2019-11-22 18:14:52 +01:00
|
|
|
|
require "json"
|
2018-09-22 21:25:03 +02:00
|
|
|
|
|
|
|
|
|
require "jwt"
|
|
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
|
require "ipc"
|
2018-09-22 21:42:21 +02:00
|
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
|
require "./user.cr"
|
2018-09-22 21:25:03 +02:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
class AuthD::Exception < Exception
|
|
|
|
|
end
|
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
class AuthD::Response
|
|
|
|
|
include JSON::Serializable
|
|
|
|
|
|
|
|
|
|
annotation MessageType
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class_getter type = -1
|
2019-11-22 23:13:34 +01:00
|
|
|
|
def type
|
|
|
|
|
@@type
|
|
|
|
|
end
|
2019-11-22 22:55:12 +01:00
|
|
|
|
|
|
|
|
|
macro inherited
|
|
|
|
|
def self.type
|
|
|
|
|
::AuthD::Response::Type::{{ @type.name.split("::").last.id }}
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
macro initialize(*properties)
|
|
|
|
|
def initialize(
|
|
|
|
|
{% for value in properties %}
|
|
|
|
|
@{{value.id}}{% if value != properties.last %},{% end %}
|
|
|
|
|
{% end %}
|
|
|
|
|
)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def type
|
|
|
|
|
Type::{{ @type.name.split("::").last.id }}
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class Error < Response
|
|
|
|
|
property reason : String?
|
|
|
|
|
|
|
|
|
|
initialize :reason
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class Token < Response
|
|
|
|
|
property token : String
|
|
|
|
|
|
|
|
|
|
initialize :token
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class User < Response
|
2019-12-15 23:38:49 +01:00
|
|
|
|
property user : ::AuthD::User::Public
|
2019-11-22 22:55:12 +01:00
|
|
|
|
|
|
|
|
|
initialize :user
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class UserAdded < Response
|
2019-12-15 23:38:49 +01:00
|
|
|
|
property user : ::AuthD::User::Public
|
2019-11-22 22:55:12 +01:00
|
|
|
|
|
|
|
|
|
initialize :user
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class UserEdited < Response
|
|
|
|
|
property uid : Int32
|
|
|
|
|
|
|
|
|
|
initialize :uid
|
|
|
|
|
end
|
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
class UsersList < Response
|
|
|
|
|
property users : Array(::AuthD::User::Public)
|
2019-12-07 21:09:17 +01:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
initialize :users
|
2019-12-07 21:09:17 +01:00
|
|
|
|
end
|
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
class PermissionCheck < Response
|
|
|
|
|
property user : Int32
|
|
|
|
|
property service : String
|
|
|
|
|
property resource : String
|
|
|
|
|
property permission : ::AuthD::User::PermissionLevel
|
2019-12-07 21:09:17 +01:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
initialize :service, :resource, :user, :permission
|
2019-12-07 21:09:17 +01:00
|
|
|
|
end
|
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
class PermissionSet < Response
|
|
|
|
|
property user : Int32
|
|
|
|
|
property service : String
|
|
|
|
|
property resource : String
|
|
|
|
|
property permission : ::AuthD::User::PermissionLevel
|
2019-12-09 21:57:38 +01:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
initialize :user, :service, :resource, :permission
|
2019-12-09 21:57:38 +01:00
|
|
|
|
end
|
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
# This creates a Request::Type enumeration. One entry for each request type.
|
|
|
|
|
{% begin %}
|
2019-11-22 17:31:56 +01:00
|
|
|
|
enum Type
|
2019-11-22 22:55:12 +01:00
|
|
|
|
{% for ivar in @type.subclasses %}
|
|
|
|
|
{% klass = ivar.name %}
|
|
|
|
|
{% name = ivar.name.split("::").last.id %}
|
|
|
|
|
|
|
|
|
|
{% a = ivar.annotation(MessageType) %}
|
|
|
|
|
|
|
|
|
|
{% if a %}
|
|
|
|
|
{% value = a[0] %}
|
|
|
|
|
{{ name }} = {{ value }}
|
|
|
|
|
{% else %}
|
|
|
|
|
{{ name }}
|
|
|
|
|
{% end %}
|
|
|
|
|
{% end %}
|
2019-11-22 17:31:56 +01:00
|
|
|
|
end
|
2019-11-22 22:55:12 +01:00
|
|
|
|
{% end %}
|
|
|
|
|
|
|
|
|
|
# This is an array of all requests types.
|
|
|
|
|
{% begin %}
|
|
|
|
|
class_getter requests = [
|
|
|
|
|
{% for ivar in @type.subclasses %}
|
|
|
|
|
{% klass = ivar.name %}
|
|
|
|
|
|
|
|
|
|
{{klass}},
|
|
|
|
|
{% end %}
|
|
|
|
|
]
|
|
|
|
|
{% end %}
|
|
|
|
|
|
2019-11-23 01:08:05 +01:00
|
|
|
|
def self.from_ipc(message : IPC::Message) : Response?
|
2019-11-22 22:55:12 +01:00
|
|
|
|
payload = String.new message.payload
|
|
|
|
|
type = Type.new message.type.to_i
|
|
|
|
|
|
2019-11-23 01:08:05 +01:00
|
|
|
|
requests.find(&.type.==(type)).try &.from_json(payload)
|
|
|
|
|
rescue e : JSON::ParseException
|
|
|
|
|
raise Exception.new "malformed request"
|
2019-11-22 22:55:12 +01:00
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class IPC::Connection
|
|
|
|
|
def send(response : AuthD::Response)
|
|
|
|
|
send response.type.to_u8, response.to_json
|
2018-11-12 18:51:21 +01:00
|
|
|
|
end
|
2019-11-22 18:14:52 +01:00
|
|
|
|
end
|
2018-09-22 21:25:03 +02:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
class AuthD::Request
|
|
|
|
|
include JSON::Serializable
|
2018-09-22 21:25:03 +02:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
annotation MessageType
|
|
|
|
|
end
|
2018-09-22 21:25:03 +02:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
class_getter type = -1
|
|
|
|
|
|
|
|
|
|
macro inherited
|
|
|
|
|
def self.type
|
|
|
|
|
::AuthD::Request::Type::{{ @type.name.split("::").last.id }}
|
2019-11-22 17:31:56 +01:00
|
|
|
|
end
|
2019-11-22 18:14:52 +01:00
|
|
|
|
end
|
2018-12-19 13:54:19 +01:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
macro initialize(*properties)
|
|
|
|
|
def initialize(
|
|
|
|
|
{% for value in properties %}
|
|
|
|
|
@{{value.id}}{% if value != properties.last %},{% end %}
|
|
|
|
|
{% end %}
|
|
|
|
|
)
|
2019-11-22 17:31:56 +01:00
|
|
|
|
end
|
2019-01-07 17:04:20 +01:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
def type
|
|
|
|
|
Type::{{ @type.name.split("::").last.id }}
|
2019-11-22 17:31:56 +01:00
|
|
|
|
end
|
2019-11-22 18:14:52 +01:00
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class GetToken < Request
|
|
|
|
|
property login : String
|
|
|
|
|
property password : String
|
|
|
|
|
|
|
|
|
|
initialize :login, :password
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class AddUser < Request
|
|
|
|
|
# Only clients that have the right shared key will be allowed
|
|
|
|
|
# to create users.
|
|
|
|
|
property shared_key : String
|
|
|
|
|
|
|
|
|
|
property login : String
|
|
|
|
|
property password : String
|
2020-01-22 01:55:57 +01:00
|
|
|
|
property email : String?
|
|
|
|
|
property phone : String?
|
2019-12-15 23:38:49 +01:00
|
|
|
|
property profile : JSON::Any?
|
2019-11-22 18:14:52 +01:00
|
|
|
|
|
2020-01-22 01:55:57 +01:00
|
|
|
|
initialize :shared_key, :login, :password, :email, :phone, :profile
|
2019-11-22 18:14:52 +01:00
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class GetUser < Request
|
2019-12-15 23:38:49 +01:00
|
|
|
|
property user : Int32 | String
|
2019-11-22 18:14:52 +01:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
initialize :user
|
2019-11-22 18:14:52 +01:00
|
|
|
|
end
|
2019-02-16 22:06:56 +01:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
class GetUserByCredentials < Request
|
|
|
|
|
property login : String
|
|
|
|
|
property password : String
|
2019-10-10 20:58:44 +02:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
initialize :login, :password
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class ModUser < Request
|
|
|
|
|
property shared_key : String
|
|
|
|
|
|
|
|
|
|
property uid : Int32
|
|
|
|
|
property password : String?
|
|
|
|
|
property avatar : String?
|
|
|
|
|
|
|
|
|
|
initialize :shared_key, :uid
|
|
|
|
|
end
|
|
|
|
|
|
2019-12-07 00:53:31 +01:00
|
|
|
|
class Request::Register < Request
|
|
|
|
|
property login : String
|
|
|
|
|
property password : String
|
2020-01-22 01:55:57 +01:00
|
|
|
|
property email : String?
|
|
|
|
|
property phone : String?
|
2019-12-15 23:38:49 +01:00
|
|
|
|
property profile : JSON::Any?
|
2019-12-07 00:53:31 +01:00
|
|
|
|
|
2020-01-22 01:55:57 +01:00
|
|
|
|
initialize :login, :password, :email, :phone, :profile
|
2019-12-07 21:09:17 +01:00
|
|
|
|
end
|
|
|
|
|
|
2019-12-07 23:57:40 +01:00
|
|
|
|
class Request::UpdatePassword < Request
|
|
|
|
|
property login : String
|
|
|
|
|
property old_password : String
|
|
|
|
|
property new_password : String
|
|
|
|
|
end
|
|
|
|
|
|
2019-12-09 21:57:38 +01:00
|
|
|
|
class Request::ListUsers < Request
|
|
|
|
|
property token : String?
|
|
|
|
|
property key : String?
|
|
|
|
|
end
|
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
class CheckPermission < Request
|
|
|
|
|
property shared_key : String
|
|
|
|
|
|
|
|
|
|
# FIXME: Make it Int32 | String
|
|
|
|
|
property user : Int32
|
|
|
|
|
property service : String
|
|
|
|
|
property resource : String
|
|
|
|
|
|
|
|
|
|
initialize :shared_key, :user, :service, :resource
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class SetPermission < Request
|
|
|
|
|
property shared_key : String
|
|
|
|
|
|
|
|
|
|
# FIXME: Make it Int32 | String
|
|
|
|
|
property user : Int32
|
|
|
|
|
property service : String
|
|
|
|
|
property resource : String
|
|
|
|
|
property permission : ::AuthD::User::PermissionLevel
|
|
|
|
|
|
|
|
|
|
initialize :shared_key, :user, :service, :resource, :permission
|
|
|
|
|
end
|
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
# This creates a Request::Type enumeration. One entry for each request type.
|
|
|
|
|
{% begin %}
|
|
|
|
|
enum Type
|
|
|
|
|
{% for ivar in @type.subclasses %}
|
|
|
|
|
{% klass = ivar.name %}
|
|
|
|
|
{% name = ivar.name.split("::").last.id %}
|
|
|
|
|
|
|
|
|
|
{% a = ivar.annotation(MessageType) %}
|
|
|
|
|
|
|
|
|
|
{% if a %}
|
|
|
|
|
{% value = a[0] %}
|
|
|
|
|
{{ name }} = {{ value }}
|
|
|
|
|
{% else %}
|
|
|
|
|
{{ name }}
|
|
|
|
|
{% end %}
|
|
|
|
|
{% end %}
|
2019-11-22 17:31:56 +01:00
|
|
|
|
end
|
2019-11-22 18:14:52 +01:00
|
|
|
|
{% end %}
|
|
|
|
|
|
|
|
|
|
# This is an array of all requests types.
|
|
|
|
|
{% begin %}
|
|
|
|
|
class_getter requests = [
|
|
|
|
|
{% for ivar in @type.subclasses %}
|
|
|
|
|
{% klass = ivar.name %}
|
|
|
|
|
|
|
|
|
|
{{klass}},
|
|
|
|
|
{% end %}
|
|
|
|
|
]
|
|
|
|
|
{% end %}
|
|
|
|
|
|
2019-11-23 01:08:05 +01:00
|
|
|
|
def self.from_ipc(message : IPC::Message) : Request?
|
2019-11-22 18:14:52 +01:00
|
|
|
|
payload = String.new message.payload
|
|
|
|
|
type = Type.new message.type.to_i
|
|
|
|
|
|
2019-11-23 01:08:05 +01:00
|
|
|
|
requests.find(&.type.==(type)).try &.from_json(payload)
|
|
|
|
|
rescue e : JSON::ParseException
|
|
|
|
|
raise Exception.new "malformed request"
|
2019-05-29 16:06:11 +02:00
|
|
|
|
end
|
2019-11-22 18:14:52 +01:00
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
class IPC::Connection
|
|
|
|
|
def send(request : AuthD::Request)
|
|
|
|
|
send request.type.to_u8, request.to_json
|
|
|
|
|
end
|
|
|
|
|
end
|
2019-05-29 16:06:11 +02:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
module AuthD
|
2019-06-05 22:30:29 +02:00
|
|
|
|
class Client < IPC::Connection
|
2018-11-12 18:51:21 +01:00
|
|
|
|
property key : String
|
|
|
|
|
|
|
|
|
|
def initialize
|
|
|
|
|
@key = ""
|
|
|
|
|
|
|
|
|
|
initialize "auth"
|
2018-09-22 21:25:03 +02:00
|
|
|
|
end
|
|
|
|
|
|
2019-06-06 01:16:52 +02:00
|
|
|
|
def get_token?(login : String, password : String) : String?
|
2019-11-22 18:14:52 +01:00
|
|
|
|
send Request::GetToken.new login, password
|
2018-11-12 18:51:21 +01:00
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
response = Response.from_ipc read
|
2018-11-12 18:51:21 +01:00
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
if response.is_a?(Response::Token)
|
|
|
|
|
response.token
|
2018-11-12 18:51:21 +01:00
|
|
|
|
else
|
|
|
|
|
nil
|
2018-09-22 21:25:03 +02:00
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2019-12-19 03:58:00 +01:00
|
|
|
|
def get_user?(login : String, password : String) : AuthD::User::Public?
|
2019-11-22 18:14:52 +01:00
|
|
|
|
send Request::GetUserByCredentials.new login, password
|
2019-02-16 22:06:56 +01:00
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
response = Response.from_ipc read
|
2019-02-16 22:06:56 +01:00
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
if response.is_a? Response::User
|
|
|
|
|
response.user
|
2019-02-16 22:06:56 +01:00
|
|
|
|
else
|
|
|
|
|
nil
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
def get_user?(uid_or_login : Int32 | String) : ::AuthD::User::Public?
|
|
|
|
|
send Request::GetUser.new uid_or_login
|
2019-01-07 17:04:20 +01:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
response = Response.from_ipc read
|
2019-01-07 17:04:20 +01:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
if response.is_a? Response::User
|
|
|
|
|
response.user
|
2019-01-07 17:04:20 +01:00
|
|
|
|
else
|
|
|
|
|
nil
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2019-11-22 17:31:56 +01:00
|
|
|
|
def send(type : Request::Type, payload)
|
2018-12-19 13:54:19 +01:00
|
|
|
|
send type.value.to_u8, payload
|
|
|
|
|
end
|
|
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
|
def decode_token(token)
|
2019-06-28 18:20:34 +02:00
|
|
|
|
user, meta = JWT.decode token, @key, JWT::Algorithm::HS256
|
2018-11-12 18:51:21 +01:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
user = ::AuthD::User::Public.from_json user.to_json
|
2018-11-12 18:51:21 +01:00
|
|
|
|
|
|
|
|
|
{user, meta}
|
|
|
|
|
end
|
2018-12-19 13:54:19 +01:00
|
|
|
|
|
|
|
|
|
# FIXME: Extra options may be useful to implement here.
|
2020-01-22 01:55:57 +01:00
|
|
|
|
def add_user(login : String, password : String,
|
|
|
|
|
email : String?,
|
|
|
|
|
phone : String?,
|
|
|
|
|
profile : JSON::Any?) : ::AuthD::User::Public | Exception
|
|
|
|
|
|
|
|
|
|
send Request::AddUser.new @key, login, password, email, phone, profile
|
2018-12-19 13:54:19 +01:00
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
response = Response.from_ipc read
|
2018-12-19 13:54:19 +01:00
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
case response
|
|
|
|
|
when Response::UserAdded
|
|
|
|
|
response.user
|
|
|
|
|
when Response::Error
|
2019-12-15 23:38:49 +01:00
|
|
|
|
raise Exception.new response.reason
|
2018-12-19 13:54:19 +01:00
|
|
|
|
else
|
2019-11-22 22:55:12 +01:00
|
|
|
|
# Should not happen in serialized connections, but…
|
|
|
|
|
# it’ll happen if you run several requests at once.
|
|
|
|
|
Exception.new
|
2018-12-19 13:54:19 +01:00
|
|
|
|
end
|
|
|
|
|
end
|
2019-05-29 16:06:11 +02:00
|
|
|
|
|
2019-12-15 23:38:49 +01:00
|
|
|
|
def register(login : String, password : String, profile : JSON::Any?) : ::AuthD::User::Public?
|
|
|
|
|
send Request::Register.new login, password, profile
|
|
|
|
|
|
|
|
|
|
response = Response.from_ipc read
|
|
|
|
|
|
|
|
|
|
case response
|
|
|
|
|
when Response::UserAdded
|
|
|
|
|
when Response::Error
|
|
|
|
|
raise Exception.new response.reason
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2019-05-29 19:45:03 +02:00
|
|
|
|
def mod_user(uid : Int32, password : String? = nil, avatar : String? = nil) : Bool | Exception
|
2019-11-22 18:14:52 +01:00
|
|
|
|
request = Request::ModUser.new @key, uid
|
2019-05-29 16:06:11 +02:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
request.password = password if password
|
|
|
|
|
request.avatar = avatar if avatar
|
2019-05-29 19:45:03 +02:00
|
|
|
|
|
2019-11-22 18:14:52 +01:00
|
|
|
|
send request
|
2019-05-29 16:06:11 +02:00
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
response = Response.from_ipc read
|
2019-05-29 16:06:11 +02:00
|
|
|
|
|
2019-11-22 22:55:12 +01:00
|
|
|
|
case response
|
|
|
|
|
when Response::UserEdited
|
2019-05-29 16:06:11 +02:00
|
|
|
|
true
|
2019-11-22 22:55:12 +01:00
|
|
|
|
when Response::Error
|
|
|
|
|
Exception.new response.reason
|
2019-05-29 16:06:11 +02:00
|
|
|
|
else
|
2019-11-22 22:55:12 +01:00
|
|
|
|
Exception.new "???"
|
2019-05-29 16:06:11 +02:00
|
|
|
|
end
|
|
|
|
|
end
|
2019-12-15 23:38:49 +01:00
|
|
|
|
|
|
|
|
|
def check_permission(user : ::AuthD::User::Public, service_name : String, resource_name : String) : User::PermissionLevel
|
|
|
|
|
request = Request::CheckPermission.new @key, user.uid, service_name, resource_name
|
|
|
|
|
|
|
|
|
|
send request
|
|
|
|
|
|
|
|
|
|
response = Response.from_ipc read
|
|
|
|
|
|
|
|
|
|
case response
|
|
|
|
|
when Response::PermissionCheck
|
|
|
|
|
response.permission
|
|
|
|
|
when Response
|
|
|
|
|
raise Exception.new "unexpected response: #{response.type}"
|
|
|
|
|
else
|
|
|
|
|
raise Exception.new "unexpected response"
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def set_permission(uid : Int32, service : String, resource : String, permission : User::PermissionLevel)
|
|
|
|
|
request = Request::SetPermission.new @key, uid, service, resource, permission
|
|
|
|
|
|
|
|
|
|
send request
|
|
|
|
|
|
|
|
|
|
response = Response.from_ipc read
|
|
|
|
|
|
|
|
|
|
case response
|
|
|
|
|
when Response::PermissionSet
|
|
|
|
|
true
|
|
|
|
|
when Response
|
|
|
|
|
raise Exception.new "unexpected response: #{response.type}"
|
|
|
|
|
else
|
|
|
|
|
raise Exception.new "unexpected response"
|
|
|
|
|
end
|
|
|
|
|
end
|
2018-09-22 21:25:03 +02:00
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|