whale-code 6.5.4 → 6.5.6

package/dist/cli/services/api-retry.js

@@ -7,43 +7,48 @@
  * Respects `retry-after` header on 429 responses.
  * 429 gets a 4x delay multiplier since the server is actively rate-limiting.
  */
+
 const RETRIABLE_STATUS_CODES = new Set([429, 500, 502, 503, 504, 529]);
-const RETRIABLE_ERROR_PATTERNS = [
-    "ECONNRESET",
-    "ECONNREFUSED",
-    "ETIMEDOUT",
-    "ENOTFOUND",
-    "fetch failed",
-    "network",
-    "socket hang up",
-    "aborted",
-];
+const RETRIABLE_ERROR_PATTERNS = ["ECONNRESET", "ECONNREFUSED", "ETIMEDOUT", "ENOTFOUND", "fetch failed", "network", "socket hang up", "aborted"];
 function isRetriable(err) {
-    if (!err || typeof err !== "object")
-        return { retriable: false };
-    const e = err;
-    // Anthropic SDK errors expose `.status` for HTTP status codes
-    const status = e.status ?? e.statusCode;
-    if (status && RETRIABLE_STATUS_CODES.has(status)) {
-        let retryAfterMs;
-        // Check for retry-after header (Anthropic SDK surfaces headers on error)
-        const headers = e.headers;
-        if (headers?.["retry-after"]) {
-            const retryAfterSec = parseFloat(headers["retry-after"]);
-            if (!isNaN(retryAfterSec)) {
-                retryAfterMs = retryAfterSec * 1000;
-            }
-        }
-        return { retriable: true, statusCode: status, retryAfterMs };
+  if (!err || typeof err !== "object") return {
+    retriable: false
+  };
+  const e = err;
+
+  // Anthropic SDK errors expose `.status` for HTTP status codes
+  const status = e.status ?? e.statusCode;
+  if (status && RETRIABLE_STATUS_CODES.has(status)) {
+    let retryAfterMs;
+
+    // Check for retry-after header (Anthropic SDK surfaces headers on error)
+    const headers = e.headers;
+    if (headers?.["retry-after"]) {
+      const retryAfterSec = parseFloat(headers["retry-after"]);
+      if (!isNaN(retryAfterSec)) {
+        retryAfterMs = retryAfterSec * 1000;
+      }
     }
-    // Check error message for network-level failures
-    const message = (e.message ?? "").toLowerCase();
-    const code = e.code ?? "";
-    if (RETRIABLE_ERROR_PATTERNS.some(p => message.includes(p.toLowerCase()) || code === p)) {
-        return { retriable: true };
-    }
-    return { retriable: false };
+    return {
+      retriable: true,
+      statusCode: status,
+      retryAfterMs
+    };
+  }
+
+  // Check error message for network-level failures
+  const message = (e.message ?? "").toLowerCase();
+  const code = e.code ?? "";
+  if (RETRIABLE_ERROR_PATTERNS.some(p => message.includes(p.toLowerCase()) || code === p)) {
+    return {
+      retriable: true
+    };
+  }
+  return {
+    retriable: false
+  };
 }
+
 /**
  * Call an async function with automatic retry and exponential backoff.
  *
@@ -54,38 +59,38 @@ function isRetriable(err) {
  *   );
  */
 export async function callWithRetry(fn, opts = {}) {
-    const maxRetries = opts.maxRetries ?? 3;
-    const baseDelayMs = opts.baseDelayMs ?? 2000;
-    const maxDelayMs = opts.maxDelayMs ?? 30000;
-    const label = opts.label ?? "api";
-    let lastError;
-    for (let attempt = 0; attempt <= maxRetries; attempt++) {
-        try {
-            return await fn();
-        }
-        catch (err) {
-            lastError = err;
-            if (attempt >= maxRetries)
-                break;
-            const { retriable, statusCode, retryAfterMs } = isRetriable(err);
-            if (!retriable)
-                throw err;
-            // Exponential backoff: 2s → 8s → 30s
-            let delayMs = Math.min(baseDelayMs * Math.pow(2, attempt), maxDelayMs);
-            // 429 gets 4x multiplier — the server is rate-limiting us
-            if (statusCode === 429) {
-                delayMs = retryAfterMs
-                    ? Math.min(retryAfterMs, maxDelayMs)
-                    : Math.min(delayMs * 4, maxDelayMs);
-            }
-            console.warn(`[${label}] Attempt ${attempt + 1}/${maxRetries + 1} failed` +
-                (statusCode ? ` (HTTP ${statusCode})` : "") +
-                ` — retrying in ${(delayMs / 1000).toFixed(1)}s: ${err.message?.slice(0, 100)}`);
-            await sleep(delayMs);
-        }
+  const maxRetries = opts.maxRetries ?? 3;
+  const baseDelayMs = opts.baseDelayMs ?? 2000;
+  const maxDelayMs = opts.maxDelayMs ?? 30000;
+  const label = opts.label ?? "api";
+  let lastError;
+  for (let attempt = 0; attempt <= maxRetries; attempt++) {
+    try {
+      return await fn();
+    } catch (err) {
+      lastError = err;
+      if (attempt >= maxRetries) break;
+      const {
+        retriable,
+        statusCode,
+        retryAfterMs
+      } = isRetriable(err);
+      if (!retriable) throw err;
+
+      // Exponential backoff: 2s → 8s → 30s
+      let delayMs = Math.min(baseDelayMs * Math.pow(2, attempt), maxDelayMs);
+
+      // 429 gets 4x multiplier — the server is rate-limiting us
+      if (statusCode === 429) {
+        delayMs = retryAfterMs ? Math.min(retryAfterMs, maxDelayMs) : Math.min(delayMs * 4, maxDelayMs);
+      }
+      console.warn(`[${label}] Attempt ${attempt + 1}/${maxRetries + 1} failed` + (statusCode ? ` (HTTP ${statusCode})` : "") + ` — retrying in ${(delayMs / 1000).toFixed(1)}s: ${err.message?.slice(0, 100)}`);
+      await sleep(delayMs);
     }
-    throw lastError;
+  }
+  throw lastError;
 }
 function sleep(ms) {
-    return new Promise(resolve => setTimeout(resolve, ms));
+  return new Promise(resolve => setTimeout(resolve, ms));
 }
+//# sourceMappingURL=api-retry.js.map

package/dist/cli/services/api-retry.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-retry.js","names":["RETRIABLE_STATUS_CODES","Set","RETRIABLE_ERROR_PATTERNS","isRetriable","err","retriable","e","status","statusCode","has","retryAfterMs","headers","retryAfterSec","parseFloat","isNaN","message","toLowerCase","code","some","p","includes","callWithRetry","fn","opts","maxRetries","baseDelayMs","maxDelayMs","label","lastError","attempt","delayMs","Math","min","pow","console","warn","toFixed","slice","sleep","ms","Promise","resolve","setTimeout"],"sources":["../../../src/cli/services/api-retry.ts"],"sourcesContent":["/**\n * API Retry Utility — shared exponential backoff for Anthropic API calls.\n *\n * Retries on: 429 (rate limit), 5xx (server error), 529 (overloaded),\n * timeout errors, and network errors.\n *\n * Respects `retry-after` header on 429 responses.\n * 429 gets a 4x delay multiplier since the server is actively rate-limiting.\n */\n\nexport interface RetryOptions {\n  maxRetries?: number;       // default 3\n  baseDelayMs?: number;      // default 2000\n  maxDelayMs?: number;       // default 30000\n  label?: string;            // for log messages\n}\n\nconst RETRIABLE_STATUS_CODES = new Set([429, 500, 502, 503, 504, 529]);\nconst RETRIABLE_ERROR_PATTERNS = [\n  \"ECONNRESET\",\n  \"ECONNREFUSED\",\n  \"ETIMEDOUT\",\n  \"ENOTFOUND\",\n  \"fetch failed\",\n  \"network\",\n  \"socket hang up\",\n  \"aborted\",\n];\n\nfunction isRetriable(err: unknown): { retriable: boolean; statusCode?: number; retryAfterMs?: number } {\n  if (!err || typeof err !== \"object\") return { retriable: false };\n\n  const e = err as Record<string, unknown>;\n\n  // Anthropic SDK errors expose `.status` for HTTP status codes\n  const status = (e.status as number) ?? (e.statusCode as number);\n  if (status && RETRIABLE_STATUS_CODES.has(status)) {\n    let retryAfterMs: number | undefined;\n\n    // Check for retry-after header (Anthropic SDK surfaces headers on error)\n    const headers = e.headers as Record<string, string> | undefined;\n    if (headers?.[\"retry-after\"]) {\n      const retryAfterSec = parseFloat(headers[\"retry-after\"]);\n      if (!isNaN(retryAfterSec)) {\n        retryAfterMs = retryAfterSec * 1000;\n      }\n    }\n\n    return { retriable: true, statusCode: status, retryAfterMs };\n  }\n\n  // Check error message for network-level failures\n  const message = ((e.message as string) ?? \"\").toLowerCase();\n  const code = (e.code as string) ?? \"\";\n  if (RETRIABLE_ERROR_PATTERNS.some(p => message.includes(p.toLowerCase()) || code === p)) {\n    return { retriable: true };\n  }\n\n  return { retriable: false };\n}\n\n/**\n * Call an async function with automatic retry and exponential backoff.\n *\n * Usage:\n *   const response = await callWithRetry(\n *     () => client.messages.create({ ... }),\n *     { label: \"decomposer\" }\n *   );\n */\nexport async function callWithRetry<T>(\n  fn: () => Promise<T>,\n  opts: RetryOptions = {},\n): Promise<T> {\n  const maxRetries = opts.maxRetries ?? 3;\n  const baseDelayMs = opts.baseDelayMs ?? 2000;\n  const maxDelayMs = opts.maxDelayMs ?? 30000;\n  const label = opts.label ?? \"api\";\n\n  let lastError: unknown;\n\n  for (let attempt = 0; attempt <= maxRetries; attempt++) {\n    try {\n      return await fn();\n    } catch (err) {\n      lastError = err;\n\n      if (attempt >= maxRetries) break;\n\n      const { retriable, statusCode, retryAfterMs } = isRetriable(err);\n      if (!retriable) throw err;\n\n      // Exponential backoff: 2s → 8s → 30s\n      let delayMs = Math.min(baseDelayMs * Math.pow(2, attempt), maxDelayMs);\n\n      // 429 gets 4x multiplier — the server is rate-limiting us\n      if (statusCode === 429) {\n        delayMs = retryAfterMs\n          ? Math.min(retryAfterMs, maxDelayMs)\n          : Math.min(delayMs * 4, maxDelayMs);\n      }\n\n      console.warn(\n        `[${label}] Attempt ${attempt + 1}/${maxRetries + 1} failed` +\n        (statusCode ? ` (HTTP ${statusCode})` : \"\") +\n        ` — retrying in ${(delayMs / 1000).toFixed(1)}s: ${(err as Error).message?.slice(0, 100)}`\n      );\n\n      await sleep(delayMs);\n    }\n  }\n\n  throw lastError;\n}\n\nfunction sleep(ms: number): Promise<void> {\n  return new Promise(resolve => setTimeout(resolve, ms));\n}\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AASA,MAAMA,sBAAsB,GAAG,IAAIC,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;AACtE,MAAMC,wBAAwB,GAAG,CAC/B,YAAY,EACZ,cAAc,EACd,WAAW,EACX,WAAW,EACX,cAAc,EACd,SAAS,EACT,gBAAgB,EAChB,SAAS,CACV;AAED,SAASC,WAAWA,CAACC,GAAY,EAAsE;EACrG,IAAI,CAACA,GAAG,IAAI,OAAOA,GAAG,KAAK,QAAQ,EAAE,OAAO;IAAEC,SAAS,EAAE;EAAM,CAAC;EAEhE,MAAMC,CAAC,GAAGF,GAA8B;;EAExC;EACA,MAAMG,MAAM,GAAID,CAAC,CAACC,MAAM,IAAgBD,CAAC,CAACE,UAAqB;EAC/D,IAAID,MAAM,IAAIP,sBAAsB,CAACS,GAAG,CAACF,MAAM,CAAC,EAAE;IAChD,IAAIG,YAAgC;;IAEpC;IACA,MAAMC,OAAO,GAAGL,CAAC,CAACK,OAA6C;IAC/D,IAAIA,OAAO,GAAG,aAAa,CAAC,EAAE;MAC5B,MAAMC,aAAa,GAAGC,UAAU,CAACF,OAAO,CAAC,aAAa,CAAC,CAAC;MACxD,IAAI,CAACG,KAAK,CAACF,aAAa,CAAC,EAAE;QACzBF,YAAY,GAAGE,aAAa,GAAG,IAAI;MACrC;IACF;IAEA,OAAO;MAAEP,SAAS,EAAE,IAAI;MAAEG,UAAU,EAAED,MAAM;MAAEG;IAAa,CAAC;EAC9D;;EAEA;EACA,MAAMK,OAAO,GAAG,CAAET,CAAC,CAACS,OAAO,IAAe,EAAE,EAAEC,WAAW,CAAC,CAAC;EAC3D,MAAMC,IAAI,GAAIX,CAAC,CAACW,IAAI,IAAe,EAAE;EACrC,IAAIf,wBAAwB,CAACgB,IAAI,CAACC,CAAC,IAAIJ,OAAO,CAACK,QAAQ,CAACD,CAAC,CAACH,WAAW,CAAC,CAAC,CAAC,IAAIC,IAAI,KAAKE,CAAC,CAAC,EAAE;IACvF,OAAO;MAAEd,SAAS,EAAE;IAAK,CAAC;EAC5B;EAEA,OAAO;IAAEA,SAAS,EAAE;EAAM,CAAC;AAC7B;;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,eAAegB,aAAaA,CACjCC,EAAoB,EACpBC,IAAkB,GAAG,CAAC,CAAC,EACX;EACZ,MAAMC,UAAU,GAAGD,IAAI,CAACC,UAAU,IAAI,CAAC;EACvC,MAAMC,WAAW,GAAGF,IAAI,CAACE,WAAW,IAAI,IAAI;EAC5C,MAAMC,UAAU,GAAGH,IAAI,CAACG,UAAU,IAAI,KAAK;EAC3C,MAAMC,KAAK,GAAGJ,IAAI,CAACI,KAAK,IAAI,KAAK;EAEjC,IAAIC,SAAkB;EAEtB,KAAK,IAAIC,OAAO,GAAG,CAAC,EAAEA,OAAO,IAAIL,UAAU,EAAEK,OAAO,EAAE,EAAE;IACtD,IAAI;MACF,OAAO,MAAMP,EAAE,CAAC,CAAC;IACnB,CAAC,CAAC,OAAOlB,GAAG,EAAE;MACZwB,SAAS,GAAGxB,GAAG;MAEf,IAAIyB,OAAO,IAAIL,UAAU,EAAE;MAE3B,MAAM;QAAEnB,SAAS;QAAEG,UAAU;QAAEE;MAAa,CAAC,GAAGP,WAAW,CAACC,GAAG,CAAC;MAChE,IAAI,CAACC,SAAS,EAAE,MAAMD,GAAG;;MAEzB;MACA,IAAI0B,OAAO,GAAGC,IAAI,CAACC,GAAG,CAACP,WAAW,GAAGM,IAAI,CAACE,GAAG,CAAC,CAAC,EAAEJ,OAAO,CAAC,EAAEH,UAAU,CAAC;;MAEtE;MACA,IAAIlB,UAAU,KAAK,GAAG,EAAE;QACtBsB,OAAO,GAAGpB,YAAY,GAClBqB,IAAI,CAACC,GAAG,CAACtB,YAAY,EAAEgB,UAAU,CAAC,GAClCK,IAAI,CAACC,GAAG,CAACF,OAAO,GAAG,CAAC,EAAEJ,UAAU,CAAC;MACvC;MAEAQ,OAAO,CAACC,IAAI,CACV,IAAIR,KAAK,aAAaE,OAAO,GAAG,CAAC,IAAIL,UAAU,GAAG,CAAC,SAAS,IAC3DhB,UAAU,GAAG,UAAUA,UAAU,GAAG,GAAG,EAAE,CAAC,GAC3C,kBAAkB,CAACsB,OAAO,GAAG,IAAI,EAAEM,OAAO,CAAC,CAAC,CAAC,MAAOhC,GAAG,CAAWW,OAAO,EAAEsB,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAC1F,CAAC;MAED,MAAMC,KAAK,CAACR,OAAO,CAAC;IACtB;EACF;EAEA,MAAMF,SAAS;AACjB;AAEA,SAASU,KAAKA,CAACC,EAAU,EAAiB;EACxC,OAAO,IAAIC,OAAO,CAACC,OAAO,IAAIC,UAAU,CAACD,OAAO,EAAEF,EAAE,CAAC,CAAC;AACxD","ignoreList":[]}

package/dist/cli/services/auth-service.d.ts

@@ -2,10 +2,10 @@
  * Auth Service — Supabase email/password auth with token management
  *
  * Same Supabase project as the macOS app. Users login with their
- * SwagManager credentials; the CLI stores JWT tokens locally.
+ * Whale credentials; the CLI stores JWT tokens locally.
  */
 import { type SupabaseClient } from "@supabase/supabase-js";
-import { type SwagManagerConfig } from "./config-store.js";
+import { type WhaleConfig } from "./config-store.js";
 declare const SUPABASE_URL = "https://uaednwpxursknmwdeejn.supabase.co";
 declare const SUPABASE_ANON_KEY = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZSIsInJlZiI6InVhZWRud3B4dXJza25td2RlZWpuIiwicm9sZSI6ImFub24iLCJpYXQiOjE3NjA5OTcyMzMsImV4cCI6MjA3NjU3MzIzM30.N8jPwlyCBB5KJB5I-XaK6m-mq88rSR445AWFJJmwRCg";
 export { SUPABASE_URL, SUPABASE_ANON_KEY };
@@ -13,7 +13,7 @@ export declare function createAuthenticatedClient(accessToken: string): Supabase
 export interface AuthResult {
     success: boolean;
     error?: string;
-    config?: SwagManagerConfig;
+    config?: WhaleConfig;
 }
 export interface StoreInfo {
     id: string;

package/dist/cli/services/auth-service.js

@@ -2,180 +2,257 @@
  * Auth Service — Supabase email/password auth with token management
  *
  * Same Supabase project as the macOS app. Users login with their
- * SwagManager credentials; the CLI stores JWT tokens locally.
+ * Whale credentials; the CLI stores JWT tokens locally.
  */
+
 import { createClient } from "@supabase/supabase-js";
 import { loadConfig, saveConfig, clearConfig, updateConfig } from "./config-store.js";
+
 // Public credentials (same as SupabaseConfig.swift)
 const SUPABASE_URL = "https://uaednwpxursknmwdeejn.supabase.co";
 const SUPABASE_ANON_KEY = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZSIsInJlZiI6InVhZWRud3B4dXJza25td2RlZWpuIiwicm9sZSI6ImFub24iLCJpYXQiOjE3NjA5OTcyMzMsImV4cCI6MjA3NjU3MzIzM30.N8jPwlyCBB5KJB5I-XaK6m-mq88rSR445AWFJJmwRCg";
 export { SUPABASE_URL, SUPABASE_ANON_KEY };
+
 // Create a bare Supabase client (no stored session)
 function createAnonClient() {
-    return createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {
-        auth: { persistSession: false, autoRefreshToken: false },
-    });
+  return createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {
+    auth: {
+      persistSession: false,
+      autoRefreshToken: false
+    }
+  });
 }
+
 // Create a Supabase client authenticated with a user's JWT
 export function createAuthenticatedClient(accessToken) {
-    return createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {
-        auth: { persistSession: false, autoRefreshToken: false },
-        global: { headers: { Authorization: `Bearer ${accessToken}` } },
-    });
+  return createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {
+    auth: {
+      persistSession: false,
+      autoRefreshToken: false
+    },
+    global: {
+      headers: {
+        Authorization: `Bearer ${accessToken}`
+      }
+    }
+  });
 }
 // Sign in with email/password
 export async function signIn(email, password) {
-    const client = createAnonClient();
-    const { data, error } = await client.auth.signInWithPassword({ email, password });
-    if (error)
-        return { success: false, error: error.message };
-    if (!data.session)
-        return { success: false, error: "No session returned" };
-    const config = {
-        access_token: data.session.access_token,
-        refresh_token: data.session.refresh_token,
-        user_id: data.user.id,
-        email: data.user.email || email,
-        expires_at: data.session.expires_at,
-    };
-    // Try to extract store from JWT user_metadata first (most reliable)
-    const meta = data.user.user_metadata;
-    if (meta?.vendor_id) {
-        config.store_id = meta.vendor_id;
-        config.store_name = meta.store_name || undefined;
-    }
-    // If no store from metadata, try querying
-    if (!config.store_id) {
-        const stores = await getStoresForUser(config.access_token, data.user.id);
-        if (stores.length === 1) {
-            config.store_id = stores[0].id;
-            config.store_name = stores[0].name;
-        }
+  const client = createAnonClient();
+  const {
+    data,
+    error
+  } = await client.auth.signInWithPassword({
+    email,
+    password
+  });
+  if (error) return {
+    success: false,
+    error: error.message
+  };
+  if (!data.session) return {
+    success: false,
+    error: "No session returned"
+  };
+  const config = {
+    access_token: data.session.access_token,
+    refresh_token: data.session.refresh_token,
+    user_id: data.user.id,
+    email: data.user.email || email,
+    expires_at: data.session.expires_at
+  };
+
+  // Try to extract store from JWT user_metadata first (most reliable)
+  const meta = data.user.user_metadata;
+  if (meta?.vendor_id) {
+    config.store_id = meta.vendor_id;
+    config.store_name = meta.store_name || undefined;
+  }
+
+  // If no store from metadata, try querying
+  if (!config.store_id) {
+    const stores = await getStoresForUser(config.access_token, data.user.id);
+    if (stores.length === 1) {
+      config.store_id = stores[0].id;
+      config.store_name = stores[0].name;
     }
-    saveConfig(config);
-    return { success: true, config };
+  }
+  saveConfig(config);
+  return {
+    success: true,
+    config
+  };
 }
+
 // Sign up with email/password
 export async function signUp(email, password) {
-    const client = createAnonClient();
-    const { data, error } = await client.auth.signUp({ email, password });
-    if (error)
-        return { success: false, error: error.message };
-    if (!data.session) {
-        return { success: true, error: "Check your email to confirm your account" };
-    }
-    const config = {
-        access_token: data.session.access_token,
-        refresh_token: data.session.refresh_token,
-        user_id: data.user.id,
-        email: data.user.email || email,
-        expires_at: data.session.expires_at,
+  const client = createAnonClient();
+  const {
+    data,
+    error
+  } = await client.auth.signUp({
+    email,
+    password
+  });
+  if (error) return {
+    success: false,
+    error: error.message
+  };
+  if (!data.session) {
+    return {
+      success: true,
+      error: "Check your email to confirm your account"
     };
-    saveConfig(config);
-    return { success: true, config };
+  }
+  const config = {
+    access_token: data.session.access_token,
+    refresh_token: data.session.refresh_token,
+    user_id: data.user.id,
+    email: data.user.email || email,
+    expires_at: data.session.expires_at
+  };
+  saveConfig(config);
+  return {
+    success: true,
+    config
+  };
 }
+
 // Refresh an expired session
 export async function refreshSession() {
-    const config = loadConfig();
-    if (!config.refresh_token)
-        return { success: false, error: "Not logged in" };
-    const client = createAnonClient();
-    const { data, error } = await client.auth.refreshSession({
-        refresh_token: config.refresh_token,
-    });
-    if (error) {
-        clearConfig();
-        return { success: false, error: `Session expired: ${error.message}` };
-    }
-    if (!data.session) {
-        clearConfig();
-        return { success: false, error: "Could not refresh session" };
-    }
-    const updated = {
-        ...config,
-        access_token: data.session.access_token,
-        refresh_token: data.session.refresh_token,
-        expires_at: data.session.expires_at,
+  const config = loadConfig();
+  if (!config.refresh_token) return {
+    success: false,
+    error: "Not logged in"
+  };
+  const client = createAnonClient();
+  const {
+    data,
+    error
+  } = await client.auth.refreshSession({
+    refresh_token: config.refresh_token
+  });
+  if (error) {
+    clearConfig();
+    return {
+      success: false,
+      error: `Session expired: ${error.message}`
+    };
+  }
+  if (!data.session) {
+    clearConfig();
+    return {
+      success: false,
+      error: "Could not refresh session"
     };
-    saveConfig(updated);
-    return { success: true, config: updated };
+  }
+  const updated = {
+    ...config,
+    access_token: data.session.access_token,
+    refresh_token: data.session.refresh_token,
+    expires_at: data.session.expires_at
+  };
+  saveConfig(updated);
+  return {
+    success: true,
+    config: updated
+  };
 }
+
 // Get a valid access token, auto-refreshing if needed
 export async function getValidToken() {
-    const config = loadConfig();
-    if (!config.access_token)
-        return null;
-    // Check if token is expired (with 5-min buffer)
-    // If expires_at is missing, force a refresh to be safe
-    const now = Math.floor(Date.now() / 1000);
-    if (!config.expires_at || config.expires_at - 300 < now) {
-        const result = await refreshSession();
-        if (!result.success)
-            return null;
-        return result.config.access_token;
-    }
-    return config.access_token;
+  const config = loadConfig();
+  if (!config.access_token) return null;
+
+  // Check if token is expired (with 5-min buffer)
+  // If expires_at is missing, force a refresh to be safe
+  const now = Math.floor(Date.now() / 1000);
+  if (!config.expires_at || config.expires_at - 300 < now) {
+    const result = await refreshSession();
+    if (!result.success) return null;
+    return result.config.access_token;
+  }
+  return config.access_token;
 }
+
 // Sign out — clear stored tokens
 export function signOut() {
-    clearConfig();
+  clearConfig();
 }
+
 // Get stores for the authenticated user
 // With a user JWT, RLS on the stores table handles access control directly —
 // same approach the platform exchange endpoint uses. For service role keys,
 // we fall back to store_members to prevent cross-tenant leakage.
 export async function getStoresForUser(accessToken, userId) {
-    if (!userId)
-        return [];
-    const client = createAuthenticatedClient(accessToken);
-    // Primary: query stores directly — RLS filters to user's stores
-    const { data: stores, error: storeError } = await client
-        .from("stores")
-        .select("id, store_name, slug")
-        .limit(20);
-    if (!storeError && stores && stores.length > 0) {
-        return stores.map((s) => ({ id: s.id, name: s.store_name, slug: s.slug }));
-    }
-    // Fallback 1: try via users table (auth_user_id → store_id)
-    const { data: userData } = await client
-        .from("users")
-        .select("store_id")
-        .eq("auth_user_id", userId);
-    if (userData && userData.length > 0) {
-        const storeIds = userData.map((u) => u.store_id).filter(Boolean);
-        if (storeIds.length > 0) {
-            const { data: userStores } = await client
-                .from("stores")
-                .select("id, store_name, slug")
-                .in("id", storeIds);
-            if (userStores && userStores.length > 0) {
-                return userStores.map((s) => ({ id: s.id, name: s.store_name, slug: s.slug }));
-            }
-        }
+  if (!userId) return [];
+  const client = createAuthenticatedClient(accessToken);
+
+  // Primary: query stores directly — RLS filters to user's stores
+  const {
+    data: stores,
+    error: storeError
+  } = await client.from("stores").select("id, store_name, slug").limit(20);
+  if (!storeError && stores && stores.length > 0) {
+    return stores.map(s => ({
+      id: s.id,
+      name: s.store_name,
+      slug: s.slug
+    }));
+  }
+
+  // Fallback 1: try via users table (auth_user_id → store_id)
+  const {
+    data: userData
+  } = await client.from("users").select("store_id").eq("auth_user_id", userId);
+  if (userData && userData.length > 0) {
+    const storeIds = userData.map(u => u.store_id).filter(Boolean);
+    if (storeIds.length > 0) {
+      const {
+        data: userStores
+      } = await client.from("stores").select("id, store_name, slug").in("id", storeIds);
+      if (userStores && userStores.length > 0) {
+        return userStores.map(s => ({
+          id: s.id,
+          name: s.store_name,
+          slug: s.slug
+        }));
+      }
     }
-    // Fallback 2: store_members table
-    const { data: memberships } = await client
-        .from("store_members")
-        .select("store_id")
-        .eq("user_id", userId);
-    if (memberships && memberships.length > 0) {
-        const storeIds = memberships.map((m) => m.store_id);
-        const { data: memberStores } = await client
-            .from("stores")
-            .select("id, store_name, slug")
-            .in("id", storeIds);
-        if (memberStores && memberStores.length > 0) {
-            return memberStores.map((s) => ({ id: s.id, name: s.store_name, slug: s.slug }));
-        }
+  }
+
+  // Fallback 2: store_members table
+  const {
+    data: memberships
+  } = await client.from("store_members").select("store_id").eq("user_id", userId);
+  if (memberships && memberships.length > 0) {
+    const storeIds = memberships.map(m => m.store_id);
+    const {
+      data: memberStores
+    } = await client.from("stores").select("id, store_name, slug").in("id", storeIds);
+    if (memberStores && memberStores.length > 0) {
+      return memberStores.map(s => ({
+        id: s.id,
+        name: s.store_name,
+        slug: s.slug
+      }));
     }
-    return [];
+  }
+  return [];
 }
+
 // Select a store and save to config
 export function selectStore(storeId, storeName) {
-    updateConfig({ store_id: storeId, store_name: storeName });
+  updateConfig({
+    store_id: storeId,
+    store_name: storeName
+  });
 }
+
 // Check if logged in (has auth tokens)
 export function isLoggedIn() {
-    const config = loadConfig();
-    return !!(config.access_token && config.refresh_token);
+  const config = loadConfig();
+  return !!(config.access_token && config.refresh_token);
 }
+//# sourceMappingURL=auth-service.js.map

package/dist/cli/services/auth-service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-service.js","names":["createClient","loadConfig","saveConfig","clearConfig","updateConfig","SUPABASE_URL","SUPABASE_ANON_KEY","createAnonClient","auth","persistSession","autoRefreshToken","createAuthenticatedClient","accessToken","global","headers","Authorization","signIn","email","password","client","data","error","signInWithPassword","success","message","session","config","access_token","refresh_token","user_id","user","id","expires_at","meta","user_metadata","vendor_id","store_id","store_name","undefined","stores","getStoresForUser","length","name","signUp","refreshSession","updated","getValidToken","now","Math","floor","Date","result","signOut","userId","storeError","from","select","limit","map","s","slug","userData","eq","storeIds","u","filter","Boolean","userStores","in","memberships","m","memberStores","selectStore","storeId","storeName","isLoggedIn"],"sources":["../../../src/cli/services/auth-service.ts"],"sourcesContent":["/**\n * Auth Service — Supabase email/password auth with token management\n *\n * Same Supabase project as the macOS app. Users login with their\n * Whale credentials; the CLI stores JWT tokens locally.\n */\n\nimport { createClient, type SupabaseClient } from \"@supabase/supabase-js\";\nimport { loadConfig, saveConfig, clearConfig, updateConfig, type WhaleConfig } from \"./config-store.js\";\n\n// Public credentials (same as SupabaseConfig.swift)\nconst SUPABASE_URL = \"https://uaednwpxursknmwdeejn.supabase.co\";\nconst SUPABASE_ANON_KEY =\n  \"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZSIsInJlZiI6InVhZWRud3B4dXJza25td2RlZWpuIiwicm9sZSI6ImFub24iLCJpYXQiOjE3NjA5OTcyMzMsImV4cCI6MjA3NjU3MzIzM30.N8jPwlyCBB5KJB5I-XaK6m-mq88rSR445AWFJJmwRCg\";\n\nexport { SUPABASE_URL, SUPABASE_ANON_KEY };\n\n// Create a bare Supabase client (no stored session)\nfunction createAnonClient(): SupabaseClient {\n  return createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {\n    auth: { persistSession: false, autoRefreshToken: false },\n  });\n}\n\n// Create a Supabase client authenticated with a user's JWT\nexport function createAuthenticatedClient(accessToken: string): SupabaseClient {\n  return createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {\n    auth: { persistSession: false, autoRefreshToken: false },\n    global: { headers: { Authorization: `Bearer ${accessToken}` } },\n  });\n}\n\nexport interface AuthResult {\n  success: boolean;\n  error?: string;\n  config?: WhaleConfig;\n}\n\nexport interface StoreInfo {\n  id: string;\n  name: string;\n  slug?: string;\n}\n\n// Sign in with email/password\nexport async function signIn(email: string, password: string): Promise<AuthResult> {\n  const client = createAnonClient();\n  const { data, error } = await client.auth.signInWithPassword({ email, password });\n\n  if (error) return { success: false, error: error.message };\n  if (!data.session) return { success: false, error: \"No session returned\" };\n\n  const config: WhaleConfig = {\n    access_token: data.session.access_token,\n    refresh_token: data.session.refresh_token,\n    user_id: data.user.id,\n    email: data.user.email || email,\n    expires_at: data.session.expires_at,\n  };\n\n  // Try to extract store from JWT user_metadata first (most reliable)\n  const meta = data.user.user_metadata;\n  if (meta?.vendor_id) {\n    config.store_id = meta.vendor_id;\n    config.store_name = meta.store_name || undefined;\n  }\n\n  // If no store from metadata, try querying\n  if (!config.store_id) {\n    const stores = await getStoresForUser(config.access_token!, data.user.id);\n    if (stores.length === 1) {\n      config.store_id = stores[0].id;\n      config.store_name = stores[0].name;\n    }\n  }\n\n  saveConfig(config);\n  return { success: true, config };\n}\n\n// Sign up with email/password\nexport async function signUp(email: string, password: string): Promise<AuthResult> {\n  const client = createAnonClient();\n  const { data, error } = await client.auth.signUp({ email, password });\n\n  if (error) return { success: false, error: error.message };\n  if (!data.session) {\n    return { success: true, error: \"Check your email to confirm your account\" };\n  }\n\n  const config: WhaleConfig = {\n    access_token: data.session.access_token,\n    refresh_token: data.session.refresh_token,\n    user_id: data.user!.id,\n    email: data.user!.email || email,\n    expires_at: data.session.expires_at,\n  };\n\n  saveConfig(config);\n  return { success: true, config };\n}\n\n// Refresh an expired session\nexport async function refreshSession(): Promise<AuthResult> {\n  const config = loadConfig();\n  if (!config.refresh_token) return { success: false, error: \"Not logged in\" };\n\n  const client = createAnonClient();\n  const { data, error } = await client.auth.refreshSession({\n    refresh_token: config.refresh_token,\n  });\n\n  if (error) {\n    clearConfig();\n    return { success: false, error: `Session expired: ${error.message}` };\n  }\n  if (!data.session) {\n    clearConfig();\n    return { success: false, error: \"Could not refresh session\" };\n  }\n\n  const updated: WhaleConfig = {\n    ...config,\n    access_token: data.session.access_token,\n    refresh_token: data.session.refresh_token,\n    expires_at: data.session.expires_at,\n  };\n  saveConfig(updated);\n  return { success: true, config: updated };\n}\n\n// Get a valid access token, auto-refreshing if needed\nexport async function getValidToken(): Promise<string | null> {\n  const config = loadConfig();\n  if (!config.access_token) return null;\n\n  // Check if token is expired (with 5-min buffer)\n  // If expires_at is missing, force a refresh to be safe\n  const now = Math.floor(Date.now() / 1000);\n  if (!config.expires_at || config.expires_at - 300 < now) {\n    const result = await refreshSession();\n    if (!result.success) return null;\n    return result.config!.access_token!;\n  }\n\n  return config.access_token;\n}\n\n// Sign out — clear stored tokens\nexport function signOut(): void {\n  clearConfig();\n}\n\n// Get stores for the authenticated user\n// With a user JWT, RLS on the stores table handles access control directly —\n// same approach the platform exchange endpoint uses. For service role keys,\n// we fall back to store_members to prevent cross-tenant leakage.\nexport async function getStoresForUser(\n  accessToken: string,\n  userId: string\n): Promise<StoreInfo[]> {\n  if (!userId) return [];\n\n  const client = createAuthenticatedClient(accessToken);\n\n  // Primary: query stores directly — RLS filters to user's stores\n  const { data: stores, error: storeError } = await client\n    .from(\"stores\")\n    .select(\"id, store_name, slug\")\n    .limit(20);\n\n  if (!storeError && stores && stores.length > 0) {\n    return stores.map((s: any) => ({ id: s.id, name: s.store_name, slug: s.slug }));\n  }\n\n  // Fallback 1: try via users table (auth_user_id → store_id)\n  const { data: userData } = await client\n    .from(\"users\")\n    .select(\"store_id\")\n    .eq(\"auth_user_id\", userId);\n\n  if (userData && userData.length > 0) {\n    const storeIds = userData.map((u: any) => u.store_id).filter(Boolean);\n    if (storeIds.length > 0) {\n      const { data: userStores } = await client\n        .from(\"stores\")\n        .select(\"id, store_name, slug\")\n        .in(\"id\", storeIds);\n      if (userStores && userStores.length > 0) {\n        return userStores.map((s: any) => ({ id: s.id, name: s.store_name, slug: s.slug }));\n      }\n    }\n  }\n\n  // Fallback 2: store_members table\n  const { data: memberships } = await client\n    .from(\"store_members\")\n    .select(\"store_id\")\n    .eq(\"user_id\", userId);\n\n  if (memberships && memberships.length > 0) {\n    const storeIds = memberships.map((m: any) => m.store_id);\n    const { data: memberStores } = await client\n      .from(\"stores\")\n      .select(\"id, store_name, slug\")\n      .in(\"id\", storeIds);\n    if (memberStores && memberStores.length > 0) {\n      return memberStores.map((s: any) => ({ id: s.id, name: s.store_name, slug: s.slug }));\n    }\n  }\n\n  return [];\n}\n\n// Select a store and save to config\nexport function selectStore(storeId: string, storeName: string): void {\n  updateConfig({ store_id: storeId, store_name: storeName });\n}\n\n// Check if logged in (has auth tokens)\nexport function isLoggedIn(): boolean {\n  const config = loadConfig();\n  return !!(config.access_token && config.refresh_token);\n}\n"],"mappings":"AAAA;AACA;AACA;AACA;AACA;AACA;;AAEA,SAASA,YAAY,QAA6B,uBAAuB;AACzE,SAASC,UAAU,EAAEC,UAAU,EAAEC,WAAW,EAAEC,YAAY,QAA0B,mBAAmB;;AAEvG;AACA,MAAMC,YAAY,GAAG,0CAA0C;AAC/D,MAAMC,iBAAiB,GACrB,kNAAkN;AAEpN,SAASD,YAAY,EAAEC,iBAAiB;;AAExC;AACA,SAASC,gBAAgBA,CAAA,EAAmB;EAC1C,OAAOP,YAAY,CAACK,YAAY,EAAEC,iBAAiB,EAAE;IACnDE,IAAI,EAAE;MAAEC,cAAc,EAAE,KAAK;MAAEC,gBAAgB,EAAE;IAAM;EACzD,CAAC,CAAC;AACJ;;AAEA;AACA,OAAO,SAASC,yBAAyBA,CAACC,WAAmB,EAAkB;EAC7E,OAAOZ,YAAY,CAACK,YAAY,EAAEC,iBAAiB,EAAE;IACnDE,IAAI,EAAE;MAAEC,cAAc,EAAE,KAAK;MAAEC,gBAAgB,EAAE;IAAM,CAAC;IACxDG,MAAM,EAAE;MAAEC,OAAO,EAAE;QAAEC,aAAa,EAAE,UAAUH,WAAW;MAAG;IAAE;EAChE,CAAC,CAAC;AACJ;AAcA;AACA,OAAO,eAAeI,MAAMA,CAACC,KAAa,EAAEC,QAAgB,EAAuB;EACjF,MAAMC,MAAM,GAAGZ,gBAAgB,CAAC,CAAC;EACjC,MAAM;IAAEa,IAAI;IAAEC;EAAM,CAAC,GAAG,MAAMF,MAAM,CAACX,IAAI,CAACc,kBAAkB,CAAC;IAAEL,KAAK;IAAEC;EAAS,CAAC,CAAC;EAEjF,IAAIG,KAAK,EAAE,OAAO;IAAEE,OAAO,EAAE,KAAK;IAAEF,KAAK,EAAEA,KAAK,CAACG;EAAQ,CAAC;EAC1D,IAAI,CAACJ,IAAI,CAACK,OAAO,EAAE,OAAO;IAAEF,OAAO,EAAE,KAAK;IAAEF,KAAK,EAAE;EAAsB,CAAC;EAE1E,MAAMK,MAAmB,GAAG;IAC1BC,YAAY,EAAEP,IAAI,CAACK,OAAO,CAACE,YAAY;IACvCC,aAAa,EAAER,IAAI,CAACK,OAAO,CAACG,aAAa;IACzCC,OAAO,EAAET,IAAI,CAACU,IAAI,CAACC,EAAE;IACrBd,KAAK,EAAEG,IAAI,CAACU,IAAI,CAACb,KAAK,IAAIA,KAAK;IAC/Be,UAAU,EAAEZ,IAAI,CAACK,OAAO,CAACO;EAC3B,CAAC;;EAED;EACA,MAAMC,IAAI,GAAGb,IAAI,CAACU,IAAI,CAACI,aAAa;EACpC,IAAID,IAAI,EAAEE,SAAS,EAAE;IACnBT,MAAM,CAACU,QAAQ,GAAGH,IAAI,CAACE,SAAS;IAChCT,MAAM,CAACW,UAAU,GAAGJ,IAAI,CAACI,UAAU,IAAIC,SAAS;EAClD;;EAEA;EACA,IAAI,CAACZ,MAAM,CAACU,QAAQ,EAAE;IACpB,MAAMG,MAAM,GAAG,MAAMC,gBAAgB,CAACd,MAAM,CAACC,YAAY,EAAGP,IAAI,CAACU,IAAI,CAACC,EAAE,CAAC;IACzE,IAAIQ,MAAM,CAACE,MAAM,KAAK,CAAC,EAAE;MACvBf,MAAM,CAACU,QAAQ,GAAGG,MAAM,CAAC,CAAC,CAAC,CAACR,EAAE;MAC9BL,MAAM,CAACW,UAAU,GAAGE,MAAM,CAAC,CAAC,CAAC,CAACG,IAAI;IACpC;EACF;EAEAxC,UAAU,CAACwB,MAAM,CAAC;EAClB,OAAO;IAAEH,OAAO,EAAE,IAAI;IAAEG;EAAO,CAAC;AAClC;;AAEA;AACA,OAAO,eAAeiB,MAAMA,CAAC1B,KAAa,EAAEC,QAAgB,EAAuB;EACjF,MAAMC,MAAM,GAAGZ,gBAAgB,CAAC,CAAC;EACjC,MAAM;IAAEa,IAAI;IAAEC;EAAM,CAAC,GAAG,MAAMF,MAAM,CAACX,IAAI,CAACmC,MAAM,CAAC;IAAE1B,KAAK;IAAEC;EAAS,CAAC,CAAC;EAErE,IAAIG,KAAK,EAAE,OAAO;IAAEE,OAAO,EAAE,KAAK;IAAEF,KAAK,EAAEA,KAAK,CAACG;EAAQ,CAAC;EAC1D,IAAI,CAACJ,IAAI,CAACK,OAAO,EAAE;IACjB,OAAO;MAAEF,OAAO,EAAE,IAAI;MAAEF,KAAK,EAAE;IAA2C,CAAC;EAC7E;EAEA,MAAMK,MAAmB,GAAG;IAC1BC,YAAY,EAAEP,IAAI,CAACK,OAAO,CAACE,YAAY;IACvCC,aAAa,EAAER,IAAI,CAACK,OAAO,CAACG,aAAa;IACzCC,OAAO,EAAET,IAAI,CAACU,IAAI,CAAEC,EAAE;IACtBd,KAAK,EAAEG,IAAI,CAACU,IAAI,CAAEb,KAAK,IAAIA,KAAK;IAChCe,UAAU,EAAEZ,IAAI,CAACK,OAAO,CAACO;EAC3B,CAAC;EAED9B,UAAU,CAACwB,MAAM,CAAC;EAClB,OAAO;IAAEH,OAAO,EAAE,IAAI;IAAEG;EAAO,CAAC;AAClC;;AAEA;AACA,OAAO,eAAekB,cAAcA,CAAA,EAAwB;EAC1D,MAAMlB,MAAM,GAAGzB,UAAU,CAAC,CAAC;EAC3B,IAAI,CAACyB,MAAM,CAACE,aAAa,EAAE,OAAO;IAAEL,OAAO,EAAE,KAAK;IAAEF,KAAK,EAAE;EAAgB,CAAC;EAE5E,MAAMF,MAAM,GAAGZ,gBAAgB,CAAC,CAAC;EACjC,MAAM;IAAEa,IAAI;IAAEC;EAAM,CAAC,GAAG,MAAMF,MAAM,CAACX,IAAI,CAACoC,cAAc,CAAC;IACvDhB,aAAa,EAAEF,MAAM,CAACE;EACxB,CAAC,CAAC;EAEF,IAAIP,KAAK,EAAE;IACTlB,WAAW,CAAC,CAAC;IACb,OAAO;MAAEoB,OAAO,EAAE,KAAK;MAAEF,KAAK,EAAE,oBAAoBA,KAAK,CAACG,OAAO;IAAG,CAAC;EACvE;EACA,IAAI,CAACJ,IAAI,CAACK,OAAO,EAAE;IACjBtB,WAAW,CAAC,CAAC;IACb,OAAO;MAAEoB,OAAO,EAAE,KAAK;MAAEF,KAAK,EAAE;IAA4B,CAAC;EAC/D;EAEA,MAAMwB,OAAoB,GAAG;IAC3B,GAAGnB,MAAM;IACTC,YAAY,EAAEP,IAAI,CAACK,OAAO,CAACE,YAAY;IACvCC,aAAa,EAAER,IAAI,CAACK,OAAO,CAACG,aAAa;IACzCI,UAAU,EAAEZ,IAAI,CAACK,OAAO,CAACO;EAC3B,CAAC;EACD9B,UAAU,CAAC2C,OAAO,CAAC;EACnB,OAAO;IAAEtB,OAAO,EAAE,IAAI;IAAEG,MAAM,EAAEmB;EAAQ,CAAC;AAC3C;;AAEA;AACA,OAAO,eAAeC,aAAaA,CAAA,EAA2B;EAC5D,MAAMpB,MAAM,GAAGzB,UAAU,CAAC,CAAC;EAC3B,IAAI,CAACyB,MAAM,CAACC,YAAY,EAAE,OAAO,IAAI;;EAErC;EACA;EACA,MAAMoB,GAAG,GAAGC,IAAI,CAACC,KAAK,CAACC,IAAI,CAACH,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC;EACzC,IAAI,CAACrB,MAAM,CAACM,UAAU,IAAIN,MAAM,CAACM,UAAU,GAAG,GAAG,GAAGe,GAAG,EAAE;IACvD,MAAMI,MAAM,GAAG,MAAMP,cAAc,CAAC,CAAC;IACrC,IAAI,CAACO,MAAM,CAAC5B,OAAO,EAAE,OAAO,IAAI;IAChC,OAAO4B,MAAM,CAACzB,MAAM,CAAEC,YAAY;EACpC;EAEA,OAAOD,MAAM,CAACC,YAAY;AAC5B;;AAEA;AACA,OAAO,SAASyB,OAAOA,CAAA,EAAS;EAC9BjD,WAAW,CAAC,CAAC;AACf;;AAEA;AACA;AACA;AACA;AACA,OAAO,eAAeqC,gBAAgBA,CACpC5B,WAAmB,EACnByC,MAAc,EACQ;EACtB,IAAI,CAACA,MAAM,EAAE,OAAO,EAAE;EAEtB,MAAMlC,MAAM,GAAGR,yBAAyB,CAACC,WAAW,CAAC;;EAErD;EACA,MAAM;IAAEQ,IAAI,EAAEmB,MAAM;IAAElB,KAAK,EAAEiC;EAAW,CAAC,GAAG,MAAMnC,MAAM,CACrDoC,IAAI,CAAC,QAAQ,CAAC,CACdC,MAAM,CAAC,sBAAsB,CAAC,CAC9BC,KAAK,CAAC,EAAE,CAAC;EAEZ,IAAI,CAACH,UAAU,IAAIf,MAAM,IAAIA,MAAM,CAACE,MAAM,GAAG,CAAC,EAAE;IAC9C,OAAOF,MAAM,CAACmB,GAAG,CAAEC,CAAM,KAAM;MAAE5B,EAAE,EAAE4B,CAAC,CAAC5B,EAAE;MAAEW,IAAI,EAAEiB,CAAC,CAACtB,UAAU;MAAEuB,IAAI,EAAED,CAAC,CAACC;IAAK,CAAC,CAAC,CAAC;EACjF;;EAEA;EACA,MAAM;IAAExC,IAAI,EAAEyC;EAAS,CAAC,GAAG,MAAM1C,MAAM,CACpCoC,IAAI,CAAC,OAAO,CAAC,CACbC,MAAM,CAAC,UAAU,CAAC,CAClBM,EAAE,CAAC,cAAc,EAAET,MAAM,CAAC;EAE7B,IAAIQ,QAAQ,IAAIA,QAAQ,CAACpB,MAAM,GAAG,CAAC,EAAE;IACnC,MAAMsB,QAAQ,GAAGF,QAAQ,CAACH,GAAG,CAAEM,CAAM,IAAKA,CAAC,CAAC5B,QAAQ,CAAC,CAAC6B,MAAM,CAACC,OAAO,CAAC;IACrE,IAAIH,QAAQ,CAACtB,MAAM,GAAG,CAAC,EAAE;MACvB,MAAM;QAAErB,IAAI,EAAE+C;MAAW,CAAC,GAAG,MAAMhD,MAAM,CACtCoC,IAAI,CAAC,QAAQ,CAAC,CACdC,MAAM,CAAC,sBAAsB,CAAC,CAC9BY,EAAE,CAAC,IAAI,EAAEL,QAAQ,CAAC;MACrB,IAAII,UAAU,IAAIA,UAAU,CAAC1B,MAAM,GAAG,CAAC,EAAE;QACvC,OAAO0B,UAAU,CAACT,GAAG,CAAEC,CAAM,KAAM;UAAE5B,EAAE,EAAE4B,CAAC,CAAC5B,EAAE;UAAEW,IAAI,EAAEiB,CAAC,CAACtB,UAAU;UAAEuB,IAAI,EAAED,CAAC,CAACC;QAAK,CAAC,CAAC,CAAC;MACrF;IACF;EACF;;EAEA;EACA,MAAM;IAAExC,IAAI,EAAEiD;EAAY,CAAC,GAAG,MAAMlD,MAAM,CACvCoC,IAAI,CAAC,eAAe,CAAC,CACrBC,MAAM,CAAC,UAAU,CAAC,CAClBM,EAAE,CAAC,SAAS,EAAET,MAAM,CAAC;EAExB,IAAIgB,WAAW,IAAIA,WAAW,CAAC5B,MAAM,GAAG,CAAC,EAAE;IACzC,MAAMsB,QAAQ,GAAGM,WAAW,CAACX,GAAG,CAAEY,CAAM,IAAKA,CAAC,CAAClC,QAAQ,CAAC;IACxD,MAAM;MAAEhB,IAAI,EAAEmD;IAAa,CAAC,GAAG,MAAMpD,MAAM,CACxCoC,IAAI,CAAC,QAAQ,CAAC,CACdC,MAAM,CAAC,sBAAsB,CAAC,CAC9BY,EAAE,CAAC,IAAI,EAAEL,QAAQ,CAAC;IACrB,IAAIQ,YAAY,IAAIA,YAAY,CAAC9B,MAAM,GAAG,CAAC,EAAE;MAC3C,OAAO8B,YAAY,CAACb,GAAG,CAAEC,CAAM,KAAM;QAAE5B,EAAE,EAAE4B,CAAC,CAAC5B,EAAE;QAAEW,IAAI,EAAEiB,CAAC,CAACtB,UAAU;QAAEuB,IAAI,EAAED,CAAC,CAACC;MAAK,CAAC,CAAC,CAAC;IACvF;EACF;EAEA,OAAO,EAAE;AACX;;AAEA;AACA,OAAO,SAASY,WAAWA,CAACC,OAAe,EAAEC,SAAiB,EAAQ;EACpEtE,YAAY,CAAC;IAAEgC,QAAQ,EAAEqC,OAAO;IAAEpC,UAAU,EAAEqC;EAAU,CAAC,CAAC;AAC5D;;AAEA;AACA,OAAO,SAASC,UAAUA,CAAA,EAAY;EACpC,MAAMjD,MAAM,GAAGzB,UAAU,CAAC,CAAC;EAC3B,OAAO,CAAC,EAAEyB,MAAM,CAACC,YAAY,IAAID,MAAM,CAACE,aAAa,CAAC;AACxD","ignoreList":[]}