{"version":3,"file":"sdk.cjs","sources":["../src/lib/Throttle.ts","../src/lib/events/CustomEvents.ts","../src/lib/events/Listener.ts","../src/lib/events/Dispatcher.ts","../src/lib/Errors.ts","../../node_modules/js-cookie/dist/js.cookie.mjs","../src/lib/Cookie.ts","../src/lib/SessionStorage.ts","../src/lib/client/HttpClient.ts","../src/lib/client/Client.ts","../src/lib/client/SessionClient.ts","../src/lib/events/SessionState.ts","../src/lib/events/WindowActivityManager.ts","../src/lib/events/Scheduler.ts","../src/lib/events/SessionChannel.ts","../src/lib/events/Relay.ts","../src/lib/WebauthnSupport.ts","../../node_modules/@github/webauthn-json/dist/esm/webauthn-json.js","../src/lib/flow-api/WebauthnManager.ts","../src/lib/Pkce.ts","../src/lib/flow-api/auto-steps.ts","../src/lib/flow-api/passkey-autofill-activation.ts","../src/lib/flow-api/State.ts","../src/lib/client/UserClient.ts","../src/Hanko.ts"],"sourcesContent":["/**\n * @interface\n * @category SDK\n * @subcategory Internal\n * @property {boolean=} leading - Whether to allow the function to be called on the leading edge of the wait timeout.\n * @property {boolean=} trailing - Whether to allow the function to be called on the trailing edge of the wait timeout.\n */\ninterface ThrottleOptions {\n leading?: boolean;\n trailing?: boolean;\n}\n\n// eslint-disable-next-line no-unused-vars\ntype ThrottledFunction any> = (\n // eslint-disable-next-line no-unused-vars\n ...args: Parameters\n) => void;\n\n/**\n * Provides throttle functionality.\n *\n * @hideconstructor\n * @category SDK\n * @subcategory Internal\n */\nexport class Throttle {\n /**\n * Throttles a function, ensuring that it can only be called once per `wait` milliseconds.\n *\n * @static\n * @param {function} func - The function to throttle.\n * @param {number} wait - The number of milliseconds to wait between function invocations.\n * @param {ThrottleOptions} options - Optional configuration for the throttle.\n * @returns {function} A throttled version of the original function.\n */\n // eslint-disable-next-line no-unused-vars,require-jsdoc\n static throttle any>(\n func: T,\n wait: number,\n options: ThrottleOptions = {},\n ): ThrottledFunction {\n const { leading = true, trailing = true } = options;\n let context: any;\n let args: any;\n let timeoutID: number;\n let previous = 0;\n\n // This function is used to invoke the original function.\n const executeThrottledFunction = () => {\n // If 'leading' is false and this is not the first invocation of the throttled function, set 'previous' to 0 to\n // ensure that the function is not called immediately.\n previous = leading === false ? 0 : Date.now();\n timeoutID = null;\n // Invoke the original function.\n func.apply(context, args);\n };\n\n // This is the throttled function that will be returned.\n const throttled = function (...funcArgs: Parameters) {\n const now = Date.now();\n\n // If this is the first time the throttled function is being called, and 'leading' is false,\n // set 'previous' to the current time to ensure that the function is not called immediately.\n if (!previous && leading === false) previous = now;\n\n // The remaining wait time.\n const remaining = wait - (now - previous);\n\n // Save the context and arguments of the function call.\n // eslint-disable-next-line no-invalid-this\n context = this;\n args = funcArgs;\n\n // Check whether it's time to call the function immediately based on the leading and trailing options. If leading\n // is enabled and there was no previous invocation, or if trailing is enabled and the wait time has already passed,\n // the function will be invoked immediately.\n if (remaining <= 0 || remaining > wait) {\n // If there is a pending timeout, clear it.\n if (timeoutID) {\n window.clearTimeout(timeoutID);\n timeoutID = null;\n }\n\n // Invoke the original function and update the previous timestamp.\n previous = now;\n func.apply(context, args);\n } else if (!timeoutID && trailing !== false) {\n // If there is no pending timeout and trailing is allowed, start a new timeout.\n timeoutID = window.setTimeout(executeThrottledFunction, remaining);\n }\n };\n\n return throttled;\n }\n}\n","import { Claims } from \"../Dto\";\nimport { AnyState } from \"../flow-api/types/flow\";\n\n/**\n * The type of the `hanko-session-created` event.\n * @typedef {string} sessionCreatedType\n * @memberOf Listener\n */\nexport const sessionCreatedType: \"hanko-session-created\" =\n \"hanko-session-created\";\n\n/**\n * The type of the `hanko-session-expired` event.\n * @typedef {string} sessionExpiredType\n * @memberOf Listener\n */\nexport const sessionExpiredType: \"hanko-session-expired\" =\n \"hanko-session-expired\";\n\n/**\n * The type of the `hanko-user-logged-out` event.\n * @typedef {string} userLoggedOutType\n * @memberOf Listener\n */\nexport const userLoggedOutType: \"hanko-user-logged-out\" =\n \"hanko-user-logged-out\";\n\n/**\n * The type of the `hanko-user-deleted` event.\n * @typedef {string} userDeletedType\n * @memberOf Listener\n */\nexport const userDeletedType: \"hanko-user-deleted\" = \"hanko-user-deleted\";\n\n/**\n * The type of the `hanko-user-logged-in` event.\n * @typedef {string} userLoggedInType\n * @memberOf Listener\n */\nexport const userLoggedInType: \"hanko-user-logged-in\" = \"hanko-user-logged-in\";\n\n/**\n * The type of the `hanko-user-created` event.\n * @typedef {string} userCreatedType\n * @memberOf Listener\n */\nexport const userCreatedType: \"hanko-user-created\" = \"hanko-user-created\";\n\n/**\n * The type of the `hanko-after-state-change` event.\n * @typedef {string} flowAfterStateChangeType\n * @memberOf Listener\n */\nexport const flowAfterStateChangeType: \"hanko-after-state-change\" =\n \"hanko-after-state-change\";\n\n/**\n * The type of the `hanko-before-state-change` event.\n * @typedef {string} flowBeforeStateChangeType\n * @memberOf Listener\n */\nexport const flowBeforeStateChangeType: \"hanko-before-state-change\" =\n \"hanko-before-state-change\";\n\n/**\n * The type of the `hanko-flow-error` event.\n * @typedef {string} flowErrorType\n * @memberOf Listener\n */\nexport const flowErrorType: \"hanko-flow-error\" = \"hanko-flow-error\";\n\n/**\n * The data passed in the `hanko-session-created` or `hanko-session-resumed` event.\n *\n * @interface\n * @category SDK\n * @subcategory Events\n * @property {number} expirationSeconds - This property is deprecated. The number of seconds until the JWT expires.\n * @property {Claims} claims - The JSON web token associated with the session. Only present when the Hanko-API allows the JWT to be accessible client-side.\n */\nexport interface SessionDetail {\n claims: Claims;\n expirationSeconds: number; // deprecated\n}\n\nexport interface FlowErrorDetail {\n error: Error;\n}\n\nexport interface FlowDetail {\n state: AnyState;\n}\n\n/**\n * A custom event that includes a detail object.\n *\n * @category SDK\n * @subcategory Events\n * @extends CustomEvent\n * @ignore\n * @param {string} type - The type of the event.\n * @param {T} detail - The detail object to include in the event.\n */\nexport class CustomEventWithDetail extends CustomEvent {\n // eslint-disable-next-line require-jsdoc\n constructor(type: string, detail: T) {\n super(type, { detail });\n }\n}\n","import { Throttle } from \"../Throttle\";\nimport {\n CustomEventWithDetail,\n SessionDetail,\n FlowDetail,\n sessionCreatedType,\n sessionExpiredType,\n userDeletedType,\n userLoggedOutType,\n flowAfterStateChangeType,\n flowBeforeStateChangeType,\n flowErrorType,\n FlowErrorDetail,\n} from \"./CustomEvents\";\n\n/**\n * A callback function to be executed when an event is triggered.\n *\n * @alias CallbackFunc\n * @typedef {function} CallbackFunc\n * @memberOf Listener\n */\n// eslint-disable-next-line no-unused-vars\ntype CallbackFunc = (detail: T) => any;\n\n/**\n * A wrapped callback function that will execute the original callback.\n *\n * @ignore\n * @param {T} event - The event object passed in the event.\n */\n// eslint-disable-next-line no-unused-vars\ntype WrappedCallback = (event: CustomEventWithDetail) => void;\n\n/**\n * A function returned when adding an event listener. The function can be called to remove the corresponding event\n * listener.\n *\n * @alias CleanupFunc\n * @typedef {function} CleanupFunc\n * @memberOf Listener\n */\ntype CleanupFunc = () => void;\n\n/**\n * @interface\n * @ignore\n * @property {Function} callback - The function to be executed.\n * @property {boolean=} once - Whether the event listener should be removed after being called once.\n */\ninterface EventListenerParams {\n callback: CallbackFunc;\n once?: boolean;\n}\n\n/**\n * @interface\n * @ignore\n * @extends {EventListenerParams}\n * @property {string} type - The type of the event.\n * @property {boolean=} throttle - Whether the event listener should be throttled.\n */\ninterface EventListenerWithTypeParams extends EventListenerParams {\n type: string;\n throttle?: boolean;\n}\n\n/**\n * A class to bind event listener for custom events.\n *\n * @category SDK\n * @subcategory Events\n */\nexport class Listener {\n public throttleLimit = 1000;\n _addEventListener = document.addEventListener.bind(document);\n _removeEventListener = document.removeEventListener.bind(document);\n _throttle = Throttle.throttle;\n\n /**\n * Wraps the given callback.\n *\n * @param callback\n * @param throttle\n * @private\n * @return {WrappedCallback}\n */\n private wrapCallback(\n callback: CallbackFunc,\n throttle: boolean,\n ): WrappedCallback {\n // The function that will be called when the event is triggered.\n const wrappedCallback = (event: CustomEventWithDetail) => {\n callback(event.detail);\n };\n\n // Throttle the listener if multiple SDK instances could trigger the same event at the same time,\n // but the callback function should only be executed once.\n if (throttle) {\n return this._throttle(wrappedCallback, this.throttleLimit, {\n leading: true,\n trailing: false,\n });\n }\n\n return wrappedCallback;\n }\n\n /**\n * Adds an event listener with the specified type, callback function, and options.\n *\n * @private\n * @param {EventListenerWithTypeParams} params - The parameters for the event listener.\n * @returns {CleanupFunc} This function can be called to remove the event listener.\n */\n private addEventListenerWithType({\n type,\n callback,\n once = false,\n throttle = false,\n }: EventListenerWithTypeParams): CleanupFunc {\n const wrappedCallback = this.wrapCallback(callback, throttle);\n this._addEventListener(type, wrappedCallback, { once });\n return () => this._removeEventListener(type, wrappedCallback);\n }\n\n /**\n * Maps the parameters for an event listener to the `EventListenerWithTypeParams` interface.\n *\n * @static\n * @private\n * @param {string} type - The type of the event.\n * @param {EventListenerParams} params - The parameters for the event listener.\n * @param {boolean} [throttle=false] - Whether the event listener should be throttled.\n * @returns {EventListenerWithTypeParams}\n **/\n private static mapAddEventListenerParams(\n type: string,\n { once, callback }: EventListenerParams,\n throttle?: boolean,\n ): EventListenerWithTypeParams {\n return {\n type,\n callback,\n once,\n throttle,\n };\n }\n\n /**\n * Adds an event listener with the specified type, callback function, and options.\n *\n * @private\n * @param {string} type - The type of the event.\n * @param {EventListenerParams} params - The parameters for the event listener.\n * @param {boolean=} throttle - Whether the event listener should be throttled.\n * @returns {CleanupFunc} This function can be called to remove the event listener.\n */\n private addEventListener(\n type: string,\n params: EventListenerParams,\n throttle?: boolean,\n ) {\n return this.addEventListenerWithType(\n Listener.mapAddEventListenerParams(type, params, throttle),\n );\n }\n\n /**\n * Adds an event listener for \"hanko-session-created\" events. Will be triggered across all browser windows, when the user\n * logs in, or when the page has been loaded or refreshed and there is a valid session.\n *\n * @param {CallbackFunc} callback - The function to be called when the event is triggered.\n * @param {boolean=} once - Whether the event listener should be removed after being called once.\n * @returns {CleanupFunc} This function can be called to remove the event listener.\n */\n public onSessionCreated(\n callback: CallbackFunc,\n once?: boolean,\n ): CleanupFunc {\n return this.addEventListener(sessionCreatedType, { callback, once }, true);\n }\n\n /**\n * Adds an event listener for \"hanko-session-expired\" events. The event will be triggered across all browser windows\n * as soon as the current JWT expires or the user logs out. It also triggers, when the user deletes the account in\n * another window.\n *\n * @param {CallbackFunc} callback - The function to be called when the event is triggered.\n * @param {boolean=} once - Whether the event listener should be removed after being called once.\n * @returns {CleanupFunc} This function can be called to remove the event listener.\n */\n public onSessionExpired(\n callback: CallbackFunc,\n once?: boolean,\n ): CleanupFunc {\n return this.addEventListener(sessionExpiredType, { callback, once }, true);\n }\n\n /**\n * Adds an event listener for hanko-user-deleted events. The event triggers, when the user has deleted the account in\n * the browser window where the deletion happened.\n *\n * @param {CallbackFunc} callback - The function to be called when the event is triggered.\n * @param {boolean=} once - Whether the event listener should be removed after being called once.\n * @returns {CleanupFunc} This function can be called to remove the event listener.\n */\n public onUserLoggedOut(\n callback: CallbackFunc,\n once?: boolean,\n ): CleanupFunc {\n return this.addEventListener(userLoggedOutType, { callback, once });\n }\n\n /**\n * Adds an event listener for hanko-user-deleted events. The event triggers, when the user has deleted the account.\n *\n * @param {CallbackFunc} callback - The function to be called when the event is triggered.\n * @param {boolean=} once - Whether the event listener should be removed after being called once.\n * @returns {CleanupFunc} This function can be called to remove the event listener.\n */\n public onUserDeleted(\n callback: CallbackFunc,\n once?: boolean,\n ): CleanupFunc {\n return this.addEventListener(userDeletedType, { callback, once });\n }\n\n public onAfterStateChange(\n callback: CallbackFunc,\n once?: boolean,\n ): CleanupFunc {\n return this.addEventListener(\n flowAfterStateChangeType,\n { callback, once },\n false,\n );\n }\n\n public onBeforeStateChange(\n callback: CallbackFunc,\n once?: boolean,\n ): CleanupFunc {\n return this.addEventListener(\n flowBeforeStateChangeType,\n { callback, once },\n false,\n );\n }\n}\n","import {\n SessionDetail,\n CustomEventWithDetail,\n sessionCreatedType,\n sessionExpiredType,\n userDeletedType,\n userLoggedOutType,\n flowAfterStateChangeType,\n FlowDetail,\n flowBeforeStateChangeType,\n} from \"./CustomEvents\";\n\n/**\n * A class that dispatches custom events.\n *\n * @category SDK\n * @subcategory Internal\n */\nexport class Dispatcher {\n _dispatchEvent = document.dispatchEvent.bind(document);\n\n /**\n * Dispatches a custom event.\n *\n * @param {string} type\n * @param {T} detail\n * @private\n */\n private dispatch(type: string, detail: T) {\n this._dispatchEvent(new CustomEventWithDetail(type, detail));\n }\n\n /**\n * Dispatches a \"hanko-session-created\" event to the document with the specified detail.\n *\n * @param {SessionDetail} detail - The event detail.\n */\n public dispatchSessionCreatedEvent(detail: SessionDetail) {\n this.dispatch(sessionCreatedType, detail);\n }\n\n /**\n * Dispatches a \"hanko-session-expired\" event to the document.\n */\n public dispatchSessionExpiredEvent() {\n this.dispatch(sessionExpiredType, null);\n }\n\n /**\n * Dispatches a \"hanko-user-logged-out\" event to the document.\n */\n public dispatchUserLoggedOutEvent() {\n this.dispatch(userLoggedOutType, null);\n }\n\n /**\n * Dispatches a \"hanko-user-deleted\" event to the document.\n */\n public dispatchUserDeletedEvent() {\n this.dispatch(userDeletedType, null);\n }\n\n /**\n * Dispatches a \"hanko-after-state-change\" event to the document.\n */\n public dispatchAfterStateChangeEvent(detail: FlowDetail) {\n this.dispatch(flowAfterStateChangeType, detail);\n }\n\n /**\n * Dispatches a \"hanko-before-state-change\" event to the document.\n */\n public dispatchBeforeStateChangeEvent(detail: FlowDetail) {\n this.dispatch(flowBeforeStateChangeType, detail);\n }\n}\n","/**\n * Every error thrown in the SDK is an instance of 'HankoError'. The value of the 'code' property is eligible to\n * translate the error into an error message.\n *\n * @extends {Error}\n * @category SDK\n * @subcategory Errors\n * @param code {string} - An error code that refers to the error instance.\n * @param cause {Error=} - The original error\n */\nabstract class HankoError extends Error {\n code: string;\n cause?: Error;\n\n // eslint-disable-next-line require-jsdoc\n protected constructor(message: string, code: string, cause?: Error) {\n super(message);\n /**\n * @public\n * @type {string}\n */\n this.code = code;\n /**\n * @public\n * @type {Error=}\n */\n this.cause = cause;\n Object.setPrototypeOf(this, HankoError.prototype);\n }\n}\n\n/**\n * Every error that doesn't need to be handled in a special way is a 'TechnicalError'. Whenever you catch one, there is\n * usually nothing you can do but present an error to the user, e.g. \"Something went wrong\".\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass TechnicalError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Technical error\", \"somethingWentWrong\", cause);\n Object.setPrototypeOf(this, TechnicalError.prototype);\n }\n}\n\n/**\n * Attempting to create a resource that already exists results in a 'ConflictError'.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass ConflictError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(userID?: string, cause?: Error) {\n super(\"Conflict error\", \"conflict\", cause);\n Object.setPrototypeOf(this, ConflictError.prototype);\n }\n}\n\n/**\n * A 'RequestTimeoutError' occurs when the specified timeout has been reached.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass RequestTimeoutError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Request timed out error\", \"requestTimeout\", cause);\n Object.setPrototypeOf(this, RequestTimeoutError.prototype);\n }\n}\n\n/**\n * A 'WebauthnRequestCancelledError' occurs during WebAuthn authentication or registration, when the WebAuthn API throws\n * an error. In most cases, this happens when the user cancels the browser's WebAuthn dialog.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass WebauthnRequestCancelledError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Request cancelled error\", \"requestCancelled\", cause);\n Object.setPrototypeOf(this, WebauthnRequestCancelledError.prototype);\n }\n}\n\n/**\n * An 'InvalidPasswordError' occurs when invalid credentials are provided when logging in with a password.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass InvalidPasswordError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Invalid password error\", \"invalidPassword\", cause);\n Object.setPrototypeOf(this, InvalidPasswordError.prototype);\n }\n}\n\n/**\n * An 'InvalidPasswordError' occurs when an incorrect code is entered when logging in with a passcode.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass InvalidPasscodeError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Invalid Passcode error\", \"invalidPasscode\", cause);\n Object.setPrototypeOf(this, InvalidPasscodeError.prototype);\n }\n}\n\n/**\n * An 'InvalidWebauthnCredentialError' occurs if invalid credentials were used when logging in with WebAuthn.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass InvalidWebauthnCredentialError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\n \"Invalid WebAuthn credential error\",\n \"invalidWebauthnCredential\",\n cause,\n );\n Object.setPrototypeOf(this, InvalidWebauthnCredentialError.prototype);\n }\n}\n\n/**\n * A 'PasscodeExpiredError' occurs when the passcode has expired.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass PasscodeExpiredError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Passcode expired error\", \"passcodeExpired\", cause);\n Object.setPrototypeOf(this, PasscodeExpiredError.prototype);\n }\n}\n\n/**\n * A 'MaxNumOfPasscodeAttemptsReachedError' occurs when an incorrect passcode is provided too many times.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass MaxNumOfPasscodeAttemptsReachedError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\n \"Maximum number of Passcode attempts reached error\",\n \"passcodeAttemptsReached\",\n cause,\n );\n Object.setPrototypeOf(this, MaxNumOfPasscodeAttemptsReachedError.prototype);\n }\n}\n\n/**\n * A 'NotFoundError' occurs when the requested resource was not found.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass NotFoundError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Not found error\", \"notFound\", cause);\n Object.setPrototypeOf(this, NotFoundError.prototype);\n }\n}\n\n/**\n * A 'TooManyRequestsError' occurs due to rate limiting when too many requests are made.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass TooManyRequestsError extends HankoError {\n retryAfter?: number;\n // eslint-disable-next-line require-jsdoc\n constructor(retryAfter?: number, cause?: Error) {\n super(\"Too many requests error\", \"tooManyRequests\", cause);\n this.retryAfter = retryAfter;\n Object.setPrototypeOf(this, TooManyRequestsError.prototype);\n }\n}\n\n/**\n * An 'UnauthorizedError' occurs when the user is not authorized to access the resource.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass UnauthorizedError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Unauthorized error\", \"unauthorized\", cause);\n Object.setPrototypeOf(this, UnauthorizedError.prototype);\n }\n}\n\n/**\n * A 'ForbiddenError' occurs when the user is not allowed to perform the requested action.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass ForbiddenError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"Forbidden error\", \"forbidden\", cause);\n Object.setPrototypeOf(this, ForbiddenError.prototype);\n }\n}\n\n/**\n * A 'UserVerificationError' occurs when the user verification requirements\n * for a WebAuthn ceremony are not met.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass UserVerificationError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\"User verification error\", \"userVerification\", cause);\n Object.setPrototypeOf(this, UserVerificationError.prototype);\n }\n}\n\n/**\n * A 'MaxNumOfEmailAddressesReachedError' occurs when the user tries to add a new email address while the maximum number\n * of email addresses (see backend configuration) equals the number of email addresses already registered.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass MaxNumOfEmailAddressesReachedError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\n \"Maximum number of email addresses reached error\",\n \"maxNumOfEmailAddressesReached\",\n cause,\n );\n Object.setPrototypeOf(this, MaxNumOfEmailAddressesReachedError.prototype);\n }\n}\n\n/**\n * An 'EmailAddressAlreadyExistsError' occurs when the user tries to add a new email address which already exists.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass EmailAddressAlreadyExistsError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(cause?: Error) {\n super(\n \"The email address already exists\",\n \"emailAddressAlreadyExistsError\",\n cause,\n );\n Object.setPrototypeOf(this, EmailAddressAlreadyExistsError.prototype);\n }\n}\n\n/**\n * A `ThirdPartyError` may occur during a sign in/sign up with a third party\n * provider.\n *\n * @category SDK\n * @subcategory Errors\n * @extends {HankoError}\n */\nclass ThirdPartyError extends HankoError {\n // eslint-disable-next-line require-jsdoc\n constructor(code: string, cause?: Error) {\n super(\"An error occurred during third party sign up/sign in\", code, cause);\n Object.setPrototypeOf(this, ThirdPartyError.prototype);\n }\n}\n\nexport {\n HankoError,\n TechnicalError,\n ConflictError,\n RequestTimeoutError,\n WebauthnRequestCancelledError,\n InvalidPasswordError,\n InvalidPasscodeError,\n InvalidWebauthnCredentialError,\n PasscodeExpiredError,\n MaxNumOfPasscodeAttemptsReachedError,\n NotFoundError,\n TooManyRequestsError,\n UnauthorizedError,\n ForbiddenError,\n UserVerificationError,\n MaxNumOfEmailAddressesReachedError,\n EmailAddressAlreadyExistsError,\n ThirdPartyError,\n};\n","/*! js-cookie v3.0.5 | MIT */\n/* eslint-disable no-var */\nfunction assign (target) {\n for (var i = 1; i < arguments.length; i++) {\n var source = arguments[i];\n for (var key in source) {\n target[key] = source[key];\n }\n }\n return target\n}\n/* eslint-enable no-var */\n\n/* eslint-disable no-var */\nvar defaultConverter = {\n read: function (value) {\n if (value[0] === '\"') {\n value = value.slice(1, -1);\n }\n return value.replace(/(%[\\dA-F]{2})+/gi, decodeURIComponent)\n },\n write: function (value) {\n return encodeURIComponent(value).replace(\n /%(2[346BF]|3[AC-F]|40|5[BDE]|60|7[BCD])/g,\n decodeURIComponent\n )\n }\n};\n/* eslint-enable no-var */\n\n/* eslint-disable no-var */\n\nfunction init (converter, defaultAttributes) {\n function set (name, value, attributes) {\n if (typeof document === 'undefined') {\n return\n }\n\n attributes = assign({}, defaultAttributes, attributes);\n\n if (typeof attributes.expires === 'number') {\n attributes.expires = new Date(Date.now() + attributes.expires * 864e5);\n }\n if (attributes.expires) {\n attributes.expires = attributes.expires.toUTCString();\n }\n\n name = encodeURIComponent(name)\n .replace(/%(2[346B]|5E|60|7C)/g, decodeURIComponent)\n .replace(/[()]/g, escape);\n\n var stringifiedAttributes = '';\n for (var attributeName in attributes) {\n if (!attributes[attributeName]) {\n continue\n }\n\n stringifiedAttributes += '; ' + attributeName;\n\n if (attributes[attributeName] === true) {\n continue\n }\n\n // Considers RFC 6265 section 5.2:\n // ...\n // 3. If the remaining unparsed-attributes contains a %x3B (\";\")\n // character:\n // Consume the characters of the unparsed-attributes up to,\n // not including, the first %x3B (\";\") character.\n // ...\n stringifiedAttributes += '=' + attributes[attributeName].split(';')[0];\n }\n\n return (document.cookie =\n name + '=' + converter.write(value, name) + stringifiedAttributes)\n }\n\n function get (name) {\n if (typeof document === 'undefined' || (arguments.length && !name)) {\n return\n }\n\n // To prevent the for loop in the first place assign an empty array\n // in case there are no cookies at all.\n var cookies = document.cookie ? document.cookie.split('; ') : [];\n var jar = {};\n for (var i = 0; i < cookies.length; i++) {\n var parts = cookies[i].split('=');\n var value = parts.slice(1).join('=');\n\n try {\n var found = decodeURIComponent(parts[0]);\n jar[found] = converter.read(value, found);\n\n if (name === found) {\n break\n }\n } catch (e) {}\n }\n\n return name ? jar[name] : jar\n }\n\n return Object.create(\n {\n set,\n get,\n remove: function (name, attributes) {\n set(\n name,\n '',\n assign({}, attributes, {\n expires: -1\n })\n );\n },\n withAttributes: function (attributes) {\n return init(this.converter, assign({}, this.attributes, attributes))\n },\n withConverter: function (converter) {\n return init(assign({}, this.converter, converter), this.attributes)\n }\n },\n {\n attributes: { value: Object.freeze(defaultAttributes) },\n converter: { value: Object.freeze(converter) }\n }\n )\n}\n\nvar api = init(defaultConverter, { path: '/' });\n/* eslint-enable no-var */\n\nexport { api as default };\n","import JSCookie, { CookieAttributes } from \"js-cookie\";\nimport { TechnicalError } from \"./Errors\";\n\n/**\n * Options for Cookie\n *\n * @category SDK\n * @subcategory Internal\n * @property {string=} cookieName - The name of the session cookie set from the SDK. Defaults to \"hanko\".\n * @property {string=} cookieDomain - The domain where the cookie set from the SDK is available. Defaults to the domain of the page where the cookie was created.\n * @property {string=} cookieSameSite -Specify whether/when cookies are sent with cross-site requests. Defaults to \"lax\".\n */\ninterface CookieOptions {\n cookieName?: string;\n cookieDomain?: string;\n cookieSameSite?: CookieSameSite;\n}\n\nexport type CookieSameSite =\n | \"strict\"\n | \"Strict\"\n | \"lax\"\n | \"Lax\"\n | \"none\"\n | \"None\";\n\n/**\n * A class to manage cookies.\n *\n * @category SDK\n * @subcategory Internal\n * @param {CookieOptions} options - The options that can be used\n */\nexport class Cookie {\n authCookieName: string;\n authCookieDomain?: string;\n authCookieSameSite: CookieSameSite;\n\n // eslint-disable-next-line require-jsdoc\n constructor(options: CookieOptions) {\n this.authCookieName = options.cookieName ?? \"hanko\";\n this.authCookieDomain = options.cookieDomain;\n this.authCookieSameSite = options.cookieSameSite ?? \"lax\";\n }\n\n /**\n * Returns the authentication token that was stored in the cookie.\n *\n * @return {string}\n */\n getAuthCookie(): string {\n return JSCookie.get(this.authCookieName);\n }\n\n /**\n * Stores the authentication token to the cookie.\n *\n * @param {string} token - The authentication token to be stored.\n * @param {CookieAttributes} options - Options for setting the auth cookie.\n */\n setAuthCookie(token: string, options?: CookieAttributes) {\n const defaults: CookieAttributes = {\n secure: true,\n sameSite: this.authCookieSameSite,\n };\n\n if (this.authCookieDomain !== undefined) {\n defaults.domain = this.authCookieDomain;\n }\n\n const o: CookieAttributes = { ...defaults, ...options };\n\n if (\n (o.sameSite === \"none\" || o.sameSite === \"None\") &&\n o.secure === false\n ) {\n throw new TechnicalError(\n new Error(\"Secure attribute must be set when SameSite=None\"),\n );\n }\n\n JSCookie.set(this.authCookieName, token, o);\n }\n\n /**\n * Removes the cookie used for authentication.\n */\n removeAuthCookie() {\n JSCookie.remove(this.authCookieName);\n }\n}\n","/**\n * Options for SessionStorage\n *\n * @category SDK\n * @subcategory Internal\n * @property {string} keyName - The name of the sessionStorage session token entry set from the SDK.\n */\ninterface SessionStorageOptions {\n keyName: string;\n}\n\n/**\n * A class to manage sessionStorage.\n *\n * @category SDK\n * @subcategory Internal\n * @param {SessionStorageOptions} options - The options that can be used.\n */\nexport class SessionStorage {\n keyName: string;\n\n // eslint-disable-next-line require-jsdoc\n constructor(options: SessionStorageOptions) {\n this.keyName = options.keyName;\n }\n\n /**\n * Return the session token that was stored in the sessionStorage.\n *\n * @return {string}\n */\n getSessionToken(): string {\n return sessionStorage.getItem(this.keyName);\n }\n\n /**\n * Stores the session token in the sessionStorage.\n *\n * @param {string} token - The session token to be stored.\n */\n setSessionToken(token: string) {\n sessionStorage.setItem(this.keyName, token);\n }\n\n /**\n * Removes the session token used for authentication.\n */\n removeSessionToken() {\n sessionStorage.removeItem(this.keyName);\n }\n}\n","import { RequestTimeoutError, TechnicalError } from \"../Errors\";\nimport { Dispatcher } from \"../events/Dispatcher\";\nimport { Cookie } from \"../Cookie\";\nimport { SessionStorage } from \"../SessionStorage\";\nimport { CookieAttributes } from \"js-cookie\";\nimport { HankoOptions } from \"../../Hanko\";\n\nexport type SessionTokenLocation = \"cookie\" | \"sessionStorage\";\n\n/**\n * This class wraps an XMLHttpRequest to maintain compatibility with the fetch API.\n *\n * @category SDK\n * @subcategory Internal\n * @param {XMLHttpRequest} xhr - The request to be wrapped.\n * @see HttpClient\n */\nclass Headers {\n _xhr: XMLHttpRequest;\n\n // eslint-disable-next-line require-jsdoc\n constructor(xhr: XMLHttpRequest) {\n this._xhr = xhr;\n }\n\n /**\n * Returns the response header with the given name.\n *\n * @param {string} name\n * @return {string}\n */\n getResponseHeader(name: string) {\n return this._xhr.getResponseHeader(name);\n }\n}\n\n/**\n * This class wraps an XMLHttpRequest to maintain compatibility with the fetch API.\n *\n * @category SDK\n * @subcategory Internal\n * @param {XMLHttpRequest} xhr - The request to be wrapped.\n * @see HttpClient\n */\nclass Response {\n headers: Headers;\n ok: boolean;\n status: number;\n statusText: string;\n url: string;\n _decodedJSON: any;\n xhr: XMLHttpRequest;\n\n // eslint-disable-next-line require-jsdoc\n constructor(xhr: XMLHttpRequest) {\n /**\n * @public\n * @type {Headers}\n */\n this.headers = new Headers(xhr);\n /**\n * @public\n * @type {boolean}\n */\n this.ok = xhr.status >= 200 && xhr.status <= 299;\n /**\n * @public\n * @type {number}\n */\n this.status = xhr.status;\n /**\n * @public\n * @type {string}\n */\n this.statusText = xhr.statusText;\n /**\n * @public\n * @type {string}\n */\n this.url = xhr.responseURL;\n /**\n * @private\n * @type {XMLHttpRequest}\n */\n this.xhr = xhr;\n }\n\n /**\n * Returns the JSON decoded response.\n *\n * @return {any}\n */\n json() {\n if (!this._decodedJSON) {\n this._decodedJSON = JSON.parse(this.xhr.response);\n }\n return this._decodedJSON;\n }\n\n /**\n * Returns the response header value with the given `name` as a number. When the value is not a number the return\n * value will be 0.\n *\n * @param {string} name - The name of the header field\n * @return {number}\n */\n parseNumericHeader(name: string): number {\n const result = parseInt(this.headers.getResponseHeader(name), 10);\n return isNaN(result) ? 0 : result;\n }\n}\n\n/**\n * Options for the HttpClient\n *\n * @category SDK\n * @subcategory Internal\n * @property {number=} timeout - The http request timeout in milliseconds.\n * @property {string} cookieName - The name of the session cookie set from the SDK.\n * @property {string=} cookieDomain - The domain where cookie set from the SDK is available. Defaults to the domain of the page where the cookie was created.\n * @property {string?} lang - The language used by the client(s) to convey to the Hanko API the language to use -\n * e.g. for translating outgoing emails - in a custom header (X-Language).\n */\nexport interface HttpClientOptions {\n timeout?: number;\n cookieName?: string;\n cookieDomain?: string;\n lang?: string;\n sessionTokenLocation?: SessionTokenLocation;\n}\n\n/**\n * Internally used for communication with the Hanko API. It also handles authorization tokens to enable authorized\n * requests.\n *\n * Currently, there is an issue with Safari and on iOS 15 devices where decoding a JSON response via the fetch API\n * breaks the user gesture and the user is not able to use the authenticator. Therefore, this class uses XMLHttpRequests\n * instead of the fetch API, but maintains compatibility by wrapping the XMLHttpRequests. So, if the issues are fixed,\n * we can easily return to the fetch API.\n *\n * @category SDK\n * @subcategory Internal\n * @param {string} api - The URL of your Hanko API instance\n * @param {HttpClientOptions} options - The options the HttpClient must be provided\n */\nclass HttpClient {\n timeout: number;\n api: string;\n dispatcher: Dispatcher;\n cookie: Cookie;\n sessionTokenStorage: SessionStorage;\n lang: string;\n sessionTokenLocation: SessionTokenLocation;\n\n // eslint-disable-next-line require-jsdoc\n constructor(api: string, options: HankoOptions) {\n this.api = api;\n this.timeout = options.timeout ?? 13000;\n this.dispatcher = new Dispatcher();\n this.cookie = new Cookie({ ...options });\n this.sessionTokenStorage = new SessionStorage({\n keyName: options.cookieName,\n });\n this.lang = options.lang;\n this.sessionTokenLocation = options.sessionTokenLocation;\n }\n\n // eslint-disable-next-line require-jsdoc\n _fetch(path: string, options: RequestInit, xhr = new XMLHttpRequest()) {\n const self = this;\n const url = this.api + path;\n const timeout = this.timeout;\n const bearerToken = this.getAuthToken();\n const lang = this.lang;\n\n return new Promise(function (resolve, reject) {\n xhr.open(options.method, url, true);\n xhr.setRequestHeader(\"Accept\", \"application/json\");\n xhr.setRequestHeader(\"Content-Type\", \"application/json\");\n xhr.setRequestHeader(\"X-Language\", lang);\n\n if (bearerToken) {\n xhr.setRequestHeader(\"Authorization\", `Bearer ${bearerToken}`);\n }\n\n xhr.timeout = timeout;\n xhr.withCredentials = true;\n xhr.onload = () => {\n self.processHeaders(xhr);\n resolve(new Response(xhr));\n };\n\n xhr.onerror = () => {\n reject(new TechnicalError());\n };\n\n xhr.ontimeout = () => {\n reject(new RequestTimeoutError());\n };\n\n xhr.send(options.body ? options.body.toString() : null);\n });\n }\n\n /**\n * Processes the response headers on login and extracts the JWT and expiration time.\n *\n * @param {XMLHttpRequest} xhr - The xhr object.\n */\n processHeaders(xhr: XMLHttpRequest) {\n let jwt = \"\";\n let expirationSeconds = 0;\n let retention = \"\";\n\n xhr\n .getAllResponseHeaders()\n .split(\"\\r\\n\")\n .forEach((h) => {\n const header = h.toLowerCase();\n if (header.startsWith(\"x-auth-token\")) {\n jwt = xhr.getResponseHeader(\"X-Auth-Token\");\n } else if (header.startsWith(\"x-session-lifetime\")) {\n expirationSeconds = parseInt(\n xhr.getResponseHeader(\"X-Session-Lifetime\"),\n 10,\n );\n } else if (header.startsWith(\"x-session-retention\")) {\n retention = xhr.getResponseHeader(\"X-Session-Retention\");\n }\n });\n\n if (jwt) {\n const https = new RegExp(\"^https://\");\n const secure =\n !!this.api.match(https) && !!window.location.href.match(https);\n\n const expires =\n retention === \"session\"\n ? undefined\n : new Date(new Date().getTime() + expirationSeconds * 1000);\n\n this.setAuthToken(jwt, { secure, expires });\n }\n }\n\n /**\n * Performs a GET request.\n *\n * @param {string} path - The path to the requested resource.\n * @return {Promise}\n * @throws {RequestTimeoutError}\n * @throws {TechnicalError}\n */\n get(path: string) {\n return this._fetch(path, { method: \"GET\" });\n }\n\n /**\n * Performs a POST request.\n *\n * @param {string} path - The path to the requested resource.\n * @param {any=} body - The request body.\n * @return {Promise}\n * @throws {RequestTimeoutError}\n * @throws {TechnicalError}\n */\n post(path: string, body?: any) {\n return this._fetch(path, {\n method: \"POST\",\n body: JSON.stringify(body),\n });\n }\n\n /**\n * Performs a PUT request.\n *\n * @param {string} path - The path to the requested resource.\n * @param {any=} body - The request body.\n * @return {Promise}\n * @throws {RequestTimeoutError}\n * @throws {TechnicalError}\n */\n put(path: string, body?: any) {\n return this._fetch(path, {\n method: \"PUT\",\n body: JSON.stringify(body),\n });\n }\n\n /**\n * Performs a PATCH request.\n *\n * @param {string} path - The path to the requested resource.\n * @param {any=} body - The request body.\n * @return {Promise}\n * @throws {RequestTimeoutError}\n * @throws {TechnicalError}\n */\n patch(path: string, body?: any) {\n return this._fetch(path, {\n method: \"PATCH\",\n body: JSON.stringify(body),\n });\n }\n\n /**\n * Performs a DELETE request.\n *\n * @param {string} path - The path to the requested resource.\n * @return {Promise}\n * @throws {RequestTimeoutError}\n * @throws {TechnicalError}\n */\n delete(path: string) {\n return this._fetch(path, {\n method: \"DELETE\",\n });\n }\n\n /**\n * Returns the session token either from the cookie or the sessionStorage.\n * @private\n * @return {string}\n */\n private getAuthToken(): string {\n let token = \"\";\n switch (this.sessionTokenLocation) {\n case \"cookie\":\n token = this.cookie.getAuthCookie();\n break;\n case \"sessionStorage\":\n token = this.sessionTokenStorage.getSessionToken();\n break;\n default:\n token = this.cookie.getAuthCookie();\n break;\n }\n return token;\n }\n\n /**\n * Stores the session token either in a cookie or in the sessionStorage depending on the configuration.\n * @param {string} token - The session token to be stored.\n * @param {CookieAttributes} options - Options for setting the auth cookie.\n * @private\n */\n private setAuthToken(token: string, options: CookieAttributes) {\n switch (this.sessionTokenLocation) {\n case \"cookie\":\n return this.cookie.setAuthCookie(token, options);\n case \"sessionStorage\":\n return this.sessionTokenStorage.setSessionToken(token);\n default:\n return this.cookie.setAuthCookie(token, options);\n }\n }\n}\n\nexport { Headers, Response, HttpClient };\n","import { HttpClient, HttpClientOptions } from \"./HttpClient\";\n\n/**\n * A class to be extended by the other client classes.\n *\n * @abstract\n * @category SDK\n * @subcategory Internal\n * @param {string} api - The URL of your Hanko API instance\n * @param {HttpClientOptions} options - The options that can be used\n */\nabstract class Client {\n client: HttpClient;\n\n // eslint-disable-next-line require-jsdoc\n constructor(api: string, options: HttpClientOptions) {\n /**\n * @public\n * @type {HttpClient}\n */\n this.client = new HttpClient(api, options);\n }\n}\n\nexport { Client };\n","import { Client } from \"./Client\";\nimport { SessionCheckResponse } from \"../Dto\";\nimport { TechnicalError } from \"../Errors\";\n\n/**\n * A class that handles communication with the Hanko API for the purposes\n * of sessions.\n *\n * @constructor\n * @category SDK\n * @subcategory Clients\n * @extends {Client}\n */\nexport class SessionClient extends Client {\n /**\n * Checks if the current session is still valid.\n *\n * @return {Promise}\n * @throws {TechnicalError}\n */\n async validate(): Promise {\n const response = await this.client.get(\"/sessions/validate\");\n\n if (!response.ok) {\n throw new TechnicalError();\n }\n\n return await response.json();\n }\n}\n","/**\n * Represents the session state with expiration and last check timestamps.\n *\n * @category SDK\n * @subcategory Internal\n */\nexport interface State {\n expiration: number; // Timestamp (in milliseconds) when the session expires.\n lastCheck: number; // Timestamp (in milliseconds) of the last session check.\n}\n\n/**\n * Manages session state persistence using localStorage.\n *\n * @category SDK\n * @subcategory Internal\n */\nexport class SessionState {\n private readonly storageKey: string;\n private readonly defaultState: State = {\n expiration: 0,\n lastCheck: 0,\n };\n\n /**\n * Creates an instance of SessionState.\n *\n * @param {string} storageKey - The key used to store session state in localStorage.\n */\n constructor(storageKey: string) {\n this.storageKey = storageKey;\n }\n\n /**\n * Loads the current session state from localStorage.\n *\n * @returns {State} The parsed session state or a default state if not found.\n */\n load(): State {\n const item = window.localStorage.getItem(this.storageKey);\n return item == null ? this.defaultState : JSON.parse(item);\n }\n\n /**\n * Saves the session state to localStorage.\n *\n * @param {State | null} session - The session state to save. If null, the default state is used.\n */\n save(session: State | null): void {\n window.localStorage.setItem(\n this.storageKey,\n JSON.stringify(session ? session : this.defaultState),\n );\n }\n}\n","// Callback type for handling window activity changes.\ntype Callback = () => void;\n\n/**\n * Manages window focus and blur events.\n *\n * @class\n * @category SDK\n * @subcategory Internal\n * @param {Callback} onActivityCallback - Callback to invoke when the window gains focus.\n * @param {Callback} onInactivityCallback - Callback to invoke when the window loses focus.\n */\nexport class WindowActivityManager {\n private readonly onActivityCallback: Callback; // Callback for when the window or tab gains focus.\n private readonly onInactivityCallback: Callback; // Callback for when the window or tab loses focus.\n\n // eslint-disable-next-line require-jsdoc\n constructor(onActivityCallback: Callback, onInactivityCallback: Callback) {\n this.onActivityCallback = onActivityCallback;\n this.onInactivityCallback = onInactivityCallback;\n\n // Attach event listeners for focus and blur\n window.addEventListener(\"focus\", this.handleFocus);\n window.addEventListener(\"blur\", this.handleBlur);\n document.addEventListener(\"visibilitychange\", this.handleVisibilityChange);\n }\n\n /**\n * Handles the focus event and invokes the activity callback.\n * @private\n */\n private handleFocus = (): void => {\n this.onActivityCallback();\n };\n\n /**\n * Handles the blur event and invokes the inactivity callback.\n * @private\n */\n private handleBlur = (): void => {\n this.onInactivityCallback();\n };\n\n /**\n * Handles the visibility change event and invokes appropriate callbacks.\n * @private\n */\n private handleVisibilityChange = (): void => {\n if (document.visibilityState === \"visible\") {\n this.onActivityCallback();\n } else {\n this.onInactivityCallback();\n }\n };\n\n /**\n * Checks if the current window has focus.\n * @returns {boolean} True if the window has focus; otherwise, false.\n */\n hasFocus = (): boolean => {\n return document.hasFocus();\n };\n}\n","import { SessionCheckResponse } from \"../Dto\";\n\n// Type representing data returned by the session check callback.\nexport type SessionCheckResult =\n | (Omit & {\n expiration: number;\n })\n | null;\n\n/**\n * Callback type for performing a session check.\n * @ignore\n */\ntype SessionCheckCallback = () => Promise;\n\n/**\n * Callback type for handling session timeout events.\n * @ignore\n */\ntype SessionExpiredCallback = () => void;\n\n/**\n * Manages scheduling for periodic and timeout-based session checks.\n *\n * @category SDK\n * @subcategory Internal\n * @param {number} checkInterval - The interval in milliseconds between periodic session checks.\n * @param {SessionCheckCallback} checkSession - The callback function to perform a session check.\n * @param {SessionExpiredCallback} onSessionExpired - The callback function to handle session timeout events.\n */\nexport class Scheduler {\n private intervalID: ReturnType | null = null; // Identifier for the periodic check interval.\n private timeoutID: ReturnType | null = null; // Identifier for the session expiration timeout.\n private readonly checkInterval: number; // The interval between periodic session checks.\n private readonly checkSession: SessionCheckCallback; // The callback function to perform a session check.\n private readonly onSessionExpired: SessionExpiredCallback; // The callback function to handle session expired events.\n\n // eslint-disable-next-line require-jsdoc\n constructor(\n checkInterval: number,\n checkSession: SessionCheckCallback,\n onSessionExpired: SessionExpiredCallback,\n ) {\n this.checkInterval = checkInterval;\n this.checkSession = checkSession;\n this.onSessionExpired = onSessionExpired;\n }\n\n /**\n * Handles the session expiration when it is about to expire soon.\n * Stops any ongoing checks and schedules a timeout for the expiration.\n *\n * @param {number} timeToExpiration - The time in milliseconds until the session expires.\n */\n scheduleSessionExpiry(timeToExpiration: number): void {\n this.stop();\n this.timeoutID = setTimeout(async () => {\n this.stop();\n this.onSessionExpired();\n }, timeToExpiration);\n }\n\n /**\n * Starts the session check process.\n * Determines when the next check should run based on the last known check time and session expiration.\n * If the session is expiring soon, schedules an expiration event instead of starting periodic checks.\n *\n * @param {number} lastCheck - The timestamp (in milliseconds) of the last session check.\n * @param {number} expiration - The timestamp (in milliseconds) of when the session expires.\n */\n start(lastCheck: number = 0, expiration: number = 0): void {\n const timeToNextCheck = this.calcTimeToNextCheck(lastCheck);\n\n if (this.sessionExpiresSoon(expiration)) {\n this.scheduleSessionExpiry(timeToNextCheck);\n return;\n }\n\n // Schedule the first check after an optional delay\n this.timeoutID = setTimeout(async () => {\n try {\n let result = await this.checkSession();\n\n if (result.is_valid) {\n if (this.sessionExpiresSoon(result.expiration)) {\n this.scheduleSessionExpiry(result.expiration - Date.now());\n return;\n }\n\n // Begin periodic checks\n this.intervalID = setInterval(async () => {\n result = await this.checkSession();\n\n if (result.is_valid) {\n if (this.sessionExpiresSoon(result.expiration)) {\n this.scheduleSessionExpiry(result.expiration - Date.now());\n }\n } else {\n this.stop();\n }\n }, this.checkInterval);\n } else {\n this.stop();\n }\n } catch (e) {\n console.log(e);\n }\n }, timeToNextCheck);\n }\n\n /**\n * Stops the session check process and clears all timers.\n */\n stop(): void {\n if (this.timeoutID) {\n clearTimeout(this.timeoutID);\n this.timeoutID = null;\n }\n\n if (this.intervalID) {\n clearInterval(this.intervalID);\n this.intervalID = null;\n }\n }\n\n /**\n * Checks if the scheduler is currently running.\n * @returns {boolean} True if the scheduler is running; otherwise, false.\n */\n isRunning(): boolean {\n return this.timeoutID !== null || this.intervalID !== null;\n }\n\n /**\n * Checks if the session is about to expire.\n * @param {number} expiration - Timestamp when the session will expire.\n * @returns {boolean} True if the session is about to expire; otherwise, false.\n */\n sessionExpiresSoon(expiration: number): boolean {\n return expiration > 0 && expiration - Date.now() <= this.checkInterval;\n }\n\n /**\n * Calculates the time until the next session check should occur.\n *\n * @param {number} lastCheck - The timestamp (in milliseconds) of the last session check.\n * @returns {number} The time in milliseconds until the next check should be performed.\n */\n calcTimeToNextCheck(lastCheck: number): number {\n const timeSinceLastCheck = Date.now() - lastCheck;\n return this.checkInterval >= timeSinceLastCheck\n ? this.checkInterval - (timeSinceLastCheck % this.checkInterval)\n : 0;\n }\n}\n","import { Claims } from \"../Dto\";\n\n/**\n * Enum-like type defining the actions that can be broadcasted.\n *\n * @ignore\n * @category SDK\n * @subcategory Internal\n */\ntype Action = \"sessionExpired\" | \"sessionCreated\" | \"requestLeadership\";\n\n/**\n * Interface representing the data structure of a channel event.\n *\n * @interface\n * @property {Action} action - The type of action being broadcasted.\n * @property {Claims=} claims - Optional claims associated with the event.\n * @property {boolean=} is_valid - Optional indication of the session validity.\n * @category SDK\n * @subcategory Internal\n */\nexport interface BroadcastMessage {\n action: Action;\n claims?: Claims;\n is_valid?: boolean;\n}\n\n/**\n * Callback type for handling broadcast messages.\n *\n * @ignore\n */\n// eslint-disable-next-line no-unused-vars\ntype Callback = (msg: BroadcastMessage) => void;\n\n/**\n * Manages inter-tab communication using the BroadcastChannel API.\n *\n * @category SDK\n * @subcategory Internal\n * @param {string} channelName - The name of the broadcast channel.\n * @param {Callback} onSessionExpired - Callback invoked when the session has expired.\n * @param {Callback} onSessionCreated - Callback invoked when a session is created.\n * @param {Callback} onLeadershipRequested - Callback invoked when a leadership request is received.\n */\nexport class SessionChannel {\n channel: BroadcastChannel; // The broadcast channel used for communication.\n onSessionExpired: Callback; // Callback invoked when the session has expired.\n onSessionCreated: Callback; // Callback invoked when a session is created.\n onLeadershipRequested: Callback; // Callback invoked when a leadership request is received.\n\n // eslint-disable-next-line require-jsdoc\n constructor(\n channelName: string = \"hanko_session\",\n onSessionExpired: Callback,\n onSessionCreated: Callback,\n onLeadershipRequested: Callback,\n ) {\n this.onSessionExpired = onSessionExpired;\n this.onSessionCreated = onSessionCreated;\n this.onLeadershipRequested = onLeadershipRequested;\n\n this.channel = new BroadcastChannel(channelName);\n this.channel.onmessage = this.handleMessage;\n }\n\n /**\n * Sends a message via the broadcast channel to inform other tabs of session changes.\n *\n * @param {BroadcastMessage} msg - The messsage to broadcast.\n */\n post(msg: BroadcastMessage) {\n this.channel.postMessage(msg);\n }\n\n /**\n * Handles incoming messages from the broadcast channel.\n *\n * @param {MessageEvent} event - The message event containing the broadcast data.\n * @private\n */\n private handleMessage = (event: MessageEvent) => {\n const data = event.data as BroadcastMessage;\n switch (data.action) {\n case \"sessionExpired\":\n this.onSessionExpired(data);\n break;\n case \"sessionCreated\":\n this.onSessionCreated(data);\n break;\n case \"requestLeadership\":\n this.onLeadershipRequested(data);\n break;\n }\n };\n}\n","import { Listener } from \"./Listener\";\nimport { Dispatcher } from \"./Dispatcher\";\nimport { SessionClient } from \"../client/SessionClient\";\nimport { SessionState } from \"./SessionState\";\nimport { WindowActivityManager } from \"./WindowActivityManager\";\nimport { Scheduler, SessionCheckResult } from \"./Scheduler\";\nimport { SessionTokenLocation } from \"../client/HttpClient\";\nimport { SessionChannel, BroadcastMessage } from \"./SessionChannel\";\nimport { HankoOptions } from \"../../Hanko\";\n\n/**\n * A class that manages session checks, dispatches events based on session status,\n * and uses broadcast channels for inter-tab communication.\n *\n * @category SDK\n * @subcategory Internal\n * @extends Dispatcher\n * @param {string} api - The API endpoint URL.\n * @param {HankoOptions} options - The internal configuration options of the SDK.\n */\nexport class Relay extends Dispatcher {\n listener = new Listener(); // Listener for session-related events.\n private readonly checkInterval: number = 30000; // Interval for session validity checks in milliseconds.\n private readonly client: SessionClient; // Client for session validation.\n private readonly sessionState: SessionState; // Manages session-related states.\n private readonly windowActivityManager: WindowActivityManager; // Manages window activity states.\n private readonly scheduler: Scheduler; // Schedules session validity checks.\n private readonly sessionChannel: SessionChannel; // Handles inter-tab communication via broadcast channels.\n private isLoggedIn: boolean;\n\n // eslint-disable-next-line require-jsdoc\n constructor(api: string, options: HankoOptions) {\n super();\n this.client = new SessionClient(api, options);\n\n if (options.sessionCheckInterval) {\n this.checkInterval =\n options.sessionCheckInterval < 3000\n ? 3000\n : options.sessionCheckInterval;\n }\n\n this.sessionState = new SessionState(`${options.cookieName}_session_state`);\n this.sessionChannel = new SessionChannel(\n this.getSessionCheckChannelName(\n options.sessionTokenLocation,\n options.sessionCheckChannelName,\n ),\n () => this.onChannelSessionExpired(),\n (msg) => this.onChannelSessionCreated(msg),\n () => this.onChannelLeadershipRequested(),\n );\n this.scheduler = new Scheduler(\n this.checkInterval,\n () => this.checkSession(),\n () => this.onSessionExpired(),\n );\n this.windowActivityManager = new WindowActivityManager(\n () => this.startSessionCheck(),\n () => this.scheduler.stop(),\n );\n\n const now = Date.now();\n const { expiration } = this.sessionState.load();\n\n this.isLoggedIn = now < expiration;\n this.initializeEventListeners();\n this.startSessionCheck();\n }\n\n /**\n * Sets up all event listeners and initializes session management.\n * This method is crucial for ensuring the session is monitored across all tabs.\n * @private\n */\n private initializeEventListeners(): void {\n // Listen for session creation events\n this.listener.onSessionCreated((detail) => {\n const { claims } = detail;\n const expiration = Date.parse(claims.expiration);\n const lastCheck = Date.now();\n\n this.isLoggedIn = true;\n this.sessionState.save({ expiration, lastCheck }); // Save initial session state\n this.sessionChannel.post({ action: \"sessionCreated\", claims }); // Inform other tabs\n this.startSessionCheck(); // Begin session checks now that a user is logged in\n });\n\n // Listen for user logout events\n this.listener.onUserLoggedOut(() => {\n this.isLoggedIn = false;\n this.sessionChannel.post({ action: \"sessionExpired\" }); // Inform other tabs session ended\n this.sessionState.save(null);\n this.scheduler.stop();\n });\n\n window.addEventListener(\"beforeunload\", () => this.scheduler.stop());\n }\n\n /**\n * Initiates session checking based on the last check time.\n * This method decides when the next check should occur to balance between performance and freshness.\n * @private\n */\n private startSessionCheck(): void {\n if (this.windowActivityManager.hasFocus()) {\n this.sessionChannel.post({ action: \"requestLeadership\" }); // Inform other tabs this tab is now checking\n } else {\n return;\n }\n\n if (this.scheduler.isRunning()) {\n return;\n }\n\n const { lastCheck, expiration } = this.sessionState.load();\n\n if (this.isLoggedIn) {\n this.scheduler.start(lastCheck, expiration);\n }\n }\n\n /**\n * Validates the current session and updates session information.\n * This method checks if the session is still valid and updates local data accordingly.\n * @returns {Promise} - A promise that resolves with the session check result.\n * @private\n */\n private async checkSession(): Promise {\n const lastCheck = Date.now();\n // eslint-disable-next-line camelcase\n const { is_valid, claims, expiration_time } = await this.client.validate();\n\n // eslint-disable-next-line camelcase\n const expiration = expiration_time ? Date.parse(expiration_time) : 0;\n\n // eslint-disable-next-line camelcase\n if (!is_valid && this.isLoggedIn) {\n this.dispatchSessionExpiredEvent();\n }\n\n // eslint-disable-next-line camelcase\n if (is_valid) {\n this.isLoggedIn = true;\n this.sessionState.save({ lastCheck, expiration });\n } else {\n this.isLoggedIn = false;\n this.sessionState.save(null);\n this.sessionChannel.post({ action: \"sessionExpired\" }); // Inform other tabs\n }\n\n return {\n // eslint-disable-next-line camelcase\n is_valid,\n claims,\n expiration,\n };\n }\n\n /**\n * Resets session-related states when a session expires.\n * Ensures that authentication state is cleared and an expiration event is dispatched.\n * Assumes the user is logged out by default if the session state is unknown.\n * @private\n */\n private onSessionExpired() {\n if (this.isLoggedIn) {\n this.isLoggedIn = false;\n this.sessionState.save(null);\n this.sessionChannel.post({ action: \"sessionExpired\" }); // Inform other tabs\n this.dispatchSessionExpiredEvent();\n }\n }\n\n /**\n * Handles session expired events from broadcast messages.\n * @private\n */\n private onChannelSessionExpired() {\n if (this.isLoggedIn) {\n this.isLoggedIn = false;\n this.dispatchSessionExpiredEvent();\n }\n }\n\n /**\n * Handles session creation events from broadcast messages.\n * @param {BroadcastMessage} msg - The broadcast message containing session details.\n * @private\n */\n private onChannelSessionCreated(msg: BroadcastMessage) {\n const { claims } = msg;\n const now = Date.now();\n const expiration = Date.parse(claims.expiration);\n const expirationSeconds = expiration - now;\n\n this.isLoggedIn = true;\n this.dispatchSessionCreatedEvent({\n claims,\n expirationSeconds, // deprecated\n });\n }\n\n /**\n * Handles leadership requests from other tabs.\n * @private\n */\n private onChannelLeadershipRequested() {\n if (!this.windowActivityManager.hasFocus()) {\n this.scheduler.stop();\n }\n }\n\n /**\n * Retrieves or generates the session check channel name based on the session token storage location.\n *\n * - If the `sessionTokenLocation` is `\"cookie\"`, the provided `sessionCheckChannelName` is returned as-is.\n * - If the `sessionTokenLocation` is `\"sessionStorage\"`, the function attempts to retrieve the channel name from\n * `sessionStorage`. If none is found, a new name is generated with the value of `sessionCheckChannelName` as a prefix and a random number,\n * then stored in `sessionStorage` for future use.\n *\n * @param sessionTokenLocation - Indicates where the session token is stored, either `\"cookie\"` or `\"sessionStorage\"`.\n * @param sessionCheckChannelName - The name or prefix used for the session check channel.\n * @returns The resolved session check channel name, or `undefined` if not applicable.\n * @private\n */\n private getSessionCheckChannelName(\n sessionTokenLocation: SessionTokenLocation,\n sessionCheckChannelName?: string,\n ): string | undefined {\n if (sessionTokenLocation !== \"sessionStorage\") {\n return sessionCheckChannelName;\n }\n let channelName = sessionStorage.getItem(\"sessionCheckChannelName\");\n if (\n channelName === null ||\n channelName === undefined ||\n channelName === \"\"\n ) {\n channelName = `${sessionCheckChannelName}-${\n Math.floor(Math.random() * 100) + 1\n }`;\n sessionStorage.setItem(\"sessionCheckChannelName\", channelName);\n }\n return channelName;\n }\n}\n","/**\n * A class to check the browser's WebAuthn support.\n *\n * @hideconstructor\n * @category SDK\n * @subcategory Utilities\n */\nclass WebauthnSupport {\n /**\n * Does a simple check to test for the credential management API functions we need, and an indication of\n * public key credential authentication support.\n *\n * @see https://developers.google.com/web/updates/2018/03/webauthn-credential-management\n * @return boolean\n */\n static supported(): boolean {\n return !!(\n navigator.credentials &&\n navigator.credentials.create &&\n navigator.credentials.get &&\n window.PublicKeyCredential\n );\n }\n\n /**\n * Checks whether a user-verifying platform authenticator is available.\n *\n * @return Promise\n */\n static async isPlatformAuthenticatorAvailable(): Promise {\n if (\n this.supported() &&\n window.PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable\n ) {\n return window.PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable();\n }\n\n return false;\n }\n\n /**\n * Checks whether external CTAP2 security keys are supported.\n *\n * @return Promise\n */\n static async isSecurityKeySupported(): Promise {\n if (\n window.PublicKeyCredential !== undefined &&\n // @ts-ignore\n window.PublicKeyCredential.isExternalCTAP2SecurityKeySupported\n ) {\n // @ts-ignore\n return window.PublicKeyCredential.isExternalCTAP2SecurityKeySupported();\n }\n\n return this.supported();\n }\n\n /**\n * Checks whether autofill assisted requests are supported.\n *\n * @return Promise\n */\n static async isConditionalMediationAvailable(): Promise {\n if (\n // @ts-ignore\n window.PublicKeyCredential &&\n // @ts-ignore\n window.PublicKeyCredential.isConditionalMediationAvailable\n ) {\n // @ts-ignore\n return window.PublicKeyCredential.isConditionalMediationAvailable();\n }\n\n return false;\n }\n}\n\nexport { WebauthnSupport };\n","// src/webauthn-json/base64url.ts\nfunction base64urlToBuffer(baseurl64String) {\n const padding = \"==\".slice(0, (4 - baseurl64String.length % 4) % 4);\n const base64String = baseurl64String.replace(/-/g, \"+\").replace(/_/g, \"/\") + padding;\n const str = atob(base64String);\n const buffer = new ArrayBuffer(str.length);\n const byteView = new Uint8Array(buffer);\n for (let i = 0; i < str.length; i++) {\n byteView[i] = str.charCodeAt(i);\n }\n return buffer;\n}\nfunction bufferToBase64url(buffer) {\n const byteView = new Uint8Array(buffer);\n let str = \"\";\n for (const charCode of byteView) {\n str += String.fromCharCode(charCode);\n }\n const base64String = btoa(str);\n const base64urlString = base64String.replace(/\\+/g, \"-\").replace(\n /\\//g,\n \"_\"\n ).replace(/=/g, \"\");\n return base64urlString;\n}\n\n// src/webauthn-json/convert.ts\nvar copyValue = \"copy\";\nvar convertValue = \"convert\";\nfunction convert(conversionFn, schema2, input) {\n if (schema2 === copyValue) {\n return input;\n }\n if (schema2 === convertValue) {\n return conversionFn(input);\n }\n if (schema2 instanceof Array) {\n return input.map((v) => convert(conversionFn, schema2[0], v));\n }\n if (schema2 instanceof Object) {\n const output = {};\n for (const [key, schemaField] of Object.entries(schema2)) {\n if (schemaField.derive) {\n const v = schemaField.derive(input);\n if (v !== void 0) {\n input[key] = v;\n }\n }\n if (!(key in input)) {\n if (schemaField.required) {\n throw new Error(`Missing key: ${key}`);\n }\n continue;\n }\n if (input[key] == null) {\n output[key] = null;\n continue;\n }\n output[key] = convert(\n conversionFn,\n schemaField.schema,\n input[key]\n );\n }\n return output;\n }\n}\nfunction derived(schema2, derive) {\n return {\n required: true,\n schema: schema2,\n derive\n };\n}\nfunction required(schema2) {\n return {\n required: true,\n schema: schema2\n };\n}\nfunction optional(schema2) {\n return {\n required: false,\n schema: schema2\n };\n}\n\n// src/webauthn-json/basic/schema.ts\nvar publicKeyCredentialDescriptorSchema = {\n type: required(copyValue),\n id: required(convertValue),\n transports: optional(copyValue)\n};\nvar simplifiedExtensionsSchema = {\n appid: optional(copyValue),\n appidExclude: optional(copyValue),\n credProps: optional(copyValue)\n};\nvar simplifiedClientExtensionResultsSchema = {\n appid: optional(copyValue),\n appidExclude: optional(copyValue),\n credProps: optional(copyValue)\n};\nvar credentialCreationOptions = {\n publicKey: required({\n rp: required(copyValue),\n user: required({\n id: required(convertValue),\n name: required(copyValue),\n displayName: required(copyValue)\n }),\n challenge: required(convertValue),\n pubKeyCredParams: required(copyValue),\n timeout: optional(copyValue),\n excludeCredentials: optional([publicKeyCredentialDescriptorSchema]),\n authenticatorSelection: optional(copyValue),\n attestation: optional(copyValue),\n extensions: optional(simplifiedExtensionsSchema)\n }),\n signal: optional(copyValue)\n};\nvar publicKeyCredentialWithAttestation = {\n type: required(copyValue),\n id: required(copyValue),\n rawId: required(convertValue),\n authenticatorAttachment: optional(copyValue),\n response: required({\n clientDataJSON: required(convertValue),\n attestationObject: required(convertValue),\n transports: derived(\n copyValue,\n (response) => {\n var _a;\n return ((_a = response.getTransports) == null ? void 0 : _a.call(response)) || [];\n }\n )\n }),\n clientExtensionResults: derived(\n simplifiedClientExtensionResultsSchema,\n (pkc) => pkc.getClientExtensionResults()\n )\n};\nvar credentialRequestOptions = {\n mediation: optional(copyValue),\n publicKey: required({\n challenge: required(convertValue),\n timeout: optional(copyValue),\n rpId: optional(copyValue),\n allowCredentials: optional([publicKeyCredentialDescriptorSchema]),\n userVerification: optional(copyValue),\n extensions: optional(simplifiedExtensionsSchema)\n }),\n signal: optional(copyValue)\n};\nvar publicKeyCredentialWithAssertion = {\n type: required(copyValue),\n id: required(copyValue),\n rawId: required(convertValue),\n authenticatorAttachment: optional(copyValue),\n response: required({\n clientDataJSON: required(convertValue),\n authenticatorData: required(convertValue),\n signature: required(convertValue),\n userHandle: required(convertValue)\n }),\n clientExtensionResults: derived(\n simplifiedClientExtensionResultsSchema,\n (pkc) => pkc.getClientExtensionResults()\n )\n};\nvar schema = {\n credentialCreationOptions,\n publicKeyCredentialWithAttestation,\n credentialRequestOptions,\n publicKeyCredentialWithAssertion\n};\n\n// src/webauthn-json/basic/api.ts\nfunction createRequestFromJSON(requestJSON) {\n return convert(base64urlToBuffer, credentialCreationOptions, requestJSON);\n}\nfunction createResponseToJSON(credential) {\n return convert(\n bufferToBase64url,\n publicKeyCredentialWithAttestation,\n credential\n );\n}\nasync function create(requestJSON) {\n const credential = await navigator.credentials.create(\n createRequestFromJSON(requestJSON)\n );\n return createResponseToJSON(credential);\n}\nfunction getRequestFromJSON(requestJSON) {\n return convert(base64urlToBuffer, credentialRequestOptions, requestJSON);\n}\nfunction getResponseToJSON(credential) {\n return convert(\n bufferToBase64url,\n publicKeyCredentialWithAssertion,\n credential\n );\n}\nasync function get(requestJSON) {\n const credential = await navigator.credentials.get(\n getRequestFromJSON(requestJSON)\n );\n return getResponseToJSON(credential);\n}\n\n// src/webauthn-json/basic/supported.ts\nfunction supported() {\n return !!(navigator.credentials && navigator.credentials.create && navigator.credentials.get && window.PublicKeyCredential);\n}\nexport {\n create,\n get,\n schema,\n supported\n};\n//# sourceMappingURL=webauthn-json.js.map\n","import {\n CredentialRequestOptionsJSON,\n CredentialCreationOptionsJSON,\n PublicKeyCredentialWithAssertionJSON,\n PublicKeyCredentialWithAttestationJSON,\n create,\n get,\n} from \"@github/webauthn-json\";\n\n/**\n * Manages WebAuthn credential operations as a singleton, ensuring only one active request at a time.\n * Uses an internal AbortController to cancel previous requests when a new one is initiated.\n */\nclass WebauthnManager {\n private static instance: WebauthnManager | null = null;\n private abortController = new AbortController();\n // eslint-disable-next-line no-useless-constructor,require-jsdoc\n private constructor() {}\n\n /**\n * Gets the singleton instance of WebauthnManager.\n * Creates a new instance if one doesn't exist, otherwise returns the existing one.\n * @returns {WebauthnManager} The singleton instance\n */\n public static getInstance(): WebauthnManager {\n if (!WebauthnManager.instance) {\n WebauthnManager.instance = new WebauthnManager();\n }\n return WebauthnManager.instance;\n }\n\n /**\n * Creates a new abort signal, aborting any ongoing WebAuthn request.\n * @private\n * @returns {AbortSignal} The new abort signal\n */\n private createAbortSignal(): AbortSignal {\n this.abortController.abort(); // Cancel any ongoing request\n this.abortController = new AbortController();\n return this.abortController.signal;\n }\n\n /**\n * Retrieves a WebAuthn credential using the provided options.\n * Aborts any previous request before starting a new one.\n * @param {CredentialRequestOptionsJSON} options - The options for credential retrieval\n * @returns {Promise} A promise resolving to the retrieved credential\n * @throws {DOMException} If the WebAuthn request fails (e.g., aborted, not allowed)\n */\n public async getWebauthnCredential(\n options: CredentialRequestOptionsJSON,\n ): Promise {\n return await get({\n ...options,\n signal: this.createAbortSignal(),\n });\n }\n\n /**\n * Retrieves a WebAuthn credential with conditional UI mediation.\n * Aborts any previous request before starting a new one.\n * @param {CredentialRequestOptionsJSON} publicKey - The public key options for conditional retrieval\n * @returns {Promise} A promise resolving to the retrieved credential\n * @throws {DOMException} If the WebAuthn request fails (e.g., aborted, not allowed)\n */\n public async getConditionalWebauthnCredential(\n publicKey: CredentialRequestOptionsJSON[\"publicKey\"],\n ): Promise {\n return await get({\n publicKey,\n mediation: \"conditional\" as CredentialMediationRequirement,\n signal: this.createAbortSignal(),\n });\n }\n\n /**\n * Creates a new WebAuthn credential using the provided options.\n * Aborts any previous request before starting a new one.\n * @param {CredentialCreationOptionsJSON} options - The options for credential creation\n * @returns {Promise} A promise resolving to the created credential\n * @throws {DOMException} If the WebAuthn request fails (e.g., aborted, not allowed)\n */\n public async createWebauthnCredential(\n options: CredentialCreationOptionsJSON,\n ): Promise {\n return await create({\n ...options,\n signal: this.createAbortSignal(),\n });\n }\n}\n\nexport default WebauthnManager;\n","const PKCE_STORAGE_KEY = \"hanko_pkce_code_verifier\";\n\n/**\n * Generates a high-entropy, cryptographically strong random string for use as a PKCE code verifier.\n * It uses rejection sampling to eliminate modulo bias, ensuring a perfectly uniform distribution\n * across the character set recommended by RFC 7636.\n *\n * @returns {string} A 64-character URL-safe random string.\n */\nexport const generateCodeVerifier = (): string => {\n const charset =\n \"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-._~\";\n const n = charset.length;\n const maxValidByte = 256 - (256 % n);\n let result = \"\";\n const requiredLength = 64;\n const tempArray = new Uint8Array(1);\n\n while (result.length < requiredLength) {\n window.crypto.getRandomValues(tempArray);\n const byte = tempArray[0];\n if (byte < maxValidByte) {\n result += charset.charAt(byte % n);\n }\n }\n return result;\n};\n\n/**\n * Stores the PKCE code verifier in sessionStorage.\n * @param {string} verifier - The verifier to store.\n */\nexport const setStoredCodeVerifier = (verifier: string) => {\n if (typeof window !== \"undefined\" && window.sessionStorage) {\n window.sessionStorage.setItem(PKCE_STORAGE_KEY, verifier);\n }\n};\n\n/**\n * Retrieves the PKCE code verifier from sessionStorage.\n * @returns {string | null}\n */\nexport const getStoredCodeVerifier = (): string | null => {\n if (typeof window !== \"undefined\" && window.sessionStorage) {\n return window.sessionStorage.getItem(PKCE_STORAGE_KEY);\n }\n return null;\n};\n\n/**\n * Removes the PKCE code verifier from sessionStorage.\n */\nexport const clearStoredCodeVerifier = () => {\n if (typeof window !== \"undefined\" && window.sessionStorage) {\n window.sessionStorage.removeItem(PKCE_STORAGE_KEY);\n }\n};\n","import { AutoSteps } from \"./types/flow\";\nimport { WebauthnSupport } from \"../WebauthnSupport\";\nimport WebauthnManager from \"./WebauthnManager\";\nimport { CredentialCreationOptionsJSON } from \"@github/webauthn-json\";\nimport { clearStoredCodeVerifier, getStoredCodeVerifier } from \"../Pkce\";\n\n// Helper function to handle WebAuthn credential creation and error handling\n// eslint-disable-next-line require-jsdoc\nasync function handleCredentialCreation(\n state: any,\n manager: WebauthnManager,\n options: CredentialCreationOptionsJSON,\n errorCode: string = \"webauthn_credential_already_exists\",\n errorMessage: string = \"Webauthn credential already exists\",\n) {\n try {\n const attestationResponse = await manager.createWebauthnCredential(options);\n return await state.actions.webauthn_verify_attestation_response.run({\n public_key: attestationResponse,\n });\n } catch {\n const nextState = await state.actions.back.run();\n nextState.error = { code: errorCode, message: errorMessage };\n return nextState;\n }\n}\n\nexport const autoSteps: AutoSteps = {\n preflight: async (state) => {\n return await state.actions.register_client_capabilities.run({\n webauthn_available: WebauthnSupport.supported(),\n webauthn_conditional_mediation_available:\n await WebauthnSupport.isConditionalMediationAvailable(),\n webauthn_platform_authenticator_available:\n await WebauthnSupport.isPlatformAuthenticatorAvailable(),\n });\n },\n\n login_passkey: async (state) => {\n const manager = WebauthnManager.getInstance();\n try {\n const assertionResponse = await manager.getWebauthnCredential(\n state.payload.request_options,\n );\n return await state.actions.webauthn_verify_assertion_response.run({\n assertion_response: assertionResponse,\n });\n } catch {\n const nextState = await state.actions.back.run();\n if (state.error) {\n nextState.error = state.error;\n }\n return nextState;\n }\n },\n\n onboarding_verify_passkey_attestation: async (state) => {\n const manager = WebauthnManager.getInstance();\n return handleCredentialCreation(\n state,\n manager,\n state.payload.creation_options,\n );\n },\n\n webauthn_credential_verification: async (state) => {\n const manager = WebauthnManager.getInstance();\n return handleCredentialCreation(\n state,\n manager,\n state.payload.creation_options,\n );\n },\n\n async thirdparty(state) {\n const searchParams = new URLSearchParams(window.location.search);\n const token = searchParams.get(\"hanko_token\");\n const error = searchParams.get(\"error\");\n\n const updateUrl = (paramsToDelete: string[]) => {\n paramsToDelete.forEach((param) => searchParams.delete(param));\n const newSearch = searchParams.toString()\n ? `?${searchParams.toString()}`\n : \"\";\n history.replaceState(\n null,\n null,\n `${window.location.pathname}${newSearch}`,\n );\n };\n\n if (token?.length > 0) {\n updateUrl([\"hanko_token\"]);\n const verifier = getStoredCodeVerifier();\n\n try {\n return await state.actions.exchange_token.run({\n token,\n code_verifier: verifier || undefined,\n });\n } finally {\n clearStoredCodeVerifier();\n }\n }\n\n if (error?.length > 0) {\n const errorCode =\n error === \"access_denied\"\n ? \"third_party_access_denied\"\n : \"technical_error\";\n const message = searchParams.get(\"error_description\");\n\n updateUrl([\"error\", \"error_description\"]);\n\n const nextState = await state.actions.back.run(null, {\n dispatchAfterStateChangeEvent: false,\n });\n\n nextState.error = { code: errorCode, message };\n nextState.dispatchAfterStateChangeEvent();\n\n return nextState;\n }\n\n if (!state.isCached) {\n state.saveToLocalStorage();\n window.location.assign(state.payload.redirect_url);\n } else {\n return await state.actions.back.run();\n }\n\n return state;\n },\n\n success: async (state) => {\n const { claims } = state.payload;\n const expirationSeconds = Date.parse(claims.expiration) - Date.now();\n state.removeFromLocalStorage();\n state.hanko.relay.dispatchSessionCreatedEvent({\n claims,\n expirationSeconds,\n });\n return state;\n },\n\n account_deleted: async (state) => {\n state.removeFromLocalStorage();\n state.hanko.relay.dispatchUserDeletedEvent();\n return state;\n },\n};\n","import { PasskeyAutofillActivationHandlers } from \"./types/flow\";\nimport WebauthnManager from \"./WebauthnManager\";\n\nexport const passkeyAutofillActivationHandlers: PasskeyAutofillActivationHandlers =\n {\n login_init: async (state) => {\n return void (async function () {\n const manager = WebauthnManager.getInstance();\n\n if (state.payload.request_options) {\n try {\n const { publicKey } = state.payload.request_options;\n\n const assertionResponse =\n await manager.getConditionalWebauthnCredential(publicKey);\n\n return await state.actions.webauthn_verify_assertion_response.run({\n assertion_response: assertionResponse,\n });\n } catch {\n // We do not need to handle the error, because this is a conditional request, which can fail silently\n return;\n }\n }\n })();\n },\n };\n","import { Hanko } from \"../../Hanko\";\nimport { Actions, Payloads, StateName } from \"./types/state\";\nimport { Input } from \"./types/input\";\nimport { FlowError } from \"./types/flowError\";\nimport { Action as ActionType } from \"./types/action\";\nimport { AnyState, FlowName, FlowResponse } from \"./types/flow\";\nimport { autoSteps } from \"./auto-steps\";\nimport { passkeyAutofillActivationHandlers } from \"./passkey-autofill-activation\";\n\nexport type AutoSteppedStates = keyof typeof autoSteps;\n\nexport type PasskeyAutofillStates =\n keyof typeof passkeyAutofillActivationHandlers;\n\nexport type AutoStepExclusion = AutoSteppedStates[] | \"all\";\n\nexport type ActionMap = {\n [K in keyof Actions[TState]]: Action<\n Actions[TState][K] extends ActionType ? TInputs : never\n >;\n};\n\nexport type ActionInfo = {\n name: string;\n relatedStateName: StateName;\n};\n\nexport interface StateInitConfig {\n dispatchAfterStateChangeEvent?: boolean;\n excludeAutoSteps?: AutoStepExclusion;\n previousAction?: ActionInfo;\n isCached?: boolean;\n cacheKey?: string;\n}\n\nexport type StateCreateConfig = Pick<\n StateInitConfig,\n \"dispatchAfterStateChangeEvent\" | \"excludeAutoSteps\" | \"cacheKey\"\n> & {\n loadFromCache?: boolean;\n};\n\nexport type ActionRunConfig = Pick<\n StateInitConfig,\n \"dispatchAfterStateChangeEvent\"\n>;\n\ntype SerializedState = FlowResponse & {\n flow_name: FlowName;\n previous_action?: ActionInfo;\n is_cached?: boolean;\n};\n\ntype ExtractInputValues = {\n [K in keyof TInputs]: TInputs[K] extends Input ? TValue : never;\n};\n\n/**\n * Represents a state in a flow with associated actions and properties.\n * @template TState - The specific state name type.\n * @constructor\n * @param {Hanko} hanko - The Hanko instance for API interactions.\n * @param {FlowName} flowName - The name of the flow this state belongs to.\n * @param {FlowResponse} response - The flow response containing state data.\n * @param {StateInitConfig} [options={}] - Configuration options for state initialization.\n * @category SDK\n * @subcategory FlowAPI\n */\nexport class State {\n public readonly name: TState;\n public readonly flowName: FlowName;\n public error?: FlowError;\n public readonly payload?: Payloads[TState];\n public readonly actions: ActionMap;\n public readonly csrfToken: string;\n public readonly status: number;\n public readonly previousAction?: ActionInfo;\n public readonly isCached: boolean;\n public readonly cacheKey: string;\n public readonly hanko: Hanko;\n public invokedAction?: ActionInfo;\n public readonly excludeAutoSteps: AutoStepExclusion;\n\n public readonly autoStep?: TState extends AutoSteppedStates\n ? () => Promise\n : never;\n public readonly passkeyAutofillActivation: TState extends PasskeyAutofillStates\n ? () => Promise\n : never;\n\n /**\n * Constructs a new State instance.\n * @param {Hanko} hanko - The Hanko instance for API interactions.\n * @param {FlowName} flowName - The name of the flow this state belongs to.\n * @param {FlowResponse} response - The flow response containing state data.\n * @param {StateInitConfig} [options={}] - Configuration options for state initialization.\n */\n constructor(\n hanko: Hanko,\n flowName: FlowName,\n response: FlowResponse,\n options: StateInitConfig = {},\n ) {\n this.flowName = flowName;\n this.name = response.name;\n this.error = response.error;\n this.payload = response.payload;\n this.csrfToken = response.csrf_token;\n this.status = response.status;\n this.hanko = hanko;\n this.actions = this.buildActionMap(response.actions);\n\n if (this.name in autoSteps) {\n const handler = autoSteps[this.name as AutoSteppedStates];\n (this.autoStep as () => Promise) = () => handler(this as any);\n }\n\n if (this.name in passkeyAutofillActivationHandlers) {\n const handler =\n passkeyAutofillActivationHandlers[this.name as PasskeyAutofillStates];\n (this.passkeyAutofillActivation as () => Promise) = () =>\n handler(this as any);\n }\n\n const {\n dispatchAfterStateChangeEvent = true,\n excludeAutoSteps = null,\n previousAction = null,\n isCached = false,\n cacheKey = \"hanko-flow-state\",\n } = options;\n\n this.excludeAutoSteps = excludeAutoSteps;\n this.previousAction = previousAction;\n this.isCached = isCached;\n this.cacheKey = cacheKey;\n\n if (dispatchAfterStateChangeEvent) {\n this.dispatchAfterStateChangeEvent();\n }\n }\n\n /**\n * Builds the action map for this state, wrapping it in a Proxy to handle undefined actions.\n * @param {Actions} actions - The actions available in this state.\n * @returns {ActionMap} The action map for the state.\n * @private\n */\n private buildActionMap(actions: Actions[TState]): ActionMap {\n const actionMap: Partial> = {};\n\n Object.keys(actions).forEach((actionName) => {\n const key = actionName as keyof Actions[TState];\n const action = actions[key] as ActionType;\n\n actionMap[key] = new Action(action, this);\n });\n\n // Return a Proxy that handles missing keys\n return new Proxy(actionMap as ActionMap, {\n get: (target: ActionMap, prop: string | symbol): Action => {\n if (prop in target) {\n return target[prop as keyof ActionMap];\n }\n\n const actionName = typeof prop === \"string\" ? prop : prop.toString();\n\n return Action.createDisabled(actionName, this);\n },\n });\n }\n\n /**\n * Dispatches an event after the state has changed.\n */\n public dispatchAfterStateChangeEvent() {\n this.hanko.relay.dispatchAfterStateChangeEvent({\n state: this as AnyState,\n });\n }\n\n /**\n * Serializes the current state into a storable format.\n * @returns {SerializedState} The serialized state object.\n */\n public serialize(): SerializedState {\n return {\n flow_name: this.flowName,\n name: this.name,\n error: this.error,\n payload: this.payload,\n csrf_token: this.csrfToken,\n status: this.status,\n previous_action: this.previousAction,\n actions: Object.fromEntries(\n (Object.entries(this.actions) as [string, Action][]).map(\n ([name, action]) => [\n name,\n {\n action: action.name,\n href: action.href,\n inputs: action.inputs,\n description: null,\n },\n ],\n ),\n ),\n };\n }\n\n /**\n * Saves the current state to localStorage.\n * @returns {void}\n */\n public saveToLocalStorage(): void {\n localStorage.setItem(\n this.cacheKey,\n JSON.stringify({ ...this.serialize(), is_cached: true }),\n );\n }\n\n /**\n * Removes the current state from localStorage.\n * @returns {void}\n */\n public removeFromLocalStorage(): void {\n localStorage.removeItem(this.cacheKey);\n }\n\n /**\n * Initializes a flow state, processing auto-steps if applicable.\n * @param {Hanko} hanko - The Hanko instance for API interactions.\n * @param {FlowName} flowName - The name of the flow.\n * @param {FlowResponse} response - The initial flow response.\n * @param {StateInitConfig} [options={}] - Configuration options.\n * @param {boolean} [options.dispatchAfterStateChangeEvent=true] - Whether to dispatch an event after state change.\n * @param {AutoStepExclusion} [options.excludeAutoSteps=null] - States to exclude from auto-step processing, or \"all\".\n * @param {ActionInfo} [options.previousAction=null] - Information about the previous action.\n * @param {boolean} [options.isCached=false] - Whether the state is loaded from cache.\n * @param {string} [options.cacheKey=\"hanko-flow-state\"] - Key for localStorage caching.\n * @returns {Promise} A promise resolving to the initialized state.\n */\n public static async initializeFlowState(\n hanko: Hanko,\n flowName: FlowName,\n response: FlowResponse,\n options: StateInitConfig = {},\n ): Promise {\n let state = new State(hanko, flowName, response, options);\n\n if (state.excludeAutoSteps != \"all\") {\n while (\n state &&\n state.autoStep &&\n !state.excludeAutoSteps?.includes(state.name)\n ) {\n const nextState = await state.autoStep();\n if (nextState.name != state.name) {\n state = nextState;\n } else {\n return nextState;\n }\n }\n }\n\n return state;\n }\n\n /**\n * Retrieves and parses state data from localStorage.\n * @param {string} cacheKey - The key used to store the state in localStorage.\n * @returns {SerializedState | undefined} The parsed serialized state, or undefined if not found or invalid.\n */\n public static readFromLocalStorage(\n cacheKey: string,\n ): SerializedState | undefined {\n const raw = localStorage.getItem(cacheKey);\n if (raw) {\n try {\n return JSON.parse(raw) as SerializedState;\n } catch {\n return undefined;\n }\n }\n }\n\n /**\n * Creates a new state instance, using cached or fetched data.\n * @param {Hanko} hanko - The Hanko instance for API interactions.\n * @param {FlowName} flowName - The name of the flow.\n * @param {StateCreateConfig} [config={}] - Configuration options.\n * @param {boolean} [config.dispatchAfterStateChangeEvent=true] - Whether to dispatch an event after state change.\n * @param {AutoStepExclusion} [config.excludeAutoSteps=null] - States to exclude from auto-step processing, or \"all\".\n * @param {string} [config.cacheKey=\"hanko-flow-state\"] - Key for localStorage caching.\n * @param {boolean} [config.loadFromCache=true] - Whether to attempt loading from cache.\n * @returns {Promise} A promise resolving to the created state.\n */\n public static async create(\n hanko: Hanko,\n flowName: FlowName,\n config: StateCreateConfig = {},\n ): Promise {\n const { cacheKey = \"hanko-flow-state\", loadFromCache = true } = config;\n if (loadFromCache) {\n const cachedState = State.readFromLocalStorage(cacheKey);\n if (cachedState) {\n return State.deserialize(hanko, cachedState, {\n ...config,\n cacheKey,\n });\n }\n }\n\n const newState = await State.fetchState(hanko, `/${flowName}`);\n return State.initializeFlowState(hanko, flowName, newState, {\n ...config,\n cacheKey,\n });\n }\n\n /**\n * Deserializes a state from a serialized state object.\n * @param {Hanko} hanko - The Hanko instance for API interactions.\n * @param {SerializedState} serializedState - The serialized state data.\n * @param {StateCreateConfig} [config={}] - Configuration options.\n * @param {boolean} [config.dispatchAfterStateChangeEvent=true] - Whether to dispatch an event after state change.\n * @param {AutoStepExclusion} [config.excludeAutoSteps=null] - States to exclude from auto-step processing, or \"all\".\n * @param {string} [config.cacheKey=\"hanko-flow-state\"] - Key for localStorage caching.\n * @param {boolean} [config.loadFromCache=true] - Whether to attempt loading from cache.\n * @returns {Promise} A promise resolving to the deserialized state.\n */\n public static async deserialize(\n hanko: Hanko,\n serializedState: SerializedState,\n config: StateCreateConfig = {},\n ): Promise {\n return State.initializeFlowState(\n hanko,\n serializedState.flow_name,\n serializedState,\n {\n ...config,\n previousAction: serializedState.previous_action,\n isCached: serializedState.is_cached,\n },\n );\n }\n\n /**\n * Fetches state data from the server.\n * @param {Hanko} hanko - The Hanko instance for API interactions.\n * @param {string} href - The endpoint to fetch from.\n * @param {any} [body] - Optional request body.\n * @returns {Promise>} A promise resolving to the flow response.\n */\n static async fetchState(\n hanko: Hanko,\n href: string,\n body?: any,\n ): Promise> {\n try {\n const response = await hanko.client.post(href, body);\n return response.json();\n } catch (error) {\n return State.createErrorResponse(error);\n }\n }\n\n /**\n * Creates an error flow response.\n * @param {FlowError} error - The error to include in the response.\n * @returns {FlowResponse<\"error\">} A flow response with error details.\n * @private\n */\n private static createErrorResponse(error: FlowError): FlowResponse<\"error\"> {\n return {\n actions: null,\n csrf_token: \"\",\n name: \"error\",\n payload: null,\n status: 0,\n error,\n };\n }\n}\n\n/**\n * Represents an actionable operation within a state.\n * @template TInputs - The type of inputs required for the action.\n * @param {ActionType} action - The action type definition.\n * @param {State} parentState - The state this action belongs to.\n * @param {boolean} [enabled=true] - Whether the action is enabled.\n * @category SDK\n * @subcategory FlowAPI\n */\nexport class Action {\n public readonly enabled: boolean;\n public readonly href: string;\n public readonly name: string;\n public readonly inputs: TInputs;\n private readonly parentState: State;\n\n /**\n * Constructs a new Action instance.\n * @param {ActionType} action - The action type definition.\n * @param {State} parentState - The state this action belongs to.\n * @param {boolean} [enabled=true] - Whether the action is enabled.\n */\n constructor(\n action: ActionType,\n parentState: State,\n enabled: boolean = true,\n ) {\n this.enabled = enabled;\n this.href = action.href;\n this.name = action.action;\n this.inputs = action.inputs;\n this.parentState = parentState;\n }\n\n /**\n * Creates a disabled action instance.\n * @template TInputs - The type of inputs (inferred as empty).\n * @param {string} name - The name of the action.\n * @param {State} parentState - The state this action belongs to.\n * @returns {Action} A disabled action instance.\n */\n static createDisabled(\n name: string,\n parentState: State,\n ): Action {\n return new Action(\n {\n action: name,\n href: \"\", // No valid href since it’s disabled\n inputs: {} as TInputs,\n description: \"Disabled action\",\n },\n parentState,\n false,\n );\n }\n\n /**\n * Executes the action, transitioning to a new state.\n * @param {ExtractInputValues} [inputValues=null] - Values for the action's inputs.\n * @param {ActionRunConfig} [config={}] - Configuration options.\n * @param {boolean} [config.dispatchAfterStateChangeEvent=true] - Whether to dispatch an event after state change.\n * @returns {Promise} A promise resolving to the next state.\n * @throws {FlowError} If the action is disabled or already invoked.\n */\n async run(\n inputValues: ExtractInputValues = null,\n config: ActionRunConfig = {},\n ): Promise {\n const {\n name,\n hanko,\n flowName,\n csrfToken,\n invokedAction,\n excludeAutoSteps,\n cacheKey,\n } = this.parentState;\n const { dispatchAfterStateChangeEvent = true } = config;\n\n if (!this.enabled) {\n throw new Error(\n `Action '${this.name}' is not enabled in state '${name}'`,\n );\n }\n\n if (invokedAction) {\n throw new Error(\n `An action '${invokedAction.name}' has already been invoked on state '${invokedAction.relatedStateName}'. No further actions can be run.`,\n );\n }\n\n this.parentState.invokedAction = {\n name: this.name,\n relatedStateName: name,\n };\n\n hanko.relay.dispatchBeforeStateChangeEvent({\n state: this.parentState as AnyState,\n });\n\n // Extract default values from this.inputs\n const defaultValues = Object.keys(this.inputs).reduce(\n (acc, key) => {\n const input = (this.inputs as any)[key] as Input;\n if (input.value !== undefined) {\n acc[key] = input.value;\n }\n return acc;\n },\n {} as Record,\n );\n\n // Merge defaults with user-provided inputs\n const mergedInputData = {\n ...defaultValues,\n ...inputValues,\n };\n\n const requestBody = {\n input_data: mergedInputData,\n csrf_token: csrfToken,\n };\n\n const response = await State.fetchState(hanko, this.href, requestBody);\n\n this.parentState.removeFromLocalStorage();\n\n return State.initializeFlowState(hanko, flowName, response, {\n dispatchAfterStateChangeEvent,\n excludeAutoSteps,\n previousAction: invokedAction,\n cacheKey,\n });\n }\n}\n","import { TechnicalError, UnauthorizedError } from \"../Errors\";\nimport { Client } from \"./Client\";\nimport { User } from \"../flow-api/types/payload\";\nimport { Me } from \"../Dto\";\n\n/**\n * A class to manage user information.\n *\n * @category SDK\n * @subcategory Clients\n * @extends {Client}\n */\nclass UserClient extends Client {\n /**\n * Fetches the current user.\n *\n * @return {Promise}\n * @throws {UnauthorizedError}\n * @throws {RequestTimeoutError}\n * @throws {TechnicalError}\n * @deprecated\n * @see https://docs.hanko.io/api/public#tag/User-Management/operation/IsUserAuthorized\n * @see https://docs.hanko.io/api/public#tag/User-Management/operation/listUser\n */\n async getCurrent(): Promise {\n const meResponse = await this.client.get(\"/me\");\n\n if (meResponse.status === 401) {\n this.client.dispatcher.dispatchSessionExpiredEvent();\n throw new UnauthorizedError();\n } else if (!meResponse.ok) {\n throw new TechnicalError();\n }\n\n const me: Me = meResponse.json();\n const userResponse = await this.client.get(`/users/${me.id}`);\n\n if (userResponse.status === 401) {\n this.client.dispatcher.dispatchSessionExpiredEvent();\n throw new UnauthorizedError();\n } else if (!userResponse.ok) {\n throw new TechnicalError();\n }\n\n return userResponse.json();\n }\n\n /**\n * Fetches the current user.\n *\n * @return {Promise}\n * @throws {UnauthorizedError}\n * @throws {RequestTimeoutError}\n * @throws {TechnicalError}\n */\n async getCurrentUser(): Promise {\n const meResponse = await this.client.get(\"/me\");\n\n if (meResponse.status === 401) {\n this.client.dispatcher.dispatchSessionExpiredEvent();\n throw new UnauthorizedError();\n } else if (!meResponse.ok) {\n throw new TechnicalError();\n }\n\n return meResponse.json();\n }\n\n /**\n * Logs out the current user and expires the existing session cookie. A valid session cookie is required to call the logout endpoint.\n *\n * @return {Promise}\n * @throws {RequestTimeoutError}\n * @throws {TechnicalError}\n */\n async logout(): Promise {\n const logoutResponse = await this.client.post(\"/logout\");\n\n // For cross-domain operations, the frontend SDK creates the cookie by reading the \"X-Auth-Token\" header, and\n // \"Set-Cookie\" headers sent by the backend have no effect due to the browser's security policy, which means that\n // the cookie must also be removed client-side in that case.\n this.client.sessionTokenStorage.removeSessionToken();\n this.client.cookie.removeAuthCookie();\n this.client.dispatcher.dispatchUserLoggedOutEvent();\n\n if (logoutResponse.status === 401) {\n // The user is logged out already\n return;\n } else if (!logoutResponse.ok) {\n throw new TechnicalError();\n }\n }\n}\n\nexport { UserClient };\n","import { Listener } from \"./lib/events/Listener\";\nimport { Relay } from \"./lib/events/Relay\";\nimport { Cookie, CookieSameSite } from \"./lib/Cookie\";\nimport { SessionClient } from \"./lib/client/SessionClient\";\nimport { HttpClient, SessionTokenLocation } from \"./lib/client/HttpClient\";\nimport { FlowName } from \"./lib/flow-api/types/flow\";\nimport { StateCreateConfig, State } from \"./lib/flow-api/State\";\nimport { UserClient } from \"./lib/client/UserClient\";\nimport { SessionCheckResponse } from \"./lib/Dto\";\nimport { User } from \"./lib/flow-api/types/payload\";\n\n/**\n * The options for the Hanko class\n *\n * @interface\n * @property {number=} timeout - The http request timeout in milliseconds. Defaults to 13000ms\n * @property {string=} cookieName - The name of the session cookie set from the SDK. Defaults to \"hanko\"\n * @property {string=} cookieDomain - The domain where the cookie set from the SDK is available. Defaults to the domain of the page where the cookie was created.\n * @property {string=} cookieSameSite - Specify whether/when cookies are sent with cross-site requests. Defaults to \"lax\".\n * @property {string=} localStorageKey - The prefix / name of the local storage keys. Defaults to \"hanko\"\n * @property {string=} lang - Used to convey the preferred language to the API, e.g. for translating outgoing emails.\n * It is transmitted to the API in a custom header (X-Language).\n * Should match one of the supported languages (\"bn\", \"de\", \"en\", \"fr\", \"it, \"nl\", \"pt-BR\", \"zh\")\n * if email delivery by Hanko is enabled. If email delivery by Hanko is disabled and the\n * relying party configures a webhook for the \"email.send\" event, then the set language is\n * reflected in the payload of the token contained in the webhook request.\n * @property {number=} sessionCheckInterval - Interval for session validity checks in milliseconds. Must be greater than 3000 (3s), defaults to 3000 otherwise.\n * @property {string=} sessionCheckChannelName - The broadcast channel name for inter-tab communication.\n * @property {string=} sessionTokenLocation - The location where the session token is stored.\n */\nexport interface HankoOptions {\n timeout?: number;\n cookieName?: string;\n cookieDomain?: string;\n cookieSameSite?: CookieSameSite;\n localStorageKey?: string;\n lang?: string;\n sessionCheckInterval?: number;\n sessionCheckChannelName?: string;\n sessionTokenLocation?: SessionTokenLocation;\n}\n\n/**\n * A class that bundles all available SDK functions.\n *\n * @extends {Listener}\n * @param {string} api - The URL of your Hanko API instance\n * @param {HankoOptions=} options - The options that can be used\n */\nclass Hanko extends Listener {\n private readonly session: SessionClient;\n private readonly user: UserClient;\n private readonly cookie: Cookie;\n public readonly client: HttpClient;\n public readonly relay: Relay;\n\n // eslint-disable-next-line require-jsdoc\n constructor(api: string, options?: HankoOptions) {\n super();\n const opts: HankoOptions = {\n timeout: 13000,\n cookieName: \"hanko\",\n localStorageKey: \"hanko\",\n sessionCheckInterval: 30000,\n sessionCheckChannelName: \"hanko-session-check\",\n ...options,\n };\n\n /**\n * @public\n * @type {Client}\n */\n this.client = new HttpClient(api, opts);\n /**\n * @public\n * @type {SessionClient}\n */\n this.session = new SessionClient(api, opts);\n /**\n * @public\n * @type {SessionClient}\n */\n this.user = new UserClient(api, opts);\n /**\n * @public\n * @type {Relay}\n */\n this.relay = new Relay(api, opts);\n /**\n * @public\n * @type {Cookie}\n */\n this.cookie = new Cookie(opts);\n }\n\n /**\n * Sets the preferred language on the underlying sub-clients. The clients'\n * base HttpClient uses this language to transmit an X-Language header to the\n * API which is then used to e.g. translate outgoing emails.\n *\n * @public\n * @param lang {string} - The preferred language to convey to the API.\n */\n setLang(lang: string) {\n this.client.lang = lang;\n }\n\n /**\n * Creates a new flow state for the specified flow.\n *\n * This method initializes a state by either loading from cache (if configured) or fetching from the server.\n * It uses the provided configuration to control caching, event dispatching, and auto-step behavior.\n *\n * @param {FlowName} flowName - The name of the flow to create a state for.\n * @param {StateCreateConfig} [config={}] - Configuration options for state creation.\n * @param {boolean} [config.dispatchAfterStateChangeEvent=true] - Whether to dispatch an event after the state changes.\n * @param {AutoStepExclusion} [config.excludeAutoSteps=null] - States to exclude from auto-step processing, or `\"all\"` to skip all auto-steps.\n * @param {string} [config.cacheKey=\"hanko-flow-state\"] - Key used for caching the state in localStorage.\n * @param {boolean} [config.loadFromCache=true] - Whether to attempt loading the state from cache.\n * @returns {Promise} A promise that resolves to the created flow state.\n * @category SDK\n * @subcategory FlowAPI\n */\n createState(flowName: FlowName, config: StateCreateConfig = {}) {\n return State.create(this, flowName, config);\n }\n\n /**\n * Retrieves the current user's profile information.\n *\n * @public\n * @deprecated\n * @returns {Promise} A promise that resolves to the user object\n * @throws {UnauthorizedError} If the user is not authenticated\n * @throws {TechnicalError} If an unexpected error occurs\n */\n async getUser(): Promise {\n return this.user.getCurrent();\n }\n\n /**\n * Retrieves the current user's profile information.\n *\n * @public\n * @returns {Promise} A promise that resolves to the user object\n * @throws {UnauthorizedError} If the user is not authenticated\n * @throws {TechnicalError} If an unexpected error occurs\n */\n async getCurrentUser(): Promise {\n return this.user.getCurrentUser();\n }\n\n /**\n * Validates the current session.\n *\n * @public\n * @returns {Promise} A promise that resolves to the session check response\n */\n async validateSession(): Promise {\n return this.session.validate();\n }\n\n /**\n * Retrieves the current session token from the authentication cookie.\n *\n * @public\n * @returns {string} The session token\n */\n getSessionToken(): string {\n return this.cookie.getAuthCookie();\n }\n\n /**\n * Logs out the current user by invalidating the session.\n *\n * @public\n * @returns {Promise} A promise that resolves when the logout is complete\n */\n async logout(): Promise {\n return this.user.logout();\n }\n}\n\nexport { Hanko };\n"],"names":["Throttle","throttle","func","wait","options","context","args","timeoutID","_options$leading","leading","_options$trailing","trailing","previous","executeThrottledFunction","Date","now","apply","remaining","this","slice","call","arguments","window","clearTimeout","setTimeout","sessionCreatedType","sessionExpiredType","userLoggedOutType","userDeletedType","flowAfterStateChangeType","flowBeforeStateChangeType","CustomEventWithDetail","_CustomEvent","type","detail","_inheritsLoose","_wrapNativeSuper","CustomEvent","Listener","throttleLimit","_addEventListener","document","addEventListener","bind","_removeEventListener","removeEventListener","_throttle","_proto","prototype","wrapCallback","callback","wrappedCallback","event","addEventListenerWithType","_ref","_this","_ref$once","once","_ref$throttle","mapAddEventListenerParams","_ref2","params","onSessionCreated","onSessionExpired","onUserLoggedOut","onUserDeleted","onAfterStateChange","onBeforeStateChange","Dispatcher","_dispatchEvent","dispatchEvent","dispatch","dispatchSessionCreatedEvent","dispatchSessionExpiredEvent","dispatchUserLoggedOutEvent","dispatchUserDeletedEvent","dispatchAfterStateChangeEvent","dispatchBeforeStateChangeEvent","HankoError","_Error","message","code","cause","Object","setPrototypeOf","Error","TechnicalError","_HankoError2","_this2","ConflictError","_HankoError3","userID","_this3","RequestTimeoutError","_HankoError4","_this4","WebauthnRequestCancelledError","_HankoError5","_this5","InvalidPasswordError","_HankoError6","_this6","InvalidPasscodeError","_HankoError7","_this7","InvalidWebauthnCredentialError","_HankoError8","_this8","PasscodeExpiredError","_HankoError9","_this9","MaxNumOfPasscodeAttemptsReachedError","_HankoError0","_this0","NotFoundError","_HankoError1","_this1","TooManyRequestsError","_HankoError10","retryAfter","_this10","UnauthorizedError","_HankoError11","_this11","ForbiddenError","_HankoError12","_this12","UserVerificationError","_HankoError13","_this13","MaxNumOfEmailAddressesReachedError","_HankoError14","_this14","EmailAddressAlreadyExistsError","_HankoError15","_this15","ThirdPartyError","_HankoError16","_this16","assign","target","i","length","source","key","api","init","converter","defaultAttributes","set","name","value","attributes","expires","toUTCString","encodeURIComponent","replace","decodeURIComponent","escape","stringifiedAttributes","attributeName","split","cookie","write","create","get","cookies","jar","parts","join","found","read","e","remove","withAttributes","withConverter","freeze","path","Cookie","_options$cookieName","_options$cookieSameSi","authCookieName","authCookieDomain","authCookieSameSite","cookieName","cookieDomain","cookieSameSite","getAuthCookie","JSCookie","setAuthCookie","token","defaults","secure","sameSite","undefined","domain","o","_extends","removeAuthCookie","SessionStorage","keyName","getSessionToken","sessionStorage","getItem","setSessionToken","setItem","removeSessionToken","removeItem","Headers","xhr","_xhr","getResponseHeader","Response","headers","ok","status","statusText","url","_decodedJSON","responseURL","_proto2","json","JSON","parse","response","parseNumericHeader","result","parseInt","isNaN","HttpClient","_options$timeout","timeout","dispatcher","sessionTokenStorage","lang","sessionTokenLocation","_proto3","_fetch","XMLHttpRequest","self","bearerToken","getAuthToken","Promise","resolve","reject","open","method","setRequestHeader","withCredentials","onload","processHeaders","onerror","ontimeout","send","body","toString","jwt","expirationSeconds","retention","getAllResponseHeaders","forEach","h","header","toLowerCase","startsWith","https","RegExp","match","location","href","getTime","setAuthToken","post","stringify","put","patch","Client","client","SessionClient","_Client","validate","then","SessionState","storageKey","defaultState","expiration","lastCheck","load","item","localStorage","save","session","WindowActivityManager","onActivityCallback","onInactivityCallback","handleFocus","handleBlur","handleVisibilityChange","visibilityState","hasFocus","Scheduler","checkInterval","checkSession","intervalID","scheduleSessionExpiry","timeToExpiration","stop","start","timeToNextCheck","calcTimeToNextCheck","sessionExpiresSoon","is_valid","setInterval","_this2$checkSession","_catch","console","log","clearInterval","isRunning","timeSinceLastCheck","SessionChannel","channelName","onLeadershipRequested","channel","handleMessage","data","action","BroadcastChannel","onmessage","msg","postMessage","Relay","_Dispatcher","listener","sessionState","windowActivityManager","scheduler","sessionChannel","isLoggedIn","sessionCheckInterval","getSessionCheckChannelName","sessionCheckChannelName","onChannelSessionExpired","onChannelSessionCreated","onChannelLeadershipRequested","startSessionCheck","_this$sessionState$lo","initializeEventListeners","claims","_this$sessionState$lo2","expiration_time","Math","floor","random","WebauthnSupport","supported","navigator","credentials","PublicKeyCredential","isPlatformAuthenticatorAvailable","isUserVerifyingPlatformAuthenticatorAvailable","isSecurityKeySupported","isExternalCTAP2SecurityKeySupported","isConditionalMediationAvailable","base64urlToBuffer","baseurl64String","padding","base64String","str","atob","buffer","ArrayBuffer","byteView","Uint8Array","charCodeAt","bufferToBase64url","charCode","String","fromCharCode","btoa","copyValue","convertValue","convert","conversionFn","schema2","input","Array","map","v","output","schemaField","entries","derive","schema","required","derived","optional","publicKeyCredentialDescriptorSchema","id","transports","simplifiedExtensionsSchema","appid","appidExclude","credProps","simplifiedClientExtensionResultsSchema","credentialCreationOptions","publicKey","rp","user","displayName","challenge","pubKeyCredParams","excludeCredentials","authenticatorSelection","attestation","extensions","signal","publicKeyCredentialWithAttestation","rawId","authenticatorAttachment","clientDataJSON","attestationObject","_a","getTransports","clientExtensionResults","pkc","getClientExtensionResults","credentialRequestOptions","mediation","rpId","allowCredentials","userVerification","publicKeyCredentialWithAssertion","authenticatorData","signature","userHandle","async","requestJSON","credential","getRequestFromJSON","getResponseToJSON","WebauthnManager","abortController","AbortController","getInstance","instance","createAbortSignal","abort","getWebauthnCredential","getConditionalWebauthnCredential","createWebauthnCredential","createRequestFromJSON","PKCE_STORAGE_KEY","getStoredCodeVerifier","clearStoredCodeVerifier","handleCredentialCreation","state","manager","errorCode","errorMessage","attestationResponse","actions","webauthn_verify_attestation_response","run","public_key","back","nextState","error","autoSteps","preflight","_state$actions$regist2","register_client_capabilities","_run","_WebauthnSupport$supp","_WebauthnSupport$isCo","_WebauthnSupport$isPl","webauthn_available","webauthn_conditional_mediation_available","webauthn_platform_authenticator_available","login_passkey","payload","request_options","assertionResponse","webauthn_verify_assertion_response","assertion_response","onboarding_verify_passkey_attestation","creation_options","webauthn_credential_verification","thirdparty","_temp5","_exit","_result2","_exit2","_temp3","_result3","_exit3","_temp","isCached","_await$state$actions$2","saveToLocalStorage","redirect_url","_result4","_temp2","searchParams","updateUrl","URLSearchParams","search","paramsToDelete","param","newSearch","history","replaceState","pathname","_temp4","verifier","exchange_token","code_verifier","_await$state$actions$","_finallyRethrows","_wasThrown","_result","success","removeFromLocalStorage","hanko","relay","account_deleted","passkeyAutofillActivationHandlers","login_init","_settle","pact","s","_Pact","observer","onFulfilled","onRejected","State","flowName","csrfToken","previousAction","cacheKey","invokedAction","excludeAutoSteps","autoStep","passkeyAutofillActivation","csrf_token","buildActionMap","handler","_options$dispatchAfte","_options$excludeAutoS","_options$previousActi","_options$isCached","_options$cacheKey","actionMap","keys","actionName","Action","Proxy","prop","createDisabled","serialize","flow_name","previous_action","fromEntries","inputs","description","is_cached","initializeFlowState","_for","test","update","stage","shouldContinue","_isSettledPact","updateValue","_resumeAfterTest","_resumeAfterBody","_state$excludeAutoSte","includes","readFromLocalStorage","raw","_unused","config","_config$cacheKey","_config$loadFromCache","loadFromCache","cachedState","deserialize","fetchState","newState","serializedState","createErrorResponse","parentState","enabled","inputValues","_this3$parentState","_config2$dispatchAfte","relatedStateName","mergedInputData","reduce","acc","input_data","UserClient","getCurrent","meResponse","me","userResponse","getCurrentUser","logout","logoutResponse","Hanko","_Listener","opts","localStorageKey","setLang","createState","getUser","validateSession","tempArray","crypto","getRandomValues","byte","charAt","charset"],"mappings":"w4CAyBa,IAAAA,eAAQ,WAAA,SAAAA,IAAAA,CAoElB,OApEkBA,EAWZC,SAAP,SACEC,EACAC,EACAC,YAAAA,IAAAA,EAA2B,CAAE,GAE7B,IACIC,EACAC,EACAC,EAH+CC,EAAPJ,EAApCK,QAAAA,OAAU,IAAHD,GAAOA,EAAAE,EAAsBN,EAApBO,SAAAA,OAAQ,IAAAD,GAAOA,EAInCE,EAAW,EAGTC,EAA2B,WAG/BD,GAAuB,IAAZH,EAAoB,EAAIK,KAAKC,MACxCR,EAAY,KAEZL,EAAKc,MAAMX,EAASC,EACtB,EAqCA,OAlCkB,WAChB,IAAMS,EAAMD,KAAKC,MAIZH,IAAwB,IAAZH,IAAmBG,EAAWG,GAG/C,IAAME,EAAYd,GAAQY,EAAMH,GAIhCP,EAAUa,KACVZ,KAAIa,MAAAC,KAAAC,WAKAJ,GAAa,GAAKA,EAAYd,GAE5BI,IACFe,OAAOC,aAAahB,GACpBA,EAAY,MAIdK,EAAWG,EACXb,EAAKc,MAAMX,EAASC,IACVC,IAA0B,IAAbI,IAEvBJ,EAAYe,OAAOE,WAAWX,EAA0BI,GAE5D,CAGF,EAACjB,CAAA,CApEkB,GCjBRyB,EACX,wBAOWC,EACX,wBAOWC,EACX,wBAOWC,EAAwC,qBAqBxCC,EACX,2BAOWC,EACX,4BAyCWC,eAAyB,SAAAC,GAEpC,SAAAD,EAAYE,EAAcC,GACxB,OAAAF,EAAAZ,UAAMa,EAAM,CAAEC,OAAAA,KAAShB,IACzB,QAACiB,EAAAJ,EAAAC,GAAAD,CAAA,CAJmC,cAInCK,EAJ2CC,cC9BjCC,eAAQ,WAAA,SAAAA,IAAApB,KACZqB,cAAgB,IAAIrB,KAC3BsB,kBAAoBC,SAASC,iBAAiBC,KAAKF,UAASvB,KAC5D0B,qBAAuBH,SAASI,oBAAoBF,KAAKF,UACzDK,KAAAA,UAAY9C,EAASC,QAAQ,CAAA8C,IAAAA,EAAAT,EAAAU,UA2K5B,OA3K4BD,EAUrBE,aAAA,SACNC,EACAjD,GAGA,IAAMkD,EAAkB,SAACC,GACvBF,EAASE,EAAMlB,OACjB,EAIA,OAAIjC,EACKiB,KAAK4B,UAAUK,EAAiBjC,KAAKqB,cAAe,CACzD9B,SAAS,EACTE,UAAU,IAIPwC,CACT,EAACJ,EASOM,yBAAA,SAAwBC,GAKC,IAAAC,EAAArC,KAJ/Be,EAAIqB,EAAJrB,KACQuB,EAAAF,EACRG,KAAAA,OAAI,IAAAD,GAAQA,EAAAE,EAAAJ,EACZrD,SAEMkD,EAAkBjC,KAAK+B,aAJrBK,EAARJ,cAEQ,IAAAQ,GAAQA,GAIhB,OADAxC,KAAKsB,kBAAkBP,EAAMkB,EAAiB,CAAEM,KAAAA,IACnC,WAAA,OAAAF,EAAKX,qBAAqBX,EAAMkB,EAAgB,CAC/D,EAACb,EAYcqB,0BAAP,SACN1B,EAAY2B,EAEZ3D,GAEA,MAAO,CACLgC,KAAAA,EACAiB,SALcU,EAARV,SAMNO,KANIG,EAAJH,KAOAxD,SAAAA,EAEJ,EAAC8C,EAWOL,iBAAA,SACNT,EACA4B,EACA5D,GAEA,OAAWiB,KAACmC,yBACVf,EAASqB,0BAA0B1B,EAAM4B,EAAQ5D,GAErD,EAAC8C,EAUMe,iBAAA,SACLZ,EACAO,GAEA,OAAOvC,KAAKwB,iBAAiBjB,EAAoB,CAAEyB,SAAAA,EAAUO,KAAAA,IAAQ,EACvE,EAACV,EAWMgB,iBAAA,SACLb,EACAO,GAEA,OAAOvC,KAAKwB,iBAAiBhB,EAAoB,CAAEwB,SAAAA,EAAUO,KAAAA,IAAQ,EACvE,EAACV,EAUMiB,gBAAA,SACLd,EACAO,GAEA,OAAOvC,KAAKwB,iBAAiBf,EAAmB,CAAEuB,SAAAA,EAAUO,KAAAA,GAC9D,EAACV,EASMkB,cAAA,SACLf,EACAO,GAEA,OAAOvC,KAAKwB,iBAAiBd,EAAiB,CAAEsB,SAAAA,EAAUO,KAAAA,GAC5D,EAACV,EAEMmB,mBAAA,SACLhB,EACAO,GAEA,OAAOvC,KAAKwB,iBACVb,EACA,CAAEqB,SAAAA,EAAUO,KAAAA,IACZ,EAEJ,EAACV,EAEMoB,oBAAA,SACLjB,EACAO,GAEA,OAAWvC,KAACwB,iBACVZ,EACA,CAAEoB,SAAAA,EAAUO,KAAAA,IACZ,EAEJ,EAACnB,CAAA,CA/KkB,GCvDR8B,eAAUA,WAAAA,SAAAA,IACrBC,KAAAA,eAAiB5B,SAAS6B,cAAc3B,KAAKF,SAAS,KAAAM,EAAAqB,EAAApB,iBAAAD,EAS9CwB,SAAA,SAAYtC,EAAcC,GAChChB,KAAKmD,eAAe,IAAItC,EAAsBE,EAAMC,GACtD,EAACa,EAOMyB,4BAAA,SAA4BtC,GACjChB,KAAKqD,SAAS9C,EAAoBS,EACpC,EAACa,EAKM0B,4BAAA,WACLvD,KAAKqD,SAAS7C,EAAoB,KACpC,EAACqB,EAKM2B,2BAAA,WACLxD,KAAKqD,SAAS5C,EAAmB,KACnC,EAACoB,EAKM4B,yBAAA,WACLzD,KAAKqD,SAAS3C,EAAiB,KACjC,EAACmB,EAKM6B,8BAAA,SAA8B1C,GACnChB,KAAKqD,SAAS1C,EAA0BK,EAC1C,EAACa,EAKM8B,+BAAA,SAA+B3C,GACpChB,KAAKqD,SAASzC,EAA2BI,EAC3C,EAACkC,CAAA,CAxDoBA,GCRRU,eAAWC,SAAAA,GAKxB,SAAAD,EAAsBE,EAAiBC,EAAcC,OAAa3B,EAYd,OAXlDA,EAAAwB,EAAA3D,KAAAF,KAAM8D,IAASzB,MALjB0B,YAAI1B,EACJ2B,WAAK,EASH3B,EAAK0B,KAAOA,EAKZ1B,EAAK2B,MAAQA,EACbC,OAAOC,eAAc7B,EAAOuB,EAAW9B,WAAWO,CACpD,CAAC,OAAApB,EAAA2C,EAAAC,GAAAD,CAAA,CAlBuBC,cAkBvB3C,EAlB+BiD,QA6B5BC,wBAAeC,GAEnB,SAAAD,EAAYJ,GAAaM,IAAAA,EAE+B,OADtDA,EAAAD,EAAAnE,UAAM,kBAAmB,qBAAsB8D,IAC/CC,KAAAA,OAAOC,eAAcI,EAAOF,EAAetC,WAAWwC,CACxD,CAAC,OAAArD,EAAAmD,EAAAC,GAAAD,CAAA,EAL0BR,GAevBW,eAAc,SAAAC,GAElB,SAAAD,EAAYE,EAAiBT,GAAaU,IAAAA,EAEa,OADrDA,EAAAF,EAAAtE,KAAAF,KAAM,iBAAkB,WAAYgE,IACpCC,KAAAA,OAAOC,eAAcQ,EAAOH,EAAczC,WAAW4C,CACvD,CAACH,OAAAtD,EAAAsD,EAAAC,GAAAD,CAAA,CALiB,CAAQX,GAetBe,eAAoB,SAAAC,GAExB,SAAAD,EAAYX,GAAa,IAAAa,EAEoC,OAD3DA,EAAAD,EAAA1E,KAAAF,KAAM,0BAA2B,iBAAkBgE,IAAMhE,KACzDiE,OAAOC,eAAcW,EAAOF,EAAoB7C,WAAW+C,CAC7D,CAACF,OAAA1D,EAAA0D,EAAAC,GAAAD,CAAA,CALuB,CAAQf,GAgB5BkB,eAA8B,SAAAC,GAElC,SAAAD,EAAYd,GAAa,IAAAgB,EAE8C,OADrEA,EAAAD,EAAA7E,KAAAF,KAAM,0BAA2B,mBAAoBgE,IAAMhE,KAC3DiE,OAAOC,eAAcc,EAAOF,EAA8BhD,WAAWkD,CACvE,CAACF,OAAA7D,EAAA6D,EAAAC,GAAAD,CAAA,CALiC,CAAQlB,GAetCqB,eAAqBC,SAAAA,GAEzB,SAAAD,EAAYjB,GAAa,IAAAmB,EAEqC,OAD5DA,EAAAD,EAAAhF,KAAMF,KAAA,yBAA0B,kBAAmBgE,IAAMhE,KACzDiE,OAAOC,eAAciB,EAAOF,EAAqBnD,WAAWqD,CAC9D,QAAClE,EAAAgE,EAAAC,GAAAD,CAAA,CALwBC,CAAQtB,GAe7BwB,eAAqBC,SAAAA,GAEzB,SAAAD,EAAYpB,GAAa,IAAAsB,EAEqC,OAD5DA,EAAAD,EAAAnF,KAAMF,KAAA,yBAA0B,kBAAmBgE,IAAMhE,KACzDiE,OAAOC,eAAcoB,EAAOF,EAAqBtD,WAAWwD,CAC9D,CAAC,OAAArE,EAAAmE,EAAAC,GAAAD,CAAA,CALwBC,CAAQzB,GAe7B2B,eAA+BC,SAAAA,GAEnC,SAAAD,EAAYvB,GAAayB,IAAAA,EAM+C,OALtEA,EAAAD,EAAAtF,KACEF,KAAA,oCACA,4BACAgE,IAEFC,KAAAA,OAAOC,eAAcuB,EAAOF,EAA+BzD,WAAW2D,CACxE,CAAC,OAAAxE,EAAAsE,EAAAC,GAAAD,CAAA,CATkCC,CAAQ5B,GAmBvC8B,wBAAqBC,GAEzB,SAAAD,EAAY1B,GAAa4B,IAAAA,EAEqC,OAD5DA,EAAAD,EAAAzF,UAAM,yBAA0B,kBAAmB8D,IACnDC,KAAAA,OAAOC,eAAc0B,EAAOF,EAAqB5D,WAAW8D,CAC9D,CAAC,OAAA3E,EAAAyE,EAAAC,GAAAD,CAAA,EALgC9B,GAe7BiC,eAAqC,SAAAC,GAEzC,SAAAD,EAAY7B,GAAa+B,IAAAA,EAMqD,OAL5EA,EAAAD,EAAA5F,KAAAF,KACE,oDACA,0BACAgE,IACDhE,KACDiE,OAAOC,eAAc6B,EAAOF,EAAqC/D,WAAWiE,CAC9E,CAAC,OAAA9E,EAAA4E,EAAAC,GAAAD,CAAA,CATwC,CAAQjC,GAmB7CoC,eAAcC,SAAAA,GAElB,SAAAD,EAAYhC,GAAakC,IAAAA,EAE8B,OADrDA,EAAAD,EAAA/F,KAAMF,KAAA,kBAAmB,WAAYgE,IACrCC,KAAAA,OAAOC,eAAcgC,EAAOF,EAAclE,WAAWoE,CACvD,CAAC,OAAAjF,EAAA+E,EAAAC,GAAAD,CAAA,CALiBC,CAAQrC,GAetBuC,eAAqBC,SAAAA,GAGzB,SAAAD,EAAYE,EAAqBrC,GAAasC,IAAAA,EAGgB,OAF5DA,EAAAF,EAAAlG,UAAM,0BAA2B,kBAAmB8D,IAAOsC,MAH7DD,gBAIEC,EAAAA,EAAKD,WAAaA,EAClBpC,OAAOC,eAAcoC,EAAOH,EAAqBrE,WAAWwE,CAC9D,CAACH,OAAAlF,EAAAkF,EAAAC,GAAAD,CAAA,CAPwBC,CAAQxC,GAiB7B2C,eAAkB,SAAAC,GAEtB,SAAAD,EAAYvC,GAAa,IAAAyC,EAEkC,OADzDA,EAAAD,EAAAtG,KAAAF,KAAM,qBAAsB,eAAgBgE,IAAMhE,KAClDiE,OAAOC,eAAcuC,EAAOF,EAAkBzE,WAAW2E,CAC3D,CAACF,OAAAtF,EAAAsF,EAAAC,GAAAD,CAAA,CALqB,CAAQ3C,GAe1B8C,eAAeC,SAAAA,GAEnB,SAAAD,EAAY1C,GAAa,IAAA4C,EAE+B,OADtDA,EAAAD,EAAAzG,KAAMF,KAAA,kBAAmB,YAAagE,IAAMhE,KAC5CiE,OAAOC,eAAc0C,EAAOF,EAAe5E,WAAW8E,CACxD,QAAC3F,EAAAyF,EAAAC,GAAAD,CAAA,CALkBC,CAAQ/C,GAgBvBiD,eAAsBC,SAAAA,GAE1B,SAAAD,EAAY7C,GAAa,IAAA+C,EAEsC,OAD7DA,EAAAD,EAAA5G,KAAMF,KAAA,0BAA2B,mBAAoBgE,IAAMhE,KAC3DiE,OAAOC,eAAc6C,EAAOF,EAAsB/E,WAAWiF,CAC/D,CAAC,OAAA9F,EAAA4F,EAAAC,GAAAD,CAAA,CALyBC,CAAQlD,GAgB9BoD,eAAmCC,SAAAA,GAEvC,SAAAD,EAAYhD,GAAakD,IAAAA,EAMmD,OAL1EA,EAAAD,EAAA/G,KACEF,KAAA,kDACA,gCACAgE,IAEFC,KAAAA,OAAOC,eAAcgD,EAAOF,EAAmClF,WAAWoF,CAC5E,CAAC,OAAAjG,EAAA+F,EAAAC,GAAAD,CAAA,CATsCC,CAAQrD,GAmB3CuD,wBAA+BC,GAEnC,SAAAD,EAAYnD,GAAaqD,IAAAA,EAM+C,OALtEA,EAAAD,EAAAlH,UACE,mCACA,iCACA8D,IAEFC,KAAAA,OAAOC,eAAcmD,EAAOF,EAA+BrF,WAAWuF,CACxE,CAAC,OAAApG,EAAAkG,EAAAC,GAAAD,CAAA,EAT0CvD,GAoBvC0D,eAAgB,SAAAC,GAEpB,SAAAD,EAAYvD,EAAcC,GAAawD,IAAAA,EAEkB,OADvDA,EAAAD,EAAArH,KAAAF,KAAM,uDAAwD+D,EAAMC,IACpEC,KAAAA,OAAOC,eAAcsD,EAAOF,EAAgBxF,WAAW0F,CACzD,CAACF,OAAArG,EAAAqG,EAAAC,GAAAD,CAAA,CALmB,CAAQ1D,GC3S9B,SAAS6D,EAAQC,GACf,IAAK,IAAIC,EAAI,EAAGA,EAAIxH,UAAUyH,OAAQD,IAAK,CACzC,IAAIE,EAAS1H,UAAUwH,GACvB,IAAK,IAAIG,KAAOD,EACdH,EAAOI,GAAOD,EAAOC,EAExB,CACD,OAAOJ,CACT,CAwHA,IAAIK,EAlGJ,SAASC,EAAMC,EAAWC,GACxB,SAASC,EAAKC,EAAMC,EAAOC,GACzB,GAAwB,oBAAb/G,SAAX,CAMkC,iBAFlC+G,EAAab,EAAO,CAAA,EAAIS,EAAmBI,IAErBC,UACpBD,EAAWC,QAAU,IAAI3I,KAAKA,KAAKC,MAA6B,MAArByI,EAAWC,UAEpDD,EAAWC,UACbD,EAAWC,QAAUD,EAAWC,QAAQC,eAG1CJ,EAAOK,mBAAmBL,GACvBM,QAAQ,uBAAwBC,oBAChCD,QAAQ,QAASE,QAEpB,IAAIC,EAAwB,GAC5B,IAAK,IAAIC,KAAiBR,EACnBA,EAAWQ,KAIhBD,GAAyB,KAAOC,GAEE,IAA9BR,EAAWQ,KAWfD,GAAyB,IAAMP,EAAWQ,GAAeC,MAAM,KAAK,KAGtE,OAAQxH,SAASyH,OACfZ,EAAO,IAAMH,EAAUgB,MAAMZ,EAAOD,GAAQS,CAtC7C,CAuCF,CA4BD,OAAO5E,OAAOiF,OACZ,CACEf,MACAgB,IA7BJ,SAAcf,GACZ,GAAwB,oBAAb7G,YAA6BpB,UAAUyH,QAAWQ,GAA7D,CAQA,IAFA,IAAIgB,EAAU7H,SAASyH,OAASzH,SAASyH,OAAOD,MAAM,MAAQ,GAC1DM,EAAM,CAAA,EACD1B,EAAI,EAAGA,EAAIyB,EAAQxB,OAAQD,IAAK,CACvC,IAAI2B,EAAQF,EAAQzB,GAAGoB,MAAM,KACzBV,EAAQiB,EAAMrJ,MAAM,GAAGsJ,KAAK,KAEhC,IACE,IAAIC,EAAQb,mBAAmBW,EAAM,IAGrC,GAFAD,EAAIG,GAASvB,EAAUwB,KAAKpB,EAAOmB,GAE/BpB,IAASoB,EACX,KAEV,CAAQ,MAAOE,GAAK,CACf,CAED,OAAOtB,EAAOiB,EAAIjB,GAAQiB,CApBzB,CAqBF,EAMGM,OAAQ,SAAUvB,EAAME,GACtBH,EACEC,EACA,GACAX,EAAO,CAAE,EAAEa,EAAY,CACrBC,SAAU,IAGf,EACDqB,eAAgB,SAAUtB,GACxB,OAAON,EAAKhI,KAAKiI,UAAWR,EAAO,CAAA,EAAIzH,KAAKsI,WAAYA,GACzD,EACDuB,cAAe,SAAU5B,GACvB,OAAOD,EAAKP,EAAO,GAAIzH,KAAKiI,UAAWA,GAAYjI,KAAKsI,WACzD,GAEH,CACEA,WAAY,CAAED,MAAOpE,OAAO6F,OAAO5B,IACnCD,UAAW,CAAEI,MAAOpE,OAAO6F,OAAO7B,KAGxC,CAEUD,CApHa,CACrByB,KAAM,SAAUpB,GAId,MAHiB,MAAbA,EAAM,KACRA,EAAQA,EAAMpI,MAAM,GAAI,IAEnBoI,EAAMK,QAAQ,mBAAoBC,mBAC1C,EACDM,MAAO,SAAUZ,GACf,OAAOI,mBAAmBJ,GAAOK,QAC/B,2CACAC,mBAEH,GAwG8B,CAAEoB,KAAM,MCjG5BC,eAAM,WAMjB,SAAAA,EAAY9K,OAAsB+K,EAAAC,EAAAlK,KALlCmK,oBAAc,EAAAnK,KACdoK,sBACAC,EAAAA,KAAAA,0BAIErK,KAAKmK,sBAAcF,EAAG/K,EAAQoL,YAAUL,EAAI,QAC5CjK,KAAKoK,iBAAmBlL,EAAQqL,aAChCvK,KAAKqK,mBAA2C,OAAzBH,EAAGhL,EAAQsL,gBAAcN,EAAI,KACtD,CAAC,IAAArI,EAAAmI,EAAAlI,UA8CA,OA9CAD,EAOD4I,cAAA,WACE,OAAOC,EAASvB,IAAInJ,KAAKmK,eAC3B,EAACtI,EAQD8I,cAAA,SAAcC,EAAe1L,GAC3B,IAAM2L,EAA6B,CACjCC,QAAQ,EACRC,SAAU/K,KAAKqK,yBAGaW,IAA1BhL,KAAKoK,mBACPS,EAASI,OAASjL,KAAKoK,kBAGzB,IAAMc,EAACC,EAA0BN,CAAAA,EAAAA,EAAa3L,GAE9C,IACkB,SAAfgM,EAAEH,UAAsC,SAAfG,EAAEH,YACf,IAAbG,EAAEJ,OAEF,MAAM,IAAI1G,EACR,IAAID,MAAM,oDAIduG,EAASvC,IAAInI,KAAKmK,eAAgBS,EAAOM,EAC3C,EAACrJ,EAKDuJ,iBAAA,WACEV,EAASf,OAAO3J,KAAKmK,eACvB,EAACH,CAAA,CAxDgB,GCfNqB,eAAc,WAIzB,SAAAA,EAAYnM,GAHZoM,KAAAA,aAIE,EAAAtL,KAAKsL,QAAUpM,EAAQoM,OACzB,CAAC,IAAAzJ,EAAAwJ,EAAAvJ,iBAAAD,EAOD0J,gBAAA,WACE,OAAOC,eAAeC,QAAQzL,KAAKsL,QACrC,EAACzJ,EAOD6J,gBAAA,SAAgBd,GACdY,eAAeG,QAAQ3L,KAAKsL,QAASV,EACvC,EAAC/I,EAKD+J,mBAAA,WACEJ,eAAeK,WAAW7L,KAAKsL,QACjC,EAACD,CAAA,CA/BwB,GCDrBS,eAIJ,WAAA,SAAAA,EAAYC,GAHZC,KAAAA,UAIE,EAAAhM,KAAKgM,KAAOD,CACd,CAUC,OAVAD,EAAAhK,UAQDmK,kBAAA,SAAkB7D,GAChB,OAAOpI,KAAKgM,KAAKC,kBAAkB7D,EACrC,EAAC0D,CAAA,CAZD,GAuBII,eAUJ,WAAA,SAAAA,EAAYH,GAAmB/L,KAT/BmM,aAAO,EAAAnM,KACPoM,QAAE,EAAApM,KACFqM,YAAM,EAAArM,KACNsM,gBAAU,EAAAtM,KACVuM,SAAG,EAAAvM,KACHwM,kBAAY,EAAAxM,KACZ+L,SAAG,EAQD/L,KAAKmM,QAAU,IAAIL,EAAQC,GAK3B/L,KAAKoM,GAAKL,EAAIM,QAAU,KAAON,EAAIM,QAAU,IAK7CrM,KAAKqM,OAASN,EAAIM,OAKlBrM,KAAKsM,WAAaP,EAAIO,WAKtBtM,KAAKuM,IAAMR,EAAIU,YAKfzM,KAAK+L,IAAMA,CACb,CAAC,IAAAW,EAAAR,EAAApK,UAwBA,OAxBA4K,EAODC,KAAA,WAIE,OAHK3M,KAAKwM,eACRxM,KAAKwM,aAAeI,KAAKC,MAAM7M,KAAK+L,IAAIe,WAEnC9M,KAAKwM,YACd,EAACE,EASDK,mBAAA,SAAmB3E,GACjB,IAAM4E,EAASC,SAASjN,KAAKmM,QAAQF,kBAAkB7D,GAAO,IAC9D,OAAO8E,MAAMF,GAAU,EAAIA,CAC7B,EAACd,CAAA,CAvDD,GA2FIiB,eAUJ,WAAA,SAAAA,EAAYpF,EAAa7I,GAAqB,IAAAkO,EAAApN,KAT9CqN,aAAO,EAAArN,KACP+H,SAAG,EAAA/H,KACHsN,gBAAU,EAAAtN,KACVgJ,YAAM,EAAAhJ,KACNuN,yBAAmB,EAAAvN,KACnBwN,UAAI,EAAAxN,KACJyN,0BAAoB,EAIlBzN,KAAK+H,IAAMA,EACX/H,KAAKqN,QAAyBD,OAAlBA,EAAGlO,EAAQmO,SAAOD,EAAI,KAClCpN,KAAKsN,WAAa,IAAIpK,EACtBlD,KAAKgJ,OAAS,IAAIgB,EAAMmB,EAAA,CAAA,EAAMjM,IAC9Bc,KAAKuN,oBAAsB,IAAIlC,EAAe,CAC5CC,QAASpM,EAAQoL,aAEnBtK,KAAKwN,KAAOtO,EAAQsO,KACpBxN,KAAKyN,qBAAuBvO,EAAQuO,oBACtC,CAAC,IAAAC,EAAAP,EAAArL,UA8LA,OA9LA4L,EAGDC,OAAA,SAAO5D,EAAc7K,EAAsB6M,QAAAA,IAAAA,IAAAA,EAAM,IAAI6B,gBACnD,IAAMC,EAAO7N,KACPuM,EAAMvM,KAAK+H,IAAMgC,EACjBsD,EAAUrN,KAAKqN,QACfS,EAAc9N,KAAK+N,eACnBP,EAAOxN,KAAKwN,KAElB,OAAW,IAAAQ,QAAkB,SAAUC,EAASC,GAC9CnC,EAAIoC,KAAKjP,EAAQkP,OAAQ7B,GAAK,GAC9BR,EAAIsC,iBAAiB,SAAU,oBAC/BtC,EAAIsC,iBAAiB,eAAgB,oBACrCtC,EAAIsC,iBAAiB,aAAcb,GAE/BM,GACF/B,EAAIsC,iBAAiB,gBAAe,UAAYP,GAGlD/B,EAAIsB,QAAUA,EACdtB,EAAIuC,iBAAkB,EACtBvC,EAAIwC,OAAS,WACXV,EAAKW,eAAezC,GACpBkC,EAAQ,IAAI/B,EAASH,GACvB,EAEAA,EAAI0C,QAAU,WACZP,EAAO,IAAI9J,EACb,EAEA2H,EAAI2C,UAAY,WACdR,EAAO,IAAIvJ,EACb,EAEAoH,EAAI4C,KAAKzP,EAAQ0P,KAAO1P,EAAQ0P,KAAKC,WAAa,KACpD,EACF,EAACnB,EAODc,eAAA,SAAezC,GACb,IAAI+C,EAAM,GACNC,EAAoB,EACpBC,EAAY,GAmBhB,GAjBAjD,EACGkD,wBACAlG,MAAM,QACNmG,QAAQ,SAACC,GACR,IAAMC,EAASD,EAAEE,cACbD,EAAOE,WAAW,gBACpBR,EAAM/C,EAAIE,kBAAkB,gBACnBmD,EAAOE,WAAW,sBAC3BP,EAAoB9B,SAClBlB,EAAIE,kBAAkB,sBACtB,IAEOmD,EAAOE,WAAW,yBAC3BN,EAAYjD,EAAIE,kBAAkB,uBAEtC,GAEE6C,EAAK,CACP,IAAMS,EAAQ,IAAIC,OAAO,aACnB1E,IACF9K,KAAK+H,IAAI0H,MAAMF,MAAYnP,OAAOsP,SAASC,KAAKF,MAAMF,GAEpDhH,EACU,YAAdyG,OACIhE,EACA,IAAIpL,MAAK,IAAIA,MAAOgQ,UAAgC,IAApBb,GAEtC/O,KAAK6P,aAAaf,EAAK,CAAEhE,OAAAA,EAAQvC,QAAAA,GAClC,CACH,EAACmF,EAUDvE,IAAA,SAAIY,GACF,OAAW/J,KAAC2N,OAAO5D,EAAM,CAAEqE,OAAQ,OACrC,EAACV,EAWDoC,KAAA,SAAK/F,EAAc6E,GACjB,OAAW5O,KAAC2N,OAAO5D,EAAM,CACvBqE,OAAQ,OACRQ,KAAMhC,KAAKmD,UAAUnB,IAEzB,EAAClB,EAWDsC,IAAA,SAAIjG,EAAc6E,GAChB,OAAO5O,KAAK2N,OAAO5D,EAAM,CACvBqE,OAAQ,MACRQ,KAAMhC,KAAKmD,UAAUnB,IAEzB,EAAClB,EAWDuC,MAAA,SAAMlG,EAAc6E,GAClB,OAAW5O,KAAC2N,OAAO5D,EAAM,CACvBqE,OAAQ,QACRQ,KAAMhC,KAAKmD,UAAUnB,IAEzB,EAAClB,EAAA,OAUD,SAAO3D,GACL,OAAO/J,KAAK2N,OAAO5D,EAAM,CACvBqE,OAAQ,UAEZ,EAACV,EAOOK,aAAA,WACN,IAAInD,EAAQ,GACZ,OAAQ5K,KAAKyN,sBACX,IAAK,SAML,QACE7C,EAAQ5K,KAAKgJ,OAAOyB,gBACpB,MALF,IAAK,iBACHG,EAAQ5K,KAAKuN,oBAAoBhC,kBAMrC,OAAOX,CACT,EAAC8C,EAQOmC,aAAA,SAAajF,EAAe1L,GAClC,OAAQc,KAAKyN,sBACX,IAAK,SAIL,QACE,OAAWzN,KAACgJ,OAAO2B,cAAcC,EAAO1L,GAH1C,IAAK,iBACH,OAAOc,KAAKuN,oBAAoB7B,gBAAgBd,GAItD,EAACuC,CAAA,CAxMD,GChJa+C,EAIb,SAAYnI,EAAa7I,GAHzBiR,KAAAA,YAQE,EAAAnQ,KAAKmQ,OAAS,IAAIhD,EAAWpF,EAAK7I,EACpC,ECRWkR,eAAcC,SAAAA,YAAAD,IAAA,OAAAC,EAAAvQ,MAAAK,KAAAA,YAAAc,IAAAA,CAexB,OAfwBA,EAAAmP,EAAAC,GAAAD,EAAAtO,UAOnBwO,SAAA,WAAQ,IACe,OAAAtC,QAAAC,QAAJjO,KAAKmQ,OAAOhH,IAAI,uBAAqBoH,KAAA,SAAtDzD,GAEN,IAAKA,EAASV,GACZ,MAAM,IAAIhI,EACX,OAAA4J,QAAAC,QAEYnB,EAASH,OACxB,EAAA,CAAC,MAAAjD,GAAA,OAAAsE,QAAAE,OAAAxE,EAAA,CAAA,EAAA0G,CAAA,CAfwBC,CAAQH,GCItBM,eAAY,WAYvB,SAAAA,EAAYC,GAAkBzQ,KAXbyQ,gBAAU,EAAAzQ,KACV0Q,aAAsB,CACrCC,WAAY,EACZC,UAAW,GASX5Q,KAAKyQ,WAAaA,CACpB,CAAC,IAAA5O,EAAA2O,EAAA1O,UAsBA,OAtBAD,EAODgP,KAAA,WACE,IAAMC,EAAO1Q,OAAO2Q,aAAatF,QAAQzL,KAAKyQ,YAC9C,OAAe,MAARK,EAAe9Q,KAAK0Q,aAAe9D,KAAKC,MAAMiE,EACvD,EAACjP,EAODmP,KAAA,SAAKC,GACH7Q,OAAO2Q,aAAapF,QAClB3L,KAAKyQ,WACL7D,KAAKmD,UAAUkB,GAAoBjR,KAAK0Q,cAE5C,EAACF,CAAA,CApCsB,GCLZU,EAKX,SAAYC,EAA8BC,GAA8B/O,IAAAA,EAJvD8O,KAAAA,KAAAA,wBACAC,EAAAA,KAAAA,0BAiBTC,EAAAA,KAAAA,YAAc,WACpBhP,EAAK8O,oBACP,EAACnR,KAMOsR,WAAa,WACnBjP,EAAK+O,sBACP,EAMQG,KAAAA,uBAAyB,WACE,YAA7BhQ,SAASiQ,gBACXnP,EAAK8O,qBAEL9O,EAAK+O,sBAET,EAMAK,KAAAA,SAAW,WACT,OAAOlQ,SAASkQ,UAClB,EA3CEzR,KAAKmR,mBAAqBA,EAC1BnR,KAAKoR,qBAAuBA,EAG5BhR,OAAOoB,iBAAiB,QAASxB,KAAKqR,aACtCjR,OAAOoB,iBAAiB,OAAQxB,KAAKsR,YACrC/P,SAASC,iBAAiB,mBAAoBxB,KAAKuR,uBACrD,ECKWG,eAAS,WAQpB,SAAAA,EACEC,EACAC,EACA/O,GAAwC7C,KAVlC6R,WAAoD,KAAI7R,KACxDX,UAAkD,KAAIW,KAC7C2R,mBAAa,EAAA3R,KACb4R,kBAAY,EAAA5R,KACZ6C,sBAAgB,EAQ/B7C,KAAK2R,cAAgBA,EACrB3R,KAAK4R,aAAeA,EACpB5R,KAAK6C,iBAAmBA,CAC1B,CAAC,IAAAhB,EAAA6P,EAAA5P,iBAAAD,EAQDiQ,sBAAA,SAAsBC,GAAwB1P,IAAAA,EAG1CrC,KAFFA,KAAKgS,OACLhS,KAAKX,UAAYiB,0BAES,OADxB+B,EAAK2P,OACL3P,EAAKQ,mBAAmBmL,QAAAC,SAC1B,CAAC,MAAAvE,GAAA,OAAAsE,QAAAE,OAAAxE,EAAA,CAAA,EAAEqI,EACL,EAAClQ,EAUDoQ,MAAA,SAAMrB,EAAuBD,GAAsBrM,IAAAA,EAW1BtE,UAXnB4Q,IAAAA,IAAAA,EAAoB,QAAGD,IAAAA,IAAAA,EAAqB,GAChD,IAAMuB,EAAkBlS,KAAKmS,oBAAoBvB,GAE7C5Q,KAAKoS,mBAAmBzB,GAC1B3Q,KAAK8R,sBAAsBI,GAK7BlS,KAAKX,UAAYiB,WAAsB,WAAA,IAAA,OAAA0N,QAAAC,gCACjCD,QAAAC,QACiB3J,EAAKsN,gBAAcrB,KAAA,SAAlCvD,GAEAA,GAAAA,EAAOqF,SACT,CAAA,GAAI/N,EAAK8N,mBAAmBpF,EAAO2D,YAEjC,YADArM,EAAKwN,sBAAsB9E,EAAO2D,WAAa/Q,KAAKC,OAKtDyE,EAAKuN,WAAaS,YAAW,WAAA,IAAYtE,OAAAA,QAAAC,QACxB3J,EAAKsN,gBAAcrB,KAAA,SAAAgC,IAAlCvF,EAAMuF,GAEKF,SACL/N,EAAK8N,mBAAmBpF,EAAO2D,aACjCrM,EAAKwN,sBAAsB9E,EAAO2D,WAAa/Q,KAAKC,OAGtDyE,EAAK0N,MAAO,EAEhB,CAAC,MAAAtI,GAAA,OAAAsE,QAAAE,OAAAxE,EAAA,CAAA,EAAEpF,EAAKqN,cAAe,MAEvBrN,EAAK0N,MAER,4DAzBoCQ,CACjC,WAwBK9I,GACP+I,QAAQC,IAAIhJ,EACb,GACH,CAAC,MAAAA,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA,CAAA,EAAEwI,EACL,EAACrQ,EAKDmQ,KAAA,WACMhS,KAAKX,YACPgB,aAAaL,KAAKX,WAClBW,KAAKX,UAAY,MAGfW,KAAK6R,aACPc,cAAc3S,KAAK6R,YACnB7R,KAAK6R,WAAa,KAEtB,EAAChQ,EAMD+Q,UAAA,WACE,OAA0B,OAAf5S,KAACX,WAA0C,OAApBW,KAAK6R,UACzC,EAAChQ,EAODuQ,mBAAA,SAAmBzB,GACjB,OAAOA,EAAa,GAAKA,EAAa/Q,KAAKC,OAASG,KAAK2R,aAC3D,EAAC9P,EAQDsQ,oBAAA,SAAoBvB,GAClB,IAAMiC,EAAqBjT,KAAKC,MAAQ+Q,EACxC,OAAO5Q,KAAK2R,eAAiBkB,EACzB7S,KAAK2R,cAAiBkB,EAAqB7S,KAAK2R,cAChD,CACN,EAACD,CAAA,CA3HmB,GCeToB,eAOX,WAAA,SAAAA,EACEC,EACAlQ,EACAD,EACAoQ,GAA+B,IAAA3Q,EAH/B0Q,UAAAA,IAAAA,IAAAA,EAAsB,iBAPxBE,KAAAA,oBACApQ,sBAAgB,EAAA7C,KAChB4C,sBAAgB,EAAA5C,KAChBgT,2BAgCQE,EAAAA,KAAAA,cAAgB,SAAChR,GACvB,IAAMiR,EAAOjR,EAAMiR,KACnB,OAAQA,EAAKC,QACX,IAAK,iBACH/Q,EAAKQ,iBAAiBsQ,GACtB,MACF,IAAK,iBACH9Q,EAAKO,iBAAiBuQ,GACtB,MACF,IAAK,oBACH9Q,EAAK2Q,sBAAsBG,GAGjC,EApCEnT,KAAK6C,iBAAmBA,EACxB7C,KAAK4C,iBAAmBA,EACxB5C,KAAKgT,sBAAwBA,EAE7BhT,KAAKiT,QAAU,IAAII,iBAAiBN,GACpC/S,KAAKiT,QAAQK,UAAYtT,KAAKkT,aAChC,QAACJ,EAAAhR,UAODgO,KAAA,SAAKyD,GACHvT,KAAKiT,QAAQO,YAAYD,EAC3B,EAACT,CAAA,CArBD,GChCWW,eAAM,SAAAC,GAWjB,SAAAD,EAAY1L,EAAa7I,GAAqBmD,IAAAA,GAC5CA,EAAAqR,EAAAxT,YAAQmC,MAXVsR,SAAW,IAAIvS,EAAUiB,EACRsP,cAAwB,IAAKtP,EAC7B8N,YAAM,EAAA9N,EACNuR,kBAAY,EAAAvR,EACZwR,2BAAqB,EAAAxR,EACrByR,eAAS,EAAAzR,EACT0R,oBAAc,EAAA1R,EACvB2R,gBAAU,EAKhB3R,EAAK8N,OAAS,IAAIC,EAAcrI,EAAK7I,GAEjCA,EAAQ+U,uBACV5R,EAAKsP,cACHzS,EAAQ+U,qBAAuB,IAC3B,IACA/U,EAAQ+U,sBAGhB5R,EAAKuR,aAAe,IAAIpD,EAAgBtR,EAAQoL,WAAU,kBAC1DjI,EAAK0R,eAAiB,IAAIjB,EACxBzQ,EAAK6R,2BACHhV,EAAQuO,qBACRvO,EAAQiV,yBAEV,WAAA,OAAM9R,EAAK+R,yBAAyB,EACpC,SAACb,GAAG,OAAKlR,EAAKgS,wBAAwBd,EAAI,EAC1C,WAAM,OAAAlR,EAAKiS,8BAA8B,GAE3CjS,EAAKyR,UAAY,IAAIpC,EACnBrP,EAAKsP,cACL,WAAM,OAAAtP,EAAKuP,cAAc,EACzB,WAAM,OAAAvP,EAAKQ,kBAAkB,GAE/BR,EAAKwR,sBAAwB,IAAI3C,EAC/B,WAAA,OAAM7O,EAAKkS,mBAAmB,EAC9B,WAAA,OAAMlS,EAAKyR,UAAU9B,MAAM,GAG7B,IAAMnS,EAAMD,KAAKC,MACjB2U,EAAuBnS,EAAKuR,aAAa/C,OAIhB,OAFzBxO,EAAK2R,WAAanU,EAFA2U,EAAV7D,WAGRtO,EAAKoS,2BACLpS,EAAKkS,oBAAoBlS,CAC3B,CAACpB,EAAAwS,EAAAC,GAAA,IAAA7R,EAAA4R,EAAA3R,UAiLA,OAjLAD,EAOO4S,yBAAA,WAAwB,IAAAnQ,EAAAtE,KAE9BA,KAAK2T,SAAS/Q,iBAAiB,SAAC5B,GAC9B,IAAQ0T,EAAW1T,EAAX0T,OACF/D,EAAa/Q,KAAKiN,MAAM6H,EAAO/D,YAC/BC,EAAYhR,KAAKC,MAEvByE,EAAK0P,YAAa,EAClB1P,EAAKsP,aAAa5C,KAAK,CAAEL,WAAAA,EAAYC,UAAAA,IACrCtM,EAAKyP,eAAejE,KAAK,CAAEsD,OAAQ,iBAAkBsB,OAAAA,IACrDpQ,EAAKiQ,mBACP,GAGAvU,KAAK2T,SAAS7Q,gBAAgB,WAC5BwB,EAAK0P,YAAa,EAClB1P,EAAKyP,eAAejE,KAAK,CAAEsD,OAAQ,mBACnC9O,EAAKsP,aAAa5C,KAAK,MACvB1M,EAAKwP,UAAU9B,MACjB,GAEA5R,OAAOoB,iBAAiB,eAAgB,WAAA,OAAM8C,EAAKwP,UAAU9B,MAAM,EACrE,EAACnQ,EAOO0S,kBAAA,WACN,GAAIvU,KAAK6T,sBAAsBpC,aAC7BzR,KAAK+T,eAAejE,KAAK,CAAEsD,OAAQ,uBAKjCpT,KAAK8T,UAAUlB,aAAnB,CAIA,IAAA+B,EAAkC3U,KAAK4T,aAAa/C,OAEhD7Q,KAAKgU,YACPhU,KAAK8T,UAAU7B,MAHA0C,EAAT/D,UAAqB+D,EAAVhE,WAFlB,CAOH,EAAC9O,EAQa+P,aAAY,WAAA,IAAAlN,IAAAA,EAG4B1E,KAF9C4Q,EAAYhR,KAAKC,MAAM,OAAAmO,QAAAC,QAEuBvJ,EAAKyL,OAAOG,YAAUC,KAAA,SAAAnO,GAAA,IAAlEiQ,EAAQjQ,EAARiQ,SAAUqC,EAAMtS,EAANsS,OAAQE,EAAexS,EAAfwS,gBAGpBjE,EAAaiE,EAAkBhV,KAAKiN,MAAM+H,GAAmB,EAiBnE,OAdKvC,GAAY3N,EAAKsP,YACpBtP,EAAKnB,8BAIH8O,GACF3N,EAAKsP,YAAa,EAClBtP,EAAKkP,aAAa5C,KAAK,CAAEJ,UAAAA,EAAWD,WAAAA,MAEpCjM,EAAKsP,YAAa,EAClBtP,EAAKkP,aAAa5C,KAAK,MACvBtM,EAAKqP,eAAejE,KAAK,CAAEsD,OAAQ,oBAG9B,CAELf,SAAAA,EACAqC,OAAAA,EACA/D,WAAAA,EACA,EACJ,CAAC,MAAAjH,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA7H,CAAAA,EAAAA,EAQOgB,iBAAA,WACF7C,KAAKgU,aACPhU,KAAKgU,YAAa,EAClBhU,KAAK4T,aAAa5C,KAAK,MACvBhR,KAAK+T,eAAejE,KAAK,CAAEsD,OAAQ,mBACnCpT,KAAKuD,8BAET,EAAC1B,EAMOuS,wBAAA,WACFpU,KAAKgU,aACPhU,KAAKgU,YAAa,EAClBhU,KAAKuD,8BAET,EAAC1B,EAOOwS,wBAAA,SAAwBd,GAC9B,IAAQmB,EAAWnB,EAAXmB,OACF7U,EAAMD,KAAKC,MAEXkP,EADanP,KAAKiN,MAAM6H,EAAO/D,YACE9Q,EAEvCG,KAAKgU,YAAa,EAClBhU,KAAKsD,4BAA4B,CAC/BoR,OAAAA,EACA3F,kBAAAA,GAEJ,EAAClN,EAMOyS,6BAAA,WACDtU,KAAK6T,sBAAsBpC,YAC9BzR,KAAK8T,UAAU9B,MAEnB,EAACnQ,EAeOqS,2BAAA,SACNzG,EACA0G,GAEA,GAA6B,mBAAzB1G,EACF,OAAO0G,EAET,IAAIpB,EAAcvH,eAAeC,QAAQ,2BAWzC,OATEsH,SAEgB,KAAhBA,IAEAA,EAAiBoB,EAAuB,KACtCU,KAAKC,MAAsB,IAAhBD,KAAKE,UAAkB,GAEpCvJ,eAAeG,QAAQ,0BAA2BoH,IAE7CA,CACT,EAACU,CAAA,CAjOgB,CAAQvQ,GCbrB8R,mCAAeA,IAAA,CAoElBA,OApEkBA,EAQZC,UAAP,WACE,SACEC,UAAUC,aACVD,UAAUC,YAAYjM,QACtBgM,UAAUC,YAAYhM,KACtB/I,OAAOgV,oBAEX,EAACJ,EAOYK,iCAAgC,WAAA,IAC3C,OACErV,KAAKiV,aACL7U,OAAOgV,oBAAoBE,8CAE3BtH,QAAAC,QAAO7N,OAAOgV,oBAAoBE,iDAGpCtH,QAAAC,SAAO,EACT,CAAC,MAAAvE,GAAA,OAAAsE,QAAAE,OAAAxE,EAAAsL,CAAAA,EAAAA,EAOYO,kCAAsB,IACjC,YACiCvK,IAA/B5K,OAAOgV,qBAEPhV,OAAOgV,oBAAoBI,oCAG3BxH,QAAAC,QAAO7N,OAAOgV,oBAAoBI,uCAGpCxH,QAAAC,QAAOjO,KAAKiV,YACd,CAAC,MAAAvL,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA,CAAA,EAAAsL,EAOYS,gCAAA,WAA+B,IAC1C,OAEErV,OAAOgV,qBAEPhV,OAAOgV,oBAAoBK,gCAG3BzH,QAAAC,QAAO7N,OAAOgV,oBAAoBK,mCAGpCzH,QAAAC,SAAO,EACT,CAAC,MAAAvE,GAAA,OAAAsE,QAAAE,OAAAxE,EAAAsL,CAAAA,EAAAA,CAAA,IC1EH,SAASU,EAAkBC,GACzB,MAAMC,EAAU,KAAK3V,MAAM,GAAI,EAAI0V,EAAgB/N,OAAS,GAAK,GAC3DiO,EAAeF,EAAgBjN,QAAQ,KAAM,KAAKA,QAAQ,KAAM,KAAOkN,EACvEE,EAAMC,KAAKF,GACXG,EAAS,IAAIC,YAAYH,EAAIlO,QAC7BsO,EAAW,IAAIC,WAAWH,GAChC,IAAK,IAAIrO,EAAI,EAAGA,EAAImO,EAAIlO,OAAQD,IAC9BuO,EAASvO,GAAKmO,EAAIM,WAAWzO,GAE/B,OAAOqO,CACT,CACA,SAASK,EAAkBL,GACzB,MAAME,EAAW,IAAIC,WAAWH,GAChC,IAAIF,EAAM,GACV,IAAK,MAAMQ,KAAYJ,EACrBJ,GAAOS,OAAOC,aAAaF,GAO7B,OALqBG,KAAKX,GACWpN,QAAQ,MAAO,KAAKA,QACvD,MACA,KACAA,QAAQ,KAAM,GAElB,CAGA,IAAIgO,EAAY,OACZC,EAAe,UACnB,SAASC,EAAQC,EAAcC,EAASC,GACtC,GAAID,IAAYJ,EACd,OAAOK,EAET,GAAID,IAAYH,EACd,OAAOE,EAAaE,GAEtB,GAAID,aAAmBE,MACrB,OAAOD,EAAME,IAAKC,GAAMN,EAAQC,EAAcC,EAAQ,GAAII,IAE5D,GAAIJ,aAAmB7S,OAAQ,CAC7B,MAAMkT,EAAS,CAAA,EACf,IAAK,MAAOrP,EAAKsP,KAAgBnT,OAAOoT,QAAQP,GAAU,CACxD,GAAIM,EAAYE,OAAQ,CACtB,MAAMJ,EAAIE,EAAYE,OAAOP,QACnB,IAANG,IACFH,EAAMjP,GAAOoP,EAEhB,CACD,GAAMpP,KAAOiP,EAUbI,EAAOrP,GAJW,MAAdiP,EAAMjP,GAII8O,EACZC,EACAO,EAAYG,OACZR,EAAMjP,IANQ,UANd,GAAIsP,EAAYI,SACd,MAAM,IAAIrT,MAAM,gBAAgB2D,IAarC,CACD,OAAOqP,CACR,CACH,CACA,SAASM,GAAQX,EAASQ,GACxB,MAAO,CACLE,UAAU,EACVD,OAAQT,EACRQ,SAEJ,CACA,SAASE,GAASV,GAChB,MAAO,CACLU,UAAU,EACVD,OAAQT,EAEZ,CACA,SAASY,GAASZ,GAChB,MAAO,CACLU,UAAU,EACVD,OAAQT,EAEZ,CAGA,IAAIa,GAAsC,CACxC5W,KAAMyW,GAASd,GACfkB,GAAIJ,GAASb,GACbkB,WAAYH,GAAShB,IAEnBoB,GAA6B,CAC/BC,MAAOL,GAAShB,GAChBsB,aAAcN,GAAShB,GACvBuB,UAAWP,GAAShB,IAElBwB,GAAyC,CAC3CH,MAAOL,GAAShB,GAChBsB,aAAcN,GAAShB,GACvBuB,UAAWP,GAAShB,IAElByB,GAA4B,CAC9BC,UAAWZ,GAAS,CAClBa,GAAIb,GAASd,GACb4B,KAAMd,GAAS,CACbI,GAAIJ,GAASb,GACbvO,KAAMoP,GAASd,GACf6B,YAAaf,GAASd,KAExB8B,UAAWhB,GAASb,GACpB8B,iBAAkBjB,GAASd,GAC3BrJ,QAASqK,GAAShB,GAClBgC,mBAAoBhB,GAAS,CAACC,KAC9BgB,uBAAwBjB,GAAShB,GACjCkC,YAAalB,GAAShB,GACtBmC,WAAYnB,GAASI,MAEvBgB,OAAQpB,GAAShB,IAEfqC,GAAqC,CACvChY,KAAMyW,GAASd,GACfkB,GAAIJ,GAASd,GACbsC,MAAOxB,GAASb,GAChBsC,wBAAyBvB,GAAShB,GAClC5J,SAAU0K,GAAS,CACjB0B,eAAgB1B,GAASb,GACzBwC,kBAAmB3B,GAASb,GAC5BkB,WAAYJ,GACVf,EACC5J,IACC,IAAIsM,EACJ,OAAyC,OAAhCA,EAAKtM,EAASuM,oBAAyB,EAASD,EAAGlZ,KAAK4M,KAAc,OAIrFwM,uBAAwB7B,GACtBS,GACCqB,GAAQA,EAAIC,8BAGbC,GAA2B,CAC7BC,UAAWhC,GAAShB,GACpB0B,UAAWZ,GAAS,CAClBgB,UAAWhB,GAASb,GACpBtJ,QAASqK,GAAShB,GAClBiD,KAAMjC,GAAShB,GACfkD,iBAAkBlC,GAAS,CAACC,KAC5BkC,iBAAkBnC,GAAShB,GAC3BmC,WAAYnB,GAASI,MAEvBgB,OAAQpB,GAAShB,IAEfoD,GAAmC,CACrC/Y,KAAMyW,GAASd,GACfkB,GAAIJ,GAASd,GACbsC,MAAOxB,GAASb,GAChBsC,wBAAyBvB,GAAShB,GAClC5J,SAAU0K,GAAS,CACjB0B,eAAgB1B,GAASb,GACzBoD,kBAAmBvC,GAASb,GAC5BqD,UAAWxC,GAASb,GACpBsD,WAAYzC,GAASb,KAEvB2C,uBAAwB7B,GACtBS,GACCqB,GAAQA,EAAIC,8BAqCjBU,eAAe/Q,GAAIgR,GACjB,MAAMC,QAAmBlF,UAAUC,YAAYhM,IAXjD,SAA4BgR,GAC1B,OAAOvD,EAAQlB,EAAmB+D,GAA0BU,EAC9D,CAUIE,CAAmBF,IAErB,OAXF,SAA2BC,GACzB,OAAOxD,EACLP,EACAyD,GACAM,EAEJ,CAKSE,CAAkBF,EAC3B,CC1M+B,IAMzBG,gBAIJ,WAAA,SAAAA,SAFQC,gBAAkB,IAAIC,eAEP,CAACF,EAOVG,YAAP,WAIL,OAHKH,EAAgBI,WACnBJ,EAAgBI,SAAW,IAAIJ,GAE1BA,EAAgBI,QACzB,EAAC,IAAA9Y,EAAA0Y,EAAAzY,UA4DA,OA5DAD,EAOO+Y,kBAAA,WAGN,OAFA5a,KAAKwa,gBAAgBK,QACrB7a,KAAKwa,gBAAkB,IAAIC,gBAChBza,KAACwa,gBAAgB1B,MAC9B,EAACjX,EASYiZ,sBAAqB,SAChC5b,GAAqC,IAIvB,OAAA8O,QAAAC,QAFD9E,GAAGgC,EAAA,CAAA,EACXjM,EAAO,CACV4Z,OAAQ9Y,KAAK4a,uBAEjB,CAAC,MAAAlR,GAAAsE,OAAAA,QAAAE,OAAAxE,KAAA7H,EASYkZ,iCAAgC,SAC3C3C,GAAoD,IAKtC,OAAApK,QAAAC,QAHD9E,GAAI,CACfiP,UAAAA,EACAsB,UAAW,cACXZ,OAAQ9Y,KAAK4a,sBAEjB,CAAC,MAAAlR,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA,CAAA,EAAA7H,EASYmZ,yBAAwB,SACnC9b,GAAsC,IAIxB8O,OAAAA,QAAAC,QDqGlBiM,eAAsBC,GAIpB,OAX4BC,QAQHlF,UAAUC,YAAYjM,OAXjD,SAA+BiR,GAC7B,OAAOvD,EAAQlB,EAAmByC,GAA2BgC,EAC/D,CAUIc,CAAsBd,IARjBvD,EACLP,EACA0C,GACAqB,GAJJ,IAA8BA,CAY9B,CC5GiBlR,CAAMiC,EACdjM,CAAAA,EAAAA,EACH4Z,CAAAA,OAAQ9Y,KAAK4a,uBAEjB,CAAC,MAAAlR,GAAA,OAAAsE,QAAAE,OAAAxE,EAAA,CAAA,EAAA6Q,CAAA,CAxED,GAJIA,GACWI,SAAmC,KCdpD,IAAMO,GAAmB,2BA0CZC,GAAwB,WACnC,MAAsB,oBAAX/a,QAA0BA,OAAOoL,eACnCpL,OAAOoL,eAAeC,QAAQyP,IAGzC,IAAA,EAKaE,GAA0B,WACf,oBAAXhb,QAA0BA,OAAOoL,gBAC1CpL,OAAOoL,eAAeK,WAAWqP,GAErC,8FChDeG,GAAwB,SACrCC,EACAC,EACArc,EACAsc,EACAC,QADA,IAAAD,IAAAA,EAAoB,2CACpBC,IAAAA,IAAAA,EAAuB,0CAAoCzN,OAAAA,QAAAC,QAAAuE,GAEvD,WAAA,OAAAxE,QAAAC,QACgCsN,EAAQP,yBAAyB9b,IAAQqR,KAAA,SAArEmL,GAAmB,OAAA1N,QAAAC,QACZqN,EAAMK,QAAQC,qCAAqCC,IAAI,CAClEC,WAAYJ,IAEf,EAAA,EAAO,WAAA,OAAA1N,QAAAC,QACkBqN,EAAMK,QAAQI,KAAKF,OAAKtL,cAA1CyL,GAEN,OADAA,EAAUC,MAAQ,CAAElY,KAAMyX,EAAW1X,QAAS2X,GACvCO,CAAU,EAClB,GACH,CAAC,MAAAtS,UAAAsE,QAAAE,OAAAxE,EAAA,CAAA,EAEYwS,GAAuB,CAClCC,UAAA,SAAkBb,GAAS,IAAA,IAAAc,EACZd,EAAMK,QAAQU,6BAA4BC,EAA1CF,EAA2CP,IAAGU,EACrCvH,EAAgBC,YAAWjH,OAAAA,QAAAC,QAEvC+G,EAAgBS,mCAAiClF,KAAA,SAAAiM,GAAA,OAAAxO,QAAAC,QAEjD+G,EAAgBK,oCAAkC9E,KAAAkM,SAAAA,GAAAzO,OAAAA,QAAAC,QAAAqO,EAAApc,KAAAkc,EALA,CAC1DM,mBAAkBH,EAClBI,yCAAwCH,EAExCI,0CAAyCH,IAG7C,EAAA,EAAA,CAAC,MAAA/S,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA,CAAA,EAEDmT,cAAa,SAASvB,OACpB,IAAMC,EAAUhB,GAAgBG,cAAc,OAAA1M,QAAAC,QAAAuE,GAC1C,WAAA,OAAAxE,QAAAC,QAC8BsN,EAAQT,sBACtCQ,EAAMwB,QAAQC,kBACfxM,KAFKyM,SAAAA,GAAiBhP,OAAAA,QAAAC,QAGVqN,EAAMK,QAAQsB,mCAAmCpB,IAAI,CAChEqB,mBAAoBF,IAEvB,EAAA,EAAO,WAAA,OAAAhP,QAAAC,QACkBqN,EAAMK,QAAQI,KAAKF,OAAKtL,KAAA,SAA1CyL,GAIN,OAHIV,EAAMW,QACRD,EAAUC,MAAQX,EAAMW,OAEnBD,CAAU,EAClB,GACH,CAAC,MAAAtS,GAAA,OAAAsE,QAAAE,OAAAxE,EAEDyT,CAAAA,EAAAA,sCAAA,SAA8C7B,GAAS,IACrD,IAAMC,EAAUhB,GAAgBG,cAChC,OAAA1M,QAAAC,QAAOoN,GACLC,EACAC,EACAD,EAAMwB,QAAQM,kBAElB,CAAC,MAAA1T,GAAA,OAAAsE,QAAAE,OAAAxE,EAED2T,CAAAA,EAAAA,iCAAA,SAAyC/B,GAAK,IAC5C,IAAMC,EAAUhB,GAAgBG,cAChC,OAAA1M,QAAAC,QAAOoN,GACLC,EACAC,EACAD,EAAMwB,QAAQM,kBAElB,CAAC,MAAA1T,GAAA,OAAAsE,QAAAE,OAAAxE,EAAA,CAAA,EAEK4T,WAAA,SAAWhC,GAAK,IAAAiC,IA+CFC,EA/CED,EAAAA,SAAAE,GAAA,IAAAC,EAAA,GAAAF,EAAA,OAAAC,EAAAE,SAAAA,EAAAC,GAAA,IAAAC,EAAA,GAAAH,EAAA,OAAAE,EAAA,IAAAE,EAAA,WAAA,GAkDfxC,EAAMyC,SAE0C/P,OAAAA,QAAAC,QAEtCqN,EAAMK,QAAQI,KAAKF,OAAKtL,cAAAyN,GAAA,OAAAH,EAAA,EAAAG,CAAA,GAHrC1C,EAAM2C,qBACN7d,OAAOsP,SAASjI,OAAO6T,EAAMwB,QAAQoB,aAEA,CAtDnB,GAsDmB,OAAAJ,GAAAA,EAAAvN,KAAAuN,EAAAvN,KAAA4N,SAAAA,UAAAN,EAAAM,EAGhC7C,CAAK,GAAAuC,EAAAC,EAALxC,CAAK,CAAA,IAAA8C,EAAA,WAAA,UA1BRnC,SAAAA,EAAOrU,QAAS,EAAC,CACnB,IAAM4T,EACM,kBAAVS,EACI,4BACA,kBACAnY,EAAUua,EAAalV,IAAI,qBAES,OAA1CmV,EAAU,CAAC,QAAS,sBAAsBtQ,QAAAC,QAElBqN,EAAMK,QAAQI,KAAKF,IAAI,KAAM,CACnDnY,+BAA+B,KAC/B6M,KAFIyL,SAAAA,GAOC,OAHPA,EAAUC,MAAQ,CAAElY,KAAMyX,EAAW1X,QAAAA,GACrCkY,EAAUtY,gCAAgCga,EAEnC,EAAA1B,CAAS,EAAAoC,CAAAA,CAUN,GAVMA,OAAAA,GAAAA,EAAA7N,KAAA6N,EAAA7N,KAAAoN,GAAAA,EAAAS,IA9CZC,EAAe,IAAIE,gBAAgBne,OAAOsP,SAAS8O,QACnD5T,EAAQyT,EAAalV,IAAI,eACzB8S,EAAQoC,EAAalV,IAAI,SAEzBmV,EAAY,SAACG,GACjBA,EAAevP,QAAQ,SAACwP,GAAK,OAAKL,EAAmB,OAACK,EAAM,GAC5D,IAAMC,EAAYN,EAAaxP,WACvBwP,IAAAA,EAAaxP,WACjB,GACJ+P,QAAQC,aACN,KACA,KAAI,GACDze,OAAOsP,SAASoP,SAAWH,EAElC,EAAEI,iBAEEnU,MAAAA,OAAAA,EAAAA,EAAOhD,QAAS,GAClB0W,EAAU,CAAC,gBACX,IAAMU,EAAW7D,KAAwB,+BAErCnN,QAAAC,QACWqN,EAAMK,QAAQsD,eAAepD,IAAI,CAC5CjR,MAAAA,EACAsU,cAAeF,QAAYhU,KAC3BuF,KAAA,SAAA4O,GAAA,OAAA3B,EAAA,EAAA2B,CAAA,4FANqCC,CAErC,EAKH,SAAAC,EAAAC,GAC2B,GAA1BlE,KAA0BiE,EAAA,MAAAC,EAAA,OAAAA,CAAA,EAAA,CAAA,IAAA,OAAAtR,QAAAC,QAAA8Q,GAAAA,EAAAxO,KAAAwO,EAAAxO,KAAAgN,GAAAA,EAAAwB,GA+BhC,CAAC,MAAArV,GAAA,OAAAsE,QAAAE,OAAAxE,EAED6V,CAAAA,EAAAA,QAAA,SAAgBjE,GAAS,IACvB,IAAQ5G,EAAW4G,EAAMwB,QAAjBpI,OACF3F,EAAoBnP,KAAKiN,MAAM6H,EAAO/D,YAAc/Q,KAAKC,MAM/D,OALAyb,EAAMkE,yBACNlE,EAAMmE,MAAMC,MAAMpc,4BAA4B,CAC5CoR,OAAAA,EACA3F,kBAAAA,IAEFf,QAAAC,QAAOqN,EACT,CAAC,MAAA5R,GAAA,OAAAsE,QAAAE,OAAAxE,EAEDiW,CAAAA,EAAAA,gBAAA,SAAwBrE,GAAS,IAG/B,OAFAA,EAAMkE,yBACNlE,EAAMmE,MAAMC,MAAMjc,2BAClBuK,QAAAC,QAAOqN,EACT,CAAC,MAAA5R,GAAAsE,OAAAA,QAAAE,OAAAxE,MClJUkW,GACX,CACEC,WAAU,SAASvE,GAAK,IACtB,OAAAtN,QAAAC,aAAkB,WAAA,IAChB,IAAMsN,EAAUhB,GAAgBG,cAAc,OAAA1M,QAAAC,sBAE1CqN,EAAMwB,QAAQC,gBAAevK,4BAEuBxE,QAAAC,QAG5CsN,EAAQR,iCAHMO,EAAMwB,QAAQC,gBAA5B3E,YAGmD7H,KADrDyM,SAAAA,UAAiBhP,QAAAC,QAGVqN,EAAMK,QAAQsB,mCAAmCpB,IAAI,CAChEqB,mBAAoBF,IACpB,kDACI,WAAA,KAVuBxK,EAenC,IAAA,CAAC,MAAA9I,UAAAsE,QAAAE,OAAAxE,IAlBiB,GAmBpB,CAAC,MAAAA,UAAAsE,QAAAE,OAAAxE,MCgFD,SAAAoW,GAAqBC,EAACzE,EAAMjT,GAC5B,IAAA0X,EAAAC,EAAY,CACZ,GAAA3X,aAAA4X,GAAyB,CACzB,IAAA5X,EAAK2X,EASL,YAFC3X,EAAA6C,EAAA4U,GAAAre,KAAA,KAAAse,EAAAzE,IANI,EAALA,MACKjT,EAAO2X,KAGV3X,EAAM6O,EASP,GAAA7O,GAAAA,EAAAkI,KAUD,cARMA,KAAAuP,kBAC4BA,GAChBre,KAAA,KAAAse,EAAA,IAQlBA,EAAAC,EAAA1E,EACAyE,EAAA7I,EAAA7O,EAEA,MAAA6X,SAECA,EAAAH,EAGH,EAvIK,IAAEE,gBAAA,WAkDT,SAAAA,KAuCK,oHA7BFH,GAAA9S,EAAA,EAAAtD,EACH,CACkB,OAAasD,CACb,CACT,OAAkBhN,IAET,QACAA,KAAAkL,EAAA,SAAkB7I,GAClB,IACA,IAAAgG,EAAchG,EAAc6U,EACV,EAAlB7U,EAAkB2d,EAClBF,GAAiB9S,EAAA,EAAAmT,EAAAA,EAAA9X,GAAAA,GACJ+X,EACtBN,GAAA9S,EAA2B,EAAAoT,EAAA/X,IAGlByX,GAEN9S,EAAA,EAAA3E,EAKV,CAAA,MAAAqB,kBAMGuW,CACH,CA1FO,+CA4IJ,CA/EQ,IAAAI,gBAAK,WA6BhB,SAAAA,EACEZ,EACAa,EACAxT,EACA5N,GAA6BmD,IAAAA,EAA7BnD,KAWA,YAXAA,IAAAA,EAA2B,CAAE,QAhCfkJ,UAAI,EAAApI,KACJsgB,cAAQ,EAAAtgB,KACjBic,WACSa,EAAAA,KAAAA,aACAnB,EAAAA,KAAAA,oBACA4E,eAAS,EAAAvgB,KACTqM,YAAM,EAAArM,KACNwgB,oBACAzC,EAAAA,KAAAA,cACA0C,EAAAA,KAAAA,qBACAhB,WAAK,EAAAzf,KACd0gB,mBAAa,EAAA1gB,KACJ2gB,sBAEAC,EAAAA,KAAAA,cAGAC,EAAAA,KAAAA,+BAiBd,EAAA7gB,KAAKsgB,SAAWA,EAChBtgB,KAAKoI,KAAO0E,EAAS1E,KACrBpI,KAAKic,MAAQnP,EAASmP,MACtBjc,KAAK8c,QAAUhQ,EAASgQ,QACxB9c,KAAKugB,UAAYzT,EAASgU,WAC1B9gB,KAAKqM,OAASS,EAAST,OACvBrM,KAAKyf,MAAQA,EACbzf,KAAK2b,QAAU3b,KAAK+gB,eAAejU,EAAS6O,SAExC3b,KAAKoI,QAAQ8T,GAAW,CAC1B,IAAM8E,EAAU9E,GAAUlc,KAAKoI,MAC9BpI,KAAK4gB,SAAuC,WAAA,OAAMI,EAAQ3e,EAAY,CACxE,CAED,GAAIrC,KAAKoI,QAAQwX,GAAmC,CAClD,IAAMoB,EACJpB,GAAkC5f,KAAKoI,MACxCpI,KAAK6gB,0BAAoD,WACxD,OAAAG,EAAQ3e,EAAY,CACvB,CAED,IAMW4e,EAAP/hB,EALFwE,8BAAAA,WAA6Bud,GAAOA,EAAAC,EAKlChiB,EAJFyhB,iBAAuBQ,EAIrBjiB,EAHFshB,eAAAA,OAAc,IAAAW,EAAG,KAAIA,EAAAC,EAGnBliB,EAFF6e,SAAAA,OAAQ,IAAAqD,GAAQA,EAAAC,EAEdniB,EADFuhB,SAAAA,OAAQ,IAAAY,EAAG,mBAAkBA,EAG/BrhB,KAAK2gB,0BANaO,EAAG,KAAIA,EAOzBlhB,KAAKwgB,eAAiBA,EACtBxgB,KAAK+d,SAAWA,EAChB/d,KAAKygB,SAAWA,EAEZ/c,GACF1D,KAAK0D,+BAET,CAAC,IAAA7B,EAAAwe,EAAAve,UAmPA,OAnPAD,EAQOkf,eAAA,SAAepF,GAAwB,IAAArX,EAAAtE,KACvCshB,EAAwC,CAAA,EAU9C,OARArd,OAAOsd,KAAK5F,GAASzM,QAAQ,SAACsS,GAI5BF,EAHYE,GAGK,IAAIC,GAFN9F,EADH6F,GAGwBld,EACtC,GAGO,IAAIod,MAAMJ,EAAgC,CAC/CnY,IAAK,SAACzB,EAA2Bia,GAC/B,GAAIA,KAAQja,EACV,OAAOA,EAAOia,GAGhB,IAAMH,EAA6B,iBAATG,EAAoBA,EAAOA,EAAK9S,WAE1D,OAAO4S,GAAOG,eAAeJ,EAAYld,EAC3C,GAEJ,EAACzC,EAKM6B,8BAAA,WACL1D,KAAKyf,MAAMC,MAAMhc,8BAA8B,CAC7C4X,MAAOtb,MAEX,EAAC6B,EAMMggB,UAAA,WACL,MAAO,CACLC,UAAW9hB,KAAKsgB,SAChBlY,KAAMpI,KAAKoI,KACX6T,MAAOjc,KAAKic,MACZa,QAAS9c,KAAK8c,QACdgE,WAAY9gB,KAAKugB,UACjBlU,OAAQrM,KAAKqM,OACb0V,gBAAiB/hB,KAAKwgB,eACtB7E,QAAS1X,OAAO+d,YACb/d,OAAOoT,QAAQrX,KAAK2b,SAAqC1E,IACxD,SAAA7U,GAAA,IAAQgR,EAAMhR,EAAA,GAAA,MAAM,CAAdA,EAAA,GAEJ,CACEgR,OAAQA,EAAOhL,KACfuH,KAAMyD,EAAOzD,KACbsS,OAAQ7O,EAAO6O,OACfC,YAAa,MAEhB,IAIT,EAACrgB,EAMMoc,mBAAA,WACLlN,aAAapF,QACX3L,KAAKygB,SACL7T,KAAKmD,UAAS5E,EAAM,CAAA,EAAAnL,KAAK6hB,aAAaM,WAAW,KAErD,EAACtgB,EAMM2d,uBAAA,WACLzO,aAAalF,WAAW7L,KAAKygB,SAC/B,EAACJ,EAemB+B,oBAAmB,SACrC3C,EACAa,EACAxT,EACA5N,QAAAA,IAAAA,IAAAA,EAA2B,CAAE,GAAA,IAAA,IAAAse,EAEzBlC,EAAQ,IAAI+E,EAAMZ,EAAOa,EAAUxT,EAAU5N,GAAS4e,EAAA,WAAA,GAE5B,OAA1BxC,EAAMqF,iBAAyB0B,OAqIpC,SAAAC,EAAAC,EAAA3T,GAGH,IAFC,IAAA4T,IAED,yCAQG,GAAAC,EAAAlS,KAAA,CACHiS,IACkB,KACA,CACA,IAAAxV,EAAa4B,IACb,GAAA5B,GAAgBA,EAAAuD,KAAA,CACf,IAAAmS,GAAmB1V,cAEpCA,EAAAA,EAAAgT,CAKG,CAaH,+EAPE2C,QA+EM,YACDF,EAAAH,KACDG,EAAUlS,OAGZA,KAAAqS,GAAArS,UAAA,EAAArC,GAGF0U,QAGE7C,EAAA,EAAA/S,EAGA,mCAhFDA,EAAA3E,EACH,EAAA,MAgBAoa,EAAAH,kDAOG,qCAcDI,GATA1V,EAAA4B,OAWA5B,EAAKA,EAAKkK,EAIT,QAAAlK,IAAAA,EAAAuD,MAEDvD,EAAAuD,QAAmBA,UAAA,EAAArC,EACjB,CAGD,SAAA0U,EAAAH,GAEDA,KACE7T,MACA5B,EAAAuD,OACAA,KAAAsS,GAAAtS,UAAA,EAAArC,KAGWlB,GAIb8S,GAAAC,MAGI,CAgBF,CAjQiCsC,CAAAS,WAAAA,IAAAA,UAAAtF,IAE/BlC,IACAA,EAAMsF,UACiB,OAAvBkC,EAACxH,EAAMqF,mBAANmC,EAAwBC,SAASzH,EAAMlT,MACxC,EAAA,EAAA,WAAA,OAAA4F,QAAAC,QACwBqN,EAAMsF,YAAUrQ,cAAlCyL,GAAS,GACXA,EAAU5T,MAAQkT,EAAMlT,KAGnB,OAFWoV,EAEX,EAAAxB,EAFPV,EAAQU,CAEQ,EAEnB,EAAAhO,CAduD,GAcvDA,OAAAA,QAAAC,QAAA6P,GAAAA,EAAAvN,KAAAuN,EAAAvN,KAAAkN,SAAAA,GAAAD,OAAAA,EAAAC,EAGInC,CAAK,GAAAkC,EAAAM,EAALxC,EACT,CAAC,MAAA5R,UAAAsE,QAAAE,OAAAxE,EAAA2W,CAAAA,EAAAA,EAOa2C,qBAAP,SACLvC,GAEA,IAAMwC,EAAMlS,aAAatF,QAAQgV,GACjC,GAAIwC,EACF,IACE,OAAOrW,KAAKC,MAAMoW,EACnB,CAAC,MAAAC,GACA,MACD,CAEL,EAAC7C,EAamBnX,gBAClBuW,EACAa,EACA6C,QAAAA,IAAAA,IAAAA,EAA4B,CAAA,GAAE,IAE9B,IAAsEC,EAAND,EAAxD1C,SAAAA,OAAW,IAAH2C,EAAG,mBAAkBA,EAAAC,EAA2BF,EAAzBG,cACvC,QADuD,IAAHD,GAAOA,EACxC,CACjB,IAAME,EAAclD,EAAM2C,qBAAqBvC,GAC/C,GAAI8C,EACF,OAAAvV,QAAAC,QAAOoS,EAAMmD,YAAY/D,EAAO8D,EAAWpY,EAAA,GACtCgY,EAAM,CACT1C,SAAAA,KAGL,CAAA,OAAAzS,QAAAC,QAEsBoS,EAAMoD,WAAWhE,EAAK,IAAMa,IAAW/P,KAAA,SAAxDmT,GACN,OAAOrD,EAAM+B,oBAAoB3C,EAAOa,EAAUoD,EAAQvY,EACrDgY,CAAAA,EAAAA,EACH1C,CAAAA,SAAAA,IACC,EACL,CAAC,MAAA/W,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA,CAAA,EAAA2W,EAamBmD,YAAA,SAClB/D,EACAkE,EACAR,YAAAA,IAAAA,EAA4B,CAAE,OAE9B,OAAAnV,QAAAC,QAAOoS,EAAM+B,oBACX3C,EACAkE,EAAgB7B,UAChB6B,EAAexY,EAEVgY,CAAAA,EAAAA,EACH3C,CAAAA,eAAgBmD,EAAgB5B,gBAChChE,SAAU4F,EAAgBxB,aAGhC,CAAC,MAAAzY,GAAA,OAAAsE,QAAAE,OAAAxE,EAAA2W,CAAAA,EAAAA,EASYoD,WAAU,SACrBhE,EACA9P,EACAf,GAAU,IAAA,OAAAZ,QAAAC,6FAAAuE,CAAA,kBAENxE,QAAAC,QACqBwR,EAAMtP,OAAOL,KAAKH,EAAMf,IAAK2B,KAA9CzD,SAAAA,GACN,OAAOA,EAASH,MAAO,EACxB,WAAQsP,GACP,OAAOoE,EAAMuD,oBAAoB3H,EAClC,GACH,CAAC,MAAAvS,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA,CAAA,EAAA2W,EAQcuD,oBAAP,SAA2B3H,GACjC,MAAO,CACLN,QAAS,KACTmF,WAAY,GACZ1Y,KAAM,QACN0U,QAAS,KACTzQ,OAAQ,EACR4P,MAAAA,EAEJ,EAACoE,CAAA,CA3Te,GAuULoB,gBAaX,WAAA,SAAAA,EACErO,EACAyQ,EACAC,YAAAA,IAAAA,GAAmB,GAAI9jB,KAfT8jB,aAAO,EAAA9jB,KACP2P,UACAvH,EAAAA,KAAAA,UACA6Z,EAAAA,KAAAA,mBACC4B,iBAAW,EAa1B7jB,KAAK8jB,QAAUA,EACf9jB,KAAK2P,KAAOyD,EAAOzD,KACnB3P,KAAKoI,KAAOgL,EAAOA,OACnBpT,KAAKiiB,OAAS7O,EAAO6O,OACrBjiB,KAAK6jB,YAAcA,CACrB,QAACpC,EASMG,eAAP,SACExZ,EACAyb,GAEA,WAAWpC,EACT,CACErO,OAAQhL,EACRuH,KAAM,GACNsS,OAAQ,CAAA,EACRC,YAAa,mBAEf2B,GACA,EAEJ,EAACpC,EAAA3f,UAUK+Z,IAAG,SACPkI,EACAZ,QADAY,IAAAA,IAAAA,EAA2C,eAC3CZ,IAAAA,EAA0B,CAAA,OAAEze,IAAAA,EAUxB1E,KARJgkB,EAQItf,EAAKmf,YAPPzb,EAAI4b,EAAJ5b,KACAqX,EAAKuE,EAALvE,MACAa,EAAQ0D,EAAR1D,SACAC,EAASyD,EAATzD,UACAG,EAAasD,EAAbtD,cACAC,EAAgBqD,EAAhBrD,iBACAF,EAAQuD,EAARvD,SAEqDwD,EAANd,EAAzCzf,8BAAAA,OAAgC,IAAHugB,GAAOA,EAE5C,IAAKvf,EAAKof,QACR,UAAU3f,MACGO,WAAAA,EAAK0D,KAAI,8BAA8BA,EAAI,KAI1D,GAAIsY,EACF,MAAU,IAAAvc,MACMuc,cAAAA,EAActY,6CAA4CsY,EAAcwD,iBAAgB,qCAI1Gxf,EAAKmf,YAAYnD,cAAgB,CAC/BtY,KAAM1D,EAAK0D,KACX8b,iBAAkB9b,GAGpBqX,EAAMC,MAAM/b,+BAA+B,CACzC2X,MAAO5W,EAAKmf,cAId,IAYMM,EAAehZ,EAAA,CAAA,EAZClH,OAAOsd,KAAK7c,EAAKud,QAAQmC,OAC7C,SAACC,EAAKvc,GACJ,IAAMiP,EAASrS,EAAKud,OAAena,GAInC,YAHoBkD,IAAhB+L,EAAM1O,QACRgc,EAAIvc,GAAOiP,EAAM1O,OAEZgc,CACT,EACA,CAAyB,GAMtBN,GAMH,OAAA/V,QAAAC,QAEqBoS,GAAMoD,WAAWhE,EAAO/a,EAAKiL,KALhC,CAClB2U,WAAYH,EACZrD,WAAYP,KAGwDhQ,KAAhEzD,SAAAA,GAIN,OAFApI,EAAKmf,YAAYrE,yBAEVa,GAAM+B,oBAAoB3C,EAAOa,EAAUxT,EAAU,CAC1DpJ,8BAAAA,EACAid,iBAAAA,EACAH,eAAgBE,EAChBD,SAAAA,GACC,EACL,CAAC,MAAA/W,GAAA,OAAAsE,QAAAE,OAAAxE,KAAA+X,CAAA,CAhHD,GC5YI8C,gBAAW,SAAAlU,GAAAkU,SAAAA,WAAAlU,EAAAvQ,MAAAE,KAAAG,YAAAc,IAAAA,CAAAA,EAAAsjB,EAAAlU,GAAAxO,IAAAA,EAAA0iB,EAAAziB,UA+EdyiB,OA/Ec1iB,EAYT2iB,WAAU,WAAA,IAAA,IAAAniB,EACWrC,YAAIgO,QAAAC,QAAJ5L,EAAK8N,OAAOhH,IAAI,QAAMoH,cAAzCkU,GAEN,GAA0B,MAAtBA,EAAWpY,OAEb,MADAhK,EAAK8N,OAAO7C,WAAW/J,8BACjB,IAAIgD,EACL,IAAKke,EAAWrY,GACrB,MAAU,IAAAhI,EAGZ,IAAMsgB,EAASD,EAAW9X,OAAO,OAAAqB,QAAAC,QACN5L,EAAK8N,OAAOhH,IAAG,UAAWub,EAAG9M,KAAKrH,cAAvDoU,GAEN,GAA4B,MAAxBA,EAAatY,OAEf,MADAhK,EAAK8N,OAAO7C,WAAW/J,8BACjB,IAAIgD,EACD,IAACoe,EAAavY,GACvB,UAAUhI,EAGZ,OAAOugB,EAAahY,MAAO,EAAA,EAC7B,CAAC,MAAAjD,UAAAsE,QAAAE,OAAAxE,EAAA7H,CAAAA,EAAAA,EAUK+iB,eAAc,eAAAtgB,IAAAA,EACOtE,KAAI,OAAAgO,QAAAC,QAAJ3J,EAAK6L,OAAOhH,IAAI,QAAMoH,cAAzCkU,GAEN,GAA0B,MAAtBA,EAAWpY,OAEb,MADA/H,EAAK6L,OAAO7C,WAAW/J,8BACjB,IAAIgD,EACD,IAACke,EAAWrY,GACrB,UAAUhI,EAGZ,OAAOqgB,EAAW9X,MAAO,EAC3B,CAAC,MAAAjD,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA7H,CAAAA,EAAAA,EASKgjB,OAAM,WAAA,IAAA,IAAAngB,EACmB1E,YAAIgO,QAAAC,QAAJvJ,EAAKyL,OAAOL,KAAK,YAAUS,KAAlDuU,SAAAA,GAO8C,GAFpDpgB,EAAKyL,OAAO5C,oBAAoB3B,qBAChClH,EAAKyL,OAAOnH,OAAOoC,mBACnB1G,EAAKyL,OAAO7C,WAAW9J,6BAEO,MAA1BshB,EAAezY,iBAGPyY,EAAe1Y,GACzB,MAAM,IAAIhI,CACX,EACH,CAAC,MAAAsF,GAAAsE,OAAAA,QAAAE,OAAAxE,EAAA6a,CAAAA,EAAAA,CAAA,CA/Ec,CAAQrU,GCqCnB6U,gBAAMC,SAAAA,GAQV,SAAAD,EAAYhd,EAAa7I,GAAsB,IAAAmD,GAC7CA,EAAA2iB,EAAA9kB,KAAAF,OAAQqC,MARO4O,aAAO,EAAA5O,EACPiW,YAAIjW,EACJ2G,YAAM3G,EAAAA,EACP8N,YAAM9N,EAAAA,EACNqd,WAAK,EAKnB,IAAMuF,EAAI9Z,EAAA,CACRkC,QAAS,KACT/C,WAAY,QACZ4a,gBAAiB,QACjBjR,qBAAsB,IACtBE,wBAAyB,uBACtBjV,GA2B0B,OApB/BmD,EAAK8N,OAAS,IAAIhD,EAAWpF,EAAKkd,GAKlC5iB,EAAK4O,QAAU,IAAIb,EAAcrI,EAAKkd,GAKtC5iB,EAAKiW,KAAO,IAAIiM,GAAWxc,EAAKkd,GAKhC5iB,EAAKqd,MAAQ,IAAIjM,EAAM1L,EAAKkd,GAK5B5iB,EAAK2G,OAAS,IAAIgB,EAAOib,GAAM5iB,CACjC,CAACpB,EAAA8jB,EAAAC,GAAAnjB,IAAAA,EAAAkjB,EAAAjjB,UAuFA,OAvFAD,EAUDsjB,QAAA,SAAQ3X,GACNxN,KAAKmQ,OAAO3C,KAAOA,CACrB,EAAC3L,EAkBDujB,YAAA,SAAY9E,EAAoB6C,GAC9B,YAD8B,IAAAA,IAAAA,EAA4B,CAAA,GACnD9C,GAAMnX,OAAOlJ,KAAMsgB,EAAU6C,EACtC,EAACthB,EAWKwjB,QAAO,eACX,OAAArX,QAAAC,QAAOjO,KAAKsY,KAAKkM,aACnB,CAAC,MAAA9a,UAAAsE,QAAAE,OAAAxE,KAAA7H,EAUK+iB,eAAc,WAAA,IAClB,OAAA5W,QAAAC,QAAOjO,KAAKsY,KAAKsM,iBACnB,CAAC,MAAAlb,GAAA,OAAAsE,QAAAE,OAAAxE,KAAA7H,EAQKyjB,gBAAA,WAAe,IACnB,OAAAtX,QAAAC,QAAOjO,KAAKiR,QAAQX,WACtB,CAAC,MAAA5G,GAAA,OAAAsE,QAAAE,OAAAxE,EAAA7H,CAAAA,EAAAA,EAQD0J,gBAAA,WACE,OAAOvL,KAAKgJ,OAAOyB,eACrB,EAAC5I,EAQKgjB,OAAM,eACV,OAAA7W,QAAAC,QAAOjO,KAAKsY,KAAKuM,SACnB,CAAC,MAAAnb,GAAA,OAAAsE,QAAAE,OAAAxE,EAAA,CAAA,EAAAqb,CAAA,CAnISC,CAAQ5jB,k1BLxCgB,WASlC,IARA,IAII4L,EAAS,GAEPuY,EAAY,IAAIpP,WAAW,GAE1BnJ,EAAOpF,OAHS,IAGgB,CACrCxH,OAAOolB,OAAOC,gBAAgBF,GAC9B,IAAMG,EAAOH,EAAU,GACnBG,EARe,MASjB1Y,GAXF,qEAWoB2Y,OAAOD,EAVnBE,IAYT,CACD,OAAO5Y,CACT,2HAMqC,SAACgS,GACd,oBAAX5e,QAA0BA,OAAOoL,gBAC1CpL,OAAOoL,eAAeG,QAAQuP,GAAkB8D,EAEpD"}