opencode-qwen-cli-auth 1.0.0

package/dist/lib/auth/auth.js

@@ -0,0 +1,419 @@
+import { generatePKCE } from "@openauthjs/openauth/pkce";
+import { readFileSync, writeFileSync, existsSync, mkdirSync, unlinkSync } from "fs";
+import { QWEN_OAUTH, DEFAULT_QWEN_BASE_URL, TOKEN_REFRESH_BUFFER_MS, VERIFICATION_URI } from "../constants.js";
+import { getTokenPath, getConfigDir } from "../config.js";
+import { logError, logWarn, logInfo, LOGGING_ENABLED } from "../logger.js";
+// So lan retry toi da khi refresh token that bai
+const MAX_REFRESH_RETRIES = 2;
+const REFRESH_RETRY_DELAY_MS = 1000;
+/**
+ * Normalize and validate resource_url from OAuth response
+ * @param resourceUrl - Resource URL from token response
+ * @returns Normalized URL or undefined if invalid
+ */
+function normalizeResourceUrl(resourceUrl) {
+    if (!resourceUrl)
+        return undefined;
+    try {
+        // Qwen returns resource_url without protocol (e.g., "portal.qwen.ai")
+        // Normalize it by adding https:// if missing
+        let normalizedUrl = resourceUrl;
+        if (!normalizedUrl.startsWith("http://") && !normalizedUrl.startsWith("https://")) {
+            normalizedUrl = `https://${normalizedUrl}`;
+        }
+        // Validate the normalized URL
+        new URL(normalizedUrl);
+        if (LOGGING_ENABLED) {
+            logInfo("Valid resource_url found and normalized:", normalizedUrl);
+        }
+        return normalizedUrl;
+    }
+    catch (error) {
+        logWarn("invalid resource_url:", { original: resourceUrl, error });
+        return undefined;
+    }
+}
+/**
+ * Validate token response fields
+ * @param json - Token response JSON
+ * @param context - Context for logging (e.g., "token response" or "refresh response")
+ * @returns True if valid, false otherwise
+ */
+function validateTokenResponse(json, context) {
+    // Check required fields
+    if (!json.access_token || !json.refresh_token || typeof json.expires_in !== "number") {
+        logError(`${context} missing fields:`, json);
+        return false;
+    }
+    // Validate expires_in is positive
+    if (json.expires_in <= 0) {
+        logError(`invalid expires_in value in ${context}:`, json.expires_in);
+        return false;
+    }
+    return true;
+}
+/**
+ * Request device authorization code
+ * @param pkce - PKCE challenge/verifier pair
+ * @returns Device authorization response with user code and verification URL
+ */
+export async function requestDeviceCode(pkce) {
+    try {
+        const res = await fetch(QWEN_OAUTH.DEVICE_CODE_URL, {
+            method: "POST",
+            headers: { "Content-Type": "application/x-www-form-urlencoded" },
+            body: new URLSearchParams({
+                client_id: QWEN_OAUTH.CLIENT_ID,
+                scope: QWEN_OAUTH.SCOPE,
+                code_challenge: pkce.challenge,
+                code_challenge_method: "S256",
+            }),
+        });
+        if (!res.ok) {
+            const text = await res.text().catch(() => "");
+            logError("device code request failed:", { status: res.status, text });
+            return null;
+        }
+        const json = await res.json();
+        if (LOGGING_ENABLED) {
+            logInfo("Device code response received:", json);
+        }
+        if (!json.device_code || !json.user_code || !json.verification_uri) {
+            logError("device code response missing fields:", json);
+            return null;
+        }
+        // Ensure verification_uri_complete includes the client parameter
+        // Qwen's OAuth server requires client=qwen-code for proper authentication
+        if (!json.verification_uri_complete || !json.verification_uri_complete.includes(VERIFICATION_URI.CLIENT_PARAM_KEY)) {
+            const baseUrl = json.verification_uri_complete || json.verification_uri;
+            const separator = baseUrl.includes('?') ? '&' : '?';
+            json.verification_uri_complete = `${baseUrl}${separator}${VERIFICATION_URI.CLIENT_PARAM_VALUE}`;
+            if (LOGGING_ENABLED) {
+                logInfo("Fixed verification_uri_complete:", json.verification_uri_complete);
+            }
+        }
+        return json;
+    }
+    catch (error) {
+        logError("device code request error:", error);
+        return null;
+    }
+}
+/**
+ * Poll for token using device code
+ * @param deviceCode - Device code from authorization response
+ * @param verifier - PKCE verifier
+ * @param interval - Polling interval in seconds (from device response)
+ * @returns Token result or null if still pending
+ */
+export async function pollForToken(deviceCode, verifier, interval = 2) {
+    try {
+        const res = await fetch(QWEN_OAUTH.TOKEN_URL, {
+            method: "POST",
+            headers: { "Content-Type": "application/x-www-form-urlencoded" },
+            body: new URLSearchParams({
+                grant_type: QWEN_OAUTH.GRANT_TYPE_DEVICE,
+                client_id: QWEN_OAUTH.CLIENT_ID,
+                device_code: deviceCode,
+                code_verifier: verifier,
+            }),
+        });
+        if (!res.ok) {
+            const json = await res.json().catch(() => ({}));
+            const error = json.error;
+            // Handle expected errors
+            if (error === "authorization_pending") {
+                return { type: "pending" };
+            }
+            if (error === "slow_down") {
+                return { type: "slow_down" };
+            }
+            if (error === "expired_token") {
+                return { type: "expired" };
+            }
+            if (error === "access_denied") {
+                return { type: "denied" };
+            }
+            logError("token poll failed:", { status: res.status, json });
+            return { type: "failed" };
+        }
+        const json = await res.json();
+        if (LOGGING_ENABLED) {
+            // Log the full token response for debugging
+            logInfo("Token response received:", {
+                has_access_token: !!json.access_token,
+                has_refresh_token: !!json.refresh_token,
+                expires_in: json.expires_in,
+                resource_url: json.resource_url,
+                all_fields: Object.keys(json),
+            });
+        }
+        // Validate token response fields
+        if (!validateTokenResponse(json, "token response")) {
+            return { type: "failed" };
+        }
+        // Validate and normalize resource_url if present
+        json.resource_url = normalizeResourceUrl(json.resource_url);
+        if (!json.resource_url) {
+            logWarn("No valid resource_url in token response, will use default DashScope endpoint");
+        }
+        // At this point, validation ensures these fields exist
+        return {
+            type: "success",
+            access: json.access_token,
+            refresh: json.refresh_token,
+            expires: Date.now() + json.expires_in * 1000,
+            resourceUrl: json.resource_url, // Dynamic API base URL
+        };
+    }
+    catch (error) {
+        logError("token poll error:", error);
+        return { type: "failed" };
+    }
+}
+/**
+ * Refresh access token using refresh token (1 lan duy nhat, khong retry)
+ * @param refreshToken - Refresh token
+ * @returns Token result
+ */
+async function refreshAccessTokenOnce(refreshToken) {
+    try {
+        const res = await fetch(QWEN_OAUTH.TOKEN_URL, {
+            method: "POST",
+            headers: { "Content-Type": "application/x-www-form-urlencoded" },
+            body: new URLSearchParams({
+                grant_type: QWEN_OAUTH.GRANT_TYPE_REFRESH,
+                client_id: QWEN_OAUTH.CLIENT_ID,
+                refresh_token: refreshToken,
+            }),
+        });
+        if (!res.ok) {
+            const text = await res.text().catch(() => "");
+            logError("token refresh failed:", { status: res.status, text });
+            return { type: "failed", status: res.status };
+        }
+        const json = await res.json();
+        if (LOGGING_ENABLED) {
+            logInfo("Token refresh response received:", {
+                has_access_token: !!json.access_token,
+                has_refresh_token: !!json.refresh_token,
+                expires_in: json.expires_in,
+                resource_url: json.resource_url,
+                all_fields: Object.keys(json),
+            });
+        }
+        // Validate token response fields
+        if (!validateTokenResponse(json, "refresh response")) {
+            return { type: "failed" };
+        }
+        // Validate and normalize resource_url if present
+        json.resource_url = normalizeResourceUrl(json.resource_url);
+        if (!json.resource_url) {
+            logWarn("No valid resource_url in refresh response, will use default DashScope endpoint");
+        }
+        return {
+            type: "success",
+            access: json.access_token,
+            refresh: json.refresh_token,
+            expires: Date.now() + json.expires_in * 1000,
+            resourceUrl: json.resource_url,
+        };
+    }
+    catch (error) {
+        logError("token refresh error:", error);
+        return { type: "failed" };
+    }
+}
+/**
+ * Refresh access token voi retry logic
+ * Retry toi da MAX_REFRESH_RETRIES lan voi delay giua cac lan
+ * @param refreshToken - Refresh token
+ * @returns Token result
+ */
+export async function refreshAccessToken(refreshToken) {
+    for (let attempt = 0; attempt <= MAX_REFRESH_RETRIES; attempt++) {
+        const result = await refreshAccessTokenOnce(refreshToken);
+        if (result.type === "success") {
+            return result;
+        }
+        // Neu loi 401/403 thi refresh token da bi revoke, khong can retry
+        if (result.status === 401 || result.status === 403) {
+            logError("Refresh token bi reject (" + result.status + "), can dang nhap lai");
+            return { type: "failed" };
+        }
+        // Con retry thi cho delay roi thu lai
+        if (attempt < MAX_REFRESH_RETRIES) {
+            if (LOGGING_ENABLED) {
+                logInfo(`Token refresh that bai, thu lai lan ${attempt + 2}/${MAX_REFRESH_RETRIES + 1}...`);
+            }
+            await new Promise(resolve => setTimeout(resolve, REFRESH_RETRY_DELAY_MS));
+        }
+    }
+    logError("Token refresh that bai sau " + (MAX_REFRESH_RETRIES + 1) + " lan thu");
+    return { type: "failed" };
+}
+/**
+ * Generate PKCE challenge and verifier
+ * @returns PKCE pair
+ */
+export async function createPKCE() {
+    const { challenge, verifier } = await generatePKCE();
+    return { challenge, verifier };
+}
+/**
+ * Load stored token from disk
+ * @returns Stored token data or null if not found
+ */
+export function loadStoredToken() {
+    const tokenPath = getTokenPath();
+    if (!existsSync(tokenPath)) {
+        return null;
+    }
+    try {
+        const content = readFileSync(tokenPath, "utf-8");
+        const data = JSON.parse(content);
+        // Validate required fields
+        if (!data.access_token || !data.refresh_token || typeof data.expires !== "number") {
+            logWarn("Invalid token data, re-authentication required");
+            return null;
+        }
+        return data;
+    }
+    catch (error) {
+        logError("Failed to load token:", error);
+        return null;
+    }
+}
+/**
+ * Xoa token luu tren disk khi token khong con hop le
+ */
+export function clearStoredToken() {
+    const tokenPath = getTokenPath();
+    if (existsSync(tokenPath)) {
+        try {
+            unlinkSync(tokenPath);
+            logWarn("Da xoa token cu, can dang nhap lai");
+        }
+        catch (error) {
+            logError("Khong the xoa token file:", error);
+        }
+    }
+}
+/**
+ * Save token to disk
+ * @param tokenResult - Token result from OAuth flow
+ */
+export function saveToken(tokenResult) {
+    if (tokenResult.type !== "success") {
+        throw new Error("Cannot save non-success token result");
+    }
+    const configDir = getConfigDir();
+    // Ensure directory exists
+    if (!existsSync(configDir)) {
+        mkdirSync(configDir, { recursive: true, mode: 0o700 });
+    }
+    const tokenData = {
+        access_token: tokenResult.access,
+        refresh_token: tokenResult.refresh,
+        expires: tokenResult.expires,
+        resource_url: tokenResult.resourceUrl,
+    };
+    const tokenPath = getTokenPath();
+    try {
+        writeFileSync(tokenPath, JSON.stringify(tokenData, null, 2), {
+            encoding: "utf-8",
+            mode: 0o600, // Secure permissions
+        });
+    }
+    catch (error) {
+        logError("Failed to save token:", error);
+        throw error;
+    }
+}
+/**
+ * Check if token is expired (with 5 minute buffer)
+ * @param expiresAt - Expiration timestamp in milliseconds
+ * @returns True if token is expired or will expire soon
+ */
+export function isTokenExpired(expiresAt) {
+    return Date.now() >= expiresAt - TOKEN_REFRESH_BUFFER_MS;
+}
+/**
+ * Get valid access token, refreshing if necessary
+ * Khi refresh that bai, xoa token cu de user biet can dang nhap lai
+ * @returns Access token and resource URL, or null if authentication required
+ */
+export async function getValidToken() {
+    const stored = loadStoredToken();
+    if (!stored) {
+        return null; // Khong co token, can dang nhap
+    }
+    // Token con hieu luc
+    if (!isTokenExpired(stored.expires)) {
+        return {
+            accessToken: stored.access_token,
+            resourceUrl: stored.resource_url,
+        };
+    }
+    // Token het han, thu refresh (co retry ben trong)
+    if (LOGGING_ENABLED) {
+        logInfo("Token expired, refreshing...");
+    }
+    const refreshResult = await refreshAccessToken(stored.refresh_token);
+    if (refreshResult.type !== "success") {
+        logError("Token refresh failed, re-authentication required");
+        // Xoa token cu de tranh loop loi
+        clearStoredToken();
+        return null;
+    }
+    // Luu token moi
+    saveToken(refreshResult);
+    return {
+        accessToken: refreshResult.access,
+        resourceUrl: refreshResult.resourceUrl,
+    };
+}
+/**
+ * Get Portal API base URL from token or use default
+ * @param resourceUrl - Resource URL from token (optional)
+ * @returns Portal API base URL
+ *
+ * IMPORTANT: Portal API uses /v1 path (not /api/v1)
+ * - OAuth endpoints: /api/v1/oauth2/ (for authentication)
+ * - Chat API: /v1/ (for completions)
+ */
+export function getApiBaseUrl(resourceUrl) {
+    if (resourceUrl) {
+        // Validate URL format
+        try {
+            const url = new URL(resourceUrl);
+            if (!url.protocol.startsWith('http')) {
+                logWarn('Invalid resource_url protocol, using default Portal API URL');
+                return DEFAULT_QWEN_BASE_URL;
+            }
+            // Construct the Portal API endpoint from resource_url
+            // Qwen returns "portal.qwen.ai" which should become "https://portal.qwen.ai/v1"
+            // Remove trailing slash if present
+            let baseUrl = resourceUrl.replace(/\/$/, "");
+            // Add /v1 suffix if not already present
+            const suffix = '/v1';
+            if (!baseUrl.endsWith(suffix)) {
+                baseUrl = `${baseUrl}${suffix}`;
+            }
+            if (LOGGING_ENABLED) {
+                logInfo('Constructed Portal API base URL from resource_url:', baseUrl);
+            }
+            return baseUrl;
+        }
+        catch (error) {
+            logWarn('Invalid resource_url format, using default Portal API URL:', error);
+            return DEFAULT_QWEN_BASE_URL;
+        }
+    }
+    // Fall back to default Portal API URL
+    if (LOGGING_ENABLED) {
+        logInfo('No resource_url provided, using default Portal API URL');
+    }
+    return DEFAULT_QWEN_BASE_URL;
+}
+//# sourceMappingURL=auth.js.map

package/dist/lib/auth/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../lib/auth/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,2BAA2B,CAAC;AACzD,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,IAAI,CAAC;AAExE,OAAO,EAAE,UAAU,EAAE,qBAAqB,EAAE,uBAAuB,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAC/G,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC1D,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAE3E;;;;GAIG;AACH,SAAS,oBAAoB,CAAC,WAA+B;IAC5D,IAAI,CAAC,WAAW;QAAE,OAAO,SAAS,CAAC;IAEnC,IAAI,CAAC;QACJ,sEAAsE;QACtE,6CAA6C;QAC7C,IAAI,aAAa,GAAG,WAAW,CAAC;QAChC,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YACnF,aAAa,GAAG,WAAW,aAAa,EAAE,CAAC;QAC5C,CAAC;QAED,8BAA8B;QAC9B,IAAI,GAAG,CAAC,aAAa,CAAC,CAAC;QAEvB,IAAI,eAAe,EAAE,CAAC;YACrB,OAAO,CAAC,0CAA0C,EAAE,aAAa,CAAC,CAAC;QACpE,CAAC;QACD,OAAO,aAAa,CAAC;IACtB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QAChB,OAAO,CAAC,uBAAuB,EAAE,EAAE,QAAQ,EAAE,WAAW,EAAE,KAAK,EAAE,CAAC,CAAC;QACnE,OAAO,SAAS,CAAC;IAClB,CAAC;AACF,CAAC;AAED;;;;;GAKG;AACH,SAAS,qBAAqB,CAC7B,IAKC,EACD,OAAe;IAEf,wBAAwB;IACxB,IAAI,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,IAAI,CAAC,aAAa,IAAI,OAAO,IAAI,CAAC,UAAU,KAAK,QAAQ,EAAE,CAAC;QACtF,QAAQ,CAAC,GAAG,OAAO,kBAAkB,EAAE,IAAI,CAAC,CAAC;QAC7C,OAAO,KAAK,CAAC;IACd,CAAC;IAED,kCAAkC;IAClC,IAAI,IAAI,CAAC,UAAU,IAAI,CAAC,EAAE,CAAC;QAC1B,QAAQ,CAAC,+BAA+B,OAAO,GAAG,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;QACrE,OAAO,KAAK,CAAC;IACd,CAAC;IAED,OAAO,IAAI,CAAC;AACb,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACtC,IAAc;IAEd,IAAI,CAAC;QACJ,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,UAAU,CAAC,eAAe,EAAE;YACnD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;YAChE,IAAI,EAAE,IAAI,eAAe,CAAC;gBACzB,SAAS,EAAE,UAAU,CAAC,SAAS;gBAC/B,KAAK,EAAE,UAAU,CAAC,KAAK;gBACvB,cAAc,EAAE,IAAI,CAAC,SAAS;gBAC9B,qBAAqB,EAAE,MAAM;aAC7B,CAAC;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACb,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;YAC9C,QAAQ,CAAC,6BAA6B,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;YACtE,OAAO,IAAI,CAAC;QACb,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAiC,CAAC;QAC7D,IAAI,eAAe,EAAE,CAAC;YACrB,OAAO,CAAC,gCAAgC,EAAE,IAAI,CAAC,CAAC;QACjD,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACpE,QAAQ,CAAC,sCAAsC,EAAE,IAAI,CAAC,CAAC;YACvD,OAAO,IAAI,CAAC;QACb,CAAC;QAED,iEAAiE;QACjE,0EAA0E;QAC1E,IAAI,CAAC,IAAI,CAAC,yBAAyB,IAAI,CAAC,IAAI,CAAC,yBAAyB,CAAC,QAAQ,CAAC,gBAAgB,CAAC,gBAAgB,CAAC,EAAE,CAAC;YACpH,MAAM,OAAO,GAAG,IAAI,CAAC,yBAAyB,IAAI,IAAI,CAAC,gBAAgB,CAAC;YACxE,MAAM,SAAS,GAAG,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;YACpD,IAAI,CAAC,yBAAyB,GAAG,GAAG,OAAO,GAAG,SAAS,GAAG,gBAAgB,CAAC,kBAAkB,EAAE,CAAC;YAChG,IAAI,eAAe,EAAE,CAAC;gBACrB,OAAO,CAAC,kCAAkC,EAAE,IAAI,CAAC,yBAAyB,CAAC,CAAC;YAC7E,CAAC;QACF,CAAC;QAED,OAAO,IAAI,CAAC;IACb,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QAChB,QAAQ,CAAC,4BAA4B,EAAE,KAAK,CAAC,CAAC;QAC9C,OAAO,IAAI,CAAC;IACb,CAAC;AACF,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CACjC,UAAkB,EAClB,QAAgB,EAChB,WAAmB,CAAC;IAEpB,IAAI,CAAC;QACJ,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,UAAU,CAAC,SAAS,EAAE;YAC7C,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;YAChE,IAAI,EAAE,IAAI,eAAe,CAAC;gBACzB,UAAU,EAAE,UAAU,CAAC,iBAAiB;gBACxC,SAAS,EAAE,UAAU,CAAC,SAAS;gBAC/B,WAAW,EAAE,UAAU;gBACvB,aAAa,EAAE,QAAQ;aACvB,CAAC;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACb,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YAChD,MAAM,KAAK,GAAI,IAA2B,CAAC,KAAK,CAAC;YAEjD,yBAAyB;YACzB,IAAI,KAAK,KAAK,uBAAuB,EAAE,CAAC;gBACvC,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;YAC5B,CAAC;YACD,IAAI,KAAK,KAAK,WAAW,EAAE,CAAC;gBAC3B,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC;YAC9B,CAAC;YACD,IAAI,KAAK,KAAK,eAAe,EAAE,CAAC;gBAC/B,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;YAC5B,CAAC;YACD,IAAI,KAAK,KAAK,eAAe,EAAE,CAAC;gBAC/B,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;YAC3B,CAAC;YAED,QAAQ,CAAC,oBAAoB,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;YAC7D,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;QAC3B,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAK1B,CAAC;QAEF,IAAI,eAAe,EAAE,CAAC;YACrB,4CAA4C;YAC5C,OAAO,CAAC,0BAA0B,EAAE;gBACnC,gBAAgB,EAAE,CAAC,CAAC,IAAI,CAAC,YAAY;gBACrC,iBAAiB,EAAE,CAAC,CAAC,IAAI,CAAC,aAAa;gBACvC,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,UAAU,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;aAC7B,CAAC,CAAC;QACJ,CAAC;QAED,iCAAiC;QACjC,IAAI,CAAC,qBAAqB,CAAC,IAAI,EAAE,gBAAgB,CAAC,EAAE,CAAC;YACpD,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;QAC3B,CAAC;QAED,iDAAiD;QACjD,IAAI,CAAC,YAAY,GAAG,oBAAoB,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAC5D,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACxB,OAAO,CAAC,8EAA8E,CAAC,CAAC;QACzF,CAAC;QAED,uDAAuD;QACvD,OAAO;YACN,IAAI,EAAE,SAAS;YACf,MAAM,EAAE,IAAI,CAAC,YAAa;YAC1B,OAAO,EAAE,IAAI,CAAC,aAAc;YAC5B,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,UAAW,GAAG,IAAI;YAC7C,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,uBAAuB;SACvD,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QAChB,QAAQ,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;QACrC,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;IAC3B,CAAC;AACF,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CAAC,YAAoB;IAC5D,IAAI,CAAC;QACJ,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,UAAU,CAAC,SAAS,EAAE;YAC7C,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;YAChE,IAAI,EAAE,IAAI,eAAe,CAAC;gBACzB,UAAU,EAAE,UAAU,CAAC,kBAAkB;gBACzC,SAAS,EAAE,UAAU,CAAC,SAAS;gBAC/B,aAAa,EAAE,YAAY;aAC3B,CAAC;SACF,CAAC,CAAC;QAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACb,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;YAC9C,QAAQ,CAAC,uBAAuB,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;YAChE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;QAC3B,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAK1B,CAAC;QAEF,IAAI,eAAe,EAAE,CAAC;YACrB,8CAA8C;YAC9C,OAAO,CAAC,kCAAkC,EAAE;gBAC3C,gBAAgB,EAAE,CAAC,CAAC,IAAI,CAAC,YAAY;gBACrC,iBAAiB,EAAE,CAAC,CAAC,IAAI,CAAC,aAAa;gBACvC,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,UAAU,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;aAC7B,CAAC,CAAC;QACJ,CAAC;QAED,iCAAiC;QACjC,IAAI,CAAC,qBAAqB,CAAC,IAAI,EAAE,kBAAkB,CAAC,EAAE,CAAC;YACtD,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;QAC3B,CAAC;QAED,iDAAiD;QACjD,IAAI,CAAC,YAAY,GAAG,oBAAoB,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAC5D,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACxB,OAAO,CAAC,gFAAgF,CAAC,CAAC;QAC3F,CAAC;QAED,uDAAuD;QACvD,OAAO;YACN,IAAI,EAAE,SAAS;YACf,MAAM,EAAE,IAAI,CAAC,YAAa;YAC1B,OAAO,EAAE,IAAI,CAAC,aAAc;YAC5B,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,UAAW,GAAG,IAAI;YAC7C,WAAW,EAAE,IAAI,CAAC,YAAY;SAC9B,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QAChB,QAAQ,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;QACxC,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;IAC3B,CAAC;AACF,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU;IAC/B,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,MAAM,YAAY,EAAE,CAAC;IACrD,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,CAAC;AAChC,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,eAAe;IAC9B,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;IAEjC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC5B,OAAO,IAAI,CAAC;IACb,CAAC;IAED,IAAI,CAAC;QACJ,MAAM,OAAO,GAAG,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QACjD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAoB,CAAC;QAEpD,2BAA2B;QAC3B,IAAI,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,IAAI,CAAC,aAAa,IAAI,OAAO,IAAI,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;YACnF,OAAO,CAAC,gDAAgD,CAAC,CAAC;YAC1D,OAAO,IAAI,CAAC;QACb,CAAC;QAED,OAAO,IAAI,CAAC;IACb,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QAChB,QAAQ,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;QACzC,OAAO,IAAI,CAAC;IACb,CAAC;AACF,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,SAAS,CAAC,WAAwB;IACjD,IAAI,WAAW,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;IAEjC,0BAA0B;IAC1B,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC5B,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACxD,CAAC;IAED,MAAM,SAAS,GAAoB;QAClC,YAAY,EAAE,WAAW,CAAC,MAAM;QAChC,aAAa,EAAE,WAAW,CAAC,OAAO;QAClC,OAAO,EAAE,WAAW,CAAC,OAAO;QAC5B,YAAY,EAAE,WAAW,CAAC,WAAW;KACrC,CAAC;IAEF,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;IAEjC,IAAI,CAAC;QACJ,aAAa,CAAC,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE;YAC5D,QAAQ,EAAE,OAAO;YACjB,IAAI,EAAE,KAAK,EAAE,qBAAqB;SAClC,CAAC,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QAChB,QAAQ,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;QACzC,MAAM,KAAK,CAAC;IACb,CAAC;AACF,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAAC,SAAiB;IAC/C,OAAO,IAAI,CAAC,GAAG,EAAE,IAAI,SAAS,GAAG,uBAAuB,CAAC;AAC1D,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa;IAIlC,MAAM,MAAM,GAAG,eAAe,EAAE,CAAC;IAEjC,IAAI,CAAC,MAAM,EAAE,CAAC;QACb,OAAO,IAAI,CAAC,CAAC,iCAAiC;IAC/C,CAAC;IAED,gCAAgC;IAChC,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;QACrC,OAAO;YACN,WAAW,EAAE,MAAM,CAAC,YAAY;YAChC,WAAW,EAAE,MAAM,CAAC,YAAY;SAChC,CAAC;IACH,CAAC;IAED,gCAAgC;IAChC,IAAI,eAAe,EAAE,CAAC;QACrB,OAAO,CAAC,8BAA8B,CAAC,CAAC;IACzC,CAAC;IACD,MAAM,aAAa,GAAG,MAAM,kBAAkB,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;IAErE,IAAI,aAAa,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;QACtC,QAAQ,CAAC,kDAAkD,CAAC,CAAC;QAC7D,OAAO,IAAI,CAAC;IACb,CAAC;IAED,uBAAuB;IACvB,SAAS,CAAC,aAAa,CAAC,CAAC;IAEzB,OAAO;QACN,WAAW,EAAE,aAAa,CAAC,MAAM;QACjC,WAAW,EAAE,aAAa,CAAC,WAAW;KACtC,CAAC;AACH,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,aAAa,CAAC,WAAoB;IACjD,IAAI,WAAW,EAAE,CAAC;QACjB,sBAAsB;QACtB,IAAI,CAAC;YACJ,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,WAAW,CAAC,CAAC;YACjC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBACtC,OAAO,CAAC,6DAA6D,CAAC,CAAC;gBACvE,OAAO,qBAAqB,CAAC;YAC9B,CAAC;YAED,sDAAsD;YACtD,gFAAgF;YAChF,mCAAmC;YACnC,IAAI,OAAO,GAAG,WAAW,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAE7C,wCAAwC;YACxC,MAAM,MAAM,GAAG,KAAK,CAAC;YACrB,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC/B,OAAO,GAAG,GAAG,OAAO,GAAG,MAAM,EAAE,CAAC;YACjC,CAAC;YAED,IAAI,eAAe,EAAE,CAAC;gBACrB,OAAO,CAAC,oDAAoD,EAAE,OAAO,CAAC,CAAC;YACxE,CAAC;YACD,OAAO,OAAO,CAAC;QAChB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,OAAO,CAAC,4DAA4D,EAAE,KAAK,CAAC,CAAC;YAC7E,OAAO,qBAAqB,CAAC;QAC9B,CAAC;IACF,CAAC;IAED,sCAAsC;IACtC,IAAI,eAAe,EAAE,CAAC;QACrB,OAAO,CAAC,wDAAwD,CAAC,CAAC;IACnE,CAAC;IACD,OAAO,qBAAqB,CAAC;AAC9B,CAAC"}

package/dist/lib/auth/browser.d.ts

@@ -0,0 +1,16 @@
+/**
+ * Browser utilities for OAuth flow
+ * Handles platform-specific browser opening
+ */
+/**
+ * Gets the platform-specific command to open a URL in the default browser
+ * @returns Browser opener command for the current platform
+ */
+export declare function getBrowserOpener(): string;
+/**
+ * Opens a URL in the default browser
+ * Silently fails if browser cannot be opened (user can copy URL manually)
+ * @param url - URL to open
+ */
+export declare function openBrowserUrl(url: string): void;
+//# sourceMappingURL=browser.d.ts.map

package/dist/lib/auth/browser.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"browser.d.ts","sourceRoot":"","sources":["../../../lib/auth/browser.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAKH;;;GAGG;AACH,wBAAgB,gBAAgB,IAAI,MAAM,CAKzC;AAED;;;;GAIG;AACH,wBAAgB,cAAc,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI,CAUhD"}

package/dist/lib/auth/browser.js

@@ -0,0 +1,37 @@
+/**
+ * Browser utilities for OAuth flow
+ * Handles platform-specific browser opening
+ */
+import { spawn } from "node:child_process";
+import { PLATFORM_OPENERS } from "../constants.js";
+/**
+ * Gets the platform-specific command to open a URL in the default browser
+ * @returns Browser opener command for the current platform
+ */
+export function getBrowserOpener() {
+    const platform = process.platform;
+    if (platform === "darwin")
+        return PLATFORM_OPENERS.darwin;
+    if (platform === "win32")
+        return PLATFORM_OPENERS.win32;
+    return PLATFORM_OPENERS.linux;
+}
+/**
+ * Opens a URL in the default browser
+ * Silently fails if browser cannot be opened (user can copy URL manually)
+ * @param url - URL to open
+ */
+export function openBrowserUrl(url) {
+    try {
+        const opener = getBrowserOpener();
+        spawn(opener, [url], {
+            stdio: "ignore",
+            shell: process.platform === "win32",
+        });
+    }
+    catch (error) {
+        // Log canh bao de ho tro debug, user van co the mo URL thu cong
+        console.warn("[qwen-oauth-plugin] Khong the mo trinh duyet:", error?.message || error);
+    }
+}
+//# sourceMappingURL=browser.js.map

package/dist/lib/auth/browser.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"browser.js","sourceRoot":"","sources":["../../../lib/auth/browser.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,KAAK,EAAE,MAAM,oBAAoB,CAAC;AAC3C,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAEnD;;;GAGG;AACH,MAAM,UAAU,gBAAgB;IAC/B,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;IAClC,IAAI,QAAQ,KAAK,QAAQ;QAAE,OAAO,gBAAgB,CAAC,MAAM,CAAC;IAC1D,IAAI,QAAQ,KAAK,OAAO;QAAE,OAAO,gBAAgB,CAAC,KAAK,CAAC;IACxD,OAAO,gBAAgB,CAAC,KAAK,CAAC;AAC/B,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAAC,GAAW;IACzC,IAAI,CAAC;QACJ,MAAM,MAAM,GAAG,gBAAgB,EAAE,CAAC;QAClC,KAAK,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE;YACpB,KAAK,EAAE,QAAQ;YACf,KAAK,EAAE,OAAO,CAAC,QAAQ,KAAK,OAAO;SACnC,CAAC,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QAChB,mEAAmE;IACpE,CAAC;AACF,CAAC"}

package/dist/lib/config.d.ts

@@ -0,0 +1,28 @@
+import type { PluginConfig } from "./types.js";
+/**
+ * Get plugin configuration directory
+ */
+export declare function getConfigDir(): string;
+/**
+ * Get plugin configuration file path
+ */
+export declare function getConfigPath(): string;
+/**
+ * Load plugin configuration from ~/.opencode/qwen/auth-config.json
+ * Returns default config if file doesn't exist
+ */
+export declare function loadPluginConfig(): PluginConfig;
+/**
+ * Get QWEN_MODE setting
+ * Priority: QWEN_MODE env var > config file > default (true)
+ */
+export declare function getQwenMode(config: PluginConfig): boolean;
+/**
+ * Get token storage path
+ */
+export declare function getTokenPath(): string;
+/**
+ * Get cache directory for prompts
+ */
+export declare function getCacheDir(): string;
+//# sourceMappingURL=config.d.ts.map

package/dist/lib/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../../lib/config.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAE/C;;GAEG;AACH,wBAAgB,YAAY,IAAI,MAAM,CAErC;AAED;;GAEG;AACH,wBAAgB,aAAa,IAAI,MAAM,CAEtC;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,IAAI,YAAY,CAc/C;AAED;;;GAGG;AACH,wBAAgB,WAAW,CAAC,MAAM,EAAE,YAAY,GAAG,OAAO,CAMzD;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,MAAM,CAErC;AAED;;GAEG;AACH,wBAAgB,WAAW,IAAI,MAAM,CAEpC"}

package/dist/lib/config.js

@@ -0,0 +1,63 @@
+import { homedir } from "os";
+import { join } from "path";
+import { readFileSync, existsSync } from "fs";
+/**
+ * Get plugin configuration directory
+ */
+export function getConfigDir() {
+    return join(homedir(), ".opencode", "qwen");
+}
+/**
+ * Get plugin configuration file path
+ */
+export function getConfigPath() {
+    return join(getConfigDir(), "auth-config.json");
+}
+/**
+ * Load plugin configuration from ~/.opencode/qwen/auth-config.json
+ * Returns default config if file doesn't exist
+ */
+export function loadPluginConfig() {
+    const configPath = getConfigPath();
+    if (!existsSync(configPath)) {
+        return { qwenMode: true }; // Default to QWEN_MODE enabled
+    }
+    try {
+        const content = readFileSync(configPath, "utf-8");
+        return JSON.parse(content);
+    }
+    catch (error) {
+        console.warn(`[qwen-oauth-plugin] Failed to load config from ${configPath}:`, error);
+        return { qwenMode: true };
+    }
+}
+/**
+ * Get QWEN_MODE setting
+ * Priority: QWEN_MODE env var > config file > default (true)
+ */
+export function getQwenMode(config) {
+    const envValue = process.env.QWEN_MODE;
+    if (envValue !== undefined) {
+        return envValue === "1" || envValue.toLowerCase() === "true";
+    }
+    // Ep kieu boolean chac chan, tranh string "false" bi truthy
+    const val = config.qwenMode;
+    if (val === undefined || val === null) return true; // mac dinh bat
+    if (typeof val === "string") {
+        return val === "1" || val.toLowerCase() === "true";
+    }
+    return !!val;
+}
+/**
+ * Get token storage path
+ */
+export function getTokenPath() {
+    return join(getConfigDir(), "oauth_token.json");
+}
+/**
+ * Get cache directory for prompts
+ */
+export function getCacheDir() {
+    return join(homedir(), ".opencode", "cache");
+}
+//# sourceMappingURL=config.js.map

package/dist/lib/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../../lib/config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AAC7B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAG9C;;GAEG;AACH,MAAM,UAAU,YAAY;IAC3B,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,WAAW,EAAE,MAAM,CAAC,CAAC;AAC7C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa;IAC5B,OAAO,IAAI,CAAC,YAAY,EAAE,EAAE,kBAAkB,CAAC,CAAC;AACjD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,gBAAgB;IAC/B,MAAM,UAAU,GAAG,aAAa,EAAE,CAAC;IAEnC,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC7B,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,+BAA+B;IAC3D,CAAC;IAED,IAAI,CAAC;QACJ,MAAM,OAAO,GAAG,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QAClD,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAiB,CAAC;IAC5C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QAChB,OAAO,CAAC,IAAI,CAAC,kDAAkD,UAAU,GAAG,EAAE,KAAK,CAAC,CAAC;QACrF,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;IAC3B,CAAC;AACF,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,WAAW,CAAC,MAAoB;IAC/C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC;IACvC,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QAC5B,OAAO,QAAQ,KAAK,GAAG,IAAI,QAAQ,CAAC,WAAW,EAAE,KAAK,MAAM,CAAC;IAC9D,CAAC;IACD,OAAO,MAAM,CAAC,QAAQ,IAAI,IAAI,CAAC;AAChC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY;IAC3B,OAAO,IAAI,CAAC,YAAY,EAAE,EAAE,kBAAkB,CAAC,CAAC;AACjD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW;IAC1B,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;AAC9C,CAAC"}