specweave 0.28.68 → 0.29.1

package/dist/src/core/sync/permission-enforcer.d.ts

@@ -0,0 +1,206 @@
+/**
+ * Permission Enforcer
+ *
+ * Validates sync operations against configured permissions before execution.
+ * Uses the existing SyncSettings from config.json (set during specweave init).
+ * Logs all permission decisions for audit.
+ *
+ * IMPORTANT: This integrates with the existing sync.settings configuration:
+ * - canUpsertInternalItems: CREATE/UPDATE internal items in external tools
+ * - canUpdateExternalItems: UPDATE items created externally
+ * - canUpdateStatus: UPDATE status field for both internal and external items
+ *
+ * @module core/sync/permission-enforcer
+ */
+import { SyncSettings } from '../types/sync-settings.js';
+import { SyncPlatform } from '../types/sync-config.js';
+import { Logger } from '../../utils/logger.js';
+/**
+ * Sync operation types
+ *
+ * Maps to existing SyncSettings:
+ * - 'read' → always allowed (reading is safe)
+ * - 'update-status' → canUpdateStatus
+ * - 'upsert-internal' → canUpsertInternalItems
+ * - 'upsert-external' → canUpdateExternalItems
+ */
+export type SyncOperation = 'read' | 'update-status' | 'upsert-internal' | 'upsert-external';
+/**
+ * Item origin - where the item was created
+ */
+export type ItemOrigin = 'internal' | 'external';
+/**
+ * Permission check result
+ */
+export interface PermissionResult {
+    /**
+     * Whether the operation is allowed
+     */
+    allowed: boolean;
+    /**
+     * Reason for the decision
+     */
+    reason: string;
+    /**
+     * Platform checked
+     */
+    platform: SyncPlatform;
+    /**
+     * Operation attempted
+     */
+    operation: SyncOperation;
+    /**
+     * Item ID involved
+     */
+    itemId: string;
+    /**
+     * Item origin
+     */
+    origin: ItemOrigin;
+    /**
+     * ISO timestamp of the check
+     */
+    timestamp: string;
+}
+/**
+ * Permission enforcer options
+ */
+export interface PermissionEnforcerOptions {
+    /**
+     * SyncSettings from config.json (set during specweave init)
+     * If not provided, uses defaults (all permissions disabled)
+     */
+    settings?: SyncSettings;
+    /**
+     * Path to .specweave directory for logging
+     */
+    specweavePath?: string;
+    /**
+     * Logger instance
+     */
+    logger?: Logger;
+    /**
+     * Enable decision logging to file
+     * @default true
+     */
+    enableLogging?: boolean;
+}
+/**
+ * PermissionEnforcer - Validates sync operations before execution
+ *
+ * Uses the existing SyncSettings from config.json that are configured during
+ * `specweave init`. This ensures consistency with user's sync preferences.
+ *
+ * Features:
+ * - Check permissions before any sync operation
+ * - Differentiate between internal and external items
+ * - Log all decisions for audit
+ */
+export declare class PermissionEnforcer {
+    private settings;
+    private readonly logPath;
+    private readonly logger;
+    private readonly enableLogging;
+    constructor(options?: PermissionEnforcerOptions);
+    /**
+     * Check if an operation is permitted for an item
+     *
+     * @param platform - Target platform (github, jira, ado)
+     * @param operation - Operation to perform
+     * @param itemId - Item ID being operated on
+     * @param origin - Whether item is internal or external
+     * @returns Permission result
+     */
+    checkPermission(platform: SyncPlatform, operation: SyncOperation, itemId: string, origin?: ItemOrigin): PermissionResult;
+    /**
+     * Check permission and log the decision
+     *
+     * @param platform - Target platform
+     * @param operation - Operation to perform
+     * @param itemId - Item ID being operated on
+     * @param origin - Whether item is internal or external
+     * @returns Permission result
+     */
+    checkAndLog(platform: SyncPlatform, operation: SyncOperation, itemId: string, origin?: ItemOrigin): Promise<PermissionResult>;
+    /**
+     * Convenience method: Check if upsert is allowed
+     *
+     * Automatically determines origin from itemId (ends with 'E' = external)
+     *
+     * @param platform - Target platform
+     * @param itemId - Item ID (e.g., "FS-001" or "FS-001E")
+     * @returns Permission result
+     */
+    checkUpsertPermission(platform: SyncPlatform, itemId: string): PermissionResult;
+    /**
+     * Convenience method: Check if status update is allowed
+     *
+     * @param platform - Target platform
+     * @param itemId - Item ID
+     * @returns Permission result
+     */
+    checkStatusUpdatePermission(platform: SyncPlatform, itemId: string): PermissionResult;
+    /**
+     * Update settings at runtime
+     *
+     * @param settings - New sync settings (partial update supported)
+     */
+    updateSettings(settings: Partial<SyncSettings>): void;
+    /**
+     * Get current settings
+     *
+     * @returns Current sync settings
+     */
+    getSettings(): SyncSettings;
+    /**
+     * Check if sync is enabled for any operation
+     *
+     * @returns true if any sync operation is enabled
+     */
+    isSyncEnabled(): boolean;
+    /**
+     * Get a human-readable summary of current permissions
+     *
+     * @returns Summary object
+     */
+    getPermissionsSummary(): {
+        canCreateInternal: boolean;
+        canUpdateExternal: boolean;
+        canUpdateStatus: boolean;
+        summary: string;
+    };
+    /**
+     * Detect item origin from ID
+     *
+     * External items have 'E' suffix (e.g., FS-001E)
+     */
+    private detectOrigin;
+    /**
+     * Check if operation is allowed by current settings
+     */
+    private isOperationAllowed;
+    /**
+     * Get denial reason for logging
+     */
+    private getDenialReason;
+    /**
+     * Log permission decision to file
+     */
+    logDecision(result: PermissionResult): Promise<void>;
+    /**
+     * Get log file path (for testing/debugging)
+     */
+    getLogPath(): string;
+}
+/**
+ * Create a PermissionEnforcer from config.json
+ *
+ * Reads the existing sync.settings from config.json that was set during
+ * `specweave init` and creates a PermissionEnforcer with those settings.
+ *
+ * @param specweavePath - Path to .specweave directory
+ * @param logger - Optional logger
+ * @returns PermissionEnforcer instance
+ */
+export declare function createPermissionEnforcerFromConfig(specweavePath?: string, logger?: Logger): Promise<PermissionEnforcer>;
+//# sourceMappingURL=permission-enforcer.d.ts.map

package/dist/src/core/sync/permission-enforcer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission-enforcer.d.ts","sourceRoot":"","sources":["../../../../src/core/sync/permission-enforcer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAIH,OAAO,EACL,YAAY,EAEb,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AACvD,OAAO,EAAE,MAAM,EAAiB,MAAM,uBAAuB,CAAC;AAE9D;;;;;;;;GAQG;AACH,MAAM,MAAM,aAAa,GACrB,MAAM,GACN,eAAe,GACf,iBAAiB,GACjB,iBAAiB,CAAC;AAEtB;;GAEG;AACH,MAAM,MAAM,UAAU,GAAG,UAAU,GAAG,UAAU,CAAC;AAEjD;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B;;OAEG;IACH,OAAO,EAAE,OAAO,CAAC;IAEjB;;OAEG;IACH,MAAM,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,QAAQ,EAAE,YAAY,CAAC;IAEvB;;OAEG;IACH,SAAS,EAAE,aAAa,CAAC;IAEzB;;OAEG;IACH,MAAM,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,MAAM,EAAE,UAAU,CAAC;IAEnB;;OAEG;IACH,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC;;;OAGG;IACH,QAAQ,CAAC,EAAE,YAAY,CAAC;IAExB;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;OAGG;IACH,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED;;;;;;;;;;GAUG;AACH,qBAAa,kBAAkB;IAC7B,OAAO,CAAC,QAAQ,CAAe;IAC/B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAU;gBAE5B,OAAO,GAAE,yBAA8B;IASnD;;;;;;;;OAQG;IACH,eAAe,CACb,QAAQ,EAAE,YAAY,EACtB,SAAS,EAAE,aAAa,EACxB,MAAM,EAAE,MAAM,EACd,MAAM,GAAE,UAAuB,GAC9B,gBAAgB;IAoBnB;;;;;;;;OAQG;IACG,WAAW,CACf,QAAQ,EAAE,YAAY,EACtB,SAAS,EAAE,aAAa,EACxB,MAAM,EAAE,MAAM,EACd,MAAM,GAAE,UAAuB,GAC9B,OAAO,CAAC,gBAAgB,CAAC;IAc5B;;;;;;;;OAQG;IACH,qBAAqB,CACnB,QAAQ,EAAE,YAAY,EACtB,MAAM,EAAE,MAAM,GACb,gBAAgB;IAMnB;;;;;;OAMG;IACH,2BAA2B,CACzB,QAAQ,EAAE,YAAY,EACtB,MAAM,EAAE,MAAM,GACb,gBAAgB;IAKnB;;;;OAIG;IACH,cAAc,CAAC,QAAQ,EAAE,OAAO,CAAC,YAAY,CAAC,GAAG,IAAI;IAKrD;;;;OAIG;IACH,WAAW,IAAI,YAAY;IAI3B;;;;OAIG;IACH,aAAa,IAAI,OAAO;IAQxB;;;;OAIG;IACH,qBAAqB,IAAI;QACvB,iBAAiB,EAAE,OAAO,CAAC;QAC3B,iBAAiB,EAAE,OAAO,CAAC;QAC3B,eAAe,EAAE,OAAO,CAAC;QACzB,OAAO,EAAE,MAAM,CAAC;KACjB;IAoBD;;;;OAIG;IACH,OAAO,CAAC,YAAY;IAQpB;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAuB1B;;OAEG;IACH,OAAO,CAAC,eAAe;IAgBvB;;OAEG;IACG,WAAW,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,IAAI,CAAC;IAmB1D;;OAEG;IACH,UAAU,IAAI,MAAM;CAGrB;AAED;;;;;;;;;GASG;AACH,wBAAsB,kCAAkC,CACtD,aAAa,GAAE,MAA+C,EAC9D,MAAM,CAAC,EAAE,MAAM,GACd,OAAO,CAAC,kBAAkB,CAAC,CA2B7B"}

package/dist/src/core/sync/permission-enforcer.js

@@ -0,0 +1,268 @@
+/**
+ * Permission Enforcer
+ *
+ * Validates sync operations against configured permissions before execution.
+ * Uses the existing SyncSettings from config.json (set during specweave init).
+ * Logs all permission decisions for audit.
+ *
+ * IMPORTANT: This integrates with the existing sync.settings configuration:
+ * - canUpsertInternalItems: CREATE/UPDATE internal items in external tools
+ * - canUpdateExternalItems: UPDATE items created externally
+ * - canUpdateStatus: UPDATE status field for both internal and external items
+ *
+ * @module core/sync/permission-enforcer
+ */
+import { promises as fs } from 'fs';
+import path from 'path';
+import { DEFAULT_SYNC_SETTINGS, } from '../types/sync-settings.js';
+import { consoleLogger } from '../../utils/logger.js';
+/**
+ * PermissionEnforcer - Validates sync operations before execution
+ *
+ * Uses the existing SyncSettings from config.json that are configured during
+ * `specweave init`. This ensures consistency with user's sync preferences.
+ *
+ * Features:
+ * - Check permissions before any sync operation
+ * - Differentiate between internal and external items
+ * - Log all decisions for audit
+ */
+export class PermissionEnforcer {
+    constructor(options = {}) {
+        this.settings = options.settings ?? { ...DEFAULT_SYNC_SETTINGS };
+        const specweavePath = options.specweavePath ?? path.join(process.cwd(), '.specweave');
+        this.logPath = path.join(specweavePath, 'logs', 'sync', 'permissions.jsonl');
+        this.logger = options.logger ?? consoleLogger;
+        this.enableLogging = options.enableLogging ?? true;
+    }
+    /**
+     * Check if an operation is permitted for an item
+     *
+     * @param platform - Target platform (github, jira, ado)
+     * @param operation - Operation to perform
+     * @param itemId - Item ID being operated on
+     * @param origin - Whether item is internal or external
+     * @returns Permission result
+     */
+    checkPermission(platform, operation, itemId, origin = 'internal') {
+        const allowed = this.isOperationAllowed(operation, origin);
+        const reason = allowed
+            ? `Operation "${operation}" permitted for ${origin} item`
+            : this.getDenialReason(operation, origin);
+        const result = {
+            allowed,
+            reason,
+            platform,
+            operation,
+            itemId,
+            origin,
+            timestamp: new Date().toISOString(),
+        };
+        return result;
+    }
+    /**
+     * Check permission and log the decision
+     *
+     * @param platform - Target platform
+     * @param operation - Operation to perform
+     * @param itemId - Item ID being operated on
+     * @param origin - Whether item is internal or external
+     * @returns Permission result
+     */
+    async checkAndLog(platform, operation, itemId, origin = 'internal') {
+        const result = this.checkPermission(platform, operation, itemId, origin);
+        // Log the decision
+        await this.logDecision(result);
+        // Log to console if denied
+        if (!result.allowed) {
+            this.logger.debug(`Permission denied: ${result.reason} (${itemId})`);
+        }
+        return result;
+    }
+    /**
+     * Convenience method: Check if upsert is allowed
+     *
+     * Automatically determines origin from itemId (ends with 'E' = external)
+     *
+     * @param platform - Target platform
+     * @param itemId - Item ID (e.g., "FS-001" or "FS-001E")
+     * @returns Permission result
+     */
+    checkUpsertPermission(platform, itemId) {
+        const origin = this.detectOrigin(itemId);
+        const operation = origin === 'external' ? 'upsert-external' : 'upsert-internal';
+        return this.checkPermission(platform, operation, itemId, origin);
+    }
+    /**
+     * Convenience method: Check if status update is allowed
+     *
+     * @param platform - Target platform
+     * @param itemId - Item ID
+     * @returns Permission result
+     */
+    checkStatusUpdatePermission(platform, itemId) {
+        const origin = this.detectOrigin(itemId);
+        return this.checkPermission(platform, 'update-status', itemId, origin);
+    }
+    /**
+     * Update settings at runtime
+     *
+     * @param settings - New sync settings (partial update supported)
+     */
+    updateSettings(settings) {
+        this.settings = { ...this.settings, ...settings };
+        this.logger.debug('Permission enforcer settings updated');
+    }
+    /**
+     * Get current settings
+     *
+     * @returns Current sync settings
+     */
+    getSettings() {
+        return { ...this.settings };
+    }
+    /**
+     * Check if sync is enabled for any operation
+     *
+     * @returns true if any sync operation is enabled
+     */
+    isSyncEnabled() {
+        return (this.settings.canUpsertInternalItems ||
+            this.settings.canUpdateExternalItems ||
+            this.settings.canUpdateStatus);
+    }
+    /**
+     * Get a human-readable summary of current permissions
+     *
+     * @returns Summary object
+     */
+    getPermissionsSummary() {
+        const parts = [];
+        if (this.settings.canUpsertInternalItems) {
+            parts.push('create/update internal items');
+        }
+        if (this.settings.canUpdateExternalItems) {
+            parts.push('update external items');
+        }
+        if (this.settings.canUpdateStatus) {
+            parts.push('update status');
+        }
+        return {
+            canCreateInternal: this.settings.canUpsertInternalItems,
+            canUpdateExternal: this.settings.canUpdateExternalItems,
+            canUpdateStatus: this.settings.canUpdateStatus,
+            summary: parts.length > 0 ? `Allowed: ${parts.join(', ')}` : 'All sync disabled (read-only)',
+        };
+    }
+    /**
+     * Detect item origin from ID
+     *
+     * External items have 'E' suffix (e.g., FS-001E)
+     */
+    detectOrigin(itemId) {
+        // External items end with 'E' or have '-E-' in the ID
+        if (itemId.endsWith('E') || itemId.includes('-E-')) {
+            return 'external';
+        }
+        return 'internal';
+    }
+    /**
+     * Check if operation is allowed by current settings
+     */
+    isOperationAllowed(operation, origin) {
+        switch (operation) {
+            case 'read':
+                // Reading is always allowed
+                return true;
+            case 'update-status':
+                // Status updates controlled by canUpdateStatus
+                return this.settings.canUpdateStatus;
+            case 'upsert-internal':
+                // Creating/updating internal items controlled by canUpsertInternalItems
+                return this.settings.canUpsertInternalItems;
+            case 'upsert-external':
+                // Updating external items controlled by canUpdateExternalItems
+                return this.settings.canUpdateExternalItems;
+            default:
+                return false;
+        }
+    }
+    /**
+     * Get denial reason for logging
+     */
+    getDenialReason(operation, origin) {
+        switch (operation) {
+            case 'update-status':
+                return 'Status updates disabled. Enable sync.settings.canUpdateStatus in config.';
+            case 'upsert-internal':
+                return 'Creating/updating internal items disabled. Enable sync.settings.canUpsertInternalItems in config.';
+            case 'upsert-external':
+                return 'Updating external items disabled. Enable sync.settings.canUpdateExternalItems in config.';
+            default:
+                return `Operation "${operation}" not permitted for ${origin} items.`;
+        }
+    }
+    /**
+     * Log permission decision to file
+     */
+    async logDecision(result) {
+        if (!this.enableLogging) {
+            return;
+        }
+        try {
+            // Ensure directory exists
+            const dir = path.dirname(this.logPath);
+            await fs.mkdir(dir, { recursive: true });
+            // Append to JSONL file
+            const line = JSON.stringify(result) + '\n';
+            await fs.appendFile(this.logPath, line, 'utf-8');
+        }
+        catch (error) {
+            // Log errors but don't fail the operation
+            this.logger.debug(`Failed to log permission decision: ${error}`);
+        }
+    }
+    /**
+     * Get log file path (for testing/debugging)
+     */
+    getLogPath() {
+        return this.logPath;
+    }
+}
+/**
+ * Create a PermissionEnforcer from config.json
+ *
+ * Reads the existing sync.settings from config.json that was set during
+ * `specweave init` and creates a PermissionEnforcer with those settings.
+ *
+ * @param specweavePath - Path to .specweave directory
+ * @param logger - Optional logger
+ * @returns PermissionEnforcer instance
+ */
+export async function createPermissionEnforcerFromConfig(specweavePath = path.join(process.cwd(), '.specweave'), logger) {
+    const configPath = path.join(specweavePath, 'config.json');
+    try {
+        const content = await fs.readFile(configPath, 'utf-8');
+        const config = JSON.parse(content);
+        // Extract sync settings from config
+        const settings = {
+            canUpsertInternalItems: config?.sync?.settings?.canUpsertInternalItems ?? false,
+            canUpdateExternalItems: config?.sync?.settings?.canUpdateExternalItems ?? false,
+            canUpdateStatus: config?.sync?.settings?.canUpdateStatus ?? false,
+        };
+        return new PermissionEnforcer({
+            settings,
+            specweavePath,
+            logger,
+        });
+    }
+    catch {
+        // Return enforcer with default (disabled) settings
+        return new PermissionEnforcer({
+            settings: DEFAULT_SYNC_SETTINGS,
+            specweavePath,
+            logger,
+        });
+    }
+}
+//# sourceMappingURL=permission-enforcer.js.map

package/dist/src/core/sync/permission-enforcer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission-enforcer.js","sourceRoot":"","sources":["../../../../src/core/sync/permission-enforcer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,EAAE,QAAQ,IAAI,EAAE,EAAE,MAAM,IAAI,CAAC;AACpC,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,EAEL,qBAAqB,GACtB,MAAM,2BAA2B,CAAC;AAEnC,OAAO,EAAU,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAyF9D;;;;;;;;;;GAUG;AACH,MAAM,OAAO,kBAAkB;IAM7B,YAAY,UAAqC,EAAE;QACjD,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,GAAG,qBAAqB,EAAE,CAAC;QAEjE,MAAM,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,YAAY,CAAC,CAAC;QACtF,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,MAAM,EAAE,MAAM,EAAE,mBAAmB,CAAC,CAAC;QAC7E,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,aAAa,CAAC;QAC9C,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,IAAI,CAAC;IACrD,CAAC;IAED;;;;;;;;OAQG;IACH,eAAe,CACb,QAAsB,EACtB,SAAwB,EACxB,MAAc,EACd,SAAqB,UAAU;QAE/B,MAAM,OAAO,GAAG,IAAI,CAAC,kBAAkB,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QAE3D,MAAM,MAAM,GAAG,OAAO;YACpB,CAAC,CAAC,cAAc,SAAS,mBAAmB,MAAM,OAAO;YACzD,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QAE5C,MAAM,MAAM,GAAqB;YAC/B,OAAO;YACP,MAAM;YACN,QAAQ;YACR,SAAS;YACT,MAAM;YACN,MAAM;YACN,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACpC,CAAC;QAEF,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,WAAW,CACf,QAAsB,EACtB,SAAwB,EACxB,MAAc,EACd,SAAqB,UAAU;QAE/B,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;QAEzE,mBAAmB;QACnB,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QAE/B,2BAA2B;QAC3B,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,sBAAsB,MAAM,CAAC,MAAM,KAAK,MAAM,GAAG,CAAC,CAAC;QACvE,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;;;;;;;OAQG;IACH,qBAAqB,CACnB,QAAsB,EACtB,MAAc;QAEd,MAAM,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QACzC,MAAM,SAAS,GAAkB,MAAM,KAAK,UAAU,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,iBAAiB,CAAC;QAC/F,OAAO,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;IACnE,CAAC;IAED;;;;;;OAMG;IACH,2BAA2B,CACzB,QAAsB,EACtB,MAAc;QAEd,MAAM,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QACzC,OAAO,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,eAAe,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;IACzE,CAAC;IAED;;;;OAIG;IACH,cAAc,CAAC,QAA+B;QAC5C,IAAI,CAAC,QAAQ,GAAG,EAAE,GAAG,IAAI,CAAC,QAAQ,EAAE,GAAG,QAAQ,EAAE,CAAC;QAClD,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC5D,CAAC;IAED;;;;OAIG;IACH,WAAW;QACT,OAAO,EAAE,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;IAC9B,CAAC;IAED;;;;OAIG;IACH,aAAa;QACX,OAAO,CACL,IAAI,CAAC,QAAQ,CAAC,sBAAsB;YACpC,IAAI,CAAC,QAAQ,CAAC,sBAAsB;YACpC,IAAI,CAAC,QAAQ,CAAC,eAAe,CAC9B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,qBAAqB;QAMnB,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,IAAI,IAAI,CAAC,QAAQ,CAAC,sBAAsB,EAAE,CAAC;YACzC,KAAK,CAAC,IAAI,CAAC,8BAA8B,CAAC,CAAC;QAC7C,CAAC;QACD,IAAI,IAAI,CAAC,QAAQ,CAAC,sBAAsB,EAAE,CAAC;YACzC,KAAK,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QACtC,CAAC;QACD,IAAI,IAAI,CAAC,QAAQ,CAAC,eAAe,EAAE,CAAC;YAClC,KAAK,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAC9B,CAAC;QAED,OAAO;YACL,iBAAiB,EAAE,IAAI,CAAC,QAAQ,CAAC,sBAAsB;YACvD,iBAAiB,EAAE,IAAI,CAAC,QAAQ,CAAC,sBAAsB;YACvD,eAAe,EAAE,IAAI,CAAC,QAAQ,CAAC,eAAe;YAC9C,OAAO,EAAE,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,YAAY,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,+BAA+B;SAC7F,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACK,YAAY,CAAC,MAAc;QACjC,sDAAsD;QACtD,IAAI,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YACnD,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,OAAO,UAAU,CAAC;IACpB,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,SAAwB,EAAE,MAAkB;QACrE,QAAQ,SAAS,EAAE,CAAC;YAClB,KAAK,MAAM;gBACT,4BAA4B;gBAC5B,OAAO,IAAI,CAAC;YAEd,KAAK,eAAe;gBAClB,+CAA+C;gBAC/C,OAAO,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC;YAEvC,KAAK,iBAAiB;gBACpB,wEAAwE;gBACxE,OAAO,IAAI,CAAC,QAAQ,CAAC,sBAAsB,CAAC;YAE9C,KAAK,iBAAiB;gBACpB,+DAA+D;gBAC/D,OAAO,IAAI,CAAC,QAAQ,CAAC,sBAAsB,CAAC;YAE9C;gBACE,OAAO,KAAK,CAAC;QACjB,CAAC;IACH,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,SAAwB,EAAE,MAAkB;QAClE,QAAQ,SAAS,EAAE,CAAC;YAClB,KAAK,eAAe;gBAClB,OAAO,0EAA0E,CAAC;YAEpF,KAAK,iBAAiB;gBACpB,OAAO,mGAAmG,CAAC;YAE7G,KAAK,iBAAiB;gBACpB,OAAO,0FAA0F,CAAC;YAEpG;gBACE,OAAO,cAAc,SAAS,uBAAuB,MAAM,SAAS,CAAC;QACzE,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,MAAwB;QACxC,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC;YACxB,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,0BAA0B;YAC1B,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACvC,MAAM,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;YAEzC,uBAAuB;YACvB,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC;YAC3C,MAAM,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACnD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,0CAA0C;YAC1C,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,sCAAsC,KAAK,EAAE,CAAC,CAAC;QACnE,CAAC;IACH,CAAC;IAED;;OAEG;IACH,UAAU;QACR,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;CACF;AAED;;;;;;;;;GASG;AACH,MAAM,CAAC,KAAK,UAAU,kCAAkC,CACtD,gBAAwB,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,YAAY,CAAC,EAC9D,MAAe;IAEf,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,aAAa,CAAC,CAAC;IAE3D,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QACvD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEnC,oCAAoC;QACpC,MAAM,QAAQ,GAAiB;YAC7B,sBAAsB,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,sBAAsB,IAAI,KAAK;YAC/E,sBAAsB,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,sBAAsB,IAAI,KAAK;YAC/E,eAAe,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,eAAe,IAAI,KAAK;SAClE,CAAC;QAEF,OAAO,IAAI,kBAAkB,CAAC;YAC5B,QAAQ;YACR,aAAa;YACb,MAAM;SACP,CAAC,CAAC;IACL,CAAC;IAAC,MAAM,CAAC;QACP,mDAAmD;QACnD,OAAO,IAAI,kBAAkB,CAAC;YAC5B,QAAQ,EAAE,qBAAqB;YAC/B,aAAa;YACb,MAAM;SACP,CAAC,CAAC;IACL,CAAC;AACH,CAAC"}