veryfront 0.0.82 → 0.0.84

package/esm/proxy/logger.js

@@ -0,0 +1,258 @@
+// Inline cross-runtime getEnv to avoid dependency on src/platform/compat (not copied in Docker)
+import * as dntShim from "../_dnt.shims.js";
+function getEnv(key) {
+    // Deno
+    if (typeof dntShim.Deno !== "undefined" && dntShim.Deno.env?.get) {
+        return dntShim.Deno.env.get(key);
+    }
+    // Node.js / Bun
+    const nodeProcess = dntShim.dntGlobalThis.process;
+    return nodeProcess?.env?.[key];
+}
+import { getTraceContext } from "./tracing.js";
+// Log level configuration
+const MIN_LOG_LEVEL = (() => {
+    const level = getEnv("LOG_LEVEL")?.toLowerCase();
+    if (level === "debug" || level === "info" || level === "warn" || level === "error") {
+        return level;
+    }
+    return "info"; // Default: suppress debug logs
+})();
+const TAG_WIDTH = 10;
+const LEVEL_GLYPHS = {
+    debug: "·",
+    info: "●",
+    warn: "▲",
+    error: "✖",
+};
+const ANSI = {
+    reset: "\u001b[0m",
+    dim: "\u001b[2m",
+    gray: "\u001b[90m",
+    red: "\u001b[31m",
+    green: "\u001b[32m",
+    yellow: "\u001b[33m",
+    cyan: "\u001b[36m",
+};
+const LEVEL_COLORS = {
+    debug: ANSI.gray,
+    info: ANSI.green,
+    warn: ANSI.yellow,
+    error: ANSI.red,
+};
+function padTag(tag) {
+    if (tag.length >= TAG_WIDTH)
+        return tag.slice(0, TAG_WIDTH);
+    return tag.padEnd(TAG_WIDTH, " ");
+}
+function formatTimestamp(date = new Date()) {
+    const pad = (value) => String(value).padStart(2, "0");
+    return `${pad(date.getHours())}:${pad(date.getMinutes())}:${pad(date.getSeconds())}`;
+}
+function isTty() {
+    try {
+        if (typeof dntShim.Deno !== "undefined" && typeof dntShim.Deno.stdout?.isTerminal === "function") {
+            return dntShim.Deno.stdout.isTerminal();
+        }
+    }
+    catch {
+        // ignore
+    }
+    const stdout = dntShim.dntGlobalThis.process?.stdout;
+    return stdout?.isTTY ?? false;
+}
+function shouldUseColor() {
+    const noColor = getEnv("NO_COLOR");
+    const forceColor = getEnv("FORCE_COLOR");
+    const logColor = getEnv("LOG_COLOR");
+    if (forceColor === "0" || logColor === "0")
+        return false;
+    if (noColor !== undefined)
+        return false;
+    if (getEnv("CI") !== undefined)
+        return false;
+    if (forceColor || logColor === "1" || logColor === "true")
+        return true;
+    return isTty();
+}
+function colorize(text, color, enable) {
+    if (!enable || !color)
+        return text;
+    return `${color}${text}${ANSI.reset}`;
+}
+function normalizeText(value) {
+    return value.replace(/\s+/g, " ");
+}
+function truncateText(value, maxLength = 80) {
+    if (value.length <= maxLength)
+        return value;
+    return `${value.slice(0, maxLength - 1)}…`;
+}
+function formatValue(value) {
+    if (typeof value === "string") {
+        const trimmed = normalizeText(value);
+        if (/\s/.test(trimmed))
+            return JSON.stringify(trimmed);
+        return trimmed;
+    }
+    if (typeof value === "number" || typeof value === "boolean")
+        return String(value);
+    if (value === null)
+        return "null";
+    if (value === undefined)
+        return "undefined";
+    let text = "";
+    try {
+        text = JSON.stringify(value) ?? String(value);
+    }
+    catch {
+        text = String(value);
+    }
+    return truncateText(normalizeText(text));
+}
+function formatErrorText(error) {
+    if (!error)
+        return "";
+    const text = `${error.name}: ${error.message}`;
+    return truncateText(normalizeText(text), 120);
+}
+// Prefix width: timestamp(8) + gap(2) + tag(10) + space(1) + glyph(1) + space(1) = 23
+const PREFIX_WIDTH = 23;
+function formatContextText(context, error, enableColor) {
+    const entries = Object.entries(context).map(([key, value]) => `${key}=${formatValue(value)}`);
+    if (error) {
+        entries.push(`err=${formatErrorText(error)}`);
+    }
+    if (entries.length === 0)
+        return "";
+    const text = entries.join(" ");
+    // Put context on new line, indented to align with message
+    const indent = " ".repeat(PREFIX_WIDTH);
+    return `\n${indent}${colorize(text, ANSI.dim, enableColor)}`;
+}
+function formatTextLine(level, message, context, error) {
+    const enableColor = shouldUseColor();
+    const timestamp = colorize(formatTimestamp(), ANSI.dim, enableColor);
+    const tag = colorize(padTag("PROXY"), ANSI.cyan, enableColor);
+    const glyph = colorize(LEVEL_GLYPHS[level], LEVEL_COLORS[level], enableColor);
+    const contextText = formatContextText(context ?? {}, error, enableColor);
+    return `${timestamp}  ${tag} ${glyph} ${message}${contextText}`;
+}
+function isProduction() {
+    return getEnv("NODE_ENV") === "production";
+}
+function getLogFormat() {
+    const format = getEnv("LOG_FORMAT");
+    if (format === "json" || format === "text")
+        return format;
+    return isProduction() ? "json" : "text";
+}
+const LOG_LEVEL_ORDER = {
+    debug: 0,
+    info: 1,
+    warn: 2,
+    error: 3,
+};
+function serializeError(err) {
+    if (err instanceof Error) {
+        return { name: err.name, message: err.message, stack: err.stack };
+    }
+    if (err !== undefined && err !== null) {
+        return { name: "UnknownError", message: String(err) };
+    }
+    return undefined;
+}
+class ProxyLogger {
+    format = getLogFormat();
+    log(level, message, context, error) {
+        // Filter by minimum log level
+        if (LOG_LEVEL_ORDER[level] < LOG_LEVEL_ORDER[MIN_LOG_LEVEL]) {
+            return;
+        }
+        if (this.format === "json") {
+            const traceCtx = getTraceContext();
+            const entry = {
+                timestamp: new Date().toISOString(),
+                level,
+                service: "proxy",
+                message,
+                ...(traceCtx.traceId && { traceId: traceCtx.traceId, spanId: traceCtx.spanId }),
+            };
+            if (context && Object.keys(context).length > 0) {
+                entry.context = context;
+            }
+            const serializedError = serializeError(error);
+            if (serializedError) {
+                entry.error = serializedError;
+            }
+            console.log(JSON.stringify(entry));
+        }
+        else {
+            const serializedError = serializeError(error);
+            console.log(formatTextLine(level, message, context, serializedError));
+        }
+    }
+    debug(message, context) {
+        this.log("debug", message, context);
+    }
+    info(message, context) {
+        this.log("info", message, context);
+    }
+    warn(message, context) {
+        this.log("warn", message, context);
+    }
+    error(message, contextOrError, error) {
+        if (contextOrError instanceof Error || error !== undefined) {
+            const ctx = contextOrError instanceof Error
+                ? undefined
+                : contextOrError;
+            const err = contextOrError instanceof Error ? contextOrError : error;
+            this.log("error", message, ctx, err);
+        }
+        else {
+            this.log("error", message, contextOrError);
+        }
+    }
+    /**
+     * Create a child logger with bound context.
+     */
+    child(context) {
+        return new ChildProxyLogger(this, context);
+    }
+}
+class ChildProxyLogger {
+    parent;
+    boundContext;
+    constructor(parent, boundContext) {
+        this.parent = parent;
+        this.boundContext = boundContext;
+    }
+    merge(ctx) {
+        return { ...this.boundContext, ...ctx };
+    }
+    debug(message, context) {
+        this.parent.debug(message, this.merge(context));
+    }
+    info(message, context) {
+        this.parent.info(message, this.merge(context));
+    }
+    warn(message, context) {
+        this.parent.warn(message, this.merge(context));
+    }
+    error(message, contextOrError, error) {
+        if (contextOrError instanceof Error || error !== undefined) {
+            const ctx = contextOrError instanceof Error
+                ? this.boundContext
+                : this.merge(contextOrError);
+            const err = contextOrError instanceof Error ? contextOrError : error;
+            this.parent.error(message, ctx, err);
+        }
+        else {
+            this.parent.error(message, this.merge(contextOrError));
+        }
+    }
+    child(context) {
+        return new ChildProxyLogger(this.parent, this.merge(context));
+    }
+}
+export const proxyLogger = new ProxyLogger();

package/esm/proxy/oauth-client.d.ts

@@ -0,0 +1,15 @@
+export interface TokenResponse {
+    access_token: string;
+    token_type: "Bearer";
+    expires_in?: number;
+}
+export interface OAuthTokenConfig {
+    apiBaseUrl: string;
+    clientId: string;
+    clientSecret: string;
+    projectSlug?: string;
+    customDomain?: string;
+    timeoutMs?: number;
+}
+export declare function fetchOAuthToken(config: OAuthTokenConfig): Promise<TokenResponse>;
+//# sourceMappingURL=oauth-client.d.ts.map

package/esm/proxy/oauth-client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-client.d.ts","sourceRoot":"","sources":["../../src/proxy/oauth-client.ts"],"names":[],"mappings":"AAUA,MAAM,WAAW,aAAa;IAC5B,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,QAAQ,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,gBAAgB;IAC/B,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,wBAAsB,eAAe,CACnC,MAAM,EAAE,gBAAgB,GACvB,OAAO,CAAC,aAAa,CAAC,CA+DxB"}

package/esm/proxy/oauth-client.js

@@ -0,0 +1,52 @@
+/**
+ * OAuth Client for Veryfront API - client credentials flow.
+ */
+import * as dntShim from "../_dnt.shims.js";
+import { injectContext, ProxySpanNames, withSpan } from "./tracing.js";
+const DEFAULT_TIMEOUT_MS = 10000;
+export async function fetchOAuthToken(config) {
+    return await withSpan(ProxySpanNames.OAUTH_TOKEN_REQUEST, async () => {
+        const url = `${config.apiBaseUrl}/auth/token`;
+        const urlObj = new URL(url);
+        const controller = new AbortController();
+        const timeoutId = dntShim.setTimeout(() => controller.abort(), config.timeoutMs ?? DEFAULT_TIMEOUT_MS);
+        try {
+            const headers = new dntShim.Headers({ "Content-Type": "application/json" });
+            injectContext(headers);
+            const response = await withSpan(ProxySpanNames.HTTP_CLIENT_FETCH, () => dntShim.fetch(url, {
+                method: "POST",
+                headers,
+                body: JSON.stringify({
+                    grant_type: "client_credentials",
+                    client_id: config.clientId,
+                    client_secret: config.clientSecret,
+                    ...(config.projectSlug && { project_slug: config.projectSlug }),
+                    ...(config.customDomain && { custom_domain: config.customDomain }),
+                }),
+                signal: controller.signal,
+            }), {
+                "http.method": "POST",
+                "http.url": url,
+                "http.host": urlObj.host,
+                "oauth.grant_type": "client_credentials",
+            });
+            if (!response.ok) {
+                const errorText = await response.text().catch(() => "Unknown error");
+                throw new Error(`OAuth token request failed: ${response.status} - ${errorText}`);
+            }
+            return response.json();
+        }
+        catch (error) {
+            if (error instanceof Error && error.name === "AbortError") {
+                throw new Error(`OAuth token request timed out after ${config.timeoutMs ?? DEFAULT_TIMEOUT_MS}ms`);
+            }
+            throw error;
+        }
+        finally {
+            clearTimeout(timeoutId);
+        }
+    }, {
+        "oauth.project_slug": config.projectSlug || "",
+        "oauth.custom_domain": config.customDomain || "",
+    });
+}

package/esm/proxy/token-manager.d.ts

@@ -0,0 +1,59 @@
+/**
+ * Token Manager for OAuth Token Caching
+ *
+ * Manages OAuth tokens with automatic refresh before expiry.
+ * Caches tokens per scope (preview/production) and project.
+ * Supports pluggable cache backends (memory, Redis).
+ */
+import type { TokenCache } from "./cache/types.js";
+export type TokenScope = "preview" | "production";
+export interface OAuthConfig {
+    apiBaseUrl: string;
+    clientId: string;
+    clientSecret: string;
+    previewClientId: string;
+    previewClientSecret: string;
+}
+export interface TokenManagerOptions {
+    cache?: TokenCache;
+    refreshBuffer?: number;
+}
+export declare class TokenManager {
+    private config;
+    private cache;
+    private pendingRequests;
+    private refreshBuffer;
+    constructor(config: OAuthConfig, options?: TokenManagerOptions);
+    /**
+     * Get a valid token for the given scope and project.
+     * Returns cached token if valid, otherwise fetches a new one.
+     * Can use either projectSlug or customDomain to identify the project.
+     */
+    getToken(scope: TokenScope, projectSlug?: string, customDomain?: string): Promise<string>;
+    /**
+     * Invalidate a cached token, forcing refresh on next request.
+     */
+    invalidateToken(scope: TokenScope, projectSlug?: string): Promise<void>;
+    /**
+     * Clear all cached tokens.
+     */
+    clearCache(): Promise<void>;
+    /**
+     * Get cache statistics.
+     */
+    getStats(): Promise<{
+        hits: number;
+        misses: number;
+        size: number;
+        type: string;
+    }>;
+    /**
+     * Close the cache connection (for Redis cleanup).
+     */
+    close(): Promise<void>;
+    private getCacheKey;
+    private isTokenValid;
+    private fetchAndCacheToken;
+    private calculateExpiresAt;
+}
+//# sourceMappingURL=token-manager.d.ts.map

package/esm/proxy/token-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"token-manager.d.ts","sourceRoot":"","sources":["../../src/proxy/token-manager.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,KAAK,EAAE,UAAU,EAAmB,MAAM,kBAAkB,CAAC;AAIpE,MAAM,MAAM,UAAU,GAAG,SAAS,GAAG,YAAY,CAAC;AAElD,MAAM,WAAW,WAAW;IAC1B,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,mBAAmB,EAAE,MAAM,CAAC;CAC7B;AAED,MAAM,WAAW,mBAAmB;IAClC,KAAK,CAAC,EAAE,UAAU,CAAC;IACnB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,qBAAa,YAAY;IAMrB,OAAO,CAAC,MAAM;IALhB,OAAO,CAAC,KAAK,CAAa;IAC1B,OAAO,CAAC,eAAe,CAAsC;IAC7D,OAAO,CAAC,aAAa,CAAS;gBAGpB,MAAM,EAAE,WAAW,EAC3B,OAAO,GAAE,mBAAwB;IAMnC;;;;OAIG;IACG,QAAQ,CACZ,KAAK,EAAE,UAAU,EACjB,WAAW,CAAC,EAAE,MAAM,EACpB,YAAY,CAAC,EAAE,MAAM,GACpB,OAAO,CAAC,MAAM,CAAC;IAmClB;;OAEG;IACG,eAAe,CAAC,KAAK,EAAE,UAAU,EAAE,WAAW,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAK7E;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAIjC;;OAEG;IACG,QAAQ,IAAI,OAAO,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC;IAIvF;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAI5B,OAAO,CAAC,WAAW;IAInB,OAAO,CAAC,YAAY;YAIN,kBAAkB;IA8BhC,OAAO,CAAC,kBAAkB;CAqB3B"}

package/esm/proxy/token-manager.js

@@ -0,0 +1,125 @@
+/**
+ * Token Manager for OAuth Token Caching
+ *
+ * Manages OAuth tokens with automatic refresh before expiry.
+ * Caches tokens per scope (preview/production) and project.
+ * Supports pluggable cache backends (memory, Redis).
+ */
+import { fetchOAuthToken } from "./oauth-client.js";
+import { MemoryCache } from "./cache/memory-cache.js";
+import { ProxySpanNames, withSpan } from "./tracing.js";
+export class TokenManager {
+    config;
+    cache;
+    pendingRequests = new Map();
+    refreshBuffer;
+    constructor(config, options = {}) {
+        this.config = config;
+        this.cache = options.cache ?? new MemoryCache();
+        this.refreshBuffer = options.refreshBuffer ?? 2 * 60 * 1000; // 2 minutes before expiry
+    }
+    /**
+     * Get a valid token for the given scope and project.
+     * Returns cached token if valid, otherwise fetches a new one.
+     * Can use either projectSlug or customDomain to identify the project.
+     */
+    async getToken(scope, projectSlug, customDomain) {
+        return await withSpan(ProxySpanNames.PROXY_TOKEN_FETCH, async () => {
+            const cacheKey = this.getCacheKey(scope, projectSlug || customDomain);
+            const cached = await this.cache.get(cacheKey);
+            if (cached && this.isTokenValid(cached)) {
+                return cached.token;
+            }
+            // Prevent duplicate concurrent requests for the same token
+            const pending = this.pendingRequests.get(cacheKey);
+            if (pending) {
+                return pending;
+            }
+            const tokenPromise = this.fetchAndCacheToken(scope, projectSlug, customDomain);
+            this.pendingRequests.set(cacheKey, tokenPromise);
+            try {
+                return await tokenPromise;
+            }
+            finally {
+                this.pendingRequests.delete(cacheKey);
+            }
+        }, {
+            "proxy.token_scope": scope,
+            "proxy.project_slug": projectSlug || "",
+            "proxy.custom_domain": customDomain || "",
+            "proxy.cache_key": this.getCacheKey(scope, projectSlug || customDomain),
+        });
+    }
+    /**
+     * Invalidate a cached token, forcing refresh on next request.
+     */
+    async invalidateToken(scope, projectSlug) {
+        const cacheKey = this.getCacheKey(scope, projectSlug);
+        await this.cache.delete(cacheKey);
+    }
+    /**
+     * Clear all cached tokens.
+     */
+    async clearCache() {
+        await this.cache.clear();
+    }
+    /**
+     * Get cache statistics.
+     */
+    async getStats() {
+        return await this.cache.stats();
+    }
+    /**
+     * Close the cache connection (for Redis cleanup).
+     */
+    async close() {
+        await this.cache.close();
+    }
+    getCacheKey(scope, projectSlug) {
+        return `${scope}:${projectSlug || "global"}`;
+    }
+    isTokenValid(cached) {
+        return Date.now() + this.refreshBuffer < cached.expiresAt;
+    }
+    async fetchAndCacheToken(scope, projectSlug, customDomain) {
+        const clientId = scope === "preview" ? this.config.previewClientId : this.config.clientId;
+        const clientSecret = scope === "preview"
+            ? this.config.previewClientSecret
+            : this.config.clientSecret;
+        const response = await fetchOAuthToken({
+            apiBaseUrl: this.config.apiBaseUrl,
+            clientId,
+            clientSecret,
+            projectSlug,
+            customDomain,
+        });
+        const expiresAt = this.calculateExpiresAt(response);
+        await this.cache.set(this.getCacheKey(scope, projectSlug || customDomain), {
+            token: response.access_token,
+            expiresAt,
+            scope,
+            projectSlug: projectSlug || customDomain,
+        });
+        return response.access_token;
+    }
+    calculateExpiresAt(response) {
+        if (response.expires_in) {
+            return Date.now() + response.expires_in * 1000;
+        }
+        // Try to decode JWT and get exp claim
+        try {
+            const [, payload] = response.access_token.split(".");
+            if (payload) {
+                const decoded = JSON.parse(atob(payload));
+                if (decoded.exp) {
+                    return decoded.exp * 1000;
+                }
+            }
+        }
+        catch {
+            // Fall through to default
+        }
+        // Default to 1 hour
+        return Date.now() + 3600 * 1000;
+    }
+}

package/esm/proxy/tracing.d.ts

@@ -0,0 +1,39 @@
+/**
+ * OpenTelemetry OTLP tracing for proxy.
+ * Env: OTEL_TRACES_ENABLED, OTEL_SERVICE_NAME, OTEL_EXPORTER_OTLP_ENDPOINT, OTEL_EXPORTER_OTLP_HEADERS
+ */
+import * as dntShim from "../_dnt.shims.js";
+import type { Context, Span } from "@opentelemetry/api";
+export declare function initializeOTLP(): Promise<void>;
+export declare function shutdownOTLP(): Promise<void>;
+export declare function isOTLPEnabled(): boolean;
+export declare function extractContext(headers: dntShim.Headers): Context | undefined;
+export declare function injectContext(headers: dntShim.Headers): void;
+export declare function startServerSpan(method: string, path: string, parentContext?: Context): {
+    span: Span;
+    context: Context;
+} | null;
+export declare function endSpan(span: Span | undefined, statusCode: number, error?: Error): void;
+export declare function withContext<T>(spanContext: Context, fn: () => Promise<T>): Promise<T>;
+export declare function getTraceContext(): {
+    traceId?: string;
+    spanId?: string;
+};
+/**
+ * Span names for proxy tracing.
+ */
+export declare const ProxySpanNames: {
+    readonly PROXY_REQUEST: "proxy.request";
+    readonly PROXY_PROCESS: "proxy.process";
+    readonly PROXY_TOKEN_FETCH: "proxy.token_fetch";
+    readonly PROXY_DOMAIN_LOOKUP: "proxy.domain_lookup";
+    readonly OAUTH_TOKEN_REQUEST: "oauth.token_request";
+    readonly HTTP_CLIENT_FETCH: "http.client.fetch";
+};
+/**
+ * Execute an async function within a tracing span.
+ * If tracing is disabled, executes the function directly.
+ */
+export declare function withSpan<T>(name: string, fn: () => Promise<T>, attributes?: Record<string, string | number | boolean>): Promise<T>;
+export { initializeOTLP as initializeOTLPWithApis };
+//# sourceMappingURL=tracing.d.ts.map

package/esm/proxy/tracing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tracing.d.ts","sourceRoot":"","sources":["../../src/proxy/tracing.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,OAAO,KAAK,OAAO,MAAM,kBAAkB,CAAC;AAG5C,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAU,MAAM,oBAAoB,CAAC;AAsDhE,wBAAsB,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC,CAiDpD;AAED,wBAAsB,YAAY,IAAI,OAAO,CAAC,IAAI,CAAC,CASlD;AAED,wBAAgB,aAAa,IAAI,OAAO,CAEvC;AAED,wBAAgB,cAAc,CAAC,OAAO,EAAE,OAAO,CAAC,OAAO,GAAG,OAAO,GAAG,SAAS,CAS5E;AAED,wBAAgB,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,OAAO,GAAG,IAAI,CAS5D;AAED,wBAAgB,eAAe,CAC7B,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,EACZ,aAAa,CAAC,EAAE,OAAO,GACtB;IAAE,IAAI,EAAE,IAAI,CAAC;IAAC,OAAO,EAAE,OAAO,CAAA;CAAE,GAAG,IAAI,CAKzC;AAED,wBAAgB,OAAO,CAAC,IAAI,EAAE,IAAI,GAAG,SAAS,EAAE,UAAU,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,KAAK,GAAG,IAAI,CAUvF;AAED,wBAAgB,WAAW,CAAC,CAAC,EAAE,WAAW,EAAE,OAAO,EAAE,EAAE,EAAE,MAAM,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAGrF;AAED,wBAAgB,eAAe,IAAI;IAAE,OAAO,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CAAE,CAMvE;AAED;;GAEG;AACH,eAAO,MAAM,cAAc;;;;;;;CAOjB,CAAC;AAEX;;;GAGG;AACH,wBAAsB,QAAQ,CAAC,CAAC,EAC9B,IAAI,EAAE,MAAM,EACZ,EAAE,EAAE,MAAM,OAAO,CAAC,CAAC,CAAC,EACpB,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC,GACrD,OAAO,CAAC,CAAC,CAAC,CA6BZ;AAED,OAAO,EAAE,cAAc,IAAI,sBAAsB,EAAE,CAAC"}