{"version":3,"sources":["../../src/core/errors.ts","../../src/core/circuit-breaker.ts","../../src/core/rate-limiter.ts","../../src/core/logger.ts","../../src/core/version.ts","../../src/shared/browser-utils.ts","../../src/core/client.ts","../../src/geolocation/ciphertext.ts","../../src/geolocation/client.ts"],"names":[],"mappings":";AAOO,IAAM,WAAA,GAAN,MAAM,YAAA,SAAoB,KAAA,CAAM;AAAA,EAGrC,WAAA,CACE,OAAA,EACO,IAAA,EACA,UAAA,EACA,OAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAJN,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,aAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,YAAA,CAAY,SAAS,CAAA;AAAA,EACnD;AACF,CAAA;AAOO,IAAM,YAAA,GAAN,MAAM,aAAA,SAAqB,WAAA,CAAY;AAAA,EAC5C,WAAA,CAAY,SAAwB,aAAA,EAAyB;AAC3D,IAAA,KAAA,CAAM,SAAS,eAAe,CAAA;AADI,IAAA,IAAA,CAAA,aAAA,GAAA,aAAA;AAElC,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,aAAA,CAAa,SAAS,CAAA;AAAA,EACpD;AACF,CAAA;AAEO,IAAM,eAAA,GAAN,MAAM,gBAAA,SAAwB,WAAA,CAAY;AAAA,EAC/C,WAAA,CAAY,SAAiB,MAAA,EAAmB;AAC9C,IAAA,KAAA,CAAM,OAAA,EAAS,kBAAA,EAAoB,GAAA,EAAK,EAAE,QAAQ,CAAA;AAClD,IAAA,IAAA,CAAK,IAAA,GAAO,iBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,gBAAA,CAAgB,SAAS,CAAA;AAAA,EACvD;AACF,CAAA;AAEO,IAAM,uBAAA,GAAN,MAAM,wBAAA,SAAgC,WAAA,CAAY;AAAA,EACvD,WAAA,CAAY,UAAkB,qBAAA,EAAuB;AACnD,IAAA,KAAA,CAAM,OAAA,EAAS,uBAAuB,GAAG,CAAA;AACzC,IAAA,IAAA,CAAK,IAAA,GAAO,yBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,wBAAA,CAAwB,SAAS,CAAA;AAAA,EAC/D;AACF,CAAA;AAUO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,WAAA,CAAY;AAAA,EACnD,WAAA,CAAY,UAAkB,uBAAA,EAAyB;AACrD,IAAA,KAAA,CAAM,OAAA,EAAS,wBAAwB,GAAG,CAAA;AAC1C,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF,CAAA;AAEO,IAAM,cAAA,GAAN,MAAM,eAAA,SAAuB,WAAA,CAAY;AAAA,EAC9C,YAAmB,UAAA,EAAqB;AACtC,IAAA,KAAA,CAAM,qBAAA,EAAuB,qBAAA,EAAuB,GAAA,EAAK,EAAE,YAAY,CAAA;AADtD,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AAEjB,IAAA,IAAA,CAAK,IAAA,GAAO,gBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,eAAA,CAAe,SAAS,CAAA;AAAA,EACtD;AACF,CAAA;AAEO,IAAM,YAAA,GAAN,MAAM,aAAA,SAAqB,WAAA,CAAY;AAAA,EAC5C,YAAmB,OAAA,EAAiB;AAClC,IAAA,KAAA,CAAM,yBAAyB,OAAO,CAAA,EAAA,CAAA,EAAM,WAAW,GAAA,EAAK,EAAE,SAAS,CAAA;AADtD,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAEjB,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,aAAA,CAAa,SAAS,CAAA;AAAA,EACpD;AACF,CAAA;AAcO,IAAM,uBAAA,GAAN,MAAM,wBAAA,SAAgC,WAAA,CAAY;AAAA,EACvD,WAAA,GAAc;AACZ,IAAA,KAAA,CAAM,iEAAA,EAA8D,wBAAwB,GAAG,CAAA;AAC/F,IAAA,IAAA,CAAK,IAAA,GAAO,yBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,wBAAA,CAAwB,SAAS,CAAA;AAAA,EAC/D;AACF,CAAA;;;AC5EO,IAAM,iBAAN,MAAqB;AAAA,EAU1B,WAAA,CAAY,MAAA,GAA+B,EAAC,EAAG;AAT/C,IAAA,IAAA,CAAQ,KAAA,GAA6B,QAAA;AACrC,IAAA,IAAA,CAAQ,QAAA,GAAW,CAAA;AACnB,IAAA,IAAA,CAAQ,SAAA,GAAY,CAAA;AACpB,IAAA,IAAA,CAAQ,eAAA,GAAiC,IAAA;AAOvC,IAAA,IAAA,CAAK,gBAAA,GAAmB,OAAO,gBAAA,IAAoB,CAAA;AACnD,IAAA,IAAA,CAAK,YAAA,GAAe,OAAO,YAAA,IAAgB,GAAA;AAC3C,IAAA,IAAA,CAAK,gBAAA,GAAmB,OAAO,gBAAA,IAAoB,CAAA;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA,EAKA,UAAA,GAAsB;AACpB,IAAA,IAAI,IAAA,CAAK,UAAU,QAAA,EAAU;AAC3B,MAAA,OAAO,IAAA;AAAA,IACT;AAEA,IAAA,IAAI,IAAA,CAAK,UAAU,MAAA,EAAQ;AACzB,MAAA,MAAM,GAAA,GAAM,KAAK,GAAA,EAAI;AACrB,MAAA,IAAI,KAAK,eAAA,IAAmB,GAAA,GAAM,IAAA,CAAK,eAAA,IAAmB,KAAK,YAAA,EAAc;AAC3E,QAAA,IAAA,CAAK,KAAA,GAAQ,WAAA;AACb,QAAA,IAAA,CAAK,SAAA,GAAY,CAAA;AACjB,QAAA,OAAO,IAAA;AAAA,MACT;AACA,MAAA,OAAO,KAAA;AAAA,IACT;AAGA,IAAA,OAAO,IAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA,GAAkB;AAChB,IAAA,IAAI,IAAA,CAAK,UAAU,WAAA,EAAa;AAC9B,MAAA,IAAA,CAAK,SAAA,EAAA;AACL,MAAA,IAAI,IAAA,CAAK,SAAA,IAAa,IAAA,CAAK,gBAAA,EAAkB;AAC3C,QAAA,IAAA,CAAK,KAAA,GAAQ,QAAA;AACb,QAAA,IAAA,CAAK,QAAA,GAAW,CAAA;AAChB,QAAA,IAAA,CAAK,SAAA,GAAY,CAAA;AACjB,QAAA,IAAA,CAAK,eAAA,GAAkB,IAAA;AAAA,MACzB;AAAA,IACF,CAAA,MAAA,IAAW,IAAA,CAAK,KAAA,KAAU,QAAA,EAAU;AAClC,MAAA,IAAA,CAAK,QAAA,GAAW,CAAA;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA,GAAkB;AAChB,IAAA,IAAA,CAAK,QAAA,EAAA;AACL,IAAA,IAAA,CAAK,eAAA,GAAkB,KAAK,GAAA,EAAI;AAEhC,IAAA,IAAI,IAAA,CAAK,UAAU,WAAA,EAAa;AAC9B,MAAA,IAAA,CAAK,KAAA,GAAQ,MAAA;AACb,MAAA,IAAA,CAAK,SAAA,GAAY,CAAA;AAAA,IACnB,WAAW,IAAA,CAAK,KAAA,KAAU,YAAY,IAAA,CAAK,QAAA,IAAY,KAAK,gBAAA,EAAkB;AAC5E,MAAA,IAAA,CAAK,KAAA,GAAQ,MAAA;AAAA,IACf;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA,GAAkC;AAChC,IAAA,OAAO;AAAA,MACL,OAAO,IAAA,CAAK,KAAA;AAAA,MACZ,UAAU,IAAA,CAAK,QAAA;AAAA,MACf,WAAW,IAAA,CAAK,SAAA;AAAA,MAChB,iBAAiB,IAAA,CAAK,eAAA;AAAA,MACtB,aAAA,EACE,KAAK,KAAA,KAAU,MAAA,IAAU,KAAK,eAAA,GAC1B,IAAA,CAAK,eAAA,GAAkB,IAAA,CAAK,YAAA,GAC5B;AAAA,KACR;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,KAAA,GAAc;AACZ,IAAA,IAAA,CAAK,KAAA,GAAQ,QAAA;AACb,IAAA,IAAA,CAAK,QAAA,GAAW,CAAA;AAChB,IAAA,IAAA,CAAK,SAAA,GAAY,CAAA;AACjB,IAAA,IAAA,CAAK,eAAA,GAAkB,IAAA;AAAA,EACzB;AACF,CAAA;;;ACtGO,IAAM,mBAAN,MAAuB;AAAA,EAAvB,WAAA,GAAA;AACL,IAAA,IAAA,CAAQ,KAAA,GAAuB,IAAA;AAC/B,IAAA,IAAA,CAAQ,SAAA,GAA2B,IAAA;AACnC,IAAA,IAAA,CAAQ,KAAA,GAAuB,IAAA;AAC/B,IAAA,IAAA,CAAQ,UAAA,GAA4B,IAAA;AAAA,EAAA;AAAA;AAAA;AAAA;AAAA,EAKpC,kBAAkB,OAAA,EAAwB;AACxC,IAAA,MAAM,KAAA,GAAQ,OAAA,CAAQ,GAAA,CAAI,mBAAmB,CAAA;AAC7C,IAAA,MAAM,SAAA,GAAY,OAAA,CAAQ,GAAA,CAAI,uBAAuB,CAAA;AACrD,IAAA,MAAM,KAAA,GAAQ,OAAA,CAAQ,GAAA,CAAI,mBAAmB,CAAA;AAC7C,IAAA,MAAM,UAAA,GAAa,OAAA,CAAQ,GAAA,CAAI,aAAa,CAAA;AAE5C,IAAA,IAAI,UAAU,IAAA,EAAM,IAAA,CAAK,KAAA,GAAQ,QAAA,CAAS,OAAO,EAAE,CAAA;AACnD,IAAA,IAAI,cAAc,IAAA,EAAM,IAAA,CAAK,SAAA,GAAY,QAAA,CAAS,WAAW,EAAE,CAAA;AAC/D,IAAA,IAAI,UAAU,IAAA,EAAM,IAAA,CAAK,KAAA,GAAQ,QAAA,CAAS,OAAO,EAAE,CAAA;AACnD,IAAA,IAAI,eAAe,IAAA,EAAM,IAAA,CAAK,UAAA,GAAa,QAAA,CAAS,YAAY,EAAE,CAAA;AAAA,EACpE;AAAA;AAAA;AAAA;AAAA,EAKA,eAAA,GAA2B;AACzB,IAAA,IAAI,IAAA,CAAK,SAAA,KAAc,IAAA,IAAQ,IAAA,CAAK,aAAa,CAAA,EAAG;AAElD,MAAA,IAAI,IAAA,CAAK,UAAU,IAAA,EAAM;AACvB,QAAA,MAAM,MAAM,IAAA,CAAK,KAAA,CAAM,IAAA,CAAK,GAAA,KAAQ,GAAI,CAAA;AACxC,QAAA,IAAI,GAAA,IAAO,KAAK,KAAA,EAAO;AAErB,UAAA,IAAA,CAAK,SAAA,GAAY,IAAA;AACjB,UAAA,IAAA,CAAK,KAAA,GAAQ,IAAA;AACb,UAAA,IAAA,CAAK,UAAA,GAAa,IAAA;AAClB,UAAA,OAAO,KAAA;AAAA,QACT;AAAA,MACF;AACA,MAAA,OAAO,IAAA;AAAA,IACT;AACA,IAAA,OAAO,KAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA,GAA6B;AAC3B,IAAA,OAAO;AAAA,MACL,OAAO,IAAA,CAAK,KAAA;AAAA,MACZ,WAAW,IAAA,CAAK,SAAA;AAAA,MAChB,OAAO,IAAA,CAAK,KAAA;AAAA,MACZ,YAAY,IAAA,CAAK;AAAA,KACnB;AAAA,EACF;AACF,CAAA;;;ACrEO,SAAS,mBAAA,GAA8B;AAC5C,EAAA,OAAO;AAAA,IACL,KAAA,CAAM,SAAiB,IAAA,EAAgC;AACrD,MAAA,OAAA,CAAQ,IAAI,CAAA,aAAA,EAAgB,OAAO,IAAI,IAAA,KAAS,MAAA,GAAY,OAAO,EAAE,CAAA;AAAA,IACvE,CAAA;AAAA,IACA,IAAA,CAAK,SAAiB,IAAA,EAAgC;AACpD,MAAA,OAAA,CAAQ,KAAK,CAAA,aAAA,EAAgB,OAAO,IAAI,IAAA,KAAS,MAAA,GAAY,OAAO,EAAE,CAAA;AAAA,IACxE,CAAA;AAAA,IACA,IAAA,CAAK,SAAiB,IAAA,EAAgC;AACpD,MAAA,OAAA,CAAQ,KAAK,CAAA,aAAA,EAAgB,OAAO,IAAI,IAAA,KAAS,MAAA,GAAY,OAAO,EAAE,CAAA;AAAA,IACxE,CAAA;AAAA,IACA,KAAA,CAAM,SAAiB,IAAA,EAAgC;AACrD,MAAA,OAAA,CAAQ,MAAM,CAAA,aAAA,EAAgB,OAAO,IAAI,IAAA,KAAS,MAAA,GAAY,OAAO,EAAE,CAAA;AAAA,IACzE;AAAA,GACF;AACF;;;ACdO,IAAM,WAAA,GAAc,OAAA;;;ACOpB,SAAS,YAAA,GAAuB;AACrC,EAAA,IAAI,OAAO,MAAA,KAAW,WAAA,IAAe,MAAA,CAAO,UAAA,EAAY;AACtD,IAAA,OAAO,OAAO,UAAA,EAAW;AAAA,EAC3B;AAGA,EAAA,OAAO,sCAAA,CAAuC,OAAA,CAAQ,OAAA,EAAS,CAAC,CAAA,KAAM;AACpE,IAAA,MAAM,CAAA,GAAK,IAAA,CAAK,MAAA,EAAO,GAAI,EAAA,GAAM,CAAA;AACjC,IAAA,MAAM,CAAA,GAAI,CAAA,KAAM,GAAA,GAAM,CAAA,GAAK,IAAI,CAAA,GAAO,CAAA;AACtC,IAAA,OAAO,CAAA,CAAE,SAAS,EAAE,CAAA;AAAA,EACtB,CAAC,CAAA;AACH;AAMO,SAAS,gBAAA,GAA2B;AACzC,EAAA,IAAI,OAAO,MAAA,KAAW,WAAA,IAAe,OAAO,iBAAiB,WAAA,EAAa;AACxE,IAAA,OAAO,YAAA,EAAa;AAAA,EACtB;AAEA,EAAA,MAAM,UAAA,GAAa,kBAAA;AACnB,EAAA,IAAI,QAAA,GAAW,YAAA,CAAa,OAAA,CAAQ,UAAU,CAAA;AAE9C,EAAA,IAAI,CAAC,QAAA,EAAU;AACb,IAAA,QAAA,GAAW,YAAA,EAAa;AACxB,IAAA,YAAA,CAAa,OAAA,CAAQ,YAAY,QAAQ,CAAA;AAAA,EAC3C;AAEA,EAAA,OAAO,QAAA;AACT;AAMO,SAAS,cAAA,GAKd;AACA,EAAA,IAAI,OAAO,cAAc,WAAA,EAAa;AACpC,IAAA,OAAO,EAAE,SAAS,SAAA,EAAW,eAAA,EAAiB,IAAI,EAAA,EAAI,SAAA,EAAW,YAAY,EAAA,EAAG;AAAA,EAClF;AAEA,EAAA,MAAM,KAAK,SAAA,CAAU,SAAA;AACrB,EAAA,IAAI,OAAA,GAAU,SAAA;AACd,EAAA,IAAI,cAAA,GAAiB,EAAA;AACrB,EAAA,IAAI,EAAA,GAAK,SAAA;AACT,EAAA,IAAI,SAAA,GAAY,EAAA;AAGhB,EAAA,IAAI,EAAA,CAAG,QAAA,CAAS,UAAU,CAAA,EAAG;AAC3B,IAAA,OAAA,GAAU,SAAA;AACV,IAAA,cAAA,GAAiB,EAAA,CAAG,KAAA,CAAM,mBAAmB,CAAA,GAAI,CAAC,CAAA,IAAK,EAAA;AAAA,EACzD,CAAA,MAAA,IAAW,EAAA,CAAG,QAAA,CAAS,MAAM,CAAA,EAAG;AAC9B,IAAA,OAAA,GAAU,MAAA;AACV,IAAA,cAAA,GAAiB,EAAA,CAAG,KAAA,CAAM,eAAe,CAAA,GAAI,CAAC,CAAA,IAAK,EAAA;AAAA,EACrD,CAAA,MAAA,IAAW,EAAA,CAAG,QAAA,CAAS,SAAS,CAAA,EAAG;AACjC,IAAA,OAAA,GAAU,QAAA;AACV,IAAA,cAAA,GAAiB,EAAA,CAAG,KAAA,CAAM,kBAAkB,CAAA,GAAI,CAAC,CAAA,IAAK,EAAA;AAAA,EACxD,CAAA,MAAA,IAAW,GAAG,QAAA,CAAS,SAAS,KAAK,CAAC,EAAA,CAAG,QAAA,CAAS,QAAQ,CAAA,EAAG;AAC3D,IAAA,OAAA,GAAU,QAAA;AACV,IAAA,cAAA,GAAiB,EAAA,CAAG,KAAA,CAAM,mBAAmB,CAAA,GAAI,CAAC,CAAA,IAAK,EAAA;AAAA,EACzD,CAAA,MAAA,IAAW,GAAG,QAAA,CAAS,OAAO,KAAK,EAAA,CAAG,QAAA,CAAS,MAAM,CAAA,EAAG;AACtD,IAAA,OAAA,GAAU,OAAA;AACV,IAAA,cAAA,GAAiB,EAAA,CAAG,KAAA,CAAM,yBAAyB,CAAA,GAAI,CAAC,CAAA,IAAK,EAAA;AAAA,EAC/D;AAGA,EAAA,IAAI,EAAA,CAAG,QAAA,CAAS,SAAS,CAAA,EAAG;AAC1B,IAAA,EAAA,GAAK,SAAA;AACL,IAAA,IAAI,EAAA,CAAG,QAAA,CAAS,iBAAiB,CAAA,EAAG,SAAA,GAAY,IAAA;AAAA,SAAA,IACvC,EAAA,CAAG,QAAA,CAAS,gBAAgB,CAAA,EAAG,SAAA,GAAY,KAAA;AAAA,SAAA,IAC3C,EAAA,CAAG,QAAA,CAAS,gBAAgB,CAAA,EAAG,SAAA,GAAY,GAAA;AAAA,SAAA,IAC3C,EAAA,CAAG,QAAA,CAAS,gBAAgB,CAAA,EAAG,SAAA,GAAY,GAAA;AAAA,EACtD,CAAA,MAAA,IAAW,EAAA,CAAG,QAAA,CAAS,UAAU,CAAA,EAAG;AAClC,IAAA,EAAA,GAAK,OAAA;AACL,IAAA,SAAA,GAAY,EAAA,CAAG,MAAM,mBAAmB,CAAA,GAAI,CAAC,CAAA,EAAG,OAAA,CAAQ,IAAA,EAAM,GAAG,CAAA,IAAK,EAAA;AAAA,EACxE,CAAA,MAAA,IAAW,EAAA,CAAG,QAAA,CAAS,OAAO,CAAA,EAAG;AAC/B,IAAA,EAAA,GAAK,OAAA;AAAA,EACP,CAAA,MAAA,IAAW,EAAA,CAAG,QAAA,CAAS,SAAS,CAAA,EAAG;AACjC,IAAA,EAAA,GAAK,SAAA;AACL,IAAA,SAAA,GAAY,EAAA,CAAG,KAAA,CAAM,kBAAkB,CAAA,GAAI,CAAC,CAAA,IAAK,EAAA;AAAA,EACnD,CAAA,MAAA,IAAW,EAAA,CAAG,QAAA,CAAS,KAAK,CAAA,IAAK,EAAA,CAAG,QAAA,CAAS,QAAQ,CAAA,IAAK,EAAA,CAAG,QAAA,CAAS,MAAM,CAAA,EAAG;AAC7E,IAAA,EAAA,GAAK,KAAA;AACL,IAAA,SAAA,GAAY,EAAA,CAAG,MAAM,aAAa,CAAA,GAAI,CAAC,CAAA,EAAG,OAAA,CAAQ,IAAA,EAAM,GAAG,CAAA,IAAK,EAAA;AAAA,EAClE;AAEA,EAAA,OAAO,EAAE,OAAA,EAAS,eAAA,EAAiB,cAAA,EAAgB,EAAA,EAAI,YAAY,SAAA,EAAU;AAC/E;;;AC1EO,IAAe,aAAf,MAA0B;AAAA,EAO/B,YAAY,MAAA,EAA0B;AAHtC,IAAA,IAAA,CAAQ,cAAA,GAAwC,IAAA;AAChD,IAAA,IAAA,CAAQ,gBAAA,GAA4C,IAAA;AAGlD,IAAA,IAAI,CAAC,MAAA,CAAO,OAAA,EAAS,IAAA,EAAK,EAAG;AAC3B,MAAA,MAAM,IAAI,eAAA,CAAgB,oDAAA,EAAsD,CAAC,SAAS,CAAC,CAAA;AAAA,IAC7F;AACA,IAAA,IAAI,CAAC,MAAA,CAAO,QAAA,EAAU,IAAA,EAAK,EAAG;AAC5B,MAAA,MAAM,IAAI,eAAA,CAAgB,qDAAA,EAAuD,CAAC,UAAU,CAAC,CAAA;AAAA,IAC/F;AAEA,IAAA,IAAA,CAAK,YAAA,GAAe,MAAA,CAAO,YAAA,IAAgB,EAAC;AAC5C,IAAA,IAAA,CAAK,MAAA,GAAS,MAAA,CAAO,MAAA,IAAU,mBAAA,EAAoB;AAGnD,IAAA,IAAI,cAAc,MAAA,CAAO,WAAA;AACzB,IAAA,MAAM,MAAA,GAAS,OAAO,MAAA,IAAU,EAAA;AAChC,IAAA,IAAI,MAAA,CAAO,UAAA,CAAW,UAAU,CAAA,EAAG;AACjC,MAAA,IAAI,gBAAgB,YAAA,EAAc;AAChC,QAAA,IAAA,CAAK,MAAA,CAAO,KAAK,gGAA2F,CAAA;AAAA,MAC9G;AACA,MAAA,WAAA,GAAc,SAAA;AAAA,IAChB,WAAW,MAAA,CAAO,UAAA,CAAW,UAAU,CAAA,IAAK,gBAAgB,SAAA,EAAW;AACrE,MAAA,IAAA,CAAK,MAAA,CAAO,KAAK,2IAAsI,CAAA;AAAA,IACzJ;AAEA,IAAA,IAAA,CAAK,MAAA,GAAS;AAAA,MACZ,GAAG,MAAA;AAAA,MACH,MAAA;AAAA,MACA,WAAA;AAAA,MACA,OAAA,EAAS,MAAA,CAAO,OAAA,IAAW,EAAC;AAAA,MAC5B,OAAA,EAAS,OAAO,OAAA,IAAW,GAAA;AAAA,MAC3B,OAAA,EAAS,OAAO,OAAA,IAAW,CAAA;AAAA,MAC3B,KAAA,EAAO,OAAO,KAAA,IAAS,KAAA;AAAA,MACvB,cAAc,IAAA,CAAK,YAAA;AAAA,MACnB,QAAQ,IAAA,CAAK;AAAA,KACf;AAEA,IAAA,IAAI,OAAO,cAAA,EAAgB;AACzB,MAAA,IAAA,CAAK,cAAA,GAAiB,IAAI,cAAA,CAAe,MAAA,CAAO,cAAc,CAAA;AAAA,IAChE;AACA,IAAA,IAAI,OAAO,uBAAA,EAAyB;AAClC,MAAA,IAAA,CAAK,gBAAA,GAAmB,IAAI,gBAAA,EAAiB;AAAA,IAC/C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAgB,OAAA,CACd,QAAA,EACA,UAAuB,EAAC,EACxB,YACA,cAAA,EACY;AACZ,IAAA,MAAM,YAAY,YAAA,EAAa;AAG/B,IAAA,IAAI,KAAK,cAAA,IAAkB,CAAC,IAAA,CAAK,cAAA,CAAe,YAAW,EAAG;AAC5D,MAAA,MAAM,KAAA,GAAQ,IAAI,uBAAA,EAAwB;AAC1C,MAAA,KAAA,CAAM,SAAA,GAAY,SAAA;AAClB,MAAA,MAAM,KAAA;AAAA,IACR;AAGA,IAAA,IAAI,IAAA,CAAK,gBAAA,IAAoB,IAAA,CAAK,gBAAA,CAAiB,iBAAgB,EAAG;AACpE,MAAA,MAAM,MAAA,GAAS,IAAA,CAAK,gBAAA,CAAiB,SAAA,EAAU;AAC/C,MAAA,MAAM,KAAA,GAAQ,IAAI,cAAA,CAAe,MAAA,CAAO,cAAc,MAAS,CAAA;AAC/D,MAAA,KAAA,CAAM,SAAA,GAAY,SAAA;AAClB,MAAA,MAAM,KAAA;AAAA,IACR;AAEA,IAAA,MAAM,MAAM,CAAA,EAAG,UAAA,IAAc,KAAK,MAAA,CAAO,OAAO,GAAG,QAAQ,CAAA,CAAA;AAE3D,IAAA,MAAM,OAAA,GAAkC;AAAA,MACtC,cAAA,EAAgB,kBAAA;AAAA,MAChB,aAAA,EAAe,KAAK,MAAA,CAAO,QAAA;AAAA,MAC3B,eAAA,EAAiB,iBAAiB,WAAW,CAAA,CAAA;AAAA,MAC7C,cAAA,EAAgB,SAAA;AAAA,MAChB,GAAG,KAAK,MAAA,CAAO,OAAA;AAAA,MACf,GAAK,OAAA,CAAQ,OAAA,IAAsC;AAAC,KACtD;AAEA,IAAA,IAAI,IAAA,CAAK,OAAO,MAAA,EAAQ;AACtB,MAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,IAAA,CAAK,OAAO,MAAM,CAAA,CAAA;AAAA,IACzD;AAGA,IAAA,IAAI,IAAA,CAAK,MAAA,CAAO,WAAA,KAAgB,SAAA,EAAW;AACzC,MAAA,OAAA,CAAQ,WAAW,CAAA,GAAI,MAAA;AAAA,IACzB;AAGA,IAAA,MAAM,MAAA,GAAA,CAAU,OAAA,CAAQ,MAAA,IAAU,KAAA,EAAO,WAAA,EAAY;AACrD,IAAA,IAAI,CAAC,MAAA,EAAQ,KAAA,EAAO,OAAO,CAAA,CAAE,QAAA,CAAS,MAAM,CAAA,EAAG;AAC7C,MAAA,OAAA,CAAQ,iBAAiB,CAAA,GAAI,cAAA,EAAgB,cAAA,IAAkB,YAAA,EAAa;AAAA,IAC9E;AAEA,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,SAAA,GAAY,WAAW,MAAM,UAAA,CAAW,OAAM,EAAG,IAAA,CAAK,OAAO,OAAO,CAAA;AAG1E,IAAA,IAAI,gBAAgB,MAAA,EAAQ;AAC1B,MAAA,IAAI,cAAA,CAAe,OAAO,OAAA,EAAS;AACjC,QAAA,UAAA,CAAW,KAAA,EAAM;AAAA,MACnB,CAAA,MAAO;AACL,QAAA,cAAA,CAAe,MAAA,CAAO,gBAAA,CAAiB,OAAA,EAAS,MAAM,UAAA,CAAW,OAAM,EAAG,EAAE,IAAA,EAAM,IAAA,EAAM,CAAA;AAAA,MAC1F;AAAA,IACF;AAEA,IAAA,IAAI;AAEF,MAAA,IAAI,YAAA,GAA4B,EAAE,GAAG,OAAA,EAAS,OAAA,EAAQ;AACtD,MAAA,KAAA,MAAW,WAAA,IAAe,KAAK,YAAA,EAAc;AAC3C,QAAA,IAAI,YAAY,SAAA,EAAW;AACzB,UAAA,YAAA,GAAe,MAAM,WAAA,CAAY,SAAA,CAAU,GAAA,EAAK,YAAY,CAAA;AAAA,QAC9D;AAAA,MACF;AAEA,MAAA,IAAI,IAAA,CAAK,OAAO,KAAA,EAAO;AACrB,QAAA,IAAA,CAAK,MAAA,CAAO,MAAM,CAAA,EAAG,YAAA,CAAa,UAAU,KAAK,CAAA,CAAA,EAAI,QAAQ,CAAA,CAAE,CAAA;AAAA,MACjE;AAEA,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,GAAG,YAAA;AAAA,QACH,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAGtB,MAAA,IAAI,KAAK,gBAAA,EAAkB;AACzB,QAAA,IAAA,CAAK,gBAAA,CAAiB,iBAAA,CAAkB,QAAA,CAAS,OAAO,CAAA;AAAA,MAC1D;AAGA,MAAA,IAAI,cAAA,EAAgB,iBAAiB,aAAA,EAAe;AAClD,QAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,UAAA,IAAI,UAAmC,EAAC;AACxC,UAAA,IAAI;AAAE,YAAA,OAAA,GAAU,MAAM,SAAS,IAAA,EAAK;AAAA,UAAG,CAAA,CAAA,MAAQ;AAAA,UAAe;AAC9D,UAAA,IAAA,CAAK,mBAAA,CAAoB,QAAA,CAAS,MAAA,EAAQ,OAAA,EAAS,SAAS,CAAA;AAAA,QAC9D;AACA,QAAA,IAAA,CAAK,gBAAgB,SAAA,EAAU;AAC/B,QAAA,MAAM,MAAA,GAAS,MAAM,QAAA,CAAS,WAAA,EAAY;AAC1C,QAAA,OAAO,MAAA;AAAA,MACT;AAEA,MAAA,IAAI,IAAA;AACJ,MAAA,IAAI;AACF,QAAA,IAAA,GAAO,MAAM,SAAS,IAAA,EAAK;AAAA,MAC7B,CAAA,CAAA,MAAQ;AAEN,QAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,UAAA,IAAA,CAAK,mBAAA,CAAoB,SAAS,MAAA,EAAQ;AAAA,YACxC,KAAA,EAAO,CAAA,KAAA,EAAQ,QAAA,CAAS,MAAM,CAAA,CAAA;AAAA,YAC9B,SAAS,QAAA,CAAS;AAAA,aACjB,SAAS,CAAA;AAAA,QACd;AAEA,QAAA,IAAA,CAAK,gBAAgB,SAAA,EAAU;AAC/B,QAAA,OAAO,KAAA,CAAA;AAAA,MACT;AAEA,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,IAAA,CAAK,oBAAoB,QAAA,CAAS,MAAA,EAAQ,IAAA,IAAQ,IAAI,SAAS,CAAA;AAAA,MACjE;AAGA,MAAA,IAAA,CAAK,gBAAgB,SAAA,EAAU;AAG/B,MAAA,IAAI,MAAA,GAAkB,IAAA;AACtB,MAAA,KAAA,MAAW,WAAA,IAAe,KAAK,YAAA,EAAc;AAC3C,QAAA,IAAI,YAAY,UAAA,EAAY;AAC1B,UAAA,MAAA,GAAS,MAAM,WAAA,CAAY,UAAA,CAAW,GAAA,EAAK,MAAM,CAAA;AAAA,QACnD;AAAA,MACF;AAEA,MAAA,IAAI,IAAA,CAAK,OAAO,KAAA,EAAO;AACrB,QAAA,IAAA,CAAK,MAAA,CAAO,KAAA,CAAM,CAAA,UAAA,EAAa,QAAA,CAAS,MAAM,CAAA,CAAE,CAAA;AAAA,MAClD;AAEA,MAAA,OAAO,MAAA;AAAA,IACT,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AAGtB,MAAA,IACE,iBAAiB,WAAA,IACjB,KAAA,CAAM,UAAA,IACN,KAAA,CAAM,cAAc,GAAA,EACpB;AACA,QAAA,IAAA,CAAK,gBAAgB,SAAA,EAAU;AAAA,MACjC,CAAA,MAAA,IAAW,KAAA,YAAiB,YAAA,IAAgB,KAAA,YAAiB,YAAA,EAAc;AACzE,QAAA,IAAA,CAAK,gBAAgB,SAAA,EAAU;AAAA,MACjC;AAGA,MAAA,IAAI,KAAA,YAAiB,WAAA,IAAe,CAAC,KAAA,CAAM,SAAA,EAAW;AACpD,QAAA,KAAA,CAAM,SAAA,GAAY,SAAA;AAAA,MACpB;AAGA,MAAA,IAAI,iBAAiB,KAAA,EAAO;AAC1B,QAAA,KAAA,MAAW,WAAA,IAAe,KAAK,YAAA,EAAc;AAC3C,UAAA,IAAI,YAAY,OAAA,EAAS;AACvB,YAAA,MAAM,WAAA,CAAY,OAAA,CAAQ,GAAA,EAAK,KAAK,CAAA;AAAA,UACtC;AAAA,QACF;AAAA,MACF;AAEA,MAAA,IAAI,iBAAiB,KAAA,EAAO;AAC1B,QAAA,IAAI,KAAA,CAAM,SAAS,YAAA,EAAc;AAE/B,UAAA,IAAI,cAAA,EAAgB,QAAQ,OAAA,EAAS;AACnC,YAAA,MAAM,UAAA,GAAa,IAAI,WAAA,CAAY,iBAAA,EAAmB,iBAAiB,CAAA;AACvE,YAAA,UAAA,CAAW,SAAA,GAAY,SAAA;AACvB,YAAA,MAAM,UAAA;AAAA,UACR;AACA,UAAA,IAAA,CAAK,gBAAgB,SAAA,EAAU;AAC/B,UAAA,MAAM,YAAA,GAAe,IAAI,YAAA,CAAa,IAAA,CAAK,OAAO,OAAO,CAAA;AACzD,UAAA,YAAA,CAAa,SAAA,GAAY,SAAA;AACzB,UAAA,MAAM,YAAA;AAAA,QACR;AACA,QAAA,IAAI,iBAAiB,WAAA,EAAa;AAChC,UAAA,MAAM,KAAA;AAAA,QACR;AAAA,MACF;AAEA,MAAA,MAAM,YAAA,GAAe,IAAI,YAAA,CAAa,wBAAA,EAA0B,KAAK,CAAA;AACrE,MAAA,YAAA,CAAa,SAAA,GAAY,SAAA;AACzB,MAAA,IAAA,CAAK,gBAAgB,SAAA,EAAU;AAC/B,MAAA,MAAM,YAAA;AAAA,IACR;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAgB,gBAAA,CACd,QAAA,EACA,OAAA,GAAuB,EAAC,EACxB,UAAA,EACA,OAAA,GAAkB,IAAA,CAAK,MAAA,CAAO,OAAA,EAC9B,cAAA,EACY;AACZ,IAAA,IAAI,SAAA;AAEJ,IAAA,KAAA,IAAS,OAAA,GAAU,CAAA,EAAG,OAAA,IAAW,OAAA,EAAS,OAAA,EAAA,EAAW;AACnD,MAAA,IAAI;AACF,QAAA,OAAO,MAAM,IAAA,CAAK,OAAA,CAAW,QAAA,EAAU,OAAA,EAAS,YAAY,cAAc,CAAA;AAAA,MAC5E,SAAS,KAAA,EAAO;AACd,QAAA,SAAA,GAAY,KAAA,YAAiB,KAAA,GAAQ,KAAA,GAAQ,IAAI,MAAM,eAAe,CAAA;AAGtE,QAAA,IAAI,cAAA,EAAgB,QAAQ,OAAA,EAAS;AACnC,UAAA,MAAM,SAAA;AAAA,QACR;AAGA,QAAA,IACE,SAAA,YAAqB,WAAA,IACrB,SAAA,CAAU,UAAA,IACV,SAAA,CAAU,UAAA,IAAc,GAAA,IACxB,SAAA,CAAU,UAAA,GAAa,GAAA,IACvB,SAAA,CAAU,UAAA,KAAe,GAAA,EACzB;AACA,UAAA,MAAM,SAAA;AAAA,QACR;AAGA,QAAA,IAAI,YAAY,OAAA,EAAS;AACvB,UAAA;AAAA,QACF;AAGA,QAAA,IAAI,KAAA;AACJ,QAAA,IAAI,SAAA,YAAqB,cAAA,IAAkB,SAAA,CAAU,UAAA,EAAY;AAC/D,UAAA,KAAA,GAAQ,UAAU,UAAA,GAAa,GAAA;AAAA,QACjC,CAAA,MAAO;AACL,UAAA,KAAA,GAAQ,IAAA,CAAK,GAAA,CAAI,GAAA,GAAO,IAAA,CAAK,GAAA,CAAI,CAAA,EAAG,OAAO,CAAA,GAAI,IAAA,CAAK,MAAA,EAAO,GAAI,GAAA,EAAM,GAAK,CAAA;AAAA,QAC5E;AACA,QAAA,MAAM,IAAI,OAAA,CAAQ,CAAC,YAAY,UAAA,CAAW,OAAA,EAAS,KAAK,CAAC,CAAA;AAEzD,QAAA,IAAI,IAAA,CAAK,OAAO,KAAA,EAAO;AACrB,UAAA,IAAA,CAAK,MAAA,CAAO,KAAA,CAAM,CAAA,cAAA,EAAiB,OAAA,GAAU,CAAC,CAAA,CAAA,EAAI,OAAO,CAAA,OAAA,EAAU,KAAA,CAAM,OAAA,CAAQ,CAAC,CAAC,CAAA,EAAA,CAAI,CAAA;AAAA,QACzF;AAAA,MACF;AAAA,IACF;AAEA,IAAA,MAAM,IAAI,YAAA,CAAa,CAAA,qBAAA,EAAwB,OAAO,YAAY,SAAS,CAAA;AAAA,EAC7E;AAAA;AAAA;AAAA;AAAA,EAKU,mBAAA,CAAoB,MAAA,EAAgB,IAAA,EAA+B,SAAA,EAA2B;AACtG,IAAA,MAAM,UAAW,IAAA,CAAK,KAAA,IAAqB,IAAA,CAAK,OAAA,IAAsB,QAAQ,MAAM,CAAA,CAAA;AAEpF,IAAA,MAAM,cAAc,MAAmB;AACrC,MAAA,QAAQ,MAAA;AAAQ,QACd,KAAK,GAAA;AACH,UAAA,OAAO,IAAI,WAAA,CAAY,OAAA,EAAS,aAAA,EAAe,GAAG,CAAA;AAAA,QACpD,KAAK,GAAA;AACH,UAAA,OAAO,IAAI,oBAAoB,OAAO,CAAA;AAAA,QACxC,KAAK,GAAA;AACH,UAAA,OAAO,IAAI,WAAA,CAAY,OAAA,EAAS,WAAA,EAAa,GAAG,CAAA;AAAA,QAClD,KAAK,GAAA;AACH,UAAA,OAAO,IAAI,WAAA,CAAY,OAAA,EAAS,WAAA,EAAa,GAAG,CAAA;AAAA,QAClD,KAAK,GAAA;AACH,UAAA,OAAO,IAAI,WAAA,CAAY,OAAA,EAAS,mBAAA,EAAqB,GAAG,CAAA;AAAA,QAC1D,KAAK,GAAA,EAAK;AACR,UAAA,MAAM,UAAA,GAAc,IAAA,CAAK,WAAA,IAAuC,IAAA,CAAK,UAAA;AACrE,UAAA,OAAO,IAAI,eAAe,UAAU,CAAA;AAAA,QACtC;AAAA,QACA,KAAK,GAAA;AAAA,QACL,KAAK,GAAA;AAAA,QACL,KAAK,GAAA;AAAA,QACL,KAAK,GAAA;AACH,UAAA,OAAO,IAAI,wBAAwB,OAAO,CAAA;AAAA,QAC5C;AACE,UAAA,OAAO,IAAI,WAAA,CAAY,OAAA,EAAS,eAAA,EAAiB,MAAM,CAAA;AAAA;AAC3D,IACF,CAAA;AAEA,IAAA,MAAM,QAAQ,WAAA,EAAY;AAC1B,IAAA,IAAI,SAAA,EAAW;AACb,MAAA,KAAA,CAAM,SAAA,GAAY,SAAA;AAAA,IACpB;AACA,IAAA,MAAM,KAAA;AAAA,EACR;AAAA;AAAA;AAAA;AAAA,EAKU,iBAAiB,MAAA,EAAyC;AAClE,IAAA,MAAM,KAAA,GAAQ,IAAI,eAAA,EAAgB;AAElC,IAAA,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAA,CAAE,OAAA,CAAQ,CAAC,CAAC,GAAA,EAAK,KAAK,CAAA,KAAM;AAC/C,MAAA,IAAI,KAAA,KAAU,MAAA,IAAa,KAAA,KAAU,IAAA,EAAM;AACzC,QAAA,IAAI,KAAA,CAAM,OAAA,CAAQ,KAAK,CAAA,EAAG;AACxB,UAAA,KAAA,CAAM,OAAA,CAAQ,CAAC,IAAA,KAAS,KAAA,CAAM,OAAO,GAAA,EAAK,MAAA,CAAO,IAAI,CAAC,CAAC,CAAA;AAAA,QACzD,CAAA,MAAO;AACL,UAAA,KAAA,CAAM,MAAA,CAAO,GAAA,EAAK,MAAA,CAAO,KAAK,CAAC,CAAA;AAAA,QACjC;AAAA,MACF;AAAA,IACF,CAAC,CAAA;AAED,IAAA,MAAM,WAAA,GAAc,MAAM,QAAA,EAAS;AACnC,IAAA,OAAO,WAAA,GAAc,CAAA,CAAA,EAAI,WAAW,CAAA,CAAA,GAAK,EAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA,EAKA,aAAa,MAAA,EAAyC;AACpD,IAAA,IAAA,CAAK,MAAA,GAAS;AAAA,MACZ,GAAG,IAAA,CAAK,MAAA;AAAA,MACR,GAAG,MAAA;AAAA,MACH,OAAA,EAAS;AAAA,QACP,GAAG,KAAK,MAAA,CAAO,OAAA;AAAA,QACf,GAAI,MAAA,CAAO,OAAA,IAAW;AAAC;AACzB,KACF;AACA,IAAA,IAAI,OAAO,MAAA,EAAQ;AACjB,MAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AAAA,IACvB;AACA,IAAA,IAAI,OAAO,YAAA,EAAc;AACvB,MAAA,IAAA,CAAK,eAAe,MAAA,CAAO,YAAA;AAAA,IAC7B;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA,GAAwC;AACtC,IAAA,OAAO,EAAE,GAAG,IAAA,CAAK,MAAA,EAAO;AAAA,EAC1B;AAAA;AAAA;AAAA;AAAA,EAKA,kBAAA,GAA6C;AAC3C,IAAA,OAAO,IAAA,CAAK,gBAAA,EAAkB,SAAA,EAAU,IAAK,IAAA;AAAA,EAC/C;AAAA;AAAA;AAAA;AAAA,EAKA,uBAAA,GAAuD;AACrD,IAAA,OAAO,IAAA,CAAK,cAAA,EAAgB,SAAA,EAAU,IAAK,IAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,GAA8D;AAClE,IAAA,OAAO,IAAA,CAAK,QAAQ,gBAAgB,CAAA;AAAA,EACtC;AACF,CAAA;;;ACxZA,IAAM,0BAAA,GAA6B,CAAA;AAMnC,eAAe,WAAA,CAAY,KAAa,OAAA,EAAkC;AAExE,EAAA,IAAI,OAAO,UAAA,CAAW,MAAA,KAAW,WAAA,IAAe,UAAA,CAAW,OAAO,MAAA,EAAQ;AACxE,IAAA,MAAM,OAAA,GAAU,IAAI,WAAA,EAAY;AAChC,IAAA,MAAM,OAAA,GAAU,OAAA,CAAQ,MAAA,CAAO,GAAG,CAAA;AAClC,IAAA,MAAM,OAAA,GAAU,OAAA,CAAQ,MAAA,CAAO,OAAO,CAAA;AAEtC,IAAA,MAAM,SAAA,GAAY,MAAM,UAAA,CAAW,MAAA,CAAO,MAAA,CAAO,SAAA;AAAA,MAC/C,KAAA;AAAA,MACA,OAAA;AAAA,MACA,EAAE,IAAA,EAAM,MAAA,EAAQ,IAAA,EAAM,SAAA,EAAU;AAAA,MAChC,KAAA;AAAA,MACA,CAAC,MAAM;AAAA,KACT;AAEA,IAAA,MAAM,SAAA,GAAY,MAAM,UAAA,CAAW,MAAA,CAAO,OAAO,IAAA,CAAK,MAAA,EAAQ,WAAW,OAAO,CAAA;AAChF,IAAA,MAAM,KAAA,GAAQ,IAAI,UAAA,CAAW,SAAS,CAAA;AACtC,IAAA,OAAO,MAAM,IAAA,CAAK,KAAK,CAAA,CACpB,GAAA,CAAI,CAAC,CAAA,KAAM,CAAA,CAAE,QAAA,CAAS,EAAE,EAAE,QAAA,CAAS,CAAA,EAAG,GAAG,CAAC,CAAA,CAC1C,KAAK,EAAE,CAAA;AAAA,EACZ;AAIA,EAAA,MAAM,EAAE,UAAA,EAAW,GAAI,MAAM,OAAO,QAAa,CAAA;AACjD,EAAA,OAAO,UAAA,CAAW,UAAU,GAAG,CAAA,CAAE,OAAO,OAAO,CAAA,CAAE,OAAO,KAAK,CAAA;AAC/D;AAKA,SAAS,YAAA,GAA4D;AACnE,EAAA,IAAI,OAAO,QAAA,KAAa,WAAA,EAAa,OAAO,IAAA;AAE5C,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,QAAA,CAAS,aAAA,CAAc,QAAQ,CAAA;AAC9C,IAAA,MAAM,KAAK,MAAA,CAAO,UAAA,CAAW,OAAO,CAAA,IAAK,MAAA,CAAO,WAAW,oBAAoB,CAAA;AAE/E,IAAA,IAAI,CAAC,IAAI,OAAO,IAAA;AAEhB,IAAA,MAAM,SAAA,GAAa,EAAA,CAA6B,YAAA,CAAa,2BAA2B,CAAA;AACxF,IAAA,IAAI,CAAC,WAAW,OAAO,IAAA;AAEvB,IAAA,OAAO;AAAA,MACL,MAAA,EAAS,EAAA,CAA6B,YAAA,CAAa,SAAA,CAAU,qBAAqB,CAAA,IAAK,EAAA;AAAA,MACvF,QAAA,EAAW,EAAA,CAA6B,YAAA,CAAa,SAAA,CAAU,uBAAuB,CAAA,IAAK;AAAA,KAC7F;AAAA,EACF,CAAA,CAAA,MAAQ;AACN,IAAA,OAAO,IAAA;AAAA,EACT;AACF;AAKA,SAAS,cAAA,GAA2D;AAClE,EAAA,IAAI,OAAO,SAAA,KAAc,WAAA,EAAa,OAAO,MAAA;AAE7C,EAAA,MAAM,UAAA,GAAc,SAAA,CAAkB,UAAA,IACnC,SAAA,CAAkB,iBAClB,SAAA,CAAkB,gBAAA;AAErB,EAAA,IAAI,CAAC,YAAY,OAAO,MAAA;AAExB,EAAA,OAAO;AAAA,IACL,gBAAgB,UAAA,CAAW,aAAA;AAAA,IAC3B,UAAU,UAAA,CAAW,QAAA;AAAA,IACrB,KAAK,UAAA,CAAW,GAAA;AAAA,IAChB,WAAW,UAAA,CAAW;AAAA,GACxB;AACF;AAKA,eAAe,kBAAA,CACb,OAAA,GAAkB,GAAA,EAClB,YAAA,GAAwB,IAAA,EACuB;AAC/C,EAAA,IAAI,OAAO,SAAA,KAAc,WAAA,IAAe,CAAC,UAAU,WAAA,EAAa;AAC9D,IAAA,OAAO,IAAA;AAAA,EACT;AAEA,EAAA,OAAO,IAAI,OAAA,CAAQ,CAAC,OAAA,KAAY;AAC9B,IAAA,SAAA,CAAU,WAAA,CAAY,kBAAA;AAAA,MACpB,CAAC,QAAA,KAAa;AACZ,QAAA,MAAM,EAAE,QAAA,EAAU,SAAA,EAAW,QAAA,KAAa,QAAA,CAAS,MAAA;AAGnD,QAAA,IAAI,QAAA,GAAW,GAAA,IAAO,QAAA,GAAW,EAAA,EAAI;AACnC,UAAA,OAAA,CAAQ,IAAI,CAAA;AACZ,UAAA;AAAA,QACF;AACA,QAAA,IAAI,SAAA,GAAY,IAAA,IAAQ,SAAA,GAAY,GAAA,EAAK;AACvC,UAAA,OAAA,CAAQ,IAAI,CAAA;AACZ,UAAA;AAAA,QACF;AACA,QAAA,IAAI,QAAA,KAAa,IAAA,IAAQ,QAAA,KAAa,MAAA,IAAa,YAAY,CAAA,EAAG;AAChE,UAAA,OAAA,CAAQ,IAAI,CAAA;AACZ,UAAA;AAAA,QACF;AAEA,QAAA,OAAA,CAAQ;AAAA,UACN,QAAA;AAAA,UACA,SAAA;AAAA,UACA,QAAA;AAAA,UACA,QAAA,EAAU,QAAA,CAAS,MAAA,CAAO,QAAA,IAAY,MAAA;AAAA,UACtC,iBAAA,EAAmB,QAAA,CAAS,MAAA,CAAO,gBAAA,IAAoB,MAAA;AAAA,UACvD,OAAA,EAAS,QAAA,CAAS,MAAA,CAAO,OAAA,IAAW,MAAA;AAAA,UACpC,KAAA,EAAO,QAAA,CAAS,MAAA,CAAO,KAAA,IAAS,MAAA;AAAA,UAChC,WAAW,QAAA,CAAS;AAAA,SACrB,CAAA;AAAA,MACH,CAAA;AAAA,MACA,MAAM;AAEJ,QAAA,OAAA,CAAQ,IAAI,CAAA;AAAA,MACd,CAAA;AAAA,MACA;AAAA,QACE,kBAAA,EAAoB,YAAA;AAAA,QACpB,OAAA;AAAA,QACA,UAAA,EAAY;AAAA;AACd,KACF;AAAA,EACF,CAAC,CAAA;AACH;AAKA,SAAS,kBAAkB,YAAA,EAAoD;AAC7E,EAAA,MAAM,cAAc,cAAA,EAAe;AACnC,EAAA,MAAM,SAAA,GAAY,YAAA,GAAe,YAAA,EAAa,GAAI,IAAA;AAElD,EAAA,OAAO;AAAA,IACL,WAAW,gBAAA,EAAoB;AAAA,IAC/B,UAAA,EAAY,OAAO,SAAA,KAAc,WAAA,GAAc,UAAU,SAAA,GAAY,EAAA;AAAA,IACrE,QAAA,EAAU,OAAO,SAAA,KAAc,WAAA,GAAc,UAAU,QAAA,GAAW,EAAA;AAAA,IAClE,SAAS,WAAA,CAAY,OAAA;AAAA,IACrB,iBAAiB,WAAA,CAAY,eAAA;AAAA,IAC7B,IAAI,WAAA,CAAY,EAAA;AAAA,IAChB,YAAY,WAAA,CAAY,UAAA;AAAA,IACxB,iBAAA,EACE,OAAO,MAAA,KAAW,WAAA,GAAc,CAAA,EAAG,OAAO,KAAK,CAAA,CAAA,EAAI,MAAA,CAAO,MAAM,CAAA,CAAA,GAAK,MAAA;AAAA,IACvE,QAAA,EAAU,OAAO,SAAA,KAAc,WAAA,GAAc,UAAU,QAAA,GAAW,MAAA;AAAA,IAClE,QAAA,EAAU,IAAA,EAAM,cAAA,IAAiB,EAAG,mBAAkB,EAAG,QAAA;AAAA,IACzD,WAAA,EAAa,OAAO,MAAA,KAAW,WAAA,GAAc,OAAO,UAAA,GAAa,MAAA;AAAA,IACjE,oBAAA,EACE,OAAO,SAAA,KAAc,WAAA,GAAc,UAAU,mBAAA,GAAsB,MAAA;AAAA,IACrE,aAAA,EAAe,OAAO,SAAA,KAAc,WAAA,GAAe,UAAkB,YAAA,GAAe,MAAA;AAAA,IACpF,eACE,OAAO,SAAA,KAAc,WAAA,GAAc,SAAA,CAAU,iBAAiB,CAAA,GAAI,MAAA;AAAA,IACpE,cAAc,SAAA,EAAW,MAAA;AAAA,IACzB,gBAAgB,SAAA,EAAW;AAAA,GAC7B;AACF;AAKA,SAAS,cAAc,OAAA,EAAoC;AACzD,EAAA,MAAM,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,OAAO,CAAA;AAEnC,EAAA,IAAI,OAAO,SAAS,WAAA,EAAa;AAE/B,IAAA,OAAO,IAAA,CAAK,QAAA,CAAS,kBAAA,CAAmB,IAAI,CAAC,CAAC,CAAA;AAAA,EAChD,CAAA,MAAA,IAAW,OAAO,MAAA,KAAW,WAAA,EAAa;AAExC,IAAA,OAAO,OAAO,IAAA,CAAK,IAAA,EAAM,OAAO,CAAA,CAAE,SAAS,QAAQ,CAAA;AAAA,EACrD;AAEA,EAAA,MAAM,IAAI,MAAM,qCAAqC,CAAA;AACvD;AA0BA,eAAsB,kBAAA,CACpB,SACA,MAAA,EAC2B;AAC3B,EAAA,MAAM,WAAqB,EAAC;AAG5B,EAAA,IAAI,eAAA,GAAkB,QAAQ,eAAA,IAAmB,KAAA;AACjD,EAAA,IAAI,mBAAA,GAAsB,KAAA;AAC1B,EAAA,IAAI,QAAQ,WAAA,EAAa;AACvB,IAAA,MAAM,SAAS,OAAA,CAAQ,MAAA;AACvB,IAAA,IACG,MAAA,KAAW,OAAA,IAAW,MAAA,CAAO,WAAA,CAAY,SACzC,MAAA,KAAW,cAAA,IAAkB,MAAA,CAAO,WAAA,CAAY,YAAA,IAChD,MAAA,KAAW,aAAA,IAAiB,MAAA,CAAO,YAAY,WAAA,EAChD;AACA,MAAA,IAAI,CAAC,eAAA,EAAiB;AACpB,QAAA,mBAAA,GAAsB,IAAA;AAAA,MACxB;AACA,MAAA,eAAA,GAAkB,IAAA;AAAA,IACpB;AAAA,EACF;AAGA,EAAA,MAAM,UAAA,GAAa,iBAAA,CAAkB,OAAA,CAAQ,YAAA,KAAiB,KAAK,CAAA;AAGnE,EAAA,IAAI,YAAA;AACJ,EAAA,IAAI,eAAA,EAAiB;AACnB,IAAA,MAAM,WAAW,MAAM,kBAAA;AAAA,MACrB,QAAQ,eAAA,IAAmB,GAAA;AAAA,MAC3B,QAAQ,YAAA,KAAiB;AAAA,KAC3B;AAEA,IAAA,IAAI,QAAA,EAAU;AACZ,MAAA,YAAA,GAAe,QAAA;AAAA,IACjB,WAAW,mBAAA,EAAqB;AAC9B,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,CAAA,6BAAA,EAAgC,QAAQ,MAAM,CAAA,4EAAA;AAAA,OAChD;AAAA,IACF,CAAA,MAAO;AACL,MAAA,QAAA,CAAS,KAAK,iDAAiD,CAAA;AAAA,IACjE;AAAA,EACF;AAGA,EAAA,IAAI,WAAA;AACJ,EAAA,IAAI,OAAA,CAAQ,uBAAuB,KAAA,EAAO;AACxC,IAAA,WAAA,GAAc,cAAA,EAAe;AAAA,EAC/B;AAGA,EAAA,MAAM,GAAA,uBAAU,IAAA,EAAK;AACrB,EAAA,MAAM,MAAA,GAAS,IAAI,IAAA,CAAK,GAAA,CAAI,SAAQ,GAAI,0BAAA,GAA6B,KAAK,GAAI,CAAA;AAE9E,EAAA,MAAM,OAAA,GAA6B;AAAA,IACjC,MAAA,EAAQ,UAAA;AAAA,IACR,QAAA,EAAU,YAAA;AAAA,IACV,OAAA,EAAS,WAAA;AAAA,IACT,QAAA,EAAU;AAAA,MACR,YAAA,EAAc,IAAI,WAAA,EAAY;AAAA,MAC9B,WAAA,EAAa,WAAA;AAAA,MACb,mBAAmB,OAAA,CAAQ,MAAA;AAAA,MAC3B,UAAU,OAAO,MAAA,KAAW,WAAA,GAAc,MAAA,CAAO,SAAS,IAAA,GAAO,MAAA;AAAA,MACjE,UAAU,OAAO,QAAA,KAAa,WAAA,GAAc,QAAA,CAAS,YAAY,MAAA,GAAY;AAAA;AAC/E,GACF;AAGA,EAAA,MAAM,OAAA,GAAU,cAAc,OAAO,CAAA;AAGrC,EAAA,MAAM,SAAA,GAAY,GAAA,CAAI,OAAA,EAAQ,CAAE,SAAS,EAAE,CAAA;AAE3C,EAAA,IAAI,UAAA;AACJ,EAAA,MAAM,OAAA,GAAU,OAAA,CAAQ,UAAA,IAAc,OAAA,CAAQ,MAAA;AAC9C,EAAA,IAAI,OAAA,EAAS;AAEX,IAAA,MAAM,OAAA,GAAU,CAAA,GAAA,EAAM,SAAS,CAAA,CAAA,EAAI,OAAO,CAAA,CAAA;AAC1C,IAAA,MAAM,IAAA,GAAO,MAAM,WAAA,CAAY,OAAA,EAAS,OAAO,CAAA;AAC/C,IAAA,UAAA,GAAa,CAAA,EAAG,OAAO,CAAA,CAAA,EAAI,IAAI,CAAA,CAAA;AAAA,EACjC,CAAA,MAAO;AAEL,IAAA,UAAA,GAAa,CAAA,GAAA,EAAM,SAAS,CAAA,CAAA,EAAI,OAAO,CAAA,CAAA;AAAA,EACzC;AAEA,EAAA,OAAO;AAAA,IACL,UAAA;AAAA,IACA,gBAAA,EAAkB,CAAC,CAAC,YAAA;AAAA,IACpB,QAAA,EAAU,QAAA,CAAS,MAAA,GAAS,CAAA,GAAI,QAAA,GAAW,MAAA;AAAA,IAC3C,WAAA,EAAa,IAAI,WAAA,EAAY;AAAA,IAC7B,SAAA,EAAW,OAAO,WAAA;AAAY,GAChC;AACF;AAMO,SAAS,iBAAiB,UAAA,EAA8C;AAC7E,EAAA,IAAI;AACF,IAAA,MAAM,KAAA,GAAQ,UAAA,CAAW,KAAA,CAAM,GAAG,CAAA;AAElC,IAAA,IAAI,MAAM,MAAA,KAAW,CAAA,IAAK,KAAA,CAAM,MAAA,KAAW,GAAG,OAAO,IAAA;AAErD,IAAA,MAAM,CAAC,OAAA,IAAW,UAAU,CAAA,GAAI,KAAA;AAChC,IAAA,IAAI,OAAA,KAAY,IAAA,IAAQ,OAAA,KAAY,IAAA,EAAM,OAAO,IAAA;AAGjD,IAAA,MAAM,OAAO,kBAAA,CAAmB,MAAA,CAAO,IAAA,CAAK,UAAU,CAAC,CAAC,CAAA;AAExD,IAAA,OAAO,IAAA,CAAK,MAAM,IAAI,CAAA;AAAA,EACxB,CAAA,CAAA,MAAQ;AACN,IAAA,OAAO,IAAA;AAAA,EACT;AACF;AAKO,SAAS,oBAAoB,UAAA,EAA6B;AAC/D,EAAA,IAAI;AACF,IAAA,MAAM,KAAA,GAAQ,UAAA,CAAW,KAAA,CAAM,GAAG,CAAA;AAClC,IAAA,IAAI,MAAM,MAAA,KAAW,CAAA,IAAK,KAAA,CAAM,MAAA,KAAW,GAAG,OAAO,IAAA;AAErD,IAAA,MAAM,YAAA,GAAe,MAAM,CAAC,CAAA;AAC5B,IAAA,MAAM,SAAA,GAAY,QAAA,CAAS,YAAA,EAAc,EAAE,CAAA;AAC3C,IAAA,MAAM,GAAA,GAAM,KAAK,GAAA,EAAI;AACrB,IAAA,MAAM,QAAA,GAAW,6BAA6B,EAAA,GAAK,GAAA;AAEnD,IAAA,OAAO,MAAM,SAAA,GAAY,QAAA;AAAA,EAC3B,CAAA,CAAA,MAAQ;AACN,IAAA,OAAO,IAAA;AAAA,EACT;AACF;;;ACxTO,IAAM,iBAAA,GAAN,cAAgC,UAAA,CAAW;AAAA,EAGhD,YAAY,MAAA,EAAiC;AAE3C,IAAA,MAAM,UAAA,GAA+B;AAAA,MACnC,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,UAAU,MAAA,CAAO,QAAA;AAAA,MACjB,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,OAAA,EAAS,CAAA;AAAA;AAAA,MACT,OAAO,MAAA,CAAO,KAAA;AAAA,MACd,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,aAAa,MAAA,CAAO;AAAA,KACtB;AACA,IAAA,KAAA,CAAM,UAAU,CAAA;AAAA,EAClB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgCA,MAAM,QAAA,CAAS,OAAA,EAA0B,cAAA,EAAgE;AACvG,IAAA,IAAI,CAAC,OAAA,CAAQ,UAAA,EAAY,IAAA,EAAK,EAAG;AAC/B,MAAA,MAAM,IAAI,eAAA,CAAgB,uDAAA,EAAyD,CAAC,YAAY,CAAC,CAAA;AAAA,IACnG;AAKA,IAAA,MAAM,eAAA,GAAkB,QAAQ,kBAAA,GAC5B,OAAA,GACA,EAAE,GAAG,OAAA,EAAS,kBAAA,EAAoB,wBAAA,EAAyB,EAAE;AAGjE,IAAA,OAAO,IAAA,CAAK,iBAAuC,oBAAA,EAAsB;AAAA,MACvE,MAAA,EAAQ,MAAA;AAAA,MACR,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,eAAe;AAAA,KACtC,EAAG,MAAA,EAAW,MAAA,EAAW,cAAc,CAAA;AAAA,EACzC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,MAAM,eAAA,CAAgB,UAAA,EAAoB,cAAA,EAAmE;AAC3G,IAAA,OAAO,IAAA,CAAK,gBAAA;AAAA,MACV,CAAA,4BAAA,CAAA;AAAA,MACA;AAAA,QACE,MAAA,EAAQ,MAAA;AAAA,QACR,MAAM,IAAA,CAAK,SAAA,CAAU,EAAE,WAAA,EAAa,YAAY;AAAA,OAClD;AAAA,MAAG,MAAA;AAAA,MAAW,MAAA;AAAA,MAAW;AAAA,KAC3B;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAsBA,MAAM,aAAa,cAAA,EAAqE;AACtF,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,gBAAA,CAA4C,sBAAsB,MAAA,EAAW,MAAA,EAAW,QAAW,cAAc,CAAA;AAC3I,IAAA,IAAI,OAAO,WAAA,EAAa;AACtB,MAAA,IAAA,CAAK,mBAAmB,MAAA,CAAO,WAAA;AAAA,IACjC;AACA,IAAA,OAAO,MAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,gBAAgB,cAAA,EAA8D;AAClF,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,gBAAA;AAAA,QAC1B,yBAAA;AAAA,QAA2B,KAAA,CAAA;AAAA,QAAW,KAAA,CAAA;AAAA,QAAW,KAAA,CAAA;AAAA,QAAW;AAAA,OAC9D;AACA,MAAA,IAAI,SAAS,WAAA,EAAa;AACxB,QAAA,IAAA,CAAK,mBAAmB,QAAA,CAAS,WAAA;AACjC,QAAA,OAAO,QAAA,CAAS,WAAA;AAAA,MAClB;AAAA,IACF,CAAA,CAAA,MAAQ;AAAA,IAER;AAEA,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,YAAA,CAAa,cAAc,CAAA;AACrD,IAAA,OAAO,MAAA,CAAO,WAAA;AAAA,EAChB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EA+CA,MAAM,kBAAA,CACJ,UAAA,EACA,QACA,SAAA,EACA,UAAA,EACA,cACA,cAAA,EACqC;AACrC,IAAA,IAAI,CAAC,UAAA,EAAY,IAAA,EAAK,EAAG;AACvB,MAAA,MAAM,IAAI,eAAA,CAAgB,uDAAA,EAAyD,CAAC,YAAY,CAAC,CAAA;AAAA,IACnG;AACA,IAAA,IAAI,CAAC,MAAA,EAAQ,IAAA,EAAK,EAAG;AACnB,MAAA,MAAM,IAAI,eAAA,CAAgB,mDAAA,EAAqD,CAAC,QAAQ,CAAC,CAAA;AAAA,IAC3F;AAEA,IAAA,MAAM,OAAA,GAAqC;AAAA,MACzC,WAAA,EAAa,UAAA;AAAA,MACb,OAAA,EAAS,MAAA;AAAA,MACT,UAAA,EAAY,SAAA;AAAA,MACZ,WAAA,EAAa,UAAA;AAAA,MACb,aAAA,EAAe;AAAA,KACjB;AAEA,IAAA,OAAO,IAAA,CAAK,gBAAA;AAAA,MACV,iCAAA;AAAA,MACA;AAAA,QACE,MAAA,EAAQ,MAAA;AAAA,QACR,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,OAAO;AAAA,OAC9B;AAAA,MAAG,MAAA;AAAA,MAAW,MAAA;AAAA,MAAW;AAAA,KAC3B;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgCA,MAAM,iBAAA,CACJ,UAAA,EACA,SAAA,EACA,MAAA,EACA,WACA,cAAA,EAKC;AAID,IAAA,MAAM,gBAAA,GAAmB,MAAM,IAAA,CAAK,kBAAA;AAAA,MAClC,UAAA;AAAA,MACA,MAAA;AAAA,MACA,SAAA;AAAA,MACA,SAAA;AAAA,MACA,MAAA;AAAA,MACA;AAAA,KACF;AAIA,IAAA,MAAM,MAAM,gBAAA,CAAiB,QAAA;AAC7B,IAAA,MAAM,OAAO,gBAAA,CAAiB,IAAA;AAE9B,IAAA,IAAI,CAAC,IAAA,EAAM;AACT,MAAA,MAAM,cAAA,GAAiB,MAAM,IAAA,CAAK,QAAA,CAAS;AAAA,QACzC,UAAA,EAAY,SAAA;AAAA,QACZ,OAAA,EAAS,MAAA;AAAA,QACT,UAAA,EAAY;AAAA,SACX,cAAc,CAAA;AACjB,MAAA,OAAO;AAAA,QACL,kBAAkB,gBAAA,CAAiB,KAAA;AAAA,QACnC,iBAAA,EAAmB,gBAAA;AAAA,QACnB,QAAA,EAAU;AAAA,OACZ;AAAA,IACF;AAEA,IAAA,MAAM,QAAA,GAAiC;AAAA,MACrC,YAAY,gBAAA,CAAiB,UAAA;AAAA,MAC7B,QAAA,EAAU;AAAA,QACR,OAAA,EAAS,KAAK,OAAA,IAAW,EAAA;AAAA,QACzB,WAAA,EAAa,KAAK,WAAA,IAAe,EAAA;AAAA,QACjC,IAAA,EAAM,KAAK,IAAA,IAAQ,EAAA;AAAA,QACnB,MAAA,EAAQ,KAAK,MAAA,IAAU,EAAA;AAAA,QACvB,WAAA,EAAa,EAAA;AAAA,QACb,QAAA,EAAU,KAAK,QAAA,IAAY,CAAA;AAAA,QAC3B,SAAA,EAAW,KAAK,SAAA,IAAa,CAAA;AAAA,QAC7B,QAAA,EAAU,EAAA;AAAA,QACV,MAAA,EAAQ,KAAK,MAAA,IAAU,KAAA;AAAA,QACvB,QAAA,EAAU,KAAK,QAAA,IAAY,KAAA;AAAA,QAC3B,MAAA,EAAQ,KAAK,MAAA,IAAU,KAAA;AAAA,QACvB,UAAA,EAAY,KAAK,UAAA,IAAc,KAAA;AAAA,QAC/B,aAAA,EAAe,IAAA,CAAK,MAAA,IAAU,IAAA,CAAK,YAAY,IAAA,CAAK;AAAA,OACtD;AAAA,MACA,YAAA,EAAc,gBAAA,CAAiB,YAAA,IAAgB,CAAC,IAAA,CAAK,UAAA;AAAA,MACrD,UAAA,EAAY,KAAK,UAAA,IAAc,KAAA;AAAA,MAC/B,UAAA,EAAY,KAAK,KAAA,IAAS,KAAA;AAAA,MAC1B,UAAA,EAAY,KAAK,KAAA,IAAS,CAAA;AAAA,MAC1B,YAAA,EAAc,KAAK,UAAA,IAAc,IAAA,CAAK,gBAClC,IAAA,CAAK,aAAA,GACJ,IAAA,CAAK,OAAA,IAAW,EAAC;AAAA,MACtB,cAAc,gBAAA,CAAiB,YAAA;AAAA,MAC/B,qBAAqB,gBAAA,CAAiB,mBAAA;AAAA,MACtC,SAAA,EAAW,iBAAiB,SAAA,IAAa,EAAA;AAAA,MACzC,cAAc,gBAAA,CAAiB;AAAA,KACjC;AAEA,IAAA,OAAO;AAAA,MACL,kBAAkB,gBAAA,CAAiB,KAAA;AAAA,MACnC,iBAAA,EAAmB,gBAAA;AAAA,MACnB;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAyBA,MAAM,qBAAA,CACJ,OAAA,EACA,cAAA,EACgC;AAChC,IAAA,OAAO,IAAA,CAAK,QAA+B,2BAAA,EAA6B;AAAA,MACtE,MAAA,EAAQ,MAAA;AAAA,MACR,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,OAAO;AAAA,KAC9B,EAAG,QAAW,cAAc,CAAA;AAAA,EAC9B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,kBAAA,CAAmB,SAAA,EAAmB,cAAA,EAA2D;AACrG,IAAA,OAAO,KAAK,OAAA,CAAyB,CAAA,0BAAA,EAA6B,SAAS,CAAA,CAAA,EAAI,MAAA,EAAW,QAAW,cAAc,CAAA;AAAA,EACrH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBA,MAAM,oBAAA,CACJ,OAAA,EACA,UAAA,EACA,cAAA,EACsC;AACtC,IAAA,MAAM,MAAA,GAAkC;AAAA,MACtC,GAAG,OAAA;AAAA,MACH,GAAG;AAAA,KACL;AAEA,IAAA,OAAO,IAAA,CAAK,OAAA;AAAA,MACV,CAAA,yBAAA,EAA4B,IAAA,CAAK,gBAAA,CAAiB,MAAM,CAAC,CAAA,CAAA;AAAA,MACzD,MAAA;AAAA,MAAW,MAAA;AAAA,MAAW;AAAA,KACxB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,qBAAA,CAAsB,SAAA,EAAmB,cAAA,EAAgD;AAC7F,IAAA,MAAM,IAAA,CAAK,OAAA,CAAQ,CAAA,0BAAA,EAA6B,SAAS,CAAA,OAAA,CAAA,EAAW;AAAA,MAClE,MAAA,EAAQ;AAAA,KACV,EAAG,QAAW,cAAc,CAAA;AAAA,EAC9B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,qBAAA,CACJ,SAAA,EACA,OAAA,EACA,cAAA,EACe;AACf,IAAA,MAAM,IAAA,CAAK,OAAA,CAAQ,CAAA,0BAAA,EAA6B,SAAS,CAAA,OAAA,CAAA,EAAW;AAAA,MAClE,MAAA,EAAQ,MAAA;AAAA,MACR,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,OAAO;AAAA,KAC9B,EAAG,QAAW,cAAc,CAAA;AAAA,EAC9B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,oBAAA,CAAqB,KAAA,EAAe,cAAA,EAA6D;AACrG,IAAA,OAAO,KAAK,OAAA,CAA2B,CAAA,uBAAA,EAA0B,KAAK,CAAA,CAAA,EAAI,MAAA,EAAW,QAAW,cAAc,CAAA;AAAA,EAChH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EA4BA,MAAM,eAAA,CACJ,KAAA,EACA,OAAA,EACA,cAAA,EACkC;AAClC,IAAA,OAAO,IAAA,CAAK,OAAA,CAAiC,CAAA,uBAAA,EAA0B,KAAK,CAAA,CAAA,EAAI;AAAA,MAC9E,MAAA,EAAQ,MAAA;AAAA,MACR,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,OAAO;AAAA,KAC9B,EAAG,QAAW,cAAc,CAAA;AAAA,EAC9B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAsBA,MAAM,kBAAA,CACJ,OAAA,EACA,SAAA,EAC2B;AAE3B,IAAA,IAAI,aAAa,IAAA,CAAK,gBAAA;AACtB,IAAA,IAAI,iBAAA,GAAoB,SAAA;AACxB,IAAA,IAAI,CAAC,UAAA,EAAY;AACf,MAAA,UAAA,GAAa,MAAM,KAAK,eAAA,EAAgB;AAAA,IAC1C;AAEA,IAAA,IAAI,CAAC,iBAAA,EAAmB;AACtB,MAAA,iBAAA,GAAoB,MAAM,KAAK,YAAA,EAAa;AAAA,IAC9C;AACA,IAAA,OAAO,kBAAA;AAAA,MACL,EAAE,GAAG,OAAA,EAAS,UAAA,EAAY,cAAc,MAAA,EAAU;AAAA,MAClD;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAKF;AAMA,SAAS,wBAAA,GAAkE;AACzE,EAAA,MAAM,WAAW,gBAAA,EAAiB;AAClC,EAAA,MAAM,cAAc,cAAA,EAAe;AACnC,EAAA,MAAM,SAAA,GAAY,OAAO,SAAA,KAAc,WAAA,GAAc,UAAU,SAAA,GAAY,QAAA;AAC3E,EAAA,MAAM,WAAW,OAAO,SAAA,KAAc,WAAA,GAAe,SAAA,CAAU,YAAY,SAAA,GAAa,QAAA;AAExF,EAAA,OAAO;AAAA,IACL,SAAA,EAAW,QAAA;AAAA,IACX,UAAA,EAAY,SAAA;AAAA,IACZ,QAAA;AAAA,IACA,SAAS,WAAA,CAAY,OAAA;AAAA,IACrB,iBAAiB,WAAA,CAAY,eAAA;AAAA,IAC7B,IAAI,WAAA,CAAY,EAAA;AAAA,IAChB,YAAY,WAAA,CAAY,UAAA;AAAA,IACxB,iBAAA,EAAmB,OAAO,MAAA,KAAW,WAAA,GAAc,CAAA,EAAG,OAAO,KAAK,CAAA,CAAA,EAAI,MAAA,CAAO,MAAM,CAAA,CAAA,GAAK,MAAA;AAAA,IACxF,QAAA,EAAU,OAAO,SAAA,KAAc,WAAA,GAAc,UAAU,QAAA,GAAW,MAAA;AAAA,IAClE,QAAA,EAAU,IAAA,EAAM,cAAA,IAAiB,EAAG,mBAAkB,EAAG;AAAA,GAC3D;AACF","file":"index.mjs","sourcesContent":["/**\n * Error hierarchy for Vesant SDK\n *\n * Provides structured error handling with specific error types\n * for different failure scenarios.\n */\n\nexport class VesantError extends Error {\n  public requestId?: string;\n\n  constructor(\n    message: string,\n    public code: string,\n    public statusCode?: number,\n    public details?: Record<string, unknown>\n  ) {\n    super(message);\n    this.name = 'VesantError';\n    Object.setPrototypeOf(this, VesantError.prototype);\n  }\n}\n\n/** @deprecated Use VesantError instead */\nexport const CGSError = VesantError;\n/** @deprecated Use VesantError instead */\nexport type CGSError = VesantError;\n\nexport class NetworkError extends VesantError {\n  constructor(message: string, public originalError?: unknown) {\n    super(message, 'NETWORK_ERROR');\n    this.name = 'NetworkError';\n    Object.setPrototypeOf(this, NetworkError.prototype);\n  }\n}\n\nexport class ValidationError extends VesantError {\n  constructor(message: string, fields?: string[]) {\n    super(message, 'VALIDATION_ERROR', 400, { fields });\n    this.name = 'ValidationError';\n    Object.setPrototypeOf(this, ValidationError.prototype);\n  }\n}\n\nexport class ServiceUnavailableError extends VesantError {\n  constructor(message: string = 'Service unavailable') {\n    super(message, 'SERVICE_UNAVAILABLE', 503);\n    this.name = 'ServiceUnavailableError';\n    Object.setPrototypeOf(this, ServiceUnavailableError.prototype);\n  }\n}\n\nexport class ComplianceBlockedError extends VesantError {\n  constructor(reasons: string[]) {\n    super('Access blocked due to compliance rules', 'COMPLIANCE_BLOCKED', 403, { reasons });\n    this.name = 'ComplianceBlockedError';\n    Object.setPrototypeOf(this, ComplianceBlockedError.prototype);\n  }\n}\n\nexport class AuthenticationError extends VesantError {\n  constructor(message: string = 'Authentication failed') {\n    super(message, 'AUTHENTICATION_ERROR', 401);\n    this.name = 'AuthenticationError';\n    Object.setPrototypeOf(this, AuthenticationError.prototype);\n  }\n}\n\nexport class RateLimitError extends VesantError {\n  constructor(public retryAfter?: number) {\n    super('Rate limit exceeded', 'RATE_LIMIT_EXCEEDED', 429, { retryAfter });\n    this.name = 'RateLimitError';\n    Object.setPrototypeOf(this, RateLimitError.prototype);\n  }\n}\n\nexport class TimeoutError extends VesantError {\n  constructor(public timeout: number) {\n    super(`Request timeout after ${timeout}ms`, 'TIMEOUT', 408, { timeout });\n    this.name = 'TimeoutError';\n    Object.setPrototypeOf(this, TimeoutError.prototype);\n  }\n}\n\nexport class ComplianceError extends VesantError {\n  constructor(\n    message: string,\n    public originalError?: unknown,\n    code: string = 'COMPLIANCE_ERROR'\n  ) {\n    super(message, code);\n    this.name = 'ComplianceError';\n    Object.setPrototypeOf(this, ComplianceError.prototype);\n  }\n}\n\nexport class CircuitBreakerOpenError extends VesantError {\n  constructor() {\n    super('Circuit breaker is open — requests are temporarily blocked', 'CIRCUIT_BREAKER_OPEN', 503);\n    this.name = 'CircuitBreakerOpenError';\n    Object.setPrototypeOf(this, CircuitBreakerOpenError.prototype);\n  }\n}\n","/**\n * Circuit breaker pattern for resilient HTTP requests.\n *\n * States: closed (normal) -> open (failing) -> half-open (testing) -> closed\n */\n\nexport type CircuitBreakerState = 'closed' | 'open' | 'half-open';\n\nexport interface CircuitBreakerConfig {\n  /** Number of consecutive failures before opening the circuit (default: 5) */\n  failureThreshold?: number;\n  /** Time in ms to wait before transitioning from open to half-open (default: 30000) */\n  resetTimeout?: number;\n  /** Number of successes in half-open state before closing (default: 1) */\n  successThreshold?: number;\n}\n\nexport interface CircuitBreakerStatus {\n  state: CircuitBreakerState;\n  failures: number;\n  successes: number;\n  lastFailureTime: number | null;\n  nextRetryTime: number | null;\n}\n\nexport class CircuitBreaker {\n  private state: CircuitBreakerState = 'closed';\n  private failures = 0;\n  private successes = 0;\n  private lastFailureTime: number | null = null;\n\n  private readonly failureThreshold: number;\n  private readonly resetTimeout: number;\n  private readonly successThreshold: number;\n\n  constructor(config: CircuitBreakerConfig = {}) {\n    this.failureThreshold = config.failureThreshold ?? 5;\n    this.resetTimeout = config.resetTimeout ?? 30000;\n    this.successThreshold = config.successThreshold ?? 1;\n  }\n\n  /**\n   * Check if a request can proceed through the circuit breaker.\n   */\n  canExecute(): boolean {\n    if (this.state === 'closed') {\n      return true;\n    }\n\n    if (this.state === 'open') {\n      const now = Date.now();\n      if (this.lastFailureTime && now - this.lastFailureTime >= this.resetTimeout) {\n        this.state = 'half-open';\n        this.successes = 0;\n        return true;\n      }\n      return false;\n    }\n\n    // half-open: allow requests through for testing\n    return true;\n  }\n\n  /**\n   * Record a successful request.\n   */\n  onSuccess(): void {\n    if (this.state === 'half-open') {\n      this.successes++;\n      if (this.successes >= this.successThreshold) {\n        this.state = 'closed';\n        this.failures = 0;\n        this.successes = 0;\n        this.lastFailureTime = null;\n      }\n    } else if (this.state === 'closed') {\n      this.failures = 0;\n    }\n  }\n\n  /**\n   * Record a failed request.\n   */\n  onFailure(): void {\n    this.failures++;\n    this.lastFailureTime = Date.now();\n\n    if (this.state === 'half-open') {\n      this.state = 'open';\n      this.successes = 0;\n    } else if (this.state === 'closed' && this.failures >= this.failureThreshold) {\n      this.state = 'open';\n    }\n  }\n\n  /**\n   * Get current circuit breaker status.\n   */\n  getStatus(): CircuitBreakerStatus {\n    return {\n      state: this.state,\n      failures: this.failures,\n      successes: this.successes,\n      lastFailureTime: this.lastFailureTime,\n      nextRetryTime:\n        this.state === 'open' && this.lastFailureTime\n          ? this.lastFailureTime + this.resetTimeout\n          : null,\n    };\n  }\n\n  /**\n   * Reset the circuit breaker to its initial closed state.\n   */\n  reset(): void {\n    this.state = 'closed';\n    this.failures = 0;\n    this.successes = 0;\n    this.lastFailureTime = null;\n  }\n}\n","/**\n * Rate limit tracking from API response headers.\n *\n * Tracks X-RateLimit-* headers to enable pre-flight checks\n * before making requests.\n */\n\nexport interface RateLimitStatus {\n  /** Maximum requests allowed in the window */\n  limit: number | null;\n  /** Remaining requests in the current window */\n  remaining: number | null;\n  /** Unix timestamp (seconds) when the rate limit resets */\n  reset: number | null;\n  /** Seconds until the rate limit resets */\n  retryAfter: number | null;\n}\n\nexport class RateLimitTracker {\n  private limit: number | null = null;\n  private remaining: number | null = null;\n  private reset: number | null = null;\n  private retryAfter: number | null = null;\n\n  /**\n   * Extract rate limit information from response headers.\n   */\n  updateFromHeaders(headers: Headers): void {\n    const limit = headers.get('x-ratelimit-limit');\n    const remaining = headers.get('x-ratelimit-remaining');\n    const reset = headers.get('x-ratelimit-reset');\n    const retryAfter = headers.get('retry-after');\n\n    if (limit !== null) this.limit = parseInt(limit, 10);\n    if (remaining !== null) this.remaining = parseInt(remaining, 10);\n    if (reset !== null) this.reset = parseInt(reset, 10);\n    if (retryAfter !== null) this.retryAfter = parseInt(retryAfter, 10);\n  }\n\n  /**\n   * Check if the rate limit has been exceeded based on tracked headers.\n   */\n  isLimitExceeded(): boolean {\n    if (this.remaining !== null && this.remaining <= 0) {\n      // Check if the reset time has passed\n      if (this.reset !== null) {\n        const now = Math.floor(Date.now() / 1000);\n        if (now >= this.reset) {\n          // Reset window has passed, allow requests\n          this.remaining = null;\n          this.reset = null;\n          this.retryAfter = null;\n          return false;\n        }\n      }\n      return true;\n    }\n    return false;\n  }\n\n  /**\n   * Get current rate limit status.\n   */\n  getStatus(): RateLimitStatus {\n    return {\n      limit: this.limit,\n      remaining: this.remaining,\n      reset: this.reset,\n      retryAfter: this.retryAfter,\n    };\n  }\n}\n","import type { Logger } from './config';\n\nexport function createConsoleLogger(): Logger {\n  return {\n    debug(message: string, meta?: Record<string, unknown>) {\n      console.log(`[Vesant SDK] ${message}`, meta !== undefined ? meta : '');\n    },\n    info(message: string, meta?: Record<string, unknown>) {\n      console.info(`[Vesant SDK] ${message}`, meta !== undefined ? meta : '');\n    },\n    warn(message: string, meta?: Record<string, unknown>) {\n      console.warn(`[Vesant SDK] ${message}`, meta !== undefined ? meta : '');\n    },\n    error(message: string, meta?: Record<string, unknown>) {\n      console.error(`[Vesant SDK] ${message}`, meta !== undefined ? meta : '');\n    },\n  };\n}\n\nexport const noopLogger: Logger = {\n  debug() {},\n  info() {},\n  warn() {},\n  error() {},\n};\n","/**\n * Single source of truth for the SDK version.\n */\nexport const SDK_VERSION = '1.6.6';\n","/**\n * Shared browser utility functions.\n *\n * Extracted from ciphertext.ts and hooks.ts to avoid duplication.\n * All functions include SSR guards for safe server-side rendering.\n */\n\n/**\n * Generate a UUID v4\n */\nexport function generateUUID(): string {\n  if (typeof crypto !== 'undefined' && crypto.randomUUID) {\n    return crypto.randomUUID();\n  }\n\n  // Fallback for older browsers\n  return 'xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx'.replace(/[xy]/g, (c) => {\n    const r = (Math.random() * 16) | 0;\n    const v = c === 'x' ? r : (r & 0x3) | 0x8;\n    return v.toString(16);\n  });\n}\n\n/**\n * Generate a unique device ID that persists across sessions.\n * Falls back to a random UUID when localStorage is unavailable (SSR).\n */\nexport function generateDeviceId(): string {\n  if (typeof window === 'undefined' || typeof localStorage === 'undefined') {\n    return generateUUID();\n  }\n\n  const storageKey = 'vesant_device_id';\n  let deviceId = localStorage.getItem(storageKey);\n\n  if (!deviceId) {\n    deviceId = generateUUID();\n    localStorage.setItem(storageKey, deviceId);\n  }\n\n  return deviceId;\n}\n\n/**\n * Detect browser information from user agent.\n * Returns safe defaults when running server-side.\n */\nexport function getBrowserInfo(): {\n  browser: string;\n  browser_version: string;\n  os: string;\n  os_version: string;\n} {\n  if (typeof navigator === 'undefined') {\n    return { browser: 'unknown', browser_version: '', os: 'unknown', os_version: '' };\n  }\n\n  const ua = navigator.userAgent;\n  let browser = 'unknown';\n  let browserVersion = '';\n  let os = 'unknown';\n  let osVersion = '';\n\n  // Detect browser\n  if (ua.includes('Firefox/')) {\n    browser = 'Firefox';\n    browserVersion = ua.match(/Firefox\\/([\\d.]+)/)?.[1] || '';\n  } else if (ua.includes('Edg/')) {\n    browser = 'Edge';\n    browserVersion = ua.match(/Edg\\/([\\d.]+)/)?.[1] || '';\n  } else if (ua.includes('Chrome/')) {\n    browser = 'Chrome';\n    browserVersion = ua.match(/Chrome\\/([\\d.]+)/)?.[1] || '';\n  } else if (ua.includes('Safari/') && !ua.includes('Chrome')) {\n    browser = 'Safari';\n    browserVersion = ua.match(/Version\\/([\\d.]+)/)?.[1] || '';\n  } else if (ua.includes('Opera') || ua.includes('OPR/')) {\n    browser = 'Opera';\n    browserVersion = ua.match(/(?:Opera|OPR)\\/([\\d.]+)/)?.[1] || '';\n  }\n\n  // Detect OS\n  if (ua.includes('Windows')) {\n    os = 'Windows';\n    if (ua.includes('Windows NT 10.0')) osVersion = '10';\n    else if (ua.includes('Windows NT 6.3')) osVersion = '8.1';\n    else if (ua.includes('Windows NT 6.2')) osVersion = '8';\n    else if (ua.includes('Windows NT 6.1')) osVersion = '7';\n  } else if (ua.includes('Mac OS X')) {\n    os = 'macOS';\n    osVersion = ua.match(/Mac OS X ([\\d_]+)/)?.[1]?.replace(/_/g, '.') || '';\n  } else if (ua.includes('Linux')) {\n    os = 'Linux';\n  } else if (ua.includes('Android')) {\n    os = 'Android';\n    osVersion = ua.match(/Android ([\\d.]+)/)?.[1] || '';\n  } else if (ua.includes('iOS') || ua.includes('iPhone') || ua.includes('iPad')) {\n    os = 'iOS';\n    osVersion = ua.match(/OS ([\\d_]+)/)?.[1]?.replace(/_/g, '.') || '';\n  }\n\n  return { browser, browser_version: browserVersion, os, os_version: osVersion };\n}\n","/**\n * Base HTTP client for all Vesant SDK clients\n *\n * Provides common functionality:\n * - Request/response handling\n * - Error handling\n * - Retry logic with exponential backoff\n * - Timeout management\n * - Debug logging\n */\n\nimport type { BaseClientConfig, Logger, RequestInterceptor, RequestOptions } from './config';\nimport {\n  VesantError,\n  NetworkError,\n  TimeoutError,\n  AuthenticationError,\n  RateLimitError,\n  ServiceUnavailableError,\n  ValidationError,\n  CircuitBreakerOpenError,\n} from './errors';\nimport { CircuitBreaker, type CircuitBreakerStatus } from './circuit-breaker';\nimport { RateLimitTracker, type RateLimitStatus } from './rate-limiter';\nimport { createConsoleLogger } from './logger';\nimport { SDK_VERSION } from './version';\nimport { generateUUID } from '../shared/browser-utils';\n\nexport abstract class BaseClient {\n  protected config: BaseClientConfig & { timeout: number; retries: number };\n  protected logger: Logger;\n  private interceptors: RequestInterceptor[];\n  private circuitBreaker: CircuitBreaker | null = null;\n  private rateLimitTracker: RateLimitTracker | null = null;\n\n  constructor(config: BaseClientConfig) {\n    if (!config.baseURL?.trim()) {\n      throw new ValidationError('baseURL is required and must be a non-empty string', ['baseURL']);\n    }\n    if (!config.tenantId?.trim()) {\n      throw new ValidationError('tenantId is required and must be a non-empty string', ['tenantId']);\n    }\n\n    this.interceptors = config.interceptors || [];\n    this.logger = config.logger || createConsoleLogger();\n\n    // Auto-detect environment from API key prefix\n    let environment = config.environment;\n    const apiKey = config.apiKey || '';\n    if (apiKey.startsWith('pk_test_')) {\n      if (environment === 'production') {\n        this.logger.warn('Sandbox API key (pk_test_*) used with environment: \"production\" — overriding to \"sandbox\"');\n      }\n      environment = 'sandbox';\n    } else if (apiKey.startsWith('pk_live_') && environment === 'sandbox') {\n      this.logger.warn('Production API key (pk_live_*) used with environment: \"sandbox\" — sandbox isolation will still be applied for backward compatibility');\n    }\n\n    this.config = {\n      ...config,\n      apiKey,\n      environment,\n      headers: config.headers || {},\n      timeout: config.timeout || 10000,\n      retries: config.retries || 3,\n      debug: config.debug || false,\n      interceptors: this.interceptors,\n      logger: this.logger,\n    };\n\n    if (config.circuitBreaker) {\n      this.circuitBreaker = new CircuitBreaker(config.circuitBreaker);\n    }\n    if (config.enableRateLimitTracking) {\n      this.rateLimitTracker = new RateLimitTracker();\n    }\n  }\n\n  /**\n   * Make an HTTP request with timeout and error handling\n   */\n  protected async request<T>(\n    endpoint: string,\n    options: RequestInit = {},\n    serviceURL?: string,\n    requestOptions?: RequestOptions\n  ): Promise<T> {\n    const requestId = generateUUID();\n\n    // Circuit breaker check\n    if (this.circuitBreaker && !this.circuitBreaker.canExecute()) {\n      const error = new CircuitBreakerOpenError();\n      error.requestId = requestId;\n      throw error;\n    }\n\n    // Rate limit pre-check\n    if (this.rateLimitTracker && this.rateLimitTracker.isLimitExceeded()) {\n      const status = this.rateLimitTracker.getStatus();\n      const error = new RateLimitError(status.retryAfter ?? undefined);\n      error.requestId = requestId;\n      throw error;\n    }\n\n    const url = `${serviceURL || this.config.baseURL}${endpoint}`;\n\n    const headers: Record<string, string> = {\n      'Content-Type': 'application/json',\n      'X-Tenant-ID': this.config.tenantId,\n      'X-SDK-Version': `vesant-sdk-ts/${SDK_VERSION}`,\n      'X-Request-ID': requestId,\n      ...this.config.headers,\n      ...((options.headers as Record<string, string>) || {}),\n    };\n\n    if (this.config.apiKey) {\n      headers['Authorization'] = `Bearer ${this.config.apiKey}`;\n    }\n\n    // Sandbox header\n    if (this.config.environment === 'sandbox') {\n      headers['X-Sandbox'] = 'true';\n    }\n\n    // Idempotency key for mutating methods\n    const method = (options.method || 'GET').toUpperCase();\n    if (['POST', 'PUT', 'PATCH'].includes(method)) {\n      headers['Idempotency-Key'] = requestOptions?.idempotencyKey || generateUUID();\n    }\n\n    const controller = new AbortController();\n    const timeoutId = setTimeout(() => controller.abort(), this.config.timeout);\n\n    // Link consumer AbortSignal to internal controller\n    if (requestOptions?.signal) {\n      if (requestOptions.signal.aborted) {\n        controller.abort();\n      } else {\n        requestOptions.signal.addEventListener('abort', () => controller.abort(), { once: true });\n      }\n    }\n\n    try {\n      // Run onRequest interceptors\n      let finalOptions: RequestInit = { ...options, headers };\n      for (const interceptor of this.interceptors) {\n        if (interceptor.onRequest) {\n          finalOptions = await interceptor.onRequest(url, finalOptions);\n        }\n      }\n\n      if (this.config.debug) {\n        this.logger.debug(`${finalOptions.method || 'GET'} ${endpoint}`);\n      }\n\n      const response = await fetch(url, {\n        ...finalOptions,\n        signal: controller.signal,\n      });\n\n      clearTimeout(timeoutId);\n\n      // Track rate limit headers\n      if (this.rateLimitTracker) {\n        this.rateLimitTracker.updateFromHeaders(response.headers);\n      }\n\n      // Binary download path\n      if (requestOptions?.responseType === 'arraybuffer') {\n        if (!response.ok) {\n          let errData: Record<string, unknown> = {};\n          try { errData = await response.json(); } catch { /* ignore */ }\n          this.handleErrorResponse(response.status, errData, requestId);\n        }\n        this.circuitBreaker?.onSuccess();\n        const buffer = await response.arrayBuffer();\n        return buffer as unknown as T;\n      }\n\n      let data: Record<string, unknown> | undefined;\n      try {\n        data = await response.json();\n      } catch {\n        // Non-JSON response (HTML error pages, 204 No Content, etc.)\n        if (!response.ok) {\n          this.handleErrorResponse(response.status, {\n            error: `HTTP ${response.status}`,\n            message: response.statusText,\n          }, requestId);\n        }\n        // OK response but no JSON body (e.g., 204)\n        this.circuitBreaker?.onSuccess();\n        return undefined as unknown as T;\n      }\n\n      if (!response.ok) {\n        this.handleErrorResponse(response.status, data || {}, requestId);\n      }\n\n      // Record success for circuit breaker\n      this.circuitBreaker?.onSuccess();\n\n      // Run onResponse interceptors\n      let result: unknown = data;\n      for (const interceptor of this.interceptors) {\n        if (interceptor.onResponse) {\n          result = await interceptor.onResponse(url, result);\n        }\n      }\n\n      if (this.config.debug) {\n        this.logger.debug(`Response: ${response.status}`);\n      }\n\n      return result as T;\n    } catch (error) {\n      clearTimeout(timeoutId);\n\n      // Record failure for circuit breaker (skip for client errors)\n      if (\n        error instanceof VesantError &&\n        error.statusCode &&\n        error.statusCode >= 500\n      ) {\n        this.circuitBreaker?.onFailure();\n      } else if (error instanceof NetworkError || error instanceof TimeoutError) {\n        this.circuitBreaker?.onFailure();\n      }\n\n      // Attach requestId to VesantError instances\n      if (error instanceof VesantError && !error.requestId) {\n        error.requestId = requestId;\n      }\n\n      // Run onError interceptors\n      if (error instanceof Error) {\n        for (const interceptor of this.interceptors) {\n          if (interceptor.onError) {\n            await interceptor.onError(url, error);\n          }\n        }\n      }\n\n      if (error instanceof Error) {\n        if (error.name === 'AbortError') {\n          // Distinguish consumer abort from timeout\n          if (requestOptions?.signal?.aborted) {\n            const abortError = new VesantError('Request aborted', 'REQUEST_ABORTED');\n            abortError.requestId = requestId;\n            throw abortError;\n          }\n          this.circuitBreaker?.onFailure();\n          const timeoutError = new TimeoutError(this.config.timeout);\n          timeoutError.requestId = requestId;\n          throw timeoutError;\n        }\n        if (error instanceof VesantError) {\n          throw error;\n        }\n      }\n\n      const networkError = new NetworkError('Network request failed', error);\n      networkError.requestId = requestId;\n      this.circuitBreaker?.onFailure();\n      throw networkError;\n    }\n  }\n\n  /**\n   * Make an HTTP request with retry logic\n   */\n  protected async requestWithRetry<T>(\n    endpoint: string,\n    options: RequestInit = {},\n    serviceURL?: string,\n    retries: number = this.config.retries,\n    requestOptions?: RequestOptions\n  ): Promise<T> {\n    let lastError: Error | undefined;\n\n    for (let attempt = 0; attempt <= retries; attempt++) {\n      try {\n        return await this.request<T>(endpoint, options, serviceURL, requestOptions);\n      } catch (error) {\n        lastError = error instanceof Error ? error : new Error('Unknown error');\n\n        // Don't retry on consumer abort\n        if (requestOptions?.signal?.aborted) {\n          throw lastError;\n        }\n\n        // Don't retry on client errors (4xx), except 429 (rate limit)\n        if (\n          lastError instanceof VesantError &&\n          lastError.statusCode &&\n          lastError.statusCode >= 400 &&\n          lastError.statusCode < 500 &&\n          lastError.statusCode !== 429\n        ) {\n          throw lastError;\n        }\n\n        // Don't retry on last attempt\n        if (attempt === retries) {\n          break;\n        }\n\n        // Use Retry-After for 429, otherwise exponential backoff with jitter\n        let delay: number;\n        if (lastError instanceof RateLimitError && lastError.retryAfter) {\n          delay = lastError.retryAfter * 1000;\n        } else {\n          delay = Math.min(1000 * Math.pow(2, attempt) + Math.random() * 1000, 10000);\n        }\n        await new Promise((resolve) => setTimeout(resolve, delay));\n\n        if (this.config.debug) {\n          this.logger.debug(`Retry attempt ${attempt + 1}/${retries} after ${delay.toFixed(0)}ms`);\n        }\n      }\n    }\n\n    throw new NetworkError(`Request failed after ${retries} retries`, lastError);\n  }\n\n  /**\n   * Handle error responses from API\n   */\n  protected handleErrorResponse(status: number, data: Record<string, unknown>, requestId?: string): never {\n    const message = (data.error as string) || (data.message as string) || `HTTP ${status}`;\n\n    const createError = (): VesantError => {\n      switch (status) {\n        case 400:\n          return new VesantError(message, 'BAD_REQUEST', 400);\n        case 401:\n          return new AuthenticationError(message);\n        case 403:\n          return new VesantError(message, 'FORBIDDEN', 403);\n        case 404:\n          return new VesantError(message, 'NOT_FOUND', 404);\n        case 409:\n          return new VesantError(message, 'DUPLICATE_PROFILE', 409);\n        case 429: {\n          const retryAfter = (data.retry_after as number | undefined) || (data.retryAfter as number | undefined);\n          return new RateLimitError(retryAfter);\n        }\n        case 500:\n        case 502:\n        case 503:\n        case 504:\n          return new ServiceUnavailableError(message);\n        default:\n          return new VesantError(message, 'UNKNOWN_ERROR', status);\n      }\n    };\n\n    const error = createError();\n    if (requestId) {\n      error.requestId = requestId;\n    }\n    throw error;\n  }\n\n  /**\n   * Build query string from parameters\n   */\n  protected buildQueryString(params: Record<string, unknown>): string {\n    const query = new URLSearchParams();\n\n    Object.entries(params).forEach(([key, value]) => {\n      if (value !== undefined && value !== null) {\n        if (Array.isArray(value)) {\n          value.forEach((item) => query.append(key, String(item)));\n        } else {\n          query.append(key, String(value));\n        }\n      }\n    });\n\n    const queryString = query.toString();\n    return queryString ? `?${queryString}` : '';\n  }\n\n  /**\n   * Update client configuration\n   */\n  updateConfig(config: Partial<BaseClientConfig>): void {\n    this.config = {\n      ...this.config,\n      ...config,\n      headers: {\n        ...this.config.headers,\n        ...(config.headers || {}),\n      },\n    };\n    if (config.logger) {\n      this.logger = config.logger;\n    }\n    if (config.interceptors) {\n      this.interceptors = config.interceptors;\n    }\n  }\n\n  /**\n   * Get current configuration (readonly)\n   */\n  getConfig(): Readonly<BaseClientConfig> {\n    return { ...this.config };\n  }\n\n  /**\n   * Get rate limit status from tracked response headers.\n   */\n  getRateLimitStatus(): RateLimitStatus | null {\n    return this.rateLimitTracker?.getStatus() ?? null;\n  }\n\n  /**\n   * Get circuit breaker status.\n   */\n  getCircuitBreakerStatus(): CircuitBreakerStatus | null {\n    return this.circuitBreaker?.getStatus() ?? null;\n  }\n\n  /**\n   * Health check endpoint\n   */\n  async healthCheck(): Promise<{ status: string; timestamp: string }> {\n    return this.request('/api/v1/health');\n  }\n}\n","/**\n * CipherText Generation Utility\n *\n * Collects device fingerprint and location data from the browser,\n * encrypts it into a cipherText that can be validated by the server.\n *\n * The cipherText is used for:\n * - Registration verification\n * - Login verification\n * - Transaction verification\n * - Periodic location checks\n */\n\nimport type {\n  CipherTextPayload,\n  CipherTextOptions,\n  CipherTextResult,\n  CipherTextReason,\n  GeolocationConfigResponse,\n} from './types';\nimport { SDK_VERSION } from '../core/version';\nimport { getBrowserInfo, generateDeviceId as getOrCreateDeviceId } from '../shared/browser-utils';\n\nconst CIPHER_TEXT_EXPIRY_MINUTES = 5;\n\n/**\n * Compute HMAC-SHA256 of a message using the given key.\n * Uses Web Crypto API (browser/modern Node) with node:crypto fallback.\n */\nasync function computeHMAC(key: string, message: string): Promise<string> {\n  // Try Web Crypto API first (works in browsers and Node 18+)\n  if (typeof globalThis.crypto !== 'undefined' && globalThis.crypto.subtle) {\n    const encoder = new TextEncoder();\n    const keyData = encoder.encode(key);\n    const msgData = encoder.encode(message);\n\n    const cryptoKey = await globalThis.crypto.subtle.importKey(\n      'raw',\n      keyData,\n      { name: 'HMAC', hash: 'SHA-256' },\n      false,\n      ['sign'],\n    );\n\n    const signature = await globalThis.crypto.subtle.sign('HMAC', cryptoKey, msgData);\n    const bytes = new Uint8Array(signature);\n    return Array.from(bytes)\n      .map((b) => b.toString(16).padStart(2, '0'))\n      .join('');\n  }\n\n  // Fallback: Node.js crypto module\n  // eslint-disable-next-line @typescript-eslint/no-var-requires\n  const { createHmac } = await import('node:crypto');\n  return createHmac('sha256', key).update(message).digest('hex');\n}\n\n/**\n * Get WebGL renderer information for fingerprinting\n */\nfunction getWebGLInfo(): { vendor: string; renderer: string } | null {\n  if (typeof document === 'undefined') return null;\n\n  try {\n    const canvas = document.createElement('canvas');\n    const gl = canvas.getContext('webgl') || canvas.getContext('experimental-webgl');\n\n    if (!gl) return null;\n\n    const debugInfo = (gl as WebGLRenderingContext).getExtension('WEBGL_debug_renderer_info');\n    if (!debugInfo) return null;\n\n    return {\n      vendor: (gl as WebGLRenderingContext).getParameter(debugInfo.UNMASKED_VENDOR_WEBGL) || '',\n      renderer: (gl as WebGLRenderingContext).getParameter(debugInfo.UNMASKED_RENDERER_WEBGL) || '',\n    };\n  } catch {\n    return null;\n  }\n}\n\n/**\n * Get network information if available\n */\nfunction getNetworkInfo(): CipherTextPayload['network'] | undefined {\n  if (typeof navigator === 'undefined') return undefined;\n\n  const connection = (navigator as any).connection ||\n    (navigator as any).mozConnection ||\n    (navigator as any).webkitConnection;\n\n  if (!connection) return undefined;\n\n  return {\n    effective_type: connection.effectiveType,\n    downlink: connection.downlink,\n    rtt: connection.rtt,\n    save_data: connection.saveData,\n  };\n}\n\n/**\n * Request GPS location from the browser\n */\nasync function requestGPSLocation(\n  timeout: number = 10000,\n  highAccuracy: boolean = true\n): Promise<CipherTextPayload['location'] | null> {\n  if (typeof navigator === 'undefined' || !navigator.geolocation) {\n    return null;\n  }\n\n  return new Promise((resolve) => {\n    navigator.geolocation.getCurrentPosition(\n      (position) => {\n        const { latitude, longitude, accuracy } = position.coords;\n\n        // Validate coordinates\n        if (latitude < -90 || latitude > 90) {\n          resolve(null);\n          return;\n        }\n        if (longitude < -180 || longitude > 180) {\n          resolve(null);\n          return;\n        }\n        if (accuracy !== null && accuracy !== undefined && accuracy <= 0) {\n          resolve(null);\n          return;\n        }\n\n        resolve({\n          latitude,\n          longitude,\n          accuracy,\n          altitude: position.coords.altitude ?? undefined,\n          altitude_accuracy: position.coords.altitudeAccuracy ?? undefined,\n          heading: position.coords.heading ?? undefined,\n          speed: position.coords.speed ?? undefined,\n          timestamp: position.timestamp,\n        });\n      },\n      () => {\n        // Location denied or error - resolve with null (non-fatal)\n        resolve(null);\n      },\n      {\n        enableHighAccuracy: highAccuracy,\n        timeout: timeout,\n        maximumAge: 0,\n      }\n    );\n  });\n}\n\n/**\n * Collect device fingerprint data\n */\nfunction collectDeviceData(includeWebGL: boolean): CipherTextPayload['device'] {\n  const browserInfo = getBrowserInfo();\n  const webglInfo = includeWebGL ? getWebGLInfo() : null;\n\n  return {\n    device_id: getOrCreateDeviceId(),\n    user_agent: typeof navigator !== 'undefined' ? navigator.userAgent : '',\n    platform: typeof navigator !== 'undefined' ? navigator.platform : '',\n    browser: browserInfo.browser,\n    browser_version: browserInfo.browser_version,\n    os: browserInfo.os,\n    os_version: browserInfo.os_version,\n    screen_resolution:\n      typeof screen !== 'undefined' ? `${screen.width}x${screen.height}` : undefined,\n    language: typeof navigator !== 'undefined' ? navigator.language : undefined,\n    timezone: Intl?.DateTimeFormat?.()?.resolvedOptions?.()?.timeZone,\n    color_depth: typeof screen !== 'undefined' ? screen.colorDepth : undefined,\n    hardware_concurrency:\n      typeof navigator !== 'undefined' ? navigator.hardwareConcurrency : undefined,\n    device_memory: typeof navigator !== 'undefined' ? (navigator as any).deviceMemory : undefined,\n    touch_support:\n      typeof navigator !== 'undefined' ? navigator.maxTouchPoints > 0 : undefined,\n    webgl_vendor: webglInfo?.vendor,\n    webgl_renderer: webglInfo?.renderer,\n  };\n}\n\n/**\n * Encode payload to base64\n */\nfunction encodePayload(payload: CipherTextPayload): string {\n  const json = JSON.stringify(payload);\n\n  if (typeof btoa !== 'undefined') {\n    // Browser\n    return btoa(unescape(encodeURIComponent(json)));\n  } else if (typeof Buffer !== 'undefined') {\n    // Node.js\n    return Buffer.from(json, 'utf-8').toString('base64');\n  }\n\n  throw new Error('No base64 encoding method available');\n}\n\n/**\n * Generate a cipherText containing encrypted device and location data\n *\n * @param options - Options for cipherText generation\n * @returns CipherText result with the encrypted string\n *\n * @example\n * ```typescript\n * // Basic usage for login\n * const result = await generateCipherText({ reason: 'login' });\n * console.log(result.cipherText);\n *\n * // With GPS location for registration\n * const result = await generateCipherText({\n *   reason: 'registration',\n *   requestLocation: true,\n *   locationTimeout: 15000\n * });\n *\n * if (result.locationCaptured) {\n *   console.log('GPS location included');\n * }\n * ```\n */\nexport async function generateCipherText(\n  options: CipherTextOptions,\n  config?: GeolocationConfigResponse\n): Promise<CipherTextResult> {\n  const warnings: string[] = [];\n\n  // Auto-enable GPS if tenant config requires it for this event type\n  let requestLocation = options.requestLocation ?? false;\n  let gpsRequiredByConfig = false;\n  if (config?.require_gps) {\n    const reason = options.reason;\n    if (\n      (reason === 'login' && config.require_gps.login) ||\n      (reason === 'registration' && config.require_gps.registration) ||\n      (reason === 'transaction' && config.require_gps.transaction)\n    ) {\n      if (!requestLocation) {\n        gpsRequiredByConfig = true;\n      }\n      requestLocation = true;\n    }\n  }\n\n  // Collect device data\n  const deviceData = collectDeviceData(options.includeWebGL !== false);\n\n  // Optionally request GPS location\n  let locationData: CipherTextPayload['location'] | undefined;\n  if (requestLocation) {\n    const location = await requestGPSLocation(\n      options.locationTimeout || 10000,\n      options.highAccuracy !== false\n    );\n\n    if (location) {\n      locationData = location;\n    } else if (gpsRequiredByConfig) {\n      throw new Error(\n        `GPS location is required for ${options.reason} by tenant configuration, but GPS was not available or permission was denied`\n      );\n    } else {\n      warnings.push('GPS location not available or permission denied');\n    }\n  }\n\n  // Collect network info\n  let networkData: CipherTextPayload['network'] | undefined;\n  if (options.includeNetworkInfo !== false) {\n    networkData = getNetworkInfo();\n  }\n\n  // Build payload\n  const now = new Date();\n  const expiry = new Date(now.getTime() + CIPHER_TEXT_EXPIRY_MINUTES * 60 * 1000);\n\n  const payload: CipherTextPayload = {\n    device: deviceData,\n    location: locationData,\n    network: networkData,\n    metadata: {\n      collected_at: now.toISOString(),\n      sdk_version: SDK_VERSION,\n      collection_reason: options.reason,\n      page_url: typeof window !== 'undefined' ? window.location.href : undefined,\n      referrer: typeof document !== 'undefined' ? document.referrer || undefined : undefined,\n    },\n  };\n\n  // Encode payload (no obfuscation - HTTPS provides transport security)\n  const encoded = encodePayload(payload);\n\n  // Create final cipherText with version and timestamp prefix\n  const timestamp = now.getTime().toString(36); // Base36 timestamp\n\n  let cipherText: string;\n  const hmacKey = options.signingKey || options.apiKey;\n  if (hmacKey) {\n    // v02: HMAC-signed — format: 02.{timestamp}.{base64}.{hmac}\n    const message = `02.${timestamp}.${encoded}`;\n    const hmac = await computeHMAC(hmacKey, message);\n    cipherText = `${message}.${hmac}`;\n  } else {\n    // v01: unsigned (backwards compat)\n    cipherText = `01.${timestamp}.${encoded}`;\n  }\n\n  return {\n    cipherText,\n    locationCaptured: !!locationData,\n    warnings: warnings.length > 0 ? warnings : undefined,\n    generatedAt: now.toISOString(),\n    expiresAt: expiry.toISOString(),\n  };\n}\n\n/**\n * Decode a cipherText (for debugging/testing - not for production use)\n * In production, decryption happens on the server\n */\nexport function decodeCipherText(cipherText: string): CipherTextPayload | null {\n  try {\n    const parts = cipherText.split('.');\n    // v01: 3 parts, v02: 4 parts (4th is HMAC — ignored when decoding)\n    if (parts.length !== 3 && parts.length !== 4) return null;\n\n    const [version, , encodedB64] = parts;\n    if (version !== '01' && version !== '02') return null;\n\n    // Decode matches encode: just base64 decode (no obfuscation)\n    const json = decodeURIComponent(escape(atob(encodedB64)));\n\n    return JSON.parse(json) as CipherTextPayload;\n  } catch {\n    return null;\n  }\n}\n\n/**\n * Check if a cipherText is expired\n */\nexport function isCipherTextExpired(cipherText: string): boolean {\n  try {\n    const parts = cipherText.split('.');\n    if (parts.length !== 3 && parts.length !== 4) return true;\n\n    const timestampB36 = parts[1];\n    const timestamp = parseInt(timestampB36, 36);\n    const now = Date.now();\n    const expiryMs = CIPHER_TEXT_EXPIRY_MINUTES * 60 * 1000;\n\n    return now - timestamp > expiryMs;\n  } catch {\n    return true;\n  }\n}\n\n// Re-export types\nexport type { CipherTextPayload, CipherTextOptions, CipherTextResult, CipherTextReason, GeolocationConfigResponse };\n","/**\n * GeolocationClient - TypeScript SDK for Vesant Geolocation & Compliance Service\n *\n * Provides type-safe methods to interact with the geolocation service API.\n * Extends BaseClient for consistent retry logic, timeout handling, and error management.\n */\n\nimport { BaseClient } from '../core/client';\nimport { ValidationError } from '../core/errors';\nimport { generateDeviceId, getBrowserInfo } from '../shared/browser-utils';\nimport type { BaseClientConfig, RequestOptions } from '../core/config';\nimport type {\n  GeolocationClientConfig,\n  GeolocationConfigResponse,\n  VerifyIPRequest,\n  LocationVerification,\n  ComplianceCheckResponse,\n  PaginationParams,\n  // Location Request Types\n  LocationRequest,\n  CreateLocationRequestRequest,\n  LocationRequestResult,\n  LocationRequestFilters,\n  LocationRequestListResponse,\n  ResendLocationRequestRequest,\n  LocationShareInfo,\n  LocationCaptureRequest,\n  LocationCaptureResponse,\n  // CipherText Types\n  ValidateCipherTextRequest,\n  ValidateCipherTextResponse,\n  CipherTextReason,\n  CipherTextCustomerData,\n  CipherTextOptions,\n  CipherTextResult,\n} from './types';\nimport { generateCipherText as generateCipherTextUtil } from './ciphertext';\n\n/**\n * GeolocationClient extends BaseClient for:\n * - Consistent retry logic with exponential backoff\n * - Unified error handling (VesantError, NetworkError, TimeoutError, etc.)\n * - Automatic timeout management\n * - Debug logging\n *\n * All geolocation verification calls use requestWithRetry() to handle\n * transient failures gracefully.\n */\nexport class GeolocationClient extends BaseClient {\n  private cachedSigningKey?: string;\n\n  constructor(config: GeolocationClientConfig) {\n    // Convert GeolocationClientConfig to BaseClientConfig\n    const baseConfig: BaseClientConfig = {\n      baseURL: config.baseURL,\n      tenantId: config.tenantId,\n      apiKey: config.apiKey,\n      headers: config.headers,\n      timeout: config.timeout,\n      retries: 3, // Default retry count for geolocation calls\n      debug: config.debug,\n      logger: config.logger,\n      environment: config.environment,\n    };\n    super(baseConfig);\n  }\n\n  // ============================================================================\n  // IP Verification & Compliance\n  // ============================================================================\n\n  /**\n   * Verify an IP address and check compliance\n   *\n   * Uses requestWithRetry() for automatic retry on transient failures.\n   *\n   * @param request - Verification request with IP, user ID, event type, and optional device fingerprint\n   * @returns Location verification result with risk assessment\n   *\n   * @example\n   * ```typescript\n   * const result = await client.verifyIP({\n   *   ip_address: \"8.8.8.8\",\n   *   user_id: \"user_123\",\n   *   event_type: \"login\",\n   *   device_fingerprint: {\n   *     device_id: \"device_abc\",\n   *     user_agent: navigator.userAgent,\n   *     platform: \"web\"\n   *   }\n   * });\n   *\n   * if (result.is_blocked) {\n   *   console.log(\"Access blocked:\", result.risk_reasons);\n   * }\n   * ```\n   */\n  async verifyIP(request: VerifyIPRequest, requestOptions?: RequestOptions): Promise<LocationVerification> {\n    if (!request.ip_address?.trim()) {\n      throw new ValidationError('ip_address is required and must be a non-empty string', ['ip_address']);\n    }\n\n    // Auto-collect device fingerprint when not provided by the caller.\n    // This ensures device trust detection (new device, fingerprint changes)\n    // works even when the integrator doesn't explicitly pass device data.\n    const enrichedRequest = request.device_fingerprint\n      ? request\n      : { ...request, device_fingerprint: collectDeviceFingerprint() };\n\n    // Use requestWithRetry for critical verification calls\n    return this.requestWithRetry<LocationVerification>('/api/v1/geo/verify', {\n      method: 'POST',\n      body: JSON.stringify(enrichedRequest),\n    }, undefined, undefined, requestOptions);\n  }\n\n  /**\n   * Check compliance for a specific country\n   *\n   * @param countryISO - ISO 3166-1 alpha-2 country code (e.g., \"US\", \"GB\")\n   * @returns Jurisdiction configuration and compliance status\n   *\n   * @example\n   * ```typescript\n   * const compliance = await client.checkCompliance(\"KP\"); // North Korea\n   * if (!compliance.is_compliant) {\n   *   console.log(\"Country is not allowed:\", compliance.jurisdiction?.status);\n   * }\n   * ```\n   */\n  async checkCompliance(countryISO: string, requestOptions?: RequestOptions): Promise<ComplianceCheckResponse> {\n    return this.requestWithRetry<ComplianceCheckResponse>(\n      `/api/v1/geo/check-compliance`,\n      {\n        method: 'POST',\n        body: JSON.stringify({ country_iso: countryISO }),\n      }, undefined, undefined, requestOptions\n    );\n  }\n\n  // ============================================================================\n  // GPS Configuration\n  // ============================================================================\n\n  /**\n   * Get the tenant's GPS requirement configuration\n   *\n   * Returns which event types require GPS location to be collected.\n   * Use this to auto-enable GPS collection in generateCipherText when required.\n   *\n   * @returns GPS requirement config per event type\n   *\n   * @example\n   * ```typescript\n   * const config = await client.getGPSConfig();\n   * if (config.require_gps.login) {\n   *   // GPS is required for login — auto-enable location\n   * }\n   * ```\n   */\n  async getGPSConfig(requestOptions?: RequestOptions): Promise<GeolocationConfigResponse> {\n    const config = await this.requestWithRetry<GeolocationConfigResponse>('/api/v1/geo/config', undefined, undefined, undefined, requestOptions);\n    if (config.signing_key) {\n      this.cachedSigningKey = config.signing_key;\n    }\n    return config;\n  }\n\n  /**\n   * Fetch the signing key from the dedicated authenticated endpoint.\n   *\n   * Falls back to getGPSConfig() for backward compatibility with older servers\n   * that don't expose `/api/v1/geo/signing-key`.\n   *\n   * @returns The signing key string, or undefined if unavailable\n   */\n  async fetchSigningKey(requestOptions?: RequestOptions): Promise<string | undefined> {\n    try {\n      const response = await this.requestWithRetry<{ signing_key: string }>(\n        '/api/v1/geo/signing-key', undefined, undefined, undefined, requestOptions,\n      );\n      if (response.signing_key) {\n        this.cachedSigningKey = response.signing_key;\n        return response.signing_key;\n      }\n    } catch {\n      // Older servers may not have this endpoint — fall back to config\n    }\n\n    const config = await this.getGPSConfig(requestOptions);\n    return config.signing_key;\n  }\n\n  // ============================================================================\n  // CipherText Validation\n  // ============================================================================\n\n  /**\n   * Validate a cipherText generated by the frontend SDK\n   *\n   * The cipherText contains encrypted device fingerprint and optional location data.\n   * This method decrypts and validates the data, returning device info, location,\n   * and risk assessment.\n   *\n   * @param cipherText - The encrypted cipherText string from generateCipherText()\n   * @param userId - User ID associated with this verification\n   * @param eventType - Reason for verification (login, registration, etc.)\n   * @param expectedIP - Optional expected IP address for additional validation\n   * @param customerData - Optional customer data for risk profile creation (used when user is blocked)\n   * @returns Validation result with device info, location, and risk assessment\n   *\n   * @example\n   * ```typescript\n   * // Validate cipherText during registration with customer data\n   * const result = await client.validateCipherText(\n   *   cipherText,\n   *   \"user_123\",\n   *   \"registration\",\n   *   clientIP,\n   *   {\n   *     full_name: \"John Doe\",\n   *     email: \"john@example.com\",\n   *     country: \"US\",\n   *     state: \"CA\"\n   *   }\n   * );\n   *\n   * if (!result.valid) {\n   *   console.log(\"CipherText validation failed:\", result.errors);\n   *   return;\n   * }\n   *\n   * if (result.risk.is_blocked) {\n   *   console.log(\"Access blocked:\", result.risk.block_reasons);\n   *   // A risk profile with full customer data has been created for the alert\n   * }\n   * ```\n   */\n  async validateCipherText(\n    cipherText: string,\n    userId: string,\n    eventType: CipherTextReason,\n    expectedIP?: string,\n    customerData?: CipherTextCustomerData,\n    requestOptions?: RequestOptions\n  ): Promise<ValidateCipherTextResponse> {\n    if (!cipherText?.trim()) {\n      throw new ValidationError('cipherText is required and must be a non-empty string', ['cipherText']);\n    }\n    if (!userId?.trim()) {\n      throw new ValidationError('userId is required and must be a non-empty string', ['userId']);\n    }\n\n    const request: ValidateCipherTextRequest = {\n      cipher_text: cipherText,\n      user_id: userId,\n      event_type: eventType,\n      expected_ip: expectedIP,\n      customer_data: customerData,\n    };\n\n    return this.requestWithRetry<ValidateCipherTextResponse>(\n      '/api/v1/geo/validate-ciphertext',\n      {\n        method: 'POST',\n        body: JSON.stringify(request),\n      }, undefined, undefined, requestOptions\n    );\n  }\n\n  /**\n   * Validate cipherText and verify IP in a single call\n   *\n   * Combines cipherText validation with IP verification for complete\n   * location and device verification in one request.\n   *\n   * @param cipherText - The encrypted cipherText string\n   * @param ipAddress - Client IP address\n   * @param userId - User ID\n   * @param eventType - Event type (login, registration, etc.)\n   * @returns Combined validation and verification result\n   *\n   * @example\n   * ```typescript\n   * const result = await client.validateAndVerify(\n   *   cipherText,\n   *   clientIP,\n   *   \"user_123\",\n   *   \"registration\"\n   * );\n   *\n   * if (!result.ciphertext_valid) {\n   *   throw new Error(\"Device verification failed\");\n   * }\n   *\n   * if (result.location.is_blocked) {\n   *   throw new Error(\"Location not allowed\");\n   * }\n   * ```\n   */\n  async validateAndVerify(\n    cipherText: string,\n    ipAddress: string,\n    userId: string,\n    eventType: CipherTextReason,\n    requestOptions?: RequestOptions\n  ): Promise<{\n    ciphertext_valid: boolean;\n    ciphertext_result: ValidateCipherTextResponse;\n    location: LocationVerification;\n  }> {\n    // validate-ciphertext already performs full geo verification on the server\n    // (IP lookup, risk scoring, alert triggering, device tracking). A separate\n    // verifyIP call would create duplicate geolocation records and alerts.\n    const cipherTextResult = await this.validateCipherText(\n      cipherText,\n      userId,\n      eventType,\n      ipAddress,\n      undefined,\n      requestOptions\n    );\n\n    // Build LocationVerification from the enriched ciphertext response.\n    // If risk data is missing (partial response), fall back to verifyIP.\n    const loc = cipherTextResult.location;\n    const risk = cipherTextResult.risk;\n\n    if (!risk) {\n      const locationResult = await this.verifyIP({\n        ip_address: ipAddress,\n        user_id: userId,\n        event_type: eventType,\n      }, requestOptions);\n      return {\n        ciphertext_valid: cipherTextResult.valid,\n        ciphertext_result: cipherTextResult,\n        location: locationResult,\n      };\n    }\n\n    const location: LocationVerification = {\n      ip_address: cipherTextResult.ip_address,\n      location: {\n        country: loc?.country ?? '',\n        country_iso: loc?.country_iso ?? '',\n        city: loc?.city ?? '',\n        region: loc?.region ?? '',\n        postal_code: '',\n        latitude: loc?.latitude ?? 0,\n        longitude: loc?.longitude ?? 0,\n        timezone: '',\n        is_vpn: risk.is_vpn ?? false,\n        is_proxy: risk.is_proxy ?? false,\n        is_tor: risk.is_tor ?? false,\n        is_hosting: risk.is_hosting ?? false,\n        is_anonymizer: risk.is_vpn || risk.is_proxy || risk.is_tor,\n      },\n      is_compliant: cipherTextResult.is_compliant ?? !risk.is_blocked,\n      is_blocked: risk.is_blocked ?? false,\n      risk_level: risk.level ?? 'low',\n      risk_score: risk.score ?? 0,\n      risk_reasons: risk.is_blocked && risk.block_reasons\n        ? risk.block_reasons\n        : (risk.factors ?? []),\n      jurisdiction: cipherTextResult.jurisdiction,\n      geofence_evaluation: cipherTextResult.geofence_evaluation,\n      record_id: cipherTextResult.record_id ?? '',\n      gps_required: cipherTextResult.gps_required,\n    };\n\n    return {\n      ciphertext_valid: cipherTextResult.valid,\n      ciphertext_result: cipherTextResult,\n      location,\n    };\n  }\n\n  // ============================================================================\n  // Location Request (Live Location Tracking)\n  // ============================================================================\n\n  /**\n   * Create a location request to get customer's live location\n   *\n   * @param request - Location request details\n   * @returns Location request result with share link\n   *\n   * @example\n   * ```typescript\n   * const result = await client.createLocationRequest({\n   *   user_id: \"customer_123\",\n   *   channel: \"sms\",\n   *   phone: \"+1234567890\",\n   *   reason: \"Verification for high-value transaction\"\n   * });\n   *\n   * console.log(`Share link sent: ${result.share_link}`);\n   * console.log(`Expires at: ${result.token_expiry}`);\n   * ```\n   */\n  async createLocationRequest(\n    request: CreateLocationRequestRequest,\n    requestOptions?: RequestOptions\n  ): Promise<LocationRequestResult> {\n    return this.request<LocationRequestResult>('/api/v1/location-requests', {\n      method: 'POST',\n      body: JSON.stringify(request),\n    }, undefined, requestOptions);\n  }\n\n  /**\n   * Get a location request by ID\n   *\n   * @param requestId - Location request ID\n   * @returns Location request details\n   */\n  async getLocationRequest(requestId: string, requestOptions?: RequestOptions): Promise<LocationRequest> {\n    return this.request<LocationRequest>(`/api/v1/location-requests/${requestId}`, undefined, undefined, requestOptions);\n  }\n\n  /**\n   * List location requests with filters and pagination\n   *\n   * @param filters - Optional filters\n   * @param pagination - Optional pagination\n   * @returns Paginated list of location requests\n   *\n   * @example\n   * ```typescript\n   * const requests = await client.listLocationRequests(\n   *   { status: \"completed\", user_id: \"customer_123\" },\n   *   { page: 1, limit: 20 }\n   * );\n   * ```\n   */\n  async listLocationRequests(\n    filters?: LocationRequestFilters,\n    pagination?: PaginationParams,\n    requestOptions?: RequestOptions\n  ): Promise<LocationRequestListResponse> {\n    const params: Record<string, unknown> = {\n      ...filters,\n      ...pagination,\n    };\n\n    return this.request<LocationRequestListResponse>(\n      `/api/v1/location-requests${this.buildQueryString(params)}`,\n      undefined, undefined, requestOptions\n    );\n  }\n\n  /**\n   * Cancel a pending location request\n   *\n   * @param requestId - Location request ID\n   */\n  async cancelLocationRequest(requestId: string, requestOptions?: RequestOptions): Promise<void> {\n    await this.request(`/api/v1/location-requests/${requestId}/cancel`, {\n      method: 'POST',\n    }, undefined, requestOptions);\n  }\n\n  /**\n   * Resend notification for a location request\n   *\n   * @param requestId - Location request ID\n   * @param contact - Email or phone to send to\n   */\n  async resendLocationRequest(\n    requestId: string,\n    contact: ResendLocationRequestRequest,\n    requestOptions?: RequestOptions\n  ): Promise<void> {\n    await this.request(`/api/v1/location-requests/${requestId}/resend`, {\n      method: 'POST',\n      body: JSON.stringify(contact),\n    }, undefined, requestOptions);\n  }\n\n  // ============================================================================\n  // Location Share (Customer-facing - for SDK integration in customer apps)\n  // ============================================================================\n\n  /**\n   * Get location share info (customer-facing)\n   * This is called from the customer's device to get request details\n   *\n   * @param token - Secure token from share link\n   * @returns Location share info\n   */\n  async getLocationShareInfo(token: string, requestOptions?: RequestOptions): Promise<LocationShareInfo> {\n    return this.request<LocationShareInfo>(`/api/v1/location/share/${token}`, undefined, undefined, requestOptions);\n  }\n\n  /**\n   * Submit location capture (customer-facing)\n   * This is called from the customer's device to submit their location\n   *\n   * @param token - Secure token from share link\n   * @param capture - Location capture data (GPS or WiFi)\n   * @returns Capture response\n   *\n   * @example\n   * ```typescript\n   * // Using GPS (preferred)\n   * const result = await client.captureLocation(token, {\n   *   latitude: 37.7749,\n   *   longitude: -122.4194,\n   *   accuracy: 10\n   * });\n   *\n   * // Using WiFi positioning (fallback)\n   * const result = await client.captureLocation(token, {\n   *   wifi_networks: [\n   *     { macAddress: \"00:11:22:33:44:55\", signalStrength: -50 },\n   *     { macAddress: \"AA:BB:CC:DD:EE:FF\", signalStrength: -70 }\n   *   ]\n   * });\n   * ```\n   */\n  async captureLocation(\n    token: string,\n    capture: LocationCaptureRequest,\n    requestOptions?: RequestOptions\n  ): Promise<LocationCaptureResponse> {\n    return this.request<LocationCaptureResponse>(`/api/v1/location/share/${token}`, {\n      method: 'POST',\n      body: JSON.stringify(capture),\n    }, undefined, requestOptions);\n  }\n\n  // ============================================================================\n  // CipherText Generation\n  // ============================================================================\n\n  /**\n   * Generate a signed cipherText containing device and location data.\n   *\n   * Automatically passes the client's API key for HMAC signing (v02 format).\n   * If no API key is configured, falls back to unsigned v01 format.\n   *\n   * @param options - Options for cipherText generation\n   * @param gpsConfig - Optional GPS config (from getGPSConfig)\n   * @returns CipherText result with the signed string\n   *\n   * @example\n   * ```typescript\n   * const result = await client.generateCipherText({ reason: 'login' });\n   * console.log(result.cipherText); // v02 signed cipherText\n   * ```\n   */\n  async generateCipherText(\n    options: Omit<CipherTextOptions, 'apiKey' | 'signingKey'>,\n    gpsConfig?: GeolocationConfigResponse,\n  ): Promise<CipherTextResult> {\n    // Use cached signing key, or fetch from dedicated endpoint (with fallback)\n    let signingKey = this.cachedSigningKey;\n    let resolvedGpsConfig = gpsConfig;\n    if (!signingKey) {\n      signingKey = await this.fetchSigningKey();\n    }\n    // Fetch GPS config for auto-enable when caller didn't provide one\n    if (!resolvedGpsConfig) {\n      resolvedGpsConfig = await this.getGPSConfig();\n    }\n    return generateCipherTextUtil(\n      { ...options, signingKey: signingKey || undefined },\n      resolvedGpsConfig,\n    );\n  }\n\n  // ============================================================================\n  // Utility Methods (inherited from BaseClient: healthCheck, updateConfig, getConfig, buildQueryString)\n  // ============================================================================\n}\n\n/**\n * Auto-collect device fingerprint from the browser environment.\n * Returns safe defaults when running server-side (SSR/Node.js).\n */\nfunction collectDeviceFingerprint(): VerifyIPRequest['device_fingerprint'] {\n  const deviceId = generateDeviceId();\n  const browserInfo = getBrowserInfo();\n  const userAgent = typeof navigator !== 'undefined' ? navigator.userAgent : 'server';\n  const platform = typeof navigator !== 'undefined' ? (navigator.platform || 'unknown') : 'server';\n\n  return {\n    device_id: deviceId,\n    user_agent: userAgent,\n    platform,\n    browser: browserInfo.browser,\n    browser_version: browserInfo.browser_version,\n    os: browserInfo.os,\n    os_version: browserInfo.os_version,\n    screen_resolution: typeof screen !== 'undefined' ? `${screen.width}x${screen.height}` : undefined,\n    language: typeof navigator !== 'undefined' ? navigator.language : undefined,\n    timezone: Intl?.DateTimeFormat?.()?.resolvedOptions?.()?.timeZone,\n  };\n}\n"]}