wcz-test 7.2.0 → 7.2.2

package/dist/{msalClient-Cem8ZXIU.js → msalClient-l-DV8PoB.js}

@@ -1,7 +1,8 @@
 import { PublicClientApplication as r, NavigationClient as l, EventType as p } from "@azure/msal-browser";
 import { createClientOnlyFn as s } from "@tanstack/react-start";
 import { scopes as u, permissions as d } from "virtual:wcz-layout";
-import { d as g, c as a } from "./utils-BXxJ2sNo.js";
+import { a } from "./env-Dy8Ynqa-.js";
+import { d as m } from "./utils-BGMLqA26.js";
 const t = new r({
   auth: {
     clientId: a.VITE_ENTRA_CLIENT_ID,
@@ -16,7 +17,7 @@ t.initialize().then(() => {
     }
   });
 });
-class y extends l {
+class f extends l {
   navigate;
   constructor(e) {
     super(), this.navigate = e;
@@ -34,7 +35,7 @@ class y extends l {
 const h = s(() => {
   const o = t.getActiveAccount();
   if (!o?.idToken) throw t.loginRedirect();
-  const e = g(o.idToken);
+  const e = m(o.idToken);
   return {
     id: e.sub,
     name: e.name.split("/")[0],
@@ -44,7 +45,7 @@ const h = s(() => {
     employeeId: e.employeeId || "",
     hasPermission: (n) => d[n].some((i) => (e.groups ?? []).includes(i))
   };
-}), f = s(async (o) => {
+}), C = s(async (o) => {
   const e = t.getActiveAccount();
   if (!e) throw new Error("No active account. User not signed in.");
   const n = u[o];
@@ -67,9 +68,9 @@ const h = s(() => {
   }
 });
 export {
-  y as C,
+  f as C,
   h as a,
-  f as g,
+  C as g,
   t as p
 };
-//# sourceMappingURL=msalClient-Cem8ZXIU.js.map
+//# sourceMappingURL=msalClient-l-DV8PoB.js.map

package/dist/{msalClient-Cem8ZXIU.js.map → msalClient-l-DV8PoB.js.map}

@@ -1 +1 @@
-{"version":3,"file":"msalClient-Cem8ZXIU.js","sources":["../src/lib/auth/msalClient.ts"],"sourcesContent":["import type { AuthenticationResult, EventMessage, NavigationOptions } from \"@azure/msal-browser\";\r\nimport { EventType, NavigationClient, PublicClientApplication } from \"@azure/msal-browser\";\r\nimport type { UseNavigateResult } from \"@tanstack/react-router\";\r\nimport { createClientOnlyFn } from \"@tanstack/react-start\";\r\nimport { scopes as definedScopes, permissions } from \"virtual:wcz-layout\";\r\nimport { clientEnv } from \"~/env\";\r\nimport type { User } from \"~/models/User\";\r\nimport { decodeJwt } from \"~/lib/utils\";\r\n\r\nexport const pca = new PublicClientApplication({\r\n    auth: {\r\n        clientId: clientEnv.VITE_ENTRA_CLIENT_ID,\r\n        authority: `https://login.microsoftonline.com/${clientEnv.VITE_ENTRA_TENANT_ID}`,\r\n    },\r\n});\r\n\r\npca.initialize().then(() => {\r\n    if (!pca.getActiveAccount() && pca.getAllAccounts().length > 0) {\r\n        pca.setActiveAccount(pca.getAllAccounts()[0]);\r\n    }\r\n\r\n    pca.addEventCallback((event: EventMessage) => {\r\n        if (event.eventType === EventType.LOGIN_SUCCESS && event.payload) {\r\n            const payload = event.payload as AuthenticationResult;\r\n            const account = payload.account;\r\n            pca.setActiveAccount(account);\r\n        }\r\n    });\r\n});\r\n\r\nexport class CustomNavigationClient extends NavigationClient {\r\n    private readonly navigate: UseNavigateResult<string>;\r\n\r\n    constructor(navigate: UseNavigateResult<string>) {\r\n        super();\r\n        this.navigate = navigate;\r\n    }\r\n\r\n    async navigateInternal(url: string, options: NavigationOptions) {\r\n        const relativePath = url.replace(location.origin, \"\");\r\n        if (options.noHistory) {\r\n            this.navigate({ to: relativePath, replace: true });\r\n        } else {\r\n            this.navigate({ to: relativePath });\r\n        }\r\n\r\n        return false;\r\n    }\r\n}\r\n\r\n/**\r\n * User Context: Get parsed user details from the active account's ID token\r\n * Use when: Validating permissions or displaying user info in the client\r\n */\r\nexport const getUser = createClientOnlyFn((): User => {\r\n    const account = pca.getActiveAccount();\r\n    if (!account?.idToken) throw pca.loginRedirect();\r\n    const idTokenPayload = decodeJwt(account.idToken);\r\n\r\n    return {\r\n        id: idTokenPayload.sub,\r\n        name: idTokenPayload.name.split(\"/\")[0],\r\n        email: idTokenPayload.preferred_username.toLowerCase(),\r\n        groups: idTokenPayload.groups ?? [],\r\n        department: idTokenPayload.department || \"\",\r\n        employeeId: idTokenPayload.employeeId || \"\",\r\n        hasPermission: (key: keyof typeof permissions) => {\r\n            const allowedGroups = permissions[key];\r\n            return allowedGroups.some(k => (idTokenPayload.groups ?? []).includes(k));\r\n        }\r\n    };\r\n});\r\n\r\n/**\r\n * Token Acquisition: Get authenticated access token.\r\n * Use when: Making API calls from the browser to secured endpoints\r\n */\r\nexport const getAccessToken = createClientOnlyFn(\r\n    async (scopeKey: keyof typeof definedScopes) => {\r\n        const account = pca.getActiveAccount();\r\n        if (!account) throw new Error(\"No active account. User not signed in.\");\r\n\r\n        const scopes = definedScopes[scopeKey];\r\n\r\n        try {\r\n            const { accessToken } = await pca.acquireTokenSilent({ scopes, account });\r\n            return accessToken;\r\n        } catch {\r\n            const { accessToken } = await pca.acquireTokenPopup({ scopes, account });\r\n            return accessToken;\r\n        }\r\n    }\r\n);\r\n"],"names":["pca","PublicClientApplication","auth","clientId","clientEnv","VITE_ENTRA_CLIENT_ID","authority","VITE_ENTRA_TENANT_ID","initialize","then","getActiveAccount","getAllAccounts","length","setActiveAccount","addEventCallback","event","eventType","EventType","LOGIN_SUCCESS","payload","account","CustomNavigationClient","NavigationClient","navigate","constructor","navigateInternal","url","options","relativePath","replace","location","origin","noHistory","to","getUser","createClientOnlyFn","idToken","loginRedirect","idTokenPayload","decodeJwt","id","sub","name","split","email","preferred_username","toLowerCase","groups","department","employeeId","hasPermission","key","permissions","some","k","includes","getAccessToken","scopeKey","Error","scopes","definedScopes","accessToken","acquireTokenSilent","acquireTokenPopup"],"mappings":";;;;AASO,MAAMA,IAAM,IAAIC,EAAwB;AAAA,EAC3CC,MAAM;AAAA,IACFC,UAAUC,EAAUC;AAAAA,IACpBC,WAAW,qCAAqCF,EAAUG,oBAAoB;AAAA,EAAA;AAEtF,CAAC;AAEDP,EAAIQ,WAAAA,EAAaC,KAAK,MAAM;AACxB,EAAI,CAACT,EAAIU,iBAAAA,KAAsBV,EAAIW,eAAAA,EAAiBC,SAAS,KACzDZ,EAAIa,iBAAiBb,EAAIW,eAAAA,EAAiB,CAAC,CAAC,GAGhDX,EAAIc,iBAAiB,CAACC,MAAwB;AAC1C,QAAIA,EAAMC,cAAcC,EAAUC,iBAAiBH,EAAMI,SAAS;AAE9D,YAAMC,IADUL,EAAMI,QACEC;AACxBpB,MAAAA,EAAIa,iBAAiBO,CAAO;AAAA,IAChC;AAAA,EACJ,CAAC;AACL,CAAC;AAEM,MAAMC,UAA+BC,EAAiB;AAAA,EACxCC;AAAAA,EAEjBC,YAAYD,GAAqC;AAC7C,UAAA,GACA,KAAKA,WAAWA;AAAAA,EACpB;AAAA,EAEA,MAAME,iBAAiBC,GAAaC,GAA4B;AAC5D,UAAMC,IAAeF,EAAIG,QAAQC,SAASC,QAAQ,EAAE;AACpD,WAAIJ,EAAQK,YACR,KAAKT,SAAS;AAAA,MAAEU,IAAIL;AAAAA,MAAcC,SAAS;AAAA,IAAA,CAAM,IAEjD,KAAKN,SAAS;AAAA,MAAEU,IAAIL;AAAAA,IAAAA,CAAc,GAG/B;AAAA,EACX;AACJ;AAMO,MAAMM,IAAUC,EAAmB,MAAY;AAClD,QAAMf,IAAUpB,EAAIU,iBAAAA;AACpB,MAAI,CAACU,GAASgB,QAAS,OAAMpC,EAAIqC,cAAAA;AACjC,QAAMC,IAAiBC,EAAUnB,EAAQgB,OAAO;AAEhD,SAAO;AAAA,IACHI,IAAIF,EAAeG;AAAAA,IACnBC,MAAMJ,EAAeI,KAAKC,MAAM,GAAG,EAAE,CAAC;AAAA,IACtCC,OAAON,EAAeO,mBAAmBC,YAAAA;AAAAA,IACzCC,QAAQT,EAAeS,UAAU,CAAA;AAAA,IACjCC,YAAYV,EAAeU,cAAc;AAAA,IACzCC,YAAYX,EAAeW,cAAc;AAAA,IACzCC,eAAeA,CAACC,MACUC,EAAYD,CAAG,EAChBE,KAAKC,CAAAA,OAAMhB,EAAeS,UAAU,CAAA,GAAIQ,SAASD,CAAC,CAAC;AAAA,EAC5E;AAER,CAAC,GAMYE,IAAiBrB,EAC1B,OAAOsB,MAAyC;AAC5C,QAAMrC,IAAUpB,EAAIU,iBAAAA;AACpB,MAAI,CAACU,EAAS,OAAM,IAAIsC,MAAM,wCAAwC;AAEtE,QAAMC,IAASC,EAAcH,CAAQ;AAErC,MAAI;AACA,UAAM;AAAA,MAAEI,aAAAA;AAAAA,IAAAA,IAAgB,MAAM7D,EAAI8D,mBAAmB;AAAA,MAAA,QAAEH;AAAAA,MAAQvC,SAAAA;AAAAA,IAAAA,CAAS;AACxE,WAAOyC;AAAAA,EACX,QAAQ;AACJ,UAAM;AAAA,MAAEA,aAAAA;AAAAA,IAAAA,IAAgB,MAAM7D,EAAI+D,kBAAkB;AAAA,MAAA,QAAEJ;AAAAA,MAAQvC,SAAAA;AAAAA,IAAAA,CAAS;AACvE,WAAOyC;AAAAA,EACX;AACJ,CACJ;"}
+{"version":3,"file":"msalClient-l-DV8PoB.js","sources":["../src/lib/auth/msalClient.ts"],"sourcesContent":["import type { AuthenticationResult, EventMessage, NavigationOptions } from \"@azure/msal-browser\";\r\nimport { EventType, NavigationClient, PublicClientApplication } from \"@azure/msal-browser\";\r\nimport type { UseNavigateResult } from \"@tanstack/react-router\";\r\nimport { createClientOnlyFn } from \"@tanstack/react-start\";\r\nimport { scopes as definedScopes, permissions } from \"virtual:wcz-layout\";\r\nimport { clientEnv } from \"~/env\";\r\nimport type { User } from \"~/models/User\";\r\nimport { decodeJwt } from \"~/lib/utils\";\r\n\r\nexport const pca = new PublicClientApplication({\r\n    auth: {\r\n        clientId: clientEnv.VITE_ENTRA_CLIENT_ID,\r\n        authority: `https://login.microsoftonline.com/${clientEnv.VITE_ENTRA_TENANT_ID}`,\r\n    },\r\n});\r\n\r\npca.initialize().then(() => {\r\n    if (!pca.getActiveAccount() && pca.getAllAccounts().length > 0) {\r\n        pca.setActiveAccount(pca.getAllAccounts()[0]);\r\n    }\r\n\r\n    pca.addEventCallback((event: EventMessage) => {\r\n        if (event.eventType === EventType.LOGIN_SUCCESS && event.payload) {\r\n            const payload = event.payload as AuthenticationResult;\r\n            const account = payload.account;\r\n            pca.setActiveAccount(account);\r\n        }\r\n    });\r\n});\r\n\r\nexport class CustomNavigationClient extends NavigationClient {\r\n    private readonly navigate: UseNavigateResult<string>;\r\n\r\n    constructor(navigate: UseNavigateResult<string>) {\r\n        super();\r\n        this.navigate = navigate;\r\n    }\r\n\r\n    async navigateInternal(url: string, options: NavigationOptions) {\r\n        const relativePath = url.replace(location.origin, \"\");\r\n        if (options.noHistory) {\r\n            this.navigate({ to: relativePath, replace: true });\r\n        } else {\r\n            this.navigate({ to: relativePath });\r\n        }\r\n\r\n        return false;\r\n    }\r\n}\r\n\r\n/**\r\n * User Context: Get parsed user details from the active account's ID token\r\n * Use when: Validating permissions or displaying user info in the client\r\n */\r\nexport const getUser = createClientOnlyFn((): User => {\r\n    const account = pca.getActiveAccount();\r\n    if (!account?.idToken) throw pca.loginRedirect();\r\n    const idTokenPayload = decodeJwt(account.idToken);\r\n\r\n    return {\r\n        id: idTokenPayload.sub,\r\n        name: idTokenPayload.name.split(\"/\")[0],\r\n        email: idTokenPayload.preferred_username.toLowerCase(),\r\n        groups: idTokenPayload.groups ?? [],\r\n        department: idTokenPayload.department || \"\",\r\n        employeeId: idTokenPayload.employeeId || \"\",\r\n        hasPermission: (key: keyof typeof permissions) => {\r\n            const allowedGroups = permissions[key];\r\n            return allowedGroups.some(k => (idTokenPayload.groups ?? []).includes(k));\r\n        }\r\n    };\r\n});\r\n\r\n/**\r\n * Token Acquisition: Get authenticated access token.\r\n * Use when: Making API calls from the browser to secured endpoints\r\n */\r\nexport const getAccessToken = createClientOnlyFn(\r\n    async (scopeKey: keyof typeof definedScopes) => {\r\n        const account = pca.getActiveAccount();\r\n        if (!account) throw new Error(\"No active account. User not signed in.\");\r\n\r\n        const scopes = definedScopes[scopeKey];\r\n\r\n        try {\r\n            const { accessToken } = await pca.acquireTokenSilent({ scopes, account });\r\n            return accessToken;\r\n        } catch {\r\n            const { accessToken } = await pca.acquireTokenPopup({ scopes, account });\r\n            return accessToken;\r\n        }\r\n    }\r\n);\r\n"],"names":["pca","PublicClientApplication","auth","clientId","clientEnv","VITE_ENTRA_CLIENT_ID","authority","VITE_ENTRA_TENANT_ID","initialize","then","getActiveAccount","getAllAccounts","length","setActiveAccount","addEventCallback","event","eventType","EventType","LOGIN_SUCCESS","payload","account","CustomNavigationClient","NavigationClient","navigate","constructor","navigateInternal","url","options","relativePath","replace","location","origin","noHistory","to","getUser","createClientOnlyFn","idToken","loginRedirect","idTokenPayload","decodeJwt","id","sub","name","split","email","preferred_username","toLowerCase","groups","department","employeeId","hasPermission","key","permissions","some","k","includes","getAccessToken","scopeKey","Error","scopes","definedScopes","accessToken","acquireTokenSilent","acquireTokenPopup"],"mappings":";;;;;AASO,MAAMA,IAAM,IAAIC,EAAwB;AAAA,EAC3CC,MAAM;AAAA,IACFC,UAAUC,EAAUC;AAAAA,IACpBC,WAAW,qCAAqCF,EAAUG,oBAAoB;AAAA,EAAA;AAEtF,CAAC;AAEDP,EAAIQ,WAAAA,EAAaC,KAAK,MAAM;AACxB,EAAI,CAACT,EAAIU,iBAAAA,KAAsBV,EAAIW,eAAAA,EAAiBC,SAAS,KACzDZ,EAAIa,iBAAiBb,EAAIW,eAAAA,EAAiB,CAAC,CAAC,GAGhDX,EAAIc,iBAAiB,CAACC,MAAwB;AAC1C,QAAIA,EAAMC,cAAcC,EAAUC,iBAAiBH,EAAMI,SAAS;AAE9D,YAAMC,IADUL,EAAMI,QACEC;AACxBpB,MAAAA,EAAIa,iBAAiBO,CAAO;AAAA,IAChC;AAAA,EACJ,CAAC;AACL,CAAC;AAEM,MAAMC,UAA+BC,EAAiB;AAAA,EACxCC;AAAAA,EAEjBC,YAAYD,GAAqC;AAC7C,UAAA,GACA,KAAKA,WAAWA;AAAAA,EACpB;AAAA,EAEA,MAAME,iBAAiBC,GAAaC,GAA4B;AAC5D,UAAMC,IAAeF,EAAIG,QAAQC,SAASC,QAAQ,EAAE;AACpD,WAAIJ,EAAQK,YACR,KAAKT,SAAS;AAAA,MAAEU,IAAIL;AAAAA,MAAcC,SAAS;AAAA,IAAA,CAAM,IAEjD,KAAKN,SAAS;AAAA,MAAEU,IAAIL;AAAAA,IAAAA,CAAc,GAG/B;AAAA,EACX;AACJ;AAMO,MAAMM,IAAUC,EAAmB,MAAY;AAClD,QAAMf,IAAUpB,EAAIU,iBAAAA;AACpB,MAAI,CAACU,GAASgB,QAAS,OAAMpC,EAAIqC,cAAAA;AACjC,QAAMC,IAAiBC,EAAUnB,EAAQgB,OAAO;AAEhD,SAAO;AAAA,IACHI,IAAIF,EAAeG;AAAAA,IACnBC,MAAMJ,EAAeI,KAAKC,MAAM,GAAG,EAAE,CAAC;AAAA,IACtCC,OAAON,EAAeO,mBAAmBC,YAAAA;AAAAA,IACzCC,QAAQT,EAAeS,UAAU,CAAA;AAAA,IACjCC,YAAYV,EAAeU,cAAc;AAAA,IACzCC,YAAYX,EAAeW,cAAc;AAAA,IACzCC,eAAeA,CAACC,MACUC,EAAYD,CAAG,EAChBE,KAAKC,CAAAA,OAAMhB,EAAeS,UAAU,CAAA,GAAIQ,SAASD,CAAC,CAAC;AAAA,EAC5E;AAER,CAAC,GAMYE,IAAiBrB,EAC1B,OAAOsB,MAAyC;AAC5C,QAAMrC,IAAUpB,EAAIU,iBAAAA;AACpB,MAAI,CAACU,EAAS,OAAM,IAAIsC,MAAM,wCAAwC;AAEtE,QAAMC,IAASC,EAAcH,CAAQ;AAErC,MAAI;AACA,UAAM;AAAA,MAAEI,aAAAA;AAAAA,IAAAA,IAAgB,MAAM7D,EAAI8D,mBAAmB;AAAA,MAAA,QAAEH;AAAAA,MAAQvC,SAAAA;AAAAA,IAAAA,CAAS;AACxE,WAAOyC;AAAAA,EACX,QAAQ;AACJ,UAAM;AAAA,MAAEA,aAAAA;AAAAA,IAAAA,IAAgB,MAAM7D,EAAI+D,kBAAkB;AAAA,MAAA,QAAEJ;AAAAA,MAAQvC,SAAAA;AAAAA,IAAAA,CAAS;AACvE,WAAOyC;AAAAA,EACX;AACJ,CACJ;"}

package/dist/query.js

@@ -1,4 +1,4 @@
-import { a, q } from "./index-wOcJpekI.js";
+import { a, q } from "./index-CsRHHlp3.js";
 export {
   a as query,
   q as queryClient

package/dist/server.js

@@ -0,0 +1,36 @@
+import { createServerOnlyFn as l } from "@tanstack/react-start";
+import { ConfidentialClientApplication as T } from "@azure/msal-node";
+import { s } from "./env-Dy8Ynqa-.js";
+import { scopes as p } from "virtual:wcz-layout";
+let i = null;
+function u() {
+  return i ??= new T({
+    auth: {
+      clientId: s.ENTRA_CLIENT_ID,
+      clientSecret: s.ENTRA_CLIENT_SECRET,
+      authority: `https://login.microsoftonline.com/${s.ENTRA_TENANT_ID}`
+    }
+  }), i;
+}
+const k = l(async (t, n) => {
+  const c = u(), o = p[n], e = await c.acquireTokenOnBehalfOf({
+    oboAssertion: t,
+    scopes: o
+  });
+  if (!e) throw new Error("Failed to acquire OBO token");
+  return e.accessToken;
+}), w = l(async (t) => {
+  const n = u(), o = p[t].map((a) => {
+    const f = a.lastIndexOf("/");
+    return `${a.substring(0, f)}/.default`;
+  }), e = [...new Set(o)], r = await n.acquireTokenByClientCredential({
+    scopes: e
+  });
+  if (!r) throw new Error("Failed to acquire app token");
+  return r.accessToken;
+});
+export {
+  w as getAppToken,
+  k as getTokenOnBehalfOf
+};
+//# sourceMappingURL=server.js.map

package/dist/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sources":["../src/lib/auth/msalServer.ts"],"sourcesContent":["import { createServerOnlyFn } from \"@tanstack/react-start\";\r\nimport { ConfidentialClientApplication } from \"@azure/msal-node\";\r\nimport { serverEnv } from \"~/env\";\r\nimport { scopes as definedScopes } from \"virtual:wcz-layout\";\r\n\r\n// Singleton instance for server\r\nlet ccaInstance: ConfidentialClientApplication | null = null;\r\nfunction getCCA(): ConfidentialClientApplication {\r\n    ccaInstance ??= new ConfidentialClientApplication({\r\n        auth: {\r\n            clientId: serverEnv.ENTRA_CLIENT_ID,\r\n            clientSecret: serverEnv.ENTRA_CLIENT_SECRET,\r\n            authority: `https://login.microsoftonline.com/${serverEnv.ENTRA_TENANT_ID}`,\r\n        },\r\n    });\r\n    return ccaInstance;\r\n}\r\n\r\n/**\r\n * On-Behalf-Of flow: Exchange user token for a token to call downstream API\r\n * Use when: Server needs to call microservice on behalf of the logged-in user\r\n */\r\nexport const getTokenOnBehalfOf = createServerOnlyFn(\r\n    async (userToken: string, scopeKey: keyof typeof definedScopes): Promise<string> => {\r\n        const cca = getCCA();\r\n        const scopes = definedScopes[scopeKey];\r\n        const result = await cca.acquireTokenOnBehalfOf({\r\n            oboAssertion: userToken,\r\n            scopes,\r\n        });\r\n        if (!result) throw new Error(\"Failed to acquire OBO token\");\r\n        return result.accessToken;\r\n    }\r\n);\r\n\r\n/**\r\n * Client Credentials flow: Get app-only token (no user context)\r\n * Use when: Background jobs, scheduled tasks, service-to-service calls\r\n */\r\nexport const getAppToken = createServerOnlyFn(\r\n    async (scopeKey: keyof typeof definedScopes): Promise<string> => {\r\n        const cca = getCCA();\r\n        const scopes = definedScopes[scopeKey];\r\n        const defaultScopes = scopes.map(scope => {\r\n            const lastSlash = scope.lastIndexOf('/');\r\n            const baseUri = scope.substring(0, lastSlash);\r\n            return `${baseUri}/.default`;\r\n        });\r\n        const uniqueScopes = [...new Set(defaultScopes)];\r\n        const result = await cca.acquireTokenByClientCredential({ scopes: uniqueScopes });\r\n        if (!result) throw new Error(\"Failed to acquire app token\");\r\n        return result.accessToken;\r\n    }\r\n);\r\n"],"names":["ccaInstance","getCCA","ConfidentialClientApplication","auth","clientId","serverEnv","ENTRA_CLIENT_ID","clientSecret","ENTRA_CLIENT_SECRET","authority","ENTRA_TENANT_ID","getTokenOnBehalfOf","createServerOnlyFn","userToken","scopeKey","cca","scopes","definedScopes","result","acquireTokenOnBehalfOf","oboAssertion","Error","accessToken","getAppToken","defaultScopes","map","scope","lastSlash","lastIndexOf","substring","uniqueScopes","Set","acquireTokenByClientCredential"],"mappings":";;;;AAMA,IAAIA,IAAoD;AACxD,SAASC,IAAwC;AAC7CD,SAAAA,MAAgB,IAAIE,EAA8B;AAAA,IAC9CC,MAAM;AAAA,MACFC,UAAUC,EAAUC;AAAAA,MACpBC,cAAcF,EAAUG;AAAAA,MACxBC,WAAW,qCAAqCJ,EAAUK,eAAe;AAAA,IAAA;AAAA,EAC7E,CACH,GACMV;AACX;AAMO,MAAMW,IAAqBC,EAC9B,OAAOC,GAAmBC,MAA0D;AAChF,QAAMC,IAAMd,EAAAA,GACNe,IAASC,EAAcH,CAAQ,GAC/BI,IAAS,MAAMH,EAAII,uBAAuB;AAAA,IAC5CC,cAAcP;AAAAA,IAAAA,QACdG;AAAAA,EAAAA,CACH;AACD,MAAI,CAACE,EAAQ,OAAM,IAAIG,MAAM,6BAA6B;AAC1D,SAAOH,EAAOI;AAClB,CACJ,GAMaC,IAAcX,EACvB,OAAOE,MAA0D;AAC7D,QAAMC,IAAMd,EAAAA,GAENuB,IADSP,EAAcH,CAAQ,EACRW,IAAIC,CAAAA,MAAS;AACtC,UAAMC,IAAYD,EAAME,YAAY,GAAG;AAEvC,WAAO,GADSF,EAAMG,UAAU,GAAGF,CAAS,CAC3B;AAAA,EACrB,CAAC,GACKG,IAAe,CAAC,GAAG,IAAIC,IAAIP,CAAa,CAAC,GACzCN,IAAS,MAAMH,EAAIiB,+BAA+B;AAAA,IAAEhB,QAAQc;AAAAA,EAAAA,CAAc;AAChF,MAAI,CAACZ,EAAQ,OAAM,IAAIG,MAAM,6BAA6B;AAC1D,SAAOH,EAAOI;AAClB,CACJ;"}

package/dist/utils-BGMLqA26.js

@@ -0,0 +1,81 @@
+import { a as o } from "./env-Dy8Ynqa-.js";
+const c = "#00506E", l = "#64DC00";
+class g {
+  static get isAndroid() {
+    return /android/i.test(this.userAgent);
+  }
+  static get isIOS() {
+    return /iPad|iPhone|iPod/.test(this.userAgent);
+  }
+  static get isWindows() {
+    return /windows/i.test(this.userAgent);
+  }
+  static get isMacOS() {
+    return /Macintosh|MacIntel|MacPPC|Mac68K/.test(this.userAgent);
+  }
+  static get userAgent() {
+    return typeof navigator > "u" ? "" : navigator.userAgent;
+  }
+}
+const p = () => ({
+  meta: [{
+    charSet: "utf-8"
+  }, {
+    name: "viewport",
+    content: "width=device-width, initial-scale=1"
+  }, {
+    title: o.VITE_APP_TITLE
+  }, {
+    name: "og:type",
+    content: "website"
+  }, {
+    name: "og:title",
+    content: o.VITE_APP_TITLE
+  }, {
+    name: "og:image",
+    content: "/favicon-32x32.png"
+  }],
+  links: [{
+    rel: "apple-touch-icon",
+    sizes: "180x180",
+    href: "/apple-touch-icon.png"
+  }, {
+    rel: "icon",
+    type: "image/png",
+    sizes: "32x32",
+    href: "/favicon-32x32.png"
+  }, {
+    rel: "icon",
+    type: "image/png",
+    sizes: "16x16",
+    href: "/favicon-16x16.png"
+  }, {
+    rel: "manifest",
+    href: "/manifest.webmanifest"
+  }, {
+    rel: "icon",
+    href: "/favicon.ico"
+  }]
+}), d = (e) => {
+  const {
+    meta: n
+  } = e.state, t = n.isTouched, s = !!n.errors.length, a = n.errors[0]?.message;
+  return {
+    isTouched: t,
+    hasError: s,
+    helperText: a
+  };
+}, h = (e) => e.replaceAll(/([a-z])([A-Z])/g, "$1-$2").replaceAll(/[\s_]+/g, "-").replaceAll(/[^a-zA-Z0-9-]/g, "").toLowerCase().replaceAll(/-+/g, "-").replaceAll(/(^-|-$)/g, ""), u = (e) => {
+  const t = e.split(".")[1].replaceAll("-", "+").replaceAll("_", "/"), s = t.length % 4 === 0 ? "" : "=".repeat(4 - t.length % 4), a = decodeURIComponent(atob(t + s).split("").map((i) => "%" + ("00" + (i.codePointAt(0) ?? 0).toString(16)).slice(-2)).join(""));
+  return JSON.parse(a);
+};
+export {
+  g as P,
+  c as W,
+  l as a,
+  u as d,
+  d as g,
+  p as r,
+  h as t
+};
+//# sourceMappingURL=utils-BGMLqA26.js.map

package/dist/utils-BGMLqA26.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils-BGMLqA26.js","sources":["../src/lib/utils.ts"],"sourcesContent":["import type { AnyFieldApi } from \"@tanstack/react-form\";\r\nimport { clientEnv } from \"~/env\";\r\nimport { TokenPayload } from \"~/models/TokenPayload\";\r\n\r\nexport const WISTRON_PRIMARY_COLOR = \"#00506E\";\r\nexport const WISTRON_SECONDARY_COLOR = \"#64DC00\";\r\n\r\nexport class Platform {\r\n    static get isAndroid() { return /android/i.test(this.userAgent); }\r\n    static get isIOS() { return /iPad|iPhone|iPod/.test(this.userAgent); }\r\n    static get isWindows() { return /windows/i.test(this.userAgent); }\r\n    static get isMacOS() { return /Macintosh|MacIntel|MacPPC|Mac68K/.test(this.userAgent); }\r\n\r\n    private static get userAgent() { return typeof navigator === \"undefined\" ? \"\" : navigator.userAgent; }\r\n}\r\n\r\nexport const rootRouteHead = () => ({\r\n    meta: [\r\n        { charSet: \"utf-8\" },\r\n        { name: \"viewport\", content: \"width=device-width, initial-scale=1\" },\r\n        { title: clientEnv.VITE_APP_TITLE },\r\n        { name: \"og:type\", content: \"website\" },\r\n        { name: \"og:title\", content: clientEnv.VITE_APP_TITLE },\r\n        { name: \"og:image\", content: \"/favicon-32x32.png\" }\r\n    ],\r\n    links: [\r\n        { rel: \"apple-touch-icon\", sizes: \"180x180\", href: \"/apple-touch-icon.png\", },\r\n        { rel: \"icon\", type: \"image/png\", sizes: \"32x32\", href: \"/favicon-32x32.png\", },\r\n        { rel: \"icon\", type: \"image/png\", sizes: \"16x16\", href: \"/favicon-16x16.png\", },\r\n        { rel: \"manifest\", href: \"/manifest.webmanifest\" },\r\n        { rel: \"icon\", href: \"/favicon.ico\" },\r\n    ],\r\n});\r\n\r\n/* Internal Utils */\r\nexport type FormOmittedProps =\r\n    \"name\" |\r\n    \"value\" |\r\n    \"onChange\" |\r\n    \"onBlur\" |\r\n    \"error\" |\r\n    \"helperText\" |\r\n    \"renderInput\" |\r\n    \"type\" |\r\n    \"aria-label\";\r\n\r\nexport const getFieldStatus = (field: AnyFieldApi) => {\r\n    const { meta } = field.state;\r\n\r\n    const isTouched = meta.isTouched;\r\n    const hasError = !!meta.errors.length;\r\n    const helperText = meta.errors[0]?.message;\r\n\r\n    return { isTouched, hasError, helperText };\r\n};\r\n\r\nexport const toKebabCase = (str: string): string => {\r\n    return str\r\n        .replaceAll(/([a-z])([A-Z])/g, \"$1-$2\")\r\n        .replaceAll(/[\\s_]+/g, \"-\")\r\n        .replaceAll(/[^a-zA-Z0-9-]/g, \"\")\r\n        .toLowerCase()\r\n        .replaceAll(/-+/g, \"-\")\r\n        .replaceAll(/(^-|-$)/g, \"\");\r\n};\r\n\r\nexport const decodeJwt = (token: string) => {\r\n    const base64Payload = token.split(\".\")[1];\r\n    const base64 = base64Payload.replaceAll(\"-\", \"+\").replaceAll(\"_\", \"/\");\r\n    const padding = base64.length % 4 === 0 ? \"\" : \"=\".repeat(4 - (base64.length % 4));\r\n    const payload = decodeURIComponent(atob(base64 + padding)\r\n        .split(\"\")\r\n        .map((c) => \"%\" + (\"00\" + (c.codePointAt(0) ?? 0).toString(16)).slice(-2))\r\n        .join(\"\")\r\n    );\r\n    return JSON.parse(payload) as TokenPayload;\r\n};\r\n"],"names":["WISTRON_PRIMARY_COLOR","WISTRON_SECONDARY_COLOR","Platform","isAndroid","test","userAgent","isIOS","isWindows","isMacOS","navigator","rootRouteHead","meta","charSet","name","content","title","clientEnv","VITE_APP_TITLE","links","rel","sizes","href","type","getFieldStatus","field","state","isTouched","hasError","errors","length","helperText","message","toKebabCase","str","replaceAll","toLowerCase","decodeJwt","token","base64","split","padding","repeat","payload","decodeURIComponent","atob","map","c","codePointAt","toString","slice","join","JSON","parse"],"mappings":";AAIO,MAAMA,IAAwB,WACxBC,IAA0B;AAEhC,MAAMC,EAAS;AAAA,EAClB,WAAWC,YAAY;AAAE,WAAO,WAAWC,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACjE,WAAWC,QAAQ;AAAE,WAAO,mBAAmBF,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACrE,WAAWE,YAAY;AAAE,WAAO,WAAWH,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EACjE,WAAWG,UAAU;AAAE,WAAO,mCAAmCJ,KAAK,KAAKC,SAAS;AAAA,EAAG;AAAA,EAEvF,WAAmBA,YAAY;AAAE,WAAO,OAAOI,YAAc,MAAc,KAAKA,UAAUJ;AAAAA,EAAW;AACzG;AAEO,MAAMK,IAAgBA,OAAO;AAAA,EAChCC,MAAM,CACF;AAAA,IAAEC,SAAS;AAAA,EAAA,GACX;AAAA,IAAEC,MAAM;AAAA,IAAYC,SAAS;AAAA,EAAA,GAC7B;AAAA,IAAEC,OAAOC,EAAUC;AAAAA,EAAAA,GACnB;AAAA,IAAEJ,MAAM;AAAA,IAAWC,SAAS;AAAA,EAAA,GAC5B;AAAA,IAAED,MAAM;AAAA,IAAYC,SAASE,EAAUC;AAAAA,EAAAA,GACvC;AAAA,IAAEJ,MAAM;AAAA,IAAYC,SAAS;AAAA,EAAA,CAAsB;AAAA,EAEvDI,OAAO,CACH;AAAA,IAAEC,KAAK;AAAA,IAAoBC,OAAO;AAAA,IAAWC,MAAM;AAAA,EAAA,GACnD;AAAA,IAAEF,KAAK;AAAA,IAAQG,MAAM;AAAA,IAAaF,OAAO;AAAA,IAASC,MAAM;AAAA,EAAA,GACxD;AAAA,IAAEF,KAAK;AAAA,IAAQG,MAAM;AAAA,IAAaF,OAAO;AAAA,IAASC,MAAM;AAAA,EAAA,GACxD;AAAA,IAAEF,KAAK;AAAA,IAAYE,MAAM;AAAA,EAAA,GACzB;AAAA,IAAEF,KAAK;AAAA,IAAQE,MAAM;AAAA,EAAA,CAAgB;AAE7C,IAcaE,IAAiBA,CAACC,MAAuB;AAClD,QAAM;AAAA,IAAEb,MAAAA;AAAAA,EAAAA,IAASa,EAAMC,OAEjBC,IAAYf,EAAKe,WACjBC,IAAW,CAAC,CAAChB,EAAKiB,OAAOC,QACzBC,IAAanB,EAAKiB,OAAO,CAAC,GAAGG;AAEnC,SAAO;AAAA,IAAEL,WAAAA;AAAAA,IAAWC,UAAAA;AAAAA,IAAUG,YAAAA;AAAAA,EAAAA;AAClC,GAEaE,IAAcA,CAACC,MACjBA,EACFC,WAAW,mBAAmB,OAAO,EACrCA,WAAW,WAAW,GAAG,EACzBA,WAAW,kBAAkB,EAAE,EAC/BC,cACAD,WAAW,OAAO,GAAG,EACrBA,WAAW,YAAY,EAAE,GAGrBE,IAAYA,CAACC,MAAkB;AAExC,QAAMC,IADgBD,EAAME,MAAM,GAAG,EAAE,CAAC,EACXL,WAAW,KAAK,GAAG,EAAEA,WAAW,KAAK,GAAG,GAC/DM,IAAUF,EAAOT,SAAS,MAAM,IAAI,KAAK,IAAIY,OAAO,IAAKH,EAAOT,SAAS,CAAE,GAC3Ea,IAAUC,mBAAmBC,KAAKN,IAASE,CAAO,EACnDD,MAAM,EAAE,EACRM,IAAKC,CAAAA,MAAM,OAAO,QAAQA,EAAEC,YAAY,CAAC,KAAK,GAAGC,SAAS,EAAE,GAAGC,MAAM,EAAE,CAAC,EACxEC,KAAK,EAAE,CACZ;AACA,SAAOC,KAAKC,MAAMV,CAAO;AAC7B;"}

package/dist/utils.js

@@ -1,12 +1,9 @@
-import { s as l } from "./utils-BXxJ2sNo.js";
-import { P as S, a as k } from "./utils-BXxJ2sNo.js";
-import { t as $ } from "./i18next-8reizFda.js";
-import { g as q, a as F } from "./msalClient-Cem8ZXIU.js";
-import { createServerOnlyFn as m } from "@tanstack/react-start";
-import { ConfidentialClientApplication as y } from "@azure/msal-node";
-import { scopes as p } from "virtual:wcz-layout";
-const u = "0123456789abcdef";
-class c {
+import { c as R } from "./env-Dy8Ynqa-.js";
+import { t as _ } from "./i18next-8reizFda.js";
+import { g as A, a as E } from "./msalClient-l-DV8PoB.js";
+import { P as V } from "./utils-BGMLqA26.js";
+const c = "0123456789abcdef";
+class o {
   /** @param bytes - The 16-byte byte array representation. */
   constructor(e) {
     this.bytes = e;
@@ -23,7 +20,7 @@ class c {
   static ofInner(e) {
     if (e.length !== 16)
       throw new TypeError("not 128-bit length");
-    return new c(e);
+    return new o(e);
   }
   /**
    * Builds a byte array from UUIDv7 field values.
@@ -34,11 +31,11 @@ class c {
    * @param randBLo - The lower 32 bits of 62-bit `rand_b` field value.
    * @throws RangeError if any field value is out of the specified range.
    */
-  static fromFieldsV7(e, t, n, s) {
-    if (!Number.isInteger(e) || !Number.isInteger(t) || !Number.isInteger(n) || !Number.isInteger(s) || e < 0 || t < 0 || n < 0 || s < 0 || e > 281474976710655 || t > 4095 || n > 1073741823 || s > 4294967295)
+  static fromFieldsV7(e, t, n, i) {
+    if (!Number.isInteger(e) || !Number.isInteger(t) || !Number.isInteger(n) || !Number.isInteger(i) || e < 0 || t < 0 || n < 0 || i < 0 || e > 281474976710655 || t > 4095 || n > 1073741823 || i > 4294967295)
       throw new RangeError("invalid field value");
     const r = new Uint8Array(16);
-    return r[0] = e / 2 ** 40, r[1] = e / 2 ** 32, r[2] = e / 2 ** 24, r[3] = e / 2 ** 16, r[4] = e / 2 ** 8, r[5] = e, r[6] = 112 | t >>> 8, r[7] = t, r[8] = 128 | n >>> 24, r[9] = n >>> 16, r[10] = n >>> 8, r[11] = n, r[12] = s >>> 24, r[13] = s >>> 16, r[14] = s >>> 8, r[15] = s, new c(r);
+    return r[0] = e / 2 ** 40, r[1] = e / 2 ** 32, r[2] = e / 2 ** 24, r[3] = e / 2 ** 16, r[4] = e / 2 ** 8, r[5] = e, r[6] = 112 | t >>> 8, r[7] = t, r[8] = 128 | n >>> 24, r[9] = n >>> 16, r[10] = n >>> 8, r[11] = n, r[12] = i >>> 24, r[13] = i >>> 16, r[14] = i >>> 8, r[15] = i, new o(r);
   }
   /**
    * Builds a byte array from a string representation.
@@ -55,29 +52,29 @@ class c {
    * @throws SyntaxError if the argument could not parse as a valid UUID string.
    */
   static parse(e) {
-    var t, n, s, r;
-    let i;
+    var t, n, i, r;
+    let a;
     switch (e.length) {
       case 32:
-        i = (t = /^[0-9a-f]{32}$/i.exec(e)) === null || t === void 0 ? void 0 : t[0];
+        a = (t = /^[0-9a-f]{32}$/i.exec(e)) === null || t === void 0 ? void 0 : t[0];
         break;
       case 36:
-        i = (n = /^([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})$/i.exec(e)) === null || n === void 0 ? void 0 : n.slice(1, 6).join("");
+        a = (n = /^([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})$/i.exec(e)) === null || n === void 0 ? void 0 : n.slice(1, 6).join("");
         break;
       case 38:
-        i = (s = /^\{([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})\}$/i.exec(e)) === null || s === void 0 ? void 0 : s.slice(1, 6).join("");
+        a = (i = /^\{([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})\}$/i.exec(e)) === null || i === void 0 ? void 0 : i.slice(1, 6).join("");
         break;
       case 45:
-        i = (r = /^urn:uuid:([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})$/i.exec(e)) === null || r === void 0 ? void 0 : r.slice(1, 6).join("");
+        a = (r = /^urn:uuid:([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})$/i.exec(e)) === null || r === void 0 ? void 0 : r.slice(1, 6).join("");
         break;
     }
-    if (i) {
-      const a = new Uint8Array(16);
-      for (let o = 0; o < 16; o += 4) {
-        const h = parseInt(i.substring(2 * o, 2 * o + 8), 16);
-        a[o + 0] = h >>> 24, a[o + 1] = h >>> 16, a[o + 2] = h >>> 8, a[o + 3] = h;
+    if (a) {
+      const f = new Uint8Array(16);
+      for (let s = 0; s < 16; s += 4) {
+        const h = parseInt(a.substring(2 * s, 2 * s + 8), 16);
+        f[s + 0] = h >>> 24, f[s + 1] = h >>> 16, f[s + 2] = h >>> 8, f[s + 3] = h;
       }
-      return new c(a);
+      return new o(f);
     } else
       throw new SyntaxError("could not parse UUID string");
   }
@@ -88,7 +85,7 @@ class c {
   toString() {
     let e = "";
     for (let t = 0; t < this.bytes.length; t++)
-      e += u.charAt(this.bytes[t] >>> 4), e += u.charAt(this.bytes[t] & 15), (t === 3 || t === 5 || t === 7 || t === 9) && (e += "-");
+      e += c.charAt(this.bytes[t] >>> 4), e += c.charAt(this.bytes[t] & 15), (t === 3 || t === 5 || t === 7 || t === 9) && (e += "-");
     return e;
   }
   /**
@@ -98,7 +95,7 @@ class c {
   toHex() {
     let e = "";
     for (let t = 0; t < this.bytes.length; t++)
-      e += u.charAt(this.bytes[t] >>> 4), e += u.charAt(this.bytes[t] & 15);
+      e += c.charAt(this.bytes[t] >>> 4), e += c.charAt(this.bytes[t] & 15);
     return e;
   }
   /** @returns The 8-4-4-4-12 canonical hexadecimal string representation. */
@@ -136,7 +133,7 @@ class c {
   }
   /** Creates an object from `this`. */
   clone() {
-    return new c(this.bytes.slice(0));
+    return new o(this.bytes.slice(0));
   }
   /** Returns true if `this` is equivalent to `other`. */
   equals(e) {
@@ -155,14 +152,14 @@ class c {
     return 0;
   }
 }
-class w {
+class b {
   /**
    * Creates a generator object with the default random number generator, or
    * with the specified one if passed as an argument. The specified random
    * number generator should be cryptographically strong and securely seeded.
    */
   constructor(e) {
-    this.timestamp_biased = 0, this.counter = 0, this.random = e ?? E();
+    this.timestamp_biased = 0, this.counter = 0, this.random = e ?? g();
   }
   /**
    * Generates a new UUIDv7 object from the current timestamp, or resets the
@@ -234,7 +231,7 @@ class w {
       this.counter++, this.counter > 4398046511103 && (this.timestamp_biased++, this.resetCounter());
     else
       return;
-    return c.fromFieldsV7(this.timestamp_biased - 1, Math.trunc(this.counter / 2 ** 30), this.counter & 2 ** 30 - 1, this.random.nextUint32());
+    return o.fromFieldsV7(this.timestamp_biased - 1, Math.trunc(this.counter / 2 ** 30), this.counter & 2 ** 30 - 1, this.random.nextUint32());
   }
   /** Initializes the counter at a 42-bit random integer. */
   resetCounter() {
@@ -247,19 +244,19 @@ class w {
    */
   generateV4() {
     const e = new Uint8Array(Uint32Array.of(this.random.nextUint32(), this.random.nextUint32(), this.random.nextUint32(), this.random.nextUint32()).buffer);
-    return e[6] = 64 | e[6] >>> 4, e[8] = 128 | e[8] >>> 2, c.ofInner(e);
+    return e[6] = 64 | e[6] >>> 4, e[8] = 128 | e[8] >>> 2, o.ofInner(e);
   }
 }
-const E = () => {
+const g = () => {
   if (typeof crypto < "u" && typeof crypto.getRandomValues < "u")
-    return new A();
+    return new m();
   if (typeof UUIDV7_DENY_WEAK_RNG < "u" && UUIDV7_DENY_WEAK_RNG)
     throw new Error("no cryptographically strong RNG available");
   return {
     nextUint32: () => Math.trunc(Math.random() * 65536) * 65536 + Math.trunc(Math.random() * 65536)
   };
 };
-class A {
+class m {
   constructor() {
     this.buffer = new Uint32Array(8), this.cursor = 65535;
   }
@@ -267,43 +264,14 @@ class A {
     return this.cursor >= this.buffer.length && (crypto.getRandomValues(this.buffer), this.cursor = 0), this.buffer[this.cursor++];
   }
 }
-let b;
-const N = () => _().toString(), _ = () => (b || (b = new w())).generate();
-let g = null;
-function d() {
-  return g ??= new y({
-    auth: {
-      clientId: l.ENTRA_CLIENT_ID,
-      clientSecret: l.ENTRA_CLIENT_SECRET,
-      authority: `https://login.microsoftonline.com/${l.ENTRA_TENANT_ID}`
-    }
-  }), g;
-}
-const U = m(async (f, e) => {
-  const t = d(), n = p[e], s = await t.acquireTokenOnBehalfOf({
-    oboAssertion: f,
-    scopes: n
-  });
-  if (!s) throw new Error("Failed to acquire OBO token");
-  return s.accessToken;
-}), I = m(async (f) => {
-  const e = d(), n = p[f].map((i) => {
-    const a = i.lastIndexOf("/");
-    return `${i.substring(0, a)}/.default`;
-  }), s = [...new Set(n)], r = await e.acquireTokenByClientCredential({
-    scopes: s
-  });
-  if (!r) throw new Error("Failed to acquire app token");
-  return r.accessToken;
-});
+let u;
+const y = () => d().toString(), d = () => (u || (u = new b())).generate();
 export {
-  S as Platform,
-  k as createEnv,
-  q as getAccessToken,
-  I as getAppToken,
-  U as getTokenOnBehalfOf,
-  F as getUser,
-  $ as t,
-  N as uuidv7
+  V as Platform,
+  R as createEnv,
+  A as getAccessToken,
+  E as getUser,
+  _ as t,
+  y as uuidv7
 };
 //# sourceMappingURL=utils.js.map

package/dist/utils.js.map

@@ -1 +1 @@
-{"version":3,"file":"utils.js","sources":["../node_modules/uuidv7/dist/index.js","../src/lib/auth/msalServer.ts"],"sourcesContent":["/**\n * uuidv7: A JavaScript implementation of UUID version 7\n *\n * Copyright 2021-2025 LiosK\n *\n * @license Apache-2.0\n * @packageDocumentation\n */\nconst DIGITS = \"0123456789abcdef\";\n/** Represents a UUID as a 16-byte byte array. */\nexport class UUID {\n    /** @param bytes - The 16-byte byte array representation. */\n    constructor(bytes) {\n        this.bytes = bytes;\n    }\n    /**\n     * Creates an object from the internal representation, a 16-byte byte array\n     * containing the binary UUID representation in the big-endian byte order.\n     *\n     * This method does NOT shallow-copy the argument, and thus the created object\n     * holds the reference to the underlying buffer.\n     *\n     * @throws TypeError if the length of the argument is not 16.\n     */\n    static ofInner(bytes) {\n        if (bytes.length !== 16) {\n            throw new TypeError(\"not 128-bit length\");\n        }\n        else {\n            return new UUID(bytes);\n        }\n    }\n    /**\n     * Builds a byte array from UUIDv7 field values.\n     *\n     * @param unixTsMs - A 48-bit `unix_ts_ms` field value.\n     * @param randA - A 12-bit `rand_a` field value.\n     * @param randBHi - The higher 30 bits of 62-bit `rand_b` field value.\n     * @param randBLo - The lower 32 bits of 62-bit `rand_b` field value.\n     * @throws RangeError if any field value is out of the specified range.\n     */\n    static fromFieldsV7(unixTsMs, randA, randBHi, randBLo) {\n        if (!Number.isInteger(unixTsMs) ||\n            !Number.isInteger(randA) ||\n            !Number.isInteger(randBHi) ||\n            !Number.isInteger(randBLo) ||\n            unixTsMs < 0 ||\n            randA < 0 ||\n            randBHi < 0 ||\n            randBLo < 0 ||\n            unixTsMs > 281474976710655 ||\n            randA > 0xfff ||\n            randBHi > 1073741823 ||\n            randBLo > 4294967295) {\n            throw new RangeError(\"invalid field value\");\n        }\n        const bytes = new Uint8Array(16);\n        bytes[0] = unixTsMs / 2 ** 40;\n        bytes[1] = unixTsMs / 2 ** 32;\n        bytes[2] = unixTsMs / 2 ** 24;\n        bytes[3] = unixTsMs / 2 ** 16;\n        bytes[4] = unixTsMs / 2 ** 8;\n        bytes[5] = unixTsMs;\n        bytes[6] = 0x70 | (randA >>> 8);\n        bytes[7] = randA;\n        bytes[8] = 0x80 | (randBHi >>> 24);\n        bytes[9] = randBHi >>> 16;\n        bytes[10] = randBHi >>> 8;\n        bytes[11] = randBHi;\n        bytes[12] = randBLo >>> 24;\n        bytes[13] = randBLo >>> 16;\n        bytes[14] = randBLo >>> 8;\n        bytes[15] = randBLo;\n        return new UUID(bytes);\n    }\n    /**\n     * Builds a byte array from a string representation.\n     *\n     * This method accepts the following formats:\n     *\n     * - 32-digit hexadecimal format without hyphens: `0189dcd553117d408db09496a2eef37b`\n     * - 8-4-4-4-12 hyphenated format: `0189dcd5-5311-7d40-8db0-9496a2eef37b`\n     * - Hyphenated format with surrounding braces: `{0189dcd5-5311-7d40-8db0-9496a2eef37b}`\n     * - RFC 9562 URN format: `urn:uuid:0189dcd5-5311-7d40-8db0-9496a2eef37b`\n     *\n     * Leading and trailing whitespaces represents an error.\n     *\n     * @throws SyntaxError if the argument could not parse as a valid UUID string.\n     */\n    static parse(uuid) {\n        var _a, _b, _c, _d;\n        let hex = undefined;\n        switch (uuid.length) {\n            case 32:\n                hex = (_a = /^[0-9a-f]{32}$/i.exec(uuid)) === null || _a === void 0 ? void 0 : _a[0];\n                break;\n            case 36:\n                hex =\n                    (_b = /^([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})$/i\n                        .exec(uuid)) === null || _b === void 0 ? void 0 : _b.slice(1, 6).join(\"\");\n                break;\n            case 38:\n                hex =\n                    (_c = /^\\{([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})\\}$/i\n                        .exec(uuid)) === null || _c === void 0 ? void 0 : _c.slice(1, 6).join(\"\");\n                break;\n            case 45:\n                hex =\n                    (_d = /^urn:uuid:([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})$/i\n                        .exec(uuid)) === null || _d === void 0 ? void 0 : _d.slice(1, 6).join(\"\");\n                break;\n            default:\n                break;\n        }\n        if (hex) {\n            const inner = new Uint8Array(16);\n            for (let i = 0; i < 16; i += 4) {\n                const n = parseInt(hex.substring(2 * i, 2 * i + 8), 16);\n                inner[i + 0] = n >>> 24;\n                inner[i + 1] = n >>> 16;\n                inner[i + 2] = n >>> 8;\n                inner[i + 3] = n;\n            }\n            return new UUID(inner);\n        }\n        else {\n            throw new SyntaxError(\"could not parse UUID string\");\n        }\n    }\n    /**\n     * @returns The 8-4-4-4-12 canonical hexadecimal string representation\n     * (`0189dcd5-5311-7d40-8db0-9496a2eef37b`).\n     */\n    toString() {\n        let text = \"\";\n        for (let i = 0; i < this.bytes.length; i++) {\n            text += DIGITS.charAt(this.bytes[i] >>> 4);\n            text += DIGITS.charAt(this.bytes[i] & 0xf);\n            if (i === 3 || i === 5 || i === 7 || i === 9) {\n                text += \"-\";\n            }\n        }\n        return text;\n    }\n    /**\n     * @returns The 32-digit hexadecimal representation without hyphens\n     * (`0189dcd553117d408db09496a2eef37b`).\n     */\n    toHex() {\n        let text = \"\";\n        for (let i = 0; i < this.bytes.length; i++) {\n            text += DIGITS.charAt(this.bytes[i] >>> 4);\n            text += DIGITS.charAt(this.bytes[i] & 0xf);\n        }\n        return text;\n    }\n    /** @returns The 8-4-4-4-12 canonical hexadecimal string representation. */\n    toJSON() {\n        return this.toString();\n    }\n    /**\n     * Reports the variant field value of the UUID or, if appropriate, \"NIL\" or\n     * \"MAX\".\n     *\n     * For convenience, this method reports \"NIL\" or \"MAX\" if `this` represents\n     * the Nil or Max UUID, although the Nil and Max UUIDs are technically\n     * subsumed under the variants `0b0` and `0b111`, respectively.\n     */\n    getVariant() {\n        const n = this.bytes[8] >>> 4;\n        if (n < 0) {\n            throw new Error(\"unreachable\");\n        }\n        else if (n <= 0b0111) {\n            return this.bytes.every((e) => e === 0) ? \"NIL\" : \"VAR_0\";\n        }\n        else if (n <= 0b1011) {\n            return \"VAR_10\";\n        }\n        else if (n <= 0b1101) {\n            return \"VAR_110\";\n        }\n        else if (n <= 0b1111) {\n            return this.bytes.every((e) => e === 0xff) ? \"MAX\" : \"VAR_RESERVED\";\n        }\n        else {\n            throw new Error(\"unreachable\");\n        }\n    }\n    /**\n     * Returns the version field value of the UUID or `undefined` if the UUID does\n     * not have the variant field value of `0b10`.\n     */\n    getVersion() {\n        return this.getVariant() === \"VAR_10\" ? this.bytes[6] >>> 4 : undefined;\n    }\n    /** Creates an object from `this`. */\n    clone() {\n        return new UUID(this.bytes.slice(0));\n    }\n    /** Returns true if `this` is equivalent to `other`. */\n    equals(other) {\n        return this.compareTo(other) === 0;\n    }\n    /**\n     * Returns a negative integer, zero, or positive integer if `this` is less\n     * than, equal to, or greater than `other`, respectively.\n     */\n    compareTo(other) {\n        for (let i = 0; i < 16; i++) {\n            const diff = this.bytes[i] - other.bytes[i];\n            if (diff !== 0) {\n                return Math.sign(diff);\n            }\n        }\n        return 0;\n    }\n}\n/**\n * Encapsulates the monotonic counter state.\n *\n * This class provides APIs to utilize a separate counter state from that of the\n * global generator used by {@link uuidv7} and {@link uuidv7obj}. In addition to\n * the default {@link generate} method, this class has {@link generateOrAbort}\n * that is useful to absolutely guarantee the monotonically increasing order of\n * generated UUIDs. See their respective documentation for details.\n */\nexport class V7Generator {\n    /**\n     * Creates a generator object with the default random number generator, or\n     * with the specified one if passed as an argument. The specified random\n     * number generator should be cryptographically strong and securely seeded.\n     */\n    constructor(randomNumberGenerator) {\n        /**\n         * Biased by one to distinguish zero (uninitialized) and zero (UNIX epoch).\n         */\n        this.timestamp_biased = 0;\n        this.counter = 0;\n        this.random = randomNumberGenerator !== null && randomNumberGenerator !== void 0 ? randomNumberGenerator : getDefaultRandom();\n    }\n    /**\n     * Generates a new UUIDv7 object from the current timestamp, or resets the\n     * generator upon significant timestamp rollback.\n     *\n     * This method returns a monotonically increasing UUID by reusing the previous\n     * timestamp even if the up-to-date timestamp is smaller than the immediately\n     * preceding UUID's. However, when such a clock rollback is considered\n     * significant (i.e., by more than ten seconds), this method resets the\n     * generator and returns a new UUID based on the given timestamp, breaking the\n     * increasing order of UUIDs.\n     *\n     * See {@link generateOrAbort} for the other mode of generation and\n     * {@link generateOrResetCore} for the low-level primitive.\n     */\n    generate() {\n        return this.generateOrResetCore(Date.now(), 10000);\n    }\n    /**\n     * Generates a new UUIDv7 object from the current timestamp, or returns\n     * `undefined` upon significant timestamp rollback.\n     *\n     * This method returns a monotonically increasing UUID by reusing the previous\n     * timestamp even if the up-to-date timestamp is smaller than the immediately\n     * preceding UUID's. However, when such a clock rollback is considered\n     * significant (i.e., by more than ten seconds), this method aborts and\n     * returns `undefined` immediately.\n     *\n     * See {@link generate} for the other mode of generation and\n     * {@link generateOrAbortCore} for the low-level primitive.\n     */\n    generateOrAbort() {\n        return this.generateOrAbortCore(Date.now(), 10000);\n    }\n    /**\n     * Generates a new UUIDv7 object from the `unixTsMs` passed, or resets the\n     * generator upon significant timestamp rollback.\n     *\n     * This method is equivalent to {@link generate} except that it takes a custom\n     * timestamp and clock rollback allowance.\n     *\n     * @param rollbackAllowance - The amount of `unixTsMs` rollback that is\n     * considered significant. A suggested value is `10_000` (milliseconds).\n     * @throws RangeError if `unixTsMs` is not a 48-bit unsigned integer.\n     */\n    generateOrResetCore(unixTsMs, rollbackAllowance) {\n        let value = this.generateOrAbortCore(unixTsMs, rollbackAllowance);\n        if (value === undefined) {\n            // reset state and resume\n            this.timestamp_biased = 0;\n            value = this.generateOrAbortCore(unixTsMs, rollbackAllowance);\n        }\n        return value;\n    }\n    /**\n     * Generates a new UUIDv7 object from the `unixTsMs` passed, or returns\n     * `undefined` upon significant timestamp rollback.\n     *\n     * This method is equivalent to {@link generateOrAbort} except that it takes a\n     * custom timestamp and clock rollback allowance.\n     *\n     * @param rollbackAllowance - The amount of `unixTsMs` rollback that is\n     * considered significant. A suggested value is `10_000` (milliseconds).\n     * @throws RangeError if `unixTsMs` is not a 48-bit unsigned integer.\n     */\n    generateOrAbortCore(unixTsMs, rollbackAllowance) {\n        const MAX_COUNTER = 4398046511103;\n        if (!Number.isInteger(unixTsMs) ||\n            unixTsMs < 0 ||\n            unixTsMs > 281474976710655) {\n            throw new RangeError(\"`unixTsMs` must be a 48-bit unsigned integer\");\n        }\n        else if (rollbackAllowance < 0 || rollbackAllowance > 281474976710655) {\n            throw new RangeError(\"`rollbackAllowance` out of reasonable range\");\n        }\n        unixTsMs++;\n        if (unixTsMs > this.timestamp_biased) {\n            this.timestamp_biased = unixTsMs;\n            this.resetCounter();\n        }\n        else if (unixTsMs + rollbackAllowance >= this.timestamp_biased) {\n            // go on with previous timestamp if new one is not much smaller\n            this.counter++;\n            if (this.counter > MAX_COUNTER) {\n                // increment timestamp at counter overflow\n                this.timestamp_biased++;\n                this.resetCounter();\n            }\n        }\n        else {\n            // abort if clock went backwards to unbearable extent\n            return undefined;\n        }\n        return UUID.fromFieldsV7(this.timestamp_biased - 1, Math.trunc(this.counter / 2 ** 30), this.counter & (2 ** 30 - 1), this.random.nextUint32());\n    }\n    /** Initializes the counter at a 42-bit random integer. */\n    resetCounter() {\n        this.counter =\n            this.random.nextUint32() * 0x400 + (this.random.nextUint32() & 0x3ff);\n    }\n    /**\n     * Generates a new UUIDv4 object utilizing the random number generator inside.\n     *\n     * @internal\n     */\n    generateV4() {\n        const bytes = new Uint8Array(Uint32Array.of(this.random.nextUint32(), this.random.nextUint32(), this.random.nextUint32(), this.random.nextUint32()).buffer);\n        bytes[6] = 0x40 | (bytes[6] >>> 4);\n        bytes[8] = 0x80 | (bytes[8] >>> 2);\n        return UUID.ofInner(bytes);\n    }\n}\n/** Returns the default random number generator available in the environment. */\nconst getDefaultRandom = () => {\n    // detect Web Crypto API\n    if (typeof crypto !== \"undefined\" &&\n        typeof crypto.getRandomValues !== \"undefined\") {\n        return new BufferedCryptoRandom();\n    }\n    else {\n        // fall back on Math.random() unless the flag is set to true\n        if (typeof UUIDV7_DENY_WEAK_RNG !== \"undefined\" && UUIDV7_DENY_WEAK_RNG) {\n            throw new Error(\"no cryptographically strong RNG available\");\n        }\n        return {\n            nextUint32: () => Math.trunc(Math.random() * 65536) * 65536 +\n                Math.trunc(Math.random() * 65536),\n        };\n    }\n};\n/**\n * Wraps `crypto.getRandomValues()` to enable buffering; this uses a small\n * buffer by default to avoid both unbearable throughput decline in some\n * environments and the waste of time and space for unused values.\n */\nclass BufferedCryptoRandom {\n    constructor() {\n        this.buffer = new Uint32Array(8);\n        this.cursor = 0xffff;\n    }\n    nextUint32() {\n        if (this.cursor >= this.buffer.length) {\n            crypto.getRandomValues(this.buffer);\n            this.cursor = 0;\n        }\n        return this.buffer[this.cursor++];\n    }\n}\nlet defaultGenerator;\n/**\n * Generates a UUIDv7 string.\n *\n * @returns The 8-4-4-4-12 canonical hexadecimal string representation\n * (\"xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx\").\n */\nexport const uuidv7 = () => uuidv7obj().toString();\n/** Generates a UUIDv7 object. */\nexport const uuidv7obj = () => (defaultGenerator || (defaultGenerator = new V7Generator())).generate();\n/**\n * Generates a UUIDv4 string.\n *\n * @returns The 8-4-4-4-12 canonical hexadecimal string representation\n * (\"xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx\").\n */\nexport const uuidv4 = () => uuidv4obj().toString();\n/** Generates a UUIDv4 object. */\nexport const uuidv4obj = () => (defaultGenerator || (defaultGenerator = new V7Generator())).generateV4();\n","import { createServerOnlyFn } from \"@tanstack/react-start\";\r\nimport { ConfidentialClientApplication } from \"@azure/msal-node\";\r\nimport { serverEnv } from \"~/env\";\r\nimport { scopes as definedScopes } from \"virtual:wcz-layout\";\r\n\r\n// Singleton instance for server\r\nlet ccaInstance: ConfidentialClientApplication | null = null;\r\nfunction getCCA(): ConfidentialClientApplication {\r\n    ccaInstance ??= new ConfidentialClientApplication({\r\n        auth: {\r\n            clientId: serverEnv.ENTRA_CLIENT_ID,\r\n            clientSecret: serverEnv.ENTRA_CLIENT_SECRET,\r\n            authority: `https://login.microsoftonline.com/${serverEnv.ENTRA_TENANT_ID}`,\r\n        },\r\n    });\r\n    return ccaInstance;\r\n}\r\n\r\n/**\r\n * On-Behalf-Of flow: Exchange user token for a token to call downstream API\r\n * Use when: Server needs to call microservice on behalf of the logged-in user\r\n */\r\nexport const getTokenOnBehalfOf = createServerOnlyFn(\r\n    async (userToken: string, scopeKey: keyof typeof definedScopes): Promise<string> => {\r\n        const cca = getCCA();\r\n        const scopes = definedScopes[scopeKey];\r\n        const result = await cca.acquireTokenOnBehalfOf({\r\n            oboAssertion: userToken,\r\n            scopes,\r\n        });\r\n        if (!result) throw new Error(\"Failed to acquire OBO token\");\r\n        return result.accessToken;\r\n    }\r\n);\r\n\r\n/**\r\n * Client Credentials flow: Get app-only token (no user context)\r\n * Use when: Background jobs, scheduled tasks, service-to-service calls\r\n */\r\nexport const getAppToken = createServerOnlyFn(\r\n    async (scopeKey: keyof typeof definedScopes): Promise<string> => {\r\n        const cca = getCCA();\r\n        const scopes = definedScopes[scopeKey];\r\n        const defaultScopes = scopes.map(scope => {\r\n            const lastSlash = scope.lastIndexOf('/');\r\n            const baseUri = scope.substring(0, lastSlash);\r\n            return `${baseUri}/.default`;\r\n        });\r\n        const uniqueScopes = [...new Set(defaultScopes)];\r\n        const result = await cca.acquireTokenByClientCredential({ scopes: uniqueScopes });\r\n        if (!result) throw new Error(\"Failed to acquire app token\");\r\n        return result.accessToken;\r\n    }\r\n);\r\n"],"names":["DIGITS","UUID","bytes","unixTsMs","randA","randBHi","randBLo","uuid","_a","_b","_c","_d","hex","inner","i","n","text","e","other","diff","V7Generator","randomNumberGenerator","getDefaultRandom","rollbackAllowance","value","BufferedCryptoRandom","defaultGenerator","uuidv7","uuidv7obj","ccaInstance","getCCA","ConfidentialClientApplication","auth","clientId","serverEnv","ENTRA_CLIENT_ID","clientSecret","ENTRA_CLIENT_SECRET","authority","ENTRA_TENANT_ID","getTokenOnBehalfOf","createServerOnlyFn","userToken","scopeKey","cca","scopes","definedScopes","result","acquireTokenOnBehalfOf","oboAssertion","Error","accessToken","getAppToken","defaultScopes","map","scope","lastSlash","lastIndexOf","substring","uniqueScopes","Set","acquireTokenByClientCredential"],"mappings":";;;;;;;AAQA,MAAMA,IAAS;AAER,MAAMC,EAAK;AAAA;AAAA,EAEd,YAAYC,GAAO;AACf,SAAK,QAAQA;AAAA,EACjB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,OAAO,QAAQA,GAAO;AAClB,QAAIA,EAAM,WAAW;AACjB,YAAM,IAAI,UAAU,oBAAoB;AAGxC,WAAO,IAAID,EAAKC,CAAK;AAAA,EAE7B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,OAAO,aAAaC,GAAUC,GAAOC,GAASC,GAAS;AACnD,QAAI,CAAC,OAAO,UAAUH,CAAQ,KAC1B,CAAC,OAAO,UAAUC,CAAK,KACvB,CAAC,OAAO,UAAUC,CAAO,KACzB,CAAC,OAAO,UAAUC,CAAO,KACzBH,IAAW,KACXC,IAAQ,KACRC,IAAU,KACVC,IAAU,KACVH,IAAW,mBACXC,IAAQ,QACRC,IAAU,cACVC,IAAU;AACV,YAAM,IAAI,WAAW,qBAAqB;AAE9C,UAAMJ,IAAQ,IAAI,WAAW,EAAE;AAC/B,WAAAA,EAAM,CAAC,IAAIC,IAAW,KAAK,IAC3BD,EAAM,CAAC,IAAIC,IAAW,KAAK,IAC3BD,EAAM,CAAC,IAAIC,IAAW,KAAK,IAC3BD,EAAM,CAAC,IAAIC,IAAW,KAAK,IAC3BD,EAAM,CAAC,IAAIC,IAAW,KAAK,GAC3BD,EAAM,CAAC,IAAIC,GACXD,EAAM,CAAC,IAAI,MAAQE,MAAU,GAC7BF,EAAM,CAAC,IAAIE,GACXF,EAAM,CAAC,IAAI,MAAQG,MAAY,IAC/BH,EAAM,CAAC,IAAIG,MAAY,IACvBH,EAAM,EAAE,IAAIG,MAAY,GACxBH,EAAM,EAAE,IAAIG,GACZH,EAAM,EAAE,IAAII,MAAY,IACxBJ,EAAM,EAAE,IAAII,MAAY,IACxBJ,EAAM,EAAE,IAAII,MAAY,GACxBJ,EAAM,EAAE,IAAII,GACL,IAAIL,EAAKC,CAAK;AAAA,EACzB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,OAAO,MAAMK,GAAM;AACf,QAAIC,GAAIC,GAAIC,GAAIC;AAChB,QAAIC;AACJ,YAAQL,EAAK,QAAM;AAAA,MACf,KAAK;AACD,QAAAK,KAAOJ,IAAK,kBAAkB,KAAKD,CAAI,OAAO,QAAQC,MAAO,SAAS,SAASA,EAAG,CAAC;AACnF;AAAA,MACJ,KAAK;AACD,QAAAI,KACKH,IAAK,4EACD,KAAKF,CAAI,OAAO,QAAQE,MAAO,SAAS,SAASA,EAAG,MAAM,GAAG,CAAC,EAAE,KAAK,EAAE;AAChF;AAAA,MACJ,KAAK;AACD,QAAAG,KACKF,IAAK,gFACD,KAAKH,CAAI,OAAO,QAAQG,MAAO,SAAS,SAASA,EAAG,MAAM,GAAG,CAAC,EAAE,KAAK,EAAE;AAChF;AAAA,MACJ,KAAK;AACD,QAAAE,KACKD,IAAK,qFACD,KAAKJ,CAAI,OAAO,QAAQI,MAAO,SAAS,SAASA,EAAG,MAAM,GAAG,CAAC,EAAE,KAAK,EAAE;AAChF;AAAA,IAGhB;AACQ,QAAIC,GAAK;AACL,YAAMC,IAAQ,IAAI,WAAW,EAAE;AAC/B,eAASC,IAAI,GAAGA,IAAI,IAAIA,KAAK,GAAG;AAC5B,cAAMC,IAAI,SAASH,EAAI,UAAU,IAAIE,GAAG,IAAIA,IAAI,CAAC,GAAG,EAAE;AACtD,QAAAD,EAAMC,IAAI,CAAC,IAAIC,MAAM,IACrBF,EAAMC,IAAI,CAAC,IAAIC,MAAM,IACrBF,EAAMC,IAAI,CAAC,IAAIC,MAAM,GACrBF,EAAMC,IAAI,CAAC,IAAIC;AAAA,MACnB;AACA,aAAO,IAAId,EAAKY,CAAK;AAAA,IACzB;AAEI,YAAM,IAAI,YAAY,6BAA6B;AAAA,EAE3D;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,WAAW;AACP,QAAIG,IAAO;AACX,aAASF,IAAI,GAAGA,IAAI,KAAK,MAAM,QAAQA;AACnC,MAAAE,KAAQhB,EAAO,OAAO,KAAK,MAAMc,CAAC,MAAM,CAAC,GACzCE,KAAQhB,EAAO,OAAO,KAAK,MAAMc,CAAC,IAAI,EAAG,IACrCA,MAAM,KAAKA,MAAM,KAAKA,MAAM,KAAKA,MAAM,OACvCE,KAAQ;AAGhB,WAAOA;AAAA,EACX;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,QAAQ;AACJ,QAAIA,IAAO;AACX,aAASF,IAAI,GAAGA,IAAI,KAAK,MAAM,QAAQA;AACnC,MAAAE,KAAQhB,EAAO,OAAO,KAAK,MAAMc,CAAC,MAAM,CAAC,GACzCE,KAAQhB,EAAO,OAAO,KAAK,MAAMc,CAAC,IAAI,EAAG;AAE7C,WAAOE;AAAA,EACX;AAAA;AAAA,EAEA,SAAS;AACL,WAAO,KAAK,SAAQ;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,aAAa;AACT,UAAMD,IAAI,KAAK,MAAM,CAAC,MAAM;AAC5B,QAAIA,IAAI;AACJ,YAAM,IAAI,MAAM,aAAa;AAE5B,QAAIA,KAAK;AACV,aAAO,KAAK,MAAM,MAAM,CAACE,MAAMA,MAAM,CAAC,IAAI,QAAQ;AAEjD,QAAIF,KAAK;AACV,aAAO;AAEN,QAAIA,KAAK;AACV,aAAO;AAEN,QAAIA,KAAK;AACV,aAAO,KAAK,MAAM,MAAM,CAACE,MAAMA,MAAM,GAAI,IAAI,QAAQ;AAGrD,UAAM,IAAI,MAAM,aAAa;AAAA,EAErC;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,aAAa;AACT,WAAO,KAAK,WAAU,MAAO,WAAW,KAAK,MAAM,CAAC,MAAM,IAAI;AAAA,EAClE;AAAA;AAAA,EAEA,QAAQ;AACJ,WAAO,IAAIhB,EAAK,KAAK,MAAM,MAAM,CAAC,CAAC;AAAA,EACvC;AAAA;AAAA,EAEA,OAAOiB,GAAO;AACV,WAAO,KAAK,UAAUA,CAAK,MAAM;AAAA,EACrC;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,UAAUA,GAAO;AACb,aAASJ,IAAI,GAAGA,IAAI,IAAIA,KAAK;AACzB,YAAMK,IAAO,KAAK,MAAML,CAAC,IAAII,EAAM,MAAMJ,CAAC;AAC1C,UAAIK,MAAS;AACT,eAAO,KAAK,KAAKA,CAAI;AAAA,IAE7B;AACA,WAAO;AAAA,EACX;AACJ;AAUO,MAAMC,EAAY;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAMrB,YAAYC,GAAuB;AAI/B,SAAK,mBAAmB,GACxB,KAAK,UAAU,GACf,KAAK,SAASA,KAA6FC,EAAgB;AAAA,EAC/H;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,WAAW;AACP,WAAO,KAAK,oBAAoB,KAAK,IAAG,GAAI,GAAK;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,kBAAkB;AACd,WAAO,KAAK,oBAAoB,KAAK,IAAG,GAAI,GAAK;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,oBAAoBnB,GAAUoB,GAAmB;AAC7C,QAAIC,IAAQ,KAAK,oBAAoBrB,GAAUoB,CAAiB;AAChE,WAAIC,MAAU,WAEV,KAAK,mBAAmB,GACxBA,IAAQ,KAAK,oBAAoBrB,GAAUoB,CAAiB,IAEzDC;AAAA,EACX;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,oBAAoBrB,GAAUoB,GAAmB;AAE7C,QAAI,CAAC,OAAO,UAAUpB,CAAQ,KAC1BA,IAAW,KACXA,IAAW;AACX,YAAM,IAAI,WAAW,8CAA8C;AAElE,QAAIoB,IAAoB,KAAKA,IAAoB;AAClD,YAAM,IAAI,WAAW,6CAA6C;AAGtE,QADApB,KACIA,IAAW,KAAK;AAChB,WAAK,mBAAmBA,GACxB,KAAK,aAAY;AAAA,aAEZA,IAAWoB,KAAqB,KAAK;AAE1C,WAAK,WACD,KAAK,UAAU,kBAEf,KAAK,oBACL,KAAK,aAAY;AAAA;AAKrB;AAEJ,WAAOtB,EAAK,aAAa,KAAK,mBAAmB,GAAG,KAAK,MAAM,KAAK,UAAU,KAAK,EAAE,GAAG,KAAK,UAAW,KAAK,KAAK,GAAI,KAAK,OAAO,YAAY;AAAA,EAClJ;AAAA;AAAA,EAEA,eAAe;AACX,SAAK,UACD,KAAK,OAAO,eAAe,QAAS,KAAK,OAAO,WAAU,IAAK;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,aAAa;AACT,UAAMC,IAAQ,IAAI,WAAW,YAAY,GAAG,KAAK,OAAO,WAAU,GAAI,KAAK,OAAO,cAAc,KAAK,OAAO,WAAU,GAAI,KAAK,OAAO,YAAY,EAAE,MAAM;AAC1J,WAAAA,EAAM,CAAC,IAAI,KAAQA,EAAM,CAAC,MAAM,GAChCA,EAAM,CAAC,IAAI,MAAQA,EAAM,CAAC,MAAM,GACzBD,EAAK,QAAQC,CAAK;AAAA,EAC7B;AACJ;AAEA,MAAMoB,IAAmB,MAAM;AAE3B,MAAI,OAAO,SAAW,OAClB,OAAO,OAAO,kBAAoB;AAClC,WAAO,IAAIG,EAAoB;AAI/B,MAAI,OAAO,uBAAyB,OAAe;AAC/C,UAAM,IAAI,MAAM,2CAA2C;AAE/D,SAAO;AAAA,IACH,YAAY,MAAM,KAAK,MAAM,KAAK,OAAM,IAAK,KAAK,IAAI,QAClD,KAAK,MAAM,KAAK,OAAM,IAAK,KAAK;AAAA,EAChD;AAEA;AAMA,MAAMA,EAAqB;AAAA,EACvB,cAAc;AACV,SAAK,SAAS,IAAI,YAAY,CAAC,GAC/B,KAAK,SAAS;AAAA,EAClB;AAAA,EACA,aAAa;AACT,WAAI,KAAK,UAAU,KAAK,OAAO,WAC3B,OAAO,gBAAgB,KAAK,MAAM,GAClC,KAAK,SAAS,IAEX,KAAK,OAAO,KAAK,QAAQ;AAAA,EACpC;AACJ;AACA,IAAIC;AAOQ,MAACC,IAAS,MAAMC,EAAS,EAAG,SAAQ,GAEnCA,IAAY,OAAOF,MAAqBA,IAAmB,IAAIN,EAAW,IAAK,SAAQ;ACvYpG,IAAIS,IAAoD;AACxD,SAASC,IAAwC;AAC7CD,SAAAA,MAAgB,IAAIE,EAA8B;AAAA,IAC9CC,MAAM;AAAA,MACFC,UAAUC,EAAUC;AAAAA,MACpBC,cAAcF,EAAUG;AAAAA,MACxBC,WAAW,qCAAqCJ,EAAUK,eAAe;AAAA,IAAA;AAAA,EAC7E,CACH,GACMV;AACX;AAMO,MAAMW,IAAqBC,EAC9B,OAAOC,GAAmBC,MAA0D;AAChF,QAAMC,IAAMd,EAAAA,GACNe,IAASC,EAAcH,CAAQ,GAC/BI,IAAS,MAAMH,EAAII,uBAAuB;AAAA,IAC5CC,cAAcP;AAAAA,IAAAA,QACdG;AAAAA,EAAAA,CACH;AACD,MAAI,CAACE,EAAQ,OAAM,IAAIG,MAAM,6BAA6B;AAC1D,SAAOH,EAAOI;AAClB,CACJ,GAMaC,IAAcX,EACvB,OAAOE,MAA0D;AAC7D,QAAMC,IAAMd,EAAAA,GAENuB,IADSP,EAAcH,CAAQ,EACRW,IAAIC,CAAAA,MAAS;AACtC,UAAMC,IAAYD,EAAME,YAAY,GAAG;AAEvC,WAAO,GADSF,EAAMG,UAAU,GAAGF,CAAS,CAC3B;AAAA,EACrB,CAAC,GACKG,IAAe,CAAC,GAAG,IAAIC,IAAIP,CAAa,CAAC,GACzCN,IAAS,MAAMH,EAAIiB,+BAA+B;AAAA,IAAEhB,QAAQc;AAAAA,EAAAA,CAAc;AAChF,MAAI,CAACZ,EAAQ,OAAM,IAAIG,MAAM,6BAA6B;AAC1D,SAAOH,EAAOI;AAClB,CACJ;","x_google_ignoreList":[0]}
+{"version":3,"file":"utils.js","sources":["../node_modules/uuidv7/dist/index.js"],"sourcesContent":["/**\n * uuidv7: A JavaScript implementation of UUID version 7\n *\n * Copyright 2021-2025 LiosK\n *\n * @license Apache-2.0\n * @packageDocumentation\n */\nconst DIGITS = \"0123456789abcdef\";\n/** Represents a UUID as a 16-byte byte array. */\nexport class UUID {\n    /** @param bytes - The 16-byte byte array representation. */\n    constructor(bytes) {\n        this.bytes = bytes;\n    }\n    /**\n     * Creates an object from the internal representation, a 16-byte byte array\n     * containing the binary UUID representation in the big-endian byte order.\n     *\n     * This method does NOT shallow-copy the argument, and thus the created object\n     * holds the reference to the underlying buffer.\n     *\n     * @throws TypeError if the length of the argument is not 16.\n     */\n    static ofInner(bytes) {\n        if (bytes.length !== 16) {\n            throw new TypeError(\"not 128-bit length\");\n        }\n        else {\n            return new UUID(bytes);\n        }\n    }\n    /**\n     * Builds a byte array from UUIDv7 field values.\n     *\n     * @param unixTsMs - A 48-bit `unix_ts_ms` field value.\n     * @param randA - A 12-bit `rand_a` field value.\n     * @param randBHi - The higher 30 bits of 62-bit `rand_b` field value.\n     * @param randBLo - The lower 32 bits of 62-bit `rand_b` field value.\n     * @throws RangeError if any field value is out of the specified range.\n     */\n    static fromFieldsV7(unixTsMs, randA, randBHi, randBLo) {\n        if (!Number.isInteger(unixTsMs) ||\n            !Number.isInteger(randA) ||\n            !Number.isInteger(randBHi) ||\n            !Number.isInteger(randBLo) ||\n            unixTsMs < 0 ||\n            randA < 0 ||\n            randBHi < 0 ||\n            randBLo < 0 ||\n            unixTsMs > 281474976710655 ||\n            randA > 0xfff ||\n            randBHi > 1073741823 ||\n            randBLo > 4294967295) {\n            throw new RangeError(\"invalid field value\");\n        }\n        const bytes = new Uint8Array(16);\n        bytes[0] = unixTsMs / 2 ** 40;\n        bytes[1] = unixTsMs / 2 ** 32;\n        bytes[2] = unixTsMs / 2 ** 24;\n        bytes[3] = unixTsMs / 2 ** 16;\n        bytes[4] = unixTsMs / 2 ** 8;\n        bytes[5] = unixTsMs;\n        bytes[6] = 0x70 | (randA >>> 8);\n        bytes[7] = randA;\n        bytes[8] = 0x80 | (randBHi >>> 24);\n        bytes[9] = randBHi >>> 16;\n        bytes[10] = randBHi >>> 8;\n        bytes[11] = randBHi;\n        bytes[12] = randBLo >>> 24;\n        bytes[13] = randBLo >>> 16;\n        bytes[14] = randBLo >>> 8;\n        bytes[15] = randBLo;\n        return new UUID(bytes);\n    }\n    /**\n     * Builds a byte array from a string representation.\n     *\n     * This method accepts the following formats:\n     *\n     * - 32-digit hexadecimal format without hyphens: `0189dcd553117d408db09496a2eef37b`\n     * - 8-4-4-4-12 hyphenated format: `0189dcd5-5311-7d40-8db0-9496a2eef37b`\n     * - Hyphenated format with surrounding braces: `{0189dcd5-5311-7d40-8db0-9496a2eef37b}`\n     * - RFC 9562 URN format: `urn:uuid:0189dcd5-5311-7d40-8db0-9496a2eef37b`\n     *\n     * Leading and trailing whitespaces represents an error.\n     *\n     * @throws SyntaxError if the argument could not parse as a valid UUID string.\n     */\n    static parse(uuid) {\n        var _a, _b, _c, _d;\n        let hex = undefined;\n        switch (uuid.length) {\n            case 32:\n                hex = (_a = /^[0-9a-f]{32}$/i.exec(uuid)) === null || _a === void 0 ? void 0 : _a[0];\n                break;\n            case 36:\n                hex =\n                    (_b = /^([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})$/i\n                        .exec(uuid)) === null || _b === void 0 ? void 0 : _b.slice(1, 6).join(\"\");\n                break;\n            case 38:\n                hex =\n                    (_c = /^\\{([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})\\}$/i\n                        .exec(uuid)) === null || _c === void 0 ? void 0 : _c.slice(1, 6).join(\"\");\n                break;\n            case 45:\n                hex =\n                    (_d = /^urn:uuid:([0-9a-f]{8})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{4})-([0-9a-f]{12})$/i\n                        .exec(uuid)) === null || _d === void 0 ? void 0 : _d.slice(1, 6).join(\"\");\n                break;\n            default:\n                break;\n        }\n        if (hex) {\n            const inner = new Uint8Array(16);\n            for (let i = 0; i < 16; i += 4) {\n                const n = parseInt(hex.substring(2 * i, 2 * i + 8), 16);\n                inner[i + 0] = n >>> 24;\n                inner[i + 1] = n >>> 16;\n                inner[i + 2] = n >>> 8;\n                inner[i + 3] = n;\n            }\n            return new UUID(inner);\n        }\n        else {\n            throw new SyntaxError(\"could not parse UUID string\");\n        }\n    }\n    /**\n     * @returns The 8-4-4-4-12 canonical hexadecimal string representation\n     * (`0189dcd5-5311-7d40-8db0-9496a2eef37b`).\n     */\n    toString() {\n        let text = \"\";\n        for (let i = 0; i < this.bytes.length; i++) {\n            text += DIGITS.charAt(this.bytes[i] >>> 4);\n            text += DIGITS.charAt(this.bytes[i] & 0xf);\n            if (i === 3 || i === 5 || i === 7 || i === 9) {\n                text += \"-\";\n            }\n        }\n        return text;\n    }\n    /**\n     * @returns The 32-digit hexadecimal representation without hyphens\n     * (`0189dcd553117d408db09496a2eef37b`).\n     */\n    toHex() {\n        let text = \"\";\n        for (let i = 0; i < this.bytes.length; i++) {\n            text += DIGITS.charAt(this.bytes[i] >>> 4);\n            text += DIGITS.charAt(this.bytes[i] & 0xf);\n        }\n        return text;\n    }\n    /** @returns The 8-4-4-4-12 canonical hexadecimal string representation. */\n    toJSON() {\n        return this.toString();\n    }\n    /**\n     * Reports the variant field value of the UUID or, if appropriate, \"NIL\" or\n     * \"MAX\".\n     *\n     * For convenience, this method reports \"NIL\" or \"MAX\" if `this` represents\n     * the Nil or Max UUID, although the Nil and Max UUIDs are technically\n     * subsumed under the variants `0b0` and `0b111`, respectively.\n     */\n    getVariant() {\n        const n = this.bytes[8] >>> 4;\n        if (n < 0) {\n            throw new Error(\"unreachable\");\n        }\n        else if (n <= 0b0111) {\n            return this.bytes.every((e) => e === 0) ? \"NIL\" : \"VAR_0\";\n        }\n        else if (n <= 0b1011) {\n            return \"VAR_10\";\n        }\n        else if (n <= 0b1101) {\n            return \"VAR_110\";\n        }\n        else if (n <= 0b1111) {\n            return this.bytes.every((e) => e === 0xff) ? \"MAX\" : \"VAR_RESERVED\";\n        }\n        else {\n            throw new Error(\"unreachable\");\n        }\n    }\n    /**\n     * Returns the version field value of the UUID or `undefined` if the UUID does\n     * not have the variant field value of `0b10`.\n     */\n    getVersion() {\n        return this.getVariant() === \"VAR_10\" ? this.bytes[6] >>> 4 : undefined;\n    }\n    /** Creates an object from `this`. */\n    clone() {\n        return new UUID(this.bytes.slice(0));\n    }\n    /** Returns true if `this` is equivalent to `other`. */\n    equals(other) {\n        return this.compareTo(other) === 0;\n    }\n    /**\n     * Returns a negative integer, zero, or positive integer if `this` is less\n     * than, equal to, or greater than `other`, respectively.\n     */\n    compareTo(other) {\n        for (let i = 0; i < 16; i++) {\n            const diff = this.bytes[i] - other.bytes[i];\n            if (diff !== 0) {\n                return Math.sign(diff);\n            }\n        }\n        return 0;\n    }\n}\n/**\n * Encapsulates the monotonic counter state.\n *\n * This class provides APIs to utilize a separate counter state from that of the\n * global generator used by {@link uuidv7} and {@link uuidv7obj}. In addition to\n * the default {@link generate} method, this class has {@link generateOrAbort}\n * that is useful to absolutely guarantee the monotonically increasing order of\n * generated UUIDs. See their respective documentation for details.\n */\nexport class V7Generator {\n    /**\n     * Creates a generator object with the default random number generator, or\n     * with the specified one if passed as an argument. The specified random\n     * number generator should be cryptographically strong and securely seeded.\n     */\n    constructor(randomNumberGenerator) {\n        /**\n         * Biased by one to distinguish zero (uninitialized) and zero (UNIX epoch).\n         */\n        this.timestamp_biased = 0;\n        this.counter = 0;\n        this.random = randomNumberGenerator !== null && randomNumberGenerator !== void 0 ? randomNumberGenerator : getDefaultRandom();\n    }\n    /**\n     * Generates a new UUIDv7 object from the current timestamp, or resets the\n     * generator upon significant timestamp rollback.\n     *\n     * This method returns a monotonically increasing UUID by reusing the previous\n     * timestamp even if the up-to-date timestamp is smaller than the immediately\n     * preceding UUID's. However, when such a clock rollback is considered\n     * significant (i.e., by more than ten seconds), this method resets the\n     * generator and returns a new UUID based on the given timestamp, breaking the\n     * increasing order of UUIDs.\n     *\n     * See {@link generateOrAbort} for the other mode of generation and\n     * {@link generateOrResetCore} for the low-level primitive.\n     */\n    generate() {\n        return this.generateOrResetCore(Date.now(), 10000);\n    }\n    /**\n     * Generates a new UUIDv7 object from the current timestamp, or returns\n     * `undefined` upon significant timestamp rollback.\n     *\n     * This method returns a monotonically increasing UUID by reusing the previous\n     * timestamp even if the up-to-date timestamp is smaller than the immediately\n     * preceding UUID's. However, when such a clock rollback is considered\n     * significant (i.e., by more than ten seconds), this method aborts and\n     * returns `undefined` immediately.\n     *\n     * See {@link generate} for the other mode of generation and\n     * {@link generateOrAbortCore} for the low-level primitive.\n     */\n    generateOrAbort() {\n        return this.generateOrAbortCore(Date.now(), 10000);\n    }\n    /**\n     * Generates a new UUIDv7 object from the `unixTsMs` passed, or resets the\n     * generator upon significant timestamp rollback.\n     *\n     * This method is equivalent to {@link generate} except that it takes a custom\n     * timestamp and clock rollback allowance.\n     *\n     * @param rollbackAllowance - The amount of `unixTsMs` rollback that is\n     * considered significant. A suggested value is `10_000` (milliseconds).\n     * @throws RangeError if `unixTsMs` is not a 48-bit unsigned integer.\n     */\n    generateOrResetCore(unixTsMs, rollbackAllowance) {\n        let value = this.generateOrAbortCore(unixTsMs, rollbackAllowance);\n        if (value === undefined) {\n            // reset state and resume\n            this.timestamp_biased = 0;\n            value = this.generateOrAbortCore(unixTsMs, rollbackAllowance);\n        }\n        return value;\n    }\n    /**\n     * Generates a new UUIDv7 object from the `unixTsMs` passed, or returns\n     * `undefined` upon significant timestamp rollback.\n     *\n     * This method is equivalent to {@link generateOrAbort} except that it takes a\n     * custom timestamp and clock rollback allowance.\n     *\n     * @param rollbackAllowance - The amount of `unixTsMs` rollback that is\n     * considered significant. A suggested value is `10_000` (milliseconds).\n     * @throws RangeError if `unixTsMs` is not a 48-bit unsigned integer.\n     */\n    generateOrAbortCore(unixTsMs, rollbackAllowance) {\n        const MAX_COUNTER = 4398046511103;\n        if (!Number.isInteger(unixTsMs) ||\n            unixTsMs < 0 ||\n            unixTsMs > 281474976710655) {\n            throw new RangeError(\"`unixTsMs` must be a 48-bit unsigned integer\");\n        }\n        else if (rollbackAllowance < 0 || rollbackAllowance > 281474976710655) {\n            throw new RangeError(\"`rollbackAllowance` out of reasonable range\");\n        }\n        unixTsMs++;\n        if (unixTsMs > this.timestamp_biased) {\n            this.timestamp_biased = unixTsMs;\n            this.resetCounter();\n        }\n        else if (unixTsMs + rollbackAllowance >= this.timestamp_biased) {\n            // go on with previous timestamp if new one is not much smaller\n            this.counter++;\n            if (this.counter > MAX_COUNTER) {\n                // increment timestamp at counter overflow\n                this.timestamp_biased++;\n                this.resetCounter();\n            }\n        }\n        else {\n            // abort if clock went backwards to unbearable extent\n            return undefined;\n        }\n        return UUID.fromFieldsV7(this.timestamp_biased - 1, Math.trunc(this.counter / 2 ** 30), this.counter & (2 ** 30 - 1), this.random.nextUint32());\n    }\n    /** Initializes the counter at a 42-bit random integer. */\n    resetCounter() {\n        this.counter =\n            this.random.nextUint32() * 0x400 + (this.random.nextUint32() & 0x3ff);\n    }\n    /**\n     * Generates a new UUIDv4 object utilizing the random number generator inside.\n     *\n     * @internal\n     */\n    generateV4() {\n        const bytes = new Uint8Array(Uint32Array.of(this.random.nextUint32(), this.random.nextUint32(), this.random.nextUint32(), this.random.nextUint32()).buffer);\n        bytes[6] = 0x40 | (bytes[6] >>> 4);\n        bytes[8] = 0x80 | (bytes[8] >>> 2);\n        return UUID.ofInner(bytes);\n    }\n}\n/** Returns the default random number generator available in the environment. */\nconst getDefaultRandom = () => {\n    // detect Web Crypto API\n    if (typeof crypto !== \"undefined\" &&\n        typeof crypto.getRandomValues !== \"undefined\") {\n        return new BufferedCryptoRandom();\n    }\n    else {\n        // fall back on Math.random() unless the flag is set to true\n        if (typeof UUIDV7_DENY_WEAK_RNG !== \"undefined\" && UUIDV7_DENY_WEAK_RNG) {\n            throw new Error(\"no cryptographically strong RNG available\");\n        }\n        return {\n            nextUint32: () => Math.trunc(Math.random() * 65536) * 65536 +\n                Math.trunc(Math.random() * 65536),\n        };\n    }\n};\n/**\n * Wraps `crypto.getRandomValues()` to enable buffering; this uses a small\n * buffer by default to avoid both unbearable throughput decline in some\n * environments and the waste of time and space for unused values.\n */\nclass BufferedCryptoRandom {\n    constructor() {\n        this.buffer = new Uint32Array(8);\n        this.cursor = 0xffff;\n    }\n    nextUint32() {\n        if (this.cursor >= this.buffer.length) {\n            crypto.getRandomValues(this.buffer);\n            this.cursor = 0;\n        }\n        return this.buffer[this.cursor++];\n    }\n}\nlet defaultGenerator;\n/**\n * Generates a UUIDv7 string.\n *\n * @returns The 8-4-4-4-12 canonical hexadecimal string representation\n * (\"xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx\").\n */\nexport const uuidv7 = () => uuidv7obj().toString();\n/** Generates a UUIDv7 object. */\nexport const uuidv7obj = () => (defaultGenerator || (defaultGenerator = new V7Generator())).generate();\n/**\n * Generates a UUIDv4 string.\n *\n * @returns The 8-4-4-4-12 canonical hexadecimal string representation\n * (\"xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx\").\n */\nexport const uuidv4 = () => uuidv4obj().toString();\n/** Generates a UUIDv4 object. */\nexport const uuidv4obj = () => (defaultGenerator || (defaultGenerator = new V7Generator())).generateV4();\n"],"names":["DIGITS","UUID","bytes","unixTsMs","randA","randBHi","randBLo","uuid","_a","_b","_c","_d","hex","inner","i","n","text","e","other","diff","V7Generator","randomNumberGenerator","getDefaultRandom","rollbackAllowance","value","BufferedCryptoRandom","defaultGenerator","uuidv7","uuidv7obj"],"mappings":";;;;AAQA,MAAMA,IAAS;AAER,MAAMC,EAAK;AAAA;AAAA,EAEd,YAAYC,GAAO;AACf,SAAK,QAAQA;AAAA,EACjB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,OAAO,QAAQA,GAAO;AAClB,QAAIA,EAAM,WAAW;AACjB,YAAM,IAAI,UAAU,oBAAoB;AAGxC,WAAO,IAAID,EAAKC,CAAK;AAAA,EAE7B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,OAAO,aAAaC,GAAUC,GAAOC,GAASC,GAAS;AACnD,QAAI,CAAC,OAAO,UAAUH,CAAQ,KAC1B,CAAC,OAAO,UAAUC,CAAK,KACvB,CAAC,OAAO,UAAUC,CAAO,KACzB,CAAC,OAAO,UAAUC,CAAO,KACzBH,IAAW,KACXC,IAAQ,KACRC,IAAU,KACVC,IAAU,KACVH,IAAW,mBACXC,IAAQ,QACRC,IAAU,cACVC,IAAU;AACV,YAAM,IAAI,WAAW,qBAAqB;AAE9C,UAAMJ,IAAQ,IAAI,WAAW,EAAE;AAC/B,WAAAA,EAAM,CAAC,IAAIC,IAAW,KAAK,IAC3BD,EAAM,CAAC,IAAIC,IAAW,KAAK,IAC3BD,EAAM,CAAC,IAAIC,IAAW,KAAK,IAC3BD,EAAM,CAAC,IAAIC,IAAW,KAAK,IAC3BD,EAAM,CAAC,IAAIC,IAAW,KAAK,GAC3BD,EAAM,CAAC,IAAIC,GACXD,EAAM,CAAC,IAAI,MAAQE,MAAU,GAC7BF,EAAM,CAAC,IAAIE,GACXF,EAAM,CAAC,IAAI,MAAQG,MAAY,IAC/BH,EAAM,CAAC,IAAIG,MAAY,IACvBH,EAAM,EAAE,IAAIG,MAAY,GACxBH,EAAM,EAAE,IAAIG,GACZH,EAAM,EAAE,IAAII,MAAY,IACxBJ,EAAM,EAAE,IAAII,MAAY,IACxBJ,EAAM,EAAE,IAAII,MAAY,GACxBJ,EAAM,EAAE,IAAII,GACL,IAAIL,EAAKC,CAAK;AAAA,EACzB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,OAAO,MAAMK,GAAM;AACf,QAAIC,GAAIC,GAAIC,GAAIC;AAChB,QAAIC;AACJ,YAAQL,EAAK,QAAM;AAAA,MACf,KAAK;AACD,QAAAK,KAAOJ,IAAK,kBAAkB,KAAKD,CAAI,OAAO,QAAQC,MAAO,SAAS,SAASA,EAAG,CAAC;AACnF;AAAA,MACJ,KAAK;AACD,QAAAI,KACKH,IAAK,4EACD,KAAKF,CAAI,OAAO,QAAQE,MAAO,SAAS,SAASA,EAAG,MAAM,GAAG,CAAC,EAAE,KAAK,EAAE;AAChF;AAAA,MACJ,KAAK;AACD,QAAAG,KACKF,IAAK,gFACD,KAAKH,CAAI,OAAO,QAAQG,MAAO,SAAS,SAASA,EAAG,MAAM,GAAG,CAAC,EAAE,KAAK,EAAE;AAChF;AAAA,MACJ,KAAK;AACD,QAAAE,KACKD,IAAK,qFACD,KAAKJ,CAAI,OAAO,QAAQI,MAAO,SAAS,SAASA,EAAG,MAAM,GAAG,CAAC,EAAE,KAAK,EAAE;AAChF;AAAA,IAGhB;AACQ,QAAIC,GAAK;AACL,YAAMC,IAAQ,IAAI,WAAW,EAAE;AAC/B,eAASC,IAAI,GAAGA,IAAI,IAAIA,KAAK,GAAG;AAC5B,cAAMC,IAAI,SAASH,EAAI,UAAU,IAAIE,GAAG,IAAIA,IAAI,CAAC,GAAG,EAAE;AACtD,QAAAD,EAAMC,IAAI,CAAC,IAAIC,MAAM,IACrBF,EAAMC,IAAI,CAAC,IAAIC,MAAM,IACrBF,EAAMC,IAAI,CAAC,IAAIC,MAAM,GACrBF,EAAMC,IAAI,CAAC,IAAIC;AAAA,MACnB;AACA,aAAO,IAAId,EAAKY,CAAK;AAAA,IACzB;AAEI,YAAM,IAAI,YAAY,6BAA6B;AAAA,EAE3D;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,WAAW;AACP,QAAIG,IAAO;AACX,aAASF,IAAI,GAAGA,IAAI,KAAK,MAAM,QAAQA;AACnC,MAAAE,KAAQhB,EAAO,OAAO,KAAK,MAAMc,CAAC,MAAM,CAAC,GACzCE,KAAQhB,EAAO,OAAO,KAAK,MAAMc,CAAC,IAAI,EAAG,IACrCA,MAAM,KAAKA,MAAM,KAAKA,MAAM,KAAKA,MAAM,OACvCE,KAAQ;AAGhB,WAAOA;AAAA,EACX;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,QAAQ;AACJ,QAAIA,IAAO;AACX,aAASF,IAAI,GAAGA,IAAI,KAAK,MAAM,QAAQA;AACnC,MAAAE,KAAQhB,EAAO,OAAO,KAAK,MAAMc,CAAC,MAAM,CAAC,GACzCE,KAAQhB,EAAO,OAAO,KAAK,MAAMc,CAAC,IAAI,EAAG;AAE7C,WAAOE;AAAA,EACX;AAAA;AAAA,EAEA,SAAS;AACL,WAAO,KAAK,SAAQ;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,aAAa;AACT,UAAMD,IAAI,KAAK,MAAM,CAAC,MAAM;AAC5B,QAAIA,IAAI;AACJ,YAAM,IAAI,MAAM,aAAa;AAE5B,QAAIA,KAAK;AACV,aAAO,KAAK,MAAM,MAAM,CAACE,MAAMA,MAAM,CAAC,IAAI,QAAQ;AAEjD,QAAIF,KAAK;AACV,aAAO;AAEN,QAAIA,KAAK;AACV,aAAO;AAEN,QAAIA,KAAK;AACV,aAAO,KAAK,MAAM,MAAM,CAACE,MAAMA,MAAM,GAAI,IAAI,QAAQ;AAGrD,UAAM,IAAI,MAAM,aAAa;AAAA,EAErC;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,aAAa;AACT,WAAO,KAAK,WAAU,MAAO,WAAW,KAAK,MAAM,CAAC,MAAM,IAAI;AAAA,EAClE;AAAA;AAAA,EAEA,QAAQ;AACJ,WAAO,IAAIhB,EAAK,KAAK,MAAM,MAAM,CAAC,CAAC;AAAA,EACvC;AAAA;AAAA,EAEA,OAAOiB,GAAO;AACV,WAAO,KAAK,UAAUA,CAAK,MAAM;AAAA,EACrC;AAAA;AAAA;AAAA;AAAA;AAAA,EAKA,UAAUA,GAAO;AACb,aAASJ,IAAI,GAAGA,IAAI,IAAIA,KAAK;AACzB,YAAMK,IAAO,KAAK,MAAML,CAAC,IAAII,EAAM,MAAMJ,CAAC;AAC1C,UAAIK,MAAS;AACT,eAAO,KAAK,KAAKA,CAAI;AAAA,IAE7B;AACA,WAAO;AAAA,EACX;AACJ;AAUO,MAAMC,EAAY;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAMrB,YAAYC,GAAuB;AAI/B,SAAK,mBAAmB,GACxB,KAAK,UAAU,GACf,KAAK,SAASA,KAA6FC,EAAgB;AAAA,EAC/H;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,WAAW;AACP,WAAO,KAAK,oBAAoB,KAAK,IAAG,GAAI,GAAK;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,kBAAkB;AACd,WAAO,KAAK,oBAAoB,KAAK,IAAG,GAAI,GAAK;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,oBAAoBnB,GAAUoB,GAAmB;AAC7C,QAAIC,IAAQ,KAAK,oBAAoBrB,GAAUoB,CAAiB;AAChE,WAAIC,MAAU,WAEV,KAAK,mBAAmB,GACxBA,IAAQ,KAAK,oBAAoBrB,GAAUoB,CAAiB,IAEzDC;AAAA,EACX;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,oBAAoBrB,GAAUoB,GAAmB;AAE7C,QAAI,CAAC,OAAO,UAAUpB,CAAQ,KAC1BA,IAAW,KACXA,IAAW;AACX,YAAM,IAAI,WAAW,8CAA8C;AAElE,QAAIoB,IAAoB,KAAKA,IAAoB;AAClD,YAAM,IAAI,WAAW,6CAA6C;AAGtE,QADApB,KACIA,IAAW,KAAK;AAChB,WAAK,mBAAmBA,GACxB,KAAK,aAAY;AAAA,aAEZA,IAAWoB,KAAqB,KAAK;AAE1C,WAAK,WACD,KAAK,UAAU,kBAEf,KAAK,oBACL,KAAK,aAAY;AAAA;AAKrB;AAEJ,WAAOtB,EAAK,aAAa,KAAK,mBAAmB,GAAG,KAAK,MAAM,KAAK,UAAU,KAAK,EAAE,GAAG,KAAK,UAAW,KAAK,KAAK,GAAI,KAAK,OAAO,YAAY;AAAA,EAClJ;AAAA;AAAA,EAEA,eAAe;AACX,SAAK,UACD,KAAK,OAAO,eAAe,QAAS,KAAK,OAAO,WAAU,IAAK;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,aAAa;AACT,UAAMC,IAAQ,IAAI,WAAW,YAAY,GAAG,KAAK,OAAO,WAAU,GAAI,KAAK,OAAO,cAAc,KAAK,OAAO,WAAU,GAAI,KAAK,OAAO,YAAY,EAAE,MAAM;AAC1J,WAAAA,EAAM,CAAC,IAAI,KAAQA,EAAM,CAAC,MAAM,GAChCA,EAAM,CAAC,IAAI,MAAQA,EAAM,CAAC,MAAM,GACzBD,EAAK,QAAQC,CAAK;AAAA,EAC7B;AACJ;AAEA,MAAMoB,IAAmB,MAAM;AAE3B,MAAI,OAAO,SAAW,OAClB,OAAO,OAAO,kBAAoB;AAClC,WAAO,IAAIG,EAAoB;AAI/B,MAAI,OAAO,uBAAyB,OAAe;AAC/C,UAAM,IAAI,MAAM,2CAA2C;AAE/D,SAAO;AAAA,IACH,YAAY,MAAM,KAAK,MAAM,KAAK,OAAM,IAAK,KAAK,IAAI,QAClD,KAAK,MAAM,KAAK,OAAM,IAAK,KAAK;AAAA,EAChD;AAEA;AAMA,MAAMA,EAAqB;AAAA,EACvB,cAAc;AACV,SAAK,SAAS,IAAI,YAAY,CAAC,GAC/B,KAAK,SAAS;AAAA,EAClB;AAAA,EACA,aAAa;AACT,WAAI,KAAK,UAAU,KAAK,OAAO,WAC3B,OAAO,gBAAgB,KAAK,MAAM,GAClC,KAAK,SAAS,IAEX,KAAK,OAAO,KAAK,QAAQ;AAAA,EACpC;AACJ;AACA,IAAIC;AAOQ,MAACC,IAAS,MAAMC,EAAS,EAAG,SAAQ,GAEnCA,IAAY,OAAOF,MAAqBA,IAAmB,IAAIN,EAAW,IAAK,SAAQ;","x_google_ignoreList":[0]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "wcz-test",
-  "version": "7.2.0",
+  "version": "7.2.2",
   "private": false,
   "sideEffects": false,
   "type": "module",
@@ -33,6 +33,10 @@
       "types": "./dist/exports/utils.d.ts",
       "import": "./dist/utils.js"
     },
+    "./server": {
+      "types": "./dist/exports/server.d.ts",
+      "import": "./dist/server.js"
+    },
     "./vite": {
       "types": "./dist/exports/vite.d.ts",
       "import": "./dist/vite.js"
@@ -51,6 +55,9 @@
     "prepublishOnly": "npm run build"
   },
   "dependencies": {
+    "@azure/msal-browser": "^5.0.2",
+    "@azure/msal-node": "^5.0.2",
+    "@azure/msal-react": "^5.0.2",
     "@t3-oss/env-core": "^0.13.10",
     "axios": "^1.13.2",
     "i18next": "^25.7.4",
@@ -58,9 +65,6 @@
     "react-i18next": "^16.5.3"
   },
   "devDependencies": {
-    "@azure/msal-browser": "^5.0.2",
-    "@azure/msal-node": "^5.0.2",
-    "@azure/msal-react": "^5.0.2",
     "@tanstack/eslint-config": "^0.3.4",
     "@tanstack/eslint-plugin-query": "^5.91.3",
     "@tanstack/eslint-plugin-router": "^1.141.0",