnameAuthorized.d.ts +5 -0
- package/esm/tools/isHostnameAuthorized.js +74 -0
- package/esm/tools/isHostnameAuthorized.js.map +1 -0
- package/esm/tools/isLikelyDevServer.js +18 -10
- package/esm/tools/isLikelyDevServer.js.map +1 -1
- package/package.json +1 -1
- package/src/core/createOidc.ts +2 -0
- package/src/core/earlyInit.ts +138 -192
- package/src/core/oidcClientTsUserToTokens.ts +14 -0
- package/src/core/tokenExfiltrationDefense.ts +874 -0
- package/src/core/tokenExfiltrationDefense_legacy.ts +165 -0
- package/src/core/tokenPlaceholderSubstitution.ts +105 -0
- package/src/tools/isDomain.ts +18 -0
- package/src/tools/isHostnameAuthorized.ts +91 -0
- package/src/tools/isLikelyDevServer.ts +23 -11
- package/src/vite-plugin/handleClientEntrypoint.ts +57 -20
- package/src/vite-plugin/vite-plugin.ts +5 -10
- package/tools/isDomain.d.ts +1 -0
- package/tools/isDomain.js +19 -0
- package/tools/isDomain.js.map +1 -0
- package/tools/isHostnameAuthorized.d.ts +5 -0
- package/tools/isHostnameAuthorized.js +77 -0
- package/tools/isHostnameAuthorized.js.map +1 -0
- package/tools/isLikelyDevServer.js +18 -10
- package/tools/isLikelyDevServer.js.map +1 -1
- package/vite-plugin/handleClientEntrypoint.js +36 -17
- package/vite-plugin/handleClientEntrypoint.js.map +1 -1
- package/vite-plugin/vite-plugin.d.ts +3 -4
- package/vite-plugin/vite-plugin.js +1 -5
- package/vite-plugin/vite-plugin.js.map +1 -1
package/esm/core/earlyInit.js
CHANGED
|
@@ -4,6 +4,8 @@ import { setBASE_URL } from "./BASE_URL";
|
|
|
4
4
|
import { resolvePrShouldLoadApp } from "./prShouldLoadApp";
|
|
5
5
|
import { isBrowser } from "../tools/isBrowser";
|
|
6
6
|
import { createEvt } from "../tools/Evt";
|
|
7
|
+
import { handleTokenExfiltrationDefense_legacy } from "./tokenExfiltrationDefense_legacy";
|
|
8
|
+
import { enableTokenExfiltrationDefense } from "./tokenExfiltrationDefense";
|
|
7
9
|
let hasEarlyInitBeenCalled = false;
|
|
8
10
|
const IFRAME_MESSAGE_PREFIX = "oidc-spa:cross-window-messaging:";
|
|
9
11
|
export function oidcEarlyInit(params) {
|
|
@@ -14,168 +16,82 @@ export function oidcEarlyInit(params) {
|
|
|
14
16
|
if (!isBrowser) {
|
|
15
17
|
return { shouldLoadApp: true };
|
|
16
18
|
}
|
|
17
|
-
const { freezeFetch, freezeXMLHttpRequest, freezeWebSocket, freezePromise, safeMode = false, BASE_URL } = params;
|
|
18
19
|
const { shouldLoadApp } = handleOidcCallback();
|
|
19
20
|
if (shouldLoadApp) {
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
for (const name of [
|
|
31
|
-
"fetch",
|
|
32
|
-
"XMLHttpRequest",
|
|
33
|
-
"WebSocket",
|
|
34
|
-
"Headers",
|
|
35
|
-
"URLSearchParams",
|
|
36
|
-
"String",
|
|
37
|
-
"Object",
|
|
38
|
-
"Promise",
|
|
39
|
-
"Array",
|
|
40
|
-
"RegExp",
|
|
41
|
-
"TextEncoder",
|
|
42
|
-
"Uint8Array",
|
|
43
|
-
"Uint32Array",
|
|
44
|
-
"Response",
|
|
45
|
-
"Reflect",
|
|
46
|
-
"JSON",
|
|
47
|
-
"encodeURIComponent",
|
|
48
|
-
"decodeURIComponent",
|
|
49
|
-
"atob",
|
|
50
|
-
"btoa"
|
|
51
|
-
]) {
|
|
52
|
-
const doSkip = (() => {
|
|
53
|
-
switch (name) {
|
|
54
|
-
case "XMLHttpRequest":
|
|
55
|
-
if (freezeXMLHttpRequest !== undefined) {
|
|
56
|
-
return !freezeXMLHttpRequest;
|
|
57
|
-
}
|
|
58
|
-
break;
|
|
59
|
-
case "fetch":
|
|
60
|
-
if (freezeFetch !== undefined) {
|
|
61
|
-
return !freezeFetch;
|
|
62
|
-
}
|
|
63
|
-
break;
|
|
64
|
-
case "WebSocket":
|
|
65
|
-
if (freezeWebSocket !== undefined) {
|
|
66
|
-
return !freezeWebSocket;
|
|
67
|
-
}
|
|
68
|
-
break;
|
|
69
|
-
case "Promise":
|
|
70
|
-
if (freezePromise !== undefined) {
|
|
71
|
-
return !freezePromise;
|
|
72
|
-
}
|
|
73
|
-
break;
|
|
74
|
-
}
|
|
75
|
-
return !safeMode;
|
|
76
|
-
})();
|
|
77
|
-
if (doSkip) {
|
|
78
|
-
continue;
|
|
21
|
+
token_exfiltration_defense: {
|
|
22
|
+
if (!("enableTokenExfiltrationDefense" in params)) {
|
|
23
|
+
handleTokenExfiltrationDefense_legacy({
|
|
24
|
+
freezeFetch: params.freezeFetch,
|
|
25
|
+
freezeXMLHttpRequest: params.freezeXMLHttpRequest,
|
|
26
|
+
freezeWebSocket: params.freezeWebSocket,
|
|
27
|
+
freezePromise: params.freezePromise,
|
|
28
|
+
safeMode: params.safeMode
|
|
29
|
+
});
|
|
30
|
+
break token_exfiltration_defense;
|
|
79
31
|
}
|
|
80
|
-
const
|
|
81
|
-
if (
|
|
82
|
-
|
|
83
|
-
|
|
84
|
-
|
|
85
|
-
|
|
86
|
-
|
|
87
|
-
continue;
|
|
88
|
-
}
|
|
89
|
-
}
|
|
90
|
-
if (name === "Array") {
|
|
91
|
-
if (propertyName === "constructor" || propertyName === "concat") {
|
|
92
|
-
continue;
|
|
93
|
-
}
|
|
94
|
-
}
|
|
95
|
-
const pd = Object.getOwnPropertyDescriptor(original.prototype, propertyName);
|
|
96
|
-
assert(pd !== undefined);
|
|
97
|
-
if (!pd.configurable) {
|
|
98
|
-
continue;
|
|
99
|
-
}
|
|
100
|
-
Object.defineProperty(original.prototype, propertyName, {
|
|
101
|
-
enumerable: pd.enumerable,
|
|
102
|
-
configurable: false,
|
|
103
|
-
...("value" in pd
|
|
104
|
-
? {
|
|
105
|
-
get: () => pd.value,
|
|
106
|
-
set: () => {
|
|
107
|
-
throw createWriteError(`window.${name}.prototype.${propertyName}`);
|
|
108
|
-
}
|
|
109
|
-
}
|
|
110
|
-
: {
|
|
111
|
-
get: pd.get,
|
|
112
|
-
set: pd.set ??
|
|
113
|
-
(() => {
|
|
114
|
-
throw createWriteError(`window.${name}.prototype.${propertyName}`);
|
|
115
|
-
})
|
|
116
|
-
})
|
|
117
|
-
});
|
|
32
|
+
const { enableTokenExfiltrationDefense: doEnableTokenExfiltrationDefense, resourceServersAllowedHostnames, serviceWorkersAllowedHostnames } = params;
|
|
33
|
+
if (!doEnableTokenExfiltrationDefense) {
|
|
34
|
+
if (resourceServersAllowedHostnames !== undefined) {
|
|
35
|
+
console.warn([
|
|
36
|
+
"oidc-spa: resourceServersAllowedHostnames is ignored when",
|
|
37
|
+
"enableTokenExfiltrationDefense is set to false."
|
|
38
|
+
].join(" "));
|
|
118
39
|
}
|
|
119
|
-
|
|
120
|
-
|
|
121
|
-
|
|
122
|
-
|
|
123
|
-
|
|
124
|
-
set: () => {
|
|
125
|
-
throw createWriteError(`window.${name}`);
|
|
40
|
+
if (serviceWorkersAllowedHostnames !== undefined) {
|
|
41
|
+
console.warn([
|
|
42
|
+
"oidc-spa: serviceWorkersAllowedHostnames is ignored when",
|
|
43
|
+
"enableTokenExfiltrationDefense is set to false."
|
|
44
|
+
].join(" "));
|
|
126
45
|
}
|
|
46
|
+
break token_exfiltration_defense;
|
|
47
|
+
}
|
|
48
|
+
enableTokenExfiltrationDefense({
|
|
49
|
+
resourceServersAllowedHostnames,
|
|
50
|
+
serviceWorkersAllowedHostnames
|
|
127
51
|
});
|
|
128
52
|
}
|
|
129
|
-
|
|
130
|
-
|
|
131
|
-
const
|
|
132
|
-
|
|
133
|
-
|
|
134
|
-
|
|
135
|
-
|
|
136
|
-
|
|
137
|
-
|
|
138
|
-
|
|
139
|
-
|
|
140
|
-
|
|
53
|
+
{
|
|
54
|
+
const _MessageEvent_prototype_data_get = (() => {
|
|
55
|
+
const pd = Object.getOwnPropertyDescriptor(MessageEvent.prototype, "data");
|
|
56
|
+
assert(pd !== undefined);
|
|
57
|
+
const { get } = pd;
|
|
58
|
+
assert(get !== undefined);
|
|
59
|
+
return get;
|
|
60
|
+
})();
|
|
61
|
+
const _MessageEvent_prototype_origin_get = (() => {
|
|
62
|
+
const pd = Object.getOwnPropertyDescriptor(MessageEvent.prototype, "origin");
|
|
63
|
+
assert(pd !== undefined);
|
|
64
|
+
const { get } = pd;
|
|
65
|
+
assert(get !== undefined);
|
|
66
|
+
return get;
|
|
67
|
+
})();
|
|
68
|
+
const _Event_prototype_stopImmediatePropagation_value = Event.prototype.stopImmediatePropagation;
|
|
69
|
+
const origin = window.location.origin;
|
|
70
|
+
window.addEventListener("message", event => {
|
|
71
|
+
if (_MessageEvent_prototype_origin_get.call(event) !== origin) {
|
|
72
|
+
return;
|
|
73
|
+
}
|
|
74
|
+
const eventData = _MessageEvent_prototype_data_get.call(event);
|
|
75
|
+
if (typeof eventData !== "string") {
|
|
76
|
+
return;
|
|
77
|
+
}
|
|
78
|
+
if (!eventData.startsWith(IFRAME_MESSAGE_PREFIX)) {
|
|
79
|
+
return;
|
|
80
|
+
}
|
|
81
|
+
_Event_prototype_stopImmediatePropagation_value.call(event);
|
|
82
|
+
const authResponse = JSON.parse(eventData.slice(IFRAME_MESSAGE_PREFIX.length));
|
|
83
|
+
(evtIframeAuthResponse ?? (evtIframeAuthResponse = createEvt())).post(authResponse);
|
|
84
|
+
}, {
|
|
85
|
+
capture: true,
|
|
86
|
+
once: false,
|
|
87
|
+
passive: false
|
|
88
|
+
});
|
|
141
89
|
}
|
|
142
|
-
|
|
143
|
-
const
|
|
144
|
-
|
|
145
|
-
|
|
146
|
-
assert(get !== undefined);
|
|
147
|
-
return get;
|
|
148
|
-
})();
|
|
149
|
-
const _MessageEvent_prototype_origin_get = (() => {
|
|
150
|
-
const pd = Object.getOwnPropertyDescriptor(MessageEvent.prototype, "origin");
|
|
151
|
-
assert(pd !== undefined);
|
|
152
|
-
const { get } = pd;
|
|
153
|
-
assert(get !== undefined);
|
|
154
|
-
return get;
|
|
155
|
-
})();
|
|
156
|
-
const _Event_prototype_stopImmediatePropagation_value = Event.prototype.stopImmediatePropagation;
|
|
157
|
-
const origin = window.location.origin;
|
|
158
|
-
window.addEventListener("message", event => {
|
|
159
|
-
if (_MessageEvent_prototype_origin_get.call(event) !== origin) {
|
|
160
|
-
return;
|
|
161
|
-
}
|
|
162
|
-
const eventData = _MessageEvent_prototype_data_get.call(event);
|
|
163
|
-
if (typeof eventData !== "string") {
|
|
164
|
-
return;
|
|
165
|
-
}
|
|
166
|
-
if (!eventData.startsWith(IFRAME_MESSAGE_PREFIX)) {
|
|
167
|
-
return;
|
|
90
|
+
{
|
|
91
|
+
const { BASE_URL } = params;
|
|
92
|
+
if (BASE_URL !== undefined) {
|
|
93
|
+
setBASE_URL({ BASE_URL });
|
|
168
94
|
}
|
|
169
|
-
_Event_prototype_stopImmediatePropagation_value.call(event);
|
|
170
|
-
const authResponse = JSON.parse(eventData.slice(IFRAME_MESSAGE_PREFIX.length));
|
|
171
|
-
(evtIframeAuthResponse ?? (evtIframeAuthResponse = createEvt())).post(authResponse);
|
|
172
|
-
}, {
|
|
173
|
-
capture: true,
|
|
174
|
-
once: false,
|
|
175
|
-
passive: false
|
|
176
|
-
});
|
|
177
|
-
if (BASE_URL !== undefined) {
|
|
178
|
-
setBASE_URL({ BASE_URL });
|
|
179
95
|
}
|
|
180
96
|
}
|
|
181
97
|
resolvePrShouldLoadApp({ shouldLoadApp });
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"earlyInit.js","sourceRoot":"","sources":["../../src/core/earlyInit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,wBAAwB,EAAE,MAAM,aAAa,CAAC;AACrE,OAAO,EAAE,MAAM,EAAe,MAAM,uBAAuB,CAAC;AAE5D,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AACzC,OAAO,EAAE,sBAAsB,EAAE,MAAM,mBAAmB,CAAC;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAC/C,OAAO,EAAE,SAAS,EAAY,MAAM,cAAc,CAAC;
|
|
1
|
+
{"version":3,"file":"earlyInit.js","sourceRoot":"","sources":["../../src/core/earlyInit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,wBAAwB,EAAE,MAAM,aAAa,CAAC;AACrE,OAAO,EAAE,MAAM,EAAe,MAAM,uBAAuB,CAAC;AAE5D,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AACzC,OAAO,EAAE,sBAAsB,EAAE,MAAM,mBAAmB,CAAC;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAC/C,OAAO,EAAE,SAAS,EAAY,MAAM,cAAc,CAAC;AACnD,OAAO,EACH,qCAAqC,EAExC,MAAM,mCAAmC,CAAC;AAC3C,OAAO,EAAE,8BAA8B,EAAE,MAAM,4BAA4B,CAAC;AAE5E,IAAI,sBAAsB,GAAG,KAAK,CAAC;AAEnC,MAAM,qBAAqB,GAAG,kCAAkC,CAAC;AAkDjE,MAAM,UAAU,aAAa,CAAC,MAAoD;IAC9E,IAAI,sBAAsB,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;IAC5E,CAAC;IAED,sBAAsB,GAAG,IAAI,CAAC;IAE9B,IAAI,CAAC,SAAS,EAAE,CAAC;QACb,OAAO,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC;IACnC,CAAC;IAED,MAAM,EAAE,aAAa,EAAE,GAAG,kBAAkB,EAAE,CAAC;IAE/C,IAAI,aAAa,EAAE,CAAC;QAChB,0BAA0B,EAAE,CAAC;YACzB,IAAI,CAAC,CAAC,gCAAgC,IAAI,MAAM,CAAC,EAAE,CAAC;gBAChD,qCAAqC,CAAC;oBAClC,WAAW,EAAE,MAAM,CAAC,WAAW;oBAC/B,oBAAoB,EAAE,MAAM,CAAC,oBAAoB;oBACjD,eAAe,EAAE,MAAM,CAAC,eAAe;oBACvC,aAAa,EAAE,MAAM,CAAC,aAAa;oBACnC,QAAQ,EAAE,MAAM,CAAC,QAAQ;iBAC5B,CAAC,CAAC;gBACH,MAAM,0BAA0B,CAAC;YACrC,CAAC;YAED,MAAM,EACF,8BAA8B,EAAE,gCAAgC,EAChE,+BAA+B,EAC/B,8BAA8B,EACjC,GAAG,MAAM,CAAC;YAEX,IAAI,CAAC,gCAAgC,EAAE,CAAC;gBACpC,IAAI,+BAA+B,KAAK,SAAS,EAAE,CAAC;oBAChD,OAAO,CAAC,IAAI,CACR;wBACI,2DAA2D;wBAC3D,iDAAiD;qBACpD,CAAC,IAAI,CAAC,GAAG,CAAC,CACd,CAAC;gBACN,CAAC;gBAED,IAAI,8BAA8B,KAAK,SAAS,EAAE,CAAC;oBAC/C,OAAO,CAAC,IAAI,CACR;wBACI,0DAA0D;wBAC1D,iDAAiD;qBACpD,CAAC,IAAI,CAAC,GAAG,CAAC,CACd,CAAC;gBACN,CAAC;gBAED,MAAM,0BAA0B,CAAC;YACrC,CAAC;YAED,8BAA8B,CAAC;gBAC3B,+BAA+B;gBAC/B,8BAA8B;aACjC,CAAC,CAAC;QACP,CAAC;QAED,CAAC;YACG,MAAM,gCAAgC,GAAG,CAAC,GAAG,EAAE;gBAC3C,MAAM,EAAE,GAAG,MAAM,CAAC,wBAAwB,CAAC,YAAY,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;gBAE3E,MAAM,CAAC,EAAE,KAAK,SAAS,CAAC,CAAC;gBAEzB,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;gBAEnB,MAAM,CAAC,GAAG,KAAK,SAAS,CAAC,CAAC;gBAE1B,OAAO,GAAG,CAAC;YACf,CAAC,CAAC,EAAE,CAAC;YAEL,MAAM,kCAAkC,GAAG,CAAC,GAAG,EAAE;gBAC7C,MAAM,EAAE,GAAG,MAAM,CAAC,wBAAwB,CAAC,YAAY,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;gBAE7E,MAAM,CAAC,EAAE,KAAK,SAAS,CAAC,CAAC;gBAEzB,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;gBAEnB,MAAM,CAAC,GAAG,KAAK,SAAS,CAAC,CAAC;gBAE1B,OAAO,GAAG,CAAC;YACf,CAAC,CAAC,EAAE,CAAC;YAEL,MAAM,+CAA+C,GACjD,KAAK,CAAC,SAAS,CAAC,wBAAwB,CAAC;YAE7C,MAAM,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC;YAEtC,MAAM,CAAC,gBAAgB,CACnB,SAAS,EACT,KAAK,CAAC,EAAE;gBACJ,IAAI,kCAAkC,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,MAAM,EAAE,CAAC;oBAC5D,OAAO;gBACX,CAAC;gBAED,MAAM,SAAS,GAAY,gCAAgC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAExE,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;oBAChC,OAAO;gBACX,CAAC;gBAED,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,qBAAqB,CAAC,EAAE,CAAC;oBAC/C,OAAO;gBACX,CAAC;gBAED,+CAA+C,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAE5D,MAAM,YAAY,GAAiB,IAAI,CAAC,KAAK,CACzC,SAAS,CAAC,KAAK,CAAC,qBAAqB,CAAC,MAAM,CAAC,CAChD,CAAC;gBAEF,CAAC,qBAAqB,KAArB,qBAAqB,GAAK,SAAS,EAAE,EAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC/D,CAAC,EACD;gBACI,OAAO,EAAE,IAAI;gBACb,IAAI,EAAE,KAAK;gBACX,OAAO,EAAE,KAAK;aACjB,CACJ,CAAC;QACN,CAAC;QAED,CAAC;YACG,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,CAAC;YAE5B,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;gBACzB,WAAW,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC;YAC9B,CAAC;QACL,CAAC;IACL,CAAC;IAED,sBAAsB,CAAC,EAAE,aAAa,EAAE,CAAC,CAAC;IAE1C,OAAO,EAAE,aAAa,EAAE,CAAC;AAC7B,CAAC;AAED,IAAI,qBAAqB,GAAkC,SAAS,CAAC;AAErE,MAAM,UAAU,wBAAwB;IACpC,OAAO,CAAC,qBAAqB,KAArB,qBAAqB,GAAK,SAAS,EAAE,EAAC,CAAC;AACnD,CAAC;AAED,IAAI,oBAAoB,GAA6B,SAAS,CAAC;AAE/D,MAAM,UAAU,uBAAuB;IAGnC,MAAM,CAAC,sBAAsB,EAAE,UAAU,CAAC,CAAC;IAE3C,OAAO,oBAAoB,KAAK,SAAS;QACrC,CAAC,CAAC,EAAE,YAAY,EAAE,SAAS,EAAE;QAC7B,CAAC,CAAC;YACI,YAAY,EAAE,oBAAoB;YAClC,iBAAiB,EAAE,GAAG,EAAE;gBACpB,oBAAoB,GAAG,SAAS,CAAC;YACrC,CAAC;SACJ,CAAC;AACZ,CAAC;AAED,IAAI,gCAAgC,GAAuB,SAAS,CAAC;AAErE,MAAM,UAAU,mCAAmC;IAC/C,MAAM,CAAC,gCAAgC,KAAK,SAAS,EAAE,QAAQ,CAAC,CAAC;IACjE,OAAO,gCAAgC,CAAC;AAC5C,CAAC;AAED,SAAS,kBAAkB;IAGvB,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;IAEtD,MAAM,sBAAsB,GAAG,CAAC,GAAG,EAAE;QACjC,QAAQ,EAAE,CAAC;YACP,MAAM,kBAAkB,GAAG,IAAI,eAAe,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,CACtF,OAAO,CACV,CAAC;YAEF,IAAI,kBAAkB,KAAK,IAAI,EAAE,CAAC;gBAC9B,MAAM,QAAQ,CAAC;YACnB,CAAC;YAED,IAAI,CAAC,wBAAwB,CAAC,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,CAAC,EAAE,CAAC;gBAC7E,MAAM,QAAQ,CAAC;YACnB,CAAC;YAED,OAAO,EAAE,oBAAoB,EAAE,IAAI,EAAE,YAAY,EAAE,UAAU,EAAW,CAAC;QAC7E,CAAC;QAED,KAAK,EAAE,CAAC;YACJ,MAAM,kBAAkB,GAAG,eAAe,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAErE,IAAI,kBAAkB,KAAK,IAAI,EAAE,CAAC;gBAC9B,MAAM,KAAK,CAAC;YAChB,CAAC;YAED,IAAI,CAAC,wBAAwB,CAAC,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,CAAC,EAAE,CAAC;gBAC7E,MAAM,KAAK,CAAC;YAChB,CAAC;YAED,IACI,eAAe,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,CAAC,KAAK,IAAI;gBACtD,eAAe,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,CAAC,KAAK,IAAI;gBAC1D,eAAe,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,CAAC,KAAK,IAAI,EAC3D,CAAC;gBACC,mFAAmF;gBACnF,MAAM,KAAK,CAAC;YAChB,CAAC;YAED,OAAO,EAAE,oBAAoB,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAW,CAAC;QAC1E,CAAC;QAED,OAAO,EAAE,oBAAoB,EAAE,KAAK,EAAW,CAAC;IACpD,CAAC,CAAC,EAAE,CAAC;IAEL,IAAI,CAAC,sBAAsB,CAAC,oBAAoB,EAAE,CAAC;QAC/C,gCAAgC,GAAG,eAAe,CAAC,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAC7F,OAAO,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC;IACnC,CAAC;IAED,gCAAgC,GAAG,eAAe,CAAC,QAAQ,CAAC;IAE5D,MAAM,EAAE,YAAY,EAAE,GAAG,CAAC,GAAG,EAAE;QAC3B,MAAM,YAAY,GAAiB,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC;QAEjD,MAAM,YAAY,GAAG,CAAC,GAAG,EAAE;YACvB,QAAQ,sBAAsB,CAAC,YAAY,EAAE,CAAC;gBAC1C,KAAK,UAAU;oBACX,OAAO,IAAI,eAAe,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC;gBACvE,KAAK,OAAO;oBACR,OAAO,eAAe,CAAC,YAAY,CAAC;gBACxC;oBACI,MAAM,CAA+C,KAAK,CAAC,CAAC;YACpE,CAAC;QACL,CAAC,CAAC,EAAE,CAAC;QAEL,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,YAAY,EAAE,CAAC;YACtC,YAAY,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QAC9B,CAAC;QAED,MAAM,CAAC,YAAY,CAAC,KAAK,KAAK,EAAE,EAAE,QAAQ,CAAC,CAAC;QAE5C,OAAO,EAAE,YAAY,EAAE,CAAC;IAC5B,CAAC,CAAC,EAAE,CAAC;IAEL,MAAM,SAAS,GAAG,YAAY,CAAC,EAAE,kBAAkB,EAAE,YAAY,CAAC,KAAK,EAAE,CAAC,CAAC;IAE3E,IAAI,SAAS,KAAK,SAAS,EAAE,CAAC;QAC1B,OAAO,CAAC,YAAY,CAAC,EAAE,EAAE,EAAE,EAAE,gCAAgC,CAAC,CAAC;QAC/D,OAAO,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC;IACnC,CAAC;IAED,QAAQ,SAAS,CAAC,OAAO,EAAE,CAAC;QACxB,KAAK,QAAQ;YACT,IAAI,MAAM,KAAK,GAAG,EAAE,CAAC;gBACjB,MAAM,YAAY,GAAG;oBACjB,qEAAqE;oBACrE,yFAAyF;iBAC5F,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBACZ,KAAK,CAAC,YAAY,CAAC,CAAC;gBAEpB,MAAM,IAAI,KAAK,CAAC,YAAY,CAAC,CAAC;YAClC,CAAC;YACD,MAAM,CAAC,WAAW,CACd,GAAG,qBAAqB,GAAG,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,EAAE,EACzD,QAAQ,CAAC,MAAM,CAClB,CAAC;YACF,OAAO,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC;QACpC,KAAK,UAAU,CAAC,CAAC,CAAC;YACd,oBAAoB,GAAG,YAAY,CAAC;YACpC,MAAM,uBAAuB,GAAG,CAAC,GAAG,EAAE;gBAClC,IAAI,SAAS,CAAC,MAAM,KAAK,OAAO,IAAI,YAAY,CAAC,KAAK,KAAK,kBAAkB,EAAE,CAAC;oBAC5E,OAAO,SAAS,CAAC,2CAA2C,CAAC;gBACjE,CAAC;gBACD,OAAO,SAAS,CAAC,uBAAuB,CAAC;YAC7C,CAAC,CAAC,EAAE,CAAC;YAEL,OAAO,CAAC,YAAY,CAAC,EAAE,EAAE,EAAE,EAAE,uBAAuB,CAAC,CAAC;YACtD,OAAO,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC;QACnC,CAAC;QACD;YACI,MAAM,CAAkC,KAAK,CAAC,CAAC;IACvD,CAAC;AACL,CAAC"}
|
|
@@ -1,6 +1,7 @@
|
|
|
1
1
|
import type { User as OidcClientTsUser } from "../vendor/frontend/oidc-client-ts";
|
|
2
2
|
import type { Oidc } from "./Oidc";
|
|
3
3
|
export declare function oidcClientTsUserToTokens<DecodedIdToken extends Record<string, unknown>>(params: {
|
|
4
|
+
configId: string;
|
|
4
5
|
oidcClientTsUser: OidcClientTsUser;
|
|
5
6
|
decodedIdTokenSchema?: {
|
|
6
7
|
parse: (decodedIdToken_original: Oidc.Tokens.DecodedIdToken_OidcCoreSpec) => DecodedIdToken;
|
|
@@ -3,8 +3,9 @@ import { id } from "../tools/tsafe/id";
|
|
|
3
3
|
import { readExpirationTimeInJwt } from "../tools/readExpirationTimeInJwt";
|
|
4
4
|
import { decodeJwt } from "../tools/decodeJwt";
|
|
5
5
|
import { INFINITY_TIME } from "../tools/INFINITY_TIME";
|
|
6
|
+
import { getIsTokenSubstitutionEnabled, getTokensPlaceholders } from "./tokenPlaceholderSubstitution";
|
|
6
7
|
export function oidcClientTsUserToTokens(params) {
|
|
7
|
-
const { oidcClientTsUser, decodedIdTokenSchema, __unsafe_useIdTokenAsAccessToken, decodedIdToken_previous, log } = params;
|
|
8
|
+
const { configId, oidcClientTsUser, decodedIdTokenSchema, __unsafe_useIdTokenAsAccessToken, decodedIdToken_previous, log } = params;
|
|
8
9
|
const isFirstInit = decodedIdToken_previous === undefined;
|
|
9
10
|
const accessToken = oidcClientTsUser.access_token;
|
|
10
11
|
const refreshToken = oidcClientTsUser.refresh_token;
|
|
@@ -154,6 +155,15 @@ export function oidcClientTsUserToTokens(params) {
|
|
|
154
155
|
return undefined;
|
|
155
156
|
})()
|
|
156
157
|
});
|
|
158
|
+
if (getIsTokenSubstitutionEnabled()) {
|
|
159
|
+
const placeholders = getTokensPlaceholders({
|
|
160
|
+
configId,
|
|
161
|
+
tokens
|
|
162
|
+
});
|
|
163
|
+
tokens.accessToken = placeholders.accessToken;
|
|
164
|
+
tokens.idToken = placeholders.idToken;
|
|
165
|
+
tokens.refreshToken = placeholders.refreshToken;
|
|
166
|
+
}
|
|
157
167
|
if (isFirstInit &&
|
|
158
168
|
tokens.hasRefreshToken &&
|
|
159
169
|
tokens.refreshTokenExpirationTime !== undefined &&
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"oidcClientTsUserToTokens.js","sourceRoot":"","sources":["../../src/core/oidcClientTsUserToTokens.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,EAAE,EAAE,MAAM,mBAAmB,CAAC;AACvC,OAAO,EAAE,uBAAuB,EAAE,MAAM,kCAAkC,CAAC;AAC3E,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAE/C,OAAO,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;
|
|
1
|
+
{"version":3,"file":"oidcClientTsUserToTokens.js","sourceRoot":"","sources":["../../src/core/oidcClientTsUserToTokens.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,EAAE,EAAE,MAAM,mBAAmB,CAAC;AACvC,OAAO,EAAE,uBAAuB,EAAE,MAAM,kCAAkC,CAAC;AAC3E,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAE/C,OAAO,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AACvD,OAAO,EAAE,6BAA6B,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAC;AAEtG,MAAM,UAAU,wBAAwB,CAAiD,MASxF;IACG,MAAM,EACF,QAAQ,EACR,gBAAgB,EAChB,oBAAoB,EACpB,gCAAgC,EAChC,uBAAuB,EACvB,GAAG,EACN,GAAG,MAAM,CAAC;IAEX,MAAM,WAAW,GAAG,uBAAuB,KAAK,SAAS,CAAC;IAE1D,MAAM,WAAW,GAAG,gBAAgB,CAAC,YAAY,CAAC;IAElD,MAAM,YAAY,GAAG,gBAAgB,CAAC,aAAa,CAAC;IAEpD,MAAM,OAAO,GAAG,gBAAgB,CAAC,QAAQ,CAAC;IAE1C,MAAM,CAAC,OAAO,KAAK,SAAS,EAAE,yCAAyC,CAAC,CAAC;IAEzE,MAAM,uBAAuB,GAAG,SAAS,CAA0C,OAAO,CAAC,CAAC;IAE5F,IAAI,WAAW,EAAE,CAAC;QACd,GAAG,EAAE,CACD;YACI,kBAAkB;YAClB,oBAAoB,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,0CAA0C;YACpF,IAAI,CAAC,SAAS,CAAC,uBAAuB,EAAE,IAAI,EAAE,CAAC,CAAC;SACnD,CAAC,IAAI,CAAC,EAAE,CAAC,CACb,CAAC;IACN,CAAC;IAED,MAAM,cAAc,GAAG,CAAC,GAAG,EAAE;QACzB,IAAI,cAA8B,CAAC;QAEnC,IAAI,oBAAoB,KAAK,SAAS,EAAE,CAAC;YACrC,cAAc,GAAG,oBAAoB,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;YAErE,IAAI,WAAW,EAAE,CAAC;gBACd,GAAG,EAAE,CACD;oBACI,yDAAyD;oBACzD,IAAI,CAAC,SAAS,CAAC,cAAc,EAAE,IAAI,EAAE,CAAC,CAAC;iBAC1C,CAAC,IAAI,CAAC,EAAE,CAAC,CACb,CAAC;YACN,CAAC;QACL,CAAC;aAAM,CAAC;YACJ,mBAAmB;YACnB,cAAc,GAAG,uBAAuB,CAAC;QAC7C,CAAC;QAED,IACI,uBAAuB,KAAK,SAAS;YACrC,IAAI,CAAC,SAAS,CAAC,cAAc,CAAC,KAAK,IAAI,CAAC,SAAS,CAAC,uBAAuB,CAAC,EAC5E,CAAC;YACC,2EAA2E;YAC3E,OAAO,uBAAuB,CAAC;QACnC,CAAC;QAED,OAAO,cAAc,CAAC;IAC1B,CAAC,CAAC,EAAE,CAAC;IAEL,MAAM,YAAY,GAAG,CAAC,GAAG,EAAE;QACvB,0DAA0D;QAC1D,2DAA2D;QAC3D,6BAA6B;QAC7B,MAAM,YAAY,GAAG,CAAC,GAAG,EAAE;YACvB,IAAI,GAAuB,CAAC;YAE5B,IAAI,CAAC;gBACD,MAAM,cAAc,GAAG,uBAAuB,CAAC,GAAG,CAAC;gBACnD,MAAM,CAAC,cAAc,KAAK,SAAS,IAAI,OAAO,cAAc,KAAK,QAAQ,CAAC,CAAC;gBAC3E,GAAG,GAAG,cAAc,CAAC;YACzB,CAAC;YAAC,MAAM,CAAC;gBACL,GAAG,GAAG,SAAS,CAAC;YACpB,CAAC;YAED,IAAI,GAAG,KAAK,SAAS,EAAE,CAAC;gBACpB,OAAO,SAAS,CAAC;YACrB,CAAC;YAED,OAAO,GAAG,CAAC;QACf,CAAC,CAAC,EAAE,CAAC;QAEL,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;YAC7B,OAAO,IAAI,CAAC,GAAG,EAAE,CAAC;QACtB,CAAC;QAED,OAAO,YAAY,GAAG,IAAI,CAAC;IAC/B,CAAC,CAAC,EAAE,CAAC;IAEL,MAAM,aAAa,GAAuC;QACtD,GAAG,CAAC,gCAAgC;YAChC,CAAC,CAAC;gBACI,WAAW,EAAE,OAAO;gBACpB,yBAAyB,EAAE,CAAC,GAAG,EAAE;oBAC7B,MAAM,cAAc,GAAG,uBAAuB,CAAC,OAAO,CAAC,CAAC;oBAExD,MAAM,CACF,cAAc,KAAK,SAAS,EAC5B,oGAAoG,CACvG,CAAC;oBAEF,OAAO,cAAc,CAAC;gBAC1B,CAAC,CAAC,EAAE;aACP;YACH,CAAC,CAAC;gBACI,WAAW;gBACX,yBAAyB,EAAE,CAAC,GAAG,EAAE;oBAC7B,aAAa,EAAE,CAAC;wBACZ,MAAM,cAAc,GAAG,uBAAuB,CAAC,WAAW,CAAC,CAAC;wBAE5D,IAAI,cAAc,KAAK,SAAS,EAAE,CAAC;4BAC/B,MAAM,aAAa,CAAC;wBACxB,CAAC;wBAED,OAAO,cAAc,CAAC;oBAC1B,CAAC;oBAED,mCAAmC,EAAE,CAAC;wBAClC,MAAM,EAAE,UAAU,EAAE,GAAG,gBAAgB,CAAC,wBAAwB,CAAC;wBAEjE,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;4BAC3B,MAAM,mCAAmC,CAAC;wBAC9C,CAAC;wBAED,MAAM,CAAC,OAAO,UAAU,KAAK,QAAQ,EAAE,SAAS,CAAC,CAAC;wBAElD,OAAO,UAAU,GAAG,IAAI,CAAC;oBAC7B,CAAC;oBAED,mCAAmC,EAAE,CAAC;wBAClC,MAAM,EAAE,UAAU,EAAE,GAAG,gBAAgB,CAAC,wBAAwB,CAAC;wBAEjE,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;4BAC3B,MAAM,mCAAmC,CAAC;wBAC9C,CAAC;wBAED,MAAM,CAAC,OAAO,UAAU,KAAK,QAAQ,EAAE,WAAW,CAAC,CAAC;wBAEpD,OAAO,YAAY,GAAG,UAAU,GAAG,IAAK,CAAC;oBAC7C,CAAC;oBAED,MAAM,CAAC,KAAK,EAAE,4CAA4C,CAAC,CAAC;gBAChE,CAAC,CAAC,EAAE;aACP,CAAC;QACR,OAAO;QACP,cAAc;QACd,uBAAuB;QACvB,YAAY;QACZ,gBAAgB,EAAE,CAAC,GAAG,EAAE;YACpB,MAAM,kBAAkB,GAAG,gBAAgB,CAAC,mCAAmC,CAAC;YAChF,OAAO,GAAG,EAAE,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,YAAY,GAAG,kBAAkB,CAAC,CAAC;QAClE,CAAC,CAAC,EAAE;KACP,CAAC;IAEF,MAAM,MAAM,GACR,YAAY,KAAK,SAAS;QACtB,CAAC,CAAC,EAAE,CAAkD;YAChD,GAAG,aAAa;YAChB,eAAe,EAAE,KAAK;SACzB,CAAC;QACJ,CAAC,CAAC,EAAE,CAA+C;YAC7C,GAAG,aAAa;YAChB,eAAe,EAAE,IAAI;YACrB,YAAY;YACZ,0BAA0B,EAAE,CAAC,GAAG,EAAE;gBAC9B,mCAAmC,EAAE,CAAC;oBAClC,MAAM,EAAE,kBAAkB,EAAE,GAAG,gBAAgB,CAAC,wBAAwB,CAAC;oBAEzE,IAAI,kBAAkB,KAAK,SAAS,EAAE,CAAC;wBACnC,MAAM,mCAAmC,CAAC;oBAC9C,CAAC;oBAED,MAAM,CAAC,OAAO,kBAAkB,KAAK,QAAQ,EAAE,SAAS,CAAC,CAAC;oBAE1D,IAAI,kBAAkB,KAAK,CAAC,EAAE,CAAC;wBAC3B,OAAO,aAAa,CAAC;oBACzB,CAAC;oBAED,OAAO,kBAAkB,GAAG,IAAI,CAAC;gBACrC,CAAC;gBAED,mCAAmC,EAAE,CAAC;oBAClC,MAAM,EAAE,kBAAkB,EAAE,GAAG,gBAAgB,CAAC,wBAAwB,CAAC;oBAEzE,IAAI,kBAAkB,KAAK,SAAS,EAAE,CAAC;wBACnC,MAAM,mCAAmC,CAAC;oBAC9C,CAAC;oBAED,MAAM,CAAC,OAAO,kBAAkB,KAAK,QAAQ,EAAE,YAAY,CAAC,CAAC;oBAE7D,IAAI,kBAAkB,KAAK,CAAC,EAAE,CAAC;wBAC3B,OAAO,aAAa,CAAC;oBACzB,CAAC;oBAED,OAAO,YAAY,GAAG,kBAAkB,GAAG,IAAI,CAAC;gBACpD,CAAC;gBAED,aAAa,EAAE,CAAC;oBACZ,MAAM,cAAc,GAAG,uBAAuB,CAAC,YAAY,CAAC,CAAC;oBAE7D,IAAI,cAAc,KAAK,SAAS,EAAE,CAAC;wBAC/B,MAAM,aAAa,CAAC;oBACxB,CAAC;oBAED,OAAO,cAAc,CAAC;gBAC1B,CAAC;gBAED,OAAO,SAAS,CAAC;YACrB,CAAC,CAAC,EAAE;SACP,CAAC,CAAC;IAEb,IAAI,6BAA6B,EAAE,EAAE,CAAC;QAClC,MAAM,YAAY,GAAG,qBAAqB,CAAC;YACvC,QAAQ;YACR,MAAM;SACT,CAAC,CAAC;QAEH,MAAM,CAAC,WAAW,GAAG,YAAY,CAAC,WAAW,CAAC;QAC9C,MAAM,CAAC,OAAO,GAAG,YAAY,CAAC,OAAO,CAAC;QACtC,MAAM,CAAC,YAAY,GAAG,YAAY,CAAC,YAAY,CAAC;IACpD,CAAC;IAED,IACI,WAAW;QACX,MAAM,CAAC,eAAe;QACtB,MAAM,CAAC,0BAA0B,KAAK,SAAS;QAC/C,MAAM,CAAC,0BAA0B,GAAG,MAAM,CAAC,yBAAyB,EACtE,CAAC;QACC,OAAO,CAAC,IAAI,CACR;YACI,oFAAoF;YACpF,uDAAuD;SAC1D,CAAC,IAAI,CAAC,GAAG,CAAC,CACd,CAAC;IACN,CAAC;IAED,OAAO,MAAM,CAAC;AAClB,CAAC"}
|